last executing test programs:

13m27.284552734s ago: executing program 32 (id=3035):
r0 = socket$inet6(0xa, 0x2, 0x3a)
sendmmsg$inet6(r0, &(0x7f0000000800)=[{{&(0x7f00000000c0)={0xa, 0x4e21, 0xfe, @local, 0x80000006}, 0x1c, &(0x7f0000000b40)=[{&(0x7f0000000100)="8000102e7577d401", 0x8}], 0x1, &(0x7f0000000000)=[@rthdr_2292={{0x28, 0x29, 0x39, {0x0, 0x2, 0x2, 0x4, 0x0, [@loopback]}}}], 0x28}}], 0x1, 0x0)

12m34.569980539s ago: executing program 1 (id=3622):
r0 = openat$vimc1(0xffffffffffffff9c, &(0x7f0000000280), 0x2, 0x0)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f00000002c0)={0x7, 0x9, 0x3, {0xb, @pix_mp={0x5, 0xf9, 0x3247504d, 0x2, 0x6, [{0xfffffff7, 0x3}, {0x10000, 0x1}, {0x1, 0x4}, {0xf9d8, 0x7fff}, {0x9f, 0x2}, {0x9, 0xabe}, {0x1, 0x7fffffff}, {0x6, 0x5}], 0x81, 0x9, 0x6, 0x2, 0x1}}, 0x468e0497})

12m34.384360261s ago: executing program 1 (id=3615):
r0 = eventfd2(0xbfffffff, 0x801)
write$eventfd(r0, &(0x7f0000000080)=0xfffffffffffffffe, 0x8)

12m34.113216216s ago: executing program 1 (id=3618):
syz_mount_image$udf(&(0x7f00000001c0), &(0x7f0000000000)='./file0\x00', 0x847, &(0x7f0000000140)=ANY=[], 0xe0, 0xc33, &(0x7f0000000340)="$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")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000240)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})

12m33.647376122s ago: executing program 1 (id=3623):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

12m33.002503162s ago: executing program 1 (id=3629):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000100)=@newlink={0x44, 0x10, 0x403, 0x84, 0x25dfcbff, {0x0, 0x0, 0x0, 0x0, 0x10001, 0x55410}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @gre={{0x8}, {0x18, 0x2, 0x0, 0x1, [@IFLA_GRE_ENCAP_TYPE={0x6}, @IFLA_GRE_COLLECT_METADATA={0x4}, @IFLA_GRE_OFLAGS={0x6, 0x3, 0x8000}]}}}]}, 0x44}, 0x1, 0xba01, 0x0, 0x4044000}, 0x28048080)

12m32.578107218s ago: executing program 33 (id=3629):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000100)=@newlink={0x44, 0x10, 0x403, 0x84, 0x25dfcbff, {0x0, 0x0, 0x0, 0x0, 0x10001, 0x55410}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @gre={{0x8}, {0x18, 0x2, 0x0, 0x1, [@IFLA_GRE_ENCAP_TYPE={0x6}, @IFLA_GRE_COLLECT_METADATA={0x4}, @IFLA_GRE_OFLAGS={0x6, 0x3, 0x8000}]}}}]}, 0x44}, 0x1, 0xba01, 0x0, 0x4044000}, 0x28048080)

10m50.639618935s ago: executing program 5 (id=4861):
r0 = io_uring_setup(0x3ea4, &(0x7f00000000c0)={0x0, 0x86f7, 0x10, 0x2, 0x378})
io_uring_register$IORING_UNREGISTER_PERSONALITY(r0, 0xa, 0x0, 0x0)

10m50.29140112s ago: executing program 5 (id=4865):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000000300)=ANY=[@ANYBLOB='iocharset=macceltic,fmask=00000000000000000000240,errors=remount-ro,iocharset=cp936,iocharset=cp852,dmask=00000000000000000000000,gid=', @ANYRESHEX=0x0, @ANYBLOB="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"], 0x1, 0x152f, &(0x7f00000037c0)="$eJzs3AucTVX7OPDnWWvtMSSdJrkMa61nc5LLIklySZJLkiRJkltC0iSvJCSG3JKGJCSXIbkMIblMTBr3+/2SkCRNkoTklqz/Z8r81Vvv/33f39svv/9vnu/nsz+znrP2s/ba85yzz977nJlvug6r1aR29UZEBP8R/OVHIgDEAsAgALgGAAIAKB9XPi6zP6fExP9sI+zP9VDKlZ4Bu5K4/tkb1z974/pnb1z/7I3rn71x/bM3rn/2xvVnLDvbMqPgtbxk34Xv/2dn/P7/v0hG6XFfrCt9fTeAmH81hev//z/8D3K5/v9rBf/KSlz/7I3rn13FXukJsP8B+PWfHeT4hz1c/+yN689Ydvbre8GxcOXvR//VC0Sy92cgV/r5xxhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGMsezjrL1MAkNW+0vNijDHGGGOMMcbYn8fnuNIzYIwxxhhjjDHG2H8/BAESFAQQAzkgFnJCLhAAMVn910IcXAd54XrIB/mhABSEeCgEhUGDAQsEIRSBohCFG6AY3AjFoQSUhFLgoDSUgZugLNwM5eAWKA+3QgW4DSpCJagMVeB2qAp3QDW4E6rDXVADakItqA13Qx24B+rCvVAP7oP6cD80gAegITwIjeAhaAwPQxN4BJrCo9AMmkMLaAmt/kv5L0BPeBF6QW9IhD7QF16CftAfBsBAGAQvw2B4BYbAq5AEQ2EYvAbD4XUYAW/ASBgFo+FNGANvwVgYB+NhAiTDRJgEb8NkeAemwFSYBtMhBWbATHgXZsFsmAPvwVx4H+bBfFgACyEVPoBFsBjS4ENYAh9BOiyFZbAcVsBKWAWrYQ2shXWwHjbARtgEm2ELbIVtsB12wE7YBR/DbvgE9sBe2Aefwn747N/MP/N3+d0QEFCgQIUKYzAGYzEWc2EuzI25MQ/mwQhGMA7jMC/mxXyYDwtgAYzHeCyMhdGgQULCIlgEoxjFYlgMi2NxLIkl0aHDMlgGy+LNWA7LYXksjxWwAlbESlgJq2AVrIpVsRpWw+pYHWtgDayFtfBuvBv7YF2si/WwHtbH+lm3p7ARNsLG2BibYBNsik2xGTbDFtgCW2ErbI2tsQ22wXbYDttje+yAHTABE7AjdsRO2Ak7Y2fsgl2wK3bFbtgdu2e8kAPwRXwRe2MN0Qf7Yl/sh0k5BuBAHIgv42B8BV/BVzEJh+IwfA1fw9dxBJ7GkTgKR+NorCrewrE4DklMwGRMxkk4CSfjZJyCU3EqTscUnIEzcSbOwtk4G9/Dufg+vo/zcT4uxFRMxUW4GNMwDZfgGUzHpbgMl+MKXIkrcDWuwdW4DtfjOtyIG3EzbsatuBW343bciTvxY1QA+Anuxb2YhPtxPx7AA3gQD+IhPIQZmIGH8TAewSN4FI/iMTyGx/EEnsQTeApP4Wk8g2fxLJ7H83gBn4v/qvHHJdYmgcikhBIxIkbEiliRS+QSuUVukUfkEREREXEiTuQVeUU+kU8UEAVEvIgXhUVhYYQRJMLMI4WIiqgoJoqJ4qK4KClKCiecKCPKiLKirCgnyony4lZRQdwmKopKoq2rIqqIqqKdqybuFNVFdVFD1BS1RG1RW9QRdURdUVfUE/VEfVFfNBAPiIaiDw7Ah0RmZZqIodhUDMNmormQl45QrcUIbCPainbiCTEKR2IH0doliKdFRzEWO4m/iXH4rOgiJmBX8bzoJrqLHuIF0VO0cb1EbzEF+4i+Yjr2E/3FADFQzMKa4j2cm7OWeFUkiaFimHhNLMTXxQjxhhgpRonR4k0xRrwlxopxYryYIJLFRDFJvC0mi3fEFDFVTBPTRYqYIWaKd8UsMVvMEe+JueJ9MU/MFwvEQpEqPhCLxGKRJj4US8RHIl0sFcvEcrFCrBSrxGqxRqwV68R6sUFsFJvEZrFFbBXbxHaxQ+wUu8THYrf4ROwRe8U+8anYLz4TB8Tn4qD4QhwSX4oM8ZU4LL4WR8Q34qj4VhwT34nj4oQ4Kb4Xp8QP4rQ4I86Kc+K8+FFcED+Ji8ILkCiFlFLJQMbIHDJW5pS55FUytwyyjv8yTl4n88rrZT6ZXxaQBWW8LCQLSy2NtJJkKIvIojIqb5DF5I2yuCwhS8pS0snSsoy8SZaVN8ty8hZZXt4qK8jbZEVZSVaWVeTtsqq8Q0Lkl23UkDVlLVlb3i0T4R5ZV94r68n7ZH15v2wgH5AN5YOykXxINpYPyybyEdlUPiqbyeayhWwpW8nHZGv5uGwj28p28gnZXj4pO8inZIJ8WnaU/tJT5FnZRT4nu8rnZTfZXfaQP8mL0stesreEPiD7ypdkP9lfDpAD5SD5shwsX5FD5KsySQ6Vw+Rrcrh8XY6Qb8iRcpQcLd+UY+RbcqwcJ8fLCTJZTpST5NtysnxHTpFT5TQ5XabIGXLApZHmSPlP89/+g/whP299s9wit8ptcrvcIXfKXfJjuVvulnvkHrlP7pP75X55QB6QB+VBeUgekhkyQx6Wh+UReUQelUflMXlMHpcn5Dn5vTwlf5Cn5Rl5Rp6T5+V5eeHS7wAUKqGkUipQMSqHilU5VS51lcqtrlZ51DUqoq5Vceo6lVddr/Kp/KqAKqjiVSFVWGlllFWkQlVEFVVRdQNeesKokqqUcqq0KqNu+nfyVTF1oyquSvwmP2t+if9gfq1UK9VatVZtVBvVTrVT7VV71UF1UAkqQXVUHVUn1Ul1Vp1VF9VFdVVdVTfVTfVQPVRP1VP1Ur1UokpUfdVLqp/qrwaogWqQellk7sMQNUQlqSQ1TA1Tw9VwNUKNUCPVSDVajVZj1Bg1Vo1V49V4layS1SQ1SU1Wk9UUNUVNU9NUikpRM9VMNUvNUnPUHDVXzVXz1Dy1QC1QqSpVLVKLVJpKU0vUEpWulqqlarlarlaqlWq1Wq3WqrVqvVqvNqqNKl1tUVvUNrVN7VA71C61S+1Wu9UetUftU/vUfrVfHVAH1EF1UB1Sh1SGylCH1WF1RB1RR9VRdUwdU8fVcXVSnVSn1Cl1Wp1WZ9VZdV6dVxfUBXVRXcw87QtEIAIVqCAmiAlig9ggV5AryB3kDvIEeYJIEAnigrggb3B9kC/IHxQICgbxQaGgcKADE9hAXCp6NLghKBbcGBQPSgQlg1KBC0oHZYKbgrLBzUG54JagfHBrUCG4LagYVAoqB1WC24OqwR1BteDOoHpwV1AjqBnUCmoHdwd1gnuCusG9Qb3gvqB+cH/QIHggaBg8GDQKHgoaBw8HTYJHgqbBo0GzoHnQImgZtPpTx/f+dP7HXS/dWyfqPrqvfkn30/31AD1QD9Iv68H6FT1Ev6qT9FA9TL+mh+vX9Qj9hh6pR+nR+k09Rr+lx+pxeryeoJP1RD1Jv60n63f0FD1VT9PTdYqeoWfqd/UsPVvP0e/pufp9PU/P1wv0Qp2qP9CL9GKdpj/US/RHOl0v1cv0cr1Cr9Sr9Gq9Rq/V6/R6vUFv1Jv0Zr1Fb9Xb9Ha9Q+/Uu/THerf+RO/Re/U+/anerz/TB/Tn+qD+Qh/SX+oM/ZU+rL/WR/Q3+qj+Vh/T3+nj+oQ+qb/Xp/QP+rQ+o8/qc/q8/lFf0D/pi9pnntxnvr0bZZSJMTEm1sSaXCaXyW1ymzwmj4mYiIkzcSavyWvymXymgClg4k28KWwKm0xkyBQxRUzURE0xU8wUN8VNSVPSOONMGVPGlDVlTTlTzpQ35U0FU8FUNBVNZVPZ3G5uN3eYO8yd5k5zl7nL1DQ1TW1T29QxdUxdU9fUM/VMfVPfNDANTEPT0DQyjUxj09g0MU1MU9PUNDPNTAvTwrQyrUxr09q0MW1MO9POtDftTQfTwSSYBNPRdDSdTCfT2XQ2XUwX09V0Nd1MN9PD9DA9TU/Ty/QyiSbR9DV9TT/TzwwwA8wgM8gMNoPNEDPEJJkkM8wMM8PNcDPCjDAjzSgzOvNE1bxlxppxZryZYJJNsplkJpnJZrKZYqaYaWaaSTEpZqaZaWaZWWaOmWPmmrlmnplnFpgFJtWkmkVmkUkzaWaJWWLSTbpZZpaZFWaFWWVWmTVmjVln1pkNsMFsMpvMFrPFbDPbzA6zw+wyu8xus9vsMXvMPrPP7Df7zQFzwBw0B80hc8hkmAxz2Bw2R8wRc9QcNcfMMXPcHDcnzUlzypwyp81pc9acNedN/kvvl97E2pw2l73K5rZX2zz2Gvv3cQFb0MbbQraw1Tafzf+b2Fhri9sStqQtZZ0tbcvYm34XV7SVbGVbxd5uq9o7bLXfxXXsPbauvdfWs/fZ2vbu38T17f22gX3ENkQEsM1tY9vSNrGP2Kb2UdvMNrctbEvb3j5pO9inbIJ92na0z/wuXmQX2zV2rV1n19s9dq89a8/ZI/Ybe97+aHvZ3naQfdkOtq/YIfZVm2SH/i4ebd+0Y+xbdqwdZ8fbCb+Lp9npNsXOsDPtu3aWnf27ONV+YOfaNDvPzrcL7MKf48w5pdkP7RL7kU23ASyzy+0Ku9Kusqv/71yX2412k91sd9tP7Da73e6wO+2urBNhu9fus5/a/fYze9h+bQ/aL+whe9Rm2K9+jjP376j91h6z39nj9oQ9ab+3p+wPKis7c9+/tz/Zi9ZbICQgSYoCiqEcFEs5KRddRbnpaspD11CErqU4uo7y0vWUj/JTASpI8VSICpMmQ5aIQipCRSlKN1DW9EpSKXJUmsrQTVSWbqZydAuVp1upAt1GFakSVaYqdDtVpTuoGt1J1ekuqkE1qRbVprupDt1Ddeleqkf3UX26nxrQA9SQHqRG9BA1poepCT1CTelRakbNqQW1pFb0GLWmx6kNtaV29AS1pyepAz1FCfQ0daRnqBP9jTrTs9SFnqOu9Dx1o+7Ug16gnvQi9aLelEh9qC+9RP2oPw2ggTSIXqbB9AoNoVcpiYbSMHqNhtPrNILeoJE0ikbTmzSG3qKxNI7G0wRKpok0id6myfQOTaGpNI2mUwrNoJn0Ls2i2TSH3qO59D7No/m0gBZSKn1Ai2gxpdGHtIQ+onRaSstoOa2glbSKVtMaWkvraD1toI20iTbTFtpK22g77aCdtIs+pt30Ce2hvbSPPqX99BkdoM/pIH1Bh+hLyqCv6DB9TUfoGzpK3/re9B0dpxN0kr6nU/QDnaYzdJbO0Xn6kS7QT3SRPEGIoQhlqMIgjAlzhLFhzjBXeFWYO7w6zBNeE0bCa8O48Lowb3h9mC/MHxYIC4bxYaGwcKhDE9qQwjAsEhYNo+ENYbHwxrB4WCIsGZYKXVg6LBPeFJYNbw7LhbeE5cNbwwrhbWHFsFL4yH1VwtvDquEdYbXwzrB6eFdYI6wZ1gprh3eHdcJ7wrrhvWG98L6wXHh/2CB8IGwYPhg2Ch8KG4cPh03CR8Km4aNhs7B52CJsGbYKHwtbh4+HbcK2YbvwqrB9+GTYIXwqTAifDjuGz/zcf//irP4nftefGPYJ+4YvhS+F3t8rF0QXRlOjH0QXRRdH06IfRpdEP4qmR5dGl0WXR1dEV0ZXRVdH10TXRtdF10c3RDdGN0U3R72vnQMcOuGkUy5wMS6Hi3U5XS53lcvtrnZ53DUu4q51ce46l9dd7/K5/K6AK+jiXSFX2GlnnHXkQlfEFXVRd4Mr5m50xV0JV9KVcs6VdmVcS9fKtXKt3eOujWvr2rkn3BPuSfeke8o95Z52Hd0zrpP7m+vsnnVd3HPuOfe86+a6ux7uBdfTTczzy2sy0fV1fV0/188NcAPcIDfIDXaD3RA3xCW5JDfMDXPD3XA3wo1wI91IN9qNdmPcGDfWjXXj3XiX7JLdJDfJTXaT3RQ3xU1z01yKS3Ez3Uw3y81yVWf/spV5bp5b4Ba4VJfqFrnMc8Y0t8Qtceku3S1zy9wKt8KtcqvcGrfGrXPr3Aa3wW1ym9wWt8Vtc9vcDrfD7XK73G632+3x1/wyqNvvDrgD7qA76A65L12G+8oddl+7I+4bd9R9646579xxd8KddN+7U+4Hd9qdcWfdOXfe/eguuJ/cReddcmRiZFLk7cjkyDuRKZGpkWmR6ZGUyIzIzMi7kVmR2ZE5kfcicyPvR+ZF5kcWRBZGUiMfRBZFFkfSIh9GlkQ+iqRHlkaWRZZHVkRWRrwvtC30RXxRH/U3+GL+Rl/cl/AlfSnvfGlfxt/ky/qbfTl/iy/vb/UV/G2+oq/kK/tHfTPf3LfwLX0r/5hv7R/3bXxb384/4dv7J30H/5RP8E/7jv4Z38n/zXf2z/ou/jnf1T/vu/nuvod/wff0L/pevrdP9H18X/+S7+f7+wF+oB/kX/aD/St+iH/VJ/mhfph/zQ/3r/sR/g0/0o/yo2Pe9GOyLpFhgk/2E/0k/7af7N/xU/xUP81P9yl+hp/p3/Wz/Gw/x7/n5/r3/Tw/3y/wC32q/8Av8ot9mv/QL/Ef+XS/NOumsV/lV/s1fq1f59f7DX6j3+Q3+y1+q9/mt/sdfqff5T/2u/0nfo/f6/f5T/1+/5k/4D/3B/0X/pD/0mf4r/xh/7U/4r/xR/23/pj/zh/3J/xJ/70/5X/wp/0Zf9af8+f9j/6C/8lf5L9ZY4wxxhj7l0y83BS/7fnldn6fP8gRv1q5LwBcvb1gxq/7M88oN+T7pd1fxLePAMDTvbs+lLXUqJGYmHhp3XQJQdH5AFmfBGX6+asHl+Kl0A6ehARoC2X/cP79Rffz9E/Gj94KkOtXObFwOb48/ucAmPgH4z/2xOhFFcKzcf+P8ecDFC96OScnXI6XQruf76+0hXL/YP75W/+T+ef8Ihmgza9ycsPl+PL8y8Dj8Awk/GZNxhhjjDHGGGPsF/1F5c5Z159Z3/j8o+vzeHU5Jwdcjv/Z9TljjDHGGGOMMcauvGe793jqsYSEtp3//Ua1/1LWv9xoCv9dI3PjDxveA2Q9ogDgPxwQILMh/8q92PqXbCvp0kvn77tWnPMB/M8o5Z/RuMIHJsYYY4wxxtif7vJJ/28fV1dqQowxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGWDb0V/w7sSu9j4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxtiV9n8CAAD//7wUAB0=")
mount$nfs(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x2842, 0x0)

10m49.894439976s ago: executing program 5 (id=4870):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r0, 0x84, 0x71, &(0x7f0000000140), 0x8)

10m49.596843051s ago: executing program 5 (id=4883):
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0xc0ed4040, &(0x7f0000000340)={[{@noblock_validity}, {@stripe={'stripe', 0x3d, 0x1}}, {@nouid32}, {@grpid}, {@bsdgroups}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x3}}, {@nolazytime}, {@noload}]}, 0xf5, 0x47a, &(0x7f0000000f80)="$eJzs3M9vFFUcAPDvTLel5YdFxB8gaBWMxB8tLT/kYGI0mnjQaKIHjKd1WwhSwEBNhBBFDxjjwZB4Nx5N/As86cWoJxOveDckxHABPa2ZnRnaLrulpQu7uJ9PMux7M7O89903b/fNe7sNoG+NZf8kEesj4mJEjEZEpfmEsfzh2pWztX+unK0lUa+/9XeSPS2uXjlbK/6LxpZZl++o14v8mhblnn83ojo7O3OyyE/MHftg4tTpM88eOVY9PHN45vjUgQN792wf2j+1ryNxZnFd3frxiW1bXn3nwuu1gxfe+/X7rL7ri+NlHJ00lr+6LT3R6cK6bMOCdFLpYkVYkazdBovtYozGQIxcPzYar3zW1coBt1ul1edz4Vwd+B/LBupAPyo/6LP733K7Q+OOnnD5xXzCI4v7WrHlRyqRFucMNt3fdtJwRBw89+832Ra3aR4CAGChH7PxzzOtxn9pPLDgvHuKNZSNEXFvRGyKiPsiYnNE3B/ROPfBiHhoheU3r5DcOP5JLy3K1gdWWMLSsvHf88Xa1uLxXzn6i40DRW5DI/7B5NCR2ZndxWuyKwbXZPnJRU9Z7KeX//iqed+XxTT72ILxX7Zl5S+OML3UPEE3XZ2rrj7y3OVPI7ZWWsWfXF8HTCJiS0RsvcUyjjz13bZ2x1rFX46Fb6oD60z1byOezNv/XDTFX0rark9OPrd/at/EcMzO7J4or4ob/fb7+Tfblb+q+Dsga/+1La//PP7sHjEZjjh1+szRxnrtqVso5M/Pa0mbQ5tvGv+N139tZ8RQ8nYjPVSeVTwOJa9lDyPl/o+qc3Mnp+afW+Ybj5N5/Lt2zMdfjfn+vym/PWu8Eg9HRHYRb4+IRyLi0aLtHouIxyNixxLh//LSzvfbHWvf/kvMyndQFv/0Eu2fveVlqfn2X3li4OjPP7Qrv76s9t/bSO0q9izn/W+5FVzNawcAAAB3i7TxHfgkHb+eTtPx8fw7/JtjbVqJiKcPnfjw+HT+XfmNMZiWM12jC+ZDJ4u54TI/1ZTfU8wbfz0w0siP107MTnc7eOhz69r0/8xfnV1qAXqR32tB/9L/oX/p/9C/9H/oXy90uwJAdwy13v3Jna4H0BUrH/8P35Z6AHee+3/oX/o/9C/9H/pS29/Gp6v6yf/dmqj0RjVaJkZ6oxplItKeqEbnEm98kXeJXqlPmags+49Z3GJiTctD3X5nAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA6Iz/AgAA///NIdoS")
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000040)='sysfs\x00', 0x0, 0x0)

10m49.044706999s ago: executing program 5 (id=4877):
mknod$loop(&(0x7f0000000000)='./file0\x00', 0x0, 0x1)
mount$pvfs2(&(0x7f0000000040), &(0x7f0000000100)='./file0\x00', &(0x7f0000000180), 0x0, 0x0)

10m48.349095689s ago: executing program 5 (id=4882):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@newlink={0x3c, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x90646}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x4}}}, @IFLA_NUM_RX_QUEUES={0x8, 0x20, 0xffff}]}, 0x3c}, 0x1, 0x0, 0x0, 0x600}, 0x0)

10m47.889104055s ago: executing program 34 (id=4882):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@newlink={0x3c, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x90646}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x4}}}, @IFLA_NUM_RX_QUEUES={0x8, 0x20, 0xffff}]}, 0x3c}, 0x1, 0x0, 0x0, 0x600}, 0x0)

7m53.92951651s ago: executing program 7 (id=7058):
r0 = socket(0x1e, 0x2, 0x0)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0xfffffffc}, 0x10)

7m53.532961756s ago: executing program 7 (id=7064):
r0 = openat$damon_attrs(0xffffffffffffff9c, &(0x7f0000008600), 0x1041, 0x0)
write$damon_attrs(r0, 0x0, 0x0)

7m53.23214579s ago: executing program 7 (id=7067):
r0 = syz_usb_connect(0x0, 0x3d7, &(0x7f00000007c0)=ANY=[@ANYBLOB="120100004cefc008e10593085bfd010203010902c50301000000000904"], 0x0)
syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000000)={0x2c, &(0x7f0000000040)={0x0, 0x0, 0x1, "ff"}, 0x0, 0x0, 0x0, 0x0})

7m51.370701138s ago: executing program 7 (id=7086):
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000100)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x800002, &(0x7f0000000600)={[{@force}, {@nodecompose}, {@gid}, {@nls={'nls', 0x3d, 'macinuit'}}, {@gid}, {@type={'type', 0x3d, "1e4310ee"}}, {@nobarrier}, {@nobarrier}]}, 0x3, 0x6b3, &(0x7f0000000780)="$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")
mount$bind(&(0x7f0000000500)='./file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x1333404, 0x0)

7m50.914573904s ago: executing program 7 (id=7090):
r0 = socket$igmp6(0xa, 0x3, 0x2)
sendmsg$inet6(r0, &(0x7f0000000480)={&(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1}, 0x1c, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="14000000000000002900000008000000000000000000000014000000000000002900000043000000000000ff"], 0x30}, 0x0)

7m50.174464075s ago: executing program 7 (id=7100):
r0 = syz_open_dev$vim2m(&(0x7f0000000040), 0x7, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000140)={0x1, @pix_mp={0x81, 0x0, 0x34565559, 0x0, 0x500, [{}, {0xffffffff}]}})

7m49.478412856s ago: executing program 35 (id=7100):
r0 = syz_open_dev$vim2m(&(0x7f0000000040), 0x7, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000140)={0x1, @pix_mp={0x81, 0x0, 0x34565559, 0x0, 0x500, [{}, {0xffffffff}]}})

2m33.394584527s ago: executing program 6 (id=11607):
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000240)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0x2, [@func_proto={0x0, 0x0, 0x0, 0x9, 0x3}, @func_proto, @const={0x0, 0x0, 0x0, 0xa, 0x2}]}}, &(0x7f0000000100)=""/223, 0x3e, 0xdf, 0x1}, 0x28)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000080)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x6, '\x00', 0x0, r0, 0x1, 0x5}, 0x50)

2m33.17769863s ago: executing program 6 (id=11611):
r0 = socket$rds(0x15, 0x5, 0x0)
ioctl$sock_ifreq(r0, 0x8948, &(0x7f0000000000)={'bond0\x00', @ifru_addrs=@qipcrtr={0x2a, 0x4, 0x7fff}})

2m32.984223224s ago: executing program 6 (id=11616):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newlink={0x40, 0x10, 0x49920d862a92153b, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @gtp={{0x8}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GTP_FD1={0x8}]}}}, @IFLA_MTU={0x8, 0x3}]}, 0x40}}, 0x0)

2m32.795808556s ago: executing program 6 (id=11619):
r0 = socket$qrtr(0x2a, 0x2, 0x0)
ioctl$sock_qrtr_TIOCOUTQ(r0, 0x8917, 0x0)

2m32.677424488s ago: executing program 6 (id=11621):
syz_mount_image$squashfs(&(0x7f0000000200), &(0x7f0000000000)='./file0\x00', 0x10, &(0x7f0000000680)=ANY=[@ANYBLOB="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", @ANYRESDEC, @ANYRESHEX, @ANYRESOCT, @ANYRES16, @ANYRES8, @ANYBLOB="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"], 0xfd, 0x200, &(0x7f00000002c0)="$eJzskr9rFEEUx7+zO3fuaUIOORBFEDVoLJLbbDT+KBRsDCoIohADgsfdJS5u/JE90DsOXKsUNoIiJIiFIElhIf4DLqiN2CgEuxBJnSKFjSSsvNm3mwnY28ynuO/NvLfvve/M3A4fhDsAbK5360AZhEQF338JSAAHhNpCw07VYb3MWuT4BSvVmPUP6+bJzvgEIPxDy6NWvKdxUJTRU/n9dQV19N3E6deX3v24WnixtHvt7UfKv3i9/QHiaKPvzav3z87P9ary4saEXseO9887VAjA843x5RW5165ktfxoiVoXkPFyEsKddwAMfR6cO+v2PrW4Ztju3KkFQXMmPPfEwppq9XO9W6c/twAkBPsbA6DnkP1FzqG9fRK4BsBGkudIbFFtTd+vhu3OoD9dm2pONe963sioe9x1T3jVST9ouvQLcDf1OZ8gSI8BoGsq0QhCxXdRbINzdmI7VIfmivK496XE45fQrRe1qxs4jHRb65fZylQgZluOmgPKKlk+Ajrah5HQdvtVFQllbAwCNi+GpTZf2stRgaFP94LGLMgbf7YAmdcYXkUhX3j6YuRU5hCzrP3YujFigXWVNXvR2UuVqoLF73kgAop4VGu1kiR5jMUeXPmWRmhvxivm/8qRfmDUtWxvN3fG/setGAwGg8FgMBgMBsN/4m8AAAD//4Hjlpw=")
open(&(0x7f0000000140)='./file2\x00', 0x0, 0x0)

2m31.638585983s ago: executing program 6 (id=11632):
r0 = socket(0x10, 0x3, 0x4)
sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000400)=@newqdisc={0x68, 0x14, 0xf0b, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, {0xd, 0xd}, {0x0, 0x4}, {0x4, 0xa}}, [@TCA_STAB={0x44, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0xd7, 0xfc, 0x200, 0xa, 0x0, 0x0, 0x7e}}, {0x4}}, {{0x1c, 0x1, {0x0, 0x4, 0x7, 0xd, 0x1, 0x4, 0x2}}, {0x4}}]}]}, 0x68}}, 0x0)

2m16.578219125s ago: executing program 36 (id=11632):
r0 = socket(0x10, 0x3, 0x4)
sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000400)=@newqdisc={0x68, 0x14, 0xf0b, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, {0xd, 0xd}, {0x0, 0x4}, {0x4, 0xa}}, [@TCA_STAB={0x44, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0xd7, 0xfc, 0x200, 0xa, 0x0, 0x0, 0x7e}}, {0x4}}, {{0x1c, 0x1, {0x0, 0x4, 0x7, 0xd, 0x1, 0x4, 0x2}}, {0x4}}]}]}, 0x68}}, 0x0)

2m13.329552502s ago: executing program 8 (id=11880):
r0 = socket$inet_dccp(0x2, 0x6, 0x0)
setsockopt(r0, 0x10d, 0xf, &(0x7f0000000000)="0302", 0x2)

2m13.170343774s ago: executing program 8 (id=11883):
r0 = socket$inet6(0xa, 0x3, 0x1)
sendto$inet6(r0, 0x0, 0x0, 0x4c000, &(0x7f00000000c0)={0xa, 0x4e23, 0x3, @local, 0x1}, 0x1c)

2m12.907211058s ago: executing program 8 (id=11886):
r0 = openat$drirender128(0xffffffffffffff9c, &(0x7f00000000c0), 0x41, 0x0)
ioctl$DRM_IOCTL_GET_CAP(r0, 0xc010640c, &(0x7f0000000100)={0x13})

2m12.631881892s ago: executing program 8 (id=11890):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x40, &(0x7f0000000100), 0x1, 0x58b, &(0x7f00000006c0)="$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")
mount(&(0x7f0000000040)=@loop={'/dev/loop', 0x0}, &(0x7f0000003640)='./file0\x00', &(0x7f0000003680)='ext4\x00', 0x0, 0x0)

2m12.188601069s ago: executing program 8 (id=11895):
syz_usb_connect(0x1, 0x24, &(0x7f0000000240)=ANY=[@ANYBLOB="1201000046365608b40413868f95010203010902120001000000000904"], &(0x7f0000000bc0)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x0, 0x0}]})
read$msr(0xffffffffffffffff, 0x0, 0x0)

2m10.262732927s ago: executing program 8 (id=11919):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendto$inet6(r0, &(0x7f0000000000)="c5", 0x1, 0x0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @dev, 0x15}, 0x1c)

2m9.852993153s ago: executing program 37 (id=11919):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendto$inet6(r0, &(0x7f0000000000)="c5", 0x1, 0x0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @dev, 0x15}, 0x1c)

23.228076229s ago: executing program 2 (id=13241):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x2, 0x4, 0x4, 0xbf25}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x18, 0xf, &(0x7f0000000180)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {0x85, 0x0, 0x0, 0x16}, {0x7, 0x0}}}, &(0x7f0000000100)='GPL\x00'}, 0x90)

22.963365603s ago: executing program 2 (id=13246):
r0 = syz_init_net_socket$ax25(0x3, 0x3, 0xcd)
getsockopt$ax25_int(r0, 0x101, 0x8, &(0x7f0000000140), &(0x7f0000000180)=0x4)

22.683329637s ago: executing program 2 (id=13250):
r0 = socket$igmp(0x2, 0x3, 0x2)
getsockopt$EBT_SO_GET_ENTRIES(r0, 0x0, 0x81, &(0x7f0000005400)={'filter\x00', 0x0, 0x0, 0x90, [], 0x2, 0x0, 0x0}, &(0x7f0000005480)=0x108)

22.392412001s ago: executing program 2 (id=13256):
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, &(0x7f00000000c0)={[{@umask={'umask', 0x3d, 0xb}}, {@nodecompose}, {@nls={'nls', 0x3d, 'cp775'}}, {@uid}, {@type={'type', 0x3d, "0ff88dbf"}}, {@nobarrier}]}, 0x20, 0x6e7, &(0x7f00000006c0)="$eJzs3U1sHGf9B/DvrNcbbyq5bv9Jmz9CitWICBpI7CwlQUJqQAjlUEEkLr2axGmsOGlkuyiJEHGBwhFOKIceilA49IQ4IBVxQJQzEhL3XFEkDtwiDhjN7Ky963cnfmnD5yON55mZ5+X3/Hb28e460Qb4n3XxzQwvpsjFU2/cLo8fPujMPnzQudErJzmUpJE0u7sUN5Pi42658v/lybpcbDTOa48+ev/k/Q873aNmvVX1G5u1W7G0yQiL9ZbxJEP1foeaG/V3eZ3+7u2o62I57gtJTtR7OHBLayzupPk2nrfAJ929ZGh4nfNjyeEkI/XrgNSrQ2Ofw9t1O1rlAAAA4JNpaKsKzz/O47Qyuj/hAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwLOh6H5nYFFvjV55PEX9/f/fqatVWq2DDXcLX9zi+ntX9ykQAAAAAAAAANh9wyvF44/zOLcz2jteKqq/+b9SHRypfj6XdzKf6czldG5nKgtZyFwmk+HRvj5bt6cWFuYm17b8ZcqWS0tL9+qWZ5OMrWl5do/nDAAAAAAAAADPth/lYkYPOggAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOhXJEPdXbUd6ZXH0mgmGUnSKustJn/slT/N/nTQAQAAAMDea9f70eI/3cJSUb3nf6l63z+Sd3IzC5nJQmYznSvVZwHdd/2Nvy12Zh8+6Nwot7Udf/2fO4qj6jHJUN7dYOSJqsbR5RYX8618N6cynkuZy0y+n6ksZDrjaZeTyFSKjLW7n16M9eIcjHeo7urCQCiXVsd2fNXxsSqSdq5mportdC63er01qhpFjvWN9vtWsipD75bZKV6vbTNHV/oer1/Un8vUlp7fZh97Y6ya+fByRibK3NfZeGH93Pfs8D5ZPdJkGsufQR1ZGaU8XD1SL+ff20nOD9f7Mtc/Hcz5btvhR2mrM3E2jfruS14azPmtz91/cbDxF/7+50vXGjevX7s6f2oPp7SnhnuF1Zno9GXi5c3vvjoTs2UmFrefieHVJ0aeYh67qFVno7uw1atleWKT1fKbVWkqr/Tdgm/nSqZzLhOZzPlM5Ks5m87AHXZ0IK/Nzo3BnFTPtcba9a29SfAnPt9X6WdbVN5fZV5e6Mtr/0o3Vl2rz1z4eSb6svTi5nffk/wWaH6mLpRj/Dh5/R+7OM+nM5CJem3uZaL3C2qDTPxqqfw5P3vz+ty1qVvbHO9kvS+ftu8Nrs2/furJPJXyfilX3GZ1VOWk3btfymv/txztYL5a9V9cuu0aa64dXb42ltHM5NsbPlNb9Wu4tT11r7287rVOde1Y37WBVzl5O7PVq5BVxvcnqwBs2+FXD7faj9p/bX/Q/kn7WvuNkW8cOn/os60M/6X5h6HfNn7T+Frxaj7IDzN60JECAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMCzYP7O3etTs7PTc3tYaD3hWGlsWefBc9vrMGPJ5mMVdaH1hDNt7lMyd6Pwr5FNs9HOHo3+uySb1Gk99RDF3j8E5Y28Kx32vjitOrM0tIPmzV6r9es0Mz+y0SN4aOVxz9j1qdl/Lw3UaafvKQM8484s3Lh1Zv7O3S/N3Jh6a/qt6Ztnz587f67zlckvn7k6Mzs90f150FECe2H+zt2hg44BAAAAAAAAAAAA2Jn6X/8vPPF/ZmhuUac1N7/+yMf3e6oAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAp9TFNzO8mCKTE6cnyuOHDzqz5dYrr9RsJmkkKX6QFB8nF9LdMtbXXbHROK89+uj9k/c/7Kz01ezVb2zWbnsW6y3jSYbq/dYOrdPN2v4u9/W3+EThFcszLBN2opc4OGj/DQAA//8TYPQt")
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)

21.966427287s ago: executing program 2 (id=13262):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
syz_emit_ethernet(0x6c, &(0x7f00000004c0)={@broadcast, @dev, @void, {@ipv4={0x800, @gre={{0x5, 0x4, 0x3, 0x0, 0x5e, 0x0, 0x0, 0x40, 0x2f, 0x0, @private, @multicast1}, {{0x0, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x4, 0x22eb, 0x2, 0x0, [0x0], "7f1a"}, {0x0, 0x0, 0x0, 0x0, 0x11, 0x0, 0x800, [0x0]}, {}, {}, {0x8, 0x22eb, 0x0, {{0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x2, {0x0, 0x4}}}}}}}}, 0x0)

21.370843186s ago: executing program 2 (id=13271):
r0 = add_key(&(0x7f0000000000)='big_key\x00', &(0x7f0000000280)={'syz', 0x1}, &(0x7f00000002c0)="1d", 0xfe3a, 0xfffffffffffffffe)
keyctl$read(0xb, r0, 0x0, 0x0)

20.806619855s ago: executing program 38 (id=13271):
r0 = add_key(&(0x7f0000000000)='big_key\x00', &(0x7f0000000280)={'syz', 0x1}, &(0x7f00000002c0)="1d", 0xfe3a, 0xfffffffffffffffe)
keyctl$read(0xb, r0, 0x0, 0x0)

3.911307883s ago: executing program 0 (id=13459):
r0 = socket(0x10, 0x803, 0x0)
write(r0, &(0x7f0000000340)="1c0000005e001f3814584707f9f4ffffff000000230000001ff80000", 0x1c)

3.560270608s ago: executing program 0 (id=13465):
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0xa0201, 0x0)
write$dsp(r0, &(0x7f00000012c0)="a52876830a602214f6b4e928d758f38a5a7cb4b31c4c09289e9ebb6286784ca3", 0x4000)

3.051128295s ago: executing program 3 (id=13469):
r0 = syz_usb_connect(0x2, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="31010000dccd5e08cb0603000000000023010902240001000064000904340102d469e70009058acf"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)

2.888850917s ago: executing program 9 (id=13471):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(r0, 0x29, 0x6, &(0x7f00000000c0)={0x11, {{0x29, 0xfffd, 0x4000000, @private2={0xfc, 0x2, '\x00', 0x1}, 0x8000000}}}, 0x88)

2.645197631s ago: executing program 9 (id=13473):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x0, 0xffffffff}, [@printk={@s, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x71}}, @call={0x85, 0x0, 0x0, 0x8}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000740)={r0, 0x0, 0xe, 0x0, &(0x7f0000000640)="0cffffdf71c8afefeba000dee560", 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

2.460223764s ago: executing program 9 (id=13475):
openat$nvram(0xffffff9c, &(0x7f0000000000), 0xa0942, 0x0)
syz_open_procfs(0x0, &(0x7f0000008380)='fd/3\x00')

2.249943837s ago: executing program 9 (id=13476):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$sock_linger(r0, 0x1, 0xd, 0x0, 0x0)

2.004493551s ago: executing program 9 (id=13478):
r0 = openat$binfmt_register(0xffffff9c, &(0x7f00000001c0), 0x1, 0x0)
write$binfmt_register(r0, &(0x7f0000000740)={0x3a, 'syz0', 0x3a, 'M', 0x3a, 0x7, 0x3a, '#%\\h*@#Lw\x9e5\x9f6k\x886\xafm\xa0\b\x81\xdc\xd1\x8f\x93r2\x0eeu}\xf7\"\xbd&-~\xeahJ\xee\'X\x9a\xd4\xfeI6\xd9\x1b\xc8\x14.\xfa\xb8\x03\x16\x96\x11\xa8\x90{\xc5\xe2\xf1u\xd1\xca\x8a>\xc3\x84\xd3\xcf\xa7\x1f\xc1\xb5\x12\xd0\x1e\x98\xce+\x12\xaex{\x91\xc7bw\xcaC\xe1/\x19\xfei\xf0\xa2\x9c3\xee/\xcf\xdew \x1c\xc7=\xfb\xb8\x88\x132\xf9\xbf7K\x8d\x16\xa6\xbf4\v\xces\xa4\x13\xb1\x14\x89\xa0\x14P\x97\x81%)\xa1\x0e)2a2\xa2\xef\f\xef\x8a\x95\xdd\xac\xab\xff#T}`\x88r\xb3\xd8\x19\x06\xde\xb7\xf0GR.?i|\xafhs\x1d\xdc\x12\x85!\xaaqg\x10\xec\x1b\xcb\xfc6\xba\xde\x13\xdf\xc6Z+\r\xb4\x9a\xe8V1\x82\xce\xdd\xddx\xe7H\xa3N\x92\xdb\xaa\xdbe\xc1\x05P\b<\x1e\xd6\x92\x89\xaa\xbe\xda\\|\xcf\xaf$.\x10\x8d\x9aie\xd3W\x1e\xd2L\xfa\xcc\xfb\xc2\x90\x99\xa9\x9f\xcd\xfasX\x9d\xbb\x8f\x1a\xdd\x05\xdc\xb8\xc7\xb4v\x1f\xe3\xb6)\x1dM\x1e\xf9\x97\xffLW\x82\t\xf7\xb4\xe2fP\b\n\xdd\x03\x9d&\xd2\xce<f\xfb\xed\xdaP\xf0e\xb6\f\x9a\xa7\xe7c\xf3C\x9br\xf0L\xe5\xb3\xfbD\x1b\x88\xb7\b\x1b\xba}\xc9\va_\x9dYC\xffQ\x84 %(;\xac\x95\x90_\xe9\"\"\xf3\xe3#N\x0f\xdf\x7f\x90\x0f\x90S\x8cF\xff\xdb\x80\x9d\xf8A\xa9\x8f7F\x03\xc3T\xd8\xa4\xb9@\xa8\xa7\x94\xd0\x89)C\xfb\x1eV9\xceE', 0x3a, '', 0x3a, './file0'}, 0x1b0)

1.789055904s ago: executing program 9 (id=13480):
syz_usb_connect$cdc_ncm(0x4, 0xd1, &(0x7f0000000040)={{0x12, 0x1, 0x200, 0x2, 0x0, 0x0, 0x18, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0xbf, 0x2, 0x1, 0x6, 0x50, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5, 0x24, 0x0, 0xb3a9}, {0xd, 0x24, 0xf, 0x1, 0x2, 0x3, 0xff, 0x6}, {0x6, 0x24, 0x1a, 0xc, 0x14}, [@obex={0x5, 0x24, 0x15, 0x4}, @mbim={0xc, 0x24, 0x1b, 0x4, 0x2, 0xa9, 0xc, 0x9, 0x3}, @acm={0x4, 0x24, 0x2, 0x2}, @acm={0x4, 0x24, 0x2, 0x5}, @acm={0x4, 0x24, 0x2, 0x2}, @mdlm_detail={0x46, 0x24, 0x13, 0x80, "ae0d62dced1e43f3661806f2f73f4b9c36d86a093869c2cd3c8b264833bfbdcb10547b267c48acfc0657fbf61a64cad281fd82d136aed1be294c5ca5efb29cdaf0b9"}]}, {{0x9, 0x5, 0x81, 0x3, 0x20, 0xe, 0xc}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x400, 0x6, 0xb, 0x3}}, {{0x9, 0x5, 0x3, 0x2, 0x8, 0x1, 0x3, 0x7}}}}}}}]}}, 0x0)
syz_usb_connect(0x3, 0xf5, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000772aed408680070bb96c010203010902e30003dc2000000904003f000e01000505a40600010524007f000d240f0104000000080000000006241a03000a05240101070424020a1524120009a317a88b045e4f01a607c0ffcb7e392a09044c03003a92a2010a240109000102010205240401050c2402"], 0x0)

1.322284651s ago: executing program 4 (id=13483):
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_INIT(r0, 0x0, 0xc8, 0x0, 0x0)

1.255700062s ago: executing program 0 (id=13484):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x2e0, 0x12c, 0x60000004, &(0x7f0000000100)="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", 0x0, 0xfe, 0x60000000, 0x0, 0x25, &(0x7f0000000040)="ded6e0966ec1cf6ba4b897a54e4e062b311453dcbb62932a01105d0a8066ca8e5e1f2f575d0d6e996b57fd408d420abb7337934e59815d75b4eb3e7206afce", &(0x7f0000000380)="af5fa441b438b5156d8a9fcc090f586e979858f64170cde36889dcc8539ffcca62621a4c3ea3f7acee366e6fb0b94314f90931dec60fed6c9fee64af416c29f65e47110b81f6b4da06db5e1aad1f627acb", 0x0, 0x3}, 0x2c)

1.121574194s ago: executing program 4 (id=13485):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="14000000250007"], 0x14}, 0x1, 0x0, 0x0, 0x2044004}, 0x48800)

991.163725ms ago: executing program 3 (id=13486):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)=ANY=[@ANYBLOB="8c000000000201040000000000000000020000052400028014000180080001000000000008000200ac1e00010c00028005000100000000002400038014000180080001e6ffffffff07000200ac1414000c0002800500010000000000300001"], 0x8c}}, 0x0)

897.463287ms ago: executing program 4 (id=13487):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000011c0)=[{&(0x7f0000000080)="5c00000013006bec9e3be35c6e17aa31076b876c1d0000007ea60864160af3653c001ac00400020208000c000300010004000000eab556a705251e618294ff0051f60a84c9f4d4938037e786a6d0000300000000000000ffffc6c953", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)

814.654988ms ago: executing program 0 (id=13488):
prctl$PR_SET_MM(0x23, 0x8, &(0x7f0000004000/0x4000)=nil)
prctl$PR_SET_MM(0x23, 0x9, &(0x7f0000004000/0x3000)=nil)

779.793339ms ago: executing program 3 (id=13489):
r0 = socket$inet6(0xa, 0x2, 0x0)
sendmmsg$inet(r0, &(0x7f00000017c0)=[{{&(0x7f0000000040)={0x2, 0x4e1c, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000000)=[@ip_pktinfo={{0x20, 0x0, 0x8, {0x0, @empty}}}], 0x20}}], 0x1, 0x0)

589.939931ms ago: executing program 4 (id=13490):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
ioctl$sock_inet_SIOCSIFDSTADDR(r0, 0x8918, &(0x7f0000003a00)={'dummy0\x00', {0x2, 0x4e23, @multicast2}})

542.172562ms ago: executing program 0 (id=13491):
r0 = socket$isdn_base(0x22, 0x3, 0x0)
bind$isdn_base(r0, &(0x7f0000000100)={0x22, 0xf7, 0x7f, 0x6, 0x2}, 0x6)

518.432432ms ago: executing program 3 (id=13492):
r0 = syz_open_dev$video(&(0x7f0000000300), 0x8, 0x0)
ioctl$VIDIOC_ENUMOUTPUT(r0, 0xc0485630, &(0x7f0000000000)={0x1, "4f954bc017c4c443cb7c92f439e74d9ebe0ba3e61884587ac9e100"})

289.782836ms ago: executing program 4 (id=13493):
r0 = socket(0x25, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, 0x0, 0x472)

288.343666ms ago: executing program 3 (id=13494):
mknodat$null(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x8000, 0x103)
mount$cgroup(0x0, &(0x7f0000000400)='./file0\x00', &(0x7f0000000440), 0x0, &(0x7f0000000040)={[{@name={'name', 0x3d, 'user_.'}}, {@name={'name', 0x3d, 'user_.'}}]})

256.103066ms ago: executing program 0 (id=13495):
r0 = syz_open_dev$vim2m(&(0x7f0000000080), 0x3fe, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000580)={0x1, @vbi={0x4, 0x80000000, 0x3231564e, 0x52424752, [0x88000], [0xaf09, 0x7], 0x1}})

140.819708ms ago: executing program 1 (id=13274):
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000080)='./file0\x00', 0x400, &(0x7f0000000100)=ANY=[@ANYBLOB="6572726f72733d72656d6f756e742d726f2c757466383d302c757365667265652c646973636172642c757466383d312c756e695f786c6174653d302c73686f72746e616d653d77696e39352c756e695f786c6174653d302c756e695f786c6174653d302c0008442895b66131b4e4d54b2ba6ae54dabaa5206d4a2a060b5ccc774b3ec4c81a1a9852327ff871d16d0d9344e764c68194b9d9d0be76c595bac1fc5a0a8256a7b77e071e9bdd6100f9aeb8576d329be6e4bb168f1434000000", @ANYRESHEX=0x0], 0xfd, 0x296, &(0x7f0000001080)="$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")
renameat2(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0xffffffffffffff9c, &(0x7f0000000440)='./file0/file3\x00', 0x0)

5.02062ms ago: executing program 4 (id=13496):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_DELLINK(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000480)=ANY=[@ANYBLOB="1800000004140100"], 0x18}, 0x1, 0x0, 0x0, 0x671ec167a4b72164}, 0x0)

0s ago: executing program 3 (id=13497):
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount$9p_rdma(&(0x7f0000000180), &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200), 0xc00, &(0x7f0000000300)=ANY=[@ANYBLOB='trans=rdma,porx0000000000004e21,rq=0x000000000000000b,sq=0x0'])

kernel console output (not intermixed with test programs):

4.11832: corrupted in-inode xattr
[  989.843743][T31562] EXT4-fs error (device loop4): ext4_orphan_get:1405: comm syz.4.11832: couldn't read orphan inode 15 (err -117)
[  989.871620][T31572] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  989.889636][T31562] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  990.027031][ T4274] EXT4-fs (loop4): unmounting filesystem.
[  990.247963][T31580] netlink: 68 bytes leftover after parsing attributes in process `syz.2.11840'.
[  990.499391][T31564] loop3: detected capacity change from 0 to 32768
[  990.534939][T31564] BTRFS error: device /dev/loop3 already registered with a higher generation, found 8 expect 10
[  990.662818][ T4318] usb 9-1: new full-speed USB device number 12 using dummy_hcd
[  990.884818][ T4318] usb 9-1: config 0 has an invalid interface number: 46 but max is 0
[  990.910003][ T4333] BTRFS error: device /dev/loop3 already registered with a higher generation, found 8 expect 10
[  990.921102][ T4318] usb 9-1: config 0 has no interface number 0
[  990.928046][ T4318] usb 9-1: config 0 interface 46 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  990.950991][ T4318] usb 9-1: config 0 interface 46 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  991.003499][ T4318] usb 9-1: New USB device found, idVendor=045a, idProduct=5210, bcdDevice= 1.01
[  991.036127][ T4318] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  991.063006][ T4318] usb 9-1: Product: syz
[  991.081908][ T4318] usb 9-1: Manufacturer: syz
[  991.098319][ T4318] usb 9-1: SerialNumber: syz
[  991.125799][ T4318] usb 9-1: config 0 descriptor??
[  991.166916][ T4318] ums-karma 9-1:0.46: USB Mass Storage device detected
[  991.327071][ T4318] ums-karma: probe of 9-1:0.46 failed with error -5
[  991.404663][ T4318] usb 9-1: USB disconnect, device number 12
[  991.623562][   T27] kauditd_printk_skb: 8 callbacks suppressed
[  991.623580][   T27] audit: type=1326 audit(991.514:5161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31617 comm="syz.3.11856" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b3398e929 code=0x7ffc0000
[  991.732774][   T27] audit: type=1326 audit(991.514:5162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31617 comm="syz.3.11856" exe="/root/syz-executor" sig=0 arch=c000003e syscall=87 compat=0 ip=0x7f8b3398e929 code=0x7ffc0000
[  991.842033][   T27] audit: type=1326 audit(991.514:5163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31617 comm="syz.3.11856" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b3398e929 code=0x7ffc0000
[  991.962282][   T27] audit: type=1326 audit(991.514:5164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31617 comm="syz.3.11856" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b3398e929 code=0x7ffc0000
[  991.985883][ T4280] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  991.998334][ T4280] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  992.009189][ T4280] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  992.018745][ T4280] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  992.035954][ T4280] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  992.043500][ T4280] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  992.259291][T31625] vxcan1 speed is unknown, defaulting to 1000
[  992.327230][T31637] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  992.367032][T31637] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  992.369802][T31612] loop4: detected capacity change from 0 to 40427
[  992.394382][T31612] F2FS-fs (loop4): Invalid log blocks per segment (4278190089)
[  992.402013][T31612] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  992.416765][T31637] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  992.475888][T31612] F2FS-fs (loop4): invalid crc value
[  992.520457][T31612] F2FS-fs (loop4): Found nat_bits in checkpoint
[  992.772656][T31612] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  992.779989][T31612] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  993.083977][ T4274] syz-executor: attempt to access beyond end of device
[  993.083977][ T4274] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  993.183004][T31658] netlink: 24 bytes leftover after parsing attributes in process `syz.2.11867'.
[  993.600124][T31625] chnl_net:caif_netlink_parms(): no params data found
[  993.803425][T31625] bridge0: port 1(bridge_slave_0) entered blocking state
[  993.810695][T31625] bridge0: port 1(bridge_slave_0) entered disabled state
[  993.891902][T31625] device bridge_slave_0 entered promiscuous mode
[  993.934282][T31625] bridge0: port 2(bridge_slave_1) entered blocking state
[  993.963521][T31625] bridge0: port 2(bridge_slave_1) entered disabled state
[  993.991148][T31625] device bridge_slave_1 entered promiscuous mode
[  994.122944][ T4283] Bluetooth: hci5: command 0x0409 tx timeout
[  994.260065][T31625] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  994.302781][T31625] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  994.520571][T31625] team0: Port device team_slave_0 added
[  994.570816][T31625] team0: Port device team_slave_1 added
[  994.754420][T31625] batman_adv: batadv0: Adding interface: batadv_slave_0
[  994.761924][T31625] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  994.788131][    C1] vkms_vblank_simulate: vblank timer overrun
[  994.872651][T31625] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  994.937550][T31713] IPv6: ADDRCONF(NETDEV_CHANGE): gre0: link becomes ready
[  994.963619][T31625] batman_adv: batadv0: Adding interface: batadv_slave_1
[  994.992112][T31625] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  995.057646][T31721] loop8: detected capacity change from 0 to 1024
[  995.090703][T31625] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  995.166805][T31721] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[  995.223108][T31726] netlink: 144 bytes leftover after parsing attributes in process `syz.2.11892'.
[  995.243198][T31726] netlink: 144 bytes leftover after parsing attributes in process `syz.2.11892'.
[  995.317974][T31625] device hsr_slave_0 entered promiscuous mode
[  995.327743][T21108] EXT4-fs error (device loop8): ext4_readdir:263: inode #2: block 16: comm syz-executor: path /940/file1: bad entry in directory: rec_len is smaller than minimal - offset=876, inode=0, rec_len=0, size=1024 fake=0
[  995.406875][T31625] device hsr_slave_1 entered promiscuous mode
[  995.452879][T31625] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  995.460598][T31625] Cannot create hsr debugfs directory
[  995.475646][T21108] EXT4-fs error (device loop8): ext4_readdir:263: inode #11: block 37: comm syz-executor: path /940/file1/lost+found: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=0, rec_len=1279, size=1024 fake=0
[  995.591840][T21108] EXT4-fs error (device loop8): ext4_empty_dir:3177: inode #11: block 37: comm syz-executor: bad entry in directory: rec_len % 4 != 0 - offset=5120, inode=0, rec_len=1279, size=1024 fake=0
[  995.687041][T21108] EXT4-fs error (device loop8): ext4_readdir:263: inode #11: block 37: comm syz-executor: path /940/file1/lost+found: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=0, rec_len=1279, size=1024 fake=0
[  995.749349][T21108] EXT4-fs error (device loop8): ext4_empty_dir:3177: inode #11: block 37: comm syz-executor: bad entry in directory: rec_len % 4 != 0 - offset=5120, inode=0, rec_len=1279, size=1024 fake=0
[  995.784251][T21108] EXT4-fs error (device loop8): ext4_readdir:263: inode #11: block 37: comm syz-executor: path /940/file1/lost+found: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=0, rec_len=1279, size=1024 fake=0
[  995.829769][T21108] EXT4-fs error (device loop8): ext4_empty_dir:3177: inode #11: block 37: comm syz-executor: bad entry in directory: rec_len % 4 != 0 - offset=5120, inode=0, rec_len=1279, size=1024 fake=0
[  995.859730][T21108] EXT4-fs error (device loop8): ext4_readdir:263: inode #11: block 37: comm syz-executor: path /940/file1/lost+found: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=0, rec_len=1279, size=1024 fake=0
[  995.953033][T21108] EXT4-fs error (device loop8): ext4_empty_dir:3177: inode #11: block 37: comm syz-executor: bad entry in directory: rec_len % 4 != 0 - offset=5120, inode=0, rec_len=1279, size=1024 fake=0
[  996.041440][T21108] EXT4-fs error (device loop8): ext4_readdir:263: inode #11: block 37: comm syz-executor: path /940/file1/lost+found: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=0, rec_len=1279, size=1024 fake=0
[  996.202681][ T4283] Bluetooth: hci5: command 0x041b tx timeout
[  996.228777][T31752] netlink: 'syz.4.11904': attribute type 24 has an invalid length.
[  996.268303][T31625] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  996.273011][T31754] ieee802154 phy0 wpan0: encryption failed: -22
[  996.319049][T31625] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  996.378179][T31625] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  996.422288][T31625] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  996.516513][T31763] loop3: detected capacity change from 0 to 164
[  996.759225][T31625] 8021q: adding VLAN 0 to HW filter on device bond0
[  996.823195][ T1123] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  996.838773][ T1123] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  996.869538][T31625] 8021q: adding VLAN 0 to HW filter on device team0
[  997.122426][   T57] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  997.140735][T31781] [U] ^C
[  997.153273][   T57] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  997.164542][T21108] EXT4-fs (loop8): unmounting filesystem.
[  997.193560][   T57] bridge0: port 1(bridge_slave_0) entered blocking state
[  997.200733][   T57] bridge0: port 1(bridge_slave_0) entered forwarding state
[  997.287626][   T57] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  997.320410][T26115] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  997.363571][T26115] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  997.389505][T26115] bridge0: port 2(bridge_slave_1) entered blocking state
[  997.396822][T26115] bridge0: port 2(bridge_slave_1) entered forwarding state
[  997.402370][T31788] tmpfs: Bad value for 'mpol'
[  997.465305][T26115] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  997.484687][T26115] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  997.601377][   T41] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  997.633907][T26115] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  997.648547][T26115] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  997.659205][T26115] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  997.695518][T11135] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  997.719517][T11135] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  997.789669][T31794] AppArmor: change_hat: Invalid input, NULL hat and NULL magic
[  997.811543][   T41] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  997.853517][T11135] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  997.889556][T11135] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  997.913890][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  997.933451][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  997.973707][T31625] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  998.094812][   T41] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  998.273344][   T41] bond0: (slave netdevsim0): Releasing backup interface
[  998.283334][ T4283] Bluetooth: hci5: command 0x040f tx timeout
[  998.299950][   T41] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  998.451284][ T4280] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  998.466544][ T4280] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  998.477043][ T4280] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  998.488439][ T4280] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  998.498468][ T4280] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  998.505895][ T4280] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  998.626523][T31810] vxcan1 speed is unknown, defaulting to 1000
[  998.755402][T31819] loop4: detected capacity change from 0 to 2048
[  998.823382][T31819] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024)
[  998.840911][T31824] netlink: 36 bytes leftover after parsing attributes in process `syz.3.11935'.
[  998.852100][ T1280] ieee802154 phy0 wpan0: encryption failed: -22
[  998.858485][ T1280] ieee802154 phy1 wpan1: encryption failed: -22
[  998.911629][T31819] syz.4.11932: attempt to access beyond end of device
[  998.911629][T31819] loop4: rw=524288, sector=33554430, nr_sectors = 2 limit=2048
[  998.930312][T31825] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  998.977623][T31819] NILFS error (device loop4): nilfs_check_page: bad entry in directory #2: directory entry across blocks - offset=104, inode=16, rec_len=1816, name_len=0
[  999.029573][T31828] netlink: 4 bytes leftover after parsing attributes in process `syz.2.11936'.
[  999.063565][T31819] Remounting filesystem read-only
[  999.361665][   T57] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  999.380946][   T57] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  999.531535][T31833] netlink: 8 bytes leftover after parsing attributes in process `syz.4.11938'.
[  999.668676][T31625] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1000.103573][T31855] kAFS: unable to lookup cell '.,'
[ 1000.363077][ T4280] Bluetooth: hci5: command 0x0419 tx timeout
[ 1000.522746][ T4280] Bluetooth: hci4: command 0x0409 tx timeout
[ 1000.886577][T31810] chnl_net:caif_netlink_parms(): no params data found
[ 1001.168601][T31859] loop2: detected capacity change from 0 to 32768
[ 1001.306544][T31859] XFS (loop2): Mounting V5 Filesystem
[ 1001.471257][T31859] XFS (loop2): Ending clean mount
[ 1001.479100][T31859] XFS (loop2): Quotacheck needed: Please wait.
[ 1001.530177][T31904] erofs: (device loop9): erofs_read_superblock: cannot find valid erofs superblock
[ 1001.599991][T31859] XFS (loop2): Quotacheck: Done.
[ 1001.825042][ T4270] XFS (loop2): Unmounting Filesystem
[ 1002.073265][T31912] netdevsim netdevsim4: Direct firmware load for ..€ failed with error -2
[ 1002.092719][T31912] netdevsim netdevsim4: Falling back to sysfs fallback for: ..€
[ 1002.175104][   T57] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1002.187278][   T57] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1002.469558][T31625] device veth0_vlan entered promiscuous mode
[ 1002.506541][ T1123] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1002.538813][ T1123] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1002.568183][ T1123] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1002.586344][ T1123] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1002.603199][ T4280] Bluetooth: hci4: command 0x041b tx timeout
[ 1002.610207][T31810] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1002.633700][T31810] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1002.642455][T31810] device bridge_slave_0 entered promiscuous mode
[ 1002.680337][T31810] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1002.697967][T31922] usb usb8: usbfs: process 31922 (syz.2.11966) did not claim interface 0 before use
[ 1002.716794][T31810] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1002.757452][T31810] device bridge_slave_1 entered promiscuous mode
[ 1002.790663][T31625] device veth1_vlan entered promiscuous mode
[ 1002.949585][T31810] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1003.013645][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1003.049696][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1003.116389][T31810] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1003.160284][   T57] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1003.171370][   T57] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1003.204310][T31625] device veth0_macvtap entered promiscuous mode
[ 1003.281581][   T41] device hsr_slave_0 left promiscuous mode
[ 1003.302000][   T41] device hsr_slave_1 left promiscuous mode
[ 1003.342780][ T9325] usb 3-1: new high-speed USB device number 43 using dummy_hcd
[ 1003.433816][   T41] device veth1_macvtap left promiscuous mode
[ 1003.450184][   T41] device veth0_macvtap left promiscuous mode
[ 1003.464794][   T41] device veth1_vlan left promiscuous mode
[ 1003.534727][ T9325] usb 3-1: too many configurations: 89, using maximum allowed: 8
[ 1003.548214][ T9325] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1003.583403][ T9325] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1003.611606][ T9325] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1003.649894][ T9325] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1003.681339][ T9325] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1003.711403][ T9325] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1003.737530][ T9325] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1003.777775][ T9325] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1003.799400][ T9325] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[ 1003.829919][ T9325] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1003.852982][ T9325] usb 3-1: Product: syz
[ 1003.857312][ T9325] usb 3-1: Manufacturer: syz
[ 1003.872195][ T9325] usb 3-1: SerialNumber: syz
[ 1003.911790][ T9325] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[ 1003.985650][ T1200] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[ 1004.273174][    C0] usb 3-1: ath9k_htc: invalid pkt_len (ec0c)
[ 1004.486815][ T4318] usb 3-1: USB disconnect, device number 43
[ 1004.506212][    C0] dummy_hcd dummy_hcd.2: timer fired with no URBs pending?
[ 1004.543708][   T41] bond1 (unregistering): Released all slaves
[ 1004.683927][ T4280] Bluetooth: hci4: command 0x040f tx timeout
[ 1005.092675][ T1200] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive
[ 1005.099725][ T1200] ath9k_htc: Failed to initialize the device
[ 1005.106832][ T4318] usb 3-1: ath9k_htc: USB layer deinitialized
[ 1005.258885][   T27] audit: type=1326 audit(1005.144:5165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31967 comm="syz.2.11982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8c2b8e929 code=0x7ffc0000
[ 1005.302644][   T27] audit: type=1326 audit(1005.174:5166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31967 comm="syz.2.11982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=68 compat=0 ip=0x7fb8c2b8e929 code=0x7ffc0000
[ 1005.331964][   T27] audit: type=1326 audit(1005.174:5167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31967 comm="syz.2.11982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8c2b8e929 code=0x7ffc0000
[ 1005.410290][   T41] bond0 (unregistering): (slave batadv_slave_0): Releasing backup interface
[ 1006.288910][T31988] cgroup: No subsys list or none specified
[ 1006.767982][ T4280] Bluetooth: hci4: command 0x0419 tx timeout
[ 1007.133407][   T41] bond0 (unregistering): Released all slaves
[ 1007.246782][T31810] team0: Port device team_slave_0 added
[ 1007.258050][   T57] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1007.320023][T32000] netlink: 16 bytes leftover after parsing attributes in process `syz.4.11998'.
[ 1007.347439][T31625] device veth1_macvtap entered promiscuous mode
[ 1007.385280][T31810] team0: Port device team_slave_1 added
[ 1007.552892][T31810] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1007.560028][T31810] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1007.588443][T31810] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1007.614185][T31625] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1007.671637][T31625] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1007.697094][T31625] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1007.715467][T31810] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1007.747304][T31810] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1007.773287][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1007.800258][T31810] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1007.814556][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1007.833685][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1007.855565][T31625] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1007.872713][T31625] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1007.899389][T31625] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1007.941558][ T1123] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1007.965448][ T1123] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1008.096393][T31625] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1008.120702][T32020] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 1008.130140][T31625] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1008.133974][T32021] netlink: 40 bytes leftover after parsing attributes in process `syz.2.12006'.
[ 1008.159598][T31625] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1008.171337][T32021] netlink: 40 bytes leftover after parsing attributes in process `syz.2.12006'.
[ 1008.192593][T31625] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1008.259613][T31810] device hsr_slave_0 entered promiscuous mode
[ 1008.303389][T31810] device hsr_slave_1 entered promiscuous mode
[ 1008.322945][T31810] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1008.330584][T31810] Cannot create hsr debugfs directory
[ 1008.613163][   T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1008.621850][   T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1008.752927][T32030] openvswitch: netlink: Key type 29 is not supported
[ 1008.797029][   T57] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1008.828560][ T1109] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1008.867805][ T1109] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1008.967150][T26115] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1009.211696][   T27] audit: type=1800 audit(1009.104:5168): pid=32040 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.12014" name="SYSV00000000" dev="hugetlbfs" ino=1 res=0 errno=0
[ 1009.935507][T32051] vxcan1 speed is unknown, defaulting to 1000
[ 1009.981459][T32016] loop3: detected capacity change from 0 to 65536
[ 1010.128058][T32016] XFS (loop3): Mounting V5 Filesystem
[ 1010.280460][T32016] XFS (loop3): Ending clean mount
[ 1010.443722][ T4271] XFS (loop3): Unmounting Filesystem
[ 1010.643138][T32079] loop4: detected capacity change from 0 to 256
[ 1010.693804][T32079] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x586fd6de, utbl_chksum : 0xe619d30d)
[ 1011.522998][T31810] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 1011.554100][T31810] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 1011.617733][T31810] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 1011.675255][T31810] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 1011.843276][T32114] netlink: 168 bytes leftover after parsing attributes in process `syz.3.12022'.
[ 1012.079810][T32118] netlink: 24 bytes leftover after parsing attributes in process `syz.2.12035'.
[ 1012.142501][T31810] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1012.204953][ T1123] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1012.227671][ T1123] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1012.274206][T31810] 8021q: adding VLAN 0 to HW filter on device team0
[ 1012.348663][   T41] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1012.367678][   T41] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1012.414278][   T41] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1012.421442][   T41] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1012.575052][   T41] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1012.611771][   T41] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1012.663490][   T41] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1012.691625][   T41] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1012.698961][   T41] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1012.748807][   T41] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1012.764985][T32144] loop4: detected capacity change from 0 to 128
[ 1012.773581][   T41] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1012.797918][T32144] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[ 1012.875164][   T57] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1012.909421][   T57] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1012.993711][   T57] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1013.025496][   T57] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1013.077162][   T57] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1013.123580][   T57] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1013.171975][T31810] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1013.206316][T31810] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1013.237553][   T57] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1013.269154][   T57] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1013.307948][   T57] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1013.834210][T32179] loop2: detected capacity change from 0 to 256
[ 1013.841503][T32179] exfat: Deprecated parameter 'utf8'
[ 1013.887855][T32182] loop9: detected capacity change from 0 to 64
[ 1013.912115][T32179] exfat: Deprecated parameter 'utf8'
[ 1013.953478][T32179] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x7bac8b1f, utbl_chksum : 0xe619d30d)
[ 1014.291454][ T1109] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1014.313939][ T1109] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1014.333779][T31810] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1014.352767][ T4318] usb 4-1: new high-speed USB device number 46 using dummy_hcd
[ 1014.442232][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1014.479859][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1014.510676][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1014.541403][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1014.552809][ T4318] usb 4-1: Using ep0 maxpacket: 8
[ 1014.560358][ T4318] usb 4-1: unable to get BOS descriptor or descriptor too short
[ 1014.584190][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1014.611213][ T4318] usb 4-1: config 4 interface 0 has no altsetting 0
[ 1014.619023][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1014.630466][ T4318] usb 4-1: string descriptor 0 read error: -22
[ 1014.642736][ T4318] usb 4-1: New USB device found, idVendor=058f, idProduct=6610, bcdDevice=48.05
[ 1014.657055][T31810] device veth0_vlan entered promiscuous mode
[ 1014.672867][ T4318] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1014.689206][T32195] loop9: detected capacity change from 0 to 1024
[ 1014.700178][T31810] device veth1_vlan entered promiscuous mode
[ 1014.720981][ T4318] usb 4-1: dvb_usb_v2: found a 'Sigmatek DVB-110' in warm state
[ 1014.741817][T32195] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1014.763891][ T4318] usb 4-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[ 1014.825889][ T4318] dvbdev: DVB: registering new adapter (Sigmatek DVB-110)
[ 1014.839279][   T41] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1014.863571][   T41] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1014.882389][T32195] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: none.
[ 1014.911942][ T4318] usb 4-1: media controller created
[ 1014.933274][   T41] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1014.996319][T32195] EXT4-fs error (device loop9): ext4_xattr_inode_iget:404: inode #11: comm syz.9.12062: missing EA_INODE flag
[ 1015.008904][   T41] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1015.044493][ T4318] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1015.064712][T32195] EXT4-fs (loop9): Remounting filesystem read-only
[ 1015.067271][T31810] device veth0_macvtap entered promiscuous mode
[ 1015.071686][T32195] EXT4-fs error (device loop9): ext4_xattr_inode_iget:409: comm syz.9.12062: error while reading EA inode 11 err=-117
[ 1015.123687][T31810] device veth1_macvtap entered promiscuous mode
[ 1015.185387][T32195] EXT4-fs (loop9): Remounting filesystem read-only
[ 1015.210506][T31810] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1015.275269][T31810] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1015.318431][T31810] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1015.361101][T31810] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1015.397265][T31810] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1015.407782][T31625] EXT4-fs (loop9): unmounting filesystem.
[ 1015.424705][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1015.437774][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1015.446884][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1015.456912][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1015.476668][T31810] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1015.487968][ T1200] usb 4-1: USB disconnect, device number 46
[ 1015.527919][T31810] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1015.567047][T31810] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1015.606956][T31810] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1015.630486][T31810] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1015.647032][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1015.680503][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1015.730665][T31810] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1015.746735][T31810] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1015.787160][T31810] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1015.808657][T31810] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1016.083219][    T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1016.092085][    T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1016.169905][T11135] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1016.239397][T26115] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1016.270152][T26115] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1016.334048][   T27] audit: type=1326 audit(1016.224:5169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32228 comm="syz.4.12072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4a058e929 code=0x7ffc0000
[ 1016.387181][ T1123] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1016.451093][   T27] audit: type=1326 audit(1016.224:5170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32228 comm="syz.4.12072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=213 compat=0 ip=0x7fe4a058e929 code=0x7ffc0000
[ 1016.587279][   T27] audit: type=1326 audit(1016.224:5171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32228 comm="syz.4.12072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4a058e929 code=0x7ffc0000
[ 1016.638820][T32240] loop3: detected capacity change from 0 to 256
[ 1016.647683][T32238] loop4: detected capacity change from 0 to 1024
[ 1016.715685][   T27] audit: type=1326 audit(1016.224:5172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32228 comm="syz.4.12072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4a058e929 code=0x7ffc0000
[ 1016.722332][T32238] EXT4-fs error (device loop4): ext4_map_blocks:745: inode #3: block 1: comm syz.4.12075: lblock 1 mapped to illegal pblock 1 (length 1)
[ 1016.778151][T32240] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0xda218cab, utbl_chksum : 0xe619d30d)
[ 1016.862623][T32238] Quota error (device loop4): write_blk: dquota write failed
[ 1016.916914][T32237] loop9: detected capacity change from 0 to 4096
[ 1016.921155][T32238] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[ 1016.978118][T32238] EXT4-fs error (device loop4): ext4_acquire_dquot:6814: comm syz.4.12075: Failed to acquire dquot type 0
[ 1017.012046][T32240] exFAT-fs (loop3): error, invalid access to FAT free cluster (entry 0x00000008)
[ 1017.025043][T32237] ntfs3: loop9: Different NTFS' sector size (4096) and media sector size (512)
[ 1017.054859][T32238] EXT4-fs error (device loop4): ext4_free_blocks:6210: comm syz.4.12075: Freeing blocks not in datazone - block = 0, count = 4096
[ 1017.079482][T32240] exFAT-fs (loop3): Filesystem has been set read-only
[ 1017.131869][T32238] EXT4-fs error (device loop4): ext4_read_inode_bitmap:140: comm syz.4.12075: Invalid inode bitmap blk 0 in block_group 0
[ 1017.178109][T11135] EXT4-fs error (device loop4): ext4_map_blocks:635: inode #3: block 1: comm kworker/u4:8: lblock 1 mapped to illegal pblock 1 (length 1)
[ 1017.202055][T32237] ntfs3: loop9: failed to convert "c46c" to cp863
[ 1017.229572][T32238] EXT4-fs error (device loop4) in ext4_free_inode:362: Corrupt filesystem
[ 1017.231729][T11135] Quota error (device loop4): remove_tree: Can't read quota data block 1
[ 1017.263850][T32238] EXT4-fs (loop4): 1 orphan inode deleted
[ 1017.318989][T32238] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[ 1017.342591][T11135] EXT4-fs error (device loop4): ext4_release_dquot:6850: comm kworker/u4:8: Failed to release dquot type 0
[ 1017.453464][T32259] overlayfs: bad mount option "redirect_dir=on:/"
[ 1017.479516][T32238] EXT4-fs (loop4): re-mounted. Quota mode: writeback.
[ 1017.667609][ T4274] EXT4-fs (loop4): unmounting filesystem.
[ 1017.908781][T32274] overlayfs: The uuid=off requires a single fs for lower and upper, falling back to uuid=on.
[ 1017.965646][T32274] overlayfs: overlapping lowerdir path
[ 1018.666256][   T27] audit: type=1326 audit(1018.554:5173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32306 comm="syz.3.12103" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b3398e929 code=0x7ffc0000
[ 1018.735905][T32311] loop4: detected capacity change from 0 to 64
[ 1018.761866][   T27] audit: type=1326 audit(1018.584:5174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32306 comm="syz.3.12103" exe="/root/syz-executor" sig=0 arch=c000003e syscall=114 compat=0 ip=0x7f8b3398e929 code=0x7ffc0000
[ 1018.899511][   T27] audit: type=1326 audit(1018.584:5175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32306 comm="syz.3.12103" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b3398e929 code=0x7ffc0000
[ 1018.942767][ T4335] usb 3-1: new high-speed USB device number 44 using dummy_hcd
[ 1019.172936][ T4335] usb 3-1: Using ep0 maxpacket: 16
[ 1019.182157][ T4335] usb 3-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[ 1019.208563][ T4335] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1019.251016][ T4335] usb 3-1: Product: syz
[ 1019.268024][ T4335] usb 3-1: Manufacturer: syz
[ 1019.292445][ T4335] usb 3-1: SerialNumber: syz
[ 1019.331181][ T4335] r8152-cfgselector 3-1: config 0 descriptor??
[ 1019.763461][ T4335] r8152-cfgselector 3-1: Unknown version 0x0000
[ 1019.778343][ T4335] r8152-cfgselector 3-1: bad CDC descriptors
[ 1019.809625][ T4335] r8152-cfgselector 3-1: Unknown version 0x0000
[ 1019.845049][ T4335] r8152-cfgselector 3-1: USB disconnect, device number 44
[ 1019.854734][T32339] loop4: detected capacity change from 0 to 8192
[ 1019.898169][T32339] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 1019.961904][T32339] REISERFS (device loop4): found reiserfs format "3.5" with non-standard journal
[ 1019.996459][T32339] REISERFS (device loop4): using ordered data mode
[ 1020.022281][T32339] reiserfs: using flush barriers
[ 1020.041880][T32339] REISERFS (device loop4): journal params: device loop4, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 1020.126549][T32339] REISERFS (device loop4): checking transaction log (loop4)
[ 1020.174144][T32339] REISERFS (device loop4): Using r5 hash to sort names
[ 1020.200621][T32339] REISERFS (device loop4): using 3.5.x disk format
[ 1020.245019][T32339] REISERFS warning (device loop4): jdm-13090 reiserfs_new_inode: ACLs aren't enabled in the fs, but vfs thinks they are!
[ 1020.322726][T32339] REISERFS (device loop4): Created .reiserfs_priv - reserved for xattr storage.
[ 1020.496758][T32352] loop3: detected capacity change from 0 to 4096
[ 1020.520085][T32355] loop9: detected capacity change from 0 to 1024
[ 1020.635504][T32352] ntfs: volume version 3.1.
[ 1020.659783][T32355] EXT4-fs error (device loop9): ext4_map_blocks:745: inode #3: block 1: comm syz.9.12122: lblock 1 mapped to illegal pblock 1 (length 1)
[ 1020.773926][T32355] EXT4-fs error (device loop9): ext4_acquire_dquot:6814: comm syz.9.12122: Failed to acquire dquot type 0
[ 1020.810341][T32355] EXT4-fs error (device loop9): ext4_free_blocks:6210: comm syz.9.12122: Freeing blocks not in datazone - block = 0, count = 4096
[ 1020.918144][T32355] EXT4-fs error (device loop9): ext4_read_inode_bitmap:140: comm syz.9.12122: Invalid inode bitmap blk 0 in block_group 0
[ 1020.932835][T11135] EXT4-fs error (device loop9): ext4_map_blocks:635: inode #3: block 1: comm kworker/u4:8: lblock 1 mapped to illegal pblock 1 (length 1)
[ 1020.992962][T11135] EXT4-fs error (device loop9): ext4_release_dquot:6850: comm kworker/u4:8: Failed to release dquot type 0
[ 1021.005264][T32355] EXT4-fs error (device loop9) in ext4_free_inode:362: Corrupt filesystem
[ 1021.093057][T32355] EXT4-fs (loop9): 1 orphan inode deleted
[ 1021.098878][T32355] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[ 1021.254767][T32355] EXT4-fs (loop9): re-mounted. Quota mode: writeback.
[ 1021.340485][T32373] loop4: detected capacity change from 0 to 4096
[ 1021.430097][T32385] netlink: 4 bytes leftover after parsing attributes in process `syz.0.12132'.
[ 1021.431379][T32373] __ntfs_error: 3 callbacks suppressed
[ 1021.431399][T32373] ntfs: (device loop4): ntfs_read_locked_inode(): Corrupt standard information attribute in inode.
[ 1021.471939][T31625] EXT4-fs (loop9): unmounting filesystem.
[ 1021.542787][T32373] ntfs: (device loop4): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[ 1021.589886][T32373] ntfs: (device loop4): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[ 1021.695212][T32373] ntfs: volume version 3.1.
[ 1021.750175][T32394] netlink: 8 bytes leftover after parsing attributes in process `syz.3.12137'.
[ 1022.046533][T32403] netlink: 6 bytes leftover after parsing attributes in process `syz.0.12140'.
[ 1022.159521][T32403] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[ 1022.213311][T32403] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[ 1023.142366][T32400] loop9: detected capacity change from 0 to 32768
[ 1023.218699][T32400] overlayfs: missing 'lowerdir'
[ 1024.155469][T32473] loop3: detected capacity change from 0 to 4096
[ 1024.236053][T32473] ntfs: (device loop3): ntfs_read_locked_inode(): Corrupt standard information attribute in inode.
[ 1024.261143][T32473] ntfs: (device loop3): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[ 1024.357888][T32473] ntfs: (device loop3): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[ 1024.431716][T32473] ntfs: volume version 3.1.
[ 1024.672641][   T22] usb 3-1: new full-speed USB device number 45 using dummy_hcd
[ 1024.884400][   T22] usb 3-1: config index 0 descriptor too short (expected 156, got 27)
[ 1024.910413][   T22] usb 3-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[ 1024.962636][   T22] usb 3-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 10
[ 1024.994287][   T22] usb 3-1: config 0 interface 0 altsetting 191 endpoint 0x87 has invalid maxpacket 255, setting to 64
[ 1025.036118][   T22] usb 3-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[ 1025.059016][T32503] loop3: detected capacity change from 0 to 256
[ 1025.084872][T32501] loop9: detected capacity change from 0 to 64
[ 1025.089713][   T22] usb 3-1: config 0 interface 0 has no altsetting 0
[ 1025.128981][   T22] usb 3-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[ 1025.173637][   T22] usb 3-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[ 1025.184894][T32503] FAT-fs (loop3): Directory bread(block 64) failed
[ 1025.191514][T32503] FAT-fs (loop3): Directory bread(block 65) failed
[ 1025.217733][T32462] loop4: detected capacity change from 0 to 40427
[ 1025.242103][T32503] FAT-fs (loop3): Directory bread(block 66) failed
[ 1025.252616][   T22] usb 3-1: Product: syz
[ 1025.267254][   T22] usb 3-1: Manufacturer: syz
[ 1025.269849][T32462] F2FS-fs (loop4): Fix alignment : internally, start(4096) end(16896) block(12288)
[ 1025.271903][   T22] usb 3-1: SerialNumber: syz
[ 1025.296898][T32503] FAT-fs (loop3): Directory bread(block 67) failed
[ 1025.325810][T32503] FAT-fs (loop3): Directory bread(block 68) failed
[ 1025.332437][T32503] FAT-fs (loop3): Directory bread(block 69) failed
[ 1025.355082][T32462] F2FS-fs (loop4): invalid crc value
[ 1025.361409][   T22] usb 3-1: config 0 descriptor??
[ 1025.371433][T32503] FAT-fs (loop3): Directory bread(block 70) failed
[ 1025.382001][T32462] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 1025.391498][T32485] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[ 1025.402837][   T22] ldusb 3-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[ 1025.432908][T32503] FAT-fs (loop3): Directory bread(block 71) failed
[ 1025.474932][T32503] FAT-fs (loop3): Directory bread(block 72) failed
[ 1025.481025][   T22] ldusb 3-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[ 1025.481518][T32503] FAT-fs (loop3): Directory bread(block 73) failed
[ 1025.537117][T32510] overlayfs: missing 'workdir'
[ 1025.615253][T32462] F2FS-fs (loop4): recover fsync data on readonly fs
[ 1025.703872][T32462] F2FS-fs (loop4): Cannot turn on quotas: -2 on 1
[ 1025.713389][T32462] F2FS-fs (loop4): Cannot turn on quotas: -2 on 2
[ 1025.778711][T32462] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 1025.804617][ T4319] usb 3-1: USB disconnect, device number 45
[ 1025.823213][ T4319] ldusb 3-1:0.0: LD USB Device #0 now disconnected
[ 1025.924053][T32462] F2FS-fs (loop4): Try to recover all the superblocks, ret: 0
[ 1025.934227][T32516] loop9: detected capacity change from 0 to 2048
[ 1025.952681][T32462] F2FS-fs (loop4): Unrecognized mount option "ÿÿÿÿ01777777777777777777777±ñV?Œù³ßCp~'~8pٻ젌|ž^½Ö(
cŸoö—ÈêM ) Ç0177777777777777777777718446744073709551615ÿ%S€P	×b«cÆÊÁú‡W(´‘G ¼Dz#äû…ݪd½š¾;«ŒÎš|¾n\~CˆÓ3ÄñÎ8HŽFù·#ƒ”楞Žn²ëf.&½S`>ïÕË»à½"zuHòjåŒãhV-Mô(�»" or missing value
[ 1026.015778][T32516] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1026.197671][T32520] netlink: 'syz.3.12188': attribute type 1 has an invalid length.
[ 1026.236442][T32520] netlink: 'syz.3.12188': attribute type 3 has an invalid length.
[ 1026.253248][T32520] netlink: 224 bytes leftover after parsing attributes in process `syz.3.12188'.
[ 1027.132927][T32547] netlink: 4 bytes leftover after parsing attributes in process `syz.3.12199'.
[ 1028.573306][T32606] loop3: detected capacity change from 0 to 1024
[ 1028.716125][T32606] hfsplus: request for non-existent node 768 in B*Tree
[ 1028.761648][T32606] hfsplus: request for non-existent node 768 in B*Tree
[ 1028.945790][   T57] hfsplus: b-tree write err: -5, ino 4
[ 1028.971037][T32624] netlink: 8 bytes leftover after parsing attributes in process `syz.2.12229'.
[ 1029.659059][T32650] netlink: 16 bytes leftover after parsing attributes in process `syz.2.12242'.
[ 1029.672847][T32650] netlink: 16 bytes leftover after parsing attributes in process `syz.2.12242'.
[ 1030.073860][T32669] loop9: detected capacity change from 0 to 16
[ 1030.110307][T32669] erofs: (device loop9): mounted with root inode @ nid 36.
[ 1030.192804][   T22] usb 3-1: new high-speed USB device number 46 using dummy_hcd
[ 1030.395724][   T22] usb 3-1: config 16 interface 0 altsetting 75 endpoint 0x7 has invalid maxpacket 1032, setting to 1024
[ 1030.427518][   T22] usb 3-1: config 16 interface 0 altsetting 75 endpoint 0x6 has invalid wMaxPacketSize 0
[ 1030.467142][   T22] usb 3-1: config 16 interface 0 has no altsetting 0
[ 1030.502372][   T22] usb 3-1: New USB device found, idVendor=15c2, idProduct=0036, bcdDevice=bb.7a
[ 1030.537465][   T22] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1030.580370][T32663] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[ 1030.727866][T32692] loop9: detected capacity change from 0 to 2048
[ 1030.808830][   T22] usb 3-1: string descriptor 0 read error: -71
[ 1030.829543][T32692] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1030.844984][   T22] imon:imon_find_endpoints: no valid input (IR) endpoint found
[ 1030.892720][   T22] imon 3-1:16.0: unable to initialize intf0, err -19
[ 1030.899473][   T22] imon:imon_probe: failed to initialize context!
[ 1030.942618][   T22] imon 3-1:16.0: unable to register, err -19
[ 1030.979522][   T22] usb 3-1: USB disconnect, device number 46
[ 1031.476744][T32718] loop9: detected capacity change from 0 to 128
[ 1031.531546][T32726] netlink: 4 bytes leftover after parsing attributes in process `syz.0.12273'.
[ 1032.116397][T32740] netlink: 8 bytes leftover after parsing attributes in process `syz.0.12280'.
[ 1032.140418][T32744] netlink: 9 bytes leftover after parsing attributes in process `syz.4.12281'.
[ 1032.164269][T32743] netlink: 'syz.9.12282': attribute type 30 has an invalid length.
[ 1032.353003][ T4280] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci4/hci4:201'
[ 1032.364258][ T4280] CPU: 0 PID: 4280 Comm: kworker/u5:4 Not tainted 6.1.145-syzkaller #0
[ 1032.372561][ T4280] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1032.382662][ T4280] Workqueue: hci4 hci_rx_work
[ 1032.387412][ T4280] Call Trace:
[ 1032.390733][ T4280]  <TASK>
[ 1032.393712][ T4280]  dump_stack_lvl+0x168/0x22e
[ 1032.398458][ T4280]  ? show_regs_print_info+0x12/0x12
[ 1032.403717][ T4280]  ? load_image+0x3b0/0x3b0
[ 1032.408286][ T4280]  sysfs_create_dir_ns+0x252/0x280
[ 1032.413462][ T4280]  ? hci_rx_work+0x3eb/0xd40
[ 1032.418107][ T4280]  ? sysfs_warn_dup+0xa0/0xa0
[ 1032.422846][ T4280]  ? do_raw_spin_unlock+0x11d/0x230
[ 1032.428107][ T4280]  kobject_add_internal+0x6b8/0xc80
[ 1032.433379][ T4280]  kobject_add+0x152/0x210
[ 1032.437860][ T4280]  ? kobject_init+0x1d0/0x1d0
[ 1032.442592][ T4280]  ? klist_children_get+0x50/0x50
[ 1032.447668][ T4280]  ? get_device_parent+0x121/0x3f0
[ 1032.452833][ T4280]  device_add+0x483/0xfb0
[ 1032.457227][ T4280]  ? kmem_cache_free+0xf7/0x290
[ 1032.462144][ T4280]  hci_conn_add_sysfs+0xd1/0x1e0
[ 1032.467243][ T4280]  le_conn_complete_evt+0xd1d/0x1320
[ 1032.472590][ T4280]  ? hci_le_big_info_adv_report_evt+0x310/0x310
[ 1032.478886][ T4280]  ? __mutex_unlock_slowpath+0x19e/0x6a0
[ 1032.484586][ T4280]  ? skb_pull_data+0xf7/0x200
[ 1032.489328][ T4280]  hci_le_enh_conn_complete_evt+0x185/0x460
[ 1032.495282][ T4280]  ? hci_le_remote_conn_param_req_evt+0xcc0/0xcc0
[ 1032.501746][ T4280]  ? hci_remote_host_features_evt+0x270/0x270
[ 1032.507871][ T4280]  hci_event_packet+0x791/0x1210
[ 1032.512898][ T4280]  ? bis_list+0x280/0x280
[ 1032.517284][ T4280]  ? _raw_spin_unlock_irqrestore+0xaa/0x100
[ 1032.523242][ T4280]  ? kcov_remote_start+0x4c7/0x7e0
[ 1032.528497][ T4280]  ? nf_ct_l4proto_log_invalid+0x34/0x206
[ 1032.534275][ T4280]  ? hci_send_to_monitor+0x9c/0x4a0
[ 1032.539521][ T4280]  hci_rx_work+0x3eb/0xd40
[ 1032.543980][ T4280]  ? _raw_spin_unlock+0x40/0x40
[ 1032.548892][ T4280]  ? process_one_work+0x7a1/0x1160
[ 1032.554061][ T4280]  process_one_work+0x898/0x1160
[ 1032.559062][ T4280]  ? worker_detach_from_pool+0x240/0x240
[ 1032.564751][ T4280]  ? _raw_spin_lock_irq+0xab/0xe0
[ 1032.569825][ T4280]  ? _raw_spin_lock_irqsave+0xf0/0xf0
[ 1032.575247][ T4280]  ? kthread_data+0x4b/0xc0
[ 1032.579812][ T4280]  worker_thread+0xaa2/0x1250
[ 1032.584568][ T4280]  kthread+0x29d/0x330
[ 1032.588695][ T4280]  ? worker_clr_flags+0x1a0/0x1a0
[ 1032.593768][ T4280]  ? kthread_blkcg+0xd0/0xd0
[ 1032.598420][ T4280]  ret_from_fork+0x1f/0x30
[ 1032.602906][ T4280]  </TASK>
[ 1032.611734][ T4280] kobject_add_internal failed for hci4:201 with -EEXIST, don't try to register things with the same name in the same directory.
[ 1032.625425][ T4280] Bluetooth: hci4: failed to register connection device
[ 1032.771778][T32724] loop2: detected capacity change from 0 to 32768
[ 1032.802984][T32760] x_tables: duplicate underflow at hook 2
[ 1032.852690][T32724] 
[ 1032.852690][T32724]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1032.852690][T32724] 
[ 1032.977801][T32724] read_mapping_page failed!
[ 1032.982404][T32724] ERROR: (device loop2): txCommit: 
[ 1032.982404][T32724] 
[ 1033.185786][  T304] netlink: 340 bytes leftover after parsing attributes in process `syz.0.12294'.
[ 1033.195984][ T4270] 
[ 1033.195984][ T4270]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1033.195984][ T4270] 
[ 1033.203510][  T304] netlink: 12 bytes leftover after parsing attributes in process `syz.0.12294'.
[ 1033.219055][  T305] tmpfs: Bad value for 'nr_inodes'
[ 1033.258667][ T4270] 
[ 1033.258667][ T4270]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1033.258667][ T4270] 
[ 1033.489617][  T312] loop9: detected capacity change from 0 to 2048
[ 1033.494096][  T310] loop4: detected capacity change from 0 to 4096
[ 1033.582057][  T312] UDF-fs: error (device loop9): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[ 1033.686736][  T312] UDF-fs: error (device loop9): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[ 1033.752628][  T312] UDF-fs: warning (device loop9): udf_load_vrs: No anchor found
[ 1033.760439][  T312] UDF-fs: Scanning with blocksize 512 failed
[ 1033.805080][  T320] netlink: 'syz.0.12300': attribute type 30 has an invalid length.
[ 1033.843868][  T312] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1034.339201][  T335] loop2: detected capacity change from 0 to 2048
[ 1034.493154][  T335]  loop2: p2 < >
[ 1034.866464][  T355] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[ 1035.642384][  T341] loop3: detected capacity change from 0 to 32768
[ 1035.743982][  T341] XFS (loop3): DAX unsupported by block device. Turning off DAX.
[ 1035.755096][  T341] XFS (loop3): Mounting V5 Filesystem
[ 1035.877470][  T341] XFS (loop3): Ending clean mount
[ 1035.895041][  T341] XFS (loop3): Quotacheck needed: Please wait.
[ 1036.057088][  T402] x_tables: ip_tables: icmp match: only valid for protocol 1
[ 1036.088121][  T341] XFS (loop3): Quotacheck: Done.
[ 1036.336074][ T4271] XFS (loop3): Unmounting Filesystem
[ 1036.705678][  T417] nvme_fabrics: missing parameter 'transport=%s'
[ 1036.728549][  T417] nvme_fabrics: missing parameter 'nqn=%s'
[ 1036.957345][  T425] loop4: detected capacity change from 0 to 4096
[ 1037.028411][  T425] ntfs3: loop4: Different NTFS' sector size (2048) and media sector size (512)
[ 1037.163317][  T425] ntfs3: Couldn't remount rw because journal is not replayed. Please umount/remount instead
[ 1037.163317][  T425] 
[ 1037.577623][  T449] loop2: detected capacity change from 0 to 128
[ 1037.685266][  T449] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[ 1037.760626][  T449] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1038.589100][  T450] loop4: detected capacity change from 0 to 32768
[ 1038.634076][  T450] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop4 scanned by syz.4.12344 (450)
[ 1038.681525][  T450] BTRFS info (device loop4): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[ 1038.717550][  T450] BTRFS info (device loop4): using xxhash64 (xxhash64-generic) checksum algorithm
[ 1038.778465][  T450] BTRFS info (device loop4): force zlib compression, level 3
[ 1038.807952][  T450] BTRFS info (device loop4): force clearing of disk cache
[ 1038.819327][  T450] BTRFS info (device loop4): setting nodatasum
[ 1038.844415][  T450] BTRFS info (device loop4): allowing degraded mounts
[ 1038.883036][  T450] BTRFS info (device loop4): enabling disk space caching
[ 1038.890217][  T450] BTRFS info (device loop4): disk space caching is enabled
[ 1039.025409][  T498] netlink: 4 bytes leftover after parsing attributes in process `syz.2.12361'.
[ 1039.248677][  T450] BTRFS info (device loop4): rebuilding free space tree
[ 1039.320199][  T450] BTRFS info (device loop4): disabling free space tree
[ 1039.342708][  T450] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[ 1039.361466][  T450] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[ 1039.428951][  T450] BTRFS info (device loop4): balance: start -susage=0..1048576,devid=0,limit=351830835986432,limit=0..81917,stripes=0..32767
[ 1039.462783][  T450] BTRFS info (device loop4): balance: ended with status: 0
[ 1039.634229][ T4274] BTRFS info (device loop4): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[ 1039.794624][  T528] loop2: detected capacity change from 0 to 16
[ 1039.845757][  T528] erofs: (device loop2): EXPERIMENTAL compressed inline data feature in use. Use at your own risk!
[ 1039.910709][  T528] erofs: (device loop2): mounted with root inode @ nid 36.
[ 1039.983766][  T528] syz.2.12368: attempt to access beyond end of device
[ 1039.983766][  T528] loop2: rw=0, sector=1049256, nr_sectors = 128 limit=16
[ 1040.426700][  T543] loop3: detected capacity change from 0 to 764
[ 1040.516108][  T543] rock: corrupted directory entry. extent=32, offset=2044, size=237
[ 1041.263435][  T577] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1041.331953][  T577] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1041.362121][  T577] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1041.828178][  T592] loop2: detected capacity change from 0 to 4096
[ 1041.913283][  T592] ntfs: (device loop2): ntfs_read_locked_inode(): Corrupt standard information attribute in inode.
[ 1041.965255][  T592] ntfs: (device loop2): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[ 1041.999521][  T592] ntfs: (device loop2): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[ 1042.047826][  T592] ntfs: volume version 3.1.
[ 1042.255992][ T4270] ntfs: (device loop2): ntfs_put_super(): Volume has errors.  Leaving volume marked dirty.  Run chkdsk.
[ 1042.295267][  T604] loop9: detected capacity change from 0 to 1024
[ 1042.569004][  T613] netlink: 8 bytes leftover after parsing attributes in process `syz.4.12399'.
[ 1042.600337][  T613] netlink: zone id is out of range
[ 1042.622014][  T613] netlink: zone id is out of range
[ 1042.633277][ T1123] hfsplus: b-tree write err: -5, ino 4
[ 1042.673753][  T613] netlink: zone id is out of range
[ 1042.710519][  T613] netlink: zone id is out of range
[ 1042.720673][  T613] netlink: zone id is out of range
[ 1042.730829][  T613] netlink: zone id is out of range
[ 1042.740969][  T613] netlink: zone id is out of range
[ 1042.752897][  T613] netlink: zone id is out of range
[ 1042.791606][  T613] netlink: zone id is out of range
[ 1042.811893][  T613] netlink: zone id is out of range
[ 1043.061236][  T629] loop3: detected capacity change from 0 to 2048
[ 1043.085767][   T27] audit: type=1326 audit(1042.974:5176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=630 comm="syz.4.12406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4a058e929 code=0x7ffc0000
[ 1043.156255][   T27] audit: type=1326 audit(1042.984:5177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=630 comm="syz.4.12406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=301 compat=0 ip=0x7fe4a058e929 code=0x7ffc0000
[ 1043.175187][  T629] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1043.281498][   T27] audit: type=1326 audit(1042.984:5178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=630 comm="syz.4.12406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4a058e929 code=0x7ffc0000
[ 1043.303354][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1043.360193][   T27] audit: type=1326 audit(1042.984:5179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=630 comm="syz.4.12406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4a058e929 code=0x7ffc0000
[ 1043.841415][  T654] netdevsim netdevsim9: Direct firmware load for /
[ 1043.841415][  T654]  failed with error -2
[ 1043.893430][  T654] netdevsim netdevsim9: Falling back to sysfs fallback for: /
[ 1043.893430][  T654] 
[ 1044.185792][  T670] netlink: 'syz.3.12422': attribute type 10 has an invalid length.
[ 1044.222117][  T670] netlink: 40 bytes leftover after parsing attributes in process `syz.3.12422'.
[ 1044.325788][  T670] bridge0: port 1(dummy0) entered blocking state
[ 1044.366295][  T670] bridge0: port 1(dummy0) entered disabled state
[ 1044.411110][  T670] device dummy0 entered promiscuous mode
[ 1044.588801][  T683] netlink: 72 bytes leftover after parsing attributes in process `syz.0.12427'.
[ 1045.299997][  T713] sctp: [Deprecated]: syz.0.12440 (pid 713) Use of int in maxseg socket option.
[ 1045.299997][  T713] Use struct sctp_assoc_value instead
[ 1045.548474][  T726] loop2: detected capacity change from 0 to 8
[ 1045.682860][  T726] SQUASHFS error: Unable to read directory block [629:26]
[ 1046.298290][   T27] audit: type=1326 audit(1046.184:5180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=751 comm="syz.2.12455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8c2b8e929 code=0x7ffc0000
[ 1046.378613][   T27] audit: type=1326 audit(1046.224:5181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=751 comm="syz.2.12455" exe="/root/syz-executor" sig=0 arch=c000003e syscall=97 compat=0 ip=0x7fb8c2b8e929 code=0x7ffc0000
[ 1047.517317][   T27] kauditd_printk_skb: 2 callbacks suppressed
[ 1047.517334][   T27] audit: type=1326 audit(1047.404:5184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=796 comm="syz.0.12471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b4c78e929 code=0x7ffc0000
[ 1047.596067][   T27] audit: type=1326 audit(1047.434:5185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=796 comm="syz.0.12471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b4c78e929 code=0x7ffc0000
[ 1047.643489][  T795] loop2: detected capacity change from 0 to 4096
[ 1047.652115][  T795] ntfs3: loop2: ino=3, Correct links count -> 2.
[ 1047.709228][   T27] audit: type=1326 audit(1047.434:5186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=796 comm="syz.0.12471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=138 compat=0 ip=0x7f7b4c78e929 code=0x7ffc0000
[ 1047.765462][  T795] ntfs3: loop2: Mark volume as dirty due to NTFS errors
[ 1047.832603][   T27] audit: type=1326 audit(1047.434:5187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=796 comm="syz.0.12471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b4c78e929 code=0x7ffc0000
[ 1047.952215][   T27] audit: type=1326 audit(1047.434:5188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=796 comm="syz.0.12471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7b4c78e929 code=0x7ffc0000
[ 1048.117778][  T818] netlink: 40 bytes leftover after parsing attributes in process `syz.2.12479'.
[ 1048.160141][  T813] loop3: detected capacity change from 0 to 2048
[ 1048.220214][  T813] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024)
[ 1048.235578][  T822] netlink: 'syz.4.12481': attribute type 10 has an invalid length.
[ 1048.292895][  T822] netlink: 40 bytes leftover after parsing attributes in process `syz.4.12481'.
[ 1048.332727][  T825] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1048.333226][  T813] syz.3.12477: attempt to access beyond end of device
[ 1048.333226][  T813] loop3: rw=524288, sector=33554430, nr_sectors = 2 limit=2048
[ 1048.358028][  T822] IPv6: ADDRCONF(NETDEV_CHANGE): dummy0: link becomes ready
[ 1048.413023][  T822] bridge0: port 1(dummy0) entered blocking state
[ 1048.472861][  T822] bridge0: port 1(dummy0) entered disabled state
[ 1048.489548][  T813] syz.3.12477: attempt to access beyond end of device
[ 1048.489548][  T813] loop3: rw=0, sector=9437254, nr_sectors = 2 limit=2048
[ 1048.490654][  T822] device dummy0 entered promiscuous mode
[ 1048.510722][  T822] bridge0: port 1(dummy0) entered blocking state
[ 1048.517247][  T822] bridge0: port 1(dummy0) entered forwarding state
[ 1048.542219][  T822] IPv6: ADDRCONF(NETDEV_CHANGE): dummy0: link becomes ready
[ 1048.554049][  T824] netlink: 766 bytes leftover after parsing attributes in process `syz.0.12482'.
[ 1048.606410][  T813] NILFS (loop3): I/O error reading meta-data file (ino=6, block-offset=0)
[ 1048.680259][  T834] loop2: detected capacity change from 0 to 1024
[ 1048.755140][  T834] EXT4-fs: Ignoring removed bh option
[ 1048.814368][  T834] EXT4-fs: inline encryption not supported
[ 1048.883544][  T834] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c80ce018, mo2=0000]
[ 1048.925914][  T834] EXT4-fs error (device loop2): ext4_map_blocks:635: inode #3: block 2: comm syz.2.12485: lblock 2 mapped to illegal pblock 2 (length 1)
[ 1048.970943][  T834] Quota error (device loop2): qtree_write_dquot: dquota write failed
[ 1049.010608][  T834] EXT4-fs error (device loop2): ext4_map_blocks:635: inode #3: block 48: comm syz.2.12485: lblock 0 mapped to illegal pblock 48 (length 1)
[ 1049.091263][  T834] Quota error (device loop2): v2_write_file_info: Can't write info structure
[ 1049.111065][  T834] EXT4-fs error (device loop2): ext4_acquire_dquot:6814: comm syz.2.12485: Failed to acquire dquot type 0
[ 1049.143126][  T834] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5915: Corrupt filesystem
[ 1049.169630][  T834] EXT4-fs error (device loop2): ext4_evict_inode:279: inode #11: comm syz.2.12485: mark_inode_dirty error
[ 1049.252722][  T834] EXT4-fs warning (device loop2): ext4_evict_inode:282: couldn't mark inode dirty (err -117)
[ 1049.276527][  T834] EXT4-fs (loop2): 1 orphan inode deleted
[ 1049.322940][ T1109] EXT4-fs error (device loop2): ext4_map_blocks:635: inode #3: block 1: comm kworker/u4:5: lblock 1 mapped to illegal pblock 1 (length 1)
[ 1049.330221][  T834] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 1049.366379][ T1109] Quota error (device loop2): remove_tree: Can't read quota data block 1
[ 1049.410999][ T1109] EXT4-fs error (device loop2): ext4_release_dquot:6850: comm kworker/u4:5: Failed to release dquot type 0
[ 1049.493924][  T834] EXT4-fs error (device loop2): ext4_map_blocks:635: inode #3: block 1: comm syz.2.12485: lblock 1 mapped to illegal pblock 1 (length 1)
[ 1049.582930][  T861] netlink: 8 bytes leftover after parsing attributes in process `syz.0.12495'.
[ 1049.601618][  T834] Quota error (device loop2): find_next_id: Can't read quota tree block 1
[ 1049.746958][ T4270] EXT4-fs (loop2): unmounting filesystem.
[ 1049.756114][  T866] usb usb8: usbfs: process 866 (syz.9.12497) did not claim interface 0 before use
[ 1049.794525][ T4270] EXT4-fs error (device loop2): __ext4_get_inode_loc:4507: comm syz-executor: Invalid inode table block 1 in block_group 0
[ 1049.853166][ T4270] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5915: Corrupt filesystem
[ 1049.884109][ T4270] EXT4-fs error (device loop2): ext4_quota_off:7120: inode #3: comm syz-executor: mark_inode_dirty error
[ 1049.919290][  T839] loop4: detected capacity change from 0 to 32768
[ 1050.047614][  T839] ocfs2: Slot 0 on device (7,4) was already allocated to this node!
[ 1050.210734][  T839] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[ 1050.262165][  T884] IPVS: sync thread started: state = BACKUP, mcast_ifn = team0, syncid = 3, id = 0
[ 1050.304978][  T839] ocfs2: Unmounting device (7,4) on (node local)
[ 1050.716619][  T911] xt_TCPMSS: Only works on TCP SYN packets
[ 1051.420508][  T941] netlink: 'syz.2.12520': attribute type 10 has an invalid length.
[ 1051.452690][  T941] netlink: 40 bytes leftover after parsing attributes in process `syz.2.12520'.
[ 1051.478494][  T941] bridge0: port 5(dummy0) entered blocking state
[ 1051.502758][  T941] bridge0: port 5(dummy0) entered disabled state
[ 1051.548558][  T941] device dummy0 entered promiscuous mode
[ 1051.613304][  T941] bridge0: port 5(dummy0) entered blocking state
[ 1051.619860][  T941] bridge0: port 5(dummy0) entered forwarding state
[ 1051.865132][  T948] loop4: detected capacity change from 0 to 4096
[ 1051.938939][  T948] ntfs3: loop4: Mark volume as dirty due to NTFS errors
[ 1052.354312][  T972] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[ 1052.365191][  T975] netlink: 'syz.3.12534': attribute type 21 has an invalid length.
[ 1052.397725][  T975] netlink: 128 bytes leftover after parsing attributes in process `syz.3.12534'.
[ 1052.452835][  T975] netlink: 'syz.3.12534': attribute type 4 has an invalid length.
[ 1052.484208][  T975] netlink: 3 bytes leftover after parsing attributes in process `syz.3.12534'.
[ 1052.842084][  T997] netlink: 'syz.9.12542': attribute type 10 has an invalid length.
[ 1052.959165][  T997] team0: Port device wlan1 added
[ 1053.795389][ T1047] sctp: [Deprecated]: syz.3.12558 (pid 1047) Use of struct sctp_assoc_value in delayed_ack socket option.
[ 1053.795389][ T1047] Use struct sctp_sack_info instead
[ 1053.796085][   T27] audit: type=1326 audit(1053.684:5189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1048 comm="syz.9.12557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbcbd8e929 code=0x7ffc0000
[ 1053.872897][   T27] audit: type=1326 audit(1053.724:5190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1048 comm="syz.9.12557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbcbd8e929 code=0x7ffc0000
[ 1053.952272][   T27] audit: type=1326 audit(1053.734:5191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1048 comm="syz.9.12557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=145 compat=0 ip=0x7ffbcbd8e929 code=0x7ffc0000
[ 1054.050914][   T27] audit: type=1326 audit(1053.734:5192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1048 comm="syz.9.12557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbcbd8e929 code=0x7ffc0000
[ 1054.112811][   T27] audit: type=1326 audit(1053.734:5193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1048 comm="syz.9.12557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbcbd8e929 code=0x7ffc0000
[ 1054.602956][ T1071] loop9: detected capacity change from 0 to 4096
[ 1054.652435][ T1079] netlink: 'syz.2.12570': attribute type 21 has an invalid length.
[ 1054.712806][ T1079] netlink: 128 bytes leftover after parsing attributes in process `syz.2.12570'.
[ 1054.738635][ T1071] ntfs3: loop9: Mark volume as dirty due to NTFS errors
[ 1054.743766][ T1079] netlink: 'syz.2.12570': attribute type 4 has an invalid length.
[ 1054.770106][ T1079] netlink: 'syz.2.12570': attribute type 5 has an invalid length.
[ 1054.777326][ T1071] ntfs3: loop9: Failed to load $Extend.
[ 1054.812645][ T1079] netlink: 3 bytes leftover after parsing attributes in process `syz.2.12570'.
[ 1055.101974][ T1092] loop2: detected capacity change from 0 to 128
[ 1055.201891][ T1092] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[ 1055.231070][ T1092] FAT-fs (loop2): Filesystem has been set read-only
[ 1055.389166][ T1099] overlayfs: missing 'lowerdir'
[ 1055.452967][ T1101] netlink: 200 bytes leftover after parsing attributes in process `syz.2.12578'.
[ 1055.801569][ T1116] libceph: resolve '0' (ret=-3): failed
[ 1056.045292][ T1125] loop9: detected capacity change from 0 to 8
[ 1056.052414][ T1125] MTD: Attempt to mount non-MTD device "/dev/loop9"
[ 1056.106374][ T4333] udevd[4333]: incorrect cramfs checksum on /dev/loop9
[ 1056.153850][ T1125] cramfs: Error -3 while decompressing!
[ 1056.173999][ T1125] cramfs: ffffffff96d7a568(26)->ffff8880414b1000(4096)
[ 1056.233086][ T1125] cramfs: bad data blocksize 3489655184
[ 1056.242862][ T1125] cramfs: Error -3 while decompressing!
[ 1056.277943][ T1125] cramfs: ffffffff96d7a568(26)->ffff8880414b1000(4096)
[ 1056.337809][   T27] audit: type=1800 audit(1056.224:5194): pid=1125 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.9.12587" name="file2" dev="loop9" ino=348 res=0 errno=0
[ 1056.383166][ T1133] loop3: detected capacity change from 0 to 256
[ 1056.433063][ T1134] sctp: [Deprecated]: syz.2.12591 (pid 1134) Use of int in max_burst socket option.
[ 1056.433063][ T1134] Use struct sctp_assoc_value instead
[ 1056.752380][ T1145] netlink: 32 bytes leftover after parsing attributes in process `syz.2.12595'.
[ 1057.038625][ T1147] loop3: detected capacity change from 0 to 4096
[ 1057.088474][ T1147] ntfs3: loop3: Different NTFS' sector size (4096) and media sector size (512)
[ 1057.120792][ T1159] netlink: 'syz.9.12600': attribute type 9 has an invalid length.
[ 1057.490897][ T1167] loop9: detected capacity change from 0 to 2048
[ 1057.556939][ T1167] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1058.226984][ T1165] loop2: detected capacity change from 0 to 32768
[ 1058.502810][ T4319] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[ 1058.679976][ T1170] loop4: detected capacity change from 0 to 40427
[ 1058.697543][ T4319] usb 10-1: New USB device found, idVendor=0bda, idProduct=8153, bcdDevice=e2.3d
[ 1058.724113][ T4319] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1058.742875][ T1170] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[ 1058.750691][ T1170] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[ 1058.769224][ T4319] usb 10-1: Product: syz
[ 1058.777292][ T4319] usb 10-1: Manufacturer: syz
[ 1058.782050][ T4319] usb 10-1: SerialNumber: syz
[ 1058.795413][ T1170] F2FS-fs (loop4): invalid crc value
[ 1058.821615][ T4319] r8152-cfgselector 10-1: config 0 descriptor??
[ 1058.871247][ T1170] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 1058.979656][ T1170] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[ 1058.999604][ T1170] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 1059.245990][ T4319] r8152-cfgselector 10-1: Unknown version 0x0000
[ 1059.263230][ T4319] r8152-cfgselector 10-1: USB disconnect, device number 2
[ 1059.859705][ T1221] loop2: detected capacity change from 0 to 4096
[ 1059.922990][ T1225] netlink: 168864 bytes leftover after parsing attributes in process `syz.0.12621'.
[ 1059.929231][ T1221] ntfs3: loop2: Different NTFS' sector size (4096) and media sector size (512)
[ 1059.985987][ T1225] net_ratelimit: 42 callbacks suppressed
[ 1059.986006][ T1225] netlink: zone id is out of range
[ 1060.026889][ T1225] netlink: del zone limit has 4 unknown bytes
[ 1060.062117][ T1221] ntfs3: loop2: Mark volume as dirty due to NTFS errors
[ 1060.122827][ T1221] ntfs3: loop2: mft corrupted
[ 1060.127745][ T1221] ntfs3: loop2: Failed to load $Extend.
[ 1060.220709][ T1221] ntfs3: loop2: ino=1b, "file0" attr_set_size
[ 1060.286677][ T1280] ieee802154 phy0 wpan0: encryption failed: -22
[ 1060.293244][ T1280] ieee802154 phy1 wpan1: encryption failed: -22
[ 1060.736936][ T1251] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1060.890767][ T1249] loop4: detected capacity change from 0 to 4096
[ 1060.954661][ T1249] ntfs3: loop4: Different NTFS' sector size (1024) and media sector size (512)
[ 1061.111263][ T1249] ntfs3: loop4: no free space to extend mft
[ 1061.229239][ T1275] loop3: detected capacity change from 0 to 256
[ 1061.306031][ T1277] netlink: 4 bytes leftover after parsing attributes in process `syz.0.12640'.
[ 1062.403075][ T1270] loop9: detected capacity change from 0 to 32768
[ 1062.445654][ T1311] loop4: detected capacity change from 0 to 4096
[ 1062.452417][ T1270] 
[ 1062.452417][ T1270]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1062.452417][ T1270] 
[ 1062.524517][ T1311] ntfs3: loop4: try to read out of volume at offset 0x3fffffc0c00
[ 1062.570417][ T1311] ntfs3: loop4: try to read out of volume at offset 0x3fffffc0c00
[ 1062.619192][ T1311] ntfs3: loop4: try to read out of volume at offset 0x3fffffc0c00
[ 1062.672770][ T1311] ntfs3: loop4: try to read out of volume at offset 0x3fffffc0c00
[ 1062.690191][    T9] read_mapping_page failed!
[ 1062.702903][    T9] ERROR: (device loop9): txCommit: 
[ 1062.702903][    T9] 
[ 1062.732652][ T1311] ntfs3: loop4: try to read out of volume at offset 0x3fffffc1c00
[ 1062.740591][ T1311] ntfs3: loop4: try to read out of volume at offset 0x3fffffc2c00
[ 1062.790872][    T9] ERROR: (device loop9): remounting filesystem as read-only
[ 1062.809052][    T9] jfs_write_inode: jfs_commit_inode failed!
[ 1062.815654][ T1311] ntfs3: loop4: try to read out of volume at offset 0x3fffffc4c00
[ 1062.829380][T31625] 
[ 1062.829380][T31625]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1062.829380][T31625] 
[ 1062.864071][T31625] 
[ 1062.864071][T31625]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1062.864071][T31625] 
[ 1062.878216][ T1311] ntfs3: loop4: try to read out of volume at offset 0x3fffffc8c00
[ 1062.932639][ T1311] ntfs3: loop4: try to read out of volume at offset 0x3fffffd0c00
[ 1062.940567][ T1311] ntfs3: loop4: try to read out of volume at offset 0x3fffffe0c00
[ 1063.416443][ T1341] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 1063.751674][ T1354] x_tables: duplicate underflow at hook 2
[ 1063.852762][ T1362] netlink: 4 bytes leftover after parsing attributes in process `syz.4.12673'.
[ 1063.863011][ T1360] (unnamed net_device) (uninitialized): Unable to set up delay as MII monitoring is disabled
[ 1064.137922][ T1372] loop2: detected capacity change from 0 to 256
[ 1066.008462][ T1450] loop9: detected capacity change from 0 to 512
[ 1066.102994][ T1450] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1066.111493][ T1450] EXT4-fs (loop9): Test dummy encryption mode enabled
[ 1066.369413][ T1450] EXT4-fs error (device loop9): ext4_free_branches:1030: inode #11: comm syz.9.12713: invalid indirect mapped block 4294967295 (level 1)
[ 1066.465377][ T1450] EXT4-fs error (device loop9): ext4_free_branches:1030: inode #11: comm syz.9.12713: invalid indirect mapped block 4294967295 (level 1)
[ 1066.504435][ T1450] EXT4-fs (loop9): 2 truncates cleaned up
[ 1066.510261][ T1450] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[ 1066.635608][ T1477] netlink: 32 bytes leftover after parsing attributes in process `syz.3.12723'.
[ 1066.672673][ T1477] netlink: 40 bytes leftover after parsing attributes in process `syz.3.12723'.
[ 1066.760400][T31625] EXT4-fs (loop9): unmounting filesystem.
[ 1067.304371][ T1505] loop2: detected capacity change from 0 to 64
[ 1067.392084][ T1498] loop9: detected capacity change from 0 to 4096
[ 1067.449657][ T1498] ntfs3: loop9: Different NTFS' sector size (2048) and media sector size (512)
[ 1067.572346][ T1498] ntfs3: loop9: Mark volume as dirty due to NTFS errors
[ 1067.807177][ T1517] trusted_key: encrypted_key: keylen for the ecryptfs format must be equal to 64 bytes
[ 1067.914323][T31625] ntfs3: loop9: ntfs_evict_inode r=5 failed, -22.
[ 1068.093367][ T1528] netlink: 'syz.9.12743': attribute type 10 has an invalid length.
[ 1068.159388][ T1528] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1068.216407][ T1528] bond0: (slave batadv0): Enslaving as an active interface with an up link
[ 1068.330626][ T1536] netlink: 24 bytes leftover after parsing attributes in process `syz.3.12747'.
[ 1068.354386][ T1536] (unnamed net_device) (uninitialized): option use_carrier: invalid value (4)
[ 1068.450939][ T1542] netlink: get zone limit has 4 unknown bytes
[ 1068.643737][ T1549] tmpfs: Bad value for 'mpol'
[ 1068.738157][ T1554] do_dccp_getsockopt: sockopt(PACKET_SIZE) is deprecated: fix your app
[ 1069.574548][ T1592] loop3: detected capacity change from 0 to 256
[ 1069.582610][    T7] usb 3-1: new high-speed USB device number 47 using dummy_hcd
[ 1069.787229][    T7] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[ 1069.816762][    T7] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1069.833590][ T1600] netlink: 'syz.9.12775': attribute type 3 has an invalid length.
[ 1069.862611][    T7] usb 3-1: Product: syz
[ 1069.866858][    T7] usb 3-1: Manufacturer: syz
[ 1069.868850][ T1600] netlink: 132 bytes leftover after parsing attributes in process `syz.9.12775'.
[ 1069.871467][    T7] usb 3-1: SerialNumber: syz
[ 1069.921246][    T7] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[ 1069.987324][    T7] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[ 1069.996769][ T1606] netlink: 1020 bytes leftover after parsing attributes in process `syz.3.12778'.
[ 1070.416730][ T4318] usb 3-1: USB disconnect, device number 47
[ 1070.651179][ T1629] netlink: 144 bytes leftover after parsing attributes in process `syz.0.12787'.
[ 1070.903098][ T1638] siw: device registration error -23
[ 1071.085792][    T7] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive
[ 1071.112864][    T7] ath9k_htc: Failed to initialize the device
[ 1071.119475][ T4318] usb 3-1: ath9k_htc: USB layer deinitialized
[ 1071.183021][   T22] usb 4-1: new high-speed USB device number 47 using dummy_hcd
[ 1071.372780][   T22] usb 4-1: Using ep0 maxpacket: 8
[ 1071.382031][   T22] usb 4-1: New USB device found, idVendor=0ccd, idProduct=10a3, bcdDevice=23.a2
[ 1071.441796][   T22] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1071.470461][   T22] usb 4-1: Product: syz
[ 1071.482771][   T22] usb 4-1: Manufacturer: syz
[ 1071.502712][   T22] usb 4-1: SerialNumber: syz
[ 1071.518871][   T22] usb 4-1: config 0 descriptor??
[ 1071.764312][   T22] usb 4-1: dvb_usb_v2: found a 'Terratec H7' in warm state
[ 1071.978731][   T22] usb write operation failed. (-71)
[ 1071.996465][   T22] usb 4-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[ 1072.023323][   T22] dvbdev: DVB: registering new adapter (Terratec H7)
[ 1072.040351][   T22] usb 4-1: media controller created
[ 1072.056386][   T22] usb read operation failed. (-71)
[ 1072.066497][   T22] usb write operation failed. (-71)
[ 1072.098172][   T22] dvb_usb_az6007: probe of 4-1:0.0 failed with error -5
[ 1072.133107][ T1651] loop9: detected capacity change from 0 to 32768
[ 1072.150011][   T22] usb 4-1: USB disconnect, device number 47
[ 1072.232870][ T1651] read_mapping_page failed!
[ 1072.704375][ T1697] binder: 1696:1697 ioctl c018620b 0 returned -14
[ 1073.430815][ T1730] netlink: 'syz.2.12824': attribute type 10 has an invalid length.
[ 1073.457982][ T1730] device batadv0 left promiscuous mode
[ 1073.472189][ T1730] bridge0: port 3(batadv0) entered disabled state
[ 1073.535203][ T1730] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1073.579491][ T1730] bond0: (slave batadv0): Enslaving as an active interface with an up link
[ 1073.592733][   T41] bond0: (slave batadv0): interface is now down
[ 1073.612737][   T41] bond0: (slave batadv0): interface is now down
[ 1073.627145][ T1728] xt_CT: No such helper "pptp"
[ 1073.634614][T11135] bond0: (slave batadv0): interface is now down
[ 1073.641431][T11135] bond0: now running without any active interface!
[ 1074.160606][   T27] audit: type=1326 audit(1074.044:5195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1752 comm="syz.4.12837" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4a058e929 code=0x7ffc0000
[ 1074.182550][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1074.302604][   T27] audit: type=1326 audit(1074.054:5196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1752 comm="syz.4.12837" exe="/root/syz-executor" sig=0 arch=c000003e syscall=328 compat=0 ip=0x7fe4a058e929 code=0x7ffc0000
[ 1074.403371][   T27] audit: type=1326 audit(1074.054:5197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1752 comm="syz.4.12837" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4a058e929 code=0x7ffc0000
[ 1074.423645][   T52] block nbd0: Attempted send on invalid socket
[ 1074.431599][   T52] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 2
[ 1074.482743][   T27] audit: type=1326 audit(1074.054:5198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1752 comm="syz.4.12837" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4a058e929 code=0x7ffc0000
[ 1074.793975][   T27] audit: type=1326 audit(1074.684:5199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1780 comm="syz.4.12847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4a058e929 code=0x7ffc0000
[ 1074.921610][   T27] audit: type=1326 audit(1074.684:5200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1780 comm="syz.4.12847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4a058e929 code=0x7ffc0000
[ 1074.993629][   T27] audit: type=1326 audit(1074.744:5201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1780 comm="syz.4.12847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=296 compat=0 ip=0x7fe4a058e929 code=0x7ffc0000
[ 1075.072867][   T27] audit: type=1326 audit(1074.744:5202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1780 comm="syz.4.12847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4a058e929 code=0x7ffc0000
[ 1075.203082][   T27] audit: type=1326 audit(1074.744:5203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1780 comm="syz.4.12847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4a058e929 code=0x7ffc0000
[ 1076.485716][ T1846] netlink: 4 bytes leftover after parsing attributes in process `syz.2.12875'.
[ 1076.902833][ T1860] xt_policy: output policy not valid in PREROUTING and INPUT
[ 1077.387791][ T1826] loop9: detected capacity change from 0 to 32768
[ 1077.475131][ T1878] netlink: 'syz.3.12888': attribute type 4 has an invalid length.
[ 1077.486722][ T1826] jfs_strtoUCS: char2uni returned -22.
[ 1077.513006][ T1826] charset = cp936, char = 0xc5
[ 1077.712805][T25684] usb 3-1: new high-speed USB device number 48 using dummy_hcd
[ 1077.925211][T25684] usb 3-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[ 1077.952670][T25684] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1077.993182][T25684] usb 3-1: config 0 descriptor??
[ 1078.018954][T25684] cp210x 3-1:0.0: cp210x converter detected
[ 1078.207349][T25684] usb 3-1: cp210x converter now attached to ttyUSB0
[ 1078.417957][T25684] usb 3-1: USB disconnect, device number 48
[ 1078.438247][T25684] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[ 1078.473363][T25684] cp210x 3-1:0.0: device disconnected
[ 1078.503822][ T1908] netlink: 272 bytes leftover after parsing attributes in process `syz.3.12900'.
[ 1079.521785][ T1948] netlink: 20 bytes leftover after parsing attributes in process `syz.0.12915'.
[ 1079.613267][ T9318] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[ 1079.814328][ T9318] usb 10-1: Using ep0 maxpacket: 8
[ 1079.838024][ T9318] usb 10-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[ 1079.878024][ T9318] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1079.920043][ T9318] usb 10-1: config 0 descriptor??
[ 1080.175201][ T9318] asix 10-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[ 1080.207932][ T9318] asix: probe of 10-1:0.0 failed with error -71
[ 1080.239302][ T9318] usb 10-1: USB disconnect, device number 3
[ 1081.112069][ T2010] futex_wake_op: syz.4.12939 tries to shift op by 32; fix this program
[ 1081.259792][ T2017] loop9: detected capacity change from 0 to 256
[ 1081.574589][ T2019] loop2: detected capacity change from 0 to 4096
[ 1081.647855][ T2019] ntfs3: loop2: ino=3, Correct links count -> 2.
[ 1081.733032][ T2032] netlink: 'syz.0.12948': attribute type 1 has an invalid length.
[ 1082.003329][ T2041] netlink: 32 bytes leftover after parsing attributes in process `syz.3.12951'.
[ 1082.318836][ T2054] overlayfs: unrecognized mount option "\n" or missing value
[ 1082.612728][ T2067] netlink: 68 bytes leftover after parsing attributes in process `syz.0.12961'.
[ 1082.659747][ T2067] netlink: 68 bytes leftover after parsing attributes in process `syz.0.12961'.
[ 1082.678547][ T2069] netlink: 'syz.9.12964': attribute type 2 has an invalid length.
[ 1082.722687][ T2069] netlink: 'syz.9.12964': attribute type 1 has an invalid length.
[ 1082.745398][ T2071] netlink: 'syz.3.12963': attribute type 1 has an invalid length.
[ 1082.760431][ T2069] netlink: 8 bytes leftover after parsing attributes in process `syz.9.12964'.
[ 1082.938358][ T2078] netlink: 8 bytes leftover after parsing attributes in process `syz.0.12967'.
[ 1083.169020][ T2084] loop9: detected capacity change from 0 to 4096
[ 1083.272130][ T2084] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[ 1083.463897][T31625] EXT4-fs (loop9): unmounting filesystem.
[ 1083.986432][ T2115] netlink: 16 bytes leftover after parsing attributes in process `syz.4.12983'.
[ 1084.022954][ T2118] netlink: 4 bytes leftover after parsing attributes in process `syz.9.12982'.
[ 1084.085634][ T2117] netlink: 'syz.3.12984': attribute type 2 has an invalid length.
[ 1084.107390][ T2117] netlink: 8 bytes leftover after parsing attributes in process `syz.3.12984'.
[ 1084.147538][ T2117] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[ 1084.357948][ T2129] loop4: detected capacity change from 0 to 512
[ 1084.383320][ T2123] loop2: detected capacity change from 0 to 4096
[ 1084.444399][ T2123] ntfs: (device loop2): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match.  Run ntfsfix or chkdsk.
[ 1084.479336][ T2129] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[ 1084.490915][ T2123] ntfs: (device loop2): load_system_files(): $MFTMirr does not match $MFT.  Will not be able to remount read-write.  Run ntfsfix and/or chkdsk.
[ 1084.656389][ T4274] EXT4-fs (loop4): unmounting filesystem.
[ 1084.697671][ T2123] ntfs: volume version 3.1.
[ 1084.758098][ T2123] ntfs: (device loop2): ntfs_nlstoucs(): Name is too long (maximum length for a name on NTFS is 255 Unicode characters.
[ 1085.160544][ T2154] netlink: 'syz.2.12998': attribute type 16 has an invalid length.
[ 1085.187538][ T2145] loop4: detected capacity change from 0 to 8192
[ 1085.202914][ T2154] netlink: 64138 bytes leftover after parsing attributes in process `syz.2.12998'.
[ 1085.257192][ T2160] A link change request failed with some changes committed already. Interface dummy0 may have been left with an inconsistent configuration, please check.
[ 1085.274265][ T2145] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 1085.331054][ T2145] REISERFS (device loop4): found reiserfs format "3.5" with non-standard journal
[ 1085.341514][ T2145] REISERFS (device loop4): using ordered data mode
[ 1085.348422][ T2145] reiserfs: using flush barriers
[ 1085.384184][ T2145] REISERFS (device loop4): journal params: device loop4, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 1085.459248][ T2167] netlink: 'syz.2.13003': attribute type 6 has an invalid length.
[ 1085.478760][ T2145] REISERFS (device loop4): checking transaction log (loop4)
[ 1085.503215][ T2145] REISERFS (device loop4): Using r5 hash to sort names
[ 1085.510607][ T2145] REISERFS (device loop4): Created .reiserfs_priv - reserved for xattr storage.
[ 1085.889608][ T2179] loop4: detected capacity change from 0 to 164
[ 1086.518380][ T2170] loop9: detected capacity change from 0 to 32768
[ 1086.552678][ T4319] usb 3-1: new high-speed USB device number 49 using dummy_hcd
[ 1086.618574][ T2202] openvswitch: netlink: EtherType 0 is less than min 600
[ 1086.752755][ T4319] usb 3-1: Using ep0 maxpacket: 16
[ 1086.759977][ T4319] usb 3-1: config 0 has an invalid interface number: 237 but max is 0
[ 1086.798485][ T4319] usb 3-1: config 0 has no interface number 0
[ 1086.815243][ T4319] usb 3-1: config 0 interface 237 has no altsetting 0
[ 1086.845129][ T4319] usb 3-1: New USB device found, idVendor=0e41, idProduct=5057, bcdDevice= 6.ad
[ 1086.883318][ T4319] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1086.914227][ T4319] usb 3-1: Product: syz
[ 1086.918489][ T4319] usb 3-1: Manufacturer: syz
[ 1086.952738][ T4319] usb 3-1: SerialNumber: syz
[ 1086.985048][ T4319] usb 3-1: config 0 descriptor??
[ 1087.016680][ T4319] snd_usb_podhd 3-1:0.237: Line 6 POD HD300 found
[ 1087.144468][ T2214] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[ 1087.204404][ T4319] snd_usb_podhd 3-1:0.237: cannot get proper max packet size
[ 1087.212067][ T4319] snd_usb_podhd 3-1:0.237: Line 6 POD HD300 now disconnected
[ 1087.258245][ T4319] snd_usb_podhd: probe of 3-1:0.237 failed with error -22
[ 1087.440416][ T4319] usb 3-1: USB disconnect, device number 49
[ 1087.442710][ T2222] netlink: 12 bytes leftover after parsing attributes in process `syz.3.13030'.
[ 1087.502840][ T2222] netlink: 152 bytes leftover after parsing attributes in process `syz.3.13030'.
[ 1087.586284][ T2200] loop4: detected capacity change from 0 to 32768
[ 1087.650897][ T2200] 
[ 1087.650897][ T2200]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1087.650897][ T2200] 
[ 1087.728080][ T2200] 
[ 1087.728080][ T2200]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1087.728080][ T2200] 
[ 1087.777843][ T2200] 
[ 1087.777843][ T2200]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1087.777843][ T2200] 
[ 1087.812707][ T2200] 
[ 1087.812707][ T2200]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1087.812707][ T2200] 
[ 1087.842967][ T2200] 
[ 1087.842967][ T2200]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1087.842967][ T2200] 
[ 1087.884238][ T2200] 
[ 1087.884238][ T2200]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1087.884238][ T2200] 
[ 1087.935096][  T107] 
[ 1087.935096][  T107]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1087.935096][  T107] 
[ 1088.038869][ T4274] 
[ 1088.038869][ T4274]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1088.038869][ T4274] 
[ 1088.062872][ T4274] 
[ 1088.062872][ T4274]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1088.062872][ T4274] 
[ 1088.469637][ T2246] netlink: 8 bytes leftover after parsing attributes in process `syz.3.13041'.
[ 1088.879942][ T2226] loop9: detected capacity change from 0 to 32768
[ 1089.062297][ T2271] netlink: 'syz.4.13052': attribute type 1 has an invalid length.
[ 1089.071780][ T2271] netlink: 'syz.4.13052': attribute type 2 has an invalid length.
[ 1089.157901][ T2226] XFS (loop9): Mounting V5 Filesystem
[ 1089.415916][ T2226] XFS (loop9): Ending clean mount
[ 1089.464788][ T2226] XFS (loop9): Quotacheck needed: Please wait.
[ 1089.694155][ T2226] XFS (loop9): Quotacheck: Done.
[ 1089.933021][T31625] XFS (loop9): Unmounting Filesystem
[ 1090.174892][ T2309] loop3: detected capacity change from 0 to 8
[ 1090.291541][ T2309] SQUASHFS error: Failed to read block 0x1ec: -5
[ 1090.329423][ T2309] SQUASHFS error: Unable to read metadata cache entry [1ea]
[ 1091.066550][ T2330] ieee802154 phy0 wpan0: encryption failed: -90
[ 1091.628871][ T2351] loop4: detected capacity change from 0 to 256
[ 1091.697415][ T2351] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d)
[ 1091.753422][ T2351] exFAT-fs (loop4): bogus allocation bitmap size(need : 2, cur : 17179869186)
[ 1091.903185][ T4319] usb 10-1: new full-speed USB device number 4 using dummy_hcd
[ 1092.069207][ T2367] ipt_CLUSTERIP: Please specify destination IP
[ 1092.104609][ T4319] usb 10-1: config 0 has an invalid interface number: 176 but max is 2
[ 1092.127154][ T4319] usb 10-1: config 0 has an invalid interface number: 3 but max is 2
[ 1092.143296][ T4319] usb 10-1: config 0 has no interface number 0
[ 1092.167011][ T4319] usb 10-1: config 0 has no interface number 1
[ 1092.182655][ T4319] usb 10-1: too many endpoints for config 0 interface 3 altsetting 255: 255, using maximum allowed: 30
[ 1092.230290][ T4319] usb 10-1: config 0 interface 3 altsetting 255 has 0 endpoint descriptors, different from the interface descriptor's value: 255
[ 1092.271173][ T4319] usb 10-1: config 0 interface 3 has no altsetting 0
[ 1092.291712][ T4319] usb 10-1: New USB device found, idVendor=05c6, idProduct=9205, bcdDevice=29.ac
[ 1092.318813][ T4319] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1092.354418][ T4319] usb 10-1: config 0 descriptor??
[ 1092.511152][ T2347] loop2: detected capacity change from 0 to 32768
[ 1092.540802][ T2347] BTRFS error: device /dev/loop2 already registered with a higher generation, found 8 expect 12
[ 1092.581927][ T4319] usb 10-1: Could not set interface, error -71
[ 1092.603323][ T4319] usb 10-1: selecting invalid altsetting 0
[ 1092.642468][ T4319] usb 10-1: Could not set interface, error -22
[ 1092.682927][ T4319] usb 10-1: USB disconnect, device number 4
[ 1092.941687][T15183] BTRFS error: device /dev/loop2 already registered with a higher generation, found 8 expect 12
[ 1093.688538][ T2416] netlink: 20 bytes leftover after parsing attributes in process `syz.9.13109'.
[ 1093.843720][ T2383] loop3: detected capacity change from 0 to 32768
[ 1093.964094][ T2383] Dev loop3 SGI disklabel: csum bad, label corrupted
[ 1094.733794][ T2459] loop4: detected capacity change from 0 to 764
[ 1094.778955][ T2459] rock: directory entry would overflow storage
[ 1094.814473][ T2459] rock: sig=0x4654, size=5, remaining=4
[ 1095.238927][ T2484] netlink: 'syz.2.13131': attribute type 4 has an invalid length.
[ 1095.268709][ T2484] netlink: 128124 bytes leftover after parsing attributes in process `syz.2.13131'.
[ 1095.452131][ T2489] loop4: detected capacity change from 0 to 64
[ 1095.837661][ T2504] loop2: detected capacity change from 0 to 64
[ 1096.212699][ T2513] loop3: detected capacity change from 0 to 4096
[ 1096.270399][ T2513] ntfs3: loop3: Different NTFS' sector size (1024) and media sector size (512)
[ 1096.318682][ T2513] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[ 1097.439967][ T2517] loop4: detected capacity change from 0 to 32768
[ 1097.565603][ T2517] XFS (loop4): Mounting V5 Filesystem
[ 1097.786093][ T2517] XFS (loop4): Ending clean mount
[ 1098.028902][ T2600] loop9: detected capacity change from 0 to 256
[ 1098.098420][ T4274] XFS (loop4): Unmounting Filesystem
[ 1098.439885][ T2612] netlink: 224 bytes leftover after parsing attributes in process `syz.9.13170'.
[ 1098.652108][ T2619] netlink: 56 bytes leftover after parsing attributes in process `syz.0.13173'.
[ 1098.699860][ T2619] netlink: 28 bytes leftover after parsing attributes in process `syz.0.13173'.
[ 1098.752653][ T2619] netlink: 108 bytes leftover after parsing attributes in process `syz.0.13173'.
[ 1098.792350][ T2619] netlink: 56 bytes leftover after parsing attributes in process `syz.0.13173'.
[ 1098.805204][ T2628] autofs4:pid:2628:autofs_fill_super: called with bogus options
[ 1098.998915][ T2586] loop2: detected capacity change from 0 to 32768
[ 1099.118170][ T2586] XFS (loop2): Mounting V5 Filesystem
[ 1099.265288][ T2586] XFS (loop2): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x51.
[ 1099.347522][ T2586] XFS (loop2): Starting recovery (logdev: internal)
[ 1099.422854][ T2586] XFS (loop2): Ending recovery (logdev: internal)
[ 1099.654521][ T4270] XFS (loop2): Unmounting Filesystem
[ 1099.943080][ T2682] netlink: 4 bytes leftover after parsing attributes in process `syz.0.13189'.
[ 1100.138737][   T27] audit: type=1326 audit(1100.024:5204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2688 comm="syz.4.13191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4a058e929 code=0x7ffc0000
[ 1100.229193][   T27] audit: type=1326 audit(1100.024:5205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2688 comm="syz.4.13191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4a058e929 code=0x7ffc0000
[ 1100.332654][   T27] audit: type=1326 audit(1100.064:5206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2688 comm="syz.4.13191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=210 compat=0 ip=0x7fe4a058e929 code=0x7ffc0000
[ 1100.449805][   T27] audit: type=1326 audit(1100.064:5207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2688 comm="syz.4.13191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4a058e929 code=0x7ffc0000
[ 1100.523090][   T27] audit: type=1326 audit(1100.064:5208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2688 comm="syz.4.13191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4a058e929 code=0x7ffc0000
[ 1100.850535][ T2711] No such timeout policy "syz1"
[ 1101.125003][ T2671] loop3: detected capacity change from 0 to 40427
[ 1101.172169][ T2671] F2FS-fs (loop3): Insane cp_payload (553648128 >= 504)
[ 1101.240350][ T2671] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[ 1101.258095][ T2671] F2FS-fs (loop3): build fault injection attr: rate: 3, type: 0x3ffff
[ 1101.304210][ T2671] F2FS-fs (loop3): build fault injection attr: rate: 0, type: 0x1f8
[ 1101.356697][ T2671] F2FS-fs (loop3): invalid crc value
[ 1101.437151][ T2671] F2FS-fs (loop3): Found nat_bits in checkpoint
[ 1101.599343][ T2746] loop2: detected capacity change from 0 to 128
[ 1101.647830][ T2671] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[ 1101.685666][ T2671] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 1101.865961][ T2671] F2FS-fs (loop3) : inject alloc nid in f2fs_alloc_nid of f2fs_get_dnode_of_data+0x5ad/0x1670
[ 1102.713449][ T2778] loop4: detected capacity change from 0 to 1024
[ 1102.764083][ T4319] usb 3-1: new high-speed USB device number 50 using dummy_hcd
[ 1102.943297][    T9] hfsplus: b-tree write err: -5, ino 4
[ 1102.962944][ T4319] usb 3-1: Using ep0 maxpacket: 32
[ 1102.976485][ T4319] usb 3-1: New USB device found, idVendor=2c42, idProduct=16f8, bcdDevice=ba.e3
[ 1103.017011][ T4319] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1103.074075][ T4319] usb 3-1: Product: syz
[ 1103.089515][ T4319] usb 3-1: Manufacturer: syz
[ 1103.108938][ T4319] usb 3-1: SerialNumber: syz
[ 1103.142300][ T4319] usb 3-1: config 0 descriptor??
[ 1103.367198][ T4319] f81534a_ctrl 3-1:0.0: failed to set register 0x116: -5
[ 1103.392873][ T4319] f81534a_ctrl 3-1:0.0: failed to enable ports: -5
[ 1103.399475][ T4319] f81534a_ctrl: probe of 3-1:0.0 failed with error -5
[ 1103.452936][ T4319] usb 3-1: USB disconnect, device number 50
[ 1104.679644][ T2864] netlink: 'syz.0.13245': attribute type 2 has an invalid length.
[ 1104.753709][ T2864] netlink: 'syz.0.13245': attribute type 1 has an invalid length.
[ 1105.039083][ T2881] netlink: 40 bytes leftover after parsing attributes in process `syz.0.13252'.
[ 1105.330184][ T2895] loop4: detected capacity change from 0 to 128
[ 1105.355767][ T2893] loop2: detected capacity change from 0 to 1024
[ 1105.378737][ T2897] netlink: 16 bytes leftover after parsing attributes in process `syz.3.13258'.
[ 1105.567818][ T4270] hfsplus: bad catalog entry type
[ 1106.004945][ T4270] team0: Port device syz_tun removed
[ 1106.093290][T26115] hfsplus: b-tree write err: -5, ino 4
[ 1106.353951][ T1123] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1106.582260][ T1123] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1106.815667][ T1123] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1106.838552][ T2943] netlink: 52 bytes leftover after parsing attributes in process `syz.4.13278'.
[ 1107.042638][ T4318] usb 10-1: new high-speed USB device number 5 using dummy_hcd
[ 1107.247435][ T4318] usb 10-1: New USB device found, idVendor=2c42, idProduct=1602, bcdDevice=da.64
[ 1107.298828][ T4318] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1107.343038][ T4318] usb 10-1: Product: syz
[ 1107.347996][ T4318] usb 10-1: Manufacturer: syz
[ 1107.365394][ T4318] usb 10-1: SerialNumber: syz
[ 1107.373704][ T4318] usb 10-1: config 0 descriptor??
[ 1107.398651][ T2957] loop4: detected capacity change from 0 to 128
[ 1107.406150][ T4318] hub 10-1:0.0: bad descriptor, ignoring hub
[ 1107.412198][ T4318] hub: probe of 10-1:0.0 failed with error -5
[ 1107.435404][ T2957] FAT-fs (loop4): Directory bread(block 414) failed
[ 1107.442108][ T2957] FAT-fs (loop4): Directory bread(block 415) failed
[ 1107.454549][ T4318] f81232 10-1:0.0: f81534a converter detected
[ 1107.472053][ T2957] FAT-fs (loop4): Directory bread(block 416) failed
[ 1107.535413][ T2957] FAT-fs (loop4): Directory bread(block 417) failed
[ 1107.552426][ T2957] FAT-fs (loop4): Directory bread(block 418) failed
[ 1107.572859][ T2957] FAT-fs (loop4): Directory bread(block 419) failed
[ 1107.579647][ T2957] FAT-fs (loop4): Directory bread(block 420) failed
[ 1107.594378][ T4318] usb 10-1: f81534a converter now attached to ttyUSB0
[ 1107.664651][ T2957] FAT-fs (loop4): Directory bread(block 421) failed
[ 1107.710020][ T2957] FAT-fs (loop4): Directory bread(block 414) failed
[ 1107.738418][ T2957] FAT-fs (loop4): Directory bread(block 415) failed
[ 1107.813046][ T4283] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1107.825590][ T4283] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1107.843150][ T4283] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1107.862344][T31626] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1107.872461][T31626] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[ 1107.882096][T31626] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1107.924727][ T9320] usb 10-1: USB disconnect, device number 5
[ 1107.956414][ T9320] f81534a ttyUSB0: f81534a converter now disconnected from ttyUSB0
[ 1108.005749][ T9320] f81232 10-1:0.0: device disconnected
[ 1108.030306][ T2967] vxcan1 speed is unknown, defaulting to 1000
[ 1109.221500][ T3009] netlink: 8 bytes leftover after parsing attributes in process `syz.4.13303'.
[ 1109.580303][ T3014] netlink: 'syz.3.13306': attribute type 10 has an invalid length.
[ 1109.612731][ T3014] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets).
[ 1109.958885][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1109.962854][T31626] Bluetooth: hci2: command 0x0409 tx timeout
[ 1110.177147][ T2967] chnl_net:caif_netlink_parms(): no params data found
[ 1110.287036][ T3041] netlink: 'syz.3.13317': attribute type 1 has an invalid length.
[ 1110.322794][ T3041] netlink: 112860 bytes leftover after parsing attributes in process `syz.3.13317'.
[ 1110.472236][ T3050] xt_addrtype: ipv6 BLACKHOLE matching not supported
[ 1110.962057][ T3070] loop3: detected capacity change from 0 to 1024
[ 1111.026788][ T3072] loop9: detected capacity change from 0 to 1764
[ 1111.053212][ T3070] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1111.100287][ T2967] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1111.121414][ T2967] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1111.133471][ T1123] IPVS: stopping master sync thread 24991 ...
[ 1111.178751][ T3070] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[ 1111.187078][ T2967] device bridge_slave_0 entered promiscuous mode
[ 1111.188482][ T1123] IPVS: stopping backup sync thread 884 ...
[ 1111.204045][ T3072] syz.9.13330: attempt to access beyond end of device
[ 1111.204045][ T3072] loop9: rw=524288, sector=1936, nr_sectors = 256 limit=1764
[ 1111.300843][ T2967] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1111.313372][ T3072] syz.9.13330: attempt to access beyond end of device
[ 1111.313372][ T3072] loop9: rw=524288, sector=2192, nr_sectors = 256 limit=1764
[ 1111.339930][ T2967] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1111.353713][ T3072] syz.9.13330: attempt to access beyond end of device
[ 1111.353713][ T3072] loop9: rw=0, sector=1936, nr_sectors = 8 limit=1764
[ 1111.382270][ T2967] device bridge_slave_1 entered promiscuous mode
[ 1111.388306][   T27] audit: type=1800 audit(1111.264:5209): pid=3072 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.9.13330" name="file0" dev="loop9" ino=1986 res=0 errno=0
[ 1111.430352][ T4271] EXT4-fs (loop3): unmounting filesystem.
[ 1112.011998][ T2967] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1112.042729][T31626] Bluetooth: hci2: command 0x041b tx timeout
[ 1112.088454][ T2967] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1112.342755][ T3116] QAT: Stopping all acceleration devices.
[ 1112.442444][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1112.583578][ T3123] xt_TCPMSS: Only works on TCP SYN packets
[ 1112.653706][ T2967] team0: Port device team_slave_0 added
[ 1112.734616][ T2967] team0: Port device team_slave_1 added
[ 1112.924454][ T2967] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1112.931513][ T2967] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1113.040210][ T2967] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1113.109936][ T3142] loop4: detected capacity change from 0 to 64
[ 1113.153389][ T2967] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1113.160429][ T2967] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1113.290148][ T2967] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1113.373523][ T1123] device hsr_slave_0 left promiscuous mode
[ 1113.420834][ T1123] device hsr_slave_1 left promiscuous mode
[ 1113.459690][ T1123] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1113.480437][ T1123] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1113.524610][ T1123] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1113.532114][ T1123] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1113.571192][ T1123] device dummy0 left promiscuous mode
[ 1113.583171][ T1123] bridge0: port 5(dummy0) entered disabled state
[ 1113.617993][ T1123] device macsec0 left promiscuous mode
[ 1113.627798][ T1123] bridge0: port 4(macsec0) entered disabled state
[ 1113.649554][   T27] audit: type=1326 audit(1113.534:5210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3160 comm="syz.3.13360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b3398e929 code=0x7ffc0000
[ 1113.681739][ T1123] device bridge_slave_1 left promiscuous mode
[ 1113.689810][   T27] audit: type=1326 audit(1113.534:5211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3160 comm="syz.3.13360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b3398e929 code=0x7ffc0000
[ 1113.700506][ T1123] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1113.711772][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1113.714194][   T27] audit: type=1326 audit(1113.584:5212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3160 comm="syz.3.13360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7f8b3398e929 code=0x7ffc0000
[ 1113.747877][   T27] audit: type=1326 audit(1113.584:5213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3160 comm="syz.3.13360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b3398e929 code=0x7ffc0000
[ 1113.770518][   T27] audit: type=1326 audit(1113.584:5214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3160 comm="syz.3.13360" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b3398e929 code=0x7ffc0000
[ 1113.792503][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1113.801209][ T1123] device bridge_slave_0 left promiscuous mode
[ 1113.816567][ T1123] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1113.903722][ T3165] netlink: 8 bytes leftover after parsing attributes in process `syz.9.13362'.
[ 1113.918830][ T3165] netlink: 8 bytes leftover after parsing attributes in process `syz.9.13362'.
[ 1113.931750][ T3163] loop4: detected capacity change from 0 to 4096
[ 1113.951422][ T1123] device veth1_macvtap left promiscuous mode
[ 1113.973043][ T1123] device veth0_macvtap left promiscuous mode
[ 1113.979635][ T1123] device veth1_vlan left promiscuous mode
[ 1114.122851][T31626] Bluetooth: hci2: command 0x040f tx timeout
[ 1114.414043][ T1123] infiniband syz2: set down
[ 1114.486329][ T1123] bond2 (unregistering): Released all slaves
[ 1114.813785][ T1123] bond1 (unregistering): Released all slaves
[ 1115.080497][ T3201] netlink: 16 bytes leftover after parsing attributes in process `syz.9.13379'.
[ 1115.109997][ T1123] team0 (unregistering): Port device geneve1 removed
[ 1115.343348][ T9320] usb 4-1: new high-speed USB device number 48 using dummy_hcd
[ 1115.547295][ T9320] usb 4-1: Using ep0 maxpacket: 8
[ 1115.564353][ T9320] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[ 1115.618955][ T9320] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0
[ 1115.672954][ T9320] usb 4-1: New USB device found, idVendor=16d0, idProduct=10a9, bcdDevice=30.52
[ 1115.682078][ T9320] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1115.719052][ T9320] usb 4-1: Product: syz
[ 1115.724323][ T3214] xt_time: invalid argument - start or stop time greater than 23:59:59
[ 1115.732882][ T9320] usb 4-1: Manufacturer: syz
[ 1115.737644][ T9320] usb 4-1: SerialNumber: syz
[ 1115.751118][ T9320] usb 4-1: config 0 descriptor??
[ 1116.065868][ T3221] netlink: 4 bytes leftover after parsing attributes in process `syz.4.13390'.
[ 1116.200025][ T9320] usb 4-1: USB disconnect, device number 48
[ 1116.203182][T31626] Bluetooth: hci2: command 0x0419 tx timeout
[ 1116.724156][ T1123] team0 (unregistering): Port device team_slave_1 removed
[ 1116.882384][ T3240] loop4: detected capacity change from 0 to 256
[ 1116.963216][ T3240] FAT-fs (loop4): Directory bread(block 64) failed
[ 1116.976994][ T3241] loop3: detected capacity change from 0 to 4096
[ 1116.988449][ T3240] FAT-fs (loop4): Directory bread(block 65) failed
[ 1117.019888][ T3240] FAT-fs (loop4): Directory bread(block 66) failed
[ 1117.026937][ T3240] FAT-fs (loop4): Directory bread(block 67) failed
[ 1117.034675][ T3240] FAT-fs (loop4): Directory bread(block 68) failed
[ 1117.083028][ T3240] FAT-fs (loop4): Directory bread(block 69) failed
[ 1117.089763][ T3240] FAT-fs (loop4): Directory bread(block 70) failed
[ 1117.106106][ T1123] team0 (unregistering): Port device team_slave_0 removed
[ 1117.113803][ T3241] ntfs3: loop3: ino=1e, "file1" attr_set_size
[ 1117.148753][ T3240] FAT-fs (loop4): Directory bread(block 71) failed
[ 1117.165818][ T3240] FAT-fs (loop4): Directory bread(block 72) failed
[ 1117.183718][ T3241] ntfs3: loop3: ino=1e, "file1" attr_set_size
[ 1117.192162][ T3240] FAT-fs (loop4): Directory bread(block 73) failed
[ 1117.354406][ T3235] loop9: detected capacity change from 0 to 32768
[ 1117.393960][ T3235] (syz.9.13397,3235,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 1117.436981][ T1123] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1117.461295][ T3235] (syz.9.13397,3235,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 1117.532756][ T3235] JBD2: Ignoring recovery information on journal
[ 1117.610852][ T3235] ocfs2: Mounting device (7,9) on (node local, slot 0) with ordered data mode.
[ 1117.665152][ T3247] loop4: detected capacity change from 0 to 256
[ 1117.672316][ T3247] exfat: Deprecated parameter 'utf8'
[ 1117.702090][ T3247] exfat: Deprecated parameter 'namecase'
[ 1117.708386][ T3247] exfat: Deprecated parameter 'namecase'
[ 1117.715105][ T3247] exfat: Deprecated parameter 'utf8'
[ 1117.720924][ T1123] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1117.849251][ T3247] exFAT-fs (loop4): failed to load upcase table (idx : 0x00012153, chksum : 0xc3dffc2e, utbl_chksum : 0xe619d30d)
[ 1118.190159][T31625] ocfs2: Unmounting device (7,9) on (node local)
[ 1118.500512][ T1123] bond0 (unregistering): (slave batadv0): Releasing backup interface
[ 1118.502816][   T41] smc: removing ib device syz2
[ 1118.682709][T31626] Bluetooth: hci5: command 0x0406 tx timeout
[ 1119.110927][ T1123] team0 (unregistering): Port device bond0 removed
[ 1119.530168][ T1123] bond0 (unregistering): Released all slaves
[ 1119.653502][ T9318] vxcan1 speed is unknown, defaulting to 1000
[ 1119.659936][ T3243] netlink: 4 bytes leftover after parsing attributes in process `syz.3.13401'.
[ 1119.933744][ T2967] device hsr_slave_0 entered promiscuous mode
[ 1119.954455][ T2967] device hsr_slave_1 entered promiscuous mode
[ 1120.488842][ T3274] loop3: detected capacity change from 0 to 4096
[ 1121.129952][ T3298] loop9: detected capacity change from 0 to 8
[ 1121.364017][ T3305] netlink: 'syz.0.13426': attribute type 1 has an invalid length.
[ 1121.730281][ T1280] ieee802154 phy0 wpan0: encryption failed: -22
[ 1121.740582][ T1280] ieee802154 phy1 wpan1: encryption failed: -22
[ 1122.661049][ T3355] netlink: 6 bytes leftover after parsing attributes in process `syz.3.13444'.
[ 1122.738104][ T3355] netlink: 6 bytes leftover after parsing attributes in process `syz.3.13444'.
[ 1122.883657][ T3365] netlink: 28 bytes leftover after parsing attributes in process `syz.0.13447'.
[ 1122.908818][ T3365] netlink: 148 bytes leftover after parsing attributes in process `syz.0.13447'.
[ 1123.013798][ T2967] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 1123.075919][ T2967] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 1123.123533][ T2967] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 1123.158086][ T2967] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 1123.337834][ T3389] netlink: 'syz.4.13453': attribute type 10 has an invalid length.
[ 1123.532791][ T2967] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1123.569795][ T1123] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1123.662307][ T1123] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1123.710492][ T2967] 8021q: adding VLAN 0 to HW filter on device team0
[ 1123.745716][ T4365] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1123.763883][ T4365] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1123.783491][ T4365] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1123.790648][ T4365] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1123.802761][T31626] Bluetooth: hci4: command 0x0406 tx timeout
[ 1123.836663][ T3408] netlink: 60 bytes leftover after parsing attributes in process `syz.4.13461'.
[ 1123.843543][ T4365] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1123.927344][ T1109] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1123.946739][ T1109] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1123.983757][ T1109] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1123.990938][ T1109] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1124.049038][ T1109] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1124.076457][ T1109] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1124.096125][ T1109] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1124.154637][ T1109] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1124.239721][ T3420] loop4: detected capacity change from 0 to 4096
[ 1124.269544][ T3420] ntfs3: loop4: Different NTFS' sector size (2048) and media sector size (512)
[ 1124.273203][ T3417] device batadv0 entered promiscuous mode
[ 1124.302780][ T3417] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[ 1124.343420][ T1109] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1124.392120][   T41] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1124.434749][   T41] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1124.481146][ T2967] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1124.520472][ T2967] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1124.571568][   T41] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1124.590769][   T41] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1124.620557][   T41] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1124.659822][   T41] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1124.680453][   T41] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1124.822818][ T4319] usb 4-1: new full-speed USB device number 49 using dummy_hcd
[ 1125.031345][ T4319] usb 4-1: config 0 has an invalid interface number: 52 but max is 0
[ 1125.059092][ T4319] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1125.089841][ T4319] usb 4-1: config 0 has no interface number 0
[ 1125.113783][ T4319] usb 4-1: config 0 interface 52 altsetting 1 endpoint 0x8A has an invalid bInterval 0, changing to 10
[ 1125.152627][ T4319] usb 4-1: config 0 interface 52 altsetting 1 endpoint 0x8A has invalid wMaxPacketSize 0
[ 1125.198922][ T4319] usb 4-1: config 0 interface 52 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1125.237780][ T4319] usb 4-1: config 0 interface 52 has no altsetting 0
[ 1125.276017][ T4319] usb 4-1: New USB device found, idVendor=06cb, idProduct=0003, bcdDevice= 0.00
[ 1125.310726][ T4319] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=35
[ 1125.340695][ T4319] usb 4-1: SerialNumber: syz
[ 1125.371067][ T4319] usb 4-1: config 0 descriptor??
[ 1125.543866][ T1109] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1125.554693][ T1109] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1125.602314][ T4319] synaptics_usb 4-1:0.52: synusb_open - usb_submit_urb failed, error: -90
[ 1125.619419][ T2967] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1125.632104][ T4319] synaptics_usb: probe of 4-1:0.52 failed with error -5
[ 1125.676714][ T1123] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1125.706474][ T1123] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1125.776358][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1125.806677][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1125.823775][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1125.842209][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1125.866344][ T9318] usb 4-1: USB disconnect, device number 49
[ 1125.887168][ T2967] device veth0_vlan entered promiscuous mode
[ 1125.908093][ T2967] device veth1_vlan entered promiscuous mode
[ 1125.958002][ T1123] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1125.977053][ T1123] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1125.991601][ T1123] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1126.005882][ T1123] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1126.029864][ T2967] device veth0_macvtap entered promiscuous mode
[ 1126.068999][ T2967] device veth1_macvtap entered promiscuous mode
[ 1126.114803][ T2967] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1126.132851][ T4318] usb 10-1: new high-speed USB device number 6 using dummy_hcd
[ 1126.140796][ T2967] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1126.159468][ T2967] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1126.232592][ T2967] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1126.254858][ T2967] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1126.269013][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1126.308745][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1126.324714][ T4318] usb 10-1: config 220 has an invalid interface number: 76 but max is 2
[ 1126.330252][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1126.347506][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1126.354671][ T4318] usb 10-1: config 220 has an invalid descriptor of length 9, skipping remainder of the config
[ 1126.368272][ T2967] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1126.386343][ T2967] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1126.396845][ T4318] usb 10-1: config 220 has no interface number 2
[ 1126.403623][ T4318] usb 10-1: config 220 interface 1 altsetting 5 has 1 endpoint descriptor, different from the interface descriptor's value: 12
[ 1126.424530][ T2967] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1126.454060][ T2967] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1126.466449][ T4318] usb 10-1: config 220 interface 0 has no altsetting 0
[ 1126.480273][ T4318] usb 10-1: config 220 interface 76 has no altsetting 0
[ 1126.492396][ T2967] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1126.505512][ T4318] usb 10-1: config 220 interface 1 has no altsetting 0
[ 1126.535826][ T2967] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1126.576053][ T4318] usb 10-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[ 1126.583586][ T3481] netlink: 'syz.3.13486': attribute type 2 has an invalid length.
[ 1126.597573][ T2967] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1126.607770][ T4318] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1126.631797][ T2967] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1126.640934][ T4318] usb 10-1: Product: syz
[ 1126.652716][ T4318] usb 10-1: Manufacturer: syz
[ 1126.657481][ T4318] usb 10-1: SerialNumber: syz
[ 1126.672648][ T2967] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1126.727509][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1126.754637][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1126.917651][ T4318] usb 10-1: selecting invalid altsetting 0
[ 1126.934428][ T4318] usb 10-1: Found UVC 7.01 device syz (8086:0b07)
[ 1126.941054][ T4318] usb 10-1: No valid video chain found.
[ 1126.995250][   T57] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1127.026651][   T57] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1127.057324][ T4318] usb 10-1: selecting invalid altsetting 0
[ 1127.081129][ T4318] usbtest: probe of 10-1:220.1 failed with error -22
[ 1127.121860][ T4318] usb 10-1: USB disconnect, device number 6
[ 1127.146767][T11135] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1127.185096][    T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1127.224263][    T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1127.261430][   T57] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1127.393662][ T3499] cgroup: name respecified
[ 1127.483030][   T28] INFO: task syz-executor:12764 blocked for more than 143 seconds.
[ 1127.490998][   T28]       Not tainted 6.1.145-syzkaller #0
[ 1127.505482][ T3505] loop1: detected capacity change from 0 to 128
[ 1127.522464][   T28] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1127.531457][   T28] task:syz-executor    state:D stack:22144 pid:12764 ppid:1      flags:0x00004004
[ 1127.614060][   T28] Call Trace:
[ 1127.634873][   T28]  <TASK>
[ 1127.652104][   T28]  __schedule+0x10e9/0x40d0
[ 1127.679617][   T28]  ? release_firmware_map_entry+0x18a/0x18a
[ 1127.689118][ T3511] netlink: 8 bytes leftover after parsing attributes in process `syz.4.13496'.
[ 1127.732565][   T28]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[ 1127.756402][   T28]  ? lock_chain_count+0x20/0x20
[ 1127.761345][   T28]  ? _raw_spin_lock_irq+0xab/0xe0
[ 1127.793041][   T28]  ? _raw_spin_lock_irqsave+0xf0/0xf0
[ 1127.798518][   T28]  schedule+0xb9/0x180
[ 1127.829049][   T28]  io_schedule+0x7c/0xd0
[ 1127.842527][   T28]  folio_wait_bit_common+0x6e1/0xf60
[ 1127.847932][   T28]  ? folio_wait_bit+0x30/0x30
[ 1127.862672][   T28]  ? migration_entry_wait_on_locked+0xe50/0xe50
[ 1127.872872][   T28]  ? folio_mapping+0x1ba/0x4d0
[ 1127.877726][   T28]  truncate_inode_pages_range+0x9a2/0xff0
[ 1127.889834][   T28]  ? mapping_evict_folio+0x520/0x520
[ 1127.902136][   T28]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[ 1127.908636][   T28]  ? _raw_spin_unlock_irq+0x1f/0x40
[ 1127.914576][   T28]  ? lockdep_hardirqs_on+0x94/0x140
[ 1127.919850][   T28]  evict+0x498/0x870
[ 1127.926420][   T28]  ? proc_nr_inodes+0x2f0/0x2f0
[ 1127.931365][   T28]  ? do_raw_spin_unlock+0x11d/0x230
[ 1127.940252][   T28]  ? _raw_spin_unlock+0x24/0x40
[ 1127.948003][   T28]  ? do_raw_spin_unlock+0x11d/0x230
[ 1127.957676][   T28]  evict_inodes+0x604/0x690
[ 1127.962265][   T28]  ? clear_inode+0x150/0x150
[ 1127.977774][   T28]  ? dput+0x1c9/0x1d0
[ 1127.981846][   T28]  ? sync_filesystem+0x103/0x220
[ 1127.989276][   T28]  generic_shutdown_super+0x93/0x340
[ 1128.000212][   T28]  kill_block_super+0x7c/0xe0
[ 1128.009716][   T28]  deactivate_locked_super+0x93/0xf0
[ 1128.020576][   T28]  cleanup_mnt+0x463/0x4f0
[ 1128.027399][   T28]  ? lockdep_hardirqs_on+0x94/0x140
[ 1128.038841][   T28]  task_work_run+0x1ca/0x250
[ 1128.051587][   T28]  ? task_work_cancel+0x230/0x230
[ 1128.057772][   T28]  ? exit_to_user_mode_loop+0x3b/0x110
[ 1128.063614][   T28]  exit_to_user_mode_loop+0xe6/0x110
[ 1128.068970][   T28]  exit_to_user_mode_prepare+0xb1/0x140
[ 1128.075114][   T28]  syscall_exit_to_user_mode+0x16/0x40
[ 1128.080652][   T28]  do_syscall_64+0x58/0xa0
[ 1128.085570][   T28]  ? clear_bhb_loop+0x60/0xb0
[ 1128.090311][   T28]  ? clear_bhb_loop+0x60/0xb0
[ 1128.095826][   T28]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1128.101788][   T28] RIP: 0033:0x7f3bb858fc57
[ 1128.106595][   T28] RSP: 002b:00007fff2ede2148 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 1128.116812][   T28] RAX: 0000000000000000 RBX: 00007f3bb8610925 RCX: 00007f3bb858fc57
[ 1128.126483][   T28] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff2ede2200
[ 1128.138954][   T28] RBP: 00007fff2ede2200 R08: 0000000000000000 R09: 0000000000000000
[ 1128.155987][   T28] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fff2ede3290
[ 1128.164351][   T28] R13: 00007f3bb8610925 R14: 00000000000ee335 R15: 00007fff2ede32d0
[ 1128.172396][   T28]  </TASK>
[ 1128.209164][   T28] 
[ 1128.209164][   T28] Showing all locks held in the system:
[ 1128.226369][   T28] 1 lock held by rcu_tasks_kthre/12:
[ 1128.231739][   T28]  #0: ffffffff8cb2b7b0 (rcu_tasks.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x33/0xf00
[ 1128.245247][   T28] 1 lock held by rcu_tasks_trace/13:
[ 1128.251969][   T28]  #0: ffffffff8cb2bfd0 (rcu_tasks_trace.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x33/0xf00
[ 1128.265048][   T28] 1 lock held by khungtaskd/28:
[ 1128.270123][   T28]  #0: ffffffff8cb2ae20 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x51/0x290
[ 1128.280810][   T28] 2 locks held by kworker/u4:4/57:
[ 1128.286682][   T28] 3 locks held by kworker/1:3/2169:
[ 1128.291946][   T28]  #0: ffff888017470938 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x7a1/0x1160
[ 1128.307140][   T28]  #1: ffffc9000626fd00 ((work_completion)(&data->fib_event_work)){+.+.}-{0:0}, at: process_one_work+0x7a1/0x1160
[ 1128.321819][   T28]  #2: ffff888076251240 (&data->fib_lock){+.+.}-{3:3}, at: nsim_fib_event_work+0x26b/0x32b0
[ 1128.332282][   T28] 2 locks held by getty/4033:
[ 1128.346518][   T28]  #0: ffff88814d87a098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x21/0x70
[ 1128.362375][   T28]  #1: ffffc9000327b2f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x41b/0x1380
[ 1128.374280][   T28] 2 locks held by kworker/0:10/9319:
[ 1128.388425][   T28]  #0: ffff8880b8e3aa98 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x26/0x140
[ 1128.400950][   T28]  #1: ffff8880b8e27848 (&per_cpu_ptr(group->pcpu, cpu)->seq){-.-.}-{0:0}, at: psi_task_switch+0x398/0x6d0
[ 1128.420009][   T28] 1 lock held by syz-executor/12764:
[ 1128.425732][   T28]  #0: ffff88807dede0e0 (&type->s_umount_key#82){+.+.}-{3:3}, at: deactivate_super+0xa0/0xd0
[ 1128.444036][   T28] 
[ 1128.448738][   T28] =============================================
[ 1128.448738][   T28] 
[ 1128.467352][   T28] NMI backtrace for cpu 1
[ 1128.471751][   T28] CPU: 1 PID: 28 Comm: khungtaskd Not tainted 6.1.145-syzkaller #0
[ 1128.479696][   T28] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1128.489797][   T28] Call Trace:
[ 1128.493111][   T28]  <TASK>
[ 1128.496075][   T28]  dump_stack_lvl+0x168/0x22e
[ 1128.500802][   T28]  ? irq_work_queue+0xb8/0x140
[ 1128.505623][   T28]  ? show_regs_print_info+0x12/0x12
[ 1128.510886][   T28]  ? load_image+0x3b0/0x3b0
[ 1128.515444][   T28]  ? vprintk_emit+0x571/0x680
[ 1128.520180][   T28]  ? printk_sprint+0x460/0x460
[ 1128.525003][   T28]  nmi_cpu_backtrace+0x3f4/0x470
[ 1128.530001][   T28]  ? nmi_trigger_cpumask_backtrace+0x450/0x450
[ 1128.536204][   T28]  ? _printk+0xcc/0x110
[ 1128.540401][   T28]  ? load_image+0x3b0/0x3b0
[ 1128.544961][   T28]  ? load_image+0x3b0/0x3b0
[ 1128.549599][   T28]  ? arch_trigger_cpumask_backtrace+0x10/0x10
[ 1128.555719][   T28]  nmi_trigger_cpumask_backtrace+0x1d4/0x450
[ 1128.561751][   T28]  watchdog+0xeee/0xf30
[ 1128.565962][   T28]  ? watchdog+0x1ed/0xf30
[ 1128.570345][   T28]  kthread+0x29d/0x330
[ 1128.574465][   T28]  ? hungtask_pm_notify+0x40/0x40
[ 1128.579541][   T28]  ? kthread_blkcg+0xd0/0xd0
[ 1128.584236][   T28]  ret_from_fork+0x1f/0x30
[ 1128.588721][   T28]  </TASK>
[ 1128.592340][   T28] Sending NMI from CPU 1 to CPUs 0:
[ 1128.597801][    C0] NMI backtrace for cpu 0
[ 1128.597813][    C0] CPU: 0 PID: 3524 Comm: rm Not tainted 6.1.145-syzkaller #0
[ 1128.597831][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1128.597841][    C0] RIP: 0010:deref_stack_reg+0xa/0x230
[ 1128.597866][    C0] Code: e9 df f0 ff ff 44 89 f1 80 e1 07 38 c1 0f 8c b1 f7 ff ff 4c 89 f7 e8 f5 dd 99 00 e9 a4 f7 ff ff 55 41 57 41 56 41 55 41 54 53 <48> 83 ec 20 48 89 54 24 18 49 89 f0 49 89 ff 48 be 00 00 00 00 00
[ 1128.597882][    C0] RSP: 0018:ffffc9000555f418 EFLAGS: 00000287
[ 1128.597904][    C0] RAX: fffffffffffffff0 RBX: ffffc9000555f528 RCX: 0000000000000000
[ 1128.597918][    C0] RDX: ffffc9000555f568 RSI: ffffc9000555f848 RDI: ffffc9000555f528
[ 1128.597932][    C0] RBP: ffffffff8ea8d224 R08: dffffc0000000000 R09: ffffc9000555f578
[ 1128.597945][    C0] R10: fffff52000aabeb1 R11: 1ffff92000aabeaf R12: ffffffff8ea8d223
[ 1128.597959][    C0] R13: dffffc0000000000 R14: ffffc9000555f578 R15: ffffffff8ea8d222
[ 1128.597973][    C0] FS:  0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[ 1128.597989][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1128.598002][    C0] CR2: 00007fb7b2204e9c CR3: 000000000c88e000 CR4: 00000000003506f0
[ 1128.598017][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1128.598028][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1128.598039][    C0] Call Trace:
[ 1128.598045][    C0]  <TASK>
[ 1128.598053][    C0]  unwind_next_frame+0x1758/0x20b0
[ 1128.598077][    C0]  ? free_unref_page_prepare+0x8b4/0x9a0
[ 1128.598108][    C0]  ? stack_trace_save+0xe0/0xe0
[ 1128.598128][    C0]  arch_stack_walk+0x10c/0x140
[ 1128.598151][    C0]  ? free_unref_page_list+0xbb/0x8e0
[ 1128.598180][    C0]  stack_trace_save+0x98/0xe0
[ 1128.598200][    C0]  ? stack_trace_snprint+0xf0/0xf0
[ 1128.598219][    C0]  ? mark_lock+0x94/0x320
[ 1128.598247][    C0]  save_stack+0xf3/0x1e0
[ 1128.598268][    C0]  ? __reset_page_owner+0x1a0/0x1a0
[ 1128.598288][    C0]  ? free_unref_page_prepare+0x8b4/0x9a0
[ 1128.598323][    C0]  ? page_ext_get+0x1de/0x2a0
[ 1128.598350][    C0]  __reset_page_owner+0x51/0x1a0
[ 1128.598372][    C0]  free_unref_page_prepare+0x8b4/0x9a0
[ 1128.598402][    C0]  free_unref_page_list+0xbb/0x8e0
[ 1128.598434][    C0]  release_pages+0x1f92/0x2200
[ 1128.598466][    C0]  ? lru_cache_disable+0x30/0x30
[ 1128.598492][    C0]  ? mlock_page_drain_local+0x75/0x490
[ 1128.598514][    C0]  ? free_swap_cache+0xe5/0x590
[ 1128.598541][    C0]  tlb_flush_mmu+0xff/0x210
[ 1128.598570][    C0]  tlb_finish_mmu+0xbd/0x1c0
[ 1128.598587][    C0]  exit_mmap+0x343/0x8e0
[ 1128.598613][    C0]  ? vm_brk+0x20/0x20
[ 1128.598636][    C0]  ? __mutex_unlock_slowpath+0x19e/0x6a0
[ 1128.598669][    C0]  ? exit_mm+0x1d6/0x2c0
[ 1128.598697][    C0]  ? uprobe_clear_state+0x274/0x290
[ 1128.598713][    C0]  ? mm_update_next_owner+0x525/0x650
[ 1128.598740][    C0]  __mmput+0x118/0x3c0
[ 1128.598756][    C0]  exit_mm+0x1e6/0x2c0
[ 1128.598781][    C0]  ? do_exit+0x2400/0x2400
[ 1128.598804][    C0]  ? taskstats_exit+0x35a/0x9d0
[ 1128.598831][    C0]  do_exit+0x8c1/0x2400
[ 1128.598858][    C0]  ? put_task_struct+0x80/0x80
[ 1128.598881][    C0]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[ 1128.598911][    C0]  ? lock_chain_count+0x20/0x20
[ 1128.598933][    C0]  ? _raw_spin_lock_irq+0xab/0xe0
[ 1128.598949][    C0]  ? _raw_spin_lock_irqsave+0xf0/0xf0
[ 1128.598966][    C0]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[ 1128.598991][    C0]  ? _raw_spin_unlock_irq+0x1f/0x40
[ 1128.599008][    C0]  ? lockdep_hardirqs_on+0x94/0x140
[ 1128.599036][    C0]  do_group_exit+0x217/0x2d0
[ 1128.599062][    C0]  __x64_sys_exit_group+0x3b/0x40
[ 1128.599086][    C0]  do_syscall_64+0x4c/0xa0
[ 1128.599107][    C0]  ? clear_bhb_loop+0x60/0xb0
[ 1128.599127][    C0]  ? clear_bhb_loop+0x60/0xb0
[ 1128.599148][    C0]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1128.599168][    C0] RIP: 0033:0x7fb7b23636c5
[ 1128.599182][    C0] Code: Unable to access opcode bytes at 0x7fb7b236369b.
[ 1128.599190][    C0] RSP: 002b:00007ffe39ab1df8 EFLAGS: 00000202 ORIG_RAX: 00000000000000e7
[ 1128.599207][    C0] RAX: ffffffffffffffda RBX: 00007fb7b2464fe8 RCX: 00007fb7b23636c5
[ 1128.599219][    C0] RDX: 00000000000000e7 RSI: ffffffffffffff88 RDI: 0000000000000000
[ 1128.599231][    C0] RBP: 0000000000000001 R08: 00007ffe39ab1d88 R09: 0000000000000000
[ 1128.599242][    C0] R10: 00007ffe39ab1c20 R11: 0000000000000202 R12: 0000000000000000
[ 1128.599254][    C0] R13: 0000000000000000 R14: 00007fb7b2463680 R15: 00007fb7b2465000
[ 1128.599274][    C0]  </TASK>
[ 1128.624760][   T28] Kernel panic - not syncing: hung_task: blocked tasks
[ 1128.624780][   T28] CPU: 1 PID: 28 Comm: khungtaskd Not tainted 6.1.145-syzkaller #0
[ 1128.624804][   T28] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1128.624819][   T28] Call Trace:
[ 1128.624829][   T28]  <TASK>
[ 1128.624839][   T28]  dump_stack_lvl+0x168/0x22e
[ 1128.624877][   T28]  ? memcpy+0x3c/0x60
[ 1128.624904][   T28]  ? show_regs_print_info+0x12/0x12
[ 1128.624935][   T28]  ? load_image+0x3b0/0x3b0
[ 1128.624978][   T28]  panic+0x2c9/0x710
[ 1128.625014][   T28]  ? schedule_preempt_disabled+0x20/0x20
[ 1128.625052][   T28]  ? bpf_jit_dump+0xd0/0xd0
[ 1128.625087][   T28]  ? __irq_work_queue_local+0x12c/0x190
[ 1128.625129][   T28]  ? nmi_trigger_cpumask_backtrace+0x35b/0x450
[ 1128.625162][   T28]  ? nmi_trigger_cpumask_backtrace+0x360/0x450
[ 1128.625197][   T28]  watchdog+0xf2d/0xf30
[ 1128.625230][   T28]  ? watchdog+0x1ed/0xf30
[ 1128.625261][   T28]  kthread+0x29d/0x330
[ 1128.625296][   T28]  ? hungtask_pm_notify+0x40/0x40
[ 1128.625322][   T28]  ? kthread_blkcg+0xd0/0xd0
[ 1128.625358][   T28]  ret_from_fork+0x1f/0x30
[ 1128.625405][   T28]  </TASK>
[ 1128.630061][   T28] Kernel Offset: disabled
[ 1129.144150][   T28] Rebooting in 86400 seconds..