last executing test programs:
2.505320878s ago: executing program 1 (id=916):
r0 = socket$inet6(0xa, 0x5, 0x0)
setsockopt$inet6_buf(r0, 0x29, 0x39, &(0x7f0000000280)="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", 0x118)
2.380317528s ago: executing program 1 (id=925):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000600)={'ip6gre0\x00', &(0x7f0000000000)={'syztnl1\x00', 0x0, 0x2f, 0xfd, 0x4, 0xb753, 0x20, @loopback, @mcast2={0xff, 0x3}, 0x8000, 0xba08, 0x0, 0x1004}})
2.196328373s ago: executing program 1 (id=919):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x6, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="18020000fcffffff00000000000000008500000041000000850000000800000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={r0, 0x0, 0x12, 0x0, &(0x7f0000000000)="2cbd805c88d340ee696918dc6afb7b4fc919", 0x0, 0xef0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x9, 0x2}, 0x50)
1.929265795s ago: executing program 1 (id=922):
r0 = add_key$fscrypt_v1(&(0x7f0000000400), &(0x7f0000000440)={'fscrypt:', @desc4}, &(0x7f00000002c0)={0x0, "6035ae1e0fe721441700322225930e6c1e3e2a51a92fd796bc34d7cf6e0236805b4377f7ab1a9b01c103a4c6de6269613800", 0x3}, 0x6f, 0xfffffffffffffffd)
add_key$keyring(&(0x7f0000002d40), 0x0, 0x0, 0x0, r0)
1.852558101s ago: executing program 1 (id=924):
ioperm(0x4, 0x7cd, 0x1)
bpf$BPF_LINK_CREATE(0x8, &(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff, 0xa, 0x0, @val=@iter={&(0x7f0000000100)=@cgroup={0x6, 0xffffffffffffffff, 0x6}, 0x10}}, 0x20)
1.851736001s ago: executing program 0 (id=933):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x4c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0xd}, @NFTA_SET_DATA_TYPE={0x8, 0x6, 0x1, 0x0, 0xffffff00}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x8}]}, @NFT_MSG_NEWSETELEM={0x54, 0xc, 0xa, 0x101, 0x0, 0x0, {0x7}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x28, 0x3, 0x0, 0x1, [{0x24, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x9}, @NFTA_SET_ELEM_DATA={0x8, 0x2, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x14, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8}, @NFTA_VERDICT_CODE={0x8}]}]}]}]}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xe8}}, 0x0)
1.795361866s ago: executing program 1 (id=926):
syz_mount_image$squashfs(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', 0x0, &(0x7f00000002c0)={[{}]}, 0x1, 0x232, &(0x7f0000000000)="$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")
syz_usb_connect(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="120100006325a640402000207265970000010902240001000000000904000002214c6a0009050702000000da000905"], 0x0)
1.677608345s ago: executing program 0 (id=927):
syz_clone(0x42000000, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_clone(0x4c200, 0x0, 0x0, 0x0, 0x0, 0x0)
1.315966364s ago: executing program 3 (id=930):
r0 = openat$vimc1(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$VIDIOC_TRY_FMT(r0, 0xc0d05640, &(0x7f0000000400)={0x9, @pix_mp={0x57d5, 0x7, 0x0, 0x7, 0xb, [{0x8, 0x1}, {0xe51c, 0x3}, {0x2, 0x7fffffff}, {0x8000000, 0x1ff}, {0x1, 0x9}, {0x6, 0x4}, {0x7fffffff, 0x7}, {0xfb82, 0x9}], 0x9, 0x2, 0x3, 0x0, 0x2}})
1.106832221s ago: executing program 3 (id=932):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x6, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="18020000fcffffff00000000000000008500000041000000850000000800000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={r0, 0x0, 0x12, 0x0, &(0x7f0000000000)="2cbd805c88d340ee696918dc6afb7b4fc919", 0x0, 0xef0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x9, 0x2}, 0x50)
1.106729831s ago: executing program 2 (id=934):
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
sendmsg$inet_sctp(r0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=[@authinfo={0x18, 0x84, 0x6, {0x7}}], 0x18, 0x2400e044}, 0x0)
1.004147329s ago: executing program 2 (id=935):
syz_mount_image$hfs(&(0x7f0000000000), &(0x7f0000000400)='./file1\x00', 0x1200001, &(0x7f00000002c0)=ANY=[@ANYBLOB="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"], 0x42, 0x33c, &(0x7f0000001f80)="$eJzs3U9PE0EYBvBndrtlKwRXwJB4MiiJJwJ40HiRGOLFL+DBEBFKQlgxUUyUxIiejfFmYuLRm2ejX0Evxi+gJw7Gk16IB9fMu7PtbNndllJYGp5fYt125887nZ3tDKQMiOjYujb//d3Fbf1PeQBcAFcAB4APVACcxrj/cH2jbUFu40ghzql2pVlar2dl9WFyGIF+VsGQ/RodjCiKoh9tU/0+lFioPMoewRYHGDCjU877hx7ZwdiK23W8WD2sdrCDRxguMxwiIiqf+fx3zKfEkJm/Ow4waebh/f75n5rf7JQXx5HQ+Px34ueR0u/PSTml13urG2F9OV7C6d53klViVlmZ10TUfLuriK8sd9Caclm1ZJNYnNrKalif2pICnuOqYSUbk8dlJA0RedFW41QTGWvTAkVtLzYobfB0G2Zz4h8tqjFzAfzpJ15nV7fwpYOY1Gf1VS2oAG+w3Jj/VSKlu0l6KmgZKnH80/klSiuDOFWqlc3wT0klZ0wN+Pi+2cpa3vvqw9WxZNGlqNb5e5DE+aqanwsjSP9YIW7dTH7rJNcoUFGyarBzzTYS/c3MNdZaV23FC+tTS/fCvIu+tzJXdOqluqkm8AsfMG/N/x2dehL5IzM1ypWkNFdGYXsqkjKnH1NkaN7d08gkcT09XjvK8wJ3cBnDDx5vri2GYf1++QfJUOky+9kexxNfiOZy1K/o/6008PWBB6Bnlf6LoijzVAWH0QWeNPXS22aTN9cWlbnn7a8KfedsOTWXnxjAHADzSnJH6Kb2p41cA80C2+QKpK4/urflldQF6SUHSVRyKrl0D6Z3kqpSp1wMdDRSal1UeuPJ2mLY1Z2I+kyz0zF+q+xgqAx6vqDi9Z+1XpmWu45+CArWP176aW1XAqvEmZwV0Ig8nuhsBdcoNneeOJgctFlznbsAnG+p0UFS47PWYgMTJ47ibyX3/qsMNY9vuM2f/xMRERERERERERERERERERERERER9Zu9fhuhm68TpGvcPoZ/eIOIiIiIiIiIiIiIiIiIiIiIiIiIiIiIaH+s/X8BV3aMqWbt/1u0U5Nw4x1i/F7s/+t2sP+v2urnvciIjoT/AQAA//8TP1iR")
mount$nfs(&(0x7f00000001c0)='\xb2\x83\x87J9I\xc3i\xe4\x81\xc5:\xccLD\x9d\xd8\xc7\x90v\x8b\x82\x90\xa4\xdd\x98\xb8\rQh#\xfacl\x01\x8cC\x1f|\xa5\xcb\x8f\xe5WJ\x00>\xf2\xd6\t\xf4IE\xcb\x15A\xb5\xbbG\xa0\xea\xc4\x03\xf2\xf5\xf4\xa1\x98', &(0x7f0000000240)='./file0\x00', 0x0, 0x201008, 0x0)
1.001976749s ago: executing program 0 (id=936):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[@ANYBLOB="140000001000010007000000000000000000000a20000000000a03000000000000000000010000000900010073797a300000000048000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a3000000000080005400000001f0c00098008000140000000075c0000000e0a01020000000000000000010000000900020073797a32000000000900010073797a3000000000300003802c00008028000180230001"], 0xec}}, 0x0)
893.915558ms ago: executing program 3 (id=937):
r0 = socket$nl_crypto(0x10, 0x3, 0x15)
sendmsg$nl_crypto(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000300)=@alg={0xe0, 0x10, 0x1, 0x70bd25, 0x25dfdbff, {{'ansi_cprng\x00'}, '\x00', '\x00', 0xcc55df52893605f1, 0x400}}, 0xe0}, 0x1, 0x0, 0x0, 0x60000801}, 0x10)
787.464867ms ago: executing program 2 (id=938):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$KVM_CHECK_EXTENSION(r0, 0xae07, 0x23)
666.731377ms ago: executing program 0 (id=939):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000001240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)={0x64, 0x2, 0x6, 0x5, 0xa, 0x0, {}, [@IPSET_ATTR_TYPENAME={0x10, 0x3, 'bitmap:port\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_DATA={0x1c, 0x7, 0x0, 0x1, [@IPSET_ATTR_PORT={0x6}, @IPSET_ATTR_PORT_TO={0x6, 0x5, 0x1, 0x0, 0x8cff}, @IPSET_ATTR_CADT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x74}]}]}, 0x64}}, 0x0)
658.594677ms ago: executing program 3 (id=940):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000200)=@bridge_delneigh={0x1c, 0x1c, 0x1, 0x2000002, 0x25dfdbfd, {0x7, 0x0, 0x0, 0x0, 0x2, 0x0, 0x6}}, 0x1c}, 0x1, 0x0, 0x0, 0x20040051}, 0x40c0)
639.906149ms ago: executing program 2 (id=941):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$IP6T_SO_GET_REVISION_TARGET(r0, 0x29, 0x45, &(0x7f0000000000)={'IDLETIMER\x00'}, &(0x7f0000000040)=0x1e)
457.378533ms ago: executing program 0 (id=942):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)={0x38, 0x1403, 0x1, 0x70bd2c, 0x25dfdbfc, "", [{{0x9, 0x2, 'syz2\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'lo\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x44}, 0x810)
418.319997ms ago: executing program 3 (id=943):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x14, 0x4, 0x4, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000000)={r0, &(0x7f0000000140), &(0x7f0000000200)=""/221}, 0x20)
300.716266ms ago: executing program 2 (id=944):
r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000040), 0x8, 0x0)
preadv(r0, &(0x7f00000003c0)=[{&(0x7f0000000140)=""/119, 0x77}], 0x1, 0x7, 0x0)
9.53291ms ago: executing program 3 (id=945):
syz_clone(0x42000000, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_clone(0x4c200, 0x0, 0x0, 0x0, 0x0, 0x0)
125.78µs ago: executing program 0 (id=946):
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000008940)=[{{&(0x7f0000000140)={0xa, 0x4e24, 0x5c, @mcast2, 0x7}, 0x1c, 0x0, 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="f8000000000000002900000037"], 0xf8}}], 0x1, 0x40400e4)
0s ago: executing program 2 (id=947):
r0 = socket$phonet_pipe(0x23, 0x5, 0x2)
getsockname(r0, 0x0, &(0x7f00000001c0))
kernel console output (not intermixed with test programs):
Warning: Permanently added '10.128.0.223' (ED25519) to the list of known hosts.
[ 64.708906][ T5768] cgroup: Unknown subsys name 'net'
[ 64.843395][ T5768] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[ 66.231296][ T5768] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 67.699989][ T50] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 67.710557][ T5785] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 67.718932][ T50] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 67.718978][ T5785] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 67.727212][ T5792] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 67.735930][ T5785] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 67.747930][ T5785] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 67.756687][ T5785] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 67.758414][ T5792] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 67.765192][ T5785] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 67.779964][ T5785] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 67.783750][ T5793] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 67.788042][ T5785] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[ 67.795588][ T5792] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 67.802092][ T5785] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 67.809643][ T5793] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 67.815948][ T5785] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 67.823452][ T5792] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[ 67.838268][ T5792] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 67.858695][ T5785] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 67.867585][ T5785] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 67.877986][ T5788] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 67.904408][ T5785] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[ 67.913971][ T5785] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 68.235837][ T5780] chnl_net:caif_netlink_parms(): no params data found
[ 68.369234][ T5778] chnl_net:caif_netlink_parms(): no params data found
[ 68.484265][ T5780] bridge0: port 1(bridge_slave_0) entered blocking state
[ 68.491601][ T5780] bridge0: port 1(bridge_slave_0) entered disabled state
[ 68.499607][ T5780] bridge_slave_0: entered allmulticast mode
[ 68.506305][ T5780] bridge_slave_0: entered promiscuous mode
[ 68.518543][ T5779] chnl_net:caif_netlink_parms(): no params data found
[ 68.542977][ T5780] bridge0: port 2(bridge_slave_1) entered blocking state
[ 68.550632][ T5780] bridge0: port 2(bridge_slave_1) entered disabled state
[ 68.560635][ T5780] bridge_slave_1: entered allmulticast mode
[ 68.568115][ T5780] bridge_slave_1: entered promiscuous mode
[ 68.628991][ T5778] bridge0: port 1(bridge_slave_0) entered blocking state
[ 68.636191][ T5778] bridge0: port 1(bridge_slave_0) entered disabled state
[ 68.644618][ T5778] bridge_slave_0: entered allmulticast mode
[ 68.651648][ T5778] bridge_slave_0: entered promiscuous mode
[ 68.670182][ T5777] chnl_net:caif_netlink_parms(): no params data found
[ 68.687108][ T5778] bridge0: port 2(bridge_slave_1) entered blocking state
[ 68.694279][ T5778] bridge0: port 2(bridge_slave_1) entered disabled state
[ 68.701816][ T5778] bridge_slave_1: entered allmulticast mode
[ 68.709400][ T5778] bridge_slave_1: entered promiscuous mode
[ 68.718623][ T5780] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 68.730912][ T5780] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 68.824366][ T5780] team0: Port device team_slave_0 added
[ 68.848155][ T5778] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 68.862356][ T5780] team0: Port device team_slave_1 added
[ 68.871900][ T5779] bridge0: port 1(bridge_slave_0) entered blocking state
[ 68.880003][ T5779] bridge0: port 1(bridge_slave_0) entered disabled state
[ 68.887159][ T5779] bridge_slave_0: entered allmulticast mode
[ 68.894045][ T5779] bridge_slave_0: entered promiscuous mode
[ 68.902304][ T5779] bridge0: port 2(bridge_slave_1) entered blocking state
[ 68.909492][ T5779] bridge0: port 2(bridge_slave_1) entered disabled state
[ 68.916603][ T5779] bridge_slave_1: entered allmulticast mode
[ 68.923474][ T5779] bridge_slave_1: entered promiscuous mode
[ 68.931471][ T5778] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 69.028854][ T5778] team0: Port device team_slave_0 added
[ 69.035626][ T5780] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 69.043145][ T5780] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 69.069451][ T5780] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 69.082149][ T5777] bridge0: port 1(bridge_slave_0) entered blocking state
[ 69.089556][ T5777] bridge0: port 1(bridge_slave_0) entered disabled state
[ 69.096922][ T5777] bridge_slave_0: entered allmulticast mode
[ 69.104759][ T5777] bridge_slave_0: entered promiscuous mode
[ 69.113733][ T5779] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 69.126359][ T5779] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 69.136455][ T5778] team0: Port device team_slave_1 added
[ 69.142866][ T5780] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 69.150314][ T5780] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 69.176439][ T5780] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 69.200823][ T5777] bridge0: port 2(bridge_slave_1) entered blocking state
[ 69.208218][ T5777] bridge0: port 2(bridge_slave_1) entered disabled state
[ 69.215402][ T5777] bridge_slave_1: entered allmulticast mode
[ 69.222234][ T5777] bridge_slave_1: entered promiscuous mode
[ 69.292965][ T5778] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 69.300010][ T5778] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 69.326034][ T5778] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 69.347874][ T5779] team0: Port device team_slave_0 added
[ 69.360065][ T5780] hsr_slave_0: entered promiscuous mode
[ 69.366564][ T5780] hsr_slave_1: entered promiscuous mode
[ 69.382866][ T5778] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 69.390095][ T5778] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 69.416061][ T5778] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 69.443207][ T5779] team0: Port device team_slave_1 added
[ 69.476968][ T5777] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 69.504534][ T5779] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 69.511561][ T5779] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 69.537613][ T5779] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 69.550999][ T5779] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 69.558514][ T5779] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 69.584869][ T5779] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 69.598079][ T5777] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 69.617052][ T5778] hsr_slave_0: entered promiscuous mode
[ 69.623514][ T5778] hsr_slave_1: entered promiscuous mode
[ 69.629972][ T5778] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 69.637850][ T5778] Cannot create hsr debugfs directory
[ 69.708836][ T5777] team0: Port device team_slave_0 added
[ 69.742242][ T5777] team0: Port device team_slave_1 added
[ 69.751063][ T5779] hsr_slave_0: entered promiscuous mode
[ 69.757133][ T5779] hsr_slave_1: entered promiscuous mode
[ 69.763538][ T5779] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 69.773622][ T5779] Cannot create hsr debugfs directory
[ 69.827144][ T5777] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 69.836453][ T5777] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 69.864629][ T5777] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 69.883676][ T5777] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 69.890952][ T5777] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 69.898519][ T5790] Bluetooth: hci0: command tx timeout
[ 69.917299][ T5788] Bluetooth: hci2: command tx timeout
[ 69.917614][ T5785] Bluetooth: hci3: command tx timeout
[ 69.923933][ T5777] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 69.977621][ T5785] Bluetooth: hci1: command tx timeout
[ 70.113028][ T5777] hsr_slave_0: entered promiscuous mode
[ 70.120365][ T5777] hsr_slave_1: entered promiscuous mode
[ 70.126483][ T5777] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 70.134093][ T5777] Cannot create hsr debugfs directory
[ 70.269488][ T5780] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 70.293903][ T5780] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 70.303688][ T5780] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 70.330375][ T5780] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 70.420313][ T5778] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 70.433242][ T5778] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 70.443646][ T5778] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 70.462336][ T5778] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 70.538293][ T5779] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 70.576982][ T5779] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 70.587160][ T5779] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 70.628060][ T5779] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 70.647898][ T5777] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 70.659884][ T5777] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 70.679453][ T5777] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 70.690950][ T5777] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 70.770849][ T5780] 8021q: adding VLAN 0 to HW filter on device bond0
[ 70.834605][ T5780] 8021q: adding VLAN 0 to HW filter on device team0
[ 70.872199][ T3467] bridge0: port 1(bridge_slave_0) entered blocking state
[ 70.879613][ T3467] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 70.913009][ T58] bridge0: port 2(bridge_slave_1) entered blocking state
[ 70.920141][ T58] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 70.961271][ T5778] 8021q: adding VLAN 0 to HW filter on device bond0
[ 70.995639][ T5780] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 71.023132][ T5777] 8021q: adding VLAN 0 to HW filter on device bond0
[ 71.042051][ T5779] 8021q: adding VLAN 0 to HW filter on device bond0
[ 71.068747][ T5777] 8021q: adding VLAN 0 to HW filter on device team0
[ 71.082053][ T5778] 8021q: adding VLAN 0 to HW filter on device team0
[ 71.113047][ T1319] bridge0: port 1(bridge_slave_0) entered blocking state
[ 71.120280][ T1319] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 71.152517][ T1319] bridge0: port 1(bridge_slave_0) entered blocking state
[ 71.159800][ T1319] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 71.181132][ T5779] 8021q: adding VLAN 0 to HW filter on device team0
[ 71.199547][ T1319] bridge0: port 2(bridge_slave_1) entered blocking state
[ 71.206748][ T1319] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 71.221383][ T1319] bridge0: port 2(bridge_slave_1) entered blocking state
[ 71.228627][ T1319] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 71.263323][ T131] bridge0: port 1(bridge_slave_0) entered blocking state
[ 71.270469][ T131] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 71.331787][ T131] bridge0: port 2(bridge_slave_1) entered blocking state
[ 71.339118][ T131] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 71.350230][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[ 71.356740][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[ 71.445932][ T5779] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 71.464128][ T5778] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 71.544745][ T5780] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 71.692548][ T5780] veth0_vlan: entered promiscuous mode
[ 71.740186][ T5780] veth1_vlan: entered promiscuous mode
[ 71.863031][ T5780] veth0_macvtap: entered promiscuous mode
[ 71.926291][ T5780] veth1_macvtap: entered promiscuous mode
[ 71.976269][ T5780] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 71.983833][ T5785] Bluetooth: hci0: command tx timeout
[ 71.987742][ T5785] Bluetooth: hci3: command tx timeout
[ 71.992303][ T5790] Bluetooth: hci2: command tx timeout
[ 72.000190][ T5779] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 72.028190][ T5777] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 72.041394][ T5780] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 72.054258][ T5780] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 72.065159][ T5780] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 72.065314][ T5790] Bluetooth: hci1: command tx timeout
[ 72.075125][ T5780] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 72.088752][ T5780] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 72.123436][ T5778] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 72.205733][ T5779] veth0_vlan: entered promiscuous mode
[ 72.270386][ T3467] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 72.280904][ T3467] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 72.290200][ T5779] veth1_vlan: entered promiscuous mode
[ 72.330471][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 72.350906][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 72.375393][ T5777] veth0_vlan: entered promiscuous mode
[ 72.399634][ T5778] veth0_vlan: entered promiscuous mode
[ 72.443164][ T5777] veth1_vlan: entered promiscuous mode
[ 72.463998][ T5779] veth0_macvtap: entered promiscuous mode
[ 72.475257][ T5778] veth1_vlan: entered promiscuous mode
[ 72.524506][ T5779] veth1_macvtap: entered promiscuous mode
[ 72.595554][ T5779] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 72.616432][ T5779] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 72.631237][ T5779] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 72.641456][ T5777] veth0_macvtap: entered promiscuous mode
[ 72.672152][ T5777] veth1_macvtap: entered promiscuous mode
[ 72.685330][ T5779] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 72.699170][ T5779] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 72.714199][ T5779] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 72.735776][ T5778] veth0_macvtap: entered promiscuous mode
[ 72.752826][ T5779] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 72.765121][ T5779] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 72.775502][ T5779] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 72.786078][ T5779] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 72.810805][ T5778] veth1_macvtap: entered promiscuous mode
[ 72.863204][ T5777] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 72.875451][ T5777] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 72.907531][ T5777] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 72.927718][ T5777] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 72.953370][ T5777] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 72.995313][ T5777] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 73.006206][ T5777] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 73.021218][ T5777] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 73.047504][ T5777] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 73.069184][ T5777] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 73.081865][ T5778] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 73.094000][ T5778] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 73.105371][ T5778] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 73.115940][ T5778] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 73.125772][ T5778] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 73.137222][ T5778] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 73.150091][ T5778] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 73.176300][ T5778] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 73.207466][ T5778] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 73.227500][ T5778] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 73.244274][ T5778] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 73.256008][ T5778] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 73.281308][ T5778] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 73.292873][ T5778] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 73.368474][ T5777] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 73.384797][ T5777] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 73.394586][ T5777] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 73.405738][ T5777] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 73.444230][ T5778] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 73.467806][ T5778] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 73.476575][ T5778] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 73.485574][ T5778] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 73.504558][ T42] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 73.521598][ T42] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 73.652955][ T131] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 73.672758][ T131] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 73.694549][ T5881] syz.3.12[5881]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[ 73.770792][ T4819] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 73.785766][ T42] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 73.817867][ T42] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 73.819804][ T4819] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 73.978933][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 73.988153][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 74.058403][ T5790] Bluetooth: hci2: command tx timeout
[ 74.058443][ T5785] Bluetooth: hci3: command tx timeout
[ 74.064076][ T5790] Bluetooth: hci0: command tx timeout
[ 74.084565][ T4819] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 74.094682][ T4819] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 74.138366][ T5790] Bluetooth: hci1: command tx timeout
[ 74.743401][ T5881] loop3: detected capacity change from 0 to 32768
[ 74.799932][ T5881] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop3 scanned by syz.3.12 (5881)
[ 74.911228][ T5881] BTRFS info (device loop3): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[ 74.947442][ T5881] BTRFS info (device loop3): using xxhash64 (xxhash64-generic) checksum algorithm
[ 74.958046][ T5881] BTRFS info (device loop3): force zlib compression, level 3
[ 74.967026][ T5881] BTRFS info (device loop3): force clearing of disk cache
[ 75.015796][ T5881] BTRFS info (device loop3): setting nodatasum
[ 75.040109][ T5881] BTRFS info (device loop3): allowing degraded mounts
[ 75.070219][ T5881] BTRFS info (device loop3): enabling disk space caching
[ 75.093158][ T5881] BTRFS info (device loop3): disk space caching is enabled
[ 75.409351][ T5881] BTRFS info (device loop3): auto enabling async discard
[ 75.438649][ T5881] BTRFS info (device loop3): rebuilding free space tree
[ 75.457890][ T5928] netdevsim netdevsim2 netdevsim0: entered promiscuous mode
[ 75.523840][ T5928] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[ 75.563433][ T5881] BTRFS info (device loop3): disabling free space tree
[ 75.593163][ T5881] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[ 75.617503][ T5881] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[ 75.946855][ T5946] netlink: 8 bytes leftover after parsing attributes in process `syz.1.30'.
[ 76.028872][ T5780] BTRFS info (device loop3): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[ 76.145844][ T5790] Bluetooth: hci3: command tx timeout
[ 76.145872][ T5785] Bluetooth: hci2: command tx timeout
[ 76.151709][ T5790] Bluetooth: hci0: command tx timeout
[ 76.224003][ T5790] Bluetooth: hci1: command tx timeout
[ 76.870087][ T5969] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 76.913691][ T5969] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 77.254622][ T5981] netlink: 'syz.0.44': attribute type 1 has an invalid length.
[ 77.280649][ T5981] netlink: 'syz.0.44': attribute type 2 has an invalid length.
[ 77.576781][ T5993] netlink: 36 bytes leftover after parsing attributes in process `syz.2.50'.
[ 77.625521][ T5993] netlink: 16 bytes leftover after parsing attributes in process `syz.2.50'.
[ 77.642471][ T5994] loop0: detected capacity change from 0 to 1024
[ 77.750246][ T5998] loop1: detected capacity change from 0 to 512
[ 77.927822][ T5998] EXT4-fs (loop1): revision level too high, forcing read-only mode
[ 77.935818][ T5998] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8802c01c, mo2=0002]
[ 78.013359][ T11] hfsplus: b-tree write err: -5, ino 4
[ 78.050132][ T5998] EXT4-fs (loop1): orphan cleanup on readonly fs
[ 78.056649][ T5998] EXT4-fs error (device loop1): ext4_orphan_get:1399: inode #13: comm syz.1.51: iget: bad i_size value: 12154761577498
[ 78.196348][ T5998] EXT4-fs error (device loop1): ext4_orphan_get:1404: comm syz.1.51: couldn't read orphan inode 13 (err -117)
[ 78.281071][ T5998] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[ 78.360208][ T6015] loop3: detected capacity change from 0 to 64
[ 78.433094][ T5998] EXT4-fs warning (device loop1): dx_probe:893: inode #2: comm syz.1.51: dx entry: limit 65535 != root limit 120
[ 78.488433][ T5998] EXT4-fs warning (device loop1): dx_probe:966: inode #2: comm syz.1.51: Corrupt directory, running e2fsck is recommended
[ 78.695075][ T5777] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 78.859431][ T6022] loop2: detected capacity change from 0 to 4096
[ 78.965665][ T6030] loop1: detected capacity change from 0 to 256
[ 79.067919][ T6035] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 79.292900][ T6022] NILFS (loop2): nilfs_palloc_commit_free_entry (ino=6): entry number 15 already freed
[ 79.457190][ T6043] loop3: detected capacity change from 0 to 512
[ 79.484798][ T27] audit: type=1326 audit(1754938832.920:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6044 comm="syz.1.67" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc78478ebe9 code=0x7ffc0000
[ 79.492868][ T6043] EXT4-fs: Ignoring removed nobh option
[ 79.530567][ T6043] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[ 79.561836][ T27] audit: type=1326 audit(1754938832.920:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6044 comm="syz.1.67" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc78478ebe9 code=0x7ffc0000
[ 79.652104][ T6050] netlink: 'syz.1.71': attribute type 4 has an invalid length.
[ 79.666818][ T27] audit: type=1326 audit(1754938832.990:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6044 comm="syz.1.67" exe="/root/syz-executor" sig=0 arch=c000003e syscall=135 compat=0 ip=0x7fc78478ebe9 code=0x7ffc0000
[ 79.671772][ T6050] netlink: 152 bytes leftover after parsing attributes in process `syz.1.71'.
[ 79.757393][ T27] audit: type=1326 audit(1754938832.990:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6044 comm="syz.1.67" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc78478ebe9 code=0x7ffc0000
[ 79.785421][ T6043] EXT4-fs error (device loop3): ext4_do_update_inode:5230: inode #3: comm syz.3.68: corrupted inode contents
[ 79.821842][ T27] audit: type=1326 audit(1754938832.990:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6044 comm="syz.1.67" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc78478ebe9 code=0x7ffc0000
[ 79.830529][ T6050] �`: renamed from bond0 (while UP)
[ 79.860956][ T6043] EXT4-fs error (device loop3): ext4_dirty_inode:6106: inode #3: comm syz.3.68: mark_inode_dirty error
[ 79.906060][ T6043] EXT4-fs error (device loop3): ext4_do_update_inode:5230: inode #3: comm syz.3.68: corrupted inode contents
[ 79.971282][ T6043] EXT4-fs error (device loop3): __ext4_ext_dirty:202: inode #3: comm syz.3.68: mark_inode_dirty error
[ 80.037205][ T6043] Quota error (device loop3): write_blk: dquota write failed
[ 80.082257][ T6043] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[ 80.093007][ T6043] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.68: Failed to acquire dquot type 0
[ 80.113331][ T6043] EXT4-fs error (device loop3): ext4_do_update_inode:5230: inode #16: comm syz.3.68: corrupted inode contents
[ 80.132446][ T6043] EXT4-fs error (device loop3): ext4_dirty_inode:6106: inode #16: comm syz.3.68: mark_inode_dirty error
[ 80.148252][ T6043] EXT4-fs error (device loop3): ext4_do_update_inode:5230: inode #16: comm syz.3.68: corrupted inode contents
[ 80.176007][ T6043] EXT4-fs error (device loop3): __ext4_ext_dirty:202: inode #16: comm syz.3.68: mark_inode_dirty error
[ 80.227133][ T6043] EXT4-fs error (device loop3): ext4_do_update_inode:5230: inode #16: comm syz.3.68: corrupted inode contents
[ 80.284719][ T6043] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[ 80.320474][ T6043] EXT4-fs error (device loop3): ext4_do_update_inode:5230: inode #16: comm syz.3.68: corrupted inode contents
[ 80.337903][ T23] usb 3-1: new full-speed USB device number 2 using dummy_hcd
[ 80.349627][ T6043] EXT4-fs error (device loop3): ext4_truncate:4288: inode #16: comm syz.3.68: mark_inode_dirty error
[ 80.384176][ T6043] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[ 80.425641][ T6043] EXT4-fs (loop3): 1 truncate cleaned up
[ 80.438685][ T6043] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 80.467466][ T6043] ext4 filesystem being mounted at /17/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 80.542485][ T23] usb 3-1: New USB device found, idVendor=055f, idProduct=c420, bcdDevice=6a.33
[ 80.562411][ T23] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 80.607787][ T5880] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[ 80.630821][ T23] usb 3-1: config 0 descriptor??
[ 80.633203][ T6078] netlink: 'syz.0.77': attribute type 3 has an invalid length.
[ 80.662950][ T23] gspca_main: sunplus-2.14.0 probing 055f:c420
[ 80.676066][ T6078] netlink: 16 bytes leftover after parsing attributes in process `syz.0.77'.
[ 80.718970][ T5780] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 80.802391][ T5880] usb 2-1: Using ep0 maxpacket: 8
[ 80.838894][ T5880] usb 2-1: config 179 has an invalid interface number: 65 but max is 0
[ 80.847224][ T5880] usb 2-1: config 179 has no interface number 0
[ 80.898567][ T5880] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[ 80.937454][ T5880] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[ 80.964010][ T6084] netlink: 'syz.3.78': attribute type 1 has an invalid length.
[ 80.966056][ T5880] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[ 81.011280][ T5880] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[ 81.032978][ T5880] usb 2-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[ 81.064101][ T23] gspca_sunplus: reg_w_riv err -71
[ 81.064520][ T5880] usb 2-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[ 81.082578][ T23] sunplus: probe of 3-1:0.0 failed with error -71
[ 81.109504][ T23] usb 3-1: USB disconnect, device number 2
[ 81.130380][ T5880] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 81.170325][ T6071] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[ 81.404039][ T6092] loop3: detected capacity change from 0 to 4096
[ 81.574670][ T6092] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[ 81.606943][ T8] cfg80211: failed to load regulatory.db
[ 81.620068][ T6092] ntfs3: loop3: Failed to initialize $Extend/$ObjId.
[ 81.801587][ T6092] ntfs3: loop3: ino=1e, "file1" attr_set_size
[ 81.929564][ T6101] netlink: 16 bytes leftover after parsing attributes in process `syz.2.84'.
[ 82.199753][ T28] usb 2-1: USB disconnect, device number 2
[ 82.199799][ C0] xpad 2-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[ 82.214217][ C0] xpad 2-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[ 82.268278][ T6105] netlink: 20 bytes leftover after parsing attributes in process `syz.0.86'.
[ 82.345687][ T6109] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[ 82.428660][ T6113] loop3: detected capacity change from 0 to 8
[ 82.464881][ T6113] SQUASHFS error: Corrupted symlink
[ 82.671864][ T6118] Illegal XDP return value 4294967274 on prog (id 5) dev N/A, expect packet loss!
[ 83.127703][ T6131] netlink: 8 bytes leftover after parsing attributes in process `syz.1.98'.
[ 83.367559][ T6141] netlink: 8 bytes leftover after parsing attributes in process `syz.1.103'.
[ 83.391683][ T6141] netlink: 8 bytes leftover after parsing attributes in process `syz.1.103'.
[ 84.028597][ T6160] x_tables: duplicate underflow at hook 2
[ 84.107496][ T23] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[ 84.299877][ T23] usb 1-1: config 0 has an invalid interface number: 216 but max is 0
[ 84.328695][ T23] usb 1-1: config 0 has no interface number 0
[ 84.328790][ T6168] netlink: 'syz.3.115': attribute type 21 has an invalid length.
[ 84.335914][ T23] usb 1-1: config 0 interface 216 altsetting 4 bulk endpoint 0x8F has invalid maxpacket 64
[ 84.353980][ T23] usb 1-1: config 0 interface 216 altsetting 4 endpoint 0x1 has invalid wMaxPacketSize 0
[ 84.365602][ T23] usb 1-1: config 0 interface 216 has no altsetting 0
[ 84.373222][ T23] usb 1-1: New USB device found, idVendor=1286, idProduct=2046, bcdDevice=c1.2e
[ 84.383496][ T6168] netlink: 132 bytes leftover after parsing attributes in process `syz.3.115'.
[ 84.394761][ T23] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 84.460785][ T23] usb 1-1: config 0 descriptor??
[ 84.488569][ T6155] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[ 84.497529][ T23] usb 1-1: NFC: intf ffff88805c492000 id ffffffff8d63c280
[ 84.788860][ T28] usb 1-1: USB disconnect, device number 2
[ 84.937445][ T23] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[ 85.129985][ T23] usb 2-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[ 85.139915][ T6176] loop3: detected capacity change from 0 to 32768
[ 85.140496][ T23] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 85.156837][ T6176] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop3 scanned by syz.3.121 (6176)
[ 85.176647][ T23] usb 2-1: config 0 descriptor??
[ 85.204707][ T23] cp210x 2-1:0.0: cp210x converter detected
[ 85.212961][ T6176] BTRFS info (device loop3): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[ 85.258362][ T6176] BTRFS info (device loop3): using xxhash64 (xxhash64-generic) checksum algorithm
[ 85.274974][ T6176] BTRFS info (device loop3): force zlib compression, level 3
[ 85.283148][ T6176] BTRFS info (device loop3): force clearing of disk cache
[ 85.308495][ T6176] BTRFS info (device loop3): setting nodatasum
[ 85.317720][ T6176] BTRFS info (device loop3): allowing degraded mounts
[ 85.324555][ T6176] BTRFS info (device loop3): enabling disk space caching
[ 85.334444][ T6176] BTRFS info (device loop3): disk space caching is enabled
[ 85.475009][ T23] usb 2-1: cp210x converter now attached to ttyUSB0
[ 85.536660][ T6176] BTRFS info (device loop3): auto enabling async discard
[ 85.590761][ T6176] BTRFS info (device loop3): rebuilding free space tree
[ 85.669239][ T6176] BTRFS info (device loop3): disabling free space tree
[ 85.676243][ T6176] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[ 85.717689][ T5880] usb 2-1: USB disconnect, device number 3
[ 85.742471][ T6176] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[ 85.765498][ T5880] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[ 85.805110][ T5880] cp210x 2-1:0.0: device disconnected
[ 86.034333][ T5780] BTRFS info (device loop3): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[ 86.154766][ T6223] loop0: detected capacity change from 0 to 256
[ 86.588202][ T23] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[ 86.826432][ T23] usb 4-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.00
[ 86.855933][ T23] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 86.879040][ T23] usb 4-1: Product: syz
[ 86.884743][ T23] usb 4-1: Manufacturer: syz
[ 86.897574][ T23] usb 4-1: SerialNumber: syz
[ 86.925765][ T23] usb 4-1: config 0 descriptor??
[ 87.185286][ T23] hso 4-1:0.0: Failed to find BULK IN ep
[ 87.235673][ T23] usb-storage 4-1:0.0: USB Mass Storage device detected
[ 87.456353][ T23] usb 4-1: USB disconnect, device number 2
[ 87.758162][ T6270] Cannot find map_set index 0 as target
[ 87.968196][ T6278] xt_l2tp: wrong L2TP version: 0
[ 89.056786][ T6316] capability: warning: `syz.2.180' uses deprecated v2 capabilities in a way that may be insecure
[ 89.135836][ T6319] loop1: detected capacity change from 0 to 256
[ 89.148654][ T6319] exfat: Deprecated parameter 'utf8'
[ 89.150120][ T6320] netlink: 20 bytes leftover after parsing attributes in process `syz.3.182'.
[ 89.241383][ T6319] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xc61f63e4, utbl_chksum : 0xe619d30d)
[ 89.279647][ T6324] loop2: detected capacity change from 0 to 8
[ 89.367868][ T6324] process 'syz.2.184' launched './file1' with NULL argv: empty string added
[ 89.400765][ T6324] SQUASHFS error: Failed to read block 0x4de: -5
[ 89.408174][ T6324] SQUASHFS error: Failed to read block 0x4de: -5
[ 89.418209][ T6324] SQUASHFS error: Failed to read block 0x4de: -5
[ 89.424792][ T6324] SQUASHFS error: Failed to read block 0x4de: -5
[ 89.439955][ T6324] SQUASHFS error: Failed to read block 0x4de: -5
[ 89.476173][ T6328] Cannot find add_set index 0 as target
[ 89.602242][ T6330] loop1: detected capacity change from 0 to 64
[ 90.526474][ T6368] loop2: detected capacity change from 0 to 512
[ 90.546155][ T6368] EXT4-fs: Ignoring removed orlov option
[ 90.566241][ T6368] EXT4-fs (loop2): orphan cleanup on readonly fs
[ 90.577777][ T6368] EXT4-fs error (device loop2): ext4_find_extent:900: inode #4: comm syz.2.206: inode has invalid extent depth: 7
[ 90.613238][ T6368] Quota error (device loop2): v2_read_header: Failed header read: expected=8 got=-117
[ 90.619998][ T6364] loop3: detected capacity change from 0 to 8192
[ 90.670542][ T6364] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 90.697745][ T6368] EXT4-fs warning (device loop2): ext4_enable_quotas:7173: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[ 90.729113][ T6364] REISERFS (device loop3): found reiserfs format "3.5" with non-standard journal
[ 90.795987][ T6368] EXT4-fs (loop2): Cannot turn on quotas: error -22
[ 90.808352][ T6364] REISERFS (device loop3): using ordered data mode
[ 90.815374][ T6364] reiserfs: using flush barriers
[ 90.838740][ T6368] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 90.872886][ T6364] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 90.931599][ T6368] EXT4-fs error (device loop2): ext4_lookup:1855: inode #2: comm syz.2.206: 'file0' linked to parent dir
[ 90.958170][ T6364] REISERFS (device loop3): checking transaction log (loop3)
[ 90.981883][ T6380] loop1: detected capacity change from 0 to 2048
[ 90.999709][ T6364] REISERFS (device loop3): Using r5 hash to sort names
[ 91.017087][ T6380] =======================================================
[ 91.017087][ T6380] WARNING: The mand mount option has been deprecated and
[ 91.017087][ T6380] and is ignored by this kernel. Remove the mand
[ 91.017087][ T6380] option from the mount to silence this warning.
[ 91.017087][ T6380] =======================================================
[ 91.033136][ T6364] REISERFS (device loop3): Created .reiserfs_priv - reserved for xattr storage.
[ 91.081213][ T5778] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 91.141441][ T6380] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024)
[ 91.252220][ T6383] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 91.264403][ T6380] syz.1.210: attempt to access beyond end of device
[ 91.264403][ T6380] loop1: rw=524288, sector=33554430, nr_sectors = 2 limit=2048
[ 91.456942][ T6380] NILFS error (device loop1): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[ 91.525692][ T6380] Remounting filesystem read-only
[ 91.548817][ T6380] NILFS error (device loop1): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[ 91.589861][ T6380] NILFS error (device loop1): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[ 91.654307][ T27] audit: type=1800 audit(1754938845.090:7): pid=6380 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.210" name="file2" dev="loop1" ino=16 res=0 errno=0
[ 91.731973][ T6380] syz.1.210 (6380) used greatest stack depth: 19408 bytes left
[ 91.760314][ T6397] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[ 92.294357][ T6417] loop0: detected capacity change from 0 to 1764
[ 92.652613][ T6430] netlink: 'syz.2.235': attribute type 9 has an invalid length.
[ 92.667780][ T28] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[ 92.886790][ T28] usb 2-1: New USB device found, idVendor=2c42, idProduct=16f8, bcdDevice=30.20
[ 92.901781][ T28] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 92.927395][ T28] usb 2-1: Product: syz
[ 92.938556][ T28] usb 2-1: Manufacturer: syz
[ 92.947686][ T28] usb 2-1: SerialNumber: syz
[ 92.959939][ T28] usb 2-1: config 0 descriptor??
[ 93.438072][ T9] usb 2-1: USB disconnect, device number 4
[ 93.468410][ T9] f81534a_ctrl 2-1:0.0: failed to set register 0x116: -19
[ 93.486229][ T9] f81534a_ctrl 2-1:0.0: failed to enable ports: -19
[ 93.760142][ T6464] netlink: 40 bytes leftover after parsing attributes in process `syz.2.251'.
[ 93.776987][ T6464] (unnamed net_device) (uninitialized): Removing last arp target with arp_interval on
[ 94.534686][ T6492] netlink: 132 bytes leftover after parsing attributes in process `syz.0.266'.
[ 94.939743][ T6500] loop2: detected capacity change from 0 to 4096
[ 94.961671][ T6500] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512).
[ 95.475570][ T6518] loop2: detected capacity change from 0 to 16
[ 95.510805][ T6518] erofs: (device loop2): mounted with root inode @ nid 36.
[ 96.087131][ T27] audit: type=1326 audit(1754938849.520:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6528 comm="syz.3.285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a4298ebe9 code=0x7ffc0000
[ 96.146456][ T27] audit: type=1326 audit(1754938849.520:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6528 comm="syz.3.285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a4298ebe9 code=0x7ffc0000
[ 96.207349][ T27] audit: type=1326 audit(1754938849.570:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6528 comm="syz.3.285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=22 compat=0 ip=0x7f3a4298ebe9 code=0x7ffc0000
[ 96.275435][ T27] audit: type=1326 audit(1754938849.570:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6528 comm="syz.3.285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a4298ebe9 code=0x7ffc0000
[ 96.335650][ T27] audit: type=1326 audit(1754938849.570:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6528 comm="syz.3.285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a4298ebe9 code=0x7ffc0000
[ 96.507933][ T6537] netlink: 16 bytes leftover after parsing attributes in process `syz.0.288'.
[ 96.864630][ T6525] loop2: detected capacity change from 0 to 32768
[ 96.972065][ T6525]
[ 96.972065][ T6525] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 96.972065][ T6525]
[ 97.177413][ T6525]
[ 97.177413][ T6525] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 97.177413][ T6525]
[ 97.322264][ T5778]
[ 97.322264][ T5778] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 97.322264][ T5778]
[ 97.358948][ T5778]
[ 97.358948][ T5778] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 97.358948][ T5778]
[ 97.851257][ T6553] loop0: detected capacity change from 0 to 32768
[ 97.896911][ T6553] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop0 scanned by syz.0.294 (6553)
[ 97.945797][ T6553] BTRFS info (device loop0): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[ 97.972253][ T6553] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm
[ 97.988560][ T6553] BTRFS info (device loop0): force zlib compression, level 3
[ 97.996526][ T6553] BTRFS info (device loop0): force clearing of disk cache
[ 98.010641][ T6553] BTRFS info (device loop0): setting nodatasum
[ 98.017034][ T6553] BTRFS info (device loop0): allowing degraded mounts
[ 98.026529][ T6553] BTRFS info (device loop0): enabling disk space caching
[ 98.047456][ T6553] BTRFS info (device loop0): disk space caching is enabled
[ 98.287392][ T6553] BTRFS info (device loop0): auto enabling async discard
[ 98.329354][ T6553] BTRFS info (device loop0): rebuilding free space tree
[ 98.362191][ T6553] BTRFS info (device loop0): disabling free space tree
[ 98.386489][ T6553] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[ 98.417686][ T6553] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[ 98.648038][ T6590] loop1: detected capacity change from 0 to 1024
[ 98.671748][ T6590] hfsplus: write access to a journaled filesystem is not supported, use the force option at your own risk, mounting read-only.
[ 98.734619][ T5779] BTRFS info (device loop0): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[ 98.832312][ T6590] hfsplus: filesystem is marked journaled, leaving read-only.
[ 98.929940][ T6093] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 11 /dev/loop0 scanned by udevd (6093)
[ 99.227529][ T6604] netlink: 12 bytes leftover after parsing attributes in process `syz.3.310'.
[ 99.236463][ T6604] netlink: 8 bytes leftover after parsing attributes in process `syz.3.310'.
[ 100.447559][ T27] audit: type=1326 audit(1754938853.890:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6644 comm="syz.3.331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a4298ebe9 code=0x7ffc0000
[ 100.497437][ T27] audit: type=1326 audit(1754938853.890:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6644 comm="syz.3.331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a4298ebe9 code=0x7ffc0000
[ 100.566483][ T27] audit: type=1326 audit(1754938853.950:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6644 comm="syz.3.331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=440 compat=0 ip=0x7f3a4298ebe9 code=0x7ffc0000
[ 100.602887][ T27] audit: type=1326 audit(1754938853.950:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6644 comm="syz.3.331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a4298ebe9 code=0x7ffc0000
[ 100.657143][ T27] audit: type=1326 audit(1754938853.950:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6644 comm="syz.3.331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a4298ebe9 code=0x7ffc0000
[ 101.061985][ T6665] loop1: detected capacity change from 0 to 256
[ 101.071290][ T6667] netlink: 'syz.2.341': attribute type 9 has an invalid length.
[ 101.087072][ T6667] netlink: 209836 bytes leftover after parsing attributes in process `syz.2.341'.
[ 101.920650][ T6695] loop2: detected capacity change from 0 to 128
[ 102.003110][ T27] audit: type=1800 audit(1754938855.440:18): pid=6695 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.355" name="file2" dev="loop2" ino=1048597 res=0 errno=0
[ 102.359868][ T6712] comedi comedi0: pcl711: a I/O base address must be specified
[ 102.399621][ T6714] netlink: 199836 bytes leftover after parsing attributes in process `syz.0.364'.
[ 102.617720][ T28] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[ 102.694146][ T6724] netlink: 'syz.3.369': attribute type 21 has an invalid length.
[ 102.716777][ T6724] netlink: 128 bytes leftover after parsing attributes in process `syz.3.369'.
[ 102.731118][ T6724] netlink: 'syz.3.369': attribute type 5 has an invalid length.
[ 102.744770][ T6724] netlink: 'syz.3.369': attribute type 6 has an invalid length.
[ 102.753048][ T6724] netlink: 3 bytes leftover after parsing attributes in process `syz.3.369'.
[ 102.817427][ T28] usb 3-1: Using ep0 maxpacket: 8
[ 102.841691][ T28] usb 3-1: config 0 has an invalid interface number: 56 but max is 0
[ 102.850645][ T28] usb 3-1: config 0 has no interface number 0
[ 102.868784][ T28] usb 3-1: New USB device found, idVendor=0c72, idProduct=0014, bcdDevice=c7.76
[ 102.893302][ T28] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 102.931119][ T28] usb 3-1: Product: syz
[ 102.935361][ T28] usb 3-1: Manufacturer: syz
[ 102.956103][ T28] usb 3-1: SerialNumber: syz
[ 102.976728][ T28] usb 3-1: config 0 descriptor??
[ 103.020426][ T6736] ERROR: device name not specified.
[ 103.102153][ T6740] loop3: detected capacity change from 0 to 1024
[ 103.134506][ T6740] hfsplus: write access to a journaled filesystem is not supported, use the force option at your own risk, mounting read-only.
[ 103.226374][ T6740] hfsplus: filesystem is marked journaled, leaving read-only.
[ 103.232332][ T28] peak_usb 3-1:0.56: PEAK-System PCAN-USB X6 v134 fw v24.0.0 (2 channels)
[ 103.444769][ T28] peak_usb 3-1:0.56 can0: unable to request usb[type=2 value=5] err=-71
[ 103.478034][ T28] peak_usb 3-1:0.56: unable to tell PCAN-USB X6 driver is loaded (err -71)
[ 103.583347][ T28] peak_usb: probe of 3-1:0.56 failed with error -71
[ 103.623936][ T28] usb 3-1: USB disconnect, device number 3
[ 104.073422][ T6768] usb usb8: usbfs: process 6768 (syz.1.398) did not claim interface 0 before use
[ 104.337483][ T8] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[ 104.471759][ T6781] netlink: 20 bytes leftover after parsing attributes in process `syz.2.397'.
[ 104.537347][ T8] usb 4-1: Using ep0 maxpacket: 8
[ 104.555285][ T8] usb 4-1: config 179 has an invalid interface number: 65 but max is 0
[ 104.570692][ T8] usb 4-1: config 179 has no interface number 0
[ 104.594440][ T8] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[ 104.637594][ T8] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[ 104.666835][ T8] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[ 104.687779][ T8] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[ 104.716382][ T8] usb 4-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[ 104.757367][ T8] usb 4-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[ 104.792148][ T8] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 104.829129][ T6766] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 105.387540][ T28] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[ 105.419517][ T27] audit: type=1326 audit(1754938858.860:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6803 comm="syz.2.409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21abb8ebe9 code=0x7ffc0000
[ 105.456547][ T27] audit: type=1326 audit(1754938858.860:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6803 comm="syz.2.409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21abb8ebe9 code=0x7ffc0000
[ 105.527662][ T27] audit: type=1326 audit(1754938858.880:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6803 comm="syz.2.409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=26 compat=0 ip=0x7f21abb8ebe9 code=0x7ffc0000
[ 105.577834][ T28] usb 1-1: Using ep0 maxpacket: 8
[ 105.580294][ T28] usb 1-1: config 0 has an invalid interface number: 56 but max is 0
[ 105.580332][ T28] usb 1-1: config 0 has no interface number 0
[ 105.583096][ T28] usb 1-1: New USB device found, idVendor=0c72, idProduct=0014, bcdDevice=c7.76
[ 105.583125][ T28] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 105.583146][ T28] usb 1-1: Product: syz
[ 105.583163][ T28] usb 1-1: Manufacturer: syz
[ 105.583179][ T28] usb 1-1: SerialNumber: syz
[ 105.586014][ T28] usb 1-1: config 0 descriptor??
[ 105.624194][ T27] audit: type=1326 audit(1754938858.880:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6803 comm="syz.2.409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21abb8ebe9 code=0x7ffc0000
[ 105.624245][ T27] audit: type=1326 audit(1754938858.880:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6803 comm="syz.2.409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21abb8ebe9 code=0x7ffc0000
[ 105.673115][ T5880] usb 4-1: USB disconnect, device number 3
[ 105.673180][ C0] xpad 4-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[ 105.673228][ C0] xpad 4-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[ 105.849404][ T28] peak_usb 1-1:0.56: PEAK-System PCAN-USB X6 v134 fw v24.0.0 (2 channels)
[ 105.883081][ T6810] loop2: detected capacity change from 0 to 2048
[ 105.903967][ T6810] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024)
[ 105.936395][ T6813] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 105.948037][ T6810] syz.2.412: attempt to access beyond end of device
[ 105.948037][ T6810] loop2: rw=524288, sector=33554430, nr_sectors = 2 limit=2048
[ 106.051552][ T28] peak_usb 1-1:0.56 can0: unable to request usb[type=2 value=5] err=-71
[ 106.083142][ T6810] NILFS error (device loop2): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[ 106.093144][ T28] peak_usb 1-1:0.56: unable to tell PCAN-USB X6 driver is loaded (err -71)
[ 106.109732][ T6810] Remounting filesystem read-only
[ 106.115360][ T6810] NILFS error (device loop2): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[ 106.137746][ T6810] NILFS error (device loop2): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[ 106.148282][ T27] audit: type=1800 audit(1754938859.590:24): pid=6810 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.412" name="file2" dev="loop2" ino=16 res=0 errno=0
[ 106.149035][ T28] peak_usb: probe of 1-1:0.56 failed with error -71
[ 106.167700][ C1] vkms_vblank_simulate: vblank timer overrun
[ 106.250665][ T28] usb 1-1: USB disconnect, device number 3
[ 106.773144][ T6831] loop1: detected capacity change from 0 to 4096
[ 106.808315][ T6836] netlink: 'syz.2.423': attribute type 15 has an invalid length.
[ 106.870629][ T6831] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 107.022277][ T6831] EXT4-fs error (device loop1): ext4_do_update_inode:5230: inode #15: comm syz.1.422: corrupted inode contents
[ 107.034443][ T6843] netlink: 4 bytes leftover after parsing attributes in process `syz.2.426'.
[ 107.043383][ T6840] loop3: detected capacity change from 0 to 2048
[ 107.086271][ T6840] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024)
[ 107.108282][ T6831] EXT4-fs error (device loop1): ext4_dirty_inode:6106: inode #15: comm syz.1.422: mark_inode_dirty error
[ 107.169350][ T6831] EXT4-fs error (device loop1): ext4_do_update_inode:5230: inode #15: comm syz.1.422: corrupted inode contents
[ 107.187720][ T6845] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 107.188432][ T6840] syz.3.425: attempt to access beyond end of device
[ 107.188432][ T6840] loop3: rw=524288, sector=33554430, nr_sectors = 2 limit=2048
[ 107.248967][ T6831] EXT4-fs error (device loop1): __ext4_ext_dirty:202: inode #15: comm syz.1.422: mark_inode_dirty error
[ 107.292108][ T6847] netlink: 'syz.0.428': attribute type 9 has an invalid length.
[ 107.327970][ T6831] EXT4-fs error (device loop1): ext4_do_update_inode:5230: inode #15: comm syz.1.422: corrupted inode contents
[ 107.375396][ T6831] EXT4-fs error (device loop1): __ext4_ext_dirty:202: inode #15: comm syz.1.422: mark_inode_dirty error
[ 107.429205][ T6840] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[ 107.445602][ T6831] EXT4-fs error (device loop1): ext4_do_update_inode:5230: inode #15: comm syz.1.422: corrupted inode contents
[ 107.451496][ T6840] Remounting filesystem read-only
[ 107.469174][ T6840] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[ 107.472701][ T6831] EXT4-fs error (device loop1): ext4_truncate:4288: inode #15: comm syz.1.422: mark_inode_dirty error
[ 107.496638][ T6831] EXT4-fs error (device loop1) in ext4_setattr:5645: Corrupt filesystem
[ 107.508671][ T6840] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[ 107.527749][ T6852] netlink: 344 bytes leftover after parsing attributes in process `syz.2.430'.
[ 107.552195][ T27] audit: type=1800 audit(1754938860.980:25): pid=6840 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.425" name="file2" dev="loop3" ino=16 res=0 errno=0
[ 107.637689][ T5777] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 107.685451][ T6840] syz.3.425 (6840) used greatest stack depth: 18120 bytes left
[ 108.051031][ T6861] loop0: detected capacity change from 0 to 4096
[ 108.282897][ T6875] netlink: 'syz.3.440': attribute type 9 has an invalid length.
[ 108.470884][ T6879] comedi comedi2: dt2814: I/O port conflict (0x8,2)
[ 108.829306][ T6889] netlink: 20 bytes leftover after parsing attributes in process `syz.1.447'.
[ 108.985454][ T6897] exFAT-fs (nullb0): mounting with "discard" option, but the device does not support discard
[ 108.987105][ T6897] exFAT-fs (nullb0): invalid boot record signature
[ 108.987118][ T6897] exFAT-fs (nullb0): failed to read boot sector
[ 108.987128][ T6897] exFAT-fs (nullb0): failed to recognize exfat type
[ 109.354120][ T6909] netlink: 'syz.1.454': attribute type 9 has an invalid length.
[ 110.003504][ T6927] netlink: 4 bytes leftover after parsing attributes in process `syz.3.465'.
[ 110.910814][ T6954] netlink: 344 bytes leftover after parsing attributes in process `syz.0.477'.
[ 111.482780][ T6967] loop2: detected capacity change from 0 to 1024
[ 112.551899][ T7000] loop2: detected capacity change from 0 to 256
[ 112.583657][ T6999] loop0: detected capacity change from 0 to 764
[ 112.619848][ T7000] FAT-fs (loop2): error, fat_free: invalid cluster chain (i_pos 196)
[ 112.650836][ T7000] FAT-fs (loop2): Filesystem has been set read-only
[ 112.698622][ T6999] Symlink component flag not implemented
[ 112.726196][ T6999] Symlink component flag not implemented
[ 112.744834][ T6999] Symlink component flag not implemented (128)
[ 112.763760][ T6999] Symlink component flag not implemented (122)
[ 112.811380][ T5778] FAT-fs (loop2): error, fat_free: invalid cluster chain (i_pos 196)
[ 113.939325][ T8] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[ 113.971809][ T7033] loop2: detected capacity change from 0 to 4096
[ 114.140273][ T8] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 114.161624][ T8] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 2
[ 114.187597][ T8] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[ 114.235334][ T8] usb 1-1: New USB device found, idVendor=8086, idProduct=0b5b, bcdDevice=e1.c5
[ 114.254777][ T8] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 114.283719][ T8] usb 1-1: Product: syz
[ 114.293589][ T8] usb 1-1: Manufacturer: syz
[ 114.303972][ T8] usb 1-1: SerialNumber: syz
[ 114.325655][ T8] usb 1-1: config 0 descriptor??
[ 114.334266][ T7043] raw_sendmsg: syz.3.520 forgot to set AF_INET. Fix it!
[ 114.632873][ T5831] usb 1-1: USB disconnect, device number 4
[ 115.105801][ T7065] netlink: 28 bytes leftover after parsing attributes in process `syz.3.531'.
[ 115.312852][ T7069] netlink: 'syz.1.533': attribute type 1 has an invalid length.
[ 115.520607][ T7077] loop0: detected capacity change from 0 to 256
[ 115.570031][ T7080] IPVS: length: 250 != 8
[ 115.588209][ T7077] FAT-fs (loop0): error, fat_free: invalid cluster chain (i_pos 196)
[ 115.608008][ T7077] FAT-fs (loop0): Filesystem has been set read-only
[ 115.730896][ T5779] FAT-fs (loop0): error, fat_free: invalid cluster chain (i_pos 196)
[ 115.883571][ T7088] loop1: detected capacity change from 0 to 512
[ 115.900251][ T7088] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[ 115.998676][ T7088] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[ 116.003099][ T7089] loop0: detected capacity change from 0 to 4096
[ 116.093911][ T7088] ext4 filesystem being mounted at /122/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 116.149190][ T7095] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 116.387137][ T5777] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[ 116.491941][ T7099] loop2: detected capacity change from 0 to 4096
[ 116.552390][ T7099] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 116.619180][ T7106] loop3: detected capacity change from 0 to 256
[ 116.813533][ T7099] EXT4-fs error (device loop2): ext4_do_update_inode:5230: inode #15: comm syz.2.547: corrupted inode contents
[ 116.893217][ T7099] EXT4-fs error (device loop2): ext4_dirty_inode:6106: inode #15: comm syz.2.547: mark_inode_dirty error
[ 116.941243][ T7099] EXT4-fs error (device loop2): ext4_do_update_inode:5230: inode #15: comm syz.2.547: corrupted inode contents
[ 116.972043][ T7110] loop1: detected capacity change from 0 to 256
[ 116.985798][ T7106] FAT-fs (loop3): Directory bread(block 64) failed
[ 116.992512][ T7099] EXT4-fs error (device loop2): __ext4_ext_dirty:202: inode #15: comm syz.2.547: mark_inode_dirty error
[ 117.029844][ T7106] FAT-fs (loop3): Directory bread(block 65) failed
[ 117.046113][ T7099] EXT4-fs error (device loop2): ext4_do_update_inode:5230: inode #15: comm syz.2.547: corrupted inode contents
[ 117.076600][ T7106] FAT-fs (loop3): Directory bread(block 66) failed
[ 117.085520][ T7110] FAT-fs (loop1): error, fat_free: invalid cluster chain (i_pos 196)
[ 117.110939][ T7110] FAT-fs (loop1): Filesystem has been set read-only
[ 117.121102][ T7106] FAT-fs (loop3): Directory bread(block 67) failed
[ 117.131816][ T7106] FAT-fs (loop3): Directory bread(block 68) failed
[ 117.142993][ T7099] EXT4-fs error (device loop2): __ext4_ext_dirty:202: inode #15: comm syz.2.547: mark_inode_dirty error
[ 117.165729][ T7106] FAT-fs (loop3): Directory bread(block 69) failed
[ 117.177596][ T7099] EXT4-fs error (device loop2): ext4_do_update_inode:5230: inode #15: comm syz.2.547: corrupted inode contents
[ 117.195875][ T7106] FAT-fs (loop3): Directory bread(block 70) failed
[ 117.204284][ T7106] FAT-fs (loop3): Directory bread(block 71) failed
[ 117.212918][ T5777] FAT-fs (loop1): error, fat_free: invalid cluster chain (i_pos 196)
[ 117.222118][ T7099] EXT4-fs error (device loop2): ext4_truncate:4288: inode #15: comm syz.2.547: mark_inode_dirty error
[ 117.253144][ T7106] FAT-fs (loop3): Directory bread(block 72) failed
[ 117.268610][ T7099] EXT4-fs error (device loop2) in ext4_setattr:5645: Corrupt filesystem
[ 117.296234][ T7106] FAT-fs (loop3): Directory bread(block 73) failed
[ 117.314974][ T7113] netlink: 12 bytes leftover after parsing attributes in process `syz.0.561'.
[ 117.371310][ T5778] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 118.386652][ T7141] loop3: detected capacity change from 0 to 256
[ 118.394161][ T7143] netlink: 28 bytes leftover after parsing attributes in process `syz.1.565'.
[ 118.512785][ T7141] FAT-fs (loop3): error, fat_free: invalid cluster chain (i_pos 196)
[ 118.557221][ T7145] loop0: detected capacity change from 0 to 4096
[ 118.557475][ T7141] FAT-fs (loop3): Filesystem has been set read-only
[ 118.657921][ T7145] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 118.719885][ T7150] IPVS: length: 250 != 8
[ 118.777189][ T7145] EXT4-fs error (device loop0): ext4_do_update_inode:5230: inode #15: comm syz.0.564: corrupted inode contents
[ 118.791083][ T7145] EXT4-fs error (device loop0): ext4_dirty_inode:6106: inode #15: comm syz.0.564: mark_inode_dirty error
[ 118.803040][ T7145] EXT4-fs error (device loop0): ext4_do_update_inode:5230: inode #15: comm syz.0.564: corrupted inode contents
[ 118.820309][ T7145] EXT4-fs error (device loop0): __ext4_ext_dirty:202: inode #15: comm syz.0.564: mark_inode_dirty error
[ 118.834355][ T7145] EXT4-fs error (device loop0): ext4_do_update_inode:5230: inode #15: comm syz.0.564: corrupted inode contents
[ 118.851741][ T7145] EXT4-fs error (device loop0): __ext4_ext_dirty:202: inode #15: comm syz.0.564: mark_inode_dirty error
[ 118.870054][ T5780] FAT-fs (loop3): error, fat_free: invalid cluster chain (i_pos 196)
[ 118.899291][ T7145] EXT4-fs error (device loop0): ext4_do_update_inode:5230: inode #15: comm syz.0.564: corrupted inode contents
[ 118.936559][ T7145] EXT4-fs error (device loop0): ext4_truncate:4288: inode #15: comm syz.0.564: mark_inode_dirty error
[ 119.007167][ T7145] EXT4-fs error (device loop0) in ext4_setattr:5645: Corrupt filesystem
[ 119.041924][ T7153] delete_channel: no stack
[ 119.105046][ T5779] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 119.365855][ T7162] loop3: detected capacity change from 0 to 128
[ 119.409399][ T7162] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (30846!=65535)
[ 119.448786][ T7162] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 ro without journal. Quota mode: none.
[ 119.616692][ T7162] EXT4-fs (loop3): ext4_remount: Checksum for group 0 failed (30846!=65535)
[ 119.738742][ T5780] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 119.893512][ T7176] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[ 120.133128][ T7183] loop2: detected capacity change from 0 to 2048
[ 120.180863][ T7183] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 120.246269][ T7183] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4128793 free clusters
[ 120.310579][ T5778] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 120.351960][ T5831] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[ 120.550573][ T5831] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 120.560925][ T5831] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 2
[ 120.569899][ T5831] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[ 120.584800][ T5831] usb 4-1: New USB device found, idVendor=8086, idProduct=0b5b, bcdDevice=e1.c5
[ 120.593990][ T5831] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 120.602036][ T5831] usb 4-1: Product: syz
[ 120.606191][ T5831] usb 4-1: Manufacturer: syz
[ 120.610916][ T5831] usb 4-1: SerialNumber: syz
[ 120.626950][ T5831] usb 4-1: config 0 descriptor??
[ 120.850634][ T28] usb 4-1: USB disconnect, device number 4
[ 121.463980][ T7196] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=none:owns=io+mem
[ 121.925069][ T7208] netlink: 20 bytes leftover after parsing attributes in process `syz.1.595'.
[ 122.577195][ T7226] netlink: 'syz.1.601': attribute type 13 has an invalid length.
[ 122.614355][ T7226] gretap0: refused to change device tx_queue_len
[ 122.644450][ T7226] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[ 123.407489][ T7246] loop3: detected capacity change from 0 to 4096
[ 123.490772][ T7250] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 123.561552][ T7251] loop0: detected capacity change from 0 to 1024
[ 123.615382][ T7253] xt_bpf: check failed: parse error
[ 123.886348][ T7234] loop2: detected capacity change from 0 to 32768
[ 123.908321][ T131] hfsplus: b-tree write err: -5, ino 4
[ 123.933246][ T7234] read_mapping_page failed!
[ 124.156836][ T7261] overlayfs: empty lowerdir
[ 124.765028][ T7271] delete_channel: no stack
[ 124.986624][ T7260] loop0: detected capacity change from 0 to 32768
[ 125.014483][ T7260] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 scanned by syz.0.625 (7260)
[ 125.066902][ T7260] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 125.078437][ T7260] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[ 125.089020][ T7260] BTRFS info (device loop0): setting nodatacow, compression disabled
[ 125.103977][ T7260] BTRFS info (device loop0): max_inline at 0
[ 125.136100][ T7260] BTRFS info (device loop0): enabling disk space caching
[ 125.156236][ T7260] BTRFS info (device loop0): turning off barriers
[ 125.166438][ T7260] BTRFS info (device loop0): turning on flush-on-commit
[ 125.192854][ T7260] BTRFS info (device loop0): doing ref verification
[ 125.218857][ T7260] BTRFS info (device loop0): force clearing of disk cache
[ 125.226517][ T7260] BTRFS info (device loop0): enabling ssd optimizations
[ 125.250679][ T7260] BTRFS info (device loop0): max_inline at 4096
[ 125.257013][ T7260] BTRFS info (device loop0): disk space caching is enabled
[ 125.539218][ T7260] BTRFS info (device loop0): auto enabling async discard
[ 125.593922][ T7260] BTRFS info (device loop0): rebuilding free space tree
[ 125.688849][ T7260] BTRFS info (device loop0): disabling free space tree
[ 125.721504][ T7260] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[ 125.761811][ T7260] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[ 126.059720][ T7323] netlink: 20 bytes leftover after parsing attributes in process `syz.3.638'.
[ 126.246208][ T5779] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 126.701582][ T7338] loop1: detected capacity change from 0 to 128
[ 126.721458][ T7338] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (30846!=65535)
[ 126.765590][ T7338] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 ro without journal. Quota mode: none.
[ 126.920916][ T7338] EXT4-fs (loop1): ext4_remount: Checksum for group 0 failed (30846!=65535)
[ 127.199567][ T5777] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 127.965623][ T7375] overlayfs: empty lowerdir
[ 128.232057][ T7383] loop3: detected capacity change from 0 to 1764
[ 129.899092][ T7443] loop2: detected capacity change from 0 to 1024
[ 129.936086][ T7443] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[ 129.980027][ T7443] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[ 130.028037][ T7443] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled
[ 130.097851][ T7443] EXT4-fs error (device loop2): ext4_get_journal_inode:5805: inode #5: comm syz.2.677: unexpected bad inode w/o EXT4_IGET_BAD
[ 130.111722][ T7449] loop0: detected capacity change from 0 to 256
[ 130.161252][ T7443] EXT4-fs (loop2): no journal found
[ 130.166531][ T7443] EXT4-fs (loop2): can't get journal size
[ 130.242083][ T7443] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 130.276506][ T7417] loop1: detected capacity change from 0 to 32768
[ 130.362573][ T5778] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 130.463281][ T7417] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[ 130.859718][ T5777] ocfs2: Unmounting device (7,1) on (node local)
[ 131.127511][ T7473] netlink: 228 bytes leftover after parsing attributes in process `syz.0.692'.
[ 131.811189][ T7499] loop1: detected capacity change from 0 to 24
[ 131.831084][ T7499] MTD: Attempt to mount non-MTD device "/dev/loop1"
[ 131.876555][ T7499] romfs: Mounting image 'rom 637cf1fa' through the block layer
[ 131.924718][ T7499] VFS: Lookup of 'file0' in romfs loop1 would have caused loop
[ 132.017423][ T7505] netlink: 4 bytes leftover after parsing attributes in process `syz.2.706'.
[ 132.065883][ T7505] netlink: zone id is out of range
[ 132.077423][ T7505] netlink: del zone limit has 4 unknown bytes
[ 132.245356][ T7487] loop0: detected capacity change from 0 to 32768
[ 132.315614][ T7487] read_mapping_page failed!
[ 132.781909][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[ 132.796363][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[ 132.869402][ T7522] loop1: detected capacity change from 0 to 256
[ 132.882519][ T7524] loop0: detected capacity change from 0 to 8
[ 132.945560][ T7524] SQUASHFS error: Unable to read inode 0xe3
[ 133.026226][ T7522] FAT-fs (loop1): Directory bread(block 64) failed
[ 133.060018][ T7522] FAT-fs (loop1): Directory bread(block 65) failed
[ 133.066732][ T7522] FAT-fs (loop1): Directory bread(block 66) failed
[ 133.097533][ T7522] FAT-fs (loop1): Directory bread(block 67) failed
[ 133.131278][ T7522] FAT-fs (loop1): Directory bread(block 68) failed
[ 133.153130][ T7522] FAT-fs (loop1): Directory bread(block 69) failed
[ 133.172506][ T7522] FAT-fs (loop1): Directory bread(block 70) failed
[ 133.203063][ T7522] FAT-fs (loop1): Directory bread(block 71) failed
[ 133.226909][ T7522] FAT-fs (loop1): Directory bread(block 72) failed
[ 133.239109][ T7522] FAT-fs (loop1): Directory bread(block 73) failed
[ 133.433599][ T7534] loop0: detected capacity change from 0 to 16
[ 133.454596][ T7513] loop2: detected capacity change from 0 to 32768
[ 133.481152][ T7513] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 scanned by syz.2.710 (7513)
[ 133.491686][ T7534] erofs: (device loop0): mounted with root inode @ nid 36.
[ 133.579670][ T7513] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 133.636819][ T7513] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm
[ 133.683290][ T7513] BTRFS info (device loop2): setting nodatacow, compression disabled
[ 133.727410][ T7513] BTRFS info (device loop2): max_inline at 0
[ 133.733519][ T7513] BTRFS info (device loop2): enabling disk space caching
[ 133.795358][ T7513] BTRFS info (device loop2): turning off barriers
[ 133.826937][ T7540] netlink: 20 bytes leftover after parsing attributes in process `syz.1.724'.
[ 133.828988][ T7513] BTRFS info (device loop2): turning on flush-on-commit
[ 133.867371][ T7513] BTRFS info (device loop2): doing ref verification
[ 133.874089][ T7513] BTRFS info (device loop2): force clearing of disk cache
[ 133.921865][ T7513] BTRFS info (device loop2): enabling ssd optimizations
[ 133.947638][ T7513] BTRFS info (device loop2): max_inline at 4096
[ 133.953972][ T7513] BTRFS info (device loop2): disk space caching is enabled
[ 134.101305][ T7513] BTRFS info (device loop2): auto enabling async discard
[ 134.121536][ T7513] BTRFS info (device loop2): rebuilding free space tree
[ 134.175994][ T7513] BTRFS info (device loop2): disabling free space tree
[ 134.198083][ T7513] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[ 134.233931][ T7513] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[ 134.259901][ T5880] usb 4-1: new full-speed USB device number 5 using dummy_hcd
[ 134.471142][ T5880] usb 4-1: New USB device found, idVendor=055f, idProduct=c420, bcdDevice=6a.33
[ 134.490599][ T5880] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 134.528948][ T5880] usb 4-1: config 0 descriptor??
[ 134.538264][ T5880] gspca_main: sunplus-2.14.0 probing 055f:c420
[ 134.650076][ T5778] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 134.961516][ T5880] gspca_sunplus: reg_w_riv err -71
[ 134.970671][ T5880] sunplus: probe of 4-1:0.0 failed with error -71
[ 134.997735][ T5880] usb 4-1: USB disconnect, device number 5
[ 135.632805][ T7575] loop1: detected capacity change from 0 to 32768
[ 135.752341][ T7575] read_mapping_page failed!
[ 135.882826][ T7592] netlink: 228 bytes leftover after parsing attributes in process `syz.2.741'.
[ 136.501995][ T7613] binder: 7612:7613 ioctl c0306201 200000000240 returned -14
[ 136.600194][ T7611] loop3: detected capacity change from 0 to 4096
[ 136.622699][ T7611] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512).
[ 137.157758][ T5880] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[ 137.359886][ T5880] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[ 137.385810][ T5880] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 137.406988][ T27] audit: type=1326 audit(1754938890.830:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7636 comm="syz.1.762" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc78478ebe9 code=0x7ffc0000
[ 137.439899][ T5880] usb 3-1: Product: syz
[ 137.444139][ T5880] usb 3-1: Manufacturer: syz
[ 137.451727][ T5880] usb 3-1: SerialNumber: syz
[ 137.462962][ T27] audit: type=1326 audit(1754938890.830:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7636 comm="syz.1.762" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc78478ebe9 code=0x7ffc0000
[ 137.491792][ T27] audit: type=1326 audit(1754938890.840:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7636 comm="syz.1.762" exe="/root/syz-executor" sig=0 arch=c000003e syscall=440 compat=0 ip=0x7fc78478ebe9 code=0x7ffc0000
[ 137.523958][ T27] audit: type=1326 audit(1754938890.840:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7636 comm="syz.1.762" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc78478ebe9 code=0x7ffc0000
[ 137.555466][ T5880] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[ 137.619914][ T9] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[ 137.630953][ T7641] loop1: detected capacity change from 0 to 512
[ 137.659119][ T7641] EXT4-fs: Ignoring removed orlov option
[ 137.714045][ T7641] EXT4-fs (loop1): orphan cleanup on readonly fs
[ 137.767689][ T7641] EXT4-fs error (device loop1): ext4_find_extent:900: inode #4: comm syz.1.765: inode has invalid extent depth: 7
[ 137.807380][ T7641] Quota error (device loop1): v2_read_header: Failed header read: expected=8 got=-117
[ 137.818472][ T7641] EXT4-fs warning (device loop1): ext4_enable_quotas:7173: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[ 137.884160][ T7641] EXT4-fs (loop1): Cannot turn on quotas: error -22
[ 137.901498][ T7641] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 137.994745][ T7641] EXT4-fs error (device loop1): ext4_lookup:1855: inode #2: comm syz.1.765: 'file0' linked to parent dir
[ 138.087515][ T7652] netlink: 20 bytes leftover after parsing attributes in process `syz.0.769'.
[ 138.090323][ T5777] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 138.212032][ T5880] usb 3-1: USB disconnect, device number 4
[ 138.697608][ T9] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive
[ 138.705198][ T9] ath9k_htc: Failed to initialize the device
[ 138.733980][ T5880] usb 3-1: ath9k_htc: USB layer deinitialized
[ 139.708429][ T7688] netlink: 4 bytes leftover after parsing attributes in process `syz.3.782'.
[ 139.730889][ T7688] netlink: zone id is out of range
[ 139.747331][ T7688] netlink: del zone limit has 4 unknown bytes
[ 139.765773][ T7691] loop0: detected capacity change from 0 to 24
[ 139.785366][ T7691] MTD: Attempt to mount non-MTD device "/dev/loop0"
[ 139.855761][ T7691] romfs: Mounting image 'rom 637cf1fa' through the block layer
[ 139.906260][ T7691] VFS: Lookup of 'file0' in romfs loop0 would have caused loop
[ 140.059636][ T7695] usb usb1: usbfs: process 7695 (syz.3.790) did not claim interface 0 before use
[ 140.309542][ T7701] loop0: detected capacity change from 0 to 4096
[ 140.345400][ T7701] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512).
[ 140.782414][ T7717] loop2: detected capacity change from 0 to 24
[ 140.812303][ T7717] MTD: Attempt to mount non-MTD device "/dev/loop2"
[ 140.854368][ T7717] romfs: Mounting image 'rom 637cf1fa' through the block layer
[ 140.928169][ T7717] VFS: Lookup of 'file0' in romfs loop2 would have caused loop
[ 141.118231][ T7725] program syz.0.801 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 141.152124][ T7728] netlink: 224 bytes leftover after parsing attributes in process `syz.2.812'.
[ 141.378113][ T7733] netlink: 'syz.2.806': attribute type 10 has an invalid length.
[ 141.386694][ T7733] batman_adv: batadv0: Adding interface: wlan0
[ 141.408868][ T7733] batman_adv: batadv0: The MTU of interface wlan0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 141.503082][ T7733] batman_adv: batadv0: Not using interface wlan0 (retrying later): interface not active
[ 141.819950][ T7749] netlink: 1192 bytes leftover after parsing attributes in process `syz.1.815'.
[ 142.067916][ T7759] netlink: 132 bytes leftover after parsing attributes in process `syz.3.819'.
[ 142.532660][ T7776] loop2: detected capacity change from 0 to 256
[ 142.555646][ T7777] netlink: 32 bytes leftover after parsing attributes in process `syz.3.827'.
[ 142.587912][ T7777] netlink: 216 bytes leftover after parsing attributes in process `syz.3.827'.
[ 142.632373][ T7777] netlink: 216 bytes leftover after parsing attributes in process `syz.3.827'.
[ 142.634318][ T7776] FAT-fs (loop2): Directory bread(block 64) failed
[ 142.659928][ T7777] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[ 142.664110][ T7776] FAT-fs (loop2): Directory bread(block 65) failed
[ 142.684138][ T7776] FAT-fs (loop2): Directory bread(block 66) failed
[ 142.691678][ T7776] FAT-fs (loop2): Directory bread(block 67) failed
[ 142.707744][ T7776] FAT-fs (loop2): Directory bread(block 68) failed
[ 142.719177][ T7780] warning: `syz.1.829' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[ 142.730990][ T7776] FAT-fs (loop2): Directory bread(block 69) failed
[ 142.743015][ T7776] FAT-fs (loop2): Directory bread(block 70) failed
[ 142.767365][ T7776] FAT-fs (loop2): Directory bread(block 71) failed
[ 142.795667][ T7776] FAT-fs (loop2): Directory bread(block 72) failed
[ 142.816867][ T7776] FAT-fs (loop2): Directory bread(block 73) failed
[ 143.110162][ T7790] befs: (loop3): No write support. Marking filesystem read-only
[ 143.130813][ T7790] syz.3.833: attempt to access beyond end of device
[ 143.130813][ T7790] loop3: rw=0, sector=0, nr_sectors = 2 limit=0
[ 143.144452][ T7793] binder: 7792:7793 ioctl c0306201 200000000240 returned -14
[ 143.167788][ T7790] befs: (loop3): unable to read superblock
[ 143.385809][ T7799] netlink: 'syz.0.846': attribute type 2 has an invalid length.
[ 143.398977][ T7801] loop3: detected capacity change from 0 to 256
[ 143.427634][ T7799] netlink: 723 bytes leftover after parsing attributes in process `syz.0.846'.
[ 143.775335][ T7813] netlink: 12 bytes leftover after parsing attributes in process `syz.1.844'.
[ 144.258989][ T7827] netlink: 'syz.1.852': attribute type 10 has an invalid length.
[ 144.278099][ T7827] batman_adv: batadv0: Adding interface: wlan0
[ 144.285778][ T7829] netlink: 16 bytes leftover after parsing attributes in process `syz.2.853'.
[ 144.307336][ T7827] batman_adv: batadv0: The MTU of interface wlan0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 144.360614][ T7827] batman_adv: batadv0: Not using interface wlan0 (retrying later): interface not active
[ 144.648412][ T7807] loop3: detected capacity change from 0 to 32768
[ 144.713064][ T7807] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[ 144.954764][ T5780] ocfs2: Unmounting device (7,3) on (node local)
[ 145.019976][ T7845] loop0: detected capacity change from 0 to 4096
[ 145.046018][ T7845] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512).
[ 145.102797][ T7849] qrtr: Invalid version 0
[ 145.725256][ T7862] netlink: 'syz.0.865': attribute type 10 has an invalid length.
[ 145.742294][ T7862] batman_adv: batadv0: Adding interface: wlan0
[ 145.787409][ T7862] batman_adv: batadv0: The MTU of interface wlan0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 145.832678][ T7840] loop2: detected capacity change from 0 to 40427
[ 145.860896][ T7862] batman_adv: batadv0: Not using interface wlan0 (retrying later): interface not active
[ 145.860899][ T7840] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[ 145.893304][ T7840] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[ 145.940988][ T7840] F2FS-fs (loop2): invalid crc value
[ 145.981199][ T7840] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 146.119854][ T7872] overlayfs: overlapping lowerdir path
[ 146.128746][ T7840] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[ 146.136216][ T7840] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[ 146.215075][ T7867] loop1: detected capacity change from 0 to 4096
[ 146.246688][ T7867] ntfs3: loop1: Different NTFS sector size (4096) and media sector size (512).
[ 146.427181][ T7867] ntfs3: loop1: Failed to initialize $Secure (-22).
[ 146.779906][ T7886] netlink: 40 bytes leftover after parsing attributes in process `syz.0.876'.
[ 146.827594][ T7886] A link change request failed with some changes committed already. Interface dummy0 may have been left with an inconsistent configuration, please check.
[ 146.909349][ T7890] netlink: 20 bytes leftover after parsing attributes in process `syz.1.877'.
[ 147.113983][ T7896] netlink: 40 bytes leftover after parsing attributes in process `syz.1.881'.
[ 147.680864][ T7914] lo speed is unknown, defaulting to 1000
[ 147.708143][ T7914] lo speed is unknown, defaulting to 1000
[ 147.720795][ T7914] lo speed is unknown, defaulting to 1000
[ 147.745195][ T7914] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[ 147.764442][ T7914] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[ 147.853771][ T7914] lo speed is unknown, defaulting to 1000
[ 147.867553][ T5879] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[ 147.878358][ T7914] lo speed is unknown, defaulting to 1000
[ 147.886597][ T7914] lo speed is unknown, defaulting to 1000
[ 147.894396][ T7914] lo speed is unknown, defaulting to 1000
[ 148.109351][ T5879] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[ 148.122185][ T5879] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 148.143241][ T5879] usb 4-1: Product: syz
[ 148.157454][ T5879] usb 4-1: Manufacturer: syz
[ 148.162137][ T5879] usb 4-1: SerialNumber: syz
[ 148.195385][ T5879] usb 4-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[ 148.223138][ T7930] loop0: detected capacity change from 0 to 64
[ 148.240629][ T5831] usb 4-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[ 148.326866][ T7932] netlink: 16 bytes leftover after parsing attributes in process `syz.1.897'.
[ 149.002329][ T5879] usb 4-1: USB disconnect, device number 6
[ 149.022476][ T7950] qrtr: Invalid version 0
[ 149.201599][ T7954] usb usb8: usbfs: process 7954 (syz.1.909) did not claim interface 0 before use
[ 149.233490][ T7956] ip6gre1: entered allmulticast mode
[ 149.340633][ T5831] ath9k_htc 4-1:1.0: ath9k_htc: Target is unresponsive
[ 149.361095][ T5831] ath9k_htc: Failed to initialize the device
[ 149.394164][ T5879] usb 4-1: ath9k_htc: USB layer deinitialized
[ 149.406764][ T7958] lo speed is unknown, defaulting to 1000
[ 149.968743][ T7978] netlink: 20 bytes leftover after parsing attributes in process `syz.3.918'.
[ 150.394802][ T7994] loop1: detected capacity change from 0 to 8
[ 150.408205][ T7993] netlink: 40 bytes leftover after parsing attributes in process `syz.3.923'.
[ 150.417132][ T7993] A link change request failed with some changes committed already. Interface dummy0 may have been left with an inconsistent configuration, please check.
[ 150.493739][ T7994] SQUASHFS error: xz decompression failed, data probably corrupt
[ 150.527391][ T7994] SQUASHFS error: Failed to read block 0x108: -5
[ 150.533818][ T7994] SQUASHFS error: Unable to read metadata cache entry [106]
[ 150.587337][ T7994] SQUASHFS error: Unable to read inode 0x11f
[ 150.630911][ T7997] lo speed is unknown, defaulting to 1000
[ 150.674265][ T8001] overlayfs: overlapping lowerdir path
[ 150.863780][ T8003] siw: device registration error -23
[ 151.037662][ T5831] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[ 151.166368][ T8015] loop2: detected capacity change from 0 to 64
[ 151.248882][ T5831] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0
[ 151.273676][ T5831] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x7 has invalid maxpacket 0
[ 151.292612][ T5831] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid maxpacket 33119, setting to 1024
[ 151.308151][ T5831] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x83 has invalid maxpacket 1024
[ 151.349192][ T5831] usb 2-1: New USB device found, idVendor=2040, idProduct=2000, bcdDevice=65.72
[ 151.377362][ T5831] usb 2-1: New USB device strings: Mfr=151, Product=0, SerialNumber=0
[ 151.396964][ T5831] usb 2-1: Manufacturer: syz
[ 151.428779][ T5831] usb 2-1: config 0 descriptor??
[ 151.439450][ T7994] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[ 151.500635][ T5831] smsusb:smsusb_probe: board id=9, interface number 0
[ 151.541316][ T5831] smsusb:siano_media_device_register: media controller created
[ 151.569876][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 151.577270][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 151.584619][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 151.592046][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 151.599400][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 151.609206][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 151.616827][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 151.624191][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 151.631552][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 151.638882][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 151.646369][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 151.657922][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 151.665375][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 151.672728][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 151.680161][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 151.687514][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 151.707519][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 151.714824][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 151.722063][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 151.729295][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 151.736913][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 151.744605][ T5831] smsmdtv:smscore_sendrequest_and_wait: sendrequest returned error -22
[ 151.753200][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 151.760547][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 151.767859][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 151.775145][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 151.782432][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 151.789735][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 151.797016][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 151.804312][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 151.813675][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 151.820999][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 151.828310][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 151.835625][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 151.843630][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 151.850950][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 151.858263][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 151.865576][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 151.872888][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 151.876621][ T8030] siw: device registration error -23
[ 151.880171][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 151.893189][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 151.902494][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 151.909817][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 151.917102][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 151.924402][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 151.931726][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 151.939119][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 151.946883][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 151.954187][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 151.961604][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 151.978292][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 151.985679][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 151.993012][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 152.000616][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 152.007878][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 152.015127][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 152.022363][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 152.030045][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 152.037339][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 152.044639][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 152.051943][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 152.059237][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 152.066545][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 152.073936][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 152.081322][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 152.088732][ T5831] smsmdtv:smscore_set_device_mode: mode detect failed -22
[ 152.095886][ T5831] smsmdtv:smscore_start_device: set device mode failed , rc -22
[ 152.104794][ T5831] smsusb:smsusb_init_device: smscore_start_device(...) failed
[ 152.116960][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 152.124281][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 152.133972][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 152.141292][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 152.148592][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 152.155892][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 152.165726][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 152.173058][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 152.180362][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 152.187773][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 152.195068][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 152.202455][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 152.210287][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 152.217639][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 152.224977][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 152.232318][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 152.239660][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 152.246988][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes
[ 152.254417][ T5831] ------------[ cut here ]------------
[ 152.260128][ T5831] WARNING: CPU: 1 PID: 5831 at kernel/workqueue.c:668 __cancel_work_timer+0x4e2/0x520
[ 152.269852][ T5831] Modules linked in:
[ 152.273790][ T5831] CPU: 1 PID: 5831 Comm: kworker/1:3 Not tainted 6.6.101-syzkaller #0
[ 152.282186][ T5831] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 152.292460][ T5831] Workqueue: usb_hub_wq hub_event
[ 152.297696][ T5831] RIP: 0010:__cancel_work_timer+0x4e2/0x520
[ 152.303848][ T5831] Code: 41 5c 41 5d 41 5e 41 5f 5d c3 e8 59 e3 2e 00 0f 0b e9 ed fd ff ff e8 4d e3 2e 00 e8 48 66 16 09 e9 8e fe ff ff e8 3e e3 2e 00 <0f> 0b 43 80 3c 2e 00 0f 85 04 ff ff ff e9 07 ff ff ff e8 27 65 16
[ 152.323648][ T5831] RSP: 0018:ffffc9000493eb40 EFLAGS: 00010287
[ 152.329812][ T5831] RAX: ffffffff8156b252 RBX: ffff88805ae76448 RCX: 0000000000100000
[ 152.337916][ T5831] RDX: ffffc900172a0000 RSI: 0000000000056db7 RDI: 0000000000056db8
[ 152.345942][ T5831] RBP: ffffc9000493ec58 R08: ffff88805ae7644f R09: 1ffff1100b5cec89
[ 152.354391][ T5831] R10: dffffc0000000000 R11: ffffed100b5cec8a R12: 0000000000000000
[ 152.362490][ T5831] R13: dffffc0000000000 R14: 1ffff1100b5cec89 R15: 0000000000000000
[ 152.370573][ T5831] FS: 0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[ 152.379678][ T5831] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 152.386312][ T5831] CR2: 0000001b2e015ff8 CR3: 0000000022d3a000 CR4: 00000000003506e0
[ 152.394408][ T5831] Call Trace:
[ 152.397806][ T5831]
[ 152.400785][ T5831] ? cancel_work_sync+0x20/0x20
[ 152.405683][ T5831] ? usb_unlink_urb+0xa0/0xa0
[ 152.410476][ T5831] ? _raw_spin_unlock_irqrestore+0xae/0x110
[ 152.416519][ T5831] ? _raw_spin_unlock+0x40/0x40
[ 152.421526][ T5831] ? smscore_putbuffer+0x81/0x120
[ 152.426600][ T5831] smsusb_term_device+0xcb/0x220
[ 152.431720][ T5831] smsusb_probe+0x1708/0x1da0
[ 152.436480][ T5831] ? s2255_print_cfg+0x1b0/0x1b0
[ 152.441581][ T5831] ? smsusb1_detectmode+0x260/0x260
[ 152.446843][ T5831] ? _raw_spin_unlock_irqrestore+0x86/0x110
[ 152.452918][ T5831] ? pm_runtime_enable+0x192/0x2a0
[ 152.458150][ T5831] ? __pm_runtime_set_status+0x8ab/0xb80
[ 152.463850][ T5831] usb_probe_interface+0x5a4/0xb00
[ 152.469091][ T5831] ? usb_register_driver+0x3d0/0x3d0
[ 152.474436][ T5831] really_probe+0x25b/0xb40
[ 152.479568][ T5831] ? pm_runtime_barrier+0x14b/0x1c0
[ 152.484853][ T5831] __driver_probe_device+0x18c/0x330
[ 152.490358][ T5831] driver_probe_device+0x4f/0x420
[ 152.495431][ T5831] __device_attach_driver+0x2ca/0x520
[ 152.501098][ T5831] bus_for_each_drv+0x24b/0x2d0
[ 152.505988][ T5831] ? coredump_store+0x90/0x90
[ 152.511225][ T5831] ? bus_find_device+0x320/0x320
[ 152.516232][ T5831] __device_attach+0x2b5/0x400
[ 152.521124][ T5831] ? device_attach+0x20/0x20
[ 152.525762][ T5831] ? __kmem_cache_free+0xba/0x1f0
[ 152.528454][ T8035] lo speed is unknown, defaulting to 1000
[ 152.530864][ T5831] ? do_raw_spin_unlock+0x121/0x230
[ 152.542099][ T5831] bus_probe_device+0x180/0x260
[ 152.547107][ T5831] device_add+0x85b/0xc20
[ 152.551562][ T5831] usb_set_configuration+0x1a79/0x20c0
[ 152.557117][ T5831] usb_generic_driver_probe+0x8d/0x150
[ 152.562733][ T5831] usb_probe_device+0x13d/0x280
[ 152.567718][ T5831] ? usb_register_device_driver+0x230/0x230
[ 152.573664][ T5831] really_probe+0x25b/0xb40
[ 152.578278][ T5831] ? pm_runtime_barrier+0x14b/0x1c0
[ 152.583622][ T5831] __driver_probe_device+0x18c/0x330
[ 152.589007][ T5831] driver_probe_device+0x4f/0x420
[ 152.594080][ T5831] __device_attach_driver+0x2ca/0x520
[ 152.599592][ T5831] bus_for_each_drv+0x24b/0x2d0
[ 152.604585][ T5831] ? coredump_store+0x90/0x90
[ 152.609382][ T5831] ? bus_find_device+0x320/0x320
[ 152.614375][ T5831] __device_attach+0x2b5/0x400
[ 152.619436][ T5831] ? device_attach+0x20/0x20
[ 152.624075][ T5831] ? __kmem_cache_free+0xba/0x1f0
[ 152.629467][ T5831] ? do_raw_spin_unlock+0x121/0x230
[ 152.634808][ T5831] bus_probe_device+0x180/0x260
[ 152.639984][ T5831] device_add+0x85b/0xc20
[ 152.644546][ T5831] usb_new_device+0xa31/0x1630
[ 152.649447][ T5831] ? usb_disconnect+0x8a0/0x8a0
[ 152.654341][ T5831] ? _raw_spin_unlock_irq+0x23/0x50
[ 152.659768][ T5831] ? lockdep_hardirqs_on+0x98/0x150
[ 152.665026][ T5831] hub_event+0x2962/0x49c0
[ 152.669714][ T5831] ? hub_post_resume+0x120/0x120
[ 152.674708][ T5831] ? read_lock_is_recursive+0x20/0x20
[ 152.680291][ T5831] ? _raw_spin_unlock_irq+0x23/0x50
[ 152.685585][ T5831] ? process_scheduled_works+0x957/0x15b0
[ 152.691417][ T5831] ? process_scheduled_works+0x957/0x15b0
[ 152.697189][ T5831] process_scheduled_works+0xa45/0x15b0
[ 152.702983][ T5831] ? assign_work+0x400/0x400
[ 152.708180][ T5831] ? assign_work+0x39e/0x400
[ 152.712885][ T5831] worker_thread+0xa55/0xfc0
[ 152.717604][ T5831] ? _raw_spin_unlock_irqrestore+0xae/0x110
[ 152.723516][ T5831] ? _raw_spin_unlock+0x40/0x40
[ 152.728588][ T5831] ? _raw_spin_unlock_irqrestore+0x86/0x110
[ 152.734554][ T5831] kthread+0x2fa/0x390
[ 152.738813][ T5831] ? pr_cont_work+0x560/0x560
[ 152.743734][ T5831] ? kthread_blkcg+0xd0/0xd0
[ 152.748521][ T5831] ret_from_fork+0x48/0x80
[ 152.753007][ T5831] ? kthread_blkcg+0xd0/0xd0
[ 152.757748][ T5831] ret_from_fork_asm+0x11/0x20
[ 152.762630][ T5831]
[ 152.765693][ T5831] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 152.773019][ T5831] CPU: 1 PID: 5831 Comm: kworker/1:3 Not tainted 6.6.101-syzkaller #0
[ 152.781229][ T5831] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 152.791322][ T5831] Workqueue: usb_hub_wq hub_event
[ 152.796391][ T5831] Call Trace:
[ 152.799675][ T5831]
[ 152.802622][ T5831] dump_stack_lvl+0x16c/0x230
[ 152.807316][ T5831] ? show_regs_print_info+0x20/0x20
[ 152.812540][ T5831] ? load_image+0x3b0/0x3b0
[ 152.817156][ T5831] panic+0x2c0/0x710
[ 152.821197][ T5831] ? bpf_jit_dump+0xd0/0xd0
[ 152.825724][ T5831] ? ret_from_fork_asm+0x11/0x20
[ 152.830674][ T5831] __warn+0x2e0/0x470
[ 152.834666][ T5831] ? __cancel_work_timer+0x4e2/0x520
[ 152.839958][ T5831] ? __cancel_work_timer+0x4e2/0x520
[ 152.845245][ T5831] report_bug+0x2be/0x4f0
[ 152.849581][ T5831] ? __cancel_work_timer+0x4e2/0x520
[ 152.854876][ T5831] ? __cancel_work_timer+0x4e2/0x520
[ 152.860163][ T5831] ? __cancel_work_timer+0x4e4/0x520
[ 152.865479][ T5831] handle_bug+0xcf/0x120
[ 152.869731][ T5831] exc_invalid_op+0x1a/0x50
[ 152.874240][ T5831] asm_exc_invalid_op+0x1a/0x20
[ 152.879099][ T5831] RIP: 0010:__cancel_work_timer+0x4e2/0x520
[ 152.884998][ T5831] Code: 41 5c 41 5d 41 5e 41 5f 5d c3 e8 59 e3 2e 00 0f 0b e9 ed fd ff ff e8 4d e3 2e 00 e8 48 66 16 09 e9 8e fe ff ff e8 3e e3 2e 00 <0f> 0b 43 80 3c 2e 00 0f 85 04 ff ff ff e9 07 ff ff ff e8 27 65 16
[ 152.904612][ T5831] RSP: 0018:ffffc9000493eb40 EFLAGS: 00010287
[ 152.910687][ T5831] RAX: ffffffff8156b252 RBX: ffff88805ae76448 RCX: 0000000000100000
[ 152.918667][ T5831] RDX: ffffc900172a0000 RSI: 0000000000056db7 RDI: 0000000000056db8
[ 152.926664][ T5831] RBP: ffffc9000493ec58 R08: ffff88805ae7644f R09: 1ffff1100b5cec89
[ 152.934733][ T5831] R10: dffffc0000000000 R11: ffffed100b5cec8a R12: 0000000000000000
[ 152.942706][ T5831] R13: dffffc0000000000 R14: 1ffff1100b5cec89 R15: 0000000000000000
[ 152.950685][ T5831] ? __cancel_work_timer+0x4e2/0x520
[ 152.955989][ T5831] ? cancel_work_sync+0x20/0x20
[ 152.960845][ T5831] ? usb_unlink_urb+0xa0/0xa0
[ 152.965539][ T5831] ? _raw_spin_unlock_irqrestore+0xae/0x110
[ 152.971533][ T5831] ? _raw_spin_unlock+0x40/0x40
[ 152.976395][ T5831] ? smscore_putbuffer+0x81/0x120
[ 152.981477][ T5831] smsusb_term_device+0xcb/0x220
[ 152.986523][ T5831] smsusb_probe+0x1708/0x1da0
[ 152.991250][ T5831] ? s2255_print_cfg+0x1b0/0x1b0
[ 152.996204][ T5831] ? smsusb1_detectmode+0x260/0x260
[ 153.001412][ T5831] ? _raw_spin_unlock_irqrestore+0x86/0x110
[ 153.007328][ T5831] ? pm_runtime_enable+0x192/0x2a0
[ 153.012471][ T5831] ? __pm_runtime_set_status+0x8ab/0xb80
[ 153.018132][ T5831] usb_probe_interface+0x5a4/0xb00
[ 153.023368][ T5831] ? usb_register_driver+0x3d0/0x3d0
[ 153.028664][ T5831] really_probe+0x25b/0xb40
[ 153.033187][ T5831] ? pm_runtime_barrier+0x14b/0x1c0
[ 153.038486][ T5831] __driver_probe_device+0x18c/0x330
[ 153.043778][ T5831] driver_probe_device+0x4f/0x420
[ 153.048811][ T5831] __device_attach_driver+0x2ca/0x520
[ 153.054195][ T5831] bus_for_each_drv+0x24b/0x2d0
[ 153.059050][ T5831] ? coredump_store+0x90/0x90
[ 153.063736][ T5831] ? bus_find_device+0x320/0x320
[ 153.068773][ T5831] __device_attach+0x2b5/0x400
[ 153.073544][ T5831] ? device_attach+0x20/0x20
[ 153.078138][ T5831] ? __kmem_cache_free+0xba/0x1f0
[ 153.083177][ T5831] ? do_raw_spin_unlock+0x121/0x230
[ 153.088386][ T5831] bus_probe_device+0x180/0x260
[ 153.093245][ T5831] device_add+0x85b/0xc20
[ 153.097590][ T5831] usb_set_configuration+0x1a79/0x20c0
[ 153.103085][ T5831] usb_generic_driver_probe+0x8d/0x150
[ 153.108553][ T5831] usb_probe_device+0x13d/0x280
[ 153.113421][ T5831] ? usb_register_device_driver+0x230/0x230
[ 153.119329][ T5831] really_probe+0x25b/0xb40
[ 153.123854][ T5831] ? pm_runtime_barrier+0x14b/0x1c0
[ 153.129058][ T5831] __driver_probe_device+0x18c/0x330
[ 153.134361][ T5831] driver_probe_device+0x4f/0x420
[ 153.139474][ T5831] __device_attach_driver+0x2ca/0x520
[ 153.144849][ T5831] bus_for_each_drv+0x24b/0x2d0
[ 153.149694][ T5831] ? coredump_store+0x90/0x90
[ 153.154377][ T5831] ? bus_find_device+0x320/0x320
[ 153.159330][ T5831] __device_attach+0x2b5/0x400
[ 153.164114][ T5831] ? device_attach+0x20/0x20
[ 153.168707][ T5831] ? __kmem_cache_free+0xba/0x1f0
[ 153.173745][ T5831] ? do_raw_spin_unlock+0x121/0x230
[ 153.178960][ T5831] bus_probe_device+0x180/0x260
[ 153.183820][ T5831] device_add+0x85b/0xc20
[ 153.188167][ T5831] usb_new_device+0xa31/0x1630
[ 153.192948][ T5831] ? usb_disconnect+0x8a0/0x8a0
[ 153.197810][ T5831] ? _raw_spin_unlock_irq+0x23/0x50
[ 153.203118][ T5831] ? lockdep_hardirqs_on+0x98/0x150
[ 153.208334][ T5831] hub_event+0x2962/0x49c0
[ 153.212803][ T5831] ? hub_post_resume+0x120/0x120
[ 153.217746][ T5831] ? read_lock_is_recursive+0x20/0x20
[ 153.223131][ T5831] ? _raw_spin_unlock_irq+0x23/0x50
[ 153.228343][ T5831] ? process_scheduled_works+0x957/0x15b0
[ 153.234069][ T5831] ? process_scheduled_works+0x957/0x15b0
[ 153.239916][ T5831] process_scheduled_works+0xa45/0x15b0
[ 153.245968][ T5831] ? assign_work+0x400/0x400
[ 153.250591][ T5831] ? assign_work+0x39e/0x400
[ 153.255194][ T5831] worker_thread+0xa55/0xfc0
[ 153.259878][ T5831] ? _raw_spin_unlock_irqrestore+0xae/0x110
[ 153.265785][ T5831] ? _raw_spin_unlock+0x40/0x40
[ 153.270643][ T5831] ? _raw_spin_unlock_irqrestore+0x86/0x110
[ 153.276570][ T5831] kthread+0x2fa/0x390
[ 153.280650][ T5831] ? pr_cont_work+0x560/0x560
[ 153.285362][ T5831] ? kthread_blkcg+0xd0/0xd0
[ 153.290013][ T5831] ret_from_fork+0x48/0x80
[ 153.294453][ T5831] ? kthread_blkcg+0xd0/0xd0
[ 153.299052][ T5831] ret_from_fork_asm+0x11/0x20
[ 153.303839][ T5831]
[ 153.307149][ T5831] Kernel Offset: disabled
[ 153.311539][ T5831] Rebooting in 86400 seconds..