last executing test programs:

25.884284357s ago: executing program 1 (id=4444):
ioperm(0x83, 0x6, 0x8)
migrate_pages(0xffffffffffffffff, 0x3, 0x0, 0x0)

25.347582375s ago: executing program 1 (id=4448):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x6, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r0}, &(0x7f0000000080), &(0x7f0000000200), 0x600}, 0x20)

24.667095448s ago: executing program 1 (id=4453):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=@ipv6_newnexthop={0x1c, 0x68, 0x309, 0x0, 0x0, {}, [@NHA_BLACKHOLE={0x4}]}, 0x1c}}, 0x0)

24.013449815s ago: executing program 1 (id=4459):
r0 = syz_usb_connect(0x5, 0x90, &(0x7f00000000c0)=ANY=[@ANYBLOB="12010002202f4c20020402564d660102030109027e0001000000000904"], 0x0)
syz_usb_control_io$printer(r0, 0x0, 0x0)

23.549827324s ago: executing program 4 (id=4463):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]})
modify_ldt$write(0x1, 0x0, 0x0)

23.315363907s ago: executing program 3 (id=4465):
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_netdev_private(r0, 0x8913, &(0x7f0000000040)="57840c283a")

22.768266278s ago: executing program 4 (id=4468):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0x3}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}]}, @NFT_MSG_NEWRULE={0x90, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x68, 0x4, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @exthdr={{0xb}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_EXTHDR_DREG={0x8, 0x1, 0x1, 0x0, 0xc}, @NFTA_EXTHDR_OFFSET={0x8}, @NFTA_EXTHDR_LEN={0x8, 0x4, 0x1, 0x0, 0x22}, @NFTA_EXTHDR_TYPE={0x5, 0x2, 0x7}]}}}, {0x30, 0x1, 0x0, 0x1, @bitwise={{0xc}, @val={0x20, 0x2, 0x0, 0x1, [@NFTA_BITWISE_LEN={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_BITWISE_SREG={0x8, 0x1, 0x1, 0x0, 0x14}, @NFTA_BITWISE_DREG={0x8, 0x2, 0x1, 0x0, 0x12}, @NFTA_BITWISE_MASK={0x4}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x104}}, 0x0)

22.419480169s ago: executing program 2 (id=4469):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x16, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="85000000080000004e00000000000000850000007d00000095000000000000007ab9e683b171b4b09980af6c1ebeda4ac0d3e3aa71a9ab17e14e1b0be949499ca6a5b2c467b6d3d1c0ae1e9820331afd90cc832c761aa3adf9be48c401c7f893694bf8cd19b7173cd4688904f7310af046fd490d3f2cf49b5f68aecf0bc659dc3d53c2"], &(0x7f0000000140)='GPL\x00', 0x0, 0xbd, &(0x7f00000004c0)=""/153, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x15)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000100)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0xffffff7e}, 0x50)

22.102834895s ago: executing program 5 (id=4470):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000037c0)={0x0, 0x0, &(0x7f0000003780)={&(0x7f0000003800)=@newtaction={0x894, 0x30, 0x12f, 0x0, 0x0, {}, [{0x880, 0x1, [@m_police={0x87c, 0x1, 0x0, 0x0, {{0xb}, {0x850, 0x2, 0x0, 0x1, [[@TCA_POLICE_PEAKRATE={0x404, 0x3, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfe13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x9, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, 0x3, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5381, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe]}], [@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf7e8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0xffffffff, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x90000, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x7, 0x0, 0x0, 0x0, 0x0, 0x7}, {0x7, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0x0, 0xfffffffd}}], [@TCA_POLICE_RESULT={0x8, 0x5, 0x2}]]}, {0x4}, {0xc, 0xb}, {0xc, 0xa}}}]}]}, 0x894}}, 0x0)

21.981114763s ago: executing program 4 (id=4472):
r0 = socket(0x1, 0x2, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000080)={'netdevsim0\x00', &(0x7f0000000000)=@ethtool_perm_addr={0x2e}})

21.777594813s ago: executing program 3 (id=4473):
syz_mount_image$minix(&(0x7f0000000340), &(0x7f00000001c0)='./file0\x00', 0x0, &(0x7f0000000480)=ANY=[], 0x1, 0x189, &(0x7f00000027c0)="$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")
syz_mount_image$exfat(0x0, &(0x7f00000002c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x4800, 0x0, 0x0, 0x0, &(0x7f000001fdc0))

21.585908013s ago: executing program 2 (id=4474):
prlimit64(0x0, 0x7, &(0x7f0000000140), 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0x1, 0xfffb, 0x5, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)

21.369144308s ago: executing program 5 (id=4475):
r0 = syz_open_dev$vim2m(&(0x7f0000000040), 0x62f3, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000140)={0x1, @pix_mp={0x0, 0x0, 0x59555956, 0x7, 0x0, [{0x0, 0x1000}, {}, {0x1}, {0x8}, {}, {}, {}, {0x0, 0x7}]}})

21.342029511s ago: executing program 4 (id=4477):
r0 = syz_init_net_socket$ax25(0x3, 0x3, 0x0)
getsockopt$ax25_int(r0, 0x101, 0xa, &(0x7f0000000000), &(0x7f0000000340)=0x4)

21.21486332s ago: executing program 1 (id=4478):
r0 = syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000340)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc0ed000e, &(0x7f0000000200)={[{@jqfmt_vfsold}, {@barrier}, {@debug}, {@noload}, {@mblk_io_submit}, {@commit={'commit', 0x3d, 0x5}}, {@init_itable_val={'init_itable', 0x3d, 0x601}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x400}}]}, 0xfe, 0x471, &(0x7f00000008c0)="$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")
fremovexattr(r0, &(0x7f0000000000)=@known='user.syz\x00')

20.912227805s ago: executing program 3 (id=4479):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f00000001c0)="d8000000140081044e81f782db46b904021d000025000000040000a118000200ff02000100000e1208000f0100810401a80316ea1f000b40032a5f54c92011148ed08734843cb12b00000803600cfab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef075c0100000000000000cb090000001fb791643a5e835913b06218a07445d6d930dfe1d9d322fe7c9fd68775730d16a4683f52eb4edbb57a5025ccca9e00360d8bcc0000000000000080bb9ad809d5e1cace81b341139fe3cd4032ecedb12d1d2eb0c0ed0bffa29954e5413f017fe491", 0xd8}], 0x1, 0x0, 0x0, 0x7400}, 0x0)

20.83855617s ago: executing program 2 (id=4480):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
getsockopt$sock_buf(r0, 0x1, 0x24, &(0x7f0000000180)=""/84, &(0x7f0000000280)=0x54)

20.678489097s ago: executing program 4 (id=4481):
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x0, 0x0)
ioctl$DRM_IOCTL_SET_VERSION(r0, 0xc01064d1, &(0x7f0000000140)={0x1, 0x1})

20.637735321s ago: executing program 0 (id=4482):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
getsockopt$sock_buf(r0, 0x1, 0x3b, 0x0, &(0x7f0000000200))

20.552534158s ago: executing program 5 (id=4483):
r0 = syz_open_dev$vbi(&(0x7f0000000040), 0x0, 0x2)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000080)={0x79f4, 0x3fe, 0x1, {0x6, @sliced={0x4, [0xffff, 0x4, 0xc, 0x1004, 0x7, 0x3, 0x6, 0x7, 0x7, 0x3, 0x6, 0x8, 0x2, 0x7, 0x1, 0xe, 0x4, 0x400, 0x100, 0x2, 0x6b2, 0x8, 0x8, 0xd6, 0xb, 0x1, 0x4, 0x2, 0x6, 0x6, 0x8006, 0x7, 0xfffd, 0x1, 0xdb4, 0xb389, 0x6, 0x1, 0x4, 0x6, 0xb, 0x2, 0x807, 0x4, 0x9, 0x1, 0x8, 0xfe00], 0x7}}, 0x40004})

20.144873058s ago: executing program 2 (id=4484):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000003c0)=@ipv4_newrule={0x24, 0x20, 0x1, 0x4, 0x0, {0x2, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x7}, [@FRA_GENERIC_POLICY=@FRA_DPORT_RANGE={0x8, 0x18, {0x4e23, 0x4e24}}]}, 0x24}}, 0x0)
syz_emit_ethernet(0x1aa, &(0x7f0000000380)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaa008100000086dd602e5cea01703c0020010000000000000000000000000002ff0200000000000000000000000000012b0a"], 0x0)

20.05460491s ago: executing program 0 (id=4485):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_STATUS(r0, 0x84, 0xe, &(0x7f0000000240)={0x0, 0x631e, 0x6, 0x9, 0x1000, 0xa, 0x2, 0x2, {0x0, @in={{0x2, 0x4e23, @private=0xa010102}}, 0x0, 0x4, 0x0, 0xf65d, 0xe794}}, &(0x7f0000000340)=0xb0)

19.886619299s ago: executing program 4 (id=4486):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)=ANY=[@ANYBLOB="700000001000810500"/20, @ANYRES32=0x0, @ANYBLOB="0580040000000000500012800b00010067656e657665000040000280050008000000000005000d000100000005000d000200000008000b4000001e82060005004e210000140007"], 0x70}}, 0x0)

19.788023412s ago: executing program 5 (id=4487):
r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
epoll_pwait(r0, &(0x7f00000003c0)=[{}], 0x1, 0x5, 0x0, 0x0)

19.787195057s ago: executing program 3 (id=4488):
futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000000740)=0xffffffff, 0x0)
futex(&(0x7f000000cffc), 0xc, 0x1, 0x0, &(0x7f0000048000), 0x0)

19.508304273s ago: executing program 2 (id=4489):
syz_mount_image$xfs(&(0x7f0000000100), &(0x7f0000000080)='./file0\x00', 0x245, &(0x7f0000009b40)={[{@swalloc}, {@inode32}, {@gqnoenforce}, {@discard}, {@nolazytime}, {@norecovery}, {@quota}, {@noalign}, {@inode64}, {@inode64}, {@lazytime}, {@uquota}, {@filestreams}]}, 0x0, 0x9981, &(0x7f0000000180)="$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")
mount(&(0x7f00000000c0)=@filename='./file0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000080)='ubifs\x00', 0x0, 0x0)

19.476253056s ago: executing program 1 (id=4490):
mbind(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000000)=0x3, 0x4, 0x0)
mbind(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x3, &(0x7f00000000c0)=0x400000000003, 0x7b7e, 0x0)

19.440973383s ago: executing program 0 (id=4491):
r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
getsockopt$netrom_NETROM_T2(r0, 0x103, 0x2, 0x0, &(0x7f0000001c40))

19.279077861s ago: executing program 5 (id=4492):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_buf(r0, 0x0, 0x8008000000010, &(0x7f00000003c0)="17000000020001000003d68c5ee17688a2003208030300ecff3f0000000300000a0000000098fc5ad9485bbb6a880000d6c8db0000dba67e06000000e28900000200df018000000000f50607bdff59100ac45761547a681f009cee4a5acb3da400001fb700674f00c88ebbf9315033bf79ac2dff060115003901000000000000ea000000000000000002ffff02dfccebf6ba0008400200000000e90554062a80e605007f71174aa951f3c63e5c83f1ba2112ce68bf17a6e0", 0xb8)

19.01835142s ago: executing program 0 (id=4493):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x3c, &(0x7f0000000340)={&(0x7f00000001c0)=@newsa={0x150, 0x10, 0x713, 0xfffffffe, 0x0, {{@in6=@empty, @in=@multicast2}, {@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, 0x32}, @in=@multicast2, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}, @XFRMA_IF_ID={0x8}, @XFRMA_SET_MARK={0x8}, @XFRMA_SET_MARK_MASK={0x8}]}, 0x150}}, 0x0)

18.899095121s ago: executing program 5 (id=4494):
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001540)=@newtaction={0x68, 0x30, 0x829, 0x1, 0x0, {}, [{0x54, 0x1, [@m_skbedit={0x50, 0x1, 0x0, 0x0, {{0xc}, {0x24, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_PARMS={0x18, 0x2, {0x0, 0x80000000}}, @TCA_SKBEDIT_MARK={0x7, 0x5, 0x2}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x68}}, 0x0)

18.644349228s ago: executing program 0 (id=4495):
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000000)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0xfffffffe}, {{0x18, 0x1, 0x1, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x60}, {}, {0x7, 0x0, 0xb, 0x6}, {0x85, 0x0, 0x0, 0x5}}, {{0x6, 0x0, 0x2}}, [], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_usb_connect(0x5, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000079db8540da0b77010b7d000000010902120001000000000904"], 0x0)

18.474856236s ago: executing program 3 (id=4496):
syz_mount_image$hfsplus(&(0x7f0000000100), &(0x7f00000002c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2000010, &(0x7f00000022c0)=ANY=[], 0x1, 0x6ca, &(0x7f0000000500)="$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")
syz_usb_connect(0x0, 0x2d, &(0x7f0000000800)=ANY=[@ANYBLOB="12010000256930108205050088000002030109021b000100000000090402000191baf20509050b"], 0x0)

16.909549495s ago: executing program 0 (id=4497):
r0 = socket$inet(0x2, 0x2, 0x0)
ioctl$sock_inet_SIOCSIFDSTADDR(r0, 0x8918, &(0x7f0000000000)={'ipvlan1\x00', {0x2, 0x0, @broadcast=0xac141436}})

16.640003398s ago: executing program 2 (id=4498):
r0 = syz_open_dev$vim2m(&(0x7f00000000c0), 0x7, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f00000001c0)={0x1, @pix={0x500, 0x0, 0x33424752, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000}})

16.326018284s ago: executing program 3 (id=4499):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x84, 0x3, &(0x7f00000000c0))
getpgid(0xffffffffffffffff)

3.564597139s ago: executing program 32 (id=4486):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)=ANY=[@ANYBLOB="700000001000810500"/20, @ANYRES32=0x0, @ANYBLOB="0580040000000000500012800b00010067656e657665000040000280050008000000000005000d000100000005000d000200000008000b4000001e82060005004e210000140007"], 0x70}}, 0x0)

2.98911886s ago: executing program 33 (id=4490):
mbind(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000000)=0x3, 0x4, 0x0)
mbind(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x3, &(0x7f00000000c0)=0x400000000003, 0x7b7e, 0x0)

2.54696364s ago: executing program 34 (id=4494):
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001540)=@newtaction={0x68, 0x30, 0x829, 0x1, 0x0, {}, [{0x54, 0x1, [@m_skbedit={0x50, 0x1, 0x0, 0x0, {{0xc}, {0x24, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_PARMS={0x18, 0x2, {0x0, 0x80000000}}, @TCA_SKBEDIT_MARK={0x7, 0x5, 0x2}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x68}}, 0x0)

539.577789ms ago: executing program 35 (id=4497):
r0 = socket$inet(0x2, 0x2, 0x0)
ioctl$sock_inet_SIOCSIFDSTADDR(r0, 0x8918, &(0x7f0000000000)={'ipvlan1\x00', {0x2, 0x0, @broadcast=0xac141436}})

437.777667ms ago: executing program 36 (id=4498):
r0 = syz_open_dev$vim2m(&(0x7f00000000c0), 0x7, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f00000001c0)={0x1, @pix={0x500, 0x0, 0x33424752, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000}})

0s ago: executing program 37 (id=4499):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x84, 0x3, &(0x7f00000000c0))
getpgid(0xffffffffffffffff)

kernel console output (not intermixed with test programs):

s: Mfr=1, Product=2, SerialNumber=3
[  459.922906][T13772] SQUASHFS error: Failed to read block 0x9b: -5
[  459.933653][ T5955] usb 5-1: Product: syz
[  459.939306][ T5955] usb 5-1: Manufacturer: syz
[  459.944908][ T5944] usb 3-1: config 0 has an invalid interface number: 12 but max is 0
[  459.948785][T13772] SQUASHFS error: Unable to read metadata cache entry [99]
[  459.954099][ T5944] usb 3-1: config 0 has no interface number 0
[  459.969392][T13772] SQUASHFS error: Unable to read inode 0x127
[  460.008853][ T5955] usb 5-1: SerialNumber: syz
[  460.030193][ T5944] usb 3-1: config 0 interface 12 altsetting 2 endpoint 0x2 has invalid maxpacket 512, setting to 64
[  460.052378][ T5955] hso 5-1:6.0: Can't find BULK IN endpoint
[  460.081339][ T5944] usb 3-1: config 0 interface 12 altsetting 2 endpoint 0x82 has invalid maxpacket 512, setting to 64
[  460.161109][ T5944] usb 3-1: config 0 interface 12 has no altsetting 0
[  460.215406][ T5944] usb 3-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  460.237938][ T5944] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  460.280758][ T5944] usb 3-1: Product: syz
[  460.296739][ T5944] usb 3-1: Manufacturer: syz
[  460.333260][ T5944] usb 3-1: SerialNumber: syz
[  460.341610][ T5987] usb 5-1: USB disconnect, device number 82
[  460.358716][T13779] 9pnet: Could not find request transport: f
[  460.360502][ T5944] usb 3-1: config 0 descriptor??
[  460.429724][T13759] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  460.447065][T13759] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  460.455700][ T5944] f81534 3-1:0.12: unsupported endpoint max packet size
[  460.624264][T13790] loop0: detected capacity change from 0 to 1024
[  460.667772][T13790] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  460.701941][T13792] loop5: detected capacity change from 0 to 4096
[  460.726607][T13790] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  460.744312][T13790] EXT4-fs (loop0): orphan cleanup on readonly fs
[  460.754673][T13790] Quota error (device loop0): v2_read_header: Failed header read: expected=8 got=2
[  460.787350][T13792] NILFS (loop5): bad btree root (ino=2): level = 0, flags = 0x9, nchildren = 0
[  460.799369][T13796] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  460.852631][T13790] EXT4-fs warning (device loop0): ext4_enable_quotas:7156: Failed to enable quota tracking (type=0, err=-22, ino=3). Please run e2fsck to fix.
[  460.874879][T13792] NILFS (loop5): error -5 getting root inode
[  460.885254][    T9] usb 3-1: USB disconnect, device number 92
[  460.917807][T13790] EXT4-fs (loop0): Cannot turn on quotas: error -22
[  460.944341][T13790] EXT4-fs (loop0): 1 truncate cleaned up
[  460.980623][T13790] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  461.142971][T13787] loop1: detected capacity change from 0 to 32768
[  461.195079][ T5889] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  461.268901][T13787] JBD2: Ignoring recovery information on journal
[  461.398489][T13787] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  461.419858][ T5955] usb 5-1: new high-speed USB device number 83 using dummy_hcd
[  461.425732][T13812] loop5: detected capacity change from 0 to 128
[  461.597336][ T5886] ocfs2: Unmounting device (7,1) on (node local)
[  461.633829][ T5955] usb 5-1: Using ep0 maxpacket: 8
[  461.644285][ T5955] usb 5-1: config 3 has an invalid interface number: 108 but max is 0
[  461.672041][T13817] loop3: detected capacity change from 0 to 128
[  461.680222][ T5955] usb 5-1: config 3 has no interface number 0
[  461.686368][ T5955] usb 5-1: config 3 interface 108 altsetting 8 endpoint 0xF has invalid maxpacket 1576, setting to 64
[  461.729540][ T5955] usb 5-1: config 3 interface 108 has no altsetting 0
[  461.802726][ T5955] usb 5-1: New USB device found, idVendor=0742, idProduct=200a, bcdDevice=97.9f
[  461.816914][ T5955] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  461.846015][ T5955] usb 5-1: Product: syz
[  461.858217][ T5955] usb 5-1: Manufacturer: syz
[  461.872794][ T5955] usb 5-1: SerialNumber: syz
[  461.944002][    T8] usb 1-1: new high-speed USB device number 90 using dummy_hcd
[  461.951971][   T29] audit: type=1326 audit(1736439117.860:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13823 comm="syz.3.3499" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f60dab85d29 code=0x0
[  462.051457][    T9] usb 6-1: new high-speed USB device number 87 using dummy_hcd
[  462.117726][ T5955] HFC-S_USB 5-1:3.108: probe with driver HFC-S_USB failed with error -5
[  462.136064][    T8] usb 1-1: Using ep0 maxpacket: 8
[  462.147887][ T5955] usb 5-1: USB disconnect, device number 83
[  462.155045][    T8] usb 1-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  462.196593][    T8] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x67, changing to 0x7
[  462.223407][    T8] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid maxpacket 26288, setting to 1024
[  462.247558][    T9] usb 6-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  462.269529][    T8] usb 1-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  462.282792][    T9] usb 6-1: config 0 interface 0 has no altsetting 1
[  462.301001][    T9] usb 6-1: New USB device found, idVendor=0499, idProduct=5ae2, bcdDevice= 9.0f
[  462.316263][    T8] usb 1-1: New USB device found, idVendor=0d46, idProduct=2012, bcdDevice=70.57
[  462.325553][    T9] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=7
[  462.333743][    T8] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  462.341933][    T9] usb 6-1: Product: syz
[  462.346113][    T9] usb 6-1: Manufacturer: syz
[  462.363591][ T5944] usb 4-1: new high-speed USB device number 93 using dummy_hcd
[  462.376756][T13836] loop1: detected capacity change from 0 to 512
[  462.380303][    T8] usb 1-1: config 0 descriptor??
[  462.388187][    T9] usb 6-1: SerialNumber: syz
[  462.410932][T13818] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  462.413156][T13836] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[  462.427601][    T9] usb 6-1: config 0 descriptor??
[  462.441288][    T8] kobil_sct 1-1:0.0: KOBIL USB smart card terminal converter detected
[  462.454473][    T8] usb 1-1: KOBIL USB smart card terminal converter now attached to ttyUSB0
[  462.471447][T13836] EXT4-fs error (device loop1): ext4_orphan_get:1389: inode #15: comm syz.1.3504: casefold flag without casefold feature
[  462.484869][T13836] EXT4-fs (loop1): Remounting filesystem read-only
[  462.495893][T13836] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  462.508703][T13836] ext2 filesystem being mounted at /564/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  462.560023][ T5886] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  462.622368][ T5944] usb 4-1: New USB device found, idVendor=0421, idProduct=0007, bcdDevice=b8.51
[  462.633209][ T5944] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  462.649316][ T5944] usb 4-1: Product: syz
[  462.653515][ T5944] usb 4-1: Manufacturer: syz
[  462.658130][ T5944] usb 4-1: SerialNumber: syz
[  462.684779][ T5944] usb 4-1: config 0 descriptor??
[  462.704591][ T5944] rndis_host 4-1:0.0: skipping garbage
[  462.710085][ T5944] rndis_host 4-1:0.0: More than one union descriptor, skipping ...
[  462.718159][ T5944] usb 4-1: bad CDC descriptors
[  462.723360][ T5944] cdc_acm 4-1:0.0: skipping garbage
[  462.728761][ T5944] cdc_acm 4-1:0.0: More than one union descriptor, skipping ...
[  462.747811][    T8] usb 1-1: USB disconnect, device number 90
[  462.760895][    T8] kobil ttyUSB0: KOBIL USB smart card terminal converter now disconnected from ttyUSB0
[  462.771197][    T8] kobil_sct 1-1:0.0: device disconnected
[  462.843109][    T9] usb 6-1: USB disconnect, device number 87
[  462.922667][T13843] loop1: detected capacity change from 0 to 128
[  462.945150][ T5945] usb 4-1: USB disconnect, device number 93
[  462.986233][T13843] affs: No valid root block on device loop1
[  463.036073][ T7741] udevd[7741]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  463.137910][T13834] loop2: detected capacity change from 0 to 32768
[  463.153664][T13846] loop1: detected capacity change from 0 to 64
[  463.199346][T13834] (syz.2.3503,13834,1):ocfs2_verify_userspace_stack:854 ERROR: cluster stack passed to mount, but this filesystem does not support it
[  463.227608][T13834] (syz.2.3503,13834,0):ocfs2_fill_super:1178 ERROR: status = -22
[  463.618364][T13855] loop5: detected capacity change from 0 to 1024
[  463.621568][T13844] loop4: detected capacity change from 0 to 32768
[  463.635508][T13844] bcachefs (/dev/loop4): error validating superblock: Filesystem has incompatible features
[  463.645821][T13844] bcachefs: bch2_fs_get_tree() error: invalid_sb_features
[  463.680888][T13857] loop1: detected capacity change from 0 to 65
[  463.706539][T13855] hfsplus: Filesystem is marked locked, mounting read-only.
[  463.717680][T13855] hfsplus: failed to load extents file
[  463.740907][T13857] BFS-fs: bfs_fill_super(): Superblock is corrupted on loop1
[  463.874393][T13859] loop3: detected capacity change from 0 to 2048
[  463.889477][ T5945] usb 3-1: new high-speed USB device number 93 using dummy_hcd
[  463.921523][    T8] usb 1-1: new high-speed USB device number 91 using dummy_hcd
[  463.962714][T13859] NILFS (loop3): too small inode size: 0 bytes
[  463.966448][T13862] dccp_invalid_packet: P.Data Offset(0) too small
[  464.049894][ T5945] usb 3-1: Using ep0 maxpacket: 16
[  464.077625][ T5945] usb 3-1: config 0 has an invalid interface number: 231 but max is 1
[  464.103199][ T5945] usb 3-1: config 0 has no interface number 1
[  464.110494][ T5945] usb 3-1: too many endpoints for config 0 interface 231 altsetting 15: 203, using maximum allowed: 30
[  464.130137][ T5945] usb 3-1: config 0 interface 231 altsetting 15 has 0 endpoint descriptors, different from the interface descriptor's value: 203
[  464.143658][ T5945] usb 3-1: config 0 interface 231 has no altsetting 0
[  464.153918][    T8] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0
[  464.163837][    T8] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x85 has an invalid bInterval 0, changing to 7
[  464.175038][    T8] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0
[  464.184790][    T8] usb 1-1: New USB device found, idVendor=2040, idProduct=1605, bcdDevice= a.94
[  464.193997][    T8] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  464.203179][ T5945] usb 3-1: New USB device found, idVendor=413c, idProduct=81d2, bcdDevice=25.e8
[  464.212474][ T5945] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  464.221292][ T5945] usb 3-1: Product: syz
[  464.226273][ T5945] usb 3-1: Manufacturer: syz
[  464.230897][ T5945] usb 3-1: SerialNumber: syz
[  464.237609][    T8] usb 1-1: config 0 descriptor??
[  464.243985][ T5945] usb 3-1: config 0 descriptor??
[  464.337895][ T2017] usb 5-1: new full-speed USB device number 84 using dummy_hcd
[  464.426261][T13873] loop1: detected capacity change from 0 to 128
[  464.470511][ T5945] usb 3-1: Could not set interface, error -71
[  464.497248][ T5945] usb 3-1: USB disconnect, device number 93
[  464.507351][    T8] usb 1-1: USB disconnect, device number 91
[  464.532231][ T2017] usb 5-1: config 0 has an invalid interface number: 223 but max is 0
[  464.540650][ T2017] usb 5-1: config 0 has no interface number 0
[  464.554415][ T2017] usb 5-1: New USB device found, idVendor=05ac, idProduct=0242, bcdDevice=70.28
[  464.574188][T13875] loop5: detected capacity change from 0 to 16
[  464.577190][ T2017] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  464.626963][ T2017] usb 5-1: Product: syz
[  464.631221][ T2017] usb 5-1: Manufacturer: syz
[  464.651098][T13875] erofs (device loop5): mounted with root inode @ nid 36.
[  464.655279][ T2017] usb 5-1: SerialNumber: syz
[  464.678779][ T2017] usb 5-1: config 0 descriptor??
[  464.700182][ T2017] input: bcm5974 as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.223/input/input46
[  464.705024][T13877] loop1: detected capacity change from 0 to 128
[  464.916262][ T5185] bcm5974 5-1:0.223: could not read from device
[  464.931342][ T5185] bcm5974 5-1:0.223: could not read from device
[  464.940377][ T2017] usb 5-1: USB disconnect, device number 84
[  465.015529][T13879] loop5: detected capacity change from 0 to 4096
[  465.051937][T13879] ntfs3(loop5): Different NTFS sector size (2048) and media sector size (512).
[  465.076769][T13869] loop3: detected capacity change from 0 to 32768
[  465.084504][T13869] BTRFS: device fsid 97240a68-9a28-4597-b04c-66b27e1182f2 devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.3519 (13869)
[  465.181075][T13879] ntfs3(loop5): Failed to initialize $Secure (-22).
[  465.220379][T13869] BTRFS info (device loop3): first mount of filesystem 97240a68-9a28-4597-b04c-66b27e1182f2
[  465.241306][T13869] BTRFS info (device loop3): using blake2b (blake2b-256-generic) checksum algorithm
[  465.257763][T13869] BTRFS info (device loop3): using free-space-tree
[  465.406879][T13887] loop2: detected capacity change from 0 to 8192
[  465.557069][    T8] usb 2-1: new high-speed USB device number 83 using dummy_hcd
[  465.615619][T13887] FAT-fs (loop2): bogus number of FAT structure
[  465.626857][T13887] FAT-fs (loop2): Can't find a valid FAT filesystem
[  465.725822][    T8] usb 2-1: Using ep0 maxpacket: 32
[  465.758444][T13886] loop0: detected capacity change from 0 to 32768
[  465.766100][T13886] workqueue: name exceeds WQ_NAME_LEN. Truncating to: gfs2-glock/__Š´"_½z'²Ëíé˜
[  465.874706][    T8] usb 2-1: config 0 has an invalid interface number: 15 but max is 0
[  465.888444][    T8] usb 2-1: config 0 has no interface number 0
[  466.005836][T13893] loop5: detected capacity change from 0 to 32768
[  466.013604][T13893] bcachefs: bch2_parse_one_mount_opt() Invalid mount option invalid compression levelcompression: parse error
[  466.085001][    T8] usb 2-1: New USB device found, idVendor=06b9, idProduct=4061, bcdDevice=66.ee
[  466.094685][    T8] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  466.103034][    T8] usb 2-1: Product: syz
[  466.107219][    T8] usb 2-1: Manufacturer: syz
[  466.111825][    T8] usb 2-1: SerialNumber: syz
[  466.118856][T13886] gfs2: can't find protocol dlm
[  466.136142][    T8] usb 2-1: config 0 descriptor??
[  466.365597][T13915] loop4: detected capacity change from 0 to 512
[  466.508029][    T8] speedtch 2-1:0.15: speedtch_bind: wrong device class 42
[  466.516032][    T8] speedtch 2-1:0.15: usbatm_usb_probe: bind failed: -19!
[  466.757300][T13917] loop0: detected capacity change from 0 to 32768
[  466.768154][    T8] usb 2-1: USB disconnect, device number 83
[  467.097543][ T5894] BTRFS info (device loop3): last unmount of filesystem 97240a68-9a28-4597-b04c-66b27e1182f2
[  467.109878][T13919] loop5: detected capacity change from 0 to 32768
[  467.116928][T13915] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  467.179009][T13915] ext4 filesystem being mounted at /611/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  467.336604][ T5887] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  467.345549][T13941] loop2: detected capacity change from 0 to 128
[  467.426242][T13943] loop1: detected capacity change from 0 to 512
[  467.537816][T13943] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  467.559272][T13917] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=nojournal_transaction_names
[  467.645618][T13917] bcachefs (loop0): recovering from clean shutdown, journal seq 10
[  467.647343][T13919] bcachefs (loop5): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=gzip,metadata_target=invalid device 255,erasure_code,noshard_inode_numbers,noinodes_use_key_cache,journal_flush_disabled,norecovery,noexcl,reconstruct_alloc
[  467.653929][T13917] bcachefs (loop0): Doing compatible version upgrade from 1.7: mi_btree_bitmap to 1.13: inode_has_child_snapshots
[  467.653929][T13917]   running recovery passes: check_allocations,check_inodes
[  467.815679][T13919] bcachefs (loop5): recovering from clean shutdown, journal seq 10
[  467.834406][T13919] bcachefs (loop5): Version upgrade required:
[  467.834406][T13919] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  467.834406][T13919] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.13: inode_has_child_snapshots
[  467.834406][T13919]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance
[  467.885961][T13917] bcachefs (loop0): accounting_read...
[  467.922278][ T5886] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  467.947387][T13919] bcachefs (loop5): dropping and reconstructing all alloc info
[  468.019887][    T9] usb 3-1: new high-speed USB device number 94 using dummy_hcd
[  468.032555][T13919] bcachefs (loop5): accounting_read...
[  468.035154][T13917]  done
[  468.043751][T13917] bcachefs (loop0): alloc_read... done
[  468.053075][T13955] loop3: detected capacity change from 0 to 512
[  468.067348][T13919]  done
[  468.069374][T13917] bcachefs (loop0): stripes_read... done
[  468.070388][T13919] bcachefs (loop5): alloc_read... done
[  468.083382][T13917] bcachefs (loop0): snapshots_read... done
[  468.089348][T13917] bcachefs (loop0): check_allocations...
[  468.102737][T13917] btree ptr not marked in member info btree allocated bitmap
[  468.102772][T13917]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq cddfaeeca0a7d1e5 written 24 min_key POS_MIN durability: 1 ptr: 0:26:0 gen 0, shutting down
[  468.138534][T13955] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  468.187155][    T9] usb 3-1: Using ep0 maxpacket: 8
[  468.188612][    T9] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  468.188643][    T9] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 3
[  468.188690][    T9] usb 3-1: New USB device found, idVendor=05c6, idProduct=9215, bcdDevice=29.ac
[  468.188723][    T9] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  468.198033][T13919] bcachefs (loop5): stripes_read... done
[  468.198121][T13919] bcachefs (loop5): snapshots_read... done
[  468.198251][T13919] bcachefs (loop5): check_allocations...
[  468.199802][    T9] usb 3-1: config 0 descriptor??
[  468.201968][    T9] qmi_wwan 3-1:0.0: probe with driver qmi_wwan failed with error -22
[  468.271224][T13919]  done
[  468.332973][T13919] bcachefs (loop5): going read-write
[  468.343816][T13919] bcachefs (loop5): done starting filesystem
[  468.423916][    T8] usb 3-1: USB disconnect, device number 94
[  468.487518][ T5894] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  468.584159][T13917] bcachefs (loop0): inconsistency detected - emergency read only at journal seq 10
[  468.596993][T13917] bcachefs (loop0): bch2_gc_mark_key(): error fsck_errors_not_fixed
[  468.605056][T13917] bcachefs (loop0): bch2_gc_btree(): error fsck_errors_not_fixed
[  468.612809][T13917] bcachefs (loop0): bch2_gc_btrees(): error fsck_errors_not_fixed
[  468.633565][T13917] bcachefs (loop0): bch2_check_allocations(): error fsck_errors_not_fixed
[  468.642257][ T2017] usb 5-1: new high-speed USB device number 85 using dummy_hcd
[  468.664965][T13917] bcachefs (loop0): bch2_fs_recovery(): error fsck_errors_not_fixed
[  468.711046][T13917] bcachefs (loop0): bch2_fs_start(): error starting filesystem fsck_errors_not_fixed
[  468.722838][ T5906] bcachefs (loop5): shutting down
[  468.727892][ T5906] bcachefs (loop5): going read-only
[  468.732181][T13917] bcachefs (loop0): shutting down
[  468.741743][T13963] loop3: detected capacity change from 0 to 2048
[  468.754797][ T5906] bcachefs (loop5): finished waiting for writes to stop
[  468.765086][T13917] bcachefs (loop0): shutdown complete
[  468.775904][ T5906] bcachefs (loop5): flushing journal and stopping allocators, journal seq 10
[  468.794297][ T5906] bcachefs (loop5): flushing journal and stopping allocators complete, journal seq 10
[  468.839800][ T2017] usb 5-1: Using ep0 maxpacket: 8
[  468.840675][ T5906] bcachefs (loop5): unshutdown complete, journal seq 11
[  468.852142][ T2017] usb 5-1: config index 0 descriptor too short (expected 1307, got 27)
[  468.861602][ T5906] bcachefs (loop5): done going read-only, filesystem not clean
[  468.871281][ T2017] usb 5-1: config 0 has an invalid interface number: 0 but max is -1
[  468.879384][ T2017] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 0
[  468.900674][ T2017] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 246, using maximum allowed: 30
[  468.911828][ T2017] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x6E, changing to 0xE
[  468.923822][ T2017] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0xE has invalid wMaxPacketSize 0
[  468.934252][ T2017] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 246
[  468.972114][T13963] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  468.989392][T13963] ext4 filesystem being mounted at /557/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  469.004021][ T5906] bcachefs (loop5): shutdown complete
[  469.011065][T13917] bcachefs: bch2_fs_get_tree() error: fsck_errors_not_fixed
[  469.018357][ T2017] usb 5-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=e2.de
[  469.039178][ T2017] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  469.117025][ T2017] usb 5-1: Product: syz
[  469.121244][ T2017] usb 5-1: Manufacturer: syz
[  469.144071][ T2017] usb 5-1: SerialNumber: syz
[  469.187913][ T5894] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  469.194911][ T2017] usb 5-1: config 0 descriptor??
[  469.229817][ T2017] hub 5-1:0.0: bad descriptor, ignoring hub
[  469.241425][ T2017] hub 5-1:0.0: probe with driver hub failed with error -5
[  469.289530][T13967] loop2: detected capacity change from 0 to 2048
[  469.319672][T13961] loop1: detected capacity change from 0 to 32768
[  469.364013][T13961] BTRFS: device fsid a4d06b90-61a4-49cd-bf5f-2183c3574322 devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.3544 (13961)
[  469.430113][T13961] BTRFS info (device loop1): first mount of filesystem a4d06b90-61a4-49cd-bf5f-2183c3574322
[  469.443285][T13961] BTRFS info (device loop1): using blake2b (blake2b-256-generic) checksum algorithm
[  469.453036][T13961] BTRFS info (device loop1): using free-space-tree
[  469.460911][T13967] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  469.514440][T13973] loop3: detected capacity change from 0 to 1024
[  469.523307][T13967] ext4 filesystem being mounted at /582/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  469.663839][ T5885] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  469.682151][ T2017] usb 5-1: USB disconnect, device number 85
[  469.716692][T13973] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  469.729365][T13973] ext4 filesystem being mounted at /558/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  469.853223][ T5894] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  470.045831][ T5886] BTRFS info (device loop1): last unmount of filesystem a4d06b90-61a4-49cd-bf5f-2183c3574322
[  470.178179][T13998] loop2: detected capacity change from 0 to 1024
[  470.428919][T14001] loop4: detected capacity change from 0 to 132
[  470.626339][T13980] loop0: detected capacity change from 0 to 32768
[  470.634400][T14002] loop2: detected capacity change from 0 to 4096
[  471.635740][T13996] loop3: detected capacity change from 0 to 131072
[  471.683212][T14004] loop1: detected capacity change from 0 to 131072
[  471.776319][T13980] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  471.796363][T13980] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  471.850230][T14004] F2FS-fs (loop1): Found nat_bits in checkpoint
[  471.872792][T13996] F2FS-fs (loop3): Found nat_bits in checkpoint
[  471.882825][T14002] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  471.926635][T13980] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[  471.992305][    T9] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  472.032682][T13996] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  472.067825][    T9] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  472.108019][T14007] loop4: detected capacity change from 0 to 32768
[  472.115512][T14007] bcachefs: bch2_parse_one_mount_opt() Invalid mount option move_bytes_in_flight: must be a number
[  472.314981][    T9] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 231ms
[  472.318856][ T5885] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  472.331864][    T9] gfs2: fsid=syz:syz.0: jid=0: Done
[  472.332716][T14004] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  472.360671][T13980] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  473.171647][T14024] loop2: detected capacity change from 0 to 32768
[  473.179825][T14024] (syz.2.3557,14024,0):ocfs2_fill_super:1178 ERROR: status = -22
[  473.418785][T14022] loop4: detected capacity change from 0 to 32768
[  473.455303][T14027] loop2: detected capacity change from 0 to 512
[  473.477236][T14028] loop3: detected capacity change from 0 to 128
[  473.487015][T14022] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.3559 (14022)
[  473.881327][T14030] loop1: detected capacity change from 0 to 128
[  473.894327][T14022] BTRFS info (device loop4): first mount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  473.920042][T14022] BTRFS info (device loop4): using blake2b (blake2b-256-generic) checksum algorithm
[  473.974109][T14033] loop3: detected capacity change from 0 to 512
[  474.000690][T14022] BTRFS info (device loop4): using free-space-tree
[  474.339536][    T9] usb 3-1: new high-speed USB device number 95 using dummy_hcd
[  474.366316][    T8] usb 2-1: new high-speed USB device number 84 using dummy_hcd
[  474.506264][ T5945] usb 6-1: new high-speed USB device number 88 using dummy_hcd
[  474.537720][    T8] usb 2-1: Using ep0 maxpacket: 16
[  474.548198][    T8] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  474.566733][    T8] usb 2-1: config 0 interface 0 has no altsetting 0
[  474.576284][    T8] usb 2-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=9d.3d
[  474.596441][    T8] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  474.609790][    T9] usb 3-1: New USB device found, idVendor=2770, idProduct=9052, bcdDevice=15.f5
[  474.616465][T14056] loop0: detected capacity change from 0 to 2048
[  474.642653][    T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  474.658456][    T8] usb 2-1: Product: syz
[  474.664774][    T8] usb 2-1: Manufacturer: syz
[  474.672890][    T9] usb 3-1: Product: syz
[  474.677977][    T8] usb 2-1: SerialNumber: syz
[  474.682885][    T9] usb 3-1: Manufacturer: syz
[  474.689446][ T5945] usb 6-1: unable to get BOS descriptor or descriptor too short
[  474.698604][ T5945] usb 6-1: config 250 has an invalid interface number: 222 but max is 1
[  474.709165][    T8] usb 2-1: config 0 descriptor??
[  474.714289][    T9] usb 3-1: SerialNumber: syz
[  474.719811][ T5945] usb 6-1: config 250 has an invalid descriptor of length 0, skipping remainder of the config
[  474.734325][    T9] usb 3-1: config 0 descriptor??
[  474.739492][ T5945] usb 6-1: config 250 has no interface number 1
[  474.749599][    T9] gspca_main: sq905c-2.14.0 probing 2770:9052
[  474.757589][ T5945] usb 6-1: config 250 interface 222 altsetting 22 has an invalid descriptor for endpoint zero, skipping
[  474.770245][    T8] hub 2-1:0.0: bad descriptor, ignoring hub
[  474.776732][    T8] hub 2-1:0.0: probe with driver hub failed with error -5
[  474.785516][ T5945] usb 6-1: config 250 interface 222 altsetting 22 endpoint 0xC has invalid maxpacket 1024, setting to 64
[  474.797391][ T5945] usb 6-1: config 250 interface 222 altsetting 22 endpoint 0x8 has invalid maxpacket 983, setting to 64
[  474.809161][ T5945] usb 6-1: config 250 interface 222 altsetting 22 has an invalid descriptor for endpoint zero, skipping
[  474.820930][ T5945] usb 6-1: config 250 interface 222 altsetting 22 has a duplicate endpoint with address 0x6, skipping
[  474.835717][    T8] usb 2-1: Warning: ath10k USB support is incomplete, don't expect anything to work!
[  474.867234][ T5945] usb 6-1: config 250 interface 222 has no altsetting 0
[  474.882680][ T5945] usb 6-1: New USB device found, idVendor=0b49, idProduct=064f, bcdDevice=d4.fd
[  474.900703][ T5945] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  474.913350][   T12] usb 2-1: Failed to submit usb control message: -71
[  474.913552][ T5945] usb 6-1: Product: syz
[  474.929241][   T12] usb 2-1: unable to send the bmi data to the device: -71
[  474.936748][   T12] usb 2-1: unable to get target info from device
[  474.943703][   T12] usb 2-1: could not get target info (-71)
[  474.944283][ T5945] usb 6-1: Manufacturer: syz
[  474.949514][   T12] usb 2-1: could not probe fw (-71)
[  474.970438][    T9] gspca_sq905c: sq905c_command: usb_control_msg failed (-71)
[  474.986149][ T5945] usb 6-1: SerialNumber: syz
[  474.991040][    T9] sq905c 3-1:0.0: Get version command failed
[  475.038054][T14042] raw-gadget.2 gadget.5: fail, usb_ep_enable returned -22
[  475.054852][    T9] sq905c 3-1:0.0: probe with driver sq905c failed with error -71
[  475.068537][    T9] usb 3-1: USB disconnect, device number 95
[  475.112126][T14065] loop0: detected capacity change from 0 to 512
[  475.179341][    T8] usb 2-1: USB disconnect, device number 84
[  475.214465][ T5887] BTRFS info (device loop4): last unmount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  475.226018][T14065] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  475.390171][ T5945] usb 6-1: USB disconnect, device number 88
[  475.788936][ T5889] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  476.183168][T14074] loop4: detected capacity change from 0 to 4096
[  476.233659][T14074] ntfs3(loop4): Different NTFS sector size (2048) and media sector size (512).
[  476.247492][ T2017] usb 3-1: new high-speed USB device number 96 using dummy_hcd
[  476.573088][ T2017] usb 3-1: Using ep0 maxpacket: 32
[  476.597844][ T2017] usb 3-1: config index 0 descriptor too short (expected 29220, got 36)
[  476.613757][ T2017] usb 3-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  476.654138][ T2017] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  476.686379][ T2017] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 81
[  476.724804][ T2017] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 18
[  476.781258][ T2017] usb 3-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  476.801452][ T2017] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  476.897782][T14072] loop1: detected capacity change from 0 to 32768
[  476.912278][ T2017] usb 3-1: config 0 descriptor??
[  477.004568][T14072] BTRFS: device fsid c6b85f58-0c7e-41ca-a553-c8d9f94f6663 devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.3572 (14072)
[  477.163586][ T2017] usb 3-1: USB disconnect, device number 96
[  477.349121][T14072] BTRFS info (device loop1): first mount of filesystem c6b85f58-0c7e-41ca-a553-c8d9f94f6663
[  477.380974][T14072] BTRFS info (device loop1): using blake2b (blake2b-256-generic) checksum algorithm
[  477.412685][T14072] BTRFS info (device loop1): using free-space-tree
[  478.985500][T14072] workqueue: Failed to create a rescuer kthread for wq "btrfs-worker": -EINTR
[  478.995386][T14072] workqueue: Failed to create a rescuer kthread for wq "btrfs-delalloc": -EINTR
[  479.004856][T14072] workqueue: Failed to create a rescuer kthread for wq "btrfs-flush_delalloc": -EINTR
[  479.081427][T14072] workqueue: Failed to create a rescuer kthread for wq "btrfs-cache": -EINTR
[  479.134605][T14072] workqueue: Failed to create a rescuer kthread for wq "btrfs-fixup": -EINTR
[  479.409525][T14076] loop5: detected capacity change from 0 to 262144
[  479.454994][T14076] BTRFS: device fsid 5037dc16-a5f6-418f-8368-2b93670cfecc devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.3573 (14076)
[  479.484467][T14072] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio": -EINTR
[  479.484717][T14072] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-meta": -EINTR
[  479.494347][T14072] workqueue: Failed to create a rescuer kthread for wq "btrfs-rmw": -EINTR
[  479.504169][T14072] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-write": -EINTR
[  479.523277][T14072] workqueue: Failed to create a rescuer kthread for wq "btrfs-compressed-write": -EINTR
[  479.533287][T14072] workqueue: Failed to create a rescuer kthread for wq "btrfs-freespace-write": -EINTR
[  479.544112][T14072] workqueue: Failed to create a rescuer kthread for wq "btrfs-delayed-meta": -EINTR
[  479.593887][T14076] BTRFS info (device loop5): first mount of filesystem 5037dc16-a5f6-418f-8368-2b93670cfecc
[  479.594088][T14072] workqueue: Failed to create a rescuer kthread for wq "btrfs-qgroup-rescan": -EINTR
[  479.680116][T14072] BTRFS error (device loop1): open_ctree failed
[  479.688920][T14076] BTRFS info (device loop5): using blake2b (blake2b-256-generic) checksum algorithm
[  479.876546][T14076] BTRFS info (device loop5): using free-space-tree
[  479.906865][T14076] workqueue: Failed to create a rescuer kthread for wq "btrfs-worker": -EINTR
[  479.907376][T14076] workqueue: Failed to create a rescuer kthread for wq "btrfs-delalloc": -EINTR
[  479.922262][T14076] workqueue: Failed to create a rescuer kthread for wq "btrfs-flush_delalloc": -EINTR
[  479.943478][T14076] workqueue: Failed to create a rescuer kthread for wq "btrfs-cache": -EINTR
[  479.953665][T14076] workqueue: Failed to create a rescuer kthread for wq "btrfs-fixup": -EINTR
[  479.970198][T14076] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio": -EINTR
[  480.055329][T14076] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-write": -EINTR
[  481.327156][T14076] workqueue: Failed to create a rescuer kthread for wq "btrfs-compressed-write": -EINTR
[  481.336845][T14076] workqueue: Failed to create a rescuer kthread for wq "btrfs-freespace-write": -EINTR
[  481.347185][T14076] workqueue: Failed to create a rescuer kthread for wq "btrfs-delayed-meta": -EINTR
[  481.357159][T14076] workqueue: Failed to create a rescuer kthread for wq "btrfs-qgroup-rescan": -EINTR
[  481.570972][T14076] BTRFS error (device loop5): open_ctree failed
[  481.658552][T14109] loop4: detected capacity change from 0 to 4096
[  481.939488][T14116] loop1: detected capacity change from 0 to 32768
[  481.947082][T14116] (syz.1.3578,14116,1):ocfs2_parse_options:1460 ERROR: Invalid heartbeat mount options
[  481.957443][T14116] (syz.1.3578,14116,1):ocfs2_fill_super:1178 ERROR: status = -22
[  482.388881][T14119] loop1: detected capacity change from 0 to 32768
[  482.397561][T14119] (syz.1.3580,14119,1):ocfs2_parse_options:1460 ERROR: Invalid heartbeat mount options
[  482.407361][T14119] (syz.1.3580,14119,1):ocfs2_fill_super:1178 ERROR: status = -22
[  483.118262][T14121] loop1: detected capacity change from 0 to 65536
[  483.136445][T14121] (syz.1.3581,14121,1):ocfs2_parse_options:1460 ERROR: Invalid heartbeat mount options
[  483.146188][T14117] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  483.164644][T14121] (syz.1.3581,14121,1):ocfs2_fill_super:1178 ERROR: status = -22
[  483.758700][T14110] loop0: detected capacity change from 0 to 32768
[  483.866379][T14126] loop3: detected capacity change from 0 to 64
[  483.978169][T14110] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  483.986377][T14110] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  484.011005][T14129] loop2: detected capacity change from 0 to 160
[  484.390568][T14110] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[  484.428330][T14135] loop3: detected capacity change from 0 to 64
[  484.449592][ T5945] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  484.473968][ T5945] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  484.728226][ T5945] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 237ms
[  484.744580][ T5945] gfs2: fsid=syz:syz.0: jid=0: Done
[  484.750054][T14110] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  484.769144][T14110] gfs2: fsid=syz:syz.0: can't create quotad thread: -4
[  485.617077][T14143] loop0: detected capacity change from 0 to 512
[  485.695967][T14143] UDF-fs: warning (device loop0): udf_load_vrs: No VRS found
[  485.741076][T14143] UDF-fs: Scanning with blocksize 512 failed
[  485.768024][T14143] UDF-fs: warning (device loop0): udf_load_vrs: No VRS found
[  485.786574][T14143] UDF-fs: Scanning with blocksize 1024 failed
[  485.834902][T14143] UDF-fs: warning (device loop0): udf_load_vrs: No VRS found
[  485.869218][T14143] UDF-fs: Scanning with blocksize 2048 failed
[  485.872805][T14133] loop4: detected capacity change from 0 to 32768
[  485.911316][T14137] loop2: detected capacity change from 0 to 40427
[  485.922739][T14143] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[  485.952972][T14137] F2FS-fs (loop2): Insane cp_payload (553648128 >= 504)
[  485.963418][T14133] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  485.987770][T14137] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  485.996436][T14133] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  486.029670][T14143] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  486.091720][T14137] F2FS-fs (loop2): build fault injection attr: rate: 33, type: 0x1fffff
[  487.428959][T14137] F2FS-fs (loop2): invalid crc value
[  487.528961][T14152] loop0: detected capacity change from 0 to 128
[  487.538188][T14137] F2FS-fs (loop2): inject kmalloc in f2fs_kmalloc of f2fs_build_segment_manager+0x2f2e/0x4660
[  487.548612][T14137] F2FS-fs (loop2): Failed to initialize F2FS segment manager (-12)
[  487.561815][T14152] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[  487.590029][T14152] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  487.643333][T14133] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 2ms
[  487.695278][ T5945] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  487.702647][ T5945] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  487.910460][T14154] loop0: detected capacity change from 0 to 128
[  487.947238][T14154] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[  487.982078][T14154] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  488.101404][ T5945] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 372ms
[  488.146625][ T5945] gfs2: fsid=syz:syz.0: jid=0: Done
[  488.161056][T14133] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  488.259493][T14133] gfs2: fsid=syz:syz.0: can't create logd thread: -4
[  488.741271][T14159] loop0: detected capacity change from 0 to 512
[  488.752335][T14147] loop1: detected capacity change from 0 to 32768
[  488.763028][T14147] BTRFS: device fsid f8fbafda-0237-42f9-bd6b-a83e6ac3fc88 devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.3591 (14147)
[  488.807625][T14161] loop3: detected capacity change from 0 to 128
[  488.975926][T14163] loop5: detected capacity change from 0 to 2048
[  489.080469][T14165] loop3: detected capacity change from 0 to 128
[  489.309834][T14147] BTRFS info (device loop1): first mount of filesystem f8fbafda-0237-42f9-bd6b-a83e6ac3fc88
[  489.336530][T14170] loop5: detected capacity change from 0 to 256
[  489.352649][T14147] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm
[  489.406272][T14172] loop3: detected capacity change from 0 to 128
[  489.410587][T14147] BTRFS info (device loop1): using free-space-tree
[  489.423534][T14170] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256
[  489.461835][T14170] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=512, location=512
[  489.471453][T14170] UDF-fs: warning (device loop5): udf_load_vrs: No anchor found
[  489.487250][T14170] UDF-fs: Scanning with blocksize 512 failed
[  489.490388][T14174] loop4: detected capacity change from 0 to 512
[  489.650029][T14170] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256
[  489.985986][T14170] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  491.370569][T14157] loop2: detected capacity change from 0 to 262144
[  491.378295][T14157] (syz.2.3594,14157,1):ocfs2_parse_options:1460 ERROR: Invalid heartbeat mount options
[  491.388362][T14157] (syz.2.3594,14157,1):ocfs2_fill_super:1178 ERROR: status = -22
[  491.688371][T14187] loop3: detected capacity change from 0 to 131072
[  491.838859][T14187] XFS (loop3): Mounting V5 Filesystem 38ffc24f-675a-4986-9d8e-4951dc618329
[  492.188529][T14147] BTRFS error (device loop1): open_ctree failed
[  492.618271][T14187] XFS (loop3): Ending clean mount
[  492.758206][T14211] loop5: detected capacity change from 0 to 256
[  492.780273][ T5894] XFS (loop3): Unmounting Filesystem 38ffc24f-675a-4986-9d8e-4951dc618329
[  492.921047][T14211] FAT-fs (loop5): Directory bread(block 64) failed
[  492.949731][T14211] FAT-fs (loop5): Directory bread(block 65) failed
[  492.956360][T14211] FAT-fs (loop5): Directory bread(block 66) failed
[  492.999690][T14207] loop2: detected capacity change from 0 to 32768
[  493.010635][T14211] FAT-fs (loop5): Directory bread(block 67) failed
[  493.017260][T14211] FAT-fs (loop5): Directory bread(block 68) failed
[  493.056403][T14211] FAT-fs (loop5): Directory bread(block 69) failed
[  493.117789][T14211] FAT-fs (loop5): Directory bread(block 70) failed
[  493.169337][T14211] FAT-fs (loop5): Directory bread(block 71) failed
[  493.223879][T14211] FAT-fs (loop5): Directory bread(block 72) failed
[  493.248703][T14211] FAT-fs (loop5): Directory bread(block 73) failed
[  493.707510][T14207] bcachefs (loop2): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,nojournal_transaction_names
[  493.786421][T14207] bcachefs (loop2): recovering from clean shutdown, journal seq 10
[  493.852853][T14207] bcachefs (loop2): Doing compatible version upgrade from 1.7: mi_btree_bitmap to 1.13: inode_has_child_snapshots
[  493.852853][T14207]   running recovery passes: check_allocations,check_inodes
[  493.874826][T14215] loop1: detected capacity change from 0 to 32768
[  493.935075][T14215] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  493.996826][T14215] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  494.044856][T14207] bcachefs (loop2): accounting_read... done
[  494.074891][T14207] bcachefs (loop2): alloc_read... done
[  494.171588][T14207] bcachefs (loop2): stripes_read... done
[  494.178085][T14207] bcachefs (loop2): snapshots_read... done
[  494.186766][T14237] loop0: detected capacity change from 0 to 128
[  494.251527][T14207] bcachefs (loop2): check_allocations...
[  494.253531][T14207] btree ptr not marked in member info btree allocated bitmap
[  494.253554][T14207]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 4fe84214937890c3 written 32 min_key POS_MIN durability: 1 ptr: 0:26:0 gen 0, shutting down
[  494.293894][T14207] bcachefs (loop2): inconsistency detected - emergency read only at journal seq 10
[  494.303224][T14207] bcachefs (loop2): bch2_gc_mark_key(): error fsck_errors_not_fixed
[  494.314831][T14207] bcachefs (loop2): bch2_gc_btree(): error fsck_errors_not_fixed
[  494.329776][T14207] bcachefs (loop2): bch2_gc_btrees(): error fsck_errors_not_fixed
[  494.461717][T14215] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[  494.485565][ T2017] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  494.492737][ T2017] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  494.532628][T14207] bcachefs (loop2): bch2_check_allocations(): error fsck_errors_not_fixed
[  494.542946][T14207] bcachefs (loop2): bch2_fs_recovery(): error fsck_errors_not_fixed
[  494.561017][T14207] bcachefs (loop2): bch2_fs_start(): error starting filesystem fsck_errors_not_fixed
[  494.582587][T14207] bcachefs (loop2): shutting down
[  494.606804][T14207] bcachefs (loop2): shutdown complete
[  495.006696][ T2017] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 480ms
[  495.038292][ T2017] gfs2: fsid=syz:syz.0: jid=0: Done
[  495.044241][T14215] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  495.141748][T14228] loop3: detected capacity change from 0 to 131072
[  495.222191][T14255] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  495.321992][T14228] F2FS-fs (loop3): Found nat_bits in checkpoint
[  495.563735][T14228] F2FS-fs (loop3): Mounted with checkpoint version = 1b41e955
[  496.236896][T14294] ieee802154 phy0 wpan0: encryption failed: -22
[  496.394579][T14292] loop5: detected capacity change from 0 to 4096
[  496.788316][T14304] tmpfs: Bad value for 'size'
[  496.979265][T14312] netlink: 'syz.4.3651': attribute type 4 has an invalid length.
[  496.987698][T14312] netlink: 'syz.4.3651': attribute type 11 has an invalid length.
[  496.995662][T14312] netlink: 224 bytes leftover after parsing attributes in process `syz.4.3651'.
[  497.168646][T14315] loop4: detected capacity change from 0 to 512
[  497.217696][T14315] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  497.262258][T14315] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  497.389749][T14315] EXT4-fs (loop4): warning: checktime reached, running e2fsck is recommended
[  497.453017][T14315] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  497.484496][T14315] System zones: 0-2, 18-18, 34-34
[  497.514953][T14315] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1145: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  497.548528][T14328] binder: 14326:14328 unknown command 64
[  497.564967][T14328] binder: 14326:14328 ioctl c0306201 20000780 returned -22
[  497.592380][T14315] EXT4-fs (loop4): 1 truncate cleaned up
[  497.635518][T14315] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  497.638258][T14320] loop0: detected capacity change from 0 to 16384
[  497.702740][T14331] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3658'.
[  497.736214][T14320] UDF-fs: warning (device loop0): udf_load_vrs: No VRS found
[  497.748675][T14320] UDF-fs: Scanning with blocksize 512 failed
[  497.784569][T14320] UDF-fs: warning (device loop0): udf_load_vrs: No VRS found
[  497.818697][T14320] UDF-fs: Scanning with blocksize 1024 failed
[  497.851748][T14320] UDF-fs: warning (device loop0): udf_load_vrs: No VRS found
[  497.859779][T14320] UDF-fs: Scanning with blocksize 2048 failed
[  497.891630][ T5887] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  497.893065][T14320] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  498.071295][T14338] loop3: detected capacity change from 0 to 1024
[  498.080587][T14340] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  498.101603][T14338] EXT4-fs: Ignoring removed orlov option
[  498.118242][T14338] EXT4-fs: Ignoring removed nomblk_io_submit option
[  498.215903][T14338] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  498.357463][T14348] loop5: detected capacity change from 0 to 8
[  498.405165][ T5894] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  498.419590][T14207] bcachefs: bch2_fs_get_tree() error: fsck_errors_not_fixed
[  498.443057][T14353] loop4: detected capacity change from 0 to 128
[  498.476343][T14348] SQUASHFS error: Failed to read block 0x1ec: -5
[  498.483833][T14348] SQUASHFS error: Unable to read metadata cache entry [1ea]
[  498.786532][T14360] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  498.909241][T14369] netlink: 596 bytes leftover after parsing attributes in process `syz.2.3677'.
[  499.148422][T14380] netlink: 'syz.4.3681': attribute type 1 has an invalid length.
[  499.479747][T14392] binder: 14387:14392 ioctl c018620c 20000280 returned -22
[  499.507359][T14395] loop2: detected capacity change from 0 to 1024
[  499.615722][T14395] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  499.794369][T14405] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3693'.
[  499.848703][ T5885] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  501.721905][T14448] loop3: detected capacity change from 0 to 512
[  501.745232][T14448] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  501.775335][T14448] EXT4-fs (loop3): 1 truncate cleaned up
[  501.788478][T14448] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  501.872325][T14448] EXT4-fs error (device loop3): ext4_generic_delete_entry:2687: inode #2: block 13: comm syz.3.3714: bad entry in directory: rec_len is smaller than minimal - offset=24, inode=11, rec_len=8, size=1024 fake=0
[  501.961934][T14448] EXT4-fs (loop3): Remounting filesystem read-only
[  501.968833][T14448] EXT4-fs warning (device loop3): ext4_rename_delete:3740: inode #2: comm syz.3.3714: Deleting old file: nlink 4, error=-117
[  502.248064][T14383] loop0: detected capacity change from 0 to 262144
[  502.258259][T14383] BTRFS: device fsid 4e3b2560-f4a2-4138-aab3-aed138716e95 devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.3682 (14383)
[  502.268769][   T29] audit: type=1107 audit(1736439155.557:20): pid=14461 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  502.280271][ T5894] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  502.371654][    C0] vkms_vblank_simulate: vblank timer overrun
[  502.407723][ T5987] usb 2-1: new high-speed USB device number 85 using dummy_hcd
[  502.610838][ T5987] usb 2-1: Using ep0 maxpacket: 16
[  502.657580][ T5987] usb 2-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[  502.688591][ T5987] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  502.752397][ T5987] usb 2-1: Product: syz
[  502.756628][ T5987] usb 2-1: Manufacturer: syz
[  502.799309][ T5987] usb 2-1: SerialNumber: syz
[  502.826611][ T5987] r8152-cfgselector 2-1: Unknown version 0x0000
[  502.849146][ T5987] r8152-cfgselector 2-1: config 0 descriptor??
[  502.905611][T14475] loop2: detected capacity change from 0 to 4096
[  502.944653][T14475] ntfs3(loop2): Different NTFS sector size (1024) and media sector size (512).
[  503.074691][T14475] ntfs3(loop2): Failed to load $Extend (-22).
[  503.113785][T14475] ntfs3(loop2): Failed to initialize $Extend.
[  503.326979][ T5987] r8152-cfgselector 2-1: USB disconnect, device number 85
[  503.411247][T14491] IPv6: NLM_F_CREATE should be specified when creating new route
[  503.473953][T14495] netdevsim netdevsim5 netdevsim0: entered promiscuous mode
[  503.520393][T14495] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  503.637059][    T9] usb 4-1: new high-speed USB device number 94 using dummy_hcd
[  503.768339][T14501] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3738'.
[  503.838009][    T9] usb 4-1: New USB device found, idVendor=110a, idProduct=1613, bcdDevice=5b.01
[  503.857819][    T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  503.894376][    T9] usb 4-1: config 0 descriptor??
[  504.091973][T14509] dccp_v6_rcv: dropped packet with invalid checksum
[  504.209385][T14515] netlink: 'syz.4.3744': attribute type 1 has an invalid length.
[  504.349233][    T9] mxuport 4-1:0.0: mxuport_recv_ctrl_urb - usb_control_msg failed (-71)
[  504.377775][    T9] mxuport 4-1:0.0: probe with driver mxuport failed with error -5
[  504.430090][    T9] usb 4-1: USB disconnect, device number 94
[  504.749688][T14522] loop2: detected capacity change from 0 to 4096
[  504.772938][T14522] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024)
[  504.858397][ T7741] udevd[7741]: incorrect nilfs2 checksum on /dev/loop2
[  504.862224][T14527] trusted_key: encrypted_key: hex blob is missing
[  504.942930][T14522] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 4096)
[  504.975375][T14531] loop4: detected capacity change from 0 to 64
[  505.030732][T14534] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  505.135587][T14522] NILFS (loop2): failed to count free inodes: err=-34
[  505.447590][T14553] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3760'.
[  505.673895][T14562] sit0: entered promiscuous mode
[  505.690435][T14562] netlink: 'syz.4.3766': attribute type 1 has an invalid length.
[  505.709153][T14562] netlink: 1 bytes leftover after parsing attributes in process `syz.4.3766'.
[  506.395397][   T29] audit: type=1326 audit(1736439159.429:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14591 comm="syz.0.3781" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f219f785d29 code=0x7ffc0000
[  506.507800][   T29] audit: type=1326 audit(1736439159.457:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14591 comm="syz.0.3781" exe="/root/syz-executor" sig=0 arch=c000003e syscall=123 compat=0 ip=0x7f219f785d29 code=0x7ffc0000
[  506.609023][   T29] audit: type=1326 audit(1736439159.457:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14591 comm="syz.0.3781" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f219f785d29 code=0x7ffc0000
[  506.687773][T14604] netlink: 40 bytes leftover after parsing attributes in process `syz.0.3785'.
[  506.736190][   T29] audit: type=1326 audit(1736439159.457:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14591 comm="syz.0.3781" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f219f785d29 code=0x7ffc0000
[  506.844473][T14608] netlink: 'syz.2.3788': attribute type 1 has an invalid length.
[  506.983287][   T29] audit: type=1326 audit(1736439159.963:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14609 comm="syz.0.3789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f219f785d29 code=0x7ffc0000
[  507.047521][   T29] audit: type=1326 audit(1736439159.963:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14609 comm="syz.0.3789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f219f785d29 code=0x7ffc0000
[  507.140779][   T29] audit: type=1326 audit(1736439159.972:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14609 comm="syz.0.3789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=248 compat=0 ip=0x7f219f785d29 code=0x7ffc0000
[  507.148855][T14616] loop3: detected capacity change from 0 to 2048
[  507.229032][   T29] audit: type=1326 audit(1736439159.972:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14609 comm="syz.0.3789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f219f785d29 code=0x7ffc0000
[  507.256465][T14616] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  507.344397][   T29] audit: type=1326 audit(1736439159.972:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14609 comm="syz.0.3789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f219f785d29 code=0x7ffc0000
[  507.367490][ T5987] usb 2-1: new high-speed USB device number 86 using dummy_hcd
[  507.550009][ T5987] usb 2-1: Using ep0 maxpacket: 8
[  507.562473][ T5987] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  507.592958][ T5987] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0
[  507.638977][ T5987] usb 2-1: New USB device found, idVendor=16d0, idProduct=10a9, bcdDevice=30.52
[  507.659578][ T5987] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  507.688134][ T5987] usb 2-1: Product: syz
[  507.696732][ T5987] usb 2-1: Manufacturer: syz
[  507.724604][ T5987] usb 2-1: SerialNumber: syz
[  507.739158][ T5987] usb 2-1: config 0 descriptor??
[  507.823092][T14592] loop4: detected capacity change from 0 to 32768
[  508.201225][ T2017] usb 2-1: USB disconnect, device number 86
[  508.526761][T14654] loop3: detected capacity change from 0 to 4096
[  508.557433][T14654] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512).
[  508.745637][T14654] ntfs3(loop3): failed to convert "c46c" to cp862
[  508.751760][T14666] loop4: detected capacity change from 0 to 512
[  508.867235][T14666] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  508.889713][T14666] ext4 filesystem being mounted at /669/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  509.027240][T14677] warning: `syz.1.3819' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  509.226910][ T5887] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  509.564809][T14696] overlayfs: missing 'lowerdir'
[  509.788998][T14699] loop4: detected capacity change from 0 to 1024
[  509.806306][T14699] EXT4-fs: Ignoring removed mblk_io_submit option
[  509.827540][T14699] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  509.828892][T14668] loop5: detected capacity change from 0 to 32768
[  509.897622][T14699] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  510.042070][ T5887] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  510.376191][T14687] loop3: detected capacity change from 0 to 32768
[  510.384028][T14668] ocfs2: Mounting device (7,5) on (node local, slot 0) with writeback data mode.
[  510.395279][T14722] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3840'.
[  510.477545][T14722] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3840'.
[  510.669666][T14687] bcachefs (loop3): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=xxhash,compression=lz4,str_hash=crc64,norecovery,nojournal_transaction_names,reconstruct_alloc
[  510.742966][ T5906] ocfs2: Unmounting device (7,5) on (node local)
[  510.761340][T14687] bcachefs (loop3): recovering from clean shutdown, journal seq 10
[  510.790077][T14687] bcachefs (loop3): Version upgrade required:
[  510.790077][T14687] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  510.790077][T14687] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.13: inode_has_child_snapshots
[  510.790077][T14687]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance
[  510.998331][T14687] bcachefs (loop3): dropping and reconstructing all alloc info
[  511.092994][T14687] bcachefs (loop3): accounting_read... done
[  511.152637][T14687] bcachefs (loop3): alloc_read... done
[  511.158310][T14687] bcachefs (loop3): stripes_read... done
[  511.164161][T14687] bcachefs (loop3): snapshots_read... done
[  511.236953][T14687] bcachefs (loop3): check_allocations... done
[  511.300460][T14687] bcachefs (loop3): going read-write
[  511.336915][T14687] bcachefs (loop3): done starting filesystem
[  511.578843][T14772] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  511.633896][ T5894] bcachefs (loop3): shutting down
[  511.639150][ T5894] bcachefs (loop3): going read-only
[  511.683042][ T5894] bcachefs (loop3): finished waiting for writes to stop
[  511.736632][   T29] audit: type=1400 audit(1736439164.434:30): apparmor="DENIED" operation="setprocattr" info="invalid" error=-22 profile="unconfined" pid=14774 comm="syz.4.3862"
[  511.790915][ T5894] bcachefs (loop3): flushing journal and stopping allocators, journal seq 12
[  512.001418][ T5894] bcachefs (loop3): flushing journal and stopping allocators complete, journal seq 15
[  512.035808][T14791] loop4: detected capacity change from 0 to 8
[  512.041923][T14789] netlink: 'syz.1.3870': attribute type 10 has an invalid length.
[  512.041952][T14789] netlink: 40 bytes leftover after parsing attributes in process `syz.1.3870'.
[  512.042962][T14789] bridge0: port 3(macvlan1) entered blocking state
[  512.052130][T14791] MTD: Attempt to mount non-MTD device "/dev/loop4"
[  512.060414][T14789] bridge0: port 3(macvlan1) entered disabled state
[  512.080883][T14789] macvlan1: entered allmulticast mode
[  512.086460][T14789] veth1_vlan: entered allmulticast mode
[  512.107687][T14791] cramfs: Error -3 while decompressing!
[  512.113581][T14791] cramfs: ffffffff9a4de368(26)->ffff888036013000(4096)
[  512.120722][T14791] cramfs: Error -5 while decompressing!
[  512.126358][T14791] cramfs: ffffffff9a4de382(26)->ffff8880528d8000(4096)
[  512.133319][T14791] cramfs: Error -3 while decompressing!
[  512.138952][T14791] cramfs: ffffffff9a4de39c(16)->ffff88806aba1000(4096)
[  512.145898][T14791] cramfs: Error -3 while decompressing!
[  512.157371][T14791] cramfs: ffffffff9a4de368(26)->ffff888036013000(4096)
[  512.165673][T14789] macvlan1: entered promiscuous mode
[  512.172121][T14789] bridge0: port 3(macvlan1) entered blocking state
[  512.179665][T14789] bridge0: port 3(macvlan1) entered forwarding state
[  512.180184][   T29] audit: type=1800 audit(1736439164.845:31): pid=14791 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.3869" name="file2" dev="loop4" ino=348 res=0 errno=0
[  512.358061][ T5894] bcachefs (loop3): unshutdown complete, journal seq 16
[  512.366322][ T5894] bcachefs (loop3): done going read-only, filesystem not clean
[  512.549721][ T5894] bcachefs (loop3): shutdown complete
[  512.729212][T14813] x_tables: (null)_tables: DNAT target: only valid in nat table, not syz0
[  512.783497][T14814] loop0: detected capacity change from 0 to 256
[  512.932736][T14818] loop4: detected capacity change from 0 to 164
[  512.955294][T14814] FAT-fs (loop0): Directory bread(block 64) failed
[  512.962318][T14814] FAT-fs (loop0): Directory bread(block 65) failed
[  513.012807][T14814] FAT-fs (loop0): Directory bread(block 66) failed
[  513.012857][T14814] FAT-fs (loop0): Directory bread(block 67) failed
[  513.012938][T14814] FAT-fs (loop0): Directory bread(block 68) failed
[  513.012978][T14814] FAT-fs (loop0): Directory bread(block 69) failed
[  513.013059][T14814] FAT-fs (loop0): Directory bread(block 70) failed
[  513.013099][T14814] FAT-fs (loop0): Directory bread(block 71) failed
[  513.013179][T14814] FAT-fs (loop0): Directory bread(block 72) failed
[  513.013217][T14814] FAT-fs (loop0): Directory bread(block 73) failed
[  513.751542][T14844] erspan1: entered promiscuous mode
[  513.834807][T14849] netlink: 'syz.0.3896': attribute type 10 has an invalid length.
[  514.060396][T14859] loop4: detected capacity change from 0 to 2048
[  514.221872][T14859] UDF-fs: error (device loop4): udf_process_sequence: Primary Volume Descriptor not found!
[  514.238170][T14859] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  514.791743][T14885] Illegal XDP return value 4294967274 on prog  (id 286) dev N/A, expect packet loss!
[  514.858636][   T29] audit: type=1326 audit(1736439167.352:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14890 comm="syz.0.3920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f219f785d29 code=0x7ffc0000
[  514.892116][T14893] Cannot find del_set index 0 as target
[  514.961084][T14897] netlink: 'syz.2.3918': attribute type 3 has an invalid length.
[  514.970567][T14897] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.3918'.
[  515.001185][   T29] audit: type=1326 audit(1736439167.474:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14890 comm="syz.0.3920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=139 compat=0 ip=0x7f219f785d29 code=0x7ffc0000
[  515.076345][   T29] audit: type=1326 audit(1736439167.483:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14890 comm="syz.0.3920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f219f785d29 code=0x7ffc0000
[  515.193615][   T29] audit: type=1326 audit(1736439167.483:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14890 comm="syz.0.3920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f219f785d29 code=0x7ffc0000
[  516.103733][T14937] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  516.308702][T14945] netlink: 20 bytes leftover after parsing attributes in process `syz.0.3946'.
[  516.562930][T14953] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3950'.
[  516.792943][T14959] netlink: 24 bytes leftover after parsing attributes in process `syz.5.3953'.
[  516.826207][T14925] loop1: detected capacity change from 0 to 32768
[  516.971123][T14966] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  517.068050][T14970] netlink: zone id is out of range
[  517.131685][T14961] can: request_module (can-proto-0) failed.
[  517.157174][T14957] loop2: detected capacity change from 0 to 32768
[  517.232491][T14972] (unnamed net_device) (uninitialized): option use_carrier: invalid value (9)
[  517.530712][T14988] netlink: zone id is out of range
[  517.536451][T14988] netlink: zone id is out of range
[  517.541692][T14988] netlink: zone id is out of range
[  517.547518][T14988] netlink: zone id is out of range
[  517.552763][T14988] netlink: zone id is out of range
[  517.558442][T14988] netlink: zone id is out of range
[  517.596399][T14988] netlink: zone id is out of range
[  517.688145][T14957] bcachefs (loop2): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,nojournal_transaction_names
[  517.718086][T14957] bcachefs (loop2): initializing new filesystem
[  517.809006][T14957] bcachefs (loop2): going read-write
[  517.935799][T14957] bcachefs (loop2): marking superblocks
[  518.115853][T14957] bcachefs (loop2): initializing freespace
[  518.156746][T14957] bcachefs (loop2): done initializing freespace
[  518.215930][T14957] bcachefs (loop2): reading snapshots table
[  518.223441][T14957] bcachefs (loop2): reading snapshots done
[  518.348184][T14957] bcachefs (loop2): done starting filesystem
[  518.377881][   T29] audit: type=1326 audit(1736439170.636:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15021 comm="syz.3.3977" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60dab85d29 code=0x7ffc0000
[  518.411472][ T2017] usb 5-1: new high-speed USB device number 86 using dummy_hcd
[  518.448152][   T29] audit: type=1326 audit(1736439170.701:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15021 comm="syz.3.3977" exe="/root/syz-executor" sig=0 arch=c000003e syscall=59 compat=0 ip=0x7f60dab85d29 code=0x7ffc0000
[  518.512168][   T29] audit: type=1326 audit(1736439170.710:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15021 comm="syz.3.3977" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60dab85d29 code=0x7ffc0000
[  518.561379][   T29] audit: type=1326 audit(1736439170.710:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15021 comm="syz.3.3977" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60dab85d29 code=0x7ffc0000
[  518.623661][ T5885] bcachefs (loop2): shutting down
[  518.630289][ T5885] bcachefs (loop2): going read-only
[  518.635550][ T5885] bcachefs (loop2): finished waiting for writes to stop
[  518.672785][ T5885] bcachefs (loop2): flushing journal and stopping allocators, journal seq 3
[  518.715935][ T2017] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  518.727119][ T2017] usb 5-1: config 0 interface 0 has no altsetting 0
[  518.739942][ T2017] usb 5-1: New USB device found, idVendor=07fd, idProduct=0001, bcdDevice=48.99
[  518.749148][ T2017] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  518.757396][ T2017] usb 5-1: Product: syz
[  518.761671][ T2017] usb 5-1: Manufacturer: syz
[  518.766368][ T2017] usb 5-1: SerialNumber: syz
[  518.776204][ T2017] usb 5-1: config 0 descriptor??
[  518.792781][ T2017] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  518.806699][ T5885] bcachefs (loop2): flushing journal and stopping allocators complete, journal seq 6
[  518.807012][ T2017] usb 5-1: selecting invalid altsetting 0
[  518.853009][ T2017] snd-usb-audio 5-1:0.0: probe with driver snd-usb-audio failed with error -2
[  518.871575][ T5885] bcachefs (loop2): shutdown complete, journal seq 7
[  518.898795][ T5885] bcachefs (loop2): marking filesystem clean
[  518.999521][    T9] usb 6-1: new high-speed USB device number 89 using dummy_hcd
[  519.031250][ T7741] udevd[7741]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  519.107279][ T5885] bcachefs (loop2): shutdown complete
[  519.128463][ T5945] usb 5-1: USB disconnect, device number 86
[  519.184152][    T9] usb 6-1: config 0 has an invalid interface number: 116 but max is 0
[  519.200205][    T9] usb 6-1: config 0 has no interface number 0
[  519.227458][    T9] usb 6-1: config 0 interface 116 altsetting 162 bulk endpoint 0x8 has invalid maxpacket 1024
[  519.239663][    T9] usb 6-1: config 0 interface 116 has no altsetting 0
[  519.246622][    T9] usb 6-1: New USB device found, idVendor=0bfd, idProduct=010a, bcdDevice=b4.98
[  519.255711][    T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  519.301214][    T9] usb 6-1: config 0 descriptor??
[  519.307435][T15031] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22
[  519.324284][    T9] kvaser_usb 6-1:0.116: error -ENODEV: Cannot get usb endpoint(s)
[  519.504819][T15053] loop3: detected capacity change from 0 to 256
[  519.556485][T15053] FAT-fs (loop3): Directory bread(block 64) failed
[  519.567720][ T5945] usb 6-1: USB disconnect, device number 89
[  519.582993][T15053] FAT-fs (loop3): Directory bread(block 65) failed
[  519.605721][T15053] FAT-fs (loop3): Directory bread(block 66) failed
[  519.613997][T15053] FAT-fs (loop3): Directory bread(block 67) failed
[  519.621131][T15053] FAT-fs (loop3): Directory bread(block 68) failed
[  519.627686][T15053] FAT-fs (loop3): Directory bread(block 69) failed
[  519.647908][T15053] FAT-fs (loop3): Directory bread(block 70) failed
[  519.659035][T15053] FAT-fs (loop3): Directory bread(block 71) failed
[  519.672965][T15053] FAT-fs (loop3): Directory bread(block 72) failed
[  519.679761][T15053] FAT-fs (loop3): Directory bread(block 73) failed
[  519.855500][T15057] usb usb7: usbfs: process 15057 (syz.1.3994) did not claim interface 63 before use
[  520.115415][T15048] loop0: detected capacity change from 0 to 32768
[  520.300186][T15048] ocfs2: Mounting device (7,0) on (node local, slot 0) with writeback data mode.
[  520.341092][T15072] netlink: 128 bytes leftover after parsing attributes in process `syz.4.4001'.
[  520.400493][T15072] netlink: 20 bytes leftover after parsing attributes in process `syz.4.4001'.
[  520.583099][ T5889] ocfs2: Unmounting device (7,0) on (node local)
[  520.833366][T15087] QAT: Stopping all acceleration devices.
[  521.153746][T15101] netlink: 'syz.5.4015': attribute type 1 has an invalid length.
[  521.404131][T15109] 
@ÿ: renamed from veth0_vlan (while UP)
[  521.812331][T15093] loop4: detected capacity change from 0 to 32768
[  521.840661][ T5945] usb 1-1: new full-speed USB device number 92 using dummy_hcd
[  521.862845][T15121] loop2: detected capacity change from 0 to 256
[  521.870682][ T5987] usb 2-1: new low-speed USB device number 87 using dummy_hcd
[  521.882312][T15093] JBD2: Ignoring recovery information on journal
[  521.938234][T15121] exFAT-fs (loop2): failed to load upcase table (idx : 0x00017f3e, chksum : 0x0b83170a, utbl_chksum : 0xe619d30d)
[  521.952653][T15125] loop3: detected capacity change from 0 to 128
[  522.004757][T15125] EXT4-fs (loop3): Test dummy encryption mode enabled
[  522.038132][ T5987] usb 2-1: config 0 has no interfaces?
[  522.046896][ T5987] usb 2-1: string descriptor 0 read error: -22
[  522.053275][ T5987] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  522.064991][ T5945] usb 1-1: config 0 has an invalid interface number: 120 but max is 0
[  522.073783][ T5945] usb 1-1: config 0 has no interface number 0
[  522.081498][T15093] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  522.101447][T15125] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  522.103678][ T5945] usb 1-1: config 0 interface 120 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 10
[  522.124891][ T5945] usb 1-1: config 0 interface 120 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0
[  522.133917][ T5987] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  522.159617][ T5945] usb 1-1: New USB device found, idVendor=16e3, idProduct=f9e9, bcdDevice=55.58
[  522.168870][ T5945] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  522.187945][T15125] ext4 filesystem being mounted at /617/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  522.198475][ T5945] usb 1-1: Product: syz
[  522.200782][   T29] audit: type=1800 audit(1736439174.218:40): pid=15093 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.4012" name="file1" dev="loop4" ino=16946 res=0 errno=0
[  522.202639][ T5945] usb 1-1: Manufacturer: syz
[  522.202664][ T5945] usb 1-1: SerialNumber: syz
[  522.216285][ T5945] usb 1-1: config 0 descriptor??
[  522.250355][ T5987] usb 2-1: config 0 descriptor??
[  522.255849][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  522.262598][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  522.295828][ T5945] input: syz syz as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.120/input/input48
[  522.464455][T15137] net_ratelimit: 5 callbacks suppressed
[  522.464476][T15137] openvswitch: netlink: IP tunnel dst address not specified
[  522.494131][ T5987] usb 2-1: USB disconnect, device number 87
[  522.530906][ T5887] ocfs2: Unmounting device (7,4) on (node local)
[  522.752313][ T5945] usb 1-1: USB disconnect, device number 92
[  522.776906][T15125] fscrypt: AES-256-CBC-CTS using implementation "cts-cbc-aes-aesni"
[  522.906135][T15148] loop2: detected capacity change from 0 to 256
[  522.909439][ T5894] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  523.184492][T15157] loop3: detected capacity change from 0 to 8
[  523.234737][T15159] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4035'.
[  523.277540][T15148] FAT-fs (loop2): Directory bread(block 64) failed
[  523.303819][T15148] FAT-fs (loop2): Directory bread(block 65) failed
[  523.313213][T15148] FAT-fs (loop2): Directory bread(block 66) failed
[  523.324924][T15148] FAT-fs (loop2): Directory bread(block 67) failed
[  523.372009][T15148] FAT-fs (loop2): Directory bread(block 68) failed
[  523.427058][T15148] FAT-fs (loop2): Directory bread(block 69) failed
[  523.434043][T15148] FAT-fs (loop2): Directory bread(block 70) failed
[  523.437252][ T5987] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz1
[  523.442792][T15148] FAT-fs (loop2): Directory bread(block 71) failed
[  523.466415][T15148] FAT-fs (loop2): Directory bread(block 72) failed
[  523.474322][T15148] FAT-fs (loop2): Directory bread(block 73) failed
[  523.555757][T15167] loop4: detected capacity change from 0 to 128
[  523.584146][T15167] FAT-fs (loop4): bread failed, FSINFO block (sector = 202)
[  523.793067][T15175] netlink: 'syz.3.4044': attribute type 3 has an invalid length.
[  523.885389][T15175] netlink: 'syz.3.4044': attribute type 1 has an invalid length.
[  523.907036][T15181] loop5: detected capacity change from 0 to 64
[  524.811407][T15220] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4064'.
[  524.858572][T15220] netlink: 'syz.0.4064': attribute type 3 has an invalid length.
[  525.169608][T15235] loop0: detected capacity change from 0 to 256
[  525.252076][T15235] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  525.698840][T15254] tmpfs: Bad value for 'mpol'
[  525.730890][T15257] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  525.830987][   T29] audit: type=1326 audit(1736439177.586:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15260 comm="syz.0.4086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f219f785d29 code=0x7ffc0000
[  525.932844][   T29] audit: type=1326 audit(1736439177.586:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15260 comm="syz.0.4086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f219f785d29 code=0x7ffc0000
[  525.955215][    C0] vkms_vblank_simulate: vblank timer overrun
[  526.059411][   T29] audit: type=1326 audit(1736439177.604:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15260 comm="syz.0.4086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=12 compat=0 ip=0x7f219f785d29 code=0x7ffc0000
[  526.081620][    C0] vkms_vblank_simulate: vblank timer overrun
[  526.237723][   T29] audit: type=1326 audit(1736439177.604:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15260 comm="syz.0.4086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f219f785d29 code=0x7ffc0000
[  526.260089][    C0] vkms_vblank_simulate: vblank timer overrun
[  526.375940][   T29] audit: type=1326 audit(1736439177.604:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15260 comm="syz.0.4086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f219f785d29 code=0x7ffc0000
[  526.947349][T15241] loop2: detected capacity change from 0 to 40427
[  527.060259][T15241] F2FS-fs (loop2): build fault injection attr: rate: 690, type: 0x1fffff
[  527.079690][T15241] F2FS-fs (loop2): Image doesn't support compression
[  527.165196][T15241] F2FS-fs (loop2): heap/no_heap options were deprecated
[  527.209881][T15241] F2FS-fs (loop2): Image doesn't support compression
[  527.266382][T15241] F2FS-fs (loop2): invalid crc value
[  527.431300][T15241] F2FS-fs (loop2): Found nat_bits in checkpoint
[  527.738627][T15241] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  527.847941][T15310] loop4: detected capacity change from 0 to 4096
[  527.880133][T15291] syz.3.4099 (15291): drop_caches: 2
[  527.921913][T15310] ntfs3(loop4): Mark volume as dirty due to NTFS errors
[  527.954535][T15310] ntfs3(loop4): Failed to load $Extend (-22).
[  527.963476][T15310] ntfs3(loop4): Failed to initialize $Extend.
[  528.023164][T15310] ntfs3(loop4): ino=21, The size of extended attributes must not exceed 64KiB
[  528.267723][T15333] loop3: detected capacity change from 0 to 512
[  528.506083][T15333] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  528.521355][T15333] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002]
[  528.529538][T15333] System zones: 0-1, 15-15, 18-18, 34-34
[  528.535701][T15333] EXT4-fs (loop3): orphan cleanup on readonly fs
[  528.542147][T15333] Quota error (device loop3): v2_read_header: Failed header read: expected=8 got=0
[  528.551654][T15333] EXT4-fs warning (device loop3): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  528.566494][T15333] EXT4-fs (loop3): Cannot turn on quotas: error -22
[  528.573676][T15333] EXT4-fs error (device loop3): ext4_orphan_get:1415: comm syz.3.4121: bad orphan inode 16
[  528.586598][T15333] ext4_test_bit(bit=15, block=18) = 1
[  528.612183][T15333] is_bad_inode(inode)=0
[  528.616372][T15333] NEXT_ORPHAN(inode)=0
[  528.620467][T15333] max_ino=32
[  528.626386][T15333] i_nlink=2
[  528.630532][T15333] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  528.761375][T15333] fscrypt (loop3, inode 16): Error -61 getting encryption context
[  528.795696][T15351] (unnamed net_device) (uninitialized): option mode: invalid value (34)
[  528.894072][ T5894] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  529.005905][T15354] netlink: 256 bytes leftover after parsing attributes in process `syz.2.4127'.
[  529.234698][T15357] loop4: detected capacity change from 0 to 8192
[  529.461550][T15372] loop1: detected capacity change from 0 to 64
[  529.564651][T15372] syz.1.4136: attempt to access beyond end of device
[  529.564651][T15372] loop1: rw=0, sector=548, nr_sectors = 2 limit=64
[  529.639204][T15378] loop4: detected capacity change from 0 to 1024
[  529.668635][T15372] Buffer I/O error on dev loop1, logical block 274, async page read
[  529.708150][T15372] syz.1.4136: attempt to access beyond end of device
[  529.708150][T15372] loop1: rw=0, sector=548, nr_sectors = 2 limit=64
[  529.778059][T15382] xt_limit: Overflow, try lower: 0/0
[  529.786600][T15372] Buffer I/O error on dev loop1, logical block 274, async page read
[  529.799044][   T29] audit: type=1800 audit(1736439181.327:46): pid=15372 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.4136" name="file3" dev="loop1" ino=6 res=0 errno=0
[  530.068985][T15391] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4148'.
[  530.266507][   T29] audit: type=1326 audit(1736439181.757:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15399 comm="syz.3.4150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60dab85d29 code=0x7ffc0000
[  530.380731][   T29] audit: type=1326 audit(1736439181.785:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15399 comm="syz.3.4150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60dab85d29 code=0x7ffc0000
[  530.493387][   T29] audit: type=1326 audit(1736439181.804:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15399 comm="syz.3.4150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=252 compat=0 ip=0x7f60dab85d29 code=0x7ffc0000
[  530.576688][T15409] loop3: detected capacity change from 0 to 128
[  530.632729][T15409] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  530.753114][T15409] ext4 filesystem being mounted at /637/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  530.819876][T15409] EXT4-fs warning (device loop3): ext4_dirblock_csum_verify:406: inode #2: comm syz.3.4154: No space for directory leaf checksum. Please run e2fsck -D.
[  530.865989][T15409] EXT4-fs error (device loop3): __ext4_find_entry:1652: inode #2: comm syz.3.4154: checksumming directory block 0
[  531.047630][ T5894] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  531.235288][T15431] loop2: detected capacity change from 0 to 512
[  531.273058][T15431] EXT4-fs: Ignoring removed bh option
[  531.367709][T15431] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  531.400857][T15431] ext4 filesystem being mounted at /672/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  531.485243][T15398] loop4: detected capacity change from 0 to 32768
[  531.551264][T15431] EXT4-fs error (device loop2): ext4_xattr_block_get:596: inode #15: comm syz.2.4165: corrupted xattr block 32: bad e_name length
[  531.609457][T15398] ERROR: (device loop4): diAllocAG: nfreeinos = 0, but iag on freelist
[  531.609457][T15398] 
[  531.626015][T15431] EXT4-fs (loop2): Remounting filesystem read-only
[  531.634667][   T29] kauditd_printk_skb: 2 callbacks suppressed
[  531.634686][   T29] audit: type=1800 audit(1736439183.039:52): pid=15431 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.4165" name="file1" dev="loop2" ino=15 res=0 errno=0
[  531.670554][T15398] ialloc: diAlloc returned -5!
[  531.702481][T15444] loop3: detected capacity change from 0 to 164
[  531.765760][ T5885] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  531.796810][T15444] iso9660: Unknown parameter ''
[  531.857206][T15446] loop0: detected capacity change from 0 to 1024
[  532.133840][T15448] loop1: detected capacity change from 0 to 4096
[  532.174906][T15448] ntfs3(loop1): Different NTFS sector size (1024) and media sector size (512).
[  532.290045][T15448] ntfs3(loop1): Failed to initialize $Extend/$ObjId.
[  532.771047][T15438] loop5: detected capacity change from 0 to 32768
[  532.842457][T15438] XFS (loop5): Mounting V5 Filesystem ca7e2101-b8f1-4838-8e2d-7637b90620e6
[  532.888182][T15476] loop2: detected capacity change from 0 to 256
[  532.925655][T15476] exfat: Deprecated parameter 'namecase'
[  532.940344][T15484] tipc: Trying to set illegal importance in message
[  533.012240][T15476] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d)
[  533.013000][T15438] XFS (loop5): Ending clean mount
[  533.248135][T15493] IPv6: sit1: Disabled Multicast RS
[  533.607598][ T5906] XFS (loop5): Unmounting Filesystem ca7e2101-b8f1-4838-8e2d-7637b90620e6
[  533.699142][    T8] usb 5-1: new high-speed USB device number 87 using dummy_hcd
[  533.997593][    T8] usb 5-1: unable to get BOS descriptor or descriptor too short
[  534.006695][T15512] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4203'.
[  534.006719][    T8] usb 5-1: config 1 interface 0 altsetting 5 endpoint 0x81 has an invalid bInterval 30, changing to 8
[  534.051859][    T8] usb 5-1: config 1 interface 0 has no altsetting 0
[  534.441668][T15508] loop3: detected capacity change from 0 to 32768
[  534.479517][    T8] usb 5-1: New USB device found, idVendor=05ac, idProduct=023f, bcdDevice= 0.40
[  534.500437][    T8] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  534.516671][    T8] usb 5-1: Product: syz
[  534.520879][    T8] usb 5-1: Manufacturer: syz
[  534.535519][    T8] usb 5-1: SerialNumber: syz
[  534.775600][T15524] tmpfs: Bad value for 'mpol'
[  534.791529][    T8] input: bcm5974 as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/input/input49
[  534.830914][ T5185] bcm5974 5-1:1.0: could not read from device
[  534.832611][    T9] usb 1-1: new high-speed USB device number 93 using dummy_hcd
[  534.860117][ T5185] bcm5974 5-1:1.0: could not read from device
[  534.867730][    T8] usb 5-1: USB disconnect, device number 87
[  534.881389][ T5185] bcm5974 5-1:1.0: could not read from device
[  535.015234][    T9] usb 1-1: Using ep0 maxpacket: 16
[  535.034468][    T9] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 16
[  535.057021][    T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[  535.078890][    T9] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 0
[  535.103568][    T9] usb 1-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice=4f.14
[  535.113878][    T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  535.130433][    T9] usb 1-1: Product: syz
[  535.142558][    T9] usb 1-1: Manufacturer: syz
[  535.147295][    T9] usb 1-1: SerialNumber: syz
[  535.167072][    T9] usb 1-1: config 0 descriptor??
[  535.174698][T15516] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  535.199755][    T9] mceusb 1-1:0.0: mceusb_dev_probe: device setup failed!
[  535.208664][    T9] mceusb 1-1:0.0: probe with driver mceusb failed with error -12
[  535.239044][   T92] usb 6-1: new high-speed USB device number 90 using dummy_hcd
[  535.329723][T15533] netlink: 'syz.1.4211': attribute type 12 has an invalid length.
[  535.507462][   T92] usb 6-1: config 0 has an invalid interface number: 41 but max is 0
[  535.515724][   T92] usb 6-1: config 0 has no interface number 0
[  535.552203][   T92] usb 6-1: New USB device found, idVendor=04d8, idProduct=0083, bcdDevice=83.9c
[  535.586355][   T92] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  535.629613][    T9] usb 1-1: USB disconnect, device number 93
[  535.644752][   T92] usb 6-1: Product: syz
[  535.670702][   T92] usb 6-1: Manufacturer: syz
[  535.703087][   T92] usb 6-1: SerialNumber: syz
[  535.724564][   T92] usb 6-1: config 0 descriptor??
[  535.826993][   T92] ims_pcu 6-1:0.41: probe with driver ims_pcu failed with error -22
[  535.880010][ T5877] usb 5-1: new full-speed USB device number 88 using dummy_hcd
[  535.993384][    T9] usb 6-1: USB disconnect, device number 90
[  536.064671][ T5877] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xDF, changing to 0x8F
[  536.087417][ T5877] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[  536.139568][ T5877] usb 5-1: New USB device found, idVendor=077d, idProduct=0410, bcdDevice=ec.c1
[  536.159926][ T5877] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  536.200753][ T5877] usb 5-1: Product: syz
[  536.232150][ T5877] usb 5-1: Manufacturer: syz
[  536.250858][ T5877] usb 5-1: SerialNumber: syz
[  536.319461][ T5877] usb 5-1: config 0 descriptor??
[  536.598423][ T5877] input: Griffin PowerMate as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/input/input50
[  536.681551][    C1] powermate: config urb returned -71
[  536.687390][    C1] powermate: config urb returned -71
[  536.694333][    C1] powermate: config urb returned -71
[  536.700056][    C1] powermate: config urb returned -71
[  536.722755][ T5877] usb 5-1: USB disconnect, device number 88
[  536.728857][    C1] powermate 5-1:0.0: powermate_irq - usb_submit_urb failed with result: -19
[  536.778350][T15574] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4225'.
[  537.216110][T15554] loop1: detected capacity change from 0 to 32768
[  537.338016][T15554] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  537.370535][T15554] (syz.1.4218,15554,1):ocfs2_parse_options:1460 ERROR: Invalid heartbeat mount options
[  537.497096][T15603] overlayfs: conflicting options: userxattr,redirect_dir=on
[  537.538688][ T5886] ocfs2: Unmounting device (7,1) on (node local)
[  538.137382][T15620] loop1: detected capacity change from 0 to 32768
[  538.322847][T15633] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4251'.
[  538.325287][   T29] audit: type=1400 audit(1736439189.297:53): apparmor="DENIED" operation="change_profile" class="file" info="label not found" error=-2 profile="unconfined" name=26260A3AF6EFF374925873ECE44CF3460B0BA260624F2A08BDBB6D3C92592016EA4E0F401876B1958B3F9AA5153386EED838C49D3A pid=15634 comm="syz.3.4252"
[  538.332403][T15633] netlink: 20 bytes leftover after parsing attributes in process `syz.4.4251'.
[  538.464566][T15620] ERROR: (device loop1): xtTruncate: XT_GETPAGE: xtree page corrupt
[  538.464566][T15620] 
[  538.592670][T15647] SET target dimension over the limit!
[  538.713151][T15620] ERROR: (device loop1): remounting filesystem as read-only
[  538.882444][T15659] ip6erspan0: entered promiscuous mode
[  538.965721][T15664] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  539.056250][T15668] netlink: 200 bytes leftover after parsing attributes in process `syz.4.4265'.
[  539.124016][T15670] netlink: 'syz.4.4266': attribute type 1 has an invalid length.
[  539.131925][T15670] netlink: 'syz.4.4266': attribute type 2 has an invalid length.
[  539.351615][T15664] x_tables: ip_tables: osf match: only valid for protocol 6
[  539.494694][T15675] loop2: detected capacity change from 0 to 32768
[  539.512249][T15675] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.4267 (15675)
[  539.689213][T15687] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4271'.
[  539.726440][T15675] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  539.770349][T15675] BTRFS info (device loop2): using sha256 (sha256-ni) checksum algorithm
[  539.770403][T15675] BTRFS info (device loop2): using free-space-tree
[  539.918757][T15695] loop3: detected capacity change from 0 to 64
[  540.250808][T15728] loop1: detected capacity change from 0 to 1024
[  540.299975][T15730] tmpfs: Bad value for 'nr_inodes'
[  540.424928][T15728] hfsplus: found bad thread record in catalog
[  540.647073][T15742] netlink: 44 bytes leftover after parsing attributes in process `syz.0.4283'.
[  540.665806][ T5885] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  540.789761][ T2970] hfsplus: b-tree write err: -5, ino 4
[  540.939402][T15751] xt_hashlimit: Unknown mode mask 2000, kernel too old?
[  541.008537][T15759] loop1: detected capacity change from 0 to 8
[  541.081253][T15759] unable to read fragment index table
[  541.222529][T15766] loop3: detected capacity change from 0 to 1024
[  541.527304][T15766] hfsplus: trying to free free bnode 0(1)
[  541.986670][ T2938] hfsplus: b-tree write err: -5, ino 4
[  542.300031][T15817] loop0: detected capacity change from 0 to 64
[  542.518840][T15828] netlink: 'syz.5.4319': attribute type 4 has an invalid length.
[  542.874196][T15829] loop4: detected capacity change from 0 to 32768
[  542.898430][T15829] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.4318 (15829)
[  542.987092][    T9] usb 4-1: new high-speed USB device number 95 using dummy_hcd
[  543.389201][T15829] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  543.478010][    T9] usb 4-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.00
[  543.494322][    T9] usb 4-1: New USB device strings: Mfr=33, Product=2, SerialNumber=3
[  543.513424][T15829] BTRFS info (device loop4): using sha256 (sha256-ni) checksum algorithm
[  543.534424][T15829] BTRFS info (device loop4): using free-space-tree
[  543.534437][    T9] usb 4-1: Product: syz
[  543.534459][    T9] usb 4-1: Manufacturer: syz
[  543.555749][    T9] usb 4-1: SerialNumber: syz
[  543.608358][    T9] usb 4-1: config 0 descriptor??
[  543.676173][   T29] audit: type=1326 audit(1736439194.264:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15870 comm="syz.5.4332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3a1b85d29 code=0x7ffc0000
[  543.699278][   T29] audit: type=1326 audit(1736439194.264:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15870 comm="syz.5.4332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3a1b85d29 code=0x7ffc0000
[  543.722091][   T29] audit: type=1326 audit(1736439194.264:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15870 comm="syz.5.4332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=270 compat=0 ip=0x7fa3a1b85d29 code=0x7ffc0000
[  543.744579][   T29] audit: type=1326 audit(1736439194.273:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15870 comm="syz.5.4332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3a1b85d29 code=0x7ffc0000
[  543.766865][    C0] vkms_vblank_simulate: vblank timer overrun
[  543.773161][   T29] audit: type=1326 audit(1736439194.273:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15870 comm="syz.5.4332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3a1b85d29 code=0x7ffc0000
[  543.861219][    T9] hso 4-1:0.0: Failed to find INT IN ep
[  543.867415][    T9] usb-storage 4-1:0.0: USB Mass Storage device detected
[  544.038659][T15894] netlink: 'syz.1.4337': attribute type 10 has an invalid length.
[  544.064586][ T2017] usb 4-1: USB disconnect, device number 95
[  544.163358][T15894] team0: Device hsr_slave_0 failed to register rx_handler
[  544.213734][ T5887] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  544.572037][T15915] netlink: 88 bytes leftover after parsing attributes in process `syz.2.4343'.
[  544.592811][T15915] netlink: 'syz.2.4343': attribute type 2 has an invalid length.
[  544.602114][T15915] netlink: 'syz.2.4343': attribute type 1 has an invalid length.
[  544.609358][T15918] netlink: 20 bytes leftover after parsing attributes in process `syz.5.4344'.
[  544.610018][T15915] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4343'.
[  544.860496][   T29] audit: type=1326 audit(1736439195.386:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15925 comm="syz.5.4349" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa3a1b85d29 code=0x0
[  545.835609][T15946] loop1: detected capacity change from 0 to 32768
[  545.928602][T15946] 
[  545.928602][T15946]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  545.928602][T15946] 
[  545.940298][ T5987] usb 6-1: new high-speed USB device number 91 using dummy_hcd
[  545.991317][T15946] 
[  545.991317][T15946]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  545.991317][T15946] 
[  546.004049][    T9] usb 4-1: new high-speed USB device number 96 using dummy_hcd
[  546.057363][T15946] 
[  546.057363][T15946]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  546.057363][T15946] 
[  546.102479][ T5987] usb 6-1: too many configurations: 241, using maximum allowed: 8
[  546.126823][ T5987] usb 6-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  546.136928][ T5987] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  546.176659][ T5987] usb 6-1: Product: syz
[  546.190016][    T9] usb 4-1: Using ep0 maxpacket: 16
[  546.202537][ T5987] usb 6-1: Manufacturer: syz
[  546.221895][ T5987] usb 6-1: SerialNumber: syz
[  546.237055][    T9] usb 4-1: config 8 has an invalid interface number: 206 but max is 0
[  546.256237][    T9] usb 4-1: config 8 has no interface number 0
[  546.268507][ T5987] usb 6-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  546.268512][    T9] usb 4-1: config 8 interface 206 altsetting 1 has an endpoint descriptor with address 0xF7, changing to 0x87
[  546.302160][ T5886] 
[  546.302160][ T5886]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  546.302160][ T5886] 
[  546.318134][T15971] netlink: 'syz.0.4367': attribute type 10 has an invalid length.
[  546.330986][ T5955] usb 6-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  546.349419][ T5886] 
[  546.349419][ T5886]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  546.349419][ T5886] 
[  546.386451][    T9] usb 4-1: config 8 interface 206 altsetting 1 endpoint 0x87 has invalid maxpacket 33058, setting to 1024
[  546.404205][T15971] macvlan0: entered promiscuous mode
[  546.409808][T15971] macvlan0: entered allmulticast mode
[  546.455322][    T9] usb 4-1: config 8 interface 206 altsetting 1 has an invalid descriptor for endpoint zero, skipping
[  546.486793][T15971] veth1_vlan: entered allmulticast mode
[  546.519004][T15971] bond0: (slave macvlan0): Enslaving as an active interface with an up link
[  546.528211][    T9] usb 4-1: config 8 interface 206 altsetting 1 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  546.568490][    C1] usb 6-1: ath9k_htc: invalid pkt_len (fffb)
[  546.594631][    T9] usb 4-1: config 8 interface 206 has no altsetting 0
[  546.636624][    T9] usb 4-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=35.bb
[  546.664821][    T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  546.702702][    T9] usb 4-1: Product: syz
[  546.719183][    T9] usb 4-1: Manufacturer: syz
[  546.735782][    T9] usb 4-1: SerialNumber: syz
[  546.779395][T15975] loop4: detected capacity change from 0 to 4096
[  547.012176][    T9] garmin_gps 4-1:8.206: Garmin GPS usb/tty converter detected
[  547.121537][    T9] usb 4-1: Garmin GPS usb/tty converter now attached to ttyUSB0
[  547.174390][T15987] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  547.249749][    T9] usb 4-1: USB disconnect, device number 96
[  547.306090][    T9] garmin_gps ttyUSB0: Garmin GPS usb/tty converter now disconnected from ttyUSB0
[  547.361096][    T9] garmin_gps 4-1:8.206: device disconnected
[  547.429994][T15984] bridge1: entered promiscuous mode
[  547.449834][T15975] NILFS error (device loop4): nilfs_check_folio: bad entry in directory #2: unaligned directory entry - offset=128, inode=16, rec_len=23857, name_len=5
[  547.469299][T15984] bridge1: entered allmulticast mode
[  547.564583][T15975] Remounting filesystem read-only
[  548.753385][T15994] loop3: detected capacity change from 0 to 16
[  548.868476][T15994] erofs (device loop3): mounted with root inode @ nid 36.
[  549.060245][T15981] loop0: detected capacity change from 0 to 32768
[  549.105602][T16008] netlink: 'syz.1.4374': attribute type 2 has an invalid length.
[  549.335882][T15981] (syz.0.4371,15981,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  549.508267][T15981] (syz.0.4371,15981,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  549.790002][T15981] JBD2: Ignoring recovery information on journal
[  550.052845][T15981] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  550.658563][ T5889] ocfs2: Unmounting device (7,0) on (node local)
[  550.711844][T16038] loop4: detected capacity change from 0 to 256
[  551.034604][T16038] FAT-fs (loop4): Directory bread(block 64) failed
[  551.110102][T16038] FAT-fs (loop4): Directory bread(block 65) failed
[  551.191379][T16038] FAT-fs (loop4): Directory bread(block 66) failed
[  551.197981][T16038] FAT-fs (loop4): Directory bread(block 67) failed
[  551.371899][T16038] FAT-fs (loop4): Directory bread(block 68) failed
[  551.378494][T16038] FAT-fs (loop4): Directory bread(block 69) failed
[  551.511243][T16038] FAT-fs (loop4): Directory bread(block 70) failed
[  551.517829][T16038] FAT-fs (loop4): Directory bread(block 71) failed
[  551.726063][T16038] FAT-fs (loop4): Directory bread(block 72) failed
[  551.732755][T16038] FAT-fs (loop4): Directory bread(block 73) failed
[  552.127583][T16059] netlink: 16 bytes leftover after parsing attributes in process `syz.5.4398'.
[  552.525648][    C1] sched: DL replenish lagged too much
[  552.547575][T16068] loop3: detected capacity change from 0 to 1024
[  552.795593][T16068] MTD: Couldn't look up './file0': -15
[  553.263472][   T11] hfsplus: b-tree write err: -5, ino 4
[  553.271551][T16077] usb usb9: check_ctrlrecip: process 16077 (syz.5.4405) requesting ep 01 but needs 81
[  553.374802][T16077] usb usb9: usbfs: process 16077 (syz.5.4405) did not claim interface 0 before use
[  553.612704][T16083] openvswitch: netlink: Missing key (keys=40, expected=2000)
[  554.317227][T16095] netlink: zone id is out of range
[  554.387703][T16095] netlink: zone id is out of range
[  554.460285][T16095] netlink: zone id is out of range
[  554.477761][T16095] netlink: zone id is out of range
[  554.545979][T16095] netlink: zone id is out of range
[  554.610537][T16095] netlink: zone id is out of range
[  554.662862][T16095] netlink: zone id is out of range
[  554.715334][T16095] netlink: zone id is out of range
[  554.791654][T16095] netlink: zone id is out of range
[  554.900394][T16101] loop3: detected capacity change from 0 to 16
[  555.005710][T16101] erofs (device loop3): mounted with root inode @ nid 36.
[  555.123699][T16064] loop0: detected capacity change from 0 to 32768
[  555.227933][T16064] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.4392 (16064)
[  555.381969][T16064] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  555.493636][T16064] BTRFS info (device loop0): using sha256 (sha256-ni) checksum algorithm
[  555.581243][T16064] BTRFS info (device loop0): using free-space-tree
[  555.701760][T16113] loop1: detected capacity change from 0 to 64
[  555.724442][T16064] workqueue: Failed to create a rescuer kthread for wq "btrfs-delalloc": -EINTR
[  555.724738][T16064] workqueue: Failed to create a rescuer kthread for wq "btrfs-flush_delalloc": -EINTR
[  555.840004][T16064] workqueue: Failed to create a rescuer kthread for wq "btrfs-cache": -EINTR
[  555.978756][T16064] workqueue: Failed to create a rescuer kthread for wq "btrfs-fixup": -EINTR
[  556.106985][T16064] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio": -EINTR
[  556.212194][T16064] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-meta": -EINTR
[  556.305152][T16064] workqueue: Failed to create a rescuer kthread for wq "btrfs-rmw": -EINTR
[  556.320596][T16126] raw_sendmsg: syz.4.4425 forgot to set AF_INET. Fix it!
[  556.403660][T16064] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-write": -EINTR
[  556.404487][T16064] workqueue: Failed to create a rescuer kthread for wq "btrfs-compressed-write": -EINTR
[  556.491871][T16064] workqueue: Failed to create a rescuer kthread for wq "btrfs-freespace-write": -EINTR
[  556.628857][T16064] workqueue: Failed to create a rescuer kthread for wq "btrfs-delayed-meta": -EINTR
[  556.719724][T16064] workqueue: Failed to create a rescuer kthread for wq "btrfs-qgroup-rescan": -EINTR
[  556.922823][T16133] loop3: detected capacity change from 0 to 4096
[  556.940130][T16064] BTRFS error (device loop0): open_ctree failed
[  557.209011][T16133] ntfs3(loop3): ino=3, Correct links count -> 2.
[  558.335506][T16156] AppArmor: change_hat: Invalid input '0x'
[  558.705974][T16164] ipt_REJECT: TCP_RESET invalid for non-tcp
[  558.718495][T16165] capability: warning: `syz.0.4433' uses 32-bit capabilities (legacy support in use)
[  558.940986][T16169] loop4: detected capacity change from 0 to 64
[  561.204937][   T92] usb 2-1: new high-speed USB device number 88 using dummy_hcd
[  561.430827][   T92] usb 2-1: Using ep0 maxpacket: 32
[  561.436253][T16216] netlink: 'syz.0.4462': attribute type 1 has an invalid length.
[  561.516389][   T92] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  561.576484][T16220] loop2: detected capacity change from 0 to 1024
[  561.604958][   T29] audit: type=1326 audit(1736439211.026:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16218 comm="syz.4.4463" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcfdf585d29 code=0x7ffc0000
[  561.671208][   T92] usb 2-1: New USB device found, idVendor=0402, idProduct=5602, bcdDevice=66.4d
[  561.757973][   T92] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  561.847530][   T92] usb 2-1: Product: syz
[  561.860583][   T29] audit: type=1326 audit(1736439211.082:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16218 comm="syz.4.4463" exe="/root/syz-executor" sig=0 arch=c000003e syscall=154 compat=0 ip=0x7fcfdf585d29 code=0x7ffc0000
[  561.908420][   T92] usb 2-1: Manufacturer: syz
[  561.954371][   T92] usb 2-1: SerialNumber: syz
[  562.044329][   T92] usb 2-1: config 0 descriptor??
[  562.118292][   T92] gspca_main: ALi m5602-2.14.0 probing 0402:5602
[  562.157501][   T29] audit: type=1326 audit(1736439211.082:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16218 comm="syz.4.4463" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcfdf585d29 code=0x7ffc0000
[  562.470978][   T29] audit: type=1326 audit(1736439211.082:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16218 comm="syz.4.4463" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcfdf585d29 code=0x7ffc0000
[  562.562968][   T92] gspca_m5602: Failed to find a sensor
[  562.637095][   T92] ALi m5602 2-1:0.0: ALi m5602 webcam failed
[  562.734788][   T92] usb 2-1: USB disconnect, device number 88
[  563.274110][T16245] loop3: detected capacity change from 0 to 64
[  563.778125][T16256] loop1: detected capacity change from 0 to 512
[  563.939913][T16256] EXT4-fs: Ignoring removed mblk_io_submit option
[  564.039656][T16256] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  564.204624][T16256] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a042c118, mo2=0002]
[  564.274873][T16256] System zones: 1-12
[  564.305903][T16256] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.4478: corrupted in-inode xattr: e_value size too large
[  564.338484][T16263] netlink: 'syz.3.4479': attribute type 2 has an invalid length.
[  564.346332][T16263] netlink: 'syz.3.4479': attribute type 11 has an invalid length.
[  564.484863][T16256] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.4478: couldn't read orphan inode 15 (err -117)
[  564.504270][T16263] netlink: 132 bytes leftover after parsing attributes in process `syz.3.4479'.
[  564.609590][T16256] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  566.408493][T16295] loop3: detected capacity change from 0 to 1024
[  566.466466][    T8] usb 1-1: new high-speed USB device number 94 using dummy_hcd
[  566.683293][    T8] usb 1-1: New USB device found, idVendor=0bda, idProduct=0177, bcdDevice=7d.0b
[  566.715782][    T8] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  566.748590][    T8] usb 1-1: config 0 descriptor??
[  566.775857][   T92] usb 4-1: new high-speed USB device number 97 using dummy_hcd
[  566.807058][    T8] ums-realtek 1-1:0.0: USB Mass Storage device detected
[  566.848551][T16283] loop2: detected capacity change from 0 to 32768
[  566.879989][T16283] XFS (loop2): Mounting V5 filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 in no-recovery mode. Filesystem will be inconsistent.
[  566.957626][   T92] usb 4-1: Using ep0 maxpacket: 16
[  567.001776][T16283] XFS (loop2): Quotacheck needed: Please wait.
[  567.023812][   T92] usb 4-1: config 0 has an invalid interface number: 2 but max is 0
[  567.056604][   T92] usb 4-1: config 0 has no interface number 0
[  567.126397][    T8] usb 1-1: USB disconnect, device number 94
[  567.135024][   T92] usb 4-1: config 0 interface 2 altsetting 0 endpoint 0xB has invalid maxpacket 43736, setting to 1024
[  567.209754][    T9] XFS (loop2): Metadata CRC error detected at xfs_rmapbt_read_verify+0x41/0xd0, xfs_rmapbt block 0x14 
[  567.228233][   T92] usb 4-1: config 0 interface 2 altsetting 0 bulk endpoint 0xB has invalid maxpacket 1024
[  567.257854][    T9] XFS (loop2): Unmount and run xfs_repair
[  567.263876][    T9] XFS (loop2): First 128 bytes of corrupted metadata buffer:
[  567.274870][   T92] usb 4-1: New USB device found, idVendor=0582, idProduct=0005, bcdDevice= 0.88
[  567.289144][   T92] usb 4-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3
[  567.297418][    T9] 00000000: 52 4d 42 33 00 00 00 0c ff ff ff ff ff ff ff ff  RMB3............
[  567.329095][   T92] usb 4-1: Product: syz
[  567.352477][    T9] 00000010: 00 00 02 00 00 00 00 14 00 00 00 01 00 00 00 80  ................
[  567.363308][   T92] usb 4-1: SerialNumber: syz
[  567.378189][   T92] usb 4-1: config 0 descriptor??
[  567.384431][T16295] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  567.397092][    T9] 00000020: bf dc 47 fc 10 d8 4e ed a5 62 11 a8 31 b3 f7 91  ..G...N..b..1...
[  567.417723][    T9] 00000030: 00 00 00 00 5b af 3b 1d 00 00 00 00 00 00 00 01  ....[.;.........
[  567.426734][    T9] 00000040: ff ff ff ff ff ff ff fd 00 00 00 00 00 00 00 00  ................
[  567.452836][    T9] 00000050: 00 00 00 01 00 00 00 02 ff ff ff ff ff ff ff fb  ................
[  567.489053][    T9] 00000060: 00 00 00 00 00 00 00 00 00 00 00 03 00 00 00 02  ................
[  567.509502][    T9] 00000070: ff ff ff ff ff ff ff fa 00 00 00 00 00 00 00 00  ................
[  567.528561][   T11] XFS (loop2): metadata I/O error in "xfs_btree_read_buf_block+0x36f/0x5b0" at daddr 0x14 len 4 error 74
[  567.572102][   T11] XFS (loop2): Metadata I/O Error (0x1) detected at xfs_trans_read_buf_map+0x663/0xab0 (fs/xfs/xfs_trans_buf.c:311).  Shutting down filesystem.
[  567.597145][   T11] XFS (loop2): Please unmount the filesystem and rectify the problem(s)
[  567.648989][   T92] usb 4-1: Quirk or no altset; falling back to MIDI 1.0
[  567.664817][T16283] XFS (loop2): Quotacheck: Unsuccessful (Error -117): Disabling quotas.
[  567.695819][   T92] usb 4-1: invalid MIDI in EP 0
[  567.774529][T16283] Invalid source name
[  567.792152][   T92] snd-usb-audio 4-1:0.2: probe with driver snd-usb-audio failed with error -22
[  567.817775][T16283] UBIFS error (pid: 16283): cannot open "./file0", error -22
[  567.888236][   T92] usb 4-1: USB disconnect, device number 97
[  568.024942][ T6212] udevd[6212]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.2/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  582.773908][ T5902] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  582.782939][ T5902] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  582.794398][ T5902] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  582.802721][ T5902] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  582.810259][ T5902] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[  582.817637][ T5902] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  582.915246][ T5139] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  582.926303][ T5139] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  582.935012][ T5139] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  582.947441][ T5139] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  582.955568][ T5139] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[  582.963024][ T5139] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  583.246390][ T5902] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[  583.256483][ T5902] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[  583.265454][ T5902] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[  583.273769][ T5902] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[  583.281317][ T5902] Bluetooth: hci8: unexpected cc 0x0c25 length: 249 > 3
[  583.289085][ T5902] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[  585.024779][ T5902] Bluetooth: hci6: command tx timeout
[  585.148994][ T5139] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1
[  585.158219][ T5139] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9
[  585.167687][ T5139] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9
[  585.175586][ T5139] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4
[  585.184124][ T5139] Bluetooth: hci9: unexpected cc 0x0c25 length: 249 > 3
[  585.192030][ T5139] Bluetooth: hci7: command tx timeout
[  585.198824][ T5139] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2
[  585.344835][ T5902] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1
[  585.360825][ T5902] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9
[  585.368909][ T5902] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9
[  585.379397][ T5902] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4
[  585.388558][ T5902] Bluetooth: hci10: unexpected cc 0x0c25 length: 249 > 3
[  585.395910][ T5902] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2
[  585.527155][ T5902] Bluetooth: hci8: command tx timeout
[  585.695087][ T5139] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1
[  585.704533][ T5139] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9
[  585.713386][ T5139] Bluetooth: hci11: unexpected cc 0x1001 length: 249 > 9
[  585.724125][ T5139] Bluetooth: hci11: unexpected cc 0x0c23 length: 249 > 4
[  585.733098][ T5139] Bluetooth: hci11: unexpected cc 0x0c25 length: 249 > 3
[  585.740521][ T5139] Bluetooth: hci11: unexpected cc 0x0c38 length: 249 > 2
[  587.240333][ T5902] Bluetooth: hci6: command tx timeout
[  587.408834][ T5139] Bluetooth: hci7: command tx timeout
[  587.417905][ T5902] Bluetooth: hci9: command tx timeout
[  587.579971][ T5902] Bluetooth: hci10: command tx timeout
[  587.750901][ T5902] Bluetooth: hci8: command tx timeout
[  587.929942][ T5902] Bluetooth: hci11: command tx timeout
[  587.954316][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  587.960641][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  589.461489][ T5902] Bluetooth: hci6: command tx timeout
[  589.633798][ T5902] Bluetooth: hci9: command tx timeout
[  589.639267][ T5902] Bluetooth: hci7: command tx timeout
[  589.803534][ T5902] Bluetooth: hci10: command tx timeout
[  589.974637][ T5902] Bluetooth: hci8: command tx timeout
[  590.156199][ T5902] Bluetooth: hci11: command tx timeout
[  591.695636][ T5902] Bluetooth: hci6: command tx timeout
[  591.856194][ T5139] Bluetooth: hci9: command tx timeout
[  591.876211][ T5902] Bluetooth: hci7: command tx timeout
[  592.031381][ T5902] Bluetooth: hci10: command tx timeout
[  592.198313][ T5902] Bluetooth: hci8: command tx timeout
[  592.369198][ T5902] Bluetooth: hci11: command tx timeout
[  594.081566][ T5902] Bluetooth: hci9: command tx timeout
[  594.250779][ T5902] Bluetooth: hci10: command tx timeout
[  594.603515][ T5902] Bluetooth: hci11: command tx timeout
[  651.213797][ T5139] Bluetooth: hci12: unexpected cc 0x0c03 length: 249 > 1
[  651.224997][ T5139] Bluetooth: hci12: unexpected cc 0x1003 length: 249 > 9
[  651.237865][ T5139] Bluetooth: hci12: unexpected cc 0x1001 length: 249 > 9
[  651.246066][ T5139] Bluetooth: hci12: unexpected cc 0x0c23 length: 249 > 4
[  651.253810][ T5139] Bluetooth: hci12: unexpected cc 0x0c25 length: 249 > 3
[  651.261171][ T5139] Bluetooth: hci12: unexpected cc 0x0c38 length: 249 > 2
[  651.757763][ T5902] Bluetooth: hci13: unexpected cc 0x0c03 length: 249 > 1
[  651.798266][ T5902] Bluetooth: hci13: unexpected cc 0x1003 length: 249 > 9
[  651.811094][ T5902] Bluetooth: hci13: unexpected cc 0x1001 length: 249 > 9
[  651.821043][ T5902] Bluetooth: hci13: unexpected cc 0x0c23 length: 249 > 4
[  651.831033][ T5902] Bluetooth: hci13: unexpected cc 0x0c25 length: 249 > 3
[  651.843236][ T5902] Bluetooth: hci13: unexpected cc 0x0c38 length: 249 > 2
[  652.034187][ T5139] Bluetooth: hci14: unexpected cc 0x0c03 length: 249 > 1
[  652.055089][ T5139] Bluetooth: hci14: unexpected cc 0x1003 length: 249 > 9
[  652.062967][ T5139] Bluetooth: hci14: unexpected cc 0x1001 length: 249 > 9
[  652.072436][ T5139] Bluetooth: hci14: unexpected cc 0x0c23 length: 249 > 4
[  652.081187][ T5139] Bluetooth: hci14: unexpected cc 0x0c25 length: 249 > 3
[  652.089172][ T5139] Bluetooth: hci14: unexpected cc 0x0c38 length: 249 > 2
[  652.258544][ T5902] Bluetooth: hci15: unexpected cc 0x0c03 length: 249 > 1
[  652.267771][ T5902] Bluetooth: hci15: unexpected cc 0x1003 length: 249 > 9
[  652.277099][ T5902] Bluetooth: hci15: unexpected cc 0x1001 length: 249 > 9
[  652.285276][ T5902] Bluetooth: hci15: unexpected cc 0x0c23 length: 249 > 4
[  652.294161][ T5902] Bluetooth: hci15: unexpected cc 0x0c25 length: 249 > 3
[  652.322377][ T5902] Bluetooth: hci15: unexpected cc 0x0c38 length: 249 > 2
[  652.435739][ T5139] Bluetooth: hci16: unexpected cc 0x0c03 length: 249 > 1
[  652.447383][ T5139] Bluetooth: hci16: unexpected cc 0x1003 length: 249 > 9
[  652.457622][ T5139] Bluetooth: hci16: unexpected cc 0x1001 length: 249 > 9
[  652.468063][ T5139] Bluetooth: hci16: unexpected cc 0x0c23 length: 249 > 4
[  652.482262][ T5139] Bluetooth: hci16: unexpected cc 0x0c25 length: 249 > 3
[  652.490773][ T5139] Bluetooth: hci16: unexpected cc 0x0c38 length: 249 > 2
[  652.530739][ T5902] Bluetooth: hci17: unexpected cc 0x0c03 length: 249 > 1
[  652.540125][ T5902] Bluetooth: hci17: unexpected cc 0x1003 length: 249 > 9
[  652.548479][ T5902] Bluetooth: hci17: unexpected cc 0x1001 length: 249 > 9
[  652.565458][ T5902] Bluetooth: hci17: unexpected cc 0x0c23 length: 249 > 4
[  652.577549][ T5902] Bluetooth: hci17: unexpected cc 0x0c25 length: 249 > 3
[  652.591387][ T5902] Bluetooth: hci17: unexpected cc 0x0c38 length: 249 > 2
[  653.530190][ T5902] Bluetooth: hci12: command tx timeout
[  653.620456][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  653.633694][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  654.043421][ T5902] Bluetooth: hci13: command tx timeout
[  654.300224][ T5902] Bluetooth: hci14: command tx timeout
[  654.545965][ T5902] Bluetooth: hci15: command tx timeout
[  654.727753][ T5902] Bluetooth: hci16: command tx timeout
[  654.813151][ T5902] Bluetooth: hci17: command tx timeout
[  655.754016][ T5902] Bluetooth: hci12: command tx timeout
[  656.267133][ T5902] Bluetooth: hci13: command tx timeout
[  656.513188][ T5902] Bluetooth: hci14: command tx timeout
[  656.781875][ T5902] Bluetooth: hci15: command tx timeout
[  656.940701][ T5902] Bluetooth: hci16: command tx timeout
[  657.036818][ T5902] Bluetooth: hci17: command tx timeout
[  657.985067][ T5902] Bluetooth: hci12: command tx timeout
[  658.480019][ T5902] Bluetooth: hci13: command tx timeout
[  658.747488][ T5902] Bluetooth: hci14: command tx timeout
[  659.003892][ T5902] Bluetooth: hci15: command tx timeout
[  659.175500][ T5902] Bluetooth: hci16: command tx timeout
[  659.260531][ T5902] Bluetooth: hci17: command tx timeout
[  660.202547][ T5902] Bluetooth: hci12: command tx timeout
[  660.704319][ T5902] Bluetooth: hci13: command tx timeout
[  660.971032][ T5902] Bluetooth: hci14: command tx timeout
[  661.227422][ T5902] Bluetooth: hci15: command tx timeout
[  661.398535][ T5902] Bluetooth: hci16: command tx timeout
[  661.484139][ T5902] Bluetooth: hci17: command tx timeout
[  715.546933][T16364] Bluetooth: hci18: unexpected cc 0x0c03 length: 249 > 1
[  715.563589][T16364] Bluetooth: hci18: unexpected cc 0x1003 length: 249 > 9
[  715.589187][T16364] Bluetooth: hci18: unexpected cc 0x1001 length: 249 > 9
[  715.666509][T16364] Bluetooth: hci18: unexpected cc 0x0c23 length: 249 > 4
[  715.680153][T16364] Bluetooth: hci18: unexpected cc 0x0c25 length: 249 > 3
[  715.688163][T16364] Bluetooth: hci18: unexpected cc 0x0c38 length: 249 > 2
[  716.311667][T16364] Bluetooth: hci10: command 0x0406 tx timeout
[  716.367648][T16357] Bluetooth: hci19: unexpected cc 0x0c03 length: 249 > 1
[  716.378712][T16357] Bluetooth: hci19: unexpected cc 0x1003 length: 249 > 9
[  716.388867][T16357] Bluetooth: hci19: unexpected cc 0x1001 length: 249 > 9
[  716.397831][T16357] Bluetooth: hci19: unexpected cc 0x0c23 length: 249 > 4
[  716.408175][T16357] Bluetooth: hci19: unexpected cc 0x0c25 length: 249 > 3
[  716.416040][T16357] Bluetooth: hci19: unexpected cc 0x0c38 length: 249 > 2
[  716.653141][T16357] Bluetooth: hci8: command 0x0406 tx timeout
[  716.793004][T16364] Bluetooth: hci20: unexpected cc 0x0c03 length: 249 > 1
[  716.815010][T16364] Bluetooth: hci20: unexpected cc 0x1003 length: 249 > 9
[  716.829343][T16364] Bluetooth: hci20: unexpected cc 0x1001 length: 249 > 9
[  716.837403][T16364] Bluetooth: hci20: unexpected cc 0x0c23 length: 249 > 4
[  716.856138][T16372] Bluetooth: hci20: unexpected cc 0x0c25 length: 249 > 3
[  716.869285][T16372] Bluetooth: hci20: unexpected cc 0x0c38 length: 249 > 2
[  716.890317][T16372] Bluetooth: hci21: unexpected cc 0x0c03 length: 249 > 1
[  716.901204][T16372] Bluetooth: hci7: command 0x0406 tx timeout
[  716.907682][T16372] Bluetooth: hci9: command 0x0406 tx timeout
[  716.913810][T16372] Bluetooth: hci6: command 0x0406 tx timeout
[  716.924078][T16374] Bluetooth: hci21: unexpected cc 0x1003 length: 249 > 9
[  716.934314][T16374] Bluetooth: hci21: unexpected cc 0x1001 length: 249 > 9
[  716.947410][T16374] Bluetooth: hci21: unexpected cc 0x0c23 length: 249 > 4
[  716.955095][T16374] Bluetooth: hci21: unexpected cc 0x0c25 length: 249 > 3
[  716.964258][T16374] Bluetooth: hci21: unexpected cc 0x0c38 length: 249 > 2
[  717.150810][T16374] Bluetooth: hci22: unexpected cc 0x0c03 length: 249 > 1
[  717.173921][T16374] Bluetooth: hci22: unexpected cc 0x1003 length: 249 > 9
[  717.183400][T16374] Bluetooth: hci22: unexpected cc 0x1001 length: 249 > 9
[  717.194655][T16374] Bluetooth: hci22: unexpected cc 0x0c23 length: 249 > 4
[  717.207324][T16374] Bluetooth: hci22: unexpected cc 0x0c25 length: 249 > 3
[  717.218443][T16374] Bluetooth: hci22: unexpected cc 0x0c38 length: 249 > 2
[  717.335213][T16374] Bluetooth: hci23: unexpected cc 0x0c03 length: 249 > 1
[  717.348573][T16374] Bluetooth: hci23: unexpected cc 0x1003 length: 249 > 9
[  717.357561][T16374] Bluetooth: hci23: unexpected cc 0x1001 length: 249 > 9
[  717.365583][T16374] Bluetooth: hci23: unexpected cc 0x0c23 length: 249 > 4
[  717.373200][T16374] Bluetooth: hci23: unexpected cc 0x0c25 length: 249 > 3
[  717.397813][T16374] Bluetooth: hci23: unexpected cc 0x0c38 length: 249 > 2
[  717.920071][T16374] Bluetooth: hci18: command tx timeout
[  718.614803][T16374] Bluetooth: hci19: command tx timeout
[  719.202796][T16374] Bluetooth: hci21: command tx timeout
[  719.210561][T16374] Bluetooth: hci20: command tx timeout
[  719.316998][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  719.323534][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  719.469996][T16374] Bluetooth: hci22: command tx timeout
[  719.641096][T16374] Bluetooth: hci23: command tx timeout
[  720.154109][T16374] Bluetooth: hci18: command tx timeout
[  720.656803][   T30] INFO: task pool_workqueue_:3 blocked for more than 143 seconds.
[  720.664683][   T30]       Not tainted 6.13.0-rc6-syzkaller-00051-geea6e4b4dfb8 #0
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  720.763579][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  720.772405][   T30] task:pool_workqueue_ state:D stack:25464 pid:3     tgid:3     ppid:2      flags:0x00004000
[  720.814892][   T30] Call Trace:
[  720.849168][T16374] Bluetooth: hci19: command tx timeout
[  720.924176][   T30]  <TASK>
[  720.928124][   T30]  __schedule+0x1850/0x4c30
[  720.932720][   T30]  ? __pfx___schedule+0x10/0x10
[  721.039782][   T30]  ? __pfx_lock_release+0x10/0x10
[  721.054949][   T30]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  721.060955][   T30]  ? schedule+0x90/0x320
[  721.083575][   T30]  schedule+0x14b/0x320
[  721.088321][   T30]  synchronize_rcu_expedited+0x70a/0x830
[  721.094023][   T30]  ? __pfx_synchronize_rcu_expedited+0x10/0x10
[  721.108511][   T30]  ? __pfx_autoremove_wake_function+0x10/0x10
[  721.114648][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  721.127988][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  721.133700][   T30]  ? __pfx___might_resched+0x10/0x10
[  721.154447][   T30]  ? call_rcu+0x731/0xa70
[  721.159223][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  721.165171][   T30]  ? lockdep_hardirqs_on+0x99/0x150
[  721.180636][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  721.186347][   T30]  synchronize_rcu+0x11b/0x360
[  721.191804][   T30]  ? __pfx_synchronize_rcu+0x10/0x10
[  721.197169][   T30]  lockdep_unregister_key+0x556/0x610
[  721.208654][   T30]  ? __pfx_lockdep_unregister_key+0x10/0x10
[  721.216181][   T30]  ? __pfx_kvfree_call_rcu+0x10/0x10
[  721.221521][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  721.237538][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  721.243599][   T30]  pwq_release_workfn+0x6d1/0x800
[  721.256012][   T30]  kthread_worker_fn+0x4f9/0xb70
[  721.261720][   T30]  ? kthread_worker_fn+0xdc/0xb70
[  721.272708][   T30]  ? __pfx_pwq_release_workfn+0x10/0x10
[  721.287786][   T30]  ? __pfx_kthread_worker_fn+0x10/0x10
[  721.293327][   T30]  kthread+0x2f2/0x390
[  721.297451][   T30]  ? __pfx_kthread_worker_fn+0x10/0x10
[  721.311518][   T30]  ? __pfx_kthread+0x10/0x10
[  721.316178][   T30]  ret_from_fork+0x4d/0x80
[  721.328963][   T30]  ? __pfx_kthread+0x10/0x10
[  721.337096][   T30]  ret_from_fork_asm+0x1a/0x30
[  721.347985][   T30]  </TASK>
[  721.352275][   T30] INFO: task jbd2/sda1-8:5162 blocked for more than 144 seconds.
[  721.360114][   T30]       Not tainted 6.13.0-rc6-syzkaller-00051-geea6e4b4dfb8 #0
[  721.386919][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  721.403407][   T30] task:jbd2/sda1-8     state:D stack:24144 pid:5162  tgid:5162  ppid:2      flags:0x00004000
[  721.417383][   T30] Call Trace:
[  721.420692][   T30]  <TASK>
[  721.423648][   T30]  __schedule+0x1850/0x4c30
[  721.428525][T16374] Bluetooth: hci20: command tx timeout
[  721.434122][T16374] Bluetooth: hci21: command tx timeout
[  721.458349][   T30]  ? __pfx___schedule+0x10/0x10
[  721.463272][   T30]  ? __pfx_lock_release+0x10/0x10
[  721.468430][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  721.483109][   T30]  ? schedule+0x90/0x320
[  721.487402][   T30]  schedule+0x14b/0x320
[  721.500070][   T30]  io_schedule+0x8d/0x110
[  721.508108][   T30]  bit_wait_io+0x12/0xd0
[  721.514869][T16374] Bluetooth: hci11: command 0x0406 tx timeout
[  721.528677][   T30]  __wait_on_bit+0xb2/0x2f0
[  721.537238][   T30]  ? __pfx_bit_wait_io+0x10/0x10
[  721.542689][   T30]  out_of_line_wait_on_bit+0x1d5/0x260
[  721.552280][   T30]  ? __pfx_bit_wait_io+0x10/0x10
[  721.560949][   T30]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[  721.579298][   T30]  ? __pfx_wake_bit_function+0x10/0x10
[  721.590556][   T30]  jbd2_journal_commit_transaction+0x3d09/0x6560
[  721.597027][   T30]  ? __pfx_jbd2_journal_commit_transaction+0x10/0x10
[  721.616749][   T30]  ? lockdep_hardirqs_on+0x99/0x150
[  721.636774][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  721.645113][   T30]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  721.651421][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  721.657100][   T30]  ? __try_to_del_timer_sync+0x2ad/0x340
[  721.669992][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  721.676022][   T30]  ? __pfx___timer_delete_sync+0x10/0x10
[  721.681722][   T30]  ? __pfx_do_raw_write_lock+0x10/0x10
[  721.687560][T16374] Bluetooth: hci22: command tx timeout
[  721.702587][   T30]  ? prepare_to_wait+0x186/0x210
[  721.707940][   T30]  ? schedule+0x90/0x320
[  721.712243][   T30]  kjournald2+0x41c/0x7b0
[  721.735915][   T30]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  721.747527][   T30]  ? __pfx_kjournald2+0x10/0x10
[  721.752444][   T30]  ? __pfx_autoremove_wake_function+0x10/0x10
[  721.767009][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  721.773126][   T30]  ? __kthread_parkme+0x169/0x1d0
[  721.778301][   T30]  ? __pfx_kjournald2+0x10/0x10
[  721.790592][   T30]  kthread+0x2f2/0x390
[  721.794722][   T30]  ? __pfx_kjournald2+0x10/0x10
[  721.799615][   T30]  ? __pfx_kthread+0x10/0x10
[  721.816666][   T30]  ret_from_fork+0x4d/0x80
[  721.821169][   T30]  ? __pfx_kthread+0x10/0x10
[  721.832076][   T30]  ret_from_fork_asm+0x1a/0x30
[  721.837012][   T30]  </TASK>
[  721.841631][   T30] INFO: task dhcpcd:5494 blocked for more than 144 seconds.
[  721.853746][   T30]       Not tainted 6.13.0-rc6-syzkaller-00051-geea6e4b4dfb8 #0
[  721.861661][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  721.882023][T16374] Bluetooth: hci23: command tx timeout
[  721.898270][   T30] task:dhcpcd          state:D stack:19704 pid:5494  tgid:5494  ppid:5493   flags:0x00000002
[  721.918012][   T30] Call Trace:
[  721.921699][   T30]  <TASK>
[  721.924651][   T30]  __schedule+0x1850/0x4c30
[  721.933513][   T30]  ? __pfx___schedule+0x10/0x10
[  721.938505][   T30]  ? __pfx_lock_release+0x10/0x10
[  721.947348][   T30]  ? _raw_spin_unlock_irqrestore+0x8f/0x140
[  721.958121][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  721.966418][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  721.977015][   T30]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  721.988696][   T30]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  722.003461][   T30]  ? schedule+0x90/0x320
[  722.007770][   T30]  schedule+0x14b/0x320
[  722.011968][   T30]  schedule_preempt_disabled+0x13/0x30
[  722.030474][   T30]  __mutex_lock+0x7e7/0xee0
[  722.035064][   T30]  ? __mutex_lock+0x5ef/0xee0
[  722.042586][   T30]  ? inet_rtm_newaddr+0x47e/0x1bd0
[  722.052564][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  722.057901][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  722.063600][   T30]  ? __lock_acquire+0x1397/0x2100
[  722.071438][   T30]  ? __nla_parse+0x40/0x60
[  722.075913][   T30]  inet_rtm_newaddr+0x47e/0x1bd0
[  722.085880][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  722.094113][   T30]  ? rcu_read_unlock+0x87/0xa0
[  722.098927][   T30]  ? __pfx_inet_rtm_newaddr+0x10/0x10
[  722.124431][   T30]  ? __pfx_inet_rtm_newaddr+0x10/0x10
[  722.129912][   T30]  rtnetlink_rcv_msg+0x793/0xcf0
[  722.150456][   T30]  ? rtnetlink_rcv_msg+0x1a7/0xcf0
[  722.159447][   T30]  ? __lock_acquire+0x1397/0x2100
[  722.164825][   T30]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  722.170358][   T30]  netlink_rcv_skb+0x1e5/0x430
[  722.182525][   T30]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  722.188314][   T30]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  722.193669][   T30]  ? netlink_deliver_tap+0x2e/0x1b0
[  722.206573][   T30]  netlink_unicast+0x7f8/0x990
[  722.211465][   T30]  ? __pfx_netlink_unicast+0x10/0x10
[  722.216811][   T30]  ? __virt_addr_valid+0x45f/0x530
[  722.233264][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  722.248493][   T30]  ? __phys_addr_symbol+0x2f/0x70
[  722.260247][   T30]  ? __check_object_size+0x47a/0x730
[  722.265596][   T30]  netlink_sendmsg+0x8e4/0xcb0
[  722.270422][   T30]  ? __pfx_netlink_sendmsg+0x10/0x10
[  722.291423][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  722.303198][   T30]  ? aa_sock_msg_perm+0x91/0x160
[  722.308194][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  722.319882][   T30]  ? __pfx_netlink_sendmsg+0x10/0x10
[  722.326779][   T30]  __sock_sendmsg+0x223/0x270
[  722.331515][   T30]  ____sys_sendmsg+0x52a/0x7e0
[  722.342241][   T30]  ? __pfx_____sys_sendmsg+0x10/0x10
[  722.350698][   T30]  __sys_sendmsg+0x269/0x350
[  722.355385][   T30]  ? __pfx___sys_sendmsg+0x10/0x10
[  722.367414][   T30]  ? netlink_bind+0xaeb/0xc90
[  722.372160][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  722.378052][T16374] Bluetooth: hci18: command tx timeout
[  722.390902][   T30]  ? __pfx___sys_bind+0x10/0x10
[  722.395816][   T30]  ? fd_install+0x35c/0x5d0
[  722.418842][   T30]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  722.427959][   T30]  ? do_syscall_64+0x100/0x230
[  722.438094][   T30]  ? do_syscall_64+0xb6/0x230
[  722.445506][   T30]  do_syscall_64+0xf3/0x230
[  722.450073][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  722.463132][   T30] RIP: 0033:0x7fa6def01a4b
[  722.467600][   T30] RSP: 002b:00007ffd641d4598 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  722.487509][   T30] RAX: ffffffffffffffda RBX: 00007fa6dee296c0 RCX: 00007fa6def01a4b
[  722.500652][   T30] RDX: 0000000000000000 RSI: 00007ffd641e8748 RDI: 000000000000001a
[  722.511324][   T30] RBP: 000000000000001a R08: 0000000000000000 R09: 00007ffd641e8748
[  722.524843][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: ffffffffffffffff
[  722.535517][   T30] R13: 00007ffd641e8748 R14: 0000000000000044 R15: 0000000000000001
[  722.555877][   T30]  </TASK>
[  722.559010][   T30] INFO: task syz-executor:5886 blocked for more than 145 seconds.
[  722.576813][   T30]       Not tainted 6.13.0-rc6-syzkaller-00051-geea6e4b4dfb8 #0
[  722.589317][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  722.603562][   T30] task:syz-executor    state:D stack:11768 pid:5886  tgid:5886  ppid:1      flags:0x00000004
[  722.620175][   T30] Call Trace:
[  722.623809][   T30]  <TASK>
[  722.626774][   T30]  __schedule+0x1850/0x4c30
[  722.631345][   T30]  ? __pfx___schedule+0x10/0x10
[  722.645252][   T30]  ? __pfx_lock_release+0x10/0x10
[  722.650510][   T30]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  722.657003][   T30]  ? schedule+0x90/0x320
[  722.661390][   T30]  schedule+0x14b/0x320
[  722.665693][   T30]  synchronize_rcu_expedited+0x70a/0x830
[  722.693754][   T30]  ? __pfx_synchronize_rcu_expedited+0x10/0x10
[  722.705067][   T30]  ? __pfx_autoremove_wake_function+0x10/0x10
[  722.725072][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  722.740437][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  722.749829][   T30]  ? __pfx_up_write+0x10/0x10
[  722.764014][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  722.769701][   T30]  ? shrink_dentry_list+0x59c/0x5b0
[  722.782225][   T30]  namespace_unlock+0x29f/0x4d0
[  722.789193][   T30]  ? __pfx_lock_release+0x10/0x10
[  722.795116][   T30]  ? __pfx_namespace_unlock+0x10/0x10
[  722.800836][   T30]  path_umount+0xeca/0xf70
[  722.812706][   T30]  ? __x64_sys_umount+0x123/0x170
[  722.827187][   T30]  ? __pfx_path_umount+0x10/0x10
[  722.832263][   T30]  ? kmem_cache_free+0x195/0x410
[  722.844406][   T30]  __x64_sys_umount+0x123/0x170
[  722.858164][   T30]  ? __pfx___x64_sys_umount+0x10/0x10
[  722.869657][   T30]  ? do_syscall_64+0x100/0x230
[  722.874491][   T30]  ? do_syscall_64+0xb6/0x230
[  722.879217][   T30]  do_syscall_64+0xf3/0x230
[  722.891498][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  722.899021][   T30] RIP: 0033:0x7fe2d1b87057
[  722.911269][   T30] RSP: 002b:00007ffe9352d348 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  722.920062][   T30] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fe2d1b87057
[  722.935429][   T30] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe9352d400
[  722.943491][   T30] RBP: 00007ffe9352d400 R08: 0000000000000000 R09: 0000000000000000
[  722.965636][   T30] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe9352e480
[  722.973750][   T30] R13: 00007fe2d1c018f4 R14: 00007ffe9352e4c0 R15: 00000000000002e0
[  722.994993][   T30]  </TASK>
[  723.002626][   T30] INFO: task syz.4.4486:16276 blocked for more than 145 seconds.
[  723.020272][   T30]       Not tainted 6.13.0-rc6-syzkaller-00051-geea6e4b4dfb8 #0
[  723.027962][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  723.045216][   T30] task:syz.4.4486      state:D stack:20720 pid:16276 tgid:16275 ppid:5887   flags:0x00000006
[  723.056284][T16374] Bluetooth: hci19: command tx timeout
[  723.067250][   T30] Call Trace:
[  723.070571][   T30]  <TASK>
[  723.083181][   T30]  __schedule+0x1850/0x4c30
[  723.087822][   T30]  ? __pfx___schedule+0x10/0x10
[  723.092726][   T30]  ? __pfx_lock_release+0x10/0x10
[  723.111270][   T30]  ? _raw_spin_unlock_irqrestore+0x8f/0x140
[  723.124766][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  723.137771][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  723.143478][   T30]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  723.157156][   T30]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  723.164054][   T30]  ? schedule+0x90/0x320
[  723.168368][   T30]  schedule+0x14b/0x320
[  723.180148][   T30]  schedule_preempt_disabled+0x13/0x30
[  723.185689][   T30]  __mutex_lock+0x7e7/0xee0
[  723.190836][   T30]  ? __mutex_lock+0x5ef/0xee0
[  723.195664][   T30]  ? synchronize_rcu_expedited+0x451/0x830
[  723.211859][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  723.217058][   T30]  ? do_raw_spin_lock+0x14f/0x370
[  723.232643][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  723.241615][   T30]  ? do_raw_spin_unlock+0x13c/0x8b0
[  723.257509][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  723.263229][   T30]  synchronize_rcu_expedited+0x451/0x830
[  723.276195][   T30]  ? geneve_sock_add+0x4eb/0xbc0
[  723.281219][   T30]  ? __pfx_synchronize_rcu_expedited+0x10/0x10
[  723.287955][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  723.293640][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  723.306587][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  723.318379][   T30]  geneve_sock_release+0x1a0/0x500
[  723.323584][   T30]  geneve_open+0x114/0x160
[  723.328053][   T30]  __dev_open+0x2d5/0x450
[  723.346734][   T30]  ? __pfx___dev_open+0x10/0x10
[  723.354663][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  723.360398][   T30]  ? dev_set_rx_mode+0xb8/0x2e0
[  723.371840][   T30]  __dev_change_flags+0x1e2/0x6f0
[  723.376935][   T30]  ? __pfx___dev_change_flags+0x10/0x10
[  723.388441][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  723.395858][   T30]  ? rtnl_create_link+0x91c/0xc20
[  723.400954][   T30]  rtnl_newlink_create+0x465/0xa40
[  723.421159][   T30]  ? __pfx_rtnl_newlink_create+0x10/0x10
[  723.428455][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  723.434135][   T30]  ? ns_capable+0x8a/0xf0
[  723.445407][   T30]  rtnl_newlink+0x1c7e/0x2210
[  723.460513][   T30]  ? __pfx_rtnl_newlink+0x10/0x10
[  723.465626][   T30]  ? __netlink_deliver_tap+0x56b/0x7f0
[  723.479158][   T30]  ? __pfx_validate_chain+0x10/0x10
[  723.484434][   T30]  ? __sock_sendmsg+0x223/0x270
[  723.489357][   T30]  ? ____sys_sendmsg+0x52a/0x7e0
[  723.508066][   T30]  ? __sys_sendmsg+0x269/0x350
[  723.516604][   T30]  ? do_syscall_64+0xf3/0x230
[  723.521356][   T30]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  723.531364][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  723.541265][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  723.551001][   T30]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  723.563209][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  723.574067][   T30]  ? mark_lock+0x9a/0x360
[  723.582209][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  723.599039][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  723.604739][   T30]  ? __lock_acquire+0x1397/0x2100
[  723.622872][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  723.631716][   T30]  ? __pfx_lock_release+0x10/0x10
[  723.636855][   T30]  ? __pfx_rtnl_newlink+0x10/0x10
[  723.646990][   T30]  rtnetlink_rcv_msg+0x793/0xcf0
[  723.652429][T16374] Bluetooth: hci21: command tx timeout
[  723.657982][T16374] Bluetooth: hci20: command tx timeout
[  723.671661][   T30]  ? rtnetlink_rcv_msg+0x1a7/0xcf0
[  723.676872][   T30]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  723.684713][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  723.690493][   T30]  ? ref_tracker_free+0x643/0x7e0
[  723.706467][   T30]  netlink_rcv_skb+0x1e5/0x430
[  723.711297][   T30]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  723.726910][   T30]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  723.732342][   T30]  ? netlink_deliver_tap+0x2e/0x1b0
[  723.752971][   T30]  netlink_unicast+0x7f8/0x990
[  723.760895][   T30]  ? __pfx_netlink_unicast+0x10/0x10
[  723.766374][   T30]  ? __virt_addr_valid+0x45f/0x530
[  723.779013][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  723.784726][   T30]  ? __phys_addr_symbol+0x2f/0x70
[  723.795937][   T30]  ? __check_object_size+0x47a/0x730
[  723.802923][   T30]  netlink_sendmsg+0x8e4/0xcb0
[  723.807750][   T30]  ? __pfx_netlink_sendmsg+0x10/0x10
[  723.819933][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  723.835921][   T30]  ? aa_sock_msg_perm+0x91/0x160
[  723.840930][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  723.860703][   T30]  ? __pfx_netlink_sendmsg+0x10/0x10
[  723.873874][   T30]  __sock_sendmsg+0x223/0x270
[  723.885820][   T30]  ____sys_sendmsg+0x52a/0x7e0
[  723.890830][   T30]  ? __pfx_____sys_sendmsg+0x10/0x10
[  723.911973][   T30]  ? __fget_files+0x2a/0x410
[  723.916657][   T30]  ? __fget_files+0x2a/0x410
[  723.921708][T16374] Bluetooth: hci22: command tx timeout
[  723.929074][   T30]  __sys_sendmsg+0x269/0x350
[  723.933758][   T30]  ? __pfx_futex_wake+0x10/0x10
[  723.945385][   T30]  ? __pfx___sys_sendmsg+0x10/0x10
[  723.952143][   T30]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  723.958528][   T30]  ? do_syscall_64+0x100/0x230
[  723.970517][   T30]  ? do_syscall_64+0xb6/0x230
[  723.975278][   T30]  do_syscall_64+0xf3/0x230
[  723.979846][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  723.999016][   T30] RIP: 0033:0x7fcfdf585d29
[  724.009509][   T30] RSP: 002b:00007fcfe02f8038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  724.019791][   T30] RAX: ffffffffffffffda RBX: 00007fcfdf775fa0 RCX: 00007fcfdf585d29
[  724.033781][   T30] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003
[  724.045340][   T30] RBP: 00007fcfdf601b08 R08: 0000000000000000 R09: 0000000000000000
[  724.053351][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  724.077995][   T30] R13: 0000000000000000 R14: 00007fcfdf775fa0 R15: 00007ffe1e4037b8
[  724.086137][   T30]  </TASK>
[  724.098878][T16374] Bluetooth: hci23: command tx timeout
[  724.108453][   T30] INFO: task syz.5.4494:16291 blocked for more than 146 seconds.
[  724.122812][   T30]       Not tainted 6.13.0-rc6-syzkaller-00051-geea6e4b4dfb8 #0
[  724.130491][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  724.148246][   T30] task:syz.5.4494      state:D stack:27136 pid:16291 tgid:16290 ppid:5906   flags:0x00000004
[  724.162361][   T30] Call Trace:
[  724.171130][   T30]  <TASK>
[  724.184304][   T30]  __schedule+0x1850/0x4c30
[  724.188987][   T30]  ? __pfx___schedule+0x10/0x10
[  724.193889][   T30]  ? __pfx_lock_release+0x10/0x10
[  724.205999][   T30]  ? _raw_spin_unlock_irqrestore+0x8f/0x140
[  724.214015][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  724.232891][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  724.241225][   T30]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  724.247170][   T30]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  724.259184][   T30]  ? schedule+0x90/0x320
[  724.263483][   T30]  schedule+0x14b/0x320
[  724.267678][   T30]  schedule_preempt_disabled+0x13/0x30
[  724.280565][   T30]  __mutex_lock+0x7e7/0xee0
[  724.285128][   T30]  ? __mutex_lock+0x5ef/0xee0
[  724.289848][   T30]  ? rtnetlink_rcv_msg+0x6e6/0xcf0
[  724.307971][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  724.313873][   T30]  rtnetlink_rcv_msg+0x6e6/0xcf0
[  724.318855][   T30]  ? rtnetlink_rcv_msg+0x1a7/0xcf0
[  724.331927][   T30]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  724.344966][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  724.350730][   T30]  ? ref_tracker_free+0x643/0x7e0
[  724.364505][   T30]  netlink_rcv_skb+0x1e5/0x430
[  724.370295][   T30]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  724.375816][   T30]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  724.387452][   T30]  ? netlink_deliver_tap+0x2e/0x1b0
[  724.392698][   T30]  netlink_unicast+0x7f8/0x990
[  724.397556][   T30]  ? __pfx_netlink_unicast+0x10/0x10
[  724.410115][   T30]  ? __virt_addr_valid+0x45f/0x530
[  724.415369][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  724.433542][   T30]  ? __phys_addr_symbol+0x2f/0x70
[  724.438638][   T30]  ? __check_object_size+0x47a/0x730
[  724.466134][   T30]  netlink_sendmsg+0x8e4/0xcb0
[  724.471088][   T30]  ? __pfx_netlink_sendmsg+0x10/0x10
[  724.483661][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  724.489345][   T30]  ? aa_sock_msg_perm+0x91/0x160
[  724.499588][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  724.512376][   T30]  ? __pfx_netlink_sendmsg+0x10/0x10
[  724.521493][   T30]  __sock_sendmsg+0x223/0x270
[  724.526248][   T30]  ____sys_sendmsg+0x52a/0x7e0
[  724.537108][   T30]  ? __pfx_____sys_sendmsg+0x10/0x10
[  724.545692][   T30]  ? __fget_files+0x2a/0x410
[  724.555452][   T30]  ? __fget_files+0x2a/0x410
[  724.562824][   T30]  __sys_sendmsg+0x269/0x350
[  724.567516][   T30]  ? __pfx___sys_sendmsg+0x10/0x10
[  724.578347][   T30]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  724.595033][   T30]  ? do_syscall_64+0x100/0x230
[  724.600131][   T30]  ? do_syscall_64+0xb6/0x230
[  724.611934][T16374] Bluetooth: hci18: command tx timeout
[  724.628277][   T30]  do_syscall_64+0xf3/0x230
[  724.632870][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  724.643272][   T30] RIP: 0033:0x7fa3a1b85d29
[  724.651782][   T30] RSP: 002b:00007fa3a29e5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  724.665931][   T30] RAX: ffffffffffffffda RBX: 00007fa3a1d75fa0 RCX: 00007fa3a1b85d29
[  724.673951][   T30] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000003
[  724.688183][   T30] RBP: 00007fa3a1c01b08 R08: 0000000000000000 R09: 0000000000000000
[  724.696224][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  724.715666][   T30] R13: 0000000000000000 R14: 00007fa3a1d75fa0 R15: 00007fff025ee3f8
[  724.730109][   T30]  </TASK>
[  724.733244][   T30] INFO: task dhcpcd:16296 blocked for more than 147 seconds.
[  724.756956][   T30]       Not tainted 6.13.0-rc6-syzkaller-00051-geea6e4b4dfb8 #0
[  724.783456][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  724.792180][   T30] task:dhcpcd          state:D stack:26752 pid:16296 tgid:16296 ppid:5494   flags:0x00000002
[  724.814088][   T30] Call Trace:
[  724.824401][   T30]  <TASK>
[  724.832070][   T30]  __schedule+0x1850/0x4c30
[  724.836920][   T30]  ? __pfx___schedule+0x10/0x10
[  724.841823][   T30]  ? __pfx_lock_release+0x10/0x10
[  724.846899][   T30]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  724.858416][   T30]  ? schedule+0x90/0x320
[  724.862715][   T30]  schedule+0x14b/0x320
[  724.879815][   T30]  synchronize_rcu_expedited+0x70a/0x830
[  724.885533][   T30]  ? __pfx_synchronize_rcu_expedited+0x10/0x10
[  724.898405][   T30]  ? __pfx_autoremove_wake_function+0x10/0x10
[  724.904878][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  724.910564][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  724.922387][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  724.928170][   T30]  __unregister_prot_hook+0x402/0x570
[  724.948474][   T30]  ? packet_do_bind+0x93/0xcb0
[  724.953325][   T30]  packet_do_bind+0x517/0xcb0
[  724.959757][   T30]  ? packet_do_bind+0x93/0xcb0
[  724.964587][   T30]  __sys_bind+0x1e6/0x290
[  724.975415][   T30]  ? __pfx___sys_bind+0x10/0x10
[  724.984827][   T30]  ? fd_install+0x35c/0x5d0
[  725.011026][   T30]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  725.017553][   T30]  ? do_syscall_64+0x100/0x230
[  725.027523][   T30]  __x64_sys_bind+0x7a/0x90
[  725.036004][   T30]  do_syscall_64+0xf3/0x230
[  725.040892][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  725.046836][   T30] RIP: 0033:0x7fa6def01677
[  725.059166][   T30] RSP: 002b:00007ffd641d8448 EFLAGS: 00000217 ORIG_RAX: 0000000000000031
[  725.068055][   T30] RAX: ffffffffffffffda RBX: 000055f27574fca3 RCX: 00007fa6def01677
[  725.082919][   T30] RDX: 0000000000000014 RSI: 00007ffd641d8458 RDI: 0000000000000005
[  725.101013][   T30] RBP: 0000000000000000 R08: 000055f285775fe0 R09: 0000000000020000
[  725.114659][   T30] R10: 000000000000006d R11: 0000000000000217 R12: 000055f2857726c0
[  725.122671][   T30] R13: 000055f285776e58 R14: 00007ffd641f8d3c R15: 000055f285776e24
[  725.137111][   T30]  </TASK>
[  725.140275][   T30] 
[  725.140275][   T30] Showing all locks held in the system:
[  725.157598][   T30] 3 locks held by kworker/0:0/8:
[  725.162571][   T30]  #0: ffff88801ac79948 ((wq_completion)events_power_efficient){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1840
[  725.186511][   T30]  #1: ffffc900000d7d00 ((reg_check_chans).work){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1840
[  725.204130][   T30]  #2: ffffffff8fcb2d88 (rtnl_mutex){+.+.}-{4:4}, at: reg_check_chans_work+0x99/0xfb0
[  725.221030][   T30] 1 lock held by khungtaskd/30:
[  725.230377][   T30]  #0: ffffffff8e937ae0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x55/0x2a0
[  725.244396][   T30] 3 locks held by kworker/u8:3/36:
[  725.249621][   T30]  #0: ffff88803051a148 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1840
[  725.274760][   T30]  #1: ffffc90000ac7d00 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1840
[  725.289502][T16374] Bluetooth: hci19: command tx timeout
[  725.309139][   T30]  #2: ffffffff8fcb2d88 (rtnl_mutex){+.+.}-{4:4}, at: addrconf_verify_work+0x19/0x30
[  725.327060][   T30] 4 locks held by kworker/1:2/2017:
[  725.339302][   T30] 3 locks held by kworker/u8:8/2970:
[  725.344639][   T30]  #0: ffff88801ac81148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1840
[  725.368542][   T30]  #1: ffffc9000bb07d00 ((work_completion)(&rdev->wiphy_work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1840
[  725.384332][   T30]  #2: ffff888054db0768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: cfg80211_wiphy_work+0xd9/0x480
[  725.407018][   T30] 4 locks held by kworker/u9:1/5139:
[  725.412372][   T30]  #0: ffff888078c67148 ((wq_completion)hci6){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1840
[  725.431057][   T30]  #1: ffffc9001074fd00 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1840
[  725.447559][   T30]  #2: ffff888078624d80 (&hdev->req_lock){+.+.}-{4:4}, at: hci_cmd_sync_work+0x1ec/0x400
[  725.473174][   T30]  #3: ffff888078624078 (&hdev->lock){+.+.}-{4:4}, at: hci_abort_conn_sync+0x1e4/0x11f0
[  725.490902][   T30] 1 lock held by dhcpcd/5494:
[  725.495619][   T30]  #0: ffffffff8fcb2d88 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[  725.510391][   T30] 2 locks held by getty/5586:
[  725.515109][   T30]  #0: ffff888030f4c0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  725.533435][   T30]  #1: ffffc90002fde2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x6a6/0x1e00
[  725.567602][   T30] 3 locks held by kworker/1:3/5877:
[  725.572864][   T30] 4 locks held by kworker/u9:6/5902:
[  725.587159][   T30]  #0: ffff88804a4d6148 ((wq_completion)hci8){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1840
[  725.602525][   T30]  #1: ffffc90003107d00 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1840
[  725.618940][   T30]  #2: ffff88802337cd80 (&hdev->req_lock){+.+.}-{4:4}, at: hci_cmd_sync_work+0x1ec/0x400
[  725.634863][   T30]  #3: ffff88802337c078 (&hdev->lock){+.+.}-{4:4}, at: hci_abort_conn_sync+0x1e4/0x11f0
[  725.655102][   T30] 2 locks held by kworker/1:5/5955:
[  725.661845][   T30] 2 locks held by kworker/1:7/5987:
[  725.667073][   T30] 3 locks held by syz.4.4486/16276:
[  725.678944][   T30]  #0: ffffffff9019c5f8 (&ops->srcu#2){.+.+}-{0:0}, at: rtnl_link_ops_get+0x22/0x250
[  725.690078][   T30]  #1: ffffffff8fcb2d88 (rtnl_mutex){+.+.}-{4:4}, at: rtnl_newlink+0xce2/0x2210
[  725.713254][   T30]  #2: ffffffff8e93cff8 (rcu_state.exp_mutex){+.+.}-{4:4}, at: synchronize_rcu_expedited+0x451/0x830
[  725.730126][   T30] 1 lock held by syz.5.4494/16291:
[  725.736734][   T30]  #0: ffffffff8fcb2d88 (rtnl_mutex){+.+.}-{4:4}, at: rtnetlink_rcv_msg+0x6e6/0xcf0
[  725.755822][   T30] 1 lock held by dhcpcd/16296:
[  725.760627][   T30]  #0: ffff88807c3bc258 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x32/0xcb0
[  725.777473][   T30] 1 lock held by syz.0.4497/16308:
[  725.782617][   T30]  #0: ffffffff8fcb2d88 (rtnl_mutex){+.+.}-{4:4}, at: devinet_ioctl+0x31a/0x1ac0
[  725.802705][   T30] 1 lock held by syz-executor/16312:
[  725.808129][   T30]  #0: ffffffff8fcb2d88 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[  725.824603][   T30] 4 locks held by kworker/u9:0/16313:
[  725.830107][   T30]  #0: ffff88804b2e9148 ((wq_completion)hci9){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1840
[  725.862855][   T30]  #1: ffffc9000c437d00 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1840
[  725.875845][T16364] Bluetooth: hci21: command tx timeout
[  725.881394][T16374] Bluetooth: hci20: command tx timeout
[  725.893874][   T30]  #2: ffff88803499cd80 (&hdev->req_lock){+.+.}-{4:4}, at: hci_cmd_sync_work+0x1ec/0x400
[  725.904333][   T30]  #3: ffff88803499c078 (&hdev->lock){+.+.}-{4:4}, at: hci_abort_conn_sync+0x1e4/0x11f0
[  725.922271][   T30] 1 lock held by syz-executor/16315:
[  725.928014][   T30]  #0: ffffffff8fcb2d88 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[  725.939054][   T30] 1 lock held by syz-executor/16320:
[  725.944375][   T30]  #0: ffffffff8fcb2d88 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[  725.963400][   T30] 1 lock held by syz-executor/16325:
[  725.981812][   T30]  #0: ffffffff8fcb2d88 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[  726.000333][   T30] 4 locks held by kworker/u9:2/16327:
[  726.006152][   T30]  #0: ffff888078edb148 ((wq_completion)hci10){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1840
[  726.024807][   T30]  #1: ffffc9000c4d7d00 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1840
[  726.045040][   T30]  #2: ffff888048d84d80 (&hdev->req_lock){+.+.}-{4:4}, at: hci_cmd_sync_work+0x1ec/0x400
[  726.055075][   T30]  #3: ffff888048d84078 (&hdev->lock){+.+.}-{4:4}, at: hci_abort_conn_sync+0x1e4/0x11f0
[  726.083458][   T30] 1 lock held by syz-executor/16328:
[  726.095422][   T30]  #0: ffffffff8fcb2d88 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[  726.112222][   T30] 1 lock held by syz-executor/16330:
[  726.117539][   T30]  #0: ffffffff8fcb2d88 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[  726.140891][T16374] Bluetooth: hci22: command tx timeout
[  726.146452][   T30] 1 lock held by syz-executor/16338:
[  726.152601][   T30]  #0: ffffffff8fcb2d88 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[  726.172628][   T30] 1 lock held by syz-executor/16342:
[  726.179625][   T30]  #0: ffffffff8fcb2d88 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[  726.197259][   T30] 1 lock held by syz-executor/16344:
[  726.202579][   T30]  #0: ffffffff8fcb2d88 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[  726.224359][   T30] 1 lock held by syz-executor/16346:
[  726.237352][   T30]  #0: ffffffff8fcb2d88 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[  726.246900][   T30] 1 lock held by syz-executor/16348:
[  726.265400][   T30]  #0: ffffffff8fcb2d88 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[  726.276651][   T30] 1 lock held by syz-executor/16349:
[  726.288502][   T30]  #0: ffffffff8fcb2d88 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[  726.303029][   T30] 4 locks held by kworker/u9:3/16356:
[  726.308527][   T30]  #0: ffff8880321c2148 ((wq_completion)hci7){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1840
[  726.322433][T16374] Bluetooth: hci23: command tx timeout
[  726.332756][   T30]  #1: ffffc9000c5c7d00 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1840
[  726.354518][   T30]  #2: ffff88803ac0cd80 (&hdev->req_lock){+.+.}-{4:4}, at: hci_cmd_sync_work+0x1ec/0x400
[  726.364533][   T30]  #3: ffff88803ac0c078 (&hdev->lock){+.+.}-{4:4}, at: hci_abort_conn_sync+0x1e4/0x11f0
[  726.385714][   T30] 4 locks held by kworker/u9:4/16357:
[  726.402473][   T30]  #0: ffff888054a0c948 ((wq_completion)hci11){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1840
[  726.422161][   T30]  #1: ffffc900035d7d00 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1840
[  726.438626][   T30]  #2: ffff88807acd0d80 (&hdev->req_lock){+.+.}-{4:4}, at: hci_cmd_sync_work+0x1ec/0x400
[  726.452287][   T30]  #3: ffff88807acd0078 (&hdev->lock){+.+.}-{4:4}, at: hci_abort_conn_sync+0x1e4/0x11f0
[  726.471713][   T30] 1 lock held by syz-executor/16362:
[  726.487392][   T30]  #0: ffffffff8fcb2d88 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[  726.504165][   T30] 1 lock held by syz-executor/16367:
[  726.513104][   T30]  #0: ffffffff8fcb2d88 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[  726.530231][   T30] 1 lock held by syz-executor/16369:
[  726.535563][   T30]  #0: ffffffff8fcb2d88 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[  726.555105][   T30] 1 lock held by syz-executor/16370:
[  726.567992][   T30]  #0: ffffffff8fcb2d88 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[  726.582739][   T30] 1 lock held by syz-executor/16376:
[  726.588059][   T30]  #0: ffffffff8fcb2d88 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[  726.604999][   T30] 1 lock held by syz-executor/16378:
[  726.610328][   T30]  #0: ffffffff8fcb2d88 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[  726.627267][   T30] 
[  726.629632][   T30] =============================================
[  726.629632][   T30] 
[  726.641163][   T30] NMI backtrace for cpu 0
[  726.645525][   T30] CPU: 0 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.13.0-rc6-syzkaller-00051-geea6e4b4dfb8 #0
[  726.656054][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  726.666154][   T30] Call Trace:
[  726.669456][   T30]  <TASK>
[  726.672412][   T30]  dump_stack_lvl+0x241/0x360
[  726.677230][   T30]  ? __pfx_dump_stack_lvl+0x10/0x10
[  726.682475][   T30]  ? __pfx__printk+0x10/0x10
[  726.687115][   T30]  nmi_cpu_backtrace+0x49c/0x4d0
[  726.692096][   T30]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  726.697632][   T30]  ? _printk+0xd5/0x120
[  726.701822][   T30]  ? __pfx__printk+0x10/0x10
[  726.706452][   T30]  ? __wake_up_klogd+0xcc/0x110
[  726.711334][   T30]  ? __pfx__printk+0x10/0x10
[  726.716222][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  726.721884][   T30]  ? __rcu_read_unlock+0xa1/0x110
[  726.726941][   T30]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  726.733037][   T30]  nmi_trigger_cpumask_backtrace+0x198/0x320
[  726.739078][   T30]  watchdog+0xff6/0x1040
[  726.743352][   T30]  ? watchdog+0x1ea/0x1040
[  726.747808][   T30]  ? __pfx_watchdog+0x10/0x10
[  726.752529][   T30]  kthread+0x2f2/0x390
[  726.756630][   T30]  ? __pfx_watchdog+0x10/0x10
[  726.761338][   T30]  ? __pfx_kthread+0x10/0x10
[  726.765961][   T30]  ret_from_fork+0x4d/0x80
[  726.770411][   T30]  ? __pfx_kthread+0x10/0x10
[  726.775048][   T30]  ret_from_fork_asm+0x1a/0x30
[  726.779851][   T30]  </TASK>
[  726.784013][   T30] Sending NMI from CPU 0 to CPUs 1:
[  726.789251][    C1] NMI backtrace for cpu 1
[  726.789268][    C1] CPU: 1 UID: 0 PID: 5987 Comm: kworker/1:7 Not tainted 6.13.0-rc6-syzkaller-00051-geea6e4b4dfb8 #0
[  726.789296][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  726.789313][    C1] Workqueue: wg-crypt-wg0 wg_packet_tx_worker
[  726.789355][    C1] RIP: 0010:usb_anchor_suspend_wakeups+0x2f/0x40
[  726.789383][    C1] Code: 48 89 fb e8 53 c0 5d fa 48 85 db 74 23 e8 49 c0 5d fa 48 8d bb a0 00 00 00 be 04 00 00 00 e8 88 26 c4 fa f0 ff 83 a0 00 00 00 <5b> e9 16 7d ae 04 e8 26 c0 5d fa 5b e9 0b 7d ae 04 90 90 90 90 90
[  726.789404][    C1] RSP: 0018:ffffc90000a18870 EFLAGS: 00000002
[  726.789425][    C1] RAX: ffffffff8741c301 RBX: ffff888024631298 RCX: ffffffff8741c3e8
[  726.789445][    C1] RDX: 0000000000000001 RSI: 0000000000000004 RDI: ffff888024631338
[  726.789462][    C1] RBP: ffffc90000a18950 R08: ffff88802463133b R09: 1ffff110048c6267
[  726.789481][    C1] R10: dffffc0000000000 R11: ffffed10048c6268 R12: 00000000ffffffb9
[  726.789500][    C1] R13: ffff888012450d00 R14: dffffc0000000000 R15: ffff888028730000
[  726.789523][    C1] FS:  0000000000000000(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
[  726.789545][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  726.789563][    C1] CR2: 000000110c3da8b4 CR3: 000000000e736000 CR4: 0000000000350ef0
[  726.789582][    C1] Call Trace:
[  726.789591][    C1]  <NMI>
[  726.789602][    C1]  ? nmi_cpu_backtrace+0x3c2/0x4d0
[  726.789633][    C1]  ? __pfx_lock_acquire+0x10/0x10
[  726.789666][    C1]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  726.789695][    C1]  ? nmi_handle+0x2a/0x5a0
[  726.789736][    C1]  ? nmi_cpu_backtrace_handler+0xc/0x20
[  726.789760][    C1]  ? nmi_handle+0x151/0x5a0
[  726.789790][    C1]  ? nmi_handle+0x2a/0x5a0
[  726.789821][    C1]  ? usb_anchor_suspend_wakeups+0x2f/0x40
[  726.789845][    C1]  ? default_do_nmi+0x63/0x160
[  726.789874][    C1]  ? exc_nmi+0x123/0x1f0
[  726.789901][    C1]  ? end_repeat_nmi+0xf/0x53
[  726.789928][    C1]  ? usb_get_from_anchor+0x41/0xf0
[  726.789950][    C1]  ? usb_anchor_suspend_wakeups+0x28/0x40
[  726.789975][    C1]  ? usb_anchor_suspend_wakeups+0x2f/0x40
[  726.790001][    C1]  ? usb_anchor_suspend_wakeups+0x2f/0x40
[  726.790028][    C1]  ? usb_anchor_suspend_wakeups+0x2f/0x40
[  726.790053][    C1]  </NMI>
[  726.790062][    C1]  <IRQ>
[  726.790071][    C1]  __usb_hcd_giveback_urb+0x29e/0x6e0
[  726.790106][    C1]  ? __pfx___usb_hcd_giveback_urb+0x10/0x10
[  726.790141][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  726.790166][    C1]  ? do_raw_spin_unlock+0x13c/0x8b0
[  726.790189][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  726.790225][    C1]  dummy_timer+0x856/0x4620
[  726.790251][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  726.790281][    C1]  ? debug_object_deactivate+0x2d5/0x390
[  726.790335][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  726.790380][    C1]  ? __pfx_dummy_timer+0x10/0x10
[  726.790409][    C1]  ? __pfx_dummy_timer+0x10/0x10
[  726.790433][    C1]  __hrtimer_run_queues+0x59d/0xd30
[  726.790469][    C1]  ? ktime_get_update_offsets_now+0x2d/0x3b0
[  726.790510][    C1]  ? __pfx___hrtimer_run_queues+0x10/0x10
[  726.790545][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  726.790570][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  726.790595][    C1]  ? ktime_get_update_offsets_now+0x393/0x3b0
[  726.790629][    C1]  hrtimer_run_softirq+0x19a/0x2c0
[  726.790669][    C1]  handle_softirqs+0x2d6/0x9b0
[  726.790706][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  726.790737][    C1]  ? __irq_exit_rcu+0xf7/0x220
[  726.790777][    C1]  ? __pfx_handle_softirqs+0x10/0x10
[  726.790817][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  726.790841][    C1]  ? irqtime_account_irq+0xd4/0x1e0
[  726.790874][    C1]  __irq_exit_rcu+0xf7/0x220
[  726.790911][    C1]  ? __pfx___irq_exit_rcu+0x10/0x10
[  726.790952][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  726.790979][    C1]  irq_exit_rcu+0x9/0x30
[  726.791014][    C1]  sysvec_apic_timer_interrupt+0xa6/0xc0
[  726.791048][    C1]  </IRQ>
[  726.791056][    C1]  <TASK>
[  726.791066][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  726.791104][    C1] RIP: 0010:wg_socket_send_skb_to_peer+0x178/0x1d0
[  726.791144][    C1] Code: 8d fb 48 8b 44 24 08 48 01 03 31 ed eb 12 e8 5f 1a 27 fb 4c 89 ff e8 d7 5a 14 03 bd 9f ff ff ff 4c 89 f7 e8 8a 3a 53 05 89 e8 <48> 83 c4 10 5b 41 5c 41 5d 41 5e 41 5f 5d e9 20 d7 77 05 e8 30 1a
[  726.791165][    C1] RSP: 0018:ffffc900046dfb08 EFLAGS: 00000246
[  726.791185][    C1] RAX: 0000000000000000 RBX: ffff8880287c3e60 RCX: ffffffff817b378a
[  726.791203][    C1] RDX: dffffc0000000000 RSI: ffffffff8c0a98e0 RDI: ffffffff8c5fb020
[  726.791227][    C1] RBP: 0000000000000000 R08: ffffffff942a4997 R09: 1ffffffff2854932
[  726.791245][    C1] R10: dffffc0000000000 R11: fffffbfff2854933 R12: dffffc0000000000
[  726.791264][    C1] R13: ffff8880287c3a20 R14: ffff8880287c3a60 R15: dffffc0000000000
[  726.791290][    C1]  ? mark_lock+0x9a/0x360
[  726.791324][    C1]  ? wg_socket_send_skb_to_peer+0x176/0x1d0
[  726.791366][    C1]  wg_packet_tx_worker+0x1bf/0x810
[  726.791406][    C1]  ? process_scheduled_works+0x976/0x1840
[  726.791432][    C1]  process_scheduled_works+0xa68/0x1840
[  726.791477][    C1]  ? __pfx_process_scheduled_works+0x10/0x10
[  726.791509][    C1]  ? assign_work+0x364/0x3d0
[  726.791537][    C1]  worker_thread+0x870/0xd30
[  726.791565][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  726.791592][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  726.791617][    C1]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  726.791652][    C1]  ? __kthread_parkme+0x169/0x1d0
[  726.791682][    C1]  ? __pfx_worker_thread+0x10/0x10
[  726.791708][    C1]  kthread+0x2f2/0x390
[  726.791737][    C1]  ? __pfx_worker_thread+0x10/0x10
[  726.791762][    C1]  ? __pfx_kthread+0x10/0x10
[  726.791793][    C1]  ret_from_fork+0x4d/0x80
[  726.791817][    C1]  ? __pfx_kthread+0x10/0x10
[  726.791847][    C1]  ret_from_fork_asm+0x1a/0x30
[  726.791881][    C1]  </TASK>
[  727.434440][   T30] Kernel panic - not syncing: hung_task: blocked tasks
[  727.441350][   T30] CPU: 0 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.13.0-rc6-syzkaller-00051-geea6e4b4dfb8 #0
[  727.451878][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  727.461954][   T30] Call Trace:
[  727.465251][   T30]  <TASK>
[  727.468201][   T30]  dump_stack_lvl+0x241/0x360
[  727.472923][   T30]  ? __pfx_dump_stack_lvl+0x10/0x10
[  727.478160][   T30]  ? __pfx__printk+0x10/0x10
[  727.482788][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  727.488810][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  727.494485][   T30]  ? vscnprintf+0x5d/0x90
[  727.498848][   T30]  panic+0x349/0x880
[  727.502780][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  727.508439][   T30]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[  727.514720][   T30]  ? __pfx_panic+0x10/0x10
[  727.519167][   T30]  ? tick_nohz_tick_stopped+0x82/0xb0
[  727.524579][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  727.530237][   T30]  ? __irq_work_queue_local+0x137/0x410
[  727.535813][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  727.541473][   T30]  ? preempt_schedule_thunk+0x1a/0x30
[  727.546877][   T30]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[  727.553060][   T30]  ? nmi_trigger_cpumask_backtrace+0x2d4/0x320
[  727.559249][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  727.564906][   T30]  ? nmi_trigger_cpumask_backtrace+0x2d9/0x320
[  727.571100][   T30]  watchdog+0x1035/0x1040
[  727.575466][   T30]  ? watchdog+0x1ea/0x1040
[  727.579919][   T30]  ? __pfx_watchdog+0x10/0x10
[  727.584626][   T30]  kthread+0x2f2/0x390
[  727.588726][   T30]  ? __pfx_watchdog+0x10/0x10
[  727.593446][   T30]  ? __pfx_kthread+0x10/0x10
[  727.598081][   T30]  ret_from_fork+0x4d/0x80
[  727.602544][   T30]  ? __pfx_kthread+0x10/0x10
[  727.607167][   T30]  ret_from_fork_asm+0x1a/0x30
[  727.611979][   T30]  </TASK>
[  727.615755][   T30] Kernel Offset: disabled
[  727.620081][   T30] Rebooting in 86400 seconds..