last executing test programs:

3m42.199000435s ago: executing program 2 (id=962):
syz_mount_image$exfat(&(0x7f0000002000), &(0x7f0000005840)='./bus\x00', 0x1000806, &(0x7f00000016c0)=ANY=[], 0x9, 0x1508, &(0x7f0000002040)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f00000003c0)='./bus\x00', 0x0)
renameat2(r0, &(0x7f0000000300)='./bus\x00', r0, &(0x7f00000001c0)='./file0\x00', 0x4)

3m40.693195236s ago: executing program 2 (id=966):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mount(0x0, 0x0, 0x0, 0x0, 0x0)
connect$inet(0xffffffffffffffff, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x2, 0x4, 0x1, 0xbf27, 0x500, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
mmap(&(0x7f0000fa2000/0x3000)=nil, 0x3000, 0x3, 0x13, r3, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r4, 0x0, 0xe40, 0xe40, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000300)=""/8, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)
r5 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r5, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x2, 0x8010, r5, 0x0)
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000008c0)={0x10, 0x2e, 0x1, 0x70bd2a}, 0x10}], 0x1}, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
futex(0x0, 0x1, 0x800001, 0x0, 0x0, 0x0)

3m38.748267678s ago: executing program 2 (id=972):
socket$inet_mptcp(0x2, 0x1, 0x106)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newsa={0xf8, 0x10, 0x1, 0x0, 0x25dfdbfd, {{@in6=@private2, @in6=@empty, 0x4000, 0x0, 0x3, 0x3, 0x0, 0x20}, {@in=@broadcast, 0x0, 0x33}, @in6=@mcast2, {0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x4}, {}, {}, 0x0, 0x0, 0xa, 0x1}, [@extra_flags={0x8, 0x18, 0x9e4}]}, 0xf8}}, 0x20000000)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x13, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x103080, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_CLOCK(r1, 0x4188aec6, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x7fff, 0xf3})

3m37.972849564s ago: executing program 2 (id=974):
syz_mount_image$ext4(&(0x7f0000000880)='ext2\x00', &(0x7f0000000000)='./file1\x00', 0x21000e, &(0x7f0000000380), 0xde, 0x536, &(0x7f00000008c0)="$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")
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='proc\x00', 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
lseek(r0, 0x100, 0x0)
getdents(r0, &(0x7f0000000200)=""/77, 0x4d)

3m36.535176001s ago: executing program 2 (id=980):
r0 = syz_open_dev$usbfs(&(0x7f0000000200), 0x76, 0x103901)
ioctl$USBDEVFS_BULK(0xffffffffffffffff, 0x5523, 0x0)
r1 = syz_open_dev$usbfs(0x0, 0x76, 0x101301)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r1, 0x5522, 0x0)
ioctl$USBDEVFS_SETINTERFACE(r0, 0x80045510, &(0x7f0000000000))
getdents64(0xffffffffffffffff, 0x0, 0x0)

3m35.702227817s ago: executing program 2 (id=983):
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
pipe2$9p(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff017f000e0800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000000)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="b0"], 0xb0)
write$FUSE_GETXATTR(r2, &(0x7f00000000c0)={0x18}, 0x18)
mount$9p_fd(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000280), 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYRESHEX=r1, @ANYBLOB=',cache=fscache'])
utime(&(0x7f0000000200)='./file0\x00', 0x0)
mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0)

3m32.916800705s ago: executing program 32 (id=983):
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
pipe2$9p(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff017f000e0800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000000)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="b0"], 0xb0)
write$FUSE_GETXATTR(r2, &(0x7f00000000c0)={0x18}, 0x18)
mount$9p_fd(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000280), 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYRESHEX=r1, @ANYBLOB=',cache=fscache'])
utime(&(0x7f0000000200)='./file0\x00', 0x0)
mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0)

2m31.308297523s ago: executing program 0 (id=821):
socket$netlink(0x10, 0x3, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58)
accept4(r0, 0x0, 0x0, 0x0)
accept4(r0, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000380))
socket$nl_generic(0x10, 0x3, 0x10)
timerfd_create(0x8, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000002c0)={'bridge_slave_0\x00', <r3=>0x0})
r4 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="440000001100a7cc4a372eaf541d002007000000", @ANYRES32=r3, @ANYBLOB="00000000100000001c001a80080002802d00ff0008000200", @ANYRES16=r4, @ANYRES32=r4], 0x44}}, 0x0)

1m56.910452307s ago: executing program 0 (id=821):
socket$netlink(0x10, 0x3, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58)
accept4(r0, 0x0, 0x0, 0x0)
accept4(r0, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000380))
socket$nl_generic(0x10, 0x3, 0x10)
timerfd_create(0x8, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000002c0)={'bridge_slave_0\x00', <r3=>0x0})
r4 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="440000001100a7cc4a372eaf541d002007000000", @ANYRES32=r3, @ANYBLOB="00000000100000001c001a80080002802d00ff0008000200", @ANYRES16=r4, @ANYRES32=r4], 0x44}}, 0x0)

1m30.646875846s ago: executing program 0 (id=821):
socket$netlink(0x10, 0x3, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58)
accept4(r0, 0x0, 0x0, 0x0)
accept4(r0, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000380))
socket$nl_generic(0x10, 0x3, 0x10)
timerfd_create(0x8, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000002c0)={'bridge_slave_0\x00', <r3=>0x0})
r4 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="440000001100a7cc4a372eaf541d002007000000", @ANYRES32=r3, @ANYBLOB="00000000100000001c001a80080002802d00ff0008000200", @ANYRES16=r4, @ANYRES32=r4], 0x44}}, 0x0)

1m14.446545154s ago: executing program 1 (id=1394):
r0 = socket(0x400000000010, 0x3, 0x0)
r1 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000003580)=@newtfilter={0x24, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {0xe, 0x7}, {}, {0x7}}}, 0x24}, 0x1, 0x0, 0x0, 0x80}, 0x40)

1m13.590029384s ago: executing program 1 (id=1396):
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x8, &(0x7f0000000000)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x5}}, {}]}, 0x4, 0x4f3, &(0x7f00000012c0)="$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")
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x101000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_mount_image$exfat(&(0x7f0000000040), &(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x211000, &(0x7f00000041c0)=ANY=[@ANYBLOB="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", @ANYRES16=r1, @ANYRES16=r0, @ANYRESHEX=r1, @ANYRESOCT, @ANYRES64=r1, @ANYRESDEC=r1, @ANYRESHEX, @ANYRESDEC, @ANYRES64, @ANYRES64, @ANYRESHEX, @ANYRES16=r1, @ANYRESOCT=0x0, @ANYRESHEX, @ANYRES16], 0x5, 0x151a, &(0x7f0000002c80)="$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")
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000000))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x800000000003)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000080)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x800002, &(0x7f0000000580)={[], [{@smackfsroot={'smackfsroot', 0x3d, '/dev/kvM\x00w\xb1\xe5\xafC\xe9\x84\x01\x97\x98\x95BR\xedh*\xff\xb9k\xd7L\xd7\'K\x18\x7f:X\x1a\xb1\x7f\\\v\xc1\x02\x86~\x87\xf0F\x96o9\xfe\x91\xcf\xaa/\xe5\x96\xbd2\xb4\x17\x05\xec\x03\xe6j]\xb6sV\x9a\x95k\xe5%O\xe0\x13`\xbd\x8b\x91z\x10\x0fZ%\xf8!\x12\x1e\xba\xa5\x14b\xd7\x18\xd0\xa7\xfeq\xcf\xf1W\x81\xea\xda\xc4@\xbd\x84\x81\xf8\x84\x0f\x99^\x8fb\xe0\xd3}\xcf.I\xfdn\x1a\x1f=\x05\xb1\x81\xc7n\xf3\xc3\xc6\xc9$\x18f.\xc4\x8d\x00\xb1\xa5\xae\x87\x16*\xda\xa7\x1b\b\x94\x88\xda\xb3\x9a\x8e@b\xc6\xd7\x0f\n=\x8bO\xb0\xff+s\xcd~4<^:2\x95\x82\xfdLq\xac\vyi\xb0\xc5\x88\xaf\x97[~\xb9cP\xd1X\x99\f(&\x9bQ\xe6\xfc|\f\x14\v\x18@\xf7\xea\xd7\x1f\xb6\xf7\xfe\xe5\x9c'}}, {@mask={'mask', 0x3d, '^MAY_EXEC'}}]}, 0x6, 0x510, &(0x7f00000006c0)="$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")
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[], 0x44}}, 0x0)
syz_mount_image$udf(&(0x7f0000000080), &(0x7f0000000180)='./file1\x00', 0x4040, &(0x7f00000015c0)=ANY=[@ANYBLOB='lastblock=00000000000000000000,umask=00000000000000000000002,dmode=00000000000000000077777,novrs,shortad,shortad,undelete,iocharset=cp437,shortad,umask=00000000000000000000006,dmode=00000000000000000000011,fileset=00000000000000000011,uid=', @ANYRES8=0x0, @ANYRESDEC=0x0, @ANYBLOB="cdf7c0c4ada580d5d36bd90806b670b73bb5112f75ca483652cf9b8a22555c3af34a84c5747ac51aa890ca205a0f27d7dde81ad3a01f21810b6de2d56be05416c54e1c6e8459e1643b129327581f7716b38db3d3f3bbeb6d1b846a2aad654e1795850a1f82ac738387d9c3009d18eb2a78258fcc4ac4eb6a12a5650e10ebf077d9ab33f24de7cbffe0", @ANYRESHEX], 0x2, 0xc3f, &(0x7f0000001780)="$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")
fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)
unlinkat(0xffffffffffffff9c, &(0x7f0000000380)='./file1\x00', 0x200)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f0000000180)="66ba4300b006ee0f01c40f009b27000000b9800000c00f3235008000000f30b80e0000000f23d80f21f835800000a00f23f8c9b9490300000f60b932c00a000000328fe858b660002fb90d090000b800680000ba000000000f30", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

1m12.390613214s ago: executing program 1 (id=1402):
syz_mount_image$hfsplus(&(0x7f0000000600), &(0x7f0000000000)='./file1\x00', 0x10, &(0x7f0000000200)=ANY=[], 0x5, 0x62c, &(0x7f0000000640)="$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")
lsetxattr$trusted_overlay_upper(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000180), &(0x7f0000001e00)=ANY=[], 0x361, 0x1)
setresuid(0x0, 0xee01, 0x0)
listxattr(&(0x7f0000000280)='./file1\x00', 0x0, 0xfffffffffffffdae)

1m11.742964043s ago: executing program 1 (id=1406):
syz_mount_image$ext4(&(0x7f0000000040)='ext2\x00', &(0x7f0000000080)='./file0\x00', 0x808080, &(0x7f0000000000), 0x2c, 0x516, &(0x7f0000000740)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000002c0)=0x20)

1m11.154920885s ago: executing program 1 (id=1409):
syz_mount_image$ext4(&(0x7f00000000c0)='ext3\x00', &(0x7f0000000040)='./file0\x00', 0x2000000, &(0x7f0000000080), 0x1, 0x652, &(0x7f00000002c0)="$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")
syz_mount_image$exfat(&(0x7f0000000400), &(0x7f0000000240)='./file0\x00', 0x20808c4d, &(0x7f0000000700)={[{@umask={'umask', 0x3d, 0x9}}, {@discard}, {@dmask={'dmask', 0x3d, 0x7}}, {}, {@dmask={'dmask', 0x3d, 0x6a}}, {@fmask={'fmask', 0x3d, 0x6}}, {@gid}, {@uid={'uid', 0x3d, 0xee00}}, {@errors_continue}]}, 0x81, 0x14f5, &(0x7f0000001580)="$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")
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x3, &(0x7f0000000140), 0x1, 0x25f, &(0x7f0000000b00)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)

1m10.633628118s ago: executing program 1 (id=1411):
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x101c0ca, &(0x7f0000000400)=ANY=[@ANYBLOB="73686f72746e616d653d6d697865642c666d61736b3d30303030303030303030303030303030303030303036362c696f636861727365743d69736f383835392d312c6572726f72733d636f6e74696e75652c756e695f786c6174653d302c696f636861727365743d61736369692c726f6469722c73686f72746e616d653d6d697865642c756e695f786c6174653d302c757466383d302c757466383d302c756e695f786c6174653d312c64656275672c756e695f786c6174653d312c666d61736b3d30303030303030303030303030303030303030303030332c6e6f63617365aec489af6ba9723d4b17106f6d47b9ade1c253d4e3b08066427cae9f41fd1e1dd25a22ec22ad6e8bf6f67e052de91b544f2f4541f87a0c0b36e8d444150b35c110bda57fe7a9c06ba087cc975447082aaf95213301f3e04b70ea67a8aa0d582ca1a9525dba7116d80f126f782a78428b878fc79c0be9ad98cb6950995e6edba78e5301e8c8e69cc85beceb8b54f84a84787815ef9a18f1fe1c81b4c1830102f7e3236e2533e486ecb46ee53991c5bfe6289a474582b2e57741fd8de78f42097851bee74d4201c7767e0e0f4b34523150639b1291441ad01f2f72ed3679d7bca0e8b4e0689f883196af0d0dfe7344f276c1b4bd333882cf7879248ad423e3f21cd0cae2309519f9d40df23cf05d9c8d8f9d07da771ea1e3bcd8478fb989f770da17f700000000000000"], 0x6, 0x2c0, &(0x7f0000000900)="$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")
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
ftruncate(r0, 0x81fd)
syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)

1m8.267780838s ago: executing program 33 (id=1411):
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x101c0ca, &(0x7f0000000400)=ANY=[@ANYBLOB="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"], 0x6, 0x2c0, &(0x7f0000000900)="$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")
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
ftruncate(r0, 0x81fd)
syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)

56.259774612s ago: executing program 0 (id=821):
socket$netlink(0x10, 0x3, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58)
accept4(r0, 0x0, 0x0, 0x0)
accept4(r0, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000380))
socket$nl_generic(0x10, 0x3, 0x10)
timerfd_create(0x8, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000002c0)={'bridge_slave_0\x00', <r3=>0x0})
r4 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="440000001100a7cc4a372eaf541d002007000000", @ANYRES32=r3, @ANYBLOB="00000000100000001c001a80080002802d00ff0008000200", @ANYRES16=r4, @ANYRES32=r4], 0x44}}, 0x0)

29.273120797s ago: executing program 0 (id=821):
socket$netlink(0x10, 0x3, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58)
accept4(r0, 0x0, 0x0, 0x0)
accept4(r0, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000380))
socket$nl_generic(0x10, 0x3, 0x10)
timerfd_create(0x8, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000002c0)={'bridge_slave_0\x00', <r3=>0x0})
r4 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="440000001100a7cc4a372eaf541d002007000000", @ANYRES32=r3, @ANYBLOB="00000000100000001c001a80080002802d00ff0008000200", @ANYRES16=r4, @ANYRES32=r4], 0x44}}, 0x0)

8.768635504s ago: executing program 0 (id=821):
socket$netlink(0x10, 0x3, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58)
accept4(r0, 0x0, 0x0, 0x0)
accept4(r0, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000380))
socket$nl_generic(0x10, 0x3, 0x10)
timerfd_create(0x8, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000002c0)={'bridge_slave_0\x00', <r3=>0x0})
r4 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="440000001100a7cc4a372eaf541d002007000000", @ANYRES32=r3, @ANYBLOB="00000000100000001c001a80080002802d00ff0008000200", @ANYRES16=r4, @ANYRES32=r4], 0x44}}, 0x0)

6.188458499s ago: executing program 6 (id=1591):
sendmmsg$inet6(0xffffffffffffffff, &(0x7f00000000c0)=[{{&(0x7f00000001c0)={0xa, 0x0, 0x0, @mcast2}, 0x1c, 0x0}}], 0x1, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=@base={0x14, 0x4, 0x4, 0x22, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = socket$inet(0x2, 0x2, 0x0)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000040)=0x8, 0x4)
bind$inet(r1, &(0x7f0000000200)={0x2, 0x3, @empty}, 0x10)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000500)={r0, &(0x7f00000001c0), &(0x7f00000004c0)=@udp=r1}, 0x20)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000180)={r0, &(0x7f0000000280), &(0x7f0000000100)=@tcp=r1, 0x1}, 0x20)

6.14950543s ago: executing program 3 (id=1593):
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f00000004c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x8d0, &(0x7f0000000200)=ANY=[@ANYRES16=0x0, @ANYRES64, @ANYRES64, @ANYRES8, @ANYRESHEX=0x0, @ANYRESOCT=0x0], 0x1, 0x36e, &(0x7f0000000c00)="$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")
r0 = open(&(0x7f00000005c0)='./file0\x00', 0x80141, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/crypto\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x4000000000010046)

5.618978359s ago: executing program 5 (id=1595):
r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x1, 0x8001)
ioctl$EVIOCSCLOCKID(r0, 0x400445a0, &(0x7f0000000080)=0x2)

5.584870903s ago: executing program 6 (id=1597):
fchmodat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0xfffffed3)
setgroups(0x0, 0x0)
getgroups(0x1, &(0x7f0000000080)=[<r0=>0xee00])
setregid(0x0, r0)
r1 = openat(0xffffffffffffff9c, &(0x7f00000003c0)='.\x00', 0x80400, 0x0)
setgroups(0x1, &(0x7f0000000040)=[0x0])
mkdirat(r1, &(0x7f0000000300)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x408)

5.358232298s ago: executing program 3 (id=1598):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x759, &(0x7f0000000340)={[{@noinit_itable}, {@jqfmt_vfsv1}, {@noload}, {@errors_remount}, {@lazytime, 0x0}, {@noload}, {@nouid32}, {@grpquota}, {@resuid={'resuid', 0x3d, 0xffffffffffffffff}}, {@acl}, {@bsdgroups}, {@jqfmt_vfsold}], [], 0x2c}, 0x0, 0x511, &(0x7f0000000400)="$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")
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
rt_sigprocmask(0x2, &(0x7f0000000180)={[0xfffffffffffffffd]}, 0x0, 0x8)
r1 = socket$key(0xf, 0x3, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$key(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000500)=ANY=[@ANYBLOB="0213f803030000002cbd7000fddbdf250100"], 0x18}}, 0x2080)

5.18277212s ago: executing program 6 (id=1599):
memfd_create(&(0x7f0000000380)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xe7a\x9b\x11x\x0e\xa1\xcf\x1a\x98S7\xa9\x1fg\xf1\x85z{\x1d<\xe2\x1c7\xc9\x00\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x04\x879\xa24\xa9am\xde\xb2\xd3\xcbZJoa\xc4\x1acB\xaa\xc1\xfb Q\xd4\xf4\x01\xa52\xe2DG\xd4\xbd{\x9f\xa9\x97\x9b@\xdb\x00b\xe1br\xb6\x008\xe3\x10\xff\xc2\x9d\r2\x9e\x8e\x04sW\x1b\xb7\xb3\xa2\xc9&@\xca\xda\xdc\xe2/\x97X\xac\b\xb0\xc2<\x80E\x1a\xbc\xc7W\xda9VsA\xaf\xc6\xcf\xe1\xa1\xb5M\xa2\x85\xa6y\xc4J\xf1\xf7\xfcD\x95\xe3\xeb\xc7\xbc\x91\xb0\xa8\x9eo\xebF(\x9dL\x01vRk\xaacB\x04\xedn\x8c<5\xcf\x92;\x85)\xa7I\v\x86EZ\x96\xd5\x14OD\\\xe8R\xe4\xcd\xec\xcc\xd1\x0fre\xe86\xcd\xeb\xc4$\x98\x06J\xd6dD\x8d_U`ji{\xab\x97\xaf;l\x1f\xaf\xb38U\xcb\xfa\xb3j\x92\f\x81\xa0\xa2-g\x05\x831\xd3\x8d\x16\xd9w\\\xf8\xce\xb0j\x9d\'\x93\xf6\x1d\xa0H\xd9\xbd\xd9\xaf\x12$\x8d\x16%\x8b\x00\xc6(\x19\xf8\xb4?Fv\xac\xc7m\xe1\xf68W\x19\x0f\x87\x84\xafK\x91v\xb5\xe7Cf\xe0L\b9\xe2\x15d~R4\xdf\xbb\xfeiH', 0x3)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000540)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_NEW_KEY(r2, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000400)=ANY=[@ANYBLOB='`\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010800000000000000000b00000008000300", @ANYRES32=r3, @ANYBLOB="0a0006000802110000000000380050800800030001ac0f0011000100cabee339084eeef109002471f40000000800070000000000"], 0x60}}, 0x0)

5.09333104s ago: executing program 5 (id=1600):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = dup(r0)
sendmsg$nl_route(r1, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000a40)={&(0x7f00000009c0)=@ipv6_newrule={0x6c, 0x20, 0x1, 0x70bd27, 0x25dfdbfd, {0xa, 0x14, 0x14, 0x6, 0x0, 0x0, 0x0, 0x8, 0x10011}, [@FRA_SRC={0x14, 0x2, @private0}, @FIB_RULE_POLICY=@FRA_OIFNAME={0x14, 0x11, 'macsec0\x00'}, @FIB_RULE_POLICY=@FRA_IIFNAME={0x14, 0x3, 'geneve1\x00'}, @FRA_DST={0x14, 0x1, @loopback}]}, 0x6c}, 0x1, 0x0, 0x0, 0x40004}, 0x200400d0)

4.734241027s ago: executing program 6 (id=1602):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000003b810000850000007d000000850000005000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SET_MM(0x23, 0x9, &(0x7f0000004000/0x3000)=nil)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x600, 0x0)
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f0000000400)='./file0\x00', 0x410c84, &(0x7f00000003c0)={[{@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x4}}]}, 0x1, 0x775, &(0x7f0000001180)="$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")
open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x88882, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r1, &(0x7f0000004200)='t', 0x1)
sendfile(r1, r0, 0x0, 0x3ffff)

4.551766498s ago: executing program 3 (id=1603):
r0 = socket$igmp(0x2, 0x3, 0x2)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@ipv6_getaddrlabel={0x1c, 0x4a, 0xbdd461e4d0441ffb}, 0x1c}}, 0x0)
read(r1, &(0x7f0000000500)=""/4096, 0x1000)
getsockopt$MRT(r0, 0x0, 0xd0, &(0x7f0000000000), &(0x7f0000000040)=0xffffffffffffff1d)
r2 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
creat(&(0x7f0000000040)='./file0\x00', 0x1e1)
r3 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000080), 0xc8300, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r3, 0xc0285700, &(0x7f0000000100)={0x1, "5660359c3245d1c42317afad7d48ed51000000000000000100", <r4=>0xffffffffffffffff})
ioctl$SW_SYNC_IOC_CREATE_FENCE(r2, 0xc0285700, &(0x7f0000000000)={0x5, "340b7832ceefd131b8e6498c25f58fad9987ffe93bbabd18cf501922de974a27", <r5=>0xffffffffffffffff})
ioctl$SYNC_IOC_MERGE(r4, 0xc0303e03, &(0x7f00000000c0)={"3c2486910284ed923431d4c5d5fbf514fd00", r5})
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(0xffffffffffffffff, 0xc0c89425, &(0x7f00000000c0)={"766cace9c303653f121a2d892000", 0x0, 0x0, {0x81, 0x50000a}, {0x7, 0x8}, 0x5, [0x1, 0x3, 0x7, 0x6, 0x0, 0x400, 0xffffffffffff0001, 0x2, 0x8, 0x9, 0x80000000, 0x81, 0xfa4, 0x9, 0xfffffffffffffffb, 0x8]})
poll(&(0x7f0000000000), 0x20000000000000b5, 0x9)
ioctl$SW_SYNC_IOC_INC(r3, 0x40045701, &(0x7f00000001c0)=0xfffffffd)

4.500934468s ago: executing program 5 (id=1604):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x80, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_CAP_HYPERV_ENLIGHTENED_VMCS(r2, 0x4068aea3, &(0x7f0000000300)={0xa3, 0x0, &(0x7f0000000100)})

4.08276883s ago: executing program 4 (id=1605):
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
setns(r1, 0x24020000)
syz_clone3(&(0x7f0000000300)={0x136820100, 0x0, 0x0, 0x0, {0x2c}, 0x0, 0x0, 0x0, 0x0}, 0x58)

4.042439398s ago: executing program 5 (id=1606):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x204410, &(0x7f0000000740), 0xfe, 0x4a1, &(0x7f00000001c0)="$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")
openat$dir(0xffffffffffffff9c, 0x0, 0x22100, 0x0)
pipe(&(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r2, 0x107, 0xf, &(0x7f0000006ffc)=0x4000000000000200, 0xe50fb6c50bc849c9)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000240)={'veth1_virt_wifi\x00', <r3=>0x0})
bind$packet(r2, &(0x7f0000000080)={0x11, 0xf8, r3}, 0x14)
splice(r0, 0x0, r2, 0x0, 0x10500, 0x0)
write$cgroup_devices(r1, &(0x7f0000000340)=ANY=[], 0xffdd)

3.649714654s ago: executing program 3 (id=1607):
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000200)=0x1b05, 0x4)
setsockopt$sock_int(r0, 0x1, 0x29, &(0x7f0000000400)=0x2, 0x4)
sendto$inet6(r0, 0x0, 0x0, 0x24000800, &(0x7f00000000c0)={0xa, 0x4e23, 0x100, @local}, 0x1c)
recvmmsg(r0, &(0x7f00000066c0)=[{{0x0, 0x0, 0x0}, 0x2}], 0x1, 0x2000, 0x0)

3.478746717s ago: executing program 6 (id=1608):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x4, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000004c0)={r0, 0x18000000000002a0, 0xe, 0x0, &(0x7f00000002c0)="d2fffdffffff00ad280308f086dd", 0x0, 0xd5b1, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmsg$inet6(r4, 0x0, 0x20008001)
sendmsg$inet6(r4, 0x0, 0x20000044)
r5 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
socket(0x4d66589b9c9fb5f6, 0x80002, 0x0)
ptrace(0x4206, r5)
waitid(0x0, 0x0, 0x0, 0x8000000a, 0x0)

3.369858493s ago: executing program 4 (id=1609):
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x2a0471a, &(0x7f00000000c0)={[{@quota}, {@bsdgroups}, {@nouid32}, {@errors_remount}, {@jqfmt_vfsv1}, {@oldalloc}, {@stripe={'stripe', 0x3d, 0x5}}]}, 0x2, 0x46b, &(0x7f0000000580)="$eJzs3M1vFOUfAPDvzLbw+/HWivgColaJsfGlpQWVgxeNJh4wmugB9VTbQgiFGloTIUSqMXgxMSR6Vo8m/gXevBj1ZGLiSe+GhCgX0FPNzM5Ad9ltt3TZrd3PJxl4nn2e7TzfPvPMPDPPbgPoWUPZP0nEtoj4LSIGqtnaCkPV/65dOTf595Vzk0ksLr72Z5LXu3rl3GRZtXzf1iIznEakHyXFTmrNnTl7YmJmZvp0kR+dP/nO6NyZs08ePzlxbPrY9KnxQ4cOHhh75unxp9oSZxbX1T3vz+7d/dIbF1+ePHLx7R+/ydq7rShfGsct2XTzS0NZ4H8t5urLHon/r2l36832Jemkr4sNYVUqEZF1V38+/geiEjc6byBe/LCrjQNuq+zatLl58cIisIEl0e0WAN1RXuiz+99y69DUY124/Fz1BiiL+1qxVUv6Ii3q9Nfd37bTUEQcWfjni2yLdjyHAABYwSeTnx+OJxrN/9K4e0m9HcUaymBE3BEROyPizojYFRF3ReR174mIe1e5//qloZvnP+mlWwqsRdn879libat2/lfO/mKwUuS25/H3J0ePz0zvL34nw9G/OcuPLbOP71745dNmZUvnf9mW7b+cCxbtuNRX94BuamJ+Ip+UtsHlDyL29DWKP7m+EpBExO6I2LO6H72jTBx/7Ou9zSqtHP8y2rDOtPhVxKPV/l+IuvhLyfLrk6P/i5np/aPlUXGzn36+8Gqz/a8p/jbI+n9L7fFflHx5pkgMvrV0vXYuVr1yeeH3j5ve09zq8b8peT0/H5XLru9NzM+fHovYlBzO8zWvj994b5kv62fxD+9rPP53Fu/J+v++iMgO4vsj4oGIeLBo+0MR8XBE7Fsm/h+eb162Hvp/quH57/rxP5jU9P/qE5UT33/bbP+t9f/BPDVcvJKf/1bQagPX8rsDAACA/4o0/wx8ko5cT6fpyEj1M/y7Yks6Mzs3//jR2XdPTVU/Kz8Y/Wn5pGtgyfPQsWSh+InV/HjxrLgsP1A8N/6sEnl+ZHJ2ZqrLsUOv29pk/Gf+qHS7dcBt12gdbbzBF9qAjad+/Ke12fOvdLIxQEf5vjb0rhXGf9qpdgCd5/oPvavR+D9fl7cWABuT6z/0LuMfepfxD72rbvxX4tdutQTooLV8r1+ilxORrotmtJRo/e9B3O7Em+ujGS0kun1mAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAaI9/AwAA//9sbvBf")
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='mountinfo\x00')
r1 = open(&(0x7f0000000080)='./file1\x00', 0x10b942, 0x1)
sendfile(r1, r0, 0x0, 0x80000000)

3.325320244s ago: executing program 5 (id=1610):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000090024206d041cc340000000000109022400010000a00009040000010301010009210008000122010009058103"], 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_usb_control_io$hid(r0, &(0x7f0000000240)={0x24, &(0x7f0000000480)=ANY=[@ANYBLOB="00000c000000070001"], 0x0, 0x0, 0x0}, 0x0)
sched_setscheduler(0x0, 0x3, &(0x7f0000000540)=0xc)

3.096753352s ago: executing program 3 (id=1611):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40040}, 0x0)
syz_emit_ethernet(0x52, &(0x7f0000000100)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaabb08004c000078ac1414000a0101004414050300000000000000000a010101000000008903ce07", @ANYRES32=0x41424344, @ANYRES32=0x41424344], 0x0)
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, &(0x7f0000000180)='0.:H/', 0x0)
r0 = add_key$user(&(0x7f00000001c0), &(0x7f0000000300)={'syz', 0x0}, &(0x7f0000000080)="bc5d", 0x2, 0xfffffffffffffffe)
r1 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r0, r1, r0}, &(0x7f00000000c0)=""/83, 0xfffffffffffffe4f, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x20042, 0x0)
add_key$user(&(0x7f0000000080), 0x0, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = dup(r3)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, 0x0)
pwritev(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
sendmmsg(0xffffffffffffffff, &(0x7f0000000380)=[{{0x0, 0x0, &(0x7f0000000cc0)=[{&(0x7f0000000080)="9e", 0x1}], 0x1}}], 0x1, 0x4000050)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r3, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

2.660895182s ago: executing program 4 (id=1612):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={0x0, &(0x7f0000000200)=""/101, 0x117, 0x65, 0x0, 0x12, 0x0, @void, @value}, 0x28)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x3)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000040)=ANY=[@ANYBLOB="0100000000080000024d564b000000eccd"])

2.174796315s ago: executing program 3 (id=1613):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = eventfd(0xc)
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, 0x0, &(0x7f00000002c0)=""/100, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000e40))
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000080)={0x0, 0x1, 0x0, &(0x7f00000009c0)=""/251, 0x0, 0x4000})
socket$inet6(0xa, 0x6, 0x4)
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x1200000, &(0x7f0000000940)={[{@usrjquota}, {}, {@sysvgroups}, {@discard}, {@noblock_validity}, {@noquota}, {@nogrpid}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x1, 0x57e, &(0x7f0000001b40)="$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")
openat$uhid(0xffffffffffffff9c, 0x0, 0x2, 0x0)
syz_mount_image$squashfs(&(0x7f0000000100), &(0x7f0000000000)='./bus\x00', 0xa10400, &(0x7f0000000040)=ANY=[], 0x1, 0x1e0, &(0x7f0000005dc0)="$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")
r2 = open(&(0x7f00000000c0)='.\x00', 0x800, 0x50)
newfstatat(0xffffffffffffff9c, &(0x7f0000000400)='./bus\x00', 0x0, 0x2000)
getdents(r2, &(0x7f0000001fc0)=""/184, 0xb8)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r3, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x9)

1.868699029s ago: executing program 4 (id=1614):
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000140), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
umount2(&(0x7f00000002c0)='./file0\x00', 0x1)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r1, 0xffffffffffffffff, 0x0)

1.253240052s ago: executing program 4 (id=1615):
r0 = syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x57e, 0x200e, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x10, 0x3, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x8, 0x1, {0x22, 0x7}}, {{{0x9, 0x5, 0x81, 0x3, 0x0, 0x81, 0x0, 0x1}}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000000c0)={0x24, 0x0, 0x0, &(0x7f0000000140)={0x0, 0x22, 0x7, {[@local=@item_4={0x3, 0x2, 0x7, "0000e700"}, @local=@item_012={0x1, 0x2, 0x8, "ed"}]}}, 0x0}, 0x0)

374.285954ms ago: executing program 5 (id=1616):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000003c0)={'wlan1\x00', <r1=>0x0})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000640)={&(0x7f00000000c0)=ANY=[@ANYBLOB='d\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010027bd5d9fbc82eb357c6ff80008000300", @ANYRES32=r1], 0x64}, 0x1, 0x0, 0x0, 0x6a845ecb4f20be71}, 0x24008080)
sendmsg$BATADV_CMD_GET_MESH(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, 0x0, 0x400, 0x70bd2c, 0x25dfdbfe, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x800)

94.846752ms ago: executing program 6 (id=1617):
syz_mount_image$hfsplus(&(0x7f0000000040), &(0x7f00000004c0)='./file1\x00', 0x1800810, &(0x7f0000000300)=ANY=[], 0xfb, 0x6bd, &(0x7f0000001440)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r0, &(0x7f00000000c0)='`', 0x1, 0x209000)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000040), 0x208e24b)
read$FUSE(r1, &(0x7f0000000c00)={0x2020}, 0x2020)

0s ago: executing program 4 (id=1618):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003900)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
setsockopt$packet_fanout(r1, 0x107, 0x12, 0x0, 0x0)
r2 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r2, 0xaf01, 0x0)
r3 = eventfd(0xc)
ioctl$VHOST_SET_LOG_FD(r2, 0x4004af07, &(0x7f0000000240)=r3)
ioctl$VHOST_SET_VRING_KICK(r2, 0x4008af20, &(0x7f0000000040)={0x1, r3})
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, 0x0, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f0000000c40))
syz_genetlink_get_family_id$tipc2(&(0x7f0000000600), 0xffffffffffffffff)
ioctl$VHOST_VSOCK_SET_RUNNING(r2, 0x4004af61, &(0x7f0000000000)=0x1)
unshare(0x64000600)

kernel console output (not intermixed with test programs):

t supports timestamps until 2038-01-19 (0x7fffffff)
[  480.087133][ T5420] usb 3-1: USB disconnect, device number 21
[  480.155890][ T5852] usb 5-1: USB disconnect, device number 13
[  480.257843][ T5879] usb 4-1: new full-speed USB device number 19 using dummy_hcd
[  480.447547][ T5809] Bluetooth: hci0: command tx timeout
[  480.599138][ T5879] usb 4-1: unable to get BOS descriptor or descriptor too short
[  480.632510][ T5879] usb 4-1: not running at top speed; connect to a high speed hub
[  480.687685][ T5879] usb 4-1: config 1 has an invalid descriptor of length 242, skipping remainder of the config
[  480.698618][ T5879] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 147, changing to 4
[  480.710109][ T5879] usb 4-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 254, changing to 4
[  480.721668][ T5879] usb 4-1: config 1 interface 2 altsetting 1 endpoint 0x82 has invalid maxpacket 46697, setting to 1023
[  480.791276][ T6376] udevd[6376]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  480.873345][ T5879] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  480.883505][ T5879] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  480.892204][ T5879] usb 4-1: Product: syz
[  480.896617][ T5879] usb 4-1: Manufacturer: syz
[  480.901687][ T5879] usb 4-1: SerialNumber: syz
[  480.965895][ T8556] hsr_slave_0: entered promiscuous mode
[  480.976795][ T8556] hsr_slave_1: entered promiscuous mode
[  480.985712][ T8556] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  480.993617][ T8556] Cannot create hsr debugfs directory
[  481.325063][ T8645] loop4: detected capacity change from 0 to 8
[  481.353297][ T5879] usb 4-1: 2:1 : UAC_AS_GENERAL descriptor not found
[  481.427757][ T5852] usb 3-1: new high-speed USB device number 22 using dummy_hcd
[  481.535238][ T5879] usb 4-1: USB disconnect, device number 19
[  481.590575][ T5852] usb 3-1: device descriptor read/64, error -71
[  481.786117][ T5971] udevd[5971]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  481.854805][ T5852] usb 3-1: new high-speed USB device number 23 using dummy_hcd
[  482.066368][ T5852] usb 3-1: device descriptor read/64, error -71
[  482.198442][ T5852] usb usb3-port1: attempt power cycle
[  482.213964][ T5806] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  482.597945][ T5852] usb 3-1: new high-speed USB device number 24 using dummy_hcd
[  482.640225][ T5852] usb 3-1: device descriptor read/8, error -71
[  482.682725][ T8654] 9pnet_fd: Insufficient options for proto=fd
[  482.907789][ T5852] usb 3-1: new high-speed USB device number 25 using dummy_hcd
[  482.963732][ T5852] usb 3-1: device descriptor read/8, error -71
[  483.078881][ T5852] usb usb3-port1: unable to enumerate USB device
[  484.010212][ T8556] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  484.074719][ T8556] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  484.165978][ T8556] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  484.269393][ T8556] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  484.706212][ T8674] loop3: detected capacity change from 0 to 512
[  484.758447][ T8674] EXT4-fs: Ignoring removed mblk_io_submit option
[  484.864276][ T8674] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -13
[  484.897068][ T8674] EXT4-fs error (device loop3): ext4_clear_blocks:876: inode #13: comm syz.3.948: attempt to clear invalid blocks 2 len 1
[  484.924533][ T8674] EXT4-fs (loop3): Remounting filesystem read-only
[  485.025527][ T8674] EXT4-fs (loop3): 1 truncate cleaned up
[  485.038616][ T8674] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  485.514136][ T8556] 8021q: adding VLAN 0 to HW filter on device bond0
[  485.619251][ T5806] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  485.798332][ T5857] usb 3-1: new full-speed USB device number 26 using dummy_hcd
[  485.821118][ T8556] 8021q: adding VLAN 0 to HW filter on device team0
[  485.929926][  T997] bridge0: port 1(bridge_slave_0) entered blocking state
[  485.937647][  T997] bridge0: port 1(bridge_slave_0) entered forwarding state
[  486.067682][  T997] bridge0: port 2(bridge_slave_1) entered blocking state
[  486.075268][  T997] bridge0: port 2(bridge_slave_1) entered forwarding state
[  486.146586][ T5857] usb 3-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  486.157841][ T5857] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x94, changing to 0x84
[  486.170163][ T5857] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10
[  486.184069][ T5857] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  486.195120][ T5857] usb 3-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  486.526556][ T5857] usb 3-1: New USB device found, idVendor=084e, idProduct=1001, bcdDevice=ed.ae
[  486.536545][ T5857] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  486.545070][ T5857] usb 3-1: Product: syz
[  486.549647][ T5857] usb 3-1: Manufacturer: syz
[  486.554478][ T5857] usb 3-1: SerialNumber: syz
[  486.732206][ T5857] usb 3-1: config 0 descriptor??
[  486.810106][ T5857] input: KB Gear Tablet as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/input/input32
[  487.025797][ T5857] usb 3-1: USB disconnect, device number 26
[  487.141441][ T8699] 9pnet_fd: Insufficient options for proto=fd
[  488.337509][ T5879] usb 5-1: new high-speed USB device number 14 using dummy_hcd
[  488.534704][ T8713] loop2: detected capacity change from 0 to 1024
[  488.568168][ T5879] usb 5-1: Using ep0 maxpacket: 8
[  488.616613][ T5879] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[  488.626468][ T5879] usb 5-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  488.641830][ T5879] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  488.652754][ T5879] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  488.780756][ T8713] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  489.078713][ T8556] 8021q: adding VLAN 0 to HW filter on device batadv0
[  489.178768][ T8725] EXT4-fs error (device loop2): mb_free_blocks:1948: group 0, inode 15: block 241:freeing already freed block (bit 15); block bitmap corrupt.
[  489.604491][ T8556] veth0_vlan: entered promiscuous mode
[  489.665227][ T5795] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  489.680047][ T8556] veth1_vlan: entered promiscuous mode
[  490.017035][ T8556] veth0_macvtap: entered promiscuous mode
[  490.113482][ T8556] veth1_macvtap: entered promiscuous mode
[  490.317480][ T8556] batman_adv: batadv0: Interface activated: batadv_slave_0
[  490.362879][ T8737] loop2: detected capacity change from 0 to 256
[  490.412646][ T8556] batman_adv: batadv0: Interface activated: batadv_slave_1
[  490.458230][ T8556] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  490.467859][ T8556] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  490.482695][ T8556] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  490.493464][ T8556] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  490.594182][ T8737] exFAT-fs (loop2): failed to load upcase table (idx : 0x00017bf5, chksum : 0x8472ea0e, utbl_chksum : 0xe619d30d)
[  491.467687][ T5857] usb 5-1: USB disconnect, device number 14
[  492.541248][ T5857] usb 5-1: new full-speed USB device number 15 using dummy_hcd
[  492.763378][ T8759] 9pnet_fd: Insufficient options for proto=fd
[  493.184276][ T5857] usb 5-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  493.195669][ T5857] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x94, changing to 0x84
[  493.207875][ T5857] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10
[  493.219292][ T5857] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  493.229467][ T5857] usb 5-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  493.375514][ T5857] usb 5-1: New USB device found, idVendor=084e, idProduct=1001, bcdDevice=ed.ae
[  493.385833][ T5857] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  493.394321][ T5857] usb 5-1: Product: syz
[  493.398907][ T5857] usb 5-1: Manufacturer: syz
[  493.403757][ T5857] usb 5-1: SerialNumber: syz
[  493.604587][ T5857] usb 5-1: config 0 descriptor??
[  493.699115][ T5857] input: KB Gear Tablet as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/input/input33
[  493.822939][ T8763] kvm: kvm [8762]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x11e) = 0x9800
[  493.838992][ T5420] usb 5-1: USB disconnect, device number 15
[  494.188301][ T8773] loop2: detected capacity change from 0 to 512
[  494.320010][ T8773] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  494.329743][ T8773] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[  494.445592][ T8773] EXT4-fs (loop2): warning: checktime reached, running e2fsck is recommended
[  494.487821][ T8773] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  494.496447][ T8773] System zones: 0-2, 18-18, 34-34
[  494.611138][ T8773] EXT4-fs warning (device loop2): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  494.723437][ T8773] EXT4-fs (loop2): 1 truncate cleaned up
[  494.731764][ T8773] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  495.256845][ T5795] EXT4-fs error (device loop2): ext4_readdir:264: inode #2: block 3: comm syz-executor: path /201/file1: bad entry in directory: inode out of bounds - offset=0, inode=63, rec_len=12, size=4096 fake=1
[  495.620389][ T5795] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  495.664038][ T5857] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[  495.864308][ T5857] usb 2-1: Using ep0 maxpacket: 8
[  495.895701][ T5857] usb 2-1: config index 0 descriptor too short (expected 301, got 45)
[  495.906680][ T5857] usb 2-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  495.919744][ T5857] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  495.930131][ T5857] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  496.144168][  T997] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  496.339257][  T997] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  496.562460][  T997] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  496.730185][  T997] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  497.257924][  T997] bridge_slave_1: left allmulticast mode
[  497.263985][  T997] bridge_slave_1: left promiscuous mode
[  497.270969][  T997] bridge0: port 2(bridge_slave_1) entered disabled state
[  497.322350][  T997] bridge_slave_0: left allmulticast mode
[  497.328708][  T997] bridge_slave_0: left promiscuous mode
[  497.341474][  T997] bridge0: port 1(bridge_slave_0) entered disabled state
[  497.840008][  T997] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  497.897983][  T997] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  497.929813][  T997] bond0 (unregistering): Released all slaves
[  498.718757][  T997] hsr_slave_0: left promiscuous mode
[  498.749054][  T997] hsr_slave_1: left promiscuous mode
[  498.756995][  T997] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  498.765238][  T997] batman_adv: batadv0: Removing interface: batadv_slave_0
[  498.824707][ T5852] usb 2-1: USB disconnect, device number 16
[  498.865783][  T997] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  498.879215][  T997] batman_adv: batadv0: Removing interface: batadv_slave_1
[  499.049853][  T997] veth1_macvtap: left promiscuous mode
[  499.055650][  T997] veth0_macvtap: left promiscuous mode
[  499.064402][  T997] veth1_vlan: left promiscuous mode
[  499.070336][  T997] veth0_vlan: left promiscuous mode
[  499.938952][ T5801] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  499.959683][ T5801] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  499.973874][ T5801] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  500.011913][ T5801] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  500.028020][ T5801] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  500.893230][ T8841] netlink: 8 bytes leftover after parsing attributes in process `syz.4.992'.
[  500.979407][  T997] team0 (unregistering): Port device team_slave_1 removed
[  501.059917][  T997] team0 (unregistering): Port device team_slave_0 removed
[  501.434247][   T30] audit: type=1326 audit(1747878355.550:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8845 comm="syz.4.994" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fdce618e969 code=0x0
[  501.562450][ T5420] usb 4-1: new low-speed USB device number 20 using dummy_hcd
[  501.882145][ T5420] usb 4-1: config 0 interface 0 altsetting 6 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  501.893666][ T5420] usb 4-1: config 0 interface 0 altsetting 6 endpoint 0x81 has invalid maxpacket 1024, setting to 8
[  501.905032][ T5420] usb 4-1: config 0 interface 0 has no altsetting 0
[  501.912168][ T5420] usb 4-1: New USB device found, idVendor=04d9, idProduct=a067, bcdDevice= 0.00
[  501.921581][ T5420] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  501.990326][ T5078] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  501.998799][ T5078] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  502.049908][ T5420] usb 4-1: config 0 descriptor??
[  502.057979][ T8844] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  502.181823][ T5809] Bluetooth: hci1: command tx timeout
[  502.519062][ T3975] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  502.527399][ T3975] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  502.565794][ T8844] loop3: detected capacity change from 0 to 512
[  503.308216][ T8844] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  503.322109][ T8844] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  503.338894][ T8844] EXT4-fs (loop3): SIPHASH is not a valid default hash value
[  503.659832][ T5420] holtek_mouse 0003:04D9:A067.0009: unknown main item tag 0x7
[  503.750992][ T5420] holtek_mouse 0003:04D9:A067.0009: hidraw0: USB HID v0.00 Device [HID 04d9:a067] on usb-dummy_hcd.3-1/input0
[  503.922300][ T5420] usb 4-1: USB disconnect, device number 20
[  504.240376][ T5809] Bluetooth: hci1: command tx timeout
[  504.424082][ T1858] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  504.473959][ T8858] fido_id[8858]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory
[  504.558970][ T1858] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  504.751510][ T1858] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  504.898119][ T8827] chnl_net:caif_netlink_parms(): no params data found
[  504.995789][ T1858] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  505.147706][ T5420] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[  505.407733][ T5420] usb 2-1: Using ep0 maxpacket: 8
[  505.457958][ T5420] usb 2-1: config index 0 descriptor too short (expected 301, got 45)
[  505.466434][ T5420] usb 2-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  505.477653][ T5420] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  505.487018][ T5420] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  505.518354][ T1858] bridge_slave_1: left allmulticast mode
[  505.524294][ T1858] bridge_slave_1: left promiscuous mode
[  505.535801][ T1858] bridge0: port 2(bridge_slave_1) entered disabled state
[  505.649531][ T1858] bridge_slave_0: left allmulticast mode
[  505.655439][ T1858] bridge_slave_0: left promiscuous mode
[  505.662717][ T1858] bridge0: port 1(bridge_slave_0) entered disabled state
[  506.172843][ T1858] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  506.225479][ T1858] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  506.263427][ T1858] bond0 (unregistering): Released all slaves
[  506.287785][ T5809] Bluetooth: hci1: command tx timeout
[  507.056073][ T1858] hsr_slave_0: left promiscuous mode
[  507.081718][ T1858] hsr_slave_1: left promiscuous mode
[  507.089942][ T1858] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  507.097951][ T1858] batman_adv: batadv0: Removing interface: batadv_slave_0
[  507.124374][ T1858] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  507.132596][ T1858] batman_adv: batadv0: Removing interface: batadv_slave_1
[  507.202077][ T1858] veth1_macvtap: left promiscuous mode
[  507.208031][ T1858] veth0_macvtap: left promiscuous mode
[  507.213975][ T1858] veth1_vlan: left promiscuous mode
[  507.219785][ T1858] veth0_vlan: left promiscuous mode
[  508.331154][ T1858] team0 (unregistering): Port device team_slave_1 removed
[  508.369526][ T1858] team0 (unregistering): Port device team_slave_0 removed
[  508.377823][ T5809] Bluetooth: hci1: command tx timeout
[  508.550085][ T5801] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  508.662853][ T5801] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  508.672637][ T5801] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  508.692207][ T5801] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  508.707697][ T5801] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  508.741022][ T8892] binder: 8891:8892 ioctl 4018620d 0 returned -22
[  508.761349][ T5852] usb 2-1: USB disconnect, device number 17
[  508.952892][ T8827] bridge0: port 1(bridge_slave_0) entered blocking state
[  508.965825][ T8827] bridge0: port 1(bridge_slave_0) entered disabled state
[  508.975822][ T8827] bridge_slave_0: entered allmulticast mode
[  508.988664][ T8827] bridge_slave_0: entered promiscuous mode
[  509.153887][ T8827] bridge0: port 2(bridge_slave_1) entered blocking state
[  509.163696][ T8827] bridge0: port 2(bridge_slave_1) entered disabled state
[  509.171695][ T8827] bridge_slave_1: entered allmulticast mode
[  509.181379][ T8827] bridge_slave_1: entered promiscuous mode
[  509.536378][ T8827] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  509.688022][ T8827] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  509.898639][ T5879] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[  510.075963][ T5879] usb 5-1: Using ep0 maxpacket: 16
[  510.092650][ T5879] usb 5-1: config 0 interface 0 altsetting 8 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  510.104645][ T5879] usb 5-1: config 0 interface 0 altsetting 8 endpoint 0x81 has invalid wMaxPacketSize 0
[  510.114879][ T5879] usb 5-1: config 0 interface 0 has no altsetting 0
[  510.122006][ T5879] usb 5-1: New USB device found, idVendor=04f2, idProduct=0418, bcdDevice= 0.00
[  510.131681][ T5879] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  510.170468][ T8827] team0: Port device team_slave_0 added
[  510.233475][ T8827] team0: Port device team_slave_1 added
[  510.256970][ T5879] usb 5-1: config 0 descriptor??
[  510.308733][ T5858] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[  510.518517][ T5858] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 201, changing to 11
[  510.530715][ T5858] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 4
[  510.546621][ T5858] usb 2-1: New USB device found, idVendor=046d, idProduct=c091, bcdDevice= 0.00
[  510.557330][ T5858] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  510.587590][ T5858] usb 2-1: config 0 descriptor??
[  510.703731][ T8827] batman_adv: batadv0: Adding interface: batadv_slave_0
[  510.711357][ T8827] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  510.738069][ T8827] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  510.738150][ T5879] chicony 0003:04F2:0418.000A: unknown main item tag 0x0
[  510.847851][ T5809] Bluetooth: hci0: command tx timeout
[  510.869076][ T5879] chicony 0003:04F2:0418.000A: hidraw0: USB HID v0.00 Device [HID 04f2:0418] on usb-dummy_hcd.4-1/input0
[  511.016668][ T5879] usb 5-1: USB disconnect, device number 16
[  511.048265][ T5858] hid (null): invalid report_count 2134074747
[  511.099824][ T8827] batman_adv: batadv0: Adding interface: batadv_slave_1
[  511.107051][ T8827] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  511.134064][ T8827] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  511.134075][ T5858] logitech-hidpp-device 0003:046D:C091.000B: invalid report_count 2134074747
[  511.134200][ T5858] logitech-hidpp-device 0003:046D:C091.000B: item 0 4 1 9 parsing failed
[  511.305731][ T5858] logitech-hidpp-device 0003:046D:C091.000B: hidpp_probe:parse failed
[  511.314899][ T5858] logitech-hidpp-device 0003:046D:C091.000B: probe with driver logitech-hidpp-device failed with error -22
[  511.389814][ T5858] usb 2-1: USB disconnect, device number 18
[  511.737593][ T8906] fido_id[8906]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.4/usb5/report_descriptor': No such file or directory
[  511.861761][ T8888] chnl_net:caif_netlink_parms(): no params data found
[  512.366358][ T8827] hsr_slave_0: entered promiscuous mode
[  512.376759][ T8827] hsr_slave_1: entered promiscuous mode
[  512.385719][ T8827] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  512.395275][ T8827] Cannot create hsr debugfs directory
[  512.678810][ T8916] loop1: detected capacity change from 0 to 2048
[  512.727653][ T5857] usb 4-1: new high-speed USB device number 21 using dummy_hcd
[  512.814149][ T5858] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[  512.871212][ T8916] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  512.917671][ T5857] usb 4-1: Using ep0 maxpacket: 32
[  512.940209][ T5809] Bluetooth: hci0: command tx timeout
[  512.991253][ T5858] usb 5-1: Using ep0 maxpacket: 16
[  513.016679][ T5857] usb 4-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  513.029082][ T5857] usb 4-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  513.043142][ T5858] usb 5-1: config 0 interface 0 altsetting 1 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  513.054603][ T5858] usb 5-1: config 0 interface 0 altsetting 1 endpoint 0x81 has invalid wMaxPacketSize 0
[  513.064890][ T5858] usb 5-1: config 0 interface 0 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  513.078122][ T5858] usb 5-1: config 0 interface 0 has no altsetting 0
[  513.085050][ T5858] usb 5-1: New USB device found, idVendor=045e, idProduct=05da, bcdDevice= 0.00
[  513.094532][ T5858] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  513.148210][ T5857] usb 4-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  513.158583][ T5857] usb 4-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0
[  513.168281][ T5857] usb 4-1: Product: syz
[  513.172694][ T5857] usb 4-1: Manufacturer: syz
[  513.316238][ T5858] usb 5-1: config 0 descriptor??
[  513.343814][ T5857] hub 4-1:4.0: USB hub found
[  513.549046][ T5803] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  513.979053][ T5858] hid-generic 0003:045E:05DA.000C: unknown main item tag 0x0
[  513.986798][ T5858] hid-generic 0003:045E:05DA.000C: unknown main item tag 0x0
[  513.994653][ T5858] hid-generic 0003:045E:05DA.000C: unknown main item tag 0x0
[  514.002887][ T5858] hid-generic 0003:045E:05DA.000C: ignoring exceeding usage max
[  514.020347][ T5858] hid-generic 0003:045E:05DA.000C: unbalanced collection at end of report description
[  514.022363][ T8913] loop3: detected capacity change from 0 to 2364
[  514.080972][ T8913] iso9660: Unknown parameter 'uid<00000000000000000000'
[  514.312743][ T5858] hid-generic 0003:045E:05DA.000C: probe with driver hid-generic failed with error -22
[  514.339239][ T8928] loop1: detected capacity change from 0 to 256
[  514.386415][ T8827] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  514.419075][ T5857] hub 4-1:4.0: 2 ports detected
[  514.467001][ T5858] usb 5-1: USB disconnect, device number 17
[  514.532178][ T8928] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  514.546449][ T8928] FAT-fs (loop1): Filesystem has been set read-only
[  514.554399][ T8928] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  514.564890][ T8928] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  514.597836][   T30] audit: type=1800 audit(1747878368.690:4): pid=8928 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1009" name="file1" dev="loop1" ino=1048611 res=0 errno=0
[  514.625272][ T8888] bridge0: port 1(bridge_slave_0) entered blocking state
[  514.633546][ T8888] bridge0: port 1(bridge_slave_0) entered disabled state
[  514.643968][ T8888] bridge_slave_0: entered allmulticast mode
[  514.656349][ T8888] bridge_slave_0: entered promiscuous mode
[  514.700187][ T8827] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  514.738762][ T5857] hub 4-1:4.0: hub_hub_status failed (err = -71)
[  514.747561][ T5857] hub 4-1:4.0: config failed, can't get hub status (err -71)
[  514.824504][ T8827] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  514.889496][ T5857] usb 4-1: USB disconnect, device number 21
[  514.909320][ T8888] bridge0: port 2(bridge_slave_1) entered blocking state
[  514.917584][ T8888] bridge0: port 2(bridge_slave_1) entered disabled state
[  514.925361][ T8888] bridge_slave_1: entered allmulticast mode
[  515.015585][ T5809] Bluetooth: hci0: command tx timeout
[  515.041907][ T8888] bridge_slave_1: entered promiscuous mode
[  515.066804][ T8827] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  515.266255][ T8928] syz.1.1009 (8928) used greatest stack depth: 3824 bytes left
[  515.596563][ T8888] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  515.731453][ T8888] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  515.819260][ T8939] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1011'.
[  515.829040][ T8939] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1011'.
[  515.942658][ T8939] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1011'.
[  516.142478][ T8888] team0: Port device team_slave_0 added
[  516.211440][ T8888] team0: Port device team_slave_1 added
[  516.593230][ T8888] batman_adv: batadv0: Adding interface: batadv_slave_0
[  516.600604][ T8888] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  516.615175][ T8949] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  516.627368][ T8888] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  516.886652][ T8888] batman_adv: batadv0: Adding interface: batadv_slave_1
[  516.896212][ T8888] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  516.923258][ T8888] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  516.969670][ T8827] 8021q: adding VLAN 0 to HW filter on device bond0
[  517.103503][ T5809] Bluetooth: hci0: command tx timeout
[  517.416122][ T8888] hsr_slave_0: entered promiscuous mode
[  517.426439][ T8888] hsr_slave_1: entered promiscuous mode
[  517.435317][ T8888] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  517.443245][ T8888] Cannot create hsr debugfs directory
[  517.480774][ T8827] 8021q: adding VLAN 0 to HW filter on device team0
[  517.836842][ T8960] loop3: detected capacity change from 0 to 256
[  517.886810][ T1858] bridge0: port 1(bridge_slave_0) entered blocking state
[  517.894762][ T1858] bridge0: port 1(bridge_slave_0) entered forwarding state
[  518.086252][ T1858] bridge0: port 2(bridge_slave_1) entered blocking state
[  518.093993][ T1858] bridge0: port 2(bridge_slave_1) entered forwarding state
[  518.399930][ T8960] FAT-fs (loop3): Directory bread(block 64) failed
[  518.406760][ T8960] FAT-fs (loop3): Directory bread(block 65) failed
[  518.413899][ T8960] FAT-fs (loop3): Directory bread(block 66) failed
[  518.421760][ T8960] FAT-fs (loop3): Directory bread(block 67) failed
[  518.431688][ T8960] FAT-fs (loop3): Directory bread(block 68) failed
[  518.439427][ T8960] FAT-fs (loop3): Directory bread(block 69) failed
[  518.446362][ T8960] FAT-fs (loop3): Directory bread(block 70) failed
[  518.453304][ T8960] FAT-fs (loop3): Directory bread(block 71) failed
[  518.460735][ T8960] FAT-fs (loop3): Directory bread(block 72) failed
[  518.467742][ T8960] FAT-fs (loop3): Directory bread(block 73) failed
[  518.951069][ T8964] loop4: detected capacity change from 0 to 1024
[  520.102211][ T8888] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  520.188517][ T8888] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  520.329838][ T8888] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  520.442131][ T8888] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  521.125147][ T8827] 8021q: adding VLAN 0 to HW filter on device batadv0
[  521.779251][ T5879] usb 4-1: new high-speed USB device number 22 using dummy_hcd
[  522.038831][ T5879] usb 4-1: Using ep0 maxpacket: 8
[  522.101448][ T5879] usb 4-1: config index 0 descriptor too short (expected 301, got 45)
[  522.110705][ T5879] usb 4-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  522.124321][ T5879] usb 4-1: config 16 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[  522.138876][ T5879] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  522.148285][ T5879] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  522.250315][ T8888] 8021q: adding VLAN 0 to HW filter on device bond0
[  522.382582][ T5879] usbtmc 4-1:16.0: bulk endpoints not found
[  522.469695][ T8888] 8021q: adding VLAN 0 to HW filter on device team0
[  522.522708][ T8999] loop1: detected capacity change from 0 to 128
[  522.533795][ T4503] bridge0: port 1(bridge_slave_0) entered blocking state
[  522.541673][ T4503] bridge0: port 1(bridge_slave_0) entered forwarding state
[  522.633401][ T4503] bridge0: port 2(bridge_slave_1) entered blocking state
[  522.641149][ T4503] bridge0: port 2(bridge_slave_1) entered forwarding state
[  522.784696][ T8999] FAT-fs (loop1): error, corrupted directory (invalid entries)
[  522.792983][ T8999] FAT-fs (loop1): Filesystem has been set read-only
[  524.014797][ T8827] veth0_vlan: entered promiscuous mode
[  524.137424][ T8827] veth1_vlan: entered promiscuous mode
[  524.518763][ T8827] veth0_macvtap: entered promiscuous mode
[  524.577999][ T8827] veth1_macvtap: entered promiscuous mode
[  524.813166][ T8888] 8021q: adding VLAN 0 to HW filter on device batadv0
[  524.838033][ T8827] batman_adv: batadv0: Interface activated: batadv_slave_0
[  524.886171][ T8827] batman_adv: batadv0: Interface activated: batadv_slave_1
[  524.989282][ T8827] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  524.999965][ T8827] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  525.010195][ T8827] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  525.019399][ T8827] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  525.324813][ T8888] veth0_vlan: entered promiscuous mode
[  525.406467][ T5858] usb 4-1: USB disconnect, device number 22
[  525.451452][ T8888] veth1_vlan: entered promiscuous mode
[  525.908567][ T8888] veth0_macvtap: entered promiscuous mode
[  525.956247][ T8888] veth1_macvtap: entered promiscuous mode
[  526.142026][ T8888] batman_adv: batadv0: Interface activated: batadv_slave_0
[  526.255862][ T8888] batman_adv: batadv0: Interface activated: batadv_slave_1
[  526.338299][ T8888] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  526.347649][ T8888] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  526.356724][ T8888] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  526.365930][ T8888] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  531.525537][ T1283] ieee802154 phy0 wpan0: encryption failed: -22
[  531.532503][ T1283] ieee802154 phy1 wpan1: encryption failed: -22
[  532.728311][ T4038] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  532.736394][ T4038] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  532.982948][ T3975] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  532.992783][ T3975] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  534.119590][  T997] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  534.128178][  T997] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  534.448390][ T3975] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  534.456552][ T3975] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  534.850759][ T9163] loop5: detected capacity change from 0 to 256
[  534.951551][ T5420] usb 4-1: new high-speed USB device number 23 using dummy_hcd
[  535.179502][ T5420] usb 4-1: Using ep0 maxpacket: 32
[  535.211469][ T5420] usb 4-1: unable to get BOS descriptor or descriptor too short
[  535.263934][ T5420] usb 4-1: config 54 has an invalid interface number: 50 but max is 0
[  535.272691][ T5420] usb 4-1: config 54 has no interface number 0
[  535.279363][ T5420] usb 4-1: config 54 interface 50 has no altsetting 0
[  535.597632][ T5420] usb 4-1: New USB device found, idVendor=1ba4, idProduct=0002, bcdDevice=66.06
[  535.607002][ T5420] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  535.615399][ T5420] usb 4-1: Product: syz
[  535.620536][ T5420] usb 4-1: Manufacturer: syz
[  535.625452][ T5420] usb 4-1: SerialNumber: syz
[  535.659063][  T997] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  535.986872][  T997] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  536.263600][  T997] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  536.373385][ T9165] netem: incorrect ge model size
[  536.379099][ T9165] netem: change failed
[  536.421964][ T5420] cp210x 4-1:54.50: cp210x converter detected
[  536.455308][ T5420] cp210x 4-1:54.50: failed to get vendor val 0x370b size 1: -71
[  536.463388][ T5420] cp210x 4-1:54.50: querying part number failed
[  536.486816][  T997] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  536.528057][ T5420] usb 4-1: cp210x converter now attached to ttyUSB0
[  536.578635][ T5420] usb 4-1: USB disconnect, device number 23
[  536.639218][ T5420] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  536.648533][ T5420] cp210x 4-1:54.50: device disconnected
[  536.835882][  T997] bridge_slave_1: left allmulticast mode
[  536.842521][  T997] bridge_slave_1: left promiscuous mode
[  536.849298][  T997] bridge0: port 2(bridge_slave_1) entered disabled state
[  536.869044][  T997] bridge_slave_0: left allmulticast mode
[  536.874949][  T997] bridge_slave_0: left promiscuous mode
[  536.882012][  T997] bridge0: port 1(bridge_slave_0) entered disabled state
[  537.353661][  T997] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  537.398336][  T997] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  537.417458][  T997] bond0 (unregistering): Released all slaves
[  537.815509][  T997] hsr_slave_0: left promiscuous mode
[  537.824719][  T997] hsr_slave_1: left promiscuous mode
[  537.834760][  T997] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  537.842444][  T997] batman_adv: batadv0: Removing interface: batadv_slave_0
[  537.854167][  T997] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  537.862551][  T997] batman_adv: batadv0: Removing interface: batadv_slave_1
[  537.901731][  T997] veth1_macvtap: left promiscuous mode
[  537.907589][  T997] veth0_macvtap: left promiscuous mode
[  537.913359][  T997] veth1_vlan: left promiscuous mode
[  537.920597][  T997] veth0_vlan: left promiscuous mode
[  538.929565][  T997] team0 (unregistering): Port device team_slave_1 removed
[  539.008973][  T997] team0 (unregistering): Port device team_slave_0 removed
[  539.155942][ T9195] loop3: detected capacity change from 0 to 8
[  539.536249][ T5801] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  539.563691][ T5801] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  539.574522][ T5801] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  539.647876][ T1599] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  539.664326][ T5801] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  539.681287][ T5801] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  540.014590][ T1599] usb 6-1: device descriptor read/64, error -71
[  540.329911][ T1599] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  540.508175][ T1599] usb 6-1: device descriptor read/64, error -71
[  540.667758][ T1599] usb usb6-port1: attempt power cycle
[  540.740214][ T9200] chnl_net:caif_netlink_parms(): no params data found
[  541.043535][ T1599] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  541.108424][ T1599] usb 6-1: device descriptor read/8, error -71
[  541.347739][ T1599] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  541.409574][ T1599] usb 6-1: device descriptor read/8, error -71
[  541.524810][ T1599] usb usb6-port1: unable to enumerate USB device
[  541.757563][ T5801] Bluetooth: hci0: command tx timeout
[  541.807722][ T9200] bridge0: port 1(bridge_slave_0) entered blocking state
[  541.816020][ T9200] bridge0: port 1(bridge_slave_0) entered disabled state
[  541.824233][ T9200] bridge_slave_0: entered allmulticast mode
[  541.838494][ T9200] bridge_slave_0: entered promiscuous mode
[  541.854175][ T9200] bridge0: port 2(bridge_slave_1) entered blocking state
[  541.861949][ T9200] bridge0: port 2(bridge_slave_1) entered disabled state
[  541.869980][ T9200] bridge_slave_1: entered allmulticast mode
[  541.883388][ T9200] bridge_slave_1: entered promiscuous mode
[  542.022664][ T9200] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  542.079521][ T9200] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  542.296080][ T9200] team0: Port device team_slave_0 added
[  542.334586][ T9200] team0: Port device team_slave_1 added
[  542.458510][ T9200] batman_adv: batadv0: Adding interface: batadv_slave_0
[  542.465682][ T9200] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  542.495340][ T9200] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  542.569692][ T9200] batman_adv: batadv0: Adding interface: batadv_slave_1
[  542.576874][ T9200] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  542.609780][ T9200] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  543.003072][ T9200] hsr_slave_0: entered promiscuous mode
[  543.022973][ T9200] hsr_slave_1: entered promiscuous mode
[  543.031926][ T9200] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  543.039882][ T9200] Cannot create hsr debugfs directory
[  543.353378][ T9247] support for the xor transformation has been removed.
[  543.567277][ T9249] binder: 9248:9249 ioctl c0306201 0 returned -14
[  543.807590][ T5801] Bluetooth: hci0: command tx timeout
[  544.291254][ T5420] usb 4-1: new high-speed USB device number 24 using dummy_hcd
[  544.562311][ T9200] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  544.571425][ T5420] usb 4-1: Using ep0 maxpacket: 32
[  544.605516][ T5420] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  544.617112][ T5420] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  544.627581][ T5420] usb 4-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  544.636945][ T5420] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  544.650192][ T5858] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  544.665041][ T9200] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  544.692080][ T5420] usb 4-1: config 0 descriptor??
[  544.733717][ T9266] overlayfs: failed to clone upperpath
[  544.759504][ T9200] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  544.798904][ T5858] usb 6-1: device descriptor read/64, error -71
[  544.833298][ T9200] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  545.067713][ T5858] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  545.237515][ T5858] usb 6-1: device descriptor read/64, error -71
[  545.260909][ T5420] savu 0003:1E7D:2D5A.000D: hiddev0,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.3-1/input0
[  545.352349][ T5858] usb usb6-port1: attempt power cycle
[  545.453511][ T5857] usb 4-1: USB disconnect, device number 24
[  545.570842][ T9200] 8021q: adding VLAN 0 to HW filter on device bond0
[  545.640742][ T9200] 8021q: adding VLAN 0 to HW filter on device team0
[  545.691890][  T997] bridge0: port 1(bridge_slave_0) entered blocking state
[  545.699733][  T997] bridge0: port 1(bridge_slave_0) entered forwarding state
[  545.715148][  T997] bridge0: port 2(bridge_slave_1) entered blocking state
[  545.722861][  T997] bridge0: port 2(bridge_slave_1) entered forwarding state
[  545.727574][ T5858] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  545.782877][ T5858] usb 6-1: device descriptor read/8, error -71
[  545.903365][ T5801] Bluetooth: hci0: command tx timeout
[  546.050023][ T5858] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  546.088587][ T5858] usb 6-1: device descriptor read/8, error -71
[  546.200230][ T5858] usb usb6-port1: unable to enumerate USB device
[  547.967470][ T5801] Bluetooth: hci0: command tx timeout
[  549.586883][ T9200] 8021q: adding VLAN 0 to HW filter on device batadv0
[  550.005005][ T9200] veth0_vlan: entered promiscuous mode
[  550.122585][ T9200] veth1_vlan: entered promiscuous mode
[  550.402455][ T9200] veth0_macvtap: entered promiscuous mode
[  550.463564][ T9200] veth1_macvtap: entered promiscuous mode
[  550.578167][ T9310] loop3: detected capacity change from 0 to 512
[  550.620800][ T9200] batman_adv: batadv0: Interface activated: batadv_slave_0
[  550.696201][ T9200] batman_adv: batadv0: Interface activated: batadv_slave_1
[  550.728444][ T9200] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  550.737696][ T9200] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  550.746663][ T9200] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  550.756581][ T9200] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  553.348886][    T0] NOHZ tick-stop error: local softirq work is pending, handler #42!!!
[  553.658975][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  553.946976][ T9331] loop5: detected capacity change from 0 to 256
[  554.009821][ T9331] exfat: Invalid uid '0x00000000ffffffff'
[  554.513011][ T9343] loop3: detected capacity change from 0 to 256
[  555.138896][ T5852] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  555.329970][ T5852] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  555.340621][ T5852] usb 6-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  555.391230][ T5852] usb 6-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  555.403695][ T5852] usb 6-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  555.413802][ T5852] usb 6-1: Manufacturer: syz
[  555.485749][ T5852] usb 6-1: config 0 descriptor??
[  557.746252][ T5420] usb 4-1: new high-speed USB device number 25 using dummy_hcd
[  557.836812][ T5858] usb 6-1: USB disconnect, device number 10
[  557.938764][ T5420] usb 4-1: Using ep0 maxpacket: 32
[  558.043426][ T5420] usb 4-1: config 0 has an invalid interface number: 67 but max is 0
[  558.052051][ T5420] usb 4-1: config 0 has no interface number 0
[  558.078257][ T5420] usb 4-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[  558.087843][ T5420] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  558.096095][ T5420] usb 4-1: Product: syz
[  558.100611][ T5420] usb 4-1: Manufacturer: syz
[  558.105441][ T5420] usb 4-1: SerialNumber: syz
[  558.313010][ T5420] usb 4-1: config 0 descriptor??
[  558.355907][ T5078] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  558.366744][ T5078] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  558.401217][ T5420] smsc95xx v2.0.0
[  558.883494][ T5420] smsc95xx 4-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -32
[  558.894698][ T5420] smsc95xx 4-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  559.025262][ T5078] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  559.037139][ T5078] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  559.760243][ T5420] smsc95xx 4-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71
[  559.772613][ T5420] smsc95xx 4-1:0.67: probe with driver smsc95xx failed with error -71
[  559.969576][ T5420] usb 4-1: USB disconnect, device number 25
[  560.489598][  T997] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  561.619543][  T997] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  565.096049][  T997] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  565.363452][  T997] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  565.450722][ T9417] loop3: detected capacity change from 0 to 16
[  565.506869][ T9417] erofs (device loop3): mounted with root inode @ nid 36.
[  565.588310][ T5801] erofs (device loop3): failed to decompress -13 in[56, 0] out[9000]
[  565.710219][ T9417] erofs (device loop3): failed to decompress -13 in[56, 4040] out[8192]
[  565.719396][ T9417] erofs (device loop3): read error -117 @ 0 of nid 89
[  565.767648][   T30] audit: type=1800 audit(1747878675.844:5): pid=9417 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1146" name="file2" dev="loop3" ino=89 res=0 errno=0
[  565.859558][  T997] bridge_slave_1: left allmulticast mode
[  565.865482][  T997] bridge_slave_1: left promiscuous mode
[  565.872638][  T997] bridge0: port 2(bridge_slave_1) entered disabled state
[  565.933314][  T997] bridge_slave_0: left allmulticast mode
[  565.939474][  T997] bridge_slave_0: left promiscuous mode
[  565.951969][  T997] bridge0: port 1(bridge_slave_0) entered disabled state
[  566.445967][  T997] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  566.486049][  T997] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  566.500723][  T997] bond0 (unregistering): Released all slaves
[  566.872436][  T997] hsr_slave_0: left promiscuous mode
[  566.881640][  T997] hsr_slave_1: left promiscuous mode
[  566.890175][  T997] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  566.899218][  T997] batman_adv: batadv0: Removing interface: batadv_slave_0
[  566.909261][  T997] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  566.916951][  T997] batman_adv: batadv0: Removing interface: batadv_slave_1
[  566.943197][  T997] veth1_macvtap: left promiscuous mode
[  566.949262][  T997] veth0_macvtap: left promiscuous mode
[  566.954978][  T997] veth1_vlan: left promiscuous mode
[  566.960678][  T997] veth0_vlan: left promiscuous mode
[  567.699228][ T5879] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  567.744508][  T997] team0 (unregistering): Port device team_slave_1 removed
[  567.772154][  T997] team0 (unregistering): Port device team_slave_0 removed
[  567.881239][ T5879] usb 6-1: Using ep0 maxpacket: 32
[  567.922050][ T5879] usb 6-1: unable to get BOS descriptor or descriptor too short
[  567.965021][ T5879] usb 6-1: config 54 has an invalid interface number: 50 but max is 0
[  567.974219][ T5879] usb 6-1: config 54 has no interface number 0
[  567.980756][ T5879] usb 6-1: config 54 interface 50 has no altsetting 0
[  568.033258][ T5879] usb 6-1: New USB device found, idVendor=1ba4, idProduct=0002, bcdDevice=66.06
[  568.033750][ T9424] bridge0: port 2(bridge_slave_1) entered disabled state
[  568.043000][ T5879] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  568.051137][ T9424] bridge0: port 1(bridge_slave_0) entered disabled state
[  568.058280][ T5879] usb 6-1: Product: syz
[  568.069785][ T5879] usb 6-1: Manufacturer: syz
[  568.074622][ T5879] usb 6-1: SerialNumber: syz
[  568.265766][ T5809] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  568.358429][ T5809] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  568.369601][ T5809] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  568.396545][ T5809] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  568.414411][ T5809] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  568.758409][ T9434] netem: incorrect ge model size
[  568.763791][ T9434] netem: change failed
[  568.866994][ T5879] cp210x 6-1:54.50: cp210x converter detected
[  568.886760][ T5879] cp210x 6-1:54.50: failed to get vendor val 0x370b size 1: -71
[  568.895633][ T5879] cp210x 6-1:54.50: querying part number failed
[  568.937646][ T5879] usb 6-1: cp210x converter now attached to ttyUSB0
[  568.992554][ T5879] usb 6-1: USB disconnect, device number 11
[  569.005594][ T5879] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  569.018826][ T5879] cp210x 6-1:54.50: device disconnected
[  569.368609][ T9430] chnl_net:caif_netlink_parms(): no params data found
[  570.528775][ T5801] Bluetooth: hci0: command tx timeout
[  570.634059][ T9430] bridge0: port 1(bridge_slave_0) entered blocking state
[  570.642553][ T9430] bridge0: port 1(bridge_slave_0) entered disabled state
[  570.650344][ T9430] bridge_slave_0: entered allmulticast mode
[  570.663705][ T9430] bridge_slave_0: entered promiscuous mode
[  571.375705][ T9430] bridge0: port 2(bridge_slave_1) entered blocking state
[  571.383499][ T9430] bridge0: port 2(bridge_slave_1) entered disabled state
[  571.391475][ T9430] bridge_slave_1: entered allmulticast mode
[  571.400828][ T9430] bridge_slave_1: entered promiscuous mode
[  571.682030][ T9472] loop5: detected capacity change from 0 to 8
[  571.876790][ T9430] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  572.098971][ T9430] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  572.460938][ T9477] netem: incorrect ge model size
[  572.466291][ T9477] netem: change failed
[  572.607796][ T5801] Bluetooth: hci0: command tx timeout
[  572.723391][ T9430] team0: Port device team_slave_0 added
[  572.786744][ T9430] team0: Port device team_slave_1 added
[  573.115222][ T9430] batman_adv: batadv0: Adding interface: batadv_slave_0
[  573.122584][ T9430] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  573.149470][ T9430] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  573.184072][ T9430] batman_adv: batadv0: Adding interface: batadv_slave_1
[  573.191721][ T9430] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  573.221365][ T9430] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  574.437992][ T9430] hsr_slave_0: entered promiscuous mode
[  574.450397][ T9430] hsr_slave_1: entered promiscuous mode
[  574.458808][ T9430] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  574.466835][ T9430] Cannot create hsr debugfs directory
[  574.688073][ T5801] Bluetooth: hci0: command tx timeout
[  575.634452][ T9501] loop5: detected capacity change from 0 to 512
[  575.725303][ T9501] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  575.738480][ T9501] ext4 filesystem being mounted at /22/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  576.093464][ T9430] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  576.149222][ T9430] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  576.237833][ T9430] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  576.298963][ T9430] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  576.748942][ T8827] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  576.783448][ T5801] Bluetooth: hci0: command tx timeout
[  576.917997][ T9430] 8021q: adding VLAN 0 to HW filter on device bond0
[  577.014194][ T9430] 8021q: adding VLAN 0 to HW filter on device team0
[  577.065172][   T68] bridge0: port 1(bridge_slave_0) entered blocking state
[  577.072899][   T68] bridge0: port 1(bridge_slave_0) entered forwarding state
[  577.096032][ T5420] usb 4-1: new high-speed USB device number 26 using dummy_hcd
[  577.149787][   T68] bridge0: port 2(bridge_slave_1) entered blocking state
[  577.157447][   T68] bridge0: port 2(bridge_slave_1) entered forwarding state
[  577.303021][ T5420] usb 4-1: Using ep0 maxpacket: 32
[  577.335384][ T5420] usb 4-1: unable to get BOS descriptor or descriptor too short
[  577.558510][ T5420] usb 4-1: config 54 has an invalid interface number: 50 but max is 0
[  577.566964][ T5420] usb 4-1: config 54 has no interface number 0
[  577.576397][ T5420] usb 4-1: config 54 interface 50 has no altsetting 0
[  577.640015][ T5420] usb 4-1: New USB device found, idVendor=1ba4, idProduct=0002, bcdDevice=66.06
[  577.649704][ T5420] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  577.658128][ T5420] usb 4-1: Product: syz
[  577.662545][ T5420] usb 4-1: Manufacturer: syz
[  577.667400][ T5420] usb 4-1: SerialNumber: syz
[  577.956909][ T9518] netem: incorrect ge model size
[  577.963079][ T9518] netem: change failed
[  578.085458][ T5420] cp210x 4-1:54.50: cp210x converter detected
[  578.123808][ T5420] cp210x 4-1:54.50: failed to get vendor val 0x370b size 1: -71
[  578.143245][ T5420] cp210x 4-1:54.50: querying part number failed
[  578.162268][ T5420] usb 4-1: cp210x converter now attached to ttyUSB0
[  578.174884][ T5420] usb 4-1: USB disconnect, device number 26
[  578.201305][ T5420] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  578.211579][ T5420] cp210x 4-1:54.50: device disconnected
[  578.589575][ T9537] loop5: detected capacity change from 0 to 164
[  579.209896][ T9430] 8021q: adding VLAN 0 to HW filter on device batadv0
[  579.554151][ T9430] veth0_vlan: entered promiscuous mode
[  579.624889][ T9430] veth1_vlan: entered promiscuous mode
[  579.818698][ T9552] loop3: detected capacity change from 0 to 512
[  579.845907][ T9552] EXT4-fs (loop3): blocks per group (95) and clusters per group (32768) inconsistent
[  579.900052][ T9430] veth0_macvtap: entered promiscuous mode
[  579.936250][ T9552] syz.3.1197: attempt to access beyond end of device
[  579.936250][ T9552] loop3: rw=4096, sector=2, nr_sectors = 2 limit=0
[  579.950097][ T9552] EXT4-fs (loop3): unable to read superblock
[  579.958787][ T9430] veth1_macvtap: entered promiscuous mode
[  580.111570][ T9430] batman_adv: batadv0: Interface activated: batadv_slave_0
[  580.171826][ T9430] batman_adv: batadv0: Interface activated: batadv_slave_1
[  580.842755][ T9561] overlayfs: failed to clone upperpath
[  580.845782][ T9430] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  580.859308][ T9430] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  580.868379][ T9430] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  580.877405][ T9430] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  581.605016][ T9578] bridge0: port 2(bridge_slave_1) entered disabled state
[  581.613400][ T9578] bridge0: port 1(bridge_slave_0) entered disabled state
[  581.626381][ T9578] bridge0: entered allmulticast mode
[  581.666291][ T9579] bridge_slave_1: left allmulticast mode
[  581.672523][ T9579] bridge_slave_1: left promiscuous mode
[  581.679627][ T9579] bridge0: port 2(bridge_slave_1) entered disabled state
[  581.798281][ T9579] bridge_slave_0: left allmulticast mode
[  581.804198][ T9579] bridge_slave_0: left promiscuous mode
[  581.812367][ T9579] bridge0: port 1(bridge_slave_0) entered disabled state
[  593.137207][ T1283] ieee802154 phy0 wpan0: encryption failed: -22
[  593.143900][ T1283] ieee802154 phy1 wpan1: encryption failed: -22
[  593.935267][   T68] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  593.943524][   T68] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  594.182220][ T4126] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  594.190606][ T4126] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  594.913080][ T4126] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  595.050462][ T4126] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  595.213336][ T4126] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  595.250988][ T9686] loop3: detected capacity change from 0 to 736
[  595.342810][ T4126] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  595.679610][ T4126] bridge_slave_1: left allmulticast mode
[  595.685689][ T4126] bridge_slave_1: left promiscuous mode
[  595.692488][ T4126] bridge0: port 2(bridge_slave_1) entered disabled state
[  595.729577][ T4126] bridge_slave_0: left allmulticast mode
[  595.735476][ T4126] bridge_slave_0: left promiscuous mode
[  595.746544][ T4126] bridge0: port 1(bridge_slave_0) entered disabled state
[  596.193241][ T4126] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  596.230231][ T4126] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  596.272951][ T4126] bond0 (unregistering): Released all slaves
[  596.655697][ T4126] hsr_slave_0: left promiscuous mode
[  596.684973][ T4126] hsr_slave_1: left promiscuous mode
[  596.693648][ T4126] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  596.701507][ T4126] batman_adv: batadv0: Removing interface: batadv_slave_0
[  596.716673][ T4126] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  596.724514][ T4126] batman_adv: batadv0: Removing interface: batadv_slave_1
[  596.757844][ T4126] veth1_macvtap: left promiscuous mode
[  596.767007][ T4126] veth0_macvtap: left promiscuous mode
[  596.775065][ T4126] veth1_vlan: left promiscuous mode
[  596.780780][ T4126] veth0_vlan: left promiscuous mode
[  597.340164][ T4126] team0 (unregistering): Port device team_slave_1 removed
[  597.420430][ T4126] team0 (unregistering): Port device team_slave_0 removed
[  598.264218][ T5809] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  598.273629][ T5809] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  598.284319][ T5809] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  598.350066][ T5809] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  598.426697][ T5809] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  599.565125][ T9718] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  600.345201][ T9722] loop5: detected capacity change from 0 to 4096
[  600.476315][ T9722] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  600.528175][ T5809] Bluetooth: hci0: command tx timeout
[  600.626191][ T9699] chnl_net:caif_netlink_parms(): no params data found
[  600.703254][   T30] audit: type=1800 audit(1747878710.814:6): pid=9722 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1255" name="file1" dev="loop5" ino=15 res=0 errno=0
[  601.187921][ T8827] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  601.359168][ T9730] netlink: 1276 bytes leftover after parsing attributes in process `syz.4.1257'.
[  602.633398][ T5809] Bluetooth: hci0: command tx timeout
[  604.700268][ T5809] Bluetooth: hci0: command tx timeout
[  604.721547][ T9699] bridge0: port 1(bridge_slave_0) entered blocking state
[  604.729323][ T9699] bridge0: port 1(bridge_slave_0) entered disabled state
[  604.736995][ T9699] bridge_slave_0: entered allmulticast mode
[  604.746554][ T9699] bridge_slave_0: entered promiscuous mode
[  605.034641][ T9699] bridge0: port 2(bridge_slave_1) entered blocking state
[  605.042471][ T9699] bridge0: port 2(bridge_slave_1) entered disabled state
[  605.050388][ T9699] bridge_slave_1: entered allmulticast mode
[  605.063892][ T9699] bridge_slave_1: entered promiscuous mode
[  605.660618][ T9761] loop5: detected capacity change from 0 to 128
[  605.745310][ T9699] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  605.804172][ T9761] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256
[  605.876556][ T9699] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  605.955042][ T9761] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  606.129997][   T30] audit: type=1800 audit(1747878716.224:7): pid=9761 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1269" name="file1" dev="loop5" ino=104 res=0 errno=0
[  606.774692][ T5809] Bluetooth: hci0: command tx timeout
[  606.851738][ T9699] team0: Port device team_slave_0 added
[  606.882529][ T9699] team0: Port device team_slave_1 added
[  607.241632][ T9699] batman_adv: batadv0: Adding interface: batadv_slave_0
[  607.249008][ T9699] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  607.275689][ T9699] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  607.358745][ T9699] batman_adv: batadv0: Adding interface: batadv_slave_1
[  607.366219][ T9699] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  607.392742][ T9699] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  607.600093][ T9699] hsr_slave_0: entered promiscuous mode
[  607.609988][ T9699] hsr_slave_1: entered promiscuous mode
[  607.623096][ T9699] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  607.630965][ T9699] Cannot create hsr debugfs directory
[  608.269459][ T9787] ptrace attach of "./syz-executor exec"[5803] was attempted by "./syz-executor exec"[9787]
[  609.184516][ T9800] loop3: detected capacity change from 0 to 256
[  609.187494][ T9699] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  609.273945][ T9699] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  609.365055][ T9699] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  609.372712][ T9800] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x6a030ba9, utbl_chksum : 0xe619d30d)
[  609.446736][ T9699] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  609.488093][ T9800] exFAT-fs (loop3): start_clu is invalid cluster(0xffffffff)
[  609.648714][ T9810] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1289'.
[  610.426038][ T9699] 8021q: adding VLAN 0 to HW filter on device bond0
[  610.538858][ T9699] 8021q: adding VLAN 0 to HW filter on device team0
[  610.613524][  T997] bridge0: port 1(bridge_slave_0) entered blocking state
[  610.621300][  T997] bridge0: port 1(bridge_slave_0) entered forwarding state
[  610.686073][  T997] bridge0: port 2(bridge_slave_1) entered blocking state
[  610.693711][  T997] bridge0: port 2(bridge_slave_1) entered forwarding state
[  611.781434][ T9842] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  612.025318][ T9846] loop5: detected capacity change from 0 to 1024
[  612.074985][ T9846] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  612.146648][ T9846] JBD2: no valid journal superblock found
[  612.153104][ T9846] EXT4-fs (loop5): Could not load journal inode
[  612.455774][ T9842] loop5: detected capacity change from 0 to 512
[  612.516047][ T9842] EXT4-fs (loop5): blocks per group (95) and clusters per group (32768) inconsistent
[  612.559037][ T9699] 8021q: adding VLAN 0 to HW filter on device batadv0
[  612.606912][ T9853] 9pnet_fd: Insufficient options for proto=fd
[  613.073572][ T9699] veth0_vlan: entered promiscuous mode
[  613.160044][ T9699] veth1_vlan: entered promiscuous mode
[  613.357721][ T9699] veth0_macvtap: entered promiscuous mode
[  613.384308][ T9699] veth1_macvtap: entered promiscuous mode
[  613.551714][ T9699] batman_adv: batadv0: Interface activated: batadv_slave_0
[  613.616907][ T9699] batman_adv: batadv0: Interface activated: batadv_slave_1
[  613.693796][ T9699] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  613.704244][ T9699] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  613.713419][ T9699] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  613.722593][ T9699] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  614.407549][ T5420] usb 4-1: new high-speed USB device number 27 using dummy_hcd
[  614.577855][ T5420] usb 4-1: Using ep0 maxpacket: 8
[  614.629306][ T5420] usb 4-1: unable to get BOS descriptor or descriptor too short
[  614.655415][ T5420] usb 4-1: unable to read config index 0 descriptor/start: -71
[  614.663551][ T5420] usb 4-1: can't read configurations, error -71
[  615.153154][ T9896] loop5: detected capacity change from 0 to 512
[  615.248194][ T9896] EXT4-fs error (device loop5): ext4_iget_extra_inode:4693: inode #15: comm syz.5.1321: corrupted in-inode xattr: invalid ea_ino
[  615.296469][ T9896] EXT4-fs error (device loop5): ext4_orphan_get:1396: comm syz.5.1321: couldn't read orphan inode 15 (err -117)
[  615.325464][ T9896] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  615.441318][ T9896] EXT4-fs error (device loop5): htree_dirblock_to_tree:1053: inode #2: comm syz.5.1321: Directory hole found for htree leaf block 0
[  615.785942][ T8827] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  615.823286][ T9903] loop3: detected capacity change from 0 to 2048
[  615.940368][ T9903] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  618.277870][ T1599] usb 6-1: new full-speed USB device number 12 using dummy_hcd
[  618.548650][ T1599] usb 6-1: not running at top speed; connect to a high speed hub
[  618.641782][ T1599] usb 6-1: config 1 interface 0 has no altsetting 0
[  618.714871][ T1599] usb 6-1: New USB device found, idVendor=056e, idProduct=010c, bcdDevice= 0.40
[  618.725529][ T1599] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  618.734785][ T1599] usb 6-1: Product: syz
[  618.739840][ T1599] usb 6-1: Manufacturer: 
[  618.744660][ T1599] usb 6-1: SerialNumber: syz
[  619.834330][ T1599] usbhid 6-1:1.0: can't add hid device: -71
[  619.841290][ T1599] usbhid 6-1:1.0: probe with driver usbhid failed with error -71
[  619.896738][ T1599] usb 6-1: USB disconnect, device number 12
[  620.251069][  T997] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  620.259450][  T997] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  620.528040][   T68] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  620.536276][   T68] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  621.180172][   T68] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  621.293725][   T68] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  621.424573][   T68] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  621.531329][   T68] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  621.795867][   T68] bridge_slave_1: left allmulticast mode
[  621.802043][   T68] bridge_slave_1: left promiscuous mode
[  621.808803][   T68] bridge0: port 2(bridge_slave_1) entered disabled state
[  621.831591][   T68] bridge_slave_0: left allmulticast mode
[  621.837767][   T68] bridge_slave_0: left promiscuous mode
[  621.844263][   T68] bridge0: port 1(bridge_slave_0) entered disabled state
[  622.299076][   T68] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  622.315901][   T68] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  622.342331][   T68] bond0 (unregistering): Released all slaves
[  622.689687][   T68] hsr_slave_0: left promiscuous mode
[  622.700916][   T68] hsr_slave_1: left promiscuous mode
[  622.708982][   T68] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  622.716631][   T68] batman_adv: batadv0: Removing interface: batadv_slave_0
[  622.726533][   T68] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  622.734299][   T68] batman_adv: batadv0: Removing interface: batadv_slave_1
[  622.763236][   T68] veth1_macvtap: left promiscuous mode
[  622.769250][   T68] veth0_macvtap: left promiscuous mode
[  622.778440][   T68] veth1_vlan: left promiscuous mode
[  622.783999][   T68] veth0_vlan: left promiscuous mode
[  623.326929][   T68] team0 (unregistering): Port device team_slave_1 removed
[  623.458984][   T68] team0 (unregistering): Port device team_slave_0 removed
[  624.469409][ T5797] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  624.480392][ T5797] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  624.492861][ T5797] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  624.507530][ T5797] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  624.521928][ T5797] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  625.779529][ T5809] Bluetooth: hci1: command 0x0406 tx timeout
[  626.609154][ T5797] Bluetooth: hci0: command tx timeout
[  627.578057][ T9980] chnl_net:caif_netlink_parms(): no params data found
[  627.978709][T10016] loop5: detected capacity change from 0 to 128
[  628.193938][T10022] syz.5.1364: attempt to access beyond end of device
[  628.193938][T10022] loop5: rw=2049, sector=153, nr_sectors = 8 limit=128
[  628.212244][T10022] syz.5.1364: attempt to access beyond end of device
[  628.212244][T10022] loop5: rw=2049, sector=169, nr_sectors = 8 limit=128
[  628.227550][T10022] syz.5.1364: attempt to access beyond end of device
[  628.227550][T10022] loop5: rw=2049, sector=185, nr_sectors = 8 limit=128
[  628.241647][T10022] syz.5.1364: attempt to access beyond end of device
[  628.241647][T10022] loop5: rw=2049, sector=201, nr_sectors = 8 limit=128
[  628.255821][T10022] syz.5.1364: attempt to access beyond end of device
[  628.255821][T10022] loop5: rw=2049, sector=217, nr_sectors = 8 limit=128
[  628.334366][T10022] syz.5.1364: attempt to access beyond end of device
[  628.334366][T10022] loop5: rw=2049, sector=233, nr_sectors = 8 limit=128
[  628.688351][ T5797] Bluetooth: hci0: command tx timeout
[  629.078583][T10034] binder: 10033:10034 ioctl c018620c 200000000080 returned -22
[  629.457486][ T9980] bridge0: port 1(bridge_slave_0) entered blocking state
[  629.465071][ T9980] bridge0: port 1(bridge_slave_0) entered disabled state
[  629.473005][ T9980] bridge_slave_0: entered allmulticast mode
[  629.473312][   T68] kworker/u8:4: attempt to access beyond end of device
[  629.473312][   T68] loop5: rw=1, sector=249, nr_sectors = 8 limit=128
[  629.482605][ T9980] bridge_slave_0: entered promiscuous mode
[  629.493485][   T68] kworker/u8:4: attempt to access beyond end of device
[  629.493485][   T68] loop5: rw=1, sector=265, nr_sectors = 8 limit=128
[  629.493823][   T68] kworker/u8:4: attempt to access beyond end of device
[  629.493823][   T68] loop5: rw=1, sector=281, nr_sectors = 8 limit=128
[  629.516271][ T9980] bridge0: port 2(bridge_slave_1) entered blocking state
[  629.527383][   T68] kworker/u8:4: attempt to access beyond end of device
[  629.527383][   T68] loop5: rw=1, sector=297, nr_sectors = 8 limit=128
[  629.539282][ T9980] bridge0: port 2(bridge_slave_1) entered disabled state
[  629.560683][ T9980] bridge_slave_1: entered allmulticast mode
[  629.570459][ T9980] bridge_slave_1: entered promiscuous mode
[  630.769057][ T5797] Bluetooth: hci0: command tx timeout
[  631.799107][ T9980] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  631.874299][T10052] loop3: detected capacity change from 0 to 512
[  631.983435][ T9980] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  632.161771][T10052] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  632.175359][T10052] ext4 filesystem being mounted at /289/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  632.213634][ T9980] team0: Port device team_slave_0 added
[  632.232825][ T9980] team0: Port device team_slave_1 added
[  632.388939][ T9980] batman_adv: batadv0: Adding interface: batadv_slave_0
[  632.396137][ T9980] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  632.426154][ T9980] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  632.603148][ T9980] batman_adv: batadv0: Adding interface: batadv_slave_1
[  632.614937][ T9980] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  632.643129][ T9980] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  632.684751][ T5806] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  632.852265][ T5797] Bluetooth: hci0: command tx timeout
[  632.940151][ T9980] hsr_slave_0: entered promiscuous mode
[  632.950603][ T9980] hsr_slave_1: entered promiscuous mode
[  632.959269][ T9980] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  632.967071][ T9980] Cannot create hsr debugfs directory
[  634.726983][T10081] loop5: detected capacity change from 0 to 512
[  634.967867][T10081] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  635.068965][ T5852] usb 4-1: new high-speed USB device number 29 using dummy_hcd
[  635.119652][T10081] EXT4-fs warning (device loop5): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  635.141510][T10081] EXT4-fs (loop5): 1 truncate cleaned up
[  635.161170][T10081] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  635.245140][ T5852] usb 4-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  635.256570][ T5852] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 253
[  635.340687][ T5852] usb 4-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  635.350538][ T5852] usb 4-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  635.359057][ T5852] usb 4-1: Manufacturer: syz
[  635.460707][ T5852] usb 4-1: config 0 descriptor??
[  635.536723][ T5852] usbhid 4-1:0.0: couldn't find an input interrupt endpoint
[  635.863872][ T9980] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  635.923763][ T9980] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  635.960035][ T9980] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  636.694253][ T9980] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  637.757786][ T5879] usb 4-1: USB disconnect, device number 29
[  638.359797][ T8827] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  638.453221][ T9980] 8021q: adding VLAN 0 to HW filter on device bond0
[  638.563506][ T9980] 8021q: adding VLAN 0 to HW filter on device team0
[  638.616562][ T1858] bridge0: port 1(bridge_slave_0) entered blocking state
[  638.624155][ T1858] bridge0: port 1(bridge_slave_0) entered forwarding state
[  638.710382][ T1858] bridge0: port 2(bridge_slave_1) entered blocking state
[  638.718058][ T1858] bridge0: port 2(bridge_slave_1) entered forwarding state
[  639.887963][ T5420] usb 4-1: new full-speed USB device number 30 using dummy_hcd
[  640.103145][ T5420] usb 4-1: config 0 has an invalid descriptor of length 185, skipping remainder of the config
[  640.114679][ T5420] usb 4-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  640.212649][ T5420] usb 4-1: New USB device found, idVendor=084e, idProduct=1001, bcdDevice=ed.ae
[  640.222620][ T5420] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  640.231194][ T5420] usb 4-1: Product: syz
[  640.235591][ T5420] usb 4-1: Manufacturer: syz
[  640.240587][ T5420] usb 4-1: SerialNumber: syz
[  640.351143][ T5420] usb 4-1: config 0 descriptor??
[  640.470364][ T9980] 8021q: adding VLAN 0 to HW filter on device batadv0
[  640.582381][ T5420] usb 4-1: USB disconnect, device number 30
[  640.919454][ T1599] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[  640.989664][ T9980] veth0_vlan: entered promiscuous mode
[  641.113023][  T997] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  641.210915][ T1599] usb 6-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  641.222660][ T1599] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  641.232883][ T1599] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  641.255063][ T9980] veth1_vlan: entered promiscuous mode
[  641.335285][  T997] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  641.384190][ T1599] usb 6-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  641.393919][ T1599] usb 6-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  641.402595][ T1599] usb 6-1: Manufacturer: syz
[  641.504425][ T1599] usb 6-1: config 0 descriptor??
[  641.544209][ T1599] usbhid 6-1:0.0: couldn't find an input interrupt endpoint
[  641.569983][  T997] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  641.691883][  T997] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  641.888243][ T9980] veth0_macvtap: entered promiscuous mode
[  641.898720][  T997] bridge_slave_1: left allmulticast mode
[  641.904585][  T997] bridge_slave_1: left promiscuous mode
[  641.911632][  T997] bridge0: port 2(bridge_slave_1) entered disabled state
[  641.952597][  T997] bridge_slave_0: left allmulticast mode
[  641.958970][  T997] bridge_slave_0: left promiscuous mode
[  641.965455][  T997] bridge0: port 1(bridge_slave_0) entered disabled state
[  642.408843][  T997] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  642.445298][  T997] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  642.460504][  T997] bond0 (unregistering): Released all slaves
[  642.530952][ T9980] veth1_macvtap: entered promiscuous mode
[  642.880483][ T9980] batman_adv: batadv0: Interface activated: batadv_slave_0
[  642.995673][  T997] hsr_slave_0: left promiscuous mode
[  643.008805][  T997] hsr_slave_1: left promiscuous mode
[  643.016441][  T997] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  643.024494][  T997] batman_adv: batadv0: Removing interface: batadv_slave_0
[  643.063976][  T997] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  643.072428][  T997] batman_adv: batadv0: Removing interface: batadv_slave_1
[  643.138118][  T997] veth1_macvtap: left promiscuous mode
[  643.143987][  T997] veth0_macvtap: left promiscuous mode
[  643.154640][  T997] veth1_vlan: left promiscuous mode
[  643.160346][  T997] veth0_vlan: left promiscuous mode
[  643.666970][ T5879] usb 6-1: USB disconnect, device number 13
[  644.180097][  T997] team0 (unregistering): Port device team_slave_1 removed
[  644.209247][  T997] team0 (unregistering): Port device team_slave_0 removed
[  644.596933][ T9980] batman_adv: batadv0: Interface activated: batadv_slave_1
[  644.713304][ T9980] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  644.723505][ T9980] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  644.732729][ T9980] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  644.738694][ T5809] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  644.741859][ T9980] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  644.779643][ T5809] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  644.798224][ T5809] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  644.844669][ T5809] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  644.863351][ T5809] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  645.377896][T10160] capability: warning: `syz.4.1417' uses deprecated v2 capabilities in a way that may be insecure
[  645.754963][T10156] chnl_net:caif_netlink_parms(): no params data found
[  646.938369][ T5809] Bluetooth: hci3: command tx timeout
[  648.347835][ T5879] usb 6-1: new high-speed USB device number 14 using dummy_hcd
[  649.009839][ T5809] Bluetooth: hci3: command tx timeout
[  649.507717][ T5879] usb 6-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  649.518942][ T5879] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  649.529113][ T5879] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  649.921196][ T5879] usb 6-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  649.931155][ T5879] usb 6-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  649.940311][ T5879] usb 6-1: Manufacturer: syz
[  650.246461][ T5879] usb 6-1: config 0 descriptor??
[  650.298281][ T5879] usbhid 6-1:0.0: couldn't find an input interrupt endpoint
[  650.645183][T10156] bridge0: port 1(bridge_slave_0) entered blocking state
[  650.653231][T10156] bridge0: port 1(bridge_slave_0) entered disabled state
[  650.661174][T10156] bridge_slave_0: entered allmulticast mode
[  650.671168][T10156] bridge_slave_0: entered promiscuous mode
[  650.757536][T10156] bridge0: port 2(bridge_slave_1) entered blocking state
[  650.765134][T10156] bridge0: port 2(bridge_slave_1) entered disabled state
[  650.776675][T10156] bridge_slave_1: entered allmulticast mode
[  650.786160][T10156] bridge_slave_1: entered promiscuous mode
[  651.023314][T10156] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  651.088008][ T5809] Bluetooth: hci3: command tx timeout
[  651.128481][T10156] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  651.288099][T10156] team0: Port device team_slave_0 added
[  651.323526][T10156] team0: Port device team_slave_1 added
[  651.621598][T10156] batman_adv: batadv0: Adding interface: batadv_slave_0
[  651.629900][T10156] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  651.659382][T10156] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  651.769426][T10156] batman_adv: batadv0: Adding interface: batadv_slave_1
[  651.776699][T10156] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  651.803395][T10156] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  652.300366][T10156] hsr_slave_0: entered promiscuous mode
[  652.310999][T10156] hsr_slave_1: entered promiscuous mode
[  652.377536][ T5879] usb 6-1: USB disconnect, device number 14
[  653.070022][T10212] support for the xor transformation has been removed.
[  653.177037][ T5809] Bluetooth: hci3: command tx timeout
[  653.617837][T10156] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  653.679073][T10156] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  653.758563][T10156] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  653.819159][T10156] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  653.876732][T10224] loop3: detected capacity change from 0 to 512
[  654.122544][T10224] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  654.136403][T10224] ext4 filesystem being mounted at /301/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  654.304797][   T30] audit: type=1800 audit(1747878764.424:8): pid=10224 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1434" name="bus" dev="loop3" ino=18 res=0 errno=0
[  654.408721][ T1283] ieee802154 phy0 wpan0: encryption failed: -22
[  654.417466][ T1283] ieee802154 phy1 wpan1: encryption failed: -22
[  654.434665][ T1858] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  654.443645][ T1858] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  654.661619][   T68] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  654.670249][   T68] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  654.754637][ T5806] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  654.924277][T10156] 8021q: adding VLAN 0 to HW filter on device bond0
[  655.129188][T10156] 8021q: adding VLAN 0 to HW filter on device team0
[  655.279352][ T5078] bridge0: port 1(bridge_slave_0) entered blocking state
[  655.286874][ T5078] bridge0: port 1(bridge_slave_0) entered forwarding state
[  655.393331][ T5078] bridge0: port 2(bridge_slave_1) entered blocking state
[  655.401037][ T5078] bridge0: port 2(bridge_slave_1) entered forwarding state
[  655.448272][ T5852] usb 4-1: new high-speed USB device number 31 using dummy_hcd
[  655.485511][T10189] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  655.662607][ T5852] usb 4-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  655.675266][ T5852] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  655.685846][ T5852] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  655.704087][T10189] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  655.866930][ T5852] usb 4-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  655.876542][ T5852] usb 4-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  655.885283][ T5852] usb 4-1: Manufacturer: syz
[  655.909549][ T5852] usb 4-1: config 0 descriptor??
[  655.921675][T10189] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  655.935368][ T5852] usbhid 4-1:0.0: couldn't find an input interrupt endpoint
[  656.089247][T10189] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  656.485435][T10189] bridge_slave_1: left allmulticast mode
[  656.492269][T10189] bridge_slave_1: left promiscuous mode
[  656.498996][T10189] bridge0: port 2(bridge_slave_1) entered disabled state
[  656.551333][T10189] bridge_slave_0: left allmulticast mode
[  656.559492][T10189] bridge_slave_0: left promiscuous mode
[  656.572272][T10189] bridge0: port 1(bridge_slave_0) entered disabled state
[  657.119714][T10189] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  657.175637][T10189] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  657.213480][T10189] bond0 (unregistering): Released all slaves
[  657.764130][T10189] hsr_slave_0: left promiscuous mode
[  657.788651][T10189] hsr_slave_1: left promiscuous mode
[  657.799958][T10189] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  657.807776][T10189] batman_adv: batadv0: Removing interface: batadv_slave_0
[  657.838565][T10189] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  657.846315][T10189] batman_adv: batadv0: Removing interface: batadv_slave_1
[  657.925444][T10189] veth1_macvtap: left promiscuous mode
[  657.931513][T10189] veth0_macvtap: left promiscuous mode
[  657.937613][T10189] veth1_vlan: left promiscuous mode
[  657.943164][T10189] veth0_vlan: left promiscuous mode
[  658.268975][ T1599] usb 4-1: USB disconnect, device number 31
[  658.652321][T10189] team0 (unregistering): Port device team_slave_1 removed
[  658.685896][T10189] team0 (unregistering): Port device team_slave_0 removed
[  659.244511][T10156] 8021q: adding VLAN 0 to HW filter on device batadv0
[  659.793700][ T5797] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  659.809519][ T5797] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  659.819037][ T5797] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  659.841415][ T5797] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  659.870728][ T5797] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  659.966247][T10266] process 'syz.3.1445' launched './file0' with NULL argv: empty string added
[  660.722856][T10263] chnl_net:caif_netlink_parms(): no params data found
[  660.786104][T10278] loop5: detected capacity change from 0 to 512
[  660.853576][T10278] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  661.110633][T10278] EXT4-fs (loop5): 1 truncate cleaned up
[  661.119416][T10278] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  661.785830][T10156] veth0_vlan: entered promiscuous mode
[  661.902550][T10156] veth1_vlan: entered promiscuous mode
[  661.970556][ T5809] Bluetooth: hci0: command tx timeout
[  662.014088][ T8827] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  662.048133][T10263] bridge0: port 1(bridge_slave_0) entered blocking state
[  662.055720][T10263] bridge0: port 1(bridge_slave_0) entered disabled state
[  662.063603][T10263] bridge_slave_0: entered allmulticast mode
[  662.073420][T10263] bridge_slave_0: entered promiscuous mode
[  662.149699][T10263] bridge0: port 2(bridge_slave_1) entered blocking state
[  662.158687][T10263] bridge0: port 2(bridge_slave_1) entered disabled state
[  662.166374][T10263] bridge_slave_1: entered allmulticast mode
[  662.175788][T10263] bridge_slave_1: entered promiscuous mode
[  662.186204][ T1599] usb 4-1: new high-speed USB device number 32 using dummy_hcd
[  662.416830][ T1599] usb 4-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  662.428299][ T1599] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  662.439735][ T1599] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  662.450419][ T1599] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  662.510033][T10263] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  662.573647][T10263] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  662.600497][ T1599] usb 4-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  662.606308][T10156] veth0_macvtap: entered promiscuous mode
[  662.612471][ T1599] usb 4-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  662.624846][ T1599] usb 4-1: Manufacturer: syz
[  662.699282][ T1599] usb 4-1: config 0 descriptor??
[  662.774746][T10156] veth1_macvtap: entered promiscuous mode
[  662.828003][T10263] team0: Port device team_slave_0 added
[  662.903373][T10263] team0: Port device team_slave_1 added
[  662.956621][T10156] batman_adv: batadv0: Interface activated: batadv_slave_0
[  663.158368][ T1599] usbhid 4-1:0.0: can't add hid device: -71
[  663.165045][ T1599] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  663.212475][ T1599] usb 4-1: USB disconnect, device number 32
[  663.259859][T10156] batman_adv: batadv0: Interface activated: batadv_slave_1
[  663.298277][T10263] batman_adv: batadv0: Adding interface: batadv_slave_0
[  663.305544][T10263] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  663.335545][T10263] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  663.365738][T10156] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  663.375224][T10156] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  663.384519][T10156] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  663.393660][T10156] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  663.422347][T10263] batman_adv: batadv0: Adding interface: batadv_slave_1
[  663.433726][T10263] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  663.461266][T10263] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  663.589622][T10305] loop5: detected capacity change from 0 to 512
[  663.656250][T10305] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[  663.666217][T10305] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[  663.816332][T10263] hsr_slave_0: entered promiscuous mode
[  663.827558][T10263] hsr_slave_1: entered promiscuous mode
[  663.839318][T10263] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  663.848017][T10263] Cannot create hsr debugfs directory
[  663.889991][T10305] EXT4-fs (loop5): warning: checktime reached, running e2fsck is recommended
[  664.017857][T10305] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  664.026414][T10305] System zones: 0-2, 18-18, 34-34
[  664.051253][ T5809] Bluetooth: hci0: command tx timeout
[  664.148961][T10305] EXT4-fs warning (device loop5): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  664.205765][T10305] EXT4-fs (loop5): 1 truncate cleaned up
[  664.236120][T10305] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  665.582480][T10322] syz.3.1459 (10322) used greatest stack depth: 2424 bytes left
[  665.935322][ T8827] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  666.149584][ T5809] Bluetooth: hci0: command tx timeout
[  667.176301][T10263] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  667.328967][T10263] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  667.394007][T10263] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  667.455599][T10263] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  667.858784][ T1599] usb 6-1: new high-speed USB device number 15 using dummy_hcd
[  668.093561][ T1599] usb 6-1: Using ep0 maxpacket: 16
[  668.212910][ T5809] Bluetooth: hci0: command tx timeout
[  668.262021][ T1599] usb 6-1: config 0 interface 0 altsetting 1 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  668.274417][ T1599] usb 6-1: config 0 interface 0 altsetting 1 endpoint 0x81 has invalid wMaxPacketSize 0
[  668.284582][ T1599] usb 6-1: config 0 interface 0 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  668.297987][ T1599] usb 6-1: config 0 interface 0 has no altsetting 0
[  668.304906][ T1599] usb 6-1: New USB device found, idVendor=045e, idProduct=05da, bcdDevice= 0.00
[  668.314457][ T1599] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  668.344724][ T1599] usb 6-1: config 0 descriptor??
[  668.560605][T10263] 8021q: adding VLAN 0 to HW filter on device bond0
[  668.750324][T10263] 8021q: adding VLAN 0 to HW filter on device team0
[  668.873711][   T35] bridge0: port 1(bridge_slave_0) entered blocking state
[  668.881372][   T35] bridge0: port 1(bridge_slave_0) entered forwarding state
[  668.967773][ T1599] hid-generic 0003:045E:05DA.000E: unknown main item tag 0x0
[  668.975574][ T1599] hid-generic 0003:045E:05DA.000E: unknown main item tag 0x0
[  668.983442][ T1599] hid-generic 0003:045E:05DA.000E: unknown main item tag 0x0
[  668.991276][ T1599] hid-generic 0003:045E:05DA.000E: ignoring exceeding usage max
[  669.008936][ T1599] hid-generic 0003:045E:05DA.000E: unknown main item tag 0x0
[  669.016606][ T1599] hid-generic 0003:045E:05DA.000E: unknown main item tag 0x0
[  669.024467][ T1599] hid-generic 0003:045E:05DA.000E: unbalanced collection at end of report description
[  669.062786][   T35] bridge0: port 2(bridge_slave_1) entered blocking state
[  669.070359][   T35] bridge0: port 2(bridge_slave_1) entered forwarding state
[  669.109612][ T5879] usb 4-1: new high-speed USB device number 33 using dummy_hcd
[  669.322085][ T1599] hid-generic 0003:045E:05DA.000E: probe with driver hid-generic failed with error -22
[  669.350004][ T5879] usb 4-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  669.362150][ T5879] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  669.375675][ T5879] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  669.386567][ T5879] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  669.405631][ T1599] usb 6-1: USB disconnect, device number 15
[  669.522720][ T5879] usb 4-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  669.533654][ T5879] usb 4-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  669.542998][ T5879] usb 4-1: Manufacturer: syz
[  669.625533][ T5879] usb 4-1: config 0 descriptor??
[  670.089439][ T5879] usbhid 4-1:0.0: can't add hid device: -71
[  670.096152][ T5879] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  670.151231][ T5879] usb 4-1: USB disconnect, device number 33
[  671.465447][T10263] 8021q: adding VLAN 0 to HW filter on device batadv0
[  672.218722][T10368] loop3: detected capacity change from 0 to 4096
[  672.280956][T10368] EXT4-fs: Ignoring removed mblk_io_submit option
[  673.601094][ T4126] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  673.609294][ T4126] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  673.694095][T10263] veth0_vlan: entered promiscuous mode
[  673.833160][T10263] veth1_vlan: entered promiscuous mode
[  673.836413][T10368] EXT4-fs (loop3): Test dummy encryption mode enabled
[  673.942207][T10368] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  673.997531][ T1858] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  674.005592][ T1858] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  674.174094][T10263] veth0_macvtap: entered promiscuous mode
[  674.310971][T10263] veth1_macvtap: entered promiscuous mode
[  674.470262][T10368] fscrypt (loop3): Missing crypto API support for AES-256-XTS (API name: "xts(aes)")
[  674.523179][T10263] batman_adv: batadv0: Interface activated: batadv_slave_0
[  674.608326][T10263] batman_adv: batadv0: Interface activated: batadv_slave_1
[  674.746551][T10263] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  674.756304][T10263] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  674.765408][T10263] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  674.774385][T10263] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  674.908915][ T5806] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  674.955397][T10393] loop6: detected capacity change from 0 to 8
[  677.784752][T10418] loop3: detected capacity change from 0 to 128
[  677.937614][   T30] audit: type=1800 audit(1747878788.054:9): pid=10418 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1481" name="bus" dev="loop3" ino=1048644 res=0 errno=0
[  678.291730][T10425] bio_check_eod: 3 callbacks suppressed
[  678.291810][T10425] syz.3.1481: attempt to access beyond end of device
[  678.291810][T10425] loop3: rw=0, sector=121, nr_sectors = 920 limit=128
[  679.585325][T10439] netlink: 148 bytes leftover after parsing attributes in process `syz.3.1484'.
[  679.595285][T10439] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1484'.
[  680.352688][T10453] loop5: detected capacity change from 0 to 2048
[  680.415305][T10453] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  681.189977][T10465] loop3: detected capacity change from 0 to 2048
[  681.254832][T10465] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  681.633098][ T5806] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  681.754790][ T3547] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  681.768111][ T3547] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  681.932233][ T3547] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  681.941424][ T3547] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  682.077422][ T1599] usb 6-1: new high-speed USB device number 16 using dummy_hcd
[  682.261407][ T1599] usb 6-1: Using ep0 maxpacket: 8
[  682.291247][ T1599] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[  682.299932][ T1599] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  682.310133][ T1599] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  682.320457][ T1599] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  682.330687][ T1599] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  682.344445][ T1599] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  682.354186][ T1599] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  682.394147][T10485] loop3: detected capacity change from 0 to 2048
[  682.450898][T10485] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  682.554879][ T3547] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  682.629147][ T1599] usb 6-1: usb_control_msg returned -32
[  682.635030][ T1599] usbtmc 6-1:16.0: can't read capabilities
[  682.738642][T10489] kvm: pic: non byte read
[  682.759078][ T3547] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  682.763571][T10489] kvm: pic: non byte read
[  682.800045][T10489] kvm: pic: non byte read
[  682.805959][T10489] kvm: pic: non byte read
[  682.843984][T10489] kvm: pic: non byte read
[  682.893319][ T3547] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  683.063533][ T3547] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  683.326562][ T3547] bridge_slave_1: left allmulticast mode
[  683.334159][ T3547] bridge_slave_1: left promiscuous mode
[  683.340933][ T3547] bridge0: port 2(bridge_slave_1) entered disabled state
[  683.366809][ T3547] bridge_slave_0: left allmulticast mode
[  683.373720][ T3547] bridge_slave_0: left promiscuous mode
[  683.380357][ T3547] bridge0: port 1(bridge_slave_0) entered disabled state
[  683.827821][ T3547] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  683.851203][ T3547] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  683.879047][ T3547] bond0 (unregistering): Released all slaves
[  684.282731][ T3547] hsr_slave_0: left promiscuous mode
[  684.291610][ T3547] hsr_slave_1: left promiscuous mode
[  684.300923][ T3547] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  684.308830][ T3547] batman_adv: batadv0: Removing interface: batadv_slave_0
[  684.328735][ T3547] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  684.336379][ T3547] batman_adv: batadv0: Removing interface: batadv_slave_1
[  684.365405][ T3547] veth1_macvtap: left promiscuous mode
[  684.371475][ T3547] veth0_macvtap: left promiscuous mode
[  684.377565][ T3547] veth1_vlan: left promiscuous mode
[  684.383090][ T3547] veth0_vlan: left promiscuous mode
[  684.809037][ T1599] usb 6-1: USB disconnect, device number 16
[  685.050719][ T3547] team0 (unregistering): Port device team_slave_1 removed
[  685.099953][ T3547] team0 (unregistering): Port device team_slave_0 removed
[  685.644860][T10505] loop5: detected capacity change from 0 to 128
[  685.714067][T10505] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[  686.540463][T10514] input: syz1 as /devices/virtual/input/input34
[  686.582858][ T5797] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  686.617309][ T5797] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  686.626357][ T5797] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  686.653395][ T5797] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  686.665024][ T5797] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  687.477874][T10515] chnl_net:caif_netlink_parms(): no params data found
[  687.967806][ T1599] usb 4-1: new high-speed USB device number 34 using dummy_hcd
[  688.060644][T10540] loop5: detected capacity change from 0 to 1024
[  688.085659][T10540] EXT4-fs: Ignoring removed nomblk_io_submit option
[  688.161141][ T1599] usb 4-1: Using ep0 maxpacket: 8
[  688.175907][T10540] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  688.192152][ T1599] usb 4-1: config index 0 descriptor too short (expected 301, got 45)
[  688.202345][ T1599] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  688.215265][ T1599] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  688.226164][ T1599] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  688.236596][ T1599] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  688.249965][ T1599] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  688.259385][ T1599] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  688.547880][ T1599] usb 4-1: usb_control_msg returned -32
[  688.553888][ T1599] usbtmc 4-1:16.0: can't read capabilities
[  688.597532][T10515] bridge0: port 1(bridge_slave_0) entered blocking state
[  688.605131][T10515] bridge0: port 1(bridge_slave_0) entered disabled state
[  688.613090][T10515] bridge_slave_0: entered allmulticast mode
[  688.626107][T10515] bridge_slave_0: entered promiscuous mode
[  688.651801][T10515] bridge0: port 2(bridge_slave_1) entered blocking state
[  688.659520][T10515] bridge0: port 2(bridge_slave_1) entered disabled state
[  688.668778][T10515] bridge_slave_1: entered allmulticast mode
[  688.678286][T10515] bridge_slave_1: entered promiscuous mode
[  688.682933][ T8827] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  688.774397][ T5809] Bluetooth: hci0: command tx timeout
[  688.805479][T10515] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  688.840994][T10515] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  688.988530][T10515] team0: Port device team_slave_0 added
[  689.011586][T10515] team0: Port device team_slave_1 added
[  689.251366][T10515] batman_adv: batadv0: Adding interface: batadv_slave_0
[  689.259096][T10515] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  689.285662][T10515] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  689.449158][T10553] syzkaller0: entered promiscuous mode
[  689.454892][T10553] syzkaller0: entered allmulticast mode
[  689.467356][T10515] batman_adv: batadv0: Adding interface: batadv_slave_1
[  689.474507][T10515] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  689.501223][T10515] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  690.010571][T10515] hsr_slave_0: entered promiscuous mode
[  690.023083][T10515] hsr_slave_1: entered promiscuous mode
[  690.031586][T10515] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  690.039555][T10515] Cannot create hsr debugfs directory
[  690.857891][ T5809] Bluetooth: hci0: command tx timeout
[  690.872790][ T1599] usb 4-1: USB disconnect, device number 34
[  691.008490][T10578] loop5: detected capacity change from 0 to 8
[  691.429800][T10515] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  691.544543][T10515] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  691.618609][T10515] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  691.699665][T10515] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  692.584251][T10515] 8021q: adding VLAN 0 to HW filter on device bond0
[  692.624818][T10606] xt_hashlimit: max too large, truncated to 1048576
[  692.752677][T10515] 8021q: adding VLAN 0 to HW filter on device team0
[  692.823211][ T4038] bridge0: port 1(bridge_slave_0) entered blocking state
[  692.830887][ T4038] bridge0: port 1(bridge_slave_0) entered forwarding state
[  692.874862][ T4038] bridge0: port 2(bridge_slave_1) entered blocking state
[  692.882583][ T4038] bridge0: port 2(bridge_slave_1) entered forwarding state
[  692.941536][ T5809] Bluetooth: hci0: command tx timeout
[  693.043138][T10612] loop6: detected capacity change from 0 to 8
[  693.252342][T10614] loop5: detected capacity change from 0 to 512
[  693.293876][T10614] EXT4-fs (loop5): Test dummy encryption mode enabled
[  693.303347][T10614] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  693.314582][T10614] EXT4-fs (loop5): SIPHASH is not a valid default hash value
[  694.385782][T10515] 8021q: adding VLAN 0 to HW filter on device batadv0
[  694.744908][T10515] veth0_vlan: entered promiscuous mode
[  694.802795][T10638] loop5: detected capacity change from 0 to 1024
[  694.900980][T10515] veth1_vlan: entered promiscuous mode
[  694.927696][T10638] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  694.940630][T10638] ext4 filesystem being mounted at /103/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  695.029370][ T5809] Bluetooth: hci0: command tx timeout
[  695.109668][T10645] loop3: detected capacity change from 0 to 512
[  695.147926][T10645] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  695.195507][T10645] EXT4-fs (loop3): 1 truncate cleaned up
[  695.205393][T10645] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  695.977335][T10515] veth0_macvtap: entered promiscuous mode
[  696.113399][ T8827] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  696.583062][T10650] loop6: detected capacity change from 0 to 1024
[  696.725294][T10650] xt_socket: unknown flags 0xc
[  696.839116][T10650] loop6: detected capacity change from 0 to 512
[  696.848919][T10650] EXT4-fs: Ignoring removed i_version option
[  696.939760][T10650] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  696.952963][T10650] ext4 filesystem being mounted at /22/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  696.988601][T10515] veth1_macvtap: entered promiscuous mode
[  697.151456][T10515] batman_adv: batadv0: Interface activated: batadv_slave_0
[  697.160811][ T5806] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  697.271373][T10515] batman_adv: batadv0: Interface activated: batadv_slave_1
[  697.363009][T10515] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  697.372305][T10515] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  697.381530][T10515] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  697.390791][T10515] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  697.493696][T10156] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  698.433349][T10679] mmap: syz.6.1567 (10679) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  698.668524][T10679] loop6: detected capacity change from 0 to 2048
[  698.748848][T10679] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  700.013483][T10156] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  700.404538][T10714] loop3: detected capacity change from 0 to 512
[  700.515961][T10714] EXT4-fs error (device loop3): ext4_orphan_get:1391: inode #15: comm syz.3.1578: casefold flag without casefold feature
[  700.549095][T10717] loop6: detected capacity change from 0 to 2048
[  700.584982][T10714] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.1578: couldn't read orphan inode 15 (err -117)
[  700.615053][T10714] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  700.645046][T10717] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  700.963914][ T5806] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  701.399022][T10156] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  702.043348][T10742] 9pnet_fd: Insufficient options for proto=fd
[  702.061603][ T3975] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  702.069894][ T3975] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  702.310139][ T3896] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  702.318525][ T3896] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  702.613467][T10753] loop6: detected capacity change from 0 to 256
[  702.685649][T10750] loop5: detected capacity change from 0 to 2048
[  702.783800][T10750] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  702.985324][T10759] loop3: detected capacity change from 0 to 512
[  703.014253][   T35] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  703.112877][T10759] EXT4-fs error (device loop3): ext4_orphan_get:1391: inode #15: comm syz.3.1589: casefold flag without casefold feature
[  703.163852][T10759] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.1589: couldn't read orphan inode 15 (err -117)
[  703.224612][T10759] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  703.276580][   T35] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  703.382819][   T30] audit: type=1800 audit(1747878813.494:10): pid=10759 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1589" name="file1" dev="loop3" ino=18 res=0 errno=0
[  703.475351][   T35] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  703.571905][ T8827] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  703.589358][ T5806] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  703.690317][   T35] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  703.870126][   T35] bridge_slave_1: left allmulticast mode
[  703.882545][   T35] bridge_slave_1: left promiscuous mode
[  703.889297][   T35] bridge0: port 2(bridge_slave_1) entered disabled state
[  703.904373][   T35] bridge_slave_0: left allmulticast mode
[  703.910519][   T35] bridge_slave_0: left promiscuous mode
[  703.916974][   T35] bridge0: port 1(bridge_slave_0) entered disabled state
[  704.348259][   T35] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  704.376211][   T35] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  704.404322][   T35] bond0 (unregistering): Released all slaves
[  704.685899][   T35] hsr_slave_0: left promiscuous mode
[  704.701606][   T35] hsr_slave_1: left promiscuous mode
[  704.713637][   T35] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  704.722490][   T35] batman_adv: batadv0: Removing interface: batadv_slave_0
[  704.734078][   T35] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  704.741973][   T35] batman_adv: batadv0: Removing interface: batadv_slave_1
[  704.765893][   T35] veth1_macvtap: left promiscuous mode
[  704.771903][   T35] veth0_macvtap: left promiscuous mode
[  704.777957][   T35] veth1_vlan: left promiscuous mode
[  704.783427][   T35] veth0_vlan: left promiscuous mode
[  705.364995][   T35] team0 (unregistering): Port device team_slave_1 removed
[  705.420740][   T35] team0 (unregistering): Port device team_slave_0 removed
[  705.935595][T10771] loop3: detected capacity change from 0 to 128
[  706.041503][T10771] syz.3.1593: attempt to access beyond end of device
[  706.041503][T10771] loop3: rw=2049, sector=128, nr_sectors = 1 limit=128
[  706.055541][T10771] Buffer I/O error on dev loop3, logical block 128, lost async page write
[  706.087934][T10771] syz.3.1593: attempt to access beyond end of device
[  706.087934][T10771] loop3: rw=2049, sector=129, nr_sectors = 8 limit=128
[  706.667824][ T5797] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  706.686386][ T5797] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  706.698525][ T5797] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  706.740928][ T5797] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  706.754171][T10783] netlink: 16 bytes leftover after parsing attributes in process `syz.6.1599'.
[  706.766669][T10780] loop3: detected capacity change from 0 to 512
[  706.776131][ T5797] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  706.803955][T10780] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  706.827601][T10780] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=2842e12c, mo2=0002]
[  706.836168][T10780] System zones: 1-12
[  706.842842][T10780] EXT4-fs (loop3): orphan cleanup on readonly fs
[  706.860490][T10780] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.1598: invalid indirect mapped block 12 (level 1)
[  706.876731][T10780] EXT4-fs (loop3): Remounting filesystem read-only
[  706.889220][T10780] EXT4-fs (loop3): 1 truncate cleaned up
[  706.896930][T10780] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  707.224887][ T5806] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  707.485532][T10791] loop6: detected capacity change from 0 to 2048
[  707.660797][T10791] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  707.725189][T10779] chnl_net:caif_netlink_parms(): no params data found
[  707.912360][T10805] loop5: detected capacity change from 0 to 512
[  707.937433][T10805] EXT4-fs error (device loop5): ext4_iget_extra_inode:4693: inode #15: comm syz.5.1606: corrupted in-inode xattr: invalid ea_ino
[  707.998036][T10805] EXT4-fs error (device loop5): ext4_orphan_get:1396: comm syz.5.1606: couldn't read orphan inode 15 (err -117)
[  708.054904][T10805] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  708.282241][T10156] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  708.478753][ T8827] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  708.847457][ T5797] Bluetooth: hci0: command tx timeout
[  709.178646][ T1599] usb 6-1: new high-speed USB device number 17 using dummy_hcd
[  709.334917][T10779] bridge0: port 1(bridge_slave_0) entered blocking state
[  709.342777][T10779] bridge0: port 1(bridge_slave_0) entered disabled state
[  709.350647][T10779] bridge_slave_0: entered allmulticast mode
[  709.360017][T10779] bridge_slave_0: entered promiscuous mode
[  709.733669][T10779] bridge0: port 2(bridge_slave_1) entered blocking state
[  709.741313][T10779] bridge0: port 2(bridge_slave_1) entered disabled state
[  709.750087][T10779] bridge_slave_1: entered allmulticast mode
[  709.759394][T10779] bridge_slave_1: entered promiscuous mode
[  709.770272][ T1599] usb 6-1: Using ep0 maxpacket: 32
[  709.827649][ T1599] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  709.839059][ T1599] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  709.849207][ T1599] usb 6-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  709.858605][ T1599] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  710.012160][ T1599] usb 6-1: config 0 descriptor??
[  710.069502][ T1599] hub 6-1:0.0: USB hub found
[  710.267634][ T1599] hub 6-1:0.0: 1 port detected
[  710.444229][T10832] loop3: detected capacity change from 0 to 1024
[  710.478697][ T1599] hub 6-1:0.0: hub_hub_status failed (err = -71)
[  710.485314][ T1599] hub 6-1:0.0: config failed, can't get hub status (err -71)
[  710.551803][T10832] EXT4-fs: Ignoring removed nomblk_io_submit option
[  710.629458][ T1599] usbhid 6-1:0.0: can't add hid device: -71
[  710.639823][ T1599] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  710.729904][ T1599] usb 6-1: USB disconnect, device number 17
[  710.817452][T10779] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  710.943038][ T5797] Bluetooth: hci0: command tx timeout
[  710.962571][T10779] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  711.269600][T10832] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  711.524030][T10779] team0: Port device team_slave_0 added
[  711.617718][T10779] team0: Port device team_slave_1 added
[  711.813277][T10841] netlink: 72 bytes leftover after parsing attributes in process `syz.5.1616'.
[  711.857377][T10779] batman_adv: batadv0: Adding interface: batadv_slave_0
[  711.868882][T10779] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  711.896753][T10779] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  711.910707][T10843] loop6: detected capacity change from 0 to 1024
[  711.995463][T10779] batman_adv: batadv0: Adding interface: batadv_slave_1
[  712.002982][T10779] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  712.029693][T10779] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  712.086597][T10843] =====================================================
[  712.094143][T10843] BUG: KMSAN: uninit-value in __hfsplus_ext_cache_extent+0x7cb/0x990
[  712.102615][T10843]  __hfsplus_ext_cache_extent+0x7cb/0x990
[  712.108704][T10843]  hfsplus_file_extend+0x7b5/0x1df0
[  712.114087][T10843]  hfsplus_get_block+0xfc3/0x1a20
[  712.119432][T10843]  __block_write_begin_int+0xaae/0x3000
[  712.125224][T10843]  cont_write_begin+0x10df/0x1ba0
[  712.130743][T10843]  hfsplus_write_begin+0x85/0x130
[  712.136019][T10843]  cont_write_begin+0x35d/0x1ba0
[  712.141404][T10843]  hfsplus_write_begin+0x85/0x130
[  712.146704][T10843]  generic_perform_write+0x3f4/0x10c0
[  712.152537][T10843]  __generic_file_write_iter+0x213/0x460
[  712.158493][T10843]  generic_file_write_iter+0x131/0x980
[  712.164185][T10843]  vfs_write+0xb31/0x1560
[  712.176269][T10843]  __x64_sys_pwrite64+0x2ab/0x3b0
[  712.182668][T10843]  x64_sys_call+0x10f7/0x3db0
[  712.187762][T10843]  do_syscall_64+0xd9/0x1b0
[  712.192514][T10843]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  712.198819][T10843] 
[  712.201267][T10843] Uninit was created at:
[  712.205772][T10843]  __kmalloc_noprof+0x95f/0x1310
[  712.211567][T10843]  hfsplus_find_init+0x90/0x1d0
[  712.216664][T10843]  hfsplus_file_extend+0x72f/0x1df0
[  712.222323][T10843]  hfsplus_get_block+0xfc3/0x1a20
[  712.227750][T10843]  __block_write_begin_int+0xaae/0x3000
[  712.233525][T10843]  cont_write_begin+0x10df/0x1ba0
[  712.239071][T10843]  hfsplus_write_begin+0x85/0x130
[  712.244332][T10843]  cont_write_begin+0x35d/0x1ba0
[  712.249752][T10843]  hfsplus_write_begin+0x85/0x130
[  712.255045][T10843]  generic_perform_write+0x3f4/0x10c0
[  712.260862][T10843]  __generic_file_write_iter+0x213/0x460
[  712.266764][T10843]  generic_file_write_iter+0x131/0x980
[  712.275375][T10843]  vfs_write+0xb31/0x1560
[  712.281124][T10843]  __x64_sys_pwrite64+0x2ab/0x3b0
[  712.286414][T10843]  x64_sys_call+0x10f7/0x3db0
[  712.291556][T10843]  do_syscall_64+0xd9/0x1b0
[  712.296294][T10843]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  712.302943][T10843] 
[  712.305430][T10843] CPU: 0 UID: 0 PID: 10843 Comm: syz.6.1617 Not tainted 6.15.0-rc7-syzkaller-00007-g4a95bc121ccd #0 PREEMPT(undef) 
[  712.318057][T10843] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  712.328778][T10843] =====================================================
[  712.335841][T10843] Disabling lock debugging due to kernel taint
[  712.342429][T10843] Kernel panic - not syncing: kmsan.panic set ...
[  712.348994][T10843] CPU: 0 UID: 0 PID: 10843 Comm: syz.6.1617 Tainted: G    B               6.15.0-rc7-syzkaller-00007-g4a95bc121ccd #0 PREEMPT(undef) 
[  712.362932][T10843] Tainted: [B]=BAD_PAGE
[  712.367222][T10843] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  712.377467][T10843] Call Trace:
[  712.380897][T10843]  <TASK>
[  712.383970][T10843]  __dump_stack+0x26/0x30
[  712.388516][T10843]  dump_stack_lvl+0x53/0x270
[  712.393337][T10843]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  712.399404][T10843]  dump_stack+0x1e/0x25
[  712.403748][T10843]  panic+0x4bd/0xd50
[  712.407885][T10843]  kmsan_report+0x29d/0x2a0
[  712.412622][T10843]  ? remove_event_file_dir+0x35e/0xa00
[  712.418333][T10843]  ? __msan_warning+0x96/0x120
[  712.423322][T10843]  ? __hfsplus_ext_cache_extent+0x7cb/0x990
[  712.429406][T10843]  ? hfsplus_file_extend+0x7b5/0x1df0
[  712.434957][T10843]  ? hfsplus_get_block+0xfc3/0x1a20
[  712.440311][T10843]  ? __block_write_begin_int+0xaae/0x3000
[  712.446221][T10843]  ? cont_write_begin+0x10df/0x1ba0
[  712.451620][T10843]  ? hfsplus_write_begin+0x85/0x130
[  712.457033][T10843]  ? cont_write_begin+0x35d/0x1ba0
[  712.462356][T10843]  ? hfsplus_write_begin+0x85/0x130
[  712.467752][T10843]  ? generic_perform_write+0x3f4/0x10c0
[  712.473499][T10843]  ? __generic_file_write_iter+0x213/0x460
[  712.479492][T10843]  ? generic_file_write_iter+0x131/0x980
[  712.485335][T10843]  ? vfs_write+0xb31/0x1560
[  712.490027][T10843]  ? __x64_sys_pwrite64+0x2ab/0x3b0
[  712.495422][T10843]  ? x64_sys_call+0x10f7/0x3db0
[  712.500453][T10843]  ? do_syscall_64+0xd9/0x1b0
[  712.505319][T10843]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  712.511550][T10843]  ? stack_depot_save_flags+0x60f/0x7c0
[  712.517284][T10843]  ? kmsan_get_metadata+0x105/0x1b0
[  712.522678][T10843]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  712.529218][T10843]  ? kmsan_get_metadata+0x105/0x1b0
[  712.534609][T10843]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  712.540641][T10843]  ? hfsplus_brec_find+0x216/0x9f0
[  712.545957][T10843]  ? __pfx_hfs_find_rec_by_key+0x10/0x10
[  712.551788][T10843]  ? __hfsplus_ext_write_extent+0x535/0x620
[  712.557860][T10843]  ? kmsan_get_metadata+0x105/0x1b0
[  712.563256][T10843]  __msan_warning+0x96/0x120
[  712.568033][T10843]  __hfsplus_ext_cache_extent+0x7cb/0x990
[  712.573969][T10843]  hfsplus_file_extend+0x7b5/0x1df0
[  712.579401][T10843]  hfsplus_get_block+0xfc3/0x1a20
[  712.584608][T10843]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  712.591207][T10843]  __block_write_begin_int+0xaae/0x3000
[  712.596991][T10843]  ? kmsan_get_metadata+0x105/0x1b0
[  712.602418][T10843]  ? __pfx_hfsplus_get_block+0x10/0x10
[  712.608052][T10843]  cont_write_begin+0x10df/0x1ba0
[  712.613258][T10843]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  712.619270][T10843]  ? kmsan_get_metadata+0x105/0x1b0
[  712.624663][T10843]  ? kmsan_get_metadata+0x105/0x1b0
[  712.630093][T10843]  hfsplus_write_begin+0x85/0x130
[  712.635320][T10843]  ? __pfx_hfsplus_get_block+0x10/0x10
[  712.640942][T10843]  ? __pfx_hfsplus_write_begin+0x10/0x10
[  712.646814][T10843]  cont_write_begin+0x35d/0x1ba0
[  712.651996][T10843]  hfsplus_write_begin+0x85/0x130
[  712.657266][T10843]  ? __pfx_hfsplus_get_block+0x10/0x10
[  712.662897][T10843]  ? __pfx_hfsplus_write_begin+0x10/0x10
[  712.668731][T10843]  generic_perform_write+0x3f4/0x10c0
[  712.674343][T10843]  __generic_file_write_iter+0x213/0x460
[  712.680224][T10843]  generic_file_write_iter+0x131/0x980
[  712.685921][T10843]  ? kmsan_get_metadata+0x105/0x1b0
[  712.691318][T10843]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  712.697379][T10843]  ? kmsan_get_metadata+0x105/0x1b0
[  712.702777][T10843]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  712.708799][T10843]  ? filter_irq_stacks+0x13f/0x190
[  712.714133][T10843]  ? stack_depot_save_flags+0x35/0x7c0
[  712.719787][T10843]  ? kmsan_get_metadata+0x105/0x1b0
[  712.725188][T10843]  ? kmsan_get_metadata+0x105/0x1b0
[  712.730590][T10843]  ? kmsan_get_metadata+0x105/0x1b0
[  712.736007][T10843]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  712.742548][T10843]  vfs_write+0xb31/0x1560
[  712.747070][T10843]  ? __pfx_generic_file_write_iter+0x10/0x10
[  712.753276][T10843]  __x64_sys_pwrite64+0x2ab/0x3b0
[  712.758524][T10843]  x64_sys_call+0x10f7/0x3db0
[  712.763399][T10843]  do_syscall_64+0xd9/0x1b0
[  712.768091][T10843]  ? irqentry_exit+0x16/0x60
[  712.772845][T10843]  ? clear_bhb_loop+0x40/0x90
[  712.777682][T10843]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  712.783763][T10843] RIP: 0033:0x7fb49cd8e969
[  712.788325][T10843] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  712.808125][T10843] RSP: 002b:00007fb49dba8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000012
[  712.816697][T10843] RAX: ffffffffffffffda RBX: 00007fb49cfb5fa0 RCX: 00007fb49cd8e969
[  712.824803][T10843] RDX: 0000000000000001 RSI: 00002000000000c0 RDI: 0000000000000004
[  712.832912][T10843] RBP: 00007fb49ce10ab1 R08: 0000000000000000 R09: 0000000000000000
[  712.841034][T10843] R10: 0000000000209000 R11: 0000000000000246 R12: 0000000000000000
[  712.849150][T10843] R13: 0000000000000000 R14: 00007fb49cfb5fa0 R15: 00007fffdd169a48
[  712.857280][T10843]  </TASK>
[  712.860837][T10843] Kernel Offset: disabled
[  712.865250][T10843] Rebooting in 86400 seconds..