last executing test programs:

2m34.757997049s ago: executing program 2 (id=118):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000100)={&(0x7f0000000640)=ANY=[@ANYBLOB="9feb010018000000000000003400000034000000060000000400000000000012020000000000000000000001050000018000000000000000010000850200000000000000010000000000000400000000da"], 0x0, 0x52}, 0x20)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000140)={r0, 0x20, &(0x7f0000000080)={&(0x7f0000002700)=""/4116, 0x1014, 0x0, &(0x7f0000000000)=""/102, 0x66}}, 0x10)

2m34.004562782s ago: executing program 2 (id=123):
timer_create(0x9, &(0x7f0000000300)={0x0, 0xfffffffc, 0x1}, &(0x7f0000000500)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000800)={{0x77359400}, {0x0, 0x3938700}}, 0x0)
timer_settime(r0, 0x1, &(0x7f0000000480)={{0x77359400}, {0x0, 0x989680}}, &(0x7f0000000540))

2m33.446484682s ago: executing program 2 (id=128):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f00000000c0))
pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000080)='\x00', 0x1}], 0x1, 0x7, 0xb)

2m32.558589205s ago: executing program 2 (id=134):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$nfs4(&(0x7f0000000040)='/', &(0x7f0000000080)='./file0\x00', 0x0, 0x197841, 0x0)
umount2(&(0x7f0000000100)='./file0\x00', 0x8)

2m31.954748724s ago: executing program 2 (id=137):
syz_mount_image$msdos(&(0x7f0000000200), &(0x7f0000000240)='./file1\x00', 0x80c406, &(0x7f0000000700)=ANY=[@ANYBLOB='dots,dots,dmask=000000000200000,nodots,discard,nfs=nostale_ro,gid=', @ANYRESHEX=0x0, @ANYBLOB="2c646f733178666c6f70707900000000000000003030ffffffff303030303031373737373737373756c0f39fdb37372c004c0f1208ec0c34b7df4ba1c1e6b76697434db8574db9bcaef6a61a12c3f260bebc7ac5b1b11361119b83f1cf9f686b715b8e58fd37cea6623dc422c2ddbcefe94e5c255b5e8c90613e6b598b3b7a2c05de53dab7"], 0x1, 0x291, &(0x7f0000000280)="$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")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0)
ioctl$FAT_IOCTL_GET_ATTRIBUTES(r0, 0x40047211, &(0x7f00000000c0))

2m31.192238865s ago: executing program 2 (id=142):
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff})
tee(r0, r1, 0xea, 0x0)

2m28.872954727s ago: executing program 32 (id=142):
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff})
tee(r0, r1, 0xea, 0x0)

1m47.223678766s ago: executing program 1 (id=307):
r0 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x80}, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000007c0)={&(0x7f00000001c0)=@ipv4_newroute={0x1c, 0x1a, 0x1, 0x80000000, 0x25dfdbfc, {0xa, 0x0, 0x80, 0x0, 0x0, 0x3}}, 0x1c}, 0x1, 0x0, 0x0, 0x24000050}, 0x24000054)

1m46.400402845s ago: executing program 1 (id=313):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x6, 0xfd, 0x0, 0x7ffc0002}]})
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='pagemap\x00')
pread64(r0, 0x0, 0x0, 0x0)

1m45.760464523s ago: executing program 1 (id=315):
r0 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x80}, 0xaf)
sendmsg$nl_route(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="1c0000004a0001180000eff3ce2d00000a499a1ca8"], 0x1c}, 0x1, 0x0, 0x0, 0x48085}, 0x0)

1m45.048991203s ago: executing program 1 (id=318):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$nfs4(&(0x7f0000000040)='/', &(0x7f0000000080)='./file0\x00', 0x0, 0x197841, 0x0)
mount$fuseblk(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x24000, 0x0)

1m44.319651428s ago: executing program 1 (id=323):
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
r1 = dup(r0)
getsockopt$bt_sco_SCO_CONNINFO(r1, 0x11, 0x2, 0x0, 0x0)

1m43.607303746s ago: executing program 1 (id=327):
capset(&(0x7f00000002c0)={0x20071026}, &(0x7f0000000300))
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='oom_score_adj\x00')
writev(r0, &(0x7f00000002c0)=[{&(0x7f0000000280)='0', 0x1}], 0x1)

1m39.753458027s ago: executing program 33 (id=327):
capset(&(0x7f00000002c0)={0x20071026}, &(0x7f0000000300))
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='oom_score_adj\x00')
writev(r0, &(0x7f00000002c0)=[{&(0x7f0000000280)='0', 0x1}], 0x1)

4.243540606s ago: executing program 3 (id=747):
r0 = gettid()
clock_nanosleep(0xfffffff2, 0x0, &(0x7f0000000140)={0x77359400}, &(0x7f0000000040))
rt_sigqueueinfo(r0, 0x21, &(0x7f0000002d00)={0x0, 0x0, 0xffffffff})

3.620224249s ago: executing program 3 (id=752):
syz_mount_image$iso9660(&(0x7f0000000080), &(0x7f00000001c0)='.\x02\x00', 0x10, &(0x7f0000000680)=ANY=[], 0x1, 0x57b, &(0x7f0000001080)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0, 0x20)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0)

3.53826318s ago: executing program 4 (id=753):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff}, 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f0000000180)={0xe, 0x18, 0xfa00, @ib_path={0x0, r1, 0x1, 0x2}}, 0x20)

3.352278866s ago: executing program 0 (id=754):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000e40)={0x0, 0x18, 0xfa00, {0x4, &(0x7f0000000700)={<r1=>0xffffffffffffffff}, 0x2, 0x1}}, 0x20)
write$RDMA_USER_CM_CMD_QUERY(r0, &(0x7f0000000e80)={0x13, 0x10, 0xfa00, {&(0x7f00000011c0), r1, 0x2}}, 0x18)

3.248732765s ago: executing program 5 (id=755):
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000080)='devpts\x00', 0x0, 0x0)
mount$binder(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x1026864, &(0x7f00000001c0)=ANY=[@ANYBLOB='max=-', @ANYRESOCT])

3.228488151s ago: executing program 6 (id=756):
unshare(0x22020400)
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0xc, 0x286000)
syncfs(r0)

2.921381515s ago: executing program 0 (id=757):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010600000000000000000000000a2800"], 0x7c}}, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r0, 0x25, &(0x7f00000000c0))

2.844254083s ago: executing program 3 (id=758):
timer_create(0x2, 0x0, &(0x7f0000044000)=<r0=>0x0)
timer_settime(0x0, 0x0, &(0x7f0000000380)={{}, {0x0, 0x9}}, 0x0)
timer_settime(r0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, &(0x7f0000000080))

2.844007254s ago: executing program 4 (id=759):
r0 = syz_open_dev$vim2m(&(0x7f0000000100), 0x7fff, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f00000000c0)={0xb, 0x1, 0x4, 0x0, 0x7})
ioctl$vim2m_VIDIOC_EXPBUF(r0, 0xc0405610, &(0x7f0000000180)={0x7, 0xc, 0x7fff, 0x80000})

2.704648463s ago: executing program 5 (id=760):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x275a, 0x0)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000000)={0x18})
mmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x2000000, 0x13, r0, 0xf2a45000)

2.668414071s ago: executing program 6 (id=761):
capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000080)={0x1, 0x9, 0x8, 0x4, 0x5, 0x6})
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000001540)=[{&(0x7f0000000500)="48000000140081fb7059ae08060c040002ff0f03900000000000000400006fabca3b4e7d06a6bd7c00000000030000068a562ad6e74703c48f93bc2a02000000461eb886a5e54f8f", 0x48}], 0x1}, 0x0)

2.379521549s ago: executing program 4 (id=762):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000000000000000030"], 0x2c}}, 0x0)

2.355228568s ago: executing program 0 (id=763):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
ioctl$UI_ABS_SETUP(r0, 0x401c5504, 0x0)
ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000080)={{0x9, 0xf81, 0xfff, 0x80}, 'syz0\x00', 0x32})

2.326085874s ago: executing program 3 (id=764):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x207, &(0x7f0000000000), 0x1, 0x46f, &(0x7f0000001200)="$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")
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000a80)='./file1\x00', 0x8, &(0x7f00000008c0)={[{@bsdgroups}, {@nodiscard}, {@noblock_validity}, {@grpjquota}, {@sb={'sb', 0x3d, 0x64}}, {@orlov}, {@quota}, {@data_err_abort}, {@nomblk_io_submit}]}, 0x66, 0x50a, &(0x7f0000000200)="$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")
syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000f00)='.\x00', 0x1a4a438, &(0x7f00000008c0)=ANY=[], 0xc, 0x0, &(0x7f0000000000))

2.145662363s ago: executing program 5 (id=765):
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280))
r0 = socket$inet(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x8919, &(0x7f00000000c0)={0x0, {0x2, 0x4e22, @private=0xa010100}, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x20}}, {0x2, 0x4e20, @local}, 0x114, 0x0, 0x0, 0x0, 0x5, 0x0, 0x3, 0x3, 0x2})

2.024240198s ago: executing program 6 (id=766):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000440), r0)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="1400000015000103000000001c0000000a"], 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x0)

1.901204402s ago: executing program 0 (id=767):
syz_mount_image$nilfs2(&(0x7f0000000040), &(0x7f00000001c0)='./bus\x00', 0x0, &(0x7f00000002c0)=ANY=[], 0x1, 0xabf, &(0x7f0000002340)="$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")
r0 = open(&(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40186e8d, &(0x7f0000000680)={0x4, 0x1000, 0x9, 0x0, 0x0, 0x0, 0x2401})

1.748199568s ago: executing program 6 (id=768):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0}, 0x50)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x6, 0x1c, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x5, 0x0, 0xb, 0x9, 0x0, 0x2, 0x2}, {0x3, 0x2, 0x3, 0xa, 0x9, 0xfe00}, {0x5, 0x0, 0xb, 0x9, 0x0, 0x0, 0x4}, {0x3, 0x0, 0x6, 0xa, 0x9, 0xfe04, 0xe1}, {0x7, 0x1, 0xb, 0x7, 0x8}, {0x7, 0x0, 0x0, 0x8}, {0x7, 0x1, 0xb, 0x4, 0xa, 0x20}, {}, {}, {0x18, 0x2, 0x2, 0x0, r0}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

1.684912337s ago: executing program 4 (id=769):
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0xe, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="180000000000000000000000000000006118a1000000000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000003c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x12}, 0x94)

1.340332869s ago: executing program 4 (id=770):
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
syz_usb_connect$uac1(0x4, 0x71, &(0x7f0000000580)=ANY=[], 0x0)
close_range(r0, 0xffffffffffffffff, 0x200000000000000)

1.335532991s ago: executing program 5 (id=780):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r0}, 0x10)
lgetxattr(0x0, 0x0, 0x0, 0x0)

831.752725ms ago: executing program 3 (id=771):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_sys\x00', 0x275a, 0x0)
ioctl$FICLONERANGE(r0, 0x4020940d, &(0x7f0000000080)={{r0}, 0x0, 0x81, 0x15670d34})

795.64103ms ago: executing program 0 (id=772):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x161042, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000140))
ioctl$PPPIOCSPASS(r0, 0x40107447, &(0x7f00000000c0)={0x1, &(0x7f0000000300)=[{0x50, 0xff, 0x0, 0x6}]})

748.350766ms ago: executing program 5 (id=773):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0xb, &(0x7f00000024c0)=@framed={{0x18, 0x2}, [@printk={@s, {}, {}, {}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1fffffff}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x2004}, {0x85, 0x0, 0x0, 0x19}}]}, &(0x7f00000001c0)='GPL\x00', 0x4, 0xa2, &(0x7f0000000300)=""/162, 0x0, 0xa}, 0x94)
mprotect(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0xa}, 0x94)

733.662183ms ago: executing program 6 (id=774):
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000340)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$inet(r0, &(0x7f0000001540)=[{{0x0, 0xfffffffffffffda1, 0x0}}], 0x40001b6, 0x0)
close(r1)

295.533614ms ago: executing program 4 (id=775):
syz_mount_image$nilfs2(&(0x7f0000000a40), &(0x7f0000000380)='./file0\x00', 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="00a717cf64394a00dc299b573660f498c4d99aac48af10923f703f53e58070c2bf4575228d0e471df7101ac03b8d48a1b0fc276e395f25b63e9a27cd2ab98888989eec154d97b4dbcf"], 0x1, 0xa09, &(0x7f0000001540)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x1d4)
fstatfs(r0, &(0x7f0000001f80)=""/4096)

293.310355ms ago: executing program 5 (id=776):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
connect$pppl2tp(r0, &(0x7f0000000240)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x6, 0x4, 0x0, 0x0, {0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}}}, 0x32)

179.933886ms ago: executing program 3 (id=777):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r0)
sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x5c, r1, 0x1, 0x4000000, 0x0, {}, [@NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x3}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_MLSLVLLST={0x4}, @NLBL_CIPSOV4_A_TAGLST={0x34, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x6}, {0x5, 0x3, 0x2}, {0x5, 0x3, 0x6}, {0x5, 0x3, 0x2}, {0x5, 0x3, 0x4}, {0x5, 0x3, 0x7}]}]}, 0x5c}}, 0x0)

67.097227ms ago: executing program 0 (id=778):
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00'})
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl(r0, 0x8b1a, &(0x7f0000000040))

0s ago: executing program 6 (id=779):
capset(&(0x7f0000000080)={0x20080522}, &(0x7f0000000040)={0x1000, 0x10ffff, 0xfffffffd, 0x0, 0xfffff05b})
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x4b, &(0x7f0000000080)=0x1ff, 0x4)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.1.44' (ED25519) to the list of known hosts.
[  194.131661][ T5792] cgroup: Unknown subsys name 'net'
[  194.262330][ T5792] cgroup: Unknown subsys name 'cpuset'
[  194.278607][ T5792] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[  200.669253][ T5792] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  206.030051][ T5810] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  206.038431][ T5810] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  206.047222][ T5810] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  206.059500][ T5810] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  206.062416][ T5816] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  206.075599][ T5817] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  206.083945][ T5818] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  206.094894][ T5817] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  206.103160][ T5818] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  206.115080][ T5817] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  206.116621][ T5816] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  206.127994][ T5818] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  206.136050][ T5816] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  206.140048][ T5817] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  206.150204][ T5816] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  206.157579][ T5817] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  206.174056][ T5816] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  206.186871][ T5817] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  206.212570][ T5817] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  206.250038][ T5817] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  206.401019][ T5810] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  206.415383][ T5810] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  206.424976][ T5810] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  206.439143][ T5810] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  206.451104][ T5810] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  207.425701][ T5811] chnl_net:caif_netlink_parms(): no params data found
[  208.254997][ T5810] Bluetooth: hci0: command tx timeout
[  208.255074][ T5819] chnl_net:caif_netlink_parms(): no params data found
[  208.267891][ T5817] Bluetooth: hci2: command tx timeout
[  208.273734][ T5817] Bluetooth: hci1: command tx timeout
[  208.330863][ T5810] Bluetooth: hci3: command tx timeout
[  208.331545][ T5811] bridge0: port 1(bridge_slave_0) entered blocking state
[  208.343963][ T5811] bridge0: port 1(bridge_slave_0) entered disabled state
[  208.351842][ T5811] bridge_slave_0: entered allmulticast mode
[  208.361739][ T5811] bridge_slave_0: entered promiscuous mode
[  208.520333][ T5806] chnl_net:caif_netlink_parms(): no params data found
[  208.603371][ T5811] bridge0: port 2(bridge_slave_1) entered blocking state
[  208.611351][ T5811] bridge0: port 2(bridge_slave_1) entered disabled state
[  208.618987][ T5811] bridge_slave_1: entered allmulticast mode
[  208.628930][ T5811] bridge_slave_1: entered promiscuous mode
[  208.657847][ T5810] Bluetooth: hci4: command tx timeout
[  208.792232][ T5807] chnl_net:caif_netlink_parms(): no params data found
[  209.020902][ T5811] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  209.085818][ T5811] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  209.358437][ T5825] chnl_net:caif_netlink_parms(): no params data found
[  209.444630][ T5811] team0: Port device team_slave_0 added
[  209.504329][ T5811] team0: Port device team_slave_1 added
[  209.544825][ T5819] bridge0: port 1(bridge_slave_0) entered blocking state
[  209.552541][ T5819] bridge0: port 1(bridge_slave_0) entered disabled state
[  209.560203][ T5819] bridge_slave_0: entered allmulticast mode
[  209.570581][ T5819] bridge_slave_0: entered promiscuous mode
[  209.743878][ T5819] bridge0: port 2(bridge_slave_1) entered blocking state
[  209.751663][ T5819] bridge0: port 2(bridge_slave_1) entered disabled state
[  209.759341][ T5819] bridge_slave_1: entered allmulticast mode
[  209.769313][ T5819] bridge_slave_1: entered promiscuous mode
[  209.858591][ T5811] batman_adv: batadv0: Adding interface: batadv_slave_0
[  209.866788][ T5811] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  209.893402][ T5811] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  209.935160][ T5811] batman_adv: batadv0: Adding interface: batadv_slave_1
[  209.943272][ T5811] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  209.969939][ T5811] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  210.333676][ T5810] Bluetooth: hci2: command tx timeout
[  210.339414][ T5810] Bluetooth: hci0: command tx timeout
[  210.346751][ T5817] Bluetooth: hci1: command tx timeout
[  210.393001][ T5819] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  210.412565][ T5816] Bluetooth: hci3: command tx timeout
[  210.598812][ T5819] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  210.609113][ T5806] bridge0: port 1(bridge_slave_0) entered blocking state
[  210.617302][ T5806] bridge0: port 1(bridge_slave_0) entered disabled state
[  210.625330][ T5806] bridge_slave_0: entered allmulticast mode
[  210.635011][ T5806] bridge_slave_0: entered promiscuous mode
[  210.667085][ T5811] hsr_slave_0: entered promiscuous mode
[  210.677515][ T5811] hsr_slave_1: entered promiscuous mode
[  210.691149][ T5807] bridge0: port 1(bridge_slave_0) entered blocking state
[  210.698832][ T5807] bridge0: port 1(bridge_slave_0) entered disabled state
[  210.709354][ T5807] bridge_slave_0: entered allmulticast mode
[  210.719965][ T5807] bridge_slave_0: entered promiscuous mode
[  210.737393][ T5807] bridge0: port 2(bridge_slave_1) entered blocking state
[  210.738063][ T5816] Bluetooth: hci4: command tx timeout
[  210.745404][ T5807] bridge0: port 2(bridge_slave_1) entered disabled state
[  210.758370][ T5807] bridge_slave_1: entered allmulticast mode
[  210.768476][ T5807] bridge_slave_1: entered promiscuous mode
[  210.872260][ T5806] bridge0: port 2(bridge_slave_1) entered blocking state
[  210.879910][ T5806] bridge0: port 2(bridge_slave_1) entered disabled state
[  210.888049][ T5806] bridge_slave_1: entered allmulticast mode
[  210.897936][ T5806] bridge_slave_1: entered promiscuous mode
[  210.961918][ T5819] team0: Port device team_slave_0 added
[  211.134550][ T5807] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  211.152635][ T5819] team0: Port device team_slave_1 added
[  211.175941][ T5807] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  211.223695][ T5825] bridge0: port 1(bridge_slave_0) entered blocking state
[  211.231464][ T5825] bridge0: port 1(bridge_slave_0) entered disabled state
[  211.239130][ T5825] bridge_slave_0: entered allmulticast mode
[  211.249025][ T5825] bridge_slave_0: entered promiscuous mode
[  211.284954][ T5825] bridge0: port 2(bridge_slave_1) entered blocking state
[  211.295271][ T5825] bridge0: port 2(bridge_slave_1) entered disabled state
[  211.303222][ T5825] bridge_slave_1: entered allmulticast mode
[  211.313116][ T5825] bridge_slave_1: entered promiscuous mode
[  211.563636][ T5806] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  211.614432][ T5819] batman_adv: batadv0: Adding interface: batadv_slave_0
[  211.621760][ T5819] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  211.648478][ T5819] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  211.665542][ T5819] batman_adv: batadv0: Adding interface: batadv_slave_1
[  211.674286][ T5819] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  211.701952][ T5819] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  211.722862][ T5807] team0: Port device team_slave_0 added
[  211.819533][ T5806] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  211.851162][ T5807] team0: Port device team_slave_1 added
[  211.967666][ T5825] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  211.979740][ T5807] batman_adv: batadv0: Adding interface: batadv_slave_0
[  211.987319][ T5807] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  212.013913][ T5807] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  212.152587][ T5807] batman_adv: batadv0: Adding interface: batadv_slave_1
[  212.159903][ T5807] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  212.186585][ T5807] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  212.231141][ T5825] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  212.284937][ T5806] team0: Port device team_slave_0 added
[  212.426457][ T5816] Bluetooth: hci0: command tx timeout
[  212.426562][ T5810] Bluetooth: hci1: command tx timeout
[  212.434141][ T5816] Bluetooth: hci2: command tx timeout
[  212.471147][ T5819] hsr_slave_0: entered promiscuous mode
[  212.481764][ T5819] hsr_slave_1: entered promiscuous mode
[  212.490814][ T5819] debugfs: 'hsr0' already exists in 'hsr'
[  212.497296][ T5819] Cannot create hsr debugfs directory
[  212.507697][ T5816] Bluetooth: hci3: command tx timeout
[  212.524187][ T5806] team0: Port device team_slave_1 added
[  212.604717][ T5825] team0: Port device team_slave_0 added
[  212.750252][ T5825] team0: Port device team_slave_1 added
[  212.820833][ T5816] Bluetooth: hci4: command tx timeout
[  212.841410][ T5806] batman_adv: batadv0: Adding interface: batadv_slave_0
[  212.848736][ T5806] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  212.876662][ T5806] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  212.999780][ T5825] batman_adv: batadv0: Adding interface: batadv_slave_0
[  213.009179][ T5825] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  213.035694][ T5825] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  213.050152][ T5806] batman_adv: batadv0: Adding interface: batadv_slave_1
[  213.057533][ T5806] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  213.084010][ T5806] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  213.139959][ T5807] hsr_slave_0: entered promiscuous mode
[  213.150334][ T5807] hsr_slave_1: entered promiscuous mode
[  213.159705][ T5807] debugfs: 'hsr0' already exists in 'hsr'
[  213.165993][ T5807] Cannot create hsr debugfs directory
[  213.233392][ T5825] batman_adv: batadv0: Adding interface: batadv_slave_1
[  213.242823][ T5825] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  213.269350][ T5825] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  213.647740][ T5806] hsr_slave_0: entered promiscuous mode
[  213.656926][ T5806] hsr_slave_1: entered promiscuous mode
[  213.665967][ T5806] debugfs: 'hsr0' already exists in 'hsr'
[  213.672236][ T5806] Cannot create hsr debugfs directory
[  213.744635][ T5825] hsr_slave_0: entered promiscuous mode
[  213.757537][ T5825] hsr_slave_1: entered promiscuous mode
[  213.766599][ T5825] debugfs: 'hsr0' already exists in 'hsr'
[  213.772777][ T5825] Cannot create hsr debugfs directory
[  214.293692][ T5811] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  214.446952][ T5811] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  214.471312][ T5811] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  214.491491][ T5816] Bluetooth: hci2: command tx timeout
[  214.495229][ T5810] Bluetooth: hci1: command tx timeout
[  214.497175][ T5816] Bluetooth: hci0: command tx timeout
[  214.571374][ T5816] Bluetooth: hci3: command tx timeout
[  214.618162][ T5811] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  214.758735][ T5819] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  214.882625][ T5819] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  214.890954][ T5816] Bluetooth: hci4: command tx timeout
[  214.922212][ T5819] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  215.056285][ T5819] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  215.508206][ T5807] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  215.560316][ T5825] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  215.597238][ T5807] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  215.625984][ T5807] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  215.655583][ T5807] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  215.778410][ T5825] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  215.827355][ T5825] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  215.916632][ T5825] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  216.007707][ T5806] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  216.122706][ T5806] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  216.213842][ T5806] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  216.247953][ T5806] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  216.558655][ T5811] 8021q: adding VLAN 0 to HW filter on device bond0
[  216.800647][ T5819] 8021q: adding VLAN 0 to HW filter on device bond0
[  216.834364][ T5811] 8021q: adding VLAN 0 to HW filter on device team0
[  216.989005][ T5096] bridge0: port 1(bridge_slave_0) entered blocking state
[  216.996654][ T5096] bridge0: port 1(bridge_slave_0) entered forwarding state
[  217.087782][ T5819] 8021q: adding VLAN 0 to HW filter on device team0
[  217.126760][ T5096] bridge0: port 2(bridge_slave_1) entered blocking state
[  217.134403][ T5096] bridge0: port 2(bridge_slave_1) entered forwarding state
[  217.180941][ T5807] 8021q: adding VLAN 0 to HW filter on device bond0
[  217.308994][ T5096] bridge0: port 1(bridge_slave_0) entered blocking state
[  217.316695][ T5096] bridge0: port 1(bridge_slave_0) entered forwarding state
[  217.423074][ T5096] bridge0: port 2(bridge_slave_1) entered blocking state
[  217.430885][ T5096] bridge0: port 2(bridge_slave_1) entered forwarding state
[  217.473349][ T5807] 8021q: adding VLAN 0 to HW filter on device team0
[  217.596389][ T5096] bridge0: port 1(bridge_slave_0) entered blocking state
[  217.604033][ T5096] bridge0: port 1(bridge_slave_0) entered forwarding state
[  217.723326][ T5096] bridge0: port 2(bridge_slave_1) entered blocking state
[  217.731010][ T5096] bridge0: port 2(bridge_slave_1) entered forwarding state
[  217.765675][ T5825] 8021q: adding VLAN 0 to HW filter on device bond0
[  218.046606][ T5825] 8021q: adding VLAN 0 to HW filter on device team0
[  218.156745][ T5096] bridge0: port 1(bridge_slave_0) entered blocking state
[  218.164416][ T5096] bridge0: port 1(bridge_slave_0) entered forwarding state
[  218.277456][ T5806] 8021q: adding VLAN 0 to HW filter on device bond0
[  218.305181][ T5807] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  218.352757][ T5096] bridge0: port 2(bridge_slave_1) entered blocking state
[  218.360583][ T5096] bridge0: port 2(bridge_slave_1) entered forwarding state
[  218.680718][ T5806] 8021q: adding VLAN 0 to HW filter on device team0
[  218.752324][ T5096] bridge0: port 1(bridge_slave_0) entered blocking state
[  218.760104][ T5096] bridge0: port 1(bridge_slave_0) entered forwarding state
[  218.904907][ T5096] bridge0: port 2(bridge_slave_1) entered blocking state
[  218.912619][ T5096] bridge0: port 2(bridge_slave_1) entered forwarding state
[  220.338154][ T5811] 8021q: adding VLAN 0 to HW filter on device batadv0
[  220.440167][ T5807] 8021q: adding VLAN 0 to HW filter on device batadv0
[  220.514350][ T5819] 8021q: adding VLAN 0 to HW filter on device batadv0
[  220.894854][ T5825] 8021q: adding VLAN 0 to HW filter on device batadv0
[  221.108568][ T5807] veth0_vlan: entered promiscuous mode
[  221.119338][ T5811] veth0_vlan: entered promiscuous mode
[  221.271874][ T5807] veth1_vlan: entered promiscuous mode
[  221.366345][ T5811] veth1_vlan: entered promiscuous mode
[  221.499184][ T5806] 8021q: adding VLAN 0 to HW filter on device batadv0
[  221.713333][ T5825] veth0_vlan: entered promiscuous mode
[  221.765676][ T5807] veth0_macvtap: entered promiscuous mode
[  221.847924][ T5811] veth0_macvtap: entered promiscuous mode
[  221.886872][ T5807] veth1_macvtap: entered promiscuous mode
[  221.918288][ T5825] veth1_vlan: entered promiscuous mode
[  221.947194][ T5811] veth1_macvtap: entered promiscuous mode
[  222.149675][ T5806] veth0_vlan: entered promiscuous mode
[  222.195216][ T5807] batman_adv: batadv0: Interface activated: batadv_slave_0
[  222.260199][ T5811] batman_adv: batadv0: Interface activated: batadv_slave_0
[  222.333102][ T5806] veth1_vlan: entered promiscuous mode
[  222.361765][ T5807] batman_adv: batadv0: Interface activated: batadv_slave_1
[  222.434021][ T5811] batman_adv: batadv0: Interface activated: batadv_slave_1
[  222.504259][ T5825] veth0_macvtap: entered promiscuous mode
[  222.521968][ T4309] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  222.584456][ T5825] veth1_macvtap: entered promiscuous mode
[  222.595286][ T4309] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  222.652716][ T4309] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  222.705524][ T4309] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  222.772497][ T4309] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  222.816422][ T5806] veth0_macvtap: entered promiscuous mode
[  222.828879][ T4309] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  222.856007][ T5825] batman_adv: batadv0: Interface activated: batadv_slave_0
[  222.901916][ T4309] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  222.930248][ T5806] veth1_macvtap: entered promiscuous mode
[  222.987072][ T5825] batman_adv: batadv0: Interface activated: batadv_slave_1
[  223.010003][ T4309] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  223.125244][ T4368] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  223.206927][ T5806] batman_adv: batadv0: Interface activated: batadv_slave_0
[  223.238176][ T5096] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  223.274102][ T5096] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  223.308344][ T5806] batman_adv: batadv0: Interface activated: batadv_slave_1
[  223.330800][ T5096] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  223.452685][ T3631] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  223.481107][ T3631] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  223.490593][ T3631] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  223.549547][ T3631] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  224.089238][ T5819] veth0_vlan: entered promiscuous mode
[  224.225425][ T5819] veth1_vlan: entered promiscuous mode
[  224.622620][ T5819] veth0_macvtap: entered promiscuous mode
[  224.718938][ T5819] veth1_macvtap: entered promiscuous mode
[  224.946139][ T5819] batman_adv: batadv0: Interface activated: batadv_slave_0
[  225.043305][ T5819] batman_adv: batadv0: Interface activated: batadv_slave_1
[  225.171904][ T3631] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  225.251453][ T3631] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  225.299818][ T3631] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  225.347031][ T3631] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  230.111463][ T3631] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  230.119593][ T3631] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  230.285426][ T4010] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  230.293835][ T4010] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  230.429964][ T4309] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  230.438182][ T4309] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  230.538741][ T4045] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  230.547883][ T4045] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  230.708762][ T4010] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  230.717615][ T4010] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  230.982162][ T5807] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[  231.035086][ T1827] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  231.044463][ T1827] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  231.229907][ T1827] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  231.238435][ T1827] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  231.466277][ T3631] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  231.475179][ T3631] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  232.339591][ T6003] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6'.
[  232.349169][ T6003] netlink: 24 bytes leftover after parsing attributes in process `syz.1.6'.
[  232.484405][ T6006] loop2: detected capacity change from 0 to 256
[  232.563076][ T6006] =======================================================
[  232.563076][ T6006] WARNING: The mand mount option has been deprecated and
[  232.563076][ T6006]          and is ignored by this kernel. Remove the mand
[  232.563076][ T6006]          option from the mount to silence this warning.
[  232.563076][ T6006] =======================================================
[  232.844375][ T6006] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d)
[  232.976168][ T1827] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  232.984489][ T1827] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  233.256884][ T6013] loop1: detected capacity change from 0 to 512
[  233.345726][ T1827] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  233.354366][ T1827] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  233.491508][ T6013] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  233.504714][ T6013] ext4 filesystem being mounted at /2/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  233.665227][ T6009] loop3: detected capacity change from 0 to 4096
[  233.878026][ T6020] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  234.155289][ T5811] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  234.923373][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  234.930146][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  235.887745][   T30] audit: type=1326 audit(1755881729.833:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6042 comm="syz.1.20" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f24539 code=0x7ffc0000
[  235.910376][   T30] audit: type=1326 audit(1755881729.833:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6042 comm="syz.1.20" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f24539 code=0x7ffc0000
[  236.080058][   T30] audit: type=1326 audit(1755881729.893:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6042 comm="syz.1.20" exe="/root/syz-executor" sig=0 arch=40000003 syscall=100 compat=1 ip=0xf7f24539 code=0x7ffc0000
[  236.108517][   T30] audit: type=1326 audit(1755881729.893:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6042 comm="syz.1.20" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f24539 code=0x7ffc0000
[  236.433700][ T6049] Bluetooth: MGMT ver 1.23
[  240.264834][ T6108] loop2: detected capacity change from 0 to 256
[  241.351682][ T6122] netlink: 'syz.2.53': attribute type 1 has an invalid length.
[  241.402776][ T6121] loop1: detected capacity change from 0 to 512
[  241.447903][ T6124] loop4: detected capacity change from 0 to 256
[  241.495125][ T6124] exFAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  241.506416][ T6124] exFAT-fs (loop4): Medium has reported failures. Some data may be lost.
[  241.626803][ T6121] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  241.640230][ T6121] ext4 filesystem being mounted at /12/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  241.777154][ T6124] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  242.072295][ T6121] EXT4-fs: Ignoring removed orlov option
[  242.078878][ T6121] EXT4-fs: can't change dax mount option while remounting
[  242.683016][ T5811] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  242.874895][ T6141] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  243.519302][ T6150] loop3: detected capacity change from 0 to 22
[  243.590965][ T6150] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  243.846787][ T6155] loop4: detected capacity change from 0 to 512
[  243.880959][ T5873] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  243.955262][ T6155] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  243.971937][ T6155] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  244.018533][ T6156] loop1: detected capacity change from 0 to 2048
[  244.088871][ T5873] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x6 has invalid maxpacket 1023
[  244.100104][ T5873] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xBA, changing to 0x8A
[  244.113020][ T5873] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8A has invalid maxpacket 121
[  244.157864][ T6155] EXT4-fs (loop4): 1 truncate cleaned up
[  244.166611][ T6155] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  244.291190][ T6156] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  244.357687][ T5873] usb 1-1: New USB device found, idVendor=2294, idProduct=425b, bcdDevice=a2.10
[  244.367537][ T5873] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  244.376294][ T5873] usb 1-1: Product: syz
[  244.386642][ T5873] usb 1-1: Manufacturer: syz
[  244.393636][ T5873] usb 1-1: SerialNumber: syz
[  244.545340][ T6161] loop3: detected capacity change from 0 to 512
[  244.615181][ T5873] usb 1-1: config 0 descriptor??
[  244.655080][ T6153] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  244.763039][ T6153] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  244.848635][ T5873] usb 1-1: ucan: probing device on interface #0
[  244.865527][ T6161] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm syz.3.72: bg 0: block 5: invalid block bitmap
[  244.894038][ T5819] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  244.954334][ T6161] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  245.011490][ T6161] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.72: invalid indirect mapped block 3 (level 2)
[  245.071515][ T6161] EXT4-fs (loop3): 2 truncates cleaned up
[  245.079908][ T6161] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  245.632931][ T6165] loop2: detected capacity change from 0 to 1024
[  245.671737][ T5873] ucan 1-1:0.0: probe with driver ucan failed with error -71
[  245.803244][ T5873] usb 1-1: USB disconnect, device number 2
[  245.966962][ T5825] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  247.092656][ T6181] netlink: 32 bytes leftover after parsing attributes in process `syz.0.80'.
[  248.308708][ T6204] netlink: 8 bytes leftover after parsing attributes in process `syz.2.89'.
[  248.317875][ T6204] netlink: 60 bytes leftover after parsing attributes in process `syz.2.89'.
[  248.327359][ T6204] vlan1: entered allmulticast mode
[  248.340788][ T6204] veth0_vlan: entered allmulticast mode
[  248.397147][ T6203] loop4: detected capacity change from 0 to 512
[  248.502484][ T6203] EXT4-fs error (device loop4): ext4_orphan_get:1392: inode #15: comm syz.4.91: iget: bad i_size value: 38620345925642
[  248.595061][ T6203] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.91: couldn't read orphan inode 15 (err -117)
[  248.647671][ T6195] loop0: detected capacity change from 0 to 4096
[  248.691909][ T6203] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  248.703570][ T6195] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512).
[  249.208894][ T6195] ntfs3(loop0): Failed to initialize $Extend/$Reparse.
[  249.344642][ T5819] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  249.882122][ T6220] warning: `syz.1.96' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  250.616644][ T6226] loop3: detected capacity change from 0 to 256
[  250.741537][ T6226] FAT-fs (loop3): Directory bread(block 1285) failed
[  250.911716][ T6226] FAT-fs (loop3): Directory bread(block 1285) failed
[  250.915030][ T6233] program syz.1.102 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  250.919551][ T6226] FAT-fs (loop3): FAT read failed (blocknr 1281)
[  252.422257][ T6251] raw_sendmsg: syz.0.111 forgot to set AF_INET. Fix it!
[  253.013191][ T6257] tipc: Started in network mode
[  253.018400][ T6257] tipc: Node identity e0000002, cluster identity 4711
[  253.025981][ T6257] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  253.062663][ T6259] netlink: 12 bytes leftover after parsing attributes in process `syz.0.115'.
[  255.112175][ T6293] netlink: 16 bytes leftover after parsing attributes in process `syz.3.131'.
[  255.285397][ T6294] loop4: detected capacity change from 0 to 512
[  255.389583][ T6294] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  255.675730][ T6294] EXT4-fs (loop4): 1 orphan inode deleted
[  255.682953][ T6294] EXT4-fs (loop4): 1 truncate cleaned up
[  255.691335][ T6294] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  255.832077][ T6294] EXT4-fs error (device loop4): ext4_lookup:1787: inode #15: comm syz.4.132: iget: bad extra_isize 46 (inode size 256)
[  255.941762][ T6294] EXT4-fs (loop4): Remounting filesystem read-only
[  256.229390][ T3554] hfsplus: b-tree write err: -5, ino 4
[  256.372801][ T5819] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  256.661818][ T3631] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  256.888924][ T3631] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  257.133558][ T3631] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  257.243239][ T6316] netlink: 56 bytes leftover after parsing attributes in process `syz.1.143'.
[  257.316021][ T3631] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  257.892190][ T3631] bridge_slave_1: left allmulticast mode
[  257.902568][ T3631] bridge_slave_1: left promiscuous mode
[  257.909369][ T3631] bridge0: port 2(bridge_slave_1) entered disabled state
[  257.965534][ T3631] bridge_slave_0: left allmulticast mode
[  257.974581][ T3631] bridge_slave_0: left promiscuous mode
[  257.981486][ T3631] bridge0: port 1(bridge_slave_0) entered disabled state
[  258.491581][ T3631] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  258.519266][ T3631] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  258.548857][ T3631] bond0 (unregistering): Released all slaves
[  259.150785][ T3631] hsr_slave_0: left promiscuous mode
[  259.201103][ T3631] hsr_slave_1: left promiscuous mode
[  259.209429][ T3631] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  259.218007][ T3631] batman_adv: batadv0: Removing interface: batadv_slave_0
[  259.297406][ T3631] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  259.305764][ T3631] batman_adv: batadv0: Removing interface: batadv_slave_1
[  259.363514][   T24] kernel write not supported for file /input/mouse0 (pid: 24 comm: kworker/1:0)
[  259.481482][ T3631] veth1_macvtap: left promiscuous mode
[  259.487250][ T3631] veth0_macvtap: left promiscuous mode
[  259.493772][ T3631] veth1_vlan: left promiscuous mode
[  259.499465][ T3631] veth0_vlan: left promiscuous mode
[  260.434226][ T5810] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  260.471621][ T5810] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  260.497156][ T5810] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  260.611604][ T5810] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  260.621556][ T5864] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  260.673852][ T5810] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  260.960787][ T5864] usb 1-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[  260.971540][ T5864] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  260.989992][ T5864] usb 1-1: config 0 descriptor??
[  261.072001][ T3631] team0 (unregistering): Port device team_slave_1 removed
[  261.191005][ T3631] team0 (unregistering): Port device team_slave_0 removed
[  261.925785][ T5864] usb 1-1: Cannot set autoneg
[  261.931907][ T5864] MOSCHIP usb-ethernet driver 1-1:0.0: probe with driver MOSCHIP usb-ethernet driver failed with error -71
[  262.008010][ T5864] usb 1-1: USB disconnect, device number 3
[  262.818350][ T5810] Bluetooth: hci0: command tx timeout
[  263.554502][ T6341] chnl_net:caif_netlink_parms(): no params data found
[  264.891860][ T5810] Bluetooth: hci0: command tx timeout
[  265.305047][ T5864] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  265.501627][ T5864] usb 5-1: config 0 has an invalid interface number: 3 but max is 0
[  265.510129][ T5864] usb 5-1: config 0 has no interface number 0
[  265.516675][ T5864] usb 5-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  265.526278][ T5864] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  265.600468][ T5864] usb 5-1: config 0 descriptor??
[  265.637047][ T5864] cp210x 5-1:0.3: cp210x converter detected
[  265.659766][ T6341] bridge0: port 1(bridge_slave_0) entered blocking state
[  265.667736][ T6341] bridge0: port 1(bridge_slave_0) entered disabled state
[  265.676000][ T6341] bridge_slave_0: entered allmulticast mode
[  265.695953][ T6341] bridge_slave_0: entered promiscuous mode
[  265.938793][ T6341] bridge0: port 2(bridge_slave_1) entered blocking state
[  265.947664][ T6341] bridge0: port 2(bridge_slave_1) entered disabled state
[  265.956811][ T6341] bridge_slave_1: entered allmulticast mode
[  265.968729][ T6341] bridge_slave_1: entered promiscuous mode
[  266.029554][ T5864] cp210x 5-1:0.3: failed to get vendor val 0x000e size 3: -71
[  266.116141][ T5864] usb 5-1: cp210x converter now attached to ttyUSB0
[  266.237686][ T5864] usb 5-1: USB disconnect, device number 2
[  266.328128][ T5864] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  266.342355][ T5864] cp210x 5-1:0.3: device disconnected
[  266.621503][ T6409] loop3: detected capacity change from 0 to 8
[  266.644263][ T6407] mkiss: ax0: crc mode is auto.
[  266.677403][ T6341] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  266.863581][ T6341] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  266.971786][ T5810] Bluetooth: hci0: command tx timeout
[  267.443813][ T6341] team0: Port device team_slave_0 added
[  267.512492][ T6341] team0: Port device team_slave_1 added
[  267.763024][ T6341] batman_adv: batadv0: Adding interface: batadv_slave_0
[  267.770180][ T6341] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  267.797078][ T6341] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  268.062550][ T6341] batman_adv: batadv0: Adding interface: batadv_slave_1
[  268.069944][ T6341] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  268.097909][ T6341] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  268.814495][ T6341] hsr_slave_0: entered promiscuous mode
[  268.825137][ T6341] hsr_slave_1: entered promiscuous mode
[  268.834438][ T6341] debugfs: 'hsr0' already exists in 'hsr'
[  268.840673][ T6341] Cannot create hsr debugfs directory
[  269.051393][ T5810] Bluetooth: hci0: command tx timeout
[  270.259215][ T6448] loop4: detected capacity change from 0 to 64
[  270.540781][ T6341] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  270.652397][ T6341] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  270.698369][ T6341] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  270.754932][ T6438] loop3: detected capacity change from 0 to 8192
[  270.791864][ T6341] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  271.527235][ T6463] loop0: detected capacity change from 0 to 128
[  271.682893][ T6463] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  271.698926][ T6461] netlink: 12 bytes leftover after parsing attributes in process `syz.4.191'.
[  271.732154][ T6463] ext4 filesystem being mounted at /37/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  272.572938][ T5806] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  272.630351][ T6341] 8021q: adding VLAN 0 to HW filter on device bond0
[  272.943283][ T6341] 8021q: adding VLAN 0 to HW filter on device team0
[  273.053121][ T4010] bridge0: port 1(bridge_slave_0) entered blocking state
[  273.060865][ T4010] bridge0: port 1(bridge_slave_0) entered forwarding state
[  273.206878][ T4010] bridge0: port 2(bridge_slave_1) entered blocking state
[  273.214544][ T4010] bridge0: port 2(bridge_slave_1) entered forwarding state
[  273.284613][ T6479] loop1: detected capacity change from 0 to 1024
[  273.299552][ T6480] loop3: detected capacity change from 0 to 512
[  273.487005][ T6480] EXT4-fs (loop3): orphan cleanup on readonly fs
[  273.550245][ T6341] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  273.662660][ T6480] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.198: bg 0: block 248: padding at end of block bitmap is not set
[  273.721235][ T6480] Quota error (device loop3): write_blk: dquota write failed
[  273.729228][ T6480] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  273.741306][ T6480] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.198: Failed to acquire dquot type 1
[  273.952589][ T6480] EXT4-fs (loop3): 1 truncate cleaned up
[  274.009538][ T6480] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  274.688199][ T6480] syz.3.198 (6480) used greatest stack depth: 3024 bytes left
[  274.803345][ T5825] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  275.312781][ T6499] loop3: detected capacity change from 0 to 64
[  276.609242][ T6341] 8021q: adding VLAN 0 to HW filter on device batadv0
[  279.519484][ T6554] loop0: detected capacity change from 0 to 256
[  279.779199][   T30] audit: type=1800 audit(1755881773.723:6): pid=6554 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.222" name="file0" dev="loop0" ino=1048605 res=0 errno=0
[  280.286496][ T6341] veth0_vlan: entered promiscuous mode
[  280.523555][ T6341] veth1_vlan: entered promiscuous mode
[  280.976953][ T6341] veth0_macvtap: entered promiscuous mode
[  281.088141][ T6341] veth1_macvtap: entered promiscuous mode
[  281.291004][ T6341] batman_adv: batadv0: Interface activated: batadv_slave_0
[  281.443560][ T6341] batman_adv: batadv0: Interface activated: batadv_slave_1
[  281.561437][ T4045] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  281.592533][ T4045] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  281.635859][ T4045] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  281.699348][ T4045] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  281.792400][ T6579] loop0: detected capacity change from 0 to 128
[  281.895062][ T6569] loop4: detected capacity change from 0 to 4096
[  281.986030][ T6569] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512).
[  282.014568][   T30] audit: type=1800 audit(1755881775.953:7): pid=6579 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.230" name="file1" dev="loop0" ino=1048606 res=0 errno=0
[  283.175100][ T6588] loop3: detected capacity change from 0 to 256
[  283.333093][ T6588] exfat: Deprecated parameter 'utf8'
[  283.338933][ T6588] exfat: Deprecated parameter 'utf8'
[  283.344999][ T6588] exfat: Deprecated parameter 'utf8'
[  283.706022][ T6588] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x743489c8, utbl_chksum : 0xe619d30d)
[  283.946713][ T6595] loop1: detected capacity change from 0 to 1024
[  284.235792][ T6595] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  284.249012][ T6595] ext4 filesystem being mounted at /56/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  284.651884][ T6607] capability: warning: `syz.4.237' uses deprecated v2 capabilities in a way that may be insecure
[  285.081952][ T5811] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  285.082431][ T5873] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  285.355848][ T5873] usb 1-1: Using ep0 maxpacket: 8
[  285.426325][ T5873] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 201, changing to 11
[  285.438294][ T5873] usb 1-1: New USB device found, idVendor=28bd, idProduct=0055, bcdDevice= 0.00
[  285.453847][ T5873] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  285.576306][ T5873] usb 1-1: config 0 descriptor??
[  285.855857][ T6619] loop1: detected capacity change from 0 to 22
[  285.974224][ T6619] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  286.118301][ T5873] uclogic 0003:28BD:0055.0001: interface is invalid, ignoring
[  286.291843][ T5873] usb 1-1: USB disconnect, device number 4
[  286.912968][ T6629] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[  287.762263][ T6638] netlink: 20 bytes leftover after parsing attributes in process `syz.1.247'.
[  288.591833][ T6652] sg_write: data in/out 1048534/8 bytes for SCSI command 0xc0-- guessing data in;
[  288.591833][ T6652]    program syz.4.252 not setting count and/or reply_len properly
[  288.758138][ T6656] loop3: detected capacity change from 0 to 64
[  288.910821][ T5873] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  289.153224][ T5873] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  289.164809][ T5873] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  289.175832][ T5873] usb 1-1: New USB device found, idVendor=04e7, idProduct=0030, bcdDevice= 0.00
[  289.185334][ T5873] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  289.322551][ T5873] usb 1-1: config 0 descriptor??
[  289.853767][ T5873] elo 0003:04E7:0030.0002: item fetching failed at offset 5/7
[  289.914303][ T5873] elo 0003:04E7:0030.0002: parse failed
[  289.922984][ T5873] elo 0003:04E7:0030.0002: probe with driver elo failed with error -22
[  290.025562][ T6665] loop1: detected capacity change from 0 to 256
[  290.091214][ T5872] usb 1-1: USB disconnect, device number 5
[  290.500274][ T6665] FAT-fs (loop1): Directory bread(block 64) failed
[  290.507489][ T6665] FAT-fs (loop1): Directory bread(block 65) failed
[  290.515498][ T6665] FAT-fs (loop1): Directory bread(block 66) failed
[  290.523429][ T6665] FAT-fs (loop1): Directory bread(block 67) failed
[  290.531438][ T6665] FAT-fs (loop1): Directory bread(block 68) failed
[  290.541528][ T6665] FAT-fs (loop1): Directory bread(block 69) failed
[  290.552082][ T6665] FAT-fs (loop1): Directory bread(block 70) failed
[  290.558998][ T6665] FAT-fs (loop1): Directory bread(block 71) failed
[  290.567356][ T6665] FAT-fs (loop1): Directory bread(block 72) failed
[  290.576089][ T6665] FAT-fs (loop1): Directory bread(block 73) failed
[  290.932976][ T6673] netlink: 8 bytes leftover after parsing attributes in process `syz.4.260'.
[  290.942516][ T6673] netlink: 12 bytes leftover after parsing attributes in process `syz.4.260'.
[  290.951824][ T6673] netlink: 'syz.4.260': attribute type 18 has an invalid length.
[  291.679330][ T3514] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  291.693927][ T3514] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  292.011845][ T6682] TCP: TCP_TX_DELAY enabled
[  292.085864][ T4010] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  292.095208][ T4010] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  292.371070][ T5873] usb 4-1: new full-speed USB device number 2 using dummy_hcd
[  292.621841][ T5873] usb 4-1: New USB device found, idVendor=09c0, idProduct=0203, bcdDevice=d3.43
[  292.631510][ T5873] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  292.732265][ T5873] usb 4-1: config 0 descriptor??
[  292.759371][ T5873] dvb-usb: found a 'Genpix SkyWalker-1 DVB-S receiver' in warm state.
[  292.944794][ T6698] loop0: detected capacity change from 0 to 1024
[  293.472084][ T5873] gp8psk: usb out operation failed.
[  293.477630][ T5873] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter)
[  293.489007][ T5873] dvb-usb: Genpix SkyWalker-1 DVB-S receiver error while loading driver (-19)
[  293.617975][ T6703] loop4: detected capacity change from 0 to 256
[  293.662070][ T5873] usb 4-1: USB disconnect, device number 2
[  293.863971][ T4045] hfsplus: b-tree write err: -5, ino 4
[  293.927986][ T6703] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xb1ade69f, utbl_chksum : 0xe619d30d)
[  296.369792][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  296.376726][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  296.394428][ T6738] netlink: 4 bytes leftover after parsing attributes in process `syz.1.283'.
[  296.481193][ T5873] usb 6-1: new full-speed USB device number 2 using dummy_hcd
[  296.720794][ T5873] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  296.731724][ T5873] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 2
[  296.741303][ T5873] usb 6-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[  296.750785][ T5873] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  296.863693][ T5873] usb 6-1: config 0 descriptor??
[  296.945722][ T5873] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[  296.953075][ T5873] dvb-usb: bulk message failed: -22 (3/0)
[  297.063802][ T5873] dvb-usb: will use the device's hardware PID filter (table count: 16).
[  297.148933][ T5873] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[  297.156623][ T5873] usb 6-1: media controller created
[  297.231772][ T5873] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  297.350003][ T5873] dvb-usb: bulk message failed: -22 (6/0)
[  297.356444][ T5873] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[  297.463784][ T5873] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.5/usb6/6-1/input/input5
[  297.550302][ T5873] dvb-usb: schedule remote query interval to 150 msecs.
[  297.558063][ T5873] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[  297.624724][ T5873] usb 6-1: USB disconnect, device number 2
[  297.861309][ T5873] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[  297.964148][ T6762] loop4: detected capacity change from 0 to 64
[  298.291822][   T30] audit: type=1800 audit(1755881792.243:8): pid=6762 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.292" name="file1" dev="loop4" ino=21 res=0 errno=0
[  300.345110][ T6795] loop3: detected capacity change from 0 to 8
[  300.556388][ T6795] SQUASHFS error: Unknown LZ4 version
[  300.562406][ T6795] squashfs image failed sanity check
[  301.783703][   T30] audit: type=1326 audit(1755881795.733:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6814 comm="syz.1.313" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f24539 code=0x7ffc0000
[  301.823586][    C0] vkms_vblank_simulate: vblank timer overrun
[  301.826390][   T30] audit: type=1326 audit(1755881795.753:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6814 comm="syz.1.313" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f24539 code=0x7ffc0000
[  301.826636][   T30] audit: type=1326 audit(1755881795.773:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6814 comm="syz.1.313" exe="/root/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f24539 code=0x7ffc0000
[  301.826883][   T30] audit: type=1326 audit(1755881795.783:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6814 comm="syz.1.313" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f24539 code=0x7ffc0000
[  301.848141][   T30] audit: type=1326 audit(1755881795.803:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6814 comm="syz.1.313" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f24539 code=0x7ffc0000
[  301.852112][   T30] audit: type=1326 audit(1755881795.803:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6814 comm="syz.1.313" exe="/root/syz-executor" sig=0 arch=40000003 syscall=180 compat=1 ip=0xf7f24539 code=0x7ffc0000
[  301.852349][   T30] audit: type=1326 audit(1755881795.813:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6814 comm="syz.1.313" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f24539 code=0x7ffc0000
[  304.322517][ T3514] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  304.503852][ T3514] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  304.765874][ T3514] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  304.979912][ T3514] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  305.535019][ T3514] bridge_slave_1: left allmulticast mode
[  305.542450][ T3514] bridge_slave_1: left promiscuous mode
[  305.549124][ T3514] bridge0: port 2(bridge_slave_1) entered disabled state
[  305.697345][ T3514] bridge_slave_0: left allmulticast mode
[  305.704506][ T3514] bridge_slave_0: left promiscuous mode
[  305.711326][ T3514] bridge0: port 1(bridge_slave_0) entered disabled state
[  307.219884][ T3514] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  307.339718][ T3514] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  307.397173][ T3514] bond0 (unregistering): Released all slaves
[  308.330822][ T3514] hsr_slave_0: left promiscuous mode
[  308.379085][ T3514] hsr_slave_1: left promiscuous mode
[  308.389019][ T3514] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  308.397009][ T3514] batman_adv: batadv0: Removing interface: batadv_slave_0
[  308.413477][ T6869] program syz.0.331 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  308.466045][ T6874] program syz.0.331 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  308.497367][ T6874] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  308.502157][ T3514] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  308.514373][ T3514] batman_adv: batadv0: Removing interface: batadv_slave_1
[  308.755804][ T3514] veth1_macvtap: left promiscuous mode
[  308.761702][ T3514] veth0_macvtap: left promiscuous mode
[  308.767635][ T3514] veth1_vlan: left promiscuous mode
[  308.773365][ T3514] veth0_vlan: left promiscuous mode
[  309.336577][ T6881] loop0: detected capacity change from 0 to 512
[  309.357352][ T6881] EXT4-fs (loop0): Test dummy encryption mode enabled
[  309.364955][ T6881] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  309.460169][ T5816] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  309.527894][ T6881] EXT4-fs error (device loop0): ext4_orphan_get:1418: comm syz.0.335: bad orphan inode 131083
[  309.536980][ T5816] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  309.577178][ T5816] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  309.601726][ T5816] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  309.623447][ T5816] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  309.634524][ T6881] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  310.002967][ T6890] netlink: 8 bytes leftover after parsing attributes in process `syz.5.337'.
[  310.134582][ T3514] team0 (unregistering): Port device team_slave_1 removed
[  310.298004][ T3514] team0 (unregistering): Port device team_slave_0 removed
[  310.523413][ T5806] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  310.760177][ T6893] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  311.598555][ T6893] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  311.812104][ T5816] Bluetooth: hci2: command tx timeout
[  311.977589][ T6893] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  312.022609][   T30] audit: type=1326 audit(1755881805.983:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6909 comm="syz.0.343" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de539 code=0x7ffc0000
[  312.046033][   T30] audit: type=1326 audit(1755881805.983:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6909 comm="syz.0.343" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de539 code=0x7ffc0000
[  312.246025][ T6893] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  312.302993][   T30] audit: type=1326 audit(1755881806.043:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6909 comm="syz.0.343" exe="/root/syz-executor" sig=0 arch=40000003 syscall=100 compat=1 ip=0xf70de539 code=0x7ffc0000
[  312.325901][   T30] audit: type=1326 audit(1755881806.053:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6909 comm="syz.0.343" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de539 code=0x7ffc0000
[  312.772448][ T3514] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  312.820896][ T3631] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  312.860777][ T3631] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  312.941711][ T3631] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  312.992529][ T6883] chnl_net:caif_netlink_parms(): no params data found
[  313.064770][ T6919] loop0: detected capacity change from 0 to 512
[  313.274324][ T6919] EXT4-fs error (device loop0): ext4_iget_extra_inode:5104: inode #15: comm syz.0.345: corrupted in-inode xattr: invalid ea_ino
[  313.379805][ T6919] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.345: couldn't read orphan inode 15 (err -117)
[  313.517099][ T6919] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  313.717933][ T6919] EXT4-fs error (device loop0): htree_dirblock_to_tree:1080: inode #2: block 13: comm syz.0.345: bad entry in directory: rec_len is smaller than minimal - offset=76, inode=0, rec_len=0, size=1024 fake=0
[  313.858965][ T5816] Bluetooth: hci2: command tx timeout
[  314.079201][ T6932] process 'syz.4.349' launched './file0' with NULL argv: empty string added
[  314.243893][ T5806] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  314.742395][ T6943] netlink: 8 bytes leftover after parsing attributes in process `syz.4.354'.
[  314.751719][ T6943] netlink: 4 bytes leftover after parsing attributes in process `syz.4.354'.
[  314.761076][ T6943] netlink: 'syz.4.354': attribute type 14 has an invalid length.
[  314.769131][ T6943] netlink: 'syz.4.354': attribute type 13 has an invalid length.
[  314.792918][ T6946] netlink: 60 bytes leftover after parsing attributes in process `syz.0.351'.
[  314.804759][ T6941] netlink: 60 bytes leftover after parsing attributes in process `syz.0.351'.
[  315.283611][ T6947] netlink: 60 bytes leftover after parsing attributes in process `syz.3.353'.
[  315.307191][ T6883] bridge0: port 1(bridge_slave_0) entered blocking state
[  315.316767][ T6883] bridge0: port 1(bridge_slave_0) entered disabled state
[  315.324781][ T6883] bridge_slave_0: entered allmulticast mode
[  315.409058][ T6883] bridge_slave_0: entered promiscuous mode
[  315.426523][ T6945] netlink: 60 bytes leftover after parsing attributes in process `syz.3.353'.
[  315.509190][ T6883] bridge0: port 2(bridge_slave_1) entered blocking state
[  315.517139][ T6883] bridge0: port 2(bridge_slave_1) entered disabled state
[  315.525651][ T6883] bridge_slave_1: entered allmulticast mode
[  315.535785][ T6883] bridge_slave_1: entered promiscuous mode
[  315.934455][ T5816] Bluetooth: hci2: command tx timeout
[  316.181440][ T6883] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  316.227498][ T6883] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  316.487136][ T6883] team0: Port device team_slave_0 added
[  316.571644][ T6883] team0: Port device team_slave_1 added
[  317.171557][ T6975] loop3: detected capacity change from 0 to 512
[  317.188247][ T6883] batman_adv: batadv0: Adding interface: batadv_slave_0
[  317.195565][ T6883] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  317.208978][ T6976] loop4: detected capacity change from 0 to 512
[  317.222228][ T6883] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  317.259254][ T6975] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  317.295286][ T6976] EXT4-fs: Ignoring removed oldalloc option
[  317.328811][ T6976] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  317.343052][ T6975] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a843c018, mo2=0002]
[  317.368717][ T6883] batman_adv: batadv0: Adding interface: batadv_slave_1
[  317.376046][ T6883] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  317.403739][ T6883] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  317.415471][ T6975] System zones: 0-2, 18-18, 34-34
[  317.466853][ T6975] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  317.480232][ T6975] ext4 filesystem being mounted at /81/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  317.528889][ T6976] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2848: Unable to expand inode 11. Delete some EAs or run e2fsck.
[  317.544449][ T6976] EXT4-fs (loop4): 1 truncate cleaned up
[  317.565111][ T6980] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  317.710704][   T30] audit: type=1326 audit(1755881811.663:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6983 comm="syz.5.367" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee539 code=0x7ffc0000
[  317.711586][ T6976] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  317.820273][   T30] audit: type=1326 audit(1755881811.743:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6983 comm="syz.5.367" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee539 code=0x7ffc0000
[  317.843534][   T30] audit: type=1326 audit(1755881811.753:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6983 comm="syz.5.367" exe="/root/syz-executor" sig=0 arch=40000003 syscall=277 compat=1 ip=0xf70ee539 code=0x7ffc0000
[  317.866257][   T30] audit: type=1326 audit(1755881811.753:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6983 comm="syz.5.367" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee539 code=0x7ffc0000
[  317.888509][   T30] audit: type=1326 audit(1755881811.753:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6983 comm="syz.5.367" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee539 code=0x7ffc0000
[  317.911137][   T30] audit: type=1326 audit(1755881811.753:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6983 comm="syz.5.367" exe="/root/syz-executor" sig=0 arch=40000003 syscall=282 compat=1 ip=0xf70ee539 code=0x7ffc0000
[  317.933482][   T30] audit: type=1326 audit(1755881811.753:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6983 comm="syz.5.367" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee539 code=0x7ffc0000
[  318.047024][ T5816] Bluetooth: hci2: command tx timeout
[  318.120858][   T30] audit: type=1800 audit(1755881812.023:27): pid=6976 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.365" name="bus" dev="loop4" ino=18 res=0 errno=0
[  318.167731][ T6883] hsr_slave_0: entered promiscuous mode
[  318.178728][ T6883] hsr_slave_1: entered promiscuous mode
[  318.606781][ T5825] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  319.076074][ T5819] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  319.290134][ T6996] Invalid logical block size (536872960)
[  319.896617][ T6999] loop4: detected capacity change from 0 to 2048
[  320.245377][ T6999] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  320.420575][ T6883] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  320.562613][ T6883] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  320.692413][ T6883] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  320.798662][ T6883] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  320.983720][ T7016] netlink: 'syz.0.379': attribute type 3 has an invalid length.
[  320.991803][ T7016] netlink: 766 bytes leftover after parsing attributes in process `syz.0.379'.
[  322.492785][ T6883] 8021q: adding VLAN 0 to HW filter on device bond0
[  322.577165][ T7034] netlink: 'syz.5.386': attribute type 2 has an invalid length.
[  322.586331][ T7034] netlink: 85376 bytes leftover after parsing attributes in process `syz.5.386'.
[  322.741584][ T6883] 8021q: adding VLAN 0 to HW filter on device team0
[  322.843192][ T4045] bridge0: port 1(bridge_slave_0) entered blocking state
[  322.850919][ T4045] bridge0: port 1(bridge_slave_0) entered forwarding state
[  322.936913][ T4045] bridge0: port 2(bridge_slave_1) entered blocking state
[  322.944673][ T4045] bridge0: port 2(bridge_slave_1) entered forwarding state
[  323.478059][ T7035] loop0: detected capacity change from 0 to 4096
[  323.658368][ T7035] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  323.916892][ T7048] netlink: 12 bytes leftover after parsing attributes in process `syz.3.390'.
[  324.163429][ T5806] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  324.751277][ T7057] loop3: detected capacity change from 0 to 512
[  324.930173][ T7057] EXT4-fs error (device loop3): ext4_orphan_get:1392: inode #15: comm syz.3.393: casefold flag without casefold feature
[  325.067721][ T7057] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.393: couldn't read orphan inode 15 (err -117)
[  325.163173][ T7057] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  325.330563][   T30] audit: type=1800 audit(1755881819.253:28): pid=7057 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.393" name="file1" dev="loop3" ino=18 res=0 errno=0
[  325.594998][ T6883] 8021q: adding VLAN 0 to HW filter on device batadv0
[  325.707040][ T7068] loop0: detected capacity change from 0 to 128
[  325.775867][ T5825] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  325.954095][ T7068] FAT-fs (loop0): error, fat_get_cluster: invalid start cluster (i_pos 550, start 00050006)
[  325.964751][ T7068] FAT-fs (loop0): Filesystem has been set read-only
[  326.502944][ T7069] DRBG: could not allocate CTR cipher TFM handle: ctr(aes)
[  327.268925][ T7089] loop4: detected capacity change from 0 to 64
[  327.841913][ T7096] loop0: detected capacity change from 0 to 128
[  327.857719][ T7095] loop5: detected capacity change from 0 to 256
[  327.952926][ T7096] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  327.960692][ T7095] exfat: Deprecated parameter 'utf8'
[  327.971305][ T7095] exfat: Deprecated parameter 'namecase'
[  327.972478][ T7096] ext4 filesystem being mounted at /87/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  327.977736][ T7095] exfat: Deprecated parameter 'namecase'
[  327.994327][ T7095] exfat: Deprecated parameter 'utf8'
[  328.408771][ T7095] exFAT-fs (loop5): failed to load upcase table (idx : 0x00012153, chksum : 0x5270ca8d, utbl_chksum : 0xe619d30d)
[  328.703622][ T5806] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  329.134476][ T5808] Bluetooth: hci3: command 0x0406 tx timeout
[  329.141671][ T5808] Bluetooth: hci1: command 0x0406 tx timeout
[  329.147904][ T5808] Bluetooth: hci4: command 0x0406 tx timeout
[  329.708279][ T6883] veth0_vlan: entered promiscuous mode
[  329.858458][ T6883] veth1_vlan: entered promiscuous mode
[  330.395138][ T6883] veth0_macvtap: entered promiscuous mode
[  330.477523][ T6883] veth1_macvtap: entered promiscuous mode
[  330.733470][ T6883] batman_adv: batadv0: Interface activated: batadv_slave_0
[  330.886314][ T6883] batman_adv: batadv0: Interface activated: batadv_slave_1
[  331.058006][ T3631] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  331.133157][ T3631] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  331.233297][ T3631] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  331.282533][ T4010] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  333.976727][ T7171] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  335.473118][ T7180] sctp: failed to load transform for md5: -2
[  336.048617][ T7199] netlink: 'syz.3.433': attribute type 1 has an invalid length.
[  336.056744][ T7199] netlink: 'syz.3.433': attribute type 1 has an invalid length.
[  336.064860][ T7199] netlink: 'syz.3.433': attribute type 2 has an invalid length.
[  336.700805][   T41] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  336.871008][   T41] usb 6-1: Using ep0 maxpacket: 32
[  336.913291][   T41] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  336.913502][   T41] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  336.913656][   T41] usb 6-1: config 0 interface 0 has no altsetting 0
[  336.913853][   T41] usb 6-1: New USB device found, idVendor=056a, idProduct=0057, bcdDevice= 0.00
[  336.914001][   T41] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  336.933174][   T41] usb 6-1: config 0 descriptor??
[  337.673018][ T5864] usb 6-1: USB disconnect, device number 3
[  337.761768][ T7218] overlayfs: workdir and upperdir must be separate subtrees
[  337.950793][   T41] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  338.212965][   T41] usb 1-1: config 0 interface 0 has no altsetting 0
[  338.219878][   T41] usb 1-1: New USB device found, idVendor=172f, idProduct=0500, bcdDevice= 0.00
[  338.230638][   T41] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  338.309198][   T41] usb 1-1: config 0 descriptor??
[  338.608262][ T7226] loop3: detected capacity change from 0 to 16
[  338.721034][ T7226] erofs (device loop3): mounted with root inode @ nid 36.
[  338.864597][ T7226] erofs (device loop3): unknown HEAD2 format 8 for nid 36, please upgrade kernel
[  338.874706][ T7226] erofs (device loop3): unknown HEAD2 format 8 for nid 36, please upgrade kernel
[  338.884300][ T7226] erofs (device loop3): readahead error at folio 7 @ nid 36
[  338.892239][ T7226] erofs (device loop3): unknown HEAD2 format 8 for nid 36, please upgrade kernel
[  338.909684][ T7226] erofs (device loop3): readahead error at folio 6 @ nid 36
[  338.920303][ T7226] erofs (device loop3): unknown HEAD2 format 8 for nid 36, please upgrade kernel
[  338.930005][ T7226] erofs (device loop3): readahead error at folio 5 @ nid 36
[  338.937775][ T7226] erofs (device loop3): unknown HEAD2 format 8 for nid 36, please upgrade kernel
[  338.947317][ T7226] erofs (device loop3): readahead error at folio 4 @ nid 36
[  338.955353][ T7226] erofs (device loop3): unknown HEAD2 format 8 for nid 36, please upgrade kernel
[  338.964962][ T7226] erofs (device loop3): readahead error at folio 3 @ nid 36
[  338.972787][ T7226] erofs (device loop3): unknown HEAD2 format 8 for nid 36, please upgrade kernel
[  338.982412][ T7226] erofs (device loop3): readahead error at folio 2 @ nid 36
[  338.990112][ T7226] erofs (device loop3): unknown HEAD2 format 8 for nid 36, please upgrade kernel
[  339.007733][ T7226] erofs (device loop3): readahead error at folio 1 @ nid 36
[  339.017770][ T7226] erofs (device loop3): unknown HEAD2 format 8 for nid 36, please upgrade kernel
[  339.027424][ T7226] erofs (device loop3): readahead error at folio 0 @ nid 36
[  339.035338][ T7226] erofs (device loop3): unknown HEAD2 format 8 for nid 36, please upgrade kernel
[  339.045187][ T7226] erofs (device loop3): unknown HEAD2 format 8 for nid 36, please upgrade kernel
[  339.054796][ T7226] erofs (device loop3): read error -95 @ 0 of nid 36
[  339.061909][ T7226] erofs (device loop3): failed to readdir of logical block 0 of nid 36
[  339.189573][   T41] waltop 0003:172F:0500.0004: hidraw0: USB HID v1.05 Device [HID 172f:0500] on usb-dummy_hcd.0-1/input0
[  339.258370][   T41] usb 1-1: USB disconnect, device number 6
[  339.706625][ T7233] loop4: detected capacity change from 0 to 2048
[  339.883451][ T7233] NILFS (loop4): invalid segment: Inconsistency found
[  339.890980][ T7233] NILFS (loop4): trying rollback from an earlier position
[  339.982604][ T4368] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  339.991025][ T4368] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  340.213007][ T7237] loop3: detected capacity change from 0 to 256
[  340.269158][ T1827] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  340.269215][ T7233] NILFS (loop4): recovery complete
[  340.283676][ T1827] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  340.377903][ T7238] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  340.641675][ T7235] fido_id[7235]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/report_descriptor': No such file or directory
[  340.785334][ T7237] FAT-fs (loop3): Directory bread(block 64) failed
[  340.793386][ T7237] FAT-fs (loop3): Directory bread(block 65) failed
[  340.800657][ T7237] FAT-fs (loop3): Directory bread(block 66) failed
[  340.807483][ T7237] FAT-fs (loop3): Directory bread(block 67) failed
[  340.814605][ T7237] FAT-fs (loop3): Directory bread(block 68) failed
[  340.821706][ T7237] FAT-fs (loop3): Directory bread(block 69) failed
[  340.828711][ T7237] FAT-fs (loop3): Directory bread(block 70) failed
[  340.835726][ T7237] FAT-fs (loop3): Directory bread(block 71) failed
[  340.844886][ T7237] FAT-fs (loop3): Directory bread(block 72) failed
[  340.852526][ T7237] FAT-fs (loop3): Directory bread(block 73) failed
[  341.881204][ T5864] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  342.191315][ T5864] usb 1-1: Using ep0 maxpacket: 32
[  342.260761][ T5864] usb 1-1: config index 0 descriptor too short (expected 29220, got 36)
[  342.269524][ T5864] usb 1-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  342.280551][ T5864] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 81
[  342.290011][ T5864] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  342.301014][ T5864] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  342.311347][ T5864] usb 1-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  342.324978][ T5864] usb 1-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  342.334540][ T5864] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  342.776211][ T5864] usb 1-1: config 0 descriptor??
[  343.068625][ T5864] usblp 1-1:0.0: usblp0: USB Bidirectional printer dev 7 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  343.322672][   T41] usb 1-1: USB disconnect, device number 7
[  343.365879][   T41] usblp0: removed
[  344.051362][ T7277] loop4: detected capacity change from 0 to 1024
[  344.196972][ T7277] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  344.209925][ T7277] ext4 filesystem being mounted at /92/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  344.416114][ T7277] EXT4-fs (loop4): resizing filesystem from 512 to 0 blocks
[  344.427377][ T7277] EXT4-fs warning (device loop4): ext4_resize_fs:2042: can't shrink FS - resize aborted
[  345.003771][ T5864] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  345.061777][ T5819] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  345.265134][ T5864] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  345.277354][ T5864] usb 4-1: New USB device found, idVendor=0079, idProduct=1846, bcdDevice= 0.00
[  345.286921][ T5864] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  345.437667][ T5864] usb 4-1: config 0 descriptor??
[  346.098474][ T5864] hid_mf 0003:0079:1846.0005: hidraw0: USB HID v0.00 Device [HID 0079:1846] on usb-dummy_hcd.3-1/input0
[  346.110188][ T5864] hid_mf 0003:0079:1846.0005: Force feedback for HJZ Mayflash game controller adapters by Marcel Hasler <mahasler@gmail.com>
[  346.275622][ T5864] usb 4-1: USB disconnect, device number 3
[  346.624255][ T7314] loop4: detected capacity change from 0 to 24
[  346.703207][ T7314] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  347.215583][ T7320] loop0: detected capacity change from 0 to 256
[  347.264078][ T7320] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  347.687809][ T7316] fido_id[7316]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory
[  347.968320][ T7326] loop3: detected capacity change from 0 to 1024
[  348.091925][ T7321] loop6: detected capacity change from 0 to 4096
[  348.371555][ T7337] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  348.770220][ T7321] NILFS (loop6): DAT doesn't have a block to manage vblocknr = 648518346341351424
[  348.780601][ T7321] NILFS error (device loop6): nilfs_bmap_truncate: broken bmap (inode number=12)
[  348.830939][ T7321] Remounting filesystem read-only
[  348.836426][ T7321] NILFS (loop6): error -5 truncating bmap (ino=12)
[  349.524324][ T6883] NILFS (loop6): disposed unprocessed dirty file(s) when detaching log writer
[  349.556371][   T41] usb 4-1: new full-speed USB device number 4 using dummy_hcd
[  349.826063][   T41] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  349.839048][   T41] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1024, setting to 64
[  349.858803][   T41] usb 4-1: New USB device found, idVendor=0461, idProduct=4e72, bcdDevice= 0.00
[  349.871143][   T41] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  350.115286][   T41] usb 4-1: config 0 descriptor??
[  350.124511][ T7342] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  350.145992][ T7350] atomic_op ffff88804dd8c128 conn xmit_atomic 0000000000000000
[  350.514844][ T7353] loop5: detected capacity change from 0 to 64
[  350.845347][   T41] hid-rmi 0003:0461:4E72.0006: hidraw0: USB HID v0.00 Device [HID 0461:4e72] on usb-dummy_hcd.3-1/input0
[  350.923739][ T7355] Trying to free block not in datazone
[  350.991528][ T7346] loop0: detected capacity change from 0 to 4096
[  351.018440][ T5864] usb 4-1: USB disconnect, device number 4
[  351.866256][ T7357] fido_id[7357]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory
[  352.305159][ T7369] loop4: detected capacity change from 0 to 512
[  352.409154][ T7369] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  352.754387][ T7369] EXT4-fs (loop4): 1 truncate cleaned up
[  352.767701][ T7369] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  353.280798][ T7383] loop5: detected capacity change from 0 to 256
[  353.314339][ T7383] exfat: Deprecated parameter 'utf8'
[  353.320117][ T7383] exfat: Deprecated parameter 'namecase'
[  353.327234][ T7383] exfat: Deprecated parameter 'namecase'
[  353.341292][ T7383] exfat: Deprecated parameter 'utf8'
[  353.423060][ T7385] loop0: detected capacity change from 0 to 128
[  353.512258][ T7383] exFAT-fs (loop5): failed to load upcase table (idx : 0x00012153, chksum : 0x5270ca8d, utbl_chksum : 0xe619d30d)
[  353.521347][ T7385] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (30846!=65535)
[  353.531488][ T5819] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  353.623714][ T7385] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 ro without journal. Quota mode: none.
[  353.699272][ T7389] usb usb8: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  353.792410][ T7385] EXT4-fs error (device loop0): __ext4_find_entry:1626: inode #2: comm syz.0.494: checksumming directory block 0
[  353.882982][ T7390] EXT4-fs error (device loop0): __ext4_find_entry:1626: inode #2: comm syz.0.494: checksumming directory block 0
[  353.925691][ T7381] loop3: detected capacity change from 0 to 4096
[  354.008772][ T7392] netlink: 4 bytes leftover after parsing attributes in process `syz.4.498'.
[  354.212820][ T7393] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  354.378058][ T7381] NILFS error (device loop3): nilfs_find_entry: dir 2 size 34359742464 exceeds block count 1
[  354.409903][ T5806] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  354.431424][ T7381] Remounting filesystem read-only
[  354.878583][ T7401] netlink: 4 bytes leftover after parsing attributes in process `syz.4.502'.
[  356.034241][   T30] audit: type=1326 audit(1755881849.973:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7412 comm="syz.0.507" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de539 code=0x7ffc0000
[  356.058395][   T30] audit: type=1326 audit(1755881849.973:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7412 comm="syz.0.507" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de539 code=0x7ffc0000
[  356.169448][   T30] audit: type=1326 audit(1755881850.073:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7412 comm="syz.0.507" exe="/root/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf70de539 code=0x7ffc0000
[  356.169701][   T30] audit: type=1326 audit(1755881850.073:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7412 comm="syz.0.507" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de539 code=0x7ffc0000
[  356.169934][   T30] audit: type=1326 audit(1755881850.073:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7412 comm="syz.0.507" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de539 code=0x7ffc0000
[  356.170167][   T30] audit: type=1326 audit(1755881850.113:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7412 comm="syz.0.507" exe="/root/syz-executor" sig=0 arch=40000003 syscall=250 compat=1 ip=0xf70de539 code=0x7ffc0000
[  356.170816][   T30] audit: type=1326 audit(1755881850.113:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7412 comm="syz.0.507" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de539 code=0x7ffc0000
[  356.366772][ T7418] capability: warning: `syz.5.509' uses 32-bit capabilities (legacy support in use)
[  356.937946][ T7425] loop0: detected capacity change from 0 to 128
[  357.055063][ T7425] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  357.101787][ T7425] ext4 filesystem being mounted at /108/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  357.568717][ T7432] loop5: detected capacity change from 0 to 256
[  357.729879][ T5806] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  357.801641][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  357.808527][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  358.029501][ T7432] FAT-fs (loop5): Directory bread(block 64) failed
[  358.036935][ T7432] FAT-fs (loop5): Directory bread(block 65) failed
[  358.046900][ T7432] FAT-fs (loop5): Directory bread(block 66) failed
[  358.054490][ T7432] FAT-fs (loop5): Directory bread(block 67) failed
[  358.061664][ T7432] FAT-fs (loop5): Directory bread(block 68) failed
[  358.068405][ T7432] FAT-fs (loop5): Directory bread(block 69) failed
[  358.075723][ T7432] FAT-fs (loop5): Directory bread(block 70) failed
[  358.082592][ T7432] FAT-fs (loop5): Directory bread(block 71) failed
[  358.089532][ T7432] FAT-fs (loop5): Directory bread(block 72) failed
[  358.096508][ T7432] FAT-fs (loop5): Directory bread(block 73) failed
[  358.747839][ T7441] loop0: detected capacity change from 0 to 2048
[  358.799778][ T7445] vlan2: entered promiscuous mode
[  358.805301][ T7445] macvtap0: entered promiscuous mode
[  358.881786][ T7441] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024)
[  358.892714][ T7441] NILFS (loop0): mounting unchecked fs
[  358.933526][ T7446] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check.
[  359.101071][ T7441] NILFS (loop0): recovery complete
[  359.139114][ T7449] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  359.160089][ T7448] loop5: detected capacity change from 0 to 512
[  359.747453][ T7452] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  359.940684][ T5872] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  360.150945][ T5872] usb 4-1: Using ep0 maxpacket: 16
[  360.239082][ T5872] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  360.250931][ T5872] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  360.263667][ T5872] usb 4-1: New USB device found, idVendor=1fd2, idProduct=6007, bcdDevice= 0.00
[  360.273395][ T5872] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  360.393754][ T5872] usb 4-1: config 0 descriptor??
[  360.933035][ T5872] hid-multitouch 0003:1FD2:6007.0007: unknown main item tag 0x1
[  360.941426][ T5872] hid-multitouch 0003:1FD2:6007.0007: unbalanced collection at end of report description
[  361.006076][ T5872] hid-multitouch 0003:1FD2:6007.0007: probe with driver hid-multitouch failed with error -22
[  361.180083][ T5872] usb 4-1: USB disconnect, device number 5
[  361.521783][ T7469] netlink: 76 bytes leftover after parsing attributes in process `syz.0.531'.
[  361.621488][ T7472] loop4: detected capacity change from 0 to 512
[  361.771014][ T7472] EXT4-fs warning (device loop4): dx_probe:861: inode #2: comm syz.4.530: dx entry: limit 0 != root limit 125
[  361.783312][ T7472] EXT4-fs warning (device loop4): dx_probe:934: inode #2: comm syz.4.530: Corrupt directory, running e2fsck is recommended
[  361.904489][ T7472] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -117
[  361.982271][ T7472] EXT4-fs error (device loop4): ext4_iget_extra_inode:5104: inode #15: comm syz.4.530: corrupted in-inode xattr: invalid ea_ino
[  362.040905][ T7472] EXT4-fs (loop4): Remounting filesystem read-only
[  362.050269][ T7472] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  362.083641][ T7479] netem: incorrect ge model size
[  362.089033][ T7479] netem: change failed
[  362.292268][ T7472] EXT4-fs warning (device loop4): dx_probe:861: inode #2: comm syz.4.530: dx entry: limit 0 != root limit 125
[  362.306209][ T7472] EXT4-fs warning (device loop4): dx_probe:934: inode #2: comm syz.4.530: Corrupt directory, running e2fsck is recommended
[  362.835473][ T7487] loop0: detected capacity change from 0 to 64
[  362.872728][ T5819] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  363.362163][ T7497] netlink: 204 bytes leftover after parsing attributes in process `syz.3.541'.
[  363.375105][ T7497] netlink: 28 bytes leftover after parsing attributes in process `syz.3.541'.
[  363.385540][ T7497] netlink: 8 bytes leftover after parsing attributes in process `syz.3.541'.
[  363.394806][ T7497] netlink: 24 bytes leftover after parsing attributes in process `syz.3.541'.
[  363.866906][ T5872] IPVS: starting estimator thread 0...
[  363.962455][ T7506] IPVS: using max 192 ests per chain, 9600 per kthread
[  365.441572][   T30] audit: type=1326 audit(1755881859.353:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7524 comm="syz.0.552" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de539 code=0x7ffc0000
[  365.580214][   T30] audit: type=1326 audit(1755881859.433:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7524 comm="syz.0.552" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de539 code=0x7ffc0000
[  365.603334][   T30] audit: type=1326 audit(1755881859.453:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7524 comm="syz.0.552" exe="/root/syz-executor" sig=0 arch=40000003 syscall=288 compat=1 ip=0xf70de539 code=0x7ffc0000
[  365.632056][   T30] audit: type=1326 audit(1755881859.453:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7524 comm="syz.0.552" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de539 code=0x7ffc0000
[  365.657777][   T30] audit: type=1326 audit(1755881859.473:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7524 comm="syz.0.552" exe="/root/syz-executor" sig=0 arch=40000003 syscall=287 compat=1 ip=0xf70de539 code=0x7ffc0000
[  365.680583][   T30] audit: type=1326 audit(1755881859.483:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7524 comm="syz.0.552" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de539 code=0x7ffc0000
[  365.889321][ T7527] netlink: 28 bytes leftover after parsing attributes in process `syz.6.553'.
[  366.486368][ T7532] loop3: detected capacity change from 0 to 1764
[  367.037654][ T7542] netlink: 4 bytes leftover after parsing attributes in process `syz.0.559'.
[  368.327567][ T7549] loop3: detected capacity change from 0 to 4096
[  368.471913][ T7562] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  368.518027][ T7563] loop4: detected capacity change from 0 to 64
[  368.632445][ T7564] loop6: detected capacity change from 0 to 128
[  368.643181][   T30] audit: type=1800 audit(1755881862.593:42): pid=7549 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.560" name="file1" dev="loop3" ino=15 res=0 errno=0
[  368.779558][ T7564] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  368.861432][ T7564] ext4 filesystem being mounted at /28/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  369.379200][ T7571] loop5: detected capacity change from 0 to 164
[  369.516774][ T7571] ISOFS: unable to read i-node block
[  369.525160][ T7571] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  369.806995][ T6883] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  370.612311][ T7587] overlayfs: overlapping lowerdir path
[  371.523459][ T7598] ntfs3: Bad value for 'gid'
[  371.528347][ T7598] ntfs3: Bad value for 'gid'
[  372.137104][ T7601] loop4: detected capacity change from 0 to 1024
[  372.759838][ T7613] sp0: Synchronizing with TNC
[  373.025258][ T7616] [U] è
[  374.162753][ T7635] loop5: detected capacity change from 0 to 512
[  374.232589][ T7635] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  374.456391][ T7635] EXT4-fs error (device loop5): ext4_get_branch:178: inode #11: block 4294967295: comm syz.5.592: invalid block
[  374.581795][ T7635] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.592: invalid indirect mapped block 4294967295 (level 1)
[  374.670960][ T7635] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.592: invalid indirect mapped block 4294967295 (level 1)
[  374.831419][ T7635] EXT4-fs (loop5): 2 truncates cleaned up
[  374.843059][ T7635] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  375.415028][ T6341] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  376.246832][ T7664] loop3: detected capacity change from 0 to 64
[  376.718099][ T7672] loop5: detected capacity change from 0 to 512
[  376.826811][ T7672] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  376.948307][ T7672] EXT4-fs (loop5): 1 truncate cleaned up
[  376.956709][ T7672] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  377.773033][ T6341] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  378.848841][ T7699] loop5: detected capacity change from 0 to 128
[  379.941015][ T7717] loop3: detected capacity change from 0 to 256
[  380.680864][ T7726] loop0: detected capacity change from 0 to 1024
[  380.711353][ T7721] loop4: detected capacity change from 0 to 4096
[  380.724365][ T7726] EXT4-fs: Ignoring removed orlov option
[  380.813204][ T7730] syz.5.628 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  380.932509][ T7721] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  380.947541][ T7726] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  381.050765][ T7736] loop3: detected capacity change from 0 to 1024
[  381.321299][ T7736] hfsplus: bad catalog entry type
[  381.498988][ T5806] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  381.581962][ T5819] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  381.626873][ T7742] loop5: detected capacity change from 0 to 512
[  381.778709][ T4368] hfsplus: b-tree write err: -5, ino 4
[  381.866353][ T7742] Quota error (device loop5): find_tree_dqentry: Cycle in quota tree detected: block 3 index 0
[  381.877689][ T7742] Quota error (device loop5): qtree_read_dquot: Can't read quota structure for id 0
[  381.887705][ T7742] EXT4-fs error (device loop5): ext4_acquire_dquot:6937: comm syz.5.631: Failed to acquire dquot type 1
[  382.048715][ T7742] EXT4-fs (loop5): 1 truncate cleaned up
[  382.057271][ T7742] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  382.071025][ T7742] ext4 filesystem being mounted at /86/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  382.421272][ T7749] loop0: detected capacity change from 0 to 2048
[  382.456655][ T7742] EXT4-fs: Cannot change journaled quota options when quota turned on
[  382.504992][ T7754] loop6: detected capacity change from 0 to 512
[  382.568422][ T7757] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  382.738539][ T7754] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a842c01c, mo2=0002]
[  382.760960][ T7754] System zones: 0-2, 18-18, 34-35
[  382.857398][ T7754] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  382.871224][ T7754] ext4 filesystem being mounted at /44/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  383.282736][ T6341] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  383.742347][ T6883] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  384.428578][ T7773] program syz.6.641 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  384.520146][ T7771] loop4: detected capacity change from 0 to 512
[  384.935350][ T7771] EXT4-fs (loop4): orphan cleanup on readonly fs
[  385.003189][ T7771] Quota error (device loop4): find_tree_dqentry: Cycle in quota tree detected: block 2 index 0
[  385.014237][ T7771] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0
[  385.025312][ T7771] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.643: Failed to acquire dquot type 1
[  385.184228][ T7771] EXT4-fs (loop4): 1 truncate cleaned up
[  385.192838][ T7771] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  385.352745][ T7779] netlink: 32 bytes leftover after parsing attributes in process `syz.0.645'.
[  385.428074][ T7779] Zero length message leads to an empty skb
[  385.458302][ T5817] Bluetooth: hci0: command 0x0406 tx timeout
[  385.841744][ T5819] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  387.514977][ T7800] loop0: detected capacity change from 0 to 2048
[  387.779599][ T7800] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  388.190934][ T7814] syz.4.658 uses obsolete (PF_INET,SOCK_PACKET)
[  388.404034][ T5806] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  389.035702][ T7824] loop4: detected capacity change from 0 to 128
[  389.163716][ T7824] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  389.203626][ T7824] ext4 filesystem being mounted at /127/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  389.692145][ T5819] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  390.629358][ T7838] IPVS: stopping backup sync thread 7839 ...
[  390.634084][ T7839] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth1_to_bridge, syncid = 512, id = 0
[  390.747930][ T7840] loop5: detected capacity change from 0 to 256
[  390.795519][ T7840] exfat: Deprecated parameter 'namecase'
[  390.803025][ T7840] exfat: Deprecated parameter 'utf8'
[  391.031051][ T7840] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  391.151607][ T5872] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  391.347627][ T5872] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  391.359409][ T5872] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  391.372121][ T5872] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  391.385639][ T5872] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  391.395238][ T5872] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  391.507618][ T5872] usb 4-1: config 0 descriptor??
[  392.054973][ T5872] plantronics 0003:047F:FFFF.0008: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  392.238968][   T24] usb 4-1: USB disconnect, device number 6
[  392.300560][ T7857] loop6: detected capacity change from 0 to 1024
[  392.310702][ T7857] EXT4-fs: Ignoring removed orlov option
[  392.382358][ T7857] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  392.416502][ T7855] loop0: detected capacity change from 0 to 4096
[  392.428683][ T7855] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512).
[  392.632230][ T6883] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  392.705420][ T7855] ntfs3(loop0): Failed to initialize $Extend/$Reparse.
[  392.988582][ T7867] xt_time: invalid argument - start or stop time greater than 23:59:59
[  393.536337][ T5872] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  393.751968][ T5872] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  393.764780][ T5872] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  393.776067][ T5872] usb 4-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  393.787332][ T5872] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  393.866511][ T5872] usb 4-1: config 0 descriptor??
[  394.205670][ T7876] loop5: detected capacity change from 0 to 4096
[  395.416919][ T5872] usb 4-1: string descriptor 0 read error: -71
[  395.471005][ T5872] uclogic 0003:256C:006D.0009: failed retrieving string descriptor #200: -71
[  395.480214][ T5872] uclogic 0003:256C:006D.0009: failed retrieving pen parameters: -71
[  395.489229][ T5872] uclogic 0003:256C:006D.0009: failed probing pen v2 parameters: -71
[  395.499997][ T5872] uclogic 0003:256C:006D.0009: failed probing parameters: -71
[  395.508233][ T5872] uclogic 0003:256C:006D.0009: probe with driver uclogic failed with error -71
[  395.720127][ T5872] usb 4-1: USB disconnect, device number 7
[  396.495942][ T7904] loop3: detected capacity change from 0 to 256
[  396.531998][ T7904] exfat: Deprecated parameter 'namecase'
[  396.540059][ T7904] exfat: Deprecated parameter 'utf8'
[  396.628720][ T7904] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x2b52634e, utbl_chksum : 0xe619d30d)
[  397.307858][ T7919] ALSA: seq fatal error: cannot create timer (-22)
[  398.290175][ T7933] loop0: detected capacity change from 0 to 1024
[  398.377891][ T7933] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  398.399113][ T7933] ext4 filesystem being mounted at /146/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  398.512555][ T7942] IPVS: stopping backup sync thread 7943 ...
[  398.706183][ T7937] loop5: detected capacity change from 0 to 4096
[  398.757830][ T7937] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512).
[  398.802121][ T5806] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  399.131195][ T7937] ntfs3(loop5): ino=1a, mi_enum_attr
[  399.136910][ T7937] ntfs3(loop5): Mark volume as dirty due to NTFS errors
[  399.185486][ T7937] ntfs3(loop5): ino=1a, mi_enum_attr
[  399.191532][ T7937] ntfs3(loop5): Failed to initialize $Extend/$Reparse.
[  399.298521][ T7937] ntfs3(loop5): ino=1b, mi_enum_attr
[  399.305565][ T7937] ntfs3(loop5): ino=1b, mi_enum_attr
[  399.338927][ T7953] ntfs3(loop5): ino=1d, mi_enum_attr
[  399.344759][ T7953] ntfs3(loop5): ino=1d, mi_enum_attr
[  399.651509][ T7958] loop6: detected capacity change from 0 to 1024
[  400.147598][ T7964] gretap0: entered promiscuous mode
[  400.153716][ T7964] vlan2: entered promiscuous mode
[  400.488273][   T30] audit: type=1326 audit(1755881894.443:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7970 comm="syz.6.727" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f71539 code=0x7ffc0000
[  400.511121][   T30] audit: type=1326 audit(1755881894.443:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7970 comm="syz.6.727" exe="/root/syz-executor" sig=0 arch=40000003 syscall=288 compat=1 ip=0xf7f71539 code=0x7ffc0000
[  400.534008][   T30] audit: type=1326 audit(1755881894.443:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7970 comm="syz.6.727" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f71539 code=0x7ffc0000
[  400.562790][   T30] audit: type=1326 audit(1755881894.443:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7970 comm="syz.6.727" exe="/root/syz-executor" sig=0 arch=40000003 syscall=287 compat=1 ip=0xf7f71539 code=0x7ffc0000
[  400.587549][   T30] audit: type=1326 audit(1755881894.443:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7970 comm="syz.6.727" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f71539 code=0x7ffc0000
[  400.726166][   T24] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  400.880788][   T24] usb 1-1: Using ep0 maxpacket: 16
[  400.920102][   T24] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  400.930682][   T24] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  400.942315][   T24] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  400.959196][   T24] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[  400.971761][   T24] usb 1-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  401.127239][   T24] usb 1-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  401.136963][   T24] usb 1-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  401.145819][   T24] usb 1-1: Manufacturer: syz
[  401.217803][   T24] usb 1-1: config 0 descriptor??
[  401.882474][   T24] rc_core: IR keymap rc-hauppauge not found
[  401.888611][   T24] Registered IR keymap rc-empty
[  401.894555][   T24] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  401.921315][   T24] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  401.942459][   T24] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/rc/rc0
[  401.957563][   T24] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/rc/rc0/input7
[  402.030676][   T24] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  402.143003][ T7992] sp0: Synchronizing with TNC
[  402.173758][   T24] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  402.211621][   T24] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  402.231482][   T24] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  402.266674][   T24] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  402.300283][   T24] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  402.321541][   T24] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  402.361538][   T24] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  402.399315][   T24] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  402.428596][   T24] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[  402.459782][   T24] mceusb 1-1:0.0: Registered 424242424242 with mce emulator interface version 1
[  402.469430][   T24] mceusb 1-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[  402.562484][   T24] usb 1-1: USB disconnect, device number 8
[  403.412697][ T8005] loop4: detected capacity change from 0 to 4096
[  403.457532][ T8005] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512).
[  404.164964][   T24] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  404.212210][   T24] hid-generic 0000:0000:0000.000A: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  404.522747][ T8031] loop3: detected capacity change from 0 to 164
[  404.878514][ T8038] devpts: Bad value for 'max'
[  405.691455][ T8052] netlink: 24 bytes leftover after parsing attributes in process `syz.4.762'.
[  405.770146][ T8055] loop3: detected capacity change from 0 to 512
[  405.855802][ T8055] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  405.927424][ T8055] EXT4-fs (loop3): orphan cleanup on readonly fs
[  406.023322][ T8055] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:517: comm syz.3.764: Block bitmap for bg 0 marked uninitialized
[  406.088067][ T8055] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  406.151442][ T8055] EXT4-fs (loop3): 1 orphan inode deleted
[  406.159557][ T8055] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  406.448887][ T8055] EXT4-fs: Ignoring sb option on remount
[  406.455479][ T8055] EXT4-fs: Ignoring removed orlov option
[  406.461855][ T8055] EXT4-fs: Ignoring removed nomblk_io_submit option
[  406.468789][ T8055] EXT4-fs: Remounting fs w/o journal so ignoring data_err option
[  406.521441][ T8066] loop0: detected capacity change from 0 to 2048
[  406.554085][ T8055] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[  406.621605][ T8055] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  406.647632][ T8071] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  407.036871][ T5825] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  407.974728][ T8089] loop4: detected capacity change from 0 to 2048
[  407.993538][ T5460] =====================================================
[  408.001135][ T5460] BUG: KMSAN: kernel-infoleak in _copy_to_iter+0xef3/0x33f0
[  408.008841][ T5460]  _copy_to_iter+0xef3/0x33f0
[  408.015959][ T5460]  __skb_datagram_iter+0x196/0x12c0
[  408.022238][ T5460]  skb_copy_datagram_iter+0x5b/0x1e0
[  408.028273][ T5460]  netlink_recvmsg+0x4bb/0xfe0
[  408.033456][ T5460]  sock_recvmsg+0x2df/0x390
[  408.038347][ T5460]  ____sys_recvmsg+0x193/0x610
[  408.043543][ T5460]  ___sys_recvmsg+0x20b/0x850
[  408.048498][ T5460]  __x64_sys_recvmsg+0x20e/0x3d0
[  408.053754][ T5460]  x64_sys_call+0x35f0/0x3e20
[  408.058677][ T5460]  do_syscall_64+0xd9/0x210
[  408.064603][ T5460]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  408.069343][ T8089] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024)
[  408.072412][ T5460] 
[  408.081069][ T8089] NILFS (loop4): mounting unchecked fs
[  408.083241][ T5460] Uninit was stored to memory at:
[  408.083473][ T5460]  pskb_expand_head+0x310/0x1610
[  408.099205][ T5460]  netlink_trim+0x496/0x500
[  408.104043][ T5460]  netlink_broadcast_filtered+0x80/0x2430
[  408.109965][ T5460]  nlmsg_notify+0x15b/0x2f0
[  408.114757][ T5460]  rtnl_notify+0xba/0x100
[  408.121530][ T5460]  wireless_nlevent_process+0xfe/0x290
[  408.127175][ T5460]  process_scheduled_works+0xb8e/0x1d80
[  408.133852][ T5460]  worker_thread+0xedf/0x1590
[  408.138858][ T5460]  kthread+0xd59/0xf00
[  408.143282][ T5460]  ret_from_fork+0x1e3/0x310
[  408.148147][ T5460]  ret_from_fork_asm+0x1a/0x30
[  408.153376][ T5460] 
[  408.155896][ T5460] Uninit was stored to memory at:
[  408.161325][ T5460]  wireless_send_event+0x67f/0x1530
[  408.166759][ T5460]  ioctl_standard_iw_point+0x12b0/0x13f0
[  408.172722][ T5460]  compat_standard_call+0x188/0x4c0
[  408.178165][ T5460]  wext_ioctl_dispatch+0x18f/0x7a0
[  408.183624][ T5460]  compat_wext_handle_ioctl+0x1a1/0x300
[  408.189417][ T5460]  compat_sock_ioctl+0x20c/0xff0
[  408.194730][ T5460]  __ia32_compat_sys_ioctl+0x7f6/0x1270
[  408.200689][ T5460]  ia32_sys_call+0x2d5f/0x4310
[  408.205636][ T5460]  __do_fast_syscall_32+0xb0/0x150
[  408.211850][ T5460]  do_fast_syscall_32+0x38/0x80
[  408.216935][ T5460]  do_SYSENTER_32+0x1f/0x30
[  408.223743][ T5460]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  408.230294][ T5460] 
[  408.233436][ T5460] Local variable iwp created at:
[  408.238565][ T5460]  compat_standard_call+0x4a/0x4c0
[  408.244417][ T5460]  wext_ioctl_dispatch+0x18f/0x7a0
[  408.249873][ T5460] 
[  408.252432][ T5460] Bytes 60-63 of 64 are uninitialized
[  408.257919][ T5460] Memory access of size 64 starts at ffff88811611cb00
[  408.264923][ T5460] Data copied to user address 00007ffd388d1990
[  408.271421][ T5460] 
[  408.273905][ T5460] CPU: 0 UID: 101 PID: 5460 Comm: dhcpcd Not tainted syzkaller #0 PREEMPT(none) 
[  408.283362][ T5460] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  408.293667][ T5460] =====================================================
[  408.301085][ T5460] Disabling lock debugging due to kernel taint
[  408.307378][ T5460] Kernel panic - not syncing: kmsan.panic set ...
[  408.313958][ T5460] CPU: 0 UID: 101 PID: 5460 Comm: dhcpcd Tainted: G    B               syzkaller #0 PREEMPT(none) 
[  408.324859][ T5460] Tainted: [B]=BAD_PAGE
[  408.329128][ T5460] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  408.339610][ T5460] Call Trace:
[  408.343027][ T5460]  <TASK>
[  408.346074][ T5460]  __dump_stack+0x26/0x30
[  408.350622][ T5460]  dump_stack_lvl+0x53/0x270
[  408.355426][ T5460]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  408.361488][ T5460]  dump_stack+0x1e/0x25
[  408.365841][ T5460]  vpanic+0x361/0xc50
[  408.370048][ T5460]  panic+0x15d/0x160
[  408.374198][ T5460]  kmsan_report+0x31c/0x320
[  408.378990][ T5460]  ? kmsan_internal_check_memory+0x1e1/0x230
[  408.385341][ T5460]  ? kmsan_copy_to_user+0xf1/0x190
[  408.390681][ T5460]  ? _copy_to_iter+0xef3/0x33f0
[  408.395759][ T5460]  ? __skb_datagram_iter+0x196/0x12c0
[  408.401340][ T5460]  ? skb_copy_datagram_iter+0x5b/0x1e0
[  408.407018][ T5460]  ? netlink_recvmsg+0x4bb/0xfe0
[  408.412164][ T5460]  ? sock_recvmsg+0x2df/0x390
[  408.417077][ T5460]  ? ____sys_recvmsg+0x193/0x610
[  408.422231][ T5460]  ? ___sys_recvmsg+0x20b/0x850
[  408.427298][ T5460]  ? __x64_sys_recvmsg+0x20e/0x3d0
[  408.432627][ T5460]  ? x64_sys_call+0x35f0/0x3e20
[  408.437704][ T5460]  ? do_syscall_64+0xd9/0x210
[  408.442681][ T5460]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  408.448960][ T5460]  ? kmsan_internal_unpoison_memory+0x14/0x20
[  408.455318][ T5460]  ? kmsan_get_metadata+0xfb/0x160
[  408.460654][ T5460]  ? kmsan_get_metadata+0xfb/0x160
[  408.466059][ T5460]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  408.472098][ T5460]  ? kmsan_get_metadata+0xfb/0x160
[  408.477419][ T5460]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  408.483453][ T5460]  ? _raw_spin_trylock_bh+0xb1/0xc0
[  408.488863][ T5460]  ? kmsan_get_metadata+0xfb/0x160
[  408.494188][ T5460]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  408.500324][ T5460]  kmsan_internal_check_memory+0x1e1/0x230
[  408.506374][ T5460]  kmsan_copy_to_user+0xf1/0x190
[  408.511530][ T5460]  _copy_to_iter+0xef3/0x33f0
[  408.516631][ T5460]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  408.523160][ T5460]  ? kmsan_get_metadata+0xfb/0x160
[  408.528577][ T5460]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  408.534611][ T5460]  ? kmsan_get_metadata+0xfb/0x160
[  408.539933][ T5460]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  408.546490][ T5460]  __skb_datagram_iter+0x196/0x12c0
[  408.551913][ T5460]  ? __pfx_simple_copy_to_iter+0x10/0x10
[  408.557807][ T5460]  skb_copy_datagram_iter+0x5b/0x1e0
[  408.563313][ T5460]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  408.569445][ T5460]  netlink_recvmsg+0x4bb/0xfe0
[  408.574427][ T5460]  ? aa_sock_msg_perm+0x29c/0x2f0
[  408.579689][ T5460]  ? __pfx_netlink_recvmsg+0x10/0x10
[  408.585189][ T5460]  sock_recvmsg+0x2df/0x390
[  408.590006][ T5460]  ____sys_recvmsg+0x193/0x610
[  408.594991][ T5460]  ? setup_fault_attr+0x260/0x300
[  408.600273][ T5460]  ? stack_depot_save_flags+0x35/0x7b0
[  408.606105][ T5460]  ___sys_recvmsg+0x20b/0x850
[  408.611048][ T5460]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  408.617092][ T5460]  ? kmsan_get_metadata+0xfb/0x160
[  408.622416][ T5460]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  408.628541][ T5460]  __x64_sys_recvmsg+0x20e/0x3d0
[  408.633771][ T5460]  ? kmsan_get_metadata+0xfb/0x160
[  408.639121][ T5460]  x64_sys_call+0x35f0/0x3e20
[  408.644100][ T5460]  do_syscall_64+0xd9/0x210
[  408.648841][ T5460]  ? clear_bhb_loop+0x40/0x90
[  408.653734][ T5460]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  408.659925][ T5460] RIP: 0033:0x7f4745318407
[  408.664509][ T5460] Code: 48 89 fa 4c 89 df e8 38 aa 00 00 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 1a 5b c3 0f 1f 84 00 00 00 00 00 48 8b 44 24 10 0f 05 <5b> c3 0f 1f 80 00 00 00 00 83 e2 39 83 fa 08 75 de e8 23 ff ff ff
[  408.684333][ T5460] RSP: 002b:00007ffd388d1880 EFLAGS: 00000202 ORIG_RAX: 000000000000002f
[  408.693049][ T5460] RAX: ffffffffffffffda RBX: 00007f474528e740 RCX: 00007f4745318407
[  408.701282][ T5460] RDX: 0000000000000040 RSI: 00007ffd388d1900 RDI: 0000000000000009
[  408.709414][ T5460] RBP: 00005648a422aaa0 R08: 0000000000000000 R09: 0000000000000000
[  408.717569][ T5460] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000009
[  408.725694][ T5460] R13: 00007ffd388d5a60 R14: 0000000000000000 R15: 00007ffd388d5a50
[  408.733860][ T5460]  </TASK>
[  408.737401][ T5460] Kernel Offset: disabled
[  408.741847][ T5460] Rebooting in 86400 seconds..