last executing test programs:

24.569162104s ago: executing program 1 (id=5570):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000180)=@newlink={0x64, 0x10, 0x403, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x30, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x20, 0x2, 0x0, 0x1, [@IFLA_VLAN_INGRESS_QOS={0x1c, 0x4, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x0, 0xcd3}}, @IFLA_VLAN_QOS_MAPPING={0xc}]}]}}}, @IFLA_IFNAME={0x14, 0x3, 'vlan0\x00'}]}, 0x64}, 0x1, 0xba01}, 0x0)

23.968956433s ago: executing program 1 (id=5573):
syz_mount_image$ext4(0x0, &(0x7f0000000080)='./file0\x00', 0x18808, 0x0, 0xf9, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}], [], 0x2c})

23.476307974s ago: executing program 3 (id=5576):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000380)={0x0, 0x13, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="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"], 0x150}}, 0x0)

23.005793535s ago: executing program 1 (id=5579):
syz_mount_image$xfs(&(0x7f0000009700), &(0x7f0000009740)='./file0\x00', 0x4000000, &(0x7f0000000280), 0x1, 0x97ce, &(0x7f0000012f40)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x4dce81, 0x0)

22.780843597s ago: executing program 0 (id=5581):
r0 = socket$inet(0x2, 0x1, 0x0)
setsockopt$inet_msfilter(r0, 0x0, 0x29, 0x0, 0x20000)

22.557159277s ago: executing program 3 (id=5582):
r0 = socket$l2tp(0x2, 0x2, 0x73)
getsockopt$sock_buf(r0, 0x1, 0x4c, 0x0, &(0x7f0000000700))

22.14451963s ago: executing program 0 (id=5585):
syz_mount_image$hfs(&(0x7f0000001600), &(0x7f0000000080)='./file1\x00', 0x2000000, &(0x7f0000000180)={[{@file_umask={'file_umask', 0x3d, 0x80004}}, {@iocharset={'iocharset', 0x3d, 'koi8-u'}}, {@codepage={'codepage', 0x3d, 'cp869'}}, {@dir_umask={'dir_umask', 0x3d, 0x5}}, {}]}, 0x1, 0x2fe, &(0x7f0000001100)="$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")
mount$nfs(&(0x7f00000000c0)='\xb2\x83\x87J9I\xc3i\xe4\x81\xc5:\xccLD\x9d\xd8\xc7\x90v\x8b\x00\x00\x01\x00\x00\x00\x00\x00h#\xfacl\x01\x8cC\x1f|\xa5\xcb\x8f\xe5WJ\x00>\xf2\xd6\t\xf4I\xc5\xcb\x15A\xb5\xbbG\x9e\xea\xc4\x03\xf2\xf5\xf4\xa1\x9c\xe0Q<=\xb1\x9b,vjn\x8b[0\xd9\xcb\xf8\x1a\xdf\x9e\x89\x91H\xf4\x11p\xd2\x96\x82\xd9)6\xcdm\x88\x91\x1dv\xff\xb3\xad\x8b\x82\xcdR\x98\x80k1\xce}\x90\xe8e\xdb\xb1HL\x1d%\xc4\x1atCt\xb4\x00\xb29E\x87-\xd1\xcd\xf3w\"\v\xf3`\x06x\xb4TQ\x8dB\a\xe4\xe2\xf8\xd6%C\xf9\xd6~\xf80\xfcE\xa0\x80\x0e\"\xb0\a\x88\xbc\x7fbn\x02\xeb\x9b\x04\x1d\t', &(0x7f0000000000)='./file0\x00', 0x0, 0x123b058, 0x0)

22.057640982s ago: executing program 2 (id=5586):
set_mempolicy(0x4005, &(0x7f0000000080)=0x7, 0x2)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)

21.912224271s ago: executing program 3 (id=5587):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@mpls_delroute={0x1c, 0x19, 0x1, 0x0, 0x0, {0x1c, 0x14, 0x0, 0x41, 0xfe, 0x0, 0xfd, 0x1, 0xa00}}, 0x1c}}, 0x0)

21.218904662s ago: executing program 2 (id=5589):
r0 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f00000000c0)={0x52, 0xa, 0x0, "d9c2955351f9acb1ee54ecc4b00f11f11867b5302c11500e8b8152682b7afe20"})

21.209853753s ago: executing program 3 (id=5590):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x17, 0xf, &(0x7f0000000080)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {0x85, 0x0, 0x0, 0xf}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0xba}}}, &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @cgroup_sysctl=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3, @void, @value}, 0x94)

21.036259102s ago: executing program 0 (id=5592):
r0 = socket$inet6(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000480)={0xa, 0xfffe, 0x0, @mcast1={0xff, 0x5}, 0x3}, 0x1c)

20.663859128s ago: executing program 2 (id=5594):
r0 = syz_open_dev$amidi(&(0x7f0000000000), 0x2, 0x1)
ioctl$SNDRV_RAWMIDI_IOCTL_INFO(r0, 0x40045730, &(0x7f0000002780))

20.539724254s ago: executing program 3 (id=5595):
r0 = openat$vimc0(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000580)={0x5, @sliced={0x71, [0x6, 0x81, 0x5, 0x4, 0x9, 0x3, 0xff81, 0x200, 0x6a, 0xf, 0x6, 0x401, 0x1, 0x2, 0x1, 0x80, 0x4, 0x12a6, 0x10, 0x8, 0xfffe, 0x4, 0x0, 0x6, 0x8, 0x6ce, 0x8, 0xc, 0x64, 0x3, 0x401, 0x0, 0x5, 0xbde0, 0x40, 0x7, 0x8, 0x2, 0x1, 0xa, 0x8001, 0x8, 0x678, 0x0, 0x52, 0x0, 0x4, 0x1000], 0x6}})

20.135822792s ago: executing program 0 (id=5597):
ioperm(0x0, 0x2, 0x1fe)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000040)=0x2, 0x800800000000008, 0x0)

19.996515375s ago: executing program 2 (id=5598):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r0, &(0x7f0000000fc0)={0x0, 0x0, &(0x7f0000000f80)={&(0x7f0000000180)={0x24, 0x2, 0x3, 0x401, 0x0, 0x0, {0x2, 0x0, 0x4}, [@NFQA_CFG_FLAGS={0x8, 0x5, 0x1, 0x0, 0x10}, @NFQA_CFG_CMD={0x8, 0x1, {0x1, 0x0, 0x15}}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000004}, 0x20000050)

19.917467382s ago: executing program 3 (id=5600):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x301, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}]}, @NFT_MSG_NEWCHAIN={0x54, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_HOOK={0x28, 0x4, 0x0, 0x1, [@NFTA_HOOK_PRIORITY={0x8}, @NFTA_HOOK_HOOKNUM={0x8, 0x1, 0x1, 0x0, 0x5}, @NFTA_HOOK_DEV={0x14, 0x3, 'veth1_macvtap\x00'}]}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz1\x00'}]}, @NFT_MSG_DELCHAIN={0x2c, 0x5, 0xa, 0x201, 0x0, 0x0, {0x1, 0x0, 0x2000}, [@NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x1}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz1\x00'}]}], {0x14}}, 0xc8}}, 0x0)

19.49877029s ago: executing program 0 (id=5602):
r0 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000040), 0x82001, 0x0)
ioctl$SNDCTL_DSP_STEREO(r0, 0xc0045003, &(0x7f00000000c0))

19.44634609s ago: executing program 2 (id=5603):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000780)='./bus\x00', 0x20008c0, &(0x7f0000000300)={[{@fat=@allow_utime={'allow_utime', 0x3d, 0xff}}, {@shortname_lower}, {@shortname_winnt}, {@shortname_lower}, {@fat=@check_strict}, {@uni_xlateno}, {@iocharset={'iocharset', 0x3d, 'iso8859-9'}}, {@iocharset={'iocharset', 0x3d, 'cp866'}}, {@uni_xlateno}, {@shortname_winnt}, {@uni_xlateno}, {@uni_xlateno}, {@shortname_mixed}, {@uni_xlate}]}, 0x80, 0x364, &(0x7f0000000400)="$eJzs3U1oHOUbAPBnO5vdtNB/cvhDUbCM3gQNbcWDnhJKCsW9qCx+HMTFpiq7UcjiYnLINl7Eo+BRT9486MFDzyIo4s2DVytIVTxoD0LB4sh+z2Z306QYa/D3OyxPnvd95n0nM+xMJtk3Ly5H/dJcXL5x43rMzxeiuHx+OW4WYjGSGLgSk0pTcgDA0XAzy+K3rGefJYVDnhIAcMi61/+XT+Yyb32xV//M1R8Ajrz+z//Hh4kp1/f5WcWvH9q0AIBDNPH8/4Gx5tL4r/qLub8KAACOqqefe/6JlUrEU2k6H7H+dqvaqsbjo/aVy/FqNGItzsRC3Iro3Sh0Xgrd1wsXK6tn0jRtx4+LUe1UtKoR6+1WtXensJJ068txNhZisV/fv9vIsiy58Gll9WzaFRFX2t3xY73Qqs7Fif74352ItTgXafx/oj7iYmX1XNrfQHV9UN+O2Bk9t+jMfykW4puX4nREXIpO7eC2prK6fTZNz2eVsfpWtdzt1zPzCQgAAAAAAAAAAAAAAAAAAAAAANyRpXRocbj+TTZav2dpaUp7d32cXn1/faCd3vpAWTmLLPv1zYer7yQxtj7Q7vV5WtViHLu7uw4AAAAAAAAAAAAAAAAAAAD/Gs3NUtQajbWN5uZWPR+0N5qbxyKik3ntq48/Px6TfW4TFPtj5JrSfmqrXsuSQecs6fc5FrnypDP4YIMfXR3OOD9EebgXU6dRnt3UaJy8/4f3R5n7ksGW/xz1SWL6Dia7ppEP1v/Xm9JBvlHD4Nxt+lzLsmxW+fYLk1VRiCge/MDtHWSd4Mvrr9zzSPPUo93MZ1nPgw8tPHPtvQ9/rtcanZGjewRLG81bWb3W/3r6yTY7SHLnTyF6QSF/JhRnlZe26rWd8aZa8u0vz9777tf7Gz3LZ96Y0ifp7c4nu5tKvaAzzV1Nx6eNNRcHPQStOzlwpz5Yrl3d/v6n/Vbl3iSmLdTx++m/8V0IAAAAAAAAAAAAAAAAAACIsY/HDzL9D/vO7VX12JOHPzMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA+OeM/v9/LtiZyOwn+KMdk03ltY1mROlu7yYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAP9xfwUAAP//oHptow==")
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x0)

19.241754479s ago: executing program 1 (id=5605):
r0 = openat$vimc0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000080)={0x0, 0x3, 0x0, {0x9, @pix_mp={0x1, 0x4, 0xb5315241, 0x9, 0x4, [{0x10, 0x200000}, {0x6, 0x6}, {0x80, 0xdc78}, {0x0, 0x9}, {0x2, 0x2}, {0x9, 0xe}, {0x6, 0x10}, {0xa, 0x1}], 0x5, 0x4, 0x2, 0x1, 0x1}}})

19.113454053s ago: executing program 4 (id=5606):
r0 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000040)="1400000016000b63d25a80648c2594f90924fc60", 0x8c0}], 0x1, 0x0, 0x0, 0x600}, 0x0)

18.687822476s ago: executing program 0 (id=5608):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180200000500000000000000000000008500000041000000850000000700000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000140)={r0, 0x0, 0xa, 0x0, &(0x7f0000000240)="968b9fd05ab803001000", 0x0, 0x500, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)

18.53028854s ago: executing program 4 (id=5609):
r0 = socket(0x22, 0x2, 0x3)
ioctl$IMGETCOUNT(r0, 0x80044943, &(0x7f0000000000))

18.095791066s ago: executing program 4 (id=5611):
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
accept4(r0, 0x0, 0x0, 0x80000)

17.936849008s ago: executing program 1 (id=5612):
r0 = socket(0x10, 0x3, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f0000000040)={'gretap0\x00', 0x0})

17.8402304s ago: executing program 5 (id=5613):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000098c0), 0x0, 0x0)
ioctl$TIOCGRS485(r0, 0x5418, &(0x7f0000000200))

17.787156888s ago: executing program 2 (id=5614):
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000380)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct]}}, 0x0, 0x26, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000340)={r0, 0x36, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0}}, 0x9)

17.595822515s ago: executing program 4 (id=5615):
r0 = socket$inet(0x2, 0x4000000805, 0x0)
sendmmsg(r0, &(0x7f0000000ac0)=[{{&(0x7f0000000000)=@l2tp={0x2, 0x0, @dev}, 0x80, &(0x7f0000000180)=[{&(0x7f00000000c0)="ae", 0x1}], 0x1}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="12000000000000008400000006"], 0x18}}], 0x2, 0x0)

17.506231609s ago: executing program 1 (id=5616):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000006c0)=ANY=[@ANYBLOB="640100000001010400000000000000000a0000003c0001802c000180140003000000000000000000000000000000000014000400200100000000000000000000000000010c00028005000100000000003c0002802c00018014000300fe80000000000000000000000000000014000400ff0200000000000000000000000000010c00028005000100000000000800074000000000d0000d8008000100ac141400080002000000000014000500ff02000000000000000000000000000114000400fe80000000000000000000000000000014000400fc0200000000000000000000000000003c0003"], 0x164}}, 0x0)

17.393494796s ago: executing program 5 (id=5617):
r0 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$VIDIOC_ENUMSTD(r0, 0xc0485619, &(0x7f0000000080)={0xe, 0xff, "59ea5ec495fbc8240d089ccf757c6d0ae178414f7d243373", {0x7ff, 0x8001}, 0x1000})

17.217387284s ago: executing program 4 (id=5618):
r0 = fsopen(&(0x7f00000001c0)='affs\x00', 0x1)
fsconfig$FSCONFIG_SET_PATH(r0, 0x3, &(0x7f0000000100)='usrquota', &(0x7f00000002c0)='./file1\x00', 0xffffffffffffff9c)

17.093924649s ago: executing program 5 (id=5619):
r0 = syz_open_dev$vim2m(&(0x7f0000000040), 0x5, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000100)={0x16, 0x1, 0x0, "7777350b51415022d24009c2ae70e31e74bd0e14b7f967efe6e74ce4dfd4c02e"})

16.972891508s ago: executing program 4 (id=5620):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETFLOWTABLE(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)={0x20, 0x17, 0xa, 0x3, 0x0, 0x0, {}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}]}, 0x20}}, 0x0)

16.772230835s ago: executing program 5 (id=5621):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='net/netlink\x00')
preadv(r0, &(0x7f0000001400)=[{&(0x7f00000002c0)=""/128, 0x80}], 0x1, 0xc002a0, 0x101)

16.663861079s ago: executing program 5 (id=5622):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=@newlink={0x44, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x3}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_PRIORITY={0x6, 0x6, 0x4}, @IFLA_BR_STP_STATE={0x8, 0x5, 0x80000}]}}}]}, 0x44}}, 0x0)

16.457273314s ago: executing program 5 (id=5623):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000380)='./file0\x00', 0x22000011, &(0x7f0000000000)={[{@commit}, {@noblock_validity}, {@user_xattr}]}, 0x86, 0x48e, &(0x7f0000000400)="$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")
syz_mount_image$msdos(&(0x7f0000000180), &(0x7f0000000000)='.\x00', 0x2046022, &(0x7f00000002c0)=ANY=[], 0x0, 0x0, &(0x7f0000000000))

3.493901728s ago: executing program 32 (id=5600):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x301, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}]}, @NFT_MSG_NEWCHAIN={0x54, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_HOOK={0x28, 0x4, 0x0, 0x1, [@NFTA_HOOK_PRIORITY={0x8}, @NFTA_HOOK_HOOKNUM={0x8, 0x1, 0x1, 0x0, 0x5}, @NFTA_HOOK_DEV={0x14, 0x3, 'veth1_macvtap\x00'}]}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz1\x00'}]}, @NFT_MSG_DELCHAIN={0x2c, 0x5, 0xa, 0x201, 0x0, 0x0, {0x1, 0x0, 0x2000}, [@NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x1}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz1\x00'}]}], {0x14}}, 0xc8}}, 0x0)

2.520479101s ago: executing program 33 (id=5608):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180200000500000000000000000000008500000041000000850000000700000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000140)={r0, 0x0, 0xa, 0x0, &(0x7f0000000240)="968b9fd05ab803001000", 0x0, 0x500, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)

1.48780927s ago: executing program 34 (id=5614):
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000380)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct]}}, 0x0, 0x26, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000340)={r0, 0x36, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0}}, 0x9)

1.015894268s ago: executing program 35 (id=5616):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000006c0)=ANY=[@ANYBLOB="640100000001010400000000000000000a0000003c0001802c000180140003000000000000000000000000000000000014000400200100000000000000000000000000010c00028005000100000000003c0002802c00018014000300fe80000000000000000000000000000014000400ff0200000000000000000000000000010c00028005000100000000000800074000000000d0000d8008000100ac141400080002000000000014000500ff02000000000000000000000000000114000400fe80000000000000000000000000000014000400fc0200000000000000000000000000003c0003"], 0x164}}, 0x0)

539.535781ms ago: executing program 36 (id=5620):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETFLOWTABLE(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)={0x20, 0x17, 0xa, 0x3, 0x0, 0x0, {}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}]}, 0x20}}, 0x0)

0s ago: executing program 37 (id=5623):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000380)='./file0\x00', 0x22000011, &(0x7f0000000000)={[{@commit}, {@noblock_validity}, {@user_xattr}]}, 0x86, 0x48e, &(0x7f0000000400)="$eJzs3EtvVFUcAPD/nXaKFUoLPnkoo0hsRFtaUFmYGI0mbExMdKHLWipBChioiRAiaAwujZ9AXZr4CVzpxqgrjVvdGxNi2IguzJj7KlM6rdPpTKcyv18y7Tn3dc7/nnt6H+dOA+hbtfRHErEtIn6JiNE8u3SBWv7rxvVLs39dvzSbRL3+yh9Jttyf1y/NlotuK35vLbY5XomofJjEniblnr9w8dTM/PzcuSI/uXD67cnzFy4+cfL0zIm5E3Nnpo8ePXJ46umnpp/sSJwjaV13v3d2765jr3/y0mw93vj+y7T+A8X8xjhyY+susxa1GI56vbJk6lD288C6t765jDSkk8EeVoQ1SY//tLmqWf8fjYG42Xij8eIHPa0c0FX1er2+Y9nU/KxYOZBk84HblT4O/ao846f3v+VnY69Aeuvac/kNUBr3jeKTzxmM9L49Gcvv2Ae6VP62iHjtyt+fpp9o+hwCAKCzvk6vfx5vdv1XiXsblttejA2NRcTBiNgZEXdFxN0RcU9Etux9EXH/Gsuv3ZLPy682TPlpuN3YWpFe/z1TjG0tvf5bHLUZGyhyI1n81eTNk/Nzh4p9Mh7VLWl+apUyvnnh54+zRJNIag3Xf+knLb+8Fizq8fvglqXrHJ9ZmFlv3KVr70fsHny2SfzJ4khAEhG7ImJ3G9tP99nJx77Ym6a3b10+/7/jX0UHxpnqn0c8mrf/lbgl/lKSl7TS+OTkHTE/d2iyPCqW++HHqy835huP7loWRpvxd0Da/nc2Pf6L+MtuUI7Xnl97GVd//WjFe5p2j/+h5NUsPVRMe3dmYeHcVMRQMWHJ9Omb65b5cvk0/vH9zfv/zoh/PivW2xMR6UH8QEQ8GBH7iro/FBEPR8T+VeL/7vlH3lp9D/W2/Y+v1v4RY0kRf+rc4sB964mBU99+tVL5rbX/kSw1Xkxp5e9fqxVsd78BAADA/0klG4NOKhOL6UplYiJ/h7987HKwFu+cOZ6PVY9FtVI+6RpteB46VTwbLvPTt+QPR8SO7E2j4Sw/MXt2fqTHsUO/27pC/0/91q2XXoDNY03jaEn36gFsPN/XhP7VvP939b0rYJNw/of+pf9D/2rW/y9H3OhBVYAN5vwP/av1/u+NALjdOP9D/9L/oS8t/0r8cPGvE9r5pv/NxM5j61p9rYnqBpbV4cRAl7Ycjf+0owuJqPR817WfqGyGauwrElsiotW1Lje0aXna7kYNq/M9/KMEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADQQf8GAAD//4F+194=")
syz_mount_image$msdos(&(0x7f0000000180), &(0x7f0000000000)='.\x00', 0x2046022, &(0x7f00000002c0)=ANY=[], 0x0, 0x0, &(0x7f0000000000))

kernel console output (not intermixed with test programs):

ror opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:2.108/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  520.565464][T15291] loop5: detected capacity change from 0 to 4096
[  520.688644][T15296] loop4: detected capacity change from 0 to 4096
[  520.696055][T15297] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  520.822809][T15299] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  521.356453][T15304] loop4: detected capacity change from 0 to 4096
[  522.058945][T15294] loop3: detected capacity change from 0 to 32768
[  522.110068][T15302] loop5: detected capacity change from 0 to 32768
[  522.131020][T15294] gfs2: fsid=syz:syz: Trying to join cluster "lock_dlm", "syz:syz"
[  522.176095][T15294] dlm: no local IP address has been set
[  522.181705][T15294] dlm: cannot start dlm midcomms -107
[  522.202419][T15308] loop4: detected capacity change from 0 to 8192
[  522.217515][T15294] gfs2: fsid=syz:syz: dlm_new_lockspace error -107
[  522.225610][T15308] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512).
[  523.106134][T15306] loop0: detected capacity change from 0 to 32768
[  523.204714][T15306] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  523.213612][T15306] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  523.286447][ T6223] usb 4-1: new full-speed USB device number 95 using dummy_hcd
[  523.406825][T15306] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[  523.426145][ T6224] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  523.446865][ T6224] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  523.459989][ T6223] usb 4-1: New USB device found, idVendor=2040, idProduct=9301, bcdDevice=e4.fb
[  523.469291][ T6223] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  523.513007][ T6223] usb 4-1: config 0 descriptor??
[  523.556910][ T6223] dvb-usb: found a 'Hauppauge WinTV-NOVA-T usb2' in warm state.
[  523.579614][ T6223] dvb-usb: bulk message failed: -22 (3/0)
[  523.599152][ T6223] dvb-usb: will use the device's hardware PID filter (table count: 32).
[  523.642286][ T6223] dvbdev: DVB: registering new adapter (Hauppauge WinTV-NOVA-T usb2)
[  523.671343][ T6223] usb 4-1: media controller created
[  523.688029][ T6223] dvb-usb: bulk message failed: -22 (5/0)
[  523.708262][ T6224] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 244ms
[  523.714137][ T6223] dvb-usb: MAC address reading failed.
[  523.731168][ T6224] gfs2: fsid=syz:syz.0: jid=0: Done
[  523.745153][ T6223] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  523.748715][T15306] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  523.809414][ T6223] dvb-usb: bulk message failed: -22 (6/0)
[  523.830759][ T6223] dvb-usb: bulk message failed: -22 (6/0)
[  523.847528][ T6223] dvb-usb: no frontend was attached by 'Hauppauge WinTV-NOVA-T usb2'
[  523.889800][ T6223] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.3/usb4/4-1/input/input50
[  523.939626][ T6223] dvb-usb: schedule remote query interval to 100 msecs.
[  523.980656][ T6223] dvb-usb: Hauppauge WinTV-NOVA-T usb2 successfully initialized and connected.
[  524.040920][T15316] loop4: detected capacity change from 0 to 32768
[  524.074316][ T6223] usb 4-1: USB disconnect, device number 95
[  524.090609][T15316] (syz.4.4222,15316,1):ocfs2_parse_options:1460 ERROR: Invalid heartbeat mount options
[  524.110858][ T6113] dvb-usb: bulk message failed: -22 (2/0)
[  524.149594][ T6113] dvb-usb: error while querying for an remote control event.
[  524.163065][T15316] (syz.4.4222,15316,1):ocfs2_fill_super:1178 ERROR: status = -22
[  524.262569][ T6223] dvb-usb: Hauppauge WinTV-NOVA-T usb2 successfully deinitialized and disconnected.
[  525.606247][T15324] loop4: detected capacity change from 0 to 32768
[  525.615529][T15324] (syz.4.4224,15324,1):ocfs2_parse_options:1460 ERROR: Invalid heartbeat mount options
[  525.626769][T15324] (syz.4.4224,15324,1):ocfs2_fill_super:1178 ERROR: status = -22
[  525.932000][T15328] loop1: detected capacity change from 0 to 32768
[  525.962956][T15328] (syz.1.4226,15328,1):ocfs2_parse_options:1460 ERROR: Invalid heartbeat mount options
[  525.991493][T15328] (syz.1.4226,15328,1):ocfs2_fill_super:1178 ERROR: status = -22
[  528.746838][T15330] loop2: detected capacity change from 0 to 262144
[  528.885731][T15336] loop1: detected capacity change from 0 to 1768
[  529.048119][T15330] F2FS-fs (loop2): Found nat_bits in checkpoint
[  529.066002][T15334] loop5: detected capacity change from 0 to 262144
[  529.113622][T15334] BTRFS: device fsid 59d3f0ab-0505-4d86-af97-7d6a258edb0a devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.4229 (15334)
[  529.180972][T15334] BTRFS info (device loop5): first mount of filesystem 59d3f0ab-0505-4d86-af97-7d6a258edb0a
[  529.191392][T15334] BTRFS info (device loop5): using xxhash64 (xxhash64-generic) checksum algorithm
[  529.204499][T15334] BTRFS info (device loop5): using free-space-tree
[  529.233834][T15343] loop1: detected capacity change from 0 to 512
[  529.360434][T15332] loop4: detected capacity change from 0 to 32768
[  529.381771][T15348] loop3: detected capacity change from 0 to 1
[  529.395999][T15332] BTRFS: device fsid cd9941ec-5f77-48ee-8e7d-6f6f8a5e5a08 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.4228 (15332)
[  529.397060][T15348] syz.3.4233: attempt to access beyond end of device
[  529.397060][T15348] loop3: rw=2048, sector=0, nr_sectors = 8 limit=1
[  529.439757][T15348] SQUASHFS error: Failed to read block 0x0: -5
[  529.466125][T15348] unable to read squashfs_super_block
[  529.485670][T15332] BTRFS info (device loop4): first mount of filesystem cd9941ec-5f77-48ee-8e7d-6f6f8a5e5a08
[  529.556429][T15343] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  529.594506][T15343] ext4 filesystem being mounted at /651/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  529.612568][T15332] BTRFS info (device loop4): using crc32c (crc32c-intel) checksum algorithm
[  529.673812][T15332] BTRFS info (device loop4): using free-space-tree
[  529.755075][T15332] workqueue: Failed to create a rescuer kthread for wq "btrfs-worker": -EINTR
[  529.755473][T15332] workqueue: Failed to create a rescuer kthread for wq "btrfs-delalloc": -EINTR
[  529.805296][ T6165] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  529.830259][T15332] workqueue: Failed to create a rescuer kthread for wq "btrfs-flush_delalloc": -EINTR
[  529.830573][T15332] workqueue: Failed to create a rescuer kthread for wq "btrfs-cache": -EINTR
[  529.884355][ T6163] BTRFS info (device loop5): last unmount of filesystem 59d3f0ab-0505-4d86-af97-7d6a258edb0a
[  529.915632][T15370] loop3: detected capacity change from 0 to 3
[  529.922727][T15370] syz.3.4234: attempt to access beyond end of device
[  529.922727][T15370] loop3: rw=2048, sector=0, nr_sectors = 8 limit=3
[  529.970347][T15332] workqueue: Failed to create a rescuer kthread for wq "btrfs-fixup": -EINTR
[  529.970609][T15332] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio": -EINTR
[  530.021601][T15332] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-meta": -EINTR
[  530.043350][T15370] SQUASHFS error: Failed to read block 0x0: -5
[  530.118712][T15370] unable to read squashfs_super_block
[  530.133458][T15332] workqueue: Failed to create a rescuer kthread for wq "btrfs-rmw": -EINTR
[  530.133733][T15332] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-write": -EINTR
[  530.142859][T15332] workqueue: Failed to create a rescuer kthread for wq "btrfs-compressed-write": -EINTR
[  530.152676][T15332] workqueue: Failed to create a rescuer kthread for wq "btrfs-freespace-write": -EINTR
[  530.162852][T15332] workqueue: Failed to create a rescuer kthread for wq "btrfs-delayed-meta": -EINTR
[  530.372271][T15383] loop1: detected capacity change from 0 to 1
[  530.388991][T15383] syz.1.4235: attempt to access beyond end of device
[  530.388991][T15383] loop1: rw=2048, sector=0, nr_sectors = 8 limit=1
[  530.403314][T15383] SQUASHFS error: Failed to read block 0x0: -5
[  530.409608][T15383] unable to read squashfs_super_block
[  530.907357][T15389] loop2: detected capacity change from 0 to 128
[  530.929571][T15332] BTRFS error (device loop4): open_ctree failed
[  530.985471][T15389] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  531.060953][T15389] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  531.490534][T15391] loop2: detected capacity change from 0 to 4096
[  531.526091][T15391] ntfs3(loop2): Different NTFS sector size (1024) and media sector size (512).
[  531.651519][T15393] loop4: detected capacity change from 0 to 128
[  531.693982][T15393] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[  531.812521][T15393] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  531.902384][T15386] loop3: detected capacity change from 0 to 32768
[  532.194997][T15404] loop4: detected capacity change from 0 to 64
[  532.224023][T15386] bcachefs (loop3): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,nojournal_transaction_names
[  532.344726][T15386] bcachefs (loop3): initializing new filesystem
[  532.703414][T15407] loop5: detected capacity change from 0 to 256
[  532.711329][T15386] bcachefs (loop3): going read-write
[  532.712014][T15407] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256
[  532.845773][T15395] loop2: detected capacity change from 0 to 32768
[  532.885387][T15395] BTRFS: device fsid f8fbafda-0237-42f9-bd6b-a83e6ac3fc88 devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.4242 (15395)
[  533.278179][T15409] loop4: detected capacity change from 0 to 128
[  533.296211][T15386] bcachefs (loop3): marking superblocks
[  533.310384][T15386] bcachefs (loop3): initializing freespace
[  533.318466][T15386] bcachefs (loop3): done initializing freespace
[  533.326907][T15386] bcachefs (loop3): reading snapshots table
[  533.332914][T15386] bcachefs (loop3): reading snapshots done
[  533.398696][T15411] loop0: detected capacity change from 0 to 512
[  533.470530][T15386] syz.3.4239: attempt to access beyond end of device
[  533.470530][T15386] loop3: rw=6145, sector=268860657793024, nr_sectors = 10 limit=32768
[  533.548607][T15407] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=512, location=512
[  533.583765][T15386] bcachefs (loop3): superblock write error: I/O
[  533.590074][T15386] bcachefs (loop3): bch2_write_super(): fatal error : Unable to write superblock to sufficient devices (from bch2_fs_initialize)
[  533.634387][T15407] UDF-fs: warning (device loop5): udf_load_vrs: No anchor found
[  533.666141][T15407] UDF-fs: Scanning with blocksize 512 failed
[  533.737815][T15407] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256
[  533.761756][T15395] BTRFS info (device loop2): first mount of filesystem f8fbafda-0237-42f9-bd6b-a83e6ac3fc88
[  533.788024][T15386] bcachefs (loop3): fatal error - emergency read only
[  533.799903][   T52] bcachefs (loop3): bch2_write_super(): fatal error  loop3: Superblock modified by another process (seq 48 expected 42)
[  533.842456][T15395] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm
[  533.859380][T15407] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  533.894714][T15386] bcachefs (loop3): bch2_copygc_start(): error creating copygc thread EINTR
[  533.934899][T15386] bcachefs (loop3): error starting copygc thread
[  533.941300][T15386] bcachefs (loop3): bch2_fs_start(): error starting filesystem EINTR
[  533.980172][T15415] loop0: detected capacity change from 0 to 512
[  533.987808][T15386] bcachefs (loop3): shutting down
[  533.999136][T15386] bcachefs (loop3): going read-only
[  534.027940][T15417] loop4: detected capacity change from 0 to 2048
[  534.082128][T15395] BTRFS info (device loop2): using free-space-tree
[  534.109855][T15386] bcachefs (loop3): finished waiting for writes to stop
[  534.124958][T15386] bcachefs (loop3): flushing journal and stopping allocators, journal seq 2
[  534.188743][T15386] bcachefs (loop3): flushing journal and stopping allocators complete, journal seq 2
[  534.210578][T15386] bcachefs (loop3): unshutdown complete, journal seq 2
[  534.218883][T15386] bcachefs (loop3): done going read-only, filesystem not clean
[  534.388604][T15386] bcachefs (loop3): shutdown complete
[  534.651564][ T6171] BTRFS info (device loop2): last unmount of filesystem f8fbafda-0237-42f9-bd6b-a83e6ac3fc88
[  536.482614][T15441] loop1: detected capacity change from 0 to 32768
[  537.125884][T15441] XFS (loop1): Mounting V5 Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  537.176800][T15441] XFS (loop1): Ending clean mount
[  537.375150][ T6165] XFS (loop1): Unmounting Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  538.220253][T15386] bcachefs: bch2_fs_get_tree() error: EINTR
[  539.155876][T15453] loop1: detected capacity change from 0 to 32768
[  539.214941][T15453] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  539.489794][T15453] XFS (loop1): Ending clean mount
[  539.650587][T15473] loop5: detected capacity change from 0 to 512
[  539.693568][T15473] UDF-fs: warning (device loop5): udf_load_vrs: No VRS found
[  539.705482][T15473] UDF-fs: Scanning with blocksize 512 failed
[  539.718830][T15473] UDF-fs: warning (device loop5): udf_load_vrs: No VRS found
[  539.726242][T15473] UDF-fs: Scanning with blocksize 1024 failed
[  539.755700][T15473] UDF-fs: warning (device loop5): udf_load_vrs: No VRS found
[  539.766087][T15473] UDF-fs: Scanning with blocksize 2048 failed
[  539.787298][T15473] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256
[  539.819347][T15473] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  539.840904][ T6165] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  540.238229][T15459] loop3: detected capacity change from 0 to 32768
[  540.253438][T15459] BTRFS: device fsid 34a2da50-e117-4d40-8878-8e0fb0127b5f devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.4256 (15459)
[  540.303296][T15475] loop4: detected capacity change from 0 to 16384
[  540.311736][T15475] UDF-fs: warning (device loop4): udf_load_vrs: No VRS found
[  540.435435][T15475] UDF-fs: Scanning with blocksize 512 failed
[  540.455913][T15455] loop0: detected capacity change from 0 to 131072
[  540.496180][T15455] F2FS-fs (loop0): Found nat_bits in checkpoint
[  540.498045][T15459] BTRFS info (device loop3): first mount of filesystem 34a2da50-e117-4d40-8878-8e0fb0127b5f
[  540.542701][T15480] Illegal XDP return value 125 on prog  (id 279) dev N/A, expect packet loss!
[  540.555159][T15459] BTRFS info (device loop3): using xxhash64 (xxhash64-generic) checksum algorithm
[  540.571214][T15475] UDF-fs: warning (device loop4): udf_load_vrs: No VRS found
[  540.593017][T15455] F2FS-fs (loop0): Mounted with checkpoint version = 1b41e955
[  540.616825][T15475] UDF-fs: Scanning with blocksize 1024 failed
[  540.624298][T15459] BTRFS info (device loop3): using free-space-tree
[  540.776896][T15475] UDF-fs: warning (device loop4): udf_load_vrs: No VRS found
[  540.788220][T15475] UDF-fs: Scanning with blocksize 2048 failed
[  540.974437][T15475] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  541.646081][T15523] loop4: detected capacity change from 0 to 128
[  541.772030][ T6164] BTRFS info (device loop3): last unmount of filesystem 34a2da50-e117-4d40-8878-8e0fb0127b5f
[  542.066805][T15541] loop4: detected capacity change from 0 to 2048
[  542.265270][T15549] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  542.781128][T15565] loop1: detected capacity change from 0 to 256
[  542.887172][T15565] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xf6e00961, utbl_chksum : 0xe619d30d)
[  543.359584][T15589] loop5: detected capacity change from 0 to 64
[  543.373666][T15588] loop2: detected capacity change from 0 to 512
[  543.507230][   T29] audit: type=1326 audit(1735916733.065:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15592 comm="syz.3.4308" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f094bd85d29 code=0x0
[  543.608172][T15588] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 227 vs 220 free clusters
[  543.694848][T15588] EXT4-fs error (device loop2): ext4_clear_blocks:876: inode #13: comm syz.2.4305: attempt to clear invalid blocks 1024 len 1
[  543.884689][T15588] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #13: comm syz.2.4305: invalid indirect mapped block 1819239214 (level 0)
[  543.951021][T15588] EXT4-fs (loop2): 1 truncate cleaned up
[  543.962142][T15588] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  544.010964][T15613] netlink: 'syz.1.4320': attribute type 21 has an invalid length.
[  544.036855][T15613] netlink: 132 bytes leftover after parsing attributes in process `syz.1.4320'.
[  544.066045][T15588] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  544.111361][T15621] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4321'.
[  544.570745][T15637] ipt_ECN: cannot use operation on non-tcp rule
[  544.994195][T15651] netlink: 'syz.4.4336': attribute type 1 has an invalid length.
[  545.029167][T15651] netlink: 'syz.4.4336': attribute type 3 has an invalid length.
[  545.078929][T15651] netlink: 224 bytes leftover after parsing attributes in process `syz.4.4336'.
[  545.135551][T15655] netlink: 'syz.0.4338': attribute type 11 has an invalid length.
[  545.167100][T15655] netlink: 224 bytes leftover after parsing attributes in process `syz.0.4338'.
[  545.178482][T15657] netlink: 228 bytes leftover after parsing attributes in process `syz.5.4339'.
[  545.584458][T15667] loop5: detected capacity change from 0 to 256
[  545.626276][T15667] exFAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  545.671444][T15669] dvmrp1: entered allmulticast mode
[  545.704370][T15667] exFAT-fs (loop5): Medium has reported failures. Some data may be lost.
[  545.844131][T15667] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  546.076370][T15679] netlink: 'syz.3.4350': attribute type 1 has an invalid length.
[  546.386567][T15685] netdevsim netdevsim5 netdevsim0: entered promiscuous mode
[  546.500029][T15685] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  546.894044][T15704] veth0_to_team: entered promiscuous mode
[  546.946161][T15704] A link change request failed with some changes committed already. Interface veth0_to_team may have been left with an inconsistent configuration, please check.
[  547.188760][T15714] loop1: detected capacity change from 0 to 64
[  547.274881][T15712] netlink: 16 bytes leftover after parsing attributes in process `syz.5.4367'.
[  547.606243][T15730] loop3: detected capacity change from 0 to 128
[  547.671249][T15730] EXT4-fs (loop3): Test dummy encryption mode enabled
[  547.718524][T15730] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  547.791658][T15730] ext4 filesystem being mounted at /647/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  547.823422][T15735] 
@ÿ: renamed from bond_slave_0 (while UP)
[  548.431030][T15730] fscrypt: AES-256-CBC-CTS using implementation "cts-cbc-aes-aesni"
[  548.441636][T15757] x_tables: (null)_tables: DNAT target: only valid in nat table, not syz0
[  548.467535][T15759] (unnamed net_device) (uninitialized): option lacp_active: mode dependency failed, not supported in mode balance-rr(0)
[  548.598729][T15762] loop0: detected capacity change from 0 to 512
[  548.624456][T15764] netlink: 20 bytes leftover after parsing attributes in process `syz.2.4388'.
[  548.732967][ T6164] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  548.766806][T15771] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4391'.
[  548.777057][T15771] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4391'.
[  548.935841][T15762] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  548.977520][T15762] ext4 filesystem being mounted at /673/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  549.176798][ T6161] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  549.292456][T15791] bridge1: entered promiscuous mode
[  549.297854][T15791] bridge1: entered allmulticast mode
[  550.401154][T15835] IPv6: sit1: Disabled Multicast RS
[  550.417912][T15839] (unnamed net_device) (uninitialized): option xmit_hash_policy: invalid value (71)
[  550.559779][ T6224] usb 6-1: new high-speed USB device number 104 using dummy_hcd
[  550.734451][ T6224] usb 6-1: New USB device found, idVendor=8086, idProduct=0110, bcdDevice=bf.ad
[  550.743740][ T6224] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  550.774479][ T6224] usb 6-1: config 0 descriptor??
[  550.809025][ T6224] gspca_main: spca508-2.14.0 probing 8086:0110
[  550.904530][T15855] loop1: detected capacity change from 0 to 1024
[  551.030927][ T6224] gspca_spca508: reg_read err -71
[  551.047904][ T6224] gspca_spca508: reg_read err -71
[  551.075839][ T1135] hfsplus: b-tree write err: -5, ino 4
[  551.083942][ T6224] gspca_spca508: reg_read err -71
[  551.097473][ T6224] gspca_spca508: reg_read err -71
[  551.135025][ T6224] gspca_spca508: reg_read err -71
[  551.141429][ T6224] gspca_spca508: reg write: error -71
[  551.146869][ T6224] spca508 6-1:0.0: probe with driver spca508 failed with error -71
[  551.179937][T15865] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4437'.
[  551.237784][ T6224] usb 6-1: USB disconnect, device number 104
[  551.293152][T15869] xt_HMARK: spi-set and port-set can't be combined
[  551.752868][T15881] loop2: detected capacity change from 0 to 1024
[  551.819128][T15885] loop1: detected capacity change from 0 to 256
[  551.859562][T15881] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  551.935934][T15885] exfat: Deprecated parameter 'utf8'
[  551.971083][T15885] exfat: Deprecated parameter 'namecase'
[  551.976803][T15885] exfat: Deprecated parameter 'utf8'
[  552.016417][T15881] EXT4-fs error (device loop2): ext4_xattr_set_entry:1668: inode #13: comm syz.2.4444: corrupted xattr entries
[  552.065876][T15885] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d)
[  552.077514][T15891] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=none:owns=io+mem
[  552.255017][T15861] loop4: detected capacity change from 0 to 32768
[  552.307318][T15861] ERROR: (device loop4): diNewExt: no free extents
[  552.307318][T15861] 
[  552.310475][ T6171] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  552.361712][T15861] ERROR: (device loop4): remounting filesystem as read-only
[  552.398840][T15861] ialloc: diAlloc returned -5!
[  553.001782][T15898] loop5: detected capacity change from 0 to 32768
[  553.036947][T15898] btrfs: Deprecated parameter 'usebackuproot'
[  553.059489][T15898] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  553.152338][T15898] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.4454 (15898)
[  553.213405][T15898] BTRFS info (device loop5): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  553.247340][T15898] BTRFS info (device loop5): using blake2b (blake2b-256-generic) checksum algorithm
[  553.289965][T15898] BTRFS info (device loop5): disk space caching is enabled
[  553.338585][T15898] BTRFS warning (device loop5): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  553.480747][T15925] loop3: detected capacity change from 0 to 2048
[  553.589557][T15895] loop0: detected capacity change from 0 to 32768
[  553.776851][T15899] loop1: detected capacity change from 0 to 32768
[  553.796238][T15944] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  553.966890][T15925] syz.3.4461: attempt to access beyond end of device
[  553.966890][T15925] loop3: rw=0, sector=19791209300040, nr_sectors = 2 limit=2048
[  553.967072][T15925] NILFS (loop3): I/O error reading meta-data file (ino=6, block-offset=1)
[  554.031251][T15895] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  554.131173][ T6224] usb 5-1: new high-speed USB device number 84 using dummy_hcd
[  554.150829][T15898] btrfs: Deprecated parameter 'usebackuproot'
[  554.157363][T15898] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  554.173106][T15898] BTRFS warning (device loop5 state M): remount supports changing free space tree only from RO to RW
[  554.237509][T15898] BTRFS info (device loop5 state M): enabling free space tree
[  554.264243][T15898] BTRFS info (device loop5 state M): force clearing of disk cache
[  554.280593][T15898] BTRFS info (device loop5 state M): trying to use backup root at mount time
[  554.303856][T15898] BTRFS info (device loop5 state M): disabling disk space caching
[  554.433587][T15963] loop1: detected capacity change from 0 to 8192
[  554.579715][ T6224] usb 5-1: Using ep0 maxpacket: 16
[  554.686607][ T6163] BTRFS info (device loop5): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  554.711588][ T6224] usb 5-1: New USB device found, idVendor=061d, idProduct=c020, bcdDevice=9c.15
[  554.725414][ T6224] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  554.746651][ T6224] usb 5-1: Product: syz
[  554.752102][ T6224] usb 5-1: Manufacturer: syz
[  554.757120][ T6224] usb 5-1: SerialNumber: syz
[  554.852306][ T6224] usb 5-1: config 0 descriptor??
[  554.888154][T15963] syz.1.4469: attempt to access beyond end of device
[  554.888154][T15963] loop1: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  554.929931][ T6224] ssu100 5-1:0.0: Quatech SSU-100 USB to Serial Driver converter detected
[  554.935823][T15963] Buffer I/O error on dev loop1, logical block 57847, async page read
[  554.956061][T15963] syz.1.4469: attempt to access beyond end of device
[  554.956061][T15963] loop1: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  554.972519][T15963] Buffer I/O error on dev loop1, logical block 57847, async page read
[  554.986356][   T29] audit: type=1800 audit(1735916743.812:19): pid=15963 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.4469" name="file2" dev="loop1" ino=1048645 res=0 errno=0
[  555.100547][T15895] XFS (loop0): Ending clean mount
[  555.208583][ T6161] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  555.245572][T15980] netlink: 'syz.3.4478': attribute type 1 has an invalid length.
[  555.437892][ T6224] ssu100 5-1:0.0: probe with driver ssu100 failed with error -71
[  555.532240][ T6224] usb 5-1: USB disconnect, device number 84
[  555.916326][T16002] nvme_fabrics: unknown parameter or missing value 'ó' in ctrl creation request
[  556.363066][T16019] i2c i2c-0: Invalid block write size 253
[  556.459938][T16025] loop3: detected capacity change from 0 to 64
[  556.555966][T16030] xt_TCPMSS: Only works on TCP SYN packets
[  556.656081][T16034] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  556.734929][T16034] SET target dimension over the limit!
[  556.842162][T16042] loop2: detected capacity change from 0 to 16
[  556.996109][T16042] erofs (device loop2): mounted with root inode @ nid 36.
[  557.086067][T16042] syz.2.4507: attempt to access beyond end of device
[  557.086067][T16042] loop2: rw=0, sector=48, nr_sectors = 16 limit=16
[  557.144373][T16042] erofs (device loop2): read error -5 @ 43 of nid 36
[  557.360660][T16058] netlink: 616 bytes leftover after parsing attributes in process `syz.4.4516'.
[  557.680851][T16044] loop3: detected capacity change from 0 to 32768
[  557.882217][T16044] bcachefs (loop3): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,erasure_code,degraded,no_splitbrain_check,fsck,norecovery,nojournal_transaction_names,reconstruct_alloc,nocow
[  557.947944][T16033] loop0: detected capacity change from 0 to 32768
[  557.955262][T16033] XFS: attr2 mount option is deprecated.
[  557.961760][T16044] bcachefs (loop3): recovering from clean shutdown, journal seq 10
[  557.970461][T16044] bcachefs (loop3): Version upgrade required:
[  557.970461][T16044] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  557.970461][T16044] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.13: inode_has_child_snapshots
[  557.970461][T16044]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance
[  558.043225][T16044] bcachefs (loop3): dropping and reconstructing all alloc info
[  558.085964][T16044] bcachefs (loop3): check_topology... done
[  558.098306][T16083] cgroup: Unknown subsys name 'net'
[  558.133239][T16080] loop2: detected capacity change from 0 to 256
[  558.155014][T16080] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x362c4cf6, utbl_chksum : 0xe619d30d)
[  558.168319][T16044] bcachefs (loop3): accounting_read... done
[  558.189096][T16044] bcachefs (loop3): alloc_read... done
[  558.195372][T16044] bcachefs (loop3): stripes_read... done
[  558.201321][T16044] bcachefs (loop3): snapshots_read... done
[  558.207850][T16044] bcachefs (loop3): check_allocations...
[  558.261996][T16033] XFS (loop0): DAX unsupported by block device. Turning off DAX.
[  558.367200][T16033] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  558.386875][T16044]  done
[  558.422439][T16044] bcachefs (loop3): going read-write
[  558.477224][T16033] XFS (loop0): Ending clean mount
[  558.486700][T16033] XFS (loop0): Quotacheck needed: Please wait.
[  558.495416][T16044] bcachefs (loop3): done starting filesystem
[  558.551653][T16102] loop1: detected capacity change from 0 to 64
[  558.560983][T16104] netlink: 20 bytes leftover after parsing attributes in process `syz.4.4531'.
[  558.571491][T16104] netlink: 24 bytes leftover after parsing attributes in process `syz.4.4531'.
[  558.794440][T16033] XFS (loop0): Quotacheck: Done.
[  558.943111][ T6164] bcachefs (loop3): shutting down
[  558.948259][ T6164] bcachefs (loop3): going read-only
[  558.995126][ T6164] bcachefs (loop3): finished waiting for writes to stop
[  559.016994][ T6161] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  559.093009][ T6164] bcachefs (loop3): flushing journal and stopping allocators, journal seq 11
[  559.157303][T16121] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4540'.
[  559.178597][T16123] openvswitch: netlink: EtherType 0 is less than min 600
[  559.546133][ T6164] bcachefs (loop3): flushing journal and stopping allocators complete, journal seq 14
[  559.555108][T16110] loop5: detected capacity change from 0 to 32768
[  559.662579][T16110] (syz.5.4534,16110,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  559.663413][T16110] (syz.5.4534,16110,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  559.672710][ T6164] bcachefs (loop3): unshutdown complete, journal seq 15
[  559.673725][ T6164] bcachefs (loop3): done going read-only, filesystem not clean
[  559.713247][T16110] JBD2: Ignoring recovery information on journal
[  559.797087][ T6164] bcachefs (loop3): shutdown complete
[  559.890286][T16110] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[  560.344135][T16131] loop4: detected capacity change from 0 to 32768
[  560.403507][T16145] loop2: detected capacity change from 0 to 1024
[  560.446713][T16131] ERROR: (device loop4): duplicateIXtree: 
[  560.446713][T16131] 
[  560.468276][T16131] ERROR: (device loop4): remounting filesystem as read-only
[  560.477691][ T6163] ocfs2: Unmounting device (7,5) on (node local)
[  560.763113][T16153] syz.0.4555: attempt to access beyond end of device
[  560.763113][T16153] nbd0: rw=0, sector=2, nr_sectors = 2 limit=0
[  560.810219][T16153] syz.0.4555: attempt to access beyond end of device
[  560.810219][T16153] nbd0: rw=0, sector=16, nr_sectors = 2 limit=0
[  560.910868][T16157] loop1: detected capacity change from 0 to 64
[  561.906348][T16195] loop0: detected capacity change from 0 to 1024
[  562.598421][ T6224] usb 6-1: new high-speed USB device number 105 using dummy_hcd
[  562.818666][ T6224] usb 6-1: Using ep0 maxpacket: 32
[  562.828301][ T6224] usb 6-1: config 0 has an invalid interface number: 67 but max is 0
[  562.846733][ T6224] usb 6-1: config 0 has no interface number 0
[  562.877931][ T6224] usb 6-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[  562.924240][ T6224] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  562.955578][ T6224] usb 6-1: Product: syz
[  562.960083][ T6224] usb 6-1: Manufacturer: syz
[  563.037295][ T6224] usb 6-1: SerialNumber: syz
[  563.065069][ T6224] usb 6-1: config 0 descriptor??
[  563.082233][ T6224] smsc95xx v2.0.0
[  563.297605][ T6224] smsc95xx 6-1:0.67 (unnamed net_device) (uninitialized): usbnet_get_endpoints failed: -71
[  563.343462][ T6224] smsc95xx 6-1:0.67: probe with driver smsc95xx failed with error -71
[  563.405895][ T6224] usb 6-1: USB disconnect, device number 105
[  563.667181][T16252] netlink: 'syz.4.4602': attribute type 2 has an invalid length.
[  563.675561][T16252] netlink: 'syz.4.4602': attribute type 1 has an invalid length.
[  564.128183][    T9] usb 2-1: new high-speed USB device number 91 using dummy_hcd
[  564.231176][T16274] loop5: detected capacity change from 0 to 1024
[  564.267003][T16272] loop4: detected capacity change from 0 to 512
[  564.286590][T16272] EXT4-fs: Ignoring removed orlov option
[  564.412927][T16280] loop2: detected capacity change from 0 to 16
[  564.450191][T16280] erofs (device loop2): mounted with root inode @ nid 36.
[  564.465355][T16272] EXT4-fs error (device loop4): ext4_orphan_get:1389: inode #15: comm syz.4.4612: casefold flag without casefold feature
[  564.498745][T16272] EXT4-fs (loop4): Remounting filesystem read-only
[  564.514296][    T9] usb 2-1: Using ep0 maxpacket: 32
[  564.539015][T16272] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  564.566120][    T9] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xA6, changing to 0x86
[  564.578502][    T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x86 has an invalid bInterval 0, changing to 7
[  564.611165][    T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x86 has invalid wMaxPacketSize 0
[  564.666196][    T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x7 has an invalid bInterval 0, changing to 7
[  564.747076][    T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0
[  564.795472][ T6169] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  564.846444][    T9] usb 2-1: New USB device found, idVendor=05ef, idProduct=020a, bcdDevice=91.36
[  564.856347][    T9] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  564.864386][    T9] usb 2-1: Product: syz
[  564.868807][    T9] usb 2-1: Manufacturer: syz
[  564.873448][    T9] usb 2-1: SerialNumber: syz
[  564.881714][    T9] usb 2-1: config 0 descriptor??
[  565.041247][T16302] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4628'.
[  565.322988][    T9] iforce 2-1:0.0: usb_submit_urb failed: -71
[  565.329231][    T9] input input51: Device does not respond to id packet M
[  565.353553][    T9] iforce 2-1:0.0: usb_submit_urb failed: -71
[  565.370465][    T9] input input51: Device does not respond to id packet P
[  565.392119][T16312] kAFS: unparsable volume name
[  565.406154][    T9] iforce 2-1:0.0: usb_submit_urb failed: -71
[  565.442048][    T9] input input51: Device does not respond to id packet B
[  565.460455][    T9] iforce 2-1:0.0: usb_submit_urb failed: -71
[  565.470135][    T9] input input51: Device does not respond to id packet N
[  565.493741][    T9] iforce 2-1:0.0: usb_submit_urb failed: -71
[  565.511809][    T9] iforce 2-1:0.0: usb_submit_urb failed: -71
[  565.519448][    T9] iforce 2-1:0.0: usb_submit_urb failed: -71
[  565.527438][   T25] usb 6-1: new high-speed USB device number 106 using dummy_hcd
[  565.527874][    T9] iforce 2-1:0.0: usb_submit_urb failed: -71
[  565.570637][    T9] iforce 2-1:0.0: usb_submit_urb failed -90
[  565.609834][    T9] iforce 2-1:0.0: usb_submit_urb failed -90
[  565.643548][    T9] input: Unknown I-Force Device [%04x:%04x] as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/input/input51
[  565.698466][   T25] usb 6-1: Using ep0 maxpacket: 8
[  565.709690][    T9] usb 2-1: USB disconnect, device number 91
[  565.730273][   T25] usb 6-1: config 0 has an invalid interface number: 33 but max is 1
[  565.761049][   T25] usb 6-1: config 0 has no interface number 1
[  565.771405][   T25] usb 6-1: config 0 interface 33 altsetting 0 endpoint 0x6 has an invalid bInterval 0, changing to 7
[  565.786071][   T25] usb 6-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  565.814205][   T25] usb 6-1: New USB device found, idVendor=2040, idProduct=2950, bcdDevice=85.f1
[  565.851584][   T25] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  565.908037][   T25] usb 6-1: Product: syz
[  565.934964][   T25] usb 6-1: Manufacturer: syz
[  565.950615][   T25] usb 6-1: SerialNumber: syz
[  565.990697][   T25] usb 6-1: config 0 descriptor??
[  566.003487][T16334] netlink: 72 bytes leftover after parsing attributes in process `syz.3.4641'.
[  566.043920][   T25] pvrusb2: Hardware description: WinTV PVR USB2 Model 29xxx
[  566.247018][ T2335] pvrusb2: Invalid write control endpoint
[  566.250051][   T25] pvrusb2: Hardware description: WinTV PVR USB2 Model 29xxx
[  566.265978][   T25] usb 6-1: USB disconnect, device number 106
[  566.269745][ T2335] usb 6-1: Direct firmware load for v4l-pvrusb2-29xxx-01.fw failed with error -2
[  566.288378][T16340] SET target dimension over the limit!
[  566.309699][ T2335] usb 6-1: Falling back to sysfs fallback for: v4l-pvrusb2-29xxx-01.fw
[  566.479728][T16350] loop4: detected capacity change from 0 to 1024
[  566.549353][T16354] netlink: 'syz.3.4651': attribute type 21 has an invalid length.
[  566.575487][T16354] netlink: 164 bytes leftover after parsing attributes in process `syz.3.4651'.
[  566.586545][T16350] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  566.670909][T16350] EXT4-fs error (device loop4): ext4_empty_dir:3124: inode #11: block 623: comm syz.4.4649: Attempting to read directory block (623) that is past i_size (638464)
[  566.689948][T16350] EXT4-fs (loop4): Remounting filesystem read-only
[  566.806525][T16363] netlink: 1284 bytes leftover after parsing attributes in process `syz.3.4655'.
[  566.843117][T16363] openvswitch: netlink: Message has 8 unknown bytes.
[  566.854375][ T6169] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  567.270288][T16381] capability: warning: `syz.1.4664' uses 32-bit capabilities (legacy support in use)
[  567.389011][T16389] loop3: detected capacity change from 0 to 256
[  567.588113][T16389] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  567.780224][T16406] xt_hashlimit: size too large, truncated to 1048576
[  567.823634][T16406] xt_hashlimit: overflow, try lower: 0/0
[  568.058589][T16411] loop4: detected capacity change from 0 to 4096
[  568.080447][T16411] ntfs3(loop4): Different NTFS sector size (1024) and media sector size (512).
[  569.066825][T16451] loop0: detected capacity change from 0 to 512
[  569.131679][T16455] netlink: 4544 bytes leftover after parsing attributes in process `syz.1.4701'.
[  569.169625][T16455] netlink: 4544 bytes leftover after parsing attributes in process `syz.1.4701'.
[  569.197204][T16451] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  569.302626][T16451] ext4 filesystem being mounted at /720/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  569.516886][T16451] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  569.587371][T16450] loop3: detected capacity change from 0 to 32768
[  569.692087][T16450] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.4698 (16450)
[  569.717140][T16450] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  569.745397][T16450] BTRFS info (device loop3): using sha256 (sha256-ni) checksum algorithm
[  569.758502][T16450] BTRFS info (device loop3): using free-space-tree
[  569.890505][ T6161] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  569.932197][ T6224] usb 2-1: new high-speed USB device number 92 using dummy_hcd
[  570.093067][ T6224] usb 2-1: Using ep0 maxpacket: 8
[  570.148142][ T6224] usb 2-1: unable to get BOS descriptor or descriptor too short
[  570.157246][ T6164] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  570.171312][ T6224] usb 2-1: config 8 has an invalid interface number: 255 but max is 0
[  570.179891][ T6224] usb 2-1: config 8 has no interface number 0
[  570.186039][ T6224] usb 2-1: config 8 interface 255 has no altsetting 0
[  570.213260][ T6224] usb 2-1: string descriptor 0 read error: -22
[  570.219667][ T6224] usb 2-1: New USB device found, idVendor=0423, idProduct=000c, bcdDevice=2e.bf
[  570.244471][ T6224] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  570.354608][T16470] loop4: detected capacity change from 0 to 32768
[  570.511716][T16470] JBD2: Ignoring recovery information on journal
[  570.593970][T16503] xt_hashlimit: max too large, truncated to 1048576
[  570.667582][T16503] Cannot find set identified by id 0 to match
[  570.686899][T16470] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  570.790171][ T6224] eth%d: CATC EL1210A NetMate USB Ethernet at usb-dummy_hcd.1-1, 00:00:00:00:00:00.
[  570.862387][ T6224] usb 2-1: USB disconnect, device number 92
[  570.976395][ T1290] ieee802154 phy0 wpan0: encryption failed: -22
[  570.990753][ T1290] ieee802154 phy1 wpan1: encryption failed: -22
[  571.070086][T16515] loop0: detected capacity change from 0 to 256
[  571.083363][T16513] ebt_limit: overflow, try lower: 570423552/2483027968
[  571.114169][ T6169] ocfs2: Unmounting device (7,4) on (node local)
[  571.211068][T16515] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x46ae1815, utbl_chksum : 0xe619d30d)
[  571.256199][T16515] exFAT-fs (loop0): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  571.316529][T16515] exFAT-fs (loop0): valid_size(150994954) is greater than size(10)
[  571.338797][T16521] loop2: detected capacity change from 0 to 256
[  571.412788][T16521] exFAT-fs (loop2): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d16cac, utbl_chksum : 0xe619d30d)
[  571.487560][T16521] exFAT-fs (loop2): error, invalid access to FAT free cluster (entry 0x00000008)
[  571.509552][T16521] exFAT-fs (loop2): Filesystem has been set read-only
[  571.789443][T16533] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4729'.
[  571.820181][T16533] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for erspan1
[  571.858241][T16533] erspan1: entered promiscuous mode
[  571.863541][T16533] erspan1: entered allmulticast mode
[  572.100076][T16542] loop2: detected capacity change from 0 to 1024
[  572.244422][T16548] loop0: detected capacity change from 0 to 8
[  572.403297][T16527] loop4: detected capacity change from 0 to 32768
[  572.414438][T16527] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.4719 (16527)
[  572.455892][T16527] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  572.466261][T16527] BTRFS info (device loop4): using sha256 (sha256-ni) checksum algorithm
[  572.475601][T16527] BTRFS info (device loop4): using free-space-tree
[  572.716958][T16569] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4742'.
[  572.726302][T16569] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4742'.
[  573.373626][T16595] netlink: 24 bytes leftover after parsing attributes in process `syz.2.4750'.
[  573.383003][T16595] netlink: 24 bytes leftover after parsing attributes in process `syz.2.4750'.
[  573.450572][T16597] loop3: detected capacity change from 0 to 1024
[  573.595979][T16585] loop0: detected capacity change from 0 to 32768
[  573.642362][T16603] loop2: detected capacity change from 0 to 256
[  573.649461][T16603] exfat: Deprecated parameter 'utf8'
[  573.717558][T16605] loop1: detected capacity change from 0 to 1024
[  573.803132][ T6169] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  573.845142][T16603] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  574.068871][T16605] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  574.351260][T16624] xt_TPROXY: Can be used only with -p tcp or -p udp
[  574.370813][ T6165] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  574.566319][T16630] netlink: 'syz.3.4759': attribute type 4 has an invalid length.
[  574.980366][T16651] loop1: detected capacity change from 0 to 128
[  575.141050][T16651] EXT4-fs (loop1): Test dummy encryption mode enabled
[  575.266756][T16662] loop0: detected capacity change from 0 to 512
[  575.275060][T16651] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  575.296049][   T29] audit: type=1326 audit(1735916762.771:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16659 comm="syz.2.4776" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7832585d29 code=0x7ffc0000
[  575.318379][    C0] vkms_vblank_simulate: vblank timer overrun
[  575.350144][T16651] ext4 filesystem being mounted at /745/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  575.451109][   T29] audit: type=1326 audit(1735916762.771:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16659 comm="syz.2.4776" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7832585d29 code=0x7ffc0000
[  575.486425][T16662] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  575.499158][T16662] ext4 filesystem being mounted at /733/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  575.528086][ T6165] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  575.561868][   T29] audit: type=1326 audit(1735916762.771:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16659 comm="syz.2.4776" exe="/root/syz-executor" sig=0 arch=c000003e syscall=318 compat=0 ip=0x7f7832585d29 code=0x7ffc0000
[  575.584993][   T29] audit: type=1326 audit(1735916762.771:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16659 comm="syz.2.4776" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7832585d29 code=0x7ffc0000
[  575.608799][T16672] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4780'.
[  575.609133][   T29] audit: type=1326 audit(1735916762.771:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16659 comm="syz.2.4776" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7832585d29 code=0x7ffc0000
[  575.666920][T16672] netlink: 20 bytes leftover after parsing attributes in process `syz.2.4780'.
[  575.764588][ T6161] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  576.665542][T16676] loop4: detected capacity change from 0 to 32768
[  576.719315][T16676] ERROR: (device loop4): xtTruncate_pmap: XT_GETPAGE: xtree page corrupt
[  576.719315][T16676] 
[  576.731761][ T6113] usb 2-1: new high-speed USB device number 93 using dummy_hcd
[  576.764991][T16676] ERROR: (device loop4): remounting filesystem as read-only
[  576.787331][T16676] ERROR: (device loop4): jfs_unlink: 
[  576.787331][T16676] 
[  576.847008][T16716] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  576.892258][ T1160] usb 4-1: new high-speed USB device number 96 using dummy_hcd
[  576.903751][ T6169] ERROR: (device loop4): xtTruncate: XT_GETPAGE: xtree page corrupt
[  576.903751][ T6169] 
[  576.924302][ T6113] usb 2-1: Using ep0 maxpacket: 32
[  576.936793][ T6113] usb 2-1: config 0 has an invalid interface number: 35 but max is 0
[  576.949266][ T6113] usb 2-1: config 0 has no interface number 0
[  576.984151][ T6113] usb 2-1: config 0 interface 35 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0
[  577.021476][ T6113] usb 2-1: New USB device found, idVendor=10c4, idProduct=818a, bcdDevice=a2.8f
[  577.063036][ T6113] usb 2-1: New USB device strings: Mfr=28, Product=3, SerialNumber=0
[  577.085090][ T6113] usb 2-1: Product: syz
[  577.095880][ T6113] usb 2-1: Manufacturer: syz
[  577.106873][ T1160] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0
[  577.139414][ T6113] usb 2-1: config 0 descriptor??
[  577.162523][ T6113] radio-si470x 2-1:0.35: could not find interrupt in endpoint
[  577.183474][ T1160] usb 4-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  577.197712][ T1160] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  577.205895][ T6113] radio-si470x 2-1:0.35: probe with driver radio-si470x failed with error -5
[  577.218606][ T1160] usb 4-1: Product: syz
[  577.226258][ T1160] usb 4-1: Manufacturer: syz
[  577.230969][ T1160] usb 4-1: SerialNumber: syz
[  577.248320][ T1160] usb 4-1: config 0 descriptor??
[  577.372066][ T6113] radio-raremono 2-1:0.35: Thanko's Raremono connected: (10C4:818A)
[  577.452735][T16729] loop2: detected capacity change from 0 to 2048
[  577.518323][T16729] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  577.575008][T16737] netlink: 'syz.4.4812': attribute type 13 has an invalid length.
[  577.586357][ T6113] radio-raremono 2-1:0.35: raremono_cmd_main failed (-71)
[  577.644728][T16729] EXT4-fs error (device loop2): ext4_find_extent:938: inode #2: comm syz.2.4810: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[  577.685276][ T6113] radio-raremono 2-1:0.35: V4L2 device registered as radio48
[  577.709319][T16729] EXT4-fs (loop2): Remounting filesystem read-only
[  577.715889][ T6113] usb 2-1: USB disconnect, device number 93
[  577.724964][ T6113] radio-raremono 2-1:0.35: Thanko's Raremono disconnected
[  577.743003][ T6224] usb 4-1: USB disconnect, device number 96
[  577.785332][ T6574] udevd[6574]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  577.896725][ T6171] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  578.100984][ T6223] usb 1-1: new high-speed USB device number 85 using dummy_hcd
[  578.274964][ T6223] usb 1-1: New USB device found, idVendor=0572, idProduct=cb01, bcdDevice=26.65
[  578.293151][ T6223] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  578.314957][ T6223] usb 1-1: Product: syz
[  578.319171][ T6223] usb 1-1: Manufacturer: syz
[  578.353560][ T6223] usb 1-1: SerialNumber: syz
[  578.358872][T16741] loop4: detected capacity change from 0 to 32768
[  578.362909][ T6223] usb 1-1: config 0 descriptor??
[  578.515010][T16759] loop2: detected capacity change from 0 to 1764
[  578.563161][T16741] bcachefs (loop4): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,journal_flush_disabled,fsck,norecovery,nojournal_transaction_names,reconstruct_alloc,no_data_io
[  578.585105][T16741] bcachefs (loop4): recovering from clean shutdown, journal seq 10
[  578.593536][T16741] bcachefs (loop4): Version upgrade required:
[  578.593536][T16741] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  578.593536][T16741] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.13: inode_has_child_snapshots
[  578.593536][T16741]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance
[  578.683319][T16764] loop3: detected capacity change from 0 to 2048
[  578.689899][ T6223] usb 1-1: ignoring: probably an ADSL modem
[  578.698934][T16741] bcachefs (loop4): dropping and reconstructing all alloc info
[  578.709490][T16764] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024)
[  578.743936][T16741] bcachefs (loop4): check_topology... done
[  578.749997][T16741] bcachefs (loop4): accounting_read... done
[  578.759241][T16741] bcachefs (loop4): alloc_read... done
[  578.766070][T16741] bcachefs (loop4): stripes_read... done
[  578.766573][T16768] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  578.772205][T16741] bcachefs (loop4): snapshots_read... done
[  578.791244][T16741] bcachefs (loop4): check_allocations...
[  578.821993][T16764] NILFS error (device loop3): nilfs_check_folio: bad entry in directory #2: rec_len is too small for name_len - offset=32, inode=11, rec_len=24, name_len=139
[  578.854052][T16741]  done
[  578.879881][T16741] bcachefs (loop4): going read-write
[  578.912785][T16764] Remounting filesystem read-only
[  578.918062][T16764] NILFS error (device loop3): nilfs_readdir: bad page in #2
[  578.930155][T16741] bcachefs (loop4): done starting filesystem
[  578.933269][ T6223] cxacru 1-1:0.0: usbatm_usb_probe: bind failed: -19!
[  578.979216][ T6223] usb 1-1: USB disconnect, device number 85
[  579.217987][T16780] netlink: 64 bytes leftover after parsing attributes in process `syz.2.4826'.
[  579.238162][ T6169] bcachefs (loop4): shutting down
[  579.243253][ T6169] bcachefs (loop4): going read-only
[  579.248715][ T6169] bcachefs (loop4): finished waiting for writes to stop
[  579.307408][T16782] netdevsim netdevsim2 netdevsim0: entered promiscuous mode
[  579.328956][ T6169] bcachefs (loop4): flushing journal and stopping allocators, journal seq 10
[  579.338344][ T6169] bcachefs (loop4): flushing journal and stopping allocators complete, journal seq 10
[  579.351620][T16782] netdevsim netdevsim2 netdevsim0: entered allmulticast mode
[  579.394249][ T6169] bcachefs (loop4): unshutdown complete, journal seq 11
[  579.408167][ T6169] bcachefs (loop4): done going read-only, filesystem not clean
[  579.521412][ T6169] bcachefs (loop4): shutdown complete
[  579.578272][ T1160] usb 4-1: new high-speed USB device number 97 using dummy_hcd
[  579.681195][T16794] loop2: detected capacity change from 0 to 1024
[  579.744777][T16796] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4836'.
[  579.797476][ T1160] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[  579.811784][ T1160] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  579.840446][ T1160] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 7
[  579.851656][ T1160] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0
[  579.874110][ T1160] usb 4-1: New USB device found, idVendor=0a07, idProduct=00d0, bcdDevice=10.13
[  579.894392][ T1160] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  579.902911][ T1160] usb 4-1: Product: syz
[  579.907299][ T1160] usb 4-1: Manufacturer: syz
[  579.915399][ T1160] usb 4-1: SerialNumber: syz
[  579.922094][T16798] loop0: detected capacity change from 0 to 64
[  580.011306][ T1160] usb 4-1: config 0 descriptor??
[  580.275312][ T1160] adutux 4-1:0.0: Could not retrieve serial number
[  580.285907][ T1160] adutux 4-1:0.0: probe with driver adutux failed with error -5
[  580.449986][T16816] loop0: detected capacity change from 0 to 8
[  580.473724][ T6113] usb 3-1: new high-speed USB device number 97 using dummy_hcd
[  580.498008][T16816] SQUASHFS error: Unknown inode type 0 in squashfs_iget!
[  580.506501][ T1160] usb 4-1: USB disconnect, device number 97
[  580.643712][ T6113] usb 3-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.00
[  580.661080][ T6113] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  580.701394][ T6113] usb 3-1: Product: syz
[  580.716306][T16820] loop1: detected capacity change from 0 to 64
[  580.718555][ T6113] usb 3-1: Manufacturer: syz
[  580.742839][ T6113] usb 3-1: SerialNumber: syz
[  580.754348][ T6113] usb 3-1: config 0 descriptor??
[  580.981415][ T6113] hso 3-1:0.0: Failed to find BULK IN ep
[  581.000171][ T6113] usb-storage 3-1:0.0: USB Mass Storage device detected
[  581.292607][ T6113] usb 3-1: USB disconnect, device number 97
[  581.558000][T16852] loop0: detected capacity change from 0 to 16
[  581.597123][T16852] MTD: Attempt to mount non-MTD device "/dev/loop0"
[  582.099003][T16868] netlink: 36 bytes leftover after parsing attributes in process `syz.3.4872'.
[  582.288899][T16874] loop1: detected capacity change from 0 to 512
[  582.332690][T16870] loop2: detected capacity change from 0 to 4096
[  582.358277][T16874] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  582.451695][T16870] ntfs3(loop2): Different NTFS sector size (2048) and media sector size (512).
[  582.512187][T16874] EXT4-fs (loop1): 1 truncate cleaned up
[  582.591463][T16874] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  582.709112][T16882] loop0: detected capacity change from 0 to 764
[  582.901976][T16890] loop3: detected capacity change from 0 to 64
[  582.910141][T16882] Symlink component flag not implemented
[  582.925778][T16882] Symlink component flag not implemented
[  582.932142][T16882] Symlink component flag not implemented (129)
[  582.941605][T16882] Symlink component flag not implemented (6)
[  583.116128][T16896] loop0: detected capacity change from 0 to 2048
[  583.179178][T16896] UDF-fs: error (device loop0): udf_process_sequence: Primary Volume Descriptor not found!
[  583.223498][T16896] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  583.244941][ T6165] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  583.260678][T16896] UDF-fs: error (device loop0): udf_fiiter_advance_blk: extent after position 0 not allocated in directory (ino 1376)
[  583.397763][T16904] overlayfs: workdir and upperdir must be separate subtrees
[  583.811416][T16921] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4893'.
[  583.866844][T16920] loop5: detected capacity change from 0 to 2048
[  583.911525][T16920] UDF-fs: error (device loop5): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  583.953943][T16920] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  584.205417][T16933] netlink: 132 bytes leftover after parsing attributes in process `syz.1.4899'.
[  584.493633][T16943] openvswitch: netlink: Missing key (keys=40, expected=200000)
[  584.493729][T16941] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4905'.
[  584.522469][T16945] loop1: detected capacity change from 0 to 1024
[  584.534979][T16945] ext2: Unknown parameter 'silent'
[  584.863828][T16960] loop0: detected capacity change from 0 to 512
[  584.898688][T16960] EXT4-fs: Ignoring removed orlov option
[  584.959934][T16963] loop3: detected capacity change from 0 to 256
[  584.962268][T16960] EXT4-fs error (device loop0): dx_probe:823: inode #2: comm syz.0.4910: Attempting to read directory block (0) that is past i_size (256)
[  584.994327][T16960] EXT4-fs (loop0): Remounting filesystem read-only
[  585.004320][T16960] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -117
[  585.048527][T16963] exFAT-fs (loop3): failed to load upcase table (idx : 0x0001e4a3, chksum : 0x009ea0b8, utbl_chksum : 0x7319d30d)
[  585.083329][T16960] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  585.302322][ T6161] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  585.379903][T16968] loop2: detected capacity change from 0 to 4096
[  585.479369][T16968] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512).
[  585.594352][T16979] netlink: 'syz.0.4919': attribute type 10 has an invalid length.
[  585.741483][T16968] ntfs3(loop2): failed to convert "c46c" to cp862
[  585.942622][T16997] mmap: syz.1.4932 (16997): VmData 37466112 exceed data ulimit 1. Update limits or use boot option ignore_rlimit_data.
[  586.375235][ T6239] usb 1-1: new high-speed USB device number 86 using dummy_hcd
[  586.656403][ T6239] usb 1-1: Using ep0 maxpacket: 16
[  586.664113][ T6239] usb 1-1: config 0 has an invalid interface number: 1 but max is 0
[  586.685386][ T6239] usb 1-1: config 0 has no interface number 0
[  586.728536][ T6239] usb 1-1: New USB device found, idVendor=06b9, idProduct=4061, bcdDevice= 1.88
[  586.737808][ T6239] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  586.781512][ T6239] usb 1-1: Product: syz
[  586.785934][ T6239] usb 1-1: Manufacturer: syz
[  586.790578][ T6239] usb 1-1: SerialNumber: syz
[  586.831170][ T6239] usb 1-1: config 0 descriptor??
[  586.863594][T17027] tmpfs: Bad value for 'mpol'
[  587.082355][ T6239] usb 1-1: selecting invalid altsetting 1
[  587.088232][ T6239] speedtch 1-1:0.1: speedtch_bind: setting interface to  1 failed (-22)!
[  587.123657][ T6239] speedtch 1-1:0.1: usbatm_usb_probe: bind failed: -22!
[  587.155710][ T6239] speedtch 1-1:0.1: probe with driver speedtch failed with error -22
[  587.207353][ T6239] usb 1-1: USB disconnect, device number 86
[  587.329055][T17011] loop2: detected capacity change from 0 to 32768
[  587.452693][T17011] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  587.502738][T17021] loop3: detected capacity change from 0 to 32768
[  587.509666][T17020] loop5: detected capacity change from 0 to 32768
[  587.557665][T17020] 
[  587.557665][T17020]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  587.557665][T17020] 
[  587.626771][T17020] ERROR: (device loop5): diWrite: ixpxd invalid
[  587.626771][T17020] 
[  587.689318][T17020] ERROR: (device loop5): txCommit: 
[  587.689318][T17020] 
[  587.770987][ T6163] 
[  587.770987][ T6163]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  587.770987][ T6163] 
[  587.782196][ T6163] 
[  587.782196][ T6163]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  587.782196][ T6163] 
[  587.783868][T17011] XFS (loop2): Ending clean mount
[  587.944014][T17011] XFS (loop2): Quotacheck needed: Please wait.
[  588.032338][T17011] XFS (loop2): Quotacheck: Done.
[  588.253337][T17056] loop5: detected capacity change from 0 to 4096
[  588.294431][T17059] netlink: 'syz.0.4958': attribute type 2 has an invalid length.
[  588.418283][T17061] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  588.464132][T17056] NILFS error (device loop5): nilfs_check_folio: bad entry in directory #2: rec_len is smaller than minimal - offset=128, inode=16, rec_len=1, name_len=5
[  588.481464][ T6171] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  588.497736][T17064] loop3: detected capacity change from 0 to 16
[  588.501777][T17049] loop4: detected capacity change from 0 to 32768
[  588.517696][T17049] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.4952 (17049)
[  588.584750][T17064] erofs (device loop3): mounted with root inode @ nid 36.
[  588.598150][T17056] Remounting filesystem read-only
[  588.621193][T17068] loop0: detected capacity change from 0 to 64
[  588.622533][T17064] erofs (device loop3): inline data across blocks @ nid 46
[  588.704622][T17049] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  588.765952][T17049] BTRFS info (device loop4): using sha256 (sha256-ni) checksum algorithm
[  588.793738][T17049] BTRFS info (device loop4): using free-space-tree
[  589.283775][    T9] usb 1-1: new high-speed USB device number 87 using dummy_hcd
[  589.393775][T17104] libceph: resolve '0' (ret=-3): failed
[  589.481772][    T9] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  589.507797][    T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  589.551046][    T9] usb 1-1: Product: syz
[  589.558696][    T9] usb 1-1: Manufacturer: syz
[  589.582880][    T9] usb 1-1: SerialNumber: syz
[  589.604116][ T6169] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  589.610429][    T9] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  589.653556][T17112] syz.5.4974: attempt to access beyond end of device
[  589.653556][T17112] nbd5: rw=6144, sector=128, nr_sectors = 8 limit=0
[  589.745770][T17112] gfs2: error -5 reading superblock
[  589.758957][ T6224] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  589.954581][T17116] loop3: detected capacity change from 0 to 2048
[  590.112072][T17124] loop5: detected capacity change from 0 to 1024
[  590.151796][T17116] UDF-fs: error (device loop3): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  590.412772][T17130] loop2: detected capacity change from 0 to 16
[  590.462709][T17130] erofs (device loop2): mounted with root inode @ nid 36.
[  590.478592][T17130] erofs (device loop2): bogus lookback distance 1388 @ lcn 42 of nid 36
[  590.555127][    T9] usb 1-1: USB disconnect, device number 87
[  590.626023][T17130] erofs (device loop2): read error -117 @ 43 of nid 36
[  590.791640][T17128] loop1: detected capacity change from 0 to 8192
[  590.907960][ T6224] ath9k_htc 1-1:1.0: ath9k_htc: Target is unresponsive
[  590.930015][ T6224] ath9k_htc: Failed to initialize the device
[  590.933924][T17128]  loop1: p1 p3 p4
[  590.945070][T17128] loop1: partition table partially beyond EOD, truncated
[  590.956605][T17128] loop1: p1 size 3523149824 extends beyond EOD, truncated
[  590.967937][    T9] usb 1-1: ath9k_htc: USB layer deinitialized
[  591.000181][T17128] loop1: p3 size 395700 extends beyond EOD, truncated
[  591.049561][T17128] loop1: p4 start 117571584 is beyond EOD, truncated
[  591.363567][T17154] loop0: detected capacity change from 0 to 1024
[  591.427377][T17156] netlink: 'syz.1.4996': attribute type 12 has an invalid length.
[  591.427409][T17156] netlink: 132 bytes leftover after parsing attributes in process `syz.1.4996'.
[  591.435162][T17154] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  591.659616][ T6302] udevd[6302]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[  591.669034][ T6183] udevd[6183]: inotify_add_watch(7, /dev/loop1p3, 10) failed: No such file or directory
[  591.788770][ T7041] udevd[7041]: inotify_add_watch(7, /dev/loop1p3, 10) failed: No such file or directory
[  591.819752][ T6302] udevd[6302]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[  591.831703][T17171] binfmt_misc: register: failed to install interpreter file ./file0
[  592.020256][    T9] usb 3-1: new high-speed USB device number 98 using dummy_hcd
[  592.093041][T17179] netlink: 'syz.4.5008': attribute type 13 has an invalid length.
[  592.101203][T17179] netlink: 152 bytes leftover after parsing attributes in process `syz.4.5008'.
[  592.111178][T17179] syz_tun: refused to change device tx_queue_len
[  592.117738][T17179] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[  592.375539][T17193] loop5: detected capacity change from 0 to 256
[  592.429286][T17193] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d)
[  592.432376][    T9] usb 3-1: config index 0 descriptor too short (expected 63506, got 18)
[  592.552943][    T9] usb 3-1: New USB device found, idVendor=0830, idProduct=0060, bcdDevice=13.2b
[  592.568380][T17193] exFAT-fs (loop5): start_clu is invalid cluster(0x0)
[  592.568422][    T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  592.605221][    T9] usb 3-1: Product: syz
[  592.616016][    T9] usb 3-1: Manufacturer: syz
[  592.643312][    T9] usb 3-1: SerialNumber: syz
[  592.889401][    T9] visor 3-1:1.0: Handspring Visor / Palm OS converter detected
[  592.939115][    T9] usb 3-1: Handspring Visor / Palm OS converter now attached to ttyUSB0
[  592.973636][    T9] usb 3-1: Handspring Visor / Palm OS converter now attached to ttyUSB1
[  593.314849][    T9] usb 3-1: USB disconnect, device number 98
[  593.463041][    T9] visor ttyUSB0: Handspring Visor / Palm OS converter now disconnected from ttyUSB0
[  593.490901][    T9] visor ttyUSB1: Handspring Visor / Palm OS converter now disconnected from ttyUSB1
[  593.501235][    T9] visor 3-1:1.0: device disconnected
[  593.821678][T17239] netlink: 32 bytes leftover after parsing attributes in process `syz.0.5034'.
[  593.947920][T17245] openvswitch: netlink: ufid size 17 bytes exceeds the range (1, 16)
[  594.028523][T17237] loop4: detected capacity change from 0 to 4096
[  594.065835][T17247] loop2: detected capacity change from 0 to 1024
[  594.479177][    T9] usb 3-1: new high-speed USB device number 99 using dummy_hcd
[  594.594843][T17261] loop0: detected capacity change from 0 to 32768
[  594.623204][T17261] (syz.0.5045,17261,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  594.640392][T17261] (syz.0.5045,17261,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  594.662198][    T9] usb 3-1: Using ep0 maxpacket: 16
[  594.685711][    T9] usb 3-1: config 0 has an invalid interface number: 2 but max is 0
[  594.705867][    T9] usb 3-1: config 0 has no interface number 0
[  594.712043][    T9] usb 3-1: config 0 interface 2 altsetting 0 endpoint 0xB has invalid maxpacket 43736, setting to 1024
[  594.764520][    T9] usb 3-1: config 0 interface 2 altsetting 0 bulk endpoint 0xB has invalid maxpacket 1024
[  594.776423][    T9] usb 3-1: New USB device found, idVendor=0582, idProduct=0005, bcdDevice= 0.88
[  594.786129][    T9] usb 3-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3
[  594.800010][    T9] usb 3-1: Product: syz
[  594.804250][    T9] usb 3-1: SerialNumber: syz
[  594.811535][    T9] usb 3-1: config 0 descriptor??
[  594.818385][T17247] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  594.973783][T17261] JBD2: Ignoring recovery information on journal
[  595.054748][    T9] usb 3-1: Quirk or no altset; falling back to MIDI 1.0
[  595.088136][    T9] usb 3-1: invalid MIDI in EP 0
[  595.110173][T17261] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  595.219801][    T9] snd-usb-audio 3-1:0.2: probe with driver snd-usb-audio failed with error -22
[  595.294650][    T9] usb 3-1: USB disconnect, device number 99
[  595.390411][ T6161] ocfs2: Unmounting device (7,0) on (node local)
[  595.517177][ T6172] udevd[6172]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.2/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  595.704613][T17296] bond1: entered promiscuous mode
[  595.879850][T17296] bond1: entered allmulticast mode
[  595.939368][T17294] loop3: detected capacity change from 0 to 32768
[  595.986029][T17296] 8021q: adding VLAN 0 to HW filter on device bond1
[  596.099866][T17294] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  596.259409][T17318] bond0: (slave lo): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[  596.339529][T17318] bond0: (slave lo): Error: Device can not be enslaved while up
[  596.411252][T17294] XFS (loop3): Ending clean mount
[  596.436545][T17326] loop0: detected capacity change from 0 to 256
[  596.557026][T17326] FAT-fs (loop0): Directory bread(block 64) failed
[  596.585284][T17326] FAT-fs (loop0): Directory bread(block 65) failed
[  596.597736][T17326] FAT-fs (loop0): Directory bread(block 66) failed
[  596.617670][T17326] FAT-fs (loop0): Directory bread(block 67) failed
[  596.647795][T17326] FAT-fs (loop0): Directory bread(block 68) failed
[  596.659797][ T6164] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  596.688711][T17326] FAT-fs (loop0): Directory bread(block 69) failed
[  596.696531][T17326] FAT-fs (loop0): Directory bread(block 70) failed
[  596.703239][T17326] FAT-fs (loop0): Directory bread(block 71) failed
[  596.709817][T17326] FAT-fs (loop0): Directory bread(block 72) failed
[  596.716703][T17326] FAT-fs (loop0): Directory bread(block 73) failed
[  596.776245][T17336] openvswitch: netlink: Missing key (keys=40, expected=10000000)
[  596.908600][T17340] loop5: detected capacity change from 0 to 64
[  597.230061][T17346] IPv6: sit1: Disabled Multicast RS
[  597.380851][T17356] netlink: 'syz.5.5086': attribute type 1 has an invalid length.
[  597.468487][T17356] netlink: 244 bytes leftover after parsing attributes in process `syz.5.5086'.
[  597.582924][T17364] netlink: 596 bytes leftover after parsing attributes in process `syz.4.5091'.
[  597.797822][T17368] xt_CT: You must specify a L4 protocol and not use inversions on it
[  598.205954][T17386] loop1: detected capacity change from 0 to 1024
[  598.276455][T17386] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  598.349044][T17391] netlink: 36 bytes leftover after parsing attributes in process `syz.3.5103'.
[  598.379345][ T6165] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  598.459552][T17398] netlink: 'syz.0.5105': attribute type 3 has an invalid length.
[  598.989321][T17423] loop5: detected capacity change from 0 to 64
[  599.091664][T17427] netlink: 'syz.0.5118': attribute type 10 has an invalid length.
[  599.125823][T17427] netlink: 40 bytes leftover after parsing attributes in process `syz.0.5118'.
[  599.167333][T17427] bridge0: port 3(hsr0) entered blocking state
[  599.207380][T17427] bridge0: port 3(hsr0) entered disabled state
[  599.239515][   T29] audit: type=1326 audit(1735916785.220:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17430 comm="syz.2.5123" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7832585d29 code=0x7ffc0000
[  599.263759][T17427] hsr0: entered allmulticast mode
[  599.276036][T17427] hsr_slave_0: entered allmulticast mode
[  599.300317][T17427] hsr_slave_1: entered allmulticast mode
[  599.318969][   T29] audit: type=1326 audit(1735916785.220:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17430 comm="syz.2.5123" exe="/root/syz-executor" sig=0 arch=c000003e syscall=31 compat=0 ip=0x7f7832585d29 code=0x7ffc0000
[  599.351910][T17427] hsr0: entered promiscuous mode
[  599.367767][T17427] bridge0: port 3(hsr0) entered blocking state
[  599.374371][T17427] bridge0: port 3(hsr0) entered forwarding state
[  599.390848][T17435] netlink: 20 bytes leftover after parsing attributes in process `syz.3.5124'.
[  599.404447][   T29] audit: type=1326 audit(1735916785.220:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17430 comm="syz.2.5123" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7832585d29 code=0x7ffc0000
[  599.488890][   T29] audit: type=1326 audit(1735916785.220:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17430 comm="syz.2.5123" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7832585d29 code=0x7ffc0000
[  599.529525][T17439] loop5: detected capacity change from 0 to 1024
[  599.658561][ T6235] hfsplus: b-tree write err: -5, ino 4
[  599.854885][T17444] loop0: detected capacity change from 0 to 4096
[  599.874057][T17444] ntfs3(loop0): Different NTFS sector size (1024) and media sector size (512).
[  600.122763][T17459] netlink: 16 bytes leftover after parsing attributes in process `syz.2.5136'.
[  600.510628][T17473] netlink: 60 bytes leftover after parsing attributes in process `syz.5.5142'.
[  600.546174][T17473] unsupported nlmsg_type 40
[  600.816530][   T29] audit: type=1326 audit(1735916786.623:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17484 comm="syz.3.5149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f094bd85d29 code=0x7ffc0000
[  600.956851][   T29] audit: type=1326 audit(1735916786.623:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17484 comm="syz.3.5149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=284 compat=0 ip=0x7f094bd85d29 code=0x7ffc0000
[  601.036659][   T29] audit: type=1326 audit(1735916786.623:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17484 comm="syz.3.5149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f094bd85d29 code=0x7ffc0000
[  601.066181][    T9] usb 3-1: new high-speed USB device number 100 using dummy_hcd
[  601.127224][   T29] audit: type=1326 audit(1735916786.623:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17484 comm="syz.3.5149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f094bd85d29 code=0x7ffc0000
[  601.284437][    T9] usb 3-1: Using ep0 maxpacket: 16
[  601.304621][    T9] usb 3-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 9.00
[  601.323651][    T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  601.331701][    T9] usb 3-1: Product: syz
[  601.419833][    T9] usb 3-1: Manufacturer: syz
[  601.441794][    T9] usb 3-1: SerialNumber: syz
[  601.470152][    T9] usb 3-1: config 0 descriptor??
[  601.511399][    T9] ftdi_sio 3-1:0.0: FTDI USB Serial Device converter detected
[  601.578360][    T9] usb 3-1: Detected FT232H
[  601.694460][   T29] audit: type=1326 audit(1735916787.492:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17521 comm="syz.3.5166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f094bd85d29 code=0x7ffc0000
[  601.744646][    T9] ftdi_sio ttyUSB0: Unable to read latency timer: -71
[  601.799669][    T9] ftdi_sio ttyUSB0: Unable to write latency timer: -71
[  601.807394][    T9] ftdi_sio 3-1:0.0: GPIO initialisation failed: -71
[  601.828650][   T29] audit: type=1326 audit(1735916787.492:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17521 comm="syz.3.5166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f094bd85d29 code=0x7ffc0000
[  601.866312][    T9] usb 3-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  601.909684][    T9] usb 3-1: USB disconnect, device number 100
[  601.929473][    T9] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  601.963226][    T9] ftdi_sio 3-1:0.0: device disconnected
[  602.962147][T17561] loop5: detected capacity change from 0 to 1024
[  602.999245][T17561] EXT4-fs: Ignoring removed mblk_io_submit option
[  603.044678][T17561] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  603.212378][T17574] (unnamed net_device) (uninitialized): option min_links: invalid value (18446744073709551359)
[  603.225059][T17574] (unnamed net_device) (uninitialized): option min_links: allowed values 0 - 2147483647
[  603.269348][T17573] netlink: 39 bytes leftover after parsing attributes in process `syz.4.5191'.
[  603.386313][T17561] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  603.539227][T17579] loop2: detected capacity change from 0 to 64
[  603.600174][ T6163] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  603.622957][T17585] loop1: detected capacity change from 0 to 1024
[  603.825898][ T1135] hfsplus: b-tree write err: -5, ino 4
[  605.226774][T17648] netlink: 'syz.0.5225': attribute type 1 has an invalid length.
[  605.245254][T17648] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  605.470166][    T9] usb 5-1: new high-speed USB device number 85 using dummy_hcd
[  605.655113][    T9] usb 5-1: New USB device found, idVendor=0bda, idProduct=8153, bcdDevice=e2.3d
[  605.664631][    T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  605.668326][T17660] loop1: detected capacity change from 0 to 64
[  605.672647][    T9] usb 5-1: Product: syz
[  605.736998][    T9] usb 5-1: Manufacturer: syz
[  605.754581][    T9] usb 5-1: SerialNumber: syz
[  605.790070][    T9] r8152-cfgselector 5-1: Unknown version 0x0000
[  605.796618][    T9] r8152-cfgselector 5-1: config 0 descriptor??
[  605.866183][T17629] loop5: detected capacity change from 0 to 32768
[  605.887096][T17629] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  605.895729][T17629] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  605.907316][T17660] overlay: filesystem on ./file0 not supported
[  605.928941][T17629] gfs2: fsid=syz:syz.0: journal 0 mapped with 20 extents in 0ms
[  605.942726][ T6239] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  605.949559][ T6239] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  606.014595][T17665] loop0: detected capacity change from 0 to 4096
[  606.051116][T17665] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512).
[  606.115739][ T6239] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 155ms
[  606.154142][ T6239] gfs2: fsid=syz:syz.0: jid=0: Done
[  606.176379][T17629] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  606.277316][T17674] xt_bpf: check failed: parse error
[  606.299615][    T9] r8152-cfgselector 5-1: USB disconnect, device number 85
[  606.412899][   T29] kauditd_printk_skb: 3 callbacks suppressed
[  606.412922][   T29] audit: type=1326 audit(1735916791.926:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17677 comm="syz.1.5242" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4693585d29 code=0x7ffc0000
[  606.431150][T17665] ntfs3(loop0): failed to convert "c46c" to cp857
[  606.463262][   T29] audit: type=1326 audit(1735916791.954:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17677 comm="syz.1.5242" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4693585d29 code=0x7ffc0000
[  606.739762][   T29] audit: type=1326 audit(1735916791.954:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17677 comm="syz.1.5242" exe="/root/syz-executor" sig=0 arch=c000003e syscall=104 compat=0 ip=0x7f4693585d29 code=0x7ffc0000
[  606.762247][   T29] audit: type=1326 audit(1735916791.954:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17677 comm="syz.1.5242" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4693585d29 code=0x7ffc0000
[  606.785048][   T29] audit: type=1326 audit(1735916791.954:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17677 comm="syz.1.5242" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4693585d29 code=0x7ffc0000
[  607.431188][T17714] loop0: detected capacity change from 0 to 256
[  607.464951][T17714] exfat: Deprecated parameter 'utf8'
[  607.505939][T17714] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d)
[  607.543869][ T6221] usb 5-1: new high-speed USB device number 86 using dummy_hcd
[  607.770269][ T6221] usb 5-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.00
[  607.779882][ T6221] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  607.787896][ T6221] usb 5-1: Product: syz
[  607.821784][ T6221] usb 5-1: Manufacturer: syz
[  607.826512][ T6221] usb 5-1: SerialNumber: syz
[  607.860315][ T6221] usb 5-1: config 0 descriptor??
[  607.962689][T17734] netlink: 16 bytes leftover after parsing attributes in process `syz.5.5269'.
[  608.108225][ T6221] hso 5-1:0.0: Failed to find BULK IN ep
[  608.119343][T17740] loop3: detected capacity change from 0 to 1764
[  608.143635][ T6221] usb-storage 5-1:0.0: USB Mass Storage device detected
[  608.215425][T17740] iso9660: Corrupted directory entry in block 2 of inode 1920
[  608.381419][ T6221] usb 5-1: USB disconnect, device number 86
[  608.669861][   T29] audit: type=1326 audit(1735916794.040:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17761 comm="syz.2.5281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7832585d29 code=0x7ffc0000
[  608.740342][   T29] audit: type=1326 audit(1735916794.049:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17761 comm="syz.2.5281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7832585d29 code=0x7ffc0000
[  608.793300][   T29] audit: type=1326 audit(1735916794.049:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17761 comm="syz.2.5281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=30 compat=0 ip=0x7f7832585d29 code=0x7ffc0000
[  608.826541][T17765] netlink: get zone limit has 8 unknown bytes
[  608.866865][   T29] audit: type=1326 audit(1735916794.049:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17761 comm="syz.2.5281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7832585d29 code=0x7ffc0000
[  608.972658][   T29] audit: type=1326 audit(1735916794.049:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17761 comm="syz.2.5281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7832585d29 code=0x7ffc0000
[  609.462322][T17789] binder: 17788:17789 ioctl 400c620e 200006c0 returned -22
[  609.586182][ T6239] usb 1-1: new high-speed USB device number 88 using dummy_hcd
[  609.635361][T17794] netlink: 'syz.4.5298': attribute type 1 has an invalid length.
[  609.767596][ T6239] usb 1-1: Using ep0 maxpacket: 16
[  609.794477][ T6239] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7
[  609.829750][ T6239] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[  609.862057][ T6239] usb 1-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  609.916897][ T6239] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  609.940513][ T6239] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  609.948595][ T6239] usb 1-1: Product: syz
[  610.000343][ T6239] usb 1-1: Manufacturer: syz
[  610.027285][ T6239] usb 1-1: SerialNumber: syz
[  610.269493][ T6239] usb 1-1: 2:1 : format type 0 is detected, processed as PCM
[  610.289502][ T6239] usb 1-1: 2:1 : sample bitwidth 254 in over sample bytes 2
[  610.321460][ T6239] usb 1-1: 2:1 : invalid UAC_FORMAT_TYPE desc
[  610.344527][ T6239] usb 1-1: 2:1 : invalid channels 0
[  610.418692][T17795] loop1: detected capacity change from 0 to 32768
[  610.419850][ T6239] usb 1-1: USB disconnect, device number 88
[  610.436179][T17811] x_tables: duplicate entry at hook 3
[  610.530864][T17795] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.5297 (17795)
[  610.587597][T17795] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  610.629935][T17795] BTRFS info (device loop1): using sha256 (sha256-ni) checksum algorithm
[  610.664691][T17795] BTRFS info (device loop1): using free-space-tree
[  610.894549][ T6302] udevd[6302]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  610.903488][T17800] loop4: detected capacity change from 0 to 32768
[  611.296839][ T6165] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  611.727034][T17852] loop2: detected capacity change from 0 to 4096
[  611.953684][T17852] ntfs3(loop2): Mark volume as dirty due to NTFS errors
[  612.085164][T17866] loop1: detected capacity change from 0 to 128
[  612.422794][T17877] loop4: detected capacity change from 0 to 256
[  612.626983][T17877] FAT-fs (loop4): Directory bread(block 64) failed
[  612.643537][T17877] FAT-fs (loop4): Directory bread(block 65) failed
[  612.652705][T17877] FAT-fs (loop4): Directory bread(block 66) failed
[  612.683058][T17886] loop2: detected capacity change from 0 to 64
[  612.703116][T17885] loop0: detected capacity change from 0 to 2048
[  612.732336][T17882] loop1: detected capacity change from 0 to 4096
[  612.739716][T17877] FAT-fs (loop4): Directory bread(block 67) failed
[  612.746353][T17877] FAT-fs (loop4): Directory bread(block 68) failed
[  612.760111][T17885] UDF-fs: error (device loop0): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  612.787673][T17877] FAT-fs (loop4): Directory bread(block 69) failed
[  612.794570][T17877] FAT-fs (loop4): Directory bread(block 70) failed
[  612.801140][T17877] FAT-fs (loop4): Directory bread(block 71) failed
[  612.812573][T17882] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512).
[  612.829635][T17877] FAT-fs (loop4): Directory bread(block 72) failed
[  612.837097][T17890] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  612.845027][T17890] IPv6: NLM_F_CREATE should be set when creating new route
[  612.852439][T17890] IPv6: NLM_F_CREATE should be set when creating new route
[  612.861948][T17877] FAT-fs (loop4): Directory bread(block 73) failed
[  612.875679][T17885] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  612.923097][   T29] audit: type=1800 audit(1735916797.996:48): pid=17877 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.5330" name="file1" dev="loop4" ino=1048655 res=0 errno=0
[  613.038434][T17892] netlink: 'syz.3.5339': attribute type 5 has an invalid length.
[  613.168465][T17896] loop5: detected capacity change from 0 to 764
[  613.185447][T17896] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  613.219228][T17882] ntfs3(loop1): Failed to initialize $Extend/$Reparse.
[  613.225574][   T29] audit: type=1326 audit(1735916798.286:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17897 comm="syz.3.5340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f094bd85d29 code=0x7ffc0000
[  613.290531][   T29] audit: type=1326 audit(1735916798.314:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17897 comm="syz.3.5340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f094bd85d29 code=0x7ffc0000
[  613.451151][   T29] audit: type=1326 audit(1735916798.324:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17897 comm="syz.3.5340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=229 compat=0 ip=0x7f094bd85d29 code=0x7ffc0000
[  613.524019][T17904] loop0: detected capacity change from 0 to 764
[  613.583825][   T29] audit: type=1326 audit(1735916798.324:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17897 comm="syz.3.5340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f094bd85d29 code=0x7ffc0000
[  613.617417][   T29] audit: type=1326 audit(1735916798.324:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17897 comm="syz.3.5340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f094bd85d29 code=0x7ffc0000
[  613.640239][   T29] audit: type=1326 audit(1735916798.623:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17907 comm="syz.2.5347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7832585d29 code=0x7ffc0000
[  613.640300][   T29] audit: type=1326 audit(1735916798.623:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17907 comm="syz.2.5347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7832585d29 code=0x7ffc0000
[  613.640348][   T29] audit: type=1326 audit(1735916798.623:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17907 comm="syz.2.5347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=243 compat=0 ip=0x7f7832585d29 code=0x7ffc0000
[  613.640393][   T29] audit: type=1326 audit(1735916798.623:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17907 comm="syz.2.5347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7832585d29 code=0x7ffc0000
[  613.798650][T17912] binder: 17911:17912 ioctl c0046209 200000000000000 returned -22
[  614.016778][T17921] 9p: Unknown access argument ^: -22
[  615.155455][T17962] loop2: detected capacity change from 0 to 2048
[  615.166809][T17963] loop5: detected capacity change from 0 to 512
[  615.230035][T17962] UDF-fs: error (device loop2): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  615.265607][T17963] EXT4-fs error (device loop5): ext4_xattr_ibody_find:2240: inode #15: comm syz.5.5372: corrupted in-inode xattr: invalid ea_ino
[  615.280400][T17930] loop1: detected capacity change from 0 to 32768
[  615.290793][T17930] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.5358 (17930)
[  615.318833][T17967] loop4: detected capacity change from 0 to 64
[  615.330745][T17930] BTRFS info (device loop1): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  615.338652][T17963] EXT4-fs error (device loop5): ext4_orphan_get:1394: comm syz.5.5372: couldn't read orphan inode 15 (err -117)
[  615.370036][T17930] BTRFS info (device loop1): using xxhash64 (xxhash64-generic) checksum algorithm
[  615.379332][T17930] BTRFS info (device loop1): disk space caching is enabled
[  615.392065][T17963] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  615.455516][T17930] BTRFS warning (device loop1): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  615.727099][ T6163] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  615.797988][T17986] netlink: 512 bytes leftover after parsing attributes in process `syz.3.5381'.
[  615.932395][T17998] AppArmor: change_hat: Invalid input, NULL hat and NULL magic
[  616.003642][T18003] netlink: 60 bytes leftover after parsing attributes in process `syz.5.5380'.
[  616.036683][T17930] BTRFS info (device loop1): rebuilding free space tree
[  616.189582][T17930] BTRFS info (device loop1): disabling free space tree
[  616.242714][T17930] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  616.271142][T17930] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  616.489237][T18021] (unnamed net_device) (uninitialized): option primary: mode dependency failed, not supported in mode balance-rr(0)
[  616.494618][T18019] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  616.689994][T18025] loop0: detected capacity change from 0 to 4096
[  616.699046][T18025] ntfs3(loop0): Different NTFS sector size (1024) and media sector size (512).
[  616.729432][T18027] loop2: detected capacity change from 0 to 16
[  616.784328][T18027] erofs (device loop2): mounted with root inode @ nid 36.
[  616.877595][ T6165] BTRFS info (device loop1): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  616.926559][T18032] loop3: detected capacity change from 0 to 128
[  617.023310][T18032] FAT-fs (loop3): error, fat_get_cluster: invalid start cluster (i_pos 550, start 00050006)
[  617.034052][T18032] FAT-fs (loop3): Filesystem has been set read-only
[  617.178000][T18038] loop5: detected capacity change from 0 to 4096
[  617.199723][T18038] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512).
[  617.236377][T18034] loop4: detected capacity change from 0 to 32768
[  617.283954][T18034] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.5398 (18034)
[  617.389470][T18025] ntfs3(loop0): Failed to load $Extend (-22).
[  617.399230][T18025] ntfs3(loop0): Failed to initialize $Extend.
[  617.564588][T18038] ntfs3(loop5): Mark volume as dirty due to NTFS errors
[  617.583271][    T9] usb 3-1: new high-speed USB device number 101 using dummy_hcd
[  617.607376][T18034] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  617.665723][T18034] BTRFS info (device loop4): using sha256 (sha256-ni) checksum algorithm
[  617.717083][T18034] BTRFS info (device loop4): using free-space-tree
[  617.734045][T18049] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  617.743785][    T9] usb 3-1: Using ep0 maxpacket: 32
[  617.787797][    T9] usb 3-1: unable to get BOS descriptor or descriptor too short
[  617.796899][    T9] usb 3-1: config 7 has an invalid interface number: 187 but max is 0
[  617.805139][    T9] usb 3-1: config 7 has no interface number 0
[  617.813813][    T9] usb 3-1: config 7 interface 187 has no altsetting 0
[  617.989727][    T9] usb 3-1: New USB device found, idVendor=18d1, idProduct=1eaf, bcdDevice=5a.bb
[  618.004689][    T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  618.015291][    T9] usb 3-1: Product: syz
[  618.019483][    T9] usb 3-1: Manufacturer: syz
[  618.024236][    T9] usb 3-1: SerialNumber: syz
[  618.152485][T18067] netlink: 24 bytes leftover after parsing attributes in process `syz.1.5397'.
[  618.360359][    T9] usb 3-1: Cannot retrieve CPort count: -71
[  618.370205][    T9] usb 3-1: Cannot retrieve CPort count: -71
[  618.385773][    T9] es2_ap_driver 3-1:7.187: probe with driver es2_ap_driver failed with error -71
[  618.408789][    T9] usb 3-1: USB disconnect, device number 101
[  618.676704][ T6169] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  618.717698][T18087] netlink: 20 bytes leftover after parsing attributes in process `syz.5.5416'.
[  618.986844][T18096] netlink: 'syz.3.5421': attribute type 1 has an invalid length.
[  619.792354][T18127] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5435'.
[  619.896405][T18133] do_dccp_setsockopt: sockopt(CHANGE_L/R) is deprecated: fix your app
[  620.215183][T18144] loop1: detected capacity change from 0 to 256
[  620.253145][T18150] netlink: 80 bytes leftover after parsing attributes in process `syz.0.5445'.
[  620.339779][T18144] FAT-fs (loop1): Directory bread(block 64) failed
[  620.361165][T18144] FAT-fs (loop1): Directory bread(block 65) failed
[  620.405558][T18144] FAT-fs (loop1): Directory bread(block 66) failed
[  620.459364][T18144] FAT-fs (loop1): Directory bread(block 67) failed
[  620.466037][T18144] FAT-fs (loop1): Directory bread(block 68) failed
[  620.500823][T18144] FAT-fs (loop1): Directory bread(block 69) failed
[  620.526833][T18144] FAT-fs (loop1): Directory bread(block 70) failed
[  620.568244][T18144] FAT-fs (loop1): Directory bread(block 71) failed
[  620.596877][T18144] FAT-fs (loop1): Directory bread(block 72) failed
[  620.643653][T18144] FAT-fs (loop1): Directory bread(block 73) failed
[  620.653395][T18155] xt_connbytes: Forcing CT accounting to be enabled
[  620.839254][T18171] loop0: detected capacity change from 0 to 16
[  620.872278][T18171] erofs (device loop0): mounted with root inode @ nid 36.
[  620.958952][T18171] erofs (device loop0): invalid tail-packing pclustersize 0
[  621.032782][T18171] erofs (device loop0): invalid tail-packing pclustersize 0
[  621.067364][T18171] erofs (device loop0): read error -117 @ 72 of nid 36
[  621.300299][T18188] loop2: detected capacity change from 0 to 1024
[  621.314443][T18187] x_tables: unsorted entry at hook 2
[  621.386828][T18188] hfsplus: xattr searching failed
[  621.465319][T18195] warning: `syz.1.5467' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  621.667123][ T6239] usb 4-1: new high-speed USB device number 98 using dummy_hcd
[  621.695449][T18202] loop2: detected capacity change from 0 to 4096
[  621.713054][T18202] ntfs3(loop2): Different NTFS sector size (2048) and media sector size (512).
[  621.845847][T18202] ntfs3(loop2): Failed to initialize $Extend/$ObjId.
[  621.858533][ T6239] usb 4-1: Using ep0 maxpacket: 16
[  621.946768][ T6239] usb 4-1: New USB device found, idVendor=06b9, idProduct=4061, bcdDevice= 1.88
[  621.958866][ T6239] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  621.983403][ T6239] usb 4-1: Product: syz
[  621.987787][ T6239] usb 4-1: Manufacturer: syz
[  621.992454][ T6239] usb 4-1: SerialNumber: syz
[  622.010722][ T6239] usb 4-1: config 0 descriptor??
[  622.253685][ T6239] speedtch 4-1:0.0: speedtch_bind: data interface not found!
[  622.293323][ T6239] speedtch 4-1:0.0: usbatm_usb_probe: bind failed: -19!
[  622.491006][T18232] loop2: detected capacity change from 0 to 256
[  622.498032][T18232] exfat: Deprecated parameter 'utf8'
[  622.553268][    T9] usb 4-1: USB disconnect, device number 98
[  622.566558][T18232] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d)
[  622.900774][ T5135] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci1/hci1:201'
[  622.911371][ T5135] CPU: 0 UID: 0 PID: 5135 Comm: kworker/u9:1 Not tainted 6.13.0-rc5-syzkaller-00012-g0bc21e701a6f #0
[  622.922255][ T5135] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  622.932336][ T5135] Workqueue: hci1 hci_rx_work
[  622.937064][ T5135] Call Trace:
[  622.940363][ T5135]  <TASK>
[  622.943314][ T5135]  dump_stack_lvl+0x241/0x360
[  622.948035][ T5135]  ? __pfx_dump_stack_lvl+0x10/0x10
[  622.953270][ T5135]  ? __pfx__printk+0x10/0x10
[  622.957895][ T5135]  ? srso_alias_return_thunk+0x5/0xfbef5
[  622.963570][ T5135]  ? __kmalloc_cache_noprof+0x243/0x390
[  622.969162][ T5135]  ? sysfs_create_dir_ns+0x28a/0x3a0
[  622.974487][ T5135]  sysfs_create_dir_ns+0x2ce/0x3a0
[  622.979635][ T5135]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  622.985298][ T5135]  ? srso_alias_return_thunk+0x5/0xfbef5
[  622.990971][ T5135]  kobject_add_internal+0x435/0x8d0
[  622.996208][ T5135]  kobject_add+0x152/0x220
[  623.000666][ T5135]  ? srso_alias_return_thunk+0x5/0xfbef5
[  623.006324][ T5135]  ? do_raw_spin_unlock+0x13c/0x8b0
[  623.011553][ T5135]  ? device_add+0x3e7/0xbf0
[  623.016114][ T5135]  ? __pfx_kobject_add+0x10/0x10
[  623.021095][ T5135]  ? srso_alias_return_thunk+0x5/0xfbef5
[  623.026766][ T5135]  ? _raw_spin_unlock+0x28/0x50
[  623.031662][ T5135]  ? srso_alias_return_thunk+0x5/0xfbef5
[  623.037333][ T5135]  ? srso_alias_return_thunk+0x5/0xfbef5
[  623.042993][ T5135]  ? get_device_parent+0x165/0x410
[  623.048137][ T5135]  device_add+0x4e5/0xbf0
[  623.052503][ T5135]  hci_conn_add_sysfs+0xe8/0x200
[  623.057487][ T5135]  le_conn_complete_evt+0xc9f/0x12e0
[  623.062828][ T5135]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  623.068598][ T5135]  ? srso_alias_return_thunk+0x5/0xfbef5
[  623.074264][ T5135]  ? __mutex_unlock_slowpath+0x21e/0x790
[  623.079949][ T5135]  ? __pfx___mutex_lock+0x10/0x10
[  623.085014][ T5135]  ? srso_alias_return_thunk+0x5/0xfbef5
[  623.090684][ T5135]  ? skb_pull_data+0x112/0x230
[  623.095494][ T5135]  hci_le_conn_complete_evt+0x18c/0x420
[  623.101079][ T5135]  hci_event_packet+0xa57/0x1540
[  623.106060][ T5135]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  623.111381][ T5135]  ? __pfx_hci_event_packet+0x10/0x10
[  623.116810][ T5135]  ? do_raw_spin_unlock+0x13c/0x8b0
[  623.122055][ T5135]  ? hci_send_to_monitor+0xd8/0x7f0
[  623.127288][ T5135]  ? srso_alias_return_thunk+0x5/0xfbef5
[  623.132959][ T5135]  ? kcov_remote_start+0x97/0x7d0
[  623.138022][ T5135]  hci_rx_work+0x3f3/0xdb0
[  623.142497][ T5135]  ? process_scheduled_works+0x976/0x1840
[  623.148249][ T5135]  process_scheduled_works+0xa68/0x1840
[  623.153859][ T5135]  ? __pfx_process_scheduled_works+0x10/0x10
[  623.159879][ T5135]  ? assign_work+0x364/0x3d0
[  623.164507][ T5135]  worker_thread+0x870/0xd30
[  623.169133][ T5135]  ? srso_alias_return_thunk+0x5/0xfbef5
[  623.174810][ T5135]  ? __kthread_parkme+0x169/0x1d0
[  623.179879][ T5135]  ? __pfx_worker_thread+0x10/0x10
[  623.185023][ T5135]  kthread+0x2f2/0x390
[  623.189397][ T5135]  ? __pfx_worker_thread+0x10/0x10
[  623.194545][ T5135]  ? __pfx_kthread+0x10/0x10
[  623.199172][ T5135]  ret_from_fork+0x4d/0x80
[  623.203619][ T5135]  ? __pfx_kthread+0x10/0x10
[  623.208249][ T5135]  ret_from_fork_asm+0x1a/0x30
[  623.213057][ T5135]  </TASK>
[  623.216120][    C0] vkms_vblank_simulate: vblank timer overrun
[  623.226303][ T5135] kobject: kobject_add_internal failed for hci1:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  623.240962][ T5135] Bluetooth: hci1: failed to register connection device
[  623.414064][T18263] loop1: detected capacity change from 0 to 2048
[  623.544417][T18263] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  623.754229][T18277] netlink: 'syz.0.5505': attribute type 4 has an invalid length.
[  623.914566][T18283] netlink: 'syz.2.5512': attribute type 3 has an invalid length.
[  623.922477][T18283] netlink: 132 bytes leftover after parsing attributes in process `syz.2.5512'.
[  624.685801][T18319] loop5: detected capacity change from 0 to 256
[  624.827516][T18327] cgroup: subsys name conflicts with all
[  624.956883][T18323] loop1: detected capacity change from 0 to 4096
[  625.050601][T18338] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  625.053396][T18333] loop2: detected capacity change from 0 to 16
[  625.076137][T18333] MTD: Attempt to mount non-MTD device "/dev/loop2"
[  625.077467][T18319] FAT-fs (loop5): Directory bread(block 64) failed
[  625.109917][T18319] FAT-fs (loop5): Directory bread(block 65) failed
[  625.117203][T18319] FAT-fs (loop5): Directory bread(block 66) failed
[  625.124398][T18319] FAT-fs (loop5): Directory bread(block 67) failed
[  625.130849][ T6113] usb 1-1: new high-speed USB device number 89 using dummy_hcd
[  625.131172][T18319] FAT-fs (loop5): Directory bread(block 68) failed
[  625.145689][T18319] FAT-fs (loop5): Directory bread(block 69) failed
[  625.153356][T18319] FAT-fs (loop5): Directory bread(block 70) failed
[  625.160436][T18319] FAT-fs (loop5): Directory bread(block 71) failed
[  625.167477][T18319] FAT-fs (loop5): Directory bread(block 72) failed
[  625.174600][T18319] FAT-fs (loop5): Directory bread(block 73) failed
[  625.191173][T18323] NILFS error (device loop1): nilfs_bmap_lookup_contig: broken bmap (inode number=12)
[  625.248319][T18323] Remounting filesystem read-only
[  625.367202][ T6113] usb 1-1: too many configurations: 30, using maximum allowed: 8
[  625.393069][ T6113] usb 1-1: config index 0 descriptor too short (expected 124, got 72)
[  625.404321][ T6113] usb 1-1: config index 1 descriptor too short (expected 124, got 72)
[  625.421127][ T6113] usb 1-1: config index 2 descriptor too short (expected 124, got 72)
[  625.452032][ T6113] usb 1-1: config index 3 descriptor too short (expected 124, got 72)
[  625.484095][ T6113] usb 1-1: config index 4 descriptor too short (expected 124, got 72)
[  625.504691][ T6113] usb 1-1: config index 5 descriptor too short (expected 124, got 72)
[  625.532929][ T6113] usb 1-1: config index 6 descriptor too short (expected 124, got 72)
[  625.597905][ T6113] usb 1-1: config index 7 descriptor too short (expected 124, got 72)
[  625.624571][ T6113] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  625.648241][ T6113] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  625.678575][ T6113] usb 1-1: Product: syz
[  625.682771][ T6113] usb 1-1: Manufacturer: syz
[  625.716117][ T6113] usb 1-1: SerialNumber: syz
[  625.755882][ T6113] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  625.809139][ T6223] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  626.053413][T18357] loop3: detected capacity change from 0 to 256
[  627.074806][T18343] loop4: detected capacity change from 0 to 40427
[  627.104499][T18343] F2FS-fs (loop4): invalid crc value
[  627.212295][T18343] F2FS-fs (loop4): Found nat_bits in checkpoint
[  627.685023][T18343] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  627.819640][T18387] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  627.957029][T18343] F2FS-fs (loop4): Corrupted max_depth of 3: 1025
[  628.045899][T18343] F2FS-fs (loop4): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  628.767739][T18399] loop0: detected capacity change from 0 to 256
[  629.071542][T18407] netlink: 'syz.2.5571': attribute type 32 has an invalid length.
[  629.117304][T18403] loop3: detected capacity change from 0 to 2048
[  629.151115][T18407] netlink: 44 bytes leftover after parsing attributes in process `syz.2.5571'.
[  629.246453][T18403] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  629.677313][T18411] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore
[  629.773741][T18411] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  630.856248][T18421] x_tables: eb_tables: nflog.0 target: invalid size 80 (kernel) != (user) 0
[  631.190178][ T2335] pvrusb2: request_firmware fatal error with code=-110
[  631.203375][ T2335] pvrusb2: Failure uploading firmware1
[  631.208873][ T2335] pvrusb2: Device initialization was not successful.
[  631.324352][ T2335] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it.
[  631.402924][T18437] loop5: detected capacity change from 0 to 8
[  631.433534][ T2335] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover.
[  631.536729][T18440] loop0: detected capacity change from 0 to 64
[  631.543421][ T2335] usb 6-1: Direct firmware load for v4l-pvrusb2-29xxx-01.fw failed with error -2
[  631.634142][ T2335] usb 6-1: Falling back to sysfs fallback for: v4l-pvrusb2-29xxx-01.fw
[  631.903440][   T29] kauditd_printk_skb: 1 callbacks suppressed
[  631.903465][   T29] audit: type=1800 audit(1735916815.768:59): pid=18437 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.5584" name="file1" dev="loop5" ino=5 res=0 errno=0
[  632.504035][T18452] xt_ecn: cannot match TCP bits for non-tcp packets
[  632.837194][T18458] netlink: 12 bytes leftover after parsing attributes in process `syz.5.5593'.
[  632.938143][T18458] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5593'.
[  633.085549][    C1] sched: DL replenish lagged too much
[  633.718031][T18423] loop1: detected capacity change from 0 to 32768
[  633.878739][ T6223] ath9k_htc 1-1:1.0: ath9k_htc: Target is unresponsive
[  633.885776][ T6223] ath9k_htc: Failed to initialize the device
[  634.083400][T18478] loop2: detected capacity change from 0 to 256
[  634.336700][T18478] FAT-fs (loop2): Directory bread(block 64) failed
[  634.371240][T18478] FAT-fs (loop2): Directory bread(block 65) failed
[  634.377898][T18478] FAT-fs (loop2): Directory bread(block 66) failed
[  634.493874][T18478] FAT-fs (loop2): Directory bread(block 67) failed
[  634.548485][T18478] FAT-fs (loop2): Directory bread(block 68) failed
[  634.617768][T18478] FAT-fs (loop2): Directory bread(block 69) failed
[  634.692313][T18478] FAT-fs (loop2): Directory bread(block 70) failed
[  634.774425][T18478] FAT-fs (loop2): Directory bread(block 71) failed
[  634.830352][T18478] FAT-fs (loop2): Directory bread(block 72) failed
[  634.869532][T18478] FAT-fs (loop2): Directory bread(block 73) failed
[  635.186922][   T29] audit: type=1800 audit(1735916818.836:60): pid=18478 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.5603" name="file1" dev="loop2" ino=1048661 res=0 errno=0
[  635.927298][T18504] netlink: 68 bytes leftover after parsing attributes in process `syz.1.5616'.
[  635.992606][T18504] netlink: 56 bytes leftover after parsing attributes in process `syz.1.5616'.
[  636.661055][ T1290] ieee802154 phy0 wpan0: encryption failed: -22
[  636.670996][ T1290] ieee802154 phy1 wpan1: encryption failed: -22
[  636.887239][T18518] loop5: detected capacity change from 0 to 512
[  636.910941][T18518] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  636.953047][T18518] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842c01c, mo2=0002]
[  636.984163][T18518] EXT4-fs (loop5): orphan cleanup on readonly fs
[  637.011049][T18518] EXT4-fs warning (device loop5): ext4_block_to_path:107: block 3279949761 > max in inode 13
[  637.029194][T18518] EXT4-fs warning (device loop5): ext4_block_to_path:107: block 3279949762 > max in inode 13
[  637.048360][T18518] EXT4-fs (loop5): 1 truncate cleaned up
[  637.068815][T18518] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  640.217408][ T5197] udevd[5197]: worker [6154] /devices/platform/dummy_hcd.5/usb6/6-1 is taking a long time
[  650.529963][ T5135] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  650.546499][ T5135] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  650.555092][ T5135] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  650.563374][ T5135] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  650.573585][ T5135] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[  650.580993][ T5135] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  651.218148][T16115] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  651.230207][T16115] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  651.239147][T16115] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  651.247052][T16115] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  651.277701][T16115] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[  651.291975][T16115] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  652.265495][ T5135] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[  652.275919][ T5135] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[  652.285555][ T5135] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[  652.293593][ T5135] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[  652.330190][ T5135] Bluetooth: hci8: unexpected cc 0x0c25 length: 249 > 3
[  652.337509][ T5135] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[  652.821152][ T5135] Bluetooth: hci6: command tx timeout
[  653.082370][T16115] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1
[  653.091519][T16115] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9
[  653.099677][T16115] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9
[  653.107587][T16115] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4
[  653.115522][T16115] Bluetooth: hci9: unexpected cc 0x0c25 length: 249 > 3
[  653.131534][T16115] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2
[  653.505612][T16115] Bluetooth: hci7: command tx timeout
[  653.748925][ T5135] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1
[  653.772825][ T5135] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9
[  653.781872][ T5135] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9
[  653.790614][ T5135] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4
[  653.802793][ T5135] Bluetooth: hci10: unexpected cc 0x0c25 length: 249 > 3
[  653.810375][ T5135] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2
[  654.054313][T16115] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1
[  654.068718][T16115] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9
[  654.092132][T16115] Bluetooth: hci11: unexpected cc 0x1001 length: 249 > 9
[  654.100349][T16115] Bluetooth: hci11: unexpected cc 0x0c23 length: 249 > 4
[  654.108775][T16115] Bluetooth: hci11: unexpected cc 0x0c25 length: 249 > 3
[  654.116243][T16115] Bluetooth: hci11: unexpected cc 0x0c38 length: 249 > 2
[  654.531773][T16115] Bluetooth: hci8: command tx timeout
[  655.045089][T16115] Bluetooth: hci6: command tx timeout
[  655.387296][T16115] Bluetooth: hci9: command tx timeout
[  655.740224][T16115] Bluetooth: hci7: command tx timeout
[  655.996517][T16115] Bluetooth: hci10: command tx timeout
[  656.328760][T16115] Bluetooth: hci11: command tx timeout
[  656.766326][T16115] Bluetooth: hci8: command tx timeout
[  657.279505][T16115] Bluetooth: hci6: command tx timeout
[  657.611055][T16115] Bluetooth: hci9: command tx timeout
[  657.963651][T16115] Bluetooth: hci7: command tx timeout
[  658.220319][T16115] Bluetooth: hci10: command tx timeout
[  658.564260][T16115] Bluetooth: hci11: command tx timeout
[  658.989906][T16115] Bluetooth: hci8: command tx timeout
[  659.503178][T16115] Bluetooth: hci6: command tx timeout
[  659.845510][T16115] Bluetooth: hci9: command tx timeout
[  660.187493][T16115] Bluetooth: hci7: command tx timeout
[  660.444146][T16115] Bluetooth: hci10: command tx timeout
[  660.786245][T16115] Bluetooth: hci11: command tx timeout
[  661.213761][T16115] Bluetooth: hci8: command tx timeout
[  662.069524][T16115] Bluetooth: hci9: command tx timeout
[  662.670211][T16115] Bluetooth: hci10: command tx timeout
[  663.009868][T16115] Bluetooth: hci11: command tx timeout
[  696.933605][ T2335] pvrusb2: request_firmware fatal error with code=-110
[  696.940538][ T2335] pvrusb2: Failure uploading firmware1
[  697.008517][ T2335] pvrusb2: Device initialization was not successful.
[  697.015269][ T2335] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it.
[  697.080787][ T2335] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover.
[  702.364889][ T1290] ieee802154 phy0 wpan0: encryption failed: -22
[  702.374970][ T1290] ieee802154 phy1 wpan1: encryption failed: -22
[  714.720374][ T5135] Bluetooth: hci12: unexpected cc 0x0c03 length: 249 > 1
[  714.731673][ T5135] Bluetooth: hci12: unexpected cc 0x1003 length: 249 > 9
[  714.745937][ T5135] Bluetooth: hci12: unexpected cc 0x1001 length: 249 > 9
[  714.754851][ T5135] Bluetooth: hci12: unexpected cc 0x0c23 length: 249 > 4
[  714.771881][ T5135] Bluetooth: hci12: unexpected cc 0x0c25 length: 249 > 3
[  714.779370][ T5135] Bluetooth: hci12: unexpected cc 0x0c38 length: 249 > 2
[  715.754909][ T5135] Bluetooth: hci13: unexpected cc 0x0c03 length: 249 > 1
[  715.772523][ T5135] Bluetooth: hci13: unexpected cc 0x1003 length: 249 > 9
[  715.793616][ T5135] Bluetooth: hci13: unexpected cc 0x1001 length: 249 > 9
[  715.805068][ T5135] Bluetooth: hci13: unexpected cc 0x0c23 length: 249 > 4
[  715.817208][ T5135] Bluetooth: hci13: unexpected cc 0x0c25 length: 249 > 3
[  715.824846][ T5135] Bluetooth: hci13: unexpected cc 0x0c38 length: 249 > 2
[  716.728630][ T5135] Bluetooth: hci14: unexpected cc 0x0c03 length: 249 > 1
[  716.750423][ T5135] Bluetooth: hci14: unexpected cc 0x1003 length: 249 > 9
[  716.759266][ T5135] Bluetooth: hci14: unexpected cc 0x1001 length: 249 > 9
[  716.772475][ T5135] Bluetooth: hci14: unexpected cc 0x0c23 length: 249 > 4
[  716.793196][ T5135] Bluetooth: hci14: unexpected cc 0x0c25 length: 249 > 3
[  716.800936][ T5135] Bluetooth: hci14: unexpected cc 0x0c38 length: 249 > 2
[  716.988730][ T5135] Bluetooth: hci12: command tx timeout
[  717.329396][T16115] Bluetooth: hci15: unexpected cc 0x0c03 length: 249 > 1
[  717.345902][T16115] Bluetooth: hci15: unexpected cc 0x1003 length: 249 > 9
[  717.355408][T16115] Bluetooth: hci15: unexpected cc 0x1001 length: 249 > 9
[  717.365299][T16115] Bluetooth: hci15: unexpected cc 0x0c23 length: 249 > 4
[  717.373003][T16115] Bluetooth: hci15: unexpected cc 0x0c25 length: 249 > 3
[  717.381002][T16115] Bluetooth: hci15: unexpected cc 0x0c38 length: 249 > 2
[  717.912851][ T5135] Bluetooth: hci16: unexpected cc 0x0c03 length: 249 > 1
[  717.934579][ T5135] Bluetooth: hci16: unexpected cc 0x1003 length: 249 > 9
[  717.944896][ T5135] Bluetooth: hci16: unexpected cc 0x1001 length: 249 > 9
[  717.961709][ T5135] Bluetooth: hci16: unexpected cc 0x0c23 length: 249 > 4
[  717.980003][ T5135] Bluetooth: hci16: unexpected cc 0x0c25 length: 249 > 3
[  717.987516][ T5135] Bluetooth: hci16: unexpected cc 0x0c38 length: 249 > 2
[  718.008937][T16115] Bluetooth: hci13: command tx timeout
[  718.415828][ T5135] Bluetooth: hci17: unexpected cc 0x0c03 length: 249 > 1
[  718.443041][ T5135] Bluetooth: hci17: unexpected cc 0x1003 length: 249 > 9
[  718.453629][ T5135] Bluetooth: hci17: unexpected cc 0x1001 length: 249 > 9
[  718.461914][ T5135] Bluetooth: hci17: unexpected cc 0x0c23 length: 249 > 4
[  718.470375][ T5135] Bluetooth: hci17: unexpected cc 0x0c25 length: 249 > 3
[  718.478116][ T5135] Bluetooth: hci17: unexpected cc 0x0c38 length: 249 > 2
[  719.031786][ T5135] Bluetooth: hci14: command tx timeout
[  719.202773][ T5135] Bluetooth: hci12: command tx timeout
[  719.630475][ T5135] Bluetooth: hci15: command tx timeout
[  720.218747][ T5135] Bluetooth: hci16: command tx timeout
[  720.226743][ T5135] Bluetooth: hci13: command tx timeout
[  720.657210][ T5135] Bluetooth: hci17: command tx timeout
[  721.258016][ T5135] Bluetooth: hci14: command tx timeout
[  721.434923][ T5135] Bluetooth: hci12: command tx timeout
[  721.854413][ T5135] Bluetooth: hci15: command tx timeout
[  722.442745][T16115] Bluetooth: hci16: command tx timeout
[  722.452434][ T5135] Bluetooth: hci13: command tx timeout
[  722.881084][ T5135] Bluetooth: hci17: command tx timeout
[  723.479482][ T5135] Bluetooth: hci14: command tx timeout
[  723.653518][ T5135] Bluetooth: hci12: command tx timeout
[  724.085329][ T5135] Bluetooth: hci15: command tx timeout
[  724.666353][T16115] Bluetooth: hci16: command tx timeout
[  724.672375][ T5135] Bluetooth: hci13: command tx timeout
[  725.104719][ T5135] Bluetooth: hci17: command tx timeout
[  725.703294][ T5135] Bluetooth: hci14: command tx timeout
[  726.307458][ T5135] Bluetooth: hci15: command tx timeout
[  726.900645][ T5135] Bluetooth: hci16: command tx timeout
[  727.328089][ T5135] Bluetooth: hci17: command tx timeout
[  758.565295][ T5197] udevd[5197]: worker [6154] /devices/platform/dummy_hcd.5/usb6/6-1 timeout; kill it
[  758.627053][ T5197] udevd[5197]: seq 28492 '/devices/platform/dummy_hcd.5/usb6/6-1' killed
[  758.920279][ T5197] udevd[5197]: worker [6154] terminated by signal 9 (Killed)
[  758.953343][ T5197] udevd[5197]: worker [6154] failed while handling '/devices/platform/dummy_hcd.5/usb6/6-1'
[  768.049846][ T1290] ieee802154 phy0 wpan0: encryption failed: -22
[  768.056314][ T1290] ieee802154 phy1 wpan1: encryption failed: -22
[  780.759253][ T6174] Bluetooth: hci18: unexpected cc 0x0c03 length: 249 > 1
[  780.783597][ T6174] Bluetooth: hci18: unexpected cc 0x1003 length: 249 > 9
[  780.803421][ T6174] Bluetooth: hci18: unexpected cc 0x1001 length: 249 > 9
[  780.829070][ T6174] Bluetooth: hci18: unexpected cc 0x0c23 length: 249 > 4
[  780.836754][ T6174] Bluetooth: hci18: unexpected cc 0x0c25 length: 249 > 3
[  780.845089][ T6174] Bluetooth: hci18: unexpected cc 0x0c38 length: 249 > 2
[  780.898523][T16115] Bluetooth: hci19: unexpected cc 0x0c03 length: 249 > 1
[  780.912483][T16115] Bluetooth: hci19: unexpected cc 0x1003 length: 249 > 9
[  780.922082][T16115] Bluetooth: hci19: unexpected cc 0x1001 length: 249 > 9
[  780.938985][T16115] Bluetooth: hci19: unexpected cc 0x0c23 length: 249 > 4
[  780.966699][T16115] Bluetooth: hci19: unexpected cc 0x0c25 length: 249 > 3
[  780.976601][T16115] Bluetooth: hci19: unexpected cc 0x0c38 length: 249 > 2
[  781.214440][T16115] Bluetooth: hci6: command 0x0406 tx timeout
[  781.678722][ T6174] Bluetooth: hci20: unexpected cc 0x0c03 length: 249 > 1
[  781.692220][ T6174] Bluetooth: hci20: unexpected cc 0x1003 length: 249 > 9
[  781.700814][ T6174] Bluetooth: hci20: unexpected cc 0x1001 length: 249 > 9
[  781.709177][ T6174] Bluetooth: hci20: unexpected cc 0x0c23 length: 249 > 4
[  781.722448][ T6174] Bluetooth: hci20: unexpected cc 0x0c25 length: 249 > 3
[  781.730076][ T6174] Bluetooth: hci20: unexpected cc 0x0c38 length: 249 > 2
[  782.163035][T16115] Bluetooth: hci21: unexpected cc 0x0c03 length: 249 > 1
[  782.184392][T16115] Bluetooth: hci21: unexpected cc 0x1003 length: 249 > 9
[  782.193806][T16115] Bluetooth: hci21: unexpected cc 0x1001 length: 249 > 9
[  782.202264][T16115] Bluetooth: hci21: unexpected cc 0x0c23 length: 249 > 4
[  782.217655][T16115] Bluetooth: hci21: unexpected cc 0x0c25 length: 249 > 3
[  782.226322][T16115] Bluetooth: hci21: unexpected cc 0x0c38 length: 249 > 2
[  782.715821][ T6174] Bluetooth: hci22: unexpected cc 0x0c03 length: 249 > 1
[  782.740729][ T6174] Bluetooth: hci22: unexpected cc 0x1003 length: 249 > 9
[  782.750655][ T6174] Bluetooth: hci22: unexpected cc 0x1001 length: 249 > 9
[  782.775892][ T6174] Bluetooth: hci22: unexpected cc 0x0c23 length: 249 > 4
[  782.794757][ T6174] Bluetooth: hci22: unexpected cc 0x0c25 length: 249 > 3
[  782.802242][ T6174] Bluetooth: hci22: unexpected cc 0x0c38 length: 249 > 2
[  783.086352][T16115] Bluetooth: hci18: command tx timeout
[  783.109744][T16115] Bluetooth: hci23: unexpected cc 0x0c03 length: 249 > 1
[  783.126232][T16115] Bluetooth: hci23: unexpected cc 0x1003 length: 249 > 9
[  783.135586][T16115] Bluetooth: hci23: unexpected cc 0x1001 length: 249 > 9
[  783.157528][T16115] Bluetooth: hci23: unexpected cc 0x0c23 length: 249 > 4
[  783.171841][T16115] Bluetooth: hci23: unexpected cc 0x0c25 length: 249 > 3
[  783.179609][T16115] Bluetooth: hci19: command tx timeout
[  783.189576][T18580] Bluetooth: hci23: unexpected cc 0x0c38 length: 249 > 2
[  783.948829][T18580] Bluetooth: hci20: command tx timeout
[  784.508127][T18565] Bluetooth: hci21: command tx timeout
[  784.975087][T18583] Bluetooth: hci22: command tx timeout
[  785.319504][T18583] Bluetooth: hci18: command tx timeout
[  785.403307][T18583] Bluetooth: hci23: command tx timeout
[  785.410603][T18583] Bluetooth: hci19: command tx timeout
[  786.179190][T18583] Bluetooth: hci20: command tx timeout
[  786.714939][T18583] Bluetooth: hci9: command 0x0406 tx timeout
[  786.721322][T18584] Bluetooth: hci10: command 0x0406 tx timeout
[  786.727533][T18584] Bluetooth: hci21: command tx timeout
[  786.771649][T18585] Bluetooth: hci7: command 0x0406 tx timeout
[  786.777725][T18585] Bluetooth: hci8: command 0x0406 tx timeout
[  786.784486][T18582] Bluetooth: hci11: command 0x0406 tx timeout
[  787.198954][T18585] Bluetooth: hci22: command tx timeout
[  787.530465][T18585] Bluetooth: hci18: command tx timeout
[  787.628632][T18584] Bluetooth: hci23: command tx timeout
[  787.638450][T18585] Bluetooth: hci19: command tx timeout
[  788.396926][T18585] Bluetooth: hci20: command tx timeout
[  788.909589][T18585] Bluetooth: hci21: command tx timeout
[  789.422712][T18585] Bluetooth: hci22: command tx timeout
[  789.768557][T18585] Bluetooth: hci18: command tx timeout
[  789.853685][T18584] Bluetooth: hci23: command tx timeout
[  789.863500][T18585] Bluetooth: hci19: command tx timeout
[  790.624567][T18585] Bluetooth: hci20: command tx timeout
[  791.144810][T18584] Bluetooth: hci21: command tx timeout
[  791.304774][   T30] INFO: task kworker/u8:1:12 blocked for more than 143 seconds.
[  791.312516][   T30]       Not tainted 6.13.0-rc5-syzkaller-00012-g0bc21e701a6f #0
[  791.339314][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  791.363884][   T30] task:kworker/u8:1    state:D stack:20856 pid:12    tgid:12    ppid:2      flags:0x00004000
[  791.395758][   T30] Workqueue: events_unbound linkwatch_event
[  791.413045][   T30] Call Trace:
[  791.416432][   T30]  <TASK>
[  791.419409][   T30]  __schedule+0x1850/0x4c30
[  791.442924][   T30]  ? __pfx___schedule+0x10/0x10
[  791.561526][   T30]  ? __pfx_lock_release+0x10/0x10
[  791.566800][   T30]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  791.646614][T18584] Bluetooth: hci22: command tx timeout
[  791.668390][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  791.674130][   T30]  ? kthread_data+0x52/0xd0
[  791.705836][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  791.719226][   T30]  ? wq_worker_sleeping+0x66/0x240
[  791.730282][   T30]  ? schedule+0x90/0x320
[  791.740757][   T30]  schedule+0x14b/0x320
[  791.754059][   T30]  synchronize_rcu_expedited+0x70a/0x830
[  791.759793][   T30]  ? __pfx_synchronize_rcu_expedited+0x10/0x10
[  791.776161][   T30]  ? __pfx_autoremove_wake_function+0x10/0x10
[  791.782347][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  791.795471][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  791.804278][   T30]  ? __local_bh_enable_ip+0x179/0x200
[  791.817671][   T30]  ? dev_deactivate_many+0x250/0xb10
[  791.823046][   T30]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  791.835077][   T30]  ? do_raw_spin_unlock+0x13c/0x8b0
[  791.843253][   T30]  dev_deactivate_many+0x4a7/0xb10
[  791.848458][   T30]  ? dev_deactivate_many+0x250/0xb10
[  791.859994][   T30]  dev_deactivate+0x184/0x280
[  791.866392][   T30]  ? ret_from_fork+0x4d/0x80
[  791.880634][   T30]  ? __pfx_dev_deactivate+0x10/0x10
[  791.897424][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  791.905922][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  791.911651][   T30]  ? rfc2863_policy+0x1db/0x3b0
[  791.924704][   T30]  linkwatch_do_dev+0x10a/0x170
[  791.929661][   T30]  __linkwatch_run_queue+0x44f/0x6c0
[  791.937670][   T30]  ? __pfx___linkwatch_run_queue+0x10/0x10
[  791.943579][   T30]  ? process_scheduled_works+0x976/0x1840
[  791.955671][   T30]  linkwatch_event+0x4c/0x60
[  791.964511][   T30]  process_scheduled_works+0xa68/0x1840
[  791.977720][   T30]  ? __pfx_process_scheduled_works+0x10/0x10
[  791.983849][   T30]  ? assign_work+0x364/0x3d0
[  791.990262][   T30]  worker_thread+0x870/0xd30
[  791.995049][   T30]  ? __kthread_parkme+0x169/0x1d0
[  792.006523][   T30]  ? __pfx_worker_thread+0x10/0x10
[  792.013425][   T30]  kthread+0x2f2/0x390
[  792.017614][   T30]  ? __pfx_worker_thread+0x10/0x10
[  792.037250][   T30]  ? __pfx_kthread+0x10/0x10
[  792.042613][   T30]  ret_from_fork+0x4d/0x80
[  792.047136][   T30]  ? __pfx_kthread+0x10/0x10
[  792.051842][   T30]  ret_from_fork_asm+0x1a/0x30
[  792.072698][   T30]  </TASK>
[  792.080741][T18584] Bluetooth: hci23: command tx timeout
[  792.092344][   T30] INFO: task jbd2/sda1-8:5159 blocked for more than 144 seconds.
[  792.106394][   T30]       Not tainted 6.13.0-rc5-syzkaller-00012-g0bc21e701a6f #0
[  792.114197][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  792.130353][   T30] task:jbd2/sda1-8     state:D stack:24176 pid:5159  tgid:5159  ppid:2      flags:0x00004000
[  792.146285][   T30] Call Trace:
[  792.155381][   T30]  <TASK>
[  792.158378][   T30]  __schedule+0x1850/0x4c30
[  792.171913][   T30]  ? __pfx___schedule+0x10/0x10
[  792.177044][   T30]  ? __pfx_lock_release+0x10/0x10
[  792.201163][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  792.209531][   T30]  ? schedule+0x90/0x320
[  792.214214][   T30]  schedule+0x14b/0x320
[  792.218435][   T30]  io_schedule+0x8d/0x110
[  792.222821][   T30]  bit_wait_io+0x12/0xd0
[  792.234719][   T30]  __wait_on_bit+0xb2/0x2f0
[  792.239313][   T30]  ? __pfx_bit_wait_io+0x10/0x10
[  792.244344][   T30]  out_of_line_wait_on_bit+0x1d5/0x260
[  792.262018][   T30]  ? __pfx_bit_wait_io+0x10/0x10
[  792.267492][   T30]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[  792.273568][   T30]  ? __pfx_wake_bit_function+0x10/0x10
[  792.286753][   T30]  jbd2_journal_commit_transaction+0x3cfa/0x6560
[  792.293587][   T30]  ? __pfx_jbd2_journal_commit_transaction+0x10/0x10
[  792.309497][   T30]  ? lockdep_hardirqs_on+0x99/0x150
[  792.314804][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  792.327676][   T30]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  792.344076][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  792.349975][   T30]  ? __try_to_del_timer_sync+0x2ad/0x340
[  792.363722][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  792.369631][   T30]  ? __pfx___timer_delete_sync+0x10/0x10
[  792.382782][   T30]  ? __pfx_do_raw_write_lock+0x10/0x10
[  792.388929][   T30]  ? prepare_to_wait+0x186/0x210
[  792.393960][   T30]  ? schedule+0x90/0x320
[  792.405839][   T30]  kjournald2+0x41c/0x7b0
[  792.410252][   T30]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  792.427186][   T30]  ? __pfx_kjournald2+0x10/0x10
[  792.432106][   T30]  ? __pfx_autoremove_wake_function+0x10/0x10
[  792.454153][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  792.466691][   T30]  ? __kthread_parkme+0x169/0x1d0
[  792.473344][   T30]  ? __pfx_kjournald2+0x10/0x10
[  792.478252][   T30]  kthread+0x2f2/0x390
[  792.488687][   T30]  ? __pfx_kjournald2+0x10/0x10
[  792.495074][   T30]  ? __pfx_kthread+0x10/0x10
[  792.499722][   T30]  ret_from_fork+0x4d/0x80
[  792.510539][   T30]  ? __pfx_kthread+0x10/0x10
[  792.516764][   T30]  ret_from_fork_asm+0x1a/0x30
[  792.522864][   T30]  </TASK>
[  792.526623][   T30] INFO: task syz-executor:6171 blocked for more than 144 seconds.
[  792.550195][   T30]       Not tainted 6.13.0-rc5-syzkaller-00012-g0bc21e701a6f #0
[  792.567236][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  792.575995][   T30] task:syz-executor    state:D stack:20096 pid:6171  tgid:6171  ppid:1      flags:0x00000004
[  792.606798][   T30] Call Trace:
[  792.613017][   T30]  <TASK>
[  792.616003][   T30]  __schedule+0x1850/0x4c30
[  792.621187][   T30]  ? __pfx___schedule+0x10/0x10
[  792.626099][   T30]  ? __pfx_lock_release+0x10/0x10
[  792.640979][   T30]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  792.646950][   T30]  ? schedule+0x90/0x320
[  792.651733][   T30]  schedule+0x14b/0x320
[  792.655947][   T30]  synchronize_rcu_expedited+0x70a/0x830
[  792.661648][   T30]  ? __pfx_synchronize_rcu_expedited+0x10/0x10
[  792.676003][   T30]  ? __pfx_autoremove_wake_function+0x10/0x10
[  792.682128][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  792.706744][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  792.712855][   T30]  ? __pfx_up_write+0x10/0x10
[  792.728963][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  792.734695][   T30]  ? shrink_dentry_list+0x59c/0x5b0
[  792.749010][   T30]  namespace_unlock+0x29f/0x4d0
[  792.753953][   T30]  ? __pfx_lock_release+0x10/0x10
[  792.766187][   T30]  ? __pfx_namespace_unlock+0x10/0x10
[  792.773292][   T30]  path_umount+0xeca/0xf70
[  792.777784][   T30]  ? __x64_sys_umount+0x123/0x170
[  792.789332][   T30]  ? __pfx_path_umount+0x10/0x10
[  792.795823][   T30]  ? kmem_cache_free+0x195/0x410
[  792.800855][   T30]  __x64_sys_umount+0x123/0x170
[  792.806233][   T30]  ? __pfx___x64_sys_umount+0x10/0x10
[  792.834366][   T30]  ? do_syscall_64+0x100/0x230
[  792.839225][   T30]  ? do_syscall_64+0xb6/0x230
[  792.852506][   T30]  do_syscall_64+0xf3/0x230
[  792.857400][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  792.863349][   T30] RIP: 0033:0x7f7832587057
[  792.875019][   T30] RSP: 002b:00007ffe741f4c58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  792.883794][   T30] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f7832587057
[  792.897136][   T30] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe741f4d10
[  792.905144][   T30] RBP: 00007ffe741f4d10 R08: 0000000000000000 R09: 0000000000000000
[  792.921145][   T30] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe741f5d90
[  792.935358][   T30] R13: 00007f78326018f4 R14: 00007ffe741f5dd0 R15: 0000000000000377
[  792.950612][   T30]  </TASK>
[  792.956056][   T30] INFO: task kworker/0:6:6224 blocked for more than 144 seconds.
[  792.979455][   T30]       Not tainted 6.13.0-rc5-syzkaller-00012-g0bc21e701a6f #0
[  792.994127][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  793.002880][   T30] task:kworker/0:6     state:D stack:18000 pid:6224  tgid:6224  ppid:2      flags:0x00004000
[  793.023226][   T30] Workqueue: events nf_tables_trans_destroy_work
[  793.031395][   T30] Call Trace:
[  793.034731][   T30]  <TASK>
[  793.043931][   T30]  __schedule+0x1850/0x4c30
[  793.050196][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  793.055916][   T30]  ? schedule+0x90/0x320
[  793.070060][   T30]  ? __pfx___schedule+0x10/0x10
[  793.075111][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  793.089162][   T30]  ? __pfx_lock_release+0x10/0x10
[  793.094802][   T30]  ? kick_pool+0x1bd/0x620
[  793.099315][   T30]  ? _raw_spin_unlock_irq+0x23/0x50
[  793.122614][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  793.128707][   T30]  ? lockdep_hardirqs_on+0x99/0x150
[  793.142804][   T30]  ? schedule+0x90/0x320
[  793.147689][   T30]  schedule+0x14b/0x320
[  793.151922][   T30]  schedule_preempt_disabled+0x13/0x30
[  793.164924][   T30]  __mutex_lock+0x7e7/0xee0
[  793.169544][   T30]  ? __mutex_lock+0x5ef/0xee0
[  793.174306][   T30]  ? synchronize_rcu_expedited+0x451/0x830
[  793.191733][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  793.201073][   T30]  ? do_raw_spin_lock+0x14f/0x370
[  793.206164][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  793.217898][   T30]  ? do_raw_spin_unlock+0x13c/0x8b0
[  793.223154][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  793.232105][   T30]  synchronize_rcu_expedited+0x451/0x830
[  793.237807][   T30]  ? __pfx_synchronize_rcu_expedited+0x10/0x10
[  793.247988][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  793.264294][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  793.270171][   T30]  ? __pfx___might_resched+0x10/0x10
[  793.282046][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  793.296718][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  793.302401][   T30]  synchronize_rcu+0x11b/0x360
[  793.316455][   T30]  ? __pfx_synchronize_rcu+0x10/0x10
[  793.321799][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  793.333820][   T30]  ? do_raw_spin_unlock+0x13c/0x8b0
[  793.343691][   T30]  nf_tables_trans_destroy_work+0x20b/0x1830
[  793.354769][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  793.363015][   T30]  ? __pfx_lock_acquire+0x10/0x10
[  793.368382][   T30]  ? __pfx_nf_tables_trans_destroy_work+0x10/0x10
[  793.374846][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  793.397686][   T30]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  793.408949][   T30]  ? process_scheduled_works+0x976/0x1840
[  793.417441][   T30]  process_scheduled_works+0xa68/0x1840
[  793.430396][   T30]  ? __pfx_process_scheduled_works+0x10/0x10
[  793.440564][   T30]  ? assign_work+0x364/0x3d0
[  793.451623][   T30]  worker_thread+0x870/0xd30
[  793.462905][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  793.473979][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  793.482884][   T30]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  793.493967][   T30]  ? __kthread_parkme+0x169/0x1d0
[  793.502042][   T30]  ? __pfx_worker_thread+0x10/0x10
[  793.508888][   T30]  kthread+0x2f2/0x390
[  793.513029][   T30]  ? __pfx_worker_thread+0x10/0x10
[  793.534744][   T30]  ? __pfx_kthread+0x10/0x10
[  793.539668][   T30]  ret_from_fork+0x4d/0x80
[  793.544128][   T30]  ? __pfx_kthread+0x10/0x10
[  793.548774][   T30]  ret_from_fork_asm+0x1a/0x30
[  793.563333][   T30]  </TASK>
[  793.566416][   T30] INFO: task syz.3.5600:18469 blocked for more than 145 seconds.
[  793.583382][   T30]       Not tainted 6.13.0-rc5-syzkaller-00012-g0bc21e701a6f #0
[  793.591136][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  793.607482][   T30] task:syz.3.5600      state:D stack:25952 pid:18469 tgid:18469 ppid:6164   flags:0x00000004
[  793.622101][   T30] Call Trace:
[  793.630193][   T30]  <TASK>
[  793.633167][   T30]  __schedule+0x1850/0x4c30
[  793.640680][   T30]  ? __pfx___schedule+0x10/0x10
[  793.645880][   T30]  ? __pfx_lock_release+0x10/0x10
[  793.650980][   T30]  ? schedule+0x90/0x320
[  793.655266][   T30]  schedule+0x14b/0x320
[  793.671231][   T30]  schedule_timeout+0xb0/0x290
[  793.676095][   T30]  ? __pfx_schedule_timeout+0x10/0x10
[  793.694139][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  793.716053][   T30]  ? wait_for_completion+0x2fe/0x620
[  793.729849][   T30]  ? wait_for_completion+0x2fe/0x620
[  793.735718][   T30]  ? _raw_spin_unlock_irq+0x23/0x50
[  793.741001][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  793.758059][   T30]  ? lockdep_hardirqs_on+0x99/0x150
[  793.764148][   T30]  ? wait_for_completion+0x2fe/0x620
[  793.769523][   T30]  wait_for_completion+0x355/0x620
[  793.782291][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  793.788483][   T30]  ? __pfx_wait_for_completion+0x10/0x10
[  793.794217][   T30]  ? __flush_work+0xe7/0xc50
[  793.806479][   T30]  __flush_work+0xa37/0xc50
[  793.811131][   T30]  ? __flush_work+0xe7/0xc50
[  793.815790][   T30]  ? __pfx___flush_work+0x10/0x10
[  793.833337][   T30]  ? __pfx_wq_barrier_func+0x10/0x10
[  793.853186][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  793.858988][   T30]  ? nft_pernet+0x23/0x240
[  793.872344][   T30]  nft_rcv_nl_event+0x16f/0x6b0
[  793.877282][   T30]  ? __local_bh_enable_ip+0x168/0x200
[  793.890308][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  793.896454][   T30]  ? lockdep_hardirqs_on+0x99/0x150
[  793.902022][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  793.908401][   T30]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  793.921565][   T30]  ? __pfx_nft_rcv_nl_event+0x10/0x10
[  793.927535][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  793.933237][   T30]  notifier_call_chain+0x1a7/0x3f0
[  793.955614][   T30]  blocking_notifier_call_chain+0x69/0x90
[  793.961424][   T30]  netlink_release+0x11a6/0x1bf0
[  793.977759][   T30]  ? netlink_release+0x10d/0x1bf0
[  793.982894][   T30]  ? __pfx_netlink_release+0x10/0x10
[  793.992889][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  794.001623][   T30]  ? down_write+0x18c/0x220
[  794.006277][   T30]  ? __pfx_down_write+0x10/0x10
[  794.016231][   T30]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  794.024507][   T30]  sock_close+0xbe/0x240
[  794.028870][   T30]  ? __pfx_sock_close+0x10/0x10
[  794.041136][   T30]  __fput+0x23e/0xa50
[  794.045249][   T30]  task_work_run+0x251/0x310
[  794.049916][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  794.072475][   T30]  ? _raw_spin_unlock+0x28/0x50
[  794.080253][   T30]  ? __pfx_task_work_run+0x10/0x10
[  794.098821][   T30]  ? syscall_exit_to_user_mode+0xa3/0x340
[  794.104756][   T30]  syscall_exit_to_user_mode+0x13f/0x340
[  794.114546][   T30]  do_syscall_64+0x100/0x230
[  794.123195][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  794.136879][   T30] RIP: 0033:0x7f094bd85d29
[  794.145358][   T30] RSP: 002b:00007ffe58732188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  794.157844][   T30] RAX: 0000000000000000 RBX: 00007f094bf77ba0 RCX: 00007f094bd85d29
[  794.170999][   T30] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[  794.179066][   T30] RBP: 00007f094bf77ba0 R08: 0000000000002cd4 R09: 00007ffe5873247f
[  794.198030][   T30] R10: 00000000005fb1ac R11: 0000000000000246 R12: 0000000000097cd9
[  794.208963][   T30] R13: 00007ffe58732290 R14: 0000000000000032 R15: ffffffffffffffff
[  794.225552][   T30]  </TASK>
[  794.228920][   T30] INFO: task syz.0.5608:18487 blocked for more than 146 seconds.
[  794.245047][   T30]       Not tainted 6.13.0-rc5-syzkaller-00012-g0bc21e701a6f #0
[  794.252715][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  794.269409][   T30] task:syz.0.5608      state:D stack:23544 pid:18487 tgid:18485 ppid:6161   flags:0x00000004
[  794.285743][   T30] Call Trace:
[  794.292747][   T30]  <TASK>
[  794.295718][   T30]  __schedule+0x1850/0x4c30
[  794.307118][   T30]  ? __pfx___schedule+0x10/0x10
[  794.319093][   T30]  ? __pfx_lock_release+0x10/0x10
[  794.324168][   T30]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  794.336287][   T30]  ? schedule+0x90/0x320
[  794.343220][   T30]  schedule+0x14b/0x320
[  794.347438][   T30]  synchronize_rcu_expedited+0x70a/0x830
[  794.359404][   T30]  ? __pfx_synchronize_rcu_expedited+0x10/0x10
[  794.367139][   T30]  ? __pfx_autoremove_wake_function+0x10/0x10
[  794.383167][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  794.388900][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  794.414858][   T30]  ? __pfx___might_resched+0x10/0x10
[  794.423481][   T30]  ? __mutex_unlock_slowpath+0x21e/0x790
[  794.440378][   T30]  ? bpf_dispatcher_xdp_func+0x25/0x30
[  794.445916][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  794.464626][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  794.479449][   T30]  synchronize_rcu+0x11b/0x360
[  794.484286][   T30]  ? __pfx_synchronize_rcu+0x10/0x10
[  794.489633][   T30]  ? __pfx___static_call_update+0x10/0x10
[  794.509059][   T30]  ? 0xffffffffa0003d80
[  794.527315][   T30]  ? text_poke_copy+0xae/0xd0
[  794.532289][   T30]  ? 0xffffffffa0003d80
[  794.545363][   T30]  ? 0xffffffffa0003d80
[  794.549667][   T30]  ? 0xffffffffa0003d80
[  794.553873][   T30]  bpf_dispatcher_change_prog+0xe6f/0xf20
[  794.572423][   T30]  ? 0xffffffffa0003d80
[  794.581102][   T30]  ? __pfx_bpf_dispatcher_change_prog+0x10/0x10
[  794.591138][   T30]  ? 0xffffffffa000081c
[  794.595377][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  794.606204][   T30]  ? _copy_from_user+0x99/0xc0
[  794.614761][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  794.624190][   T30]  ? bpf_test_init+0x15a/0x180
[  794.629011][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  794.639621][   T30]  ? xdp_convert_md_to_buff+0x5b/0x330
[  794.653245][   T30]  bpf_prog_test_run_xdp+0x753/0x11e0
[  794.658690][   T30]  ? __pfx_lock_release+0x10/0x10
[  794.679299][   T30]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  794.690273][   T30]  ? __fget_files+0x2a/0x410
[  794.700558][   T30]  ? __fget_files+0x2a/0x410
[  794.709176][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  794.716318][   T30]  ? fput+0x21b/0x290
[  794.720356][   T30]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  794.733683][   T30]  bpf_prog_test_run+0x2e6/0x360
[  794.738966][   T30]  __sys_bpf+0x48d/0x810
[  794.743257][   T30]  ? __pfx___sys_bpf+0x10/0x10
[  794.759244][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  794.765329][   T30]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  794.779276][   T30]  ? do_syscall_64+0x100/0x230
[  794.784120][   T30]  __x64_sys_bpf+0x7c/0x90
[  794.788590][   T30]  do_syscall_64+0xf3/0x230
[  794.823834][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  794.829892][   T30] RIP: 0033:0x7f30ee785d29
[  794.848394][   T30] RSP: 002b:00007f30ef599038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  794.864180][   T30] RAX: ffffffffffffffda RBX: 00007f30ee975fa0 RCX: 00007f30ee785d29
[  794.872628][   T30] RDX: 0000000000000050 RSI: 0000000020000140 RDI: 000000000000000a
[  794.887959][   T30] RBP: 00007f30ee801b08 R08: 0000000000000000 R09: 0000000000000000
[  794.895990][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  794.909208][   T30] R13: 0000000000000000 R14: 00007f30ee975fa0 R15: 00007ffc2e6b1848
[  794.917254][   T30]  </TASK>
[  794.928358][   T30] INFO: task dhcpcd:18486 blocked for more than 146 seconds.
[  794.945239][   T30]       Not tainted 6.13.0-rc5-syzkaller-00012-g0bc21e701a6f #0
[  794.971280][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  794.980001][   T30] task:dhcpcd          state:D stack:26752 pid:18486 tgid:18486 ppid:5491   flags:0x00000002
[  795.000085][   T30] Call Trace:
[  795.003728][   T30]  <TASK>
[  795.006700][   T30]  __schedule+0x1850/0x4c30
[  795.011275][   T30]  ? __pfx___schedule+0x10/0x10
[  795.023580][   T30]  ? __pfx_lock_release+0x10/0x10
[  795.029980][   T30]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  795.036240][   T30]  ? schedule+0x90/0x320
[  795.041688][   T30]  schedule+0x14b/0x320
[  795.045921][   T30]  synchronize_rcu_expedited+0x70a/0x830
[  795.062598][   T30]  ? __pfx_synchronize_rcu_expedited+0x10/0x10
[  795.071217][   T30]  ? __pfx_autoremove_wake_function+0x10/0x10
[  795.077336][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  795.088839][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  795.094569][   T30]  ? __pfx___might_resched+0x10/0x10
[  795.110592][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  795.116279][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  795.129732][   T30]  synchronize_rcu+0x11b/0x360
[  795.138397][   T30]  ? __pfx_synchronize_rcu+0x10/0x10
[  795.144080][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  795.150977][   T30]  __unregister_prot_hook+0x402/0x570
[  795.167881][   T30]  ? packet_do_bind+0x93/0xcb0
[  795.172736][   T30]  packet_do_bind+0x517/0xcb0
[  795.189693][   T30]  ? packet_do_bind+0x93/0xcb0
[  795.194541][   T30]  __sys_bind+0x1e6/0x290
[  795.202537][   T30]  ? __pfx___sys_bind+0x10/0x10
[  795.211502][   T30]  ? fd_install+0x35c/0x5d0
[  795.216078][   T30]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  795.234607][   T30]  ? do_syscall_64+0x100/0x230
[  795.242893][   T30]  __x64_sys_bind+0x7a/0x90
[  795.247476][   T30]  do_syscall_64+0xf3/0x230
[  795.258020][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  795.266686][   T30] RIP: 0033:0x7f9af742a677
[  795.271543][   T30] RSP: 002b:00007ffcd5076f38 EFLAGS: 00000217 ORIG_RAX: 0000000000000031
[  795.280009][   T30] RAX: ffffffffffffffda RBX: 00005599dad4bca3 RCX: 00007f9af742a677
[  795.293912][   T30] RDX: 0000000000000014 RSI: 00007ffcd5076f48 RDI: 0000000000000005
[  795.301962][   T30] RBP: 0000000000000000 R08: 00005599f39f9990 R09: 0000000000020000
[  795.325130][   T30] R10: 000000000000006d R11: 0000000000000217 R12: 00005599f39f67c0
[  795.333167][   T30] R13: 00005599f39f91d8 R14: 00007ffcd509782c R15: 00005599f39f91a4
[  795.348625][   T30]  </TASK>
[  795.351701][   T30] INFO: task dhcpcd:18496 blocked for more than 147 seconds.
[  795.366821][   T30]       Not tainted 6.13.0-rc5-syzkaller-00012-g0bc21e701a6f #0
[  795.374495][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  795.394609][   T30] task:dhcpcd          state:D stack:26752 pid:18496 tgid:18496 ppid:5491   flags:0x00000002
[  795.406625][   T30] Call Trace:
[  795.416001][   T30]  <TASK>
[  795.418975][   T30]  __schedule+0x1850/0x4c30
[  795.427183][   T30]  ? __pfx___schedule+0x10/0x10
[  795.439201][   T30]  ? __pfx_lock_release+0x10/0x10
[  795.447741][   T30]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  795.459626][   T30]  ? schedule+0x90/0x320
[  795.464199][   T30]  schedule+0x14b/0x320
[  795.468406][   T30]  synchronize_rcu_expedited+0x70a/0x830
[  795.482841][   T30]  ? __pfx_synchronize_rcu_expedited+0x10/0x10
[  795.496190][   T30]  ? __pfx_autoremove_wake_function+0x10/0x10
[  795.502319][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  795.515811][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  795.521807][   T30]  ? __pfx___might_resched+0x10/0x10
[  795.527426][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  795.533104][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  795.547813][   T30]  synchronize_rcu+0x11b/0x360
[  795.557733][   T30]  ? __pfx_synchronize_rcu+0x10/0x10
[  795.571295][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  795.576986][   T30]  __unregister_prot_hook+0x402/0x570
[  795.590289][   T30]  ? packet_do_bind+0x93/0xcb0
[  795.603722][   T30]  packet_do_bind+0x517/0xcb0
[  795.608476][   T30]  ? packet_do_bind+0x93/0xcb0
[  795.620517][   T30]  __sys_bind+0x1e6/0x290
[  795.625419][   T30]  ? __pfx___sys_bind+0x10/0x10
[  795.630325][   T30]  ? fd_install+0x35c/0x5d0
[  795.642140][   T30]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  795.648812][   T30]  ? do_syscall_64+0x100/0x230
[  795.653645][   T30]  __x64_sys_bind+0x7a/0x90
[  795.670224][   T30]  do_syscall_64+0xf3/0x230
[  795.674805][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  795.689756][   T30] RIP: 0033:0x7f9af742a677
[  795.694216][   T30] RSP: 002b:00007ffcd5076f38 EFLAGS: 00000217 ORIG_RAX: 0000000000000031
[  795.712236][   T30] RAX: ffffffffffffffda RBX: 00005599dad4bca3 RCX: 00007f9af742a677
[  795.730866][   T30] RDX: 0000000000000014 RSI: 00007ffcd5076f48 RDI: 0000000000000005
[  795.739084][   T30] RBP: 0000000000000000 R08: 00005599f39f8c50 R09: 0000000000020000
[  795.759239][   T30] R10: 000000000000006d R11: 0000000000000217 R12: 00005599f39f67c0
[  795.772280][   T30] R13: 00005599f39f99f8 R14: 00007ffcd509782c R15: 00005599f39f99c4
[  795.784829][   T30]  </TASK>
[  795.787909][   T30] INFO: task syz.1.5616:18503 blocked for more than 147 seconds.
[  795.803808][   T30]       Not tainted 6.13.0-rc5-syzkaller-00012-g0bc21e701a6f #0
[  795.814053][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  795.828930][   T30] task:syz.1.5616      state:D stack:25952 pid:18503 tgid:18503 ppid:6165   flags:0x00000004
[  795.855192][   T30] Call Trace:
[  795.858538][   T30]  <TASK>
[  795.864333][   T30]  __schedule+0x1850/0x4c30
[  795.868945][   T30]  ? __pfx___schedule+0x10/0x10
[  795.879038][   T30]  ? __pfx_lock_release+0x10/0x10
[  795.886794][   T30]  ? schedule+0x90/0x320
[  795.891380][   T30]  schedule+0x14b/0x320
[  795.895590][   T30]  schedule_timeout+0xb0/0x290
[  795.900394][   T30]  ? __pfx_schedule_timeout+0x10/0x10
[  795.912056][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  795.919175][   T30]  ? wait_for_completion+0x2fe/0x620
[  795.950108][   T30]  ? wait_for_completion+0x2fe/0x620
[  795.962733][   T30]  ? _raw_spin_unlock_irq+0x23/0x50
[  795.976480][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  795.982157][   T30]  ? lockdep_hardirqs_on+0x99/0x150
[  795.994702][   T30]  ? wait_for_completion+0x2fe/0x620
[  796.000764][   T30]  wait_for_completion+0x355/0x620
[  796.005927][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  796.022192][   T30]  ? __pfx_wait_for_completion+0x10/0x10
[  796.029023][   T30]  ? __flush_work+0xe7/0xc50
[  796.040718][   T30]  __flush_work+0xa37/0xc50
[  796.045267][   T30]  ? __flush_work+0xe7/0xc50
[  796.049900][   T30]  ? __pfx___flush_work+0x10/0x10
[  796.064479][   T30]  ? __pfx_wq_barrier_func+0x10/0x10
[  796.069825][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  796.080990][   T30]  ? nft_pernet+0x23/0x240
[  796.088974][   T30]  nft_rcv_nl_event+0x16f/0x6b0
[  796.094141][   T30]  ? __local_bh_enable_ip+0x168/0x200
[  796.099566][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  796.116511][   T30]  ? lockdep_hardirqs_on+0x99/0x150
[  796.121875][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  796.135280][   T30]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  796.143812][   T30]  ? __pfx_nft_rcv_nl_event+0x10/0x10
[  796.155267][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  796.162398][   T30]  notifier_call_chain+0x1a7/0x3f0
[  796.167579][   T30]  blocking_notifier_call_chain+0x69/0x90
[  796.185142][   T30]  netlink_release+0x11a6/0x1bf0
[  796.191639][   T30]  ? netlink_release+0x10d/0x1bf0
[  796.196717][   T30]  ? __pfx_netlink_release+0x10/0x10
[  796.211428][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  796.217106][   T30]  ? down_write+0x18c/0x220
[  796.221655][   T30]  ? __pfx_down_write+0x10/0x10
[  796.239533][   T30]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  796.251563][   T30]  sock_close+0xbe/0x240
[  796.265100][   T30]  ? __pfx_sock_close+0x10/0x10
[  796.270009][   T30]  __fput+0x23e/0xa50
[  796.274052][   T30]  task_work_run+0x251/0x310
[  796.292593][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  796.302851][   T30]  ? _raw_spin_unlock+0x28/0x50
[  796.311726][   T30]  ? __pfx_task_work_run+0x10/0x10
[  796.316891][   T30]  ? syscall_exit_to_user_mode+0xa3/0x340
[  796.329029][   T30]  syscall_exit_to_user_mode+0x13f/0x340
[  796.334726][   T30]  do_syscall_64+0x100/0x230
[  796.339422][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  796.352776][   T30] RIP: 0033:0x7f4693585d29
[  796.358459][   T30] RSP: 002b:00007ffe7d0c6ee8 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  796.379409][   T30] RAX: 0000000000000000 RBX: 00007f4693777ba0 RCX: 00007f4693585d29
[  796.391983][   T30] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[  796.405984][   T30] RBP: 00007f4693777ba0 R08: 00000000000028dc R09: 00007ffe7d0c71df
[  796.414017][   T30] R10: 00000000005fb8dc R11: 0000000000000246 R12: 0000000000098545
[  796.430378][   T30] R13: 00007ffe7d0c6ff0 R14: 0000000000000032 R15: ffffffffffffffff
[  796.441183][   T30]  </TASK>
[  796.444312][   T30] INFO: task syz.4.5620:18511 blocked for more than 148 seconds.
[  796.460848][   T30]       Not tainted 6.13.0-rc5-syzkaller-00012-g0bc21e701a6f #0
[  796.472514][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  796.490130][   T30] task:syz.4.5620      state:D stack:25952 pid:18511 tgid:18511 ppid:6169   flags:0x00000004
[  796.518556][   T30] Call Trace:
[  796.525097][   T30]  <TASK>
[  796.528086][   T30]  __schedule+0x1850/0x4c30
[  796.541216][   T30]  ? __pfx___schedule+0x10/0x10
[  796.547670][   T30]  ? __pfx_lock_release+0x10/0x10
[  796.552792][   T30]  ? schedule+0x90/0x320
[  796.564591][   T30]  schedule+0x14b/0x320
[  796.568829][   T30]  schedule_timeout+0xb0/0x290
[  796.579283][   T30]  ? __pfx_schedule_timeout+0x10/0x10
[  796.584731][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  796.598617][   T30]  ? wait_for_completion+0x2fe/0x620
[  796.604024][   T30]  ? wait_for_completion+0x2fe/0x620
[  796.617714][   T30]  ? _raw_spin_unlock_irq+0x23/0x50
[  796.622985][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  796.647858][   T30]  ? lockdep_hardirqs_on+0x99/0x150
[  796.656178][   T30]  ? wait_for_completion+0x2fe/0x620
[  796.672124][   T30]  wait_for_completion+0x355/0x620
[  796.677322][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  796.685842][   T30]  ? __pfx_wait_for_completion+0x10/0x10
[  796.691565][   T30]  ? __flush_work+0xe7/0xc50
[  796.702469][   T30]  __flush_work+0xa37/0xc50
[  796.708597][   T30]  ? __flush_work+0xe7/0xc50
[  796.713264][   T30]  ? __pfx___flush_work+0x10/0x10
[  796.724632][   T30]  ? __pfx_wq_barrier_func+0x10/0x10
[  796.730026][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  796.737573][   T30]  ? nft_pernet+0x23/0x240
[  796.742048][   T30]  nft_rcv_nl_event+0x16f/0x6b0
[  796.766361][   T30]  ? __local_bh_enable_ip+0x168/0x200
[  796.779365][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  796.785051][   T30]  ? lockdep_hardirqs_on+0x99/0x150
[  796.799238][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  796.805558][   T30]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  796.818523][   T30]  ? __pfx_nft_rcv_nl_event+0x10/0x10
[  796.824251][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  796.829935][   T30]  notifier_call_chain+0x1a7/0x3f0
[  796.842498][   T30]  blocking_notifier_call_chain+0x69/0x90
[  796.848458][   T30]  netlink_release+0x11a6/0x1bf0
[  796.866068][   T30]  ? netlink_release+0x10d/0x1bf0
[  796.871168][   T30]  ? __pfx_netlink_release+0x10/0x10
[  796.885263][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  796.891045][   T30]  ? down_write+0x18c/0x220
[  796.905701][   T30]  ? __pfx_down_write+0x10/0x10
[  796.917301][   T30]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  796.922745][   T30]  sock_close+0xbe/0x240
[  796.927052][   T30]  ? __pfx_sock_close+0x10/0x10
[  796.939832][   T30]  __fput+0x23e/0xa50
[  796.943918][   T30]  task_work_run+0x251/0x310
[  796.948568][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  796.961887][   T30]  ? _raw_spin_unlock+0x28/0x50
[  796.966906][   T30]  ? __pfx_task_work_run+0x10/0x10
[  796.978215][   T30]  ? syscall_exit_to_user_mode+0xa3/0x340
[  796.985580][   T30]  syscall_exit_to_user_mode+0x13f/0x340
[  796.991288][   T30]  do_syscall_64+0x100/0x230
[  797.002932][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  797.009073][   T30] RIP: 0033:0x7fcd97385d29
[  797.016674][   T30] RSP: 002b:00007ffd1d9e8678 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  797.056160][   T30] RAX: 0000000000000000 RBX: 00000000000983d6 RCX: 00007fcd97385d29
[  797.064201][   T30] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[  797.082901][   T30] RBP: 00007fcd97577ba0 R08: 0000000000000001 R09: 00007ffd1d9e896f
[  797.095852][   T30] R10: 00007fcd97200000 R11: 0000000000000246 R12: 0000000000098422
[  797.106511][   T30] R13: 00007fcd97575fa0 R14: 0000000000000032 R15: ffffffffffffffff
[  797.123329][   T30]  </TASK>
[  797.126405][   T30] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings
[  797.141618][   T30] INFO: task syz.5.5623:18518 blocked for more than 148 seconds.
[  797.149380][   T30]       Not tainted 6.13.0-rc5-syzkaller-00012-g0bc21e701a6f #0
[  797.173469][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  797.183238][   T30] task:syz.5.5623      state:D stack:23840 pid:18518 tgid:18517 ppid:6163   flags:0x00004004
[  797.200671][   T30] Call Trace:
[  797.203992][   T30]  <TASK>
[  797.213940][   T30]  __schedule+0x1850/0x4c30
[  797.224675][   T30]  ? __pfx___schedule+0x10/0x10
[  797.233366][   T30]  ? __pfx_lock_release+0x10/0x10
[  797.242510][   T30]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  797.254440][   T30]  ? schedule+0x90/0x320
[  797.258752][   T30]  schedule+0x14b/0x320
[  797.265913][   T30]  synchronize_rcu_expedited+0x70a/0x830
[  797.276568][   T30]  ? __pfx_synchronize_rcu_expedited+0x10/0x10
[  797.294233][   T30]  ? __pfx_autoremove_wake_function+0x10/0x10
[  797.300446][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  797.314511][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  797.320207][   T30]  ? __pfx___might_resched+0x10/0x10
[  797.333591][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  797.340789][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  797.358602][   T30]  synchronize_rcu+0x11b/0x360
[  797.363433][   T30]  ? __pfx_synchronize_rcu+0x10/0x10
[  797.381850][   T30]  ? _raw_spin_lock_irq+0xdf/0x120
[  797.387065][   T30]  ? _raw_spin_unlock_irq+0x23/0x50
[  797.398159][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  797.403923][   T30]  ? lockdep_hardirqs_on+0x99/0x150
[  797.419622][   T30]  rcu_sync_enter+0x1fa/0x350
[  797.424391][   T30]  ? __pfx_rcu_sync_enter+0x10/0x10
[  797.429667][   T30]  percpu_down_write+0x60/0x310
[  797.448109][   T30]  ext4_reconfigure+0xc7b/0x3990
[  797.458701][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  797.470583][   T30]  ? __pfx_ext4_reconfigure+0x10/0x10
[  797.478788][   T30]  ? shrink_dcache_sb+0x38e/0x3e0
[  797.485169][   T30]  ? __pfx_generic_parse_monolithic+0x10/0x10
[  797.491296][   T30]  ? ext4_init_fs_context+0x4f/0xc0
[  797.504110][   T30]  ? hook_sb_remount+0x10b/0x420
[  797.509707][   T30]  ? security_sb_remount+0x13/0x280
[  797.514997][   T30]  reconfigure_super+0x43c/0x870
[  797.527080][   T30]  path_mount+0xc22/0xfa0
[  797.531516][   T30]  __se_sys_mount+0x2d6/0x3c0
[  797.536252][   T30]  ? __pfx___se_sys_mount+0x10/0x10
[  797.554341][   T30]  ? do_syscall_64+0x100/0x230
[  797.560716][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  797.566428][   T30]  ? __x64_sys_mount+0x20/0xc0
[  797.590686][   T30]  do_syscall_64+0xf3/0x230
[  797.595289][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  797.610428][   T30] RIP: 0033:0x7f88ec3874ca
[  797.615428][   T30] RSP: 002b:00007f88ea1f5e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  797.631764][   T30] RAX: ffffffffffffffda RBX: 00007f88ea1f5ef0 RCX: 00007f88ec3874ca
[  797.640160][   T30] RDX: 0000000020000180 RSI: 0000000020000000 RDI: 0000000000000000
[  797.655612][   T30] RBP: 0000000020000180 R08: 00007f88ea1f5ef0 R09: 0000000002046022
[  797.663634][   T30] R10: 0000000002046022 R11: 0000000000000246 R12: 0000000020000000
[  797.686452][   T30] R13: 00007f88ea1f5eb0 R14: 0000000000000000 R15: 00000000200002c0
[  797.697513][   T30]  </TASK>
[  797.700584][   T30] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings
[  797.719374][   T30] 
[  797.719374][   T30] Showing all locks held in the system:
[  797.727244][   T30] 3 locks held by kworker/u8:1/12:
[  797.751465][   T30]  #0: ffff88801ac81148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1840
[  797.771334][   T30]  #1: ffffc90000117d00 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1840
[  797.783977][   T30]  #2: ffffffff8fcb2b88 (rtnl_mutex){+.+.}-{4:4}, at: linkwatch_event+0xe/0x60
[  797.793070][   T30] 6 locks held by kworker/1:0/25:
[  797.811190][   T30] 1 lock held by khungtaskd/30:
[  797.816396][   T30]  #0: ffffffff8e937ae0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x55/0x2a0
[  797.834359][   T30] 3 locks held by kworker/u8:2/35:
[  797.839598][   T30]  #0: ffff88801ac81148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1840
[  797.873915][   T30]  #1: ffffc90000ab7d00 ((work_completion)(&rdev->wiphy_work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1840
[  797.894910][   T30]  #2: ffff88806ceb8768 (&rdev->wiphy.mtx){+.+.}-{4:4}, at: cfg80211_wiphy_work+0xd9/0x480
[  797.907830][   T30] 3 locks held by kworker/u8:3/52:
[  797.919795][   T30]  #0: ffff888031126948 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1840
[  797.934251][   T30]  #1: ffffc90000bc7d00 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1840
[  797.959642][   T30]  #2: ffffffff8fcb2b88 (rtnl_mutex){+.+.}-{4:4}, at: addrconf_verify_work+0x19/0x30
[  797.977175][   T30] 2 locks held by kworker/1:2/1160:
[  797.982446][   T30] 4 locks held by kworker/u9:1/5135:
[  797.998434][   T30]  #0: ffff88804c8ae148 ((wq_completion)hci6){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1840
[  798.016645][   T30]  #1: ffffc9001012fd00 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1840
[  798.029764][   T30]  #2: ffff88803461cd80 (&hdev->req_lock){+.+.}-{4:4}, at: hci_cmd_sync_work+0x1ec/0x400
[  798.053237][   T30]  #3: ffff88803461c078 (&hdev->lock){+.+.}-{4:4}, at: hci_abort_conn_sync+0x1e4/0x11f0
[  798.071356][   T30] 4 locks held by udevd/5197:
[  798.076586][   T30]  #0: ffff888027b99e80 (&p->lock){+.+.}-{4:4}, at: seq_read_iter+0xb4/0xd70
[  798.092694][   T30]  #1: ffff888021fa4888 (&of->mutex#2){+.+.}-{4:4}, at: kernfs_seq_start+0x53/0x3b0
[  798.102585][   T30]  #2: ffff88805586c3c8 (kn->active#5){++++}-{0:0}, at: kernfs_seq_start+0x72/0x3b0
[  798.130775][   T30]  #3: ffff88807ed47190 (&dev->mutex){....}-{4:4}, at: uevent_show+0x17d/0x340
[  798.154853][   T30] 2 locks held by getty/5585:
[  798.161745][   T30]  #0: ffff88814d48d0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  798.178508][   T30]  #1: ffffc90002fee2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x6a6/0x1e00
[  798.188780][   T30] 3 locks held by kworker/1:3/6113:
[  798.201923][   T30] 4 locks held by kworker/u9:4/6174:
[  798.207248][   T30]  #0: ffff888025ecc148 ((wq_completion)hci9){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1840
[  798.230593][   T30]  #1: ffffc90004cdfd00 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1840
[  798.252505][   T30]  #2: ffff88802862cd80 (&hdev->req_lock){+.+.}-{4:4}, at: hci_cmd_sync_work+0x1ec/0x400
[  798.269610][   T30]  #3: ffff88802862c078 (&hdev->lock){+.+.}-{4:4}, at: hci_abort_conn_sync+0x1e4/0x11f0
[  798.285155][   T30] 2 locks held by kworker/1:4/6223:
[  798.295770][   T30] 3 locks held by kworker/0:6/6224:
[  798.303652][   T30]  #0: ffff88801ac78948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1840
[  798.326090][   T30]  #1: ffffc90003f9fd00 (trans_destroy_work){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1840
[  798.340995][   T30]  #2: ffffffff8e93cff8 (rcu_state.exp_mutex){+.+.}-{4:4}, at: synchronize_rcu_expedited+0x451/0x830
[  798.358266][   T30] 4 locks held by kworker/1:5/6239:
[  798.372673][   T30] 4 locks held by kworker/u9:0/16115:
[  798.378125][   T30]  #0: ffff888023323948 ((wq_completion)hci8){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1840
[  798.397937][   T30]  #1: ffffc90004f07d00 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1840
[  798.417945][   T30]  #2: ffff88802ac5cd80 (&hdev->req_lock){+.+.}-{4:4}, at: hci_cmd_sync_work+0x1ec/0x400
[  798.437100][   T30]  #3: ffff88802ac5c078 (&hdev->lock){+.+.}-{4:4}, at: hci_abort_conn_sync+0x1e4/0x11f0
[  798.454237][   T30] 3 locks held by syz.3.5600/18469:
[  798.459928][   T30]  #0: ffff888057378208 (&sb->s_type->i_mutex_key#10){+.+.}-{4:4}, at: sock_close+0x90/0x240
[  798.477573][   T30]  #1: ffffffff8fd138f0 ((netlink_chain).rwsem){++++}-{4:4}, at: blocking_notifier_call_chain+0x53/0x90
[  798.503554][   T30]  #2: ffff8880278810c8 (&nft_net->commit_mutex){+.+.}-{4:4}, at: nft_rcv_nl_event+0x120/0x6b0
[  798.527777][   T30] 1 lock held by syz.0.5608/18487:
[  798.535376][   T30]  #0: ffffffff8fcb5ea8 (bpf_dispatcher_xdp.mutex){+.+.}-{4:4}, at: bpf_dispatcher_change_prog+0xa0/0xf20
[  798.559790][   T30] 1 lock held by dhcpcd/18486:
[  798.568553][   T30]  #0: ffff88804aee2258 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x32/0xcb0
[  798.584897][   T30] 1 lock held by dhcpcd/18496:
[  798.589734][   T30]  #0: ffff888029b5a258 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x32/0xcb0
[  798.608106][   T30] 3 locks held by syz.1.5616/18503:
[  798.613471][   T30]  #0: ffff88805735d008 (&sb->s_type->i_mutex_key#10){+.+.}-{4:4}, at: sock_close+0x90/0x240
[  798.631610][   T30]  #1: ffffffff8fd138f0 ((netlink_chain).rwsem){++++}-{4:4}, at: blocking_notifier_call_chain+0x53/0x90
[  798.652523][   T30]  #2: ffff8880344c1cc8 (&nft_net->commit_mutex){+.+.}-{4:4}, at: nft_rcv_nl_event+0x120/0x6b0
[  798.677158][   T30] 3 locks held by syz.4.5620/18511:
[  798.685734][   T30]  #0: ffff8880573dca08 (&sb->s_type->i_mutex_key#10){+.+.}-{4:4}, at: sock_close+0x90/0x240
[  798.700970][   T30]  #1: ffffffff8fd138f0 ((netlink_chain).rwsem){++++}-{4:4}, at: blocking_notifier_call_chain+0x53/0x90
[  798.715097][   T30]  #2: ffff8880342a7cc8 (&nft_net->commit_mutex){+.+.}-{4:4}, at: nft_rcv_nl_event+0x120/0x6b0
[  798.731834][   T30] 2 locks held by syz.5.5623/18518:
[  798.743553][   T30]  #0: ffff888055b900e0 (&type->s_umount_key#31){++++}-{4:4}, at: path_mount+0xbdb/0xfa0
[  798.759813][   T30]  #1: ffff888027a92b98 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: ext4_reconfigure+0xc7b/0x3990
[  798.776423][   T30] 1 lock held by syz-executor/18521:
[  798.789256][   T30]  #0: ffffffff8fcb2b88 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[  798.807660][   T30] 1 lock held by syz-executor/18524:
[  798.818043][   T30]  #0: ffffffff8fcb2b88 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[  798.833364][   T30] 1 lock held by syz-executor/18528:
[  798.838733][   T30]  #0: ffffffff8fcb2b88 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[  798.854216][   T30] 1 lock held by syz-executor/18531:
[  798.859581][   T30]  #0: ffffffff8fcb2b88 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[  798.884350][   T30] 1 lock held by syz-executor/18534:
[  798.889726][   T30]  #0: ffffffff8fcb2b88 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[  798.909776][   T30] 1 lock held by syz-executor/18536:
[  798.915137][   T30]  #0: ffffffff8fcb2b88 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[  798.936306][   T30] 1 lock held by syz-executor/18539:
[  798.946920][   T30]  #0: ffffffff8fcb2b88 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[  798.960632][   T30] 1 lock held by syz-executor/18542:
[  798.965981][   T30]  #0: ffffffff8fcb2b88 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[  798.981870][   T30] 1 lock held by syz-executor/18545:
[  798.987204][   T30]  #0: ffffffff8fcb2b88 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[  799.005846][   T30] 1 lock held by syz-executor/18548:
[  799.011309][   T30]  #0: ffffffff8fcb2b88 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[  799.031374][   T30] 1 lock held by syz-executor/18552:
[  799.041953][   T30]  #0: ffffffff8fcb2b88 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[  799.071295][   T30] 1 lock held by syz-executor/18554:
[  799.078287][   T30]  #0: ffffffff8fcb2b88 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[  799.091675][   T30] 1 lock held by dhcpcd/18556:
[  799.096475][   T30]  #0: ffff888079c9e258 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x32/0xcb0
[  799.112630][   T30] 1 lock held by dhcpcd/18557:
[  799.117421][   T30]  #0: ffff888084894258 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x32/0xcb0
[  799.132502][   T30] 1 lock held by dhcpcd/18558:
[  799.137293][   T30]  #0: ffff888034682258 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x32/0xcb0
[  799.156586][   T30] 1 lock held by dhcpcd/18559:
[  799.161390][   T30]  #0: ffff888054210258 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x32/0xcb0
[  799.177860][   T30] 1 lock held by syz-executor/18563:
[  799.183187][   T30]  #0: ffffffff8fcb2b88 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[  799.201482][   T30] 4 locks held by kworker/u9:2/18565:
[  799.211759][   T30]  #0: ffff88806cee2148 ((wq_completion)hci10){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1840
[  799.225438][   T30]  #1: ffffc900056efd00 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1840
[  799.247766][   T30]  #2: ffff888011f08d80 (&hdev->req_lock){+.+.}-{4:4}, at: hci_cmd_sync_work+0x1ec/0x400
[  799.257726][   T30]  #3: ffff888011f08078 (&hdev->lock){+.+.}-{4:4}, at: hci_abort_conn_sync+0x1e4/0x11f0
[  799.285172][   T30] 1 lock held by syz-executor/18566:
[  799.292053][   T30]  #0: ffffffff8fcb2b88 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[  799.307484][   T30] 1 lock held by syz-executor/18570:
[  799.323060][   T30]  #0: ffffffff8fcb2b88 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[  799.332591][   T30] 1 lock held by syz-executor/18573:
[  799.350824][   T30]  #0: ffffffff8fcb2b88 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[  799.366527][   T30] 1 lock held by syz-executor/18576:
[  799.371857][   T30]  #0: ffffffff8fcb2b88 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[  799.389000][   T30] 1 lock held by syz-executor/18578:
[  799.394337][   T30]  #0: ffffffff8fcb2b88 (rtnl_mutex){+.+.}-{4:4}, at: inet_rtm_newaddr+0x47e/0x1bd0
[  799.410665][   T30] 4 locks held by kworker/u9:3/18580:
[  799.416072][   T30]  #0: ffff88807ab2d148 ((wq_completion)hci11){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1840
[  799.438060][   T30]  #1: ffffc90004e0fd00 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1840
[  799.453525][   T30]  #2: ffff88807d0f8d80 (&hdev->req_lock){+.+.}-{4:4}, at: hci_cmd_sync_work+0x1ec/0x400
[  799.476212][   T30]  #3: ffff88807d0f8078 (&hdev->lock){+.+.}-{4:4}, at: hci_abort_conn_sync+0x1e4/0x11f0
[  799.491357][   T30] 4 locks held by kworker/u9:5/18581:
[  799.503221][   T30]  #0: ffff888043af0148 ((wq_completion)hci7){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1840
[  799.523329][   T30]  #1: ffffc90004e1fd00 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1840
[  799.542208][   T30]  #2: ffff888039cbcd80 (&hdev->req_lock){+.+.}-{4:4}, at: hci_cmd_sync_work+0x1ec/0x400
[  799.556225][   T30]  #3: ffff888039cbc078 (&hdev->lock){+.+.}-{4:4}, at: hci_abort_conn_sync+0x1e4/0x11f0
[  799.570214][   T30] 
[  799.572670][   T30] =============================================
[  799.572670][   T30] 
[  799.592873][   T30] NMI backtrace for cpu 0
[  799.597316][   T30] CPU: 0 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.13.0-rc5-syzkaller-00012-g0bc21e701a6f #0
[  799.607861][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  799.617953][   T30] Call Trace:
[  799.621261][   T30]  <TASK>
[  799.624234][   T30]  dump_stack_lvl+0x241/0x360
[  799.628971][   T30]  ? __pfx_dump_stack_lvl+0x10/0x10
[  799.634224][   T30]  ? __pfx__printk+0x10/0x10
[  799.638885][   T30]  nmi_cpu_backtrace+0x49c/0x4d0
[  799.643909][   T30]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  799.649434][   T30]  ? _printk+0xd5/0x120
[  799.653657][   T30]  ? __pfx__printk+0x10/0x10
[  799.658311][   T30]  ? __wake_up_klogd+0xcc/0x110
[  799.663229][   T30]  ? __pfx__printk+0x10/0x10
[  799.667880][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  799.673572][   T30]  ? __rcu_read_unlock+0xa1/0x110
[  799.678675][   T30]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  799.684714][   T30]  nmi_trigger_cpumask_backtrace+0x198/0x320
[  799.690771][   T30]  watchdog+0xff6/0x1040
[  799.695096][   T30]  ? watchdog+0x1ea/0x1040
[  799.699601][   T30]  ? __pfx_watchdog+0x10/0x10
[  799.704361][   T30]  kthread+0x2f2/0x390
[  799.708500][   T30]  ? __pfx_watchdog+0x10/0x10
[  799.713238][   T30]  ? __pfx_kthread+0x10/0x10
[  799.717896][   T30]  ret_from_fork+0x4d/0x80
[  799.722387][   T30]  ? __pfx_kthread+0x10/0x10
[  799.727067][   T30]  ret_from_fork_asm+0x1a/0x30
[  799.731897][   T30]  </TASK>
[  799.735601][   T30] Sending NMI from CPU 0 to CPUs 1:
[  799.740931][    C1] NMI backtrace for cpu 1
[  799.740950][    C1] CPU: 1 UID: 0 PID: 1160 Comm: kworker/1:2 Not tainted 6.13.0-rc5-syzkaller-00012-g0bc21e701a6f #0
[  799.740979][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  799.740996][    C1] Workqueue: wg-crypt-wg0 wg_packet_tx_worker
[  799.741039][    C1] RIP: 0010:lock_release+0x1af/0xa30
[  799.741072][    C1] Code: c7 84 24 b0 00 00 00 00 00 00 00 9c 8f 84 24 b0 00 00 00 42 80 3c 3b 00 74 08 4c 89 f7 e8 49 04 8b 00 48 8b 9c 24 b0 00 00 00 <fa> 48 c7 c7 20 a6 0a 8c e8 64 f1 4d 0a 65 ff 05 cd b2 87 7e 48 8d
[  799.741094][    C1] RSP: 0018:ffffc90000a186c0 EFLAGS: 00000046
[  799.741115][    C1] RAX: ffffffff93e14750 RBX: 0000000000000046 RCX: ffffffff817ad6a0
[  799.741134][    C1] RDX: 0000000000000000 RSI: ffffffff8c5fb0c0 RDI: ffffffff8c5fb080
[  799.741153][    C1] RBP: ffffc90000a18800 R08: ffffffff90197e77 R09: 1ffffffff2032fce
[  799.741172][    C1] R10: dffffc0000000000 R11: fffffbfff2032fcf R12: 1ffff920001430e4
[  799.741191][    C1] R13: ffffffff819f8698 R14: ffffc90000a18770 R15: dffffc0000000000
[  799.741214][    C1] FS:  0000000000000000(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
[  799.741235][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  799.741252][    C1] CR2: 00005555611b6808 CR3: 000000000e736000 CR4: 0000000000350ef0
[  799.741272][    C1] Call Trace:
[  799.741281][    C1]  <NMI>
[  799.741293][    C1]  ? nmi_cpu_backtrace+0x3c2/0x4d0
[  799.741324][    C1]  ? __pfx_lock_acquire+0x10/0x10
[  799.741354][    C1]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  799.741384][    C1]  ? nmi_handle+0x2a/0x5a0
[  799.741425][    C1]  ? nmi_cpu_backtrace_handler+0xc/0x20
[  799.741450][    C1]  ? nmi_handle+0x151/0x5a0
[  799.741479][    C1]  ? nmi_handle+0x2a/0x5a0
[  799.741510][    C1]  ? lock_release+0x1af/0xa30
[  799.741538][    C1]  ? default_do_nmi+0x63/0x160
[  799.741566][    C1]  ? exc_nmi+0x123/0x1f0
[  799.741593][    C1]  ? end_repeat_nmi+0xf/0x53
[  799.741617][    C1]  ? kcov_remote_stop+0x78/0x6e0
[  799.741649][    C1]  ? lock_release+0xb0/0xa30
[  799.741678][    C1]  ? lock_release+0x1af/0xa30
[  799.741707][    C1]  ? lock_release+0x1af/0xa30
[  799.741737][    C1]  ? lock_release+0x1af/0xa30
[  799.741766][    C1]  </NMI>
[  799.741774][    C1]  <IRQ>
[  799.741786][    C1]  ? __pfx_lock_acquire+0x10/0x10
[  799.741815][    C1]  ? kcov_remote_stop+0x78/0x6e0
[  799.741841][    C1]  ? do_raw_spin_unlock+0x13c/0x8b0
[  799.741865][    C1]  ? __pfx_lock_release+0x10/0x10
[  799.741896][    C1]  ? _raw_spin_lock_irqsave+0xe1/0x120
[  799.741930][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  799.741955][    C1]  ? usb_submit_urb+0x10e4/0x1930
[  799.741993][    C1]  ? kcov_remote_start+0x97/0x7d0
[  799.742024][    C1]  ? kcov_remote_stop+0x78/0x6e0
[  799.742052][    C1]  kcov_remote_stop+0x172/0x6e0
[  799.742079][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  799.742103][    C1]  ? ath9k_hif_usb_reg_in_cb+0x53a/0x6e0
[  799.742142][    C1]  ? usb_unanchor_urb+0x7d/0xc0
[  799.742181][    C1]  __usb_hcd_giveback_urb+0x460/0x6e0
[  799.742216][    C1]  ? __pfx___usb_hcd_giveback_urb+0x10/0x10
[  799.742251][    C1]  ? do_raw_spin_unlock+0x13c/0x8b0
[  799.742274][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  799.742304][    C1]  dummy_timer+0x856/0x4620
[  799.742329][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  799.742359][    C1]  ? debug_object_deactivate+0x2d5/0x390
[  799.742412][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  799.742455][    C1]  ? __pfx_dummy_timer+0x10/0x10
[  799.742484][    C1]  ? __pfx_dummy_timer+0x10/0x10
[  799.742508][    C1]  __hrtimer_run_queues+0x59d/0xd30
[  799.742544][    C1]  ? ktime_get_update_offsets_now+0x2d/0x3b0
[  799.742585][    C1]  ? __pfx___hrtimer_run_queues+0x10/0x10
[  799.742620][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  799.742644][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  799.742668][    C1]  ? ktime_get_update_offsets_now+0x393/0x3b0
[  799.742702][    C1]  hrtimer_run_softirq+0x19a/0x2c0
[  799.742741][    C1]  handle_softirqs+0x2d6/0x9b0
[  799.742780][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  799.742809][    C1]  ? __irq_exit_rcu+0xf7/0x220
[  799.742849][    C1]  ? __pfx_handle_softirqs+0x10/0x10
[  799.742893][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  799.742918][    C1]  ? irqtime_account_irq+0xd4/0x1e0
[  799.742951][    C1]  __irq_exit_rcu+0xf7/0x220
[  799.742988][    C1]  ? __pfx___irq_exit_rcu+0x10/0x10
[  799.743029][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  799.743056][    C1]  irq_exit_rcu+0x9/0x30
[  799.743091][    C1]  sysvec_apic_timer_interrupt+0xa6/0xc0
[  799.743124][    C1]  </IRQ>
[  799.743132][    C1]  <TASK>
[  799.743142][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  799.743180][    C1] RIP: 0010:__local_bh_enable_ip+0x170/0x200
[  799.743219][    C1] Code: 8c e8 e4 03 67 0a 65 66 8b 05 f4 10 a2 7e 66 85 c0 75 5d bf 01 00 00 00 e8 1d bd 0b 00 e8 c8 68 45 00 fb 65 8b 05 b8 10 a2 7e <85> c0 75 05 e8 37 82 a8 ff 48 c7 44 24 20 0e 36 e0 45 49 c7 04 1c
[  799.743239][    C1] RSP: 0018:ffffc9000413fa80 EFLAGS: 00000282
[  799.743259][    C1] RAX: 0000000080000000 RBX: 1ffff92000827f54 RCX: ffffffff817b274a
[  799.743278][    C1] RDX: dffffc0000000000 RSI: ffffffff8c0a98e0 RDI: ffffffff8c5fb0e0
[  799.743298][    C1] RBP: ffffc9000413fb40 R08: ffffffff942a49a7 R09: 1ffffffff2854934
[  799.743317][    C1] R10: dffffc0000000000 R11: fffffbfff2854935 R12: dffffc0000000000
[  799.743336][    C1] R13: 1ffff92000827f58 R14: ffffc9000413fac0 R15: 0000000000000200
[  799.743362][    C1]  ? mark_lock+0x9a/0x360
[  799.743397][    C1]  ? wg_packet_tx_worker+0x25f/0x810
[  799.743435][    C1]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  799.743471][    C1]  ? rcu_read_lock_bh_held+0x7e/0x120
[  799.743509][    C1]  ? __pfx_rcu_read_lock_bh_held+0x10/0x10
[  799.743547][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  799.743575][    C1]  ? wg_packet_tx_worker+0x25f/0x810
[  799.743612][    C1]  wg_packet_tx_worker+0x5ef/0x810
[  799.743649][    C1]  ? wg_packet_tx_worker+0x25f/0x810
[  799.743688][    C1]  ? process_scheduled_works+0x976/0x1840
[  799.743714][    C1]  process_scheduled_works+0xa68/0x1840
[  799.743758][    C1]  ? __pfx_process_scheduled_works+0x10/0x10
[  799.743789][    C1]  ? assign_work+0x364/0x3d0
[  799.743816][    C1]  worker_thread+0x870/0xd30
[  799.743851][    C1]  ? __kthread_parkme+0x169/0x1d0
[  799.743886][    C1]  ? __pfx_worker_thread+0x10/0x10
[  799.743912][    C1]  kthread+0x2f2/0x390
[  799.743941][    C1]  ? __pfx_worker_thread+0x10/0x10
[  799.743966][    C1]  ? __pfx_kthread+0x10/0x10
[  799.743997][    C1]  ret_from_fork+0x4d/0x80
[  799.744022][    C1]  ? __pfx_kthread+0x10/0x10
[  799.744052][    C1]  ret_from_fork_asm+0x1a/0x30
[  799.744086][    C1]  </TASK>
[  800.463252][   T30] Kernel panic - not syncing: hung_task: blocked tasks
[  800.470216][   T30] CPU: 0 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.13.0-rc5-syzkaller-00012-g0bc21e701a6f #0
[  800.480758][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  800.490853][   T30] Call Trace:
[  800.494161][   T30]  <TASK>
[  800.497116][   T30]  dump_stack_lvl+0x241/0x360
[  800.501850][   T30]  ? __pfx_dump_stack_lvl+0x10/0x10
[  800.507104][   T30]  ? __pfx__printk+0x10/0x10
[  800.511739][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  800.517777][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  800.523456][   T30]  ? vscnprintf+0x5d/0x90
[  800.527833][   T30]  panic+0x349/0x880
[  800.531775][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  800.537447][   T30]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[  800.543656][   T30]  ? __pfx_panic+0x10/0x10
[  800.548117][   T30]  ? tick_nohz_tick_stopped+0x82/0xb0
[  800.553537][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  800.559207][   T30]  ? __irq_work_queue_local+0x137/0x410
[  800.564799][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  800.570466][   T30]  ? preempt_schedule_thunk+0x1a/0x30
[  800.575879][   T30]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[  800.582070][   T30]  ? nmi_trigger_cpumask_backtrace+0x2d4/0x320
[  800.588265][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  800.593930][   T30]  ? nmi_trigger_cpumask_backtrace+0x2d9/0x320
[  800.600130][   T30]  watchdog+0x1035/0x1040
[  800.604500][   T30]  ? watchdog+0x1ea/0x1040
[  800.608965][   T30]  ? __pfx_watchdog+0x10/0x10
[  800.613678][   T30]  kthread+0x2f2/0x390
[  800.617783][   T30]  ? __pfx_watchdog+0x10/0x10
[  800.622500][   T30]  ? __pfx_kthread+0x10/0x10
[  800.627132][   T30]  ret_from_fork+0x4d/0x80
[  800.631580][   T30]  ? __pfx_kthread+0x10/0x10
[  800.636212][   T30]  ret_from_fork_asm+0x1a/0x30
[  800.641019][   T30]  </TASK>
[  800.645728][   T30] Kernel Offset: disabled
[  800.650059][   T30] Rebooting in 86400 seconds..