last executing test programs:

54.146450213s ago: executing program 2 (id=430):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$binfmt_aout(r0, &(0x7f0000000340)=ANY=[], 0xff2e)
ioctl$TCXONC(r0, 0x540a, 0x2)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

53.825993877s ago: executing program 2 (id=434):
openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/disk', 0x0, 0x0)
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f00000000c0)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000300)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}})

52.932654236s ago: executing program 2 (id=444):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000002c80)={0x0, 0x0, &(0x7f0000002c40)={&(0x7f0000003180)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a01080000e0030000000e02000000090001007300803000000000080002400000000214000000110001"], 0x50}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7, 0x0, 0x2}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSETELEM={0x20, 0xb, 0xa, 0x101, 0x0, 0x0, {0x7}, [@NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0x68}}, 0x0)

52.806692201s ago: executing program 2 (id=447):
syz_mount_image$f2fs(&(0x7f0000000040), &(0x7f0000000680)='./file2\x00', 0x800000, &(0x7f00000007c0)=ANY=[@ANYBLOB="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"], 0x1, 0x5504, &(0x7f000000c0c0)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000440)={[{@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@userxattr}]})

51.429354531s ago: executing program 2 (id=462):
r0 = socket(0x11, 0x800000003, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000600)={'team0\x00', <r1=>0x0})
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x40, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, r1, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x10, 0x2, [@TCA_TAPRIO_ATTR_SCHED_CYCLE_TIME={0xc, 0x8, 0x8000000000000000}]}}]}, 0x40}}, 0x0)

50.515910391s ago: executing program 2 (id=475):
syz_mount_image$udf(&(0x7f00000004c0), &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='shortad,partition=00000000000000000005,noadinicb,uid=', @ANYRESDEC=0x0, @ANYBLOB=',gid=', @ANYRESDEC=0x0, @ANYBLOB="2c766f6c756d653d303030303030303030303030008359638c720580"], 0x1, 0x489, &(0x7f0000000580)="$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")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents(r0, &(0x7f0000000080)=""/43, 0x2b)
rename(&(0x7f0000000000)='./file2\x00', &(0x7f0000000040)='./file1\x00')

50.450054633s ago: executing program 32 (id=475):
syz_mount_image$udf(&(0x7f00000004c0), &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='shortad,partition=00000000000000000005,noadinicb,uid=', @ANYRESDEC=0x0, @ANYBLOB=',gid=', @ANYRESDEC=0x0, @ANYBLOB="2c766f6c756d653d303030303030303030303030008359638c720580"], 0x1, 0x489, &(0x7f0000000580)="$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")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents(r0, &(0x7f0000000080)=""/43, 0x2b)
rename(&(0x7f0000000000)='./file2\x00', &(0x7f0000000040)='./file1\x00')

7.314908003s ago: executing program 0 (id=879):
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
capset(&(0x7f0000000040)={0x19980330}, &(0x7f0000000080)={0x0, 0x0, 0x5, 0x0, 0x0, 0xfffffffd})
r0 = syz_open_dev$sg(&(0x7f0000000000), 0xb68, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f00000006c0)={0x0, 0x8, 0x591e})

7.094852543s ago: executing program 0 (id=881):
r0 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000080)={0x43, 0x3, 0x3, 0x3}, 0x10)
setsockopt$TIPC_GROUP_LEAVE(r0, 0x10f, 0x88)
recvmmsg(r0, &(0x7f0000005c40)=[{{0x0, 0x0, &(0x7f0000000980)=[{&(0x7f0000000240)=""/170, 0xaa}], 0x1}, 0x1}], 0x1, 0x40000041, 0x0)

6.859896953s ago: executing program 0 (id=882):
syz_mount_image$bfs(&(0x7f0000000040), &(0x7f0000000080)='./file3\x00', 0x10, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], 0x1, 0x9e, &(0x7f0000000140)="$eJzszr2JAkEABeB3Gxx7yTZwwXVwNWgRVmBoaKQI2pCtWIKpkYGpyYjsCrKggYE/8H0wDG8eA29zXP+mScoyKaWs0ipn09l88p3b7nV8hqq76yR/TZv3w2SQ5Kvrt4fF+HJ630f1CzYDAACPqfLfz1cPu5/nLwIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4L6cAAAD//6LYGgE=")
r0 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x100)
getdents64(r0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000300)='./file1\x00', 0xc4042, 0x1ff)

6.489346409s ago: executing program 0 (id=885):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = syz_io_uring_setup(0x499, &(0x7f0000000400)={0x0, 0xd146, 0x0, 0xc, 0x288}, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_CONNECT={0x10, 0x8, 0x0, r0, 0x80, &(0x7f0000000300)=@nl=@proc={0x10, 0x0, 0x25dfdbfc, 0x4000}, 0x0, 0x0, 0x1})
io_uring_enter(r1, 0x3516, 0x0, 0x4, 0x0, 0x0)

6.286661138s ago: executing program 0 (id=889):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180000000080000000000000010000009400000007ad4160850000000f00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f00000000c0)='netlink_extack\x00', r0}, 0x10)
r1 = socket(0x10, 0x3, 0x0)
sendto$inet6(r1, &(0x7f0000000080)="7800000018002507b9409b14ffff00000204be04020b06050e020909430009003f00fc4c0a0000000d0085a168d0bf46d32345653600648d0a000500eb16000049935ade4a460c89b6ec0cff3959547f509058ba86c902000000004a32000400160004000a0000000000e000e218d1ddf66ed538f2523250", 0x78, 0x0, 0x0, 0x0)

6.124448015s ago: executing program 0 (id=892):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x40980, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(r0, 0x400455c8, 0x4)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000080)=0x31)

3.520170268s ago: executing program 5 (id=923):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000480)={0x4c, 0x2, 0x6, 0x401, 0xe4340000, 0x0, {0x0, 0x0, 0x5}, [@IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,port\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x4c}, 0x1, 0x0, 0x0, 0x44000}, 0x2)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB="48000000090601080000000000000000050000000900020073797a3100000000050001000700000020000780060004404e21000005000700ff0000020c00018008"], 0x48}, 0x1, 0x0, 0x0, 0x10004893}, 0x80)

3.46952891s ago: executing program 5 (id=924):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a58000000160a03020002000000000000020000000900020073797a30000000000900010073797a30000000002c00038008000140000000000800024000000000180003801400010073797a5f74756e00000000000000000014000000110001"], 0x80}}, 0x0)
syz_emit_ethernet(0x1e, &(0x7f0000000240)={@multicast, @multicast, @void, {@can={0xc, {{0x2}, 0x0, 0x0, 0x0, 0x0, "38acd4483b61cbdf"}}}}, 0x0)

3.409426473s ago: executing program 5 (id=925):
openat$userio(0xffffffffffffff9c, &(0x7f0000000080), 0x22242, 0x0)
io_setup(0x6, &(0x7f0000001380)=<r0=>0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000200)='fd/3\x00')
io_submit(r0, 0x1, &(0x7f00000000c0)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x5, 0x0, r1, 0x0}])

3.257967919s ago: executing program 5 (id=926):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00', <r1=>0x0})
r2 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="340000001300290a000000000000000007000000", @ANYRES32=r1], 0x34}}, 0x0)

3.116535696s ago: executing program 5 (id=928):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000340)=ANY=[@ANYBLOB="120100005e9eb4104c053800f516010203010902120001000000000904"], 0x0)
keyctl$dh_compute(0x17, 0x0, 0x0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000040)={0x2c, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x8, 0x1, 0xd}, 0x0, 0x0})
syz_usb_control_io$cdc_ncm(r0, 0x0, &(0x7f00000000c0)={0x44, 0x0, &(0x7f0000000180)={0x0, 0xa, 0x1, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

2.172539156s ago: executing program 4 (id=937):
syz_mount_image$minix(&(0x7f0000000040), &(0x7f0000000140)='./file1\x00', 0x42, &(0x7f00000003c0)=ANY=[@ANYRES16=0x0, @ANYRES32, @ANYRES64, @ANYRES32, @ANYRES64, @ANYRES8, @ANYRES32], 0xd, 0x1a4, &(0x7f0000000640)="$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")
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
rename(&(0x7f0000001800)='./file0\x00', &(0x7f0000001080)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

1.950908026s ago: executing program 4 (id=939):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x80078b, &(0x7f0000000680)={[{@nodioread_nolock}, {@resuid}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@nouid32}, {@resgid}, {@acl}, {@init_itable_val={'init_itable', 0x3d, 0x8d55}}]}, 0x0, 0x484, &(0x7f0000001040)="$eJzs3M1vFGUYAPBnph+AfLQifoCoVWLSaGxpQeXgRaOJBwwmekBvtV1Iw0INrUYIkWIMXkwMiZ6NRxP/Am/GxKgnE6968WRIiHIBPdXM7EzZLt3S2m0H6O+XLPu+O+/OPA/z9c68sw1gwxrI/kkitkXEbxHR16gubDDQeLt+9dz4P1fPjScxN/fGX0ne7trVc+Nl0/J7W4vKYBqRfpwUC1lo+szZE2P1eu10UR+eOfnu8PSZs8+8f3LseO147dTooUMHD4w8/9zosx3JM8vr2p4Pp/bufvWtS6+NH730zk/fZPFuK6Y359EpA1nif8/lWqc92emFVWx7UznprjAQVqQrIrLV1ZPv/33RFTdWXl+88lGlwQFrKjs3bWo/eXYOuIslUXUEQDXKE312/Vu+1qnrcVu48mLjAijL+3rxakzpjrRo09NyfdtJAxFxdPbfL7NXrNF9CACAZp+Of3G4tygv7P+l8UD+/sf8yE5fRPRHxL0RsTMi7ouIXRFxf0Te9sGIeGiV8dzc/0kvr3KWS8r6fy8UY1sL+39l7y/6u4ra9jz/nuTYZL22PyJ2RMRg9GzK6iNLLOO7l3/9rN205v5f9sqWX/YFizgud7fcoJsYmxnLO6UdcOVCxJ7uxfJP5kcCsrW/OyL2rGzWO8rC5FNf723X6Nb5L6ED40xzX2XpzWb5z0ZL/qWkeXxy8qbxyeHNUa/tHy63ipv9/MvF19stf1X5d8CVWuO9af23NulPmsdrp1e+jIu/f9L2muZ/bv9pb/JmPs5cHrs+GJuZOT0S0ZsczusLPh+98d2yXrbPtv/BfYvv/zuL72T5PxwR2Ub8SEQ8GhGPFbE/HhFPRMS+JfL/8aX208r8I61o/V+ImFj0+De//bes/5UXuk788G275S9v/R/MS4PFJ/nx7xYWCyc7XLQGuJr/OwAAALhTpPkz8Ek6NF9O06GhxjP8u+KetD41PfP0san3Tk00npXvj560vNPVV9wPrU/WayPJbDHHxv3R0Wxaz436geK+8eddW/L60PhUfaLa1GHD29pm/8/82VV1dMAa27Lop6O96x4IUIHWcfR0YfX8kXAwgLuV32vDxnWL/T9drziA9ef8DxvXYvv/+Za6sQC4Ozn/w8Zl/4cNKv2+6giACi3j/P/2kfUIBFhPxS/hR9Pl/Zy/fFZwFX8NYFmFzWs25zugsKo/trDWhYiykN4W8SisUaHiAxMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAECH/BcAAP//TMjlrA==")
ioctl$KVM_CAP_MAX_VCPU_ID(r1, 0x4068aea3, &(0x7f0000000100))

1.910397048s ago: executing program 1 (id=940):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0}, 0x18)
r0 = socket(0x10, 0x3, 0x0)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000240)={0x2, &(0x7f0000000400)=[{0x28, 0x0, 0x0, 0xffffefff}, {0x6, 0x0, 0x0, 0x6}]}, 0x10)
sendto$inet6(r0, &(0x7f0000000100)="c10e000018001f06b9409b0dffff110d0207be040205060506100a044300040018000000fac8388827a685a168d9a44604094565360c648dcaaf6c26c291214549932fde4a460c89b6ec0cff3959547f509058ba86c902fc3a10004a320c0400160012000a00000000000000000000080756ede4ccbe5880", 0xec1, 0x0, 0x0, 0x9e5e111c47e3504f)

1.789520493s ago: executing program 1 (id=941):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0, 0x12, r0, 0x0)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000003c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r1, &(0x7f0000000f00)={0x15, 0x110, 0xfa00, {0xffffffffffffffff, 0x0, 0x1c, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @remote}, @ib={0x1b, 0x1, 0x0, {"15a82a35c72b55077ec82827906f7f19"}, 0x8001, 0x7, 0x7}}}, 0x118)

1.697893967s ago: executing program 1 (id=942):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000000)={0x0, 0x18, 0xfa00, {0x3, &(0x7f00000000c0)={<r2=>0xffffffffffffffff}, 0x2, 0x9}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_ROUTE(r0, &(0x7f0000000280)={0x4, 0x8, 0xfa00, {r2, 0xa}}, 0x10)

1.650105339s ago: executing program 1 (id=943):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000001fc0)=@delchain={0x18c, 0x65, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x2, 0x2}, {0x0, 0x4}, {0x0, 0xa}}, [@TCA_CHAIN={0x8}, @TCA_CHAIN={0x8, 0xb, 0x89f}, @filter_kind_options=@f_u32={{0x8}, {0x150, 0x2, [@TCA_U32_ACT={0x14c, 0x7, [@m_csum={0xd8, 0x4, 0x0, 0x0, {{0x9}, {0xac, 0x2, 0x0, 0x1, [@TCA_CSUM_PARMS={0x1c, 0x1, {{0x0, 0x0, 0xffffffffffffffff, 0x4, 0xfffffffb}, 0x48}}, @TCA_CSUM_PARMS={0x1c, 0x1, {{0x100, 0x4, 0x1, 0x8, 0x928}, 0x60}}, @TCA_CSUM_PARMS={0x1c, 0x1, {{0x10001, 0x7a, 0x10000000, 0x5, 0x3}, 0x43}}, @TCA_CSUM_PARMS={0x1c, 0x1, {{0xc, 0x0, 0x1, 0x3, 0x3}, 0x26}}, @TCA_CSUM_PARMS={0x1c, 0x1, {{0x1, 0x430800, 0x4, 0x7, 0x4}, 0x80}}, @TCA_CSUM_PARMS={0x1c, 0x1, {{0x7, 0x7, 0x4, 0x9, 0xb}, 0x77}}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x3, 0x2}}}}, @m_ife={0x70, 0x1a, 0x0, 0x0, {{0x8}, {0x34, 0x2, 0x0, 0x1, [@TCA_IFE_TYPE={0x6}, @TCA_IFE_SMAC={0xa, 0x4, @random="dad6d78a2b85"}, @TCA_IFE_PARMS={0x1c, 0x1, {{0x8, 0x6, 0x3, 0x2, 0x2}}}]}, {0x18, 0x6, "59b69513e97e708c0dc836f724775dbb59b2f21e"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x1, 0x1}}}}]}]}}]}, 0x18c}, 0x1, 0x0, 0x0, 0x91}, 0x0)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x14}, {&(0x7f00000007c0)=""/154, 0x21}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400})

1.491765306s ago: executing program 4 (id=944):
r0 = socket$inet6(0xa, 0x3, 0xff)
connect$inet6(r0, &(0x7f0000000480)={0xa, 0xfffe, 0x3, @mcast1, 0x5}, 0x1c)
r1 = dup2(r0, r0)
sendmmsg$unix(r1, &(0x7f0000008380), 0x400000000000174, 0x4008890)

1.466189727s ago: executing program 1 (id=945):
r0 = syz_io_uring_setup(0x5169, &(0x7f0000000200), &(0x7f0000000100), &(0x7f0000000140))
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000f000000c5000000a000020095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='io_uring_register\x00', r1}, 0x10)
io_uring_register$IORING_REGISTER_BUFFERS2(r0, 0xf, &(0x7f00000003c0)={0x1, 0x0, 0x2, &(0x7f0000000180)=[{0x0}], 0x0}, 0x20)

1.40799406s ago: executing program 1 (id=946):
openat$mice(0xffffffffffffff9c, &(0x7f0000001400), 0x101)
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x244, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x3, 0x0, 0x2, 0x0, {0x9}}}]}}]}}, 0x0)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffff7f}]})
close_range(r0, 0xffffffffffffffff, 0x0)

1.340569342s ago: executing program 3 (id=947):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$inet(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000580)=[{&(0x7f00000000c0)='1', 0x1}], 0x1}, 0x1)
setsockopt$sock_attach_bpf(r0, 0x1, 0xa, &(0x7f0000000480), 0x4)
recvmsg$unix(r0, &(0x7f0000001ec0)={0x0, 0x0, 0x0}, 0x40001000)

1.240067317s ago: executing program 3 (id=948):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'bond0\x00', <r1=>0x0})
recvmsg$unix(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000480)=ANY=[@ANYBLOB="4400000010000304000000000000000000000400", @ANYRES32=r1, @ANYBLOB="60bc010004a701002400128009000100626f6e640000000014000280080007000300000008000300e42e5185"], 0x44}, 0x1, 0x0, 0x0, 0x11}, 0x4000044)

1.196936669s ago: executing program 4 (id=949):
r0 = syz_open_dev$usbfs(&(0x7f0000000000), 0x70, 0x103301)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000200))
mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0x9, 0x8c4b815a5465c2b1, 0xffffffffffffffff, 0x0)
ioctl$USBDEVFS_RELEASE_PORT(r0, 0x80045519, &(0x7f0000000c80)=0x9)

1.145783991s ago: executing program 4 (id=950):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f00000000c0)={0x2, 0x4e20, @empty}, 0x10)
sendto$inet(r0, &(0x7f0000000140), 0xffffffffffffff58, 0x20008005, &(0x7f0000000100)={0x2, 0x4e20}, 0x10)
recvmmsg(r0, &(0x7f0000001240)=[{{0x0, 0x0, 0x0}, 0x6316}], 0x1, 0x10001, 0x0)

1.126993781s ago: executing program 3 (id=951):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000240), r0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_LLSEC_SETPARAMS(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)={0x30, r1, 0x403, 0x70bd26, 0x25dfdafe, {}, [@IEEE802154_ATTR_LLSEC_SECLEVEL={0x5, 0x2a, 0x5}, @IEEE802154_ATTR_LLSEC_KEY_MODE={0x5}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}]}, 0x30}, 0x1, 0x0, 0x0, 0x20004800}, 0x20000040)

1.080675174s ago: executing program 3 (id=952):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000200)={<r1=>0x0, 0x10, &(0x7f0000000180)=[@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000000140)=0x10)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f0000000100)={r1, 0x0, 0x44, 0x401, 0x9, 0x5}, 0x14)

1.048120495s ago: executing program 3 (id=953):
r0 = socket$inet6(0xa, 0x80002, 0x88)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x10000000004e20, 0x0, @loopback, 0x6}, 0x1c)
connect$inet6(r0, &(0x7f0000000380)={0xa, 0x4e22, 0x3, @empty}, 0x1c)
setsockopt$inet6_IPV6_ADDRFORM(r0, 0x29, 0x1, &(0x7f0000000140), 0x4)

1.010679576s ago: executing program 3 (id=954):
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
clock_settime(0x0, &(0x7f0000000240)={0x77359400})
clock_adjtime(0x0, &(0x7f00000003c0)={0x7, 0x9, 0x37fffd, 0x6794, 0x7fffffff, 0xffffffffffbffff7, 0x9, 0x0, 0x1, 0x6, 0x20000007, 0x4, 0xfffffffffffff04f, 0x3, 0x200000080000000, 0xfffffffffffffff8, 0xfffffffffffffffe, 0x200000005, 0x1, 0x100, 0x6, 0x2, 0x5, 0x3, 0x34, 0x8})
clock_adjtime(0x0, &(0x7f0000000900)={0x6, 0x20000000e, 0xf, 0x0, 0xf, 0x8000000000000000, 0xe, 0x2, 0x9, 0x4, 0x5, 0x8000000000000000, 0xc, 0x4, 0x7, 0x9, 0x8, 0x3, 0x8, 0x80000000, 0xffffffffffbffffe, 0x5, 0x7, 0x7, 0x3, 0x6})

258.192109ms ago: executing program 4 (id=955):
syz_mount_image$btrfs(&(0x7f00000055c0), &(0x7f0000000000)='./bus\x00', 0x300000a, &(0x7f0000000080)={[{@nodatacow}, {@thread_pool={'thread_pool', 0x3d, 0x3}}, {@nodiscard}, {@clear_cache}, {@ssd_spread}, {@clear_cache}, {@nobarrier}, {@thread_pool={'thread_pool', 0x3d, 0x8}}, {@nospace_cache}, {@enospc_debug}, {@ssd_spread}, {@nossd}]}, 0x3, 0x55a3, &(0x7f000000e0c0)="$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")
unlink(&(0x7f0000000180)='./file1\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x101142, 0x0)
ioctl$FICLONERANGE(r0, 0x4020940d, &(0x7f00000000c0)={{r0}, 0x0, 0x0, 0x100000})

0s ago: executing program 5 (id=956):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180000000080000000000000010000009400000007ad4160850000000f00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f00000000c0)='netlink_extack\x00', r0}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000b40)=ANY=[@ANYBLOB="300000001e0001"], 0x30}}, 0x0)

kernel console output (not intermixed with test programs):

nd https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   78.923573][ T4508] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a802e01c, mo2=0002]
[   78.952311][ T4508] System zones: 1-12
[   78.968610][ T4508] EXT4-fs (loop2): orphan cleanup on readonly fs
[   79.024679][ T4508] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #11: comm syz.2.87: invalid indirect mapped block 51200 (level 0)
[   79.066029][ T4524] loop3: detected capacity change from 0 to 64
[   79.103771][ T4508] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #11: comm syz.2.87: invalid indirect mapped block 2 (level 2)
[   79.149633][ T4508] EXT4-fs (loop2): 1 truncate cleaned up
[   79.165319][ T4508] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,,errors=continue. Quota mode: none.
[   79.242515][ T4508] EXT4-fs error (device loop2): ext4_map_blocks:629: inode #2: block 5: comm syz.2.87: lblock 0 mapped to illegal pblock 5 (length 1)
[   79.319171][ T4508] EXT4-fs warning (device loop2): dx_probe:823: inode #2: lblock 0: comm syz.2.87: error -117 reading directory block
[   79.350184][ T4529] EXT4-fs error (device loop2): ext4_map_blocks:629: inode #2: block 5: comm syz.2.87: lblock 0 mapped to illegal pblock 5 (length 1)
[   79.443673][ T4529] EXT4-fs warning (device loop2): dx_probe:823: inode #2: lblock 0: comm syz.2.87: error -117 reading directory block
[   79.724416][ T4174] gspca_sunplus: reg_w_riv err -71
[   79.730979][ T4174] sunplus: probe of 5-1:0.0 failed with error -71
[   79.761160][ T4174] usb 5-1: USB disconnect, device number 2
[   79.767498][ T4518] loop1: detected capacity change from 0 to 32768
[   79.944450][ T4245] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[   80.293460][ T4540] loop0: detected capacity change from 0 to 32768
[   80.315583][ T4245] usb 4-1: config 0 interface 0 altsetting 9 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   80.334938][ T4245] usb 4-1: config 0 interface 0 altsetting 9 endpoint 0x81 has invalid wMaxPacketSize 0
[   80.355148][ T4245] usb 4-1: config 0 interface 0 has no altsetting 0
[   80.364387][ T4245] usb 4-1: New USB device found, idVendor=054c, idProduct=03d5, bcdDevice= 0.00
[   80.373681][ T4245] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   80.390036][ T4546] device wireguard0 entered promiscuous mode
[   80.405636][ T4245] usb 4-1: config 0 descriptor??
[   80.464100][ T4540] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   80.603921][ T4542] loop2: detected capacity change from 0 to 32768
[   80.609598][ T4544] loop1: detected capacity change from 0 to 32768
[   80.669211][ T4542] XFS: attr2 mount option is deprecated.
[   80.772082][ T4194] (syz-executor,4194,0):ocfs2_inode_is_valid_to_delete:872 ERROR: Skipping delete of system file 72
[   80.786596][ T4194] ocfs2: Unmounting device (7,0) on (node local)
[   80.839202][ T4542] XFS (loop2): Mounting V5 Filesystem
[   80.952214][ T4559] netlink: 8 bytes leftover after parsing attributes in process `syz.4.107'.
[   80.963868][ T4245] input: HID 054c:03d5 as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:054C:03D5.0002/input/input8
[   81.015339][ T4559] netlink: 48 bytes leftover after parsing attributes in process `syz.4.107'.
[   81.087710][ T4542] XFS (loop2): Ending clean mount
[   81.106334][ T4542] XFS (loop2): Quotacheck needed: Please wait.
[   81.140109][ T4245] sony 0003:054C:03D5.0002: input,hidraw0: USB HID v0.00 Joystick [HID 054c:03d5] on usb-dummy_hcd.3-1/input0
[   81.205179][ T4567] loop4: detected capacity change from 0 to 512
[   81.322135][ T4298] usb 4-1: USB disconnect, device number 3
[   81.330632][ T4573] loop0: detected capacity change from 0 to 512
[   81.341308][ T4542] XFS (loop2): Quotacheck: Done.
[   81.357383][ T4567] EXT4-fs (loop4): Ignoring removed nobh option
[   81.365648][ T4567] EXT4-fs (loop4): Quota format mount options ignored when QUOTA feature is enabled
[   81.383291][ T4573] EXT4-fs (loop0): can't mount with data=, fs mounted w/o journal
[   81.433813][ T4567] EXT4-fs error (device loop4): ext4_orphan_get:1401: inode #15: comm syz.4.108: iget: bad i_size value: 38620345925642
[   81.450265][ T4187] XFS (loop2): Unmounting Filesystem
[   81.462380][ T4567] EXT4-fs error (device loop4): ext4_orphan_get:1406: comm syz.4.108: couldn't read orphan inode 15 (err -117)
[   81.498636][ T4567] EXT4-fs (loop4): mounted filesystem without journal. Opts: nobh,jqfmt=vfsv0,data_err=ignore,,errors=continue. Quota mode: writeback.
[   81.614371][ T4285] usb 2-1: new full-speed USB device number 2 using dummy_hcd
[   81.623100][ T4567] EXT4-fs error (device loop4): empty_inline_dir:1863: inode #12: block 7: comm syz.4.108: bad entry in directory: rec_len % 4 != 0 - offset=4, inode=4278190093, rec_len=255, size=60 fake=0
[   81.779642][ T4567] EXT4-fs warning (device loop4): empty_inline_dir:1870: bad inline directory (dir #12) - inode 4278190093, rec_len 255, name_len 0inline size 60
[   82.071159][ T4285] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   82.090415][ T4584] netlink: 28 bytes leftover after parsing attributes in process `syz.2.114'.
[   82.099808][ T4285] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[   82.114878][ T4584] netlink: 28 bytes leftover after parsing attributes in process `syz.2.114'.
[   82.262331][ T4593] loop4: detected capacity change from 0 to 256
[   82.344779][ T4285] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[   82.370618][ T4285] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   82.389494][ T4285] usb 2-1: Product: syz
[   82.393742][ T4285] usb 2-1: Manufacturer: syz
[   82.434379][ T4285] usb 2-1: SerialNumber: syz
[   82.476245][ T4601] loop0: detected capacity change from 0 to 512
[   82.550095][ T4601] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   82.619331][ T4601] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   82.686279][ T4601] EXT4-fs (loop0): 1 truncate cleaned up
[   82.725939][ T4601] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[   82.865389][ T4601] EXT4-fs (loop0): re-mounted. Opts: (null). Quota mode: none.
[   82.926987][ T4601] EXT4-fs (loop0): re-mounted. Opts: (null). Quota mode: none.
[   82.935338][ T4285] usb 2-1: 0:2 : does not exist
[   83.035073][ T4620] tipc: Started in network mode
[   83.040151][ T4620] tipc: Node identity ac14140f, cluster identity 4711
[   83.065038][ T4620] tipc: New replicast peer: 255.255.255.255
[   83.103707][ T4620] tipc: Enabled bearer <udp:syz2>, priority 10
[   83.379685][ T4263] usb 2-1: USB disconnect, device number 2
[   83.524583][   T13] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[   83.596378][ T4637] IPVS: sh: SCTP 172.20.20.187:0 - no destination available
[   83.649346][ T4639] loop0: detected capacity change from 0 to 256
[   83.722290][ T4639] FAT-fs (loop0): Directory bread(block 64) failed
[   83.729487][ T4639] FAT-fs (loop0): Directory bread(block 65) failed
[   83.736584][ T4639] FAT-fs (loop0): Directory bread(block 66) failed
[   83.743538][ T4639] FAT-fs (loop0): Directory bread(block 67) failed
[   83.750637][ T4639] FAT-fs (loop0): Directory bread(block 68) failed
[   83.757713][ T4639] FAT-fs (loop0): Directory bread(block 69) failed
[   83.764683][ T4639] FAT-fs (loop0): Directory bread(block 70) failed
[   83.771656][ T4639] FAT-fs (loop0): Directory bread(block 71) failed
[   83.778715][ T4639] FAT-fs (loop0): Directory bread(block 72) failed
[   83.786516][ T4639] FAT-fs (loop0): Directory bread(block 73) failed
[   83.804552][   T13] usb 5-1: Using ep0 maxpacket: 16
[   83.954716][   T13] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[   84.080254][ T4645] loop0: detected capacity change from 0 to 8192
[   84.163933][ T4645] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal
[   84.173747][   T13] usb 5-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[   84.186389][ T4174] tipc: Node number set to 2886997007
[   84.187418][   T13] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   84.213057][   T13] usb 5-1: Product: syz
[   84.217717][   T13] usb 5-1: Manufacturer: syz
[   84.223608][   T13] usb 5-1: SerialNumber: syz
[   84.241376][ T4645] REISERFS (device loop0): using ordered data mode
[   84.250875][   T13] usb 5-1: config 0 descriptor??
[   84.270648][ T4645] reiserfs: using flush barriers
[   84.300834][ T4645] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[   84.326663][   T13] em28xx 5-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[   84.335268][ T4645] REISERFS (device loop0): checking transaction log (loop0)
[   84.343947][   T13] em28xx 5-1:0.0: DVB interface 0 found: bulk
[   84.366595][ T4645] REISERFS (device loop0): Using r5 hash to sort names
[   84.407865][ T4645] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[   84.893602][ T4667] loop0: detected capacity change from 0 to 512
[   84.964776][   T13] em28xx 5-1:0.0: unknown em28xx chip ID (0)
[   84.999401][ T4667] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   85.040233][ T4667] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2826: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   85.099916][ T4656] loop2: detected capacity change from 0 to 40427
[   85.128041][ T4667] EXT4-fs (loop0): 1 truncate cleaned up
[   85.133742][ T4667] EXT4-fs (loop0): mounted filesystem without journal. Opts: nogrpid,errors=remount-ro,debug_want_extra_isize=0x0000000000000066,nodioread_nolock,nodiscard,noquota,. Quota mode: none.
[   85.169233][ T4656] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[   85.184323][ T4656] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[   85.219246][ T4656] F2FS-fs (loop2): invalid crc value
[   85.252702][ T4656] F2FS-fs (loop2): Found nat_bits in checkpoint
[   85.350335][   T13] em28xx 5-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[   85.411444][ T4663] loop3: detected capacity change from 0 to 32768
[   85.439552][ T4656] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[   85.447097][   T13] em28xx 5-1:0.0: board has no eeprom
[   85.463631][ T4656] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[   85.539285][ T4663] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 scanned by syz.3.148 (4663)
[   85.614483][   T13] em28xx 5-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[   85.640448][   T13] em28xx 5-1:0.0: dvb set to bulk mode.
[   85.699871][ T4263] em28xx 5-1:0.0: Binding DVB extension
[   85.718850][ T4663] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm
[   85.739440][   T13] usb 5-1: USB disconnect, device number 3
[   85.770281][   T13] em28xx 5-1:0.0: Disconnecting em28xx
[   85.776718][ T4663] BTRFS info (device loop3): setting nodatacow, compression disabled
[   85.828173][ T4663] BTRFS info (device loop3): force clearing of disk cache
[   85.842123][ T4690] loop4: detected capacity change from 0 to 256
[   85.884884][ T4663] BTRFS info (device loop3): enabling ssd optimizations
[   85.906826][ T4263] em28xx 5-1:0.0: Registering input extension
[   85.913807][ T4663] BTRFS info (device loop3): using spread ssd allocation scheme
[   85.928741][ T4690] exfat: Deprecated parameter 'namecase'
[   85.942252][   T13] em28xx 5-1:0.0: Closing input extension
[   85.982137][ T4663] BTRFS info (device loop3): turning off barriers
[   85.994535][ T4690] exfat: Deprecated parameter 'namecase'
[   86.043905][ T4663] BTRFS info (device loop3): disabling free space tree
[   86.053115][   T13] em28xx 5-1:0.0: Freeing device
[   86.058218][ T4663] BTRFS info (device loop3): not using ssd optimizations
[   86.105692][   T26] audit: type=1326 audit(1764040979.277:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4693 comm="syz.1.158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8935da4749 code=0x7ffc0000
[   86.134878][ T4663] BTRFS info (device loop3): not using spread ssd allocation scheme
[   86.142939][ T4663] BTRFS info (device loop3): has skinny extents
[   86.151971][ T4690] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xbc8dc3cd, utbl_chksum : 0xe619d30d)
[   86.165381][   T26] audit: type=1326 audit(1764040979.277:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4693 comm="syz.1.158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8935da4749 code=0x7ffc0000
[   86.231120][ T4690] attempt to access beyond end of device
[   86.231120][ T4690] loop4: rw=0, want=34225520825, limit=256
[   86.280018][   T26] audit: type=1326 audit(1764040979.317:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4693 comm="syz.1.158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=270 compat=0 ip=0x7f8935da4749 code=0x7ffc0000
[   86.397387][   T26] audit: type=1326 audit(1764040979.317:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4693 comm="syz.1.158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8935da4749 code=0x7ffc0000
[   86.506927][ T4712] loop4: detected capacity change from 0 to 128
[   86.552807][   T26] audit: type=1326 audit(1764040979.317:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4693 comm="syz.1.158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8935da4749 code=0x7ffc0000
[   86.575492][   T26] audit: type=1800 audit(1764040979.397:8): pid=4690 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.156" name="file1" dev="loop4" ino=1048593 res=0 errno=0
[   86.676816][ T1111] cfg80211: failed to load regulatory.db
[   86.688197][ T4663] BTRFS info (device loop3): clearing free space tree
[   86.704085][ T4663] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[   86.717263][ T4663] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[   87.156006][ T4741] loop0: detected capacity change from 0 to 1024
[   87.366150][ T4749] bridge0: port 2(bridge_slave_1) entered learning state
[   87.758448][ T4763] Zero length message leads to an empty skb
[   87.851337][ T4775] loop1: detected capacity change from 0 to 164
[   87.929984][ T4772] loop2: detected capacity change from 0 to 4096
[   88.080963][ T4775] iso9660: Corrupted directory entry in block 2 of inode 1792
[   88.272883][ T4788] netlink: 32 bytes leftover after parsing attributes in process `syz.1.189'.
[   88.335637][ T4788] netlink: 20 bytes leftover after parsing attributes in process `syz.1.189'.
[   88.532369][ T4187] ntfs3: loop2: ntfs_evict_inode r=5 failed, -22.
[   88.547946][ T4797] loop1: detected capacity change from 0 to 256
[   88.554926][ T4187] ntfs3: loop2: Mark volume as dirty due to NTFS errors
[   88.667427][ T4797] exFAT-fs (loop1): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[   89.080935][ T4818] loop0: detected capacity change from 0 to 4096
[   89.148386][ T4818] ntfs3: loop0: Different NTFS' sector size (1024) and media sector size (512)
[   89.400585][  T154] ntfs3: loop0: ntfs3_write_inode r=1e failed, -22.
[   89.464384][ T4194] ntfs3: loop0: ntfs_evict_inode r=1e failed, -22.
[   89.470976][ T4194] ntfs3: loop0: Mark volume as dirty due to NTFS errors
[   89.474548][ T4778] usb 3-1: new full-speed USB device number 3 using dummy_hcd
[   89.710197][ T4842] loop3: detected capacity change from 0 to 2048
[   89.846394][ T4842] EXT4-fs (loop3): Ignoring removed mblk_io_submit option
[   89.864819][ T4778] usb 3-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[   89.888121][ T4778] usb 3-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   89.912330][ T4778] usb 3-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[   89.925792][ T4842] EXT4-fs (loop3): mounted filesystem without journal. Opts: debug_want_extra_isize=0x0000000000000004,usrjquota=,errors=remount-ro,dioread_lock,max_batch_time=0x0000000000000005,mblk_io_submit,minixdf,barrier=0x0000000000000000,nombcache,bsddf,. Quota mode: none.
[   89.951071][    C1] vkms_vblank_simulate: vblank timer overrun
[   89.957683][ T4778] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   89.988598][ T4842] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.215: bg 0: block 234: padding at end of block bitmap is not set
[   90.006215][ T4778] hub 3-1:4.0: USB hub found
[   90.040605][ T4854] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.215: bg 0: block 234: padding at end of block bitmap is not set
[   90.056364][ T4842] EXT4-fs (loop3): Remounting filesystem read-only
[   90.066156][ T4854] EXT4-fs (loop3): Remounting filesystem read-only
[   90.073376][ T4854] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6178: Corrupt filesystem
[   90.093048][ T4854] EXT4-fs (loop3): Remounting filesystem read-only
[   90.113161][ T4834] loop4: detected capacity change from 0 to 40427
[   90.178816][ T4834] F2FS-fs (loop4): Found nat_bits in checkpoint
[   90.234445][ T4778] hub 3-1:4.0: 13 ports detected
[   90.239603][ T4778] usb 3-1: selecting invalid altsetting 1
[   90.269297][ T4778] hub 3-1:4.0: Using single TT (err -22)
[   90.295374][ T4778] hub 3-1:4.0: insufficient power available to use all downstream ports
[   90.309021][ T4834] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[   90.368521][   T26] audit: type=1800 audit(1764040983.537:9): pid=4834 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.211" name="file1" dev="loop4" ino=10 res=0 errno=0
[   90.454563][ T4778] hub 3-1:4.0: hub_hub_status failed (err = -71)
[   90.465831][ T4778] hub 3-1:4.0: config failed, can't get hub status (err -71)
[   90.525716][ T4778] usb 3-1: USB disconnect, device number 3
[   90.653543][ T4183] attempt to access beyond end of device
[   90.653543][ T4183] loop4: rw=2049, want=45104, limit=40427
[   90.754601][ T4174] usb 4-1: new full-speed USB device number 4 using dummy_hcd
[   90.818491][ T4879] futex_wake_op: syz.0.230 tries to shift op by -1; fix this program
[   90.873901][ T4881] loop0: detected capacity change from 0 to 2048
[   90.923066][ T4881] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=18576, location=18576
[   90.970458][ T4881] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[   91.144599][ T4174] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 512, setting to 64
[   91.182293][ T4174] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 1600, setting to 64
[   91.198180][ T4174] usb 4-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[   91.284780][ T4174] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[   91.298964][ T4174] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[   91.317527][ T4174] usb 4-1: SerialNumber: syz
[   91.429261][ T4871] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[   91.443603][ T4871] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[   91.611411][ T4897] loop0: detected capacity change from 0 to 40427
[   91.679607][ T4897] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[   91.687487][ T4897] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[   91.699618][ T4897] F2FS-fs (loop0): invalid crc value
[   91.713074][ T4897] F2FS-fs (loop0): Found nat_bits in checkpoint
[   91.765686][ T4897] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[   91.772768][ T4897] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[   91.825741][ T4871] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[   91.838307][ T4871] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[   91.932810][ T4907] loop2: detected capacity change from 0 to 256
[   91.998030][ T4907] FAT-fs (loop2): Directory bread(block 64) failed
[   92.011278][ T4907] FAT-fs (loop2): Directory bread(block 65) failed
[   92.022658][ T4907] FAT-fs (loop2): Directory bread(block 66) failed
[   92.031744][ T4907] FAT-fs (loop2): Directory bread(block 67) failed
[   92.074467][ T4907] FAT-fs (loop2): Directory bread(block 68) failed
[   92.101457][ T4907] FAT-fs (loop2): Directory bread(block 69) failed
[   92.111632][ T4907] FAT-fs (loop2): Directory bread(block 70) failed
[   92.120385][ T4907] FAT-fs (loop2): Directory bread(block 71) failed
[   92.127485][ T4907] FAT-fs (loop2): Directory bread(block 72) failed
[   92.134055][ T4907] FAT-fs (loop2): Directory bread(block 73) failed
[   92.297573][ T4174] cdc_ether: probe of 4-1:1.0 failed with error -22
[   92.528281][ T4174] usb 4-1: USB disconnect, device number 4
[   92.782239][ T4939] netlink: 8 bytes leftover after parsing attributes in process `syz.4.253'.
[   92.806905][ T4939] netlink: 4 bytes leftover after parsing attributes in process `syz.4.253'.
[   92.820994][ T4941] loop2: detected capacity change from 0 to 128
[   92.866096][ T4939] netlink: 'syz.4.253': attribute type 1 has an invalid length.
[   92.873923][ T4939] nbd: error processing sock list
[   92.890327][ T4941] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   92.978043][ T4941] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   93.286999][ T4961] netlink: 8 bytes leftover after parsing attributes in process `syz.3.265'.
[   93.446587][ T4968] loop0: detected capacity change from 0 to 1024
[   93.592473][ T4968] EXT4-fs (loop0): mounted filesystem without journal. Opts: nodiscard,bsddf,acl,min_batch_time=0x0000000000000006,debug_want_extra_isize=0x0000000000000080,jqfmt=vfsv1,nodelalloc,auto_da_alloc,norecovery,,errors=continue. Quota mode: none.
[   93.652579][ T4981] device netdevsim0 entered promiscuous mode
[   93.759280][ T4981] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[   93.866176][ T4991] loop2: detected capacity change from 0 to 256
[   93.950313][ T4993] netlink: 8 bytes leftover after parsing attributes in process `syz.4.279'.
[   93.975491][ T4991] exfat: Deprecated parameter 'namecase'
[   93.981219][ T4991] exfat: Deprecated parameter 'utf8'
[   94.076643][ T4991] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d)
[   94.189148][ T5005] input: syz0 as /devices/virtual/input/input10
[   94.192558][ T4997] loop0: detected capacity change from 0 to 4096
[   94.291086][ T4997] ntfs3: loop0: Different NTFS' sector size (4096) and media sector size (512)
[   94.472928][ T4997] ntfs3: loop0: Inode r=19 is not in use!
[   94.478969][ T4997] ntfs3: loop0: Mark volume as dirty due to NTFS errors
[   94.725296][ T3108] ntfs3: loop0: ino=1d, failed to open parent directory r=400 to update
[   94.877052][ T5028] tap0: tun_chr_ioctl cmd 1074025677
[   94.907142][ T5028] tap0: linktype set to 6
[   95.102533][ T5039] loop0: detected capacity change from 0 to 512
[   95.123136][ T5004] loop4: detected capacity change from 0 to 32768
[   95.205669][ T5004] 
[   95.205669][ T5004]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[   95.205669][ T5004] 
[   95.215113][ T5039] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a806e01c, mo2=0002]
[   95.225413][ T5039] System zones: 1-12
[   95.257328][ T4778] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[   95.266843][ T5039] EXT4-fs error (device loop0): dx_probe:823: inode #2: comm syz.0.300: Directory hole found for htree index block 0
[   95.291216][ T5039] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -117
[   95.305135][ T5039] EXT4-fs error (device loop0): dx_probe:823: inode #2: comm syz.0.300: Directory hole found for htree index block 0
[   95.356682][ T5039] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -117
[   95.367043][ T5004] ERROR: (device loop4): diWrite: ixpxd invalid
[   95.367043][ T5004] 
[   95.390215][ T5039] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpjquota=Jdebug,jqfmt=vfsold,noquota,bsdgroups,usrjquota=",,errors=continue. Quota mode: writeback.
[   95.425686][ T5004] ERROR: (device loop4): txCommit: 
[   95.425686][ T5004] 
[   95.447361][ T5004] ERROR: (device loop4): diFree: invalid inoext
[   95.447361][ T5004] 
[   95.485337][ T5053] loop1: detected capacity change from 0 to 2048
[   95.515659][ T5039] EXT4-fs (loop0): shut down requested (1)
[   95.522838][ T3108] JFS: metapage_get_blocks failed
[   95.543425][ T5053] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[   95.566188][ T5055] hugetlbfs: Bad value 'g' for mount option 'nr_inodes'
[   95.566188][ T5055] 
[   95.567307][ T3108] 
[   95.567307][ T3108]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[   95.567307][ T3108] 
[   95.646756][ T5053] UDF-fs: error (device loop1): udf_fiiter_advance_blk: extent after position 232 not allocated in directory (ino 1376)
[   95.670056][ T3108] 
[   95.670056][ T3108]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[   95.670056][ T3108] 
[   95.722685][ T3108] 
[   95.722685][ T3108]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[   95.722685][ T3108] 
[   95.734589][ T5053] UDF-fs: error (device loop1): udf_verify_fi: directory (ino 1376) has entry past directory size at pos 232
[   95.799808][  T277] 
[   95.799808][  T277]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[   95.799808][  T277] 
[   95.812380][ T4778] usb 3-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[   95.844316][ T4778] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   95.870071][ T3108] ERROR: (device loop4): diWrite: ixpxd invalid
[   95.870071][ T3108] 
[   95.877467][ T4778] usb 3-1: Product: syz
[   95.901443][ T3108] ERROR: (device loop4): txCommit: 
[   95.901443][ T3108] 
[   95.903781][ T4778] usb 3-1: Manufacturer: syz
[   95.924498][ T4778] usb 3-1: SerialNumber: syz
[   95.931323][ T3108] jfs_write_inode: jfs_commit_inode failed!
[   95.952400][ T4183] 
[   95.952400][ T4183]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[   95.952400][ T4183] 
[   95.981603][ T4778] usb 3-1: config 0 descriptor??
[   95.987372][ T4183] 
[   95.987372][ T4183]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[   95.987372][ T4183] 
[   96.133362][ T5070] loop1: detected capacity change from 0 to 512
[   96.235946][ T5070] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1)
[   96.294841][ T5074] netlink: 12 bytes leftover after parsing attributes in process `syz.0.317'.
[   96.406067][   T13] usb 3-1: USB disconnect, device number 4
[   96.494639][  T396] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1)
[   96.759910][ T5093] netlink: 8 bytes leftover after parsing attributes in process `syz.4.326'.
[   96.937619][ T5104] loop4: detected capacity change from 0 to 512
[   97.000390][ T5107] program syz.1.334 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   97.019423][ T5104] EXT4-fs (loop4): orphan cleanup on readonly fs
[   97.154179][ T5104] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.331: bg 0: block 248: padding at end of block bitmap is not set
[   97.254138][ T5101] loop3: detected capacity change from 0 to 8192
[   97.259288][ T5104] Quota error (device loop4): write_blk: dquota write failed
[   97.272817][ T5104] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[   97.283460][ T5104] EXT4-fs error (device loop4): ext4_acquire_dquot:6209: comm syz.4.331: Failed to acquire dquot type 1
[   97.336474][ T5101] REISERFS (device loop3): found reiserfs format "3.5" with non-standard journal
[   97.359103][ T5104] EXT4-fs (loop4): 1 truncate cleaned up
[   97.371969][ T5101] REISERFS (device loop3): using ordered data mode
[   97.379618][ T5104] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[   97.414949][ T5101] reiserfs: using flush barriers
[   97.422608][ T5101] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[   97.504824][ T5101] REISERFS (device loop3): checking transaction log (loop3)
[   97.534710][ T5101] REISERFS (device loop3): Using r5 hash to sort names
[   97.542055][ T5101] REISERFS (device loop3): Created .reiserfs_priv - reserved for xattr storage.
[   97.775936][ T5124] loop2: detected capacity change from 0 to 4096
[   97.821214][ T5124] ntfs: (device loop2): ntfs_is_extended_system_file(): Non-resident file name. You should run chkdsk.
[   97.844273][ T5124] ntfs: (device loop2): ntfs_read_locked_inode(): $DATA attribute is missing.
[   97.853906][ T5124] ntfs: (device loop2): ntfs_read_locked_inode(): Failed with error code -2.  Marking corrupt inode 0x1 as bad.  Run chkdsk.
[   97.867731][ T5124] ntfs: (device loop2): load_system_files(): Failed to load $MFTMirr.  Mounting read-only.  Run ntfsfix and/or chkdsk.
[   97.957760][ T5135] bridge0: adding interface bridge0 with same address as a received packet (addr:aa:aa:aa:aa:aa:1c, vlan:0)
[   97.987016][ T5124] ntfs: volume version 3.1.
[   98.028721][ T5124] ntfs: (device loop2): ntfs_ucstonls(): Unicode name contains characters that cannot be converted to character set cp852.  You might want to try to use the mount option nls=utf8.
[   98.062907][ T5124] ntfs: (device loop2): ntfs_filldir(): Skipping unrepresentable inode 0x4.
[   98.084386][ T4263] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[   98.343933][ T5143] loop4: detected capacity change from 0 to 4096
[   98.374397][ T4263] usb 1-1: Using ep0 maxpacket: 8
[   98.513398][ T4183] ntfs3: loop4: ntfs_evict_inode r=5 failed, -22.
[   98.520184][ T4174] Bluetooth: hci4: command 0x0411 tx timeout
[   98.537652][ T4183] ntfs3: loop4: Mark volume as dirty due to NTFS errors
[   98.564582][ T4263] usb 1-1: unable to get BOS descriptor or descriptor too short
[   98.667873][ T4263] usb 1-1: config index 0 descriptor too short (expected 51, got 18)
[   98.694335][ T4263] usb 1-1: config 4 has an invalid interface number: 30 but max is 0
[   98.709350][ T4263] usb 1-1: config 4 has no interface number 0
[   98.719309][ T4263] usb 1-1: config 4 interface 30 has no altsetting 0
[   98.750634][ T5155] loop2: detected capacity change from 0 to 4096
[   98.769604][ T5161] netlink: 12 bytes leftover after parsing attributes in process `syz.4.358'.
[   98.797991][ T5163] loop3: detected capacity change from 0 to 16
[   98.871984][ T5163] erofs: (device loop3): mounted with root inode @ nid 36.
[   98.963068][ T5163] erofs: (device loop3): z_erofs_readahead: readahead error at page 1 @ nid 89
[   98.985308][ T5163] erofs: (device loop3): z_erofs_readahead: readahead error at page 0 @ nid 89
[   99.000769][ T5163] attempt to access beyond end of device
[   99.000769][ T5163] loop3: rw=524288, want=24, limit=16
[   99.014950][ T4263] usb 1-1: string descriptor 0 read error: -22
[   99.016127][ T5167] loop4: detected capacity change from 0 to 164
[   99.021240][ T4263] usb 1-1: New USB device found, idVendor=9022, idProduct=d484, bcdDevice=ff.88
[   99.059712][ T5163] erofs: (device loop3): z_erofs_readahead: readahead error at page 9 @ nid 89
[   99.074028][ T4263] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   99.090301][ T5167] rock: directory entry would overflow storage
[   99.107891][ T5163] erofs: (device loop3): z_erofs_readahead: readahead error at page 8 @ nid 89
[   99.119785][ T5163] erofs: (device loop3): z_erofs_readahead: readahead error at page 7 @ nid 89
[   99.123629][ T5167] rock: sig=0x66, size=4, remaining=3
[   99.130847][ T5163] erofs: (device loop3): z_erofs_readahead: readahead error at page 6 @ nid 89
[   99.146978][ T4263] dw2102: su3000_identify_state
[   99.154631][ T5163] erofs: (device loop3): z_erofs_readahead: readahead error at page 5 @ nid 89
[   99.165143][ T4263] dvb-usb: found a 'TeVii S482 (tuner 2)' in warm state.
[   99.184272][ T4263] dw2102: su3000_power_ctrl: 1, initialized 0
[   99.191431][ T4263] dvb-usb: bulk message failed: -22 (2/0)
[   99.200557][ T5167] rock: directory entry would overflow storage
[   99.211187][ T5163] erofs: (device loop3): z_erofs_readahead: readahead error at page 4 @ nid 89
[   99.222379][ T4187] ntfs3: loop2: ntfs_evict_inode r=5 failed, -22.
[   99.224020][ T5167] rock: sig=0x66, size=4, remaining=3
[   99.244175][ T4263] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[   99.254479][ T4187] ntfs3: loop2: Mark volume as dirty due to NTFS errors
[   99.261864][ T5163] attempt to access beyond end of device
[   99.261864][ T5163] loop3: rw=524288, want=24, limit=16
[   99.290350][ T5163] attempt to access beyond end of device
[   99.290350][ T5163] loop3: rw=0, want=24, limit=16
[   99.301831][   T26] audit: type=1800 audit(1764040992.467:10): pid=5163 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.359" name="file3" dev="loop3" ino=89 res=0 errno=0
[   99.324747][ T4263] dvbdev: DVB: registering new adapter (TeVii S482 (tuner 2))
[   99.332293][ T4263] usb 1-1: media controller created
[   99.339605][ T4263] dvb-usb: bulk message failed: -22 (6/0)
[   99.375816][ T4263] dw2102: i2c transfer failed.
[   99.381159][ T4263] dvb-usb: bulk message failed: -22 (6/0)
[   99.393196][ T4263] dw2102: i2c transfer failed.
[   99.393305][ T5171] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[   99.422687][ T5133] dw2102: i2c rd: len=112 is too big!
[   99.422687][ T5133] 
[   99.432545][ T4263] dvb-usb: bulk message failed: -22 (6/0)
[   99.445214][ T4263] dw2102: i2c transfer failed.
[   99.450137][ T4263] dvb-usb: bulk message failed: -22 (6/0)
[   99.464046][ T4263] dw2102: i2c transfer failed.
[   99.475542][ T4263] dvb-usb: bulk message failed: -22 (6/0)
[   99.488426][    C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0)
[   99.501357][ T4263] dw2102: i2c transfer failed.
[   99.524364][ T4263] dvb-usb: bulk message failed: -22 (6/0)
[   99.530149][ T4263] dw2102: i2c transfer failed.
[   99.560561][ T4263] dvb-usb: MAC address: 02:02:02:02:02:02
[   99.608728][ T5177] Falling back ldisc for ttyprintk.
[   99.621273][ T4263] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[   99.667956][ T4263] dvb-usb: bulk message failed: -22 (3/0)
[   99.688417][ T4263] dw2102: command 0x0e transfer failed.
[   99.714361][ T4263] dvb-usb: bulk message failed: -22 (3/0)
[   99.740457][ T4263] dw2102: command 0x0e transfer failed.
[   99.760245][ T5181] netlink: 60 bytes leftover after parsing attributes in process `syz.3.367'.
[   99.775699][ T5181] netlink: 60 bytes leftover after parsing attributes in process `syz.3.367'.
[   99.789953][ T5181] netlink: 60 bytes leftover after parsing attributes in process `syz.3.367'.
[   99.854456][ T5187] netlink: 60 bytes leftover after parsing attributes in process `syz.3.367'.
[  100.085511][ T4263] dvb-usb: bulk message failed: -22 (3/0)
[  100.091295][ T4263] dw2102: command 0x0e transfer failed.
[  100.135040][ T4263] dvb-usb: bulk message failed: -22 (3/0)
[  100.140892][ T4263] dw2102: command 0x0e transfer failed.
[  100.179939][ T4263] dvb-usb: bulk message failed: -22 (1/0)
[  100.204160][ T4263] dw2102: command 0x51 transfer failed.
[  100.213761][ T5206] loop4: detected capacity change from 0 to 512
[  100.225463][ T4263] dvb-usb: bulk message failed: -22 (5/0)
[  100.241627][ T4263] dw2102: i2c probe for address 0x68 failed.
[  100.247991][ T5206] EXT4-fs (loop4): Ignoring removed nobh option
[  100.261250][ T4263] dvb-usb: bulk message failed: -22 (5/0)
[  100.274980][ T4263] dw2102: i2c probe for address 0x69 failed.
[  100.291997][ T4263] dvb-usb: bulk message failed: -22 (5/0)
[  100.297843][ T4263] dw2102: i2c probe for address 0x6a failed.
[  100.312021][ T5206] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.377: invalid indirect mapped block 256 (level 2)
[  100.325756][ T4263] dw2102: probing for demodulator failed. Is the external power switched on?
[  100.336148][ T4263] dvb-usb: no frontend was attached by 'TeVii S482 (tuner 2)'
[  100.343673][ T5206] EXT4-fs (loop4): Remounting filesystem read-only
[  100.370365][ T5206] EXT4-fs (loop4): 2 truncates cleaned up
[  100.376644][ T5206] EXT4-fs (loop4): mounted filesystem without journal. Opts: nobh,auto_da_alloc,errors=remount-ro,. Quota mode: writeback.
[  100.389322][ T5215] netlink: 20 bytes leftover after parsing attributes in process `syz.2.381'.
[  100.584125][ T5220] process 'syz.4.382' launched './file1' with NULL argv: empty string added
[  100.658416][   T26] audit: type=1326 audit(1764040993.827:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5217 comm="syz.1.383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8935da4749 code=0x7fc00000
[  100.680556][ T4263] rc_core: IR keymap rc-tt-1500 not found
[  100.680605][ T4263] Registered IR keymap rc-empty
[  100.682495][ T4263] rc rc0: TeVii S482 (tuner 2) as /devices/platform/dummy_hcd.0/usb1/1-1/rc/rc0
[  100.701179][ T5227] netlink: 32 bytes leftover after parsing attributes in process `syz.3.385'.
[  100.784705][ T4263] input: TeVii S482 (tuner 2) as /devices/platform/dummy_hcd.0/usb1/1-1/rc/rc0/input11
[  100.796761][ T5230] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  100.841935][ T4263] dvb-usb: schedule remote query interval to 250 msecs.
[  100.880593][ T4263] dw2102: su3000_power_ctrl: 0, initialized 1
[  100.900797][ T5238] loop1: detected capacity change from 0 to 256
[  100.908411][ T4263] dvb-usb: TeVii S482 (tuner 2) successfully initialized and connected.
[  100.923774][ T5233] loop4: detected capacity change from 0 to 2048
[  100.935048][ T4263] usb 1-1: USB disconnect, device number 3
[  100.989275][ T5233] UDF-fs: error (device loop4): udf_process_sequence: Primary Volume Descriptor not found!
[  101.007789][ T5238] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  101.021264][ T4263] dvb-usb: TeVii S482 (tuner 2) successfully deinitialized and disconnected.
[  101.034593][ T5233] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  101.103125][ T5238] exFAT-fs (loop1): hint_cluster is invalid (17)
[  101.139868][ T5233] UDF-fs: error (device loop4): udf_rename: directory (ino 1345) has parent entry pointing to another inode (1376 != 1367)
[  101.234670][ T4254] usb 4-1: new full-speed USB device number 5 using dummy_hcd
[  101.492724][ T5249] loop0: detected capacity change from 0 to 4096
[  101.552036][ T5249] ntfs3: loop0: Different NTFS' sector size (1024) and media sector size (512)
[  101.614629][ T4254] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  101.654551][ T4254] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  101.717099][ T4254] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  101.744455][ T4254] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  101.796793][ T5249] ntfs3: loop0: Mark volume as dirty due to NTFS errors
[  101.950520][ T5245] loop2: detected capacity change from 0 to 32768
[  102.054593][ T4254] usb 4-1: GET_CAPABILITIES returned 0
[  102.060147][ T4254] usbtmc 4-1:16.0: can't read capabilities
[  102.062005][ T5245] XFS (loop2): Mounting V5 Filesystem
[  102.222141][ T5282] loop4: detected capacity change from 0 to 164
[  102.247747][ T5284] syz.0.407[5284] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  102.247856][ T5284] syz.0.407[5284] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  102.277929][ T4254] usb 4-1: USB disconnect, device number 5
[  102.302746][ T5284] unsupported nla_type 52263
[  102.335598][ T5245] XFS (loop2): Ending clean mount
[  102.383356][ T5245] XFS (loop2): Quotacheck needed: Please wait.
[  102.526843][ T5245] XFS (loop2): Quotacheck: Done.
[  102.571854][ T5290] loop0: detected capacity change from 0 to 2048
[  102.637814][ T4187] XFS (loop2): Unmounting Filesystem
[  102.700747][ T5290] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found
[  102.714700][ T5290] UDF-fs: Scanning with blocksize 512 failed
[  102.769836][ T4263] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  102.782224][ T5290] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  103.034598][ T4263] usb 5-1: Using ep0 maxpacket: 16
[  103.184587][ T4263] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  103.204316][ T4263] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  103.224305][ T4263] usb 5-1: New USB device found, idVendor=05ac, idProduct=024b, bcdDevice= 0.00
[  103.239974][ T4263] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  103.249441][   T26] audit: type=1326 audit(1764040996.417:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5305 comm="syz.0.417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8728856749 code=0x7ffc0000
[  103.284076][ T4263] usb 5-1: config 0 descriptor??
[  103.325861][   T26] audit: type=1326 audit(1764040996.457:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5305 comm="syz.0.417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f8728856749 code=0x7ffc0000
[  103.366270][   T26] audit: type=1326 audit(1764040996.457:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5305 comm="syz.0.417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f8728856783 code=0x7ffc0000
[  103.435583][   T26] audit: type=1326 audit(1764040996.457:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5305 comm="syz.0.417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f8728856783 code=0x7ffc0000
[  103.478213][   T26] audit: type=1326 audit(1764040996.457:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5305 comm="syz.0.417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8728856749 code=0x7ffc0000
[  103.486138][ T4174] kernel read not supported for file /dsp1 (pid: 4174 comm: kworker/1:3)
[  103.562038][   T26] audit: type=1326 audit(1764040996.457:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5305 comm="syz.0.417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8728856749 code=0x7ffc0000
[  103.622464][   T26] audit: type=1326 audit(1764040996.467:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5305 comm="syz.0.417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8728856749 code=0x7ffc0000
[  103.684435][   T26] audit: type=1326 audit(1764040996.467:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5305 comm="syz.0.417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8728856749 code=0x7ffc0000
[  103.752034][   T26] audit: type=1326 audit(1764040996.467:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5305 comm="syz.0.417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=426 compat=0 ip=0x7f8728856749 code=0x7ffc0000
[  103.777400][ T5326] loop3: detected capacity change from 0 to 256
[  103.825690][ T4263] apple 0003:05AC:024B.0003: fixing up MacBook JIS keyboard report descriptor
[  103.851639][ T4263] apple 0003:05AC:024B.0003: unknown global tag 0xe
[  103.859240][   T26] audit: type=1326 audit(1764040996.467:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5305 comm="syz.0.417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8728856749 code=0x7ffc0000
[  103.860261][ T5326] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x46ae1815, utbl_chksum : 0xe619d30d)
[  103.892227][ T4263] apple 0003:05AC:024B.0003: item 0 1 1 14 parsing failed
[  103.910734][ T5326] exFAT-fs (loop3): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  103.920689][ T4263] apple 0003:05AC:024B.0003: parse failed
[  103.944324][ T4263] apple: probe of 0003:05AC:024B.0003 failed with error -22
[  103.992910][ T5330] loop2: detected capacity change from 0 to 1024
[  104.039134][ T4263] usb 5-1: USB disconnect, device number 4
[  104.286275][ T5321] loop0: detected capacity change from 0 to 32768
[  104.350468][ T5321] read_mapping_page failed!
[  104.384404][ T5321] ialloc: diAlloc returned -5!
[  104.445931][  T276] read_mapping_page failed!
[  104.678119][ T5347] loop4: detected capacity change from 0 to 512
[  104.741235][ T5349] loop3: detected capacity change from 0 to 1024
[  104.946162][ T5347] EXT4-fs (loop4): mounted filesystem without journal. Opts: nodioread_nolock,sb=0x0000000000000001,,errors=continue. Quota mode: writeback.
[  105.004766][ T5347] ext4 filesystem being mounted at /85/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  105.451270][    T9] hfsplus: b-tree write err: -5, ino 4
[  105.773425][ T5385] loop0: detected capacity change from 0 to 8192
[  105.851440][ T5385] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[  105.873361][ T5385] REISERFS (device loop0): using ordered data mode
[  105.880214][ T5385] reiserfs: using flush barriers
[  105.886825][ T5385] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  105.906913][ T5385] REISERFS (device loop0): checking transaction log (loop0)
[  105.991358][ T5397] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  106.020519][ T4174] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  106.149957][ T5385] REISERFS (device loop0): Using tea hash to sort names
[  106.170439][ T5385] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[  106.301364][ T5382] loop2: detected capacity change from 0 to 40427
[  106.322227][ T5382] F2FS-fs (loop2): Small segment_count (9 < 1 * 24)
[  106.355002][ T5382] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  106.384595][ T4174] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  106.418240][ T5382] F2FS-fs (loop2): Found nat_bits in checkpoint
[  106.420457][ T4174] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  106.482755][ T4174] usb 5-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  106.483570][ T5408] loop1: detected capacity change from 0 to 2048
[  106.509915][ T4174] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  106.536024][ T4174] usb 5-1: config 0 descriptor??
[  106.551924][ T5382] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  106.564520][ T5382] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  106.628525][ T5408] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  106.813299][ T5382] overlayfs: failed to set xattr on upper
[  106.824448][ T5382] overlayfs: ...falling back to index=off,metacopy=off.
[  106.913291][ T4187] attempt to access beyond end of device
[  106.913291][ T4187] loop2: rw=524288, want=45072, limit=40427
[  106.931931][ T4187] attempt to access beyond end of device
[  106.931931][ T4187] loop2: rw=0, want=45072, limit=40427
[  107.073297][    T9] attempt to access beyond end of device
[  107.073297][    T9] loop2: rw=2049, want=41032, limit=40427
[  107.244592][ T4174] usb 5-1: language id specifier not provided by device, defaulting to English
[  107.483565][    T9] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  107.484753][ T4174] uclogic 0003:256C:006D.0004: failed retrieving Huion firmware version: -71
[  107.507849][ T4174] uclogic 0003:256C:006D.0004: failed probing parameters: -71
[  107.520913][ T5437] loop0: detected capacity change from 0 to 4096
[  107.521921][ T4174] uclogic: probe of 0003:256C:006D.0004 failed with error -71
[  107.545531][ T4174] usb 5-1: USB disconnect, device number 5
[  107.575311][ T5437] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  107.789396][    T9] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  107.930984][    T9] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  108.044668][ T4263] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  108.056979][    T9] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  108.444873][ T4263] usb 4-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  108.476952][ T4263] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  108.535393][ T4263] usb 4-1: config 0 descriptor??
[  108.595760][ T4263] cp210x 4-1:0.0: cp210x converter detected
[  108.730989][ T5466] netlink: 156 bytes leftover after parsing attributes in process `syz.4.483'.
[  108.961655][ T5456] loop0: detected capacity change from 0 to 32768
[  109.014530][ T4263] cp210x 4-1:0.0: failed to get vendor val 0x000e size 3: -32
[  109.038768][ T5450] chnl_net:caif_netlink_parms(): no params data found
[  109.089348][ T4263] usb 4-1: cp210x converter now attached to ttyUSB0
[  109.116678][ T5456] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by syz.0.480 (5456)
[  109.202141][ T5456] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  109.240007][ T5449] loop1: detected capacity change from 0 to 32768
[  109.265378][ T5456] BTRFS info (device loop0): using free space tree
[  109.282419][ T4778] usb 4-1: USB disconnect, device number 6
[  109.288427][ T5456] BTRFS info (device loop0): has skinny extents
[  109.323735][ T4778] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  109.468209][ T4778] cp210x 4-1:0.0: device disconnected
[  109.476818][ T5449] XFS (loop1): Mounting V5 Filesystem
[  109.589502][ T5449] XFS (loop1): Ending clean mount
[  109.611715][ T5449] XFS (loop1): Quotacheck needed: Please wait.
[  109.620251][ T5456] BTRFS info (device loop0): enabling ssd optimizations
[  109.644293][ T5527] loop4: detected capacity change from 0 to 256
[  109.706701][ T5450] bridge0: port 1(bridge_slave_0) entered blocking state
[  109.762795][ T5449] XFS (loop1): Quotacheck: Done.
[  109.774550][ T5450] bridge0: port 1(bridge_slave_0) entered disabled state
[  109.815814][ T5450] device bridge_slave_0 entered promiscuous mode
[  109.851305][ T5450] bridge0: port 2(bridge_slave_1) entered blocking state
[  109.898977][ T5450] bridge0: port 2(bridge_slave_1) entered disabled state
[  109.945661][ T5450] device bridge_slave_1 entered promiscuous mode
[  110.115873][ T5534] loop4: detected capacity change from 0 to 512
[  110.195685][ T5534] EXT4-fs (loop4): Ignoring removed mblk_io_submit option
[  110.252694][ T5534] EXT4-fs (loop4): Test dummy encryption mode enabled
[  110.284411][ T5534] EXT4-fs (loop4): Ignoring removed mblk_io_submit option
[  110.291587][ T5534] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  110.351252][ T4188] XFS (loop1): Unmounting Filesystem
[  110.357227][ T4174] Bluetooth: hci2: command 0x0409 tx timeout
[  110.428246][ T5534] EXT4-fs (loop4): 1 truncate cleaned up
[  110.434041][ T5534] EXT4-fs (loop4): mounted filesystem without journal. Opts: errors=remount-ro,mblk_io_submit,abort,test_dummy_encryption=v1,barrier,mblk_io_submit,nogrpid,. Quota mode: none.
[  110.497100][ T5450] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  110.526792][ T5450] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  110.731365][ T5450] team0: Port device team_slave_0 added
[  110.848921][ T5450] team0: Port device team_slave_1 added
[  110.867756][ T5557] loop4: detected capacity change from 0 to 512
[  111.049349][ T5566] loop0: detected capacity change from 0 to 512
[  111.106646][ T5450] batman_adv: batadv0: Adding interface: batadv_slave_0
[  111.120585][ T5566] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1)
[  111.142490][ T5450] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  111.282281][ T5450] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  111.364457][ T5450] batman_adv: batadv0: Adding interface: batadv_slave_1
[  111.397752][ T5450] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  111.529032][ T5450] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  111.801613][ T5584] loop4: detected capacity change from 0 to 40427
[  111.818833][ T5580] loop1: detected capacity change from 0 to 8192
[  111.880637][ T5584] F2FS-fs (loop4): Small segment_count (9 < 1 * 24)
[  111.887854][ T5584] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  111.898377][ T5584] F2FS-fs (loop4): invalid crc value
[  111.932396][ T5584] F2FS-fs (loop4): invalid journal entries nats 768 sits 6
[  111.939762][ T5584] F2FS-fs (loop4): Failed to initialize F2FS segment manager (-22)
[  111.985977][ T5450] device hsr_slave_0 entered promiscuous mode
[  112.004553][ T5580] REISERFS (device loop1): found reiserfs format "3.6" with non-standard journal
[  112.013787][ T5580] REISERFS (device loop1): using ordered data mode
[  112.027693][ T5450] device hsr_slave_1 entered promiscuous mode
[  112.062679][ T5602] loop0: detected capacity change from 0 to 1024
[  112.064385][ T5450] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  112.101545][ T5580] reiserfs: using flush barriers
[  112.128681][ T5602] EXT4-fs (loop0): Ignoring removed oldalloc option
[  112.131637][ T5450] Cannot create hsr debugfs directory
[  112.154355][ T5602] EXT4-fs (loop0): Ignoring removed bh option
[  112.161306][ T5580] REISERFS (device loop1): journal params: device loop1, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  112.164040][ T5602] EXT4-fs (loop0): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  112.286437][ T5580] REISERFS (device loop1): checking transaction log (loop1)
[  112.330375][ T5602] EXT4-fs (loop0): mounted filesystem without journal. Opts: delalloc,data_err=abort,barrier=0x0000000000000002,usrquota,data_err=ignore,nobarrier,oldalloc,grpquota,noload,user_xattr,bh,dioread_nolock,,errors=continue. Quota mode: writeback.
[  112.371648][    T9] device hsr_slave_0 left promiscuous mode
[  112.434564][ T4174] Bluetooth: hci2: command 0x041b tx timeout
[  112.455797][    T9] device hsr_slave_1 left promiscuous mode
[  112.471536][    T9] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  112.535311][    T9] batman_adv: batadv0: Removing interface: batadv_slave_0
[  112.569524][    T9] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  112.580446][    T9] batman_adv: batadv0: Removing interface: batadv_slave_1
[  112.588789][    T9] device bridge_slave_1 left promiscuous mode
[  112.615772][    T9] bridge0: port 2(bridge_slave_1) entered disabled state
[  112.673054][    T9] device bridge_slave_0 left promiscuous mode
[  112.680496][ T5580] REISERFS (device loop1): Using tea hash to sort names
[  112.692396][    T9] bridge0: port 1(bridge_slave_0) entered disabled state
[  112.719783][ T5580] REISERFS warning (device loop1): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 4) not found (pos 2)
[  112.768007][ T5580] REISERFS (device loop1): Created .reiserfs_priv - reserved for xattr storage.
[  112.837359][    T9] device veth1_macvtap left promiscuous mode
[  112.851229][    T9] device veth0_macvtap left promiscuous mode
[  112.884006][    T9] device veth1_vlan left promiscuous mode
[  112.911591][    T9] device veth0_vlan left promiscuous mode
[  113.214477][ T4189] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  113.238937][ T5621] loop1: detected capacity change from 0 to 2048
[  113.294179][    T9] team0 (unregistering): Port device team_slave_1 removed
[  113.330227][ T5621] EXT4-fs (loop1): mounted filesystem without journal. Opts: nodioread_nolock,min_batch_time=0x0000000000000000,barrier=0x0000000000000040,nodelalloc,,errors=continue. Quota mode: none.
[  113.355095][    T9] team0 (unregistering): Port device team_slave_0 removed
[  113.383099][    T9] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  113.400634][    T9] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  113.504257][ T4189] usb 1-1: Using ep0 maxpacket: 16
[  113.606437][ T5629] loop6: detected capacity change from 0 to 524287999
[  113.625447][    C1] blk_update_request: I/O error, dev loop6, sector 524287744 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  113.631095][    T9] bond0 (unregistering): Released all slaves
[  113.664546][ T4189] usb 1-1: config 0 interface 0 altsetting 16 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  113.676186][    C1] blk_update_request: I/O error, dev loop6, sector 524287744 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  113.688159][    C1] Buffer I/O error on dev loop6, logical block 65535968, async page read
[  113.692266][ T4189] usb 1-1: config 0 interface 0 altsetting 16 endpoint 0x81 has invalid wMaxPacketSize 0
[  113.729394][ T4189] usb 1-1: config 0 interface 0 altsetting 16 has 1 endpoint descriptor, different from the interface descriptor's value: 28
[  113.772344][ T4189] usb 1-1: config 0 interface 0 has no altsetting 0
[  113.793401][ T4189] usb 1-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  113.803063][ T4189] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  113.815395][ T4189] usb 1-1: config 0 descriptor??
[  114.323205][ T4189] hid (null): report_id 3702638396 is invalid
[  114.330387][ T5450] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  114.369546][ T5450] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  114.437630][ T5450] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  114.479643][ T5450] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  114.514618][ T4778] Bluetooth: hci2: command 0x040f tx timeout
[  114.541916][ T5659] netlink: 'syz.3.531': attribute type 2 has an invalid length.
[  114.564341][ T4230] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  114.577929][ T4263] usb 1-1: USB disconnect, device number 4
[  114.625702][ T5669] program syz.1.532 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  114.863906][ T5450] 8021q: adding VLAN 0 to HW filter on device bond0
[  114.907691][ T3108] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  114.917775][ T3108] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  114.939870][ T5450] 8021q: adding VLAN 0 to HW filter on device team0
[  114.964591][ T4230] usb 5-1: config 0 has an invalid interface number: 255 but max is 0
[  114.985250][ T4230] usb 5-1: config 0 has no interface number 0
[  114.996519][ T3108] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  115.006042][ T3108] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  115.031675][ T4230] usb 5-1: too many endpoints for config 0 interface 255 altsetting 255: 255, using maximum allowed: 30
[  115.055404][ T3108] bridge0: port 1(bridge_slave_0) entered blocking state
[  115.062566][ T3108] bridge0: port 1(bridge_slave_0) entered forwarding state
[  115.067120][ T4230] usb 5-1: config 0 interface 255 altsetting 255 has 0 endpoint descriptors, different from the interface descriptor's value: 255
[  115.101269][ T4230] usb 5-1: config 0 interface 255 has no altsetting 0
[  115.116116][ T4230] usb 5-1: New USB device found, idVendor=0bda, idProduct=0177, bcdDevice=7d.0b
[  115.135046][ T3108] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  115.145450][ T4230] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  115.184428][ T3108] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  115.195691][ T4230] usb 5-1: config 0 descriptor??
[  115.219927][ T3108] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  115.244905][ T5684] loop3: detected capacity change from 0 to 4096
[  115.249432][ T3108] bridge0: port 2(bridge_slave_1) entered blocking state
[  115.258429][ T3108] bridge0: port 2(bridge_slave_1) entered forwarding state
[  115.265613][ T4230] ums-realtek 5-1:0.255: USB Mass Storage device detected
[  115.318394][ T3108] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  115.365659][  T396] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  115.446882][ T3108] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  115.506767][ T3108] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  115.510768][ T4230] usb 5-1: USB disconnect, device number 6
[  115.532507][ T3108] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  115.539943][ T5695] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  115.605100][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  115.645850][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  115.682266][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  115.740328][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  115.788186][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  115.801580][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  115.831771][ T5450] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  116.340191][ T5722] netlink: 60 bytes leftover after parsing attributes in process `syz.3.545'.
[  116.394626][ T5722] unsupported nlmsg_type 40
[  116.503920][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  116.559034][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  116.596073][ T4778] Bluetooth: hci2: command 0x0419 tx timeout
[  116.608852][ T5450] 8021q: adding VLAN 0 to HW filter on device batadv0
[  116.630830][ T5736] netlink: 8 bytes leftover after parsing attributes in process `syz.3.552'.
[  116.675425][ T5735] netlink: 8 bytes leftover after parsing attributes in process `syz.0.551'.
[  116.714757][ T5735] netlink: 24 bytes leftover after parsing attributes in process `syz.0.551'.
[  117.193945][ T5756] netlink: 4 bytes leftover after parsing attributes in process `syz.3.557'.
[  117.339802][ T5755] loop0: detected capacity change from 0 to 8192
[  117.466665][ T5755] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[  117.508605][  T396] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  117.531195][ T5755] REISERFS (device loop0): using ordered data mode
[  117.565727][  T396] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  117.579885][ T5755] reiserfs: using flush barriers
[  117.586481][ T5755] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  117.613850][ T5755] REISERFS (device loop0): checking transaction log (loop0)
[  117.684485][ T3053] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  117.700518][ T3053] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  117.744650][ T3053] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  117.800598][ T3053] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  117.846813][ T5450] device veth0_vlan entered promiscuous mode
[  117.880002][ T5450] device veth1_vlan entered promiscuous mode
[  117.887090][ T5767] loop3: detected capacity change from 0 to 2048
[  117.966295][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  117.991019][ T5755] REISERFS (device loop0): Using tea hash to sort names
[  118.001481][ T5730] loop1: detected capacity change from 0 to 40427
[  118.004858][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  118.026977][ T5755] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[  118.055217][ T5767] EXT4-fs (loop3): Ignoring removed bh option
[  118.066700][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  118.098426][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  118.124423][ T5730] F2FS-fs (loop1): Insane cp_payload (553648128 >= 504)
[  118.144702][ T5730] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  118.171430][ T5450] device veth0_macvtap entered promiscuous mode
[  118.186795][ T5767] EXT4-fs (loop3): mounted filesystem without journal. Opts: discard,bh,mb_optimize_scan=0x0000000000000001,,errors=continue. Quota mode: none.
[  118.237438][ T5450] device veth1_macvtap entered promiscuous mode
[  118.278843][ T5730] F2FS-fs (loop1): invalid crc value
[  118.373187][ T5730] F2FS-fs (loop1): Found nat_bits in checkpoint
[  118.410529][ T5450] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  118.451575][ T5767] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1147: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  118.510607][ T5450] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  118.543812][ T5450] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  118.575556][ T5767] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 17 with error 28
[  118.599931][ T5450] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  118.620530][ T5767] EXT4-fs (loop3): This should not happen!! Data will be lost
[  118.620530][ T5767] 
[  118.633329][ T5450] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  118.643779][ T5730] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  118.643806][ T5730] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  118.704381][ T5767] EXT4-fs (loop3): Total free blocks count 0
[  118.729187][ T5767] EXT4-fs (loop3): Free/Dirty block details
[  118.735449][ T5450] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  118.767891][ T5767] EXT4-fs (loop3): free_blocks=2415919104
[  118.773747][ T5767] EXT4-fs (loop3): dirty_blocks=32
[  118.774269][ T5450] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  118.799677][ T5450] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  118.810309][ T5767] EXT4-fs (loop3): Block reservation details
[  118.827082][ T5767] EXT4-fs (loop3): i_reserved_data_blocks=2
[  118.835971][ T5450] batman_adv: batadv0: Interface activated: batadv_slave_0
[  118.902040][ T5336] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  118.911433][ T5336] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  118.945993][ T5336] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  118.966378][ T5336] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  119.025653][ T5450] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  119.091774][ T5450] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  119.103133][ T5450] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  119.120108][ T5450] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  119.130301][ T5450] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  119.147491][ T5450] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  119.161371][ T5450] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  119.175655][ T5450] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  119.215588][ T5450] batman_adv: batadv0: Interface activated: batadv_slave_1
[  119.248357][ T5798] netlink: 20 bytes leftover after parsing attributes in process `syz.4.566'.
[  119.299063][ T5336] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  119.352995][ T5336] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  119.383235][ T5450] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  119.427984][ T5804] netlink: 108 bytes leftover after parsing attributes in process `syz.3.567'.
[  119.436696][ T5450] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  119.461656][ T5450] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  119.481215][ T5450] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  119.658122][ T5812] loop3: detected capacity change from 0 to 1024
[  119.822673][  T154] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  119.852541][  T154] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  119.915334][ T5775] hfsplus: b-tree write err: -5, ino 4
[  119.925941][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  119.981432][ T4302] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  120.003246][ T4302] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  120.099609][ T5775] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  120.214376][ T4230] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  120.306275][ T5836] netlink: 64 bytes leftover after parsing attributes in process `syz.5.477'.
[  120.594056][ T5848] loop5: detected capacity change from 0 to 2048
[  120.634547][ T4230] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  120.664319][ T4230] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  120.674135][ T4230] usb 1-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.00
[  120.704282][ T4230] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  120.722503][ T5848] UDF-fs: error (device loop5): udf_process_sequence: Primary Volume Descriptor not found!
[  120.745703][ T4230] usb 1-1: config 0 descriptor??
[  120.800450][ T5848] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  120.936928][ T5819] loop1: detected capacity change from 0 to 32768
[  121.084464][ T4230] usbhid 1-1:0.0: can't add hid device: -71
[  121.090938][ T4230] usbhid: probe of 1-1:0.0 failed with error -71
[  121.150204][ T4230] usb 1-1: USB disconnect, device number 5
[  121.313760][ T5873] loop4: detected capacity change from 0 to 1764
[  121.638353][ T5883] netlink: 201392 bytes leftover after parsing attributes in process `syz.0.595'.
[  121.669392][ T5883] netlink: zone id is out of range
[  121.676814][ T5883] netlink: zone id is out of range
[  121.688845][ T5883] netlink: del zone limit has 8 unknown bytes
[  121.906646][ T5897] loop4: detected capacity change from 0 to 128
[  121.981331][ T5899] device bond0 entered promiscuous mode
[  122.003659][ T5899] device bond_slave_0 entered promiscuous mode
[  122.018876][ T5899] device bond_slave_1 entered promiscuous mode
[  122.039764][ T5899] device batadv0 entered promiscuous mode
[  122.095029][ T5899] 8021q: adding VLAN 0 to HW filter on device hsr1
[  122.106120][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): hsr1: link becomes ready
[  122.128264][ T5897] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  122.199254][ T5910] loop3: detected capacity change from 0 to 256
[  122.206437][ T5897] ext4 filesystem being mounted at /127/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  122.255503][ T5897] syz.4.600 (pid 5897) is setting deprecated v1 encryption policy; recommend upgrading to v2.
[  122.304856][ T5910] exfat: Deprecated parameter 'utf8'
[  122.777123][ T5924] loop4: detected capacity change from 0 to 256
[  122.805377][ T5927] loop1: detected capacity change from 0 to 1024
[  122.813933][ T5875] loop5: detected capacity change from 0 to 32768
[  122.844997][ T5924] exfat: Deprecated parameter 'utf8'
[  122.914237][ T5924] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xdd33351c, utbl_chksum : 0xe619d30d)
[  122.997635][ T5875] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  123.025115][ T5929] loop3: detected capacity change from 0 to 2048
[  123.062857][ T5875] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  123.102051][ T5929] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024)
[  123.212094][ T5875] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms
[  123.253935][ T5934] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  123.280139][ T4767] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  123.314500][ T4767] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  123.459982][ T5940] io-wq is not configured for unbound workers
[  123.554871][ T4767] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 240ms
[  123.645721][ T4767] gfs2: fsid=syz:syz.0: jid=0: Done
[  123.652448][ T5875] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  123.929723][ T5959] loop3: detected capacity change from 0 to 256
[  124.116953][ T5959] FAT-fs (loop3): Directory bread(block 64) failed
[  124.136840][ T5959] FAT-fs (loop3): Directory bread(block 65) failed
[  124.143525][ T5959] FAT-fs (loop3): Directory bread(block 66) failed
[  124.202186][ T5959] FAT-fs (loop3): Directory bread(block 67) failed
[  124.248772][ T5959] FAT-fs (loop3): Directory bread(block 68) failed
[  124.278191][ T5959] FAT-fs (loop3): Directory bread(block 69) failed
[  124.327246][ T5959] FAT-fs (loop3): Directory bread(block 70) failed
[  124.333851][ T5959] FAT-fs (loop3): Directory bread(block 71) failed
[  124.433889][ T5959] FAT-fs (loop3): Directory bread(block 72) failed
[  124.484312][ T5959] FAT-fs (loop3): Directory bread(block 73) failed
[  124.596285][ T5976] loop1: detected capacity change from 0 to 1024
[  124.804785][ T5976] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869)
[  124.880784][ T5976] EXT4-fs error (device loop1): ext4_get_journal_inode:5160: inode #32: comm syz.1.625: iget: special inode unallocated
[  124.911121][ T5985] netlink: 8 bytes leftover after parsing attributes in process `syz.0.629'.
[  124.955069][ T5976] EXT4-fs (loop1): no journal found
[  124.960407][ T5976] EXT4-fs (loop1): can't get journal size
[  125.015860][ T5987] loop3: detected capacity change from 0 to 256
[  125.043215][ T5976] EXT4-fs (loop1): filesystem is read-only
[  125.064344][ T5976] EXT4-fs (loop1): mounted filesystem without journal. Opts: errors=remount-ro,noload,noblock_validity,bsdgroups,norecovery,. Quota mode: none.
[  125.109794][ T5987] exfat: Deprecated parameter 'namecase'
[  125.226728][ T5987] exfat: Deprecated parameter 'utf8'
[  125.266780][ T5987] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d)
[  125.698731][ T6015] loop0: detected capacity change from 0 to 1024
[  126.065258][  T144] hfsplus: b-tree write err: -5, ino 8
[  126.355126][ T4245] usb 6-1: new full-speed USB device number 2 using dummy_hcd
[  126.560942][ T6000] loop1: detected capacity change from 0 to 40427
[  126.572461][ T6038] loop4: detected capacity change from 0 to 4096
[  126.611966][ T6038] ntfs3: loop4: Different NTFS' sector size (4096) and media sector size (512)
[  126.641233][ T6000] F2FS-fs (loop1): Found nat_bits in checkpoint
[  126.722864][ T6038] ntfs3: loop4: Inode r=19 is not in use!
[  126.738360][ T4245] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64
[  126.760840][ T6038] ntfs3: loop4: Mark volume as dirty due to NTFS errors
[  126.769337][ T4245] usb 6-1: New USB device found, idVendor=056a, idProduct=0045, bcdDevice= 0.00
[  126.781248][ T6000] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  126.788858][ T4245] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  126.800356][ T4245] usb 6-1: config 0 descriptor??
[  126.823763][ T4189] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  126.834744][ T6030] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  126.932018][   T26] kauditd_printk_skb: 1 callbacks suppressed
[  126.932034][   T26] audit: type=1800 audit(1764041020.097:23): pid=6000 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.632" name="file1" dev="loop1" ino=10 res=0 errno=0
[  126.979385][ T4302] ntfs3: loop4: ino=1d, failed to open parent directory r=400 to update
[  127.251610][ T6057] loop4: detected capacity change from 0 to 8192
[  127.282887][ T6057] REISERFS (device loop4): found reiserfs format "3.5" with non-standard journal
[  127.311962][ T4188] attempt to access beyond end of device
[  127.311962][ T4188] loop1: rw=2049, want=45104, limit=40427
[  127.322498][ T6057] REISERFS (device loop4): using ordered data mode
[  127.338342][ T4245] wacom 0003:056A:0045.0006: Unknown device_type for 'HID 056a:0045'. Assuming pen.
[  127.351544][ T4245] wacom 0003:056A:0045.0006: hidraw0: USB HID v1.01 Device [HID 056a:0045] on usb-dummy_hcd.5-1/input0
[  127.353109][ T6060] netlink: 12 bytes leftover after parsing attributes in process `syz.3.653'.
[  127.365388][ T4245] input: Wacom Intuos2 12x18 Pen as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/0003:056A:0045.0006/input/input12
[  127.401904][ T6057] reiserfs: using flush barriers
[  127.424564][ T4189] usb 1-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[  127.439171][ T6057] REISERFS (device loop4): journal params: device loop4, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  127.464945][ T4189] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  127.475496][ T4189] usb 1-1: Product: syz
[  127.483676][ T4189] usb 1-1: Manufacturer: syz
[  127.493317][ T4189] usb 1-1: SerialNumber: syz
[  127.546543][ T4189] usb 1-1: config 0 descriptor??
[  127.605949][ T4245] usb 6-1: USB disconnect, device number 2
[  127.623110][ T6057] REISERFS (device loop4): checking transaction log (loop4)
[  127.664897][ T6057] REISERFS (device loop4): Using r5 hash to sort names
[  127.672429][ T6057] REISERFS (device loop4): Created .reiserfs_priv - reserved for xattr storage.
[  127.697227][ T6062] fido_id[6062]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/6-1/report_descriptor': No such file or directory
[  127.922398][ T4174] usb 1-1: USB disconnect, device number 6
[  127.934557][ T4767] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  128.179901][ T4767] usb 4-1: Using ep0 maxpacket: 8
[  128.344545][ T4767] usb 4-1: unable to get BOS descriptor or descriptor too short
[  128.424728][ T4767] usb 4-1: config index 0 descriptor too short (expected 51, got 18)
[  128.432874][ T4767] usb 4-1: config 4 has an invalid interface number: 30 but max is 0
[  128.488429][ T4767] usb 4-1: config 4 has no interface number 0
[  128.507423][ T4767] usb 4-1: config 4 interface 30 has no altsetting 0
[  128.521728][ T6078] program syz.4.661 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  128.770285][ T4767] usb 4-1: string descriptor 0 read error: -22
[  128.779674][ T4767] usb 4-1: New USB device found, idVendor=9022, idProduct=d484, bcdDevice=ff.88
[  128.790077][ T4767] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  128.846721][ T4767] dw2102: su3000_identify_state
[  128.855087][ T4767] dvb-usb: found a 'TeVii S482 (tuner 2)' in warm state.
[  128.892137][ T4767] dw2102: su3000_power_ctrl: 1, initialized 0
[  128.919897][ T4767] dvb-usb: bulk message failed: -22 (2/0)
[  128.963354][ T6097] loop4: detected capacity change from 0 to 128
[  128.973447][ T4767] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  129.025762][ T6099] loop5: detected capacity change from 0 to 512
[  129.030838][ T4767] dvbdev: DVB: registering new adapter (TeVii S482 (tuner 2))
[  129.058659][ T6063] dw2102: i2c rd: len=112 is too big!
[  129.058659][ T6063] 
[  129.086740][ T4767] usb 4-1: media controller created
[  129.104457][ T4767] dvb-usb: bulk message failed: -22 (6/0)
[  129.110330][ T4767] dw2102: i2c transfer failed.
[  129.118737][ T6099] EXT4-fs (loop5): Cannot turn on journaled quota: type 0: error -2
[  129.144318][ T4767] dvb-usb: bulk message failed: -22 (6/0)
[  129.150605][ T4767] dw2102: i2c transfer failed.
[  129.158169][ T4767] dvb-usb: bulk message failed: -22 (6/0)
[  129.164625][ T4767] dw2102: i2c transfer failed.
[  129.169525][ T4767] dvb-usb: bulk message failed: -22 (6/0)
[  129.175683][ T4767] dw2102: i2c transfer failed.
[  129.180594][ T4767] dvb-usb: bulk message failed: -22 (6/0)
[  129.187829][ T4767] dw2102: i2c transfer failed.
[  129.192819][ T4767] dvb-usb: bulk message failed: -22 (6/0)
[  129.199202][ T4767] dw2102: i2c transfer failed.
[  129.204123][ T4767] dvb-usb: MAC address: 02:02:02:02:02:02
[  129.211679][ T6099] EXT4-fs (loop5): 1 truncate cleaned up
[  129.227085][ T4767] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  129.244083][ T4767] dvb-usb: bulk message failed: -22 (3/0)
[  129.250524][ T6099] EXT4-fs (loop5): mounted filesystem without journal. Opts: journal_dev=0x0000000000000009,noblock_validity,init_itable=0x0000000000001002,journal_dev=0x0000000000000002,debug_want_extra_isize=0x0000000000000008,jqfmt=vfsold,usrjquota=min_batch_time=0x0000000000000000,nodiscard,,errors=continue. Quota mode: writeback.
[  129.260468][ T4767] dw2102: command 0x0e transfer failed.
[  129.292084][ T6107] program syz.1.674 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  129.320068][ T4767] dvb-usb: bulk message failed: -22 (3/0)
[  129.330200][ T4767] dw2102: command 0x0e transfer failed.
[  129.402580][ T6099] EXT4-fs error (device loop5): ext4_add_entry:2486: inode #2: comm syz.5.671: Directory hole found for htree leaf block 0
[  129.672551][ T4767] dvb-usb: bulk message failed: -22 (3/0)
[  129.678640][ T4767] dw2102: command 0x0e transfer failed.
[  129.719711][ T4767] dvb-usb: bulk message failed: -22 (3/0)
[  129.741742][ T4767] dw2102: command 0x0e transfer failed.
[  129.770257][ T4767] dvb-usb: bulk message failed: -22 (1/0)
[  129.789182][ T4767] dw2102: command 0x51 transfer failed.
[  129.814277][ T4767] dvb-usb: bulk message failed: -22 (5/0)
[  129.831059][ T4767] dw2102: i2c probe for address 0x68 failed.
[  129.865577][ T4767] dvb-usb: bulk message failed: -22 (5/0)
[  129.884594][ T4767] dw2102: i2c probe for address 0x69 failed.
[  129.924313][ T4767] dvb-usb: bulk message failed: -22 (5/0)
[  129.930091][ T4767] dw2102: i2c probe for address 0x6a failed.
[  129.963771][ T6133] loop0: detected capacity change from 0 to 64
[  129.974596][ T4767] dw2102: probing for demodulator failed. Is the external power switched on?
[  129.983412][ T4767] dvb-usb: no frontend was attached by 'TeVii S482 (tuner 2)'
[  130.245635][ T4767] rc_core: IR keymap rc-tt-1500 not found
[  130.251417][ T4767] Registered IR keymap rc-empty
[  130.281667][ T4767] rc rc0: TeVii S482 (tuner 2) as /devices/platform/dummy_hcd.3/usb4/4-1/rc/rc0
[  130.305443][ T4767] input: TeVii S482 (tuner 2) as /devices/platform/dummy_hcd.3/usb4/4-1/rc/rc0/input16
[  130.330372][ T4767] dvb-usb: schedule remote query interval to 250 msecs.
[  130.343584][ T4767] dw2102: su3000_power_ctrl: 0, initialized 1
[  130.350031][ T4767] dvb-usb: TeVii S482 (tuner 2) successfully initialized and connected.
[  130.402671][ T4767] usb 4-1: USB disconnect, device number 7
[  130.596450][ T6150] loop5: detected capacity change from 0 to 16
[  130.600252][ T4767] dvb-usb: TeVii S482 (tuner 2) successfully deinitialized and disconnected.
[  130.646079][ T6150] MTD: Attempt to mount non-MTD device "/dev/loop5"
[  130.740872][ T4330] udevd[4330]: incorrect cramfs checksum on /dev/loop5
[  130.775210][ T6150] openvswitch: netlink: Actions may not be safe on all matching packets
[  130.882480][ T4330] udevd[4330]: incorrect cramfs checksum on /dev/loop5
[  131.070347][ T6162] loop5: detected capacity change from 0 to 512
[  131.192369][ T6162] EXT4-fs error (device loop5): ext4_orphan_get:1401: inode #15: comm syz.5.699: iget: bad i_size value: 38620345925642
[  131.263223][ T6162] EXT4-fs error (device loop5): ext4_orphan_get:1406: comm syz.5.699: couldn't read orphan inode 15 (err -117)
[  131.373608][ T6162] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  132.054940][ T5336] EXT4-fs error (device loop5): ext4_validate_block_bitmap:429: comm kworker/u4:7: bg 0: block 5: invalid block bitmap
[  132.147075][ T5336] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 420 with error 28
[  132.205757][ T6173] loop4: detected capacity change from 0 to 131072
[  132.244370][ T5336] EXT4-fs (loop5): This should not happen!! Data will be lost
[  132.244370][ T5336] 
[  132.259616][ T5336] EXT4-fs (loop5): Total free blocks count 0
[  132.263437][ T6174] chnl_net:caif_netlink_parms(): no params data found
[  132.274349][ T5336] EXT4-fs (loop5): Free/Dirty block details
[  132.280475][ T5336] EXT4-fs (loop5): free_blocks=0
[  132.285572][ T5336] EXT4-fs (loop5): dirty_blocks=424
[  132.291254][ T6173] F2FS-fs (loop4): Invalid segment/section count (31, 24 x 150994945)
[  132.299525][ T6173] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  132.315548][ T5336] EXT4-fs (loop5): Block reservation details
[  132.326180][ T5336] EXT4-fs (loop5): i_reserved_data_blocks=424
[  132.334100][ T6173] F2FS-fs (loop4): invalid crc value
[  132.379248][ T6173] F2FS-fs (loop4): Found nat_bits in checkpoint
[  132.427853][ T6173] F2FS-fs (loop4): Cannot turn on quotas: -2 on 2
[  132.484619][ T6173] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  132.491799][ T6173] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e4
[  132.506211][ T6196] syz.5.706 uses obsolete (PF_INET,SOCK_PACKET)
[  132.634047][ T6173] F2FS-fs (loop4): sanity_check_inode: corrupted inode footer i_ino=8, ino,nid: [10986248, 8] run fsck to fix.
[  132.758087][    C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0)
[  132.771409][ T1427] ieee802154 phy0 wpan0: encryption failed: -22
[  132.777799][ T1427] ieee802154 phy1 wpan1: encryption failed: -22
[  132.844797][ T6174] bridge0: port 1(bridge_slave_0) entered blocking state
[  132.876201][ T6174] bridge0: port 1(bridge_slave_0) entered disabled state
[  132.925559][ T6174] device bridge_slave_0 entered promiscuous mode
[  132.945169][ T6174] bridge0: port 2(bridge_slave_1) entered blocking state
[  132.976411][ T6174] bridge0: port 2(bridge_slave_1) entered disabled state
[  132.992250][ T6178] loop0: detected capacity change from 0 to 32768
[  133.013608][ T6185] loop3: detected capacity change from 0 to 32768
[  133.032158][ T6174] device bridge_slave_1 entered promiscuous mode
[  133.071619][ T6178] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by syz.0.704 (6178)
[  133.074017][ T6205] loop5: detected capacity change from 0 to 512
[  133.123515][ T6174] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  133.142058][ T6178] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  133.142680][ T6174] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  133.199161][ T6185] BTRFS warning: duplicate device /dev/loop3 devid 1 generation 8 scanned by syz.3.705 (6185)
[  133.242247][ T6178] BTRFS info (device loop0): force clearing of disk cache
[  133.269771][ T6178] BTRFS info (device loop0): allowing degraded mounts
[  133.314455][ T4767] Bluetooth: hci1: command 0x0409 tx timeout
[  133.314718][ T6178] BTRFS info (device loop0): enabling auto defrag
[  133.327915][ T6205] EXT4-fs error (device loop5): ext4_xattr_inode_iget:404: comm syz.5.709: inode #1: comm syz.5.709: iget: illegal inode #
[  133.344355][ T6178] BTRFS info (device loop0): max_inline at 0
[  133.350397][ T6178] BTRFS info (device loop0): using free space tree
[  133.379959][ T6174] team0: Port device team_slave_0 added
[  133.396539][    T9] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  133.421235][ T6174] team0: Port device team_slave_1 added
[  133.460271][ T6178] BTRFS info (device loop0): has skinny extents
[  133.477667][ T6205] EXT4-fs error (device loop5): ext4_xattr_inode_iget:409: comm syz.5.709: error while reading EA inode 1 err=-117
[  133.503952][ T4414] BTRFS warning: duplicate device /dev/loop3 devid 1 generation 8 scanned by udevd (4414)
[  133.528953][ T6205] EXT4-fs (loop5): 1 orphan inode deleted
[  133.572943][ T6205] EXT4-fs (loop5): mounted filesystem without journal. Opts: noinit_itable,journal_dev=0x0000000000008000,debug_want_extra_isize=0x0000000000000006,grpid,usrjquota=,grpquota,nogrpid,journal_dev=0x0000000000000dcc,grpjquota=,,errors=continue. Quota mode: writeback.
[  133.652670][ T6205] EXT4-fs error (device loop5): htree_dirblock_to_tree:1112: inode #2: block 13: comm syz.5.709: bad entry in directory: rec_len is smaller than minimal - offset=76, inode=0, rec_len=0, size=1024 fake=0
[  133.699982][    T9] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  133.725101][ T6174] batman_adv: batadv0: Adding interface: batadv_slave_0
[  133.732548][ T6174] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  133.785500][ T6178] BTRFS info (device loop0): enabling ssd optimizations
[  133.801567][ T6178] BTRFS info (device loop0): clearing free space tree
[  133.810126][ T6178] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  133.834856][ T6178] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  133.872672][ T6178] BTRFS info (device loop0): creating free space tree
[  133.886812][ T6178] BTRFS info (device loop0): setting compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  133.899023][ T6178] BTRFS info (device loop0): setting compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  133.975855][ T6174] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  134.060312][    T9] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  134.154786][ T6174] batman_adv: batadv0: Adding interface: batadv_slave_1
[  134.161785][ T6174] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  134.318206][ T6250] Dead loop on virtual device ip6_vti0, fix it urgently!
[  134.324442][ T6174] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  134.798438][    T9] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  134.838283][ T6267] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  134.937695][ T6174] device hsr_slave_0 entered promiscuous mode
[  134.972700][ T6174] device hsr_slave_1 entered promiscuous mode
[  135.000448][ T6174] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  135.041524][ T6174] Cannot create hsr debugfs directory
[  135.214872][ T6265] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  135.388694][ T6271] loop5: detected capacity change from 0 to 8192
[  135.406548][ T4245] Bluetooth: hci1: command 0x041b tx timeout
[  135.454341][ T6265] usb 4-1: Using ep0 maxpacket: 16
[  135.495363][ T6271] REISERFS (device loop5): found reiserfs format "3.6" with non-standard journal
[  135.554660][ T6271] REISERFS (device loop5): using ordered data mode
[  135.574545][ T6265] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  135.603520][ T6271] reiserfs: using flush barriers
[  135.605980][ T6265] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  135.632751][ T6265] usb 4-1: config 0 interface 0 has no altsetting 0
[  135.640715][ T6265] usb 4-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  135.649963][ T6265] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  135.664389][ T6271] REISERFS (device loop5): journal params: device loop5, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  135.680701][ T4237] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  135.709728][ T6265] usb 4-1: config 0 descriptor??
[  135.773313][ T6271] REISERFS (device loop5): checking transaction log (loop5)
[  135.843855][ T6299] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  135.967209][ T6274] loop3: detected capacity change from 0 to 164
[  136.110028][ T6271] REISERFS (device loop5): Using tea hash to sort names
[  136.139884][ T6307] loop0: detected capacity change from 0 to 128
[  136.146838][ T6271] REISERFS (device loop5): Created .reiserfs_priv - reserved for xattr storage.
[  136.194943][ T4237] usb 5-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[  136.204043][ T4237] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  136.259021][ T6307] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  136.268053][ T4237] usb 5-1: Product: syz
[  136.297715][ T6265] hid (null): invalid report_size 33234
[  136.303354][ T6265] hid (null): unknown global tag 0xa5
[  136.309673][ T6307] hpfs: filesystem error: improperly stopped
[  136.314686][ T4237] usb 5-1: Manufacturer: syz
[  136.325692][ T6307] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  136.334305][ T4237] usb 5-1: SerialNumber: syz
[  136.342130][ T6265] hid (null): unknown global tag 0x17
[  136.362133][ T4237] usb 5-1: config 0 descriptor??
[  136.363401][ T6307] hpfs: You really don't want any checks? You are crazy...
[  136.376818][ T6265] hid (null): usage index exceeded
[  136.421727][ T6307] hpfs: hpfs_map_sector(): read error
[  136.437634][ T6307] hpfs: code page support is disabled
[  136.458157][ T6307] hpfs: hpfs_map_4sectors(): unaligned read
[  136.468963][ T6307] hpfs: hpfs_map_4sectors(): unaligned read
[  136.499440][ T6307] hpfs: filesystem error: unable to find root dir
[  136.574099][ T4230] usb 4-1: USB disconnect, device number 8
[  136.700987][ T1108] usb 5-1: USB disconnect, device number 7
[  136.755136][ T6174] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  136.844828][ T6174] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  136.871205][ T6317] netlink: 8 bytes leftover after parsing attributes in process `syz.0.739'.
[  136.891249][ T6174] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  136.941778][ T6174] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  137.241468][ T6337] loop5: detected capacity change from 0 to 4096
[  137.323944][ T6341] loop3: detected capacity change from 0 to 512
[  137.350360][ T6174] 8021q: adding VLAN 0 to HW filter on device bond0
[  137.420801][ T6344] loop0: detected capacity change from 0 to 64
[  137.474937][ T4767] Bluetooth: hci1: command 0x040f tx timeout
[  137.489930][ T6344] BFS-fs: bfs_fill_super(): loop0 is unclean, continuing
[  137.505276][ T6341] EXT4-fs (loop3): mounted filesystem without journal. Opts: bsddf,,errors=continue. Quota mode: none.
[  137.537287][    T9] device hsr_slave_0 left promiscuous mode
[  137.579117][    T9] device hsr_slave_1 left promiscuous mode
[  137.609692][ T6350] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  137.654902][ T6341] EXT4-fs (loop3): shut down requested (1)
[  137.685002][    T9] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  137.692580][    T9] batman_adv: batadv0: Removing interface: batadv_slave_0
[  137.752173][    T9] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  137.764565][    T9] batman_adv: batadv0: Removing interface: batadv_slave_1
[  137.813255][    T9] device bridge_slave_1 left promiscuous mode
[  137.844572][    T9] bridge0: port 2(bridge_slave_1) entered disabled state
[  137.942387][ T6358] genirq: Flags mismatch irq 4. 00000000 (pcmmio) vs. 00000000 (ttyS0)
[  137.984871][    T9] device bridge_slave_0 left promiscuous mode
[  137.991312][    T9] bridge0: port 1(bridge_slave_0) entered disabled state
[  138.063831][    T9] device veth1_macvtap left promiscuous mode
[  138.093892][    T9] device veth0_macvtap left promiscuous mode
[  138.100266][    T9] device veth1_vlan left promiscuous mode
[  138.115350][    T9] device veth0_vlan left promiscuous mode
[  138.284409][ T6353] loop4: detected capacity change from 0 to 32768
[  138.320049][ T6353] 
[  138.320049][ T6353]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  138.320049][ T6353] 
[  138.332994][ T6265] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  138.358455][ T6353] ERROR: (device loop4): diWrite: ixpxd invalid
[  138.358455][ T6353] 
[  138.370329][ T6353] ERROR: (device loop4): txCommit: 
[  138.370329][ T6353] 
[  138.390103][ T6353] 
[  138.390103][ T6353]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  138.390103][ T6353] 
[  138.409601][ T6353] 
[  138.409601][ T6353]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  138.409601][ T6353] 
[  138.512100][    T9] team0 (unregistering): Port device team_slave_1 removed
[  138.552016][    T9] team0 (unregistering): Port device team_slave_0 removed
[  138.568644][    T9] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  138.594958][    T9] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  138.694714][ T6265] usb 1-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  138.714474][ T6265] usb 1-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  138.731739][ T6265] usb 1-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  138.741537][ T6265] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  138.784700][ T6362] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  138.815027][    T9] bond0 (unregistering): Released all slaves
[  138.975010][ T5336] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  138.989893][ T5336] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  139.034786][ T6374] loop3: detected capacity change from 0 to 256
[  139.053392][ T6174] 8021q: adding VLAN 0 to HW filter on device team0
[  139.096594][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  139.132190][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  139.149004][  T144] bridge0: port 1(bridge_slave_0) entered blocking state
[  139.156181][  T144] bridge0: port 1(bridge_slave_0) entered forwarding state
[  139.231062][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  139.264783][ T1108] usb 1-1: USB disconnect, device number 7
[  139.315581][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  139.352872][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  139.381474][  T144] bridge0: port 2(bridge_slave_1) entered blocking state
[  139.388650][  T144] bridge0: port 2(bridge_slave_1) entered forwarding state
[  139.403527][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  139.418627][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  139.467383][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  139.499639][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  139.535960][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  139.554671][ T4237] Bluetooth: hci1: command 0x0419 tx timeout
[  139.578375][ T6208] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  139.636664][ T6208] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  139.685715][ T6208] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  139.733277][ T6208] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  139.788731][ T6208] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  139.801447][ T6401] loop5: detected capacity change from 0 to 1024
[  139.808877][ T6208] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  139.831642][ T6401] EXT4-fs (loop5): Ignoring removed bh option
[  139.871960][ T6174] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  139.956565][ T6406] netlink: 'syz.0.764': attribute type 5 has an invalid length.
[  139.991570][ T6396] loop3: detected capacity change from 0 to 8192
[  140.033772][ T6401] EXT4-fs (loop5): mounted filesystem without journal. Opts: delalloc,data_err=abort,barrier=0x0000000000000002,dioread_lock,data_err=ignore,max_dir_size_kb=0x00000000004007b1,data_err=ignore,grpquota,abort,user_xattr,bh,errors=remount-ro,. Quota mode: writeback.
[  140.502672][ T6208] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  140.539878][ T6208] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  140.613300][ T6174] 8021q: adding VLAN 0 to HW filter on device batadv0
[  140.722108][ T6208] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  140.762463][ T6208] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  140.829256][ T6208] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  140.859905][ T6208] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  140.881189][ T6174] device veth0_vlan entered promiscuous mode
[  140.890859][ T6208] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  140.950157][ T6208] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  141.003317][ T6174] device veth1_vlan entered promiscuous mode
[  141.047625][ T3053] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  141.309131][ T6174] device veth0_macvtap entered promiscuous mode
[  141.349031][ T6462] loop4: detected capacity change from 0 to 22
[  141.401856][ T3108] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  141.431467][ T3108] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  141.475652][ T6462] MTD: Attempt to mount non-MTD device "/dev/loop4"
[  141.514174][ T6465] loop3: detected capacity change from 0 to 512
[  141.524050][ T6174] device veth1_macvtap entered promiscuous mode
[  141.595798][ T6462] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  141.634373][ T3108] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  141.643490][ T3108] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  141.733584][ T6465] EXT4-fs (loop3): Ignoring removed nomblk_io_submit option
[  141.765272][ T6174] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  141.862544][ T6465] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  141.925771][ T6465] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c000e128, mo2=0002]
[  141.966343][ T6174] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  142.008438][ T6465] EXT4-fs (loop3): orphan cleanup on readonly fs
[  142.016646][ T6471] loop5: detected capacity change from 0 to 16
[  142.017316][ T6454] loop0: detected capacity change from 0 to 131072
[  142.031741][ T6174] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  142.056285][ T6465] Quota error (device loop3): v2_read_header: Failed header read: expected=8 got=0
[  142.077375][ T6465] EXT4-fs warning (device loop3): ext4_enable_quotas:6461: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  142.084273][ T6174] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  142.100369][ T6465] EXT4-fs (loop3): Cannot turn on quotas: error -22
[  142.119984][ T6465] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.782: bg 0: block 40: padding at end of block bitmap is not set
[  142.137654][ T6174] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  142.148392][ T6174] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  142.160699][ T6174] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  142.172354][ T6465] EXT4-fs (loop3): Remounting filesystem read-only
[  142.178932][ T6174] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  142.189548][ T6465] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6178: Corrupt filesystem
[  142.200387][ T6174] batman_adv: batadv0: Interface activated: batadv_slave_0
[  142.208492][ T6465] EXT4-fs (loop3): Remounting filesystem read-only
[  142.218237][ T5336] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  142.227073][ T6465] EXT4-fs (loop3): 1 truncate cleaned up
[  142.232748][ T6465] EXT4-fs (loop3): mounted filesystem without journal. Opts: errors=remount-ro,noload,noblock_validity,dioread_lock,nouid32,nomblk_io_submit,. Quota mode: writeback.
[  142.232990][ T6471] erofs: (device loop5): mounted with root inode @ nid 36.
[  142.251203][ T5336] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  142.313871][ T6174] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  142.324636][ T6454] F2FS-fs (loop0): invalid crc value
[  142.342323][ T6174] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  142.354591][ T6454] F2FS-fs (loop0): Found nat_bits in checkpoint
[  142.400549][ T6174] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  142.412848][ T6454] F2FS-fs (loop0): Cannot turn on quotas: -2 on 2
[  142.423789][ T6174] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  142.434101][ T6174] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  142.445271][ T6454] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e4
[  142.453958][ T6174] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  142.464451][ T6174] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  142.475462][ T6174] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  142.487325][ T6174] batman_adv: batadv0: Interface activated: batadv_slave_1
[  142.502990][ T5336] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  142.512456][ T6465] EXT4-fs (loop3): shut down requested (2)
[  142.537637][ T6465] fscrypt (loop3, inode 16): Error -5 getting encryption context
[  142.550125][ T5336] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  142.624914][ T6174] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  142.668132][ T6174] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  142.696359][ T6174] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  142.717685][ T6174] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  142.998246][ T6208] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  143.038961][ T6208] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  143.115346][ T6208] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  143.190475][  T154] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  143.246775][  T154] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  143.338169][ T3108] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  143.780706][ T6511] netlink: 40 bytes leftover after parsing attributes in process `syz.1.794'.
[  143.820368][ T6511] netlink: 22 bytes leftover after parsing attributes in process `syz.1.794'.
[  143.824377][ T4237] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  144.214791][ T4237] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  144.246518][ T4237] usb 6-1: New USB device found, idVendor=5543, idProduct=0004, bcdDevice= 0.00
[  144.277575][ T6490] loop3: detected capacity change from 0 to 32768
[  144.286179][ T4237] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  144.343233][ T4237] usb 6-1: config 0 descriptor??
[  144.405784][ T6265] Bluetooth: hci1: command 0x0405 tx timeout
[  144.888118][ T4237] uclogic 0003:5543:0004.0008: No inputs registered, leaving
[  144.908740][ T6538] loop1: detected capacity change from 0 to 1024
[  144.941946][ T4237] uclogic 0003:5543:0004.0008: hidraw0: USB HID v0.02 Device [HID 5543:0004] on usb-dummy_hcd.5-1/input0
[  145.121273][ T4237] usb 6-1: USB disconnect, device number 3
[  145.204794][ T6538] EXT4-fs (loop1): mounted filesystem without journal. Opts: barrier,nodioread_nolock,noquota,barrier,auto_da_alloc,nodioread_nolock,,errors=continue. Quota mode: none.
[  145.210876][ T6544] fido_id[6544]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/report_descriptor': No such file or directory
[  145.237648][ T6538] ext4 filesystem being mounted at /6/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  145.312465][ T6555] netlink: 'syz.3.806': attribute type 2 has an invalid length.
[  145.407220][ T6538] EXT4-fs error (device loop1): ext4_free_blocks:6218: comm syz.1.802: Freeing blocks not in datazone - block = 0, count = 16
[  145.830697][ T6578] loop3: detected capacity change from 0 to 1024
[  145.893825][ T6586] loop1: detected capacity change from 0 to 512
[  145.902988][ T6588] loop5: detected capacity change from 0 to 64
[  145.944393][ T4298] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  145.997852][ T6586] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  146.031677][ T6584] loop4: detected capacity change from 0 to 4096
[  146.069834][  T154] hfsplus: b-tree write err: -5, ino 4
[  146.103514][ T6586] EXT4-fs (loop1): mounted filesystem without journal. Opts: bsddf,dioread_nolock,quota,,errors=continue. Quota mode: writeback.
[  146.129275][ T6586] ext4 filesystem being mounted at /7/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  146.204402][ T4298] usb 1-1: Using ep0 maxpacket: 32
[  146.225312][ T6584] ntfs: volume version 3.1.
[  146.268821][ T6597] loop3: detected capacity change from 0 to 512
[  146.314304][ T6584] ntfs: (device loop4): ntfs_ucstonls(): Unicode name contains characters that cannot be converted to character set koi8-r.  You might want to try to use the mount option nls=utf8.
[  146.333141][ T4298] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  146.358692][ T4298] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  146.392538][ T6597] EXT4-fs (loop3): mounted filesystem without journal. Opts: resgid=0x0000000000000000,errors=continue,noblock_validity,,errors=continue. Quota mode: none.
[  146.415255][ T4298] usb 1-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  146.426132][ T6584] ntfs: (device loop4): ntfs_filldir(): Skipping unrepresentable inode 0x4.
[  146.441563][ T4298] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  146.450383][ T6597] EXT4-fs warning (device loop3): dx_probe:869: inode #2: comm syz.3.818: Unimplemented hash flags: 0x0001
[  146.466130][ T4298] usb 1-1: config 0 descriptor??
[  146.466695][ T6597] EXT4-fs warning (device loop3): dx_probe:966: inode #2: comm syz.3.818: Corrupt directory, running e2fsck is recommended
[  146.505559][ T4298] hub 1-1:0.0: USB hub found
[  146.637530][ T6597] EXT4-fs error (device loop3): ext4_readdir:263: inode #2: block 3: comm syz.3.818: path /162/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=4294967295, rec_len=7, size=1024 fake=0
[  146.734409][ T4298] hub 1-1:0.0: config failed, hub doesn't have any ports! (err -19)
[  146.824774][ T6608] program syz.1.822 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  147.262721][ T6620] loop5: detected capacity change from 0 to 32768
[  147.323542][ T4298] hid-generic 0003:046D:C31C.0009: hidraw0: USB HID v8.00 Device [HID 046d:c31c] on usb-dummy_hcd.0-1/input0
[  147.372733][ T6620] ERROR: (device loop5): dbAlloc: the hint is outside the map
[  147.372733][ T6620] 
[  147.482910][  T154] read_mapping_page failed!
[  147.515167][  T154] ERROR: (device loop5): txCommit: 
[  147.515167][  T154] 
[  147.584271][  T154] jfs_write_inode: jfs_commit_inode failed!
[  147.706855][ T4298] usb 1-1: USB disconnect, device number 8
[  147.765770][ T6646] loop3: detected capacity change from 0 to 512
[  147.810186][ T6639] fido_id[6639]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/report_descriptor': No such file or directory
[  147.899843][ T6646] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: comm syz.3.834: inode #1: comm syz.3.834: iget: illegal inode #
[  147.904465][ T6646] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.834: error while reading EA inode 1 err=-117
[  147.964320][   T13] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  148.048784][ T6646] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: comm syz.3.834: inode #1: comm syz.3.834: iget: illegal inode #
[  148.070913][ T6646] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.834: error while reading EA inode 1 err=-117
[  148.071845][ T6646] EXT4-fs (loop3): 1 orphan inode deleted
[  148.075495][ T6646] EXT4-fs (loop3): mounted filesystem without journal. Opts: grpjquota=,stripe=0x0000000000000003,norecovery,noinit_itable,init_itable=0x0000000000000001,minixdf,usrjquota=,debug_want_extra_isize=0x000000000000005c,errors=continue,dioread_lock,noblock_validity,noquota,,errors=continue. Quota mode: none.
[  148.378105][   T13] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  148.378139][   T13] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  148.378162][   T13] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  148.378200][   T13] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  148.378225][   T13] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  148.385286][   T13] usb 6-1: config 0 descriptor??
[  148.877298][   T13] plantronics 0003:047F:FFFF.000A: No inputs registered, leaving
[  148.944828][   T13] plantronics 0003:047F:FFFF.000A: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.5-1/input0
[  149.098372][   T13] usb 6-1: USB disconnect, device number 4
[  149.231019][ T6696] fido_id[6696]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/report_descriptor': No such file or directory
[  149.568013][ T6706] loop1: detected capacity change from 0 to 8192
[  149.582892][ T6676] loop3: detected capacity change from 0 to 32768
[  150.178013][ T6738] netlink: 7986 bytes leftover after parsing attributes in process `syz.0.863'.
[  150.750222][ T6765] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  150.760001][ T6765] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  150.769151][ T6765] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  150.777941][ T6765] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  151.052668][ T6769] loop3: detected capacity change from 0 to 8192
[  151.060777][ T6778] capability: warning: `syz.0.879' uses 32-bit capabilities (legacy support in use)
[  151.070154][ T6779] loop1: detected capacity change from 0 to 512
[  151.098493][ T6769] REISERFS (device loop3): found reiserfs format "3.6" with non-standard journal
[  151.127448][ T6778] program syz.0.879 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  151.145813][ T6769] REISERFS (device loop3): using ordered data mode
[  151.152388][ T6769] reiserfs: using flush barriers
[  151.199032][ T6784] loop4: detected capacity change from 0 to 4096
[  151.208218][ T6779] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a803c02c, mo2=0102]
[  151.237180][ T6769] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  151.246902][ T6779] System zones: 1-12
[  151.308835][ T6784] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  151.341481][ T6779] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz.1.878: error while reading EA inode 32 err=-116
[  151.359587][ T6769] REISERFS (device loop3): checking transaction log (loop3)
[  151.369086][ T6779] EXT4-fs (loop1): Remounting filesystem read-only
[  151.408524][ T6779] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz.1.878: error while reading EA inode 32 err=-116
[  151.503697][ T6779] EXT4-fs (loop1): Remounting filesystem read-only
[  151.518539][ T6779] EXT4-fs (loop1): 1 orphan inode deleted
[  151.523564][ T6792] loop0: detected capacity change from 0 to 64
[  151.554362][ T6779] EXT4-fs (loop1): mounted filesystem without journal. Opts: errors=remount-ro,debug,debug_want_extra_isize=0x000000000000005e,noauto_da_alloc,bsdgroups,jqfmt=vfsv1,abort,. Quota mode: none.
[  151.566195][ T6792] BFS-fs: bfs_fill_super(): loop0 is unclean, continuing
[  151.591926][ T6794] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  151.600038][ T6794] IPv6: NLM_F_CREATE should be set when creating new route
[  151.607371][ T6794] IPv6: NLM_F_CREATE should be set when creating new route
[  151.614668][ T6794] IPv6: NLM_F_CREATE should be set when creating new route
[  151.796028][ T6769] REISERFS (device loop3): Using tea hash to sort names
[  151.829616][ T6769] REISERFS (device loop3): Created .reiserfs_priv - reserved for xattr storage.
[  152.088852][ T6802] loop5: detected capacity change from 0 to 256
[  152.102990][ T6804] netlink: 'syz.0.889': attribute type 4 has an invalid length.
[  152.131473][ T6802] exfat: Deprecated parameter 'utf8'
[  152.172748][ T6802] exfat: Deprecated parameter 'utf8'
[  152.249956][ T6802] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x23a77120, utbl_chksum : 0xe619d30d)
[  152.444698][ T6816] loop1: detected capacity change from 0 to 2048
[  152.522866][ T6823] netlink: 60 bytes leftover after parsing attributes in process `syz.4.896'.
[  152.542513][ T6823] netlink: 60 bytes leftover after parsing attributes in process `syz.4.896'.
[  152.589857][ T6818] netlink: 60 bytes leftover after parsing attributes in process `syz.4.896'.
[  152.604731][ T6825] netlink: 60 bytes leftover after parsing attributes in process `syz.4.896'.
[  152.632197][ T6826] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  152.898140][ T6831] loop1: detected capacity change from 0 to 512
[  153.022948][ T6831] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  153.051057][ T6836] loop4: detected capacity change from 0 to 2048
[  153.058067][ T6831] ext4 filesystem being mounted at /24/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  153.079567][ T6821] loop3: detected capacity change from 0 to 32768
[  153.093057][ T6831] EXT4-fs (loop1): shut down requested (1)
[  153.108389][ T6836] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024)
[  153.181840][ T6841] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  153.263057][ T6846] netlink: 8 bytes leftover after parsing attributes in process `syz.1.902'.
[  153.359707][ T6821] XFS (loop3): Mounting V5 Filesystem
[  153.505168][ T6821] XFS (loop3): Ending clean mount
[  153.519353][ T6821] XFS (loop3): Quotacheck needed: Please wait.
[  153.632771][ T6821] XFS (loop3): Quotacheck: Done.
[  153.750825][ T4193] XFS (loop3): Unmounting Filesystem
[  153.954439][ T6265] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  154.039106][ T6866] mkiss: ax0: crc mode is auto.
[  154.225742][ T6872] loop3: detected capacity change from 0 to 256
[  154.321436][ T6265] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[  154.341522][ T6265] usb 5-1: config 0 has no interface number 0
[  154.367916][ T6265] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  154.374467][ T6878] loop5: detected capacity change from 0 to 512
[  154.405513][ T6265] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  154.425825][ T6265] usb 5-1: New USB device found, idVendor=04d9, idProduct=a055, bcdDevice= 0.18
[  154.439347][ T6878] EXT4-fs (loop5): Ignoring removed oldalloc option
[  154.444388][ T6265] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  154.460862][ T6265] usb 5-1: config 0 descriptor??
[  154.490420][ T4298] Bluetooth: hci5: command 0x1003 tx timeout
[  154.496971][  T146] Bluetooth: hci5: sending frame failed (-49)
[  154.515979][ T6878] EXT4-fs (loop5): 1 truncate cleaned up
[  154.521943][ T6878] EXT4-fs (loop5): mounted filesystem without journal. Opts: quota,bsdgroups,nouid32,errors=remount-ro,jqfmt=vfsv1,oldalloc,stripe=0x0000000000000005,. Quota mode: writeback.
[  154.810993][ T6892] device macvtap1 entered promiscuous mode
[  154.817539][ T6892] device dummy0 entered promiscuous mode
[  154.858490][ T6892] team0: Device macvtap1 failed to register rx_handler
[  154.892474][ T6892] device dummy0 left promiscuous mode
[  154.958772][ T6265] input: HID 04d9:a055 as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.1/0003:04D9:A055.000B/input/input17
[  155.060015][ T6265] holtek_kbd 0003:04D9:A055.000B: input,hidraw0: USB HID v0.00 Keyboard [HID 04d9:a055] on usb-dummy_hcd.4-1/input1
[  155.226124][ T6903] loop3: detected capacity change from 0 to 512
[  155.248206][ T4263] usb 5-1: USB disconnect, device number 8
[  155.343588][ T6903] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  155.355079][ T6903] ext4 filesystem being mounted at /182/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  155.536983][ T6265] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  155.580919][ T6911] loop3: detected capacity change from 0 to 512
[  155.624757][ T6911] EXT4-fs (loop3): Ignoring removed nobh option
[  155.704715][ T6911] EXT4-fs (loop3): Test dummy encryption mode enabled
[  155.712802][ T6911] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  155.730478][ T6911] EXT4-fs error (device loop3): ext4_orphan_get:1401: inode #15: comm syz.3.930: iget: bad i_size value: 38620345925642
[  155.744340][ T6911] EXT4-fs error (device loop3): ext4_orphan_get:1406: comm syz.3.930: couldn't read orphan inode 15 (err -117)
[  155.756739][ T6911] EXT4-fs (loop3): mounted filesystem without journal. Opts: nobh,auto_da_alloc,test_dummy_encryption,nojournal_checksum,dioread_nolock,bsdgroups,,errors=continue. Quota mode: writeback.
[  155.824436][ T6265] usb 6-1: Using ep0 maxpacket: 16
[  156.085700][ T6929] loop4: detected capacity change from 0 to 64
[  156.108428][ T6929] BFS-fs: bfs_fill_super(): loop4 is unclean, continuing
[  156.144653][ T6265] usb 6-1: New USB device found, idVendor=054c, idProduct=0038, bcdDevice=16.f5
[  156.161211][ T6265] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  156.169751][ T6265] usb 6-1: Product: syz
[  156.174042][ T6265] usb 6-1: Manufacturer: syz
[  156.183658][ T6265] usb 6-1: SerialNumber: syz
[  156.191093][ T6265] usb 6-1: config 0 descriptor??
[  156.243557][ T6932] loop4: detected capacity change from 0 to 47
[  156.251954][ T6265] visor 6-1:0.0: Sony Clie 3.5 converter detected
[  156.442481][ T6936] netlink: 'syz.1.940': attribute type 4 has an invalid length.
[  156.486865][ T6936] netlink: 3657 bytes leftover after parsing attributes in process `syz.1.940'.
[  156.514418][ T4298] Bluetooth: hci5: command 0x1001 tx timeout
[  156.520858][  T146] Bluetooth: hci5: sending frame failed (-49)
[  156.522066][ T6938] loop4: detected capacity change from 0 to 512
[  156.579573][ T6938] EXT4-fs (loop4): orphan cleanup on readonly fs
[  156.598121][ T6938] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2826: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  156.620216][ T6938] EXT4-fs error (device loop4): ext4_do_update_inode:5218: inode #15: comm syz.4.939: corrupted inode contents
[  156.651272][ T6938] EXT4-fs error (device loop4): ext4_dirty_inode:6054: inode #15: comm syz.4.939: mark_inode_dirty error
[  156.667195][ T6938] EXT4-fs error (device loop4): ext4_do_update_inode:5218: inode #15: comm syz.4.939: corrupted inode contents
[  156.683485][ T6938] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2971: inode #15: comm syz.4.939: mark_inode_dirty error
[  156.698000][ T6938] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2974: inode #15: comm syz.4.939: mark inode dirty (error -117)
[  156.707697][ T6265] usb 6-1: Sony Clie 3.5 converter now attached to ttyUSB0
[  156.729070][ T6938] EXT4-fs warning (device loop4): ext4_evict_inode:302: xattr delete (err -117)
[  156.738827][ T6938] EXT4-fs (loop4): 1 orphan inode deleted
[  156.745049][ T6938] EXT4-fs (loop4): mounted filesystem without journal. Opts: nodioread_nolock,resuid=0x0000000000000000,debug_want_extra_isize=0x000000000000005c,nouid32,resgid=0x0000000000000000,acl,init_itable=0x0000000000008d55,,errors=continue. Quota mode: none.
[  156.951349][ T4263] usb 6-1: USB disconnect, device number 5
[  156.981103][ T4263] clie_3.5 ttyUSB0: Sony Clie 3.5 converter now disconnected from ttyUSB0
[  157.011159][ T4263] visor 6-1:0.0: device disconnected
[  157.153519][ T6956] bond0: option miimon: invalid value (18446744071651274468)
[  157.166186][ T6956] bond0: option miimon: allowed values 0 - 2147483647
[  158.403384][ T6971] loop4: detected capacity change from 0 to 32768
[  158.427367][ T6971] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop4 scanned by syz.4.955 (6971)
[  262.404174][    C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[  262.411277][    C1] rcu: 	0-...!: (1 GPs behind) idle=a77/1/0x4000000000000000 softirq=18248/18254 fqs=22 
[  262.422788][    C1] 	(detected by 1, t=10506 jiffies, g=23245, q=253)
[  262.429423][    C1] Sending NMI from CPU 1 to CPUs 0:
[  262.434673][    C0] NMI backtrace for cpu 0
[  262.434694][    C0] CPU: 0 PID: 6969 Comm: syz.3.954 Not tainted syzkaller #0
[  262.434712][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  262.434730][    C0] RIP: 0010:__lock_acquire+0x4e8/0x7c60
[  262.434769][    C0] Code: 44 24 58 42 0f b6 04 00 84 c0 0f 85 13 62 00 00 44 8b 75 28 45 89 6f 20 49 8d 5f 24 48 89 d8 48 c1 e8 03 42 0f b6 04 00 84 c0 <4c> 8b 64 24 18 0f 85 1a 62 00 00 44 89 33 44 89 eb 81 e3 ff 1f 00
[  262.434784][    C0] RSP: 0018:ffffc900000078c0 EFLAGS: 00000046
[  262.434799][    C0] RAX: 0000000000000000 RBX: ffff88801a39a8fc RCX: 0000000000080000
[  262.434811][    C0] RDX: 0000000000000015 RSI: 0000000000000000 RDI: ffff88801a39a8e8
[  262.434822][    C0] RBP: ffffc90000007b10 R08: dffffc0000000000 R09: 0000000000000001
[  262.434835][    C0] R10: fffffbfff1ad33a6 R11: 1ffffffff1ad33a5 R12: ffff88801a39a894
[  262.434847][    C0] R13: 00000000000a4015 R14: 0000000000000000 R15: ffff88801a39a8d8
[  262.434859][    C0] FS:  00007f051ccf06c0(0000) GS:ffff8880b9000000(0000) knlGS:0000000000000000
[  262.434874][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  262.434886][    C0] CR2: 0000200000000240 CR3: 000000005705d000 CR4: 00000000003506f0
[  262.434902][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  262.434912][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  262.434922][    C0] Call Trace:
[  262.434934][    C0]  <IRQ>
[  262.434949][    C0]  ? verify_lock_unused+0x140/0x140
[  262.434972][    C0]  ? verify_lock_unused+0x140/0x140
[  262.434990][    C0]  ? verify_lock_unused+0x140/0x140
[  262.435018][    C0]  lock_acquire+0x197/0x3f0
[  262.435037][    C0]  ? rcu_lock_acquire+0x5/0x30
[  262.435060][    C0]  ? read_lock_is_recursive+0x10/0x10
[  262.435078][    C0]  ? do_raw_spin_lock+0x11d/0x280
[  262.435096][    C0]  ? __rwlock_init+0x140/0x140
[  262.435110][    C0]  ? _raw_spin_lock_irqsave+0xb0/0xf0
[  262.435129][    C0]  ? do_raw_spin_unlock+0x11d/0x230
[  262.435146][    C0]  rcu_lock_acquire+0x2a/0x30
[  262.435163][    C0]  ? rcu_lock_acquire+0x5/0x30
[  262.435180][    C0]  advance_sched+0x6ca/0x940
[  262.435204][    C0]  __hrtimer_run_queues+0x53d/0xc40
[  262.435227][    C0]  ? taprio_free_sched_cb+0x190/0x190
[  262.435250][    C0]  ? hrtimer_interrupt+0x8d0/0x8d0
[  262.435279][    C0]  hrtimer_interrupt+0x3bb/0x8d0
[  262.435308][    C0]  __sysvec_apic_timer_interrupt+0x137/0x4a0
[  262.435327][    C0]  sysvec_apic_timer_interrupt+0x9b/0xc0
[  262.435347][    C0]  </IRQ>
[  262.435352][    C0]  <TASK>
[  262.435357][    C0]  asm_sysvec_apic_timer_interrupt+0x16/0x20
[  262.435376][    C0] RIP: 0010:_raw_spin_unlock_irqrestore+0xa5/0x100
[  262.435394][    C0] Code: 74 05 e8 de 0d cb f7 48 c7 44 24 20 00 00 00 00 9c 8f 44 24 20 f6 44 24 21 02 75 4b f7 c3 00 02 00 00 74 01 fb bf 01 00 00 00 <e8> f6 95 9e f7 65 8b 05 87 93 4f 76 85 c0 74 3c 48 c7 04 24 0e 36
[  262.435408][    C0] RSP: 0018:ffffc900030afb80 EFLAGS: 00000206
[  262.435421][    C0] RAX: 83312422091eef00 RBX: 0000000000000a02 RCX: 83312422091eef00
[  262.435434][    C0] RDX: dffffc0000000000 RSI: ffffffff8a0b1c60 RDI: 0000000000000001
[  262.435446][    C0] RBP: ffffc900030afc10 R08: dffffc0000000000 R09: fffffbfff1ff7c19
[  262.435459][    C0] R10: fffffbfff1ff7c19 R11: 1ffffffff1ff7c18 R12: dffffc0000000000
[  262.435472][    C0] R13: dffffc0000000000 R14: ffff8880b902a240 R15: 1ffff92000615f70
[  262.435494][    C0]  ? _raw_spin_unlock+0x40/0x40
[  262.435510][    C0]  ? ktime_get_update_offsets_now+0x3ce/0x3e0
[  262.435530][    C0]  clock_was_set+0x642/0x840
[  262.435559][    C0]  ? destroy_hrtimer_on_stack+0x20/0x20
[  262.435583][    C0]  ? memcpy+0x3c/0x60
[  262.435602][    C0]  ? timekeeping_update+0x3ec/0x460
[  262.435634][    C0]  do_settimeofday64+0x575/0x720
[  262.435652][    C0]  ? hci_add_adv_instance+0x5ad/0x7b0
[  262.435674][    C0]  ? __x64_sys_clock_settime+0x223/0x270
[  262.435693][    C0]  ? get_device_system_crosststamp+0x8f0/0x8f0
[  262.435715][    C0]  ? hci_add_adv_instance+0x5ad/0x7b0
[  262.435734][    C0]  ? security_settime64+0x77/0x90
[  262.435752][    C0]  ? do_sys_settimeofday64+0x15f/0x250
[  262.435770][    C0]  __x64_sys_clock_settime+0x223/0x270
[  262.435788][    C0]  ? lock_chain_count+0x20/0x20
[  262.435806][    C0]  ? exit_itimers+0x550/0x550
[  262.435825][    C0]  ? lockdep_hardirqs_on+0x94/0x140
[  262.435843][    C0]  do_syscall_64+0x4c/0xa0
[  262.435859][    C0]  ? clear_bhb_loop+0x30/0x80
[  262.435874][    C0]  ? clear_bhb_loop+0x30/0x80
[  262.435891][    C0]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  262.435909][    C0] RIP: 0033:0x7f051ea89749
[  262.435936][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  262.435950][    C0] RSP: 002b:00007f051ccf0038 EFLAGS: 00000246 ORIG_RAX: 00000000000000e3
[  262.435966][    C0] RAX: ffffffffffffffda RBX: 00007f051ecdffa0 RCX: 00007f051ea89749
[  262.435978][    C0] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 0000000000000000
[  262.435989][    C0] RBP: 00007f051eb0df91 R08: 0000000000000000 R09: 0000000000000000
[  262.435999][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  262.436009][    C0] R13: 00007f051ece0038 R14: 00007f051ecdffa0 R15: 00007ffea92009c8
[  262.436029][    C0]  </TASK>
[  262.436663][    C1] rcu: rcu_preempt kthread timer wakeup didn't happen for 10394 jiffies! g23245 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402
[  262.955519][    C1] rcu: 	Possible timer handling issue on cpu=1 timer-softirq=11914
[  262.963633][    C1] rcu: rcu_preempt kthread starved for 10395 jiffies! g23245 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402 ->cpu=1
[  262.975028][    C1] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[  262.985041][    C1] rcu: RCU grace-period kthread stack dump:
[  262.990946][    C1] task:rcu_preempt     state:I stack:28064 pid:   15 ppid:     2 flags:0x00004000
[  263.000177][    C1] Call Trace:
[  263.003470][    C1]  <TASK>
[  263.006417][    C1]  __schedule+0x11bb/0x4390
[  263.011067][    C1]  ? _raw_spin_lock_irqsave+0x7f/0xf0
[  263.016474][    C1]  ? _raw_spin_unlock_irqrestore+0x82/0x100
[  263.022419][    C1]  ? _raw_spin_unlock_irqrestore+0xaa/0x100
[  263.028515][    C1]  ? _raw_spin_unlock+0x40/0x40
[  263.033479][    C1]  ? rcu_is_watching+0x11/0xa0
[  263.038275][    C1]  ? release_firmware_map_entry+0x190/0x190
[  263.044203][    C1]  schedule+0x11b/0x1e0
[  263.048382][    C1]  schedule_timeout+0x15c/0x280
[  263.053253][    C1]  ? console_conditional_schedule+0x40/0x40
[  263.059172][    C1]  ? _raw_spin_unlock_irqrestore+0x82/0x100
[  263.065089][    C1]  ? update_process_times+0x200/0x200
[  263.070666][    C1]  ? prepare_to_swait_event+0x331/0x350
[  263.076238][    C1]  rcu_gp_fqs_loop+0x29e/0x11b0
[  263.081127][    C1]  ? dyntick_save_progress_counter+0x230/0x230
[  263.087298][    C1]  ? rcu_gp_init+0x10e0/0x10e0
[  263.092087][    C1]  ? _raw_spin_unlock_irq+0x1f/0x40
[  263.097303][    C1]  ? lockdep_hardirqs_on+0x94/0x140
[  263.102608][    C1]  rcu_gp_kthread+0x98/0x350
[  263.107222][    C1]  ? rcu_report_qs_rsp+0x1a0/0x1a0
[  263.112359][    C1]  ? _raw_spin_unlock_irqrestore+0xaa/0x100
[  263.118272][    C1]  ? __kthread_parkme+0x157/0x1b0
[  263.123325][    C1]  kthread+0x436/0x520
[  263.127410][    C1]  ? rcu_report_qs_rsp+0x1a0/0x1a0
[  263.132541][    C1]  ? kthread_blkcg+0xd0/0xd0
[  263.137160][    C1]  ret_from_fork+0x1f/0x30
[  263.141610][    C1]  </TASK>
[  263.144639][    C1] rcu: Stack dump where RCU GP kthread last ran:
[  263.150965][    C1] NMI backtrace for cpu 1
[  263.155311][    C1] CPU: 1 PID: 6971 Comm: syz.4.955 Not tainted syzkaller #0
[  263.162622][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  263.172706][    C1] Call Trace:
[  263.176001][    C1]  <IRQ>
[  263.178865][    C1]  dump_stack_lvl+0x168/0x230
[  263.183571][    C1]  ? show_regs_print_info+0x20/0x20
[  263.188790][    C1]  ? load_image+0x3b0/0x3b0
[  263.193329][    C1]  nmi_cpu_backtrace+0x397/0x3d0
[  263.198289][    C1]  ? nmi_trigger_cpumask_backtrace+0x280/0x280
[  263.204462][    C1]  ? _printk+0xcc/0x110
[  263.208640][    C1]  ? cpu_online+0x1d/0x30
[  263.212984][    C1]  ? load_image+0x3b0/0x3b0
[  263.217509][    C1]  ? arch_trigger_cpumask_backtrace+0x10/0x10
[  263.223613][    C1]  nmi_trigger_cpumask_backtrace+0x163/0x280
[  263.229627][    C1]  rcu_check_gp_kthread_starvation+0x1cd/0x250
[  263.235801][    C1]  print_other_cpu_stall+0x10c8/0x1220
[  263.241302][    C1]  ? print_cpu_stall+0x5f0/0x5f0
[  263.246254][    C1]  ? timekeeping_advance+0x7f6/0xac0
[  263.251672][    C1]  ? __lock_acquire+0x7c60/0x7c60
[  263.256724][    C1]  rcu_sched_clock_irq+0x831/0x1110
[  263.261943][    C1]  ? rcutree_dead_cpu+0x20/0x20
[  263.266838][    C1]  ? account_process_tick+0x227/0x3a0
[  263.272232][    C1]  update_process_times+0x193/0x200
[  263.277547][    C1]  tick_sched_timer+0x37d/0x560
[  263.282422][    C1]  __hrtimer_run_queues+0x4fe/0xc40
[  263.287643][    C1]  ? tick_setup_sched_timer+0x2c0/0x2c0
[  263.293212][    C1]  ? hrtimer_interrupt+0x8d0/0x8d0
[  263.298344][    C1]  ? ktime_get_update_offsets_now+0x3ce/0x3e0
[  263.304440][    C1]  hrtimer_interrupt+0x3bb/0x8d0
[  263.309513][    C1]  __sysvec_apic_timer_interrupt+0x137/0x4a0
[  263.315513][    C1]  sysvec_apic_timer_interrupt+0x9b/0xc0
[  263.321261][    C1]  </IRQ>
[  263.324238][    C1]  <TASK>
[  263.327182][    C1]  asm_sysvec_apic_timer_interrupt+0x16/0x20
[  263.333180][    C1] RIP: 0010:smp_call_function_many_cond+0xb88/0xd70
[  263.339793][    C1] Code: b6 44 05 00 84 c0 0f 85 9d 00 00 00 41 8b 1c 24 89 de 83 e6 01 31 ff e8 66 49 0b 00 83 e3 01 75 07 e8 fc 45 0b 00 eb 43 f3 90 <48> b8 00 00 00 00 00 fc ff df 41 0f b6 44 05 00 84 c0 75 11 41 f7
[  263.359674][    C1] RSP: 0018:ffffc9000329f700 EFLAGS: 00000246
[  263.365762][    C1] RAX: ffffffff816c863b RBX: 0000000000000001 RCX: 0000000000080000
[  263.373745][    C1] RDX: ffffc9000e5da000 RSI: 000000000007ffff RDI: 0000000000080000
[  263.381730][    C1] RBP: ffffc9000329f838 R08: dffffc0000000000 R09: fffffbfff1ff7c49
[  263.389718][    C1] R10: fffffbfff1ff7c49 R11: 1ffffffff1ff7c48 R12: ffff8880b9042848
[  263.397703][    C1] R13: 1ffff11017208509 R14: ffff8880b913b3c0 R15: 0000000000000000
[  263.405697][    C1]  ? smp_call_function_many_cond+0xbab/0xd70
[  263.411721][    C1]  ? invalidate_bh_lrus+0x30/0x30
[  263.416758][    C1]  ? __bread_gfp+0x380/0x380
[  263.421456][    C1]  ? smp_call_function_many+0x30/0x30
[  263.426852][    C1]  ? xas_next_entry+0x3d0/0x3d0
[  263.431804][    C1]  ? bdev_read_only+0xc3/0x120
[  263.436591][    C1]  ? __bread_gfp+0x380/0x380
[  263.441192][    C1]  ? invalidate_bh_lrus+0x30/0x30
[  263.446238][    C1]  on_each_cpu_cond_mask+0x3b/0x80
[  263.451378][    C1]  invalidate_bdev+0x8a/0xb0
[  263.455993][    C1]  btrfs_get_bdev_and_sb+0x152/0x1e0
[  263.461308][    C1]  open_fs_devices+0x1cc/0xd10
[  263.466111][    C1]  btrfs_mount_root+0x4e0/0x8c0
[  263.470986][    C1]  ? btrfs_control_open+0x40/0x40
[  263.476032][    C1]  ? kfree+0x4a/0x2a0
[  263.480035][    C1]  ? vfs_parse_fs_string+0xfe/0x160
[  263.485256][    C1]  ? vfs_parse_fs_param+0x420/0x420
[  263.490485][    C1]  legacy_get_tree+0xe6/0x180
[  263.495186][    C1]  ? btrfs_control_open+0x40/0x40
[  263.500231][    C1]  vfs_get_tree+0x88/0x270
[  263.504701][    C1]  vfs_kern_mount+0xba/0x150
[  263.509313][    C1]  btrfs_mount+0x2d7/0xa50
[  263.513767][    C1]  ? btrfs_clear_sb_rdonly+0x70/0x70
[  263.519255][    C1]  ? vfs_parse_fs_string+0xfe/0x160
[  263.524476][    C1]  ? rcu_is_watching+0x11/0xa0
[  263.529341][    C1]  ? vfs_parse_fs_string+0xfe/0x160
[  263.534584][    C1]  ? kfree+0x4a/0x2a0
[  263.538613][    C1]  ? vfs_parse_fs_string+0xfe/0x160
[  263.543830][    C1]  ? vfs_parse_fs_param+0x420/0x420
[  263.549055][    C1]  legacy_get_tree+0xe6/0x180
[  263.553832][    C1]  ? btrfs_clear_sb_rdonly+0x70/0x70
[  263.559140][    C1]  vfs_get_tree+0x88/0x270
[  263.563575][    C1]  do_new_mount+0x24a/0xa40
[  263.568115][    C1]  __se_sys_mount+0x2d6/0x3c0
[  263.572936][    C1]  ? __x64_sys_mount+0xc0/0xc0
[  263.578071][    C1]  ? lockdep_hardirqs_on+0x94/0x140
[  263.583377][    C1]  ? __x64_sys_mount+0x1c/0xc0
[  263.588163][    C1]  do_syscall_64+0x4c/0xa0
[  263.592597][    C1]  ? clear_bhb_loop+0x30/0x80
[  263.597320][    C1]  ? clear_bhb_loop+0x30/0x80
[  263.602113][    C1]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  263.608113][    C1] RIP: 0033:0x7f4be863ceea
[  263.612646][    C1] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  263.632447][    C1] RSP: 002b:00007f4be68a1e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  263.640879][    C1] RAX: ffffffffffffffda RBX: 00007f4be68a1ef0 RCX: 00007f4be863ceea
[  263.648865][    C1] RDX: 00002000000055c0 RSI: 0000200000000000 RDI: 00007f4be68a1eb0
[  263.656850][    C1] RBP: 00002000000055c0 R08: 00007f4be68a1ef0 R09: 000000000300000a
[  263.664878][    C1] R10: 000000000300000a R11: 0000000000000246 R12: 0000200000000000
[  263.672860][    C1] R13: 00007f4be68a1eb0 R14: 00000000000055a3 R15: 0000200000000080
[  263.680871][    C1]  </TASK>