last executing test programs:

56.271339771s ago: executing program 1 (id=86):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000600)={0x26, 'hash\x00', 0x0, 0x0, 'sha384\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x800)
sendmmsg$alg(r1, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f7", 0x1}, {&(0x7f0000000140)="ebe3a0e9", 0x4}], 0x2}], 0x1, 0x40800)

56.129727366s ago: executing program 1 (id=87):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000004140)={&(0x7f0000003f40)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x64, 0x64, 0x2, [@enum={0x0, 0x4, 0x0, 0x6, 0x4, [{0x2, 0x80000000}, {0x10, 0x6}, {0xe, 0x4}, {0x4, 0x6}]}, @func_proto={0x0, 0x1, 0x0, 0xd, 0x0, [{0xf, 0x3}]}, @ptr={0x10, 0x0, 0x0, 0x2, 0x3}, @struct={0xb, 0x1, 0x0, 0x4, 0x0, 0xfffffff9, [{0x2, 0x5, 0x3}]}]}}, &(0x7f0000004080)=""/148, 0x7e, 0x94, 0x1, 0x5}, 0x28)

56.046100315s ago: executing program 1 (id=88):
unshare(0x20000600)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1a00000004000000000000000100000000800000a64080c0f88ba933f7a0e7f8", @ANYRES32=0x1, @ANYBLOB="ffffffff00"/20, @ANYRES32=0x0, @ANYRES32], 0x50)

56.045823222s ago: executing program 1 (id=89):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000280)={[{@nogrpid}, {@jqfmt_vfsv0}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@debug}, {@nombcache}, {@quota}, {@nolazytime}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x122dfb579e447c7a)
r1 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
ftruncate(r1, 0x2007ffc)
sendfile(r1, r1, 0x0, 0x800000009)
mount(&(0x7f0000000440)=@loop={'/dev/loop', 0x0}, &(0x7f0000000200)='./bus\x00', 0x0, 0x1000, 0x0)
capset(0x0, 0x0)
r2 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r2, 0x4c04, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x7ffffffffffffffb, 0x3, 0x0, 0x0, 0x17, 0x0, "ef35af413bb901527fe4d0ce5d29c3ee5e5c3676345a41499db7aac63a01000000000000004faa2ae2c084a0ea0000000000007700000c00002000", "036c47c67808200400000000000000335263bdbcef549ba197fce47ddfdd753abd950100002a00ffffffffffffffff00000000e8f20000000200", "b7326736181c208220fffff2ff00000000000000000e00", [0x4]})
fallocate(r0, 0x0, 0x0, 0x280404)
openat(0xffffffffffffff9c, &(0x7f00000013c0)='./file1\x00', 0x42, 0x0)

55.800397275s ago: executing program 1 (id=90):
r0 = syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x862b01)
ioctl$EVIOCSKEYCODE_V2(r0, 0x40284504, &(0x7f0000000440)={0x3, 0x7, 0xb6a, 0x8, "440d2d6e7960684df4d15290a87e1eb8300aed0ef91b47fb7e71e265a4aca01c"})

55.461166473s ago: executing program 1 (id=96):
r0 = syz_open_dev$vbi(&(0x7f0000000000), 0x1, 0x2)
ioctl$VIDIOC_QBUF(r0, 0xc058565d, &(0x7f0000000200)=@mmap={0x2, 0x1, 0x4, 0x1, 0x8, {}, {0x1, 0x0, 0x8, 0x8, 0x1, 0x7, "aeaf1902"}, 0x39, 0x1, {}, 0x9e5b})

55.361797238s ago: executing program 32 (id=96):
r0 = syz_open_dev$vbi(&(0x7f0000000000), 0x1, 0x2)
ioctl$VIDIOC_QBUF(r0, 0xc058565d, &(0x7f0000000200)=@mmap={0x2, 0x1, 0x4, 0x1, 0x8, {}, {0x1, 0x0, 0x8, 0x8, 0x1, 0x7, "aeaf1902"}, 0x39, 0x1, {}, 0x9e5b})

1.056137818s ago: executing program 3 (id=774):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_BIND(r0, &(0x7f0000000140)={0x14, 0x88, 0xfa00, {0xffffffffffffffff, 0x1c, 0x0, @in={0x2, 0x4e21, @remote}}}, 0x90)

996.05103ms ago: executing program 3 (id=775):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000140)={0x1, &(0x7f0000000200)=[{0x6, 0x1, 0x7, 0x7fffffff}]})
ppoll(&(0x7f0000000600)=[{r0, 0x2000}], 0x1, &(0x7f0000000640)={0x0, 0x989680}, 0x0, 0x0)

995.895573ms ago: executing program 3 (id=776):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x3, 0x4, 0x4, 0x8}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xc, 0x4, 0x4, 0x9, 0x0, r0}, 0x48)

935.630412ms ago: executing program 3 (id=778):
openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000080), 0x2)
openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000040), 0x8002)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeeb, 0x8031, 0xffffffffffffffff, 0xc36e5000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$OBJ_PIN_PROG(0x6, &(0x7f00000003c0)=@generic={&(0x7f0000000380)='./file0\x00', r0}, 0x18)
msync(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x6)
unshare(0x22020600)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r4, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r4, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r4, 0x6, 0x1f, &(0x7f0000000100), 0x4)
setsockopt$inet6_tcp_TLS_TX(r4, 0x11a, 0x1, &(0x7f0000000180)=@gcm_128={{0x304}, "345aa3593519c7e1", "e8a1056a7c356ba2b862ef93136b1587", "28bc90f4", "790f59276094db31"}, 0x28)
sendto$inet6(r4, &(0x7f0000000340)="d1", 0x1, 0x8000, 0x0, 0x0)
listen(0xffffffffffffffff, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r5, 0x0, 0x0)
syz_genetlink_get_family_id$l2tp(&(0x7f00000000c0), r5)
syz_open_procfs$namespace(r1, &(0x7f0000000400)='ns/ipc\x00')
write$binfmt_aout(r4, 0x0, 0xfdef)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045542, &(0x7f0000000300)=0x1)

853.671922ms ago: executing program 2 (id=780):
syz_mount_image$udf(&(0x7f0000000040), &(0x7f0000000200)='./file0\x00', 0x8882, &(0x7f0000001040)={[{@utf8}, {@iocharset={'iocharset', 0x3d, 'maciceland'}}, {@nostrict}, {@undelete}, {@rootdir={'rootdir', 0x3d, 0x5}}, {@gid_ignore}, {@gid}, {@undelete}]}, 0x1, 0xc5b, &(0x7f0000000240)="$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")

853.441035ms ago: executing program 0 (id=781):
r0 = syz_open_procfs(0x0, &(0x7f00000004c0)='map_files\x00')
getdents64(r0, 0x0, 0x0)

755.361009ms ago: executing program 0 (id=782):
r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$int_in(r0, 0x40000000af01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000200)={0x1, 0x1, 0x0, &(0x7f0000000740)=""/51, 0x0})
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000340))
r2 = dup(r1)
ioctl$VHOST_NET_SET_BACKEND(r0, 0x4008af30, &(0x7f0000000000)={0x1, r2})
close(0x3)

755.185676ms ago: executing program 2 (id=783):
r0 = syz_open_dev$vbi(&(0x7f0000000080), 0x3, 0x2)
ioctl$VIDIOC_S_OUTPUT(r0, 0xc004562f, &(0x7f00000000c0)=0x1)
ioctl$VIDIOC_S_DV_TIMINGS(r0, 0xc0845657, &(0x7f0000000380)={0x0, @bt={0x6, 0x3, 0x0, 0x0, 0xdd9f83, 0x1, 0x9, 0x1, 0x9, 0x5, 0x722, 0x13, 0x4, 0x7f, 0x3f, 0x0, {0x3, 0x6fd8e84b}, 0x3, 0xed}})

695.06564ms ago: executing program 2 (id=784):
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0xe, &(0x7f0000000380)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000340), 0xfffffffffffffe19, 0x0, 0xffffffffffffffff, 0x54}, 0x42)

464.386728ms ago: executing program 0 (id=785):
r0 = socket(0x11, 0x3, 0x80000000)
setsockopt$sock_int(r0, 0x1, 0x2e, &(0x7f0000000040)=0x403, 0x4)
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000000)={0xa0179e12})

294.238895ms ago: executing program 2 (id=786):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)={0x58, 0x2, 0x6, 0x3, 0x0, 0x0, {}, [@IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_HASHSIZE={0x8}]}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x12, 0x3, 'hash:net,port\x00'}]}, 0x58}}, 0x0)

294.087556ms ago: executing program 0 (id=787):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x184)
fcntl$lock(r0, 0x6, &(0x7f00000002c0)={0x0, 0x0, 0xff34, 0x3})

293.704524ms ago: executing program 2 (id=788):
r0 = socket(0x840000000002, 0x3, 0x100)
connect$inet(r0, &(0x7f0000000340)={0x2, 0x4e22, @remote}, 0x10)
sendmmsg$inet(r0, &(0x7f0000005240), 0x4000095, 0x0)
connect$can_bcm(r0, &(0x7f00000002c0), 0x10)

173.927549ms ago: executing program 0 (id=789):
syz_mount_image$msdos(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x42, &(0x7f0000000440)={[{@nodots}, {@fat=@errors_continue}, {@fat=@umask={'umask', 0x3d, 0x2}}, {@fat=@dos1xfloppy}, {@nodots}, {@fat=@flush}, {@dots}, {@fat=@nfs_stale_rw}, {}, {@dots}]}, 0x1, 0x25f, &(0x7f0000000140)="$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")
add_key$fscrypt_v1(0x0, &(0x7f0000000040)={'fscrypt:', @auto=[0x30, 0x35, 0x35, 0x8, 0x65, 0x32, 0x35, 0x39, 0x36, 0x63, 0x32, 0x34, 0x35, 0x37, 0x66, 0x39]}, 0x0, 0x0, 0xfffffffffffffffa)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x121042, 0x81)

592.43µs ago: executing program 0 (id=790):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x30000c6, &(0x7f0000000000)={[{@auto_da_alloc}, {@minixdf}]}, 0x1, 0x569, &(0x7f0000000a00)="$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")
setxattr$incfs_metadata(&(0x7f0000000240)='./file1\x00', &(0x7f0000000280), &(0x7f00000002c0)="30573472b621739991c336124406e8a5c812ca847e3bf9b837c91d46ab", 0x1d, 0x1)
lsetxattr$trusted_overlay_upper(&(0x7f0000000080)='./file1\x00', &(0x7f0000000180), &(0x7f0000000000)=ANY=[], 0x361, 0x0)
lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000440)=ANY=[], 0xfe37, 0x2)

347.493µs ago: executing program 2 (id=791):
syz_usb_connect(0x2, 0x9a2, &(0x7f0000000280)=ANY=[@ANYBLOB="12010000d0241710d8050a81b892000000010902900902000000000904"], 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000e, 0x20c44fb6edc09a38, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x4, 0x0)
ioctl$EVIOCGKEYCODE_V2(r0, 0x80284504, &(0x7f0000000880)=""/203)

157.51µs ago: executing program 3 (id=792):
r0 = socket$inet(0x2, 0x1, 0x0)
getsockopt$EBT_SO_GET_ENTRIES(r0, 0x0, 0x81, &(0x7f00000001c0)={'nat\x00', 0x0, 0x0, 0x0, [0x4, 0x80, 0xffffffffffffffc0, 0xfff, 0xfffffffffffffff7, 0xd], 0x0, 0x0, 0x0}, &(0x7f0000000240)=0x108)

0s ago: executing program 3 (id=793):
r0 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r1 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x81)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
writev(r0, &(0x7f0000000100)=[{&(0x7f00000003c0)="aede4a56d88983ea", 0x8}], 0x1)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r2, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000004c0)=[0x6], 0x0, 0x0, 0x1}}, 0x40)

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:15582' (ED25519) to the list of known hosts.
syzkaller login: [   51.317602][ T5766] cgroup: Unknown subsys name 'net'
[   51.391204][ T5766] cgroup: Unknown subsys name 'cpuset'
[   51.398410][ T5766] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   52.879604][ T5766] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   57.292501][ T5199] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   57.298235][ T5199] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   57.301442][ T5199] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   57.307198][ T5199] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   57.314821][ T5199] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   57.327081][ T5815] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   57.330792][ T5815] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   57.334860][ T5815] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   57.338038][ T5815] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   57.344180][ T5815] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   57.359503][ T5199] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   57.363939][ T5199] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   57.368791][ T5199] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   57.372561][ T5199] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   57.376496][ T5199] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   57.670691][ T5817] chnl_net:caif_netlink_parms(): no params data found
[   57.691045][ T5808] chnl_net:caif_netlink_parms(): no params data found
[   57.759292][ T5812] chnl_net:caif_netlink_parms(): no params data found
[   57.823089][ T5817] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.826581][ T5817] bridge0: port 1(bridge_slave_0) entered disabled state
[   57.829923][ T5817] bridge_slave_0: entered allmulticast mode
[   57.833574][ T5817] bridge_slave_0: entered promiscuous mode
[   57.853538][ T5817] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.856457][ T5817] bridge0: port 2(bridge_slave_1) entered disabled state
[   57.859250][ T5817] bridge_slave_1: entered allmulticast mode
[   57.862522][ T5817] bridge_slave_1: entered promiscuous mode
[   57.867870][ T5808] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.870131][ T5808] bridge0: port 1(bridge_slave_0) entered disabled state
[   57.872678][ T5808] bridge_slave_0: entered allmulticast mode
[   57.876191][ T5808] bridge_slave_0: entered promiscuous mode
[   57.881111][ T5808] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.883946][ T5808] bridge0: port 2(bridge_slave_1) entered disabled state
[   57.886643][ T5808] bridge_slave_1: entered allmulticast mode
[   57.889947][ T5808] bridge_slave_1: entered promiscuous mode
[   57.938379][ T5817] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   57.951615][ T5808] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   57.964678][ T5817] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   57.969851][ T5808] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   57.985214][ T5812] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.987807][ T5812] bridge0: port 1(bridge_slave_0) entered disabled state
[   57.990273][ T5812] bridge_slave_0: entered allmulticast mode
[   57.993811][ T5812] bridge_slave_0: entered promiscuous mode
[   57.997154][ T5812] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.999606][ T5812] bridge0: port 2(bridge_slave_1) entered disabled state
[   58.002352][ T5812] bridge_slave_1: entered allmulticast mode
[   58.006063][ T5812] bridge_slave_1: entered promiscuous mode
[   58.068331][ T5808] team0: Port device team_slave_0 added
[   58.072431][ T5812] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   58.079138][ T5817] team0: Port device team_slave_0 added
[   58.084341][ T5812] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   58.088699][ T5817] team0: Port device team_slave_1 added
[   58.093053][ T5808] team0: Port device team_slave_1 added
[   58.148492][ T5812] team0: Port device team_slave_0 added
[   58.150908][ T5817] batman_adv: batadv0: Adding interface: batadv_slave_0
[   58.153571][ T5817] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   58.161510][ T5817] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   58.166786][ T5817] batman_adv: batadv0: Adding interface: batadv_slave_1
[   58.168937][ T5817] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   58.176919][ T5817] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   58.181313][ T5808] batman_adv: batadv0: Adding interface: batadv_slave_0
[   58.184272][ T5808] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   58.192098][ T5808] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   58.197964][ T5812] team0: Port device team_slave_1 added
[   58.207400][ T5808] batman_adv: batadv0: Adding interface: batadv_slave_1
[   58.210147][ T5808] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   58.218413][ T5808] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   58.246981][ T5812] batman_adv: batadv0: Adding interface: batadv_slave_0
[   58.249677][ T5812] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   58.261816][ T5812] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   58.268037][ T5812] batman_adv: batadv0: Adding interface: batadv_slave_1
[   58.270797][ T5812] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   58.279413][ T5812] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   58.331531][ T5817] hsr_slave_0: entered promiscuous mode
[   58.335431][ T5817] hsr_slave_1: entered promiscuous mode
[   58.346047][ T5808] hsr_slave_0: entered promiscuous mode
[   58.349571][ T5808] hsr_slave_1: entered promiscuous mode
[   58.352793][ T5808] debugfs: 'hsr0' already exists in 'hsr'
[   58.355689][ T5808] Cannot create hsr debugfs directory
[   58.377170][ T5812] hsr_slave_0: entered promiscuous mode
[   58.379381][ T5812] hsr_slave_1: entered promiscuous mode
[   58.381359][ T5812] debugfs: 'hsr0' already exists in 'hsr'
[   58.383131][ T5812] Cannot create hsr debugfs directory
[   58.714741][ T5808] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   58.727584][ T5808] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   58.735402][ T5808] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   58.748602][ T5808] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   58.795893][ T5817] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   58.802954][ T5817] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   58.808550][ T5817] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   58.815454][ T5817] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   58.879528][ T5812] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   58.890732][ T5812] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   58.896938][ T5812] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   58.904858][ T5812] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   58.975539][ T5808] 8021q: adding VLAN 0 to HW filter on device bond0
[   58.995139][ T5817] 8021q: adding VLAN 0 to HW filter on device bond0
[   59.021658][ T5808] 8021q: adding VLAN 0 to HW filter on device team0
[   59.038273][   T32] bridge0: port 1(bridge_slave_0) entered blocking state
[   59.041771][   T32] bridge0: port 1(bridge_slave_0) entered forwarding state
[   59.056859][   T32] bridge0: port 2(bridge_slave_1) entered blocking state
[   59.059920][   T32] bridge0: port 2(bridge_slave_1) entered forwarding state
[   59.065957][ T5817] 8021q: adding VLAN 0 to HW filter on device team0
[   59.088106][ T1091] bridge0: port 1(bridge_slave_0) entered blocking state
[   59.091145][ T1091] bridge0: port 1(bridge_slave_0) entered forwarding state
[   59.109104][   T32] bridge0: port 2(bridge_slave_1) entered blocking state
[   59.112519][   T32] bridge0: port 2(bridge_slave_1) entered forwarding state
[   59.149116][ T5808] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   59.154445][ T5808] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   59.170568][ T5812] 8021q: adding VLAN 0 to HW filter on device bond0
[   59.216973][ T5812] 8021q: adding VLAN 0 to HW filter on device team0
[   59.224222][ T5817] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   59.248744][ T1091] bridge0: port 1(bridge_slave_0) entered blocking state
[   59.251447][ T1091] bridge0: port 1(bridge_slave_0) entered forwarding state
[   59.272526][ T1091] bridge0: port 2(bridge_slave_1) entered blocking state
[   59.275665][ T1091] bridge0: port 2(bridge_slave_1) entered forwarding state
[   59.346273][ T5808] 8021q: adding VLAN 0 to HW filter on device batadv0
[   59.405394][ T5815] Bluetooth: hci0: command tx timeout
[   59.405403][   T56] Bluetooth: hci1: command tx timeout
[   59.411040][ T5199] Bluetooth: hci2: command tx timeout
[   59.434798][ T5808] veth0_vlan: entered promiscuous mode
[   59.446874][ T5808] veth1_vlan: entered promiscuous mode
[   59.489998][ T5817] 8021q: adding VLAN 0 to HW filter on device batadv0
[   59.511216][ T5808] veth0_macvtap: entered promiscuous mode
[   59.530289][ T5808] veth1_macvtap: entered promiscuous mode
[   59.541094][ T5812] 8021q: adding VLAN 0 to HW filter on device batadv0
[   59.570211][ T5808] batman_adv: batadv0: Interface activated: batadv_slave_0
[   59.590210][ T5808] batman_adv: batadv0: Interface activated: batadv_slave_1
[   59.599182][ T5817] veth0_vlan: entered promiscuous mode
[   59.615238][   T12] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   59.621851][   T12] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   59.628956][ T5817] veth1_vlan: entered promiscuous mode
[   59.636487][   T12] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   59.640434][   T12] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   59.691658][ T5812] veth0_vlan: entered promiscuous mode
[   59.717118][ T5817] veth0_macvtap: entered promiscuous mode
[   59.737610][ T5817] veth1_macvtap: entered promiscuous mode
[   59.760953][ T5812] veth1_vlan: entered promiscuous mode
[   59.776552][ T5817] batman_adv: batadv0: Interface activated: batadv_slave_0
[   59.791146][ T5817] batman_adv: batadv0: Interface activated: batadv_slave_1
[   59.796545][ T1091] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   59.813042][ T1091] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   59.847477][ T5823] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   59.851226][ T5823] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   59.851828][   T83] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   59.855164][ T5812] veth0_macvtap: entered promiscuous mode
[   59.857784][   T83] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   59.862637][ T5812] veth1_macvtap: entered promiscuous mode
[   59.870933][ T5823] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   59.878260][ T5823] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   59.941286][ T5812] batman_adv: batadv0: Interface activated: batadv_slave_0
[   59.955807][ T5812] batman_adv: batadv0: Interface activated: batadv_slave_1
[   59.976292][   T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   59.977303][ T5808] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   59.979839][   T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   59.994303][   T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   60.002069][   T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   60.020365][   T83] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   60.030694][   T83] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   60.090021][ T5876] loop2: detected capacity change from 0 to 512
[   60.090728][ T1091] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   60.095701][ T1091] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   60.107254][ T5876] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   60.111781][ T5876] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   60.128772][ T5876] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2853: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   60.137524][ T5876] EXT4-fs (loop2): 1 truncate cleaned up
[   60.140815][   T27] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   60.140906][ T5876] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   60.152875][   T27] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   60.188623][   T26] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   60.200073][   T26] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   60.212574][ T5808] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   60.319877][ T5889] loop2: detected capacity change from 0 to 8
[   60.322812][ T5889] =======================================================
[   60.322812][ T5889] WARNING: The mand mount option has been deprecated and
[   60.322812][ T5889]          and is ignored by this kernel. Remove the mand
[   60.322812][ T5889]          option from the mount to silence this warning.
[   60.322812][ T5889] =======================================================
[   60.343847][ T5889] MTD: Attempt to mount non-MTD device "/dev/loop2"
[   60.463918][ T5894] loop2: detected capacity change from 0 to 2048
[   60.474047][ T5894] UDF-fs: warning (device loop2): udf_load_vrs: No anchor found
[   60.476602][ T5894] UDF-fs: Scanning with blocksize 512 failed
[   60.496632][ T5894] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[   60.515868][   T34] audit: type=1800 audit(1764764030.408:2): pid=5894 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.9" name="file1" dev="loop2" ino=818 res=0 errno=0
[   60.540041][ T5900] comedi comedi0: board detection failed
[   60.608050][ T5906] netlink: 'syz.0.14': attribute type 6 has an invalid length.
[   60.781923][ T5920] netlink: 20 bytes leftover after parsing attributes in process `syz.1.21'.
[   61.484599][ T5199] Bluetooth: hci1: command tx timeout
[   61.488710][ T5815] Bluetooth: hci2: command tx timeout
[   61.488798][   T56] Bluetooth: hci0: command tx timeout
[   61.546073][ T5916] orangefs_mount: mount request failed with -4
[   61.729892][ T5941] netlink: 188 bytes leftover after parsing attributes in process `syz.2.30'.
[   62.583695][  T794] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[   62.798975][  T794] usb 2-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[   62.802811][  T794] usb 2-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[   62.818538][  T794] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 66
[   62.822012][  T794] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[   62.827343][  T794] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[   62.836658][  T794] usb 2-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[   62.840821][  T794] usb 2-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[   62.854626][  T794] usb 2-1: Product: syz
[   62.856454][  T794] usb 2-1: Manufacturer: syz
[   62.889670][  T794] cdc_wdm 2-1:1.0: skipping garbage
[   62.892752][  T794] cdc_wdm 2-1:1.0: skipping garbage
[   62.914279][  T794] cdc_wdm 2-1:1.0: cdc-wdm0: USB WDM device
[   62.916683][  T794] cdc_wdm 2-1:1.0: Unknown control protocol
[   63.031172][ T5982] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   63.166147][ T5990] Invalid logical block size (-3)
[   63.397027][ T5999] process 'syz.2.53' launched './file0' with NULL argv: empty string added
[   63.443754][    C1] cdc_wdm 2-1:1.0: wdm_int_callback - 0 bytes
[   63.563524][   T56] Bluetooth: hci1: command tx timeout
[   63.564345][ T5199] Bluetooth: hci2: command tx timeout
[   63.566316][   T56] Bluetooth: hci0: command tx timeout
[   63.869551][ T6012] loop0: detected capacity change from 0 to 256
[   63.873985][ T6012] exfat: Deprecated parameter 'namecase'
[   63.894758][ T6012] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x8d1bf2bd, utbl_chksum : 0xe619d30d)
[   65.345874][  T794] usb 2-1: USB disconnect, device number 2
[   65.422580][ T6038] IPv6: Can't replace route, no match found
[   65.529743][ T6047] loop1: detected capacity change from 0 to 256
[   65.535234][ T6047] exfat: Deprecated parameter 'utf8'
[   65.544182][ T5873] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[   65.547178][ T6047] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d)
[   65.643482][ T5199] Bluetooth: hci1: command tx timeout
[   65.643885][ T5815] Bluetooth: hci0: command tx timeout
[   65.645897][   T56] Bluetooth: hci2: command tx timeout
[   65.703311][ T5873] usb 1-1: Using ep0 maxpacket: 32
[   65.709890][ T5873] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 9
[   65.717528][ T5873] usb 1-1: New USB device found, idVendor=14c8, idProduct=0003, bcdDevice= 5.6c
[   65.721039][ T5873] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   65.726065][ T5873] usb 1-1: Product: syz
[   65.728083][ T5873] usb 1-1: Manufacturer: syz
[   65.730175][ T5873] usb 1-1: SerialNumber: syz
[   65.735427][ T5873] usb 1-1: config 0 descriptor??
[   65.738587][ T6034] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[   65.749188][ T5873] input: syz syz as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/input/input4
[   65.970715][ T5873] usb 1-1: USB disconnect, device number 2
[   65.974311][    C0] usbtouchscreen 1-1:0.0: usbtouch_irq - usb_submit_urb failed with result: -19
[   66.799650][ T6067] loop1: detected capacity change from 0 to 1024
[   66.848286][ T6067] hfsplus: bad catalog entry type
[   66.865957][   T26] hfsplus: b-tree write err: -5, ino 4
[   67.180415][ T6084] loop1: detected capacity change from 0 to 512
[   67.191635][ T6084] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   67.196310][ T6084] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[   67.198864][ T6084] System zones: 1-12
[   67.202113][ T6084] EXT4-fs (loop1): 1 truncate cleaned up
[   67.206641][ T6084] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   67.217135][   T34] audit: type=1800 audit(1764764037.108:3): pid=6084 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.89" name="file1" dev="loop1" ino=15 res=0 errno=0
[   67.333985][ T6084] loop1: detected capacity change from 512 to 0
[   67.344105][ T6084] EXT4-fs error (device loop1): ext4_get_inode_loc:4970: inode #18: block 9: comm syz.1.89: unable to read itable block
[   67.350041][ T6084] Buffer I/O error on dev loop1, logical block 1, lost sync page write
[   67.353946][ T6084] EXT4-fs (loop1): I/O error while writing superblock
[   67.357377][ T6084] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6313: IO failure
[   67.361562][ T6084] Buffer I/O error on dev loop1, logical block 1, lost sync page write
[   67.365194][ T6084] EXT4-fs (loop1): I/O error while writing superblock
[   67.368211][ T6084] EXT4-fs error (device loop1): ext4_dirty_inode:6517: inode #18: comm syz.1.89: mark_inode_dirty error
[   67.374639][ T6084] Buffer I/O error on dev loop1, logical block 1, lost sync page write
[   67.378366][ T6084] EXT4-fs (loop1): I/O error while writing superblock
[   67.386884][   T34] audit: type=1800 audit(1764764037.278:4): pid=6084 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.89" name="file1" dev="loop1" ino=15 res=0 errno=0
[   67.416550][ T5817] EXT4-fs error (device loop1): ext4_readdir:264: inode #2: block 13: comm syz-executor: path /31/file2: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[   67.429441][ T5817] Buffer I/O error on dev loop1, logical block 1, lost sync page write
[   67.433059][ T5817] EXT4-fs (loop1): I/O error while writing superblock
[   67.456063][ T2255] EXT4-fs warning (device loop1): ext4_end_bio:372: I/O error 10 writing to inode 15 starting block 254)
[   67.461483][ T2255] Buffer I/O error on device loop1, logical block 254
[   67.463713][ T2255] Buffer I/O error on device loop1, logical block 255
[   67.467115][ T2255] EXT4-fs error (device loop1): __ext4_get_inode_loc_noinmem:4955: inode #15: block 8: comm kworker/u9:4: unable to read itable block
[   67.471460][ T2255] Buffer I/O error on dev loop1, logical block 1, lost sync page write
[   67.474665][ T2255] EXT4-fs (loop1): I/O error while writing superblock
[   67.477422][ T2255] EXT4-fs error (device loop1): __ext4_get_inode_loc_noinmem:4955: inode #18: block 9: comm kworker/u9:4: unable to read itable block
[   67.482775][ T2255] Buffer I/O error on dev loop1, logical block 1, lost sync page write
[   67.485747][ T2255] EXT4-fs (loop1): I/O error while writing superblock
[   67.492214][ T5817] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   67.507827][ T5817] Buffer I/O error on dev loop1, logical block 1, lost sync page write
[   67.510878][ T5817] EXT4-fs (loop1): I/O error while writing superblock
[   67.789945][ T5823] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   67.870099][ T5823] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   67.972273][ T5823] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   68.003612][ T5815] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   68.008618][ T5815] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   68.012486][ T5815] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   68.019598][ T5815] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   68.024187][ T5815] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   68.073421][ T5823] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   68.229798][ T5823] bridge_slave_1: left allmulticast mode
[   68.232020][ T5823] bridge_slave_1: left promiscuous mode
[   68.234802][  T794] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[   68.239042][ T5823] bridge0: port 2(bridge_slave_1) entered disabled state
[   68.247034][ T5823] bridge_slave_0: left allmulticast mode
[   68.248953][ T5823] bridge_slave_0: left promiscuous mode
[   68.250956][ T5823] bridge0: port 1(bridge_slave_0) entered disabled state
[   68.383390][  T794] usb 3-1: Using ep0 maxpacket: 32
[   68.390986][  T794] usb 3-1: New USB device found, idVendor=041e, idProduct=403c, bcdDevice=cc.d7
[   68.403158][  T794] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   68.407235][  T794] usb 3-1: config 0 descriptor??
[   68.415429][  T794] gspca_main: sq930x-2.14.0 probing 041e:403c
[   68.486583][ T5823] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   68.494376][ T5823] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   68.499847][ T5823] bond0 (unregistering): Released all slaves
[   68.591318][ T6110] chnl_net:caif_netlink_parms(): no params data found
[   68.772492][ T6110] bridge0: port 1(bridge_slave_0) entered blocking state
[   68.776620][ T6110] bridge0: port 1(bridge_slave_0) entered disabled state
[   68.779590][ T6110] bridge_slave_0: entered allmulticast mode
[   68.786863][ T6110] bridge_slave_0: entered promiscuous mode
[   68.791950][ T6110] bridge0: port 2(bridge_slave_1) entered blocking state
[   68.795078][ T6110] bridge0: port 2(bridge_slave_1) entered disabled state
[   68.798285][ T6110] bridge_slave_1: entered allmulticast mode
[   68.802285][ T6110] bridge_slave_1: entered promiscuous mode
[   68.848524][ T6110] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   68.854861][ T6110] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   68.922863][ T5823] hsr_slave_0: left promiscuous mode
[   68.926862][ T5823] hsr_slave_1: left promiscuous mode
[   68.929351][ T5823] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   68.932673][ T5823] batman_adv: batadv0: Removing interface: batadv_slave_0
[   68.939127][ T5823] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   68.942252][ T5823] batman_adv: batadv0: Removing interface: batadv_slave_1
[   68.967128][ T5823] veth1_macvtap: left promiscuous mode
[   68.969676][ T5823] veth0_macvtap: left promiscuous mode
[   68.972173][ T5823] veth1_vlan: left promiscuous mode
[   68.975163][ T5823] veth0_vlan: left promiscuous mode
[   69.064188][  T794] gspca_sq930x: reg_w 0305 fd00 failed -71
[   69.067433][  T794] sq930x 3-1:0.0: probe with driver sq930x failed with error -71
[   69.081924][  T794] usb 3-1: USB disconnect, device number 2
[   69.492871][ T5823] team0 (unregistering): Port device team_slave_1 removed
[   69.524474][ T5823] team0 (unregistering): Port device team_slave_0 removed
[   69.609242][ T6143] loop2: detected capacity change from 0 to 256
[   69.611566][ T6143] exfat: Deprecated parameter 'utf8'
[   69.615334][ T6143] exfat: Deprecated parameter 'namecase'
[   69.620610][ T6143] exfat: Deprecated parameter 'namecase'
[   69.631026][ T6143] exfat: Deprecated parameter 'utf8'
[   69.637693][ T6143] exFAT-fs (loop2): failed to load upcase table (idx : 0x00012153, chksum : 0xc9bffad0, utbl_chksum : 0xe619d30d)
[   69.747340][ T6147] loop2: detected capacity change from 0 to 4096
[   70.001593][ T6110] team0: Port device team_slave_0 added
[   70.019242][ T6110] team0: Port device team_slave_1 added
[   70.043829][   T56] Bluetooth: hci2: command tx timeout
[   70.073027][ T6110] batman_adv: batadv0: Adding interface: batadv_slave_0
[   70.076807][ T6110] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   70.092957][ T6110] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   70.100330][ T6110] batman_adv: batadv0: Adding interface: batadv_slave_1
[   70.102523][ T6110] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   70.114566][ T6110] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   70.197049][ T6110] hsr_slave_0: entered promiscuous mode
[   70.210947][ T6110] hsr_slave_1: entered promiscuous mode
[   70.460142][ T6176] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   70.462689][ T6176] batman_adv: batadv0: Removing interface: batadv_slave_0
[   70.467585][ T6176] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   70.470164][ T6176] batman_adv: batadv0: Removing interface: batadv_slave_1
[   70.496095][ T6110] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   70.506264][ T6110] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   70.510751][ T6110] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   70.518631][ T6110] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   70.591104][ T6110] 8021q: adding VLAN 0 to HW filter on device bond0
[   70.615193][ T6110] 8021q: adding VLAN 0 to HW filter on device team0
[   70.631028][   T83] bridge0: port 1(bridge_slave_0) entered blocking state
[   70.633299][   T83] bridge0: port 1(bridge_slave_0) entered forwarding state
[   70.646489][   T83] bridge0: port 2(bridge_slave_1) entered blocking state
[   70.648824][   T83] bridge0: port 2(bridge_slave_1) entered forwarding state
[   70.680781][ T6110] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   70.689046][ T6189] loop0: detected capacity change from 0 to 4096
[   70.690832][ T6110] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   70.700122][ T6189] ntfs3(loop0): Different NTFS sector size (1024) and media sector size (512).
[   70.718645][ T6189] ntfs3(loop0): ino=3, mi_enum_attr
[   70.747693][ T6189] ntfs3(loop0): Failed to initialize $Extend/$Reparse.
[   70.755788][ T6189] ntfs3(loop0): ino=5, mi_enum_attr
[   70.762141][ T6189] ntfs3(loop0): Failed to load root (-22).
[   70.787488][ T6110] 8021q: adding VLAN 0 to HW filter on device batadv0
[   70.836943][ T6110] veth0_vlan: entered promiscuous mode
[   70.842497][ T6110] veth1_vlan: entered promiscuous mode
[   70.915282][ T6110] veth0_macvtap: entered promiscuous mode
[   70.925451][ T6110] veth1_macvtap: entered promiscuous mode
[   70.960017][ T6110] batman_adv: batadv0: Interface activated: batadv_slave_0
[   70.976375][ T6110] batman_adv: batadv0: Interface activated: batadv_slave_1
[   70.987531][   T12] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   71.001767][   T12] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   71.006312][   T12] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   71.028035][   T12] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   71.119288][ T6216] loop0: detected capacity change from 0 to 512
[   71.126218][   T26] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   71.128816][   T26] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   71.170802][   T26] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   71.173499][   T26] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   71.490363][ T6223] capability: warning: `syz.3.98' uses deprecated v2 capabilities in a way that may be insecure
[   71.647612][ T1361] ieee802154 phy0 wpan0: encryption failed: -22
[   71.650067][ T1361] ieee802154 phy1 wpan1: encryption failed: -22
[   72.123416][   T56] Bluetooth: hci2: command tx timeout
[   72.136415][ T6247] loop2: detected capacity change from 0 to 512
[   72.166333][ T6247] EXT4-fs: Ignoring removed orlov option
[   72.173145][ T6248] loop3: detected capacity change from 0 to 512
[   72.212242][ T6247] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   72.249660][ T6252] loop0: detected capacity change from 0 to 1024
[   72.259625][ T6248] EXT4-fs (loop3): 1 truncate cleaned up
[   72.262612][ T6248] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   72.267938][ T6247] EXT4-fs (loop2): orphan cleanup on readonly fs
[   72.305569][ T6247] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.140: bg 0: block 248: padding at end of block bitmap is not set
[   72.330395][ T6247] Quota error (device loop2): write_blk: dquota write failed
[   72.338121][ T6247] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[   72.361125][ T6247] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.140: Failed to acquire dquot type 1
[   72.396735][ T6247] EXT4-fs (loop2): 1 truncate cleaned up
[   72.418037][ T6247] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   72.454874][ T6247] EXT4-fs: Ignoring removed orlov option
[   72.461107][ T6247] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   72.471016][ T6247] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[   72.485559][ T6247] EXT4-fs error (device loop2): __ext4_remount:6748: comm syz.2.140: Abort forced by user
[   72.489528][ T6247] EXT4-fs (loop2): Remounting filesystem read-only
[   72.491837][ T6247] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[   72.498200][ T6247] ext4 filesystem being remounted at /41/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   72.522961][ T5808] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.714792][  T119] usb 1-1: new full-speed USB device number 3 using dummy_hcd
[   72.801428][ T6110] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.878833][  T119] usb 1-1: config 0 has an invalid interface number: 207 but max is 0
[   72.882305][  T119] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   72.896893][  T119] usb 1-1: config 0 has no interface number 0
[   72.905962][  T119] usb 1-1: New USB device found, idVendor=12d1, idProduct=ed56, bcdDevice=46.dd
[   72.909734][  T119] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   72.914232][ T6262] loop2: detected capacity change from 0 to 32768
[   72.926034][  T119] usb 1-1: Product: syz
[   72.927622][  T119] usb 1-1: Manufacturer: syz
[   72.929650][  T119] usb 1-1: SerialNumber: syz
[   72.954409][  T119] usb 1-1: config 0 descriptor??
[   72.958511][ T6262] ocfs2: Slot 0 on device (7,2) was already allocated to this node!
[   72.977588][  T119] qmi_wwan 1-1:0.207: probe with driver qmi_wwan failed with error -22
[   72.981367][ T6262] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[   73.059937][ T5808] ocfs2: Unmounting device (7,2) on (node local)
[   73.158785][ T6270] loop3: detected capacity change from 0 to 8
[   73.183462][  T119] usb 1-1: USB disconnect, device number 3
[   73.196806][ T6270] SQUASHFS error: zlib decompression failed, data probably corrupt
[   73.200647][ T6270] SQUASHFS error: Failed to read block 0x9b: -5
[   73.214141][ T6270] SQUASHFS error: Unable to read metadata cache entry [99]
[   73.217245][ T6270] SQUASHFS error: Unable to read inode 0x127
[   73.877865][ T6300] loop2: detected capacity change from 0 to 64
[   73.996664][ T6304] macvtap0: entered promiscuous mode
[   73.999313][ T6304] macvtap0: left promiscuous mode
[   74.139717][ T6306] netlink: set zone limit has 4 unknown bytes
[   74.205688][   T56] Bluetooth: hci2: command tx timeout
[   74.261978][ T6310] loop2: detected capacity change from 0 to 256
[   74.289484][ T6310] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x2e76b09e, utbl_chksum : 0xe619d30d)
[   74.617310][ T6316] loop3: detected capacity change from 0 to 128
[   74.656307][ T6316] netlink: 48 bytes leftover after parsing attributes in process `syz.3.165'.
[   74.683389][   T24] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[   74.853634][   T24] usb 3-1: Using ep0 maxpacket: 16
[   74.858783][   T24] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7
[   74.862950][   T24] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[   74.869312][   T24] usb 3-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[   74.874958][   T24] usb 3-1: config 1 interface 2 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[   74.881656][   T24] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[   74.886624][   T24] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   74.889918][   T24] usb 3-1: Product: syz
[   74.891184][   T24] usb 3-1: Manufacturer: syz
[   74.892630][   T24] usb 3-1: SerialNumber: syz
[   74.944372][ T6330] mmap: syz.3.172 (6330) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   75.159413][   T24] usb 3-1: USB disconnect, device number 3
[   75.196729][ T5811] udevd[5811]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[   76.245441][ T6366] loop0: detected capacity change from 0 to 256
[   76.259201][ T6366] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   76.295765][   T56] Bluetooth: hci2: command tx timeout
[   76.753335][ T6374] loop0: detected capacity change from 0 to 512
[   76.770106][ T6374] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   76.793704][ T6374] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[   76.799238][ T6374] ext4 filesystem being mounted at /66/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   76.826369][ T5812] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[   76.890356][ T6386] netlink: 136 bytes leftover after parsing attributes in process `syz.3.191'.
[   76.981786][ T6395] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   76.985480][ T6395] batadv_slave_0: entered promiscuous mode
[   76.987315][ T6395] batadv_slave_0: entered allmulticast mode
[   77.167397][ T6400] netlink: 20 bytes leftover after parsing attributes in process `syz.2.198'.
[   77.739555][ T6426] netlink: 12 bytes leftover after parsing attributes in process `syz.3.209'.
[   78.094917][ T6455] sock: sock_timestamping_bind_phc: sock not bind to device
[   78.172275][ T6461] netlink: 'syz.3.225': attribute type 9 has an invalid length.
[   78.176261][ T6461] netlink: 'syz.3.225': attribute type 6 has an invalid length.
[   79.006988][ T6488] loop2: detected capacity change from 0 to 512
[   79.010228][ T6488] EXT4-fs: Ignoring removed nomblk_io_submit option
[   79.025472][ T6488] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   79.028935][ T6488] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[   79.066617][ T6488] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4193: comm syz.2.237: Allocating blocks 41-42 which overlap fs metadata
[   79.076086][ T6488] EXT4-fs (loop2): Remounting filesystem read-only
[   79.078411][ T6488] Quota error (device loop2): write_blk: dquota write failed
[   79.080653][ T6488] Quota error (device loop2): find_free_dqentry: Can't write quota data block 5
[   79.084289][ T6488] Quota error (device loop2): write_blk: dquota write failed
[   79.087115][ T6488] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[   79.088171][ T6491] loop0: detected capacity change from 0 to 4096
[   79.090498][ T6488] EXT4-fs (loop2): 1 truncate cleaned up
[   79.095054][ T6491] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512).
[   79.105119][ T6488] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   79.116087][ T6491] ntfs3(loop0): ino=19, mi_enum_attr
[   79.125489][ T6491] ntfs3(loop0): failed to convert "c46c" to cp850
[   79.134395][ T6491] ntfs3(loop0): ino=20, mi_enum_attr
[   79.142340][ T5808] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.562617][ T6501] loop0: detected capacity change from 0 to 512
[   79.566074][ T6501] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   79.587633][ T6501] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   79.593849][ T6501] ext4 filesystem being mounted at /76/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   79.615212][ T5812] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.789978][ T6510] loop0: detected capacity change from 0 to 32768
[   79.824262][ T6510] ocfs2: Slot 0 on device (7,0) was already allocated to this node!
[   79.835335][ T6510] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   79.875355][ T5812] ocfs2: Unmounting device (7,0) on (node local)
[   80.009884][ T6518] netlink: 8 bytes leftover after parsing attributes in process `syz.0.247'.
[   80.306419][ T6542] loop2: detected capacity change from 0 to 1024
[   80.333861][ T6542] hfsplus: bad catalog entry type
[   80.362838][ T1225] hfsplus: b-tree write err: -5, ino 4
[   80.461375][ T6539] loop0: detected capacity change from 0 to 32768
[   80.476151][   T34] audit: type=1800 audit(1764764050.368:5): pid=6539 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.257" name="bus" dev="loop0" ino=7 res=0 errno=0
[   80.584684][ T6561] syz.0.266 uses obsolete (PF_INET,SOCK_PACKET)
[   80.679526][ T6565] loop0: detected capacity change from 0 to 8
[   80.689984][ T6565] SQUASHFS error: Unable to read inode 0x11f
[   81.342133][   T34] audit: type=1326 audit(1764764051.228:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6604 comm="syz.2.290" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c1858f7c9 code=0x7ffc0000
[   81.373121][   T34] audit: type=1326 audit(1764764051.228:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6604 comm="syz.2.290" exe="/syz-executor" sig=0 arch=c000003e syscall=290 compat=0 ip=0x7f4c1858f7c9 code=0x7ffc0000
[   81.382211][   T34] audit: type=1326 audit(1764764051.228:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6604 comm="syz.2.290" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c1858f7c9 code=0x7ffc0000
[   81.522745][ T6613] Illegal XDP return value 119181368 on prog  (id 40) dev N/A, expect packet loss!
[   81.895334][   T33] cfg80211: failed to load regulatory.db
[   81.937569][ T6630] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   83.123836][ T6674] loop2: detected capacity change from 0 to 512
[   83.148035][ T6674] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   83.169710][ T6674] ext4 filesystem being mounted at /87/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   83.187943][ T6681] loop0: detected capacity change from 0 to 2048
[   83.198590][ T5808] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.240714][ T6681] UDF-fs: warning (device loop0): udf_fill_super: No fileset found
[   84.647857][ T6749] hpfs: Bad value for 'gid'
[   84.649767][ T6749] hpfs: Bad value for 'gid'
[   84.917231][ T6759] loop2: detected capacity change from 0 to 8192
[   84.954148][ T6762] netlink: 16 bytes leftover after parsing attributes in process `syz.0.341'.
[   85.240245][ T6769] loop2: detected capacity change from 0 to 256
[   85.248842][ T6769] exfat: Deprecated parameter 'utf8'
[   85.259008][ T6769] exfat: Deprecated parameter 'namecase'
[   85.271127][ T6769] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x8b6193f0, utbl_chksum : 0xe619d30d)
[   86.113365][    T9] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[   86.263345][    T9] usb 1-1: Using ep0 maxpacket: 32
[   86.267298][    T9] usb 1-1: config 4 has an invalid interface number: 128 but max is 0
[   86.271342][    T9] usb 1-1: config 4 has no interface number 0
[   86.274188][    T9] usb 1-1: config 4 interface 128 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   86.278428][    T9] usb 1-1: config 4 interface 128 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   86.282320][    T9] usb 1-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[   86.293266][    T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   86.301748][    T9] hub 1-1:4.128: USB hub found
[   86.445133][ T6812] loop2: detected capacity change from 0 to 512
[   86.474751][ T6812] EXT4-fs (loop2): 1 truncate cleaned up
[   86.579649][ T6812] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   86.624505][    T9] hub 1-1:4.128: 2 ports detected
[   86.626102][    T9] hub 1-1:4.128: Using single TT (err -22)
[   86.659436][ T5808] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.828952][    T9] hub 1-1:4.128: hub_hub_status failed (err = -71)
[   86.831031][    T9] hub 1-1:4.128: config failed, can't get hub status (err -71)
[   86.865945][    T9] usb 1-1: USB disconnect, device number 4
[   87.040435][ T6827] loop2: detected capacity change from 0 to 32768
[   87.060557][ T6827] XFS (loop2): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[   87.075024][ T6827] XFS (loop2): Ending clean mount
[   87.081972][ T6827] XFS (loop2): Quotacheck needed: Please wait.
[   87.107911][ T6827] XFS (loop2): Quotacheck: Done.
[   87.124877][ T5808] XFS (loop2): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[   87.248502][ T6837] loop2: detected capacity change from 0 to 256
[   87.252026][ T6837] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   87.424555][ T6846] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   87.526036][ T6852] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[   87.572797][ T5860] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[   87.726785][ T5860] usb 3-1: Using ep0 maxpacket: 32
[   87.744915][ T5860] usb 3-1: New USB device found, idVendor=09fb, idProduct=ebbe, bcdDevice=ea.fe
[   87.748394][ T5860] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   87.751903][ T5860] usb 3-1: Product: syz
[   87.754695][ T5860] usb 3-1: Manufacturer: syz
[   87.764248][ T5860] usb 3-1: SerialNumber: syz
[   87.768879][ T5860] usb 3-1: config 0 descriptor??
[   87.978123][ T5860] usb 3-1: USB disconnect, device number 4
[   88.143781][   T34] audit: type=1326 audit(1764764058.038:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6873 comm="syz.3.389" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb68f8f7c9 code=0x7ffc0000
[   88.152890][   T34] audit: type=1326 audit(1764764058.038:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6873 comm="syz.3.389" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb68f8f7c9 code=0x7ffc0000
[   88.164411][   T34] audit: type=1326 audit(1764764058.038:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6873 comm="syz.3.389" exe="/syz-executor" sig=0 arch=c000003e syscall=23 compat=0 ip=0x7fbb68f8f7c9 code=0x7ffc0000
[   88.174675][   T34] audit: type=1326 audit(1764764058.038:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6873 comm="syz.3.389" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb68f8f7c9 code=0x7ffc0000
[   88.186313][   T34] audit: type=1326 audit(1764764058.038:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6873 comm="syz.3.389" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb68f8f7c9 code=0x7ffc0000
[   89.092512][    C0] vcan0: j1939_tp_rxtimer: 0xffff888115592400: rx timeout, send abort
[   89.096367][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff888115592400: 0x40000: (3) A timeout occurred and this is the connection abort to close the session.
[   89.318761][ T6908] netlink: 20 bytes leftover after parsing attributes in process `syz.2.402'.
[   89.322356][ T6908] netlink: 20 bytes leftover after parsing attributes in process `syz.2.402'.
[   90.176792][ T6934] overlayfs: failed to clone upperpath
[   90.676605][ T6942] loop0: detected capacity change from 0 to 1024
[   91.025727][ T6957] atomic_op ffff88811664f998 conn xmit_atomic 0000000000000000
[   91.120378][ T6967] No such timeout policy "syz1"
[   91.265427][   T32] hfsplus: b-tree write err: -5, ino 4
[   91.459041][ T6972] netlink: 8 bytes leftover after parsing attributes in process `syz.3.426'.
[   91.520515][ T6978] loop0: detected capacity change from 0 to 128
[   91.529417][ T6978] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   91.543506][ T6978] ext4 filesystem being mounted at /136/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   91.574461][ T5812] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   91.766279][ T6990] netlink: 4 bytes leftover after parsing attributes in process `syz.3.434'.
[   91.776840][ T6984] loop0: detected capacity change from 0 to 40427
[   91.783380][ T6984] F2FS-fs (loop0): Mismatch start address, segment0(4244636160) cp_blkaddr(512)
[   91.787939][ T6984] F2FS-fs (loop0): Can't find valid F2FS filesystem in 2th superblock
[   91.800875][ T6984] F2FS-fs (loop0): invalid crc value
[   91.847559][ T6984] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[   91.857846][ T6984] F2FS-fs (loop0): Try to recover 2th superblock, ret: 0
[   91.860344][ T6984] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[   91.894050][ T5812] syz-executor: attempt to access beyond end of device
[   91.894050][ T5812] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   91.902806][ T5812] CPU: 0 UID: 0 PID: 5812 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[   91.902819][ T5812] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[   91.902823][ T5812] Call Trace:
[   91.902827][ T5812]  <TASK>
[   91.902830][ T5812]  dump_stack_lvl+0x189/0x250
[   91.902845][ T5812]  ? __pfx_dump_stack_lvl+0x10/0x10
[   91.902854][ T5812]  ? __pfx_queue_work_on+0x10/0x10
[   91.902861][ T5812]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[   91.902871][ T5812]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   91.902884][ T5812]  f2fs_handle_critical_error+0x37c/0x540
[   91.902897][ T5812]  f2fs_write_end_io+0x886/0xb60
[   91.902911][ T5812]  __submit_merged_bio+0x27a/0x6a0
[   91.902924][ T5812]  __submit_merged_write_cond+0x255/0x530
[   91.902936][ T5812]  f2fs_write_data_pages+0x261d/0x3000
[   91.902955][ T5812]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[   91.902978][ T5812]  ? check_path+0x21/0x40
[   91.902986][ T5812]  ? check_noncircular+0xe0/0x160
[   91.903018][ T5812]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[   91.903025][ T5812]  do_writepages+0x32e/0x550
[   91.903038][ T5812]  ? do_raw_spin_unlock+0x4d/0x240
[   91.903048][ T5812]  filemap_fdatawrite+0x199/0x240
[   91.903057][ T5812]  ? __pfx_filemap_fdatawrite+0x10/0x10
[   91.903082][ T5812]  ? do_raw_spin_unlock+0x4d/0x240
[   91.903092][ T5812]  f2fs_sync_dirty_inodes+0x31f/0x830
[   91.903105][ T5812]  f2fs_write_checkpoint+0x93e/0x2440
[   91.903112][ T5812]  ? __lock_acquire+0xab9/0xd20
[   91.903129][ T5812]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[   91.903156][ T5812]  kill_f2fs_super+0x2cc/0x6d0
[   91.903183][ T5812]  ? __pfx_kill_f2fs_super+0x10/0x10
[   91.903199][ T5812]  ? shrinker_free+0x2ce/0x3e0
[   91.903207][ T5812]  deactivate_locked_super+0xbc/0x130
[   91.903217][ T5812]  cleanup_mnt+0x425/0x4c0
[   91.903226][ T5812]  ? lockdep_hardirqs_on+0x9c/0x150
[   91.903237][ T5812]  task_work_run+0x1d4/0x260
[   91.903248][ T5812]  ? __pfx_task_work_run+0x10/0x10
[   91.903256][ T5812]  ? __x64_sys_umount+0x122/0x160
[   91.903266][ T5812]  ? exit_to_user_mode_loop+0x40/0x130
[   91.903274][ T5812]  exit_to_user_mode_loop+0xe9/0x130
[   91.903280][ T5812]  do_syscall_64+0x2bd/0xfa0
[   91.903290][ T5812]  ? lockdep_hardirqs_on+0x9c/0x150
[   91.903299][ T5812]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   91.903305][ T5812]  ? exc_page_fault+0xab/0x100
[   91.903315][ T5812]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   91.903321][ T5812] RIP: 0033:0x7fb6cc990af7
[   91.903329][ T5812] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[   91.903334][ T5812] RSP: 002b:00007ffcf0764658 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[   91.903342][ T5812] RAX: 0000000000000000 RBX: 00007fb6cc9ee72f RCX: 00007fb6cc990af7
[   91.903347][ T5812] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffcf0764710
[   91.903351][ T5812] RBP: 00007ffcf0764710 R08: 0000000000000000 R09: 0000000000000000
[   91.903354][ T5812] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffcf07657a0
[   91.903358][ T5812] R13: 00007fb6cc9ee72f R14: 0000000000016667 R15: 00007ffcf07657e0
[   91.903370][ T5812]  </TASK>
[   91.958834][ T7000] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   91.964864][ T5812] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[   92.046503][ T7002] loop2: detected capacity change from 0 to 64
[   92.066274][ T7002] BFS-fs: bfs_fill_super(): loop2 is unclean, continuing
[   92.149164][ T7007] netlink: 12 bytes leftover after parsing attributes in process `syz.3.441'.
[   92.240088][ T7007] bond1: entered allmulticast mode
[   92.256126][ T7007] 8021q: adding VLAN 0 to HW filter on device bond1
[   92.295894][ T7010] 8021q: adding VLAN 0 to HW filter on device bond2
[   92.299925][ T7010] bond2: entered allmulticast mode
[   92.303794][ T7010] bond1: (slave bond2): Enslaving as an active interface with an up link
[   92.402438][ T7016] loop0: detected capacity change from 0 to 128
[   92.424508][ T7016] adfs: Bad value for 'gid'
[   92.434048][ T7016] adfs: Bad value for 'gid'
[   92.552074][ T7020] loop0: detected capacity change from 0 to 736
[   92.775850][ T7035] netlink: 144 bytes leftover after parsing attributes in process `syz.0.451'.
[   92.866222][ T7039] loop0: detected capacity change from 0 to 256
[   92.877874][ T7039] FAT-fs (loop0): Directory bread(block 64) failed
[   92.879920][ T7039] FAT-fs (loop0): Directory bread(block 65) failed
[   92.882018][ T7039] FAT-fs (loop0): Directory bread(block 66) failed
[   92.884430][ T7039] FAT-fs (loop0): Directory bread(block 67) failed
[   92.886709][ T7039] FAT-fs (loop0): Directory bread(block 68) failed
[   92.888837][ T7039] FAT-fs (loop0): Directory bread(block 69) failed
[   92.891002][ T7039] FAT-fs (loop0): Directory bread(block 70) failed
[   92.894018][ T7039] FAT-fs (loop0): Directory bread(block 71) failed
[   92.896773][ T7039] FAT-fs (loop0): Directory bread(block 72) failed
[   92.899126][ T7039] FAT-fs (loop0): Directory bread(block 73) failed
[   93.526752][ T7075] loop2: detected capacity change from 0 to 256
[   93.563942][ T7075] FAT-fs (loop2): Directory bread(block 64) failed
[   93.585422][ T7075] FAT-fs (loop2): Directory bread(block 65) failed
[   93.588924][ T7075] FAT-fs (loop2): Directory bread(block 66) failed
[   93.591919][ T7075] FAT-fs (loop2): Directory bread(block 67) failed
[   93.596044][ T7075] FAT-fs (loop2): Directory bread(block 68) failed
[   93.598532][ T7075] FAT-fs (loop2): Directory bread(block 69) failed
[   93.600912][ T7075] FAT-fs (loop2): Directory bread(block 70) failed
[   93.603309][ T7075] FAT-fs (loop2): Directory bread(block 71) failed
[   93.605304][ T7075] FAT-fs (loop2): Directory bread(block 72) failed
[   93.611751][ T7075] FAT-fs (loop2): Directory bread(block 73) failed
[   94.197806][ T7103] loop2: detected capacity change from 0 to 512
[   94.203307][ T7103] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   94.229859][ T7103] EXT4-fs error (device loop2): ext4_iget_extra_inode:5075: inode #17: comm syz.2.484: corrupted in-inode xattr: invalid size in ea xattr
[   94.237946][ T7103] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.484: couldn't read orphan inode 17 (err -117)
[   94.243664][ T7103] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   94.250439][ T7103] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[   94.281029][ T5808] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   94.367396][   T34] audit: type=1326 audit(1764764064.258:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7112 comm="syz.2.487" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c1858f7c9 code=0x7ffc0000
[   94.383350][   T34] audit: type=1326 audit(1764764064.258:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7112 comm="syz.2.487" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c1858f7c9 code=0x7ffc0000
[   94.405729][   T34] audit: type=1326 audit(1764764064.258:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7112 comm="syz.2.487" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c1858f7c9 code=0x7ffc0000
[   94.417791][   T34] audit: type=1326 audit(1764764064.258:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7112 comm="syz.2.487" exe="/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4c1858f7c9 code=0x7ffc0000
[   94.433753][   T34] audit: type=1326 audit(1764764064.258:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7112 comm="syz.2.487" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c1858f7c9 code=0x7ffc0000
[   94.450990][   T34] audit: type=1326 audit(1764764064.258:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7112 comm="syz.2.487" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c1858f7c9 code=0x7ffc0000
[   94.490795][   T34] audit: type=1326 audit(1764764064.258:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7112 comm="syz.2.487" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c1858f7c9 code=0x7ffc0000
[   94.498538][   T34] audit: type=1326 audit(1764764064.258:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7112 comm="syz.2.487" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c1858f7c9 code=0x7ffc0000
[   94.508803][   T34] audit: type=1326 audit(1764764064.258:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7112 comm="syz.2.487" exe="/syz-executor" sig=0 arch=c000003e syscall=280 compat=0 ip=0x7f4c1858f7c9 code=0x7ffc0000
[   94.519588][   T34] audit: type=1326 audit(1764764064.258:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7112 comm="syz.2.487" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c1858f7c9 code=0x7ffc0000
[   94.957349][ T7149] loop2: detected capacity change from 0 to 512
[   95.001678][ T7149] EXT4-fs error (device loop2): ext4_orphan_get:1392: inode #15: comm syz.2.502: iget: bad i_size value: 38620345925642
[   95.007476][ T7149] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.502: couldn't read orphan inode 15 (err -117)
[   95.012820][ T7149] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   95.129723][ T7161] netlink: 16 bytes leftover after parsing attributes in process `syz.3.506'.
[   95.133034][ T7161] netlink: 4 bytes leftover after parsing attributes in process `syz.3.506'.
[   95.226456][ T7164] EXT4-fs error (device loop2): ext4_validate_block_bitmap:432: comm syz.2.502: bg 0: block 5: invalid block bitmap
[   95.238340][ T7164] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[   95.243063][ T7164] EXT4-fs (loop2): This should not happen!! Data will be lost
[   95.243063][ T7164] 
[   95.246877][ T7164] EXT4-fs (loop2): Total free blocks count 0
[   95.248775][ T7164] EXT4-fs (loop2): Free/Dirty block details
[   95.250811][ T7164] EXT4-fs (loop2): free_blocks=0
[   95.253139][ T7164] EXT4-fs (loop2): dirty_blocks=1
[   95.255508][ T7164] EXT4-fs (loop2): Block reservation details
[   95.258186][ T7164] EXT4-fs (loop2): i_reserved_data_blocks=1
[   95.964406][ T7181] overlayfs: "xino" feature enabled using 3 upper inode bits.
[   95.969347][ T7181] overlayfs: "xino" feature enabled using 3 upper inode bits.
[   96.748311][ T5808] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.899258][ T7185] loop2: detected capacity change from 0 to 4096
[   96.902688][ T7185] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512).
[   97.588226][ T7201] loop2: detected capacity change from 0 to 32768
[   97.663709][ T7218] IPv6: NLM_F_CREATE should be specified when creating new route
[   97.670264][ T7218] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   97.673061][ T7218] IPv6: NLM_F_CREATE should be set when creating new route
[   97.675474][ T7218] IPv6: NLM_F_CREATE should be set when creating new route
[   97.677781][ T7218] IPv6: NLM_F_CREATE should be set when creating new route
[   97.682516][ T7218] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   97.688390][ T7218] Zero length message leads to an empty skb
[   97.975755][ T7224] loop2: detected capacity change from 0 to 32768
[   97.981745][ T7232] netlink: 8 bytes leftover after parsing attributes in process `syz.3.537'.
[   97.990337][ T7224] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.532 (7224)
[   98.022468][ T7224] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   98.028011][ T7224] BTRFS info (device loop2): using crc32c (crc32c-lib) checksum algorithm
[   98.047465][ T7239] netlink: 104 bytes leftover after parsing attributes in process `syz.3.539'.
[   98.167769][ T7224] BTRFS info (device loop2): setting nodatasum
[   98.169813][ T7224] BTRFS info (device loop2): allowing degraded mounts
[   98.171931][ T7224] BTRFS info (device loop2): disabling tree log
[   98.178509][ T7224] BTRFS info (device loop2): turning on async discard
[   98.180770][ T7224] BTRFS info (device loop2): enabling free space tree
[   98.895340][ T5808] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   99.275283][ T7280] loop2: detected capacity change from 0 to 128
[   99.292247][ T7281] input: syz0 as /devices/virtual/input/input5
[   99.301057][ T7280] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   99.305709][ T7280] ext4 filesystem being mounted at /150/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   99.358414][ T5808] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   99.448273][ T7289] wireguard0: entered promiscuous mode
[   99.450707][ T7289] wireguard0: entered allmulticast mode
[   99.453561][ T7289] team0: Device wireguard0 is of different type
[  100.046932][ T7295] loop2: detected capacity change from 0 to 4096
[  100.074659][ T7295] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512).
[  100.110969][ T7295] ntfs3(loop2): Mark volume as dirty due to NTFS errors
[  100.121376][ T7295] ntfs3(loop2): ino=19, mi_enum_attr
[  100.132179][ T7295] ntfs3(loop2): failed to convert "c46c" to cp857
[  100.136094][ T7295] ntfs3(loop2): ino=20, mi_enum_attr
[  100.429270][ T7320] netlink: 8 bytes leftover after parsing attributes in process `syz.2.563'.
[  100.552530][ T7329] IPVS: sync thread started: state = MASTER, mcast_ifn = hsr0, syncid = 4, id = 0
[  100.760237][ T7333] loop0: detected capacity change from 0 to 164
[  100.772382][ T7333] rock: directory entry would overflow storage
[  100.786246][ T7333] rock: sig=0x4543, size=28, remaining=18
[  100.946751][ T7339] loop2: detected capacity change from 0 to 8192
[  101.416165][ T7351] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  101.851448][ T7366] binder: BINDER_SET_CONTEXT_MGR already set
[  101.854426][ T7366] binder: 7364:7366 ioctl 4018620d 200000004a80 returned -16
[  103.212943][ T7402] loop0: detected capacity change from 0 to 2048
[  103.234308][ T7402] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found
[  103.244765][ T7402] UDF-fs: Scanning with blocksize 512 failed
[  103.259475][ T7402] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  104.500681][ T7419] loop2: detected capacity change from 0 to 16
[  104.520159][ T7419] erofs (device loop2): mounted with root inode @ nid 36.
[  104.878359][ T7429] 9pnet_fd: Insufficient options for proto=fd
[  105.467786][ T7442] loop0: detected capacity change from 0 to 2048
[  105.488210][ T7442] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  105.506660][ T7442] ext4 filesystem being mounted at /193/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  105.554885][ T5812] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.889571][ T7447] loop2: detected capacity change from 0 to 32768
[  106.607050][ T7481] loop0: detected capacity change from 0 to 2048
[  106.620888][ T5811] udevd[5811]: incorrect nilfs2 checksum on /dev/loop0
[  106.624025][ T7481] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024)
[  106.637766][ T7483] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  107.309056][ T7498] loop2: detected capacity change from 0 to 1024
[  107.380840][ T2255] hfsplus: b-tree write err: -5, ino 3
[  107.385455][ T5808] hfsplus: node 4:3 still has 2 user(s)!
[  107.429699][   T34] kauditd_printk_skb: 5 callbacks suppressed
[  107.429710][   T34] audit: type=1326 audit(1764764077.318:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7503 comm="syz.2.640" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c1858f7c9 code=0x7ffc0000
[  107.451964][   T34] audit: type=1326 audit(1764764077.318:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7503 comm="syz.2.640" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c1858f7c9 code=0x7ffc0000
[  107.473972][   T34] audit: type=1326 audit(1764764077.318:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7503 comm="syz.2.640" exe="/syz-executor" sig=0 arch=c000003e syscall=29 compat=0 ip=0x7f4c1858f7c9 code=0x7ffc0000
[  107.488084][   T34] audit: type=1326 audit(1764764077.318:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7503 comm="syz.2.640" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c1858f7c9 code=0x7ffc0000
[  107.500013][   T34] audit: type=1326 audit(1764764077.318:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7503 comm="syz.2.640" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c1858f7c9 code=0x7ffc0000
[  107.510660][   T34] audit: type=1326 audit(1764764077.318:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7503 comm="syz.2.640" exe="/syz-executor" sig=0 arch=c000003e syscall=31 compat=0 ip=0x7f4c1858f7c9 code=0x7ffc0000
[  107.532016][   T34] audit: type=1326 audit(1764764077.328:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7503 comm="syz.2.640" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c1858f7c9 code=0x7ffc0000
[  107.645046][ T7514] /dev/nullb0: Can't open blockdev
[  109.204590][ T7565] loop2: detected capacity change from 0 to 1764
[  109.320246][ T7565] iso9660: Corrupted directory entry in block 2 of inode 1920
[  110.129694][ T7587] loop0: detected capacity change from 0 to 512
[  110.139405][ T7587] EXT4-fs: Ignoring removed bh option
[  110.177540][ T7587] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  110.210831][ T7587] EXT4-fs (loop0): 1 truncate cleaned up
[  110.217282][ T7587] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  110.243685][ T7587] EXT4-fs warning (device loop0): verify_group_input:137: Cannot add at group 7 (only 1 groups)
[  110.287412][ T5815] Bluetooth: hci2: command 0x0406 tx timeout
[  110.300622][ T5812] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.202304][ T7613] netlink: 8 bytes leftover after parsing attributes in process `syz.0.684'.
[  111.667386][ T5873] usb 1-1: new full-speed USB device number 5 using dummy_hcd
[  111.949910][ T7639] netlink: 4 bytes leftover after parsing attributes in process `syz.2.695'.
[  112.003615][ T5873] usb 1-1: device descriptor read/64, error -71
[  112.144400][ T7645] loop2: detected capacity change from 0 to 2048
[  112.192872][ T7645] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  112.197917][ T7645] ext4 filesystem being mounted at /195/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  112.243524][ T7645] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.698: bg 0: block 345: padding at end of block bitmap is not set
[  112.255088][ T5873] usb 1-1: new full-speed USB device number 6 using dummy_hcd
[  112.262032][ T7645] EXT4-fs (loop2): Remounting filesystem read-only
[  112.324441][ T5808] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.396217][ T5873] usb 1-1: device descriptor read/64, error -71
[  112.504293][ T5873] usb usb1-port1: attempt power cycle
[  112.873369][ T5873] usb 1-1: new full-speed USB device number 7 using dummy_hcd
[  112.894434][ T5873] usb 1-1: device descriptor read/8, error -71
[  113.427107][    T9] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  113.483433][ T5873] usb 1-1: new full-speed USB device number 8 using dummy_hcd
[  113.504152][ T5873] usb 1-1: device descriptor read/8, error -71
[  113.575352][    T9] usb 3-1: config index 0 descriptor too short (expected 23569, got 27)
[  113.577950][    T9] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  113.581985][    T9] usb 3-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  113.585513][    T9] usb 3-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  113.588342][    T9] usb 3-1: Manufacturer: syz
[  113.592003][    T9] usb 3-1: config 0 descriptor??
[  113.613528][ T5873] usb usb1-port1: unable to enumerate USB device
[  113.633321][    T9] rc_core: IR keymap rc-hauppauge not found
[  113.635653][    T9] Registered IR keymap rc-empty
[  113.639014][    T9] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/rc/rc0
[  113.646415][    T9] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/rc/rc0/input6
[  113.806742][    C0] igorplugusb 3-1:0.0: Error: urb status = -32
[  113.816475][   T33] usb 3-1: USB disconnect, device number 5
[  115.451273][ T7691] loop0: detected capacity change from 0 to 512
[  115.467632][ T7691] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  115.520000][ T7691] EXT4-fs (loop0): 1 truncate cleaned up
[  115.522910][ T7691] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  115.884133][ T5812] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.015505][ T7699] loop0: detected capacity change from 0 to 1024
[  116.018625][ T7699] EXT4-fs: Ignoring removed bh option
[  116.020602][ T7699] EXT4-fs: Ignoring removed nomblk_io_submit option
[  116.024040][ T7699] ext4: Unknown parameter 'smackfsroot'
[  116.614123][   T24] usb 3-1: new low-speed USB device number 6 using dummy_hcd
[  116.765634][   T24] usb 3-1: config 168 descriptor has 1 excess byte, ignoring
[  116.769344][   T24] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  116.772797][   T24] usb 3-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  116.776990][   T24] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  116.780472][   T24] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  116.786916][   T24] usb 3-1: config 168 descriptor has 1 excess byte, ignoring
[  116.789848][   T24] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  116.794333][   T24] usb 3-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  116.798673][   T24] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  116.802707][   T24] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  116.809976][   T24] usb 3-1: config 168 descriptor has 1 excess byte, ignoring
[  116.812891][   T24] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  116.818764][   T24] usb 3-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  116.824205][   T24] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  116.829784][   T24] usb 3-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[  116.839168][   T24] usb 3-1: string descriptor 0 read error: -22
[  116.842014][   T24] usb 3-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  116.848625][   T24] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  116.863585][   T24] adutux 3-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  117.686052][ T7738] veth0: entered promiscuous mode
[  117.694997][ T7737] veth0: left promiscuous mode
[  117.712380][ T7740] overlayfs: failed to clone upperpath
[  119.324013][   T33] usb 3-1: USB disconnect, device number 6
[  120.554209][ T7785] loop2: detected capacity change from 0 to 512
[  120.566359][ T7785] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  120.569681][ T7785] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002]
[  120.574224][ T7785] System zones: 0-1, 15-15, 18-18, 34-34
[  120.577505][ T7785] EXT4-fs (loop2): orphan cleanup on readonly fs
[  120.580787][ T7785] Quota error (device loop2): v2_read_header: Failed header read: expected=8 got=0
[  120.588593][ T7785] EXT4-fs warning (device loop2): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  120.596053][ T7785] EXT4-fs (loop2): Cannot turn on quotas: error -22
[  120.602066][ T7785] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.752: bg 0: block 40: padding at end of block bitmap is not set
[  120.614583][ T7785] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6667: Corrupt filesystem
[  120.618971][ T7785] EXT4-fs (loop2): 1 truncate cleaned up
[  120.623893][ T7785] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  120.631352][ T7785] EXT4-fs error (device loop2): ext4_encrypted_get_link:46: inode #16: comm syz.2.752: bad symlink.
[  120.646621][ T5808] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  120.916963][ T7803] netlink: 64 bytes leftover after parsing attributes in process `syz.3.760'.
[  120.920204][ T7803] netlink: 64 bytes leftover after parsing attributes in process `syz.3.760'.
[  120.946338][ T7805] futex_wake_op: syz.3.761 tries to shift op by 32; fix this program
[  120.990322][ T7808] futex_wake_op: syz.3.763 tries to shift op by 32; fix this program
[  120.999987][ T5815] Bluetooth: hci1: Malformed MSFT vendor event: 0x02
[  121.267143][ T7820] loop0: detected capacity change from 0 to 8
[  122.130923][ T7833] loop0: detected capacity change from 0 to 256
[  122.157349][ T7833] FAT-fs (loop0): Directory bread(block 64) failed
[  122.171546][ T7833] FAT-fs (loop0): Directory bread(block 65) failed
[  122.176607][ T7833] FAT-fs (loop0): Directory bread(block 66) failed
[  122.179280][ T7833] FAT-fs (loop0): Directory bread(block 67) failed
[  122.182040][ T7833] FAT-fs (loop0): Directory bread(block 68) failed
[  122.185159][ T7833] FAT-fs (loop0): Directory bread(block 69) failed
[  122.188581][ T7833] FAT-fs (loop0): Directory bread(block 70) failed
[  122.191577][ T7833] FAT-fs (loop0): Directory bread(block 71) failed
[  122.196848][ T7833] FAT-fs (loop0): Directory bread(block 72) failed
[  122.201515][ T7833] FAT-fs (loop0): Directory bread(block 73) failed
[  122.372590][ T7850] loop2: detected capacity change from 0 to 2048
[  122.391626][ T7850] UDF-fs: error (device loop2): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  122.406448][ T7850] UDF-fs: warning (device loop2): udf_load_logicalvol: Damaged or missing LVID, forcing readonly mount
[  123.066820][ T7872] loop0: detected capacity change from 0 to 512
[  123.195922][ T7875] loop0: detected capacity change from 0 to 1024
[  123.223625][ T7875] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  123.238990][ T7875] ==================================================================
[  123.241975][ T7875] BUG: KASAN: out-of-bounds in ext4_xattr_set_entry+0x8e9/0x1e20
[  123.245050][ T7875] Read of size 18446744073709551588 at addr ffff888113591840 by task syz.0.790/7875
[  123.249624][ T7875] 
[  123.250607][ T7875] CPU: 0 UID: 0 PID: 7875 Comm: syz.0.790 Not tainted syzkaller #0 PREEMPT(full) 
[  123.250619][ T7875] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  123.250624][ T7875] Call Trace:
[  123.250630][ T7875]  <TASK>
[  123.250635][ T7875]  dump_stack_lvl+0x189/0x250
[  123.250650][ T7875]  ? __kasan_check_byte+0x12/0x40
[  123.250660][ T7875]  ? __pfx_dump_stack_lvl+0x10/0x10
[  123.250671][ T7875]  ? lock_release+0x4b/0x3e0
[  123.250681][ T7875]  ? __virt_addr_valid+0x4a5/0x5c0
[  123.250693][ T7875]  print_report+0xca/0x240
[  123.250705][ T7875]  ? ext4_xattr_set_entry+0x8e9/0x1e20
[  123.250714][ T7875]  kasan_report+0x118/0x150
[  123.250723][ T7875]  ? ext4_xattr_set_entry+0x8e9/0x1e20
[  123.250731][ T7875]  ? ext4_xattr_set_entry+0x8e9/0x1e20
[  123.250739][ T7875]  kasan_check_range+0x2b0/0x2c0
[  123.250747][ T7875]  ? ext4_xattr_set_entry+0x8e9/0x1e20
[  123.250754][ T7875]  __asan_memmove+0x29/0x70
[  123.250764][ T7875]  ext4_xattr_set_entry+0x8e9/0x1e20
[  123.250776][ T7875]  ext4_xattr_block_set+0x872/0x2ac0
[  123.250784][ T7875]  ? ext4_destroy_inode+0x143/0x2d0
[  123.250793][ T7875]  ? __pfx_ext4_free_in_core_inode+0x10/0x10
[  123.250806][ T7875]  ? __pfx_evict+0x10/0x10
[  123.250815][ T7875]  ? do_raw_spin_unlock+0x4d/0x240
[  123.250826][ T7875]  ? _raw_spin_unlock+0x28/0x50
[  123.250836][ T7875]  ? iput+0x946/0xc50
[  123.250844][ T7875]  ? __pfx_ext4_xattr_block_set+0x10/0x10
[  123.250851][ T7875]  ? ext4_xattr_ibody_set+0x510/0x6a0
[  123.250860][ T7875]  ext4_xattr_set_handle+0x1350/0x1590
[  123.250871][ T7875]  ? __pfx_ext4_xattr_set_handle+0x10/0x10
[  123.250880][ T7875]  ? __ext4_journal_start_sb+0x27e/0x5c0
[  123.250890][ T7875]  ext4_xattr_set+0x230/0x320
[  123.250899][ T7875]  ? __pfx_ext4_xattr_set+0x10/0x10
[  123.250907][ T7875]  ? __pfx_evm_protect_xattr+0x10/0x10
[  123.250918][ T7875]  ? __pfx_ext4_xattr_trusted_set+0x10/0x10
[  123.250928][ T7875]  __vfs_setxattr+0x43c/0x480
[  123.250938][ T7875]  __vfs_setxattr_noperm+0x12d/0x660
[  123.250947][ T7875]  vfs_setxattr+0x16b/0x2f0
[  123.250955][ T7875]  ? __pfx_vfs_setxattr+0x10/0x10
[  123.250964][ T7875]  filename_setxattr+0x274/0x600
[  123.250973][ T7875]  ? __pfx_filename_setxattr+0x10/0x10
[  123.250980][ T7875]  ? getname_flags+0x1e5/0x540
[  123.250989][ T7875]  path_setxattrat+0x364/0x3a0
[  123.250999][ T7875]  ? __pfx_path_setxattrat+0x10/0x10
[  123.251008][ T7875]  ? do_futex+0x395/0x420
[  123.251026][ T7875]  __x64_sys_lsetxattr+0xbf/0xe0
[  123.251035][ T7875]  do_syscall_64+0xfa/0xfa0
[  123.251046][ T7875]  ? lockdep_hardirqs_on+0x9c/0x150
[  123.251056][ T7875]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.251063][ T7875]  ? exc_page_fault+0xab/0x100
[  123.251073][ T7875]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.251081][ T7875] RIP: 0033:0x7fb6cc98f7c9
[  123.251090][ T7875] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  123.251097][ T7875] RSP: 002b:00007fb6cd878038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd
[  123.251107][ T7875] RAX: ffffffffffffffda RBX: 00007fb6ccbe5fa0 RCX: 00007fb6cc98f7c9
[  123.251113][ T7875] RDX: 0000200000000000 RSI: 0000200000000180 RDI: 0000200000000080
[  123.251118][ T7875] RBP: 00007fb6cc9f297f R08: 0000000000000000 R09: 0000000000000000
[  123.251123][ T7875] R10: 0000000000000361 R11: 0000000000000246 R12: 0000000000000000
[  123.251127][ T7875] R13: 00007fb6ccbe6038 R14: 00007fb6ccbe5fa0 R15: 00007ffcf07653c8
[  123.251136][ T7875]  </TASK>
[  123.251138][ T7875] 
[  123.367965][ T7875] Allocated by task 7875:
[  123.369335][ T7875]  kasan_save_track+0x3e/0x80
[  123.370767][ T7875]  __kasan_kmalloc+0x93/0xb0
[  123.372191][ T7875]  __kmalloc_node_track_caller_noprof+0x571/0x810
[  123.374165][ T7875]  kmemdup_noprof+0x2b/0x70
[  123.375555][ T7875]  ext4_xattr_block_set+0x781/0x2ac0
[  123.377203][ T7875]  ext4_xattr_set_handle+0x1350/0x1590
[  123.379169][ T7875]  ext4_xattr_set+0x230/0x320
[  123.381311][ T7875]  __vfs_setxattr+0x43c/0x480
[  123.383645][ T7875]  __vfs_setxattr_noperm+0x12d/0x660
[  123.386072][ T7875]  vfs_setxattr+0x16b/0x2f0
[  123.387852][ T7875]  filename_setxattr+0x274/0x600
[  123.389796][ T7875]  path_setxattrat+0x364/0x3a0
[  123.391698][ T7875]  __x64_sys_lsetxattr+0xbf/0xe0
[  123.393625][ T7875]  do_syscall_64+0xfa/0xfa0
[  123.395431][ T7875]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.397650][ T7875] 
[  123.398469][ T7875] The buggy address belongs to the object at ffff888113591800
[  123.398469][ T7875]  which belongs to the cache kmalloc-1k of size 1024
[  123.403932][ T7875] The buggy address is located 64 bytes inside of
[  123.403932][ T7875]  1024-byte region [ffff888113591800, ffff888113591c00)
[  123.408567][ T7875] 
[  123.409325][ T7875] The buggy address belongs to the physical page:
[  123.411312][ T7875] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x113590
[  123.414004][ T7875] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  123.416565][ T7875] flags: 0x17ff00000000040(head|node=0|zone=2|lastcpupid=0x7ff)
[  123.418854][ T7875] page_type: f5(slab)
[  123.420084][ T7875] raw: 017ff00000000040 ffff888100041dc0 ffffea000441e400 dead000000000002
[  123.422732][ T7875] raw: 0000000000000000 0000000080100010 00000000f5000000 0000000000000000
[  123.425658][ T7875] head: 017ff00000000040 ffff888100041dc0 ffffea000441e400 dead000000000002
[  123.429717][ T7875] head: 0000000000000000 0000000080100010 00000000f5000000 0000000000000000
[  123.434056][ T7875] head: 017ff00000000003 ffffea00044d6401 00000000ffffffff 00000000ffffffff
[  123.436878][ T7875] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  123.439837][ T7875] page dumped because: kasan: bad access detected
[  123.441927][ T7875] page_owner tracks the page as allocated
[  123.443874][ T7875] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x52820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 12, tgid 12 (kworker/u8:0), ts 60541610790, free_ts 60519762386
[  123.451408][ T7875]  post_alloc_hook+0x234/0x290
[  123.453292][ T7875]  get_page_from_freelist+0x2365/0x2440
[  123.455885][ T7875]  __alloc_frozen_pages_noprof+0x181/0x370
[  123.458820][ T7875]  alloc_pages_mpol+0x232/0x4a0
[  123.460759][ T7875]  allocate_slab+0x96/0x350
[  123.462574][ T7875]  ___slab_alloc+0xf56/0x1990
[  123.464459][ T7875]  __slab_alloc+0x65/0x100
[  123.466212][ T7875]  __kmalloc_noprof+0x47d/0x800
[  123.467693][ T7875]  ___neigh_create+0x6d5/0x2260
[  123.469161][ T7875]  ip6_finish_output2+0x1175/0x1480
[  123.470912][ T7875]  ip6_output+0x340/0x550
[  123.472279][ T7875]  ndisc_send_skb+0xbce/0x1510
[  123.473772][ T7875]  addrconf_dad_completed+0x7ae/0xd60
[  123.475410][ T7875]  addrconf_dad_work+0xc36/0x14b0
[  123.476944][ T7875]  process_scheduled_works+0xae1/0x17b0
[  123.478697][ T7875]  worker_thread+0x8a0/0xda0
[  123.480201][ T7875] page last free pid 5811 tgid 5811 stack trace:
[  123.482232][ T7875]  __free_frozen_pages+0xbc8/0xd30
[  123.483897][ T7875]  __put_partials+0x146/0x170
[  123.485382][ T7875]  put_cpu_partial+0x1f2/0x2e0
[  123.486849][ T7875]  __slab_free+0x2b9/0x390
[  123.488218][ T7875]  qlist_free_all+0x97/0x140
[  123.489689][ T7875]  kasan_quarantine_reduce+0x148/0x160
[  123.491432][ T7875]  __kasan_slab_alloc+0x22/0x80
[  123.492971][ T7875]  kmem_cache_alloc_noprof+0x37d/0x700
[  123.494766][ T7875]  getname_flags+0xb8/0x540
[  123.496294][ T7875]  do_sys_openat2+0xbc/0x1c0
[  123.497785][ T7875]  __x64_sys_openat+0x138/0x170
[  123.499295][ T7875]  do_syscall_64+0xfa/0xfa0
[  123.500727][ T7875]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.502529][ T7875] 
[  123.503261][ T7875] Memory state around the buggy address:
[  123.505029][ T7875]  ffff888113591700: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  123.507592][ T7875]  ffff888113591780: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  123.510234][ T7875] >ffff888113591800: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  123.512782][ T7875]                                            ^
[  123.514695][ T7875]  ffff888113591880: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  123.517164][ T7875]  ffff888113591900: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  123.519890][ T7875] ==================================================================
[  123.523172][    C0] vkms_vblank_simulate: vblank timer overrun
[  123.533104][ T7875] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  123.535527][ T7875] CPU: 1 UID: 0 PID: 7875 Comm: syz.0.790 Not tainted syzkaller #0 PREEMPT(full) 
[  123.538989][ T7875] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  123.542814][ T7875] Call Trace:
[  123.543811][ T7875]  <TASK>
[  123.544716][ T7875]  dump_stack_lvl+0x99/0x250
[  123.546197][ T7875]  ? __asan_memcpy+0x40/0x70
[  123.547652][ T7875]  ? __pfx_dump_stack_lvl+0x10/0x10
[  123.549191][ T7875]  ? __pfx__printk+0x10/0x10
[  123.550635][ T7875]  vpanic+0x237/0x6d0
[  123.551870][ T7875]  ? __pfx_vpanic+0x10/0x10
[  123.553311][ T7875]  ? preempt_schedule+0xae/0xc0
[  123.554824][ T7875]  ? __pfx_preempt_schedule+0x10/0x10
[  123.556686][ T7875]  panic+0xb9/0xc0
[  123.558066][ T7875]  ? __pfx_panic+0x10/0x10
[  123.559799][ T7875]  ? _raw_spin_unlock_irqrestore+0xfd/0x110
[  123.562333][ T7875]  ? ext4_xattr_set_entry+0x8e9/0x1e20
[  123.564315][ T7875]  check_panic_on_warn+0x89/0xb0
[  123.565972][ T7875]  ? ext4_xattr_set_entry+0x8e9/0x1e20
[  123.567653][ T7875]  end_report+0x78/0x160
[  123.568898][ T7875]  kasan_report+0x129/0x150
[  123.570231][ T7875]  ? ext4_xattr_set_entry+0x8e9/0x1e20
[  123.571848][ T7875]  ? ext4_xattr_set_entry+0x8e9/0x1e20
[  123.573449][ T7875]  kasan_check_range+0x2b0/0x2c0
[  123.575044][ T7875]  ? ext4_xattr_set_entry+0x8e9/0x1e20
[  123.576837][ T7875]  __asan_memmove+0x29/0x70
[  123.578297][ T7875]  ext4_xattr_set_entry+0x8e9/0x1e20
[  123.580180][ T7875]  ext4_xattr_block_set+0x872/0x2ac0
[  123.582058][ T7875]  ? ext4_destroy_inode+0x143/0x2d0
[  123.583816][ T7875]  ? __pfx_ext4_free_in_core_inode+0x10/0x10
[  123.585649][ T7875]  ? __pfx_evict+0x10/0x10
[  123.586932][ T7875]  ? do_raw_spin_unlock+0x4d/0x240
[  123.588556][ T7875]  ? _raw_spin_unlock+0x28/0x50
[  123.590550][ T7875]  ? iput+0x946/0xc50
[  123.591766][ T7875]  ? __pfx_ext4_xattr_block_set+0x10/0x10
[  123.593486][ T7875]  ? ext4_xattr_ibody_set+0x510/0x6a0
[  123.595153][ T7875]  ext4_xattr_set_handle+0x1350/0x1590
[  123.596952][ T7875]  ? __pfx_ext4_xattr_set_handle+0x10/0x10
[  123.599077][ T7875]  ? __ext4_journal_start_sb+0x27e/0x5c0
[  123.601317][ T7875]  ext4_xattr_set+0x230/0x320
[  123.603145][ T7875]  ? __pfx_ext4_xattr_set+0x10/0x10
[  123.604885][ T7875]  ? __pfx_evm_protect_xattr+0x10/0x10
[  123.606601][ T7875]  ? __pfx_ext4_xattr_trusted_set+0x10/0x10
[  123.608447][ T7875]  __vfs_setxattr+0x43c/0x480
[  123.609956][ T7875]  __vfs_setxattr_noperm+0x12d/0x660
[  123.611666][ T7875]  vfs_setxattr+0x16b/0x2f0
[  123.613149][ T7875]  ? __pfx_vfs_setxattr+0x10/0x10
[  123.614856][ T7875]  filename_setxattr+0x274/0x600
[  123.616538][ T7875]  ? __pfx_filename_setxattr+0x10/0x10
[  123.618449][ T7875]  ? getname_flags+0x1e5/0x540
[  123.620026][ T7875]  path_setxattrat+0x364/0x3a0
[  123.621563][ T7875]  ? __pfx_path_setxattrat+0x10/0x10
[  123.623206][ T7875]  ? do_futex+0x395/0x420
[  123.624633][ T7875]  __x64_sys_lsetxattr+0xbf/0xe0
[  123.626181][ T7875]  do_syscall_64+0xfa/0xfa0
[  123.627656][ T7875]  ? lockdep_hardirqs_on+0x9c/0x150
[  123.629291][ T7875]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.631612][ T7875]  ? exc_page_fault+0xab/0x100
[  123.633510][ T7875]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.635726][ T7875] RIP: 0033:0x7fb6cc98f7c9
[  123.637117][ T7875] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  123.643073][ T7875] RSP: 002b:00007fb6cd878038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd
[  123.645657][ T7875] RAX: ffffffffffffffda RBX: 00007fb6ccbe5fa0 RCX: 00007fb6cc98f7c9
[  123.648197][ T7875] RDX: 0000200000000000 RSI: 0000200000000180 RDI: 0000200000000080
[  123.650696][ T7875] RBP: 00007fb6cc9f297f R08: 0000000000000000 R09: 0000000000000000
[  123.653666][ T7875] R10: 0000000000000361 R11: 0000000000000246 R12: 0000000000000000
[  123.656833][ T7875] R13: 00007fb6ccbe6038 R14: 00007fb6ccbe5fa0 R15: 00007ffcf07653c8
[  123.659426][ T7875]  </TASK>
[  123.661070][ T7875] Kernel Offset: disabled
[  123.662378][ T7875] Rebooting in 86400 seconds..

VM DIAGNOSIS:
12:14:53  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000034 RBX=0000000000000034 RCX=0000000000000000 RDX=00000000000003f8
RSI=00000000000035c4 RDI=00000000000035c5 RBP=00000000000003f8 RSP=ffffc90003586cd0
R8 =ffff88816bf60237 R9 =1ffff1102d7ec046 R10=dffffc0000000000 R11=ffffffff8515bdb0
R12=dffffc0000000000 R13=ffffffff997de92c R14=ffffffff99af1ee0 R15=0000000000000000
RIP=ffffffff8515be2c RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fb6cd8786c0 ffffffff 00c00000
GS =0000 ffff88818eb36000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00005555774c0808 CR3=000000010b2cc000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=ffffffffffffffff ffffffffffffffff
XMM02=0000000000000000 0000000000000000 XMM03=ffffffffffffffff ffffffffffffffff
XMM04=0000000000000000 000000ffffffffff XMM05=6161616161616161 6161616161616161
XMM06=6161616161616161 6161616161616161 XMM07=6161616161616161 6161616161616161
XMM08=6161616161616161 6161616161616161 XMM09=0000000000000000 00007fbb68ff2424
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=492604aad7ab5a00 RBX=ffffffff81968e07 RCX=492604aad7ab5a00 RDX=0000000000000001
RSI=ffffffff8d70e9e7 RDI=ffffffff8bbf0e60 RBP=ffffc90000197f10 RSP=ffffc90000197de0
R8 =ffff88823c632fdb R9 =1ffff110478c65fb R10=dffffc0000000000 R11=ffffed10478c65fc
R12=ffffffff8f7cf670 R13=0000000000000001 R14=0000000000000001 R15=1ffff1102c15f000
RIP=ffffffff8b476dd3 RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8882a9f36000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=000000110c252fdd CR3=00000001157de000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=0000000000000000 0000000000000000
XMM02=00007fbb691ba498 00007fbb691ba470 XMM03=00007fbb691ba4a8 00007fbb691ba4a0
XMM04=00007fbb69d1d100 00007fbb691ba460 XMM05=00007fbb691ba478 00007fbb691ba4c0
XMM06=00007fbb691ba4b8 00007fbb691ba4b0 XMM07=00007fbb691ba4a8 00007fbb691ba4a0
XMM08=6161616161616161 6161616161616161 XMM09=0000000000000000 00007fbb68ff2424
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
