last executing test programs:

1m42.720460705s ago: executing program 2 (id=3):
syz_mount_image$nilfs2(&(0x7f0000000ec0), &(0x7f00000000c0)='./file0\x00', 0x2804802, &(0x7f0000000480)=ANY=[], 0x1, 0xf93, &(0x7f0000001e80)="$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")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000300), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x0)
getdents64(r0, 0x0, 0x0)

1m41.914283302s ago: executing program 2 (id=11):
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = dup(r0)
setsockopt$SO_TIMESTAMP(r0, 0x1, 0x40, &(0x7f0000000000)=0x8, 0x4)
sendmsg$inet(r1, &(0x7f0000000780)={&(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f0000000140)="be38", 0xffdf}], 0x1, &(0x7f0000000c80)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @local, @private}}}, @ip_retopts={{0x1c, 0x0, 0x7, {[@timestamp={0x44, 0x4, 0x73}, @noop]}}}], 0x40}, 0x0)
read$FUSE(r1, &(0x7f0000001b80)={0x2020}, 0x2020)

1m40.833983039s ago: executing program 2 (id=14):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x1b, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r0}, 0x10)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
rt_sigsuspend(&(0x7f0000000000), 0x8)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x7, &(0x7f0000000080), 0x4)

1m40.336931133s ago: executing program 32 (id=14):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x1b, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r0}, 0x10)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
rt_sigsuspend(&(0x7f0000000000), 0x8)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x7, &(0x7f0000000080), 0x4)

1m30.590054568s ago: executing program 4 (id=79):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000), 0x6)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(r1, 0x400455c8, 0x0)

1m28.034497228s ago: executing program 4 (id=88):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)={0x84, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x37, 0xe, {{{}, {}, @device_b, @device_b, @random="6e84f399c9b4"}, 0x0, @default, 0x0, @val, @void, @void, @void, @void, @void, @val={0x25, 0x3, {0x0, 0x0, 0x5}}, @void, @void, @void, @void, @void, @val={0x76, 0x6}}}, @NL80211_ATTR_FTM_RESPONDER={0x18, 0x10e, 0x0, 0x1, [@NL80211_FTM_RESP_ATTR_LCI={0x8, 0x2, "b348fec9"}, @NL80211_FTM_RESP_ATTR_ENABLED={0x4}, @NL80211_FTM_RESP_ATTR_CIVICLOC={0x5, 0x3, 'H'}]}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x98a}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x84}, 0x1, 0x0, 0x0, 0x8004}, 0x0)

1m27.671111157s ago: executing program 4 (id=90):
r0 = socket(0x28, 0x5, 0x0)
r1 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r1, &(0x7f0000000040)={0x28, 0x0, 0x0, @local}, 0x10)
listen(r1, 0x0)
connect$vsock_stream(r0, &(0x7f0000000080), 0x10)

1m27.387659979s ago: executing program 4 (id=94):
syz_mount_image$erofs(&(0x7f0000000340), &(0x7f0000000180)='./file2\x00', 0x200008, &(0x7f0000000080)=ANY=[], 0x1, 0x238, &(0x7f0000003280)="$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")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
mount$overlay(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
chdir(&(0x7f0000000080)='./file0\x00')
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})

1m27.181569641s ago: executing program 4 (id=97):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001ec0), r0)
r2 = socket$nl_audit(0x10, 0x3, 0x9)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000001f00)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000002040)={0x0, 0x0, &(0x7f0000002000)={&(0x7f0000000300)={0x4c, r1, 0xc01, 0x70bd29, 0x25dfdbff, {{}, {@val={0x8, 0x3, r3}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x8}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x8}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_CENTER_FREQ2={0x8}], @NL80211_ATTR_DURATION={0x8, 0x57, 0xff}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4001}, 0x40000)

1m26.02972244s ago: executing program 4 (id=102):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x80801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x1})
ioctl$UFFDIO_CONTINUE(r0, 0xc020aa08, &(0x7f0000000300)={{&(0x7f000046f000/0x1000)=nil, 0x1000}})

1m25.992746872s ago: executing program 33 (id=102):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x80801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x1})
ioctl$UFFDIO_CONTINUE(r0, 0xc020aa08, &(0x7f0000000300)={{&(0x7f000046f000/0x1000)=nil, 0x1000}})

52.602826752s ago: executing program 3 (id=390):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={{0x14}, [@NFT_MSG_NEWRULE={0x18, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x4}]}], {0x14}}, 0x40}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010000000000000000004400000008000300", @ANYRES32=r2, @ANYBLOB="08002600851600000a00180000000000000000001c005a8018000180140003"], 0x4c}}, 0x0)

52.285819971s ago: executing program 3 (id=394):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x6d}]})
timer_create(0xfffffffd, 0x0, 0x0)
timer_delete(0x0)

51.349910316s ago: executing program 3 (id=404):
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0xa0201, 0x0)
ioctl$SNDCTL_DSP_CHANNELS(r0, 0xc0045006, &(0x7f0000000140)=0x4)
r1 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
write$dsp(r0, &(0x7f00000012c0)="a5287683", 0x4)
read$dsp(r1, &(0x7f0000000180)=""/222, 0xde)

50.342684387s ago: executing program 3 (id=416):
syz_mount_image$erofs(&(0x7f0000000340), &(0x7f0000000180)='./file2\x00', 0x200008, &(0x7f0000000080)=ANY=[], 0x1, 0x238, &(0x7f0000003280)="$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")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
mount$overlay(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
chdir(&(0x7f0000000080)='./file0\x00')
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})

50.333375255s ago: executing program 1 (id=417):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000240)={0x0, <r1=>0x0}, &(0x7f0000000280)=0x5)
setuid(r1)
r2 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x4b, &(0x7f0000000080)={@remote}, 0x20)

50.085325559s ago: executing program 1 (id=421):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001ec0), r0)
r2 = socket$nl_audit(0x10, 0x3, 0x9)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000001f00)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000002040)={0x0, 0x0, &(0x7f0000002000)={&(0x7f0000000300)={0x4c, r1, 0xc01, 0x70bd29, 0x25dfdbff, {{}, {@val={0x8, 0x3, r3}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x8}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x8}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_CENTER_FREQ2={0x8}], @NL80211_ATTR_DURATION={0x8, 0x57, 0xff}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4001}, 0x40000)

49.973412855s ago: executing program 3 (id=423):
syz_mount_image$minix(&(0x7f0000000100), &(0x7f00000066c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x1810002, &(0x7f000000b100)=ANY=[@ANYBLOB="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", @ANYBLOB="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", @ANYRES64=0x0, @ANYBLOB="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", @ANYRESHEX, @ANYRES16, @ANYRES16, @ANYBLOB="2da97369bd5bd2a022e4fea628166430fb7a26dae38cd827ad7f8cff5d2246bdd2cc0e8101b9631aa9db6c88c4ea13a8fbc6a23601da47409ecba43e29d90521e4a37f2f57fa7ce2366b5b89b5b9529791fb53b47e83c2014cd5779926a7dd8a0de70a50b2baf658b32d6d108efa8d3b6101762c8308a5b3351fd14516c9c33e6c6bd15e956f84604a27325b8ebb315aff3e39aa98ba22dffb1b6a7c1acafedad4ef237de4595f77f679e98e9dcbf01dc5bcbd5c199b9e95c24b", @ANYRES32, @ANYBLOB="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", @ANYRES32], 0x1, 0x1cd, &(0x7f0000000140)="$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")
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
rename(&(0x7f0000000100)='./bus\x00', &(0x7f0000000600)='./file0\x00')
rmdir(&(0x7f0000000000)='./file0\x00')

49.936960407s ago: executing program 1 (id=424):
r0 = syz_clone(0x5948000, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = landlock_create_ruleset(&(0x7f0000000140)={0x4000, 0x0, 0x2}, 0x18, 0x0)
landlock_restrict_self(r1, 0x0)
r2 = syz_pidfd_open(r0, 0x0)
pidfd_getfd(r2, 0xffffffffffffffff, 0x0)

49.822544584s ago: executing program 1 (id=425):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x10000, &(0x7f0000000380), 0xfe, 0x55b, &(0x7f0000001640)="$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")
r0 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
fcntl$notify(r0, 0x402, 0x8000003d)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})

49.408791031s ago: executing program 1 (id=428):
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000040)='./file0\x00', 0x400, &(0x7f0000000000)=ANY=[], 0x1, 0x357, &(0x7f0000000180)="$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")
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1)
r0 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0)
fsync(r0)
rename(&(0x7f0000000600)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000f40)='./file0\x00')

49.065743069s ago: executing program 3 (id=432):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000500)=ANY=[@ANYBLOB="12010000f1d566201e043c40d7cc000000010902120001000000000904"], 0x0)
syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000900)={0x2c, &(0x7f00000006c0), 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)

48.842182161s ago: executing program 34 (id=432):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000500)=ANY=[@ANYBLOB="12010000f1d566201e043c40d7cc000000010902120001000000000904"], 0x0)
syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000900)={0x2c, &(0x7f00000006c0), 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)

47.693716655s ago: executing program 1 (id=440):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4040aea0, &(0x7f0000000040)=@x86={0x3, 0x8, 0x0, 0x0, 0x2, 0x2, 0xe, 0xfe, 0x0, 0x12, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x34, '\x00', 0x0, 0x8000000000002})

47.34563646s ago: executing program 35 (id=440):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4040aea0, &(0x7f0000000040)=@x86={0x3, 0x8, 0x0, 0x0, 0x2, 0x2, 0xe, 0xfe, 0x0, 0x12, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x34, '\x00', 0x0, 0x8000000000002})

4.257633268s ago: executing program 8 (id=810):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000080)={<r1=>0x0, 0x10, &(0x7f00000001c0)=[@in={0x2, 0x0, @rand_addr=0x64010100}]}, &(0x7f0000000180)=0x10)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f00000000c0)={r1, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x0, 0x0, 0xce03d4}, 0x9c)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f0000000200)=@assoc_value={r1}, &(0x7f00000003c0)=0x8)

4.10032003s ago: executing program 8 (id=812):
syz_open_dev$video(&(0x7f0000000440), 0xd, 0x181800)
r0 = syz_io_uring_setup(0x6908, &(0x7f0000000340)={0x0, 0x0, 0x10100}, &(0x7f0000000140), &(0x7f0000000100)=<r1=>0x0)
syz_io_uring_setup(0x1864, &(0x7f00000003c0), &(0x7f0000000000)=<r2=>0x0, &(0x7f0000000180))
syz_io_uring_submit(r2, r1, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0xfffffffffffffe54})
io_uring_enter(r0, 0x184c, 0x0, 0x0, 0x0, 0x0)

3.880722864s ago: executing program 8 (id=813):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kfree\x00', r0}, 0x10)
r1 = syz_usb_connect$hid(0x5, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x458, 0x5015, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x2, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0xb}}, {{{0x9, 0x5, 0x81, 0x3, 0x400}}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r1, 0x0, 0x0)
syz_usb_control_io$hid(r1, &(0x7f0000000080)={0x24, 0x0, 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="00220b00000091f15b9b45b01865fcae"], 0x0}, 0x0)

2.867297151s ago: executing program 5 (id=820):
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/schedstat\x00', 0x0, 0x0)
read$FUSE(r0, &(0x7f0000006140)={0x2020, 0x0, 0x0, <r1=>0x0, 0x0, <r2=>0x0}, 0x2020)
syz_mount_image$exfat(&(0x7f0000001500), &(0x7f0000000180)='./file0\x00', 0x20010080, &(0x7f0000000480)=ANY=[@ANYBLOB='allow_utime=00000000000000000000007,dmask=00000000000000001,iocharset=macroman,allow_utime=00000000000000000000002,uid=', @ANYRES64=r2, @ANYRESOCT=r1, @ANYBLOB="2a3a6dc4d70cd8504afe4f20df34ad3cf37d706dd73fd000", @ANYBLOB="00001b0087e1e85631dc26e7a9ce3c4396436bc6736574e997938c382c009cd0aeba477396b2cb852b9c7a6a4bf39e0368bfe3e9c44e297aeade0000000000fb4fffa3da2229249f9eae67b594fb6fa71518c4638f5e66923f2ba986156feb62be500e4840d9758d3d1f11577798871b0a2d0009ae68165160d76495fc48f43da2e2147ad0809022a1a0c2d4", @ANYRESHEX=r0], 0x1, 0x14ee, &(0x7f0000004000)="$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")
r3 = open(&(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents(r3, &(0x7f0000001fc0)=""/184, 0x6d)

2.609329298s ago: executing program 5 (id=821):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000006007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000208500000003"], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xb, 0x8, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000040)='sys_exit\x00', r1}, 0x10)

2.607444899s ago: executing program 7 (id=822):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000200)={[{@nogrpid}, {@resuid}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@debug}, {@nombcache}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
creat(&(0x7f0000000540)='./file2\x00', 0x60)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000040)=ANY=[], 0xfe37, 0x0)
unlink(&(0x7f0000000180)='./file1\x00')

2.358167642s ago: executing program 5 (id=824):
syz_mount_image$ext4(&(0x7f0000000740)='ext4\x00', &(0x7f0000000780)='./file0\x00', 0x0, &(0x7f0000000280)={[{@dioread_lock}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}]}, 0xff, 0x756, &(0x7f0000001e40)="$eJzs3c2LW1UbAPDnpvP1tn2dKbiwIjjQhYXSjJ3WUkGkogspVoq6c9GmM+lQJmnKJFM6Q6VWFMGVSHHtx8qd/4Aogu5cCq5dSaFIqRtBiNzMzZg2SScznUyq+f3glnPuvek5z/04OZlzuDeAoTWd/pOL2B8RHycRk9n6JCJGG6mRiJNr+929c20uXZKo19/8PWnsk+aj5TOpPVnmiYj4/oOIQ7n2cqsrq4uFUqm4lOVnauXLM9WV1cMXy4WF4kLx0uzx54/Onph97sTstsX65/uvnz/19Stf3nzvp1/feOfU00mcjL3ZttY4tst0TGfHZDQ9hPd4ebsLG7Bk0BVgS9Jbc9faXR77YzJ2NVIAwH/Z9YioAwBDJvH9DwBDpvl3gObYXj/GwR5lt1+KiImIsZZjsLZlJBuzm2iMg+6+m9wzMpJExNQ2lD8dEVff/vCbdIk+jUMCdPLujYg4NzXd3v4nbXMWNuvZHvaZvi+v/YOd813a/znRqf+XW+//RIf+z3iHe3crNr7/c7e2oZiu0v7fCx37v+uT1qZ2Zbn/N/p8o8mFi6Vi2rY9FhEHY3Q8zR95QBnHPnnxx27bWvt/6ZKW3+wLZvW4NTJ+72fmC7XCw8Tc6vaNiCdHOsWfrJ//pEv/90yPZdR+eOqLbts2jr+/6p9HPNPx/P8zoy1pmZ84Hm3zE2ca18NM86pol/9ocl+38gcdf3r+dz84/qmkdb5mdfNl/PzpX69227bV638seauRHsvWXS3UaktHIsaS19rXt0whbeab+6fxHzzw4Pav0/Wf/iY812P8i599dX7r8fdXGv/8ps7/5hMHfvm2czz1bLbxhuf/WCN1MFvTS/vXawUf5tgBAAAAAAAAAAAAAAAAAAAAAAAAQK9yEbE3klx+PZ3L5fNr7/B+PHbnSpVq7dCFyvKl+Wi8K3sqRnPNJ11OtjwP9Uj2PPxmfva+/NGI2BcRN8f/18jn5yql+UEHDwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACZPV3e/5/6bXzQtQMA+mbi+qBrAADstIlBVwAA2HG+/wFg+Pj+B4ChctocPwAYTn7/AwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA0GdnTp9Ol/ofd67Npfn5KyvLi5Urh+eL1cV8eXkuP1dZupxfqFQWSsX8XKW80f9XqlQuzx6P5asztWK1NlNdWT1brixfqp29WC4sFM8WR3ckKgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADYnOrK6mKhVCouPWKJiax+j0p9JCSGKzHghgkAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgX+LvAAAA///A4xmC")
r0 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000f4)
read$FUSE(r0, &(0x7f00000025c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000300)={0x50, 0x0, r1, {0x7, 0x28, 0xffffffff, 0x80, 0x5, 0x401, 0xe5, 0x9}}, 0x50)

1.993107912s ago: executing program 7 (id=827):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x0, &(0x7f0000000380)})
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x200000000000011, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'macvlan0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="4c00000010000100000000000000000080dcba2e", @ANYRES32=r2, @ANYBLOB="00000000000000002c0012800c0001006d6163766c616e001c00028008000100040000000800070000000000080003"], 0x4c}}, 0x0)

1.989665559s ago: executing program 8 (id=828):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800714, &(0x7f0000000480)={[{@user_xattr}]}, 0xff, 0x49e, &(0x7f0000000540)="$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")
lsetxattr$system_posix_acl(&(0x7f0000000400)='.\x00', &(0x7f0000000440)='system.posix_acl_default\x00', &(0x7f00000000c0)=ANY=[@ANYBLOB="02000000010000000000000002000000", @ANYRES32=0xee01, @ANYBLOB="02000000", @ANYRES32=0xee00, @ANYBLOB="02000000", @ANYRES32=0xee00, @ANYBLOB="02000000", @ANYRES32=0x0, @ANYBLOB="040000000000800008000000", @ANYRES32=0x0, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="100000000000000020"], 0x5c, 0x0)
mkdir(&(0x7f0000000080)='./file1\x00', 0x0)
open(&(0x7f0000000140)='./file0\x00', 0x10b4c0, 0x0)
lsetxattr$system_posix_acl(&(0x7f0000000040)='./file1\x00', &(0x7f0000000140)='system.posix_acl_default\x00', 0x0, 0x0, 0x0)

1.970326943s ago: executing program 0 (id=829):
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000040)={&(0x7f0000000100)=[<r1=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_GETPLANE(r0, 0xc02064b6, &(0x7f00000001c0)={r1, <r2=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_ATOMIC(r0, 0xc03864bc, &(0x7f0000000380)={0x0, 0x1, &(0x7f00000000c0)=[r2], 0x0, 0x0, 0x0})

1.969937824s ago: executing program 5 (id=830):
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x8, 0x3, 0x220, 0xf0, 0xffffffff, 0xffffffff, 0x188, 0xffffffff, 0x188, 0xffffffff, 0xffffffff, 0x188, 0xffffffff, 0x7fffffe, 0x0, {[{{@ip={@remote, @multicast1, 0x0, 0x0, 'macvlan0\x00', 'syzkaller0\x00'}, 0x6, 0xa8, 0xf0, 0x0, {}, [@common=@unspec=@time={{0x38}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'snmp_trap\x00'}}}, {{@ip={@local, @dev, 0x0, 0x0, 'veth0_to_team\x00', 'veth1_virt_wifi\x00'}, 0x0, 0x70, 0x98}, @common=@unspec=@NFQUEUE0={0x28}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x280)
r0 = socket$inet(0x2, 0x1, 0x0)
setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000000000)={@multicast1, @local}, 0xc)
setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000140)=ANY=[@ANYBLOB="e0000001ac1414aa0000000003"], 0x1c)
syz_emit_ethernet(0x86, &(0x7f00000000c0)={@link_local, @local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x78, 0x0, 0x0, 0x0, 0x11, 0x0, @local, @multicast1}, {0x0, 0x0, 0x64, 0x0, @wg=@response={0x2, 0x0, 0x0, "306720a65ecadd8f8d4096edd3a616a0c3491e3bea200200", "8e6dbc6bc4b02931a149e80581e14a2c", {"a65651e8000000000000007f96141e51", "dac60bebefc50000000000000200"}}}}}}}, 0x0)

1.875108078s ago: executing program 0 (id=831):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000240)={0x0, <r2=>0x0}, &(0x7f0000000280)=0x5)
setuid(r2)
tkill(r0, 0x12)

1.727496928s ago: executing program 0 (id=832):
socket$inet6(0xa, 0x0, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000021c0)='clear_refs\x00')
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6}]})
tkill(0x0, 0x0)
write$yama_ptrace_scope(r0, &(0x7f0000000040)='1\x00', 0x2)

1.636905309s ago: executing program 7 (id=834):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000040)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x14, &(0x7f0000000300), &(0x7f0000000540)=0x8)

1.636337258s ago: executing program 6 (id=835):
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x2, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32=r2, @ANYBLOB="25003300d0000000080211000001080211000000505050505050000003"], 0x44}}, 0x0)

1.573394803s ago: executing program 5 (id=836):
syz_mount_image$jfs(&(0x7f00000001c0), &(0x7f0000000200)='./file0\x00', 0x8000, &(0x7f0000000540)=ANY=[], 0x1, 0x61af, &(0x7f00000065c0)="$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")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r1 = openat(r0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x12, r1, 0x0)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)

1.538110449s ago: executing program 7 (id=837):
syz_open_procfs(0x0, &(0x7f0000000200)='net/llc/socket\x00')
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x12, r0, 0x0)
mbind(&(0x7f0000006000/0x3000)=nil, 0x3000, 0x4, 0x0, 0x0, 0x1)

1.42907458s ago: executing program 6 (id=838):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)={0x24, r1, 0x41d, 0x0, 0x1, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}, 0x1, 0x0, 0x0, 0x8000000}, 0x40058)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000540)={0x80, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x30, 0xe, {{}, 0x0, @default, 0x1, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @val={0x72, 0x6}, @void, @void}}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_DTIM_PERIOD={0x8}, @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_TX_RATES={0x1c, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x2, 0x7, 0x7f, 0x101, 0x0, 0x3, 0xa, 0x7]}}]}]}]}, 0x80}}, 0x0)

1.304452961s ago: executing program 8 (id=839):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)
r1 = openat$cgroup_devices(r0, &(0x7f0000000000)='devices.deny\x00', 0x2, 0x0)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000140)={@ifindex, 0xffffffffffffffff, 0x1b, 0x0, 0x0, @void, @value}, 0x20)
write$cgroup_devices(r1, &(0x7f0000000140)=ANY=[@ANYBLOB='b 75:*\tm'], 0xa)

1.291892673s ago: executing program 7 (id=840):
syz_mount_image$jfs(&(0x7f00000001c0), &(0x7f0000000000)='./file0\x00', 0x300401a, &(0x7f0000000200)=ANY=[@ANYBLOB='errors=continue,usrquota,integrity,iocharset=cp857,noquota,grpquota,uid=', @ANYRESHEX=0x0, @ANYRES8=0x0], 0x1, 0x612e, &(0x7f00000063c0)="$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")
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r0, &(0x7f0000000140)='./file0/file0\x00', r0, &(0x7f00000002c0)='./file1\x00', 0x0)
r1 = fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r1, 0x7, 0x0, 0x0, 0x0)

1.158085333s ago: executing program 6 (id=841):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x6, 0x4, &(0x7f0000002180)=ANY=[@ANYBLOB="180200000000000000000000cfffffff850000001700000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'veth0_to_bond\x00', <r2=>0x0})
r3 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000003c0)={r0, r2, 0x25, 0x4, @val=@uprobe_multi={0x0, 0x0}}, 0x40)
bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000140)={r3, r0, 0x4, r0}, 0x10)

1.078877445s ago: executing program 8 (id=842):
syz_mount_image$btrfs(&(0x7f00000055c0), &(0x7f0000000000)='./bus\x00', 0x300000a, &(0x7f0000000680)={[{@nodatacow}, {@thread_pool={'thread_pool', 0x3d, 0x3}}, {@nodiscard}, {@datacow}, {@ref_verify}, {@clear_cache}, {@nobarrier}, {@thread_pool={'thread_pool', 0x3d, 0x8}}, {@nodiscard}, {@enospc_debug}, {@ssd_spread}, {@nossd}]}, 0x3, 0x55a3, &(0x7f000000e0c0)="$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")
chdir(&(0x7f0000000080)='./file0\x00')
rename(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./bus\x00')
r0 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
pwritev2(r0, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x76200}], 0x1, 0x7c00, 0x0, 0x3)

892.323451ms ago: executing program 6 (id=843):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
ioctl$TIOCVHANGUP(r0, 0x5437, 0x0)
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000080))
ppoll(&(0x7f00000000c0)=[{r1}], 0x1, &(0x7f0000000140), 0x0, 0x0)

772.501523ms ago: executing program 6 (id=844):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000300)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_BSS(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x20, r0, 0x300, 0x70bd2d, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x1e14, 0x68}}}}}, 0x20}}, 0x2004001)
sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010040000000000002034400000008000300", @ANYRES32=r2, @ANYBLOB="08002600851600000a00180000000000000000001c005a8018000180140002"], 0x4c}}, 0x0)

657.448625ms ago: executing program 0 (id=845):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000280)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000380)={@val, @void, @eth={@broadcast, @dev, @void, {@arp={0x806, @ether_ipv4={0x1, 0x800, 0x6, 0x4, 0x2, @broadcast, @loopback, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @remote}}}}}, 0x2e)

478.205594ms ago: executing program 5 (id=846):
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
mmap$binder(&(0x7f0000000000/0x4000)=nil, 0x1fffff, 0x1, 0x11, r0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0xe)
fcntl$lock(r0, 0x7, &(0x7f0000000180))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x8031, 0xffffffffffffffff, 0x0)

450.408474ms ago: executing program 6 (id=847):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r1 = syz_open_dev$video4linux(&(0x7f0000000000), 0x0, 0x0)
ioctl$VIDIOC_DQEVENT(r1, 0x80885659, 0x0)

242.473821ms ago: executing program 0 (id=848):
creat(&(0x7f0000000100)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001180), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
io_setup(0x202, &(0x7f0000000200)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f00000000c0)=[&(0x7f0000000440)={0xfffffffe, 0x20011004, 0x4, 0x1, 0x0, r0, 0x0, 0x1a, 0x7}])

35.774548ms ago: executing program 0 (id=849):
setitimer(0x1, &(0x7f0000000040)={{0x77359400}, {0x0, 0x2710}}, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$binfmt_elf64(r0, &(0x7f00000003c0)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, [{}]}, 0x78)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r0, 0x0)
setitimer(0x1, &(0x7f0000000000), 0x0)

0s ago: executing program 7 (id=850):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000280)={0x0, 0x4}, 0xe)
shutdown(r0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={<r1=>0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x0, @loopback}]}, &(0x7f0000000240)=0x10)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000002e40)={r1, 0x2, 0x0, 0xffffffff}, &(0x7f0000007840)=0x10)

kernel console output (not intermixed with test programs):

vsim netdevsim5 netdevsim1: renamed from eth1
[   83.700926][ T5968] netdevsim netdevsim5 netdevsim2: renamed from eth2
[   83.711241][ T5968] netdevsim netdevsim5 netdevsim3: renamed from eth3
[   83.850409][ T5968] 8021q: adding VLAN 0 to HW filter on device bond0
[   83.878128][ T5968] 8021q: adding VLAN 0 to HW filter on device team0
[   83.885744][    T9] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[   83.893474][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   83.900657][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   83.954598][ T1078] bridge0: port 2(bridge_slave_1) entered blocking state
[   83.961794][ T1078] bridge0: port 2(bridge_slave_1) entered forwarding state
[   84.055842][    T9] usb 2-1: Using ep0 maxpacket: 16
[   84.066094][    T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   84.096909][    T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   84.122900][    T9] usb 2-1: New USB device found, idVendor=28bd, idProduct=0934, bcdDevice= 0.00
[   84.166544][    T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   84.224182][    T9] usb 2-1: config 0 descriptor??
[   84.472085][ T5968] 8021q: adding VLAN 0 to HW filter on device batadv0
[   84.697151][    T9] input: HID 28bd:0934 Mouse as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:28BD:0934.0001/input/input5
[   84.809847][    T9] uclogic 0003:28BD:0934.0001: input,hidraw0: USB HID v0.00 Mouse [HID 28bd:0934] on usb-dummy_hcd.1-1/input0
[   84.884230][    T9] usb 2-1: USB disconnect, device number 2
[   84.918405][ T5968] veth0_vlan: entered promiscuous mode
[   84.962047][ T5968] veth1_vlan: entered promiscuous mode
[   85.029769][ T5968] veth0_macvtap: entered promiscuous mode
[   85.053080][ T5968] veth1_macvtap: entered promiscuous mode
[   85.100014][ T5968] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   85.131453][ T5968] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   85.163728][ T5968] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   85.182976][ T5968] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   85.194459][ T5968] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   85.210865][ T5968] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   85.235634][ T5968] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   85.236350][ T6241] loop3: detected capacity change from 0 to 32768
[   85.284327][ T5968] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   85.306311][ T5864] Bluetooth: hci5: Opcode 0x1003 failed: -110
[   85.318754][ T5968] batman_adv: batadv0: Interface activated: batadv_slave_0
[   85.329325][ T5968] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   85.340110][ T5968] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   85.350095][ T5968] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   85.355823][ T6241] XFS (loop3): Mounting V5 Filesystem bc2378ed-6193-40d5-9d59-7ebcb787b415
[   85.360753][ T5968] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   85.381040][ T5968] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   85.391724][ T5968] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   85.425360][ T5968] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   85.495781][ T5968] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   85.514629][ T6253] loop0: detected capacity change from 0 to 40427
[   85.526990][ T5968] batman_adv: batadv0: Interface activated: batadv_slave_1
[   85.573705][ T6253] F2FS-fs (loop0): Small segment_count (9 < 1 * 24)
[   85.585976][ T6253] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[   85.603437][ T5968] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   85.612298][ T5968] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   85.621169][ T5968] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   85.630121][ T5968] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   85.752663][ T6253] F2FS-fs (loop0): Found nat_bits in checkpoint
[   85.842813][ T6241] XFS (loop3): Ending clean mount
[   85.846160][ T6253] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[   85.857501][ T6241] XFS (loop3): Quotacheck needed: Please wait.
[   85.867320][ T6253] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[   85.929634][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   85.979510][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   86.056261][ T6241] XFS (loop3): Quotacheck: Done.
[   86.114483][ T5855] syz-executor: attempt to access beyond end of device
[   86.114483][ T5855] loop0: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[   86.119644][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   86.132270][ T5855] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[   86.139594][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   86.154492][ T5855] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[   86.220154][ T5844] XFS (loop3): Unmounting Filesystem bc2378ed-6193-40d5-9d59-7ebcb787b415
[   86.265436][ T6301] loop4: detected capacity change from 0 to 16
[   86.308498][ T6301] erofs: (device loop4): mounted with root inode @ nid 36.
[   86.438491][ T6309] netlink: 'syz.1.96': attribute type 29 has an invalid length.
[   86.448609][ T6309] netlink: 'syz.1.96': attribute type 29 has an invalid length.
[   86.457658][ T6309] netlink: 'syz.1.96': attribute type 29 has an invalid length.
[   86.466818][ T6309] netlink: 'syz.1.96': attribute type 29 has an invalid length.
[   86.525439][ T6311] loop1: detected capacity change from 0 to 64
[   86.533186][ T5851] erofs: (device loop4): erofs_map_blocks_flatmode: inline data across blocks @ nid 46
[   86.581251][ T5851] erofs: (device loop4): erofs_readdir: fail to readdir of logical block 0 of nid 46
[   86.641037][ T5851] erofs: (device loop4): erofs_readdir: invalid de[0].nameoff 0 @ nid 89
[   86.706255][ T6315] loop5: detected capacity change from 0 to 1024
[   86.813010][ T6318] Trying to free block not in datazone
[   86.878833][ T6315] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   86.915153][ T6323] input: syz1 as /devices/virtual/input/input6
[   87.010422][ T6315] EXT4-fs error (device loop5): ext4_xattr_inode_iget:440: inode #11: comm syz.5.16: missing EA_INODE flag
[   87.063177][ T6315] EXT4-fs error (device loop5): ext4_xattr_inode_iget:445: comm syz.5.16: error while reading EA inode 11 err=-117
[   87.083865][ T6315] EXT4-fs warning (device loop5): ext4_expand_extra_isize_ea:2863: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   87.191444][ T6331] loop3: detected capacity change from 0 to 256
[   87.240694][ T6331] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[   87.324575][ T6333] loop0: detected capacity change from 0 to 1024
[   87.342504][ T6333] EXT4-fs: Ignoring removed orlov option
[   87.354181][ T6331] exFAT-fs (loop3): error, invalid access to FAT (entry 0xffffffff)
[   87.354654][ T6333] EXT4-fs: Ignoring removed nomblk_io_submit option
[   87.376629][ T5968] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.385032][ T6334] exFAT-fs (loop3): error, invalid access to FAT (entry 0xffffffff)
[   87.439729][ T6333] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   87.465405][ T6331] exFAT-fs (loop3): error, bogus directory size (clus : ondisk(16) != counted(1))
[   87.646308][ T6340] process 'syz.0.100' launched './file1' with NULL argv: empty string added
[   87.680398][ T1078] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   87.890957][ T5864] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   87.912360][ T5864] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   87.921840][ T5864] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   87.930636][ T5864] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   87.952242][ T5864] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   87.957538][ T5855] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.968803][ T5864] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   87.982755][ T1078] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.038039][ T5913] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[   88.149796][ T1078] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.186234][ T6357] syz.0.106 uses obsolete (PF_INET,SOCK_PACKET)
[   88.232590][ T6358] loop5: detected capacity change from 0 to 2048
[   88.247391][ T5913] usb 4-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[   88.281280][ T5913] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   88.309610][ T5913] usb 4-1: config 0 descriptor??
[   88.344352][ T6358] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   88.357578][ T5913] cp210x 4-1:0.0: cp210x converter detected
[   88.402559][ T1078] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.433738][ T6361] vlan2: entered promiscuous mode
[   88.440129][ T6361] gretap0: entered promiscuous mode
[   88.653104][ T5968] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   88.788458][ T6384] loop1: detected capacity change from 0 to 128
[   88.847874][ T1078] bridge_slave_1: left allmulticast mode
[   88.853582][ T1078] bridge_slave_1: left promiscuous mode
[   88.865733][ T5913] cp210x 4-1:0.0: failed to get vendor val 0x000e size 3: -32
[   88.886365][ T1078] bridge0: port 2(bridge_slave_1) entered disabled state
[   88.895351][ T5913] usb 4-1: cp210x converter now attached to ttyUSB0
[   88.933379][ T1078] bridge_slave_0: left allmulticast mode
[   88.942324][ T1078] bridge_slave_0: left promiscuous mode
[   88.978589][ T1078] bridge0: port 1(bridge_slave_0) entered disabled state
[   89.090271][  T972] usb 4-1: USB disconnect, device number 2
[   89.114049][  T972] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[   89.168264][   T30] audit: type=1326 audit(1730523319.581:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6397 comm="syz.1.118" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f407d57e719 code=0x7ffc0000
[   89.249123][  T972] cp210x 4-1:0.0: device disconnected
[   89.284882][   T30] audit: type=1326 audit(1730523319.591:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6397 comm="syz.1.118" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f407d57e719 code=0x7ffc0000
[   89.355647][   T30] audit: type=1326 audit(1730523319.601:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6397 comm="syz.1.118" exe="/root/syz-executor" sig=0 arch=c000003e syscall=88 compat=0 ip=0x7f407d57e719 code=0x7ffc0000
[   89.379863][   T30] audit: type=1326 audit(1730523319.601:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6397 comm="syz.1.118" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f407d57e719 code=0x7ffc0000
[   89.404382][   T30] audit: type=1326 audit(1730523319.601:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6397 comm="syz.1.118" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f407d57e719 code=0x7ffc0000
[   89.436596][   T30] audit: type=1326 audit(1730523319.601:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6397 comm="syz.1.118" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f407d57e719 code=0x7ffc0000
[   89.467801][   T30] audit: type=1326 audit(1730523319.601:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6397 comm="syz.1.118" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f407d57e719 code=0x7ffc0000
[   89.496260][   T30] audit: type=1326 audit(1730523319.781:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6397 comm="syz.1.118" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f407d57e719 code=0x7ffc0000
[   89.563723][   T30] audit: type=1326 audit(1730523319.791:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6397 comm="syz.1.118" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f407d57e719 code=0x7ffc0000
[   89.609077][   T30] audit: type=1326 audit(1730523319.871:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6397 comm="syz.1.118" exe="/root/syz-executor" sig=0 arch=c000003e syscall=89 compat=0 ip=0x7f407d57e719 code=0x7ffc0000
[   89.771002][ T6408] loop3: detected capacity change from 0 to 64
[   89.869208][ T6408] syz.3.121: attempt to access beyond end of device
[   89.869208][ T6408] loop3: rw=2049, sector=268435468, nr_sectors = 2 limit=64
[   90.031172][ T5864] Bluetooth: hci4: command tx timeout
[   90.220496][ T1078] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   90.244908][ T1078] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   90.262731][ T1078] bond0 (unregistering): Released all slaves
[   90.318659][ T6345] chnl_net:caif_netlink_parms(): no params data found
[   90.481677][ T6427] tipc: Started in network mode
[   90.488409][ T6431] loop0: detected capacity change from 0 to 512
[   90.491222][ T6427] tipc: Node identity aaaaaaaaaa17, cluster identity 4711
[   90.522998][ T6431] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.131: corrupted in-inode xattr: invalid ea_ino
[   90.544820][ T6431] EXT4-fs error (device loop0): ext4_orphan_get:1393: comm syz.0.131: couldn't read orphan inode 15 (err -117)
[   90.546468][ T6427] tipc: Enabled bearer <eth:bond0>, priority 28
[   90.581733][ T6431] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   90.713619][ T6432] tipc: Resetting bearer <eth:bond0>
[   90.723739][ T6432] tipc: Resetting bearer <eth:bond0>
[   90.747245][ T6432] bridge0: port 1(bridge_slave_0) entered disabled state
[   90.767643][ T6432] bridge0: port 2(bridge_slave_1) entered disabled state
[   90.767968][ T5855] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   91.217312][ T6451] loop5: detected capacity change from 0 to 64
[   91.307229][ T6455] netlink: 16 bytes leftover after parsing attributes in process `syz.3.140'.
[   91.368973][ T6438] loop1: detected capacity change from 0 to 32768
[   91.445368][ T6455] netlink: 16 bytes leftover after parsing attributes in process `syz.3.140'.
[   91.472892][ T6438] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   91.497000][ T6345] bridge0: port 1(bridge_slave_0) entered blocking state
[   91.516408][ T6345] bridge0: port 1(bridge_slave_0) entered disabled state
[   91.523678][ T6345] bridge_slave_0: entered allmulticast mode
[   91.531293][ T6345] bridge_slave_0: entered promiscuous mode
[   91.539524][ T6345] bridge0: port 2(bridge_slave_1) entered blocking state
[   91.554218][ T6345] bridge0: port 2(bridge_slave_1) entered disabled state
[   91.561577][ T6345] bridge_slave_1: entered allmulticast mode
[   91.590001][ T5929] tipc: Node number set to 12429994
[   91.622193][ T6345] bridge_slave_1: entered promiscuous mode
[   91.654663][ T1078] hsr_slave_0: left promiscuous mode
[   91.689593][ T1078] hsr_slave_1: left promiscuous mode
[   91.695733][ T5898] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[   91.706756][ T1078] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   91.728904][ T6438] XFS (loop1): Ending clean mount
[   91.735102][ T1078] batman_adv: batadv0: Removing interface: batadv_slave_0
[   91.758078][ T1078] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   91.765549][ T1078] batman_adv: batadv0: Removing interface: batadv_slave_1
[   91.799808][ T6470] loop3: detected capacity change from 0 to 4096
[   91.827566][ T6470] ntfs3(loop3): Different NTFS sector size (2048) and media sector size (512).
[   91.885159][ T1078] veth1_macvtap: left promiscuous mode
[   91.898323][ T5898] usb 1-1: config index 0 descriptor too short (expected 45, got 36)
[   91.915498][ T5913] XFS (loop1): Metadata CRC error detected at xfs_rmapbt_read_verify+0x41/0xd0, xfs_rmapbt block 0x14 
[   91.929226][ T1078] veth0_macvtap: left promiscuous mode
[   91.934861][ T1078] veth1_vlan: left promiscuous mode
[   91.940288][ T5913] XFS (loop1): Unmount and run xfs_repair
[   91.940317][ T5898] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[   91.962474][ T5913] XFS (loop1): First 128 bytes of corrupted metadata buffer:
[   91.965895][ T1078] veth0_vlan: left promiscuous mode
[   91.983712][ T5913] 00000000: 52 4d 42 33 00 00 00 0c ff ff ff ff ff ff ff ff  RMB3............
[   91.993806][ T5898] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[   92.014989][ T5913] 00000010: 00 a7 50 00 00 00 00 14 00 00 00 01 00 00 00 80  ..P.............
[   92.035381][ T5898] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   92.047911][ T5913] 00000020: bf dc 47 fc 10 d8 4e ed a5 62 11 a8 31 b3 f7 91  ..G...N..b..1...
[   92.089784][ T5913] 00000030: 00 00 00 00 5b af 3b 1d 00 00 00 00 00 00 00 01  ....[.;.........
[   92.094274][ T5898] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   92.105762][ T5864] Bluetooth: hci4: command tx timeout
[   92.125808][ T5913] 00000040: ff ff ff ff ff ff ff fd 00 00 00 00 00 00 00 00  ................
[   92.134715][ T5913] 00000050: 00 00 00 01 00 00 00 02 ff ff ff ff ff ff ff fb  ................
[   92.144038][ T5913] 00000060: 00 00 00 00 00 00 00 00 00 00 00 03 00 00 00 02  ................
[   92.150443][ T6470] ntfs3(loop3): Failed to initialize $Extend/$ObjId.
[   92.153023][ T5913] 00000070: ff ff ff ff ff ff ff fa 00 00 00 00 00 00 00 00  ................
[   92.169449][ T6438] XFS (loop1): metadata I/O error in "xfs_btree_read_buf_block+0x36f/0x5b0" at daddr 0x14 len 4 error 74
[   92.182017][ T6438] XFS (loop1): Metadata I/O Error (0x1) detected at xfs_trans_read_buf_map+0x663/0xad0 (fs/xfs/xfs_trans_buf.c:296).  Shutting down filesystem.
[   92.196341][ T5898] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   92.197149][ T6438] XFS (loop1): Please unmount the filesystem and rectify the problem(s)
[   92.227563][ T5913] loop1: writeback error on inode 9286, offset 0, sector 18692
[   92.251988][ T5898] usb 1-1: config 0 descriptor??
[   92.319030][ T6463] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[   92.353761][ T5845] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   92.738741][ T6502] loop1: detected capacity change from 0 to 1024
[   92.833134][ T6502] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   92.859592][ T5898] plantronics 0003:047F:FFFF.0002: unknown main item tag 0xd
[   92.876758][ T5898] plantronics 0003:047F:FFFF.0002: No inputs registered, leaving
[   92.898954][ T5898] plantronics 0003:047F:FFFF.0002: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[   92.935791][ T5928] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[   92.973453][ T5845] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   93.099623][ T5928] usb 6-1: Using ep0 maxpacket: 8
[   93.124428][ T5928] usb 6-1: config 0 has an invalid interface number: 52 but max is 0
[   93.150661][ T5928] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   93.168872][ T5928] usb 6-1: config 0 has no interface number 0
[   93.186087][ T5928] usb 6-1: config 0 interface 52 altsetting 1 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   93.198083][ T5928] usb 6-1: config 0 interface 52 altsetting 1 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   93.224742][ T5928] usb 6-1: config 0 interface 52 altsetting 1 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[   93.229253][ T5929] usb 1-1: USB disconnect, device number 2
[   93.248662][ T5928] usb 6-1: config 0 interface 52 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[   93.271004][ T5928] usb 6-1: config 0 interface 52 has no altsetting 0
[   93.293411][ T5928] usb 6-1: New USB device found, idVendor=06cb, idProduct=0007, bcdDevice= 8.00
[   93.314761][ T5928] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   93.342226][ T5928] usb 6-1: config 0 descriptor??
[   93.591143][ T5928] input: USB Synaptics Device 06cb:0007 (Stick) as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.52/input/input8
[   93.607387][ T1078] team0 (unregistering): Port device team_slave_1 removed
[   93.699226][ T1078] team0 (unregistering): Port device team_slave_0 removed
[   93.850751][ T6513] loop0: detected capacity change from 0 to 128
[   93.890155][ T5928] usb 6-1: USB disconnect, device number 2
[   93.893588][ T6513] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   93.916485][ T6513] ext4 filesystem being mounted at /30/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   94.014264][ T5855] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   94.196144][ T5864] Bluetooth: hci4: command tx timeout
[   94.500243][ T6345] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   94.570611][ T6345] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   94.667483][ T6528] syz.5.158: attempt to access beyond end of device
[   94.667483][ T6528] loop5: rw=0, sector=0, nr_sectors = 1 limit=0
[   94.695184][ T6528] FAT-fs (loop5): unable to read boot sector
[   94.743179][ T6345] team0: Port device team_slave_0 added
[   94.818134][ T6345] team0: Port device team_slave_1 added
[   95.005722][ T6345] batman_adv: batadv0: Adding interface: batadv_slave_0
[   95.012710][ T6345] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   95.050550][ T6540] loop3: detected capacity change from 0 to 512
[   95.118212][ T6540] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   95.146927][ T6540] EXT4-fs (loop3): orphan cleanup on readonly fs
[   95.155086][ T6540] EXT4-fs warning (device loop3): ext4_enable_quotas:7105: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[   95.190487][ T6345] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   95.217796][ T6540] EXT4-fs (loop3): Cannot turn on quotas: error -22
[   95.240720][ T6345] batman_adv: batadv0: Adding interface: batadv_slave_1
[   95.247833][ T6345] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   95.273916][ T6345] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   95.302305][ T6540] EXT4-fs error (device loop3): ext4_orphan_get:1388: inode #16: comm syz.3.164: casefold flag without casefold feature
[   95.377154][ T6540] EXT4-fs error (device loop3): ext4_orphan_get:1393: comm syz.3.164: couldn't read orphan inode 16 (err -117)
[   95.401887][ T6345] hsr_slave_0: entered promiscuous mode
[   95.417644][ T6540] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   95.434875][ T6345] hsr_slave_1: entered promiscuous mode
[   95.448053][ T6345] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   95.466695][ T6345] Cannot create hsr debugfs directory
[   95.501883][ T6540] EXT4-fs error (device loop3): ext4_xattr_block_get:596: inode #15: comm syz.3.164: corrupted xattr block 19: invalid header
[   95.606867][ T6531] loop0: detected capacity change from 0 to 32768
[   95.636777][ T6560] capability: warning: `syz.1.167' uses deprecated v2 capabilities in a way that may be insecure
[   95.789237][ T6531] JBD2: Ignoring recovery information on journal
[   95.979820][ T6531] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   95.985766][   T30] kauditd_printk_skb: 2 callbacks suppressed
[   95.985786][   T30] audit: type=1800 audit(1730523326.411:17): pid=6540 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.164" name="file1" dev="loop3" ino=15 res=0 errno=0
[   96.029624][ T6573] loop1: detected capacity change from 0 to 256
[   96.086800][ T6575] warning: `syz.5.173' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   96.230520][ T5844] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.265886][ T5864] Bluetooth: hci4: command tx timeout
[   96.375436][ T6345] netdevsim netdevsim6 netdevsim0: renamed from eth0
[   96.511920][ T6345] netdevsim netdevsim6 netdevsim1: renamed from eth1
[   96.518422][ T5855] ocfs2: Unmounting device (7,0) on (node local)
[   96.573514][ T6345] netdevsim netdevsim6 netdevsim2: renamed from eth2
[   96.613699][ T6345] netdevsim netdevsim6 netdevsim3: renamed from eth3
[   96.677936][ T6599] loop5: detected capacity change from 0 to 64
[   96.891592][ T6345] 8021q: adding VLAN 0 to HW filter on device bond0
[   96.989066][ T6345] 8021q: adding VLAN 0 to HW filter on device team0
[   97.076488][ T2954] bridge0: port 1(bridge_slave_0) entered blocking state
[   97.083664][ T2954] bridge0: port 1(bridge_slave_0) entered forwarding state
[   97.102909][ T2954] bridge0: port 2(bridge_slave_1) entered blocking state
[   97.110118][ T2954] bridge0: port 2(bridge_slave_1) entered forwarding state
[   97.186226][ T6345] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   97.219155][ T6345] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   97.629305][ T6637] loop3: detected capacity change from 0 to 256
[   97.637167][ T6637] exfat: Deprecated parameter 'namecase'
[   97.644314][ T6633] loop1: detected capacity change from 0 to 1024
[   97.731783][ T6637] exFAT-fs (loop3): failed to load upcase table (idx : 0x00017f3e, chksum : 0x0b83170a, utbl_chksum : 0xe619d30d)
[   97.823682][ T6345] 8021q: adding VLAN 0 to HW filter on device batadv0
[   97.990936][ T6633] hfsplus: xattr searching failed
[   98.092359][ T6633] hfsplus: b-tree write err: -5, ino 3
[   98.439430][ T6345] veth0_vlan: entered promiscuous mode
[   98.499073][ T6345] veth1_vlan: entered promiscuous mode
[   98.600983][ T6345] veth0_macvtap: entered promiscuous mode
[   98.630805][ T6345] veth1_macvtap: entered promiscuous mode
[   98.649925][ T6345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   98.660821][ T6345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   98.672497][ T6345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   98.684021][ T6345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   98.694564][ T6345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   98.705377][ T6345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   98.715461][ T6345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   98.726339][ T6345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   98.739556][ T6345] batman_adv: batadv0: Interface activated: batadv_slave_0
[   98.749832][ T6345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   98.762417][ T6345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   98.772350][ T6345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   98.783675][ T6345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   98.794454][ T6345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   98.805425][ T6345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   98.815690][ T6345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   98.826518][ T6345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   98.838277][ T6345] batman_adv: batadv0: Interface activated: batadv_slave_1
[   98.938639][ T6689] loop0: detected capacity change from 0 to 512
[   98.945892][ T6689] EXT4-fs: Ignoring removed nomblk_io_submit option
[   98.956393][ T6345] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   98.965138][ T6345] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   98.974575][ T6345] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   98.984074][ T6345] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   99.056464][ T6689] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.206: corrupted in-inode xattr: invalid ea_ino
[   99.148287][   T81] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   99.188938][   T81] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   99.214432][ T6689] EXT4-fs error (device loop0): ext4_orphan_get:1393: comm syz.0.206: couldn't read orphan inode 15 (err -117)
[   99.257668][ T2954] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   99.288004][ T2954] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   99.308038][ T6689] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   99.353403][ T6703] loop3: detected capacity change from 0 to 16
[   99.414510][ T6703] erofs: (device loop3): mounted with root inode @ nid 36.
[   99.464100][ T6703] erofs: (device loop3): erofs_fill_dentries: bogus dirent @ nid 36
[   99.628436][ T5855] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.684464][ T6715] loop5: detected capacity change from 0 to 1024
[   99.703238][ T6715] EXT4-fs: Ignoring removed orlov option
[   99.733159][ T6715] EXT4-fs: Ignoring removed bh option
[   99.800094][ T6715] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   99.817340][ T6725] loop0: detected capacity change from 0 to 256
[   99.824501][ T6725] exfat: Deprecated parameter 'utf8'
[   99.830679][ T6725] exfat: Deprecated parameter 'utf8'
[   99.840851][ T6725] exfat: Deprecated parameter 'utf8'
[   99.900256][ T6725] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d)
[  100.092637][ T5968] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.416494][ T6737] loop6: detected capacity change from 0 to 32768
[  100.429879][ T6737] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.218 (6737)
[  100.475688][ T6737] BTRFS info (device loop6): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  100.486045][ T6737] BTRFS info (device loop6): using sha256 (sha256-avx2) checksum algorithm
[  100.495780][ T6737] BTRFS info (device loop6): using free-space-tree
[  100.569103][ T5913] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  100.737796][ T5913] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  100.750671][ T5913] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  100.765734][ T5913] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  100.779021][ T5913] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  100.788379][ T5913] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  100.807494][ T5913] usb 2-1: config 0 descriptor??
[  100.913469][ T6773] x_tables: unsorted underflow at hook 2
[  101.156406][   T95] usb 1-1: new full-speed USB device number 3 using dummy_hcd
[  101.244059][ T6345] BTRFS info (device loop6): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  101.291963][ T5913] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[  101.301278][ T5913] plantronics 0003:047F:FFFF.0003: No inputs registered, leaving
[  101.315272][ T6777] loop3: detected capacity change from 0 to 1024
[  101.373228][ T5913] plantronics 0003:047F:FFFF.0003: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[  101.386458][   T95] usb 1-1: config 179 has an invalid interface number: 65 but max is 0
[  101.394843][   T95] usb 1-1: config 179 has no interface number 0
[  101.402389][   T95] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 10
[  101.451793][ T6777] hfsplus: xattr searching failed
[  101.513636][ T5913] usb 2-1: USB disconnect, device number 3
[  101.528006][   T95] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1029, setting to 64
[  101.582985][   T95] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 65535, setting to 64
[  101.633617][   T95] usb 1-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  101.669415][   T95] usb 1-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00
[  101.672640][ T1078] hfsplus: b-tree write err: -5, ino 4
[  101.725322][   T95] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  101.767631][ T6773] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  101.781643][ T6773] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  101.861027][ T6781] loop5: detected capacity change from 0 to 4096
[  101.872368][   T95] input: Honey Bee Xbox360 dancepad as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:179.65/input/input9
[  101.958891][ T6781] ntfs3(loop5): Different NTFS sector size (1024) and media sector size (512).
[  102.012296][ T5207] input input9: unable to receive magic message: -110
[  102.085398][ T5913] usb 1-1: USB disconnect, device number 3
[  102.091364][    C1] xpad 1-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  102.091767][    C1] xpad 1-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[  102.119715][ T5913] xpad 1-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19
[  102.170612][ T6796] loop6: detected capacity change from 0 to 128
[  102.492180][ T6781] ntfs3(loop5): Failed to load $Extend (-22).
[  102.505934][ T6781] ntfs3(loop5): Failed to initialize $Extend.
[  102.603729][ T6809] Bluetooth: MGMT ver 1.23
[  102.776567][ T5928] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  102.937876][ T5928] usb 7-1: New USB device found, idVendor=093a, idProduct=2601, bcdDevice= 8.8f
[  102.962223][ T5928] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  102.972567][ T5928] usb 7-1: config 0 descriptor??
[  103.233159][ T5928] usb 7-1: string descriptor 0 read error: -22
[  103.242692][ T5928] gspca_main: pac7311-2.14.0 probing 093a:2601
[  103.345750][ T5913] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  103.455175][ T5928] gspca_pac7311: reg_w() failed index 0xff, value 0x01, error -71
[  103.473741][ T5928] pac7311 7-1:0.0: probe with driver pac7311 failed with error -71
[  103.505828][ T5913] usb 2-1: Using ep0 maxpacket: 32
[  103.513381][ T5928] usb 7-1: USB disconnect, device number 2
[  103.533551][ T5913] usb 2-1: config 0 has an invalid interface number: 67 but max is 0
[  103.559970][ T5913] usb 2-1: config 0 has no interface number 0
[  103.591787][ T5913] usb 2-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[  103.602283][ T5913] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  103.616787][ T5913] usb 2-1: Product: syz
[  103.621429][ T5913] usb 2-1: Manufacturer: syz
[  103.626848][ T5913] usb 2-1: SerialNumber: syz
[  103.637880][ T5913] usb 2-1: config 0 descriptor??
[  103.649385][ T5913] smsc95xx v2.0.0
[  103.925722][    T9] usb 6-1: new full-speed USB device number 3 using dummy_hcd
[  104.089399][    T9] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  104.115266][    T9] usb 6-1: New USB device found, idVendor=1e7d, idProduct=3138, bcdDevice= 0.00
[  104.129799][    T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  104.180178][    T9] usb 6-1: config 0 descriptor??
[  104.279948][ T6883] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap1
[  104.294575][ T6883] gretap1: default qdisc (pfifo_fast) fail, fallback to noqueue
[  104.305927][ T6883] gretap1: entered promiscuous mode
[  104.332996][ T6883] gretap1: entered allmulticast mode
[  104.543921][ T6891] loop0: detected capacity change from 0 to 64
[  104.623790][ T6891] hfs: request for non-existent node 237 in B*Tree
[  104.635785][ T6891] hfs: request for non-existent node 237 in B*Tree
[  104.659072][    T9] ryos 0003:1E7D:3138.0004: collection stack underflow
[  104.674260][ T5913] smsc95xx 2-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -71
[  104.691490][    T9] ryos 0003:1E7D:3138.0004: item 0 1 0 12 parsing failed
[  104.695138][ T5913] smsc95xx 2-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  104.717168][    T9] ryos 0003:1E7D:3138.0004: parse failed
[  104.723048][ T5913] smsc95xx 2-1:0.67 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000014: -71
[  104.723623][ T6892] hfs: request for non-existent node 237 in B*Tree
[  104.750820][ T5913] smsc95xx 2-1:0.67: probe with driver smsc95xx failed with error -71
[  104.755116][    T9] ryos 0003:1E7D:3138.0004: probe with driver ryos failed with error -22
[  104.784169][ T6892] hfs: request for non-existent node 237 in B*Tree
[  104.784285][ T5913] usb 2-1: USB disconnect, device number 4
[  104.802136][ T6892] hfs: request for non-existent node 237 in B*Tree
[  104.840471][ T6892] hfs: request for non-existent node 237 in B*Tree
[  104.900258][   T95] usb 6-1: USB disconnect, device number 3
[  104.961066][ T6873] loop3: detected capacity change from 0 to 40427
[  104.968929][   T12] hfs: request for non-existent node 237 in B*Tree
[  104.980060][ T6873] F2FS-fs (loop3): Insane cp_payload (553648128 >= 504)
[  105.006768][   T12] hfs: request for non-existent node 237 in B*Tree
[  105.019114][ T6873] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  105.065019][ T6873] F2FS-fs (loop3): invalid crc value
[  105.100902][ T6873] F2FS-fs (loop3): Found nat_bits in checkpoint
[  105.202134][ T6873] F2FS-fs (loop3): Start checkpoint disabled!
[  105.238877][ T6873] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  105.251172][ T6873] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[  105.739609][   T29] kworker/u8:2: attempt to access beyond end of device
[  105.739609][   T29] loop3: rw=2049, sector=40960, nr_sectors = 8 limit=40427
[  105.758383][   T29] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  105.826441][ T6934] netlink: 'syz.5.260': attribute type 34 has an invalid length.
[  105.876265][ T5898] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  106.058580][ T5898] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  106.076473][ T5898] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  106.111057][ T5898] usb 2-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.00
[  106.138702][ T5898] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  106.176431][ T5898] usb 2-1: config 0 descriptor??
[  106.301255][ T6950] random: crng reseeded on system resumption
[  106.399984][ T5929] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  106.495803][    T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!!
[  106.567754][ T5929] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  106.598346][ T5929] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 2
[  106.612410][ T5898] cp2112 0003:10C4:EA90.0005: unknown main item tag 0x0
[  106.637485][ T5929] usb 6-1: config 1 has no interface number 0
[  106.645407][ T5898] cp2112 0003:10C4:EA90.0005: hidraw0: USB HID v0.00 Device [HID 10c4:ea90] on usb-dummy_hcd.1-1/input0
[  106.659343][ T5929] usb 6-1: config 1 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  106.694326][ T5929] usb 6-1: Duplicate descriptor for config 1 interface 1 altsetting 0, skipping
[  106.723945][ T5929] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  106.738508][ T5929] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  106.769840][ T5929] usb 6-1: Product: syz
[  106.782130][ T5929] usb 6-1: Manufacturer: syz
[  106.796483][ T5929] usb 6-1: SerialNumber: syz
[  106.823932][ T5898] cp2112 0003:10C4:EA90.0005: error requesting version
[  106.848368][ T5898] cp2112 0003:10C4:EA90.0005: probe with driver cp2112 failed with error -71
[  106.889084][ T5898] usb 2-1: USB disconnect, device number 5
[  107.174147][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  107.222846][ T6968] loop6: detected capacity change from 0 to 128
[  107.246383][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  107.283743][    T0] NOHZ tick-stop error: local softirq work is pending, handler #10!!!
[  107.312408][ T6968] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  107.333636][ T6968] ext4 filesystem being mounted at /7/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  107.361999][ T6968] syz.6.266 (pid 6968) is setting deprecated v1 encryption policy; recommend upgrading to v2.
[  107.431523][ T6959] loop3: detected capacity change from 0 to 32768
[  107.483058][ T6959] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.265 (6959)
[  107.515748][ T6959] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  107.536505][ T6959] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[  107.588465][ T6345] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  107.597790][ T6959] BTRFS info (device loop3): using free-space-tree
[  107.741145][ T5929] cdc_ncm 6-1:1.1: bind() failure
[  107.975701][ T5929] usb 6-1: USB disconnect, device number 4
[  108.133697][ T5844] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  108.246080][ T6974] loop1: detected capacity change from 0 to 32768
[  108.253356][ T6974] XFS: ikeep mount option is deprecated.
[  108.259162][ T6974] XFS: noikeep mount option is deprecated.
[  108.686541][ T6974] XFS (loop1): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  108.688687][ T7009] loop0: detected capacity change from 0 to 32768
[  108.757059][ T6996] loop6: detected capacity change from 0 to 32768
[  108.774309][ T6996] BTRFS: device fsid 3d39d0ba-bdae-447e-827b-b091e1a68885 devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.268 (6996)
[  108.808787][ T6996] BTRFS info (device loop6): first mount of filesystem 3d39d0ba-bdae-447e-827b-b091e1a68885
[  108.824473][ T6996] BTRFS info (device loop6): using crc32c (crc32c-intel) checksum algorithm
[  108.837682][ T6996] BTRFS info (device loop6): using free-space-tree
[  108.866333][ T6974] XFS (loop1): Ending clean mount
[  108.899631][ T6974] XFS (loop1): Quotacheck needed: Please wait.
[  109.047742][ T7009] XFS (loop0): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  109.054745][ T6974] XFS (loop1): Quotacheck: Done.
[  109.233446][ T7051] Trying to write to read-only block-device nullb0
[  109.330741][ T7009] XFS (loop0): Ending clean mount
[  109.374249][ T7009] XFS (loop0): Quotacheck needed: Please wait.
[  109.413402][ T5845] XFS (loop1): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  109.539977][   T30] audit: type=1804 audit(1730523339.981:18): pid=6996 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.6.268" name="/newroot/8/file0/file1" dev="loop6" ino=260 res=1 errno=0
[  109.711599][ T7009] XFS (loop0): Quotacheck: Done.
[  109.780426][ T6345] BTRFS info (device loop6): last unmount of filesystem 3d39d0ba-bdae-447e-827b-b091e1a68885
[  109.949725][ T5855] XFS (loop0): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  110.115500][ T7067] loop1: detected capacity change from 0 to 256
[  110.196432][ T7067] exfat: Unknown parameter '0x00000000000000000xffffffffffffffff'
[  110.240323][ T7061] loop3: detected capacity change from 0 to 40427
[  110.276915][ T7061] F2FS-fs (loop3): Insane cp_payload (553648128 >= 504)
[  110.325470][ T7061] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  110.354106][ T7061] F2FS-fs (loop3): invalid crc value
[  110.396755][ T7061] F2FS-fs (loop3): Found nat_bits in checkpoint
[  110.577097][ T7061] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  110.584205][ T7061] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  110.593959][ T7079] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -11 0
[  110.636320][   T30] audit: type=1326 audit(1730523341.081:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7082 comm="syz.5.282" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f149e37e719 code=0x0
[  110.707139][ T7061] syz.3.275: attempt to access beyond end of device
[  110.707139][ T7061] loop3: rw=2049, sector=40960, nr_sectors = 8 limit=40427
[  110.772989][ T7089] loop1: detected capacity change from 0 to 256
[  110.800112][ T7061] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  110.838884][ T7089] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xb107716d, utbl_chksum : 0xe619d30d)
[  110.979980][ T7061] syz.3.275: attempt to access beyond end of device
[  110.979980][ T7061] loop3: rw=2049, sector=41000, nr_sectors = 8 limit=40427
[  111.055757][ T7061] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  111.529463][ T7081] loop6: detected capacity change from 0 to 40427
[  111.564917][ T7081] F2FS-fs (loop6): build fault injection attr: rate: 690, type: 0x1fffff
[  111.614722][ T7081] F2FS-fs (loop6): Image doesn't support compression
[  111.663627][ T7104] loop0: detected capacity change from 0 to 512
[  111.682319][ T7081] F2FS-fs (loop6): Image doesn't support compression
[  111.717341][ T7081] F2FS-fs (loop6): invalid crc value
[  111.828543][ T7081] F2FS-fs (loop6): Found nat_bits in checkpoint
[  111.895275][ T7104] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  111.909162][ T7104] ext4 filesystem being mounted at /59/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  111.946551][ T7081] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  111.977556][ T7081] F2FS-fs (loop6): inject alloc nid in f2fs_alloc_nid of f2fs_new_inode+0x14d/0x1220
[  112.012382][   T30] audit: type=1800 audit(1730523342.411:20): pid=7081 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.277" name="file1" dev="loop6" ino=10 res=0 errno=0
[  112.033069][   T30] audit: type=1800 audit(1730523342.411:21): pid=7081 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.277" name="file1" dev="loop6" ino=10 res=0 errno=0
[  112.084961][ T6345] syz-executor: attempt to access beyond end of device
[  112.084961][ T6345] loop6: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[  112.087371][ T7124] loop3: detected capacity change from 0 to 4096
[  112.103916][ T6345] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[  112.117859][ T6345] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[  112.138087][ T5855] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.367379][ T7131] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  113.046325][ T7164] loop5: detected capacity change from 0 to 1024
[  113.175973][   T52] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  113.222787][ T7172] mmap: syz.3.317 (7172) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  113.342045][   T52] usb 2-1: Using ep0 maxpacket: 8
[  113.368494][   T52] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  113.397940][   T52] usb 2-1: New USB device found, idVendor=046d, idProduct=0892, bcdDevice=6d.2a
[  113.442291][   T52] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  113.449281][ T7178] loop6: detected capacity change from 0 to 1764
[  113.464311][   T52] usb 2-1: config 0 descriptor??
[  113.484357][ T7145] loop0: detected capacity change from 0 to 32768
[  113.493365][   T52] gspca_main: vc032x-2.14.0 probing 046d:0892
[  113.557919][ T7145] JBD2: Ignoring recovery information on journal
[  113.763191][ T7145] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  113.973835][ T5855] ocfs2: Unmounting device (7,0) on (node local)
[  114.069100][ T7198] loop5: detected capacity change from 0 to 4096
[  114.100000][ T7198] ntfs3(loop5): Different NTFS sector size (1024) and media sector size (512).
[  114.356853][ T7213] loop0: detected capacity change from 0 to 1024
[  114.368859][ T7213] EXT4-fs: Ignoring removed nomblk_io_submit option
[  114.410761][ T7213] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  114.450906][ T7213] System zones: 0-1, 3-36
[  114.468333][ T7213] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  114.584734][   T52] gspca_vc032x: reg_r err -71
[  114.589829][   T52] vc032x 2-1:0.0: probe with driver vc032x failed with error -71
[  114.605464][   T52] usb 2-1: USB disconnect, device number 6
[  114.716285][ T5855] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.792079][ T7232] loop5: detected capacity change from 0 to 256
[  114.974376][ T7238] netlink: 'syz.0.335': attribute type 1 has an invalid length.
[  115.411501][ T7242] loop6: detected capacity change from 0 to 32768
[  115.544646][ T7242] XFS (loop6): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  115.696050][ T5929] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  115.734944][ T7275] loop1: detected capacity change from 0 to 4096
[  115.770677][ T7242] XFS (loop6): Ending clean mount
[  115.818235][ T7275] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512).
[  115.847511][ T5929] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  115.870265][ T5929] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  115.888327][ T7275] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  115.904117][ T5929] usb 6-1: New USB device found, idVendor=1fd2, idProduct=6007, bcdDevice= 0.00
[  115.913671][ T5929] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  115.924412][ T5929] usb 6-1: config 0 descriptor??
[  115.963529][ T6345] XFS (loop6): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  115.985365][   T30] audit: type=1800 audit(1730523346.421:22): pid=7275 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.344" name="bus" dev="loop1" ino=33 res=0 errno=0
[  116.018700][   T30] audit: type=1800 audit(1730523346.451:23): pid=7275 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.344" name="bus" dev="loop1" ino=33 res=0 errno=0
[  116.262535][ T7285] geneve2: entered promiscuous mode
[  116.268246][ T7285] geneve2: entered allmulticast mode
[  116.351180][ T5849] Bluetooth: hci4: command 0x0405 tx timeout
[  116.376839][ T5929] hid-multitouch 0003:1FD2:6007.0006: unknown main item tag 0x0
[  116.384728][ T5929] hid-multitouch 0003:1FD2:6007.0006: unknown main item tag 0x0
[  116.392924][ T5929] hid-multitouch 0003:1FD2:6007.0006: unknown main item tag 0x0
[  116.401252][ T5929] hid-multitouch 0003:1FD2:6007.0006: unknown main item tag 0x0
[  116.409123][ T5929] hid-multitouch 0003:1FD2:6007.0006: unknown main item tag 0x0
[  116.456087][ T5929] hid-multitouch 0003:1FD2:6007.0006: hidraw0: USB HID v0.00 Device [HID 1fd2:6007] on usb-dummy_hcd.5-1/input0
[  116.624125][ T7298] loop1: detected capacity change from 0 to 4096
[  116.668741][ T5929] usb 6-1: USB disconnect, device number 5
[  116.805883][ T5928] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  116.990265][ T5928] usb 7-1: New USB device found, idVendor=0813, idProduct=0001, bcdDevice=3a.08
[  116.999939][ T5928] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  117.017500][ T5928] usb 7-1: config 0 descriptor??
[  117.062149][ T5928] gspca_main: cpia1-2.14.0 probing 0813:0001
[  117.257221][ T5928] gspca_cpia1: usb_control_msg 03, error -71
[  117.275727][ T5928] gspca_cpia1: usb_control_msg 01, error -71
[  117.298564][ T5928] cpia1 7-1:0.0: only firmware version 1 is supported (got: 0)
[  117.319555][ T7324] loop3: detected capacity change from 0 to 1024
[  117.332905][ T5928] usb 7-1: USB disconnect, device number 3
[  117.518618][   T81] hfsplus: b-tree write err: -5, ino 4
[  118.705241][ T7364] netlink: 24 bytes leftover after parsing attributes in process `syz.0.374'.
[  118.771443][ T7364] vlan2: entered allmulticast mode
[  118.873652][ T7367] netlink: 165 bytes leftover after parsing attributes in process `syz.3.375'.
[  118.894256][ T7344] loop6: detected capacity change from 0 to 40427
[  119.087125][ T7344] F2FS-fs (loop6): invalid crc value
[  119.315636][ T7344] F2FS-fs (loop6): Found nat_bits in checkpoint
[  119.427617][ T7344] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  119.597034][ T6345] syz-executor: attempt to access beyond end of device
[  119.597034][ T6345] loop6: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  119.662217][ T6345] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[  120.189408][ T7387] loop1: detected capacity change from 0 to 40427
[  120.225520][ T7387] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  120.233692][ T7387] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  120.655757][    T9] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  120.688087][ T7387] F2FS-fs (loop1): Found nat_bits in checkpoint
[  120.803198][ T7387] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  120.810710][ T7387] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  120.850643][    T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  120.862109][    T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  120.887510][    T9] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  120.965741][    T9] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  120.975870][    T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  120.998254][    T9] usb 1-1: config 0 descriptor??
[  121.125865][ T7430] loop5: detected capacity change from 0 to 164
[  121.203173][ T7428] loop6: detected capacity change from 0 to 1024
[  121.258588][ T7428] EXT4-fs: Ignoring removed nomblk_io_submit option
[  121.285766][ T7428] EXT4-fs (loop6): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  121.375136][ T7428] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  121.392292][   T30] audit: type=1326 audit(1730523351.811:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7438 comm="syz.3.394" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f27fd37e719 code=0x0
[  121.470757][    T9] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0
[  121.486431][    T9] plantronics 0003:047F:FFFF.0007: No inputs registered, leaving
[  121.561018][    T9] plantronics 0003:047F:FFFF.0007: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  121.738919][ T6345] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  121.758423][ T5928] usb 1-1: USB disconnect, device number 4
[  121.809489][ T7452] loop1: detected capacity change from 0 to 2048
[  121.855335][ T7458] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  122.035864][ T7458] NILFS (loop1): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3)
[  122.069856][ T7458] NILFS error (device loop1): nilfs_bmap_propagate: broken bmap (inode number=4)
[  122.101414][ T7458] Remounting filesystem read-only
[  122.264724][ T5845] NILFS (loop1): disposed unprocessed dirty file(s) when stopping log writer
[  122.501983][ T7486] netlink: 12 bytes leftover after parsing attributes in process `syz.1.403'.
[  122.772898][ T7497] loop5: detected capacity change from 0 to 128
[  122.857860][ T7497] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256
[  122.915072][ T7497] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  122.939473][ T7505] loop1: detected capacity change from 0 to 1024
[  123.025894][ T7505] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  123.362517][ T7519] loop3: detected capacity change from 0 to 16
[  123.393368][ T7519] erofs: (device loop3): mounted with root inode @ nid 36.
[  123.702458][ T5844] erofs: (device loop3): erofs_map_blocks_flatmode: inline data across blocks @ nid 46
[  123.725241][ T5844] erofs: (device loop3): erofs_readdir: fail to readdir of logical block 0 of nid 46
[  123.751271][ T7529] loop6: detected capacity change from 0 to 4096
[  123.866184][ T5844] erofs: (device loop3): erofs_readdir: invalid de[0].nameoff 0 @ nid 89
[  123.911026][ T7541] loop1: detected capacity change from 0 to 1024
[  123.979656][ T7529] ntfs3(loop6): Different NTFS sector size (4096) and media sector size (512).
[  124.054071][ T7541] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  124.205472][ T5845] EXT4-fs error (device loop1): ext4_empty_dir:3094: inode #11: comm syz-executor: invalid size
[  124.349730][ T5845] EXT4-fs error (device loop1): ext4_empty_dir:3094: inode #11: comm syz-executor: invalid size
[  124.397772][ T5845] EXT4-fs error (device loop1): ext4_empty_dir:3094: inode #11: comm syz-executor: invalid size
[  124.471625][ T5844] syz-executor (5844) used greatest stack depth: 18352 bytes left
[  124.497398][ T5845] EXT4-fs error (device loop1): ext4_empty_dir:3094: inode #11: comm syz-executor: invalid size
[  124.526550][ T5845] EXT4-fs error (device loop1): ext4_empty_dir:3094: inode #11: comm syz-executor: invalid size
[  124.583234][ T5845] EXT4-fs error (device loop1): ext4_empty_dir:3094: inode #11: comm syz-executor: invalid size
[  124.641489][ T2954] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  124.653710][ T5845] EXT4-fs error (device loop1): ext4_empty_dir:3094: inode #11: comm syz-executor: invalid size
[  124.756985][ T5845] EXT4-fs error (device loop1): ext4_empty_dir:3094: inode #11: comm syz-executor: invalid size
[  124.796727][ T5928] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  124.822639][ T5845] EXT4-fs error (device loop1): ext4_empty_dir:3094: inode #11: comm syz-executor: invalid size
[  124.889461][ T5845] EXT4-fs error (device loop1): ext4_empty_dir:3094: inode #11: comm syz-executor: invalid size
[  124.913200][ T2954] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  124.995389][ T5928] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  125.040516][ T5928] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  125.085679][ T5928] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  125.113050][ T5928] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  125.127629][ T5928] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  125.181519][ T5849] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  125.186800][ T2954] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  125.210098][ T5928] usb 6-1: config 0 descriptor??
[  125.248377][ T5849] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  125.291113][ T5849] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  125.384435][ T5849] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  125.404170][ T5849] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  125.421386][ T5849] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  125.449992][ T2954] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  125.492561][ T7587] mac80211_hwsim hwsim2 wlan0: entered promiscuous mode
[  125.510878][ T7587] macvlan2: entered allmulticast mode
[  125.520753][ T7587] mac80211_hwsim hwsim2 wlan0: entered allmulticast mode
[  125.535454][ T7587] mac80211_hwsim hwsim2 wlan0: left allmulticast mode
[  125.552316][ T7587] mac80211_hwsim hwsim2 wlan0: left promiscuous mode
[  125.691074][ T5928] plantronics 0003:047F:FFFF.0008: No inputs registered, leaving
[  125.720334][ T5928] plantronics 0003:047F:FFFF.0008: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.5-1/input0
[  125.769326][ T5845] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  126.046289][    T9] usb 6-1: USB disconnect, device number 6
[  126.357568][ T2954] bridge_slave_1: left allmulticast mode
[  126.363457][ T2954] bridge_slave_1: left promiscuous mode
[  126.370883][ T2954] bridge0: port 2(bridge_slave_1) entered disabled state
[  126.441775][ T2954] bridge_slave_0: left allmulticast mode
[  126.470107][ T2954] bridge_slave_0: left promiscuous mode
[  126.503679][ T2954] bridge0: port 1(bridge_slave_0) entered disabled state
[  126.673028][ T2954] tipc: Resetting bearer <eth:bond0>
[  126.916402][ T5849] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  126.932862][ T5849] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  126.985795][ T5849] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  127.038225][ T5849] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  127.048277][ T5849] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  127.060903][ T7598] loop6: detected capacity change from 0 to 32768
[  127.068327][ T5849] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  127.076429][ T7598] XFS: ikeep mount option is deprecated.
[  127.082194][ T7598] XFS: noikeep mount option is deprecated.
[  127.216801][ T7598] XFS (loop6): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  127.328889][ T7598] XFS (loop6): Ending clean mount
[  127.349880][ T7598] XFS (loop6): Quotacheck needed: Please wait.
[  127.468145][ T5849] Bluetooth: hci0: command tx timeout
[  127.486007][ T7598] XFS (loop6): Quotacheck: Done.
[  127.596081][ T7622] loop5: detected capacity change from 0 to 40427
[  127.625670][ T7622] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12
[  127.633480][ T7622] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  127.714620][ T7622] F2FS-fs (loop5): Found nat_bits in checkpoint
[  127.716915][ T6345] XFS (loop6): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  127.786296][ T7622] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  127.793385][ T7622] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  128.206768][ T2954] tipc: Disabling bearer <eth:bond0>
[  128.219372][ T2954] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  128.239973][ T2954] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  128.264211][ T2954] bond0 (unregistering): Released all slaves
[  128.382318][ T7653] loop6: detected capacity change from 0 to 256
[  128.437267][ T7653] exFAT-fs (loop6): failed to load upcase table (idx : 0x0001e4a3, chksum : 0x009b275e, utbl_chksum : 0x7319d30d)
[  128.495025][ T2954] tipc: Left network mode
[  128.810964][ T7582] chnl_net:caif_netlink_parms(): no params data found
[  128.952134][ T7674] vlan2: entered allmulticast mode
[  128.959178][ T7674] bond0: entered allmulticast mode
[  128.970612][ T7674] bond_slave_0: entered allmulticast mode
[  128.980504][ T7674] bond_slave_1: entered allmulticast mode
[  129.014826][ T7674] bond0: left allmulticast mode
[  129.025143][ T7674] bond_slave_0: left allmulticast mode
[  129.037562][ T7674] bond_slave_1: left allmulticast mode
[  129.145798][ T5849] Bluetooth: hci1: command tx timeout
[  129.194767][ T7649] loop5: detected capacity change from 0 to 32768
[  129.283716][ T7649] XFS (loop5): Mounting V5 Filesystem ca7e2101-b8f1-4838-8e2d-7637b90620e6
[  129.478541][ T7649] XFS (loop5): Ending clean mount
[  129.545793][ T5849] Bluetooth: hci0: command tx timeout
[  129.568568][ T7623] chnl_net:caif_netlink_parms(): no params data found
[  129.684237][ T5968] XFS (loop5): Unmounting Filesystem ca7e2101-b8f1-4838-8e2d-7637b90620e6
[  129.701416][ T2954] hsr_slave_0: left promiscuous mode
[  129.775540][ T2954] hsr_slave_1: left promiscuous mode
[  129.815890][ T2954] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  129.838698][ T2954] batman_adv: batadv0: Removing interface: batadv_slave_0
[  129.900023][ T2954] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  129.935895][ T2954] batman_adv: batadv0: Removing interface: batadv_slave_1
[  130.055958][ T2954] veth1_macvtap: left promiscuous mode
[  130.061913][ T2954] veth0_macvtap: left promiscuous mode
[  130.074247][ T2954] veth1_vlan: left promiscuous mode
[  130.080732][ T2954] veth0_vlan: left promiscuous mode
[  130.638843][ T2954] team0 (unregistering): Port device team_slave_1 removed
[  130.694884][ T2954] team0 (unregistering): Port device team_slave_0 removed
[  131.163604][ T7582] bridge0: port 1(bridge_slave_0) entered blocking state
[  131.173455][ T7582] bridge0: port 1(bridge_slave_0) entered disabled state
[  131.182208][ T7582] bridge_slave_0: entered allmulticast mode
[  131.189759][ T7582] bridge_slave_0: entered promiscuous mode
[  131.225826][ T5849] Bluetooth: hci1: command tx timeout
[  131.322788][ T7582] bridge0: port 2(bridge_slave_1) entered blocking state
[  131.335764][ T7582] bridge0: port 2(bridge_slave_1) entered disabled state
[  131.343805][ T7582] bridge_slave_1: entered allmulticast mode
[  131.368283][ T7582] bridge_slave_1: entered promiscuous mode
[  131.569670][ T7582] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  131.626249][ T5849] Bluetooth: hci0: command tx timeout
[  131.668658][ T7582] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  131.785219][ T7623] bridge0: port 1(bridge_slave_0) entered blocking state
[  131.816309][ T7623] bridge0: port 1(bridge_slave_0) entered disabled state
[  131.855549][ T7623] bridge_slave_0: entered allmulticast mode
[  131.862674][ T7623] bridge_slave_0: entered promiscuous mode
[  131.909937][ T7623] bridge0: port 2(bridge_slave_1) entered blocking state
[  131.926215][ T7623] bridge0: port 2(bridge_slave_1) entered disabled state
[  131.943995][ T7623] bridge_slave_1: entered allmulticast mode
[  131.956512][ T7623] bridge_slave_1: entered promiscuous mode
[  131.973774][ T7753] netlink: 'syz.5.469': attribute type 5 has an invalid length.
[  132.004583][ T7758] netlink: 176 bytes leftover after parsing attributes in process `syz.6.471'.
[  132.036331][ T7758] netlink: 176 bytes leftover after parsing attributes in process `syz.6.471'.
[  132.053142][ T7582] team0: Port device team_slave_0 added
[  132.067713][ T7758] Zero length message leads to an empty skb
[  132.089214][ T7582] team0: Port device team_slave_1 added
[  132.182576][ T7765] loop5: detected capacity change from 0 to 512
[  132.211909][ T7767] loop6: detected capacity change from 0 to 64
[  132.275799][ T7765] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  132.312992][ T7582] batman_adv: batadv0: Adding interface: batadv_slave_0
[  132.336729][ T7582] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  132.357908][ T7765] fs-verity: sha512 using implementation "sha512-avx2"
[  132.364959][ T7582] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  132.412969][ T7623] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  132.430085][ T7623] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  132.444879][ T7765] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.473: bg 0: block 144: padding at end of block bitmap is not set
[  132.469518][ T7582] batman_adv: batadv0: Adding interface: batadv_slave_1
[  132.485497][   T30] audit: type=1804 audit(1730523362.921:25): pid=7765 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.5.473" name="/newroot/97/file0/file1" dev="loop5" ino=15 res=1 errno=0
[  132.486489][ T7582] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  132.538611][ T7582] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  132.560961][ T7775] geneve2: entered promiscuous mode
[  132.566869][ T7775] geneve2: entered allmulticast mode
[  132.588075][ T5968] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.598449][    T9] usb 1-1: new full-speed USB device number 5 using dummy_hcd
[  132.714095][ T7623] team0: Port device team_slave_0 added
[  132.724765][ T7623] team0: Port device team_slave_1 added
[  132.881866][    T9] usb 1-1: config 0 has an invalid interface number: 255 but max is 0
[  132.890608][    T9] usb 1-1: config 0 has no interface number 0
[  132.896977][    T9] usb 1-1: too many endpoints for config 0 interface 255 altsetting 255: 255, using maximum allowed: 30
[  132.908578][    T9] usb 1-1: config 0 interface 255 altsetting 255 has 0 endpoint descriptors, different from the interface descriptor's value: 255
[  132.922234][    T9] usb 1-1: config 0 interface 255 has no altsetting 0
[  132.929239][    T9] usb 1-1: New USB device found, idVendor=0bda, idProduct=0177, bcdDevice=7d.0b
[  132.938582][    T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  132.959339][    T9] usb 1-1: config 0 descriptor??
[  132.986852][    T9] ums-realtek 1-1:0.255: USB Mass Storage device detected
[  132.988734][ T7582] hsr_slave_0: entered promiscuous mode
[  133.031990][ T7582] hsr_slave_1: entered promiscuous mode
[  133.090080][ T7623] batman_adv: batadv0: Adding interface: batadv_slave_0
[  133.100529][ T7623] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  133.174862][ T7623] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  133.185916][    T9] usb 1-1: USB disconnect, device number 5
[  133.228534][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  133.235048][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  133.265353][ T7623] batman_adv: batadv0: Adding interface: batadv_slave_1
[  133.292679][ T7623] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  133.323774][ T5849] Bluetooth: hci1: command tx timeout
[  133.343684][ T7623] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  133.523749][ T7623] hsr_slave_0: entered promiscuous mode
[  133.552074][ T7623] hsr_slave_1: entered promiscuous mode
[  133.559010][ T7623] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  133.585018][ T7623] Cannot create hsr debugfs directory
[  133.706753][ T5849] Bluetooth: hci0: command tx timeout
[  133.883277][ T7801] loop6: detected capacity change from 0 to 32768
[  133.916897][ T7801] XFS (loop6): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  134.121609][ T7582] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  134.132894][ T7801] XFS (loop6): Ending clean mount
[  134.141951][ T7582] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  134.168424][ T7582] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  134.181477][ T7801] XFS (loop6): Quotacheck needed: Please wait.
[  134.190732][ T7582] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  134.310428][ T7801] XFS (loop6): Quotacheck: Done.
[  134.462844][ T7623] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  134.473096][ T6345] XFS (loop6): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  134.516858][ T7623] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  134.543901][ T7623] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  134.610572][ T7623] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  134.697375][ T7582] 8021q: adding VLAN 0 to HW filter on device bond0
[  134.778738][ T7582] 8021q: adding VLAN 0 to HW filter on device team0
[  134.876599][   T81] bridge0: port 1(bridge_slave_0) entered blocking state
[  134.883713][   T81] bridge0: port 1(bridge_slave_0) entered forwarding state
[  134.927205][   T81] bridge0: port 2(bridge_slave_1) entered blocking state
[  134.934364][   T81] bridge0: port 2(bridge_slave_1) entered forwarding state
[  135.125264][ T7582] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  135.308956][ T7623] 8021q: adding VLAN 0 to HW filter on device bond0
[  135.361867][ T7623] 8021q: adding VLAN 0 to HW filter on device team0
[  135.393682][ T5849] Bluetooth: hci1: command tx timeout
[  135.417097][   T81] bridge0: port 1(bridge_slave_0) entered blocking state
[  135.424215][   T81] bridge0: port 1(bridge_slave_0) entered forwarding state
[  135.508470][ T1078] bridge0: port 2(bridge_slave_1) entered blocking state
[  135.515688][ T1078] bridge0: port 2(bridge_slave_1) entered forwarding state
[  135.703825][ T7582] 8021q: adding VLAN 0 to HW filter on device batadv0
[  136.055123][ T7623] 8021q: adding VLAN 0 to HW filter on device batadv0
[  136.367424][ T7582] veth0_vlan: entered promiscuous mode
[  136.441655][ T7582] veth1_vlan: entered promiscuous mode
[  136.555526][ T7582] veth0_macvtap: entered promiscuous mode
[  136.574890][ T7922] loop6: detected capacity change from 0 to 2048
[  136.605196][ T7922] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  136.636888][ T7582] veth1_macvtap: entered promiscuous mode
[  136.697627][ T7582] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  136.756036][ T7582] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  136.783787][ T7582] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  136.805163][ T7582] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  136.825259][ T7582] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  136.845661][ T7582] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  136.865718][ T7582] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  136.885996][ T7582] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  136.907450][ T7582] batman_adv: batadv0: Interface activated: batadv_slave_0
[  137.034604][ T7623] veth0_vlan: entered promiscuous mode
[  137.089821][ T7582] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  137.103855][ T7582] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  137.127966][ T7582] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  137.140749][ T7582] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  137.151064][ T7582] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  137.161602][ T7582] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  137.164978][ T7932] loop5: detected capacity change from 0 to 256
[  137.172399][ T7582] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  137.172421][ T7582] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  137.173815][ T7582] batman_adv: batadv0: Interface activated: batadv_slave_1
[  137.252187][ T7582] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  137.261437][ T7582] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  137.272012][ T7582] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  137.291861][ T7932] FAT-fs (loop5): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[  137.301524][ T7582] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  137.338055][ T7623] veth1_vlan: entered promiscuous mode
[  137.525514][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  137.548062][ T7623] veth0_macvtap: entered promiscuous mode
[  137.559573][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  137.601355][ T7623] veth1_macvtap: entered promiscuous mode
[  137.618529][   T30] audit: type=1326 audit(1730523368.061:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7938 comm="syz.5.510" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f149e37e719 code=0x0
[  137.672421][ T7623] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  137.691032][ T7623] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  137.729648][ T7623] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  137.745423][ T7623] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  137.764360][ T7623] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  137.783544][ T7623] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  137.802098][ T7623] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  137.818496][ T7623] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  137.855669][ T7623] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  137.870849][ T7623] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  137.894478][ T7623] batman_adv: batadv0: Interface activated: batadv_slave_0
[  137.966616][ T7928] loop6: detected capacity change from 0 to 32768
[  137.987885][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  137.997955][ T7623] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  138.007996][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  138.021913][ T7623] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  138.033231][ T7623] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  138.044317][ T7623] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  138.046952][ T7928] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.506 (7928)
[  138.054778][ T7623] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  138.093221][ T7623] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  138.103425][ T7623] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  138.114327][ T7623] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  138.124327][ T7623] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  138.134969][ T7623] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  138.146992][ T7623] batman_adv: batadv0: Interface activated: batadv_slave_1
[  138.157239][ T7623] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  138.166236][ T7623] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  138.174965][ T7623] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  138.183838][ T7623] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  138.359059][ T7928] BTRFS info (device loop6): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  138.405504][ T7928] BTRFS info (device loop6): using blake2b (blake2b-256-generic) checksum algorithm
[  138.461110][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  138.471212][ T7928] BTRFS info (device loop6): using free-space-tree
[  138.511586][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  138.676236][ T7963] gretap0: entered promiscuous mode
[  138.696694][ T7963] gretap0: left promiscuous mode
[  138.873642][   T30] audit: type=1804 audit(1730523369.311:27): pid=7990 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.6.506" name="/newroot/58/bus/file2" dev="loop6" ino=261 res=1 errno=0
[  138.978904][   T53] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  139.021298][   T53] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  139.036804][ T6345] BTRFS info (device loop6): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  139.208882][    T9] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  139.366034][    T9] usb 6-1: Using ep0 maxpacket: 32
[  139.396328][    T9] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x85 has an invalid bInterval 0, changing to 7
[  139.424911][    T9] usb 6-1: New USB device found, idVendor=0499, idProduct=1010, bcdDevice= 5.f5
[  139.482837][    T9] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  139.499777][    T9] usb 6-1: Product: syz
[  139.508951][    T9] usb 6-1: Manufacturer: syz
[  139.513718][    T9] usb 6-1: SerialNumber: syz
[  139.564529][    T9] usb 6-1: config 0 descriptor??
[  139.607764][    T9] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  139.939802][    T9] usb 6-1: USB disconnect, device number 7
[  140.430642][ T6394] udevd[6394]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  140.536500][ T5929] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  140.737554][ T5929] usb 8-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  140.763169][ T5929] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  140.782237][ T5929] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  140.794006][ T5929] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  140.825669][ T5929] usb 8-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  140.857690][ T5929] usb 8-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  140.890050][ T5929] usb 8-1: Manufacturer: syz
[  140.923262][ T5929] usb 8-1: config 0 descriptor??
[  141.049744][ T8071] loop6: detected capacity change from 0 to 256
[  141.177359][ T8071] FAT-fs (loop6): Directory bread(block 64) failed
[  141.183961][ T8071] FAT-fs (loop6): Directory bread(block 65) failed
[  141.205861][ T8071] FAT-fs (loop6): Directory bread(block 66) failed
[  141.212453][ T8071] FAT-fs (loop6): Directory bread(block 67) failed
[  141.223895][ T8071] FAT-fs (loop6): Directory bread(block 68) failed
[  141.234962][ T8071] FAT-fs (loop6): Directory bread(block 69) failed
[  141.244915][ T8071] FAT-fs (loop6): Directory bread(block 70) failed
[  141.264721][ T8071] FAT-fs (loop6): Directory bread(block 71) failed
[  141.286511][ T8071] FAT-fs (loop6): Directory bread(block 72) failed
[  141.293108][ T8071] FAT-fs (loop6): Directory bread(block 73) failed
[  141.367649][ T5929] appleir 0003:05AC:8243.0009: No inputs registered, leaving
[  141.401144][ T5929] appleir 0003:05AC:8243.0009: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.7-1/input0
[  141.648675][ T8051] loop8: detected capacity change from 0 to 40427
[  141.751277][ T8051] F2FS-fs (loop8): build fault injection attr: rate: 691, type: 0x1fffff
[  141.757122][ T5928] usb 8-1: USB disconnect, device number 2
[  141.760177][ T8051] F2FS-fs (loop8): Image doesn't support compression
[  141.772824][ T8051] F2FS-fs (loop8): heap/no_heap options were deprecated
[  141.780204][ T8051] F2FS-fs (loop8): Image doesn't support compression
[  141.819355][ T8051] F2FS-fs (loop8): invalid crc value
[  141.830967][ T8051] F2FS-fs (loop8): Found nat_bits in checkpoint
[  141.938756][ T8051] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[  142.025711][ T5913] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  142.075178][ T8051] syz.8.532: attempt to access beyond end of device
[  142.075178][ T8051] loop8: rw=0, sector=77848, nr_sectors = 8 limit=40427
[  142.154709][ T8051] syz.8.532: attempt to access beyond end of device
[  142.154709][ T8051] loop8: rw=0, sector=77848, nr_sectors = 8 limit=40427
[  142.191035][ T5913] usb 7-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[  142.218231][ T8051] F2FS-fs (loop8): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_get_read_data_page+0x191/0x8f0
[  142.285787][ T5913] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  142.326926][ T5913] usb 7-1: Product: syz
[  142.341583][ T5913] usb 7-1: Manufacturer: syz
[  142.353899][ T5913] usb 7-1: SerialNumber: syz
[  142.380438][ T5913] usb 7-1: config 0 descriptor??
[  142.446913][ T7623] syz-executor: attempt to access beyond end of device
[  142.446913][ T7623] loop8: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  142.508991][ T7623] F2FS-fs (loop8): Stopped filesystem due to reason: 3
[  142.651285][ T5913] usb 7-1: USB disconnect, device number 4
[  142.670212][ T8125] loop5: detected capacity change from 0 to 2048
[  142.830926][ T8134] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  142.860405][ T8125] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  143.850758][ T8163] loop7: detected capacity change from 0 to 4096
[  144.010382][ T8173] netlink: 'syz.6.566': attribute type 2 has an invalid length.
[  144.184565][ T8181] NILFS (loop7): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  144.295495][ T8190] netlink: 'syz.0.571': attribute type 34 has an invalid length.
[  144.829659][ T8214] loop6: detected capacity change from 0 to 1024
[  144.837000][ T8214] EXT4-fs: Ignoring removed nobh option
[  144.880134][ T8217] loop5: detected capacity change from 0 to 512
[  144.892814][ T8214] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  145.026518][ T8217] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  145.142964][ T8217] EXT4-fs (loop5): 1 orphan inode deleted
[  145.166752][ T8217] EXT4-fs (loop5): 1 truncate cleaned up
[  145.180989][ T8217] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  145.219954][ T6345] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.252352][ T8217] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  145.291521][ T8236] netlink: 'syz.7.588': attribute type 1 has an invalid length.
[  145.328092][ T8217] EXT4-fs (loop5): Remounting filesystem read-only
[  145.464518][ T5968] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.668337][ T8246] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  145.743212][ T8249] netlink: 12 bytes leftover after parsing attributes in process `syz.8.592'.
[  145.806357][ T8251] netlink: 216 bytes leftover after parsing attributes in process `syz.0.602'.
[  146.420055][ T8270] loop7: detected capacity change from 0 to 4096
[  146.439317][ T8255] loop6: detected capacity change from 0 to 32768
[  146.464966][ T8270] ntfs3: Unknown parameter '��Y'
[  146.530408][ T8255] XFS (loop6): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  146.634608][ T8270] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior.
[  146.652417][ T8270] overlayfs: conflicting lowerdir path
[  146.653160][ T8255] XFS (loop6): Ending clean mount
[  146.735228][ T8255] XFS (loop6): Quotacheck needed: Please wait.
[  146.741915][ T8282] loop8: detected capacity change from 0 to 4096
[  146.812976][ T8282] ntfs3(loop8): Different NTFS sector size (4096) and media sector size (512).
[  146.815759][ T8255] XFS (loop6): Quotacheck: Done.
[  146.827284][ T5929] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  146.957627][ T6345] XFS (loop6): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  146.991599][ T5929] usb 1-1: Using ep0 maxpacket: 8
[  147.056475][ T5929] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64
[  147.065472][ T8293] loop5: detected capacity change from 0 to 4096
[  147.066941][   T30] audit: type=1800 audit(1730523377.491:28): pid=8282 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.603" name="bus" dev="loop8" ino=33 res=0 errno=0
[  147.096793][ T5929] usb 1-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  147.123859][ T8293] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512).
[  147.176721][   T30] audit: type=1800 audit(1730523377.561:29): pid=8282 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.603" name="bus" dev="loop8" ino=33 res=0 errno=0
[  147.196817][    C0] vkms_vblank_simulate: vblank timer overrun
[  147.206924][ T5929] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  147.217711][ T5929] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  147.226535][ T5929] usb 1-1: Product: syz
[  147.253541][ T8294] loop7: detected capacity change from 0 to 4096
[  147.255642][ T5929] usb 1-1: Manufacturer: syz
[  147.283416][ T5929] usb 1-1: SerialNumber: syz
[  147.337364][ T8274] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  147.368271][ T8293] ntfs3(loop5): Failed to initialize $Extend/$Reparse.
[  147.478834][ T8293] ntfs3(loop5): ino=1e, "file1" encrypted i/o not supported
[  147.494799][   T30] audit: type=1800 audit(1730523377.921:30): pid=8294 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.607" name="bus" dev="loop7" ino=33 res=0 errno=0
[  147.514915][    C0] vkms_vblank_simulate: vblank timer overrun
[  147.557925][ T8293] ntfs3(loop5): ino=1e, "file1" encrypted i/o not supported
[  147.567556][ T8293] ntfs3(loop5): ino=1e, "file1" encrypted i/o not supported
[  147.575409][   T30] audit: type=1800 audit(1730523377.981:31): pid=8293 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.606" name="file1" dev="loop5" ino=30 res=0 errno=0
[  147.633636][ T8274] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  147.678753][ T5929] cdc_ether 1-1:1.0: probe with driver cdc_ether failed with error -22
[  147.692420][   T30] audit: type=1804 audit(1730523378.001:32): pid=8293 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.606" name="/newroot/128/file0/file1" dev="loop5" ino=30 res=1 errno=0
[  147.713941][    C0] vkms_vblank_simulate: vblank timer overrun
[  147.771161][   T30] audit: type=1800 audit(1730523378.011:33): pid=8293 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.606" name="file1" dev="loop5" ino=30 res=0 errno=0
[  147.920463][ T8307] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  147.982678][  T972] usb 1-1: USB disconnect, device number 6
[  148.000892][ T8313] loop6: detected capacity change from 0 to 64
[  148.726039][ T5928] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  148.896072][ T5928] usb 7-1: Using ep0 maxpacket: 16
[  148.920926][ T5928] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  148.952657][ T5928] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  148.975650][ T5928] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  148.999129][ T5928] usb 7-1: New USB device found, idVendor=056a, idProduct=0022, bcdDevice= 0.00
[  149.015909][ T5928] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  149.048391][ T5928] usb 7-1: config 0 descriptor??
[  149.233094][ T8348] loop7: detected capacity change from 0 to 512
[  149.272566][ T8348] EXT4-fs: Ignoring removed i_version option
[  149.289956][ T8348] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  149.369159][ T8348] EXT4-fs (loop7): 1 truncate cleaned up
[  149.376087][ T8348] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  149.445267][ T8354] macsec1: entered allmulticast mode
[  149.472223][ T8354] macvlan0: entered allmulticast mode
[  149.486974][ T8354] veth1_vlan: entered allmulticast mode
[  149.489146][ T5928] wacom 0003:056A:0022.000A: collection stack underflow
[  149.504010][ T5928] wacom 0003:056A:0022.000A: item 0 2 0 12 parsing failed
[  149.514551][ T5928] wacom 0003:056A:0022.000A: parse failed
[  149.518267][ T8354] macvlan0: left allmulticast mode
[  149.525432][ T5928] wacom 0003:056A:0022.000A: probe with driver wacom failed with error -22
[  149.573370][ T8354] veth1_vlan: left allmulticast mode
[  149.648346][ T7582] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  149.733151][ T5913] usb 7-1: USB disconnect, device number 5
[  149.841357][ T8361] loop5: detected capacity change from 0 to 4096
[  149.907511][ T8368] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  150.143407][ T8361] syz.5.635 (8361) used greatest stack depth: 18256 bytes left
[  150.600100][ T8394] netlink: 4 bytes leftover after parsing attributes in process `syz.0.650'.
[  151.650130][ T8421] loop7: detected capacity change from 0 to 512
[  151.740184][ T8421] EXT4-fs error (device loop7): ext4_xattr_ibody_find:2240: inode #15: comm syz.7.657: corrupted in-inode xattr: invalid ea_ino
[  151.866697][ T8421] EXT4-fs error (device loop7): ext4_orphan_get:1393: comm syz.7.657: couldn't read orphan inode 15 (err -117)
[  151.959181][ T8421] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  152.022016][ T8430] loop8: detected capacity change from 0 to 256
[  152.029083][ T8421] EXT4-fs error (device loop7): ext4_add_entry:2444: inode #2: comm syz.7.657: Directory hole found for htree leaf block 0
[  152.056454][ T8430] vfat: Unknown parameter ''
[  152.121652][ T8430] loop8: detected capacity change from 0 to 1024
[  152.152806][ T7582] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  152.163618][ T8430] EXT4-fs (loop8): warning: mounting unchecked fs, running e2fsck is recommended
[  152.218551][ T8430] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  152.335429][ T8430] EXT4-fs (loop8): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  152.481541][ T7623] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  152.810647][ T8449] loop6: detected capacity change from 0 to 4096
[  152.871727][ T8451] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  152.918544][   T30] audit: type=1800 audit(1730523383.361:34): pid=8449 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.666" name="file1" dev="loop6" ino=15 res=0 errno=0
[  153.001446][   T30] audit: type=1800 audit(1730523383.421:35): pid=8449 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.666" name="file1" dev="loop6" ino=15 res=0 errno=0
[  153.067449][ T5849] Bluetooth: hci0: command tx timeout
[  153.746446][ T8463] binder: 8462:8463 ioctl c0306201 200001c0 returned -14
[  154.694470][ T8483] input: syz1 as /devices/virtual/input/input13
[  154.873679][ T8461] loop7: detected capacity change from 0 to 32768
[  155.145996][ T5849] Bluetooth: hci0: command tx timeout
[  155.191140][ T8471] loop6: detected capacity change from 0 to 32768
[  155.244855][ T8471] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode.
[  155.399345][ T8471] (syz.6.677,8471,1):ocfs2_parse_options:1448 ERROR: Unrecognized mount option "��0xffffffffffffffff�	Z*��� m�.Dc�8�'�@��C9G�9���?�9�S�{�1��J���լ��5æ�Ԍ�����qq���Y�糔����" or missing value
[  155.499765][ T8479] loop5: detected capacity change from 0 to 32768
[  155.565818][ T8479] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.680 (8479)
[  155.692347][ T6345] ocfs2: Unmounting device (7,6) on (node local)
[  155.711186][ T8479] BTRFS info (device loop5): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  155.753824][ T8479] BTRFS info (device loop5): using sha256 (sha256-avx2) checksum algorithm
[  155.812714][ T8479] BTRFS info (device loop5): using free-space-tree
[  156.317605][ T8540] loop7: detected capacity change from 0 to 64
[  156.341865][ T8492] loop8: detected capacity change from 0 to 40427
[  156.371228][ T8492] F2FS-fs (loop8): Insane cp_payload (553648128 >= 504)
[  156.378314][ T8492] F2FS-fs (loop8): Can't find valid F2FS filesystem in 1th superblock
[  156.395237][ T8492] F2FS-fs (loop8): build fault injection attr: rate: 17008, type: 0x1fffff
[  156.449445][ T8492] F2FS-fs (loop8): invalid crc value
[  156.481441][ T8492] F2FS-fs (loop8): Found nat_bits in checkpoint
[  156.772796][ T8492] F2FS-fs (loop8): Try to recover 1th superblock, ret: 0
[  156.805830][ T8492] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[  156.825065][ T8555] netlink: 4 bytes leftover after parsing attributes in process `syz.6.695'.
[  156.834881][ T8555] netlink: 4 bytes leftover after parsing attributes in process `syz.6.695'.
[  156.898357][ T5968] BTRFS info (device loop5): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  156.932295][ T8492] syz.8.686: attempt to access beyond end of device
[  156.932295][ T8492] loop8: rw=2049, sector=53248, nr_sectors = 544 limit=40427
[  157.055899][   T30] audit: type=1326 audit(1730523387.481:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8563 comm="syz.0.698" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f14b117e719 code=0x0
[  157.162531][ T8570] netlink: 'syz.7.699': attribute type 3 has an invalid length.
[  157.201825][ T7623] syz-executor: attempt to access beyond end of device
[  157.201825][ T7623] loop8: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  157.265677][ T7623] F2FS-fs (loop8): Stopped filesystem due to reason: 3
[  157.374402][ T8575] ALSA: mixer_oss: invalid OSS volume 'D�n*@\%΂`.%�p��lÄ/�Დ�'
[  157.447856][ T8579] loop5: detected capacity change from 0 to 256
[  157.488344][ T8579] exfat: Deprecated parameter 'utf8'
[  157.612307][ T8579] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d)
[  157.727557][ T8586] syzkaller1: entered promiscuous mode
[  157.745496][ T8586] syzkaller1: entered allmulticast mode
[  158.032392][ T8597] Bluetooth: MGMT ver 1.23
[  158.885790][  T972] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[  159.012395][ T8605] loop5: detected capacity change from 0 to 32768
[  159.069080][  T972] usb 9-1: config 0 has no interfaces?
[  159.086003][ T8648] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  159.102374][  T972] usb 9-1: New USB device found, idVendor=17cc, idProduct=baff, bcdDevice=f8.36
[  159.135971][  T972] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  159.144063][  T972] usb 9-1: Product: syz
[  159.165416][ T8605] ocfs2: Mounting device (7,5) on (node local, slot 0) with writeback data mode.
[  159.234402][  T972] usb 9-1: Manufacturer: syz
[  159.252767][  T972] usb 9-1: SerialNumber: syz
[  159.285191][  T972] usb 9-1: config 0 descriptor??
[  159.304963][ T8658] (syz.5.709,8658,1):ocfs2_parse_options:1460 ERROR: Invalid heartbeat mount options
[  159.344011][ T8659] loop6: detected capacity change from 0 to 512
[  159.352500][ T8660] Illegal XDP return value 4294967274 on prog  (id 70) dev lo, expect packet loss!
[  159.371802][ T8605] syz.5.709 (8605) used greatest stack depth: 17208 bytes left
[  159.380034][ T8653] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  159.415082][ T8659] EXT4-fs error (device loop6): ext4_orphan_get:1388: inode #15: comm syz.6.725: casefold flag without casefold feature
[  159.441544][ T8659] EXT4-fs error (device loop6): ext4_orphan_get:1393: comm syz.6.725: couldn't read orphan inode 15 (err -117)
[  159.470114][ T8659] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  159.499337][ T5968] ocfs2: Unmounting device (7,5) on (node local)
[  159.522684][  T972] usb 9-1: USB disconnect, device number 2
[  159.801628][   T30] audit: type=1326 audit(1730523390.241:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8674 comm="syz.7.729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d2dd7e719 code=0x7ffc0000
[  159.840552][   T30] audit: type=1326 audit(1730523390.241:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8674 comm="syz.7.729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d2dd7e719 code=0x7ffc0000
[  159.878194][   T30] audit: type=1326 audit(1730523390.281:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8674 comm="syz.7.729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f2d2dd7e719 code=0x7ffc0000
[  159.912452][   T30] audit: type=1326 audit(1730523390.281:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8674 comm="syz.7.729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d2dd7e719 code=0x7ffc0000
[  159.945100][   T30] audit: type=1326 audit(1730523390.281:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8674 comm="syz.7.729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d2dd7e719 code=0x7ffc0000
[  159.967749][   T30] audit: type=1326 audit(1730523390.281:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8674 comm="syz.7.729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=291 compat=0 ip=0x7f2d2dd7e719 code=0x7ffc0000
[  159.995716][   T30] audit: type=1326 audit(1730523390.281:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8674 comm="syz.7.729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d2dd7e719 code=0x7ffc0000
[  160.039680][   T30] audit: type=1326 audit(1730523390.281:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8674 comm="syz.7.729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d2dd7e719 code=0x7ffc0000
[  160.066674][   T30] audit: type=1326 audit(1730523390.281:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8674 comm="syz.7.729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=233 compat=0 ip=0x7f2d2dd7e719 code=0x7ffc0000
[  160.089228][   T30] audit: type=1326 audit(1730523390.281:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8674 comm="syz.7.729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d2dd7e719 code=0x7ffc0000
[  160.217823][ T6345] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  160.322496][ T8684] netlink: 8 bytes leftover after parsing attributes in process `syz.8.732'.
[  160.382556][ T8684] netlink: 56 bytes leftover after parsing attributes in process `syz.8.732'.
[  160.408027][ T8682] loop7: detected capacity change from 0 to 4096
[  160.485810][ T8682] ntfs3(loop7): Different NTFS sector size (4096) and media sector size (512).
[  160.505251][ T8688] loop6: detected capacity change from 0 to 1024
[  160.816347][ T8688] EXT4-fs: Ignoring removed orlov option
[  160.836478][ T8688] EXT4-fs (loop6): Test dummy encryption mode enabled
[  160.872212][ T8688] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  160.881088][ T8670] loop5: detected capacity change from 0 to 40427
[  160.949833][ T8670] F2FS-fs (loop5): Found nat_bits in checkpoint
[  161.104748][ T8670] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  161.155743][   T52] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[  161.231904][ T8702] f2fs_ckpt-7:5: attempt to access beyond end of device
[  161.231904][ T8702] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  161.279138][ T8702] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  161.282089][ T8688] fscrypt: AES-256-CBC-CTS using implementation "cts-cbc-aes-aesni"
[  161.329852][   T52] usb 9-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  161.362560][   T52] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11
[  161.388678][   T52] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  161.420539][   T52] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  161.447176][   T52] usb 9-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  161.465207][ T6345] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.473299][   T52] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  161.513697][   T52] usb 9-1: config 0 descriptor??
[  161.545961][ T8701] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22
[  161.996159][   T52] plantronics 0003:047F:FFFF.000B: unknown main item tag 0xd
[  162.005322][   T52] plantronics 0003:047F:FFFF.000B: No inputs registered, leaving
[  162.145261][   T52] plantronics 0003:047F:FFFF.000B: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.8-1/input0
[  162.150238][ T8722] loop7: detected capacity change from 0 to 32768
[  162.211365][ T8722] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop7 (7:7) scanned by syz.7.737 (8722)
[  162.232710][ T8742] netlink: 28 bytes leftover after parsing attributes in process `syz.0.743'.
[  162.248555][ T8741] 9pnet: p9_errstr2errno: server reported unknown error �~zx�
[  162.262370][ T8742] netlink: 'syz.0.743': attribute type 7 has an invalid length.
[  162.271559][ T8722] BTRFS info (device loop7): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  162.285737][ T8722] BTRFS info (device loop7): using sha256 (sha256-avx2) checksum algorithm
[  162.302179][   T52] usb 9-1: USB disconnect, device number 3
[  162.302757][ T8742] netlink: 'syz.0.743': attribute type 8 has an invalid length.
[  162.321924][ T8722] BTRFS info (device loop7): using free-space-tree
[  162.355684][ T8742] netlink: 4 bytes leftover after parsing attributes in process `syz.0.743'.
[  162.388577][ T8742] gretap0: entered promiscuous mode
[  162.500471][ T8742] batadv_slave_1: entered promiscuous mode
[  162.609232][ T8742] gretap0: left promiscuous mode
[  162.657934][ T8742] batadv_slave_1: left promiscuous mode
[  162.707006][ T7582] BTRFS info (device loop7): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  162.951080][ T8778] loop8: detected capacity change from 0 to 128
[  162.970492][ T8778] UDF-fs: error (device loop8): udf_read_tagged: read failed, block=256, location=256
[  163.076106][   T95] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  163.319726][ T8791] vivid-000: disconnect
[  163.330103][   T95] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 16
[  163.341795][ T8790] vivid-000: reconnect
[  163.381960][   T95] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 64
[  163.420061][   T95] usb 7-1: New USB device found, idVendor=0a46, idProduct=9621, bcdDevice=4f.32
[  163.437824][   T95] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  163.465820][   T95] usb 7-1: Product: syz
[  163.470043][   T95] usb 7-1: Manufacturer: syz
[  163.505981][   T95] usb 7-1: SerialNumber: syz
[  163.526719][   T95] usb 7-1: config 0 descriptor??
[  163.567727][ T8776] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  163.575163][ T8776] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  163.847211][ T8776] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  163.875030][ T8776] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  163.949339][ T8814] netlink: 'syz.8.760': attribute type 29 has an invalid length.
[  164.001974][ T8817] netlink: 'syz.8.760': attribute type 29 has an invalid length.
[  164.066698][ T8814] netlink: 'syz.8.760': attribute type 29 has an invalid length.
[  164.102947][ T8814] netlink: 'syz.8.760': attribute type 29 has an invalid length.
[  164.506328][ T8830] dccp_invalid_packet: P.type (REQUEST) not Data || [Data]Ack, while P.X == 0
[  164.847405][ T8832] loop7: detected capacity change from 0 to 2048
[  164.858185][   T95] dm9601 7-1:0.0 (unnamed net_device) (uninitialized): Error reading MODE_CTRL
[  164.882558][   T95] usb 7-1: USB disconnect, device number 6
[  164.943300][ T8832] UDF-fs: warning (device loop7): udf_load_vrs: No anchor found
[  164.965751][ T8832] UDF-fs: Scanning with blocksize 512 failed
[  165.010345][ T8804] loop5: detected capacity change from 0 to 40427
[  165.028011][ T8804] F2FS-fs (loop5): build fault injection attr: rate: 694, type: 0x1fffff
[  165.045069][ T8804] F2FS-fs (loop5): invalid crc value
[  165.054558][ T8832] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  165.128823][   T30] kauditd_printk_skb: 5 callbacks suppressed
[  165.128841][   T30] audit: type=1800 audit(1730523395.551:52): pid=8832 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.764" name=08 dev="loop7" ino=842 res=0 errno=0
[  165.228423][ T7582] UDF-fs: warning (device loop7): udf_evict_inode: Inode 830 (mode 100000) has inode size 4102 different from extent length 5120. Filesystem need not be standards compliant.
[  165.256418][ T8804] F2FS-fs (loop5): Found nat_bits in checkpoint
[  165.331585][ T8842] netlink: 596 bytes leftover after parsing attributes in process `syz.7.766'.
[  165.347151][ T8840] netlink: 'syz.8.767': attribute type 4 has an invalid length.
[  165.445714][ T8804] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  165.528537][ T8804] F2FS-fs (loop5): inject slab alloc in f2fs_kmem_cache_alloc of f2fs_new_node_page+0x26a/0xb90
[  165.681397][ T8853] loop8: detected capacity change from 0 to 4096
[  165.697904][ T8853] ntfs3(loop8): Different NTFS sector size (4096) and media sector size (512).
[  165.698754][ T5968] syz-executor: attempt to access beyond end of device
[  165.698754][ T5968] loop5: rw=2049, sector=45096, nr_sectors = 24 limit=40427
[  165.748363][ T8855] loop6: detected capacity change from 0 to 512
[  165.761824][ T5968] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  165.776613][ T5968] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  165.794084][ T5968] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  165.859247][ T8855] EXT4-fs (loop6): warning: mounting unchecked fs, running e2fsck is recommended
[  165.913847][ T8855] EXT4-fs (loop6): Errors on filesystem, clearing orphan list.
[  165.922963][ T8855] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  166.058230][ T6345] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  166.625288][ T8883] TCP: request_sock_TCP: Possible SYN flooding on port 0.0.0.0:20002. Sending cookies.
[  166.625901][ T8881] tunl0: entered promiscuous mode
[  166.685404][ T8881] netlink: 'syz.8.783': attribute type 1 has an invalid length.
[  166.726789][ T8881] netlink: 9 bytes leftover after parsing attributes in process `syz.8.783'.
[  166.849424][ T8893] loop5: detected capacity change from 0 to 512
[  166.857911][ T8889] netlink: 112 bytes leftover after parsing attributes in process `syz.6.786'.
[  166.887453][ T8893] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  166.925544][ T8893] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c018, mo2=0002]
[  166.933720][ T8893] System zones: 1-12
[  166.945396][ T8893] EXT4-fs (loop5): 1 truncate cleaned up
[  166.976936][ T8893] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  167.054857][   T30] audit: type=1800 audit(1730523397.481:53): pid=8893 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.788" name="bus" dev="loop5" ino=18 res=0 errno=0
[  167.233273][ T5968] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  167.373819][ T8911] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  167.476982][ T8915] netlink: 4 bytes leftover after parsing attributes in process `syz.6.796'.
[  167.975798][ T8896] loop8: detected capacity change from 0 to 40427
[  167.992085][ T8896] F2FS-fs (loop8): Invalid Fs Meta Ino: node(0) meta(2) root(0)
[  168.001658][ T8896] F2FS-fs (loop8): Can't find valid F2FS filesystem in 1th superblock
[  168.019747][ T8896] F2FS-fs (loop8): invalid crc value
[  168.060132][ T8896] F2FS-fs (loop8): Found nat_bits in checkpoint
[  168.235671][ T5928] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  168.283276][ T8896] F2FS-fs (loop8): Try to recover 1th superblock, ret: 0
[  168.311938][ T8896] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e4
[  168.455789][ T5928] usb 7-1: Using ep0 maxpacket: 32
[  168.493977][ T5928] usb 7-1: config 0 has no interfaces?
[  168.516571][ T7623] syz-executor: attempt to access beyond end of device
[  168.516571][ T7623] loop8: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  168.546473][ T5928] usb 7-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  168.585854][ T5928] usb 7-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0
[  168.594245][ T5928] usb 7-1: Product: syz
[  168.611152][ T7623] F2FS-fs (loop8): Stopped filesystem due to reason: 3
[  168.625789][ T5928] usb 7-1: Manufacturer: syz
[  168.651945][ T5928] usb 7-1: config 0 descriptor??
[  168.896584][ T8920] loop5: detected capacity change from 0 to 40427
[  168.915062][ T8920] F2FS-fs (loop5): build fault injection attr: rate: 690, type: 0x1fffff
[  168.934672][ T8920] F2FS-fs (loop5): Image doesn't support compression
[  168.945367][ T8920] F2FS-fs (loop5): Image doesn't support compression
[  169.017039][ T8920] F2FS-fs (loop5): invalid crc value
[  169.050039][ T8920] F2FS-fs (loop5): Found nat_bits in checkpoint
[  169.115984][ T5928] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  169.154670][ T8920] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  169.227442][   T30] audit: type=1800 audit(1730523399.661:54): pid=8920 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.799" name="file0" dev="loop5" ino=10 res=0 errno=0
[  169.301812][ T5928] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 16
[  169.311292][ T8944] loop7: detected capacity change from 0 to 512
[  169.346416][ T8944] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  169.357899][ T5968] syz-executor: attempt to access beyond end of device
[  169.357899][ T5968] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  169.371008][ T5928] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 64
[  169.373085][ T5968] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  169.411475][ T8948] sctp: [Deprecated]: syz.8.810 (pid 8948) Use of struct sctp_assoc_value in delayed_ack socket option.
[  169.411475][ T8948] Use struct sctp_sack_info instead
[  169.425838][   T95] usb 7-1: USB disconnect, device number 7
[  169.437746][ T8944] EXT4-fs (loop7): 1 truncate cleaned up
[  169.454138][ T8944] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  169.514636][ T8952] loop6: detected capacity change from 0 to 512
[  169.540099][ T5928] usb 1-1: New USB device found, idVendor=0a46, idProduct=9621, bcdDevice=4f.32
[  169.567240][ T5928] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  169.576188][ T5928] usb 1-1: Product: syz
[  169.580383][ T5928] usb 1-1: Manufacturer: syz
[  169.585009][ T5928] usb 1-1: SerialNumber: syz
[  169.590136][ T8952] UDF-fs: warning (device loop6): udf_load_vrs: No VRS found
[  169.597679][ T5928] usb 1-1: config 0 descriptor??
[  169.600167][ T8934] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  169.620877][ T8952] UDF-fs: Scanning with blocksize 512 failed
[  169.637586][ T8952] UDF-fs: warning (device loop6): udf_load_vrs: No VRS found
[  169.656166][ T8934] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  169.656717][ T8952] UDF-fs: Scanning with blocksize 1024 failed
[  169.678160][ T8952] UDF-fs: warning (device loop6): udf_load_vrs: No VRS found
[  169.686020][ T8952] UDF-fs: Scanning with blocksize 2048 failed
[  169.704964][ T8952] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=256, location=256
[  169.743368][ T8952] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  169.795929][   T52] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  169.915656][ T8934] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  169.934570][ T8934] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  169.968380][   T52] usb 8-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08
[  169.968414][   T52] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  169.971783][   T52] usb 8-1: config 0 descriptor??
[  170.026347][ T5929] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[  170.114122][ T8961] netlink: 'syz.5.809': attribute type 34 has an invalid length.
[  170.177977][   T52] [drm] vendor descriptor length:6 data:06 5f 01 b6 2f 71 00 00 00 00 00
[  170.182803][ T5929] usb 9-1: Using ep0 maxpacket: 16
[  170.206056][   T52] [drm:udl_init] *ERROR* Unrecognized vendor firmware descriptor
[  170.209806][ T5929] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  170.240470][ T5929] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  170.262245][ T5929] usb 9-1: New USB device found, idVendor=0458, idProduct=5015, bcdDevice= 0.00
[  170.273395][ T5929] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  170.293492][ T5929] usb 9-1: config 0 descriptor??
[  170.378976][   T52] [drm:udl_init] *ERROR* Selecting channel failed
[  170.450478][   T52] [drm] Initialized udl 0.0.1 for 8-1:0.0 on minor 2
[  170.461465][   T52] [drm] Initialized udl on minor 2
[  170.475128][   T52] udl 8-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[  170.502693][   T52] udl 8-1:0.0: [drm] Cannot find any crtc or sizes
[  170.549241][   T95] udl 8-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[  170.586322][   T52] usb 8-1: USB disconnect, device number 3
[  170.598838][   T95] udl 8-1:0.0: [drm] Cannot find any crtc or sizes
[  170.642135][ T8974] loop5: detected capacity change from 0 to 256
[  170.736145][ T5929] kye 0003:0458:5015.000C: tablet report size too small, or kye_tablet_rdesc unexpectedly large
[  170.763180][ T5929] kye 0003:0458:5015.000C: item fetching failed at offset 9/11
[  170.774632][ T5929] kye 0003:0458:5015.000C: parse failed
[  170.780669][ T8976] loop5: detected capacity change from 0 to 256
[  170.788891][ T5929] kye 0003:0458:5015.000C: probe with driver kye failed with error -22
[  170.800633][ T5928] dm9601 1-1:0.0 (unnamed net_device) (uninitialized): MDIO read error: -71
[  170.858119][ T8976] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x4ec6003b, utbl_chksum : 0xe619d30d)
[  170.876221][ T5928] dm9601 1-1:0.0 eth13: register 'dm9601' at usb-dummy_hcd.0-1, Davicom DM96xx USB 10/100 Ethernet, 4e:aa:d5:35:af:28
[  170.899005][ T5928] usb 1-1: USB disconnect, device number 7
[  170.912092][ T5928] dm9601 1-1:0.0 eth13: unregister 'dm9601' usb-dummy_hcd.0-1, Davicom DM96xx USB 10/100 Ethernet
[  170.991732][ T7582] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.018936][  T972] usb 9-1: USB disconnect, device number 4
[  171.169042][ T8982] loop6: detected capacity change from 0 to 1024
[  171.179645][ T8983] loop7: detected capacity change from 0 to 512
[  171.216647][ T8983] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  171.251735][ T8982] hfsplus: catalog searching failed
[  171.282314][ T8983] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[  171.290423][ T8983] System zones: 1-12
[  171.298151][   T29] hfsplus: b-tree write err: -5, ino 4
[  171.305948][ T8983] EXT4-fs (loop7): 1 truncate cleaned up
[  171.312131][ T8983] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  171.342619][ T8985] loop5: detected capacity change from 0 to 2048
[  171.351125][ T8983] EXT4-fs error (device loop7): ext4_expand_extra_isize_ea:2813: inode #15: comm syz.7.822: corrupted xattr block 33: invalid header
[  171.396890][ T8985] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  171.481976][ T8983] EXT4-fs error (device loop7): ext4_xattr_delete_inode:2977: inode #15: comm syz.7.822: corrupted xattr block 33: invalid header
[  171.513180][ T8983] EXT4-fs warning (device loop7): ext4_evict_inode:276: xattr delete (err -117)
[  171.634732][ T7582] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.666716][ T5968] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.814623][ T8999] loop8: detected capacity change from 0 to 512
[  171.893138][ T8999] EXT4-fs error (device loop8): ext4_orphan_get:1388: inode #15: comm syz.8.828: casefold flag without casefold feature
[  172.014471][ T8999] EXT4-fs error (device loop8): ext4_orphan_get:1393: comm syz.8.828: couldn't read orphan inode 15 (err -117)
[  172.068338][ T8999] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  172.086514][   T30] audit: type=1326 audit(1730523402.531:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9012 comm="syz.0.832" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f14b117e719 code=0x0
[  172.299049][ T7623] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.799205][ T9011] loop5: detected capacity change from 0 to 32768
[  173.094414][ T9030] loop8: detected capacity change from 0 to 32768
[  173.106161][ T9030] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop8 (7:8) scanned by syz.8.842 (9030)
[  173.150517][ T9030] BTRFS info (device loop8): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  173.164288][ T9030] BTRFS info (device loop8): using sha256 (sha256-avx2) checksum algorithm
[  173.196940][ T9030] BTRFS info (device loop8): using free-space-tree
[  173.215477][ T9024] loop7: detected capacity change from 0 to 32768
[  173.318234][ T9024] find_entry called with index = 0
[  173.338705][ T9024] read_mapping_page failed!
[  173.344594][ T9024] ERROR: (device loop7): txCommit: 
[  173.344594][ T9024] 
[  173.391083][ T9030] BTRFS info (device loop8): rebuilding free space tree
[  173.593035][   T30] audit: type=1800 audit(1730523404.031:56): pid=9030 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.842" name="bus" dev="loop8" ino=258 res=0 errno=0
[  173.603632][ T7582] ERROR: (device loop7): diFree: wmap shows inode already free
[  173.603632][ T7582] 
[  173.665620][    C1] 
[  173.667998][    C1] =============================
[  173.672861][    C1] [ BUG: Invalid wait context ]
[  173.677736][    C1] 6.12.0-rc5-next-20241101-syzkaller #0 Not tainted
[  173.684338][    C1] -----------------------------
[  173.689350][    C1] syz.0.849/9060 is trying to lock:
[  173.694548][    C1] ffff88813fffc298 (&zone->lock){-.-.}-{3:3}, at: __rmqueue_pcplist+0x4c6/0x2b70
[  173.703677][    C1] other info that might help us debug this:
[  173.709554][    C1] context-{2:2}
[  173.712987][    C1] 2 locks held by syz.0.849/9060:
[  173.718001][    C1]  #0: ffff88807bc8efe0 (&mm->mmap_lock){++++}-{4:4}, at: exit_mmap+0x165/0xcb0
[  173.727087][    C1]  #1: ffff8880b8744818 (&pcp->lock){+.+.}-{3:3}, at: get_page_from_freelist+0x7e2/0x3870
[  173.737109][    C1] stack backtrace:
[  173.740826][    C1] CPU: 1 UID: 0 PID: 9060 Comm: syz.0.849 Not tainted 6.12.0-rc5-next-20241101-syzkaller #0
[  173.750878][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  173.760922][    C1] Call Trace:
[  173.764211][    C1]  <IRQ>
[  173.767049][    C1]  dump_stack_lvl+0x241/0x360
[  173.771718][    C1]  ? __pfx_dump_stack_lvl+0x10/0x10
[  173.776908][    C1]  ? __pfx__printk+0x10/0x10
[  173.781496][    C1]  __lock_acquire+0x15a8/0x2100
[  173.786355][    C1]  lock_acquire+0x1ed/0x550
[  173.790851][    C1]  ? __rmqueue_pcplist+0x4c6/0x2b70
[  173.796048][    C1]  ? __pfx_lock_acquire+0x10/0x10
[  173.801059][    C1]  ? mark_lock+0x9a/0x360
[  173.805375][    C1]  ? __lock_acquire+0x1397/0x2100
[  173.810442][    C1]  ? mark_lock+0x9a/0x360
[  173.814761][    C1]  _raw_spin_lock_irqsave+0xd5/0x120
[  173.820039][    C1]  ? __rmqueue_pcplist+0x4c6/0x2b70
[  173.825242][    C1]  ? __pfx__raw_spin_lock_irqsave+0x10/0x10
[  173.831132][    C1]  __rmqueue_pcplist+0x4c6/0x2b70
[  173.836171][    C1]  ? __pfx_lock_acquire+0x10/0x10
[  173.841204][    C1]  get_page_from_freelist+0x895/0x3870
[  173.846755][    C1]  ? __lock_acquire+0x1397/0x2100
[  173.851782][    C1]  __alloc_pages_noprof+0x292/0x710
[  173.856978][    C1]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  173.862690][    C1]  ? is_bpf_text_address+0x26/0x2a0
[  173.867881][    C1]  ? kernel_text_address+0xa7/0xe0
[  173.872985][    C1]  ? arch_stack_walk+0xfd/0x150
[  173.877830][    C1]  alloc_pages_mpol_noprof+0x3e8/0x680
[  173.883289][    C1]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  173.889256][    C1]  ? stack_trace_save+0x118/0x1d0
[  173.894281][    C1]  ? __pfx_stack_trace_save+0x10/0x10
[  173.899643][    C1]  ? alloc_pages_noprof+0x43/0x170
[  173.904747][    C1]  stack_depot_save_flags+0x666/0x830
[  173.910117][    C1]  kasan_save_stack+0x4f/0x60
[  173.914789][    C1]  ? kasan_save_stack+0x3f/0x60
[  173.919721][    C1]  ? __kasan_record_aux_stack+0xac/0xc0
[  173.925256][    C1]  ? task_work_add+0xd9/0x490
[  173.929924][    C1]  ? run_posix_cpu_timers+0x6ac/0x810
[  173.935289][    C1]  ? tick_nohz_handler+0x37c/0x500
[  173.940397][    C1]  ? __hrtimer_run_queues+0x551/0xd50
[  173.945760][    C1]  ? hrtimer_interrupt+0x396/0x990
[  173.950862][    C1]  ? __sysvec_apic_timer_interrupt+0x110/0x420
[  173.957009][    C1]  ? sysvec_apic_timer_interrupt+0xa1/0xc0
[  173.962813][    C1]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  173.968956][    C1]  ? free_swap_cache+0x9/0x7c0
[  173.973800][    C1]  ? free_pages_and_swap_cache+0x1d7/0x690
[  173.979595][    C1]  ? tlb_flush_mmu+0x3a3/0x680
[  173.984355][    C1]  ? unmap_page_range+0x38b7/0x4230
[  173.989553][    C1]  ? unmap_vmas+0x3cc/0x5f0
[  173.994044][    C1]  ? exit_mmap+0x292/0xcb0
[  173.998452][    C1]  ? __mmput+0x115/0x390
[  174.002686][    C1]  ? exit_mm+0x220/0x310
[  174.006918][    C1]  ? do_exit+0x9b2/0x28e0
[  174.011234][    C1]  ? do_group_exit+0x207/0x2c0
[  174.015986][    C1]  ? __x64_sys_exit_group+0x3f/0x40
[  174.021783][    C1]  ? x64_sys_call+0x2634/0x2640
[  174.027195][    C1]  ? do_syscall_64+0xf3/0x230
[  174.032814][    C1]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  174.038888][    C1]  ? __phys_addr+0xba/0x170
[  174.043818][    C1]  __kasan_record_aux_stack+0xac/0xc0
[  174.049187][    C1]  task_work_add+0xd9/0x490
[  174.053680][    C1]  ? __pfx_lock_acquire+0x10/0x10
[  174.058698][    C1]  ? __pfx_task_work_add+0x10/0x10
[  174.063892][    C1]  run_posix_cpu_timers+0x6ac/0x810
[  174.069088][    C1]  ? __pfx_run_posix_cpu_timers+0x10/0x10
[  174.074799][    C1]  ? sched_balance_trigger+0x1a3/0x890
[  174.080263][    C1]  tick_nohz_handler+0x37c/0x500
[  174.085193][    C1]  ? __pfx_tick_nohz_handler+0x10/0x10
[  174.090642][    C1]  __hrtimer_run_queues+0x551/0xd50
[  174.095835][    C1]  ? ktime_get_update_offsets_now+0x3c/0x250
[  174.101816][    C1]  ? __pfx___hrtimer_run_queues+0x10/0x10
[  174.107961][    C1]  ? ktime_get_update_offsets_now+0x22d/0x250
[  174.114025][    C1]  hrtimer_interrupt+0x396/0x990
[  174.118970][    C1]  __sysvec_apic_timer_interrupt+0x110/0x420
[  174.124949][    C1]  sysvec_apic_timer_interrupt+0xa1/0xc0
[  174.130575][    C1]  </IRQ>
[  174.133492][    C1]  <TASK>
[  174.136410][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  174.142390][    C1] RIP: 0010:free_swap_cache+0x9/0x7c0
[  174.147760][    C1] Code: 5d c3 cc cc cc cc e8 56 3c ce 09 66 0f 1f 44 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 66 0f 1f 00 55 41 57 41 56 <41> 55 41 54 53 50 49 89 ff 48 bd 00 00 00 00 00 fc ff df e8 3f 5d
[  174.167359][    C1] RSP: 0018:ffffc900127f7240 EFLAGS: 00000293
[  174.173422][    C1] RAX: ffffffff81f66c58 RBX: ffffea00019f5440 RCX: ffff88804ad43c00
[  174.181388][    C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffea00019f5440
[  174.189351][    C1] RBP: ffffc900127f74e8 R08: ffffffff81f66c41 R09: 1ffffd400033ea80
[  174.197312][    C1] R10: dffffc0000000000 R11: fffff9400033ea81 R12: ffffc900127f72c0
[  174.205273][    C1] R13: 1ffff1100b7abf4e R14: ffff88805bd5fa70 R15: dffffc0000000000
[  174.213244][    C1]  ? free_pages_and_swap_cache+0x1a1/0x690
[  174.219056][    C1]  ? free_pages_and_swap_cache+0x1b8/0x690
[  174.224860][    C1]  free_pages_and_swap_cache+0x1d7/0x690
[  174.230923][    C1]  ? __pfx_free_pages_and_swap_cache+0x10/0x10
[  174.237081][    C1]  ? tlb_table_flush+0x143/0x410
[  174.242012][    C1]  ? __pfx_lock_release+0x10/0x10
[  174.247030][    C1]  tlb_flush_mmu+0x3a3/0x680
[  174.251628][    C1]  unmap_page_range+0x38b7/0x4230
[  174.256662][    C1]  ? __pfx_unmap_page_range+0x10/0x10
[  174.262021][    C1]  ? mas_next_slot+0xdc6/0xea0
[  174.266779][    C1]  ? uprobe_munmap+0x183/0x460
[  174.271548][    C1]  ? unmap_single_vma+0x1bd/0x2b0
[  174.276561][    C1]  unmap_vmas+0x3cc/0x5f0
[  174.280882][    C1]  ? __pfx_unmap_vmas+0x10/0x10
[  174.285724][    C1]  ? tlb_gather_mmu_fullmm+0x160/0x210
[  174.291176][    C1]  exit_mmap+0x292/0xcb0
[  174.295413][    C1]  ? __pfx_exit_mmap+0x10/0x10
[  174.300177][    C1]  ? __pfx_exit_aio+0x10/0x10
[  174.304848][    C1]  ? uprobe_clear_state+0x271/0x290
[  174.310035][    C1]  ? mm_update_next_owner+0xa4/0x810
[  174.315308][    C1]  ? do_raw_spin_unlock+0x13c/0x8b0
[  174.320504][    C1]  __mmput+0x115/0x390
[  174.324570][    C1]  exit_mm+0x220/0x310
[  174.328628][    C1]  ? __pfx_exit_mm+0x10/0x10
[  174.333202][    C1]  ? taskstats_exit+0x326/0xa60
[  174.338048][    C1]  do_exit+0x9b2/0x28e0
[  174.342193][    C1]  ? preempt_schedule_common+0x84/0xd0
[  174.347644][    C1]  ? __pfx_do_exit+0x10/0x10
[  174.352225][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  174.358205][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  174.364526][    C1]  ? preempt_schedule_thunk+0x1a/0x30
[  174.369924][    C1]  do_group_exit+0x207/0x2c0
[  174.374507][    C1]  __x64_sys_exit_group+0x3f/0x40
[  174.379525][    C1]  x64_sys_call+0x2634/0x2640
[  174.384212][    C1]  do_syscall_64+0xf3/0x230
[  174.388709][    C1]  ? clear_bhb_loop+0x35/0x90
[  174.393376][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  174.399266][    C1] RIP: 0033:0x7f14b117e719
[  174.403675][    C1] Code: Unable to access opcode bytes at 0x7f14b117e6ef.
[  174.410676][    C1] RSP: 002b:00007ffcd05d5828 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[  174.419079][    C1] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f14b117e719
[  174.427040][    C1] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[  174.435003][    C1] RBP: 00007ffcd05d587c R08: 00007ffcd05d590f R09: 000000000002a536
[  174.443047][    C1] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000032
[  174.451008][    C1] R13: 000000000002a536 R14: 000000000002a520 R15: 00007ffcd05d58d0
[  174.459059][    C1]  </TASK>
[  174.543062][ T7623] BTRFS info (device loop8): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d