last executing test programs:

3.665165514s ago: executing program 0 (id=579):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800714, &(0x7f0000000500), 0xff, 0x485, &(0x7f0000001500)="$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")
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, 0x0, 0x0, 0x0, 0x0)
chdir(&(0x7f0000000140)='./bus\x00')
symlink(&(0x7f0000000540)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000800)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

3.25306482s ago: executing program 0 (id=581):
syz_mount_image$btrfs(&(0x7f00000055c0), &(0x7f0000000040)='./bus\x00', 0x18, &(0x7f0000000300)={[{@space_cache_v1}, {@nossd_spread}, {@ref_verify}, {@compress_algo={'compress', 0x3d, 'zlib'}}, {@clear_cache}, {@noacl}, {@nodatacow}, {@barrier}, {@ref_verify}]}, 0x1, 0x55ae, &(0x7f000000ac40)="$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")
r0 = open(&(0x7f0000000000)='./bus\x00', 0x64942, 0x0)
r1 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
write$tcp_congestion(r0, &(0x7f00000001c0)='vegas\x00', 0x6)
pwritev2(r1, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x78c00}], 0x1, 0x2000, 0x0, 0x3)

3.25275312s ago: executing program 1 (id=585):
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
sendmsg$AUDIT_ADD_RULE(0xffffffffffffffff, 0x0, 0x0)
syz_usb_disconnect(r0)
syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f0000000100)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x8, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x5c, 0x2, 0x1, 0x2, 0x0, 0x7b, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5}, {0xd, 0x24, 0xf, 0x1, 0xffffffff}, {0x6}}, {{0x9, 0x5, 0x81, 0x3, 0x8}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x200}}, {{0x9, 0x5, 0x3, 0x2, 0x10, 0x0, 0xb}}}}}}}]}}, 0x0)
ioctl$EVIOCRMFF(r0, 0xc0085508, &(0x7f0000000500)=0x18)

2.59967513s ago: executing program 2 (id=592):
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan0\x00'})
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f0000000080)='cpu.idle\x00', 0x2, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000100)=ANY=[@ANYBLOB='-0'], 0x9)

2.449012083s ago: executing program 2 (id=594):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000200)=@newqdisc={0x38, 0x24, 0xd0f, 0x3, 0x0, {0x60, 0x0, 0x0, r2, {0x0, 0x2}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x4}}]}, 0x38}, 0x1, 0x0, 0x0, 0x40001d4}, 0x8840)
sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[], 0xb4}}, 0x0)

2.244067846s ago: executing program 2 (id=596):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_BINDTODEVICE_wg(r0, 0x1, 0x19, &(0x7f00000003c0)='wg1\x00', 0x4)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @rand_addr=0x64010100}, 0x10)
setsockopt$inet_mtu(r0, 0x0, 0xa, &(0x7f0000000100)=0x3, 0x4)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x0)

2.204327906s ago: executing program 3 (id=597):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000600)={0x30, r1, 0x1, 0x80000000, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_MESH_CONFIG={0x14, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_HT_OPMODE={0x6, 0x16, 0x3}, @NL80211_MESHCONF_CONNECTED_TO_AS={0x5, 0x1f, 0x1}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x4040000}, 0x0)

1.920415561s ago: executing program 3 (id=598):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), r1)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000380)=ANY=[@ANYBLOB="98030000", @ANYRES16=r2, @ANYBLOB="010028057000fcdbdf253b00000008000300", @ANYRES32=r3, @ANYBLOB="04008e00080057001b0a000004006c000500190107000000080026006c090000560333"], 0x398}}, 0x0)

1.740654063s ago: executing program 2 (id=599):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2}, 0x1c)
sendto$inet6(r0, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x18115, @rand_addr, 0x983a}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000000140)=[{&(0x7f00000001c0)="580000001400192340834b80040d8c560a067f0202ff004003000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100030c10000000224e00000000", 0x58}], 0x1)

1.566502016s ago: executing program 3 (id=600):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="0b000000080000000c000000ffbfffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000810018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r1, 0x2000002, 0xe, 0x0, &(0x7f0000000200)="df12c9f7b9a60000000000000000", 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

1.482538597s ago: executing program 0 (id=601):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
writev(r0, &(0x7f00000002c0)=[{&(0x7f0000000a40)="2e9b3d0007e03dd65193dfb6c575963f86dd", 0x12}], 0x1)

1.465934017s ago: executing program 2 (id=602):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r1 = dup(r0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r1, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x17)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x17)

1.393436069s ago: executing program 1 (id=603):
r0 = socket$kcm(0x1e, 0x5, 0x0)
setsockopt$sock_attach_bpf(r0, 0x10f, 0x87, &(0x7f00000008c0), 0x43)
r1 = socket$kcm(0x1e, 0x4, 0x0)
setsockopt$sock_attach_bpf(r1, 0x10f, 0x87, &(0x7f00000008c0), 0x43)
sendmsg$kcm(r0, &(0x7f0000000100)={&(0x7f00000004c0)=@tipc=@nameseq={0x1e, 0x1, 0x3, {0x2, 0x0, 0x1}}, 0x80, 0x0}, 0x0)

1.385512899s ago: executing program 3 (id=604):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000100)={0x2, 0x3, 0x0, 0x3, 0xb, 0x0, 0x0, 0x0, [@sadb_key={0x1, 0x9}, @sadb_address={0x3, 0x6}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x6, 0xb}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @local={0xac, 0x14, 0x1d}}}]}, 0x58}, 0x1, 0x7}, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
socket$alg(0x26, 0x5, 0x0)
sendmsg$nl_xfrm(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000007c0)=ANY=[], 0x144}}, 0x0)

818.994068ms ago: executing program 0 (id=605):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000200)=@newqdisc={0x38, 0x24, 0xd0f, 0x3, 0x0, {0x60, 0x0, 0x0, r2, {0x0, 0x2}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x4}}]}, 0x38}, 0x1, 0x0, 0x0, 0x40001d4}, 0x8840)
sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[], 0xb4}}, 0x0)

816.975398ms ago: executing program 1 (id=613):
r0 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=@newqdisc={0x60, 0x24, 0xd0f, 0x70bd2d, 0x0, {0x60, 0x0, 0x0, r2, {0x0, 0xa}, {0xffff, 0xffff}, {0x0, 0xffff}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x34, 0x2, [@TCA_TBF_PARMS={0x28, 0x1, {{0xea, 0x0, 0x0, 0x0, 0x9, 0x5}, {0x12, 0x2, 0x0, 0x401, 0x8001, 0x1400}, 0xa5, 0x5, 0x10000000}}, @TCA_TBF_BURST={0x8, 0x6, 0x8057}]}}]}, 0x60}}, 0x44080)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000300)=@newqdisc={0x34, 0x24, 0xd0f, 0x70bd25, 0x0, {0x60, 0x0, 0x0, r2, {}, {0xffe0, 0xa}, {0x0, 0x10}}, [@qdisc_kind_options=@q_codel={{0xa}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x55}, 0x4000)

378.817214ms ago: executing program 2 (id=606):
syz_mount_image$jfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x4000, &(0x7f00000000c0)=ANY=[], 0x1, 0x6014, &(0x7f000000a280)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000300)='./file1\x00', 0xc4042, 0x1ff)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
sendfile(r0, r1, 0x0, 0xfffe82)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x181242, 0x0)

378.479104ms ago: executing program 3 (id=607):
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x12, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x1, 0x803, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=@newlink={0x60, 0x10, 0xf11, 0x0, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, 0x104}, [@IFLA_LINKINFO={0x30, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x20, 0x2, 0x0, 0x1, [@IFLA_VLAN_FLAGS={0xc, 0x2, {0x1b, 0x1d}}, @IFLA_VLAN_ID={0x6}, @IFLA_VLAN_PROTOCOL={0x6, 0x5, 0x88a8}]}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x60}}, 0x0)

373.424794ms ago: executing program 0 (id=608):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_MP_STATE(r2, 0x4004ae99, &(0x7f0000000140)=0x2)

372.670184ms ago: executing program 1 (id=609):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), r1)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000380)=ANY=[@ANYBLOB="98030000", @ANYRES16=r2, @ANYBLOB="010028057000fcdbdf253b00000008000300", @ANYRES32=r3, @ANYBLOB="04008e00080057001b0a000004006c000500190107000000080026006c090000560333"], 0x398}}, 0x0)

272.613486ms ago: executing program 1 (id=610):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r0, &(0x7f0000000180)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r0, 0x0)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x3, 0x8, 0x0)

147.114138ms ago: executing program 1 (id=611):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000d84000)={0xa, 0x2}, 0x1c)
sendto$inet6(r0, &(0x7f0000f6f000), 0xfffffffffffffea7, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2, 0x18115, @rand_addr, 0x983a}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000000140)=[{&(0x7f00000001c0)="580000001400192340834b80040d8c560a067f0202ff004003000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100030c10000000224e00000000", 0x58}], 0x1)

101.819718ms ago: executing program 0 (id=612):
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendmmsg$inet6(r0, &(0x7f0000000640)=[{{&(0x7f0000000300)={0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, 0x1c, &(0x7f0000000740)=[{&(0x7f0000000700)='k', 0x1}], 0x1}}], 0x1, 0x0)
shutdown(r0, 0x1)
getsockopt$bt_hci(r0, 0x84, 0x0, &(0x7f00000010c0)=""/4104, &(0x7f0000000000)=0x1008)

0s ago: executing program 3 (id=614):
r0 = syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000500)=ANY=[@ANYBLOB="12010000000000207d1e5a2d00000000000109022400010000000009040000010300000009210000000122080009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000140)={0x24, 0x0, 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="002208000000a20100c3"], 0x0}, 0x0)
r1 = syz_open_dev$hiddev(&(0x7f0000000080), 0x0, 0x0)
ioctl$HIDIOCGCOLLECTIONINFO(r1, 0xc0104811, &(0x7f0000000040)={0x7, 0x2475, 0xfffffff9, 0x6})

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.10.5' (ED25519) to the list of known hosts.
syzkaller login: [   63.209650][ T5755] cgroup: Unknown subsys name 'net'
[   63.350203][ T5755] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   64.715070][ T5755] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   66.024349][ T5766] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   66.034261][ T5766] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   66.044443][ T5766] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   66.055384][ T5770] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   66.063031][ T5770] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   66.070554][ T5770] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   66.079900][ T5087] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   66.109352][ T5772] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   66.134410][ T5772] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   66.142366][ T5772] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   66.149861][ T5770] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   66.152073][ T5772] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   66.164982][ T5770] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   66.165444][ T5772] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   66.181332][   T50] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   66.189454][   T50] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   66.197150][ T5772] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   66.204556][   T50] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   66.227185][ T5777] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   66.240505][ T5777] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   66.248257][ T5777] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   66.256966][ T5777] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   66.270413][ T5777] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   66.278078][ T5777] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   66.656350][ T5771] chnl_net:caif_netlink_parms(): no params data found
[   66.736421][ T5768] chnl_net:caif_netlink_parms(): no params data found
[   66.793197][ T5765] chnl_net:caif_netlink_parms(): no params data found
[   66.864627][ T5771] bridge0: port 1(bridge_slave_0) entered blocking state
[   66.872301][ T5771] bridge0: port 1(bridge_slave_0) entered disabled state
[   66.880753][ T5771] bridge_slave_0: entered allmulticast mode
[   66.887903][ T5771] bridge_slave_0: entered promiscuous mode
[   66.897283][ T5771] bridge0: port 2(bridge_slave_1) entered blocking state
[   66.904532][ T5771] bridge0: port 2(bridge_slave_1) entered disabled state
[   66.911697][ T5771] bridge_slave_1: entered allmulticast mode
[   66.918678][ T5771] bridge_slave_1: entered promiscuous mode
[   66.973471][ T5771] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   66.996696][ T5774] chnl_net:caif_netlink_parms(): no params data found
[   67.014617][ T5771] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   67.045404][ T5768] bridge0: port 1(bridge_slave_0) entered blocking state
[   67.052678][ T5768] bridge0: port 1(bridge_slave_0) entered disabled state
[   67.059970][ T5768] bridge_slave_0: entered allmulticast mode
[   67.067208][ T5768] bridge_slave_0: entered promiscuous mode
[   67.101402][ T5765] bridge0: port 1(bridge_slave_0) entered blocking state
[   67.108651][ T5765] bridge0: port 1(bridge_slave_0) entered disabled state
[   67.115859][ T5765] bridge_slave_0: entered allmulticast mode
[   67.122519][ T5765] bridge_slave_0: entered promiscuous mode
[   67.130282][ T5768] bridge0: port 2(bridge_slave_1) entered blocking state
[   67.137585][ T5768] bridge0: port 2(bridge_slave_1) entered disabled state
[   67.146296][ T5768] bridge_slave_1: entered allmulticast mode
[   67.152994][ T5768] bridge_slave_1: entered promiscuous mode
[   67.179557][ T5765] bridge0: port 2(bridge_slave_1) entered blocking state
[   67.186818][ T5765] bridge0: port 2(bridge_slave_1) entered disabled state
[   67.194194][ T5765] bridge_slave_1: entered allmulticast mode
[   67.200854][ T5765] bridge_slave_1: entered promiscuous mode
[   67.230243][ T5771] team0: Port device team_slave_0 added
[   67.238955][ T5771] team0: Port device team_slave_1 added
[   67.287970][ T5765] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   67.299920][ T5765] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   67.311449][ T5768] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   67.362777][ T5768] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   67.374368][ T5771] batman_adv: batadv0: Adding interface: batadv_slave_0
[   67.381587][ T5771] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   67.408063][ T5771] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   67.420137][ T5774] bridge0: port 1(bridge_slave_0) entered blocking state
[   67.427326][ T5774] bridge0: port 1(bridge_slave_0) entered disabled state
[   67.434579][ T5774] bridge_slave_0: entered allmulticast mode
[   67.441249][ T5774] bridge_slave_0: entered promiscuous mode
[   67.467926][ T5771] batman_adv: batadv0: Adding interface: batadv_slave_1
[   67.475249][ T5771] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   67.501541][ T5771] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   67.518305][ T5774] bridge0: port 2(bridge_slave_1) entered blocking state
[   67.525929][ T5774] bridge0: port 2(bridge_slave_1) entered disabled state
[   67.533071][ T5774] bridge_slave_1: entered allmulticast mode
[   67.540795][ T5774] bridge_slave_1: entered promiscuous mode
[   67.549480][ T5765] team0: Port device team_slave_0 added
[   67.558550][ T5765] team0: Port device team_slave_1 added
[   67.600836][ T5768] team0: Port device team_slave_0 added
[   67.609132][ T5768] team0: Port device team_slave_1 added
[   67.671221][ T5774] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   67.681337][ T5765] batman_adv: batadv0: Adding interface: batadv_slave_0
[   67.688565][ T5765] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   67.715375][ T5765] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   67.728767][ T5765] batman_adv: batadv0: Adding interface: batadv_slave_1
[   67.735772][ T5765] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   67.762741][ T5765] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   67.787857][ T5768] batman_adv: batadv0: Adding interface: batadv_slave_0
[   67.795056][ T5768] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   67.820987][ T5768] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   67.833897][ T5774] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   67.860472][ T5771] hsr_slave_0: entered promiscuous mode
[   67.867818][ T5771] hsr_slave_1: entered promiscuous mode
[   67.875865][ T5768] batman_adv: batadv0: Adding interface: batadv_slave_1
[   67.882813][ T5768] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   67.909274][ T5768] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   67.950278][ T5774] team0: Port device team_slave_0 added
[   67.959428][ T5774] team0: Port device team_slave_1 added
[   68.007716][ T5765] hsr_slave_0: entered promiscuous mode
[   68.014819][ T5765] hsr_slave_1: entered promiscuous mode
[   68.020980][ T5765] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   68.029545][ T5765] Cannot create hsr debugfs directory
[   68.065970][ T5774] batman_adv: batadv0: Adding interface: batadv_slave_0
[   68.073109][ T5774] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   68.099388][ T5774] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   68.145902][ T5774] batman_adv: batadv0: Adding interface: batadv_slave_1
[   68.152870][ T5774] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   68.181020][ T5774] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   68.191938][ T5777] Bluetooth: hci0: command tx timeout
[   68.202708][ T5768] hsr_slave_0: entered promiscuous mode
[   68.208946][ T5768] hsr_slave_1: entered promiscuous mode
[   68.215788][ T5768] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   68.223346][ T5768] Cannot create hsr debugfs directory
[   68.254177][ T5777] Bluetooth: hci2: command tx timeout
[   68.344356][ T5770] Bluetooth: hci1: command tx timeout
[   68.350124][ T5777] Bluetooth: hci3: command tx timeout
[   68.358592][ T5774] hsr_slave_0: entered promiscuous mode
[   68.365560][ T5774] hsr_slave_1: entered promiscuous mode
[   68.371723][ T5774] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   68.379568][ T5774] Cannot create hsr debugfs directory
[   68.585266][ T5765] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   68.608853][ T5765] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   68.618484][ T5765] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   68.638706][ T5765] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   68.705313][ T5771] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   68.721834][ T5771] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   68.745368][ T5771] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   68.756191][ T5771] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   68.816150][ T5768] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   68.848051][ T5768] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   68.858417][ T5768] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   68.869384][ T5768] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   68.963022][ T5765] 8021q: adding VLAN 0 to HW filter on device bond0
[   68.971065][ T5774] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   68.982401][ T5774] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   69.005778][ T5774] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   69.015243][ T5774] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   69.048982][ T5765] 8021q: adding VLAN 0 to HW filter on device team0
[   69.077852][ T1133] bridge0: port 1(bridge_slave_0) entered blocking state
[   69.085133][ T1133] bridge0: port 1(bridge_slave_0) entered forwarding state
[   69.112599][ T3446] bridge0: port 2(bridge_slave_1) entered blocking state
[   69.119704][ T3446] bridge0: port 2(bridge_slave_1) entered forwarding state
[   69.179271][ T5771] 8021q: adding VLAN 0 to HW filter on device bond0
[   69.212602][ T5771] 8021q: adding VLAN 0 to HW filter on device team0
[   69.236911][ T1133] bridge0: port 1(bridge_slave_0) entered blocking state
[   69.243991][ T1133] bridge0: port 1(bridge_slave_0) entered forwarding state
[   69.265015][ T3491] bridge0: port 2(bridge_slave_1) entered blocking state
[   69.272086][ T3491] bridge0: port 2(bridge_slave_1) entered forwarding state
[   69.308053][ T5768] 8021q: adding VLAN 0 to HW filter on device bond0
[   69.360366][ T5768] 8021q: adding VLAN 0 to HW filter on device team0
[   69.401265][ T3491] bridge0: port 1(bridge_slave_0) entered blocking state
[   69.408494][ T3491] bridge0: port 1(bridge_slave_0) entered forwarding state
[   69.452181][ T3491] bridge0: port 2(bridge_slave_1) entered blocking state
[   69.459314][ T3491] bridge0: port 2(bridge_slave_1) entered forwarding state
[   69.487613][ T5774] 8021q: adding VLAN 0 to HW filter on device bond0
[   69.588105][ T5768] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   69.610739][ T5774] 8021q: adding VLAN 0 to HW filter on device team0
[   69.676526][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[   69.683649][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[   69.702807][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[   69.710000][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[   69.741127][ T5765] 8021q: adding VLAN 0 to HW filter on device batadv0
[   69.873567][ T5771] 8021q: adding VLAN 0 to HW filter on device batadv0
[   69.986166][ T5765] veth0_vlan: entered promiscuous mode
[   70.028893][ T5765] veth1_vlan: entered promiscuous mode
[   70.042762][ T5771] veth0_vlan: entered promiscuous mode
[   70.079249][ T5768] 8021q: adding VLAN 0 to HW filter on device batadv0
[   70.092611][ T5771] veth1_vlan: entered promiscuous mode
[   70.157297][ T5765] veth0_macvtap: entered promiscuous mode
[   70.198690][ T5765] veth1_macvtap: entered promiscuous mode
[   70.211941][ T5768] veth0_vlan: entered promiscuous mode
[   70.238090][ T5768] veth1_vlan: entered promiscuous mode
[   70.250324][ T5765] batman_adv: batadv0: Interface activated: batadv_slave_0
[   70.265130][ T5777] Bluetooth: hci0: command tx timeout
[   70.280504][ T5765] batman_adv: batadv0: Interface activated: batadv_slave_1
[   70.292839][ T5774] 8021q: adding VLAN 0 to HW filter on device batadv0
[   70.312663][ T5765] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   70.321864][ T5765] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   70.331785][ T5765] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   70.342978][ T5765] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   70.352227][ T5777] Bluetooth: hci2: command tx timeout
[   70.373323][ T5771] veth0_macvtap: entered promiscuous mode
[   70.391892][ T5771] veth1_macvtap: entered promiscuous mode
[   70.414503][ T5777] Bluetooth: hci3: command tx timeout
[   70.414673][ T5770] Bluetooth: hci1: command tx timeout
[   70.461389][ T5771] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   70.473055][ T5771] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   70.486840][ T5771] batman_adv: batadv0: Interface activated: batadv_slave_0
[   70.499022][ T5768] veth0_macvtap: entered promiscuous mode
[   70.509192][ T5768] veth1_macvtap: entered promiscuous mode
[   70.552015][ T5771] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   70.562795][ T5771] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   70.574584][ T5771] batman_adv: batadv0: Interface activated: batadv_slave_1
[   70.619998][ T5771] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   70.629329][ T5771] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   70.638137][ T5771] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   70.647052][ T5771] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   70.661528][ T5774] veth0_vlan: entered promiscuous mode
[   70.679365][ T5768] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   70.685313][   T42] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   70.694110][ T5768] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   70.704640][   T42] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   70.708801][ T5768] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   70.725964][ T5768] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   70.738987][ T5768] batman_adv: batadv0: Interface activated: batadv_slave_0
[   70.783533][ T5774] veth1_vlan: entered promiscuous mode
[   70.792253][ T5768] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   70.802928][ T5768] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   70.814556][ T5768] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   70.825895][ T5768] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   70.837313][ T5768] batman_adv: batadv0: Interface activated: batadv_slave_1
[   70.849109][ T5768] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   70.857916][ T5768] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   70.866918][ T5768] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   70.876295][ T5768] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   70.914360][ T2993] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   70.946909][ T2993] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   71.025701][ T2993] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   71.047635][ T2993] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   71.094235][ T5774] veth0_macvtap: entered promiscuous mode
[   71.126881][   T42] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   71.144858][   T42] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   71.166072][ T1133] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   71.173894][ T1133] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   71.205453][ T5774] veth1_macvtap: entered promiscuous mode
[   71.242939][ T5858] syz.0.1[5858]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[   71.288731][ T5858] loop0: detected capacity change from 0 to 1024
[   71.292876][ T5774] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   71.316413][ T5774] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.326621][ T5774] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   71.337289][ T5774] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.347228][ T5774] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   71.358424][ T5774] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.383624][ T5774] batman_adv: batadv0: Interface activated: batadv_slave_0
[   71.395634][ T5774] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   71.408242][ T5774] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.419797][ T5774] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   71.431239][ T5774] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.441719][ T5774] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   71.452460][ T5774] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.466785][ T5774] batman_adv: batadv0: Interface activated: batadv_slave_1
[   71.477725][ T5774] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   71.487125][ T5774] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   71.506266][ T5774] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   71.524696][ T5774] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   71.546613][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   71.566595][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   71.624929][ T1280] ieee802154 phy0 wpan0: encryption failed: -22
[   71.631522][ T1280] ieee802154 phy1 wpan1: encryption failed: -22
[   71.801200][ T5864] loop1: detected capacity change from 0 to 1024
[   71.815994][ T5863] loop0: detected capacity change from 0 to 1024
[   71.842368][ T5864] EXT4-fs: Ignoring removed nobh option
[   71.849422][ T5864] EXT4-fs: Ignoring removed oldalloc option
[   71.869888][   T42] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   71.886948][ T5864] EXT4-fs: Ignoring removed bh option
[   71.909349][   T42] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   71.977746][ T5864] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: none.
[   71.990326][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   72.029849][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   72.288978][ T5876] loop2: detected capacity change from 0 to 1024
[   72.325241][ T5876] EXT4-fs: Ignoring removed oldalloc option
[   72.335871][ T5770] Bluetooth: hci0: command tx timeout
[   72.366570][ T5876] EXT4-fs (loop2): stripe (3) is not aligned with cluster size (16), stripe is disabled
[   72.372256][ T5771] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-001000000000.
[   72.414447][ T5770] Bluetooth: hci2: command tx timeout
[   72.422996][ T5876] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   72.494686][ T5770] Bluetooth: hci1: command tx timeout
[   72.500141][ T5770] Bluetooth: hci3: command tx timeout
[   72.595565][   T27] audit: type=1804 audit(1750349983.004:2): pid=5876 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.3" name="/newroot/0/file1/file1" dev="loop2" ino=15 res=1 errno=0
[   72.683727][ T5774] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.853690][ T5893] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   73.089066][ T5901] loop1: detected capacity change from 0 to 512
[   73.105324][ T5901] =======================================================
[   73.105324][ T5901] WARNING: The mand mount option has been deprecated and
[   73.105324][ T5901]          and is ignored by this kernel. Remove the mand
[   73.105324][ T5901]          option from the mount to silence this warning.
[   73.105324][ T5901] =======================================================
[   73.210468][ T5901] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   73.283050][ T5901] ext4 filesystem being mounted at /4/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   73.483611][ T5771] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.516328][ T5896] loop2: detected capacity change from 0 to 40427
[   73.538640][ T5896] F2FS-fs (loop2): heap/no_heap options were deprecated
[   73.626964][ T5915] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[   74.415237][ T5777] Bluetooth: hci0: command tx timeout
[   74.494607][ T5777] Bluetooth: hci2: command tx timeout
[   74.584256][ T5777] Bluetooth: hci3: command tx timeout
[   74.585743][ T5770] Bluetooth: hci1: command tx timeout
[   74.748516][ T5947] atomic_op ffff88802d9d8998 conn xmit_atomic 0000000000000000
[   74.782670][ T5931] loop2: detected capacity change from 0 to 32768
[   74.790986][ T5931] XFS: attr2 mount option is deprecated.
[   74.902201][ T5957] loop0: detected capacity change from 0 to 512
[   74.905247][ T5931] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   74.918755][ T5957] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   74.956367][ T5957] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   74.969974][ T5959] loop1: detected capacity change from 0 to 512
[   74.986951][ T5959] EXT4-fs: Ignoring removed bh option
[   75.022856][ T5957] EXT4-fs (loop0): 1 truncate cleaned up
[   75.034312][ T5959] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[   75.105382][ T5957] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   75.129083][ T5959] EXT4-fs (loop1): 1 truncate cleaned up
[   75.153702][ T5959] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   75.259573][ T5765] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.261911][ T5931] XFS (loop2): Ending clean mount
[   75.298197][ T5931] XFS (loop2): Quotacheck needed: Please wait.
[   75.387932][ T5771] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.413113][ T5854] IPVS: starting estimator thread 0...
[   75.413654][ T5931] XFS (loop2): Quotacheck: Done.
[   75.513041][ T5971] IPVS: using max 23 ests per chain, 55200 per kthread
[   75.574310][ T5931] XFS (loop2): User initiated shutdown received.
[   75.618854][ T5931] XFS (loop2): Log I/O Error (0x6) detected at xfs_fs_goingdown+0x71/0x150 (fs/xfs/xfs_fsops.c:501).  Shutting down filesystem.
[   75.620309][ T5978] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input5
[   75.665360][ T5931] XFS (loop2): Please unmount the filesystem and rectify the problem(s)
[   75.740290][ T5983] syz.0.46 uses obsolete (PF_INET,SOCK_PACKET)
[   75.779827][ T5774] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   76.587497][ T6003] PF_CAN: dropped non conform CAN FD skbuff: dev type 65534, len 64993
[   76.842306][ T6009] capability: warning: `syz.0.56' uses 32-bit capabilities (legacy support in use)
[   76.942072][ T6007] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present!
[   76.977944][ T6011] netlink: 12 bytes leftover after parsing attributes in process `syz.1.57'.
[   77.444858][ T6024] netlink: 8 bytes leftover after parsing attributes in process `syz.2.61'.
[   77.483765][ T6024] netlink: 4 bytes leftover after parsing attributes in process `syz.2.61'.
[   77.533653][ T6027] tipc: Started in network mode
[   77.555242][ T6027] tipc: Node identity 2000007, cluster identity 4711
[   77.561954][ T6027] tipc: Node number set to 33554439
[   77.629840][ T6001] loop3: detected capacity change from 0 to 40427
[   77.680241][ T6001] F2FS-fs (loop3): invalid crc value
[   77.771252][ T6036] batadv0: entered promiscuous mode
[   77.781537][ T6001] F2FS-fs (loop3): Found nat_bits in checkpoint
[   77.807269][ T6036] batadv_slave_1: entered promiscuous mode
[   77.825524][ T6034] batadv_slave_1: left promiscuous mode
[   77.855263][ T6034] batadv0: left promiscuous mode
[   77.910276][ T6039] loop0: detected capacity change from 0 to 1024
[   78.010532][ T6039] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   78.040344][ T6001] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[   78.086386][ T6039] ext4 filesystem being mounted at /22/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   78.285582][ T6039] EXT4-fs error (device loop0): ext4_map_blocks:718: inode #15: block 3: comm syz.0.65: lblock 3 mapped to illegal pblock 3 (length 13)
[   78.343982][ T6055] loop1: detected capacity change from 0 to 2048
[   78.354145][ T6056] EXT4-fs error (device loop0): ext4_map_blocks:608: inode #15: block 3: comm syz.0.65: lblock 3 mapped to illegal pblock 3 (length 1)
[   78.404102][ T6055] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024)
[   78.439678][ T6039] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 13 with error 117
[   78.517233][ T5779] udevd[5779]: incorrect nilfs2 checksum on /dev/loop1
[   78.539003][ T6060] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[   78.574158][ T6039] EXT4-fs (loop0): This should not happen!! Data will be lost
[   78.574158][ T6039] 
[   78.632742][ T6055] NILFS error (device loop1): nilfs_readdir: zero-length directory entry
[   78.680078][ T6055] Remounting filesystem read-only
[   78.721481][ T6063] process 'syz.2.70' launched './file1' with NULL argv: empty string added
[   78.749844][ T6052] syz.3.53: attempt to access beyond end of device
[   78.749844][ T6052] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   78.776188][ T5765] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   78.798520][ T6052] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[   80.161022][ T6109] netlink: 4 bytes leftover after parsing attributes in process `syz.1.85'.
[   80.191867][ T6109] netlink: 8 bytes leftover after parsing attributes in process `syz.1.85'.
[   80.220286][ T6089] loop2: detected capacity change from 0 to 32768
[   80.258810][ T6089] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   80.288780][ T6111] loop0: detected capacity change from 0 to 1024
[   80.328895][ T6111] ext4: Unknown parameter 'uid<00000000000000000000'
[   80.403076][ T6089] XFS (loop2): Ending clean mount
[   80.450860][ T6089] XFS (loop2): Quotacheck needed: Please wait.
[   80.554953][ T6089] XFS (loop2): Quotacheck: Done.
[   80.739723][   T27] audit: type=1804 audit(1750349991.144:3): pid=6089 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.78" name="/newroot/17/file0/bus" dev="loop2" ino=9291 res=1 errno=0
[   80.853684][ T5774] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   80.944880][ T5855] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[   81.144631][ T5855] usb 2-1: Using ep0 maxpacket: 32
[   81.166719][ T5855] usb 2-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   81.194305][ T5855] usb 2-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   81.218872][ T5855] usb 2-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[   81.229469][ T6141] netlink: 8 bytes leftover after parsing attributes in process `syz.3.97'.
[   81.244158][ T5855] usb 2-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0
[   81.259757][ T5855] usb 2-1: Product: syz
[   81.265431][ T5855] usb 2-1: Manufacturer: syz
[   81.285541][ T5855] hub 2-1:4.0: USB hub found
[   81.297946][ T6145] tipc: Started in network mode
[   81.302852][ T6145] tipc: Node identity 7f000001, cluster identity 4711
[   81.319166][ T6145] tipc: Enabled bearer <udp:syz2>, priority 10
[   81.531704][ T5855] hub 2-1:4.0: 2 ports detected
[   81.696499][ T6157] loop2: detected capacity change from 0 to 2048
[   81.729417][ T6157] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   81.850054][ T6157] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   81.864540][   T28] cfg80211: failed to load regulatory.db
[   81.934873][ T5774] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.104958][ T6166] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   82.167400][ T5855] usb 2-1: USB disconnect, device number 2
[   82.316334][    T8] tipc: Node number set to 2130706433
[   82.381490][ T6170] loop2: detected capacity change from 0 to 2048
[   82.428330][ T6162] loop3: detected capacity change from 0 to 32768
[   82.451323][ T6170] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[   82.528389][ T6162] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   82.649116][ T6162] XFS (loop3): Ending clean mount
[   82.673613][ T6162] XFS (loop3): Quotacheck needed: Please wait.
[   82.718583][ T6162] XFS (loop3): Quotacheck: Done.
[   82.829263][ T5768] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   82.996174][  T787] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[   83.015907][ T6190] loop1: detected capacity change from 0 to 512
[   83.036678][ T6190] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   83.063894][ T6190] EXT4-fs warning (device loop1): ext4_expand_extra_isize_ea:2867: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   83.080365][ T6190] EXT4-fs (loop1): 1 truncate cleaned up
[   83.087473][ T6190] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   83.149339][ T6190] EXT4-fs error (device loop1): mb_free_blocks:1943: group 0, inode 15: block 33:freeing already freed block (bit 32); block bitmap corrupt.
[   83.168153][ T6190] EXT4-fs (loop1): Remounting filesystem read-only
[   83.175144][ T6190] EXT4-fs warning (device loop1): ext4_evict_inode:272: xattr delete (err -5)
[   83.223124][ T5771] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.250714][  T787] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   83.279077][  T787] usb 3-1: New USB device found, idVendor=0079, idProduct=0006, bcdDevice= 0.00
[   83.289575][  T787] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   83.316711][  T787] usb 3-1: config 0 descriptor??
[   83.428989][ T6200] loop3: detected capacity change from 0 to 256
[   83.479687][ T6200] exFAT-fs (loop3): failed to load upcase table (idx : 0x00011a39, chksum : 0xd7c18d7b, utbl_chksum : 0xe619d30d)
[   83.580360][ T6200] exFAT-fs (loop3): error, invalid size(size(6940) > aligned(9223372036854777344)
[   83.580360][ T6200] 
[   83.592317][ T6200] exFAT-fs (loop3): Filesystem has been set read-only
[   83.674444][    T9] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[   83.818073][  T787] dragonrise 0003:0079:0006.0001: hidraw0: USB HID v0.00 Device [HID 0079:0006] on usb-dummy_hcd.2-1/input0
[   83.849484][  T787] dragonrise 0003:0079:0006.0001: no inputs found
[   83.860620][  T787] dragonrise 0003:0079:0006.0001: force feedback init failed
[   83.897610][ T6210] syzkaller1: entered promiscuous mode
[   83.903118][ T6210] syzkaller1: entered allmulticast mode
[   83.914656][    T9] usb 2-1: Using ep0 maxpacket: 16
[   83.924089][   T27] audit: type=1326 audit(1750349994.324:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6212 comm="syz.0.122" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f299c38e929 code=0x7ffc0000
[   83.932506][    T9] usb 2-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[   83.964105][   T27] audit: type=1326 audit(1750349994.324:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6212 comm="syz.0.122" exe="/root/syz-executor" sig=0 arch=c000003e syscall=27 compat=0 ip=0x7f299c38e929 code=0x7ffc0000
[   84.005643][    T9] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   84.047553][   T27] audit: type=1326 audit(1750349994.324:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6212 comm="syz.0.122" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f299c38e929 code=0x7ffc0000
[   84.075149][ T5829] usb 3-1: USB disconnect, device number 2
[   84.076535][    T9] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[   84.102432][    T9] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[   84.120548][   T27] audit: type=1326 audit(1750349994.334:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6212 comm="syz.0.122" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f299c38e929 code=0x7ffc0000
[   84.142914][    T9] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   84.158511][    T9] usb 2-1: Product: syz
[   84.163380][    T9] usb 2-1: Manufacturer: syz
[   84.169231][    T9] usb 2-1: SerialNumber: syz
[   84.252939][ T6218] vxcan1: tx drop: invalid sa for name 0x0000000000000002
[   84.598487][ T6232] program syz.3.129 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   84.607652][    T9] usb 2-1: 0:2 : does not exist
[   85.093494][ T6234] loop0: detected capacity change from 0 to 40427
[   85.108705][ T6234] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[   85.128715][ T6234] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[   85.139849][ T6234] F2FS-fs (loop0): invalid crc value
[   85.152534][ T6234] F2FS-fs (loop0): Found nat_bits in checkpoint
[   85.238663][    T9] usb 2-1: 1:0: failed to get current value for ch 0 (-22)
[   85.252904][ T6234] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[   85.263416][ T6234] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[   85.308647][    T9] usb 2-1: USB disconnect, device number 3
[   85.362140][ T5758] udevd[5758]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[   85.460760][ T6234] syz.0.130: attempt to access beyond end of device
[   85.460760][ T6234] loop0: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[   85.507827][ T1133] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[   85.522031][ T1133] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[   85.731715][ T6247] loop2: detected capacity change from 0 to 128
[   85.763379][ T6247] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   85.796361][ T6247] ext4 filesystem being mounted at /27/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   86.041771][ T5774] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   86.057017][ T6253] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[   86.496331][ T5770] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[   86.505129][ T5770] Bluetooth: hci0: Injecting HCI hardware error event
[   86.513551][ T5770] Bluetooth: hci0: hardware error 0x00
[   86.864309][  T968] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[   86.932573][ T6285] Illegal XDP return value 999235679 on prog  (id 18) dev syz_tun, expect packet loss!
[   86.934156][ T5829] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[   87.066674][  T968] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   87.083427][  T968] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   87.095549][  T968] usb 1-1: New USB device found, idVendor=28de, idProduct=1142, bcdDevice= 0.00
[   87.105560][  T968] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   87.120293][  T968] usb 1-1: config 0 descriptor??
[   87.137106][ T5829] usb 3-1: Using ep0 maxpacket: 32
[   87.147272][ T5829] usb 3-1: config 0 interface 0 has no altsetting 0
[   87.157770][ T5829] usb 3-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e
[   87.167733][ T5829] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   87.179373][ T5829] usb 3-1: Product: syz
[   87.183627][ T5829] usb 3-1: Manufacturer: syz
[   87.193054][ T5829] usb 3-1: SerialNumber: syz
[   87.213897][ T5829] usb 3-1: config 0 descriptor??
[   87.504504][    T9] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[   87.556396][  T968] hid-steam 0003:28DE:1142.0002: : USB HID v0.00 Device [HID 28de:1142] on usb-dummy_hcd.0-1/input0
[   87.643801][  T968] hid-steam 0003:28DE:1142.0002: Steam wireless receiver connected
[   87.660963][ T5829] gs_usb 3-1:0.0: Configuring for 1 interfaces
[   87.667271][  T968] hid-steam 0003:28DE:1142.0003: hidraw0: USB HID v0.00 Device [HID 28de:1142] on usb-dummy_hcd.0-1/input0
[   87.697683][ T6299] loop1: detected capacity change from 0 to 2048
[   87.714611][    T9] usb 4-1: Using ep0 maxpacket: 32
[   87.730216][ T6299] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[   87.745282][    T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   87.784138][    T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   87.816924][    T9] usb 4-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[   87.846963][    T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   87.863421][   T28] usb 1-1: USB disconnect, device number 2
[   87.882037][    T9] usb 4-1: config 0 descriptor??
[   87.931404][   T28] hid-steam 0003:28DE:1142.0002: Steam wireless receiver disconnected
[   88.293806][ T5829] usb 3-1: USB disconnect, device number 3
[   88.368896][    T9] savu 0003:1E7D:2D5A.0004: hiddev0,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.3-1/input0
[   88.575767][ T5770] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[   88.698232][ T6321] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[   88.698232][ T6321] The task syz.1.165 (6321) triggered the difference, watch for misbehavior.
[   88.733413][ T5829] usb 4-1: USB disconnect, device number 2
[   89.272790][ T6339] netlink: 64535 bytes leftover after parsing attributes in process `syz.2.169'.
[   89.551077][ T6324] loop0: detected capacity change from 0 to 40427
[   89.578792][ T6324] F2FS-fs (loop0): build fault injection attr: rate: 690, type: 0x7ffff
[   89.597010][ T6349] netlink: 104 bytes leftover after parsing attributes in process `syz.3.172'.
[   89.606588][ T6324] F2FS-fs (loop0): Image doesn't support compression
[   89.623671][ T6349] netlink: 104 bytes leftover after parsing attributes in process `syz.3.172'.
[   89.633162][ T6324] F2FS-fs (loop0): Image doesn't support compression
[   89.653613][ T6324] F2FS-fs (loop0): build fault injection attr: rate: 0, type: 0x4
[   89.724127][ T6324] F2FS-fs (loop0): invalid crc value
[   89.774671][ T6324] F2FS-fs (loop0): Found nat_bits in checkpoint
[   90.021913][ T6324] F2FS-fs (loop0): Start checkpoint disabled!
[   90.044940][ T6324] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6
[   90.166276][ T6324] F2FS-fs (loop0): Stopped filesystem due to reason: 0
[   90.351490][ T6346] loop2: detected capacity change from 0 to 32768
[   90.538229][ T6346] JBD2: Ignoring recovery information on journal
[   90.810510][ T6346] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[   91.019568][ T6393] netlink: 8 bytes leftover after parsing attributes in process `syz.3.186'.
[   91.167196][ T5774] ocfs2: Unmounting device (7,2) on (node local)
[   91.660694][ T6397] loop3: detected capacity change from 0 to 32768
[   91.683177][ T6397] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 scanned by syz.3.188 (6397)
[   91.715144][ T6397] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   91.726663][ T6397] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[   91.740474][ T6397] BTRFS info (device loop3): using free space tree
[   91.798858][ T6397] BTRFS info (device loop3): enabling ssd optimizations
[   91.810038][ T6397] BTRFS info (device loop3): auto enabling async discard
[   91.904096][  T968] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[   92.012894][ T5768] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   92.126514][  T968] usb 3-1: Using ep0 maxpacket: 8
[   92.143964][  T968] usb 3-1: New USB device found, idVendor=046d, idProduct=08dd, bcdDevice=ff.f4
[   92.163651][  T968] usb 3-1: New USB device strings: Mfr=8, Product=2, SerialNumber=3
[   92.183810][  T968] usb 3-1: Product: syz
[   92.197913][  T968] usb 3-1: Manufacturer: syz
[   92.202702][  T968] usb 3-1: SerialNumber: syz
[   92.226032][  T968] usb 3-1: config 0 descriptor??
[   92.241042][  T968] gspca_main: gspca_zc3xx-2.14.0 probing 046d:08dd
[   92.309181][ T6405] syz.1.193 (6405) used greatest stack depth: 20560 bytes left
[   92.419592][ T6434] loop0: detected capacity change from 0 to 2048
[   92.484437][ T6437] loop1: detected capacity change from 0 to 128
[   92.491076][ T6434]  loop0: p1 < > p3
[   92.508858][ T6434] loop0: p3 size 134217728 extends beyond EOD, truncated
[   92.545737][ T6437] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   92.599186][ T6432] loop3: detected capacity change from 0 to 2048
[   92.626218][ T6437] ext4 filesystem being mounted at /52/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   92.656239][ T6432]  loop3: p1 < > p3
[   92.686642][  T968] gspca_zc3xx: reg_r err -71
[   92.700172][ T6432] loop3: p3 size 134217728 extends beyond EOD, truncated
[   92.702667][ T6437] syz.1.198 (pid 6437) is setting deprecated v1 encryption policy; recommend upgrading to v2.
[   92.718140][  T968] gspca_zc3xx: probe of 3-1:0.0 failed with error -71
[   92.738015][  T968] usb 3-1: USB disconnect, device number 4
[   92.869106][ T5771] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   93.030309][ T6444] loop1: detected capacity change from 0 to 8
[   93.165330][ T6444] SQUASHFS error: Failed to read block 0x2d7: -5
[   93.189424][ T6444] SQUASHFS error: Unable to read metadata cache entry [2d5]
[   93.292758][ T6452] loop0: detected capacity change from 0 to 512
[   93.326603][ T6452] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[   93.349692][ T6452] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem
[   93.414467][ T6452] EXT4-fs (loop0): warning: mounting unchecked fs, running e2fsck is recommended
[   93.448886][ T6452] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[   93.457932][ T6452] System zones: 0-2, 18-18, 34-35
[   93.481476][ T6452] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   93.612633][   T27] audit: type=1800 audit(1750350004.014:8): pid=6452 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.202" name="file1" dev="loop0" ino=15 res=0 errno=0
[   93.743153][ T6466] can0: slcan on ttyS3.
[   93.856600][ T5765] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   93.925448][ T6466] can0 (unregistered): slcan off ttyS3.
[   94.165516][ T6483] netdevsim netdevsim1 netdevsim0: entered promiscuous mode
[   94.695332][ T6491] loop0: detected capacity change from 0 to 32768
[   94.765165][ T6491] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   94.828986][ T6491] XFS (loop0): Ending clean mount
[   94.841213][ T6491] XFS (loop0): Quotacheck needed: Please wait.
[   94.941177][ T6491] XFS (loop0): Quotacheck: Done.
[   95.173271][ T5765] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   95.436611][   T28] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[   95.644108][   T28] usb 2-1: Using ep0 maxpacket: 32
[   95.670429][   T28] usb 2-1: config 0 has an invalid interface number: 51 but max is 0
[   95.693837][ T6512] loop2: detected capacity change from 0 to 32768
[   95.694306][   T28] usb 2-1: config 0 has no interface number 0
[   95.744233][   T28] usb 2-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[   95.753722][   T28] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   95.771933][ T6512] ocfs2: Slot 0 on device (7,2) was already allocated to this node!
[   95.804140][   T28] usb 2-1: Product: syz
[   95.808351][   T28] usb 2-1: Manufacturer: syz
[   95.832019][   T28] usb 2-1: SerialNumber: syz
[   95.870362][   T28] usb 2-1: config 0 descriptor??
[   95.879111][ T6512] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[   95.886099][   T28] quatech2 2-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[   96.146227][   T28] usb 2-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[   96.177926][   T28] usb 2-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[   96.201104][ T6538] loop0: detected capacity change from 0 to 512
[   96.262620][ T5774] ocfs2: Unmounting device (7,2) on (node local)
[   96.761820][    C1] usb 2-1: qt2_read_bulk_callback - non-zero urb status: -71
[   96.778046][ T5855] usb 2-1: USB disconnect, device number 4
[   96.796025][ T5855] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[   96.837366][ T5855] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[   96.863517][ T5855] quatech2 2-1:0.51: device disconnected
[   97.028230][  T787] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[   97.229549][  T787] usb 4-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[   97.254134][  T787] usb 4-1: config 0 interface 0 has no altsetting 0
[   97.283679][  T787] usb 4-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[   97.300468][  T787] usb 4-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[   97.322836][  T787] usb 4-1: Product: syz
[   97.328925][  T787] usb 4-1: Manufacturer: syz
[   97.338533][  T787] usb 4-1: SerialNumber: syz
[   97.387461][  T787] usb 4-1: config 0 descriptor??
[   97.432464][  T787] usb 4-1: selecting invalid altsetting 0
[   97.700771][ T6571] loop2: detected capacity change from 0 to 1024
[   97.700949][    T9] usb 4-1: USB disconnect, device number 3
[   97.746181][ T6573] loop1: detected capacity change from 0 to 1024
[   97.779505][ T6573] EXT4-fs: Ignoring removed oldalloc option
[   97.807536][ T6573] EXT4-fs: Ignoring removed orlov option
[   97.849874][ T6573] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled
[   97.908262][ T6573] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   98.310616][ T5771] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.446900][ T6587] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   98.490759][ T6589] netlink: 76 bytes leftover after parsing attributes in process `syz.2.247'.
[   99.015138][ T6595] loop2: detected capacity change from 0 to 32768
[   99.043275][ T6578] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[   99.060144][ T6578] Bluetooth: hci1: Opcode 0x0406 failed: -4
[   99.094169][ T6595] ocfs2: Mounting device (7,2) on (node local, slot 0) with writeback data mode.
[   99.103340][ T6578] Bluetooth: hci1: Opcode 0x0406 failed: -4
[   99.133554][   T11] (kworker/u4:0,11,0):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #72: rec_len is smaller than minimal - offset=0, inode=348545186005064, rec_len=0, name_len=1
[   99.185943][ T6595] (syz.2.251,6595,1):ocfs2_remount:623 ERROR: Cannot change heartbeat mode on remount
[   99.188877][ T6578] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[   99.202642][ T6578] Bluetooth: hci2: Opcode 0x0406 failed: -4
[   99.219771][ T6578] Bluetooth: hci2: Opcode 0x0406 failed: -4
[   99.229940][ T6578] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[   99.237567][ T6578] Bluetooth: hci3: Opcode 0x0406 failed: -4
[   99.247676][ T6578] Bluetooth: hci3: Opcode 0x0406 failed: -4
[   99.404815][ T6610] binder: 6609:6610 ioctl 40046721 200000000040 returned -22
[   99.428082][ T5774] ocfs2: Unmounting device (7,2) on (node local)
[   99.619184][ T6620] netlink: 'syz.3.261': attribute type 2 has an invalid length.
[   99.755862][ T6622] loop2: detected capacity change from 0 to 512
[   99.762992][ T6622] EXT4-fs: Ignoring removed nomblk_io_submit option
[   99.815341][ T6622] EXT4-fs (loop2): unable to read superblock
[  100.334091][ T5770] Bluetooth: hci1: command 0x0c1a tx timeout
[  100.934136][   T28] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  100.966482][ T5854] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  101.114109][   T28] usb 4-1: Using ep0 maxpacket: 8
[  101.122570][   T28] usb 4-1: New USB device found, idVendor=2770, idProduct=930c, bcdDevice=8d.6a
[  101.132097][   T28] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  101.146678][   T28] usb 4-1: Product: syz
[  101.154691][   T28] usb 4-1: Manufacturer: syz
[  101.159683][   T28] usb 4-1: SerialNumber: syz
[  101.166424][ T5854] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  101.182701][   T28] usb 4-1: config 0 descriptor??
[  101.197027][ T5854] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  101.214436][ T5770] Bluetooth: hci2: command 0x0c1a tx timeout
[  101.215670][ T5854] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  101.232422][   T28] gspca_main: sq930x-2.14.0 probing 2770:930c
[  101.241316][ T5854] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  101.249901][ T5854] usb 3-1: SerialNumber: syz
[  101.294270][ T5770] Bluetooth: hci3: command 0x0c1a tx timeout
[  101.423714][ T6666] loop0: detected capacity change from 0 to 1024
[  101.432145][ T6666] EXT4-fs: Ignoring removed oldalloc option
[  101.438887][ T6666] EXT4-fs: Ignoring removed orlov option
[  101.452360][ T6666] EXT4-fs (loop0): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  101.506499][ T5854] usb 3-1: 0:2 : does not exist
[  101.534484][ T6666] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.547358][ T5854] usb 3-1: USB disconnect, device number 5
[  101.628186][ T5778] udevd[5778]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  101.766884][ T5765] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.014445][ T5854] hid-generic 0000:0000:0000.0005: unknown main item tag 0x7
[  102.022649][ T5854] hid-generic 0000:0000:0000.0005: ignoring exceeding usage max
[  102.033674][ T5854] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  102.041657][ T5854] hid-generic 0000:0000:0000.0005: unknown main item tag 0x6
[  102.049849][ T5854] hid-generic 0000:0000:0000.0005: unknown main item tag 0xd
[  102.068289][ T5854] hid-generic 0000:0000:0000.0005: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  102.171919][ T6683] fido_id[6683]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  102.304147][   T28] gspca_sq930x: reg_w 0105 0f00 failed -71
[  102.315819][   T28] sq930x: probe of 4-1:0.0 failed with error -71
[  102.340969][   T28] usb 4-1: USB disconnect, device number 4
[  102.424185][ T5770] Bluetooth: hci1: command 0x0c1a tx timeout
[  102.734158][  T787] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  102.924419][  T787] usb 2-1: Using ep0 maxpacket: 8
[  102.935745][  T787] usb 2-1: New USB device found, idVendor=0c45, idProduct=613e, bcdDevice=c4.6d
[  102.947216][  T787] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  102.955310][  T787] usb 2-1: Product: syz
[  102.959660][  T787] usb 2-1: Manufacturer: syz
[  102.964327][  T787] usb 2-1: SerialNumber: syz
[  102.974268][  T787] usb 2-1: config 0 descriptor??
[  102.987031][  T787] gspca_main: sonixj-2.14.0 probing 0c45:613e
[  103.294939][ T5770] Bluetooth: hci2: command 0x0c1a tx timeout
[  103.374183][ T5770] Bluetooth: hci3: command 0x0c1a tx timeout
[  104.017026][  T787] gspca_sonixj: reg_w1 err -71
[  104.023422][ T6708] loop0: detected capacity change from 0 to 32768
[  104.043778][ T6708] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 scanned by syz.0.295 (6708)
[  104.078065][ T6708] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  104.089143][  T787] sonixj: probe of 2-1:0.0 failed with error -71
[  104.106064][  T787] usb 2-1: USB disconnect, device number 5
[  104.117982][ T6708] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  104.154201][ T6708] BTRFS info (device loop0): enabling auto defrag
[  104.173805][ T6708] BTRFS info (device loop0): use no compression
[  104.181544][ T6708] BTRFS info (device loop0): force clearing of disk cache
[  104.202977][ T6708] BTRFS info (device loop0): max_inline at 4096
[  104.219684][ T6708] BTRFS info (device loop0): disabling free space tree
[  104.326267][ T6708] BTRFS info (device loop0): enabling ssd optimizations
[  104.365365][ T6708] BTRFS info (device loop0): auto enabling async discard
[  104.398412][ T6708] BTRFS info (device loop0): rebuilding free space tree
[  104.498059][ T5770] Bluetooth: hci1: command 0x0c1a tx timeout
[  104.516051][ T6708] BTRFS info (device loop0): disabling free space tree
[  104.543807][ T6708] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  104.580490][ T6708] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  104.738517][ T6740] loop2: detected capacity change from 0 to 1024
[  104.815366][ T6740] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  104.948906][ T6740] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[  105.005791][ T6740] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 2 with error 28
[  105.029954][ T5765] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  105.034103][ T6740] EXT4-fs (loop2): This should not happen!! Data will be lost
[  105.034103][ T6740] 
[  105.082399][ T6740] EXT4-fs (loop2): Total free blocks count 0
[  105.089312][ T6740] EXT4-fs (loop2): Free/Dirty block details
[  105.096588][ T6740] EXT4-fs (loop2): free_blocks=68451041280
[  105.102760][ T6740] EXT4-fs (loop2): dirty_blocks=16
[  105.111976][ T6740] EXT4-fs (loop2): Block reservation details
[  105.122128][ T6740] EXT4-fs (loop2): i_reserved_data_blocks=1
[  105.335484][ T5774] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.389952][ T5770] Bluetooth: hci2: command 0x0c1a tx timeout
[  105.454145][ T5770] Bluetooth: hci3: command 0x0c1a tx timeout
[  105.586648][ T6762] loop2: detected capacity change from 0 to 164
[  105.692496][ T6762] syz.2.310: attempt to access beyond end of device
[  105.692496][ T6762] loop2: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  105.708728][ T6762] syz.2.310: attempt to access beyond end of device
[  105.708728][ T6762] loop2: rw=0, sector=263328, nr_sectors = 4 limit=164
[  106.387595][ T6782] loop1: detected capacity change from 0 to 128
[  106.462322][   T27] audit: type=1800 audit(1750350016.864:9): pid=6782 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.321" name="file1" dev="loop1" ino=1048594 res=0 errno=0
[  106.523363][ T1039] FAT-fs (loop1): error, invalid FAT chain (i_pos 548, last_block 8)
[  106.533884][ T1039] FAT-fs (loop1): Filesystem has been set read-only
[  106.537157][ T6788] input: syz0 as /devices/virtual/input/input6
[  106.547458][ T1039] FAT-fs (loop1): error, corrupted file size (i_pos 548, 522)
[  106.557718][ T6788] input: failed to attach handler leds to device input6, error: -6
[  106.575471][ T6782] FAT-fs (loop1): error, corrupted file size (i_pos 548, 522)
[  106.586956][ T6782] FAT-fs (loop1): Filesystem has been set read-only
[  106.845552][ T6794] loop0: detected capacity change from 0 to 2048
[  106.878370][ T6794] NILFS (loop0): invalid segment: Magic number mismatch
[  106.924392][ T6794] NILFS (loop0): trying rollback from an earlier position
[  106.971378][ T6801] netlink: 14568 bytes leftover after parsing attributes in process `syz.1.328'.
[  106.998002][ T6794] NILFS (loop0): recovery complete
[  107.031059][ T6802] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  107.241367][ T6794] overlayfs: upper fs does not support tmpfile.
[  107.270077][ T6794] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  107.287337][ T6794] overlayfs: failed to set xattr on upper
[  107.293270][ T6794] overlayfs: ...falling back to redirect_dir=nofollow.
[  107.301285][ T6794] overlayfs: ...falling back to index=off.
[  107.309540][ T6794] overlayfs: ...falling back to uuid=null.
[  107.700761][ T6818] loop1: detected capacity change from 0 to 1024
[  107.966360][ T6826] loop2: detected capacity change from 0 to 256
[  108.020945][ T6826] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  108.397050][ T6835] netlink: 'syz.3.341': attribute type 1 has an invalid length.
[  108.414221][ T6835] netlink: 4 bytes leftover after parsing attributes in process `syz.3.341'.
[  108.871221][ T6851] loop3: detected capacity change from 0 to 4096
[  108.930389][ T6851] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512).
[  109.260940][ T6849] loop1: detected capacity change from 0 to 32768
[  109.397619][   T27] audit: type=1800 audit(1750350019.794:10): pid=6849 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.347" name="file1" dev="loop1" ino=4 res=0 errno=0
[  109.501409][ T6863] netlink: 'syz.2.353': attribute type 12 has an invalid length.
[  109.511658][ T6863] netlink: 'syz.2.353': attribute type 29 has an invalid length.
[  109.519840][ T6863] netlink: 148 bytes leftover after parsing attributes in process `syz.2.353'.
[  109.532624][ T6863] netlink: 'syz.2.353': attribute type 12 has an invalid length.
[  109.543242][ T6863] netlink: 'syz.2.353': attribute type 29 has an invalid length.
[  109.583202][ T6863] netlink: 148 bytes leftover after parsing attributes in process `syz.2.353'.
[  109.608155][ T6863] Zero length message leads to an empty skb
[  109.608226][ T6860] batadv_slave_1: entered promiscuous mode
[  109.679361][ T6859] batadv_slave_1: left promiscuous mode
[  110.223003][ T6881] warning: `syz.2.361' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  110.323600][   T27] audit: type=1326 audit(1750350020.724:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6886 comm="syz.2.363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b63f8e929 code=0x7ffc0000
[  110.362711][   T27] audit: type=1326 audit(1750350020.754:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6886 comm="syz.2.363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b63f8e929 code=0x7ffc0000
[  110.386375][   T27] audit: type=1326 audit(1750350020.764:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6886 comm="syz.2.363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8b63f8e929 code=0x7ffc0000
[  110.417894][   T27] audit: type=1326 audit(1750350020.764:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6886 comm="syz.2.363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b63f8e929 code=0x7ffc0000
[  110.452887][   T27] audit: type=1326 audit(1750350020.764:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6886 comm="syz.2.363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b63f8e929 code=0x7ffc0000
[  110.475262][   T27] audit: type=1326 audit(1750350020.764:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6886 comm="syz.2.363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8b63f8e929 code=0x7ffc0000
[  110.501623][   T27] audit: type=1326 audit(1750350020.764:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6886 comm="syz.2.363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b63f8e929 code=0x7ffc0000
[  110.537662][   T27] audit: type=1326 audit(1750350020.764:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6886 comm="syz.2.363" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b63f8e929 code=0x7ffc0000
[  110.639705][ T6895] loop1: detected capacity change from 0 to 128
[  110.920260][ T6901] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  110.928118][ T6901] IPv6: NLM_F_CREATE should be set when creating new route
[  110.935444][ T6901] IPv6: NLM_F_CREATE should be set when creating new route
[  110.942668][ T6901] IPv6: NLM_F_CREATE should be set when creating new route
[  110.959485][ T6901] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  111.204228][   T28] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  111.238393][ T6910] loop2: detected capacity change from 0 to 512
[  111.313000][ T6910] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  111.354408][ T6910] ext4 filesystem being mounted at /81/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  111.354698][ T6907] loop3: detected capacity change from 0 to 32768
[  111.404664][   T28] usb 2-1: Using ep0 maxpacket: 16
[  111.426209][ T6907] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  111.428080][   T28] usb 2-1: config 1 interface 0 altsetting 255 endpoint 0x1 has invalid wMaxPacketSize 0
[  111.447075][ T5774] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.458979][   T28] usb 2-1: config 1 interface 0 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 0
[  111.497192][   T28] usb 2-1: config 1 interface 0 altsetting 255 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  111.570350][   T28] usb 2-1: config 1 interface 0 has no altsetting 0
[  111.583840][ T6923] loop2: detected capacity change from 0 to 7
[  111.597371][   T28] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  111.606460][ T6907] XFS (loop3): Ending clean mount
[  111.608496][ T6907] XFS (loop3): Quotacheck needed: Please wait.
[  111.618126][ T5778] Dev loop2: unable to read RDB block 7
[  111.627529][ T5778]  loop2: unable to read partition table
[  111.629566][   T28] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  111.635177][ T5778] loop2: partition table beyond EOD, truncated
[  111.646118][   T28] usb 2-1: Product: syz
[  111.657186][ T6923] Dev loop2: unable to read RDB block 7
[  111.669474][   T28] usb 2-1: Manufacturer: syz
[  111.674562][   T28] usb 2-1: SerialNumber: syz
[  111.679850][ T6907] XFS (loop3): Quotacheck: Done.
[  111.680547][ T6923]  loop2: unable to read partition table
[  111.693703][ T6923] loop2: partition table beyond EOD, truncated
[  111.702184][ T6923] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  111.848608][ T5768] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  111.945326][   T28] usblp 2-1:1.0: usblp0: USB Unidirectional printer dev 6 if 0 alt 255 proto 1 vid 0x0525 pid 0xA4A8
[  112.236193][  T787] usb 2-1: USB disconnect, device number 6
[  112.265852][  T787] usblp0: removed
[  112.669776][ T6927] loop0: detected capacity change from 0 to 40427
[  112.696744][ T6927] F2FS-fs (loop0): invalid crc value
[  112.722999][ T6927] F2FS-fs (loop0): Found nat_bits in checkpoint
[  112.880690][ T6927] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e4
[  113.015939][ T6927] syz.0.378: attempt to access beyond end of device
[  113.015939][ T6927] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  113.066770][ T6927] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  113.849075][ T6963] netlink: 28 bytes leftover after parsing attributes in process `syz.2.394'.
[  113.876081][ T6963] netlink: 28 bytes leftover after parsing attributes in process `syz.2.394'.
[  113.922343][ T6963] netdevsim netdevsim2 netdevsim0: entered promiscuous mode
[  113.936490][ T6963] netdevsim netdevsim2 netdevsim0: left promiscuous mode
[  114.034508][ T6970] syzkaller1: entered promiscuous mode
[  114.050274][ T6970] syzkaller1: entered allmulticast mode
[  114.158626][ T6955] loop3: detected capacity change from 0 to 32768
[  114.172735][ T6955] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 scanned by syz.3.388 (6955)
[  114.200253][ T6955] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  114.217580][ T6955] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[  114.227251][ T6955] BTRFS info (device loop3): setting nodatacow, compression disabled
[  114.238205][ T6955] BTRFS info (device loop3): max_inline at 0
[  114.244609][ T6955] BTRFS info (device loop3): enabling disk space caching
[  114.251843][ T6955] BTRFS info (device loop3): turning off barriers
[  114.262143][ T6955] BTRFS info (device loop3): turning on flush-on-commit
[  114.282454][ T6955] BTRFS info (device loop3): doing ref verification
[  114.295591][ T6955] BTRFS info (device loop3): force clearing of disk cache
[  114.311768][ T6955] BTRFS info (device loop3): enabling ssd optimizations
[  114.328240][ T6955] BTRFS info (device loop3): max_inline at 4096
[  114.342711][ T6955] BTRFS info (device loop3): disk space caching is enabled
[  114.441380][ T6955] BTRFS info (device loop3): auto enabling async discard
[  114.498752][ T6955] BTRFS info (device loop3): rebuilding free space tree
[  114.538932][ T6955] BTRFS info (device loop3): disabling free space tree
[  114.553920][ T6955] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  114.576771][ T6955] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  114.840353][ T7008] loop0: detected capacity change from 0 to 512
[  114.883654][ T5768] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  114.931588][ T7008] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  114.955067][ T7008] ext4 filesystem being mounted at /111/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  115.035558][ T5765] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.616698][ T7028] netlink: 24 bytes leftover after parsing attributes in process `syz.0.412'.
[  115.707980][ T7032] batadv_slave_1: entered promiscuous mode
[  115.716602][ T7031] batadv_slave_1: left promiscuous mode
[  115.829687][ T7030] netlink: 24 bytes leftover after parsing attributes in process `syz.0.412'.
[  115.856665][ T7030] nbd: device at index 64 is going down
[  116.081062][ T5778] udevd[5778]: inotify_add_watch(7, /dev/nbd64, 10) failed: No such file or directory
[  116.114684][ T7048] loop1: detected capacity change from 0 to 512
[  116.122635][ T5778] udevd[5778]: inotify_add_watch(7, /dev/nbd64, 10) failed: No such file or directory
[  116.155019][ T7048] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  116.172411][ T7048] EXT4-fs error (device loop1): ext4_get_journal_inode:5805: comm syz.1.419: inode #1661: comm syz.1.419: iget: illegal inode #
[  116.192321][ T7048] EXT4-fs (loop1): no journal found
[  116.198328][ T7048] EXT4-fs (loop1): can't get journal size
[  116.227256][ T7048] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[  116.256439][ T7048] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8016c118, mo2=0002]
[  116.267008][ T7048] EXT4-fs (loop1): Errors on filesystem, clearing orphan list.
[  116.276825][ T7048] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  116.392555][ T7054] loop0: detected capacity change from 0 to 8192
[  116.394946][ T5771] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.441933][ T7054] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  116.500592][ T7054] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[  116.542494][ T7054] REISERFS (device loop0): using ordered data mode
[  116.553972][ T7054] reiserfs: using flush barriers
[  116.583690][ T7054] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  116.649845][ T7054] REISERFS (device loop0): checking transaction log (loop0)
[  116.778035][ T7061] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  116.895802][ T7054] REISERFS (device loop0): Using tea hash to sort names
[  116.908643][ T7054] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[  117.558955][ T7080] loop2: detected capacity change from 0 to 512
[  117.592661][ T7080] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  117.602556][ T7080] EXT4-fs error (device loop2): ext4_get_journal_inode:5805: comm syz.2.432: inode #1661: comm syz.2.432: iget: illegal inode #
[  117.618199][    T8] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  117.650677][ T7080] EXT4-fs (loop2): no journal found
[  117.688932][ T7080] EXT4-fs (loop2): can't get journal size
[  117.723001][ T7080] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[  117.742848][ T7080] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8016c118, mo2=0002]
[  117.754539][ T7080] EXT4-fs (loop2): Errors on filesystem, clearing orphan list.
[  117.756735][ T7090] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  117.763330][ T7080] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  117.829116][    T8] usb 4-1: Using ep0 maxpacket: 8
[  117.865663][ T5774] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.913686][    T8] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  117.940850][    T8] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 2
[  117.964873][    T8] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10
[  117.997207][    T8] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024
[  118.010876][    T8] usb 4-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  118.022786][    T8] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  118.044842][    T8] hub 4-1:1.0: bad descriptor, ignoring hub
[  118.050788][    T8] hub: probe of 4-1:1.0 failed with error -5
[  118.072900][    T8] cdc_wdm 4-1:1.0: skipping garbage
[  118.093678][    T8] cdc_wdm 4-1:1.0: skipping garbage
[  118.118020][    T8] cdc_wdm 4-1:1.0: cdc-wdm0: USB WDM device
[  118.123986][    T8] cdc_wdm 4-1:1.0: Unknown control protocol
[  118.174603][   T28] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  118.369683][   T28] usb 2-1: Using ep0 maxpacket: 32
[  118.386078][   T28] usb 2-1: New USB device found, idVendor=0fd9, idProduct=0025, bcdDevice=29.40
[  118.404366][   T28] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  118.426794][   T28] usb 2-1: config 0 descriptor??
[  118.608202][ T5854] usb 4-1: reset high-speed USB device number 5 using dummy_hcd
[  118.659245][   T28] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[  118.704406][   T28] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  118.729392][   T28] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[  118.752803][   T28] usb 2-1: media controller created
[  118.804868][   T28] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  118.883163][   T28] az6027: usb out operation failed. (-71)
[  118.912368][   T28] az6027: usb out operation failed. (-71)
[  118.918861][   T28] stb0899_attach: Driver disabled by Kconfig
[  118.929636][   T28] az6027: no front-end attached
[  118.929636][   T28] 
[  118.939400][   T28] az6027: usb out operation failed. (-71)
[  118.959640][   T28] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[  118.980173][   T28] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.1/usb2/2-1/input/input7
[  119.051378][   T28] dvb-usb: schedule remote query interval to 400 msecs.
[  119.051945][ T7106] loop2: detected capacity change from 0 to 256
[  119.093405][   T28] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
[  119.098914][   T27] kauditd_printk_skb: 3 callbacks suppressed
[  119.098927][   T27] audit: type=1800 audit(1750350029.494:22): pid=7106 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.442" name="file1" dev="loop2" ino=1048596 res=0 errno=0
[  119.132941][ T7106] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  119.133010][   T28] usb 2-1: USB disconnect, device number 7
[  119.249081][ T7108] loop0: detected capacity change from 0 to 256
[  119.258899][   T28] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected.
[  119.295842][    T9] usb 4-1: USB disconnect, device number 5
[  119.636210][ T7116] loop0: detected capacity change from 0 to 4096
[  119.660869][ T7116] ntfs3: loop0: Different NTFS sector size (2048) and media sector size (512).
[  119.680657][ T7116] ntfs3: loop0: Mark volume as dirty due to NTFS errors
[  119.734877][ T7116] ntfs3: loop0: volume is dirty and "force" flag is not set!
[  119.838867][ T7121] loop3: detected capacity change from 0 to 1024
[  120.073690][   T42] hfsplus: b-tree write err: -5, ino 4
[  120.464112][    T9] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  120.676085][    T9] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  120.688987][    T9] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  120.698141][    T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  120.706206][    T9] usb 4-1: Product: syz
[  120.710361][    T9] usb 4-1: Manufacturer: syz
[  120.714989][    T9] usb 4-1: SerialNumber: syz
[  121.741855][    T9] cdc_ncm 4-1:1.0: failed to get mac address
[  121.750681][    T9] cdc_ncm 4-1:1.0: bind() failure
[  121.758763][    T9] cdc_ncm: probe of 4-1:1.1 failed with error -71
[  121.768290][    T9] cdc_mbim: probe of 4-1:1.1 failed with error -71
[  121.776791][    T9] usbtest: probe of 4-1:1.1 failed with error -71
[  121.787289][    T9] usb 4-1: USB disconnect, device number 6
[  122.664164][    T9] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  122.854105][    T9] usb 1-1: Using ep0 maxpacket: 8
[  122.871851][    T9] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  122.900973][    T9] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  122.921910][    T9] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 4915, setting to 1024
[  122.943784][    T9] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[  122.964056][    T9] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  122.987450][    T9] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  123.024078][    T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  123.259478][    T9] usb 1-1: GET_CAPABILITIES returned 0
[  123.282715][    T9] usbtmc 1-1:16.0: can't read capabilities
[  123.394825][ T7155] loop3: detected capacity change from 0 to 32768
[  123.483119][    C0] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  123.501111][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  123.510240][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  123.519358][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  123.528460][    C1] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  123.567677][    C0] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  123.587192][    C0] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  123.596322][    C0] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  123.605422][    C0] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  123.614526][    C0] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  123.639354][    C0] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  123.648502][    C0] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  123.657613][    C0] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  123.666726][    C0] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  123.679449][    C0] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  123.688547][    C0] usbtmc 1-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  123.743349][ T5854] usb 1-1: USB disconnect, device number 3
[  123.864315][ T7176] netlink: 24 bytes leftover after parsing attributes in process `syz.1.479'.
[  123.956995][ T7180] netlink: 24 bytes leftover after parsing attributes in process `syz.1.479'.
[  123.982419][ T7180] nbd: device at index 64 is going down
[  124.417917][ T7187] loop3: detected capacity change from 0 to 256
[  124.667474][ T7190] loop3: detected capacity change from 0 to 4096
[  124.693563][ T7190] ntfs3: loop3: Different NTFS sector size (2048) and media sector size (512).
[  124.721109][ T7190] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[  124.769902][ T7190] ntfs3: loop3: volume is dirty and "force" flag is not set!
[  125.362014][ T7202] netlink: 'syz.3.481': attribute type 1 has an invalid length.
[  125.370748][ T7202] netlink: 'syz.3.481': attribute type 2 has an invalid length.
[  125.379878][ T7202] netlink: 4 bytes leftover after parsing attributes in process `syz.3.481'.
[  125.424252][    T8] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  125.534166][ T5854] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  125.617436][    T8] usb 3-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  125.628687][    T8] usb 3-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  125.638832][    T8] usb 3-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  125.647921][    T8] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  125.659617][ T7194] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  125.672505][    T8] usb 3-1: Quirk or no altest; falling back to MIDI 1.0
[  125.724942][   T28] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  125.737014][ T5854] usb 1-1: Using ep0 maxpacket: 8
[  125.746550][ T5854] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  125.759049][ T5854] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 2
[  125.768488][ T5854] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10
[  125.779925][ T5854] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024
[  125.791144][ T5854] usb 1-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  125.800207][ T5854] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  125.813066][ T5854] hub 1-1:1.0: bad descriptor, ignoring hub
[  125.819152][ T5854] hub: probe of 1-1:1.0 failed with error -5
[  125.825725][ T5854] cdc_wdm 1-1:1.0: skipping garbage
[  125.831211][ T5854] cdc_wdm 1-1:1.0: skipping garbage
[  125.838116][ T5854] cdc_wdm 1-1:1.0: cdc-wdm0: USB WDM device
[  125.844121][ T5854] cdc_wdm 1-1:1.0: Unknown control protocol
[  125.910711][ T5854] usb 3-1: USB disconnect, device number 6
[  125.924982][   T28] usb 4-1: Using ep0 maxpacket: 32
[  125.940859][   T28] usb 4-1: New USB device found, idVendor=0fd9, idProduct=0025, bcdDevice=29.40
[  125.962713][   T28] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  125.982372][   T28] usb 4-1: config 0 descriptor??
[  126.194570][   T28] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[  126.202995][   T28] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  126.214364][   T28] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[  126.221527][   T28] usb 4-1: media controller created
[  126.247639][   T28] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  126.324879][ T5855] usb 1-1: reset high-speed USB device number 4 using dummy_hcd
[  126.397559][   T28] az6027: usb out operation failed. (-71)
[  126.405021][   T28] az6027: usb out operation failed. (-71)
[  126.410761][   T28] stb0899_attach: Driver disabled by Kconfig
[  126.417576][   T28] az6027: no front-end attached
[  126.417576][   T28] 
[  126.425162][   T28] az6027: usb out operation failed. (-71)
[  126.430888][   T28] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[  126.439451][   T28] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.3/usb4/4-1/input/input8
[  126.459469][   T28] dvb-usb: schedule remote query interval to 400 msecs.
[  126.466672][   T28] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
[  126.479151][   T28] usb 4-1: USB disconnect, device number 7
[  126.556304][   T28] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected.
[  126.711157][ T7206] netlink: 24 bytes leftover after parsing attributes in process `syz.2.483'.
[  126.802813][ T7206] netlink: 24 bytes leftover after parsing attributes in process `syz.2.483'.
[  126.864368][ T5855] usb 1-1: USB disconnect, device number 4
[  127.081592][ T5778] udevd[5778]: inotify_add_watch(7, /dev/nbd64, 10) failed: No such file or directory
[  127.115412][ T5778] udevd[5778]: inotify_add_watch(7, /dev/nbd64, 10) failed: No such file or directory
[  127.133297][ T5778] udevd[5778]: inotify_add_watch(7, /dev/nbd64, 10) failed: No such file or directory
[  127.155309][ T7219] loop2: detected capacity change from 0 to 256
[  127.156378][ T5778] udevd[5778]: inotify_add_watch(7, /dev/nbd64, 10) failed: No such file or directory
[  127.491325][ T7225] loop1: detected capacity change from 0 to 4096
[  127.524249][ T7225] ntfs3: loop1: Different NTFS sector size (2048) and media sector size (512).
[  127.543261][ T7225] ntfs3: loop1: Mark volume as dirty due to NTFS errors
[  127.572780][ T7225] ntfs3: loop1: volume is dirty and "force" flag is not set!
[  127.639029][ T7225] loop1: detected capacity change from 0 to 512
[  127.665128][ T7225] EXT4-fs error (device loop1): ext4_orphan_get:1399: inode #15: comm syz.1.489: casefold flag without casefold feature
[  127.689922][ T7225] EXT4-fs error (device loop1): ext4_orphan_get:1404: comm syz.1.489: couldn't read orphan inode 15 (err -117)
[  127.708329][ T7225] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  127.811785][ T5771] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  128.010007][ T7238] loop3: detected capacity change from 0 to 256
[  128.069111][ T7238] exFAT-fs (loop3): failed to load upcase table (idx : 0x0001e4a3, chksum : 0x009ea0b8, utbl_chksum : 0x7319d30d)
[  128.136440][    T8] libceph: connect (1)[c::]:6789 error -101
[  128.143144][    T8] libceph: mon0 (1)[c::]:6789 connect error
[  128.447303][    T8] libceph: connect (1)[c::]:6789 error -101
[  128.463668][    T8] libceph: mon0 (1)[c::]:6789 connect error
[  128.844157][    T8] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  128.911289][ T7240] ceph: No mds server is up or the cluster is laggy
[  129.024152][    T8] usb 3-1: Using ep0 maxpacket: 8
[  129.033892][    T8] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  129.044794][    T8] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 2
[  129.053728][    T8] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10
[  129.065304][    T8] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024
[  129.077928][    T8] usb 3-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  129.087148][    T8] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  129.100791][    T8] hub 3-1:1.0: bad descriptor, ignoring hub
[  129.106804][    T8] hub: probe of 3-1:1.0 failed with error -5
[  129.113326][    T8] cdc_wdm 3-1:1.0: skipping garbage
[  129.118661][    T8] cdc_wdm 3-1:1.0: skipping garbage
[  129.126760][    T8] cdc_wdm 3-1:1.0: cdc-wdm0: USB WDM device
[  129.132774][    T8] cdc_wdm 3-1:1.0: Unknown control protocol
[  129.614606][    T8] usb 3-1: reset high-speed USB device number 7 using dummy_hcd
[  130.144259][    T8] usb 3-1: USB disconnect, device number 7
[  130.707135][ T7258] loop2: detected capacity change from 0 to 4096
[  130.717382][ T7258] ntfs3: loop2: Different NTFS sector size (2048) and media sector size (512).
[  130.741164][ T7258] ntfs3: loop2: Mark volume as dirty due to NTFS errors
[  130.777950][ T7258] ntfs3: loop2: volume is dirty and "force" flag is not set!
[  130.884648][    T8] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  131.094122][    T8] usb 2-1: Using ep0 maxpacket: 8
[  131.102489][    T8] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  131.133185][    T8] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 2
[  131.153971][    T8] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10
[  131.178994][    T8] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024
[  131.209765][    T8] usb 2-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  131.250032][    T8] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  131.282781][    T8] hub 2-1:1.0: bad descriptor, ignoring hub
[  131.304449][    T8] hub: probe of 2-1:1.0 failed with error -5
[  131.327492][    T8] cdc_wdm 2-1:1.0: skipping garbage
[  131.333118][    T8] cdc_wdm 2-1:1.0: skipping garbage
[  131.365835][    T8] cdc_wdm 2-1:1.0: cdc-wdm0: USB WDM device
[  131.391380][    T8] cdc_wdm 2-1:1.0: Unknown control protocol
[  131.535327][ T7287] Invalid ELF header len 8
[  131.704198][  T787] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  131.819010][ T7291] loop2: detected capacity change from 0 to 4096
[  131.834592][ T7291] ntfs3: loop2: Different NTFS sector size (2048) and media sector size (512).
[  131.856172][ T7291] ntfs3: loop2: Mark volume as dirty due to NTFS errors
[  131.872087][ T7291] ntfs3: loop2: volume is dirty and "force" flag is not set!
[  131.876355][    T8] usb 2-1: reset high-speed USB device number 8 using dummy_hcd
[  131.939730][  T787] usb 1-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  131.972365][  T787] usb 1-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  131.992758][  T787] usb 1-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  132.024315][  T787] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  132.056416][ T7282] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  132.091703][  T787] usb 1-1: Quirk or no altest; falling back to MIDI 1.0
[  132.118342][ T7293] loop2: detected capacity change from 0 to 256
[  132.153974][ T7293] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  132.223689][ T7293] FAT-fs (loop2): Directory bread(block 64) failed
[  132.242510][ T7293] FAT-fs (loop2): Directory bread(block 65) failed
[  132.257886][ T7293] FAT-fs (loop2): Directory bread(block 66) failed
[  132.284405][ T7293] FAT-fs (loop2): Directory bread(block 67) failed
[  132.314202][ T7293] FAT-fs (loop2): Directory bread(block 68) failed
[  132.320804][ T7293] FAT-fs (loop2): Directory bread(block 69) failed
[  132.342363][ T7293] FAT-fs (loop2): Directory bread(block 70) failed
[  132.350698][ T7293] FAT-fs (loop2): Directory bread(block 71) failed
[  132.358786][ T7293] FAT-fs (loop2): Directory bread(block 72) failed
[  132.365699][ T7293] FAT-fs (loop2): Directory bread(block 73) failed
[  132.428878][  T968] usb 1-1: USB disconnect, device number 5
[  132.464550][  T787] usb 2-1: USB disconnect, device number 8
[  132.663802][ T7298] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  132.671110][ T7298] IPv6: NLM_F_CREATE should be set when creating new route
[  132.919672][ T7306] vlan2: entered promiscuous mode
[  132.925503][ T7306] bond0: entered promiscuous mode
[  132.930638][ T7306] bond_slave_0: entered promiscuous mode
[  132.937436][ T7306] bond_slave_1: entered promiscuous mode
[  133.059438][ T1280] ieee802154 phy0 wpan0: encryption failed: -22
[  133.066086][ T1280] ieee802154 phy1 wpan1: encryption failed: -22
[  134.231446][ T7336] loop0: detected capacity change from 0 to 32768
[  134.271442][ T7336] XFS (loop0): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  134.312864][ T7336] XFS (loop0): Ending clean mount
[  134.584407][ T5765] XFS (loop0): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  134.833718][ T7355] loop0: detected capacity change from 0 to 2048
[  134.887784][   T28] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  135.008079][ T7355] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  135.046896][ T7360] loop6: detected capacity change from 0 to 524287999
[  135.065032][    C1] I/O error, dev loop6, sector 524287744 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  135.078610][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x84700 phys_seg 128 prio class 2
[  135.081442][ T7351] loop1: detected capacity change from 0 to 32768
[  135.088322][    C1] I/O error, dev loop6, sector 1848 op 0x0:(READ) flags 0x80700 phys_seg 50 prio class 2
[  135.122581][ T7351] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 scanned by syz.1.537 (7351)
[  135.124422][   T28] usb 4-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  135.151615][    C1] I/O error, dev loop6, sector 524287744 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  135.161801][    C1] Buffer I/O error on dev loop6, logical block 65535968, async page read
[  135.170332][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  135.179511][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[  135.197003][   T27] audit: type=1800 audit(1750350045.604:23): pid=7355 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.539" name="bus" dev="loop0" ino=18 res=0 errno=0
[  135.212753][ T7355] EXT4-fs error (device loop0): ext4_validate_block_bitmap:439: comm syz.0.539: bg 0: block 234: padding at end of block bitmap is not set
[  135.241123][ T7351] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  135.256812][   T28] usb 4-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  135.262001][ T7351] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm
[  135.305881][   T28] usb 4-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  135.329281][ T7351] BTRFS info (device loop1): enabling disk space caching
[  135.346634][   T28] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  135.391964][ T7351] BTRFS info (device loop1): doing ref verification
[  135.399347][ T7353] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  135.448185][ T7351] BTRFS info (device loop1): use zlib compression, level 3
[  135.452381][   T28] usb 4-1: Quirk or no altest; falling back to MIDI 1.0
[  135.473591][ T7351] BTRFS info (device loop1): force clearing of disk cache
[  135.488789][ T5765] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.500300][ T7351] BTRFS info (device loop1): setting nodatacow, compression disabled
[  135.530186][ T7351] BTRFS info (device loop1): doing ref verification
[  135.551409][ T7351] BTRFS info (device loop1): disk space caching is enabled
[  135.744481][ T7351] BTRFS info (device loop1): enabling ssd optimizations
[  135.751493][ T7351] BTRFS info (device loop1): auto enabling async discard
[  135.821216][ T7351] BTRFS info (device loop1): rebuilding free space tree
[  135.854375][   T28] usb 4-1: USB disconnect, device number 8
[  135.896485][ T7351] BTRFS info (device loop1): disabling free space tree
[  135.912974][ T7351] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  135.927597][ T7351] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  136.046638][   T27] audit: type=1800 audit(1750350046.454:24): pid=7351 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.537" name="bus" dev="loop1" ino=263 res=0 errno=0
[  136.092089][   T27] audit: type=1800 audit(1750350046.484:25): pid=7351 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.537" name="bus" dev="loop1" ino=263 res=0 errno=0
[  136.232411][ T5771] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  136.590616][ T7391] vlan2: entered promiscuous mode
[  136.603856][ T7391] bond0: entered promiscuous mode
[  136.611101][ T7391] bond_slave_0: entered promiscuous mode
[  136.618000][ T7391] bond_slave_1: entered promiscuous mode
[  136.726439][ T7393] loop0: detected capacity change from 0 to 256
[  136.736775][ T7393] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  136.849339][ T7393] FAT-fs (loop0): Directory bread(block 64) failed
[  136.884331][ T7393] FAT-fs (loop0): Directory bread(block 65) failed
[  136.890999][ T7393] FAT-fs (loop0): Directory bread(block 66) failed
[  136.923818][ T7393] FAT-fs (loop0): Directory bread(block 67) failed
[  136.929146][ T7389] loop2: detected capacity change from 0 to 32768
[  136.930644][ T7393] FAT-fs (loop0): Directory bread(block 68) failed
[  136.943540][ T7393] FAT-fs (loop0): Directory bread(block 69) failed
[  136.952672][ T7393] FAT-fs (loop0): Directory bread(block 70) failed
[  136.962742][ T7393] FAT-fs (loop0): Directory bread(block 71) failed
[  136.986384][ T7389] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 scanned by syz.2.547 (7389)
[  136.992916][ T7393] FAT-fs (loop0): Directory bread(block 72) failed
[  137.017386][ T7393] FAT-fs (loop0): Directory bread(block 73) failed
[  137.039621][ T7389] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  137.092916][ T7389] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm
[  137.112155][ T7389] BTRFS info (device loop2): force clearing of disk cache
[  137.139790][ T7389] BTRFS info (device loop2): enabling auto defrag
[  137.163462][ T7389] BTRFS info (device loop2): max_inline at 0
[  137.177470][ T7389] BTRFS info (device loop2): enabling disk space caching
[  137.193755][ T7389] BTRFS info (device loop2): disk space caching is enabled
[  137.368985][ T7389] BTRFS info (device loop2): enabling ssd optimizations
[  137.429913][ T7389] BTRFS info (device loop2): rebuilding free space tree
[  137.485238][ T7389] BTRFS info (device loop2): disabling free space tree
[  137.492300][ T7389] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  137.506967][ T2993] kworker/u4:8: attempt to access beyond end of device
[  137.506967][ T2993] loop0: rw=1, sector=1224, nr_sectors = 608 limit=256
[  137.542612][ T2993] kworker/u4:8: attempt to access beyond end of device
[  137.542612][ T2993] loop0: rw=1, sector=1864, nr_sectors = 3496 limit=256
[  137.552068][ T7389] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  137.889168][ T5774] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  138.211876][ T7424] loop1: detected capacity change from 0 to 2048
[  138.276183][ T7424] hpfs: filesystem error: dir band size mismatch: dir_band_start==7b318cc2, dir_band_end==7b318cc3, n_dir_band==00000000; already mounted read-only
[  138.375787][ T5758] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  139.285372][ T7426] loop0: detected capacity change from 0 to 32768
[  139.310096][ T7424] loop1: detected capacity change from 0 to 40427
[  139.329262][ T7424] F2FS-fs (loop1): invalid crc value
[  139.369917][ T7424] F2FS-fs (loop1): Found nat_bits in checkpoint
[  139.402390][   T27] audit: type=1800 audit(1750350049.804:26): pid=7426 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.555" name="file1" dev="loop0" ino=4 res=0 errno=0
[  139.588218][ T7424] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e4
[  139.835785][ T5855] libceph: connect (1)[c::]:6789 error -101
[  139.841857][ T5855] libceph: mon0 (1)[c::]:6789 connect error
[  139.977890][ T7450] vlan2: entered promiscuous mode
[  139.982987][ T7450] bond0: entered promiscuous mode
[  139.988214][ T7450] bond_slave_0: entered promiscuous mode
[  139.995664][ T7450] bond_slave_1: entered promiscuous mode
[  140.125204][ T5855] libceph: connect (1)[c::]:6789 error -101
[  140.131283][ T5855] libceph: mon0 (1)[c::]:6789 connect error
[  140.183131][ T7452] loop1: detected capacity change from 0 to 256
[  140.196304][ T7452] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  140.238905][ T7452] FAT-fs (loop1): Directory bread(block 64) failed
[  140.246733][ T7452] FAT-fs (loop1): Directory bread(block 65) failed
[  140.253364][ T7452] FAT-fs (loop1): Directory bread(block 66) failed
[  140.260635][ T7452] FAT-fs (loop1): Directory bread(block 67) failed
[  140.268952][ T7452] FAT-fs (loop1): Directory bread(block 68) failed
[  140.275915][ T7452] FAT-fs (loop1): Directory bread(block 69) failed
[  140.282545][ T7452] FAT-fs (loop1): Directory bread(block 70) failed
[  140.289396][ T7452] FAT-fs (loop1): Directory bread(block 71) failed
[  140.297875][ T7452] FAT-fs (loop1): Directory bread(block 72) failed
[  140.304543][ T7452] FAT-fs (loop1): Directory bread(block 73) failed
[  140.445238][   T11] kworker/u4:0: attempt to access beyond end of device
[  140.445238][   T11] loop1: rw=1, sector=1224, nr_sectors = 608 limit=256
[  140.461400][   T11] kworker/u4:0: attempt to access beyond end of device
[  140.461400][   T11] loop1: rw=1, sector=1864, nr_sectors = 2424 limit=256
[  140.477261][   T11] kworker/u4:0: attempt to access beyond end of device
[  140.477261][   T11] loop1: rw=1, sector=4288, nr_sectors = 1072 limit=256
[  140.623352][ T7445] ceph: No mds server is up or the cluster is laggy
[  140.892060][   T28] libceph: connect (1)[c::]:6789 error -97
[  140.898191][ T5777] Bluetooth: hci4: command 0x1003 tx timeout
[  140.906736][   T28] libceph: mon0 (1)[c::]:6789 connect error
[  140.908755][ T5770] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  141.194842][ T5855] libceph: connect (1)[c::]:6789 error -97
[  141.204544][ T5855] libceph: mon0 (1)[c::]:6789 connect error
[  141.511780][ T7471] loop3: detected capacity change from 0 to 32768
[  141.528270][ T7471] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 scanned by syz.3.569 (7471)
[  141.552665][ T7471] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  141.566043][ T7471] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm
[  141.575571][ T7471] BTRFS info (device loop3): enabling disk space caching
[  141.582735][ T7471] BTRFS info (device loop3): doing ref verification
[  141.590567][ T7471] BTRFS info (device loop3): use zlib compression, level 3
[  141.601131][ T7471] BTRFS info (device loop3): force clearing of disk cache
[  141.608379][ T7471] BTRFS info (device loop3): setting nodatacow, compression disabled
[  141.616719][ T7471] BTRFS info (device loop3): doing ref verification
[  141.623720][ T7471] BTRFS info (device loop3): disk space caching is enabled
[  141.691071][ T7459] ceph: No mds server is up or the cluster is laggy
[  141.724492][   T28] libceph: connect (1)[c::]:6789 error -97
[  141.730878][   T28] libceph: mon0 (1)[c::]:6789 connect error
[  141.801948][ T7471] BTRFS info (device loop3): enabling ssd optimizations
[  141.811764][ T7471] BTRFS info (device loop3): auto enabling async discard
[  141.871934][ T7471] BTRFS info (device loop3): rebuilding free space tree
[  141.904364][ T7471] BTRFS info (device loop3): disabling free space tree
[  141.911332][ T7471] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  141.929671][ T7471] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  142.026523][   T27] audit: type=1800 audit(1750350052.424:27): pid=7471 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.569" name="bus" dev="loop3" ino=263 res=0 errno=0
[  142.086761][   T27] audit: type=1800 audit(1750350052.424:28): pid=7471 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.569" name="bus" dev="loop3" ino=263 res=0 errno=0
[  142.256299][ T5768] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  142.758049][ T7496] loop3: detected capacity change from 0 to 32768
[  142.780902][   T27] audit: type=1800 audit(1750350053.184:29): pid=7496 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.570" name="file1" dev="loop3" ino=4 res=0 errno=0
[  143.120118][ T7496] ERROR: (device loop3): dbAdjCtl: the maximum free buddy is not the old root
[  143.120118][ T7496] 
[  143.134232][ T7496] ERROR: (device loop3): remounting filesystem as read-only
[  143.320525][ T7497] syz.3.570 (7497) used greatest stack depth: 20336 bytes left
[  143.705915][ T7505] loop3: detected capacity change from 0 to 256
[  143.717502][ T7505] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  143.747433][ T7505] FAT-fs (loop3): Directory bread(block 64) failed
[  143.756965][ T7505] FAT-fs (loop3): Directory bread(block 65) failed
[  143.763643][ T7505] FAT-fs (loop3): Directory bread(block 66) failed
[  143.771988][ T7505] FAT-fs (loop3): Directory bread(block 67) failed
[  143.781018][ T7505] FAT-fs (loop3): Directory bread(block 68) failed
[  143.788991][ T7505] FAT-fs (loop3): Directory bread(block 69) failed
[  143.796599][ T7505] FAT-fs (loop3): Directory bread(block 70) failed
[  143.803121][ T7505] FAT-fs (loop3): Directory bread(block 71) failed
[  143.810146][ T7505] FAT-fs (loop3): Directory bread(block 72) failed
[  143.817876][ T7505] FAT-fs (loop3): Directory bread(block 73) failed
[  143.952822][ T3446] kworker/u4:9: attempt to access beyond end of device
[  143.952822][ T3446] loop3: rw=1, sector=1224, nr_sectors = 608 limit=256
[  143.969177][ T3446] kworker/u4:9: attempt to access beyond end of device
[  143.969177][ T3446] loop3: rw=1, sector=1864, nr_sectors = 3272 limit=256
[  143.987719][ T3446] kworker/u4:9: attempt to access beyond end of device
[  143.987719][ T3446] loop3: rw=1, sector=5136, nr_sectors = 224 limit=256
[  144.200308][ T7517] loop1: detected capacity change from 0 to 128
[  144.216262][ T7515] vlan2: entered promiscuous mode
[  144.244757][ T7515] bond0: entered promiscuous mode
[  144.250860][ T7515] bond_slave_0: entered promiscuous mode
[  144.257026][ T7517] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  144.285396][ T7515] bond_slave_1: entered promiscuous mode
[  144.390194][ T7520] loop2: detected capacity change from 0 to 8192
[  144.440122][ T7522] loop0: detected capacity change from 0 to 512
[  144.501285][ T7522] EXT4-fs error (device loop0): ext4_orphan_get:1399: inode #15: comm syz.0.579: casefold flag without casefold feature
[  144.588810][ T7522] EXT4-fs error (device loop0): ext4_orphan_get:1404: comm syz.0.579: couldn't read orphan inode 15 (err -117)
[  144.610881][ T7522] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  144.729850][ T5765] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.930309][ T7533] loop3: detected capacity change from 0 to 256
[  145.254250][   T28] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  145.380502][ T7531] loop0: detected capacity change from 0 to 32768
[  145.413742][ T7531] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 scanned by syz.0.581 (7531)
[  145.437174][   T28] usb 2-1: Using ep0 maxpacket: 8
[  145.457508][   T28] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  145.489150][ T7531] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  145.502386][   T28] usb 2-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 16
[  145.527935][ T7531] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  145.547177][   T28] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  145.557071][   T28] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  145.579126][ T7531] BTRFS info (device loop0): enabling disk space caching
[  145.589495][   T28] usb 2-1: Product: syz
[  145.593693][   T28] usb 2-1: Manufacturer: syz
[  145.603156][ T7531] BTRFS info (device loop0): doing ref verification
[  145.611930][   T28] usb 2-1: SerialNumber: syz
[  145.626068][ T7531] BTRFS info (device loop0): use zlib compression, level 3
[  145.633307][ T7531] BTRFS info (device loop0): force clearing of disk cache
[  145.681739][ T7531] BTRFS info (device loop0): setting nodatacow, compression disabled
[  145.711169][ T7531] BTRFS info (device loop0): doing ref verification
[  145.734167][ T7531] BTRFS info (device loop0): disk space caching is enabled
[  145.874174][   T28] cdc_ncm 2-1:1.0: bind() failure
[  145.883088][   T28] cdc_ncm 2-1:1.1: CDC Union missing and no IAD found
[  145.948407][ T7531] BTRFS info (device loop0): enabling ssd optimizations
[  145.964277][   T28] cdc_ncm 2-1:1.1: bind() failure
[  145.969611][ T7531] BTRFS info (device loop0): auto enabling async discard
[  145.992897][   T28] usb 2-1: USB disconnect, device number 9
[  146.014786][ T7531] BTRFS info (device loop0): rebuilding free space tree
[  146.078535][ T7531] BTRFS info (device loop0): disabling free space tree
[  146.103790][ T7531] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  146.120751][ T7531] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  146.225108][ T7567] netlink: 4 bytes leftover after parsing attributes in process `syz.3.598'.
[  146.252785][   T27] audit: type=1800 audit(1750350056.654:30): pid=7531 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.581" name="bus" dev="loop0" ino=263 res=0 errno=0
[  146.314140][   T27] audit: type=1800 audit(1750350056.684:31): pid=7531 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.581" name="bus" dev="loop0" ino=263 res=0 errno=0
[  146.499897][ T5765] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  147.210562][ T7591] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  147.618640][ T7595] netlink: 4 bytes leftover after parsing attributes in process `syz.1.609'.
[  147.736324][ T7600] vlan2: entered promiscuous mode
[  148.151380][ T7602] loop2: detected capacity change from 0 to 32768
[  148.178142][   T27] audit: type=1800 audit(1750350058.584:32): pid=7602 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.606" name="file1" dev="loop2" ino=4 res=0 errno=0
[  148.324292][  T968] usb 4-1: new full-speed USB device number 9 using dummy_hcd
[  148.505356][ T7602] ERROR: (device loop2): dbAdjCtl: the maximum free buddy is not the old root
[  148.505356][ T7602] 
[  148.517776][ T7602] ERROR: (device loop2): remounting filesystem as read-only
[  148.529295][  T968] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  148.542239][  T968] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  148.552664][  T968] usb 4-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  148.563603][  T968] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  148.574543][  T968] usb 4-1: config 0 descriptor??
[  148.655772][ T5774] ------------[ cut here ]------------
[  148.661701][ T5774] kernel BUG at fs/jfs/inode.c:169!
[  148.667063][ T5774] invalid opcode: 0000 [#1] PREEMPT SMP KASAN
[  148.673151][ T5774] CPU: 1 PID: 5774 Comm: syz-executor Not tainted 6.6.94-syzkaller #0
[  148.681293][ T5774] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  148.691353][ T5774] RIP: 0010:jfs_evict_inode+0x431/0x440
[  148.696895][ T5774] Code: e4 fe e9 e0 fd ff ff 44 89 f1 80 e1 07 80 c1 03 38 c1 0f 8c 17 fe ff ff 4c 89 f7 e8 a9 08 e4 fe e9 0a fe ff ff e8 9f 61 8b fe <0f> 0b 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 f3 0f 1e fa 41 57 41
[  148.716500][ T5774] RSP: 0018:ffffc90004447ac0 EFLAGS: 00010293
[  148.722564][ T5774] RAX: ffffffff82fa3431 RBX: ffff88805c291ff0 RCX: ffff88802dbe8000
[  148.730538][ T5774] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff88805c291ff0
[  148.738512][ T5774] RBP: 0000000000000001 R08: ffffffff90d856a7 R09: 1ffffffff21b0ad4
[  148.746469][ T5774] R10: dffffc0000000000 R11: fffffbfff21b0ad5 R12: dffffc0000000000
[  148.754429][ T5774] R13: dffffc0000000000 R14: ffff88805c291c78 R15: ffff88805c2921c0
[  148.762389][ T5774] FS:  000055557be91500(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[  148.771306][ T5774] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  148.777880][ T5774] CR2: 000055557beac5c8 CR3: 0000000061eb3000 CR4: 00000000003506e0
[  148.785850][ T5774] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  148.793826][ T5774] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  148.801795][ T5774] Call Trace:
[  148.805063][ T5774]  <TASK>
[  148.807984][ T5774]  ? evict+0x480/0x870
[  148.812048][ T5774]  ? jfs_write_inode+0x220/0x220
[  148.816974][ T5774]  evict+0x486/0x870
[  148.820864][ T5774]  ? proc_nr_inodes+0x230/0x230
[  148.825704][ T5774]  ? do_raw_spin_unlock+0x121/0x230
[  148.830984][ T5774]  ? do_raw_spin_unlock+0x121/0x230
[  148.836170][ T5774]  evict_inodes+0x5fe/0x690
[  148.840659][ T5774]  ? clear_inode+0x150/0x150
[  148.845246][ T5774]  generic_shutdown_super+0x97/0x2b0
[  148.850530][ T5774]  kill_block_super+0x44/0x90
[  148.855200][ T5774]  deactivate_locked_super+0x97/0x100
[  148.860559][ T5774]  cleanup_mnt+0x429/0x4c0
[  148.864964][ T5774]  task_work_run+0x1ce/0x250
[  148.869548][ T5774]  ? task_work_cancel+0x240/0x240
[  148.874567][ T5774]  ? exit_to_user_mode_loop+0x3b/0x110
[  148.880018][ T5774]  exit_to_user_mode_loop+0xe6/0x110
[  148.885301][ T5774]  exit_to_user_mode_prepare+0xb1/0x140
[  148.890838][ T5774]  syscall_exit_to_user_mode+0x1a/0x50
[  148.896283][ T5774]  do_syscall_64+0x61/0xb0
[  148.900694][ T5774]  ? clear_bhb_loop+0x40/0x90
[  148.905369][ T5774]  ? clear_bhb_loop+0x40/0x90
[  148.910045][ T5774]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  148.915938][ T5774] RIP: 0033:0x7f8b63f8fc57
[  148.920362][ T5774] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  148.939955][ T5774] RSP: 002b:00007fff04278e28 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  148.948361][ T5774] RAX: 0000000000000000 RBX: 00007f8b64010925 RCX: 00007f8b63f8fc57
[  148.956321][ T5774] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff04278ee0
[  148.964278][ T5774] RBP: 00007fff04278ee0 R08: 0000000000000000 R09: 0000000000000000
[  148.972246][ T5774] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fff04279f70
[  148.980213][ T5774] R13: 00007f8b64010925 R14: 000000000002443b R15: 00007fff04279fb0
[  148.988182][ T5774]  </TASK>
[  148.991195][ T5774] Modules linked in:
[  149.002055][ T5774] ---[ end trace 0000000000000000 ]---
[  149.007834][ T5774] RIP: 0010:jfs_evict_inode+0x431/0x440
[  149.013476][ T5774] Code: e4 fe e9 e0 fd ff ff 44 89 f1 80 e1 07 80 c1 03 38 c1 0f 8c 17 fe ff ff 4c 89 f7 e8 a9 08 e4 fe e9 0a fe ff ff e8 9f 61 8b fe <0f> 0b 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 f3 0f 1e fa 41 57 41
[  149.033256][ T5774] RSP: 0018:ffffc90004447ac0 EFLAGS: 00010293
[  149.039376][ T5774] RAX: ffffffff82fa3431 RBX: ffff88805c291ff0 RCX: ffff88802dbe8000
[  149.047372][ T5774] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff88805c291ff0
[  149.055672][ T5774] RBP: 0000000000000001 R08: ffffffff90d856a7 R09: 1ffffffff21b0ad4
[  149.063786][ T5774] R10: dffffc0000000000 R11: fffffbfff21b0ad5 R12: dffffc0000000000
[  149.071851][ T5774] R13: dffffc0000000000 R14: ffff88805c291c78 R15: ffff88805c2921c0
[  149.079864][ T5774] FS:  000055557be91500(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[  149.088830][ T5774] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  149.095486][ T5774] CR2: 0000001b2c61cff8 CR3: 0000000061eb3000 CR4: 00000000003506f0
[  149.104168][ T5774] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  149.112194][ T5774] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  149.120298][ T5774] Kernel panic - not syncing: Fatal exception
[  149.126589][ T5774] Kernel Offset: disabled
[  149.130900][ T5774] Rebooting in 86400 seconds..