last executing test programs:

8m22.59919437s ago: executing program 32 (id=1008):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a01000000000000000000010000000900010073"], 0x10c}}, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="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"], 0x2d4}}, 0x4048010)

6m25.287335134s ago: executing program 6 (id=2024):
r0 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0))
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x3, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000d80)=ANY=[@ANYBLOB="1800000003000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x20000000}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={r1, 0x0, 0x94, 0x0, 0x0, 0x0, 0x11, 0x0, 0x63, 0x0, &(0x7f00000000c0)='\x00', 0x0}, 0x48)

6m25.056676122s ago: executing program 6 (id=2026):
r0 = syz_open_dev$swradio(&(0x7f0000000140), 0x0, 0x2)
r1 = dup(r0)
read(r1, &(0x7f0000000040), 0x0)
ioctl$VIDIOC_S_CTRL(r1, 0xc008561c, &(0x7f0000000000)={0xf0f046})
read$FUSE(r1, &(0x7f0000008180)={0x2020}, 0xfffffdfc)

6m24.677997587s ago: executing program 6 (id=2029):
syz_mount_image$squashfs(&(0x7f0000000180), &(0x7f0000000280)='./file1\x00', 0x0, &(0x7f0000000500)=ANY=[], 0x9, 0x201, &(0x7f0000000f40)="$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")
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='\x00', 0x89901)
r1 = fspick(r0, &(0x7f00000000c0)='.\x00', 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r1, 0x7, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r1, 0x7, 0x0, 0x0, 0x0)

6m24.178776321s ago: executing program 6 (id=2034):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x0, &(0x7f0000000340)={[{@noload}, {@stripe={'stripe', 0x3d, 0x30c}}, {@jqfmt_vfsv1}, {@noinit_itable}, {@jqfmt_vfsv1}, {@usrjquota}]}, 0xff, 0x46a, &(0x7f0000000980)="$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")
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x0, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./bus\x00', &(0x7f0000000440), 0x8, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
renameat2(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0xffffffffffffff9c, &(0x7f00000004c0)='./file0\x00', 0x0)

6m22.937111746s ago: executing program 6 (id=2044):
r0 = syz_clone(0x100411, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x5, 0x5, 0x2, 0x7, 0x0, 0x1, 0x10000}, 0x50)
tkill(r0, 0x13)
tkill(r0, 0x12)
waitid(0x1, r0, 0x0, 0xe, 0x0)

6m13.159459146s ago: executing program 33 (id=2007):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
syz_mount_image$btrfs(&(0x7f0000005100), &(0x7f0000000040)='./file1\x00', 0x800810, &(0x7f0000000140)={[{@nossd_spread}, {@nodatasum}, {@compress_force}, {@compress_algo={'compress', 0x3d, 'lzo'}}, {@flushoncommit}, {@autodefrag}, {@max_inline={'max_inline', 0x3d, [0x30, 0x37, 0x65]}}, {@nodiscard}]}, 0xfb, 0x510a, &(0x7f000000d000)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x441, 0x193)
ioctl$BTRFS_IOC_ENCODED_WRITE(r0, 0x40809440, &(0x7f0000000240)={&(0x7f0000000600)=[{&(0x7f0000000340)='/@', 0x2}], 0x1, 0x300000000000000, 0x0, 0x4, 0xe1f1, 0x3, 0x7})

6m12.006300533s ago: executing program 6 (id=2141):
r0 = socket$inet6(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000001680)={&(0x7f0000000000)=@newtaction={0x6c, 0x30, 0x53b, 0x0, 0x0, {}, [{0x58, 0x1, [@m_simple={0x54, 0x1, 0x0, 0x0, {{0xb}, {0x28, 0x2, 0x0, 0x1, [@TCA_DEF_DATA={0xb, 0x3, 'simple\x00'}, @TCA_DEF_PARMS={0x18, 0x2, {0x9f}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4060040}, 0x0)
openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
sendto$inet6(r0, &(0x7f0000000000)='s', 0x10a73, 0x800, 0x0, 0x4b6ae4f95a5de35b)

6m11.336873708s ago: executing program 34 (id=2141):
r0 = socket$inet6(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000001680)={&(0x7f0000000000)=@newtaction={0x6c, 0x30, 0x53b, 0x0, 0x0, {}, [{0x58, 0x1, [@m_simple={0x54, 0x1, 0x0, 0x0, {{0xb}, {0x28, 0x2, 0x0, 0x1, [@TCA_DEF_DATA={0xb, 0x3, 'simple\x00'}, @TCA_DEF_PARMS={0x18, 0x2, {0x9f}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4060040}, 0x0)
openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
sendto$inet6(r0, &(0x7f0000000000)='s', 0x10a73, 0x800, 0x0, 0x4b6ae4f95a5de35b)

4m59.240308869s ago: executing program 3 (id=2792):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_ADD(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB='(\x00', @ANYBLOB="01002abd7000fddbdf2515000000140001800d0001007564703a8a"], 0x28}, 0x1, 0x0, 0x0, 0x20000000}, 0x4040)
ptrace(0x10, r0)
ptrace$setregs(0xd, r0, 0x0, &(0x7f00000003c0)="18607651149d7b10b4024fbbdc08899b8f589df2dbb5d7a8d1b36cfab675cb3976ee8100e2878c9cfa178cac130eb046eda93df39ed4b41924dc225ad4028dd63defb87d698be5c749450b350a789dcfc6b2d6a696b5026d1e52f19274566d1da0f353dd65e330ebf71c5e823f2753c5fd76724828ef31b353e71805205c3dceb44cc4c7b3664e29fb")
ptrace$getregset(0x4205, r0, 0x1, &(0x7f0000000080)={&(0x7f0000000000)=""/120, 0x78})

4m58.789766279s ago: executing program 3 (id=2798):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
write$uinput_user_dev(r0, &(0x7f0000000800)={'syz0\x00', {0x2, 0x10, 0x2, 0x4}, 0xf, [0x0, 0x0, 0x0, 0x40000, 0x1, 0x2, 0x4, 0x0, 0x4, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x4000, 0x20, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x2, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0xfffffffe, 0x4, 0x0, 0x0, 0x0, 0x0, 0xb89, 0x0, 0x296, 0x1, 0x0, 0x0, 0x0, 0x2000, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x6, 0x5f1, 0x6], [0x0, 0x0, 0x8, 0x0, 0x0, 0x5, 0x0, 0x80, 0x8000, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x200, 0x7, 0xfffffffc, 0x0, 0x0, 0x7, 0x0, 0xfffffffc, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x3, 0x0, 0x200, 0x0, 0x2, 0x9, 0x3, 0x5, 0xfffffffd, 0x4000000, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x80000, 0x0, 0xfffffffd, 0xfffffffd, 0x8, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0xffff], [0x4, 0xfc, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0xb, 0x1, 0x4000000, 0x0, 0x1, 0x4, 0x1000, 0x80, 0x0, 0x200, 0x0, 0xffffffff, 0x0, 0xfffffffc, 0x0, 0xfffffffd, 0xffffffff, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x20, 0x4, 0x0, 0x0, 0xbffffffe, 0x0, 0x0, 0x4, 0x0, 0x6, 0x1, 0x0, 0xbda6, 0xe, 0x7ff, 0x0, 0xfffffffd, 0xffffffff, 0x0, 0x20, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x4, 0xfff, 0x6, 0x0, 0x0, 0x0, 0x0, 0x8], [0x40000000, 0x0, 0x74e2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x40, 0x0, 0x0, 0xbd, 0x0, 0xff, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x8, 0x9, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101, 0x80000020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5cb9, 0xcaa, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x4]}, 0x45c)
ioctl$UI_DEV_CREATE(r0, 0x5501)
write$uinput_user_dev(r0, &(0x7f0000000c80)={'syz0\x00', {0x1ff, 0x1ff, 0xffff, 0x6}, 0x51, [0x3, 0x6, 0xffffffff, 0x0, 0x8235, 0x9, 0x4, 0x7522f07c, 0x3, 0x8001, 0x8, 0xffffffff, 0x6650000, 0x216, 0x8, 0x66, 0x5, 0x10001, 0xa, 0xfffffff8, 0x260000, 0x5, 0x6, 0x2, 0x290, 0x6, 0x3ff, 0x80000000, 0x3, 0x10001, 0x4, 0xb334, 0x74, 0x3, 0xfffffc00, 0x2c, 0x90, 0xd2, 0x8, 0xfffffff8, 0x8, 0xd41, 0xff, 0x6, 0x3, 0x7730, 0x4, 0x0, 0x7fff, 0x20003, 0x1, 0x1ff, 0x4, 0x10, 0x7fff, 0x0, 0x7fff, 0x0, 0xa, 0xa4b, 0x8, 0x8e2d, 0x4, 0x9], [0x0, 0x0, 0x1, 0x1000, 0xfffffff7, 0x7d24, 0x8, 0xfc0, 0x6, 0x3, 0x4, 0xffffffff, 0x12, 0x400000, 0x4, 0x6, 0x7, 0x2, 0x401, 0x4, 0x4, 0x8, 0x5, 0xfffffffb, 0xd, 0x3, 0x101, 0x10001, 0x1ff, 0x6, 0x80000000, 0x8, 0x9, 0x3, 0x4, 0x3, 0x2, 0x4, 0x4, 0x0, 0xf, 0x2000000, 0xffff, 0x7c08, 0x6, 0x0, 0xfffffffa, 0x1f, 0x2, 0x3, 0x5, 0x6f3ea3cf, 0x5, 0x1, 0xe91, 0x5, 0x3, 0x6, 0x1000, 0xe, 0x0, 0x10000, 0x8, 0x5], [0x6, 0x5, 0x7, 0x9, 0x400000f, 0x8000, 0x7, 0xdfc, 0x8, 0xfffffffe, 0x2, 0x7, 0x6, 0x2, 0x7a, 0x5, 0xdc98, 0x5, 0x8001, 0x6, 0x2, 0x6, 0x0, 0x28, 0xfff, 0x3, 0x1, 0x1000, 0x3d, 0x7, 0x1, 0x1000, 0x2, 0x4, 0x500, 0x7, 0x4, 0x2, 0x7ff, 0xa, 0x7, 0x3ff, 0x8, 0x4, 0x5, 0x3, 0x2, 0xd6, 0x8, 0x6, 0x10001, 0x4, 0xbc9, 0x1000, 0x2, 0x40, 0x0, 0x7fffffff, 0x9, 0x3ff, 0x0, 0x2, 0x8, 0x5], [0x3, 0xf, 0x2, 0xfff, 0x2, 0x3ff, 0x2, 0x2, 0x1000, 0x9, 0x3, 0x3, 0x0, 0x1, 0x5, 0x0, 0x2, 0x240, 0x5, 0x8, 0x6, 0xa, 0xfffffffd, 0xa9, 0xda, 0x9, 0xfffffa84, 0x1fe, 0x1, 0x9, 0x7, 0x8, 0x5, 0xfffffff8, 0x4, 0xef25, 0x697, 0x9, 0x33, 0x5, 0x6e3d7acf, 0x8, 0x4, 0x80, 0xd, 0x5, 0x9, 0x4, 0x4, 0x8, 0x7, 0x70, 0x4, 0x3, 0xffffff54, 0x101, 0x3, 0x0, 0xc, 0x0, 0x3, 0xcf, 0x0, 0x2]}, 0x45c)
read(r0, 0x0, 0x18)

4m58.243412104s ago: executing program 3 (id=2806):
r0 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r0, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r0, 0x8)
r1 = accept4(r0, 0x0, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r1, 0x84, 0x66, &(0x7f0000000000)={0x0, 0xb}, &(0x7f0000000040)=0x8)

4m58.02810617s ago: executing program 3 (id=2810):
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000300)='devtmpfs\x00', 0x14010, 0x0)
syz_mount_image$fuse(&(0x7f0000000380), &(0x7f0000000040)='./file0\x00', 0xa0a8, &(0x7f0000000340)=ANY=[], 0x21, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x1c1)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000180)={[{@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@workdir={'workdir', 0x3d, './bus'}}]})

4m57.745652438s ago: executing program 3 (id=2813):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_DEL_PMK(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={0x1c, r2, 0x605, 0x70bd2d, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r3}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x40004010}, 0x40)

4m57.201242623s ago: executing program 3 (id=2817):
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x108)
close(r0)
syz_open_dev$usbfs(&(0x7f0000000040), 0x400000000000000b, 0x149900)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
mount$9p_fd(0x0, &(0x7f00000006c0)='./bus\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000440)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

4m56.514746042s ago: executing program 35 (id=2817):
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x108)
close(r0)
syz_open_dev$usbfs(&(0x7f0000000040), 0x400000000000000b, 0x149900)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
mount$9p_fd(0x0, &(0x7f00000006c0)='./bus\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000440)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

3m54.6791161s ago: executing program 1 (id=3432):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0xa, 0x6, 0x8, 0x8, 0x40}, 0x50)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x2, 0x4, 0x4, 0x8, 0x1014}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000ff850000002d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000004c0)={r1}, 0xc)

3m54.588374738s ago: executing program 1 (id=3433):
syz_usb_connect(0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0}, 0x94)
syz_emit_ethernet(0x6a, &(0x7f0000000000)={@broadcast, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x5c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x1b59, 0x48, 0x0, @wg=@cookie={0x3, 0x0, "4b3f7633015aff9fa5e73369ed3ed4f938752184f1af2029", "14ef0f501fd4f4fc0d232b48a86ef0222fb6364766977f816acb8f51148dba1a"}}}}}}, 0x0)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x7}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

3m53.769436719s ago: executing program 1 (id=3444):
r0 = socket(0x8000000010, 0x2, 0x0)
write(r0, &(0x7f00000002c0)="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", 0xfc)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_inet_SIOCSARP(r1, 0x8953, &(0x7f0000000180)={{0x2, 0x0, @empty}, {}, 0x0, {0x440, 0x0, @multicast1=0xe000cc02}})

3m53.494183579s ago: executing program 1 (id=3449):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000002c0)=0x20)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f00000002c0)=@file={0x1, './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa'}, 0x6e)
bind$unix(r1, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)

3m53.383465786s ago: executing program 1 (id=3452):
r0 = syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000180)=ANY=[@ANYBLOB="12011001000000407d1e383100000000000109022400010000100309040002fe0300000009210000020122050009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f00000002c0)={0x2c, &(0x7f0000000000)={0x20, 0x21, 0x45, {0x45, 0xc, "48b8ded6b28e03d49913917b3fa81febc7d5926da0794d605e7fc4c61e9d803314e54b989052e1f9c415733fc07b9979a9160cc6ca01d98f1ed1c8b0dfd43dd34e58e7"}}, 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$printer(0xffffffffffffffff, 0x0, 0x0)

3m50.562465747s ago: executing program 1 (id=3480):
syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x210000, &(0x7f00000000c0)={[{@nobarrier}, {@dioread_lock}, {@nodioread_nolock}, {@nolazytime}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x100}}, {@nodioread_nolock}, {@errors_remount}, {@stripe={'stripe', 0x3d, 0x10}}, {@bh}, {@init_itable}]}, 0xfc, 0x56f, &(0x7f0000003780)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42042, 0x14a)
fallocate(r0, 0x10, 0x800, 0x8000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0)
pwrite64(r1, &(0x7f0000000000)='3', 0x1, 0x4fed0)

3m49.719239196s ago: executing program 36 (id=3480):
syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x210000, &(0x7f00000000c0)={[{@nobarrier}, {@dioread_lock}, {@nodioread_nolock}, {@nolazytime}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x100}}, {@nodioread_nolock}, {@errors_remount}, {@stripe={'stripe', 0x3d, 0x10}}, {@bh}, {@init_itable}]}, 0xfc, 0x56f, &(0x7f0000003780)="$eJzs3d9rW1UcAPDvTdPup66DMdQHGezByVy6tv6YIDgfRYcDfZ+hzcpouowmHWsduD24F19kCCIOxD/Adx+H/4B/xUAHQ0bRBxEiN73psjZp2i4z2fL5wG3Pyb23535z7vf2nNyEBDC0jqU/chEvR8Q3ScShlnX5yFYeW9tu9eH1mXRJol7/9M8kkuyx5vZJ9vtAVnkpIn79KuJkbnO71eWV+WK5XFrM6hO1hSsT1eWVU5cWinOludLlqenpM29NT737zts9i/X1839//8ndD898fXz1u5/vH76dxNk4mK1rjeMJ3GitHCv+m5VG4+yGDSd70NggSfp9AOzKSJbno5FeAw7FSJb1wPPvy4ioA0Mqkf8wpJrjgObcvkfz4GfGgw/WJkCN2Mda48+vvTYSextzo/2ryWMzo3S+O96D9tM2fvnjzu10ia1fh9jXpQ6wIzduRsTpfH7z9T/Jrn+7d7rx4vHWNrYxbP9/oJ/upuOfN9qN/3Lr459oM/450CZ3d6N7/ufu96CZjtLx33ttx7/rl67xkaz2QmPMN5pcvFQunY6IFyPiRNS73vo4s3qv3mld6/gvXdL2m2PB7Dju5/c8vs9ssVaMiLFdhvyYBzcjXsm3iz9Z7/+kTf+nz8f5bbZxtHTn1U7rusf/dNV/initbf8/6tZk6/uTE43zYaJ5Vmz2162jv3Vqv9/xp/2/f+v4x5PW+7XVnbfx495/Sp3W7fb8H0s+a5SbSXCtWKstTkaMJR9vfnzq0b7NenP7NP4Tx7e+/rU7/9PJ1+fbjP/WkVsdNx2E/p/dUf/vvHDvoy9+6NT+9vr/zUbpRPZIdv1rLztXtnuAT/r8AQAAAAAAwCDJRcTBSHKF9XIuVyisvb/jSOzPlSvV2smLlaXLs9H4rOx4jOaad7oPtbwfYjJ7P2yzPrWhPh0RhyPi25F9jXphplKe7XfwAAAAAAAAAAAAAAAAAAAAMCAOdPj8f+r3kX4fHfDUNb7YYE+/jwLoh65f+d+Lb3oCBlLX/AeeW/Ifhpf8h+El/2F4yX8YXvIfhpf8h+El/wEAAAAAAAAAAAAAAAAAAAAAAAAAAKCnzp87ly711YfXZ9L67NXlpfnK1VOzpep8YWFppjBTWbxSmKtU5sqlwkxlodvfK1cqVyanYunaRK1UrU1Ul1cuLFSWLtcuXFoozpUulEb/l6gAAAAAAAAAAAAAAAAAAADg2VJdXpkvlsulRYWOhfdjIA7jaQa4Zle75wclCoUOhZtZ9+5srz5elAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABgg/8CAAD//4yLMZo=")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42042, 0x14a)
fallocate(r0, 0x10, 0x800, 0x8000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0)
pwrite64(r1, &(0x7f0000000000)='3', 0x1, 0x4fed0)

3m17.528868326s ago: executing program 8 (id=3746):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000100)={0x100000011, @multicast2, 0x0, 0x0, 'fo\x00', 0x15, 0xff, 0xf}, 0x2c)

3m16.424058886s ago: executing program 8 (id=3752):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r1=>0x0})
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000003c0)={r2, r1, 0x25, 0x0, @val=@iter={0x0}}, 0x20)
syz_emit_ethernet(0x36, &(0x7f0000000300)={@local, @empty, @void, {@ipv6={0x86dd, @generic={0x0, 0x6, '\x00', 0x0, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0xd}}, @remote}}}}, 0x0)

3m15.736110505s ago: executing program 8 (id=3757):
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907001175f37538e486dd637f4b22667f2f00db5b686158bbcfe8875a65969ff57b00000000000000000000000000ac1414aa35f086dd"], 0xfdef)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8}, 0x94)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000001c0)='syzkaller\x00'}, 0x94)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fed007907001175f37538e486dd6317ce2200"], 0xcfa4)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x88be, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

3m14.729567115s ago: executing program 8 (id=3764):
mkdir(&(0x7f0000000ac0)='./file0\x00', 0x18b)
mount$bpf(0x200000000000, &(0x7f0000000000)='./file0/../file0\x00', 0x0, 0x989046, 0x0)
mount$bpf(0x200000000000, &(0x7f0000000200)='.\x00', 0x0, 0x8b7840, 0x0)
mount$bpf(0x200000000000, &(0x7f0000000000)='.\x00', 0x0, 0x989046, 0x0)
mount$bpf(0x200000000000, &(0x7f0000000200)='.\x00', 0x0, 0x8b7840, 0x0)

3m14.460973876s ago: executing program 8 (id=3766):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000040)={0x0, 0x6, 0x0, 0x1, 0x0, 0x3, 0x8, 0x80, 0x0, 0x8}, 0xe)
shutdown(r0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={<r1=>0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x0, @local}]}, &(0x7f0000000440)=0x10)
setsockopt$inet_sctp6_SCTP_RESET_ASSOC(r0, 0x84, 0x78, &(0x7f0000000080)=r1, 0x4)

3m13.849751569s ago: executing program 8 (id=3771):
r0 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r1=>0x0})
bind$can_raw(r0, &(0x7f0000000200)={0x1d, r1}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
setsockopt$CAN_RAW_ERR_FILTER(r0, 0x65, 0x2, &(0x7f0000000100)=0x4, 0x4)

3m13.18577072s ago: executing program 37 (id=3771):
r0 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r1=>0x0})
bind$can_raw(r0, &(0x7f0000000200)={0x1d, r1}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
setsockopt$CAN_RAW_ERR_FILTER(r0, 0x65, 0x2, &(0x7f0000000100)=0x4, 0x4)

12.19947527s ago: executing program 9 (id=5207):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000880), 0x0, 0x0)
ioctl$TCSETS2(r0, 0x402c542b, &(0x7f0000000000)={0x6, 0x7, 0x10021da0, 0x0, 0xff, "00004020e6137db8cbc19e00", 0xfffffffe, 0x1c67c})
prctl$PR_MCE_KILL(0x23, 0x2, 0x7fffffffeffe)
syz_read_part_table(0x1054, &(0x7f0000000000)="$eJzsz7GtwkAQBNCxT/72l4iowHXQB0WQUQIJfRDTAe0gkdCEkWUbaAAhpPeS087tBBu+qkvS18mQ1WVKNrfr7m3hUJJ1te+e86uXOve2P/7NP9WYNMteOz3/panm5JRkKFnGsbY9f/A0AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPgZjwAAAP//HAEKVg==")
syz_mount_image$iso9660(&(0x7f0000000180), &(0x7f0000000000)='./file0\x00', 0x2204806, &(0x7f00000001c0)={[{@hide}, {@map_off, 0x0}, {@mode={'mode', 0x3d, 0x1}}, {@map_off}, {@map_off}, {@iocharset={'iocharset', 0x3d, 'macgreek'}, 0x41}, {@map_acorn}, {@iocharset={'iocharset', 0x3d, 'iso8859-2'}}, {@uid}, {@mode={'mode', 0x3d, 0x4}}, {@mode={'mode', 0x3d, 0xfffffffffffffffe}}, {@unhide}]}, 0xfa, 0x69f, &(0x7f0000000f00)="$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")
ioctl$KDDELIO(r0, 0x4b35, 0x3)

7.152268312s ago: executing program 4 (id=5238):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x4000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
madvise(&(0x7f00001c1000/0x3000)=nil, 0x40000, 0x9)
syz_clone3(0x0, 0x0)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)

7.127280718s ago: executing program 9 (id=5239):
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000340)=0x63ba, 0x4)
setsockopt$inet6_int(r0, 0x29, 0x31, &(0x7f0000000100)=0x8, 0x4)
sendmmsg$inet6(r0, &(0x7f0000000880)=[{{&(0x7f0000000000)={0xa, 0x4e24, 0x3, @loopback, 0x9}, 0x1c, 0x0}}], 0x1, 0x60040000)
recvmmsg(r0, &(0x7f00000005c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000001f80)=""/101, 0x65}, 0x10000006}], 0x1, 0x40002142, 0x0)

6.438105755s ago: executing program 9 (id=5243):
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001580)={0x0, 0x0, &(0x7f0000001400)=[{&(0x7f0000000180)="892950e2405ee8629d9384a91c16d1706a3e61f305119f95cac0f1927f4c205b971eb41147cb1f86883d6910e68ac3996551800b3ec64b77f8444b18345a2c8b178eeeba0cde7319a5a46bfe7f5770e019efd9d52069edcced33a758c4e657f3a792dc193a1911b4e82ea800ad", 0x6d}], 0x1}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000000)={0x11, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b82f8ff"], 0x0, 0x4, 0x0, 0x0, 0x0, 0xc}, 0x94)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$ETHTOOL_MSG_COALESCE_SET(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000001c0)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16, @ANYBLOB="010000000000000000001400000008000200fc00000018000180140002006e657464"], 0x5c}, 0x1, 0x0, 0x0, 0x4000800}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x8890}, 0x20004450)
sendmsg$NFT_MSG_GETRULE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="38000000070a010100000006000000000a0040010900010073797a3100"], 0x38}, 0x1, 0x0, 0x0, 0x20040850}, 0x44054)

6.315916109s ago: executing program 7 (id=5244):
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="b4050000fdff7f006110580000000000c60000000000000095000000000000009f33ef60916e6e713f1eeb0b725ad99b817fd98cd82449894971"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb}, 0x94)
r0 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000002bc0)=@raw={'raw\x00', 0x8, 0x3, 0x4c8, 0x0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x3f8, 0xffffffff, 0xffffffff, 0x3f8, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'bridge0\x00'}, 0x0, 0x148, 0x170, 0x0, {}, [@common=@unspec=@helper={{0x48}}, @common=@inet=@hashlimit1={{0x58}, {'bond_slave_1\x00', {0x41, 0x1ff, 0x6, 0xb0e2, 0x10001, 0x84e, 0xfffffffb, 0x18, 0x8}, {0x1}}}]}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'erspan0\x00', 'gre0\x00', {0xff}, {}, 0x0, 0x0, 0x0, 0x4b}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'vcan0\x00', {0x3, 0x0, 0x41, 0xfffffffe, 0x2, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x528)
r1 = socket$inet6(0xa, 0x3, 0x8000000003c)
connect$inet6(r1, &(0x7f0000000200)={0xa, 0x4ea4, 0x0, @mcast1, 0x9}, 0x1c)
sendmsg(r1, &(0x7f00000000c0)={0x0, 0x952f, &(0x7f0000000100)=[{&(0x7f0000000000)="2c10", 0xffd0}], 0x1, 0x0, 0x0, 0x2c}, 0x44004)

5.626079811s ago: executing program 5 (id=5248):
unshare(0x62040200)
syz_usb_connect(0x0, 0x4a, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=ANY=[@ANYBLOB="600000000206010800000000000000000000000005000400000000000900020073797a31000000001400078008001240000000000500140008000000050005000a000000050001000600000011000300686173683a69702c706f7274"], 0x60}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000000c0)=ANY=[@ANYBLOB="5c0000000a0601080000000000000000070000000900020073797a31000000000500010007000000340007801800018014000240fe8000000000000000000000000000bb060004400e1f00cd050007001100000006000540"], 0x5c}, 0x1, 0x0, 0x0, 0x10000042}, 0x4c040)

4.356352914s ago: executing program 0 (id=5253):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
syz_open_dev$sndpcmp(&(0x7f0000000000), 0x0, 0x0)
io_setup(0x6, &(0x7f0000000140)=<r1=>0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
io_submit(r1, 0x1, &(0x7f00000000c0)=[&(0x7f0000000000)={0x1802, 0x0, 0x0, 0x5, 0xffed, r0, 0x0}])

3.84993866s ago: executing program 0 (id=5255):
epoll_create(0x8001)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040))
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000000)={'veth0_to_bond\x00', &(0x7f00000001c0)=@ethtool_gfeatures={0x3a, 0x2, [{}, {}]}})
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYBLOB="ac00000000010505000000faff0000000a0000003c0002802c00018014000300ff01000000000000000000000000000114000400ff02000000000000009d0000000000010c00028005000100000000003c0001800c00028005000100000000002c00018014000300ff0200000000000000000000000000011400040000000000000000000000ffffac1e00010800074000000001180006801400040000000000000000000000000000000001"], 0xac}}, 0x0)
sendmsg$IPCTNL_MSG_CT_GET(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)={0xc0, 0x0, 0x1, 0x505, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast2}, {0x14, 0x4, @mcast2}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast2}, {0x14, 0x4, @ipv4={'\x00', '\xff\xff', @broadcast}}}}]}, @CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x1000001}, @CTA_NAT_SRC={0x2c, 0x6, 0x0, 0x1, [@CTA_NAT_V6_MINIP={0x14, 0x4, @loopback}, @CTA_NAT_PROTO={0x14, 0x3, 0x0, 0x1, [@CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e22}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e23}]}]}]}, 0xc0}, 0x1, 0x0, 0x0, 0x8040}, 0x0)

3.819433444s ago: executing program 7 (id=5256):
r0 = socket$inet(0x2, 0x3, 0x4)
connect$inet(r0, &(0x7f0000000080)={0x2, 0x4f20, @loopback}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$inet_int(r0, 0x0, 0x13, &(0x7f0000000000)=0x5, 0x4)
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=@newlink={0x28, 0x10, 0x1, 0x70bd25, 0x25dfdbf9, {0x0, 0x0, 0x0, 0x0, 0x48815, 0x3}, [@IFLA_GROUP={0x8}]}, 0x28}, 0x1, 0x0, 0x0, 0x40801}, 0x4000000)
sendmmsg$inet(r0, &(0x7f0000000f40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)

3.586450328s ago: executing program 0 (id=5258):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = epoll_create1(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f00000002c0)={0x10000000})
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r3, &(0x7f0000000100)={0x20000014})
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000240)={0x40002000})

3.428872327s ago: executing program 5 (id=5259):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000940)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(blowfish)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5", 0x4)
r1 = accept4(r0, 0x0, 0x0, 0x800)
sendmmsg$alg(r1, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000140)="eb", 0x1}], 0x1}], 0x1, 0x24040850)
recvmsg(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000680)=[{&(0x7f00000001c0)=""/5, 0x5}], 0x1}, 0x0)

3.418847035s ago: executing program 2 (id=5260):
sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000000380)}], 0x1, 0x40800)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000a00), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000480)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="000425bd7000fcdbdf040200010008003f0036000000080061"], 0x24}, 0x1, 0x0, 0x0, 0x4008001}, 0x20000000)
sendmsg$NL80211_CMD_SET_COALESCE(r0, &(0x7f0000000200)={0x0, 0xffffffffffffff8c, &(0x7f0000000b00)={&(0x7f0000000040)={0x28, r1, 0x1, 0x0, 0x0, {{0x2}, {@val={0x8, 0x3, r2}, @void}}}, 0x28}}, 0x0)

3.155570981s ago: executing program 0 (id=5261):
socket$netlink(0x10, 0x3, 0x0)
setsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0x68, &(0x7f0000000080)=0xa40, 0x4)
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x800002, &(0x7f0000000500)={[{@noblock_validity}, {@abort}, {@mb_optimize_scan}, {@minixdf}, {@jqfmt_vfsv0}, {@usrjquota, 0x2e}], [], 0x22}, 0x84, 0x466, &(0x7f0000000ac0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0xa)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
ioctl$FITRIM(r0, 0x40e8662e, &(0x7f0000000080)={0xe024, 0xd000007})

2.977289729s ago: executing program 5 (id=5262):
syz_usb_connect(0x0, 0x24, 0x0, 0x0)
writev(0xffffffffffffffff, &(0x7f0000000180)=[{&(0x7f0000000040)="e2", 0x1}], 0x1)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0xfdfffffc, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486dd6317ce6203c23c00fe80000000000000875a65969ff57b00000000000000000000000000ac1414aa2c"], 0xfdef)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x4000, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

2.960114714s ago: executing program 4 (id=5263):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000400)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r1 = accept4(r0, 0x0, 0x0, 0x800)
sendmmsg$alg(r1, &(0x7f00000063c0)=[{0x0, 0x0, &(0x7f0000001780)=[{&(0x7f00000002c0)="598847167aa3eeecd678a4be219c9f7ac36dd422be5e395f6579a0878eb84f76bdd866c510f785691711178ee5cb9450f77f56bbaf73c14c1ebd44", 0x3b}, {&(0x7f00000005c0)="b786bc4294b02f59a1cb691b04822a3154b2b17f39", 0x15}], 0x2, &(0x7f00000003c0)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18, 0x14}], 0x1, 0x800)
recvmsg(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000001ec0)=[{&(0x7f0000000380)=""/4, 0x4}, {&(0x7f0000000540)=""/113, 0x71}], 0x2}, 0x40000000)

2.498873759s ago: executing program 4 (id=5264):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x181)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000002c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
lstat(&(0x7f0000000300)='./file0\x00', 0x0)
read$FUSE(r0, &(0x7f0000004e80)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_GETXATTR(r0, &(0x7f0000000040)={0x18, 0x0, r1, {0x7}}, 0x18)

2.438154702s ago: executing program 2 (id=5265):
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000004580)={0x1, 0x9, &(0x7f0000000140)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x6, 0x29, &(0x7f0000000200)=""/41, 0x40f00, 0xa, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
ptrace(0x10, r0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x16, 0x16, &(0x7f0000000240)=ANY=[@ANYBLOB='a'], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector}, 0x94)
readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000100)=""/35, 0x23}], 0x1)
ptrace$setregs(0xd, r0, 0x2, &(0x7f0000000180))

2.15721016s ago: executing program 0 (id=5266):
bpf$MAP_CREATE(0x0, &(0x7f0000000580)=@base={0x16, 0x0, 0x4, 0x800001, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x1}, 0x50)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r0 = io_uring_setup(0x897, &(0x7f0000000040)={0x0, 0x3cb1, 0x1c080, 0xa, 0x20002f7})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x1c, 0x3, &(0x7f0000000000)=@framed={{0xdb, 0xa, 0xa, 0xfe00, 0xa0, 0x71, 0x10, 0x1d}}, 0x0, 0xb, 0x0, 0x0, 0x0, 0x6f, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
io_uring_enter(r0, 0x2219, 0x7721, 0x16, 0x0, 0x0)

2.075805639s ago: executing program 7 (id=5267):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xc, 0x0, <r1=>0x0})
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN(r0, 0x3ba0, &(0x7f0000000100)={0x48, 0x2, r1, 0x0, 0x0, 0x0, <r2=>0x0})
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={0xffffffffffffffff, 0x8, 0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
ioctl$IOMMU_HWPT_ALLOC$TEST(r0, 0x3b89, &(0x7f0000000200)={0x28, 0x0, r2, r1, 0x0, 0x0, 0xdead, 0x8, &(0x7f0000000240)})

2.058918988s ago: executing program 2 (id=5268):
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$vim2m(&(0x7f0000000100), 0x0, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r1, 0xc0145608, &(0x7f00000000c0)={0x1, 0x2, 0x1, 0x0, 0x2})
ioctl$vim2m_VIDIOC_QBUF(r1, 0xc058560f, &(0x7f0000000240)=@mmap={0x1, 0x2, 0x4, 0x100000, 0x9, {}, {0x0, 0x2, 0x4, 0xc0, 0x0, 0xf0, "18a6fc23"}, 0x1, 0x1, {}, 0x1})
ioctl$vim2m_VIDIOC_STREAMOFF(r1, 0x40045612, &(0x7f0000000080)=0x2)
close_range(r0, 0xffffffffffffffff, 0x0)

2.049813538s ago: executing program 4 (id=5269):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=@gettaction={0x50, 0x32, 0x20, 0x70bd25, 0x25dfdbfe, {}, [@action_gd=@TCA_ACT_TAB={0x1c, 0x1, [{0xc, 0x20, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'bpf\x00'}}, {0xc, 0x0, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'ife\x00'}}]}, @action_gd=@TCA_ACT_TAB={0x20, 0x1, [{0x10, 0x16, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'mirred\x00'}}, {0xc, 0x17, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x40}}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x40000}, 0x4048801)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@newqdisc={0x24, 0x24, 0x1, 0x70bd2a, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}, {0x5}}}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="4800000010000d0428bd7000fcdbff2500008000", @ANYRES32=0x0, @ANYBLOB="1000000000000000280012800b0001006272696467650000180002"], 0x48}, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e00"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0)

1.784905549s ago: executing program 2 (id=5270):
openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ff7000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff0000/0xd000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000fec000/0x14000)=nil, &(0x7f0000fe9000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000fff000/0x1000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r0 = io_uring_setup(0x1c79, &(0x7f0000000040)={0x0, 0xc8a0, 0xc000, 0x8, 0x23})
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x17, 0x3, 0x0, 0x0, 0x8000000, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x2f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
io_uring_enter(r0, 0x2219, 0x7721, 0x16, 0x0, 0x0)

1.62533372s ago: executing program 7 (id=5271):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000001"], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000002c0)={'bridge_slave_0\x00', <r1=>0x0})
r2 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="440000001100a7cc4a372eaf541d002007000000", @ANYRES32=r1, @ANYBLOB="00000000100000001c001a80080002802d00ff0008000200", @ANYRES16=r2, @ANYRES32=r2], 0x44}}, 0x2000800)

1.275176428s ago: executing program 2 (id=5272):
r0 = syz_usb_connect(0x5, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201410117512920570509201ec70102030109022400010200100009045807028ab53800090506020001000006090582020002"], 0x0)
syz_usb_control_io$uac3(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
bind$can_raw(0xffffffffffffffff, 0x0, 0x0)
write(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$rtl8150(r0, 0x0, 0x0)

1.166804415s ago: executing program 5 (id=5273):
syz_mount_image$vfat(&(0x7f0000000300), &(0x7f0000000280)='./bus\x00', 0x3c9c9b, 0x0, 0x0, 0x0, &(0x7f0000000140))
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x1c0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000080)={[{@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0/file1\x00', 0x42, 0x5)
io_setup(0x5, &(0x7f00000002c0)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000000500)=[&(0x7f00000003c0)={0x0, 0x0, 0x0, 0x1, 0xc4, r0, 0x0, 0x0, 0xfffffe00, 0x0, 0x0, r0}])

1.062349545s ago: executing program 9 (id=5274):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)=ANY=[@ANYBLOB="540000000206010200000000000000000500000005000100060000000d000300686173683a6e6574000000000900020073797a31000000000c00078008000640000000400500050002000000050004"], 0x54}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket(0x15, 0x5, 0x0)
getsockopt(r2, 0x200000000114, 0x2712, 0x0, &(0x7f0000000040))
sendmsg$IPSET_CMD_ADD(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)={0x44, 0x9, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x1c, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @empty}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @remote}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x4000040}, 0x240008c4)

908.471588ms ago: executing program 7 (id=5275):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='ip6gretap0\x00', 0x10)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
r1 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @mcast1, 0x2}, 0x1c)
syz_emit_ethernet(0x2e, &(0x7f00000000c0)={@random="17fd83853633", @remote, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0xe, 0x20, 0x66, 0x0, 0x3, 0x11, 0x0, @empty, @empty=0xe0000001}, {0x4e1f, 0x4e20, 0xc, 0x0, @gue={{0x1, 0x0, 0x0, 0x3, 0x100, @void}}}}}}}, 0x0)

845.752048ms ago: executing program 9 (id=5276):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
close(r0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4090}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000680)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x64}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a480000001e0a010100000000000000000a0000060900020073797a31000000000900010073797a31000000001c000380180000800c000180060001"], 0x70}, 0x1, 0x0, 0x0, 0x4451099e661a63b1}, 0x0)

767.577345ms ago: executing program 5 (id=5277):
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xffffffff7ffffffd]}, 0x0, 0x8)
r0 = gettid()
timer_create(0x3, &(0x7f000049efa0)={0x0, 0x14, 0x4, @tid=r0}, &(0x7f0000044000)=<r1=>0x0)
timer_settime(0x0, 0x236bd4336e4642df, &(0x7f0000000300)={{}, {0x0, 0xe4c}}, 0x0)
timer_delete(r1)
tkill(r0, 0x12)

666.056596ms ago: executing program 4 (id=5278):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r0}, &(0x7f0000000000), &(0x7f0000000040)=r1}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000340)={r2}, 0x2)

305.760379ms ago: executing program 9 (id=5279):
socket$inet6_sctp(0xa, 0x5, 0x84)
syz_mount_image$exfat(&(0x7f0000002bc0), &(0x7f00000002c0)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x804, &(0x7f00000001c0)={[{}, {@dmask={'dmask', 0x3d, 0x8}}, {@umask={'umask', 0x3d, 0xea}}, {@iocharset={'iocharset', 0x3d, 'iso8859-4'}}, {@errors_remount}, {@umask={'umask', 0x3d, 0x9}}, {@keep_last_dots}, {@namecase}, {@discard}, {@errors_continue}]}, 0xfd, 0x152f, &(0x7f0000002c00)="$eJzs3AuYjlXXOPC19t43Q9LTJIdh771unuSwSUIOSXJIkiRJckpIkrySkBhyShqSkByG5DA0JIeJSeN8PktCkjRJEpJTsv/XxPzVW+/X+31vb77vnfW7rueavWY/a9/rnuV57sM85ptuw2s1qV29ERHBvwQvfokHgBgAGAwA1wBAAADlYsvFZsznkBj/r22E/bkeTLrSFbArifuftXH/szbuf9bG/c/auP9ZG/c/a+P+Z23cf8aysi0zC1zLj6z74Pv/WRkf//+DpJca/8W6Utd3B8j2z6Zw///vw38hl/v/H6nbpQPvH+L+Z23c/6wq5koXwP4X4Nd/VpD9H85w/7M27j9jWdkv7wXHwJW/H/1XPyDy7/wdiO9z8ad85ffzH+4/Y4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDH2FzjjL1MAkDm+0nUxxhhjjDHGGGPsz+OzX+kKGGOMMcYYY4wx9u+HIECCggCyQXaIgRyQEwRAtsz5ayEWroM8cD3khXyQHwpAHBSEQqDBgAWCEApDEYjCDVAUboRiUBxKQElwUApKw01QBm6GsnALlIPyUAFuhYpQCSpDFbgNqsLtUA3ugOpwJ9SAmlALasNdUAfuhrpwD9SDe6E+3AcN4H5oCA9AI3gQGsND0AQehqbwCDSD5tACWkKr/1H+89ALXoDe0AfioS/0gxehPwyAgTAIBsNLMARehqHwCiTAMBgOr8IIeA1GwuswCkbDGHgDxsKbMA7GwwSYCIkwCSbDWzAF3oapMA2mwwxIgpkwC96BZJgNc+BdmAvvwTyYDwtgIaTA+7AIFkMqfABL4ENIg6WwDJbDClgJq2A1rIG1sA7WwwbYCJtgM2yBrbANtsMO+Ah2wsewCz6B3bAH9sKnsA8++2/mn/67/O4ICChQoEKF2TAbxmAM5sScmAtzYW7MjRGMYCzGYh7Mg3kxL+bH/BiHcVgIC6FBg4SEhbEwRjGKRbEoFsNiWAJLoEOHpbE0lsGbsSyWxXJYDitgBayIlbASVsEqWBWrYjWshtWxOtbAGlgLa+FdeBf2xbpYF+thPayP9TNvT2EjbISNsTE2wSbYFJtiM2yGLbAFtsJW2BpbYxtsg+2wHbbH9tgBO2BH7IidsBN2xs7YBbtgV+yK3bAbdsce2CP9+eyAL+AL2AdriL7YD/thf0zIPhAH4SB8CYfgy/gyvoIJOAyH46v4Kr6GI/EUjrowGsfgGKwq3sRxOB5JTMRETMTJOBmn4BScitNwGs7AJJyJs3AWJuNsnI3v4lx8D9/D+TgfF2IKpuAiXIypmIpL8DSm4VJchstxBa7EFbga1+BqXIfrcR1uxI24GTfjVtyK23E7foQf4ceoAPAT3IN7MAH34T7cj/vxAB7Ag3gQ0zEdD+EhPIyH8QgewaN4FI/hcTyBx/EknsRTeBrP4Bk8h+fwPD4b91Xjj4uvTQCRQQmFl17wIqfIKXKJXCK3yC0iIiJiRazII/KIvCKvyC/yizgRJwqJQsIII0iEGe8UIiqioqgoKoqJYqKEKCGccKK0KC3KiDKirCgryonyooK4VVQUlURbV0VUEVVFO1dN3CGqi+qihqgpaonaoraoI+qIuqKuqCfqifqivmgg7hcNRV8ciA+KjM40EcOwqRiOzURzIS8V3FqMxDairWgnHhejcRR2EK1dR/GU6CTGYWfxNzEenxFdxUTsJp4T3UUP0VM8L3qJNq636COmYl/RT8zA/mKAGCgGiWSsKd7FuTlqiVdEghgmhotXxUJ8TYwUr4tRYrQYI94QY8WbYpwYLyaIiSJRTBKTxVtiinhbTBXTxHQxQySJmWKWeEcki9lijnhXzBXviXlivlggFooU8b5YJBaLVPGBWCI+FGliqVgmlosVYqVYJVaLNWKtWCfWiw1io9gkNostYqvYJraLHeIjsVN8LHaJT8RusUfsFZ+KfeIzsV98Lg6IL8RB8aVIF1+JQ+JrcVh8I46Ib8VR8Z04Jo6LE+J7cVL8IE6J0+KMOCvOiR/FefGTuCC8AIlSSCmVDGQ2mV3GyBwyp7xK5pJB5vu/jJXXyTzyeplX5pP5ZQEZJwvKQlJLI60kGcrCsoiMyhtkUXmjLCaLyxKypHSylCwtb5Jl5M2yrLxFlpPlZQV5q6woK8nKsoq8TVaVt0uIXNxGDVlT1pK15V0yHu6WdeU9sp68V9aX98kG8n7ZUD4gG8kHZWP5kGwiH5ZN5SOymWwuW8iWspV8VLaWj8k2sq1sJx+X7eUTsoN8UnaUT8lO0l/6J/KM7Cqfld3kc7K77CF7yp/kBellb9lHQl+Q/eSLsr8cIAfKQXKwfEkOkS/LofIVmSCHyeHyVTlCviZHytflKDlajpFvyLHyTTlOjpcT5ESZKCfJyfItOUW+LafKaXK6nCGT5Ew58NJKc6T8w/y3fid/6M9b3yy3yK1ym9yefPbijshdcpfcLXfLvXKv3Cf3yf1yvzwgD8iD8qBMl+nykDwkD8vD8og8Io/Ko/KYPC7Pyu/lSfmDPCVPy9PyrDwnz8nzl34GoFAJJZVSgcqmsqsYlUPlVFepXOpqlVtdoyLqWhWrrlN51PUqo4D8qoCKUwVVIaWVUVaRClVhVURF1Q2Z7x+qhCqpnCqlSqubfpWfV+VT/0W+KqpuVMVU8V/lZ9YX/w/qa6VaqdaqtWqj2qh2qp1qr9qrDqqD6qg6qk6qk+qsOqsuqovqqrqqbqqb6q66q56qp+qleqneqreKV/Gqn3pR9VcD1EA1SA1WL4mMfRiqhqoElaCGq+FqhBqhRqqRapQapcaoMWqsGqvGqXFqgpqgElWimqwmqylqipqqpqrparpKUklqlpqlklWymqPmqLlqrpqn5qkFaoFKUSlqkVqkUlWqWqKWqDS1VC1Vy9VytVKtVKvVarVWrVXr1Xq1UW1UaWqL2qK2qW1qh9qhdqqdapfapXar3Wqv2qv2qX1qv9qvDqgD6qA6qNJVujqkDqnD6rA6oo6oo+qoOqaOqRPqhDqpTqpT6pQ6o86oc+qcOq/OqwvqQsZpXyACEahABdmCbEFMEBPkDHIGuYJcQe4gdxAJIkFsEBvkCa4P8gb5gvxBgSAuKBgUCnRgAhuIS02PBjcERYMbg2JB8aBEUDJwQamgdHBTUCa4OSgb3BKUC8oHFYJbg4pBpaByUCW4Laga3B5UC+4Iqgd3BjWCmkGtoHZwV1AnuDuoG9wT1AvuDeoH9wUNgvuDhsEDQaPgwaBx8FDQJHg4aBo8EjQLmgctgpZBqz91fe9P5XvM9dZ9dLzuq/vpF3V/PUAP1IP0YP2SHqJf1kP1KzpBD9PD9at6hH5Nj9Sv61F6tB6j39Bj9Zt6nB6vJ+iJOlFP0pP1W3qKfltP1dP0dD1DJ+mZepZ+Ryfr2XqOflfP1e/peXq+XqAX6hT9vl6kF+tU/YFeoj/UaXqpXqaX6xV6pV6lV+s1eq1ep9frDXqj3qQ36y16q96mt+sd+iO9U3+sd+lP9G69R+/Vn+p9+jO9X3+uD+gv9EH9pU7XX+lD+mt9WH+jj+hv9VH9nT6mj+uy+nt9Uv+gT+nT+ow+q8/pH/V5/ZO+oH3GyX3G4d0oo0w2k83EmBiT0+Q0uUwuk9vkNhETMbEm1uQxeUxek9fkN/lNnIkzhUwhk4EMmcKmsImaqClqippippgpYUoYZ5wpbUqbMqaMKWvKmnKmnKlgKpiKpqKpbCqb28xt5nZzu7nD3GHuNHeamqamqW1qmzqmjqlr6pp6pp6pb+qbBqaBaWgamkamkWlsGpsmpolpapqaZqaZaWFamFamlWltWps2po1pZ9qZ9qa96WA6mI6mo+lkOpnOprPpYrqYrqar6Wa6me6mu+lpeppeppfpbXqbeBNv+pl+pr/pbwaagWawGWyGmCEXLn082gw3w80IM8KMNCPNKDPajMk4UTVvmnFmvJlgJppEk2gmm8lmiplippqpZrqZbpJMkpllZplkk2zmmDlmrplr5pl5ZoFZYFJMillkFplUk2qWmCUmzaSZZWaZWWFWmFVmlVlj1ph1Zp3ZABvMJrPJbDFbzDazzewwO8xOs9PsMrvMbrPb7DV7zT6zz+w3+80Bc8AcNAdNukk3h8whc9gcNkfMEXPUHDXHzDFzwpwwJ81Jc8qcMmfMGXPO5Lt0vPQmxuawOe1VNpe92ua219i/j/PbAjbOFrSFrLZ5bb5fxcZaW8wWtyVsSetsKVva3vSbuKKtZCvbKvY2W9Xebqv9Jq5j77Z17T22nr3X1rZ3/Squb++zDezDtiEigG1uG9uWtol92Da1j9hmtrltYVva9vYJ28E+aTvap2wn+/Rv4kV2sV1j19p1dr3dbffYM/asPWy/sefsj7a37WMH25fsEPuyHWpfsQl22G/iMfYNO9a+acfZ8XaCnfibeLqdYZPsTDvLvmOT7ezfxCn2fTvXptp5dr5dYBf+HGfUlGo/sEvshzbNBrDMLrcr7Eq7yq7+/7UutxvtJrvZ7rKf2G12u91hP7I7M0+E7R67135q99nP7CH7tT1gv7AH7RGbbr/6Oc7YvyP2W3vUfmeP2eP2hP3enrQ/qMzsjH3/3v5kL1hvgZCAJCkKKBtlpxjKQTnpKspFV1NuuoYidC3F0nWUh66nvJSP8lMBiqOCVIg0GbJEFFJhKkJRuoEyyytBJclRKSpNN1EZupnK0i1UjspTBbqVKlIlqkxV6DaqSrdTNbqDqtOdVINqUi2qTXdRHbqb6tI9VI/upfp0HzWg+6khPUCN6EFqTA9RE3qYmtIj1IyaUwtqSa3oUWpNj1Ebakvt6HFqT09QB3qSOtJT1Imeps70N+pCz1BXepa60XPUnXpQT3qeetEL1Jv6UDz1pX70IvWnATSQBtFgeomG0Ms0lF6hBBpGw+lVGkGv0Uh6nUbRaBpDb9BYepPG0XiaQBMpkSbRZHqLptDbNJWm0XSaQUk0k2bRO5RMs2kOvUtz6T2aR/NpAS2kFHqfFtFiSqUPaAl9SGm0lJbRclpBK2kVraY1tJbW0XraQBtpE22mLbSVttF22kEf0U76mHbRJ7Sb9tBe+pT20We0nz6nA/QFHaQvKZ2+okP0NR2mb+gIfev70Hd0jI7TCfqeTtIPdIpO0xk6S+foRzpPP9EF8gQhhiKUoQqDMFuYPYwJc4Q5w6vCXOHVYe7wmjASXhvGhteFecLrw7xhvjB/WCCMCwuGhUIdmtCGFIZh4bBIGA1vCIuGN4bFwuJhibBk6MJSYenwprBMeHNYNrwlLBeWDyuEt4YVw0rhw/dWCW8Lq4a3h9XCO8Lq4Z1hjbBmWCusHd4V1gnvDuuG94T1wnvDsuF9YYPw/rBh+EDYKHwwbBw+FDYJHw6bho+EzcLmYYuwZdgqfDRsHT4Wtgnbhu3Cq8L24RNhh/DJsGP4VNgpfPrn+fsWZ84//pv5+LBv2C98MXwx9P4euSC6MJoSfT+6KLo4mhr9ILok+mE0Lbo0uiy6PLoiujK6Kro6uia6Nrouuj66Iboxuim6Oep97ezg0AknnXKBy+ayuxiXw+V0V7lc7mqX213jIu5aF+uuc3nc9S6vy+fyuwIuzhV0hZx2xllHLnSFXREXdTe4ou5GV8wVdyVcSedcKVfatXStXCvX2j3m2ri2rp173D3unnBPuCfdk+4p18k97Tq7v7ku7hnX1T3rnnXPue6uh+vpnne93KTcF1+T8a6f6+f6u/5uoBuYcQxzQ9wQN9QNdQkuwQ13w90IN8KNdCPdKDfKjXFj3Fg31o1z49wEN8ElukQ32U12U9wUN9VNddPddJfkktwsN8slu2RXdfbFrcxz89wCt8CluBS3yGWcM6a6JW6JS3Npbplb5la4FW6VW+XWuDVunVvnNrgNbpPb5La4LW6b2+Z2uB1up9vpdrldbre/5uKibp/b7/a7A+6AO+i+dOnuK3fIfe0Ou2/cEfetO+q+c8fccXfCfe9Ouh/cKXfanXFn3Tn3ozvvfnIXnHeJkUmRyZG3IlMib0emRqZFpkdmRJIiMyOzIu9EkiOzI3Mi70bmRt6LzIvMjyyILIykRN6PLIosjqRGPogsiXwYSYssjSyLLI+siKyMeF9wW+gL+yI+6m/wRf2Nvpgv7kv4kt75Ur60v8mXuVh3mvflfQV/q6/oK/nK/hHfzDf3LXxL38o/6lv7x3wb39a384/79v4J38E/6Tv6p3wn/7Tv7P/mu/hnfFf/rO/mn/PdfQ/f0z/ve/kXfG/fx8f7vr6ff9H39wP8QD/ID/Yv+SH+ZT/Uv+IT/DA/3L/qR/jX/Ej/uh/lR/sx2d7wYzMvkWGiT/ST/GT/lp/i3/ZT/TQ/3c/wSX6mn+Xf8cl+tp/j3/Vz/Xt+np/vF/iFPsW/7xf5xT7Vf+CX+A99ml+aedPYr/Kr/Rq/1q/z6/0Gv9Fv8pv9Fr/Vb/Pb/Q7/kd/pP/a7fP87sfwev9d/6vf5z/x+/7k/4L/wB/2XPt1/5Q/5r/1h/40/4r/1R/13/pg/7k/47/1J/4M/5U/7M/6sP+d/9Of9T/4C/581xhhjjLF/yqTLQ/HrmYu38/v+To74xZP7AcDV2wuk/3I+44xyQ96L4wEiLibj61N9uj2Y+ahRIz4+/tJz0yQEReYDZP4mKMPPHz24FC+FdvAEdIS2UOZ36x8gepyjP1g/Wh4g5y9yMgrKjC+v/zkAxv/O+o8+PmZRhfBM7H+x/nyAYkUu5+SAy/FSaPfz/ZW2UPYf1J+v9R/Un+OLRIA2v8jJBZfjy/WXhsfgaej4q2cyxhhjjDHGGGMXDRCVu2Ref2Z+4vP3rs/j1OWc7HA5/qPrc8YYY4wxxhhjjF15z/To+eSjHTu27fLfH1T7H2X904Om8O9amQe/O/AeIPM7CgD+xQUBMgbyr9yLrX/JthIuvXT+fmrFWR/A/45W/hmDK/zGxBhjjDHGGPvTXT7p//X31ZUqiDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYy4L+ij8ndqX3kTHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGLvS/l8AAAD//w39+qA=")
syz_mount_image$vfat(&(0x7f0000000300), &(0x7f0000000340)='./file0\x00', 0x3c9c9b, 0x0, 0x0, 0x0, &(0x7f0000000140))
semctl$SEM_INFO(0x0, 0x1, 0x13, &(0x7f0000000080)=""/133)
socket$tipc(0x1e, 0x5, 0x0)
creat(&(0x7f0000000000)='./file0\x00', 0xc9a9c042ad77c5c4)

185.460607ms ago: executing program 2 (id=5280):
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r0 = syz_open_dev$usbmon(&(0x7f0000000080), 0x0, 0x0)
r1 = syz_open_dev$usbfs(&(0x7f0000000000), 0x20000007d, 0x0)
r2 = dup3(r0, r1, 0x80000)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$MON_IOCG_STATS(r2, 0xc0109207, &(0x7f00000001c0))

184.123786ms ago: executing program 5 (id=5281):
socket$nl_generic(0x10, 0x3, 0x10)
gettid()
clock_adjtime(0x0, &(0x7f0000001100)={0xd77, 0x2000000000000000, 0x80, 0xffffffffffffffff, 0x0, 0x4b, 0xf2, 0x0, 0x0, 0xa12, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x4, 0x0, 0x0, 0x0, 0x0, 0x80000000000000})
ioctl$sock_inet_SIOCDARP(0xffffffffffffffff, 0x8955, 0x0)
r0 = socket(0x10, 0x2, 0x0)
write(r0, &(0x7f0000000800)="240000001e005f031420654400000000000000000100000001000800080008c01300ff00", 0x24)

53.278321ms ago: executing program 0 (id=5282):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f0000000ac0), 0x1, 0x44a, &(0x7f0000000400)="$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")
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000140)='.\x00', 0x0, 0xa0)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000600)={0x23e3, 0x0, 0xd, 0x2})
openat(0xffffffffffffff9c, &(0x7f0000000f40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xa442, 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000280)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x2)

50.105413ms ago: executing program 7 (id=5283):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000000240)=0x6a, 0x4)
bind$inet(r0, &(0x7f0000001c00)={0x2, 0x4e23, @multicast2}, 0x10)
connect$inet(r0, &(0x7f0000001bc0)={0x2, 0x4e23, @loopback}, 0x10)
sendmmsg(r0, &(0x7f0000004fc0)=[{{0x0, 0x0, &(0x7f0000001800)=[{&(0x7f0000000400)="f2a3caf1952c87a38acd5773d122cb755867e6eb5188ea264a07a2f38b58c6338ec4f67c78fcd77e9f7d11fd8d50fb354b4d31782546", 0x36}], 0x1}}, {{0x0, 0x0, &(0x7f0000004e80)=[{&(0x7f00000001c0)="27a1", 0x2}], 0x1}}], 0x2, 0x4000)
sendto$inet(r0, &(0x7f00000002c0)="01a4acc7cf28ab9f6c7fc745c30bfc165466072a660bbf56352083db9d40454a67f8010000004bd29585885c89773ca3ba28a1e85ffe2a9220e0ecd440e345b745bf2146835ad015c801f95be5b890e44fb3dfbe8e88a1e5176e584c970207f23b0073ca5375abddf56331be396eaa2398ea66b93a74fd4147e826abed1b5d1de578682288c19ac23c1ccc1cdd936d2571c3510b0000000000000000000000000000000000f32bb3874c926a8944caa4677d2eae3bc831e748000000", 0xfffffffffffffe88, 0x5e, 0x0, 0x0)

0s ago: executing program 4 (id=5284):
write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000000080)={0xc, {"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", 0x1000}}, 0x1006)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000000)={0x0, 0x0, 0x0, &(0x7f0000010040), 0x0, 0xffffffffffffffff, 0x4}, 0x38)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000940)='hugetlb.2MB.usage_in_bytes\x00', 0x26e1, 0x0)
close(r0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000029c0))
ioctl$SIOCSIFHWADDR(r0, 0x8b34, &(0x7f0000000000)={'wlan1\x00', @random="000500000020"})

kernel console output (not intermixed with test programs):

2479] usb 8-1: Using ep0 maxpacket: 32
[  539.703517][T12479] usb 8-1: config 0 has an invalid interface number: 184 but max is 0
[  539.749461][T12479] usb 8-1: config 0 has no interface number 0
[  539.779132][T12479] usb 8-1: config 0 interface 184 has no altsetting 0
[  539.801911][T12479] usb 8-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  539.827527][T12479] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  539.846544][T12479] usb 8-1: Product: syz
[  539.856644][T12479] usb 8-1: Manufacturer: syz
[  539.868828][T12479] usb 8-1: SerialNumber: syz
[  539.891887][T12479] usb 8-1: config 0 descriptor??
[  541.222906][T17693] loop9: detected capacity change from 0 to 65536
[  541.237575][T12479] smsc75xx 8-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000040: -32
[  541.256771][T12479] smsc75xx 8-1:0.184 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  541.264244][T17693] XFS (loop9): Mounting V5 Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3
[  541.309143][T17693] XFS (loop9): Ending clean mount
[  541.318007][T17693] XFS (loop9): Quotacheck needed: Please wait.
[  541.399625][T17686] loop4: detected capacity change from 0 to 131072
[  541.431827][T17686] F2FS-fs (loop4): Test dummy encryption mode enabled
[  541.451047][T17686] F2FS-fs (loop4): invalid crc value
[  541.465352][T17693] XFS (loop9): Quotacheck: Done.
[  541.564864][T13925] XFS (loop9): Unmounting Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3
[  541.586079][T12479] smsc75xx 8-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000010: -71
[  541.605577][T17686] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  541.627514][T17686] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  541.645258][T12479] smsc75xx 8-1:0.184 (unnamed net_device) (uninitialized): Failed to read HW_CFG: -71
[  541.666877][T12479] smsc75xx 8-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -71
[  541.712881][T12479] smsc75xx 8-1:0.184: probe with driver smsc75xx failed with error -71
[  541.758663][   T30] audit: type=1800 audit(1779489672.082:166): pid=17686 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.4052" name="file1" dev="loop4" ino=10 res=0 errno=0
[  541.765250][T12479] usb 8-1: USB disconnect, device number 12
[  542.726458][T17734] netlink: 4 bytes leftover after parsing attributes in process `syz.9.4066'.
[  542.828727][T17738] 9p: Bad value for 'rfdno'
[  543.348108][T17717] loop5: detected capacity change from 0 to 32768
[  543.972475][T17769] netlink: 212360 bytes leftover after parsing attributes in process `syz.5.4077'.
[  544.327419][T17776] input: syz0 as /devices/virtual/input/input28
[  544.418911][T17775] loop7: detected capacity change from 0 to 4096
[  544.474375][T17775] ntfs3(loop7): ino=3, Correct links count -> 2.
[  544.595355][T17775] ntfs3(loop7): ino=1a, mi_enum_attr
[  544.626198][T17775] ntfs3(loop7): Mark volume as dirty due to NTFS errors
[  545.207046][T17800] loop9: detected capacity change from 0 to 128
[  545.237369][T17800] FAT-fs (loop9): bogus sectors per cluster 0
[  545.269195][T17800] FAT-fs (loop9): Can't find a valid FAT filesystem
[  546.299583][T17842] loop5: detected capacity change from 0 to 256
[  546.546571][T17856] loop0: detected capacity change from 0 to 512
[  546.586236][T17856] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  546.862534][T15762] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  547.078094][T17869] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4119'.
[  547.200953][T17874] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4121'.
[  547.620123][T17886] loop0: detected capacity change from 0 to 64
[  547.620482][T17884] overlayfs: failed to clone upperpath
[  547.687375][T17887] overlayfs: failed to clone upperpath
[  547.827083][T17891] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4129'.
[  547.873184][T17891] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4129'.
[  547.933852][T17891] ip6gretap1: entered allmulticast mode
[  548.093328][ T5751] IPVS: starting estimator thread 0...
[  548.104965][T17900] IPVS: rr: FWM 3 0x00000003 - no destination available
[  548.116802][T17872] loop5: detected capacity change from 0 to 32768
[  548.200617][T17904] loop4: detected capacity change from 0 to 128
[  548.235958][T17904] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  548.250015][T17901] IPVS: using max 25 ests per chain, 60000 per kthread
[  548.279719][T17904] hpfs: filesystem error: improperly stopped
[  548.300410][T17904] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  548.325155][T17904] hpfs: You really don't want any checks? You are crazy...
[  548.371036][T17904] hpfs: Code page index out of array
[  548.388483][T17904] hpfs: code page support is disabled
[  548.409053][T17904] hpfs: hpfs_map_4sectors(): unaligned read
[  548.427905][T17904] hpfs: hpfs_map_4sectors(): unaligned read
[  548.439449][T17904] hpfs: filesystem error: unable to find root dir
[  548.518173][T17910] loop0: detected capacity change from 0 to 4096
[  548.840294][T17825] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  548.876215][T17922] overlayfs: failed to resolve './file0': -2
[  549.736665][T17916] loop4: detected capacity change from 0 to 131072
[  549.792938][T17916] F2FS-fs (loop4): invalid crc value
[  549.913980][T17916] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  549.929429][T17916] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e4
[  549.954086][T17944] loop5: detected capacity change from 0 to 64
[  550.112458][T17950] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4148'.
[  550.173512][T17950] netlink: 'syz.0.4148': attribute type 5 has an invalid length.
[  550.190480][T17950] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4148'.
[  550.237754][T17955] loop7: detected capacity change from 0 to 8
[  550.289535][T17950] geneve2: entered promiscuous mode
[  550.309454][T17950] geneve2: entered allmulticast mode
[  550.592661][T17963] netlink: 'syz.0.4159': attribute type 12 has an invalid length.
[  550.648372][T17956] loop9: detected capacity change from 0 to 32768
[  550.663672][   T57] netdevsim netdevsim0 netdevsim0: set [1, 1] type 2 family 0 port 256 - 0
[  550.711886][   T57] netdevsim netdevsim0 netdevsim1: set [1, 1] type 2 family 0 port 256 - 0
[  550.737905][   T57] netdevsim netdevsim0 netdevsim2: set [1, 1] type 2 family 0 port 256 - 0
[  550.739326][T17955] SQUASHFS error: Unable to read directory block [629:46]
[  550.766092][   T57] netdevsim netdevsim0 netdevsim3: set [1, 1] type 2 family 0 port 256 - 0
[  550.783603][T17956] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  550.792261][T17956] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  550.855839][T17956] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[  550.873299][   T29] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  550.880517][   T29] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  551.139803][T17969] loop5: detected capacity change from 0 to 2048
[  551.208222][T17969] hpfs: hpfs_map_sector(): read error
[  551.245029][   T29] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 364ms
[  551.281064][   T29] gfs2: fsid=syz:syz.0: jid=0: Done
[  551.301506][T17956] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  551.471896][T12477] usb 8-1: new high-speed USB device number 13 using dummy_hcd
[  551.681048][T12477] usb 8-1: Using ep0 maxpacket: 8
[  551.712695][T12477] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 12
[  551.772393][T12477] usb 8-1: New USB device found, idVendor=045e, idProduct=00f9, bcdDevice= 0.00
[  551.834751][T12477] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  551.895021][T12477] usb 8-1: config 0 descriptor??
[  552.392067][T12477] microsoft 0003:045E:00F9.0018: unexpected long global item
[  552.426872][T12477] microsoft 0003:045E:00F9.0018: parse failed
[  552.454791][T12477] microsoft 0003:045E:00F9.0018: probe with driver microsoft failed with error -22
[  552.531428][T18008] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4176'.
[  552.608301][ T5751] usb 8-1: USB disconnect, device number 13
[  554.170973][T12477] usb 1-1: new full-speed USB device number 11 using dummy_hcd
[  554.344932][T12477] usb 1-1: config 0 has an invalid interface number: 41 but max is 0
[  554.386226][T12477] usb 1-1: config 0 has no interface number 0
[  554.396987][T18045] loop5: detected capacity change from 0 to 512
[  554.416796][T12477] usb 1-1: config 0 interface 41 has no altsetting 0
[  554.448580][T12477] usb 1-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=d1.9a
[  554.491535][T12477] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  554.544618][T12477] usb 1-1: Product: syz
[  554.564495][T12477] usb 1-1: Manufacturer: syz
[  554.592003][T12477] usb 1-1: SerialNumber: syz
[  554.631603][T12477] usb 1-1: config 0 descriptor??
[  555.025037][T18060] netlink: 1355 bytes leftover after parsing attributes in process `syz.5.4199'.
[  555.137253][T18057] loop7: detected capacity change from 0 to 32768
[  555.152730][T18057] (syz.7.4197,18057,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  555.168986][T18057] (syz.7.4197,18057,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  555.276330][   T29] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  555.284196][T18057] (syz.7.4197,18057,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xbec99099, computed 0x3881d996. Applying ECC.
[  555.298956][T18057] (syz.7.4197,18057,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x93f628a2, computed 0x2aee8be5. Applying ECC.
[  555.318662][T18057] JBD2: Ignoring recovery information on journal
[  555.404544][T18057] (syz.7.4197,18057,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xbec99099, computed 0x3881d996. Applying ECC.
[  555.420112][T18057] ocfs2: Mounting device (7,7) on (node local, slot 0) with ordered data mode.
[  555.435064][T18057] (syz.7.4197,18057,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x93f628a2, computed 0x2aee8be5. Applying ECC.
[  555.474351][T18057] (syz.7.4197,18057,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x98842a5e, computed 0xe74db1cd. Applying ECC.
[  555.487882][T12477] CoreChips 1-1:0.41 (unnamed net_device) (uninitialized): sr_get_phy_addr : Error reading PHYID register:ffffffe0
[  555.511905][   T29] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  555.530594][   T29] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  555.558126][T18057] (syz.7.4197,18057,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x1cec3d0f, computed 0xd2ffbdfe. Applying ECC.
[  555.587945][T18057] (syz.7.4197,18057,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x2c7b5077, computed 0x4d558a87. Applying ECC.
[  555.602177][T18057] (syz.7.4197,18057,1):ocfs2_block_check_validate:416 ERROR: Fixed CRC32 failed: stored: 0x2c7b5077, computed 0x5d2751af
[  555.616108][T18057] (syz.7.4197,18057,1):ocfs2_read_quota_phys_block:160 ERROR: status = -5
[  555.625180][T18057] (syz.7.4197,18057,1):ocfs2_quota_read:201 ERROR: status = -5
[  555.632816][T18057] Quota error (device loop7): find_tree_dqentry: Can't read quota tree block 5
[  555.642182][T18057] Quota error (device loop7): qtree_read_dquot: Can't read quota structure for id 0
[  555.653016][T18057] (syz.7.4197,18057,1):ocfs2_acquire_dquot:904 ERROR: status = -5
[  555.662191][T18057] (syz.7.4197,18057,1):ocfs2_mknod:318 ERROR: status = -5
[  555.669329][T18057] (syz.7.4197,18057,1):ocfs2_mknod:506 ERROR: status = -5
[  555.670275][T12476] usb 6-1: new high-speed USB device number 24 using dummy_hcd
[  555.677987][T18057] (syz.7.4197,18057,1):ocfs2_create:679 ERROR: status = -5
[  555.694457][   T29] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  555.704294][   T29] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  555.721804][   T29] usb 5-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  555.735543][   T29] usb 5-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  555.756806][   T29] usb 5-1: Manufacturer: syz
[  555.774401][   T29] usb 5-1: config 0 descriptor??
[  555.777619][T12477] CoreChips 1-1:0.41 (unnamed net_device) (uninitialized): Failed to send software reset:ffffffb9
[  555.835981][T12477] CoreChips 1-1:0.41 (unnamed net_device) (uninitialized): Failed to power down PHY : -71
[  555.888057][T12477] CoreChips 1-1:0.41: probe with driver CoreChips failed with error -71
[  555.906764][T11825] ocfs2: Unmounting device (7,7) on (node local)
[  555.909856][T18070] loop9: detected capacity change from 0 to 128
[  555.931785][T12477] usb 1-1: USB disconnect, device number 11
[  555.970090][T12476] usb 6-1: Using ep0 maxpacket: 32
[  556.012725][T18070] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  556.081162][T18070] hpfs: filesystem error: improperly stopped
[  556.118573][T18070] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  556.170290][T18070] hpfs: You really don't want any checks? You are crazy...
[  556.224760][   T29] appleir 0003:05AC:8243.0019: unknown main item tag 0x0
[  556.245226][T18070] hpfs: hpfs_map_sector(): read error
[  556.289305][T18070] hpfs: code page support is disabled
[  556.321164][T18070] hpfs: hpfs_map_4sectors(): unaligned read
[  556.343884][T18070] hpfs: hpfs_map_4sectors(): unaligned read
[  556.364551][   T29] appleir 0003:05AC:8243.0019: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.4-1/input0
[  556.387335][T18070] hpfs: filesystem error: unable to find root dir
[  556.540235][T18070] hpfs: hpfs_map_4sectors(): unaligned read
[  556.674215][T18076] hpfs: filesystem error: invalid bitmap block pointer 00000000 -> 7b3184b5 at aib
[  556.905147][   T29] usb 5-1: USB disconnect, device number 13
[  557.089437][T18077] fido_id[18077]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.4/usb5/report_descriptor': No such file or directory
[  558.090240][T18095] loop4: detected capacity change from 0 to 32768
[  558.102885][T18095] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.4211 (18095)
[  558.121930][T18095] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  558.133779][T18095] BTRFS info (device loop4): using crc32c checksum algorithm
[  558.267955][T18095] BTRFS info (device loop4): enabling ssd optimizations
[  558.276468][T18095] BTRFS info (device loop4): turning on flush-on-commit
[  558.283529][T18095] BTRFS info (device loop4): enabling free space tree
[  558.290352][T18095] BTRFS info (device loop4): force zlib compression, level 3
[  558.297756][T18095] BTRFS info (device loop4): max_inline set to 4096
[  558.366876][T16787] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  558.558745][T12476] usb 6-1: unable to get BOS descriptor or descriptor too short
[  558.602095][T12476] usb 6-1: unable to read config index 0 descriptor/start: -71
[  558.640738][T12476] usb 6-1: can't read configurations, error -71
[  560.572287][T18186] xt_hashlimit: size too large, truncated to 1048576
[  560.785393][T18199] loop7: detected capacity change from 0 to 512
[  560.914555][T18199] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  560.985337][T18199] ext4 filesystem being mounted at /319/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  561.049676][   T30] audit: type=1800 audit(1779489691.382:167): pid=18199 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.4247" name="file1" dev="loop7" ino=15 res=0 errno=0
[  561.295670][T11825] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  561.460258][T18224] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4256'.
[  561.564195][T18227] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4257'.
[  562.154235][ T1308] ieee802154 phy0 wpan0: encryption failed: -22
[  562.164598][ T1308] ieee802154 phy1 wpan1: encryption failed: -22
[  562.538097][T18261] loop7: detected capacity change from 0 to 128
[  562.896221][T18269] 9pnet: p9_errstr2errno: server reported unknown error b0
[  563.393441][T18291] loop0: detected capacity change from 0 to 512
[  563.515493][T18291] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  563.606232][T18291] ext4 filesystem being mounted at /118/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  563.769683][T18291] EXT4-fs (loop0): shut down requested (2)
[  563.956826][T15762] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  563.978088][T10421] Quota error (device loop0): dquot_write_dquot: Can't write quota structure (error -5). Quota may get out of sync!
[  564.979115][T18282] loop9: detected capacity change from 0 to 32768
[  565.166980][T18282] XFS (loop9): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  565.188974][   T30] audit: type=1326 audit(1779489695.522:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18314 comm="syz.2.4294" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe2a659ce59 code=0x0
[  565.381830][T18282] XFS (loop9): Ending clean mount
[  565.470197][T18282] XFS (loop9): Quotacheck needed: Please wait.
[  565.743476][T18282] XFS (loop9): Quotacheck: Done.
[  565.953387][T13925] XFS (loop9): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  566.500790][T12476] usb 8-1: new high-speed USB device number 14 using dummy_hcd
[  567.746761][T12476] usb 8-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36
[  567.755902][T12476] usb 8-1: New USB device strings: Mfr=241, Product=2, SerialNumber=3
[  567.764454][T12476] usb 8-1: Product: syz
[  567.768651][T12476] usb 8-1: Manufacturer: syz
[  567.773982][T12476] usb 8-1: SerialNumber: syz
[  567.867951][T18370] loop0: detected capacity change from 0 to 131072
[  567.882547][T12476] usb 8-1: config 0 descriptor??
[  567.900935][T12476] ch341 8-1:0.0: ch341-uart converter detected
[  568.006209][T18370] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  568.023110][T18370] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  568.104948][T18370] F2FS-fs (loop0): recover xattr in inode (7), error(0)
[  568.113579][T18370] F2FS-fs (loop0): set inode (7) has corrupted xattr
[  568.125175][T18370] F2FS-fs (loop0): lookup inode (7) has corrupted xattr
[  568.453801][T18410] syz.4.4316 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  568.513507][T18410] loop4: detected capacity change from 0 to 512
[  568.549320][T18410] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  568.618453][T18410] EXT4-fs (loop4): failed to initialize system zone (-117)
[  568.643685][T18410] EXT4-fs (loop4): mount failed
[  568.935859][T12476] ch341-uart ttyUSB0: break control not supported, using simulated break
[  568.972936][T12476] usb 8-1: ch341-uart converter now attached to ttyUSB0
[  569.020228][ T5751] usb 5-1: new high-speed USB device number 14 using dummy_hcd
[  569.021909][T12476] usb 8-1: USB disconnect, device number 14
[  569.081847][T12476] ch341-uart ttyUSB0: ch341-uart converter now disconnected from ttyUSB0
[  569.112686][T12476] ch341 8-1:0.0: device disconnected
[  569.234546][ T5751] usb 5-1: config index 0 descriptor too short (expected 1572, got 36)
[  569.260126][ T5751] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  569.292844][ T5751] usb 5-1: New USB device found, idVendor=05ac, idProduct=0238, bcdDevice= 0.40
[  569.318021][ T5751] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  569.342019][ T5751] usb 5-1: Product: syz
[  569.349483][ T5751] usb 5-1: Manufacturer: syz
[  569.363647][ T5751] usb 5-1: SerialNumber: syz
[  569.404893][ T5751] input: bcm5974 as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/input/input29
[  569.602888][ T4972] bcm5974 5-1:1.0: could not read from device
[  569.678975][ T4972] bcm5974 5-1:1.0: could not read from device
[  569.747903][ T5751] bcm5974 5-1:1.0: could not read from device
[  569.811575][ T5751] input: failed to attach handler mousedev to device input29, error: -5
[  569.860937][ T4972] bcm5974 5-1:1.0: could not read from device
[  569.873836][ T5751] usb 5-1: USB disconnect, device number 14
[  569.939227][ T4972] bcm5974 5-1:1.0: could not read from device
[  570.260725][T12477] usb 8-1: new high-speed USB device number 15 using dummy_hcd
[  570.284937][T18440] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  570.327571][T18443] 9p: Bad value for 'rfdno'
[  570.430510][T12477] usb 8-1: Using ep0 maxpacket: 8
[  570.466514][T12477] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  570.493770][T12477] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  570.535412][T12477] usb 8-1: New USB device found, idVendor=1b96, idProduct=0012, bcdDevice= 0.00
[  570.576125][T12477] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  570.662255][T12477] usb 8-1: config 0 descriptor??
[  570.946572][T18464] fuse: fd is not a fuse device
[  571.113544][T12477] ntrig 0003:1B96:0012.001A: unknown main item tag 0x0
[  571.143148][T12477] ntrig 0003:1B96:0012.001A: unknown main item tag 0x0
[  571.166456][T12477] ntrig 0003:1B96:0012.001A: unknown main item tag 0x0
[  571.197043][T12477] ntrig 0003:1B96:0012.001A: unknown main item tag 0x0
[  571.225699][T12477] ntrig 0003:1B96:0012.001A: unknown main item tag 0x0
[  571.260295][T12477] ntrig 0003:1B96:0012.001A: unknown main item tag 0x0
[  571.278969][T12477] ntrig 0003:1B96:0012.001A: unknown main item tag 0x0
[  571.296556][T12477] ntrig 0003:1B96:0012.001A: unknown main item tag 0x0
[  571.326488][T12477] ntrig 0003:1B96:0012.001A: unknown main item tag 0x0
[  571.344570][T18475] netlink: 36 bytes leftover after parsing attributes in process `syz.4.4339'.
[  571.347889][T12477] ntrig 0003:1B96:0012.001A: unknown main item tag 0x0
[  571.396707][T12477] ntrig 0003:1B96:0012.001A: hidraw0: USB HID v0.04 Device [HID 1b96:0012] on usb-dummy_hcd.7-1/input0
[  571.434421][T12477] ntrig 0003:1B96:0012.001A: Firmware version: 3.13.27.34.2 (7736 4a7c)
[  571.683575][   T29] usb 8-1: USB disconnect, device number 15
[  571.760926][ T5751] usb 10-1: new high-speed USB device number 11 using dummy_hcd
[  571.946606][ T5751] usb 10-1: Using ep0 maxpacket: 16
[  571.970353][ T5751] usb 10-1: too many configurations: 112, using maximum allowed: 8
[  572.001116][ T5751] usb 10-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  572.031572][ T5751] usb 10-1: config 0 has no interfaces?
[  572.065096][ T5751] usb 10-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  572.099781][ T5751] usb 10-1: config 0 has no interfaces?
[  572.113984][ T5751] usb 10-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  572.141685][ T5751] usb 10-1: config 0 has no interfaces?
[  572.163324][ T5751] usb 10-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  572.202479][ T5751] usb 10-1: config 0 has no interfaces?
[  572.221857][ T5751] usb 10-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  572.257571][ T5751] usb 10-1: config 0 has no interfaces?
[  572.285614][ T5751] usb 10-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  572.323487][ T5751] usb 10-1: config 0 has no interfaces?
[  572.350545][ T5751] usb 10-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  572.380793][ T5751] usb 10-1: config 0 has no interfaces?
[  572.399570][ T5751] usb 10-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  572.427527][T18504] Invalid ELF header len 5
[  572.437026][ T5751] usb 10-1: config 0 has no interfaces?
[  572.466056][ T5751] usb 10-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[  572.504843][ T5751] usb 10-1: New USB device strings: Mfr=144, Product=246, SerialNumber=0
[  572.539331][ T5751] usb 10-1: Product: syz
[  572.558489][ T5751] usb 10-1: Manufacturer: syz
[  572.599123][ T5751] r8152-cfgselector 10-1: Unknown version 0x0000
[  572.633809][ T5751] r8152-cfgselector 10-1: config 0 descriptor??
[  573.044646][T18471] loop9: detected capacity change from 0 to 256
[  573.092786][T18513] loop4: detected capacity change from 0 to 32768
[  573.107280][T18471] exfat: Deprecated parameter 'utf8'
[  573.137407][T18513] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  573.159652][T18521] loop7: detected capacity change from 0 to 1024
[  573.216282][T18513] XFS (loop4): Ending clean mount
[  573.234873][T18513] XFS (loop4): Quotacheck needed: Please wait.
[  573.256930][T18471] exFAT-fs (loop9): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d)
[  573.332121][T18521] EXT4-fs: Ignoring removed mblk_io_submit option
[  573.391496][T18513] XFS (loop4): Quotacheck: Done.
[  573.497708][ T5750] r8152-cfgselector 10-1: USB disconnect, device number 11
[  573.511242][T16787] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  573.521318][T18521] EXT4-fs (loop7): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  573.570578][T18521] ext4 filesystem being mounted at /337/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  573.667221][T18521] EXT4-fs error (device loop7): ext4_map_blocks:833: inode #15: comm syz.7.4357: lblock 0 mapped to illegal pblock 0 (length 1)
[  574.007497][T11825] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  574.651447][T18550] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4367'.
[  574.690031][T18550] netlink: 'syz.0.4367': attribute type 5 has an invalid length.
[  574.723097][T18550] netlink: 48 bytes leftover after parsing attributes in process `syz.0.4367'.
[  574.831242][T18550] geneve3: entered promiscuous mode
[  574.857063][T18550] geneve3: entered allmulticast mode
[  574.884254][  T139] netdevsim netdevsim0 netdevsim0: set [1, 2] type 2 family 0 port 60586 - 0
[  574.914798][  T139] netdevsim netdevsim0 netdevsim1: set [1, 2] type 2 family 0 port 60586 - 0
[  574.954428][  T139] netdevsim netdevsim0 netdevsim2: set [1, 2] type 2 family 0 port 60586 - 0
[  575.004504][  T139] netdevsim netdevsim0 netdevsim3: set [1, 2] type 2 family 0 port 60586 - 0
[  575.782400][T18578] loop7: detected capacity change from 0 to 16
[  575.817283][T18578] erofs (device loop7): mounted with root inode @ nid 36.
[  575.863699][T18561] loop0: detected capacity change from 0 to 32768
[  575.909254][T18561] ocfs2: Slot 0 on device (7,0) was already allocated to this node!
[  575.948479][T18561] JBD2: Ignoring recovery information on journal
[  576.166099][T18561] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  576.341727][ T5751] usb 10-1: new high-speed USB device number 12 using dummy_hcd
[  576.420607][T18561] (syz.0.4372,18561,0):ocfs2_check_dir_entry:314 ERROR: directory entry (#65: offset=512) too close to end or out-of-bounds
[  576.438252][T18561] (syz.0.4372,18561,0):ocfs2_find_dir_space_el:3546 ERROR: status = -2
[  576.464682][T18561] (syz.0.4372,18561,0):ocfs2_prepare_dir_for_insert:4342 ERROR: status = -2
[  576.520268][ T5751] usb 10-1: Using ep0 maxpacket: 32
[  576.532192][ T5751] usb 10-1: config index 0 descriptor too short (expected 29220, got 36)
[  576.547154][ T5751] usb 10-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  576.567236][T18561] (syz.0.4372,18561,1):ocfs2_mknod:302 ERROR: status = -2
[  576.588313][T18561] (syz.0.4372,18561,1):ocfs2_mknod:506 ERROR: status = -2
[  576.595573][ T5751] usb 10-1: config 0 has 1 interface, different from the descriptor's value: 81
[  576.622902][T18592] loop7: detected capacity change from 0 to 128
[  576.630345][ T5751] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  576.643815][T18561] (syz.0.4372,18561,1):ocfs2_create:679 ERROR: status = -2
[  576.671478][ T5751] usb 10-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  576.701510][ T5751] usb 10-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  576.746298][ T5751] usb 10-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  576.781862][ T5751] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  576.845621][ T5751] usb 10-1: config 0 descriptor??
[  576.890737][T12479] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[  576.904668][T15762] ocfs2: Unmounting device (7,0) on (node local)
[  577.080591][T12479] usb 5-1: Using ep0 maxpacket: 32
[  577.110988][ T5751] usblp 10-1:0.0: usblp0: USB Bidirectional printer dev 12 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  577.111664][T12479] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  577.220333][T12479] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  577.241529][T12479] usb 5-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  577.279994][T12479] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  577.304369][T12479] usb 5-1: config 0 descriptor??
[  577.395223][T12477] usb 10-1: USB disconnect, device number 12
[  577.409721][T12477] usblp0: removed
[  577.795879][T12479] savu 0003:1E7D:2D5A.001B: hiddev0,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.4-1/input0
[  577.804034][T18618] loop7: detected capacity change from 0 to 4096
[  577.904281][T18625] NILFS (loop7): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  578.114556][T12479] usb 5-1: USB disconnect, device number 15
[  578.802551][T18636] loop0: detected capacity change from 0 to 1024
[  578.874237][T18636] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  578.875009][T18642] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  578.937317][T18646] netlink: 'syz.2.4406': attribute type 21 has an invalid length.
[  578.987493][T18646] netlink: 128 bytes leftover after parsing attributes in process `syz.2.4406'.
[  579.067987][T18648] netlink: 'syz.2.4406': attribute type 21 has an invalid length.
[  579.096615][T18648] netlink: 128 bytes leftover after parsing attributes in process `syz.2.4406'.
[  579.096707][T18646] netlink: 3 bytes leftover after parsing attributes in process `syz.2.4406'.
[  579.156178][T15762] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  579.253853][T18648] netlink: 3 bytes leftover after parsing attributes in process `syz.2.4406'.
[  579.562987][T18655] loop9: detected capacity change from 0 to 32768
[  579.570653][T18655] btrfs: Deprecated parameter 'usebackuproot'
[  579.576715][T18655] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  579.598397][T18655] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop9 (7:9) scanned by syz.9.4410 (18655)
[  579.623967][T18655] BTRFS info (device loop9): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  579.634110][T18655] BTRFS info (device loop9): using crc32c checksum algorithm
[  579.753139][T10431] BTRFS warning (device loop9): checksum verify failed on logical 5337088 mirror 1 wanted 0xe63dbdda found 0xc926492d level 0
[  579.808335][T18672] qnx4: no qnx4 filesystem (no root dir).
[  579.816752][T18655] BTRFS error (device loop9): failed to load root extent
[  579.825902][T18655] BTRFS warning (device loop9): try to load backup roots slot 1
[  579.841401][T10419] BTRFS warning (device loop9): checksum verify failed on logical 5324800 mirror 1 wanted 0x9f73850b found 0x80379423 level 0
[  579.942555][T18655] BTRFS warning (device loop9): couldn't read tree root
[  579.949576][T18655] BTRFS warning (device loop9): try to load backup roots slot 2
[  579.967809][T10419] BTRFS error (device loop9): level verify failed on logical 5255168 mirror 1 wanted 0 found 1
[  580.046823][T18655] BTRFS warning (device loop9): couldn't read tree root
[  580.054785][T18655] BTRFS warning (device loop9): try to load backup roots slot 3
[  580.085108][T18655] BTRFS info (device loop9): rebuilding free space tree
[  580.148330][T18655] BTRFS info (device loop9): checking UUID tree
[  580.156425][T18655] BTRFS info (device loop9): enabling ssd optimizations
[  580.163464][T18655] BTRFS info (device loop9): turning on sync discard
[  580.170187][T18655] BTRFS info (device loop9): enabling free space tree
[  580.176957][T18655] BTRFS info (device loop9): force clearing of disk cache
[  580.184436][T18655] BTRFS info (device loop9): enabling auto defrag
[  580.190918][T18655] BTRFS info (device loop9): trying to use backup root at mount time
[  580.199020][T18655] BTRFS info (device loop9): use zstd compression, level 3
[  580.465678][T18696] loop7: detected capacity change from 0 to 512
[  580.486067][T13925] BTRFS info (device loop9): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  580.506873][T18696] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  580.616412][T18696] EXT4-fs (loop7): 1 orphan inode deleted
[  580.650073][T18696] EXT4-fs (loop7): 1 truncate cleaned up
[  580.692800][T18696] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  580.840264][T18696] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1317: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  580.935134][T18696] EXT4-fs (loop7): Remounting filesystem read-only
[  580.989707][T18696] EXT4-fs (loop7): error restoring inline_data for inode -- potential data loss! (inode 12, error -30)
[  581.258881][T11825] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  581.751125][T18727] loop4: detected capacity change from 0 to 512
[  581.779416][T18727] EXT4-fs: Ignoring removed mblk_io_submit option
[  581.850028][T18727] EXT4-fs error (device loop4): ext4_iget_extra_inode:5128: inode #15: comm syz.4.4432: corrupted in-inode xattr: e_value size too large
[  581.891931][T18727] loop4: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  581.900083][    C1] EXT4-fs (loop4): error count since last fsck: 1
[  581.915728][    C1] EXT4-fs (loop4): initial error at time 1779489712: ext4_iget_extra_inode:5128: inode 15
[  581.925713][    C1] EXT4-fs (loop4): last error at time 1779489712: ext4_iget_extra_inode:5128: inode 15
[  581.959149][T18727] EXT4-fs error (device loop4): ext4_orphan_get:1402: comm syz.4.4432: couldn't read orphan inode 15 (err -117)
[  581.971216][T18727] loop4: lost filesystem error report for type 5 error -117
[  582.009283][T18727] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  582.244653][T18727] EXT4-fs error (device loop4): ext4_append:79: inode #2: comm syz.4.4432: Logical block already allocated
[  582.405376][T16787] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  582.650109][T18745] netlink: 27 bytes leftover after parsing attributes in process `syz.4.4438'.
[  582.662918][T18740] A link change request failed with some changes committed already. Interface veth0_vlan may have been left with an inconsistent configuration, please check.
[  582.689243][T18747] netlink: 51 bytes leftover after parsing attributes in process `syz.7.4439'.
[  583.427768][T18716] loop5: detected capacity change from 0 to 32768
[  583.832996][T18768] loop4: detected capacity change from 0 to 40427
[  583.845710][T18768] F2FS-fs (loop4): invalid crc value
[  583.926256][T18768] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  583.943467][T18768] F2FS-fs (loop4): Start checkpoint disabled!
[  583.956867][T18768] F2FS-fs (loop4): f2fs_disable_checkpoint() finish, err:0
[  583.966003][T18768] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6
[  584.075664][T10431] kworker/u8:15: attempt to access beyond end of device
[  584.075664][T10431] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  584.152128][T10431] CPU: 1 UID: 0 PID: 10431 Comm: kworker/u8:15 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  584.152166][T10431] Tainted: [L]=SOFTLOCKUP
[  584.152177][T10431] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  584.152194][T10431] Workqueue: writeback wb_workfn (flush-7:4)
[  584.152248][T10431] Call Trace:
[  584.152258][T10431]  <TASK>
[  584.152269][T10431]  dump_stack_lvl+0xe8/0x150
[  584.152303][T10431]  f2fs_stop_checkpoint+0x3c7/0x590
[  584.152341][T10431]  f2fs_write_end_io+0x1274/0x1740
[  584.152407][T10431]  __submit_merged_bio+0x256/0x6a0
[  584.152447][T10431]  __submit_merged_write_cond+0x3c9/0x4e0
[  584.152493][T10431]  ? __pfx___submit_merged_write_cond+0x10/0x10
[  584.152543][T10431]  ? srso_alias_return_thunk+0x5/0xfbef5
[  584.152586][T10431]  f2fs_write_data_pages+0x287e/0x34f0
[  584.152618][T10431]  ? f2fs_build_free_nids+0xdc/0x1810
[  584.152700][T10431]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  584.152754][T10431]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[  584.152842][T10431]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[  584.152900][T10431]  ? srso_alias_return_thunk+0x5/0xfbef5
[  584.152962][T10431]  ? srso_alias_return_thunk+0x5/0xfbef5
[  584.152994][T10431]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  584.153030][T10431]  do_writepages+0x32e/0x550
[  584.153068][T10431]  ? srso_alias_return_thunk+0x5/0xfbef5
[  584.153098][T10431]  ? reacquire_held_locks+0x104/0x190
[  584.153136][T10431]  ? writeback_sb_inodes+0x463/0x19d0
[  584.153176][T10431]  __writeback_single_inode+0x133/0x10e0
[  584.153209][T10431]  ? do_raw_spin_unlock+0xf5/0x210
[  584.153255][T10431]  writeback_sb_inodes+0x979/0x19d0
[  584.153284][T10431]  ? __lock_acquire+0x6b5/0x2cf0
[  584.153322][T10431]  ? srso_alias_return_thunk+0x5/0xfbef5
[  584.153367][T10431]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  584.153417][T10431]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  584.153445][T10431]  ? do_raw_spin_lock+0x12b/0x2f0
[  584.153541][T10431]  ? srso_alias_return_thunk+0x5/0xfbef5
[  584.153571][T10431]  ? rcu_is_watching+0x15/0xb0
[  584.153603][T10431]  ? srso_alias_return_thunk+0x5/0xfbef5
[  584.153645][T10431]  wb_writeback+0x445/0xb00
[  584.153695][T10431]  ? queue_io+0x261/0x470
[  584.153738][T10431]  ? __pfx_wb_writeback+0x10/0x10
[  584.153765][T10431]  ? do_raw_spin_lock+0x12b/0x2f0
[  584.153827][T10431]  wb_workfn+0x3f8/0xf10
[  584.153864][T10431]  ? srso_alias_return_thunk+0x5/0xfbef5
[  584.153893][T10431]  ? look_up_lock_class+0x57/0x110
[  584.153959][T10431]  ? __pfx_wb_workfn+0x10/0x10
[  584.153996][T10431]  ? srso_alias_return_thunk+0x5/0xfbef5
[  584.154029][T10431]  ? srso_alias_return_thunk+0x5/0xfbef5
[  584.154065][T10431]  ? srso_alias_return_thunk+0x5/0xfbef5
[  584.154094][T10431]  ? do_raw_spin_unlock+0xf5/0x210
[  584.154146][T10431]  ? srso_alias_return_thunk+0x5/0xfbef5
[  584.154181][T10431]  ? srso_alias_return_thunk+0x5/0xfbef5
[  584.154219][T10431]  ? srso_alias_return_thunk+0x5/0xfbef5
[  584.154253][T10431]  ? process_scheduled_works+0xa70/0x1860
[  584.154281][T10431]  ? process_scheduled_works+0xa70/0x1860
[  584.154312][T10431]  process_scheduled_works+0xb5d/0x1860
[  584.154340][T10431]  ? srso_alias_return_thunk+0x5/0xfbef5
[  584.154416][T10431]  ? __pfx_process_scheduled_works+0x10/0x10
[  584.154454][T10431]  ? srso_alias_return_thunk+0x5/0xfbef5
[  584.154484][T10431]  ? assign_work+0x3d5/0x5e0
[  584.154520][T10431]  worker_thread+0xa53/0xfc0
[  584.154575][T10431]  ? srso_alias_return_thunk+0x5/0xfbef5
[  584.154619][T10431]  kthread+0x389/0x470
[  584.154655][T10431]  ? __pfx_worker_thread+0x10/0x10
[  584.154680][T10431]  ? __pfx_kthread+0x10/0x10
[  584.154718][T10431]  ret_from_fork+0x514/0xb70
[  584.154751][T10431]  ? __pfx_ret_from_fork+0x10/0x10
[  584.154779][T10431]  ? srso_alias_return_thunk+0x5/0xfbef5
[  584.154809][T10431]  ? __switch_to+0xc79/0x1410
[  584.154852][T10431]  ? __pfx_kthread+0x10/0x10
[  584.154889][T10431]  ret_from_fork_asm+0x1a/0x30
[  584.154947][T10431]  </TASK>
[  584.548381][T18780] loop0: detected capacity change from 0 to 128
[  584.556946][T10431] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  584.962184][T18780] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  585.062443][T18780] ext4 filesystem being mounted at /146/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  585.181696][T18794] netlink: 212368 bytes leftover after parsing attributes in process `syz.9.4461'.
[  585.517211][T15762] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  585.727799][T12479] libceph: connect (1)[c::]:6789 error -101
[  585.757687][T12479] libceph: mon0 (1)[c::]:6789 connect error
[  585.891878][T18796] ceph: No mds server is up or the cluster is laggy
[  585.902123][T12479] libceph: connect (1)[c::]:6789 error -101
[  585.939070][T12479] libceph: mon0 (1)[c::]:6789 connect error
[  586.811048][ T5751] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  587.000193][ T5751] usb 1-1: Using ep0 maxpacket: 16
[  587.038988][ T5751] usb 1-1: config 0 has an invalid interface number: 34 but max is 0
[  587.058414][ T5751] usb 1-1: config 0 has no interface number 0
[  587.084885][ T5751] usb 1-1: config 0 interface 34 altsetting 0 bulk endpoint 0xA has invalid maxpacket 1023
[  587.145644][ T5751] usb 1-1: config 0 interface 34 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 80
[  587.190064][ T5751] usb 1-1: New USB device found, idVendor=0b95, idProduct=772a, bcdDevice=82.73
[  587.223790][ T5751] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  587.251397][ T5751] usb 1-1: Product: syz
[  587.254752][T18856] fuse: fd is not a fuse device
[  587.269124][ T5751] usb 1-1: Manufacturer: syz
[  587.283613][ T5751] usb 1-1: SerialNumber: syz
[  587.327835][ T5751] usb 1-1: config 0 descriptor??
[  587.349624][T18834] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  587.371454][T18834] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  587.625632][T18834] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  587.658837][T18834] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  588.058523][T18884] netlink: 'syz.2.4498': attribute type 7 has an invalid length.
[  588.132733][T18884] netlink: 'syz.2.4498': attribute type 7 has an invalid length.
[  588.141085][  T139] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  588.169237][T10431] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  588.236999][T10431] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  588.270792][  T132] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  588.315024][T18889] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4500'.
[  588.354491][T18890] input: syz0 as /devices/virtual/input/input30
[  588.383967][T18890] input: failed to attach handler leds to device input30, error: -6
[  588.692100][ T5751] asix 1-1:0.34 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[  588.733435][ T5751] asix 1-1:0.34: probe with driver asix failed with error -71
[  588.774841][ T5751] usb 1-1: USB disconnect, device number 12
[  588.833779][T18899] loop9: detected capacity change from 0 to 736
[  588.864682][T18899] iso9660: Unknown parameter '¡Ì/*b:œÇ'
[  588.981107][T18903] netlink: 24 bytes leftover after parsing attributes in process `syz.7.4506'.
[  589.164656][T18907] netlink: 20 bytes leftover after parsing attributes in process `syz.2.4508'.
[  589.734868][ T5751] libceph: connect (1)[c::]:6789 error -101
[  589.780422][ T5751] libceph: mon0 (1)[c::]:6789 connect error
[  589.826071][T12479] libceph: connect (1)[c::]:6789 error -101
[  589.876258][T12479] libceph: mon0 (1)[c::]:6789 connect error
[  590.092969][ T5751] libceph: connect (1)[c::]:6789 error -101
[  590.119282][ T5751] libceph: mon0 (1)[c::]:6789 connect error
[  590.181504][T12479] libceph: connect (1)[c::]:6789 error -101
[  590.229383][T12479] libceph: mon0 (1)[c::]:6789 connect error
[  590.508924][T18924] ceph: No mds server is up or the cluster is laggy
[  590.536664][T18930] ceph: No mds server is up or the cluster is laggy
[  590.635547][ T5625] libceph: connect (1)[c::]:6789 error -101
[  590.656359][ T5625] libceph: mon0 (1)[c::]:6789 connect error
[  590.765258][T12479] libceph: connect (1)[c::]:6789 error -101
[  590.808965][T12479] libceph: mon0 (1)[c::]:6789 connect error
[  591.097481][T18955] loop9: detected capacity change from 0 to 128
[  591.215224][T18955] syz.9.4527: attempt to access beyond end of device
[  591.215224][T18955] loop9: rw=1, sector=145, nr_sectors = 65 limit=128
[  592.784821][T18993] syzkaller1: entered allmulticast mode
[  592.857931][ T5751] kernel write not supported for file bpf-map (pid: 5751 comm: kworker/1:5)
[  593.652454][T19018] overlayfs: failed to clone upperpath
[  593.922494][T12479] usb 8-1: new high-speed USB device number 16 using dummy_hcd
[  594.032971][T19027] netlink: 212348 bytes leftover after parsing attributes in process `syz.2.4557'.
[  594.120402][T12479] usb 8-1: Using ep0 maxpacket: 8
[  594.155381][T12479] usb 8-1: New USB device found, idVendor=0c45, idProduct=613e, bcdDevice=c4.6d
[  594.186564][T12479] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  594.218695][T12479] usb 8-1: Product: syz
[  594.233077][T12479] usb 8-1: Manufacturer: syz
[  594.251532][T12479] usb 8-1: SerialNumber: syz
[  594.281863][T12479] usb 8-1: config 0 descriptor??
[  594.322687][T12479] gspca_main: sonixj-2.14.0 probing 0c45:613e
[  595.549735][T19057] loop5: detected capacity change from 0 to 512
[  595.564335][T12479] gspca_sonixj: reg_w1 err -71
[  595.620163][T12479] sonixj 8-1:0.0: probe with driver sonixj failed with error -71
[  595.667305][T12479] usb 8-1: USB disconnect, device number 16
[  596.249454][T19064] Invalid ELF header magic: != ELF
[  596.318493][T19066] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4574'.
[  596.625582][T19072] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4576'.
[  597.013990][T19072] vxlan0: entered promiscuous mode
[  597.166249][   T12] netdevsim netdevsim7 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  597.201956][   T12] netdevsim netdevsim7 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  597.256540][   T12] netdevsim netdevsim7 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  597.296683][   T12] netdevsim netdevsim7 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  598.158181][T19101] xt_hashlimit: size too large, truncated to 1048576
[  600.160653][T19143] loop9: detected capacity change from 0 to 512
[  600.265222][T19143] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  600.728269][T13925] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  602.649626][T19201] loop0: detected capacity change from 0 to 128
[  602.693220][T19201] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  602.763578][T19201] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  602.968843][  T132] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  603.970451][T19229] overlayfs: failed to clone upperpath
[  604.553799][T12479] usb 10-1: new high-speed USB device number 13 using dummy_hcd
[  604.689821][T19254] netlink: 'syz.7.4650': attribute type 1 has an invalid length.
[  604.752003][T19254] 8021q: adding VLAN 0 to HW filter on device bond1
[  604.760332][T12479] usb 10-1: Using ep0 maxpacket: 8
[  604.767276][T12479] usb 10-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  604.777573][T12479] usb 10-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  604.791357][T12479] usb 10-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  604.801803][T12479] usb 10-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  604.815221][T12479] usb 10-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  604.824914][T12479] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  604.871979][T19261] bond1: (slave veth0_to_bond): Enslaving as an active interface with an up link
[  605.013068][T19265] loop0: detected capacity change from 0 to 128
[  605.032994][T19265] EXT4-fs (loop0): Test dummy encryption mode enabled
[  605.072426][T12479] usb 10-1: GET_CAPABILITIES returned 0
[  605.113582][T12479] usbtmc 10-1:16.0: can't read capabilities
[  605.124762][T19265] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  605.156299][T19265] ext4 filesystem being mounted at /176/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  605.345646][T12479] usb 10-1: USB disconnect, device number 13
[  605.441604][T15762] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  606.151000][T12475] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[  606.264521][T19295] could not open pipe file descriptor
[  606.290758][T12479] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  606.310334][T12475] usb 5-1: Using ep0 maxpacket: 8
[  606.324169][T12475] usb 5-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2e.04
[  606.344872][T12475] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  606.366560][T12475] usb 5-1: Product: syz
[  606.376557][T12475] usb 5-1: Manufacturer: syz
[  606.382953][T12475] usb 5-1: SerialNumber: syz
[  606.396214][T12475] usb 5-1: config 0 descriptor??
[  606.460345][T12479] usb 1-1: Using ep0 maxpacket: 32
[  606.468237][T12479] usb 1-1: config 0 has no interfaces?
[  606.478689][T12479] usb 1-1: New USB device found, idVendor=0fd9, idProduct=0021, bcdDevice=29.40
[  606.488239][T12479] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  606.518540][T12479] usb 1-1: config 0 descriptor??
[  606.615441][T12475] usb 5-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  606.854847][ T5751] usb 1-1: USB disconnect, device number 13
[  607.051558][T19302] loop9: detected capacity change from 0 to 32768
[  607.059093][T19302] btrfs: Deprecated parameter 'usebackuproot'
[  607.065301][T19302] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  607.090392][T12475] dvb_usb_rtl28xxu 5-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[  607.102613][T19302] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop9 (7:9) scanned by syz.9.4667 (19302)
[  607.154130][T12475] usb 5-1: USB disconnect, device number 16
[  607.176006][T19302] BTRFS info (device loop9): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  607.188965][T19302] BTRFS info (device loop9): using crc32c checksum algorithm
[  607.307970][  T139] BTRFS warning (device loop9): checksum verify failed on logical 5337088 mirror 1 wanted 0xe63dbdda found 0xc926492d level 0
[  607.490336][ T5751] usb 8-1: new high-speed USB device number 17 using dummy_hcd
[  607.838550][ T5751] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  607.867391][T19302] BTRFS error (device loop9): failed to load root extent
[  607.874916][T19302] BTRFS warning (device loop9): try to load backup roots slot 1
[  607.883144][  T139] BTRFS warning (device loop9): checksum verify failed on logical 5324800 mirror 1 wanted 0x9f73850b found 0x80379423 level 0
[  607.920625][T19302] BTRFS warning (device loop9): couldn't read tree root
[  607.927723][T19302] BTRFS warning (device loop9): try to load backup roots slot 2
[  607.944414][  T132] BTRFS error (device loop9): level verify failed on logical 5255168 mirror 1 wanted 0 found 1
[  607.986459][ T5751] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  608.014023][T19302] BTRFS warning (device loop9): couldn't read tree root
[  608.021525][T19302] BTRFS warning (device loop9): try to load backup roots slot 3
[  608.053590][T19302] BTRFS info (device loop9): rebuilding free space tree
[  608.071928][ T5751] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  608.100703][T19302] BTRFS info (device loop9): checking UUID tree
[  608.117694][T19302] BTRFS info (device loop9): enabling ssd optimizations
[  608.125295][T19302] BTRFS info (device loop9): turning on async discard
[  608.132136][T19302] BTRFS info (device loop9): enabling free space tree
[  608.139886][T19302] BTRFS info (device loop9): force clearing of disk cache
[  608.147987][T19302] BTRFS info (device loop9): enabling auto defrag
[  608.154520][T19302] BTRFS info (device loop9): trying to use backup root at mount time
[  608.162636][T19302] BTRFS info (device loop9): use zstd compression, level 3
[  608.205321][ T5751] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  608.337219][ T5751] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  608.357468][ T5751] usb 8-1: config 0 descriptor??
[  608.491914][T19331] loop5: detected capacity change from 0 to 2048
[  608.957689][ T5751] plantronics 0003:047F:FFFF.001C: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.7-1/input0
[  609.447117][T13925] BTRFS info (device loop9): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  609.887853][   T30] audit: type=1800 audit(1779489740.202:169): pid=19354 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.4683" name="nullb0" dev="tmpfs" ino=2675 res=0 errno=0
[  610.033379][T12476] usb 8-1: USB disconnect, device number 17
[  610.050042][T12475] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[  610.237470][T12475] usb 5-1: Using ep0 maxpacket: 16
[  610.264457][T12475] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  610.326895][T12475] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  610.406730][T12475] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  610.458679][T12475] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  610.535863][T12475] usb 5-1: config 0 descriptor??
[  611.030122][T19377] fuse: fd is not a fuse device
[  611.067044][T12475] HID 045e:07da: Invalid code 65791 type 1
[  611.077137][T19377] fuse: fd is not a fuse device
[  611.119036][T19377] fuse: fd is not a fuse device
[  611.144351][T12475] input: HID 045e:07da as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/0003:045E:07DA.001D/input/input31
[  611.419872][T12475] microsoft 0003:045E:07DA.001D: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.4-1/input0
[  611.493997][T19382] veth4: entered promiscuous mode
[  611.517419][T19382] veth4: entered allmulticast mode
[  611.835319][T12475] usb 5-1: USB disconnect, device number 17
[  611.876217][T19394] loop5: detected capacity change from 0 to 512
[  612.049469][T19390] fido_id[19390]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.4/usb5/5-1/report_descriptor': No such file or directory
[  612.243124][T19398] netlink: 212368 bytes leftover after parsing attributes in process `syz.0.4700'.
[  612.312721][T19395] IPVS: Scheduler module ip_vs_ not found
[  612.719458][T19409] loop7: detected capacity change from 0 to 512
[  612.761536][T19409] EXT4-fs: Ignoring removed oldalloc option
[  612.872180][T19409] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  613.561775][T11825] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  613.928371][T19441] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4717'.
[  614.101451][T12475] usb 8-1: new high-speed USB device number 18 using dummy_hcd
[  614.215261][T19449] netlink: 64 bytes leftover after parsing attributes in process `syz.2.4720'.
[  614.291971][T12475] usb 8-1: Using ep0 maxpacket: 16
[  614.327406][T12475] usb 8-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83
[  614.349325][T12476] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  614.375293][T12475] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  614.406574][T12475] usb 8-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  614.424950][T12475] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  614.443857][T12475] usb 8-1: Product: syz
[  614.461008][T12475] usb 8-1: Manufacturer: syz
[  614.477105][T12475] usb 8-1: SerialNumber: syz
[  614.503772][T12475] usb 8-1: config 0 descriptor??
[  614.535964][T12475] em28xx 8-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  614.548176][T12476] usb 1-1: too many endpoints for config 0 interface 0 altsetting 0: 196, using maximum allowed: 30
[  614.561162][T12475] em28xx 8-1:0.0: Audio interface 0 found (Vendor Class)
[  614.568803][T12476] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  614.597902][T12476] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  614.627742][T12476] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 196
[  614.668503][T12476] usb 1-1: New USB device found, idVendor=04d9, idProduct=a055, bcdDevice= 0.00
[  614.715081][T12476] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  614.843304][T12476] usb 1-1: config 0 descriptor??
[  615.168620][T12475] em28xx 8-1:0.0: unknown em28xx chip ID (0)
[  615.191503][T12475] em28xx 8-1:0.0: Config register raw data: 0xff
[  615.223403][T19474] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4729'.
[  615.225170][T12475] em28xx 8-1:0.0: I2S Audio (3 sample rate(s))
[  615.288702][T12475] em28xx 8-1:0.0: No AC97 audio processor
[  615.311048][T12476] holtek_kbd 0003:04D9:A055.001E: bogus close delimiter
[  615.335899][T12476] holtek_kbd 0003:04D9:A055.001E: item 0 4 2 10 parsing failed
[  615.361771][T12476] holtek_kbd 0003:04D9:A055.001E: probe with driver holtek_kbd failed with error -22
[  615.548305][T12476] usb 1-1: USB disconnect, device number 14
[  615.644132][T12475] usb 8-1: USB disconnect, device number 18
[  616.087236][T19477] 8021q: adding VLAN 0 to HW filter on device 

[  616.116328][T19471] loop4: detected capacity change from 0 to 32768
[  616.139618][T19477] 8021q: adding VLAN 0 to HW filter on device team0
[  616.256305][T19477] 8021q: adding VLAN 0 to HW filter on device batadv0
[  616.424751][  T132] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  616.436732][   T36] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  616.521736][ T5816] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  616.547385][T10419] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  616.774345][T19477] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  616.843864][T19477] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  616.936050][T19477] veth1_macvtap: left promiscuous mode
[  616.981337][T19477] veth0_macvtap: left promiscuous mode
[  616.996580][T19484] loop0: detected capacity change from 0 to 8192
[  617.031517][T19477] veth0_macvtap: entered promiscuous mode
[  617.056607][T19477] veth1_macvtap: entered promiscuous mode
[  617.173529][T19477] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  617.216752][T19477] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  617.274533][T19477] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  617.335238][T19477] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  617.405200][T19477] 8021q: adding VLAN 0 to HW filter on device team1
[  617.441758][T19484] FAT-fs (loop0): error, clusters badly computed (2 != 1)
[  617.481220][T12475] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  617.492450][T19484] FAT-fs (loop0): Filesystem has been set read-only
[  618.042544][T10419] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  618.120241][T10419] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  618.538374][T19480] loop9: detected capacity change from 0 to 40427
[  618.556261][T10419] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  618.658924][T19480] F2FS-fs: heap/no_heap options were deprecated
[  618.688680][   T12] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  618.771122][T19480] F2FS-fs (loop9): build fault injection rate: 19
[  618.876971][T19480] F2FS-fs (loop9): build fault injection type: 0x3bfe8c
[  618.901648][T12476] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  618.991505][T19480] F2FS-fs (loop9): invalid crc value
[  619.015314][T19480] F2FS-fs (loop9): inject page alloc in f2fs_grab_cache_folio of f2fs_build_free_nids+0x9d8/0x1810
[  619.029930][ T5751] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  619.075916][T19504] loop7: detected capacity change from 0 to 131072
[  619.087363][T19504] F2FS-fs (loop7): invalid crc value
[  619.112887][T12477] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  619.203407][  T132] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  619.277376][T19504] F2FS-fs (loop7): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  619.297855][T19504] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e4
[  619.356701][  T132] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  619.397968][T19504] F2FS-fs (loop7): Stopped filesystem due to reason: 0
[  619.444366][T19504] F2FS-fs (loop7): f2fs_lookup: inode (ino=4) has zero i_nlink
[  619.652927][T19480] F2FS-fs (loop9): inject slab alloc in f2fs_kmem_cache_alloc of read_node_folio+0x221/0x410
[  619.794065][T12475] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  619.939339][T19480] F2FS-fs (loop9): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  620.046033][T19480] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e5
[  620.067451][ T5751] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  620.235208][   T36] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  620.383128][   T12] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  620.448973][   T12] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  621.080897][T12476] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  621.664189][  T132] net_ratelimit: 2 callbacks suppressed
[  621.664212][  T132] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  621.682813][  T132] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  621.773951][T10431] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  622.307563][  T132] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  622.379412][T19559] overlayfs: statfs failed on './file0'
[  623.195527][T19597] loop4: detected capacity change from 0 to 128
[  623.383197][T19597] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  623.458212][T19597] ext4 filesystem being mounted at /131/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  623.595840][ T1308] ieee802154 phy0 wpan0: encryption failed: -22
[  623.605522][ T1308] ieee802154 phy1 wpan1: encryption failed: -22
[  623.983958][ T5625] usb 8-1: new high-speed USB device number 19 using dummy_hcd
[  624.264583][ T5625] usb 8-1: Using ep0 maxpacket: 32
[  624.418548][ T5625] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  624.470630][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  624.544337][ T5625] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  624.564225][T19639] netlink: 'syz.5.4778': attribute type 4 has an invalid length.
[  624.656632][ T5625] usb 8-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  624.671079][T16787] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  624.678351][T19639] netlink: 'syz.5.4778': attribute type 4 has an invalid length.
[  624.693139][ T5625] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  624.702658][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  624.767734][ T5625] usb 8-1: config 0 descriptor??
[  624.848754][ T5625] hub 8-1:0.0: USB hub found
[  624.877433][T19643] Bluetooth: MGMT ver 1.23
[  625.051297][ T5625] hub 8-1:0.0: 1 port detected
[  625.463768][T19653] netlink: 'syz.5.4784': attribute type 1 has an invalid length.
[  625.499032][T19655] loop4: detected capacity change from 0 to 512
[  625.538518][T19655] EXT4-fs: Ignoring removed i_version option
[  625.642099][T19655] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  625.746143][T19655] ext4 filesystem being mounted at /133/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  625.773923][ T5625] hub 8-1:0.0: activate --> -90
[  625.785070][T19653] bond0: entered promiscuous mode
[  625.817045][T19653] bond0: entered allmulticast mode
[  625.823027][T12477] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  625.859325][T19653] 8021q: adding VLAN 0 to HW filter on device bond0
[  626.036073][T12477] usb 1-1: config 1 interface 0 has no altsetting 0
[  626.074287][T12477] usb 1-1: string descriptor 0 read error: -22
[  626.104775][T12477] usb 1-1: New USB device found, idVendor=0419, idProduct=0001, bcdDevice= 0.40
[  626.178033][T12477] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  626.189272][T12476] usb 8-1: USB disconnect, device number 19
[  626.312067][T16787] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  626.315230][T19668] netlink: 'syz.9.4788': attribute type 4 has an invalid length.
[  626.751603][T12477] hid_parser_main: 30 callbacks suppressed
[  626.751630][T12477] samsung 0003:0419:0001.001F: unknown main item tag 0x6
[  626.782529][ T5816] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  626.796999][T19676] netlink: 2 bytes leftover after parsing attributes in process `syz.9.4792'.
[  626.818169][T12477] samsung 0003:0419:0001.001F: item 0 0 0 8 parsing failed
[  626.868941][T12477] samsung 0003:0419:0001.001F: parse failed
[  626.895530][T12477] samsung 0003:0419:0001.001F: probe with driver samsung failed with error -22
[  627.012631][T12477] usb 1-1: USB disconnect, device number 15
[  627.429791][T10433] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  627.442515][T10421] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  627.452004][T19684] nbd5: detected capacity change from 0 to 63
[  627.465417][T19685] block nbd5: NBD_DISCONNECT
[  627.548752][T19685] block nbd5: Disconnected due to user request.
[  627.575400][T19685] block nbd5: shutting down sockets
[  627.624586][ T6301] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  627.640432][ T6301] buffer_io_error: 14 callbacks suppressed
[  627.640453][ T6301] Buffer I/O error on dev nbd5, logical block 0, async page read
[  627.755358][ T4955] I/O error, dev nbd5, sector 2 op 0x0:(READ) flags 0x0 phys_seg 3 prio class 2
[  627.774431][ T4955] Buffer I/O error on dev nbd5, logical block 1, async page read
[  627.783107][ T4955] Buffer I/O error on dev nbd5, logical block 2, async page read
[  627.791095][ T4955] Buffer I/O error on dev nbd5, logical block 3, async page read
[  627.810471][ T6301] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  627.880034][T12476] usb 10-1: new high-speed USB device number 14 using dummy_hcd
[  627.891962][ T6301] Buffer I/O error on dev nbd5, logical block 0, async page read
[  627.908026][ T6301] I/O error, dev nbd5, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  627.917322][ T6301] Buffer I/O error on dev nbd5, logical block 1, async page read
[  627.928821][ T6301] I/O error, dev nbd5, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  627.943298][ T6301] Buffer I/O error on dev nbd5, logical block 2, async page read
[  627.954101][ T6301] I/O error, dev nbd5, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  627.971873][ T6301] Buffer I/O error on dev nbd5, logical block 3, async page read
[  628.006961][ T6301] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  628.059736][T12476] usb 10-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  628.070536][T10433] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  628.093767][ T6301] Buffer I/O error on dev nbd5, logical block 0, async page read
[  628.142047][ T6301] I/O error, dev nbd5, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  628.180769][T12476] usb 10-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  628.204811][ T6301] Buffer I/O error on dev nbd5, logical block 1, async page read
[  628.247206][T12476] usb 10-1: config 0 interface 0 altsetting 4 endpoint 0x81 has invalid wMaxPacketSize 0
[  628.257878][ T6301] I/O error, dev nbd5, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  628.287791][T12476] usb 10-1: config 0 interface 0 has no altsetting 0
[  628.295184][ T6301] I/O error, dev nbd5, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  628.310439][   T30] audit: type=1800 audit(1779489758.652:170): pid=19701 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.4806" name="SYSV00000000" dev="tmpfs" ino=0 res=0 errno=0
[  628.328869][T12476] usb 10-1: New USB device found, idVendor=0458, idProduct=5015, bcdDevice= 0.00
[  628.343756][T12476] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  628.355981][ T6301] ldm_validate_partition_table(): Disk read failed.
[  628.399675][ T6301] Dev nbd5: unable to read RDB block 0
[  628.410500][T12476] usb 10-1: config 0 descriptor??
[  628.475600][ T6301]  nbd5: unable to read partition table
[  628.687906][ T5625] usb 6-1: new full-speed USB device number 26 using dummy_hcd
[  628.714253][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  628.724346][ T6301] ldm_validate_partition_table(): Disk read failed.
[  628.782063][ T6301] Dev nbd5: unable to read RDB block 0
[  628.816137][ T6301]  nbd5: unable to read partition table
[  628.897000][T12476] kye 0003:0458:5015.0020: tablet report size too small, or kye_tablet_rdesc unexpectedly large
[  628.940812][ T5625] usb 6-1: config 0 has an invalid interface number: 1 but max is 0
[  628.949847][T12476] kye 0003:0458:5015.0020: unknown main item tag 0x0
[  628.987292][T12476] kye 0003:0458:5015.0020: hidraw0: USB HID v0.04 Device [HID 0458:5015] on usb-dummy_hcd.9-1/input0
[  628.997869][ T5625] usb 6-1: config 0 has no interface number 0
[  629.004313][ T5625] usb 6-1: config 0 interface 1 altsetting 128 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  629.059459][T12476] kye 0003:0458:5015.0020: tablet-enabling feature report not found
[  629.147857][ T5625] usb 6-1: config 0 interface 1 has no altsetting 0
[  629.274671][ T5625] usb 6-1: New USB device found, idVendor=145f, idProduct=0212, bcdDevice= 0.00
[  629.421442][ T5625] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  629.650402][ T5625] usb 6-1: config 0 descriptor??
[  629.857659][ T5625] usbhid 6-1:0.1: couldn't find an input interrupt endpoint
[  630.056337][T12476] kye 0003:0458:5015.0020: tablet enabling failed
[  630.085259][T12476] usb 10-1: USB disconnect, device number 14
[  630.207759][T19716] loop0: detected capacity change from 0 to 131072
[  630.234005][T19716] F2FS-fs (loop0): Test dummy encryption mode enabled
[  630.241961][T19716] F2FS-fs (loop0): invalid crc value
[  630.347715][T19716] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  630.364445][T19716] F2FS-fs (loop0): Start checkpoint disabled!
[  630.379357][T19716] F2FS-fs (loop0): f2fs_disable_checkpoint() finish, err:0
[  630.396404][T19716] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6
[  630.445010][T19717] fido_id[19717]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.9/usb10/report_descriptor': No such file or directory
[  630.965373][T19736] 9pnet: p9_errstr2errno: server reported unknown error 0x00000
[  631.391298][T19749] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4822'.
[  631.423367][T19749] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4822'.
[  631.690020][T19755] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[  631.736035][T19755] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[  631.742888][T19755] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[  631.749703][T19755] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[  631.756537][T19755] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[  631.941079][T19755] net_ratelimit: 60 callbacks suppressed
[  631.941102][T19755] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[  631.953983][T19755] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[  631.956777][ T5625] usb 6-1: USB disconnect, device number 26
[  631.960989][T19755] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[  631.961258][T19755] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[  631.961500][T19755] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[  631.961756][T19755] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[  631.962003][T19755] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[  631.967125][T19755] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[  632.009994][T19755] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[  632.016904][T19755] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[  633.182948][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  633.424816][T19766] loop4: detected capacity change from 0 to 131072
[  633.503019][T19766] F2FS-fs (loop4): invalid crc value
[  633.634883][T19766] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  633.654013][T19766] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e4
[  636.775482][T19804] loop0: detected capacity change from 0 to 128
[  636.808398][T19804] EXT4-fs (loop0): Test dummy encryption mode enabled
[  636.873270][T19804] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a806c018, mo2=0042]
[  636.882101][T19804] System zones: 1-3, 19-19, 35-36
[  636.902303][T19804] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  637.008839][T19804] ext4 filesystem being mounted at /210/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  637.157186][T19809] netlink: 36 bytes leftover after parsing attributes in process `syz.7.4844'.
[  637.819015][T19818] loop9: detected capacity change from 0 to 512
[  637.878951][T19818] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  637.956391][T19818] EXT4-fs error (device loop9): ext4_orphan_get:1423: comm syz.9.4848: bad orphan inode 131083
[  637.990896][T19818] loop9: lost filesystem error report for type 5 error -117
[  638.054692][T19818] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  638.167578][T19818] syz.9.4848 (pid 19818) is setting deprecated v1 encryption policy; recommend upgrading to v2.
[  638.235215][T15762] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  638.255687][T19828] loop7: detected capacity change from 0 to 256
[  638.315416][T10433] net_ratelimit: 187 callbacks suppressed
[  638.315441][T10433] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  638.330313][ T5625] usb 6-1: new high-speed USB device number 27 using dummy_hcd
[  638.348776][T19828] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0xe3865569, utbl_chksum : 0xe619d30d)
[  638.476067][T13925] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  638.515717][   T30] audit: type=1800 audit(1779489768.842:171): pid=19828 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.4852" name="file1" dev="loop7" ino=1048756 res=0 errno=0
[  638.597440][ T5625] usb 6-1: New USB device found, idVendor=2304, idProduct=023e, bcdDevice=d7.69
[  638.609237][ T5625] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  638.627860][ T5625] usb 6-1: Product: syz
[  638.632894][ T5625] usb 6-1: Manufacturer: syz
[  638.642952][ T5625] usb 6-1: SerialNumber: syz
[  638.673141][ T5625] usb 6-1: config 0 descriptor??
[  638.691750][ T5625] hub 6-1:0.0: bad descriptor, ignoring hub
[  638.712955][ T5625] hub 6-1:0.0: probe with driver hub failed with error -5
[  638.905635][ T5625] dvb-usb: found a 'Pinnacle PCTV Hybrid Stick Solo' in warm state.
[  638.955146][ T5816] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  638.975130][   T12] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  638.995589][ T5625] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  638.999660][T19630] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  639.071312][ T5625] dvbdev: DVB: registering new adapter (Pinnacle PCTV Hybrid Stick Solo)
[  639.118535][ T5625] usb 6-1: media controller created
[  639.130147][T19835] loop7: detected capacity change from 0 to 1024
[  639.178277][T19835] hfsplus: Filesystem was not cleanly unmounted, running fsck.hfsplus is recommended.  mounting read-only.
[  639.271303][ T5625] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  639.717029][ T5625] DVB: Unable to find symbol dib7000p_attach()
[  639.769328][ T5625] dvb-usb: no frontend was attached by 'Pinnacle PCTV Hybrid Stick Solo'
[  639.809121][T19850] tipc: Started in network mode
[  639.852295][T19850] tipc: Node identity 4, cluster identity 4711
[  639.940055][T19850] tipc: Node number set to 4
[  640.258473][ T5625] rc_core: IR keymap rc-dib0700-rc5 not found
[  640.268619][ T5625] Registered IR keymap rc-empty
[  640.292616][ T5625] dvb-usb: could not initialize remote control.
[  640.339179][ T5625] dvb-usb: Pinnacle PCTV Hybrid Stick Solo successfully initialized and connected.
[  640.455707][ T5625] usb 6-1: USB disconnect, device number 27
[  640.910805][ T5625] dvb-usb: Pinnacle PCTV Hybrid Stick Solo successfully deinitialized and disconnected.
[  643.010515][ T5750] usb 6-1: new high-speed USB device number 28 using dummy_hcd
[  643.185927][ T5750] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  643.202821][ T5750] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  643.214938][ T5750] usb 6-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.80
[  643.227034][ T5750] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  643.248043][ T5750] usb 6-1: config 0 descriptor??
[  643.306952][T19922] loop0: detected capacity change from 0 to 4096
[  643.362972][T19922] EXT4-fs (loop0): stripe (9) is not aligned with cluster size (16), stripe is disabled
[  643.404882][T19922] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a856c018, mo2=0002]
[  643.448015][T19922] System zones: 0-5
[  643.477932][T19922] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  643.740406][ T5751] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[  643.784873][ T5750] cp2112 0003:10C4:EA90.0021: unknown main item tag 0x0
[  643.851097][ T5750] cp2112 0003:10C4:EA90.0021: hidraw0: USB HID v0.00 Device [HID 10c4:ea90] on usb-dummy_hcd.5-1/input0
[  643.973922][ T5751] usb 1-1: config 0 has an invalid interface number: 1 but max is 0
[  644.053546][ T5750] cp2112 0003:10C4:EA90.0021: Part Number: 0x5C Device Version: 0xD3
[  644.119208][T10421] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  644.129192][ T5751] usb 1-1: config 0 has no interface number 0
[  644.135306][ T5751] usb 1-1: too many endpoints for config 0 interface 1 altsetting 57: 44, using maximum allowed: 30
[  644.136445][T19937] loop9: detected capacity change from 0 to 32768
[  644.167032][T19937] (syz.9.4894,19937,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  644.182292][T19937] (syz.9.4894,19937,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  644.236519][T19937] (syz.9.4894,19937,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xbec99099, computed 0x3881d996. Applying ECC.
[  644.251725][T19937] (syz.9.4894,19937,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x93f628a2, computed 0x2aee8be5. Applying ECC.
[  644.273673][T19937] JBD2: Ignoring recovery information on journal
[  644.328109][T19937] (syz.9.4894,19937,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xbec99099, computed 0x3881d996. Applying ECC.
[  644.335787][ T5751] usb 1-1: config 0 interface 1 altsetting 57 has 0 endpoint descriptors, different from the interface descriptor's value: 44
[  644.359182][ T5751] usb 1-1: config 0 interface 1 has no altsetting 0
[  644.379468][T19937] ocfs2: Mounting device (7,9) on (node local, slot 0) with ordered data mode.
[  644.414828][ T5751] usb 1-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[  644.416856][T19937] (syz.9.4894,19937,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x93f628a2, computed 0x2aee8be5. Applying ECC.
[  644.425924][ T5751] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  644.477284][T19937] (syz.9.4894,19937,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x98842a5e, computed 0xe74db1cd. Applying ECC.
[  644.517713][ T5750] cp2112 0003:10C4:EA90.0021: error requesting SMBus config
[  644.570439][ T5751] usb 1-1: Product: syz
[  644.594077][T19944] xt_hashlimit: size too large, truncated to 1048576
[  644.596899][ T5751] usb 1-1: Manufacturer: syz
[  644.618941][ T5751] usb 1-1: SerialNumber: syz
[  644.644875][ T5750] cp2112 0003:10C4:EA90.0021: probe with driver cp2112 failed with error -71
[  644.667846][ T5751] usb 1-1: config 0 descriptor??
[  644.703814][T10421] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  644.712076][T10421] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  644.720234][T10421] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  644.737862][T19937] (syz.9.4894,19937,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x1cec3d0f, computed 0xd2ffbdfe. Applying ECC.
[  644.876026][ T5750] usb 6-1: USB disconnect, device number 28
[  644.922012][T19937] (syz.9.4894,19937,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x2c7b5077, computed 0x4d558a87. Applying ECC.
[  644.936620][T19937] (syz.9.4894,19937,0):ocfs2_block_check_validate:416 ERROR: Fixed CRC32 failed: stored: 0x2c7b5077, computed 0x5d2751af
[  644.949397][T19937] (syz.9.4894,19937,0):ocfs2_read_quota_phys_block:160 ERROR: status = -5
[  644.958491][T19937] (syz.9.4894,19937,0):ocfs2_quota_read:201 ERROR: status = -5
[  644.966556][T19937] Quota error (device loop9): find_tree_dqentry: Can't read quota tree block 5
[  644.976359][T19937] Quota error (device loop9): qtree_read_dquot: Can't read quota structure for id 0
[  644.985848][T19937] (syz.9.4894,19937,0):ocfs2_acquire_dquot:904 ERROR: status = -5
[  644.997971][T19937] (syz.9.4894,19937,0):ocfs2_mknod:318 ERROR: status = -5
[  645.005203][T19937] (syz.9.4894,19937,0):ocfs2_mknod:506 ERROR: status = -5
[  645.012409][T19937] (syz.9.4894,19937,0):ocfs2_create:679 ERROR: status = -5
[  645.036241][T19946] (syz.9.4894,19946,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x2c7b5077, computed 0x4d558a87. Applying ECC.
[  645.070139][T19946] (syz.9.4894,19946,0):ocfs2_block_check_validate:416 ERROR: Fixed CRC32 failed: stored: 0x2c7b5077, computed 0x5d2751af
[  645.080819][ T5751] dvb_usb_ec168 1-1:0.1: probe with driver dvb_usb_ec168 failed with error -71
[  645.092478][T19946] (syz.9.4894,19946,0):ocfs2_read_quota_phys_block:160 ERROR: status = -5
[  645.092647][T19946] (syz.9.4894,19946,0):ocfs2_quota_read:201 ERROR: status = -5
[  645.092677][T19946] Quota error (device loop9): find_tree_dqentry: Can't read quota tree block 5
[  645.092798][T19946] Quota error (device loop9): qtree_read_dquot: Can't read quota structure for id 0
[  645.092826][T19946] (syz.9.4894,19946,0):ocfs2_acquire_dquot:904 ERROR: status = -5
[  645.092943][T19946] (syz.9.4894,19946,0):ocfs2_mknod:318 ERROR: status = -5
[  645.092992][T19946] (syz.9.4894,19946,0):ocfs2_mknod:506 ERROR: status = -5
[  645.093028][T19946] (syz.9.4894,19946,0):ocfs2_create:679 ERROR: status = -5
[  645.297757][ T5751] usb 1-1: USB disconnect, device number 16
[  646.096203][T13925] ocfs2: Unmounting device (7,9) on (node local)
[  646.281010][T15762] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  646.861225][T19975] netlink: 52 bytes leftover after parsing attributes in process `syz.4.4908'.
[  646.985638][T19978] overlayfs: failed to clone upperpath
[  647.747463][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  648.116177][T20009] Bluetooth: MGMT ver 1.23
[  648.134352][T20009] Bluetooth: hci0: unsupported parameter 39401
[  648.169126][T20009] Bluetooth: hci0: unsupported parameter 255
[  648.186341][T20009] Bluetooth: hci0: unsupported parameter 39401
[  648.214482][T20009] Bluetooth: hci0: unsupported parameter 255
[  648.447380][T20019] netlink: 212344 bytes leftover after parsing attributes in process `syz.2.4926'.
[  649.821098][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  649.834754][  T139] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  650.241873][T20056] loop5: detected capacity change from 0 to 128
[  650.461664][  T139] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  650.473858][T10433] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  650.490036][ T5816] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  652.380805][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  652.430619][T12475] usb 1-1: new high-speed USB device number 17 using dummy_hcd
[  652.621060][T12475] usb 1-1: Using ep0 maxpacket: 16
[  652.657802][T12475] usb 1-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  652.722630][T12475] usb 1-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  652.780629][T12475] usb 1-1: config 0 interface 0 has no altsetting 0
[  652.819990][T12475] usb 1-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  652.882217][T12475] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  652.950545][T12475] usb 1-1: config 0 descriptor??
[  653.127338][T20067] loop4: detected capacity change from 0 to 32768
[  653.165011][T20096] netlink: 'syz.2.4959': attribute type 3 has an invalid length.
[  653.226633][T20067] XFS (loop4): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  653.336343][T20067] XFS (loop4): Ending clean mount
[  653.432013][T12475] hid (null): unknown global tag 0xe
[  653.462479][   T30] audit: type=1800 audit(1779489783.752:172): pid=20067 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.4946" name="file1" dev="loop4" ino=6150 res=0 errno=0
[  653.502808][T12475] hid (null): report_id 1802575780 is invalid
[  653.556504][T12475] hid (null): unknown global tag 0xc
[  653.592493][T12475] hid (null): invalid report_count 386727104
[  653.628367][T12475] hid (null): unknown global tag 0xd
[  653.687360][T12475] hid (null): usage index exceeded
[  653.744283][T12475] hid (null): usage index exceeded
[  653.772571][T12475] hid (null): report_id 0 is invalid
[  653.806404][T12475] hid (null): unknown global tag 0xe
[  653.829202][T12475] hid (null): invalid report_count -179013079
[  653.935276][T12475] usb 1-1: USB disconnect, device number 17
[  654.086055][T16787] XFS (loop4): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  654.465880][T20122] loop7: detected capacity change from 0 to 256
[  654.487437][T20122] exfat: Deprecated parameter 'namecase'
[  654.537154][T20122] exfat: Deprecated parameter 'namecase'
[  654.620731][T10433] Bluetooth: hci4: Frame reassembly failed (-84)
[  654.628051][T20122] exFAT-fs (loop7): failed to load upcase table (idx : 0x0001fe89, chksum : 0xc232f927, utbl_chksum : 0xe619d30d)
[  654.860309][T12476] usb 1-1: new high-speed USB device number 18 using dummy_hcd
[  654.942512][T10433] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  655.092711][T12476] usb 1-1: Using ep0 maxpacket: 8
[  655.139275][T12476] usb 1-1: config 179 has an invalid interface number: 65 but max is 0
[  655.206304][T12476] usb 1-1: config 179 has no interface number 0
[  655.267201][T12476] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  655.348984][T12476] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[  655.428589][T12476] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  655.507485][T12476] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[  655.573294][T12476] usb 1-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  655.653147][T12476] usb 1-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  655.709187][T12476] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  655.762584][T20127] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  655.900588][ T5898] usb 5-1: new high-speed USB device number 18 using dummy_hcd
[  656.100116][ T5898] usb 5-1: Using ep0 maxpacket: 16
[  656.121119][ T5898] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  656.142643][T20144] Bluetooth: received HCILL_WAKE_UP_IND in state 2
[  656.169295][ T5898] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  656.212092][T12476] input: Generic X-Box pad as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:179.65/input/input33
[  656.223198][ T5898] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  656.240967][T10433] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  656.251531][ T5816] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  656.262587][   T13] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  656.279415][T20127] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  656.288960][ T5898] usb 5-1: New USB device found, idVendor=05ac, idProduct=8241, bcdDevice= 0.00
[  656.334096][T20127] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  656.341395][ T5898] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  656.450252][ T5898] usb 5-1: config 0 descriptor??
[  656.598729][T20127] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  656.621528][ T5632] Bluetooth: hci4: command 0x1003 tx timeout
[  656.622607][ T4937] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  656.647212][T20127] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  656.684691][T12476] usb 1-1: USB disconnect, device number 18
[  656.684755][    C0] xpad 1-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[  656.684804][    C0] xpad 1-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  657.065395][ T5898] input: HID 05ac:8241 as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/0003:05AC:8241.0023/input/input34
[  657.328390][ T5898] appleir 0003:05AC:8241.0023: input,hiddev0,hidraw0: USB HID v0.00 Device [HID 05ac:8241] on usb-dummy_hcd.4-1/input0
[  657.496045][ T5898] usb 5-1: USB disconnect, device number 18
[  657.947340][T20161] fido_id[20161]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.4/usb5/report_descriptor': No such file or directory
[  658.081414][T20180] netlink: 'syz.2.4984': attribute type 7 has an invalid length.
[  658.116486][T20180] netlink: 29 bytes leftover after parsing attributes in process `syz.2.4984'.
[  658.167646][T20180] netlink: 140 bytes leftover after parsing attributes in process `syz.2.4984'.
[  658.211579][T20180] netlink: 'syz.2.4984': attribute type 7 has an invalid length.
[  658.262814][T20180] netlink: 29 bytes leftover after parsing attributes in process `syz.2.4984'.
[  658.350611][T20184] batadv_slave_1: entered promiscuous mode
[  658.405426][T20182] batadv_slave_1: left promiscuous mode
[  658.721189][T20190] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  658.787971][T20190] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  658.833295][T20190] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  658.876610][T20190] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  658.918635][T20190] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  658.940237][T20190] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  659.244322][T20189] loop7: detected capacity change from 0 to 8192
[  659.333187][T20204] fuse: fd is not a fuse device
[  659.688124][T20207] loop4: detected capacity change from 0 to 4096
[  659.736301][T20207] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512).
[  659.818082][T20207] ntfs3(loop4): ino=1a, mi_enum_attr
[  659.845877][T20207] ntfs3(loop4): Mark volume as dirty due to NTFS errors
[  659.884672][T20207] ntfs3(loop4): ino=1a, mi_enum_attr
[  659.891670][T20216] fuse: fd is not a fuse device
[  659.912002][T12476] usb 1-1: new high-speed USB device number 19 using dummy_hcd
[  659.924963][T20207] ntfs3(loop4): Failed to initialize $Extend/$Reparse.
[  660.100815][T12476] usb 1-1: Using ep0 maxpacket: 32
[  660.122129][T12476] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  660.176944][T12476] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  660.223902][T12476] usb 1-1: New USB device found, idVendor=1e7d, idProduct=2d51, bcdDevice= 0.00
[  660.265156][T12476] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  660.293630][T20221] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5003'.
[  660.318240][T12476] usb 1-1: config 0 descriptor??
[  660.720121][T19630] net_ratelimit: 86 callbacks suppressed
[  660.720167][T19630] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  660.875839][T12476] koneplus 0003:1E7D:2D51.0024: unknown main item tag 0x0
[  660.924934][T12476] koneplus 0003:1E7D:2D51.0024: unknown main item tag 0x0
[  660.930849][T20232] netlink: 'syz.4.5007': attribute type 1 has an invalid length.
[  660.971998][T12476] koneplus 0003:1E7D:2D51.0024: unknown main item tag 0x0
[  660.996249][T12476] koneplus 0003:1E7D:2D51.0024: unknown main item tag 0x0
[  661.019159][T12476] koneplus 0003:1E7D:2D51.0024: unknown main item tag 0x0
[  661.107102][T12476] koneplus 0003:1E7D:2D51.0024: hidraw0: USB HID v0.00 Device [HID 1e7d:2d51] on usb-dummy_hcd.0-1/input0
[  661.158246][T12476] koneplus 0003:1E7D:2D51.0024: couldn't init struct koneplus_device
[  661.172009][T20237] overlayfs: failed to clone upperpath
[  661.179114][T12476] koneplus 0003:1E7D:2D51.0024: couldn't install mouse
[  661.260917][T12476] koneplus 0003:1E7D:2D51.0024: probe with driver koneplus failed with error -71
[  661.338470][T12476] usb 1-1: USB disconnect, device number 19
[  661.343973][T19630] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  661.515045][T20238] fido_id[20238]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/report_descriptor': No such file or directory
[  661.918244][T20247] loop9: detected capacity change from 0 to 4096
[  661.973136][T20247] EXT4-fs: Ignoring removed nomblk_io_submit option
[  661.982507][  T139] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  662.012779][   T36] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  662.031642][T20247] EXT4-fs (loop9): Test dummy encryption mode enabled
[  662.057124][T20247] EXT4-fs (loop9): stripe (97) is not aligned with cluster size (16), stripe is disabled
[  662.184193][T20247] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0002]
[  662.286829][T20247] System zones: 0-5
[  662.353053][T20247] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  663.551948][T20289] gretap1: entered promiscuous mode
[  663.956248][T13925] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  664.001422][T20285] loop4: detected capacity change from 0 to 131072
[  664.144472][T20285] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  664.168619][T20285] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  664.591890][T20304] loop9: detected capacity change from 0 to 512
[  664.662658][T20304] EXT4-fs (loop9): 1 truncate cleaned up
[  664.709231][T20304] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  664.972629][T20315] fuse: fd is not a fuse device
[  665.126337][T13925] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  665.598117][T20323] netlink: 24 bytes leftover after parsing attributes in process `syz.2.5034'.
[  665.822848][T10431] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  666.718278][T20343] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5043'.
[  666.782108][T20343] netlink: 'syz.2.5043': attribute type 5 has an invalid length.
[  666.831719][T20343] netlink: 20 bytes leftover after parsing attributes in process `syz.2.5043'.
[  667.104797][  T150] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  667.113915][   T57] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  667.259067][T20349] loop7: detected capacity change from 0 to 128
[  667.274096][T20350] netlink: 'syz.9.5045': attribute type 1 has an invalid length.
[  667.465919][T20349] UDF-fs: error (device loop7): udf_read_tagged: read failed, block=256, location=256
[  667.589313][T20350] 8021q: adding VLAN 0 to HW filter on device bond1
[  667.621297][T20358] loop0: detected capacity change from 0 to 1024
[  667.657575][T20349] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  667.744304][   T57] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  667.769549][T20358] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  667.833808][T20356] bond1: (slave ip6erspan0): making interface the new active one
[  667.936406][T20356] bond1: (slave ip6erspan0): Enslaving as an active interface with an up link
[  668.292166][T20370] loop9: detected capacity change from 0 to 64
[  668.441283][T15762] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  668.457578][   T30] audit: type=1800 audit(1779489798.782:173): pid=20370 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.5052" name="file1" dev="loop9" ino=22 res=0 errno=0
[  668.605575][   T30] audit: type=1800 audit(1779489798.942:174): pid=20370 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.5052" name="file1" dev="loop9" ino=22 res=0 errno=0
[  668.746909][   T30] audit: type=1326 audit(1779489798.942:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20373 comm="syz.2.5055" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2a659ce59 code=0x7ffc0000
[  668.833865][   T30] audit: type=1326 audit(1779489798.942:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20373 comm="syz.2.5055" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2a659ce59 code=0x7ffc0000
[  668.916002][   T30] audit: type=1326 audit(1779489798.972:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20373 comm="syz.2.5055" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=83 compat=0 ip=0x7fe2a659ce59 code=0x7ffc0000
[  668.946709][   T30] audit: type=1326 audit(1779489798.972:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20373 comm="syz.2.5055" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2a659ce59 code=0x7ffc0000
[  669.951988][   T30] audit: type=1326 audit(1779489798.982:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20373 comm="syz.2.5055" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7fe2a659ce59 code=0x7ffc0000
[  669.980645][   T30] audit: type=1326 audit(1779489798.982:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20373 comm="syz.2.5055" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2a659ce59 code=0x7ffc0000
[  670.885144][T20431] macvlan0: entered allmulticast mode
[  670.904220][T20431] veth1_vlan: entered allmulticast mode
[  670.944730][T20431] netlink: 4 bytes leftover after parsing attributes in process `syz.9.5064'.
[  671.007771][T20431] veth1_vlan: left allmulticast mode
[  671.011405][   T30] audit: type=1326 audit(1779489798.982:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20373 comm="syz.2.5055" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=161 compat=0 ip=0x7fe2a659ce59 code=0x7ffc0000
[  671.154655][T20431] macvlan0 (unregistering): left allmulticast mode
[  671.380330][T20438] loop4: detected capacity change from 0 to 512
[  671.416103][T20438] EXT4-fs (loop4): Test dummy encryption mode enabled
[  671.455088][T20438] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  671.480725][T12477] usb 6-1: new high-speed USB device number 29 using dummy_hcd
[  671.532385][T20438] EXT4-fs error (device loop4): ext4_orphan_get:1423: comm syz.4.5067: bad orphan inode 131083
[  671.590463][   T57] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  671.608185][T20438] loop4: lost filesystem error report for type 5 error -117
[  671.618733][T20438] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  671.696132][T20442] Invalid ELF header len 12
[  671.702427][T12477] usb 6-1: Using ep0 maxpacket: 8
[  671.731043][T12477] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  671.791091][T12477] usb 6-1: New USB device found, idVendor=046d, idProduct=0892, bcdDevice=6d.2a
[  671.860388][T12477] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  671.957019][T12477] usb 6-1: config 0 descriptor??
[  672.012772][   T30] audit: type=1326 audit(1779489798.982:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20373 comm="syz.2.5055" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2a659ce59 code=0x7ffc0000
[  672.060031][T12477] gspca_main: vc032x-2.14.0 probing 046d:0892
[  672.175043][T16787] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  672.414323][T20449] loop9: detected capacity change from 0 to 2048
[  672.499064][T20449] UDF-fs: error (device loop9): udf_process_sequence: Primary Volume Descriptor not found!
[  672.571358][T20449] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  672.691549][T20453] loop0: detected capacity change from 0 to 1024
[  672.864057][   T57] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  672.878636][   T48] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  672.994423][T12477] gspca_vc032x: reg_w err -71
[  673.029489][T12477] vc032x 6-1:0.0: probe with driver vc032x failed with error -71
[  673.132048][T12477] usb 6-1: USB disconnect, device number 29
[  673.503008][   T12] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  674.110771][T12476] usb 6-1: new high-speed USB device number 30 using dummy_hcd
[  674.300541][T12476] usb 6-1: Using ep0 maxpacket: 16
[  674.323432][T12476] usb 6-1: New USB device found, idVendor=0d49, idProduct=7010, bcdDevice= c.90
[  674.356491][T12476] usb 6-1: New USB device strings: Mfr=1, Product=6, SerialNumber=3
[  674.359046][T20488] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  674.389142][T12476] usb 6-1: Product: syz
[  674.398632][T12476] usb 6-1: Manufacturer: syz
[  674.411562][T12476] usb 6-1: SerialNumber: syz
[  674.494074][T12476] usb 6-1: config 0 descriptor??
[  674.515533][T12476] ums-onetouch 6-1:0.0: USB Mass Storage device detected
[  674.540832][T20488] tipc: Disabling bearer <eth:syzkaller0>
[  674.892073][T12476] usb 6-1: USB disconnect, device number 30
[  675.007680][T20500] syz_tun: refused to change device tx_queue_len
[  675.065800][T20500] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[  675.201482][T20502] syz_tun: refused to change device tx_queue_len
[  675.223240][T20502] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[  676.025393][T20509] loop0: detected capacity change from 0 to 2048
[  676.128446][T20509] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  676.249238][T20509] ext4 filesystem being mounted at /255/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  676.889169][T15762] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  677.342157][T10419] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  677.459687][T20541] loop7: detected capacity change from 0 to 512
[  677.472904][T20541] EXT4-fs: Ignoring removed nomblk_io_submit option
[  677.573945][T20541] EXT4-fs error (device loop7): ext4_iget_extra_inode:5128: inode #15: comm syz.7.5104: corrupted in-inode xattr: e_value size too large
[  677.615903][T20541] loop7: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  677.619931][    C1] EXT4-fs (loop7): error count since last fsck: 1
[  677.640563][    C1] EXT4-fs (loop7): initial error at time 1779489807: ext4_iget_extra_inode:5128: inode 15
[  677.652928][    C1] EXT4-fs (loop7): last error at time 1779489807: ext4_iget_extra_inode:5128: inode 15
[  677.705455][T20541] EXT4-fs error (device loop7): ext4_orphan_get:1402: comm syz.7.5104: couldn't read orphan inode 15 (err -117)
[  677.719913][T20541] loop7: lost filesystem error report for type 5 error -117
[  677.738092][T20541] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  678.071522][   T12] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  678.214560][T11825] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  678.373348][T20556] fuse: fd is not a fuse device
[  678.480394][T12477] usb 6-1: new high-speed USB device number 31 using dummy_hcd
[  678.627787][   T12] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  678.661098][T12477] usb 6-1: Using ep0 maxpacket: 8
[  678.688237][T12477] usb 6-1: config index 0 descriptor too short (expected 74, got 45)
[  678.723163][T12477] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 1536, setting to 1024
[  678.786513][T12477] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  678.831390][T12477] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 30768, setting to 1024
[  678.869354][T12477] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[  678.905134][T12477] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  678.938656][T12477] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  678.962973][T12477] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  679.270575][T19635] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  679.317599][T12477] usb 6-1: GET_CAPABILITIES returned 0
[  679.341731][T12477] usbtmc 6-1:16.0: can't read capabilities
[  679.514365][T20549] loop4: detected capacity change from 0 to 32768
[  679.636492][    C0] usbtmc 6-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  679.645608][    C0] usbtmc 6-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  679.654695][    C0] usbtmc 6-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  679.663779][    C0] usbtmc 6-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  679.685525][    C0] usbtmc 6-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  679.694635][    C0] usbtmc 6-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  679.703728][    C0] usbtmc 6-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  679.712811][    C0] usbtmc 6-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  679.723071][    C0] usbtmc 6-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  679.732164][    C0] usbtmc 6-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  679.741245][    C0] usbtmc 6-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  679.750327][    C0] usbtmc 6-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  679.794671][    C0] usbtmc 6-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  679.803793][    C0] usbtmc 6-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  679.812880][    C0] usbtmc 6-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  679.821960][    C0] usbtmc 6-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  679.945297][T12477] usb 6-1: USB disconnect, device number 31
[  680.188809][T20584] loop9: detected capacity change from 0 to 512
[  680.236328][T20584] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  680.293391][T20587] fuse: fd is not a fuse device
[  680.309650][T20584] EXT4-fs error (device loop9): ext4_orphan_get:1397: inode #15: comm syz.9.5122: iget: bad i_size value: 38620345925642
[  680.341302][T20584] loop9: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  680.343951][T20584] EXT4-fs error (device loop9): ext4_orphan_get:1402: comm syz.9.5122: couldn't read orphan inode 15 (err -117)
[  680.354407][    C1] EXT4-fs (loop9): error count since last fsck: 1
[  680.354429][    C1] EXT4-fs (loop9): initial error at time 1779489810: ext4_orphan_get:1397: inode 15
[  680.354470][    C1] EXT4-fs (loop9): last error at time 1779489810: ext4_orphan_get:1397: inode 15
[  680.442825][T20584] loop9: lost filesystem error report for type 5 error -117
[  680.467582][T20584] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  680.743382][T20584] EXT4-fs error (device loop9): ext4_validate_block_bitmap:432: comm syz.9.5122: bg 0: block 5: invalid block bitmap
[  680.907549][T20584] EXT4-fs (loop9): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 88 with error 28
[  680.917934][T20600] netlink: 212348 bytes leftover after parsing attributes in process `syz.5.5129'.
[  680.976806][T20584] EXT4-fs (loop9): This should not happen!! Data will be lost
[  680.976806][T20584] 
[  681.028138][T20584] EXT4-fs (loop9): Total free blocks count 0
[  681.046449][T20584] EXT4-fs (loop9): Free/Dirty block details
[  681.064829][T20584] EXT4-fs (loop9): free_blocks=0
[  681.104927][T20584] EXT4-fs (loop9): dirty_blocks=92
[  681.134038][T20584] EXT4-fs (loop9): Block reservation details
[  681.164486][T20584] EXT4-fs (loop9): i_reserved_data_blocks=92
[  681.777087][T13925] EXT4-fs warning (device loop9): ext4_evict_inode:195: inode #18: comm syz-executor: data will be lost
[  681.820323][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  681.835416][T13925] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  682.658516][T20633] loop0: detected capacity change from 0 to 512
[  682.695186][T20633] EXT4-fs: inline encryption not supported
[  682.755746][T20633] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  682.802670][T20633] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  682.816505][T20597] loop4: detected capacity change from 0 to 32768
[  682.887527][T20597] ocfs2: Slot 0 on device (7,4) was already allocated to this node!
[  682.957600][T20645] workqueue: name exceeds WQ_NAME_LEN. Truncating to: ot an exit or jmp
[  682.957600][T20645] processed 0 i
[  682.976323][T20633] __quota_error: 4 callbacks suppressed
[  682.976379][T20633] Quota error (device loop0): do_insert_tree: Free block already used in tree: block 1
[  683.075020][T20597] JBD2: Ignoring recovery information on journal
[  683.116431][T10433] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  683.128726][T20633] Quota error (device loop0): qtree_write_dquot: Error -5 occurred while creating quota
[  683.190165][T20633] EXT4-fs error (device loop0): ext4_acquire_dquot:7034: comm syz.0.5143: Failed to acquire dquot type 1
[  683.282607][T20633] loop0: lost filesystem error report for type 5 error -5
[  683.283060][T20633] EXT4-fs (loop0): Remounting filesystem read-only
[  683.283623][T20597] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  683.299904][    C0] EXT4-fs (loop0): error count since last fsck: 1
[  683.314396][    C0] EXT4-fs (loop0): initial error at time 1779489813: ext4_acquire_dquot:7034
[  683.323261][    C0] EXT4-fs (loop0): last error at time 1779489813: ext4_acquire_dquot:7034
[  683.377682][T20633] EXT4-fs (loop0): 1 truncate cleaned up
[  683.421049][T20633] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  683.755273][  T139] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  683.813959][T15762] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  683.818940][T20597] (syz.4.5127,20597,1):ocfs2_check_set_options:1244 ERROR: Invalid heartbeat mount options
[  684.365887][T16787] ocfs2: Unmounting device (7,4) on (node local)
[  684.393182][T10419] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  684.529280][T20677] loop7: detected capacity change from 0 to 512
[  684.607860][T20677] EXT4-fs (loop7): 1 truncate cleaned up
[  684.676922][T20677] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  685.027038][ T1308] ieee802154 phy0 wpan0: encryption failed: -22
[  685.035562][  T139] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  685.045110][ T1308] ieee802154 phy1 wpan1: encryption failed: -22
[  685.094958][T11825] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  686.500934][   T12] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  686.537770][   T12] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  686.554426][T20713] loop5: detected capacity change from 0 to 512
[  686.649336][   T12] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  686.716934][   T12] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  687.008776][   T30] audit: type=1326 audit(1779489817.342:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20719 comm="syz.0.5176" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f54ce79ce59 code=0x0
[  688.147423][T20744] loop7: detected capacity change from 0 to 128
[  688.193900][T20744] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  688.260645][T20744] hpfs: filesystem error: improperly stopped
[  688.296335][T20744] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  688.348143][T20744] hpfs: You really don't want any checks? You are crazy...
[  688.407609][T20744] hpfs: Code page index out of array
[  688.449525][T20744] hpfs: code page support is disabled
[  688.492546][T20744] hpfs: hpfs_map_4sectors(): unaligned read
[  688.498545][T20744] hpfs: hpfs_map_4sectors(): unaligned read
[  688.529319][T20744] hpfs: filesystem error: unable to find root dir
[  688.862578][   T57] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  689.105023][T12476] kernel read not supported for file [fscontext] (pid: 12476 comm: kworker/0:14)
[  689.504844][T19635] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  689.669093][T20778] loop5: detected capacity change from 0 to 1024
[  689.714373][T20778] EXT4-fs: Ignoring removed bh option
[  690.143750][T19635] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  690.151910][T19635] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  690.747618][T20801] loop7: detected capacity change from 0 to 4096
[  690.756421][T20801] nilfs2: Unknown parameter '01777777777777777777777'
[  690.864931][T20796] loop9: detected capacity change from 0 to 8192
[  690.974139][T20796]  loop9: p1 < p5 p6 p7 p8 p9 p10 p11 p12 p13 p14 p15 p16 p17 p18 p19 p20 p21 p22 p23 p24 p25 p26 p27 p28 p29 p30 p31 p32 p33 p34 p35 p36 p37 p38 p39 p40 p41 p42 p43 p44 p45 p46 p47 p48 p49 p50 p51 p52 p53 p54 p55 p56 p57 p58 p59 p60 p61 p62 p63 p64 p65 p66 p67 p68 p69 p70 p71 p72 p73 p74 p75 p76 p77 p78 p79 p80 p81 p82 p83 p84 p85 p86 p87 p88 p89 p90 p91 p92 p93 p94 p95 p96 p97 p98 p99 p100 p101 p102 p103 p104 p105 p106 p107 p108 p109 p110 p111 p112 p113 p114 p115 p116 p117 p118 p119 p120 p121 p122 p123 p124 p125 p126 p127 p128 p129 p130 p131 p132 p133 p134 p135 p136 p137 p138 p139 p140 p141 p142 p143 p144 p145 p146 p147 p148 p149 p150 p151 p152 p153 p154 p155 p156 p157 p158 p159 p160 p161 p162 p163 p164 p165 p166 p167 p168 p169 p170 p171 p172 p173 p174 p175 p176 p177 p178 p179 p180 p181 p182 p183 p184 p185 p186 p187 p188 p189 p190 p191 p192 p193 p194 p195 p196 p197 p198 p199 p200 p201 p202 p203 p204 p205 p206 p207 p208 p209 p210 p211 p212 p213 p214 p215 p216 p217 p218 p219 p220 p221 p222 p223 p224 p225 p22
[  691.029196][T20815] loop7: detected capacity change from 0 to 128
[  691.427139][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  691.453554][T20815] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  691.495081][T20815] ext4 filesystem being mounted at /473/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  691.797504][T20815] EXT4-fs error (device loop7): dx_make_map:1296: inode #2: block 18: comm syz.7.5213: bad entry in directory: inode out of bounds - offset=988, inode=128, rec_len=36, size=1024 fake=1
[  691.843589][T20815] EXT4-fs (loop7): Remounting filesystem read-only
[  692.026025][T11825] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  693.450028][T12476] usb 6-1: new high-speed USB device number 32 using dummy_hcd
[  693.635933][T12476] usb 6-1: config 1 interface 0 has no altsetting 0
[  693.683812][T12476] usb 6-1: string descriptor 0 read error: -22
[  693.708058][T12476] usb 6-1: New USB device found, idVendor=0079, idProduct=1801, bcdDevice= 0.40
[  693.746994][T12476] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  694.150891][T20832] loop4: detected capacity change from 0 to 32768
[  694.285099][T12476] hid_mf 0003:0079:1801.0025: invalid report_size 16071
[  694.298675][T20832] XFS (loop4): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  694.357155][T12476] hid_mf 0003:0079:1801.0025: item 0 2 1 7 parsing failed
[  694.379487][T12476] hid_mf 0003:0079:1801.0025: HID parse failed.
[  694.453706][T12476] hid_mf 0003:0079:1801.0025: probe with driver hid_mf failed with error -22
[  694.534047][T20832] XFS (loop4): Ending clean mount
[  694.581347][T12476] usb 6-1: USB disconnect, device number 32
[  694.624128][  T139] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  694.633664][T10433] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  695.266963][  T139] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  695.350219][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  695.361453][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  695.371826][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  695.380280][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  695.388617][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  695.397012][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  695.405444][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  695.549558][T16787] XFS (loop4): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  696.569766][T20905] xt_hashlimit: size too large, truncated to 1048576
[  696.876995][T20912] loop0: detected capacity change from 0 to 8
[  696.963729][T20912] SQUASHFS error: zlib decompression failed, data probably corrupt
[  697.023848][T20912] SQUASHFS error: Failed to read block 0x9b: -5
[  697.068366][T20912] SQUASHFS error: Unable to read metadata cache entry [99]
[  697.128073][T20912] SQUASHFS error: Unable to read inode 0x127
[  699.058143][T20946] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5260'.
[  699.461439][T20951] loop0: detected capacity change from 0 to 512
[  699.555324][T20951] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2
[  699.672773][T20951] EXT4-fs error (device loop0): ext4_get_branch:178: inode #13: block 1024: comm syz.0.5261: invalid block
[  699.736905][T20951] loop0: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[  699.740949][    C0] EXT4-fs (loop0): error count since last fsck: 1
[  699.756569][    C0] EXT4-fs (loop0): initial error at time 1779489830: ext4_get_branch:178: inode 13: block 1024
[  699.767025][    C0] EXT4-fs (loop0): last error at time 1779489830: ext4_get_branch:178: inode 13: block 1024
[  699.779833][T10440] net_ratelimit: 168 callbacks suppressed
[  699.785643][T10440] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  699.853124][T20951] EXT4-fs (loop0): 1 truncate cleaned up
[  699.894596][T20951] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  700.400795][   T57] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  700.445245][T15762] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  700.790176][T20971] netlink: 'syz.4.5269': attribute type 22 has an invalid length.
[  700.840425][T20971] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5269'.
[  700.880336][T20977] netlink: 4 bytes leftover after parsing attributes in process `syz.9.5243'.
[  701.023772][   T12] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  701.131893][T20971] netlink: 'syz.4.5269': attribute type 22 has an invalid length.
[  701.175588][T20971] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5269'.
[  701.310168][T20985] overlayfs: failed to clone upperpath
[  701.637096][T20989] netlink: 8 bytes leftover after parsing attributes in process `syz.9.5276'.
[  701.665818][T19635] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  701.672718][T20989] netlink: 8 bytes leftover after parsing attributes in process `syz.9.5276'.
[  701.823283][ T6301] udevd[6301]: inotify_add_watch(7, /dev/loop9p4, 10) failed: No such file or directory
[  701.834542][ T5741] udevd[5741]: inotify_add_watch(7, /dev/loop9p9, 10) failed: No such file or directory
[  701.862890][ T5742] udevd[5742]: inotify_add_watch(7, /dev/loop9p6, 10) failed: No such file or directory
[  701.863341][ T6646] udevd[6646]: inotify_add_watch(7, /dev/loop9p1, 10) failed: No such file or directory
[  701.875889][T20501] udevd[20501]: inotify_add_watch(7, /dev/loop9p8, 10) failed: No such file or directory
[  701.899496][T15426] udevd[15426]: inotify_add_watch(7, /dev/loop9p10, 10) failed: No such file or directory
[  701.903295][ T5869] udevd[5869]: inotify_add_watch(7, /dev/loop9p7, 10) failed: No such file or directory
[  701.912438][ T6039] udevd[6039]: inotify_add_watch(7, /dev/loop9p3, 10) failed: No such file or directory
[  701.937531][ T8595] udevd[8595]: inotify_add_watch(7, /dev/loop9p5, 10) failed: No such file or directory
[  701.987143][ T5870] udevd[5870]: inotify_add_watch(7, /dev/loop9p11, 10) failed: No such file or directory
[  702.254171][T21000] loop9: detected capacity change from 0 to 256
[  702.296501][T21000] exfat: Deprecated parameter 'namecase'
[  702.399769][T21005] loop0: detected capacity change from 0 to 512
[  746.477564][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  807.467208][    C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[  807.474291][    C0] rcu: 	1-...!: (0 ticks this GP) idle=1614/1/0x4000000000000000 softirq=110477/110477 fqs=2
[  807.486829][    C0] rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P21000/1:b..l P11825/1:b..l
[  807.496081][    C0] rcu: 	(detected by 0, t=10506 jiffies, g=129721, q=465 ncpus=2)
[  807.503886][    C0] Sending NMI from CPU 0 to CPUs 1:
[  807.503920][    C1] NMI backtrace for cpu 1
[  807.503939][    C1] CPU: 1 UID: 0 PID: 16787 Comm: syz-executor Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  807.503969][    C1] Tainted: [L]=SOFTLOCKUP
[  807.503977][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  807.503991][    C1] RIP: 0010:__remove_hrtimer+0x91/0x3e0
[  807.504030][    C1] Code: fd 12 00 45 85 ed 48 89 5c 24 08 74 2a 48 8d 7b 18 be ff ff ff ff e8 ae 7b f6 09 41 89 c5 31 ff 89 c6 e8 52 fd 12 00 45 85 ed <0f> 84 33 02 00 00 e8 04 f9 12 00 eb 05 e8 fd f8 12 00 4d 8d 6e 38
[  807.504049][    C1] RSP: 0018:ffffc90000a08d90 EFLAGS: 00000002
[  807.504067][    C1] RAX: ffffffff81b2cbae RBX: ffff8880b8728280 RCX: 0000000000010000
[  807.504084][    C1] RDX: ffff88805c335c40 RSI: 0000000000000001 RDI: 0000000000000000
[  807.504099][    C1] RBP: dffffc0000000000 R08: ffffffff9a64b2e3 R09: 1ffffffff34c965c
[  807.504116][    C1] R10: dffffc0000000000 R11: fffffbfff34c965d R12: 0000000000000000
[  807.504132][    C1] R13: 0000000000000001 R14: ffff888028f52300 R15: ffff8880b87284c0
[  807.504150][    C1] FS:  0000555583188500(0000) GS:ffff888125387000(0000) knlGS:0000000000000000
[  807.504170][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  807.504185][    C1] CR2: 00007f4899d456b8 CR3: 0000000045c0a000 CR4: 0000000000350ef0
[  807.504203][    C1] DR0: 0000000000000004 DR1: 0000000000000000 DR2: 0000000000000000
[  807.504216][    C1] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
[  807.504230][    C1] Call Trace:
[  807.504241][    C1]  <IRQ>
[  807.504257][    C1]  __hrtimer_run_queues+0x299/0xa20
[  807.504302][    C1]  hrtimer_interrupt+0x44b/0x950
[  807.504352][    C1]  __sysvec_apic_timer_interrupt+0x102/0x430
[  807.504384][    C1]  sysvec_apic_timer_interrupt+0xa1/0xc0
[  807.504420][    C1]  </IRQ>
[  807.504428][    C1]  <TASK>
[  807.504437][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  807.504462][    C1] RIP: 0010:rcu_is_watching+0x3a/0xb0
[  807.504490][    C1] Code: e8 5b 82 fe 09 89 c3 83 f8 08 73 65 49 bf 00 00 00 00 00 fc ff df 4c 8d 34 dd 90 b7 26 8e 4c 89 f0 48 c1 e8 03 42 80 3c 38 00 <74> 08 4c 89 f7 e8 cc 26 86 00 48 c7 c3 d8 c9 3a 93 49 03 1e 48 89
[  807.504508][    C1] RSP: 0018:ffffc90008b97288 EFLAGS: 00000246
[  807.504528][    C1] RAX: 1ffffffff1c4d6f3 RBX: 0000000000000001 RCX: 0000000080000003
[  807.504543][    C1] RDX: ffff88805c335c40 RSI: ffffffff8c28b640 RDI: ffffffff8c28b600
[  807.504560][    C1] RBP: ffff88801e08e1c0 R08: ffff88801e08e1bf R09: 1ffff11003c11c37
[  807.504577][    C1] R10: dffffc0000000000 R11: ffffed1003c11c38 R12: ffffffff823c9fd6
[  807.504594][    C1] R13: 0000000000000005 R14: ffffffff8e26b798 R15: dffffc0000000000
[  807.504612][    C1]  ? page_table_check_set+0x126/0x510
[  807.504656][    C1]  ? rcu_is_watching+0x15/0xb0
[  807.504683][    C1]  page_table_check_set+0x443/0x510
[  807.504715][    C1]  ? page_table_check_set+0x126/0x510
[  807.504751][    C1]  copy_pmd_range+0x486a/0x5970
[  807.504785][    C1]  ? arch_stack_walk+0xfb/0x150
[  807.504838][    C1]  ? __pfx_copy_pmd_range+0x10/0x10
[  807.504867][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  807.504898][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  807.504924][    C1]  ? __lock_acquire+0x6b5/0x2cf0
[  807.504955][    C1]  ? mas_wr_store_type+0xcc2/0x19d0
[  807.504992][    C1]  copy_page_range+0xbe8/0x11f0
[  807.505044][    C1]  ? __pfx_copy_page_range+0x10/0x10
[  807.505084][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  807.505111][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  807.505137][    C1]  ? __pfx_vma_interval_tree_augment_rotate+0x10/0x10
[  807.505177][    C1]  dup_mmap+0xf40/0x1d90
[  807.505223][    C1]  ? __pfx_dup_mmap+0x10/0x10
[  807.505264][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  807.505293][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  807.505324][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  807.505357][    C1]  copy_mm+0x13b/0x4a0
[  807.505384][    C1]  copy_process+0x1f1c/0x4440
[  807.505421][    C1]  ? copy_process+0xd87/0x4440
[  807.505453][    C1]  ? __pfx_copy_process+0x10/0x10
[  807.505486][    C1]  kernel_clone+0x284/0x8f0
[  807.505517][    C1]  ? __pfx_kernel_clone+0x10/0x10
[  807.505557][    C1]  __x64_sys_clone+0x1b6/0x230
[  807.505587][    C1]  ? __pfx___x64_sys_clone+0x10/0x10
[  807.505625][    C1]  ? __sanitizer_cov_trace_const_cmp4+0x8/0x90
[  807.505659][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  807.505685][    C1]  ? do_user_addr_fault+0xc6f/0x1340
[  807.505716][    C1]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  807.505740][    C1]  do_syscall_64+0x15f/0xf80
[  807.505778][    C1]  ? trace_irq_disable+0x3b/0x140
[  807.505817][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  807.505840][    C1] RIP: 0033:0x7f94d19c58d2
[  807.505861][    C1] Code: 89 e7 e8 71 8b f7 ff 45 31 c0 31 d2 31 f6 64 48 8b 04 25 10 00 00 00 bf 11 00 20 01 4c 8d 90 d0 02 00 00 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 89 c5 85 c0 75 3b 64 48 8b 04 25 10 00 00
[  807.505879][    C1] RSP: 002b:00007fff53fb0980 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  807.505900][    C1] RAX: ffffffffffffffda RBX: 00007fff53fb0980 RCX: 00007f94d19c58d2
[  807.505916][    C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  807.505930][    C1] RBP: 00007fff53fb0b0c R08: 0000000000000000 R09: 0000000000000001
[  807.505944][    C1] R10: 00005555831887d0 R11: 0000000000000246 R12: 0000000000000001
[  807.505959][    C1] R13: 00000000000927c0 R14: 00000000000ab6ce R15: 00007fff53fb0b60
[  807.505987][    C1]  </TASK>
[  807.506912][    C0] task:syz-executor    state:R  running task     stack:22360 pid:11825 tgid:11825 ppid:11816  task_flags:0x400140 flags:0x00080000
[  808.037760][    C0] Call Trace:
[  808.041035][    C0]  <TASK>
[  808.043965][    C0]  __schedule+0x1821/0x5740
[  808.048491][    C0]  ? __pfx_stack_trace_save+0x10/0x10
[  808.053892][    C0]  ? irqentry_exit+0x218/0x760
[  808.058690][    C0]  ? irqentry_exit+0x218/0x760
[  808.063491][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  808.069219][    C0]  ? irqentry_exit+0x218/0x760
[  808.074087][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  808.079725][    C0]  ? trace_irq_disable+0x3b/0x140
[  808.084763][    C0]  ? __pfx___schedule+0x10/0x10
[  808.089646][    C0]  preempt_schedule_irq+0x4d/0xa0
[  808.094681][    C0]  irqentry_exit+0x14f/0x760
[  808.099281][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  808.104914][    C0]  ? trace_irq_disable+0x3b/0x140
[  808.109957][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  808.115938][    C0] RIP: 0010:lock_acquire+0x221/0x350
[  808.121230][    C0] Code: ff ff ff e8 f1 8d 07 0a f7 44 24 08 00 02 00 00 0f 84 3a ff ff ff 65 48 8b 05 db d8 97 11 48 3b 44 24 58 75 33 fb 48 83 c4 60 <5b> 41 5c 41 5d 41 5e 41 5f 5d e9 ab 89 6e ff cc 48 8d 3d 88 7c 92
[  808.140843][    C0] RSP: 0018:ffffc90009db73d8 EFLAGS: 00000286
[  808.146967][    C0] RAX: 6628245f9e476000 RBX: 0000000000000000 RCX: 0000000000000046
[  808.154968][    C0] RDX: 000000005a44979c RSI: ffffffff8e22037a RDI: ffffffff8c28b660
[  808.162963][    C0] RBP: ffffffff8176f256 R08: ffffffff8176f256 R09: ffffffff8e95cca0
[  808.170966][    C0] R10: dffffc0000000000 R11: ffffffff81b0f020 R12: 0000000000000002
[  808.178941][    C0] R13: ffffffff8e95cca0 R14: 0000000000000000 R15: 0000000000000246
[  808.186928][    C0]  ? unwind_next_frame+0xa6/0x2550
[  808.192056][    C0]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  808.198232][    C0]  ? unwind_next_frame+0xa6/0x2550
[  808.203361][    C0]  ? __kasan_kmalloc+0x93/0xb0
[  808.208136][    C0]  ? unwind_next_frame+0xa6/0x2550
[  808.213252][    C0]  unwind_next_frame+0xc3/0x2550
[  808.218194][    C0]  ? unwind_next_frame+0xa6/0x2550
[  808.223319][    C0]  ? unwind_next_frame+0xa6/0x2550
[  808.228436][    C0]  ? kasan_save_track+0x3e/0x80
[  808.233294][    C0]  ? __kasan_kmalloc+0x93/0xb0
[  808.238072][    C0]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  808.244254][    C0]  arch_stack_walk+0x11b/0x150
[  808.249047][    C0]  ? __kasan_kmalloc+0x93/0xb0
[  808.253827][    C0]  stack_trace_save+0xa9/0x100
[  808.258606][    C0]  ? __pfx_stack_trace_save+0x10/0x10
[  808.263992][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  808.269628][    C0]  ? stack_depot_save_flags+0x33/0x810
[  808.275092][    C0]  ? __pfx_css_rstat_updated+0x10/0x10
[  808.280556][    C0]  kasan_save_track+0x3e/0x80
[  808.285241][    C0]  ? kasan_save_track+0x3e/0x80
[  808.290136][    C0]  ? __kasan_kmalloc+0x93/0xb0
[  808.294971][    C0]  __kasan_kmalloc+0x93/0xb0
[  808.299575][    C0]  __kvmalloc_node_noprof+0x528/0x8a0
[  808.304963][    C0]  ? alloc_fdtable+0x169/0x2c0
[  808.309728][    C0]  ? __kvmalloc_node_noprof+0x393/0x8a0
[  808.315296][    C0]  alloc_fdtable+0x169/0x2c0
[  808.319895][    C0]  dup_fd+0x84f/0xb40
[  808.323890][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  808.329617][    C0]  copy_files+0xc8/0x120
[  808.333863][    C0]  copy_process+0x1d94/0x4440
[  808.338563][    C0]  ? copy_process+0xd87/0x4440
[  808.343337][    C0]  ? __pfx_copy_process+0x10/0x10
[  808.348375][    C0]  kernel_clone+0x284/0x8f0
[  808.352891][    C0]  ? __pfx_kernel_clone+0x10/0x10
[  808.357942][    C0]  __x64_sys_clone+0x1b6/0x230
[  808.362712][    C0]  ? __pfx___x64_sys_clone+0x10/0x10
[  808.368020][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  808.373658][    C0]  ? do_user_addr_fault+0xc6f/0x1340
[  808.378953][    C0]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  808.385022][    C0]  do_syscall_64+0x15f/0xf80
[  808.389628][    C0]  ? trace_irq_disable+0x3b/0x140
[  808.394671][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  808.400669][    C0] RIP: 0033:0x7f4898fc58d2
[  808.405099][    C0] RSP: 002b:00007ffe3448ccd0 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  808.413522][    C0] RAX: ffffffffffffffda RBX: 00007ffe3448ccd0 RCX: 00007f4898fc58d2
[  808.421489][    C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  808.429451][    C0] RBP: 00007ffe3448ce5c R08: 0000000000000000 R09: 0000000000000001
[  808.437414][    C0] R10: 000055557e1f87d0 R11: 0000000000000246 R12: 0000000000000001
[  808.445376][    C0] R13: 00000000000927c0 R14: 00000000000ab62c R15: 00007ffe3448ceb0
[  808.453366][    C0]  </TASK>
[  808.456377][    C0] task:syz.9.5279      state:R  running task     stack:25464 pid:21000 tgid:20999 ppid:13925  task_flags:0x20400140 flags:0x00080000
[  808.470062][    C0] Call Trace:
[  808.473330][    C0]  <TASK>
[  808.476255][    C0]  __schedule+0x1821/0x5740
[  808.480776][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  808.486538][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  808.492176][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  808.497817][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  808.503455][    C0]  ? __pfx___schedule+0x10/0x10
[  808.508316][    C0]  ? lockdep_hardirqs_on+0x7a/0x110
[  808.513526][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  808.519158][    C0]  ? irqentry_exit+0x218/0x760
[  808.523930][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  808.529574][    C0]  ? preempt_schedule_thunk+0x16/0x30
[  808.534960][    C0]  preempt_schedule_common+0x82/0xd0
[  808.540256][    C0]  preempt_schedule_thunk+0x16/0x30
[  808.545470][    C0]  _raw_spin_unlock_irq+0x45/0x50
[  808.550503][    C0]  loop_queue_rq+0x9f8/0xb00
[  808.555116][    C0]  blk_mq_request_issue_directly+0x3bb/0x6d0
[  808.561130][    C0]  ? __pfx_blk_mq_request_issue_directly+0x10/0x10
[  808.567654][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  808.573295][    C0]  blk_mq_issue_direct+0x2a0/0x660
[  808.578417][    C0]  ? blk_mq_dispatch_queue_requests+0x552/0x800
[  808.584671][    C0]  ? blk_mq_dispatch_queue_requests+0x552/0x800
[  808.590924][    C0]  blk_mq_dispatch_queue_requests+0x6fe/0x800
[  808.597021][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  808.602673][    C0]  ? rcu_is_watching+0x15/0xb0
[  808.607502][    C0]  blk_mq_flush_plug_list+0x456/0x570
[  808.612898][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  808.618540][    C0]  ? blk_add_rq_to_plug+0x300/0x450
[  808.623795][    C0]  ? blk_mq_submit_bio+0x1acf/0x28e0
[  808.629125][    C0]  ? __pfx_blk_mq_flush_plug_list+0x10/0x10
[  808.635057][    C0]  __blk_flush_plug+0x3ed/0x4d0
[  808.639940][    C0]  ? __pfx___blk_flush_plug+0x10/0x10
[  808.645327][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  808.650976][    C0]  __submit_bio+0x28d/0x580
[  808.655482][    C0]  ? __pfx___submit_bio+0x10/0x10
[  808.660509][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  808.666237][    C0]  ? bio_associate_blkg+0x6d/0x230
[  808.671358][    C0]  submit_bio_noacct_nocheck+0x2f4/0xa40
[  808.677010][    C0]  ? __pfx_submit_bio_noacct_nocheck+0x10/0x10
[  808.683198][    C0]  __bread_gfp+0x216/0x3b0
[  808.687617][    C0]  exfat_create_upcase_table+0x829/0xe70
[  808.693283][    C0]  ? __pfx_exfat_create_upcase_table+0x10/0x10
[  808.699453][    C0]  ? __brelse+0x59/0x90
[  808.703618][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  808.709262][    C0]  exfat_fill_super+0x1239/0x2a50
[  808.714317][    C0]  ? __pfx_exfat_fill_super+0x10/0x10
[  808.719694][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  808.725336][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  808.731024][    C0]  ? setup_bdev_super+0x4c1/0x5b0
[  808.736075][    C0]  get_tree_bdev_flags+0x431/0x4f0
[  808.741206][    C0]  ? __pfx_exfat_fill_super+0x10/0x10
[  808.746591][    C0]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  808.752244][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  808.757890][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  808.763531][    C0]  vfs_get_tree+0x92/0x2a0
[  808.767967][    C0]  do_new_mount+0x341/0xd30
[  808.772475][    C0]  ? apparmor_capable+0x126/0x170
[  808.777505][    C0]  ? __pfx_do_new_mount+0x10/0x10
[  808.782530][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  808.788166][    C0]  ? ns_capable+0x89/0xe0
[  808.792501][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  808.798137][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  808.803777][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  808.809422][    C0]  ? user_path_at+0xd4/0x160
[  808.814047][    C0]  __se_sys_mount+0x31d/0x420
[  808.818750][    C0]  ? __pfx___se_sys_mount+0x10/0x10
[  808.823955][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  808.829622][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  808.835281][    C0]  ? __x64_sys_mount+0x20/0xc0
[  808.840051][    C0]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  808.846116][    C0]  do_syscall_64+0x15f/0xf80
[  808.850719][    C0]  ? trace_irq_disable+0x3b/0x140
[  808.855802][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  808.861717][    C0] RIP: 0033:0x7f764b59e0ca
[  808.866140][    C0] RSP: 002b:00007f764c372e58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  808.874553][    C0] RAX: ffffffffffffffda RBX: 00007f764c372ee0 RCX: 00007f764b59e0ca
[  808.882536][    C0] RDX: 0000200000002bc0 RSI: 00002000000002c0 RDI: 00007f764c372ea0
[  808.890539][    C0] RBP: 0000200000002bc0 R08: 00007f764c372ee0 R09: 0000000000000804
[  808.898541][    C0] R10: 0000000000000804 R11: 0000000000000246 R12: 00002000000002c0
[  808.906615][    C0] R13: 00007f764c372ea0 R14: 000000000000152f R15: 00002000000001c0
[  808.914618][    C0]  </TASK>
[  808.917636][    C0] rcu: rcu_preempt kthread starved for 10495 jiffies! g129721 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0
[  808.928928][    C0] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[  808.938906][    C0] rcu: RCU grace-period kthread stack dump:
[  808.944971][    C0] task:rcu_preempt     state:R  running task     stack:27968 pid:16    tgid:16    ppid:2      task_flags:0x208040 flags:0x00080000
[  808.958577][    C0] Call Trace:
[  808.961847][    C0]  <TASK>
[  808.964775][    C0]  __schedule+0x1821/0x5740
[  808.969292][    C0]  ? __lock_acquire+0x6b5/0x2cf0
[  808.974237][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  808.979876][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  808.985519][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  808.991154][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  808.996802][    C0]  ? __pfx___schedule+0x10/0x10
[  809.001669][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  809.007307][    C0]  ? schedule+0x90/0x360
[  809.011564][    C0]  schedule+0x164/0x360
[  809.015739][    C0]  schedule_timeout+0x158/0x2c0
[  809.020598][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  809.026411][    C0]  ? __pfx_schedule_timeout+0x10/0x10
[  809.031790][    C0]  ? __pfx_process_timeout+0x10/0x10
[  809.037090][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  809.042722][    C0]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  809.048537][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  809.054168][    C0]  ? prepare_to_swait_event+0x340/0x370
[  809.059735][    C0]  rcu_gp_fqs_loop+0x312/0x11d0
[  809.064599][    C0]  ? __pfx_rcu_watching_snap_recheck+0x10/0x10
[  809.070753][    C0]  ? __pfx_rcu_gp_fqs_loop+0x10/0x10
[  809.076034][    C0]  ? _raw_spin_unlock_irq+0x2e/0x50
[  809.081246][    C0]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  809.087064][    C0]  rcu_gp_kthread+0x9e/0x2b0
[  809.091657][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  809.096849][    C0]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  809.102664][    C0]  ? __kthread_parkme+0x7a/0x1f0
[  809.107612][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  809.113243][    C0]  ? __kthread_parkme+0x19c/0x1f0
[  809.118280][    C0]  kthread+0x389/0x470
[  809.122357][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  809.127549][    C0]  ? __pfx_kthread+0x10/0x10
[  809.132146][    C0]  ret_from_fork+0x514/0xb70
[  809.136744][    C0]  ? __pfx_ret_from_fork+0x10/0x10
[  809.141854][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  809.147508][    C0]  ? __switch_to+0xc79/0x1410
[  809.152234][    C0]  ? __pfx_kthread+0x10/0x10
[  809.156845][    C0]  ret_from_fork_asm+0x1a/0x30
[  809.161647][    C0]  </TASK>
[  809.164659][    C0] rcu: Stack dump where RCU GP kthread last ran:
[  809.170986][    C0] CPU: 0 UID: 0 PID: 139 Comm: kworker/u8:6 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  809.182275][    C0] Tainted: [L]=SOFTLOCKUP
[  809.186587][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  809.196638][    C0] Workqueue: events_unbound toggle_allocation_gate
[  809.203162][    C0] RIP: 0010:smp_call_function_many_cond+0xfd4/0x13d0
[  809.209841][    C0] Code: 89 ee 83 e6 01 31 ff e8 7a 06 0c 00 41 83 e5 01 49 bd 00 00 00 00 00 fc ff df 75 07 e8 25 02 0c 00 eb 37 f3 90 43 0f b6 04 2c <84> c0 75 10 41 f7 06 01 00 00 00 74 1e e8 0a 02 0c 00 eb e5 44 89
[  809.229446][    C0] RSP: 0018:ffffc90002eaf700 EFLAGS: 00000293
[  809.235516][    C0] RAX: 0000000000000000 RBX: ffff8880b863c148 RCX: ffff88801f7d1ec0
[  809.243482][    C0] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[  809.251443][    C0] RBP: ffffc90002eaf840 R08: ffffffff9030d5f7 R09: 1ffffffff2061abe
[  809.259457][    C0] R10: dffffc0000000000 R11: fffffbfff2061abf R12: 1ffff110170e8169
[  809.267444][    C0] R13: dffffc0000000000 R14: ffff8880b8740b48 R15: 0000000000000001
[  809.275434][    C0] FS:  0000000000000000(0000) GS:ffff888125287000(0000) knlGS:0000000000000000
[  809.284363][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  809.290943][    C0] CR2: 0000561296df5dc8 CR3: 000000000e74a000 CR4: 0000000000350ef0
[  809.298913][    C0] Call Trace:
[  809.302185][    C0]  <TASK>
[  809.305116][    C0]  ? __pfx_do_sync_core+0x10/0x10
[  809.310162][    C0]  ? __pfx_smp_call_function_many_cond+0x10/0x10
[  809.316490][    C0]  ? kmem_cache_alloc_bulk_noprof+0xae/0x7c0
[  809.322482][    C0]  ? __pfx___text_poke+0x10/0x10
[  809.327431][    C0]  ? __pfx_do_sync_core+0x10/0x10
[  809.332464][    C0]  on_each_cpu_cond_mask+0x3f/0x80
[  809.337584][    C0]  smp_text_poke_batch_finish+0x5f5/0x1160
[  809.343405][    C0]  ? arch_jump_label_transform_apply+0x17/0x30
[  809.349663][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  809.354683][    C0]  ? __pfx_smp_text_poke_batch_finish+0x10/0x10
[  809.360935][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  809.366574][    C0]  ? arch_jump_label_transform_queue+0x97/0x110
[  809.372832][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  809.378474][    C0]  arch_jump_label_transform_apply+0x1c/0x30
[  809.384465][    C0]  static_key_enable_cpuslocked+0x128/0x240
[  809.390366][    C0]  static_key_enable+0x1a/0x20
[  809.395132][    C0]  toggle_allocation_gate+0xab/0x290
[  809.400430][    C0]  ? __pfx_toggle_allocation_gate+0x10/0x10
[  809.406333][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  809.411971][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  809.417606][    C0]  ? process_scheduled_works+0xa70/0x1860
[  809.423330][    C0]  ? process_scheduled_works+0xa70/0x1860
[  809.429049][    C0]  process_scheduled_works+0xb5d/0x1860
[  809.434610][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  809.440367][    C0]  ? __pfx_process_scheduled_works+0x10/0x10
[  809.446354][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  809.451988][    C0]  ? assign_work+0x3d5/0x5e0
[  809.456580][    C0]  worker_thread+0xa53/0xfc0
[  809.461188][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  809.466920][    C0]  kthread+0x389/0x470
[  809.470994][    C0]  ? __pfx_worker_thread+0x10/0x10
[  809.476102][    C0]  ? __pfx_kthread+0x10/0x10
[  809.480699][    C0]  ret_from_fork+0x514/0xb70
[  809.485291][    C0]  ? __pfx_ret_from_fork+0x10/0x10
[  809.490398][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  809.496044][    C0]  ? __switch_to+0xc79/0x1410
[  809.501169][    C0]  ? __pfx_kthread+0x10/0x10
[  809.505766][    C0]  ret_from_fork_asm+0x1a/0x30
[  809.510551][    C0]  </TASK>