last executing test programs:

3m3.959235739s ago: executing program 3 (id=1720):
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
writev(0xffffffffffffffff, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = syz_open_dev$loop(&(0x7f0000000240), 0x6, 0x0)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/pm_freeze_timeout', 0x82802, 0xf)
ioctl$LOOP_CONFIGURE(r1, 0x4c0a, &(0x7f0000000280)={r2, 0x0, {0x0, 0x0, 0x0, 0x32, 0x4000000000001001, 0x0, 0x0, 0x1c, 0xc, "faf98317e5a1149989fc8dbe53ea6acc96e3a2503dc3bd3fe37d58128bbad0099cebdc25f5ab60c9e6d680f985881a8a0f3500000000000000000e00", "32d8cc26f7061a74df2cfc06c89f3d9e234b30c50997d3bef409ff2176ff7bfe55cd4a5d83cd4a524bd3ffe70c7f3f800b2f7b6aa54cc50a1fcaed1e831fa79a", "675237601a8ca5b07dcc141802c4dae4162e43ac61b7ad3300", [0x3, 0x6]}})
close_range(r0, 0xffffffffffffffff, 0x0)

3m3.958806409s ago: executing program 3 (id=1721):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmmsg$inet6(r0, &(0x7f0000000a40)=[{{&(0x7f0000000000)={0xa, 0x4e24, 0x0, @remote, 0x9}, 0x1c, 0x0, 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="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"], 0x590}}, {{0x0, 0x0, &(0x7f0000000180)=[{&(0x7f00000012c0)="0a649329b2a344470f9bc0faa8d0cf04aa19bcc4cb4b0f6cccc826140704427ced8e3a0b950b7fffb3", 0x29}], 0x1}}], 0x2, 0x8008800)
sendto$inet6(r0, &(0x7f00000001c0)="bacddef1e2ff0c3ad7a1d4cb", 0xc, 0x0, 0x0, 0x0)

3m3.94461431s ago: executing program 3 (id=1722):
r0 = socket(0xa, 0x5, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000b00)=[@in6={0xa, 0x4e24, 0x6, @loopback, 0x2b}], 0x1c)
sendto$inet6(r0, &(0x7f0000000040)="00d8", 0x2, 0x4c014, &(0x7f0000000100)={0xa, 0x4e24, 0xb, @loopback, 0xc5f}, 0x1c)
writev(0xffffffffffffffff, &(0x7f0000000080)=[{&(0x7f0000000340)="480000001400190d09034beafd0d36020a841a000000230f00000000a2bc5603ca00000f7f89004e00200000000101ff00c00e03000200000000000000000300005839c900910000", 0x48}], 0x1)
r1 = fsopen(&(0x7f0000000000)='autofs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r1, 0x1, &(0x7f0000000040)='fd', &(0x7f00000000c0)='3', 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000100)='syzkaller\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x40f00, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x18}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000280))
syz_io_uring_setup(0x499, &(0x7f0000000580)={0x0, 0x2e11, 0x4000, 0x3, 0x2df}, 0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
mount(&(0x7f0000000140)=@nullb, &(0x7f0000000040)='./cgroup\x00', &(0x7f00000000c0)='minix\x00', 0x0, 0x0)

3m2.73829469s ago: executing program 3 (id=1723):
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f00000001c0)='./file0\x00', 0x2048c5, &(0x7f0000000340)={[{@fat=@uid={'uid', 0x3d, 0xee00}}, {@shortname_winnt}, {@numtail}, {@fat=@usefree}, {@uni_xlate}, {@uni_xlateno}, {@fat=@sys_immutable}, {@fat=@nfs_stale_rw}, {@fat=@debug}, {@shortname_mixed}, {@fat=@tz_utc}, {@utf8no}, {@utf8}]}, 0x0, 0x29f, &(0x7f0000000840)="$eJzs3UFrE1sYxvGnSdukKW2yKBfuhct9uW50M7TxEwRpQQwotRF1IUztREPGpGRiJCK2O7d+juLSlYL6Bbpx517cFEFw04UYaZKxaRswra1Tzf8HYU7OOe/MmZyZ8M5AJlvXn94rFwOn6NYVS5pi0rq2pcxOqWuku4y1y+Pqta5zk5/f/Xv1xs1LuXx+ftFsIbd0Pmtm0/+9evDo2f9v6pPXnk+/TGgzc2vrU/b95l+bf299XQrXXpVcW65W6+6y79lKKSg7Zld8zw08K1UCr1a3nvaiX11dbZpbWZlKrda8IDC30rSy17R61eq1prl33FLFHMexqZSGTfzQEYWNxUU3dyKDQRQm+lXWajk33rexsPErBgUAAE6XqPL/u6XASoFVqnvy+4P5f0yHyP+loc7/D4/8fxjs5P+p7vm7F/k/AAAAAAAAAAAAAAAAAAAAAAC/g+1WK91qtdLhMnwlJCUlhe+jHidOBvM/3Hp+uJeU/CeNQqPQWXbac0WV5MvT7Jj0pX08dHXKCxfz87PWltFrf60bv9YoxJUI40OZ/vFznXjrjV/TmFK9288qrZn+8dk+8Y3CuM6eaSW6W/bkKK23t1WVr5X2cb0b/3jO7MLl/L74iXY/AAAAAAD+BI59d+D6vd3uWPjYkH3tncrd+wNK/+D+wL7r61H9MxrdfgMAAAAAMEyC5sOy6/tebQgK4f8fHMsKo//okoN2HpXUrXlxWuZikEJM0lHD4z83yx8l7amZiXy6j6Pw4X7nDBikc5TfSgAAAABOQpj0j0Q9EAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAhtigDw8L+x/l2WM9m4tHs5cAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADA6fAtAAD//2kbF4o=")
r0 = syz_open_procfs(0x0, &(0x7f0000000540)='mounts\x00')
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000500)='./file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x1333404, 0x0)
mount$bind(&(0x7f0000000300)='./file0\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x11080, 0x0)
mount$bind(&(0x7f0000000240)='.\x00', &(0x7f0000000280)='./file0\x00', 0x0, 0x1005848, 0x0)
read$FUSE(r0, &(0x7f0000002c00)={0x2020}, 0x2020)

3m2.683165303s ago: executing program 3 (id=1724):
r0 = syz_open_dev$video(&(0x7f0000000000), 0x485, 0x40000)
set_mempolicy(0x3, &(0x7f0000000080)=0x2, 0x8)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, 0x0, &(0x7f0000000140)='GPL\x00'}, 0x94)
setsockopt$sock_timeval(r1, 0x1, 0x15, &(0x7f0000000080)={0x0, 0x2710}, 0x10)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r2=>0x0)
socket$nl_route(0x10, 0x3, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0200000004000000040000000600000000000000", @ANYRES32, @ANYRES32=0x0, @ANYBLOB], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000740)=@base={0xc, 0x4, 0x4, 0x10000, 0x0, r3, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x3}, 0x50)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@ipv6_newnexthop={0x1c, 0x68, 0x5fb9a818fb7378e9, 0x0, 0x0, {}, [@NHA_BLACKHOLE={0x4}]}, 0x1c}}, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r2, 0x1, 0x0, 0x0)
ioctl$VIDIOC_S_SELECTION(r0, 0xc040565f, &(0x7f0000000040)={0x9, 0x100, 0x0, {0xffffffff, 0xbde, 0xfffffffd, 0x10004}})

2m53.302991549s ago: executing program 3 (id=1728):
socket(0x2, 0x80805, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r1 = socket$pptp(0x18, 0x1, 0x2)
bind$pptp(r1, &(0x7f0000000000)={0x18, 0x2, {0x0, @local}}, 0x1e)
connect$pptp(r1, &(0x7f0000000080)={0x18, 0x2, {0x0, @rand_addr=0x64010102}}, 0x1e)
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f00000015c0), 0x2300, 0x0)
ioctl$PPPIOCATTCHAN(r2, 0x40047438, 0x0)
readv(r2, &(0x7f00000002c0)=[{&(0x7f00000000c0)=""/75, 0x4b}], 0x1)
close_range(r0, 0xffffffffffffffff, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004}, 0x0)

2m53.236352873s ago: executing program 32 (id=1728):
socket(0x2, 0x80805, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r1 = socket$pptp(0x18, 0x1, 0x2)
bind$pptp(r1, &(0x7f0000000000)={0x18, 0x2, {0x0, @local}}, 0x1e)
connect$pptp(r1, &(0x7f0000000080)={0x18, 0x2, {0x0, @rand_addr=0x64010102}}, 0x1e)
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f00000015c0), 0x2300, 0x0)
ioctl$PPPIOCATTCHAN(r2, 0x40047438, 0x0)
readv(r2, &(0x7f00000002c0)=[{&(0x7f00000000c0)=""/75, 0x4b}], 0x1)
close_range(r0, 0xffffffffffffffff, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004}, 0x0)

2m6.111017114s ago: executing program 5 (id=1822):
syz_usb_control_io$cdc_ncm(0xffffffffffffffff, 0x0, 0x0)
syz_mount_image$erofs(&(0x7f0000000040), &(0x7f0000000580)='./file2\x00', 0x2000000, &(0x7f0000000940)=ANY=[@ANYRES32=0x0, @ANYBLOB="8bfce1e4d1bfd4b56536c06d263d21d087954d049239cb40ade6cac6559a1875c67a1cec308796802e7ed2d1a1536bcbebd9f7ccb87e41b622835ddcae0dfe0ad5f992", @ANYBLOB="176a0fedf93cc5bcb453e234a151d4e63b9f26c86930d3e5eb87b04fc014f958312a755c414f7cd0907137d83a8a20c75d5befaefb06407a9b7bc50616d55e139ef0447e86146671874a061d713fac336e0bae8dca3b2b5ecd64925bfb953a36b5e85e82fa7deb45d59b452e0b579916772d120f0e34af74fe16fc5f4ac1ac0cb77e82abefe1bacac8efa199cca4145c8ac3822c4209211ffc1d3eb7dc86d4bf1643"], 0x5, 0x23c, &(0x7f0000000700)="$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")
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x2408041, &(0x7f0000000080)={[{@data_journal}]}, 0x3e, 0x544, &(0x7f0000000a40)="$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")
socket$netlink(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
ioctl$KDSIGACCEPT(0xffffffffffffffff, 0x4b4e, 0x1b)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x1000000008a}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000300)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
prlimit64(r0, 0xd, &(0x7f0000000680)={0xfffffffffffffffc, 0xf}, &(0x7f00000006c0))
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
ioctl$SW_SYNC_IOC_CREATE_FENCE(0xffffffffffffffff, 0xc0285700, &(0x7f0000000080)={0x1, "0600000000000000c64c3b6e6ff82a75e5318fca4288c2ffbdbec772020acd2c"})
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
fchdir(r3)
r4 = openat$cgroup_ro(r3, &(0x7f0000000640)='blkio.bfq.io_queued_recursive\x00', 0x275a, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0)
write$cgroup_int(r4, &(0x7f0000000200)=0x1, 0x12)
r5 = inotify_init1(0x0)
r6 = dup(r5)
inotify_rm_watch(r6, 0x0)

2m4.363009096s ago: executing program 5 (id=1826):
semtimedop(0x0, 0x0, 0x0, 0x0)
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
r1 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, 0x0, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x14, 0x52, 0x1, 0x0, 0x0, {0xa}}, 0x14}}, 0x0)
syz_usb_disconnect(r0)
syz_usb_connect(0x4, 0x24, &(0x7f00000000c0)=ANY=[@ANYBLOB="1c13c6"], 0x0)
ioctl$EVIOCRMFF(r0, 0xc0085508, &(0x7f0000000080))

2m2.671167944s ago: executing program 5 (id=1836):
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000080)='./file2\x00', 0x80000c, &(0x7f00000000c0)=ANY=[@ANYBLOB="706172743d3078303030303030303030303030303030342c6e6c733d69736f383835392d312c626172726965722c73657373696f6e3d3078666666666666666666666666653734632c63726561746f723dddf2bd6c2c6465636f6d706f73652c7569643d", @ANYRESHEX=0x0, @ANYBLOB="2c756d61736b3d30303030303030303030303030303030303030303030332c63726561746f723d85f194712c6465636f6d706f73652c63726561746f723d65fe04c22c756d61736b3d30303030303030303030303030303030303030303231372c6465636f6d706f73652c666f7263652c73657373696f6e3d3078303030303030303030303030333966372c6e6c733d6d6163726f6d7db02c666f7263652c6e6f6465636f6d706f73652c00"], 0x1, 0x6e4, &(0x7f0000000340)="$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")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000580)='.\x00', 0x8880, 0x85)
lseek(r0, 0x100, 0x1)
getdents64(r0, 0x0, 0x4f)

2m2.592373938s ago: executing program 5 (id=1838):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000100)={0x1, &(0x7f0000000140)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000400)='./file3\x00', 0xa08803, &(0x7f0000000180)=ANY=[@ANYRES32=r0, @ANYRES8=r0, @ANYRES64=r0, @ANYRESHEX=r0, @ANYRES16=r0], 0x1, 0x6b8, &(0x7f0000000440)="$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")
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$tmpfs(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x84022, 0x0)
setxattr$incfs_id(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, 0x0, 0x1)

2m2.425236938s ago: executing program 5 (id=1841):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000000ec0)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00'}, 0x48)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r0, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000e80)="b9e403c6631e39495aa05dc7cf47", 0x0, 0x7ab, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

2m0.637003462s ago: executing program 5 (id=1854):
r0 = syz_usb_connect(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x77, 0x29, 0x4, 0x20, 0x424, 0x9901, 0xc257, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x10, 0x0, [{{0x9, 0x4, 0x43, 0x0, 0x2, 0x31, 0x7d, 0x55, 0x0, [], [{{0x9, 0x5, 0x2, 0x2, 0x200, 0x2}}, {{0x9, 0x5, 0x82, 0x2, 0x200}}]}}]}}]}}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, &(0x7f0000000680)={0x44, &(0x7f0000000280)={0x0, 0x1, 0x4, "d7aeb668"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f00000007c0)={0x84, &(0x7f00000002c0)={0x20, 0x7, 0x71, "20b8bf4f704d55cf9389ceced5944d1e71267b607c8ea57e7160e3d5adad1920b36c08512d5e8414497260c54ca0d1560da495a9a7c6bb950226dc03e462af861b1f7d043c68491d84fde29e171de381fef9ef5f57d7faeaa85cf0778fe3fb222a551647e91bf815323c7d99b0d04d1bc0"}, 0x0, &(0x7f00000003c0)={0x0, 0x8, 0x1, 0x13}, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x40, 0xf, 0x2}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

2m0.577084956s ago: executing program 33 (id=1854):
r0 = syz_usb_connect(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x77, 0x29, 0x4, 0x20, 0x424, 0x9901, 0xc257, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x10, 0x0, [{{0x9, 0x4, 0x43, 0x0, 0x2, 0x31, 0x7d, 0x55, 0x0, [], [{{0x9, 0x5, 0x2, 0x2, 0x200, 0x2}}, {{0x9, 0x5, 0x82, 0x2, 0x200}}]}}]}}]}}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, &(0x7f0000000680)={0x44, &(0x7f0000000280)={0x0, 0x1, 0x4, "d7aeb668"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f00000007c0)={0x84, &(0x7f00000002c0)={0x20, 0x7, 0x71, "20b8bf4f704d55cf9389ceced5944d1e71267b607c8ea57e7160e3d5adad1920b36c08512d5e8414497260c54ca0d1560da495a9a7c6bb950226dc03e462af861b1f7d043c68491d84fde29e171de381fef9ef5f57d7faeaa85cf0778fe3fb222a551647e91bf815323c7d99b0d04d1bc0"}, 0x0, &(0x7f00000003c0)={0x0, 0x8, 0x1, 0x13}, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x40, 0xf, 0x2}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

6.919305207s ago: executing program 4 (id=2779):
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x2)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000280), 0x42, 0x0)
mount$fuse(0x0, 0x0, &(0x7f00000000c0), 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRESDEC=r0, @ANYBLOB=',rootmode=00000000000000000040000,use', @ANYRESDEC=0x0, @ANYRESDEC=0x0])
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)
removexattr(&(0x7f0000000080)='./file0\x00', &(0x7f0000000140)=ANY=[@ANYBLOB='trust'])

5.957027833s ago: executing program 4 (id=2799):
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000080)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x399446c, 0x0, 0x1, 0x0, &(0x7f0000000080))
sendmsg$DEVLINK_CMD_SB_PORT_POOL_GET(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB='|\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000327bd7000fedbdf251300000008000100706369303a30303a31302e3000000000080003000000000008000b00d009000006001100070000000800010070636900110002"], 0x7c}, 0x1, 0x0, 0x0, 0x4000000}, 0x48050)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', <r1=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="700200001300290a000000000000000007000000", @ANYRES32=r1, @ANYBLOB="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"], 0x270}, 0x1, 0x0, 0x0, 0x20008014}, 0x4)
r2 = socket(0x10, 0x3, 0x0)
sendmmsg(r2, &(0x7f0000000000), 0x4000000000001f2, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb010018000000000000003c0000003c00000002000000000000000100000d0300000000000000030000000000000000000001050000000800"], 0x0, 0x56}, 0x28)

5.911382446s ago: executing program 4 (id=2800):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x1000040, &(0x7f00000002c0)={[{@barrier}, {@nodioread_nolock}, {@noquota}, {@barrier}, {@auto_da_alloc}, {@nodioread_nolock}]}, 0x1, 0x59c, &(0x7f0000001840)="$eJzs3U9oHGUbAPBnZrNN/+T70g++Dz6lh6JChdJN0j9aPbVXsVDoQfCiYbMNJZtsySbahIDpvYg9iEov9aYHj4oHD+LFo1cvimeh2KDQ9KArm51N03S3bmI2W7O/H0z2fWdm93nfmX3e7AwzTAB962j9TxrxVERcTCKGNywbiGzh0cZ6qytLxfsrS8UkarVLvySRRMS9laVic/0kez0UEcsR8f+I+CYfcTxd/8h9zUJ1YXFqvFwuzWb1kbnpqyPVhcUTV6bHJ0uTpZlTL7505uzpM2MnxzY2935tYy2/tb7e+PHmuze+e+X2zU8/O7JcfH88iXMxlC3b2I+d1Ngm+Ti3af7pbgTroaTXDWBbclme11PpfzEcuSzrW6ltHBwGd6V5QBfVBiNq6zYUgT6QSHroU83fAfXj3+a0m78/7pxvHIDU466uLBXfiWb8gca5idi/dmxy8NfkoSOT+vHm4d1sKHvS8vWIGB0YePT7n2Tfv+0b3YkG0lVfn2/sqEf3f7o+/kSL8Weoee70b2qOf6vZ+LfaIn6uzfh3scMYv7/+00dt418fjKdbxk/W4yct4qcR8WaH8W+99uXZdstqH0cci9bxm5LHnx8euXylXBpt/G0Z46tjR15u3/+Ig23iN87Z7l9ryMb+78valHbY/y++/fyZ5cfEf/7Zx+//Vtv/QES812H8/9z75NV2y+5cT+7WfwVsdf8nkY/bHcZ/4dzRH7Kis4YAAAAAAAAAALCD0rVr2ZK0sF5O00KhcQ/vf+NgWq5U545frszPTDSueTsc+bR5pdVwo57U62PZ9bjN+slN9VO5LGDuwFq9UKyUJ3rcdwAAAAAAAAAAAAAAAAAAAHhSHNp0//9vubX7/zc/rhrYq9o/8hvY6+Q/9K+H8z/pWTuA3ef/P/StmvyH/iX/oX/Jf+hf8h/6l/yH/iX/oX/JfwAAAAAAAAAAAAAAAAAAAAAAAAAA6IqLFy7Up9r9laVivT4xsDA/VXnrxESpOlWYni8WipXZq4XJSmWyXCoUK9N/9XlJpXJ1NGbmr43MlapzI9WFxTemK/MzzWeKlvJd7xEAAAAAAAAAAAAAAAAAAAD88wytTUlaiMg36mlaKET8KyIOJ5FcvlIujUbEvyPi+1x+sF4f63WjAQAAAAAAAAAAAAAAAAAAYI+pLixOjZfLpdnuFQayUF0M0XlhYCsrR8Tyzjaj/olbflc+24A93nR7o5B7Mr6HT36hh4MSAAAAAAAAAAAAAAAAAAD0qQc3/Xb6jj+62yAAAAAAAAAAAAAAAAAAAADoS+nPSUTUp2PDzw1tXrovWc2tvUbE27cufXBtfG5udqw+/+76/LkPs/kne9F+oFPNPE0jop7HAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwAPVhcWp8XK5NLvNwmAH6/S6jwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADb8WcAAAD//y4WzlE=")
syz_emit_ethernet(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = openat$tcp_congestion(0xffffffffffffff9c, 0x0, 0x1, 0x0)
close_range(r3, r3, 0x2)
socket$netlink(0x10, 0x3, 0x0)
r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(r4, &(0x7f0000000040)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0xb}, 0xe)
epoll_create1(0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = socket$inet6(0xa, 0x80003, 0xff)
setsockopt$inet6_int(r5, 0x29, 0x16, 0x0, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
write(r6, &(0x7f0000000540)="953820a61a166fd5dd4b4b", 0xfdef)
truncate(&(0x7f00000000c0)='./file1\x00', 0x2)

4.935245712s ago: executing program 4 (id=2801):
getdents64(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(twofish)\x00'}, 0x58)
recvmsg(0xffffffffffffffff, 0x0, 0x12122)
r1 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
write$UHID_CREATE2(r1, &(0x7f00000007c0)=ANY=[@ANYBLOB="0b00000073797a31000000dfff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a30000037b35f0a000089b4c45a10000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001"], 0x119)
r2 = syz_open_dev$hidraw(&(0x7f0000000000), 0x0, 0x81)
ioctl$HIDIOCSFEATURE(r2, 0xc0404806, &(0x7f0000000040))
write$UHID_SET_REPORT_REPLY(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="0e00000001"], 0xc)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

4.785916241s ago: executing program 0 (id=2805):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$UI_DEV_CREATE(r0, 0x5501)

4.758554133s ago: executing program 4 (id=2806):
fanotify_mark(0xffffffffffffffff, 0x400, 0x40001022, 0xffffffffffffffff, 0x0)

4.694962367s ago: executing program 0 (id=2807):
syz_usb_connect(0x2, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100005f04f720a00e5868377a010203010902240001000010000904760002bacd910009050202000200000000000000001502d7888062e201515893a4000000000e697271eaede170aa61eb77adb5d55dceeb853cd7c4a8d26ba3f139d4d4df057c87ec7e827c70195bd4cd7422a3ff2a169a529b"], 0x0)

4.694780107s ago: executing program 4 (id=2808):
set_mempolicy(0x3, &(0x7f0000000080)=0x2, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, 0x0, &(0x7f0000000140)='GPL\x00'}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0200000004000000040000000600000000", @ANYBLOB], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000740)=@base={0xc, 0x4, 0x4, 0x10000, 0x0, r0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x3}, 0x50)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@ipv6_newnexthop={0x1c, 0x68, 0x5fb9a818fb7378e9, 0x0, 0x0, {}, [@NHA_BLACKHOLE={0x4}]}, 0x1c}}, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(0x0, 0x1, 0x0, 0x0)
ioctl$VIDIOC_S_SELECTION(0xffffffffffffffff, 0xc040565f, &(0x7f0000000040)={0x9, 0x100, 0x0, {0xffffffff, 0xbde, 0xfffffffd, 0x10004}})

4.171031847s ago: executing program 2 (id=2811):
syz_genetlink_get_family_id$wireguard(&(0x7f0000000200), 0xffffffffffffffff)
syz_usb_connect(0x0, 0x24, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$NL80211_CMD_NEW_INTERFACE(0xffffffffffffffff, 0x0, 0x82010)
socket$inet6_udp(0xa, 0x2, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$NL80211_CMD_DEAUTHENTICATE(0xffffffffffffffff, 0x0, 0x4800)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x80, &(0x7f0000002140)=ANY=[@ANYBLOB, @ANYBLOB, @ANYRESDEC=0x0])
read$FUSE(r1, &(0x7f0000006300)={0x2020}, 0x2020)
syz_fuse_handle_req(r1, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x80101, 0x0)
r2 = syz_open_procfs(0x0, 0x0)
read$FUSE(r2, 0x0, 0x0)
pread64(r2, &(0x7f0000000480)=""/209, 0xd1, 0x2)
lseek(r1, 0xe, 0x4)
sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=@newsa={0x138, 0x10, 0x1, 0xfffffffe, 0x100, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x1, 0x714, 0x4e23, 0x5, 0x0, 0x0, 0x0, 0x3a}, {@in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x4d4, 0x6c}, @in=@loopback, {0x0, 0x192, 0x6, 0xffff, 0x8251c, 0x2, 0xfffffffffffffff8}, {0xffffffffffffffff, 0x0, 0x1f, 0xfffffffffffffffe}, {0x1, 0xfffffffc}, 0x70bd2a, 0x3504, 0x2, 0x1, 0x0, 0x20}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}]}, 0x138}, 0x1, 0x0, 0x0, 0x8801}, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=@newsa={0xf0, 0x1c, 0x1, 0xfffffffe, 0x100, {{@in6=@mcast1, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x1, 0x71c, 0x4e23, 0x9, 0x0, 0x0, 0x0, 0x3a}, {@in6=@mcast2, 0x4d4, 0x6c}, @in=@dev={0xac, 0x14, 0x14, 0x25}, {0x0, 0x192, 0x9ba3, 0xffff, 0x8251c, 0x5, 0xfffffffffffffffc}, {0xffffffffffffffff, 0x0, 0x1f, 0xfffffffffffffffe}, {0xfffffffa, 0x1}, 0x80, 0x0, 0x2, 0x1, 0x0, 0x20}}, 0xf0}, 0x1, 0x0, 0x0, 0x8801}, 0x0)

3.976888218s ago: executing program 1 (id=2813):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffff, 0x3}, 0x6)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x8, 0x10012, r1, 0x0)
write$binfmt_misc(r0, &(0x7f0000000000), 0xd)

3.899335223s ago: executing program 1 (id=2814):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x601c2, 0x0)
ftruncate(r0, 0x8800000)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$BTRFS_IOC_GET_DEV_STATS(r1, 0xc4089434, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
dup(r1)
openat$vcsu(0xffffffffffffff9c, &(0x7f0000001080), 0x0, 0x0)
pipe2$9p(0x0, 0x0)
r2 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, 0x0, 0x20004810)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r2, 0x8004587d, &(0x7f0000000080)={@id={0x2, 0x0, @auto="0c087301000000000000612bf6eabc00"}})
r4 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r5=>0x0})
r6 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x6, 0x4, &(0x7f00000006c0)=ANY=[@ANYBLOB="180200000000000000000000000000008500000017000000950000000000000060bda108010da26a15544b2a4c738e0fa0f897aa278b325764f2dcd6b865984f599ffe6cad199d36bc80e98b17249acf845992d69cc4a092d0655f0e225d2f568bd76a618d10b49d26440819e5f1e36c54"], &(0x7f00000005c0)='GPL\x00'}, 0x80)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000180)={r6, r5, 0x25, 0x0, @void}, 0x10)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
syz_emit_ethernet(0x2e, &(0x7f0000002000)=ANY=[], 0x0)

3.859645665s ago: executing program 1 (id=2815):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x601c2, 0x0)
ftruncate(r0, 0x8800000)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000400)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
recvmmsg(r2, &(0x7f00000034c0)=[{{0x0, 0x0, &(0x7f0000001e40)=[{&(0x7f0000000b80)=""/4096, 0x20001b80}, {&(0x7f0000001b80)=""/112, 0x70}], 0x2, 0x0, 0xa0028cb4}}], 0x40000000000013c, 0x700, 0x0)
sendfile(r1, r0, 0x0, 0x578410e9)
sendfile(r1, r0, 0x0, 0x100000000)

3.43507813s ago: executing program 2 (id=2816):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x601c2, 0x0)
ftruncate(r0, 0x8800000)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$BTRFS_IOC_GET_DEV_STATS(r1, 0xc4089434, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
r2 = dup(r1)
r3 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000001080), 0x0, 0x0)
pipe2$9p(0x0, 0x0)
r4 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, 0x0, 0x20004810)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r4, 0x8004587d, &(0x7f0000000080)={@id={0x2, 0x0, @auto="0c087301000000000000612bf6eabc00"}})
r6 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r7=>0x0})
r8 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x6, 0x4, &(0x7f00000006c0)=ANY=[@ANYBLOB="180200000000000000000000000000008500000017000000950000000000000060bda108010da26a15544b2a4c738e0fa0f897aa278b325764f2dcd6b865984f599ffe6cad199d36bc80e98b17249acf845992d69cc4a092d0655f0e225d2f568bd76a618d10b49d26440819e5f1e36c54"], &(0x7f00000005c0)='GPL\x00'}, 0x80)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000180)={r8, r7, 0x25, 0x0, @void}, 0x10)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
syz_emit_ethernet(0x2e, &(0x7f0000002000)=ANY=[], 0x0)
io_setup(0x200, &(0x7f00000010c0)=<r9=>0x0)
io_submit(r9, 0x1, &(0x7f0000000800)=[&(0x7f0000000040)={0x0, 0x0, 0x0, 0x5, 0xfffe, r3, 0x0}])
write$UHID_INPUT(r2, &(0x7f0000001040)={0xe, {"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", 0x1040}}, 0x1006)

3.274733299s ago: executing program 2 (id=2817):
r0 = syz_open_procfs(0x0, 0x0)
fchdir(r0)
mount(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000000)='proc\x00', 0x800000, 0x0)
r1 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
exit(0x2616)
fchdir(r1)

3.179360685s ago: executing program 0 (id=2818):
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$netlink(0x10, 0x3, 0x4)
r0 = syz_open_procfs(0x0, &(0x7f0000000480)='net/fib_triestat\x00')
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000500)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = shmget(0x2, 0x1000, 0x1, &(0x7f0000935000/0x1000)=nil)
shmctl$IPC_INFO(r4, 0x3, 0x0)
r5 = openat(r0, 0x0, 0xc0001, 0x4)
sendfile(0xffffffffffffffff, r5, 0x0, 0x3a)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000540)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, 0x0, 0x1a, 0x0, 0x1, 0x7}, 0x28)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000003c0)={r5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
pread64(r0, &(0x7f000004b680)=""/102363, 0x18fdb, 0x2)
shmctl$SHM_INFO(r4, 0xe, &(0x7f0000000580)=""/162)

2.796613507s ago: executing program 6 (id=2819):
r0 = socket(0x2, 0x80802, 0x0)
sendmsg$inet(r0, &(0x7f0000000a80)={&(0x7f00000193c0)={0x2, 0x4e23, @loopback}, 0x10, 0x0}, 0x1c880)
sendmmsg$unix(r0, &(0x7f0000005e80)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}}, {{&(0x7f0000000a00)=@file={0x0, './file0\x00'}, 0x6e, 0x0, 0x0, 0x0, 0x0, 0xc800}}], 0x2, 0x0)

2.73735457s ago: executing program 6 (id=2820):
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_GET(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB='|\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000327bd7000fedbdf251300000008000100706369303a30303a31302e3000000000080003000000000008000b00d009000006001100070000000800010070636900110002"], 0x7c}, 0x1, 0x0, 0x0, 0x4000000}, 0x48050)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', <r1=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="700200001300290a000000000000000007000000", @ANYRES32=r1, @ANYBLOB="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"], 0x270}, 0x1, 0x0, 0x0, 0x20008014}, 0x4)
r2 = socket(0x10, 0x3, 0x0)
sendmmsg(r2, &(0x7f0000000000), 0x4000000000001f2, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb010018000000000000003c0000003c00000002000000000000000100000d0300000000000000030000000000000000000001050000000800"], 0x0, 0x56}, 0x28)

2.721049502s ago: executing program 1 (id=2821):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x71096000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000000300)={0x38, 0x1403, 0x1, 0x0, 0x0, "", [{{0x9, 0x2, 'syz0\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'vlan1\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x80c9}, 0x20000000)
r3 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8002, 0x0)
write$P9_RSTATu(r3, &(0x7f0000000900)={0x667, 0x7d, 0x0, {{0x500, 0x2b5, 0x0, 0x0, {0x4}, 0x0, 0x0, 0xffffffff, 0x0, 0x2e, '\x04nodZ=\xbfd\x027\xfcb%\xff\xff\xff\x80\x05\x00\x00\x00\x00\x00\x00\xff\x03\xff\x92\xe9\x16\x00\x05\x9beq,\x93\xcb=\xb6\xc21\xd1\x19\xaa\xa1', 0x9a, 'p\x02\x00}\xfag>\xff\xeb\t\xb55\x1f\x9e\xde\x05J\x00\x00\x00\x00\x18{\x82\xd9\xb5i(\xfb\xbf\v\x00\x00+Y_\xcb\x14\xa8\xf3\x0e&\xe5&\xab\xc1\x80jB\xdez\xdc\x81\x06\xb4\x94\xe1\x8d\xb5\x7f\xc1\xac\x8d\x06\x85\x95\xf0\x1c\x1c\xbe\x05\xc2v\x16/\x81\xb4\a\xe5\r\xb6\x939g!\xf3\xed\x9c\xe2\x01\x9e\xe6\xa9F\xe3\xa5Z\x1b@\xee\xb9:\xc2\x9f7[Z\xfd\xf1\xdf\x11,\x9a\xaf\xd3i\x94\xe1e\xb3:\xf7\x86\xc54\x05\x87]7\xa0E\"\x17\x8b7P\x9es\xc7\x02_\xc4\x13\xc7\xd1*\x80\x86?p#hf\x8d', 0x35, '\xcf`7-a\xcc\xea\xb8\xc8\x86A\xeb\x93\xb4\xcc\xf6\x00*\xb8{\xfc\x01\'\x96\t?h0\\M\"(9\xe4F\x1a\xb6*\xeb\x84\x1f \x83~\x01\b\xe2\xe7HP\x1cQH', 0x185, '\xf8\xf6i\xfbqm\x9a\xc6[\x94\bg\x8c,;\x9e\x1dR\xc3l\xde{\xa4\xa4\x00\xb4\xb0\xb4\xf1t\xa6f\xa8R\x9aE\x1b4\a\xdb\xda\xb2\x88K\xaf\x05\x00\x00\x00\x00\x00\x00\x00G\xec!\xca\xbf\xf2\x0f\x9c\x1c\xbe6\xf4\xfd\x1aL\xdb\x80\xe8\xd4\a\x00\x00\x007\x00\x87\x0fFB\xe4\xc5\xde\x87\x14\xa2\xb0\x84L#E\xd8\xdfI\xd7\x00\xef\xc4R\xaf\xb5F\x9e\xaa\xd2\xc8\x85z5$F\xae+N\xa7\b\xfa\"\xc6\xdeH\x82\xe3FAQ\xdfC\xbeZ\'\x9a\x95\xf2\xa9\x00\x17D\xa9tSXF\xe1>-\f\xb4\x9eJ\x0f\xa1u3C\xb8\xa3\xc0\xaf\xca\xe6,\xc4)\xc0\xec}dT\x00\x00B\x8dX\x9du\x9fa~\xa1\x95\"\xc6/\x19$\x80\x11\x9b(\x01\xc9\xc1\x04\x14\x05`\xf2\r8Y\n\x81\x98*\x94\x90\xb3\x95\xe9\x00t\v\xdc\x1a\xb08w&A\x9b\xff\xd5\xc7s}L*\x17\xb9/\x18\xed\xc9\x9c\x10\x99\xe4\x0f\x13\xd8(\x04\x9f<[:\x7f\xe00\xd9\xc7\x8a\xea\x99\x03\xaf\x14#U\xf5I\xab\xb3\xf7\xb4\v\xb0\x10\"+O\xed\xec\xd3\x0e\xa3\x9e\xc49fG\"a\xb0\xd5\xabe\x14Cj\xc3\xb9pn\x01\xeb\xfe^\v\xb34w\xd1\xcfx\xe0l\\\xd5\x83\xa4\x9b3jV\xba\xb25\x90\xba\x87\x0f\xc2Et\xbf\xf1\x8c\xb5\x81\x92\xdet%>\xde\xab\xcc\n\x02\xcd\xc7\xd4>\xc4\x84\x88\x0e\xa7\xfb\xc4\x80e\"\xc7\x8e\x1f\xa7\x06\xda\x87\b\xeaQ~\\\x8b_*\x10w\xf6\xf6\xf3\xdd`\xfd\xf9B\"\xe9\xa2g/\x80:'}, 0x39d, 'odev/n\xb1{#\x00\xf9\xda\xa5\xee#&n\xcf\x85\xfe\xa6^B\xd9y\xa3\xfd\xe5\xf4u\xda\xf0;\x11r\xd9{\xad\xc7\tZ\xfdv\xfeO\fA\xf7\xf7t\x1e\xac\x03\x00\x00\xec\xff\x00\x00\xdb\xa0\xc2\xf7\xf0\x9f\xf5<~M\x1a\xd6n-\a\x01\x98\x01\x9f0\x11\x84G\xaau\xf8$k\xccB\xea\xa8\xc61\xc0\xc5\x00\x95\x9at\xf5\x16\x85\xf5\x06\xae\x89H\x06\x87\x82g\xd5\xa1)\x8dy,J7\xf2\xe1\xcb\xbd$\x82\x92\x9a\r\x89r\xb5\xcfs.\xa5\xb0\xd7#\x85\x93\xae\xd3\xb4.\xe7\xca\xc0}\xe0\x9d\x1dh\xa6\x033\xa8\x82F}+1\xaa\xfbV\xc5}}\xc6&\xe49\a\x96\xa1\xebH\'Fi\xab\x13\xf8\xb1\x1d\x14`Y\xf3\x10\xe2cMY?\xece\xd5)\xf3\x82\x06fd\xc0\xfbNL\x90W\np\x04\x9f9\x9f\x06\x1fu\xb7y|\xe1\xfe\x11\xea\x91\x96\t\xd5\x1aA\xdd=\xe3\x04\xbd|~\xd0\xa4V\xf0\xae\x12.a\x05\xc9\xce\x88}\xf5\xa6\xe0\xb6\xa7}Yl\xf8\x8b\xa6\xe5\xc69|}P!\xd7\x98\x95(\xfd\x179\xe1\xc2\xd8\x7f\xc2\x00\x00\x000\xe4\xee+\xfc\x7f\x80P\x85\x11C\xe5\x16\x1a\xcdG\x15\n\xcb\xaft8\"\xdf\xe2\x03\xb1\b\xd3~\x91M\xc1\xe5>#LP\x9e\xcaA\a\xa1q,\xaa\x9d\xa5=\x05\x1c6\x88Ly\x18&a\xf3\xca6\xbc\xdb\xfb\xbd&q\t\xf81\x9d\x8d\xd5\xc0p\x99\xeb\x1b\x11\x03\x06U\xf5biOat=\x19B\x1bJ\x19\xef\x8b\x8bL\xe9\xc9\x93\xc7\xd6\xcb0\fNezNP\xa3[\\\xc1k\x8c\x16\x1a\x8e=\xf9\x03k\xbc\xf2\x8a\xdc\xd1\x9alL)\x17\t\xae\xe5\xab>[\xc5\xae)\xf4u\xe4\xd2D\b\xb5\x16}\x0f\xaf_\xc1Vkp\\\x8b`\xaf\xa8\xac\xa4/~\x04i\x18\x8a\x0e\xf0b\xca\x18\xe3\x8f\x9e\xe1\n\xc7}+~\xb9\xd6\x0e\xa7\x9f\xdbUd\x11\xe5\x9d\xfb\xd8\xdb\xb8\xa2\xa6b.\xbc\xf8Lio\xa4\xda!\xba\xd22\r\rh\xe9\xbfCF\xf0ha\x19\xa3\x9e@\x03\x95\xc8\xf2\x82^\xa0i\xae\x0e\x14;\xd1\xa4Ay\xed\x8e<\xea\v^\x9a\x19\xcc\x7f\xfaP\x0f\xa4\x1bl\x80I\xbd\xe4X\'\xd5N\xc9\x01\xd2z\xd1%\x05h\x89\xb33k?\x06\x83\x8c[fz\xe2.\xfe;\xc1[\x82_\x7f\xbc\xe4\x80\'(\x1c\xf9\xfe\x8f\xc2\x1f\xc7|$=\xe2g\x051\x0e\xb8\x1c\xf7M\xe0)1\x92\xa1?j\xd0W\xdea\xfd\x8a\xba\x8e\xf4C\x9b\xc0jE\xb2\xb01bQZ#C:\xfe\xb5*\xed\xb5\xabo3FS8\x05\x15\xf7y\xf3]\xc8\xa7\x8c7w$\x92\xa2(L!\xd2\x13V\xd4s\xf0\x0f\x85\x13|{\xf0cou}5(\x86\x9b?\x00w5\xcf\xf8\\\x9d\x97\x8b\xf5]\xcc&\xd6-%\xe3\b\xf0\x88\'\xa9\x1f\xf4{\xec\x92\xf8\xe9\x1ey\bfT\x00\xaaN9\xb3Y\x86#\x9d\\{\x94\x92\xc5\xbb&\xbcU\xb5[I\xedpHnn}\xa3\x8c \x84P\xf9\xf7\x9e\x1bA\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xae-[\\\x99\xf7\x17\xf0\xa0wI#\x9b]\b\xf8\xc5\xc0\xadyQ\xe0\xa7\xc7\xf3\xdb\x8d\xfd?\x86W%\x8al\x04\xf3-W\xad(s\xdeE\xfa\x98\xb0\xf8&y\x17\xff\x9b\xbe\x9c\rt\xa5\xac\xa2\x06\xfe)\xe0\xc1\x03\x9f\"U<\'GB]\x83\x100x.\xe7\x8f\x8b\xa3]\xe3\x18\xc5?\tO\x92\\\xc9x.\x94\xb6\xc8p\xa4\x87g\x8b\xfa\xe7E\xdf\xf2h\xbd\xa7\xfd\xec\x87<\xe4\xfbK\x8d\xcb\xa0A\x9b0D\x9a\xdf\xefrAb\xbf\xb1\n\xaf\xcf\xeaH\xa6\x7f\xaew3\xcc:\x7f\x1e\xef\x91\xbeR\x85!^\xabA\xf6', 0xffffffffffffffff}}, 0x667)

2.665264954s ago: executing program 6 (id=2822):
bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0xe, 0x4, 0x8, 0x7, 0x0, 0xffffffffffffffff, 0x7ff}, 0x50)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={0xffffffffffffffff, 0x0, 0x5, 0x0, &(0x7f00000002c0)="00154e0132", &(0x7f0000000300), 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x71096000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000000300)={0x38, 0x1403, 0x1, 0x0, 0x0, "", [{{0x9, 0x2, 'syz0\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'vlan1\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x80c9}, 0x20000000)
rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0)
ioctl$VIDIOC_DQEVENT(0xffffffffffffffff, 0x80785659, &(0x7f0000000440)={0x0, @frame_sync})
r4 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8002, 0x0)
write$P9_RSTATu(r4, &(0x7f0000000900)={0x667, 0x7d, 0x0, {{0x500, 0x2b5, 0x0, 0x0, {0x4}, 0x0, 0x0, 0xffffffff, 0x0, 0x2e, '\x04nodZ=\xbfd\x027\xfcb%\xff\xff\xff\x80\x05\x00\x00\x00\x00\x00\x00\xff\x03\xff\x92\xe9\x16\x00\x05\x9beq,\x93\xcb=\xb6\xc21\xd1\x19\xaa\xa1', 0x9a, 'p\x02\x00}\xfag>\xff\xeb\t\xb55\x1f\x9e\xde\x05J\x00\x00\x00\x00\x18{\x82\xd9\xb5i(\xfb\xbf\v\x00\x00+Y_\xcb\x14\xa8\xf3\x0e&\xe5&\xab\xc1\x80jB\xdez\xdc\x81\x06\xb4\x94\xe1\x8d\xb5\x7f\xc1\xac\x8d\x06\x85\x95\xf0\x1c\x1c\xbe\x05\xc2v\x16/\x81\xb4\a\xe5\r\xb6\x939g!\xf3\xed\x9c\xe2\x01\x9e\xe6\xa9F\xe3\xa5Z\x1b@\xee\xb9:\xc2\x9f7[Z\xfd\xf1\xdf\x11,\x9a\xaf\xd3i\x94\xe1e\xb3:\xf7\x86\xc54\x05\x87]7\xa0E\"\x17\x8b7P\x9es\xc7\x02_\xc4\x13\xc7\xd1*\x80\x86?p#hf\x8d', 0x35, '\xcf`7-a\xcc\xea\xb8\xc8\x86A\xeb\x93\xb4\xcc\xf6\x00*\xb8{\xfc\x01\'\x96\t?h0\\M\"(9\xe4F\x1a\xb6*\xeb\x84\x1f \x83~\x01\b\xe2\xe7HP\x1cQH', 0x185, '\xf8\xf6i\xfbqm\x9a\xc6[\x94\bg\x8c,;\x9e\x1dR\xc3l\xde{\xa4\xa4\x00\xb4\xb0\xb4\xf1t\xa6f\xa8R\x9aE\x1b4\a\xdb\xda\xb2\x88K\xaf\x05\x00\x00\x00\x00\x00\x00\x00G\xec!\xca\xbf\xf2\x0f\x9c\x1c\xbe6\xf4\xfd\x1aL\xdb\x80\xe8\xd4\a\x00\x00\x007\x00\x87\x0fFB\xe4\xc5\xde\x87\x14\xa2\xb0\x84L#E\xd8\xdfI\xd7\x00\xef\xc4R\xaf\xb5F\x9e\xaa\xd2\xc8\x85z5$F\xae+N\xa7\b\xfa\"\xc6\xdeH\x82\xe3FAQ\xdfC\xbeZ\'\x9a\x95\xf2\xa9\x00\x17D\xa9tSXF\xe1>-\f\xb4\x9eJ\x0f\xa1u3C\xb8\xa3\xc0\xaf\xca\xe6,\xc4)\xc0\xec}dT\x00\x00B\x8dX\x9du\x9fa~\xa1\x95\"\xc6/\x19$\x80\x11\x9b(\x01\xc9\xc1\x04\x14\x05`\xf2\r8Y\n\x81\x98*\x94\x90\xb3\x95\xe9\x00t\v\xdc\x1a\xb08w&A\x9b\xff\xd5\xc7s}L*\x17\xb9/\x18\xed\xc9\x9c\x10\x99\xe4\x0f\x13\xd8(\x04\x9f<[:\x7f\xe00\xd9\xc7\x8a\xea\x99\x03\xaf\x14#U\xf5I\xab\xb3\xf7\xb4\v\xb0\x10\"+O\xed\xec\xd3\x0e\xa3\x9e\xc49fG\"a\xb0\xd5\xabe\x14Cj\xc3\xb9pn\x01\xeb\xfe^\v\xb34w\xd1\xcfx\xe0l\\\xd5\x83\xa4\x9b3jV\xba\xb25\x90\xba\x87\x0f\xc2Et\xbf\xf1\x8c\xb5\x81\x92\xdet%>\xde\xab\xcc\n\x02\xcd\xc7\xd4>\xc4\x84\x88\x0e\xa7\xfb\xc4\x80e\"\xc7\x8e\x1f\xa7\x06\xda\x87\b\xeaQ~\\\x8b_*\x10w\xf6\xf6\xf3\xdd`\xfd\xf9B\"\xe9\xa2g/\x80:'}, 0x39d, 'odev/n\xb1{#\x00\xf9\xda\xa5\xee#&n\xcf\x85\xfe\xa6^B\xd9y\xa3\xfd\xe5\xf4u\xda\xf0;\x11r\xd9{\xad\xc7\tZ\xfdv\xfeO\fA\xf7\xf7t\x1e\xac\x03\x00\x00\xec\xff\x00\x00\xdb\xa0\xc2\xf7\xf0\x9f\xf5<~M\x1a\xd6n-\a\x01\x98\x01\x9f0\x11\x84G\xaau\xf8$k\xccB\xea\xa8\xc61\xc0\xc5\x00\x95\x9at\xf5\x16\x85\xf5\x06\xae\x89H\x06\x87\x82g\xd5\xa1)\x8dy,J7\xf2\xe1\xcb\xbd$\x82\x92\x9a\r\x89r\xb5\xcfs.\xa5\xb0\xd7#\x85\x93\xae\xd3\xb4.\xe7\xca\xc0}\xe0\x9d\x1dh\xa6\x033\xa8\x82F}+1\xaa\xfbV\xc5}}\xc6&\xe49\a\x96\xa1\xebH\'Fi\xab\x13\xf8\xb1\x1d\x14`Y\xf3\x10\xe2cMY?\xece\xd5)\xf3\x82\x06fd\xc0\xfbNL\x90W\np\x04\x9f9\x9f\x06\x1fu\xb7y|\xe1\xfe\x11\xea\x91\x96\t\xd5\x1aA\xdd=\xe3\x04\xbd|~\xd0\xa4V\xf0\xae\x12.a\x05\xc9\xce\x88}\xf5\xa6\xe0\xb6\xa7}Yl\xf8\x8b\xa6\xe5\xc69|}P!\xd7\x98\x95(\xfd\x179\xe1\xc2\xd8\x7f\xc2\x00\x00\x000\xe4\xee+\xfc\x7f\x80P\x85\x11C\xe5\x16\x1a\xcdG\x15\n\xcb\xaft8\"\xdf\xe2\x03\xb1\b\xd3~\x91M\xc1\xe5>#LP\x9e\xcaA\a\xa1q,\xaa\x9d\xa5=\x05\x1c6\x88Ly\x18&a\xf3\xca6\xbc\xdb\xfb\xbd&q\t\xf81\x9d\x8d\xd5\xc0p\x99\xeb\x1b\x11\x03\x06U\xf5biOat=\x19B\x1bJ\x19\xef\x8b\x8bL\xe9\xc9\x93\xc7\xd6\xcb0\fNezNP\xa3[\\\xc1k\x8c\x16\x1a\x8e=\xf9\x03k\xbc\xf2\x8a\xdc\xd1\x9alL)\x17\t\xae\xe5\xab>[\xc5\xae)\xf4u\xe4\xd2D\b\xb5\x16}\x0f\xaf_\xc1Vkp\\\x8b`\xaf\xa8\xac\xa4/~\x04i\x18\x8a\x0e\xf0b\xca\x18\xe3\x8f\x9e\xe1\n\xc7}+~\xb9\xd6\x0e\xa7\x9f\xdbUd\x11\xe5\x9d\xfb\xd8\xdb\xb8\xa2\xa6b.\xbc\xf8Lio\xa4\xda!\xba\xd22\r\rh\xe9\xbfCF\xf0ha\x19\xa3\x9e@\x03\x95\xc8\xf2\x82^\xa0i\xae\x0e\x14;\xd1\xa4Ay\xed\x8e<\xea\v^\x9a\x19\xcc\x7f\xfaP\x0f\xa4\x1bl\x80I\xbd\xe4X\'\xd5N\xc9\x01\xd2z\xd1%\x05h\x89\xb33k?\x06\x83\x8c[fz\xe2.\xfe;\xc1[\x82_\x7f\xbc\xe4\x80\'(\x1c\xf9\xfe\x8f\xc2\x1f\xc7|$=\xe2g\x051\x0e\xb8\x1c\xf7M\xe0)1\x92\xa1?j\xd0W\xdea\xfd\x8a\xba\x8e\xf4C\x9b\xc0jE\xb2\xb01bQZ#C:\xfe\xb5*\xed\xb5\xabo3FS8\x05\x15\xf7y\xf3]\xc8\xa7\x8c7w$\x92\xa2(L!\xd2\x13V\xd4s\xf0\x0f\x85\x13|{\xf0cou}5(\x86\x9b?\x00w5\xcf\xf8\\\x9d\x97\x8b\xf5]\xcc&\xd6-%\xe3\b\xf0\x88\'\xa9\x1f\xf4{\xec\x92\xf8\xe9\x1ey\bfT\x00\xaaN9\xb3Y\x86#\x9d\\{\x94\x92\xc5\xbb&\xbcU\xb5[I\xedpHnn}\xa3\x8c \x84P\xf9\xf7\x9e\x1bA\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xae-[\\\x99\xf7\x17\xf0\xa0wI#\x9b]\b\xf8\xc5\xc0\xadyQ\xe0\xa7\xc7\xf3\xdb\x8d\xfd?\x86W%\x8al\x04\xf3-W\xad(s\xdeE\xfa\x98\xb0\xf8&y\x17\xff\x9b\xbe\x9c\rt\xa5\xac\xa2\x06\xfe)\xe0\xc1\x03\x9f\"U<\'GB]\x83\x100x.\xe7\x8f\x8b\xa3]\xe3\x18\xc5?\tO\x92\\\xc9x.\x94\xb6\xc8p\xa4\x87g\x8b\xfa\xe7E\xdf\xf2h\xbd\xa7\xfd\xec\x87<\xe4\xfbK\x8d\xcb\xa0A\x9b0D\x9a\xdf\xefrAb\xbf\xb1\n\xaf\xcf\xeaH\xa6\x7f\xaew3\xcc:\x7f\x1e\xef\x91\xbeR\x85!^\xabA\xf6', 0xffffffffffffffff}}, 0x667)
r5 = socket$inet6(0xa, 0x5, 0x0)
r6 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/comedi4\x00', 0x1a1101, 0x0)
ioctl$COMEDI_UNLOCK(r6, 0x6406)
connect$inet6(r5, &(0x7f0000000300)={0xa, 0x4e22, 0x2, @private2={0xfc, 0x2, '\x00', 0x1}, 0x5}, 0x6e)
socket$netlink(0x10, 0x3, 0x4)
ioctl$VIDIOC_SUBSCRIBE_EVENT(0xffffffffffffffff, 0x4020565a, &(0x7f0000000140)={0x3, 0x98f90f, 0x1})

1.007424091s ago: executing program 0 (id=2823):
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000001080)={0x200000, 0x200000})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x9, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000071122700000000009500000000000000a6688a52d1c0f9c0e32582f22b02eee3dd6f3e151df9e697aa28d77fe0ce37a21f0aabb1d133d0335cc238914f61e59f4b54b921592472ee9ce5bfaa7296ac43fa591285f7e86d833547a08d"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xd}, 0x80)

1.007011411s ago: executing program 2 (id=2824):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x601c2, 0x0)
ftruncate(r0, 0x8800000)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$BTRFS_IOC_GET_DEV_STATS(r1, 0xc4089434, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
dup(r1)
openat$vcsu(0xffffffffffffff9c, &(0x7f0000001080), 0x0, 0x0)
pipe2$9p(0x0, 0x0)
r2 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, 0x0, 0x20004810)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r2, 0x8004587d, &(0x7f0000000080)={@id={0x2, 0x0, @auto="0c087301000000000000612bf6eabc00"}})
r4 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r5=>0x0})
r6 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x6, 0x4, &(0x7f00000006c0)=ANY=[@ANYBLOB="180200000000000000000000000000008500000017000000950000000000000060bda108010da26a15544b2a4c738e0fa0f897aa278b325764f2dcd6b865984f599ffe6cad199d36bc80e98b17249acf845992d69cc4a092d0655f0e225d2f568bd76a618d10b49d26440819e5f1e36c54"], &(0x7f00000005c0)='GPL\x00'}, 0x80)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000180)={r6, r5, 0x25, 0x0, @void}, 0x10)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
syz_emit_ethernet(0x2e, &(0x7f0000002000)=ANY=[], 0x0)

994.328992ms ago: executing program 0 (id=2825):
r0 = socket(0x10, 0x2, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000080)={0x8, 0x2, 0x2}, 0x10)
write(r0, &(0x7f0000000040)="1c0000001a009b8a140000003b9b301f00"/28, 0x1c)
socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$SIOCGSTAMP(0xffffffffffffffff, 0x8906, 0x0)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000180)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x21}}, 0x10)
recvfrom(0xffffffffffffffff, 0x0, 0x0, 0x41, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000000)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r3, 0x0, 0x0, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
umount2(&(0x7f0000000000)='./file0\x00', 0xc)
recvmmsg(r0, &(0x7f0000002ec0), 0x400000000000ec0, 0x2, &(0x7f00000001c0)={0x77359400})

971.821563ms ago: executing program 2 (id=2826):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$BTRFS_IOC_GET_DEV_STATS(r0, 0xc4089434, 0x0)
r1 = dup(r0)
write$UHID_INPUT(r1, &(0x7f0000001040)={0xe, {"a2e3ad21ed0d52f90b9b6e0987f70e06d038e7ff7fc6e5539b3248298b089b0708346d090890e0878f0e1ac6e7049b334a959bfc9a240d2567f3988f7ef319520100ffe8d1780700523c921b1b9b31070d075d0936cd3b78130daa61f94b61404d64aec1b77f07227227b7ba67e0e78657a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f30e065cd5b91cd0ae193973735b36d5b1b63dd1c00305d3f46635eb056d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000000000075271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f9081b4dd0d8b38f3cd4498be0800000000000000f6b76383709d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1f416e56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617669314e2fbe70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c088215ec110911e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d546a40b9f6f44ae15a7e454dea05918b41243513f000000000000000a3621c56cea8d208001349b41db6efcffac64f17679141d54b34bbc9963ac4f4bb3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ec126c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e1088334975e9f73483b6a62fa678ca14ffd9f9db2a7869d85864056526f889af43a6056080572286522449df466c632b3570243f989cce3803f465e41e610c20d80421d653a5520000008213b704c7fb082ff27590678ef9f190bae97909507041d860420c5664b27921b14dc1db8892fd32d0ad7bc946813591ad8deff4b05f60cea0da7710ac0000000000008000bea37ce0d0d4aa202f928f28381aab144a5d429a04a6a2b8247068ae949ed06e288e810bac9c76600025e19c907f8ea2e2010000008271a1f5f8528f227e79c1389dbdfffe492f21579d2a15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4fb8a48a76eafc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee53259289d12dad99dac44c3f0008047096a44002bebc2420aed92fa9b6578b4779415d97b9a6d6d5495c1980778efa5ea567b7b7430acc4c24eeb8bc4e9ac2aed9e53803ed0ca4ae3a0700d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df07847754b8440daaa69bf5c8f4350aeae9ca1207e76061b28f27da19acc7e658828163e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034ef655b253ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f42355bc7872c827467cfa5c4e72730d56bd068ed211c7847535edecb7b373f78b095b68441a34cb51682a8ae4d24ad0465f3927f889b813076038e79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdcce04579b5561dc825ab829827945e020c1f67ee615feb6243378e0610060f02cca4e91b2f001edb3d78fb4b55668dda93aec92a5de203717aa49c2d284acfabe262fccfcbb2b75a2183c46eb65ca8104e1b4da7fbb77ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43eaeb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e94265c803b35ee5f83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad94872cb2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7a508ae54b3cd7369dde50e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c10238e204a67737c3b42aae501b20f7694a00f16e2d0174035a2c22656dc29880acebdbe8ddbd75c2f998d8ac2dfad2ba3a504767b6b45a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7beddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4483f8fd777d443e8b40426db6fe29068c0ca3d2414442e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf46366e7205dd8d6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c5409711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439ff158e7c5419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e781171e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d81eaee5ee6cf1d0ab378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9d4afb96d6861aca47da73d6f3144345f48843dd014e5c5ad8fe995754bd9cf32fce1e24919c4b2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6d594f88a4facfd4c735a20307c737afae5136651b1b906ce2d60399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a3766d5439020484f4113c4c859465c3b415c3432f81db8719539d5bf3f2aaaea1cc43a6c5cbe59758bfee2916580dac4b008e595f437491d87abed02cefcd9db53d94d02dae17b118e5d6787463183b4b87c1050000002f7809959bc048850613d17ca51055f2f416a44fe180d2d50c312cca7cb14a2bdc331f57a9817139a206fc76957227ffff2de20a4b8e3737fbb42913777c06376f799eba367e21f94ca598705f5dcb767d6f0900d6b0f6095e53c4c4234d0c1fbe434f6ab8f43c0013ee93b83946ee7759e89d7bdd1a32d7b311711b757fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7f96093530e76692839d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b34449e15e065cc7348663a52190202c7ae288a4510de03dab19d26285eda89156d50dd385a60333ba5bbf5d77cd7007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f00000000000000000000b7807fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cf255315ab80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289d8523f483e1ff7408c6087f1ab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf652f406c6b95f2722e58c05f752ce2126596e1cd7655b904801784c78e2724f43f1fe687c7e8a60c28b82b6528341b648cdd56fed7cdcbb1575912d5ecd36dea3bca0b7427d53588a0f9455e8f8d2ab2242729251ae033a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a3cd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08758897fb411a94b3c2fc5d5f0db42c0456ec015f08e5247d33ae2d35603ff8454c16f8342856935125102bb784ed7148b6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af4486220d664130bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee458e4cb5e930ed624806c43a006e39336d07c2b8081c128ad2706f48261f7899484c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e7c7b2391f4509d7f339d92fdb4a89364949da398000000000000000d80a4fe654578376e599aff3565b1d531f30912b9945030b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9c861a0e7e65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57079d0fe662a46b7f71cd47744db86c50b704c971d90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e0691953264d2700c838fa2c7b3425260f59554e502dcea39cb313b0000000000004ca7c12f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df06720ba2b26bbfcc807c8aabb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe36d7d3e5db38b094b8b77940b5f07722e47a08d367e5f84c96ec664b72934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ea4cd8d884836174faf1aa609e5f1ee1162dfa13bdc1fa7cfaadba85c72e9758f031755d0be53f8d2a1dfb1c68cc164b0a0780d971a96ea2c4d4ca0398c2235980a9307b3d5bd3b01faffd0a5dbed2881a9700af561ac8c7e36bb2fc4c40e9cf96f06817fb903729a7db6ff957697c9ede7885d94ffb0969be0daf60af93109eb24ee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c148cd2f9c55f4901203a9a8a2c3e90f3943dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d0fc5a752f9000", 0x1040}}, 0x1006)

903.183417ms ago: executing program 6 (id=2827):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000002c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_AUTHENTICATE(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)={0x5c, r1, 0x1, 0x20000002, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x14b4}], @key_params=[@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}], @NL80211_ATTR_AUTH_TYPE={0x8}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ibss_ssid}, @key_params=[@NL80211_ATTR_KEY={0x18, 0x50, 0x0, 0x1, [@NL80211_KEY_DATA_WEP40={0x9, 0x1, "408922a0bd"}, @NL80211_KEY_IDX={0x5, 0x2, 0x4}]}]]}, 0x5c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

869.473929ms ago: executing program 6 (id=2828):
r0 = fanotify_init(0x10, 0x1000)
r1 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0)
fanotify_mark(r0, 0x641, 0x8001018, r1, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='io.stat\x00', 0x26e1, 0x0)
close(r2)

787.760644ms ago: executing program 2 (id=2829):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x1000040, &(0x7f00000002c0)={[{@barrier}, {@nodioread_nolock}, {@noquota}, {@barrier}, {@auto_da_alloc}, {@nodioread_nolock}]}, 0x1, 0x59c, &(0x7f0000001840)="$eJzs3U9oHGUbAPBnZrNN/+T70g++Dz6lh6JChdJN0j9aPbVXsVDoQfCiYbMNJZtsySbahIDpvYg9iEov9aYHj4oHD+LFo1cvimeh2KDQ9KArm51N03S3bmI2W7O/H0z2fWdm93nfmX3e7AwzTAB962j9TxrxVERcTCKGNywbiGzh0cZ6qytLxfsrS8UkarVLvySRRMS9laVic/0kez0UEcsR8f+I+CYfcTxd/8h9zUJ1YXFqvFwuzWb1kbnpqyPVhcUTV6bHJ0uTpZlTL7505uzpM2MnxzY2935tYy2/tb7e+PHmuze+e+X2zU8/O7JcfH88iXMxlC3b2I+d1Ngm+Ti3af7pbgTroaTXDWBbclme11PpfzEcuSzrW6ltHBwGd6V5QBfVBiNq6zYUgT6QSHroU83fAfXj3+a0m78/7pxvHIDU466uLBXfiWb8gca5idi/dmxy8NfkoSOT+vHm4d1sKHvS8vWIGB0YePT7n2Tfv+0b3YkG0lVfn2/sqEf3f7o+/kSL8Weoee70b2qOf6vZ+LfaIn6uzfh3scMYv7/+00dt418fjKdbxk/W4yct4qcR8WaH8W+99uXZdstqH0cci9bxm5LHnx8euXylXBpt/G0Z46tjR15u3/+Ig23iN87Z7l9ryMb+78valHbY/y++/fyZ5cfEf/7Zx+//Vtv/QES812H8/9z75NV2y+5cT+7WfwVsdf8nkY/bHcZ/4dzRH7Kis4YAAAAAAAAAALCD0rVr2ZK0sF5O00KhcQ/vf+NgWq5U545frszPTDSueTsc+bR5pdVwo57U62PZ9bjN+slN9VO5LGDuwFq9UKyUJ3rcdwAAAAAAAAAAAAAAAAAAAHhSHNp0//9vubX7/zc/rhrYq9o/8hvY6+Q/9K+H8z/pWTuA3ef/P/StmvyH/iX/oX/Jf+hf8h/6l/yH/iX/oX/JfwAAAAAAAAAAAAAAAAAAAAAAAAAA6IqLFy7Up9r9laVivT4xsDA/VXnrxESpOlWYni8WipXZq4XJSmWyXCoUK9N/9XlJpXJ1NGbmr43MlapzI9WFxTemK/MzzWeKlvJd7xEAAAAAAAAAAAAAAAAAAAD88wytTUlaiMg36mlaKET8KyIOJ5FcvlIujUbEvyPi+1x+sF4f63WjAQAAAAAAAAAAAAAAAAAAYI+pLixOjZfLpdnuFQayUF0M0XlhYCsrR8Tyzjaj/olbflc+24A93nR7o5B7Mr6HT36hh4MSAAAAAAAAAAAAAAAAAAD0qQc3/Xb6jj+62yAAAAAAAAAAAAAAAAAAAADoS+nPSUTUp2PDzw1tXrovWc2tvUbE27cufXBtfG5udqw+/+76/LkPs/kne9F+oFPNPE0jop7HAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwAPVhcWp8XK5NLvNwmAH6/S6jwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADb8WcAAAD//y4WzlE=")
syz_emit_ethernet(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = openat$tcp_congestion(0xffffffffffffff9c, 0x0, 0x1, 0x0)
close_range(r3, r3, 0x2)
socket$netlink(0x10, 0x3, 0x0)
r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(r4, &(0x7f0000000040)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0xb}, 0xe)
epoll_create1(0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = socket$inet6(0xa, 0x80003, 0xff)
setsockopt$inet6_int(r5, 0x29, 0x16, 0x0, 0x0)

154.542141ms ago: executing program 6 (id=2830):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x601c2, 0x0)
ftruncate(r0, 0x8800000)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000400)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
recvmmsg(r2, &(0x7f00000034c0)=[{{0x0, 0x0, &(0x7f0000001e40)=[{&(0x7f0000000b80)=""/4096, 0x20001b80}, {&(0x7f0000001b80)=""/112, 0x70}], 0x2, 0x0, 0xa0028cb4}}], 0x40000000000013c, 0x700, 0x0)
sendfile(r1, r0, 0x0, 0x578410e9)
sendfile(r1, r0, 0x0, 0x100000000)

153.308061ms ago: executing program 1 (id=2831):
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_GET(0xffffffffffffffff, 0x0, 0x48050)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', <r1=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="700200001300290a000000000000000007000000", @ANYRES32=r1, @ANYBLOB="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"], 0x270}, 0x1, 0x0, 0x0, 0x20008014}, 0x4)
r2 = socket(0x10, 0x3, 0x0)
sendmmsg(r2, &(0x7f0000000000), 0x4000000000001f2, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb010018000000000000003c0000003c00000002000000000000000100000d0300000000000000030000000000000000000001050000000800"], 0x0, 0x56}, 0x28)

41.150757ms ago: executing program 0 (id=2832):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mkdirat(0xffffffffffffff9c, 0x0, 0x170)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, 0x0)
write$FUSE_INIT(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000000)=<r1=>0x0)
process_vm_readv(r1, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f00000001c0)='./file1\x00', 0x0, &(0x7f0000000900)=ANY=[@ANYBLOB="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"], 0x1, 0x192, &(0x7f0000009480)="$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")
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file2\x00', 0x80000, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x10012, r2, 0x1000)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_open_procfs(r1, &(0x7f0000000440)='children\x00')

0s ago: executing program 1 (id=2833):
connect$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x4e23, @remote}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0))
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000080)=ANY=[@ANYBLOB="150000006bffff"], 0x15)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r3, &(0x7f0000000100)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r4 = syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301)
ioctl$USBDEVFS_CONTROL(r4, 0xc0105500, &(0x7f0000000140)={0x80, 0x6, 0x303, 0xfffd, 0x0, 0x1, 0x0})
r5 = socket$unix(0x1, 0x2, 0x0)
connect$unix(r5, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
writev(r5, 0x0, 0x0)
setsockopt$SO_TIMESTAMP(r3, 0x1, 0x23, &(0x7f0000000080)=0x6, 0x26)
setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, 0x0, 0x0)
recvmmsg(r3, &(0x7f0000000300), 0x40000000000049e, 0x1000000000fe, 0x0)

kernel console output (not intermixed with test programs):

or it's busy
[  375.463771][ T9674] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  375.465495][ T9906] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  375.470123][ T9674] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  375.470864][ T9900] loop1: detected capacity change from 0 to 4096
[  375.482803][ T1586] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  375.484666][ T1586] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  375.498986][ T9900] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  375.546543][   T55] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  375.548163][   T55] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  375.566568][ T4507] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  375.574155][ T1586] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  375.576256][ T1586] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  375.578937][ T4507] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  375.767278][ T9912] ptrace attach of "./syz-executor exec"[4322] was attempted by ""[9912]
[  375.915930][ T9906] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  375.917522][ T9906] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  375.995223][ T4322] EXT4-fs (loop1): unmounting filesystem.
[  376.029079][ T9916] loop1: detected capacity change from 0 to 4096
[  376.033251][ T9916] EXT4-fs (loop1): Test dummy encryption mode enabled
[  376.036867][ T9916] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0002]
[  376.038580][ T9916] System zones: 0-5
[  376.040871][ T9916] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  376.209084][ T9921] netlink: 192 bytes leftover after parsing attributes in process `syz.2.1793'.
[  376.977117][ T9934] loop4: detected capacity change from 0 to 1024
[  377.295355][ T4322] EXT4-fs (loop1): unmounting filesystem.
[  377.367986][ T9940] loop1: detected capacity change from 0 to 16
[  377.401435][ T9940] erofs: (device loop1): mounted with root inode @ nid 36.
[  377.543217][ T9945] VFS: Can't find a Minix filesystem V1 | V2 | V3 on device nullb0.
[  378.433363][ T9951] syz.1.1800: attempt to access beyond end of device
[  378.433363][ T9951] loop1: rw=0, sector=288, nr_sectors = 8 limit=16
[  378.438177][ T9951] syz.1.1800: attempt to access beyond end of device
[  378.438177][ T9951] loop1: rw=0, sector=288, nr_sectors = 8 limit=16
[  378.446967][ T9951] syz.1.1800: attempt to access beyond end of device
[  378.446967][ T9951] loop1: rw=0, sector=288, nr_sectors = 8 limit=16
[  378.731885][ T9956] loop4: detected capacity change from 0 to 256
[  378.762071][ T9956] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  378.957090][ T9964] loop4: detected capacity change from 0 to 4096
[  379.004049][ T9964] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  379.168272][ T9973] loop5: detected capacity change from 0 to 512
[  379.173069][ T9973] EXT4-fs: Ignoring removed oldalloc option
[  379.519834][ T2062] ieee802154 phy0 wpan0: encryption failed: -22
[  379.523744][ T2062] ieee802154 phy1 wpan1: encryption failed: -22
[  379.704953][ T9973] EXT4-fs (loop5): 1 truncate cleaned up
[  379.707368][ T9973] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  379.791356][ T9983] loop0: detected capacity change from 0 to 128
[  379.792851][ T9983] EXT4-fs: Ignoring removed orlov option
[  379.811692][ T9983] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  379.837019][ T9980] loop1: detected capacity change from 0 to 2048
[  379.945650][ T9987] netlink: 192 bytes leftover after parsing attributes in process `syz.5.1810'.
[  380.109217][ T4334] EXT4-fs (loop4): unmounting filesystem.
[  380.120386][ T4326] EXT4-fs (loop0): unmounting filesystem.
[  380.126215][ T9980] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  380.175517][ T9674] EXT4-fs (loop5): unmounting filesystem.
[  380.325882][T10005] input: syz0 as /devices/virtual/input/input13
[  380.449431][T10007] loop4: detected capacity change from 0 to 164
[  380.737733][ T9998] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  380.802568][T10016] loop5: detected capacity change from 0 to 16
[  380.806587][T10016] erofs: (device loop5): mounted with root inode @ nid 36.
[  380.928340][T10019] loop1: detected capacity change from 0 to 512
[  380.946833][T10019] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock
[  380.948629][T10019] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock
[  380.950229][T10019] EXT4-fs (loop1): ext4_check_descriptors: Inode table for group 1 overlaps superblock
[  381.205462][T10021] syz.5.1822: attempt to access beyond end of device
[  381.205462][T10021] loop5: rw=0, sector=288, nr_sectors = 8 limit=16
[  381.221102][T10021] syz.5.1822: attempt to access beyond end of device
[  381.221102][T10021] loop5: rw=0, sector=288, nr_sectors = 8 limit=16
[  381.228025][T10021] syz.5.1822: attempt to access beyond end of device
[  381.228025][T10021] loop5: rw=0, sector=288, nr_sectors = 8 limit=16
[  381.400943][T10019] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  381.402334][T10019] [EXT4 FS bs=4096, gc=2, bpg=34, ipg=32, mo=e040e01c, mo2=0000]
[  381.403746][T10019] EXT4-fs (loop1): failed to initialize system zone (-117)
[  381.405038][T10019] EXT4-fs (loop1): mount failed
[  381.664782][   T27] audit: type=1326 audit(629.957:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10026 comm="syz.0.1824" exe="/root/syz-executor" sig=9 arch=c00000b7 syscall=98 compat=0 ip=0xffff7f375928 code=0x0
[  381.788608][T10029] siw: device registration error -23
[  382.528906][T10031] loop0: detected capacity change from 0 to 512
[  382.555454][T10031] EXT2-fs (loop0): error: couldn't mount because of unsupported optional features (4740)
[  382.596648][T10035] loop1: detected capacity change from 0 to 512
[  382.603616][T10035] EXT4-fs: Ignoring removed oldalloc option
[  382.616552][T10035] EXT4-fs (loop1): 1 truncate cleaned up
[  382.617538][T10035] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  382.808209][T10039] netlink: 192 bytes leftover after parsing attributes in process `syz.1.1827'.
[  382.996917][ T9873] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  383.075902][T10042] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  383.311704][T10051] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  383.317468][T10051] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a003c11c, mo2=0002]
[  383.319055][T10051] System zones: 1-12
[  383.321872][T10051] EXT4-fs error (device loop4): ext4_iget_extra_inode:4756: inode #15: comm syz.4.1833: corrupted in-inode xattr
[  383.325183][T10051] EXT4-fs error (device loop4): ext4_orphan_get:1404: comm syz.4.1833: couldn't read orphan inode 15 (err -117)
[  383.327539][T10051] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  383.426304][ T4334] EXT4-fs (loop4): unmounting filesystem.
[  384.156773][ T4322] EXT4-fs (loop1): unmounting filesystem.
[  384.217370][T10055] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  384.226380][T10055] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  384.239536][T10057] set_capacity_and_notify: 2 callbacks suppressed
[  384.239547][T10057] loop5: detected capacity change from 0 to 1024
[  384.311663][ T4414] hfsplus: b-tree write err: -5, ino 4
[  384.436153][T10065] loop1: detected capacity change from 0 to 512
[  384.443594][T10061] loop5: detected capacity change from 0 to 1024
[  384.463133][T10061] hfsplus: hfsplus: Invalid key length: 29235
[  384.473107][T10065] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2
[  384.474947][T10065] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -2
[  385.206072][T10065] EXT4-fs (loop1): 1 truncate cleaned up
[  385.212786][T10065] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  385.306150][T10073] loop0: detected capacity change from 0 to 16
[  385.316190][T10073] erofs: (device loop0): mounted with root inode @ nid 36.
[  385.441638][T10075] loop4: detected capacity change from 0 to 512
[  385.449664][T10075] EXT4-fs: Ignoring removed oldalloc option
[  385.458468][T10075] EXT4-fs (loop4): 1 truncate cleaned up
[  385.461673][T10075] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  385.663016][T10078] netlink: 192 bytes leftover after parsing attributes in process `syz.4.1845'.
[  385.867681][ T4322] EXT4-fs (loop1): unmounting filesystem.
[  385.964703][T10087] loop1: detected capacity change from 0 to 256
[  385.994759][T10087] syz.1.1848: attempt to access beyond end of device
[  385.994759][T10087] loop1: rw=0, sector=272, nr_sectors = 4 limit=256
[  386.003033][T10087] FAT-fs (loop1): error, fat_free: invalid cluster chain (i_pos 198)
[  386.038802][T10090] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1849'.
[  386.185793][  T113] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  386.241265][ T4891] hfsplus: b-tree write err: -5, ino 8
[  386.352468][ T4334] EXT4-fs (loop4): unmounting filesystem.
[  386.378222][  T113] usb 1-1: Using ep0 maxpacket: 16
[  386.384480][  T113] usb 1-1: config 1 has an invalid interface number: 105 but max is 0
[  386.385868][  T113] usb 1-1: config 1 has no interface number 0
[  386.386868][  T113] usb 1-1: config 1 interface 105 altsetting 2 bulk endpoint 0x4 has invalid maxpacket 16
[  386.394154][  T113] usb 1-1: config 1 interface 105 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 64
[  386.404936][  T113] usb 1-1: config 1 interface 105 has no altsetting 0
[  386.408554][  T113] usb 1-1: New USB device found, idVendor=20f4, idProduct=e05a, bcdDevice=6c.6d
[  386.410091][  T113] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  386.412180][  T113] usb 1-1: Product: syz
[  386.412908][  T113] usb 1-1: Manufacturer: syz
[  386.413662][  T113] usb 1-1: SerialNumber: syz
[  386.429129][T10082] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  386.430432][T10082] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  386.505386][ T4336] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  386.507769][ T4336] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  386.509409][ T4336] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  386.511198][ T4336] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  386.512567][ T4336] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  386.513653][ T4336] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  386.583982][T10110] siw: device registration error -23
[  387.368392][T10115] netlink: 276 bytes leftover after parsing attributes in process `syz.2.1857'.
[  387.386775][ T1586] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  387.568560][ T1586] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  387.877574][ T1586] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  387.940297][T10082] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  387.941566][T10082] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  387.983702][T10137] loop4: detected capacity change from 0 to 512
[  387.985255][T10137] EXT4-fs: Ignoring removed oldalloc option
[  387.988421][T10137] EXT4-fs (loop4): 1 truncate cleaned up
[  387.989450][T10137] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  388.004005][ T1586] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  388.007988][T10107] chnl_net:caif_netlink_parms(): no params data found
[  388.077701][T10107] bridge0: port 1(bridge_slave_0) entered blocking state
[  388.079055][T10107] bridge0: port 1(bridge_slave_0) entered disabled state
[  388.080761][T10107] device bridge_slave_0 entered promiscuous mode
[  388.092824][T10107] bridge0: port 2(bridge_slave_1) entered blocking state
[  388.095070][T10107] bridge0: port 2(bridge_slave_1) entered disabled state
[  388.097483][T10107] device bridge_slave_1 entered promiscuous mode
[  388.164317][  T113] aqc111 1-1:1.105 (unnamed net_device) (uninitialized): Failed to read(0x20) reg index 0x0000: -71
[  388.166795][  T113] aqc111: probe of 1-1:1.105 failed with error -71
[  388.398850][  T113] usb 1-1: USB disconnect, device number 7
[  388.406632][T10144] netlink: 192 bytes leftover after parsing attributes in process `syz.4.1866'.
[  388.416494][T10107] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  388.419019][T10107] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  388.532006][T10107] team0: Port device team_slave_0 added
[  388.534419][T10107] team0: Port device team_slave_1 added
[  388.688200][ T4336] Bluetooth: hci0: command 0x0409 tx timeout
[  388.912733][ T4334] EXT4-fs (loop4): unmounting filesystem.
[  388.959361][T10107] batman_adv: batadv0: Adding interface: batadv_slave_0
[  388.960526][T10107] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  388.965550][T10107] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  388.967925][T10107] batman_adv: batadv0: Adding interface: batadv_slave_1
[  388.969029][T10107] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  388.972939][T10107] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  389.021769][T10107] device hsr_slave_0 entered promiscuous mode
[  389.040150][T10107] device hsr_slave_1 entered promiscuous mode
[  389.040755][T10164] loop4: detected capacity change from 0 to 256
[  389.082805][T10107] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  389.084190][T10107] Cannot create hsr debugfs directory
[  389.550290][T10177] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1870'.
[  389.884673][   T22] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  389.885985][T10191] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1872'.
[  389.890797][T10195] loop1: detected capacity change from 0 to 8
[  389.920385][T10195] SQUASHFS error: Failed to read block 0x599: -5
[  389.922577][T10195] SQUASHFS error: Unable to read metadata cache entry [599]
[  389.963114][T10107] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  389.992348][T10107] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  390.010512][T10200] loop4: detected capacity change from 0 to 1764
[  390.027589][T10200] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  390.030608][T10200] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  390.131668][   T22] usb 1-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  390.132985][   T22] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  390.135257][   T22] usb 1-1: config 0 descriptor??
[  390.137475][   T22] cp210x 1-1:0.0: cp210x converter detected
[  390.145284][T10203] siw: device registration error -23
[  390.164360][T10107] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  390.206637][T10107] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  390.297760][T10107] 8021q: adding VLAN 0 to HW filter on device bond0
[  390.304032][ T5132] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  390.305682][ T5132] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  390.309644][T10107] 8021q: adding VLAN 0 to HW filter on device team0
[  390.312930][ T4509] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  390.317025][ T4509] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  390.319713][ T4509] bridge0: port 1(bridge_slave_0) entered blocking state
[  390.320954][ T4509] bridge0: port 1(bridge_slave_0) entered forwarding state
[  390.323561][ T4509] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  390.378806][ T4509] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  390.380613][ T4509] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  390.382206][ T4509] bridge0: port 2(bridge_slave_1) entered blocking state
[  390.384240][ T4509] bridge0: port 2(bridge_slave_1) entered forwarding state
[  390.392525][ T4509] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  390.396506][ T4509] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  390.400154][ T4507] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  390.403665][ T4507] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  390.407284][ T4507] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  390.409368][ T4507] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  390.411164][ T4507] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  390.416605][T10107] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  390.418415][T10107] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  390.422132][ T4507] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  390.423925][ T4507] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  390.425793][ T4507] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  390.427423][ T4507] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  390.466094][ T4507] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  390.556159][ T4414] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  390.557732][ T4414] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  390.564350][T10107] 8021q: adding VLAN 0 to HW filter on device batadv0
[  390.569901][   T22] usb 1-1: cp210x converter now attached to ttyUSB0
[  390.893254][T10253] loop4: detected capacity change from 0 to 736
[  391.202669][ T4336] Bluetooth: hci0: command 0x041b tx timeout
[  391.777783][ T4390] usb 1-1: USB disconnect, device number 8
[  391.784283][T10257] loop1: detected capacity change from 0 to 512
[  391.785769][T10257] EXT4-fs: Ignoring removed oldalloc option
[  391.832584][ T4390] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  391.836846][ T4390] cp210x 1-1:0.0: device disconnected
[  391.897271][ T4507] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  391.899067][ T4507] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  391.928700][ T4463] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  391.930363][ T4463] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  391.932126][ T4463] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  391.933619][ T4463] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  391.952389][T10107] device veth0_vlan entered promiscuous mode
[  392.033322][T10107] device veth1_vlan entered promiscuous mode
[  392.040358][T10107] device veth0_macvtap entered promiscuous mode
[  392.043128][T10107] device veth1_macvtap entered promiscuous mode
[  392.157840][T10265] loop4: detected capacity change from 0 to 8
[  392.195757][T10257] EXT4-fs (loop1): 1 truncate cleaned up
[  392.196864][T10257] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  392.778796][ T4509] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  392.780502][ T4509] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  392.784909][ T4509] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  392.786706][ T4509] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  392.794292][ T4509] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  392.799663][T10107] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  392.801351][T10107] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  393.240325][T10107] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  393.245541][T10107] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  393.248794][T10107] batman_adv: batadv0: Interface activated: batadv_slave_0
[  393.250589][T10272] netlink: 192 bytes leftover after parsing attributes in process `syz.1.1878'.
[  393.253439][T10107] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  393.255140][T10107] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  393.256741][T10107] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  393.258482][T10107] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  393.260890][T10107] batman_adv: batadv0: Interface activated: batadv_slave_1
[  393.280955][T10107] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  393.285125][ T4322] EXT4-fs (loop1): unmounting filesystem.
[  393.299297][T10107] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  393.331128][T10300] loop1: detected capacity change from 0 to 256
[  393.335947][T10107] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  393.341356][T10107] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  393.383699][ T4509] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  393.385630][ T4509] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  393.387311][ T4509] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  393.388940][ T4509] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  393.397304][ T4509] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  393.399887][T10300] loop1: detected capacity change from 0 to 4096
[  393.401065][ T4336] Bluetooth: hci0: command 0x040f tx timeout
[  393.412060][T10300] EXT4-fs (loop1): Test dummy encryption mode enabled
[  393.443545][T10300] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c019, mo2=0002]
[  393.445887][T10300] System zones: 0-5
[  393.447338][T10300] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  394.438366][T10315] loop4: detected capacity change from 0 to 512
[  394.472415][T10314] loop0: detected capacity change from 0 to 1024
[  394.558809][T10315] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock
[  394.560390][T10315] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock
[  394.561989][T10315] EXT4-fs (loop4): ext4_check_descriptors: Inode table for group 1 overlaps superblock
[  395.289138][T10315] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  395.290373][T10315] [EXT4 FS bs=4096, gc=2, bpg=34, ipg=32, mo=e040e01c, mo2=0000]
[  395.291492][T10315] EXT4-fs (loop4): failed to initialize system zone (-117)
[  395.292653][T10315] EXT4-fs (loop4): mount failed
[  395.392977][ T4322] EXT4-fs (loop1): unmounting filesystem.
[  395.613795][ T4338] Bluetooth: hci0: command 0x0419 tx timeout
[  396.448449][ T1586] device hsr_slave_0 left promiscuous mode
[  396.508052][T10326] loop0: detected capacity change from 0 to 736
[  396.537721][ T1586] device hsr_slave_1 left promiscuous mode
[  396.599577][T10329] binder: 10328:10329 tried to acquire reference to desc 0, got 1 instead
[  396.629550][ T1586] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  396.633090][ T1586] batman_adv: batadv0: Removing interface: batadv_slave_0
[  396.635225][ T1586] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  396.636553][ T1586] batman_adv: batadv0: Removing interface: batadv_slave_1
[  396.638152][ T1586] device bridge_slave_1 left promiscuous mode
[  396.643081][ T1586] bridge0: port 2(bridge_slave_1) entered disabled state
[  396.663924][ T1586] device bridge_slave_0 left promiscuous mode
[  396.665239][ T1586] bridge0: port 1(bridge_slave_0) entered disabled state
[  396.811370][ T1586] device veth1_macvtap left promiscuous mode
[  396.812751][ T1586] device veth0_macvtap left promiscuous mode
[  396.813711][ T1586] device veth1_vlan left promiscuous mode
[  396.814702][ T1586] device veth0_vlan left promiscuous mode
[  396.822515][T10333] loop0: detected capacity change from 0 to 512
[  396.832783][T10333] EXT4-fs: Ignoring removed oldalloc option
[  396.852551][T10333] EXT4-fs (loop0): 1 truncate cleaned up
[  396.853700][T10333] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  397.482309][ T1965] binder: release 10328:10329 transaction 93 out, still active
[  397.527222][ T1965] binder: undelivered TRANSACTION_COMPLETE
[  397.598003][ T1965] binder: send failed reply for transaction 93, target dead
[  398.456565][T10346] loop4: detected capacity change from 0 to 16
[  398.462377][T10346] erofs: (device loop4): mounted with root inode @ nid 36.
[  398.496832][T10348] loop4: detected capacity change from 0 to 256
[  398.527154][ T9860] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  398.540203][T10348] loop4: detected capacity change from 0 to 4096
[  398.540275][ T9860] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  398.550120][T10348] EXT4-fs (loop4): Test dummy encryption mode enabled
[  398.552118][T10348] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c019, mo2=0002]
[  398.553582][T10348] System zones: 0-5
[  398.561092][T10348] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  399.415406][ T4334] EXT4-fs (loop4): unmounting filesystem.
[  400.373272][ T1586] team0 (unregistering): Port device team_slave_1 removed
[  400.563011][ T1586] team0 (unregistering): Port device team_slave_0 removed
[  400.820011][ T1586] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  401.087408][ T1586] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  401.334513][T10366] siw: device registration error -23
[  401.606774][T10369] fuse: root generation should be zero
[  402.787466][ T1586] bond0 (unregistering): Released all slaves
[  403.138933][   T39] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  403.144508][T10337] netlink: 192 bytes leftover after parsing attributes in process `syz.0.1893'.
[  403.149736][   T39] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  403.175620][ T4326] EXT4-fs (loop0): unmounting filesystem.
[  403.223967][T10386] loop4: detected capacity change from 0 to 256
[  403.227487][T10386] exFAT-fs (loop4): failed to load upcase table (idx : 0x00011a39, chksum : 0xd54015fb, utbl_chksum : 0xe619d30d)
[  403.243197][ T4605] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  403.245264][ T4414] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  403.247036][ T4414] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  403.252257][ T4605] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  404.396568][T10413] loop6: detected capacity change from 0 to 512
[  404.418588][T10413] EXT4-fs: Ignoring removed oldalloc option
[  404.483704][T10413] EXT4-fs (loop6): 1 truncate cleaned up
[  404.484712][T10413] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  404.899530][T10425] netlink: 192 bytes leftover after parsing attributes in process `syz.6.1916'.
[  405.177712][T10395] siw: device registration error -23
[  405.308311][T10107] EXT4-fs (loop6): unmounting filesystem.
[  405.378787][   T22] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  405.391097][T10438] loop4: detected capacity change from 0 to 8
[  405.407140][T10443] loop1: detected capacity change from 0 to 512
[  405.465337][T10443] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  405.482999][T10452] loop6: detected capacity change from 0 to 256
[  405.548985][ T4322] EXT4-fs (loop1): unmounting filesystem.
[  405.565062][T10452] loop6: detected capacity change from 0 to 4096
[  405.573130][   T22] usb 1-1: config 1 has an invalid interface descriptor of length 8, skipping
[  405.574624][   T22] usb 1-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  405.588355][   T22] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  405.589849][   T22] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  405.591076][   T22] usb 1-1: Product: syz
[  405.591703][   T22] usb 1-1: Manufacturer: syz
[  405.592421][   T22] usb 1-1: SerialNumber: syz
[  405.623731][T10452] EXT4-fs (loop6): Test dummy encryption mode enabled
[  405.646981][T10452] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c019, mo2=0002]
[  405.648370][T10452] System zones: 0-5
[  405.656276][T10452] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  405.670754][T10475] loop4: detected capacity change from 0 to 512
[  405.672322][T10475] EXT4-fs: Ignoring removed oldalloc option
[  405.737187][T10475] EXT4-fs (loop4): 1 truncate cleaned up
[  405.738139][T10475] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  406.662218][T10482] netlink: 192 bytes leftover after parsing attributes in process `syz.4.1930'.
[  406.880320][T10107] EXT4-fs (loop6): unmounting filesystem.
[  406.890351][T10491] loop1: detected capacity change from 0 to 512
[  406.895178][ T4334] EXT4-fs (loop4): unmounting filesystem.
[  406.920604][T10491] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  406.963724][T10494] netlink: 44 bytes leftover after parsing attributes in process `syz.4.1936'.
[  406.980106][T10491] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  407.044434][ T4322] EXT4-fs (loop1): unmounting filesystem.
[  407.223535][T10502] input: syz1 as /devices/virtual/input/input14
[  407.981390][   T22] cdc_ncm 1-1:1.0: bind() failure
[  407.986409][   T22] cdc_ncm: probe of 1-1:1.1 failed with error -71
[  407.988013][   T22] cdc_mbim: probe of 1-1:1.1 failed with error -71
[  407.996110][   T22] usbtest: probe of 1-1:1.1 failed with error -71
[  408.001700][   T22] usb 1-1: USB disconnect, device number 9
[  408.043082][T10539] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1945'.
[  408.600784][T10561] siw: device registration error -23
[  408.736058][T10573] loop4: detected capacity change from 0 to 1024
[  408.742791][T10573] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  408.750347][T10573] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1113: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters
[  408.776499][T10577] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1956'.
[  408.811859][ T4334] EXT4-fs (loop4): unmounting filesystem.
[  409.783701][T10616] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1968'.
[  409.823237][T10614] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1970'.
[  409.824685][T10614] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1970'.
[  409.840579][T10621] loop6: detected capacity change from 0 to 2048
[  409.858064][T10621] UDF-fs: bad mount option "fscontext=unconfi" or missing value
[  409.877103][T10618] siw: device registration error -23
[  409.877980][T10623] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  409.878104][T10623] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  409.891990][T10626] loop0: detected capacity change from 0 to 16
[  409.893730][T10626] erofs: (device loop0): mounted with root inode @ nid 36.
[  409.924278][ T9860] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  410.726506][T10654] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1985'.
[  410.769868][T10658] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  410.777685][T10658] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  410.782647][T10660] loop4: detected capacity change from 0 to 1024
[  410.805897][T10660] hfsplus: keylen 65060 too large
[  410.807562][T10660] hfsplus: xattr searching failed
[  410.851395][ T4488] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  410.854411][ T4488] hid-generic 0000:0000:0000.0003: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  411.115172][T10681] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  411.116661][T10681] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  411.125265][T10683] loop6: detected capacity change from 0 to 128
[  411.130231][T10683] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  411.154340][T10107] EXT4-fs (loop6): unmounting filesystem.
[  411.180296][T10687] loop6: detected capacity change from 0 to 1024
[  411.185040][T10687] EXT4-fs: Ignoring removed bh option
[  411.204140][T10687] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  411.209624][T10687] EXT4-fs (loop6): shut down requested (0)
[  411.350925][T10107] EXT4-fs (loop6): unmounting filesystem.
[  411.386642][T10696] loop6: detected capacity change from 0 to 16
[  411.399429][T10696] erofs: (device loop6): mounted with root inode @ nid 36.
[  411.952365][T10716] netlink: 'syz.0.2010': attribute type 3 has an invalid length.
[  411.991487][T10723] loop0: detected capacity change from 0 to 512
[  412.013018][T10723] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  412.066972][T10723] EXT4-fs error (device loop0): __ext4_fill_super:5423: inode #2: comm syz.0.2012: inode has both inline data and extents flags
[  412.069669][T10723] EXT4-fs (loop0): get root inode failed
[  412.070703][T10723] EXT4-fs (loop0): mount failed
[  412.079765][T10734] loop4: detected capacity change from 0 to 1024
[  412.084834][T10734] EXT4-fs: Ignoring removed orlov option
[  412.138908][T10744] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  412.145274][T10744] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  412.165678][T10734] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  412.175931][T10723] loop0: detected capacity change from 0 to 1024
[  412.184348][T10723] hfsplus: unable to parse mount options
[  412.239217][ T4334] EXT4-fs (loop4): unmounting filesystem.
[  412.414164][T10762] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  412.458355][ T4322] EXT4-fs (loop1): unmounting filesystem.
[  412.905060][T10772] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  412.911379][T10772] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  413.213522][T10788] binder: 10787:10788 ioctl c0306201 200001c0 returned -14
[  413.924132][T10823] rock: directory entry would overflow storage
[  413.928881][T10823] rock: sig=0x4543, size=28, remaining=18
[  414.244992][T10834] VFS: Can't find a Minix filesystem V1 | V2 | V3 on device nullb0.
[  415.067841][T10841] set_capacity_and_notify: 2 callbacks suppressed
[  415.067852][T10841] loop1: detected capacity change from 0 to 512
[  415.075461][T10841] EXT4-fs: Ignoring removed i_version option
[  415.076383][T10841] EXT4-fs: Ignoring removed i_version option
[  415.121568][T10847] loop4: detected capacity change from 0 to 512
[  415.139197][T10841] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  415.240643][T10847] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  415.391746][ T4322] EXT4-fs (loop1): unmounting filesystem.
[  415.408131][ T4334] EXT4-fs (loop4): unmounting filesystem.
[  415.909131][T10897] loop4: detected capacity change from 0 to 512
[  415.931151][T10897] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock
[  415.946139][T10897] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock
[  415.948638][T10897] EXT4-fs (loop4): ext4_check_descriptors: Inode table for group 1 overlaps superblock
[  415.965355][T10897] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  415.967143][T10897] [EXT4 FS bs=4096, gc=2, bpg=34, ipg=32, mo=e040e01c, mo2=0000]
[  415.972156][T10897] EXT4-fs (loop4): failed to initialize system zone (-117)
[  415.975971][T10897] EXT4-fs (loop4): mount failed
[  416.005672][T10906] loop6: detected capacity change from 0 to 512
[  416.012175][T10906] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  416.029183][T10906] EXT4-fs (loop6): 1 truncate cleaned up
[  416.036576][T10906] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  416.450108][T10913] VFS: Can't find a Minix filesystem V1 | V2 | V3 on device nullb0.
[  416.968848][T10107] EXT4-fs (loop6): unmounting filesystem.
[  417.466945][T10936] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  417.471082][T10936] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  417.549555][T10941] loop1: detected capacity change from 0 to 136
[  417.788851][T10952] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2088'.
[  418.094294][T10971] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2097'.
[  418.158590][T10972] VFS: Can't find a Minix filesystem V1 | V2 | V3 on device nullb0.
[  418.987225][T10977] loop1: detected capacity change from 0 to 4096
[  418.999732][T10977] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  419.013552][T10977] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  419.039711][ T4322] EXT4-fs (loop1): unmounting filesystem.
[  419.241450][T10984] Bluetooth: MGMT ver 1.22
[  419.271341][T10979] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2100'.
[  419.283249][T10989] loop1: detected capacity change from 0 to 1024
[  419.347634][T10989] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a802c018, mo2=0002]
[  419.349112][T10989] System zones: 0-1, 3-8
[  419.350225][T10989] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  419.422767][ T4322] EXT4-fs (loop1): unmounting filesystem.
[  419.602247][T11015] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  419.603944][T11015] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  419.656578][   T27] audit: type=1326 audit(665.516:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11008 comm="syz.1.2109" exe="/root/syz-executor" sig=9 arch=c00000b7 syscall=98 compat=0 ip=0xffff8f175928 code=0x0
[  419.658522][T11026] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  420.457254][T11026] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  420.515217][T11030] loop1: detected capacity change from 0 to 512
[  420.525003][T11030] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  420.568142][T11030] EXT4-fs (loop1): 1 truncate cleaned up
[  420.569175][T11030] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  420.779389][T11047] loop4: detected capacity change from 0 to 512
[  420.793563][T11047] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  420.796026][ T4322] EXT4-fs (loop1): unmounting filesystem.
[  420.829108][T11047] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #16: comm syz.4.2114: invalid indirect mapped block 4294967295 (level 0)
[  420.845744][T11047] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #16: comm syz.4.2114: invalid indirect mapped block 4294967295 (level 1)
[  420.879802][T11055] loop0: detected capacity change from 0 to 1024
[  420.886707][T11047] EXT4-fs (loop4): 1 orphan inode deleted
[  420.887710][T11047] EXT4-fs (loop4): 1 truncate cleaned up
[  420.888671][T11047] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  420.912073][T11047] EXT4-fs error (device loop4): htree_dirblock_to_tree:1112: inode #2: block 13: comm syz.4.2114: bad entry in directory: rec_len is too small for name_len - offset=12, inode=2, rec_len=12, size=1024 fake=0
[  420.972100][T11055] hfsplus: bad catalog entry type
[  420.989955][ T4334] EXT4-fs (loop4): unmounting filesystem.
[  421.004819][ T5132] hfsplus: b-tree write err: -5, ino 4
[  421.120286][T11083] loop1: detected capacity change from 0 to 1024
[  421.144500][T11083] hfsplus: extend alloc file! (16384,256,150995124)
[  421.250201][T11094] loop4: detected capacity change from 0 to 128
[  421.332075][ T4376] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  421.439358][   T27] audit: type=1326 audit(667.172:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11088 comm="syz.6.2124" exe="/root/syz-executor" sig=9 arch=c00000b7 syscall=98 compat=0 ip=0xffff93b75928 code=0x0
[  421.546070][ T4376] usb 1-1: Using ep0 maxpacket: 16
[  421.573994][ T4376] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  421.576018][ T4376] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  421.588127][ T4376] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  421.598362][ T4376] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  421.636775][ T4376] usb 1-1: Product: syz
[  421.637952][ T4376] usb 1-1: Manufacturer: syz
[  421.639300][ T4376] usb 1-1: SerialNumber: syz
[  422.106273][ T4376] usb 1-1: 0:2 : does not exist
[  422.112043][ T4376] usb 1-1: 5:0: failed to get current value for ch 0 (-22)
[  422.128488][ T4376] usb 1-1: USB disconnect, device number 10
[  422.179637][T11094] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  422.184446][T11094] EXT4-fs (loop4): re-mounted. Quota mode: writeback.
[  422.208975][T11095] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  422.210691][T11095] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  422.253465][ T4334] EXT4-fs (loop4): unmounting filesystem.
[  422.352856][ T9860] udevd[9860]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  422.397440][T11107] loop6: detected capacity change from 0 to 2048
[  422.435568][T11112] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  422.440061][T11112] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  422.457177][T11107] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  422.521984][T10107] EXT4-fs (loop6): unmounting filesystem.
[  422.549562][T11124] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2131'.
[  422.779217][T11148] binder: 11147:11148 tried to acquire reference to desc 0, got 1 instead
[  423.067447][T11169] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  423.069194][T11169] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  423.132575][   T27] audit: type=1326 audit(668.763:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11157 comm="syz.2.2138" exe="/root/syz-executor" sig=9 arch=c00000b7 syscall=98 compat=0 ip=0xffff85b75928 code=0x0
[  423.809444][T11148] binder: 11147:11148 ioctl c0306201 200016c0 returned -14
[  423.816707][ T4376] binder: release 11147:11148 transaction 98 out, still active
[  423.873091][ T4376] binder: send failed reply for transaction 98, target dead
[  423.999854][T11182] loop4: detected capacity change from 0 to 256
[  424.047977][ T9860] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  424.095743][T11182] loop4: detected capacity change from 0 to 4096
[  424.097572][ T9860] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  424.113055][T11182] EXT4-fs (loop4): Test dummy encryption mode enabled
[  424.124593][T11182] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c019, mo2=0002]
[  424.126022][T11182] System zones: 0-5
[  424.140186][T11182] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  424.271710][ T4376] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  424.470881][ T4376] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  424.473107][ T4376] usb 1-1: New USB device found, idVendor=04d8, idProduct=f372, bcdDevice= 0.00
[  424.475008][ T4376] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  424.535259][ T4376] usb 1-1: config 0 descriptor??
[  424.589898][T11206] binder: 11201:11206 tried to acquire reference to desc 0, got 1 instead
[  424.598741][T11206] binder: 11201:11206 got transaction with invalid fd, -1
[  424.600106][T11206] binder: 11206:11201 translate fd failed
[  424.608125][T11206] binder: 11201:11206 transaction async to 11201:0 failed 103/29201/-9, size 72-24 line 3415
[  424.613390][ T1965] binder: undelivered TRANSACTION_ERROR: 29201
[  424.721567][T11213] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2148'.
[  424.721864][T11215] loop6: detected capacity change from 0 to 164
[  424.762339][ T4376] usbhid 1-1:0.0: can't add hid device: -71
[  424.763533][ T4376] usbhid: probe of 1-1:0.0 failed with error -71
[  424.765554][ T4376] usb 1-1: USB disconnect, device number 11
[  424.927349][ T4334] EXT4-fs (loop4): unmounting filesystem.
[  425.007725][T11231] netlink: 192 bytes leftover after parsing attributes in process `syz.6.2150'.
[  425.223203][T11228] loop0: detected capacity change from 0 to 512
[  425.224948][T11228] EXT4-fs (loop0): Using encoding defined by superblock: utf8-12.1.0 with flags 0x0
[  425.226507][T11228] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  425.228135][T11228] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  425.229575][T11228] EXT4-fs (loop0): Couldn't mount because of unsupported optional features (fffc1829)
[  425.282751][ T9874] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  425.803520][T11250] bridge0: adding interface bridge_slave_0 with same address as a received packet (addr:aa:aa:aa:aa:aa:1c, vlan:0)
[  425.897325][T11256] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2161'.
[  426.021494][T11269] loop4: detected capacity change from 0 to 512
[  426.038773][T11269] EXT4-fs (loop4): Test dummy encryption mode enabled
[  426.039967][T11269] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  426.912059][T11269] EXT4-fs error (device loop4): ext4_orphan_get:1425: comm syz.4.2165: bad orphan inode 131083
[  426.928475][T11269] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  426.971177][T11282] loop6: detected capacity change from 0 to 512
[  426.972552][T11282] EXT4-fs: Ignoring removed oldalloc option
[  427.049467][ T4334] EXT4-fs (loop4): unmounting filesystem.
[  427.060716][T11282] EXT4-fs (loop6): 1 truncate cleaned up
[  427.064726][T11282] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  427.067222][T11289] loop1: detected capacity change from 0 to 512
[  427.072906][T11289] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  427.145528][T11289] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.2170: invalid indirect mapped block 4294967295 (level 1)
[  427.149032][T11295] loop4: detected capacity change from 0 to 256
[  427.158061][T11289] EXT4-fs (loop1): Remounting filesystem read-only
[  427.159054][T11289] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.2170: invalid indirect mapped block 4294967295 (level 1)
[  427.162616][T11295] exFAT-fs (loop4): failed to load upcase table (idx : 0x00011d5f, chksum : 0x09863542, utbl_chksum : 0x000cd30d)
[  427.166112][T11289] EXT4-fs (loop1): Remounting filesystem read-only
[  427.167525][T11289] EXT4-fs (loop1): 2 truncates cleaned up
[  427.170098][T11289] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  427.186367][T11289] EXT4-fs error (device loop1): ext4_inlinedir_to_tree:1450: inode #12: block 7: comm syz.1.2170: path /447/file0/file0: bad entry in directory: rec_len % 4 != 0 - offset=259, inode=4278190093, rec_len=255, size=60 fake=0
[  427.263159][T11296] netlink: 192 bytes leftover after parsing attributes in process `syz.6.2168'.
[  427.474617][T11289] EXT4-fs (loop1): Remounting filesystem read-only
[  427.528076][ T4322] EXT4-fs (loop1): unmounting filesystem.
[  427.640662][T11309] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2176'.
[  427.773843][T11318] loop4: detected capacity change from 0 to 8
[  427.837086][T11324] loop0: detected capacity change from 0 to 1024
[  427.896005][T10107] EXT4-fs (loop6): unmounting filesystem.
[  427.930867][T11328] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2185'.
[  428.013120][T11336] loop0: detected capacity change from 0 to 128
[  428.020676][T11336] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  428.105430][ T4326] EXT4-fs (loop0): unmounting filesystem.
[  428.219659][T11350] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2191'.
[  428.269889][T11357] loop6: detected capacity change from 0 to 512
[  428.271532][T11357] EXT4-fs: Ignoring removed oldalloc option
[  428.279086][T11357] EXT4-fs (loop6): 1 truncate cleaned up
[  428.281817][T11357] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  428.364812][T11361] loop4: detected capacity change from 0 to 512
[  428.375181][T11361] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  428.398066][T11361] EXT4-fs (loop4): 1 truncate cleaned up
[  428.400333][T11361] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  428.509579][T11365] netlink: 192 bytes leftover after parsing attributes in process `syz.6.2195'.
[  429.038978][  T113] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  429.149469][T11373] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  429.151759][T11373] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  429.190507][T10107] EXT4-fs (loop6): unmounting filesystem.
[  429.233894][  T113] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  429.235416][  T113] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  429.237229][  T113] usb 1-1: Product: syz
[  429.238011][  T113] usb 1-1: Manufacturer: syz
[  429.238682][  T113] usb 1-1: SerialNumber: syz
[  429.291482][ T4334] EXT4-fs (loop4): unmounting filesystem.
[  429.439275][T11382] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  429.440890][T11382] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  429.451501][T11384] loop4: detected capacity change from 0 to 512
[  429.465919][T11384] EXT4-fs warning (device loop4): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  429.467907][T11384] EXT4-fs warning (device loop4): dx_probe:881: Enable large directory feature to access it
[  429.469458][T11384] EXT4-fs warning (device loop4): dx_probe:966: inode #2: comm syz.4.2206: Corrupt directory, running e2fsck is recommended
[  429.479417][T11384] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -117
[  429.481153][T11384] EXT4-fs error (device loop4): ext4_iget_extra_inode:4756: inode #15: comm syz.4.2206: corrupted in-inode xattr
[  429.483692][T11384] EXT4-fs error (device loop4): ext4_orphan_get:1404: comm syz.4.2206: couldn't read orphan inode 15 (err -117)
[  429.485867][T11384] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  429.493899][   T27] audit: type=1326 audit(674.713:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11378 comm="syz.6.2204" exe="/root/syz-executor" sig=9 arch=c00000b7 syscall=98 compat=0 ip=0xffff93b75928 code=0x0
[  429.516415][ T4334] EXT4-fs (loop4): unmounting filesystem.
[  430.264434][T11403] EXT4-fs: Ignoring removed oldalloc option
[  430.270476][T11403] EXT4-fs (loop6): 1 truncate cleaned up
[  430.271594][T11403] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  430.489328][T11406] netlink: 192 bytes leftover after parsing attributes in process `syz.6.2212'.
[  430.727300][  T113] cdc_ncm 1-1:1.0: MAC-Address: 42:42:42:42:42:42
[  430.728606][  T113] cdc_ncm 1-1:1.0: dwNtbInMaxSize=16 is too small. Using 2048
[  430.729754][  T113] cdc_ncm 1-1:1.0: setting rx_max = 2048
[  430.890972][T11414] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  430.967863][  T113] cdc_ncm 1-1:1.0: setting tx_max = 184
[  430.972807][  T113] cdc_ncm 1-1:1.0 usb0: register 'cdc_ncm' at usb-dummy_hcd.0-1, CDC NCM (NO ZLP), 42:42:42:42:42:42
[  430.995772][  T113] usb 1-1: USB disconnect, device number 12
[  430.997056][  T113] cdc_ncm 1-1:1.0 usb0: unregister 'cdc_ncm' usb-dummy_hcd.0-1, CDC NCM (NO ZLP)
[  431.498154][T10107] EXT4-fs (loop6): unmounting filesystem.
[  431.535359][T11432] set_capacity_and_notify: 2 callbacks suppressed
[  431.535371][T11432] loop6: detected capacity change from 0 to 2048
[  431.546193][T11432] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  431.702424][T11440] loop6: detected capacity change from 0 to 512
[  431.721478][T11440] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  431.735013][T11440] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=2802e02c, mo2=0102]
[  431.736557][T11440] System zones: 1-12
[  431.739062][T11440] EXT4-fs (loop6): orphan cleanup on readonly fs
[  431.747611][T11440] EXT4-fs error (device loop6): ext4_validate_block_bitmap:438: comm syz.6.2223: bg 0: block 361: padding at end of block bitmap is not set
[  431.751812][T11440] EXT4-fs (loop6): Remounting filesystem read-only
[  431.753251][T11440] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6181: Corrupt filesystem
[  431.755849][T11440] EXT4-fs (loop6): Remounting filesystem read-only
[  431.757295][T11440] EXT4-fs error (device loop6): ext4_free_branches:1030: inode #11: comm syz.6.2223: invalid indirect mapped block 1358954509 (level 0)
[  431.798017][T11440] EXT4-fs (loop6): Remounting filesystem read-only
[  431.799396][T11440] EXT4-fs error (device loop6): ext4_free_branches:1030: inode #11: comm syz.6.2223: invalid indirect mapped block 2 (level 2)
[  431.802055][T11440] EXT4-fs (loop6): Remounting filesystem read-only
[  431.803318][T11440] EXT4-fs (loop6): 1 truncate cleaned up
[  431.804387][T11440] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  431.828966][ T4334] EXT4-fs (loop4): unmounting filesystem.
[  431.871343][T11446] loop1: detected capacity change from 0 to 256
[  432.255214][T11446] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  432.257238][T11446] exFAT-fs (loop1): Medium has reported failures. Some data may be lost.
[  432.261052][T11446] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000ff98, chksum : 0xaaf53d22, utbl_chksum : 0xe619d30d)
[  432.271810][T11440] EXT4-fs (loop6): shut down requested (0)
[  432.334770][T10107] EXT4-fs (loop6): unmounting filesystem.
[  432.923891][T11466] siw: device registration error -23
[  433.053527][T11470] netlink: 192 bytes leftover after parsing attributes in process `syz.2.2231'.
[  433.283885][T11472] loop0: detected capacity change from 0 to 8
[  433.295674][T11472] SQUASHFS error: Unable to read directory block [1d0:62]
[  433.358310][T11479] loop1: detected capacity change from 0 to 736
[  433.598500][T11494] loop0: detected capacity change from 0 to 128
[  434.704415][T11494] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  434.738521][T11504] loop2: detected capacity change from 0 to 1024
[  434.740195][T11504] ext4: Unknown parameter 'noacl'
[  434.750375][ T4326] EXT4-fs (loop0): unmounting filesystem.
[  434.820397][ T9873] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  434.925909][T11520] netlink: 'syz.2.2253': attribute type 32 has an invalid length.
[  434.986125][T11526] loop0: detected capacity change from 0 to 512
[  434.988327][T11526] EXT4-fs: Ignoring removed oldalloc option
[  434.998854][T11526] EXT4-fs (loop0): 1 truncate cleaned up
[  434.999835][T11526] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  436.150004][T11536] netlink: 192 bytes leftover after parsing attributes in process `syz.0.2256'.
[  436.181635][ T4326] EXT4-fs (loop0): unmounting filesystem.
[  436.253570][T11548] loop1: detected capacity change from 0 to 256
[  436.333608][T11548] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  436.335348][T11548] exFAT-fs (loop1): Medium has reported failures. Some data may be lost.
[  436.347460][T11548] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  437.286115][T11583] loop4: detected capacity change from 0 to 512
[  437.298470][T11585] binder: 11584:11585 tried to acquire reference to desc 0, got 1 instead
[  437.321370][T11585] binder: 11584:11585 got transaction with invalid data ptr
[  437.322767][T11585] binder: 11584:11585 transaction call to 11584:0 failed 117/29201/-14, size 0-24 line 3333
[  437.338059][T11583] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  437.346059][T11590] loop2: detected capacity change from 0 to 256
[  437.364249][   T22] binder: release 11584:11585 transaction 110 out, still active
[  437.365526][   T22] binder: undelivered TRANSACTION_COMPLETE
[  437.367379][   T22] binder: undelivered TRANSACTION_ERROR: 29201
[  437.368396][   T22] binder: send failed reply for transaction 110, target dead
[  437.370397][T11590] exFAT-fs (loop2): failed to load upcase table (idx : 0x00011f1c, chksum : 0x850fc7e5, utbl_chksum : 0xe619d30d)
[  437.437089][T11583] EXT4-fs error (device loop4): ext4_xattr_block_get:543: inode #15: comm syz.4.2271: corrupted xattr block 32
[  437.454702][T11598] loop0: detected capacity change from 0 to 512
[  437.456677][T11583] EXT4-fs error (device loop4): __ext4_get_inode_loc:4513: comm syz.4.2271: Invalid inode table block 35 in block_group 0
[  437.456693][T11598] EXT4-fs (loop0): Using encoding defined by superblock: utf8-12.1.0 with flags 0x0
[  437.458762][T11598] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  437.464228][T11598] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  437.465766][T11598] EXT4-fs (loop0): Couldn't mount because of unsupported optional features (fffc1829)
[  437.467973][T11583] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5933: Corrupt filesystem
[  437.470891][T11583] EXT4-fs error (device loop4): ext4_dirty_inode:6137: inode #15: comm syz.4.2271: mark_inode_dirty error
[  437.486945][T11583] EXT4-fs error (device loop4): ext4_map_blocks:635: inode #15: block 41: comm syz.4.2271: lblock 0 mapped to illegal pblock 41 (length 1)
[  437.494465][T11583] EXT4-fs error (device loop4): ext4_map_blocks:635: inode #15: block 41: comm syz.4.2271: lblock 0 mapped to illegal pblock 41 (length 1)
[  437.516440][T11583] EXT4-fs error (device loop4): __ext4_get_inode_loc:4513: comm syz.4.2271: Invalid inode table block 2027821012 in block_group 0
[  437.574743][T11583] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5933: Corrupt filesystem
[  437.581153][T11583] EXT4-fs error (device loop4): ext4_ext_truncate:4454: inode #15: comm syz.4.2271: mark_inode_dirty error
[  437.597837][T11583] EXT4-fs error (device loop4): __ext4_get_inode_loc:4513: comm syz.4.2271: Invalid inode table block 2027821012 in block_group 0
[  437.948929][ T4334] EXT4-fs (loop4): unmounting filesystem.
[  439.473902][  T113] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  439.476936][  T113] hid-generic 0000:0000:0000.0004: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  439.550107][T11625] loop4: detected capacity change from 0 to 1024
[  439.590647][T11622] syz.4.2285: attempt to access beyond end of device
[  439.590647][T11622] loop4: rw=0, sector=917504, nr_sectors = 2 limit=1024
[  439.814510][T11622] Buffer I/O error on dev loop4, logical block 458752, async page read
[  439.909953][T11622] syz.4.2285: attempt to access beyond end of device
[  439.909953][T11622] loop4: rw=0, sector=917504, nr_sectors = 2 limit=1024
[  439.912142][T11622] Buffer I/O error on dev loop4, logical block 458752, async page read
[  439.945366][T11629] loop1: detected capacity change from 0 to 512
[  440.072082][T11642] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2291'.
[  440.129310][T11647] binder: 11646:11647 ioctl c018620c 0 returned -14
[  440.584174][T11661] loop0: detected capacity change from 0 to 16
[  440.587692][T11661] erofs: (device loop0): mounted with root inode @ nid 36.
[  440.592244][T11661] erofs: (device loop0): z_erofs_extent_lookback: bogus lookback distance @ nid 36
[  440.598223][T11661] erofs: (device loop0): z_erofs_lz4_decompress_mem: failed to decompress -44 in[46, 4050] out[1851]
[  440.600741][T11661] erofs: (device loop0): z_erofs_read_folio: failed to read, err [-117]
[  440.607753][T11663] loop4: detected capacity change from 0 to 512
[  440.653601][T11665] loop6: detected capacity change from 0 to 512
[  440.710292][T11668] loop2: detected capacity change from 0 to 128
[  440.727945][T11665] EXT4-fs error (device loop6): ext4_orphan_get:1399: inode #15: comm syz.6.2302: inode has both inline data and extents flags
[  440.730408][T11665] EXT4-fs error (device loop6): ext4_orphan_get:1404: comm syz.6.2302: couldn't read orphan inode 15 (err -117)
[  440.730605][T11668] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  440.732710][T11665] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  440.740578][T11668] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  440.775398][T10107] EXT4-fs (loop6): unmounting filesystem.
[  441.172633][T11684] xt_hashlimit: max too large, truncated to 1048576
[  441.244560][T11690] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2309'.
[  441.247061][T11691] loop2: detected capacity change from 0 to 512
[  441.259455][T11691] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  441.274400][T11691] EXT4-fs (loop2): 1 truncate cleaned up
[  441.275582][T11691] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  441.304540][T11695] EXT4-fs: Ignoring removed orlov option
[  441.359873][T11695] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  441.389258][ T4322] EXT4-fs (loop1): unmounting filesystem.
[  441.805214][T11709] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  441.989301][T11724] FAT-fs (loop6): Directory bread(block 524322) failed
[  441.990528][T11724] FAT-fs (loop6): Directory bread(block 524323) failed
[  441.991619][T11724] FAT-fs (loop6): Directory bread(block 524324) failed
[  441.992748][T11724] FAT-fs (loop6): Directory bread(block 524325) failed
[  441.994176][T11724] FAT-fs (loop6): Directory bread(block 524326) failed
[  441.995799][T11724] FAT-fs (loop6): Directory bread(block 524327) failed
[  441.997175][T11724] FAT-fs (loop6): Directory bread(block 524328) failed
[  441.998475][T11724] FAT-fs (loop6): Directory bread(block 524329) failed
[  442.342476][T11724] FAT-fs (loop6): Directory bread(block 524322) failed
[  442.349053][ T4334] EXT4-fs (loop4): unmounting filesystem.
[  442.352465][T11724] FAT-fs (loop6): Directory bread(block 524323) failed
[  442.371981][ T4330] EXT4-fs (loop2): unmounting filesystem.
[  442.459780][T11731] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2323'.
[  442.481208][T11735] EXT4-fs: Ignoring removed oldalloc option
[  442.505426][T11735] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  442.568489][ T4334] EXT4-fs (loop4): unmounting filesystem.
[  443.100254][T11761] set_capacity_and_notify: 4 callbacks suppressed
[  443.100265][T11761] loop0: detected capacity change from 0 to 512
[  443.103356][T11761] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  443.109818][T11761] EXT4-fs (loop0): 1 truncate cleaned up
[  443.110958][T11761] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  443.685400][T11764] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  443.724717][ T4326] EXT4-fs (loop0): unmounting filesystem.
[  444.552997][T11793] VFS: Can't find a Minix filesystem V1 | V2 | V3 on device nullb0.
[  445.079880][ T2062] ieee802154 phy0 wpan0: encryption failed: -22
[  445.081478][ T2062] ieee802154 phy1 wpan1: encryption failed: -22
[  446.099208][T11814] 9pnet: p9_errstr2errno: server reported unknown error 1844674
[  446.625248][T11830] loop4: detected capacity change from 0 to 256
[  446.714948][ T9860] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  446.740207][T11830] loop4: detected capacity change from 0 to 4096
[  446.743284][T11830] EXT4-fs (loop4): Test dummy encryption mode enabled
[  447.179378][T11830] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c019, mo2=0002]
[  447.189227][T11841] loop6: detected capacity change from 0 to 256
[  447.194591][T11830] System zones: 0-5
[  447.195565][T11841] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0x204dac4c, utbl_chksum : 0xe619d30d)
[  447.214172][T11830] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  447.751192][T11852] loop1: detected capacity change from 0 to 2048
[  447.756633][ T4334] EXT4-fs (loop4): unmounting filesystem.
[  447.805968][T11852] [EXT4 FS bs=2048, gc=1, bpg=262144, ipg=32, mo=a802c01c, mo2=0002]
[  447.808803][T11852] System zones: 0-7
[  447.817496][T11852] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  448.404164][T11852] EXT4-fs error (device loop1): __ext4_get_inode_loc:4513: comm syz.1.2363: Invalid inode table block 4 in block_group 0
[  448.407561][T11852] EXT4-fs error (device loop1): __ext4_get_inode_loc:4513: comm syz.1.2363: Invalid inode table block 4 in block_group 0
[  448.410990][T11852] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5933: Corrupt filesystem
[  448.412836][T11852] EXT4-fs error (device loop1): ext4_dirty_inode:6137: inode #15: comm syz.1.2363: mark_inode_dirty error
[  448.414739][T11852] EXT4-fs error (device loop1): __ext4_get_inode_loc:4513: comm syz.1.2363: Invalid inode table block 4 in block_group 0
[  448.503951][T11870] VFS: Can't find a Minix filesystem V1 | V2 | V3 on device nullb0.
[  448.845981][ T4376] kernel write not supported for file /sysvipc/msg (pid: 4376 comm: kworker/1:4)
[  448.866966][T11878] device syzkaller0 entered promiscuous mode
[  449.423385][T11884] loop6: detected capacity change from 0 to 256
[  449.453838][T11884] loop6: detected capacity change from 0 to 4096
[  449.467050][   T39] EXT4-fs error (device loop1): __ext4_get_inode_loc:4513: comm kworker/u4:2: Invalid inode table block 4 in block_group 0
[  449.473056][ T4322] EXT4-fs (loop1): unmounting filesystem.
[  449.492287][T11884] EXT4-fs (loop6): Test dummy encryption mode enabled
[  449.516251][T11884] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c019, mo2=0002]
[  449.517725][T11884] System zones: 0-5
[  449.520049][T11884] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  449.625343][T11892] loop1: detected capacity change from 0 to 1024
[  449.644963][T11892] hfsplus: inconsistency in B*Tree (128,1,255,1,0)
[  449.646127][T11892] hfsplus: xattr searching failed
[  450.012464][T11897] loop0: detected capacity change from 0 to 512
[  450.019609][T11897] EXT4-fs: Ignoring removed oldalloc option
[  450.039019][T11901] loop1: detected capacity change from 0 to 1024
[  450.039668][T11897] EXT4-fs (loop0): 1 truncate cleaned up
[  450.041277][T11897] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  450.477043][T10107] EXT4-fs (loop6): unmounting filesystem.
[  450.619952][T11911] netlink: 192 bytes leftover after parsing attributes in process `syz.0.2379'.
[  450.847347][T11901] hfsplus: bad catalog file entry
[  451.000314][ T4326] EXT4-fs (loop0): unmounting filesystem.
[  452.450363][ T4509] hfsplus: b-tree write err: -5, ino 3
[  452.468977][T11923] device syzkaller0 entered promiscuous mode
[  452.540911][T11932] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2392'.
[  452.626853][T11924] VFS: Can't find a Minix filesystem V1 | V2 | V3 on device nullb0.
[  453.000578][T11936] loop4: detected capacity change from 0 to 1024
[  453.002133][T11936] EXT4-fs: Ignoring removed nobh option
[  453.003063][T11936] EXT4-fs: Ignoring removed bh option
[  453.010311][T11936] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  453.035319][T11940] loop6: detected capacity change from 0 to 256
[  453.083033][T11936] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  453.144977][ T4334] EXT4-fs (loop4): unmounting filesystem.
[  453.236237][T11948] loop0: detected capacity change from 0 to 512
[  453.237654][T11948] EXT4-fs: Ignoring removed oldalloc option
[  453.270789][T11951] loop4: detected capacity change from 0 to 1024
[  453.559783][T11948] EXT4-fs (loop0): 1 truncate cleaned up
[  453.567550][T11948] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  453.632533][T11954] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  453.641987][T11954] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  453.670717][ T4510] hfsplus: b-tree write err: -5, ino 4
[  453.784546][T11958] netlink: 192 bytes leftover after parsing attributes in process `syz.0.2398'.
[  454.483640][ T4326] EXT4-fs (loop0): unmounting filesystem.
[  454.907283][T11981] loop1: detected capacity change from 0 to 512
[  454.913937][T11981] EXT4-fs (loop1): orphan cleanup on readonly fs
[  454.915151][T11981] EXT4-fs error (device loop1): ext4_ext_check_inode:520: inode #4: comm syz.1.2404: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 1(1)
[  454.925961][T11981] EXT4-fs error (device loop1): ext4_quota_enable:7046: comm syz.1.2404: Bad quota inode: 4, type: 1
[  454.928871][T11981] EXT4-fs warning (device loop1): ext4_enable_quotas:7087: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  454.931178][T11981] EXT4-fs (loop1): Cannot turn on quotas: error -117
[  454.932148][T11981] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  454.940233][T11981] EXT4-fs error (device loop1): ext4_lookup:1855: inode #2: comm syz.1.2404: 'file0' linked to parent dir
[  454.964037][ T4322] EXT4-fs (loop1): unmounting filesystem.
[  454.992733][T11986] loop4: detected capacity change from 0 to 1024
[  454.994197][T11986] EXT4-fs: Ignoring removed nomblk_io_submit option
[  454.995596][T11986] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  455.002252][T11986] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  455.006453][T11986] System zones: 0-1, 3-36
[  455.008706][T11986] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  455.050264][ T4334] EXT4-fs (loop4): unmounting filesystem.
[  455.092861][T11994] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  455.094647][T11994] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  455.126134][T11996] loop2: detected capacity change from 0 to 512
[  455.128634][T11996] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  455.151677][   T27] audit: type=1326 audit(698.718:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11993 comm="syz.4.2410" exe="/root/syz-executor" sig=9 arch=c00000b7 syscall=98 compat=0 ip=0xffffa6775928 code=0x0
[  455.198960][T11999] loop2: detected capacity change from 0 to 512
[  455.200304][T11999] EXT4-fs: Ignoring removed oldalloc option
[  455.203642][T11999] EXT4-fs (loop2): 1 truncate cleaned up
[  455.204703][T11999] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  455.253238][T12002] loop1: detected capacity change from 0 to 256
[  455.309811][ T9873] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  455.318801][T12002] loop1: detected capacity change from 0 to 4096
[  455.318981][ T9873] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  455.476855][T12004] netlink: 192 bytes leftover after parsing attributes in process `syz.2.2412'.
[  455.711380][T12002] EXT4-fs (loop1): Test dummy encryption mode enabled
[  455.713355][T12002] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c019, mo2=0002]
[  455.714820][T12002] System zones: 0-5
[  455.716147][T12002] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  455.792121][T12010] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  455.796049][T12010] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  455.815673][    C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0)
[  456.285955][ T4322] EXT4-fs (loop1): unmounting filesystem.
[  456.287181][ T4330] EXT4-fs (loop2): unmounting filesystem.
[  456.355769][T12021] netlink: 492 bytes leftover after parsing attributes in process `syz.2.2417'.
[  456.588709][T12037] VFS: Can't find a Minix filesystem V1 | V2 | V3 on device nullb0.
[  457.796748][T12047] loop6: detected capacity change from 0 to 512
[  457.805653][T12047] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  457.860752][T10107] EXT4-fs (loop6): unmounting filesystem.
[  457.966873][T12053] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  457.975700][T12051] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  457.977252][T12051] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  457.981305][T12058] loop4: detected capacity change from 0 to 512
[  457.982918][T12058] EXT4-fs: Ignoring removed oldalloc option
[  457.994527][T12058] EXT4-fs (loop4): 1 truncate cleaned up
[  457.995463][T12058] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  458.018321][T12061] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2431'.
[  458.061354][   T27] audit: type=1326 audit(701.440:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12050 comm="syz.1.2427" exe="/root/syz-executor" sig=9 arch=c00000b7 syscall=98 compat=0 ip=0xffff8f175928 code=0x0
[  458.080804][T12066] loop0: detected capacity change from 0 to 1024
[  458.521258][T12064] netlink: 192 bytes leftover after parsing attributes in process `syz.4.2429'.
[  458.902999][ T4334] EXT4-fs (loop4): unmounting filesystem.
[  458.942867][T12075] loop2: detected capacity change from 0 to 1024
[  458.987639][T12080] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d)
[  459.007768][T12080] exFAT-fs (loop6): error, found bogus dentry(9) beyond unused empty group(8) (start_clu : 5, cur_clu : 5)
[  459.010955][T12080] exFAT-fs (loop6): Filesystem has been set read-only
[  459.093370][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  459.094646][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  459.095836][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  459.107665][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  459.108894][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  459.110131][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  459.111293][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  459.122533][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  459.124956][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  459.126245][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  459.127430][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  459.128585][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  459.135171][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  459.136431][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  459.137724][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  459.138863][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  459.150381][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  459.151637][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  459.152771][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  459.153893][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  459.155069][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  459.167518][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  459.168753][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  459.169889][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  459.171059][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  459.189185][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  459.190019][T12099] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1)
[  459.190554][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  459.193023][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  459.197674][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  459.198862][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  459.203699][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  459.206862][T12099] syz.6.2443: attempt to access beyond end of device
[  459.206862][T12099] loop6: rw=3, sector=6950, nr_sectors = 2 limit=128
[  459.210687][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  459.212236][T12099] syz.6.2443: attempt to access beyond end of device
[  459.212236][T12099] loop6: rw=2051, sector=6952, nr_sectors = 942 limit=128
[  459.293615][T12103] VFS: Can't find a Minix filesystem V1 | V2 | V3 on device nullb0.
[  460.598662][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.599902][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.601171][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.602349][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.603511][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.604882][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.606008][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.607131][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.608276][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.609370][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.610434][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.611617][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.612689][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.613792][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.618532][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.619690][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.620871][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.622025][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.623170][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.624306][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.625565][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.626809][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.628007][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.629267][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.630485][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.631760][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.633011][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.633769][T12114] set_capacity_and_notify: 2 callbacks suppressed
[  460.633776][T12114] loop2: detected capacity change from 0 to 512
[  460.634144][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.637525][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.637672][T12115] siw: device registration error -23
[  460.638772][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.640704][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.641907][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.643097][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.644278][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.645471][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.646600][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.650654][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.651648][T12114] EXT4-fs: Ignoring removed oldalloc option
[  460.652005][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.654138][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.655409][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.656570][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.658090][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.659465][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.660729][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.661970][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.663159][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.664169][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.665273][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.666392][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.667399][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.669020][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.670342][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.671599][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.672742][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.673954][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.675139][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.676289][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.677580][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.678118][T12114] EXT4-fs (loop2): 1 truncate cleaned up
[  460.678842][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.680944][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.682207][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.683462][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.684618][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.685807][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.687004][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.688231][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.688230][T12114] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  460.689361][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.693757][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.695050][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.696218][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.697395][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.701778][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.703161][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.707603][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.708885][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.710127][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.711762][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.713012][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.714221][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.715819][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.717248][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.718509][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.719730][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.720952][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.722403][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.723762][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.725062][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.726270][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.727430][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.728701][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.729909][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.731061][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.732086][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.733684][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.734952][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.736219][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.737484][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.738802][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.740156][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.741375][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.742574][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.744142][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.745456][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.746670][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.747937][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.749148][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.750316][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.751539][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.752737][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.754398][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.755595][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.756787][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.758028][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.759191][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.760405][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.763887][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.766280][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.767838][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.769758][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.771095][ T4625] hid-generic 009B:0008:0002.0005: unknown main item tag 0x0
[  460.777503][ T4625] hid-generic 009B:0008:0002.0005: hidraw0: <UNKNOWN> HID v2.00 Device [syz0] on syz0
[  461.116967][T12123] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2447'.
[  461.140609][T12123] netlink: 192 bytes leftover after parsing attributes in process `syz.2.2447'.
[  461.655926][T12124] fido_id[12124]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  461.661336][ T4330] EXT4-fs (loop2): unmounting filesystem.
[  461.812822][T12139] loop1: detected capacity change from 0 to 1024
[  461.820663][T12139] hfsplus: Filesystem is marked locked, mounting read-only.
[  462.151906][T12139] hfsplus: filesystem is marked locked, leaving read-only.
[  462.155698][T12142] loop0: detected capacity change from 0 to 512
[  462.192123][T12142] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  462.210651][T12142] EXT4-fs error (device loop0): ext4_map_blocks:635: inode #2: block 18: comm syz.0.2455: lblock 23 mapped to illegal pblock 18 (length 1)
[  462.269687][ T4326] EXT4-fs (loop0): unmounting filesystem.
[  462.286474][T12150] loop4: detected capacity change from 0 to 256
[  462.323746][T12150] exFAT-fs (loop4): failed to load upcase table (idx : 0x00011a39, chksum : 0xd54015fb, utbl_chksum : 0xe619d30d)
[  462.856498][T12160] loop2: detected capacity change from 0 to 512
[  462.865424][T12160] EXT4-fs: Ignoring removed oldalloc option
[  462.875646][T12160] EXT4-fs (loop2): 1 truncate cleaned up
[  462.876712][T12160] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  463.065981][T12167] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2461'.
[  463.075685][T12167] netlink: 192 bytes leftover after parsing attributes in process `syz.2.2461'.
[  463.810184][ T4330] EXT4-fs (loop2): unmounting filesystem.
[  463.914496][T12184] device syzkaller0 entered promiscuous mode
[  464.075689][T12198] loop2: detected capacity change from 0 to 512
[  464.115566][T12198] EXT4-fs (loop2): Using encoding defined by superblock: utf8-12.1.0 with flags 0x0
[  464.117086][T12198] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  464.118610][T12198] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  464.119938][T12198] EXT4-fs (loop2): Couldn't mount because of unsupported optional features (fffc1829)
[  465.026534][T12213] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2479'.
[  465.033974][T12209] loop0: detected capacity change from 0 to 512
[  465.035375][T12209] EXT4-fs: Ignoring removed oldalloc option
[  465.064162][T12209] EXT4-fs (loop0): 1 truncate cleaned up
[  465.065112][T12209] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  465.247089][T12219] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2478'.
[  465.473948][T12219] netlink: 192 bytes leftover after parsing attributes in process `syz.0.2478'.
[  466.074476][ T4326] EXT4-fs (loop0): unmounting filesystem.
[  466.128768][T12243] loop1: detected capacity change from 0 to 512
[  466.135618][T12243] EXT4-fs (loop1): Using encoding defined by superblock: utf8-12.1.0 with flags 0x0
[  466.138555][T12243] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  466.143990][T12243] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  466.145639][T12243] EXT4-fs (loop1): Couldn't mount because of unsupported optional features (fffc1829)
[  466.772557][T12247] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2491'.
[  467.279666][T12268] loop2: detected capacity change from 0 to 512
[  467.281089][T12268] EXT4-fs: Ignoring removed oldalloc option
[  467.318462][T12268] EXT4-fs (loop2): 1 truncate cleaned up
[  467.319433][T12268] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  467.332200][T12275] siw: device registration error -23
[  467.511698][T12280] netlink: 192 bytes leftover after parsing attributes in process `syz.2.2499'.
[  467.858781][T12288] loop6: detected capacity change from 0 to 512
[  467.864095][T12288] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  468.246310][ T4330] EXT4-fs (loop2): unmounting filesystem.
[  468.253919][T12288] EXT4-fs (loop6): 1 truncate cleaned up
[  468.256183][T12288] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  468.387092][T12299] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2507'.
[  468.443228][T12301] device syzkaller0 left promiscuous mode
[  468.529379][T12307] loop2: detected capacity change from 0 to 512
[  468.540757][T12307] EXT4-fs (loop2): Using encoding defined by superblock: utf8-12.1.0 with flags 0x0
[  468.543509][T12307] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  468.556599][T12307] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  468.562903][T12307] EXT4-fs (loop2): Couldn't mount because of unsupported optional features (fffc1829)
[  469.033276][T10107] EXT4-fs (loop6): unmounting filesystem.
[  469.126545][T12320] loop1: detected capacity change from 0 to 512
[  469.134806][T12320] EXT4-fs: Ignoring removed oldalloc option
[  469.147460][T12320] EXT4-fs (loop1): 1 truncate cleaned up
[  469.148544][T12320] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  469.460195][T12326] netlink: 192 bytes leftover after parsing attributes in process `syz.1.2516'.
[  469.977273][T12336] netlink: 32 bytes leftover after parsing attributes in process `syz.0.2520'.
[  470.048856][ T4322] EXT4-fs (loop1): unmounting filesystem.
[  470.572048][T12357] loop6: detected capacity change from 0 to 512
[  470.585350][T12357] EXT4-fs (loop6): Using encoding defined by superblock: utf8-12.1.0 with flags 0x0
[  470.592577][T12357] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  470.594323][T12357] EXT4-fs (loop6): feature flags set on rev 0 fs, running e2fsck is recommended
[  470.603914][T12357] EXT4-fs (loop6): Couldn't mount because of unsupported optional features (fffc1829)
[  471.149145][T12372] loop1: detected capacity change from 0 to 512
[  471.157123][T12372] EXT4-fs: Ignoring removed oldalloc option
[  471.167246][T12372] EXT4-fs (loop1): 1 truncate cleaned up
[  471.168357][T12372] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  471.391725][T12375] netlink: 192 bytes leftover after parsing attributes in process `syz.1.2532'.
[  471.737902][T12383] netlink: 32 bytes leftover after parsing attributes in process `syz.0.2536'.
[  472.094768][ T4322] EXT4-fs (loop1): unmounting filesystem.
[  472.362059][T12403] loop1: detected capacity change from 0 to 512
[  472.369263][T12403] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  472.431753][T12406] loop4: detected capacity change from 0 to 512
[  472.436132][T12406] EXT4-fs (loop4): Using encoding defined by superblock: utf8-12.1.0 with flags 0x0
[  472.442400][T12406] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  472.445004][T12406] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  472.451144][T12406] EXT4-fs (loop4): Couldn't mount because of unsupported optional features (fffc1829)
[  472.463019][T12403] EXT4-fs (loop1): 1 truncate cleaned up
[  472.463978][T12403] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  473.064706][T12439] loop2: detected capacity change from 0 to 512
[  473.066303][T12439] EXT4-fs: Ignoring removed oldalloc option
[  473.069796][T12439] EXT4-fs (loop2): 1 truncate cleaned up
[  473.070946][T12439] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  473.559596][T12443] netlink: 192 bytes leftover after parsing attributes in process `syz.2.2555'.
[  473.629694][ T4322] EXT4-fs (loop1): unmounting filesystem.
[  474.112121][ T4330] EXT4-fs (loop2): unmounting filesystem.
[  474.285979][T12471] loop2: detected capacity change from 0 to 128
[  474.326401][T12471] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  474.359906][ T4330] EXT4-fs (loop2): unmounting filesystem.
[  474.471017][T12484] loop2: detected capacity change from 0 to 512
[  474.473519][T12484] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  474.506402][T12487] loop6: detected capacity change from 0 to 512
[  474.514047][T12487] EXT4-fs (loop6): Using encoding defined by superblock: utf8-12.1.0 with flags 0x0
[  474.516082][T12484] EXT4-fs (loop2): 1 truncate cleaned up
[  474.519284][T12484] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  474.520866][T12487] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  474.535342][T12487] EXT4-fs (loop6): feature flags set on rev 0 fs, running e2fsck is recommended
[  474.536984][T12487] EXT4-fs (loop6): Couldn't mount because of unsupported optional features (fffc1829)
[  474.619229][T12492] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2572'.
[  475.213674][T12500] loop1: detected capacity change from 0 to 512
[  475.215247][T12500] EXT4-fs: Ignoring removed oldalloc option
[  475.224233][T12500] EXT4-fs (loop1): 1 truncate cleaned up
[  475.226380][T12500] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  475.714824][T12503] netlink: 192 bytes leftover after parsing attributes in process `syz.1.2574'.
[  475.779282][ T4330] EXT4-fs (loop2): unmounting filesystem.
[  476.428061][ T4322] EXT4-fs (loop1): unmounting filesystem.
[  476.525833][T12544] loop1: detected capacity change from 0 to 512
[  476.544046][T12544] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  476.833835][T12544] EXT4-fs (loop1): 1 truncate cleaned up
[  476.835032][T12544] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  476.987429][ T4322] EXT4-fs (loop1): unmounting filesystem.
[  476.996192][T12551] loop4: detected capacity change from 0 to 512
[  477.012534][T12551] EXT4-fs (loop4): Using encoding defined by superblock: utf8-12.1.0 with flags 0x0
[  477.014170][T12551] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  477.015696][T12551] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  477.018207][T12551] EXT4-fs (loop4): Couldn't mount because of unsupported optional features (fffc1829)
[  477.039726][T12554] loop1: detected capacity change from 0 to 512
[  477.043276][T12554] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  477.074906][T12554] EXT4-fs error (device loop1): ext4_validate_block_bitmap:429: comm syz.1.2588: bg 0: block 4: invalid block bitmap
[  477.079405][T12554] EXT4-fs (loop1): Remounting filesystem read-only
[  477.082948][T12554] EXT4-fs (loop1): 1 truncate cleaned up
[  477.084066][T12554] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  477.123868][ T4322] EXT4-fs (loop1): unmounting filesystem.
[  477.492812][T12562] binder: 12561:12562 tried to acquire reference to desc 0, got 1 instead
[  477.504982][T12562] binder: 12561:12562 got transaction with invalid fd, -1
[  477.510851][T12562] binder: 12562:12561 translate fd failed
[  477.515291][T12562] binder: 12561:12562 transaction call to 12561:0 failed 122/29201/-9, size 104-24 line 3415
[  477.523760][ T4376] binder: undelivered TRANSACTION_ERROR: 29201
[  477.587615][T12570] EXT4-fs: Ignoring removed oldalloc option
[  477.604704][T12570] EXT4-fs (loop2): 1 truncate cleaned up
[  477.605623][T12570] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  477.809332][T12579] netlink: 192 bytes leftover after parsing attributes in process `syz.2.2595'.
[  478.062067][T12581] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  479.033700][ T4330] EXT4-fs (loop2): unmounting filesystem.
[  479.188851][T12588] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  479.190456][T12588] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  479.219927][T12595] binder: 12592:12595 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10)
[  479.221985][T12595] binder: 12595 RLIMIT_NICE not set
[  479.267516][   T27] audit: type=1326 audit(721.264:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12586 comm="syz.6.2601" exe="/root/syz-executor" sig=9 arch=c00000b7 syscall=98 compat=0 ip=0xffff93b75928 code=0x0
[  479.277503][T12597] binder: 12592:12597 tried to acquire reference to desc 0, got 1 instead
[  479.281125][ T4404] binder: undelivered TRANSACTION_COMPLETE
[  479.324249][T12600] input: syz0 as /devices/virtual/input/input16
[  479.758954][T12616] set_capacity_and_notify: 1 callbacks suppressed
[  479.758966][T12616] loop2: detected capacity change from 0 to 16
[  479.762168][T12616] erofs: (device loop2): mounted with root inode @ nid 36.
[  480.308563][T12629] siw: device registration error -23
[  481.004532][T12639] netlink: 'syz.6.2618': attribute type 12 has an invalid length.
[  481.005865][T12639] netlink: 'syz.6.2618': attribute type 29 has an invalid length.
[  481.007068][T12639] netlink: 148 bytes leftover after parsing attributes in process `syz.6.2618'.
[  481.008365][T12639] netlink: 'syz.6.2618': attribute type 2 has an invalid length.
[  481.009593][T12639] netlink: 23 bytes leftover after parsing attributes in process `syz.6.2618'.
[  481.017612][T12636] loop1: detected capacity change from 0 to 8
[  481.026532][T12636] SQUASHFS error: lzo decompression failed, data probably corrupt
[  481.028095][T12636] SQUASHFS error: Failed to read block 0x144: -5
[  481.029014][T12636] SQUASHFS error: Unable to read metadata cache entry [142]
[  481.030020][T12636] SQUASHFS error: Unable to read inode 0x11f
[  481.034778][T12638] loop2: detected capacity change from 0 to 2048
[  481.057735][T12638] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  481.115510][T12641] loop6: detected capacity change from 0 to 512
[  481.161786][ T9873] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  481.218219][T12641] netlink: 68 bytes leftover after parsing attributes in process `syz.6.2619'.
[  481.219700][T12641] netlink: 20 bytes leftover after parsing attributes in process `syz.6.2619'.
[  481.219790][T12637] loop0: detected capacity change from 0 to 32768
[  481.220978][T12641] netlink: 20 bytes leftover after parsing attributes in process `syz.6.2619'.
[  481.269299][T12637]  loop0: p1 p3 < >
[  481.457374][ T9873] udevd[9873]: inotify_add_watch(7, /dev/loop0p3, 10) failed: No such file or directory
[  481.462969][ T9860] udevd[9860]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory
[  481.973004][T12677] netlink: 68 bytes leftover after parsing attributes in process `syz.6.2632'.
[  482.083433][T12683] rtc-efi rtc-efi.0: write status is 3
[  482.326801][T12696] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2640'.
[  482.331906][T12696] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2640'.
[  482.423677][T12702] loop6: detected capacity change from 0 to 512
[  482.439641][T12702] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  482.475839][T12702] EXT4-fs (loop6): 1 truncate cleaned up
[  482.476790][T12702] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  482.584262][T12714] loop1: detected capacity change from 0 to 1024
[  482.647740][ T4702] hfsplus: b-tree write err: -5, ino 4
[  482.678458][T12718] loop1: detected capacity change from 0 to 736
[  482.816337][ T1965] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  483.008867][ T1965] usb 1-1: Using ep0 maxpacket: 16
[  483.014307][ T1965] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  483.016098][ T1965] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  483.017661][ T1965] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  483.019910][ T1965] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  483.021399][ T1965] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  483.023632][ T1965] usb 1-1: config 0 descriptor??
[  484.064937][T10107] EXT4-fs (loop6): unmounting filesystem.
[  484.220583][ T1965] microsoft 0003:045E:07DA.0006: unbalanced delimiter at end of report description
[  484.222366][ T1965] microsoft 0003:045E:07DA.0006: parse failed
[  484.223314][ T1965] microsoft: probe of 0003:045E:07DA.0006 failed with error -22
[  484.229219][T12756] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2659'.
[  484.230887][T12756] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2659'.
[  484.232238][T12756] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2659'.
[  484.556158][  T113] usb 1-1: USB disconnect, device number 13
[  484.625827][T12764] loop2: detected capacity change from 0 to 256
[  484.659717][ T9860] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  484.679284][T12764] loop2: detected capacity change from 0 to 4096
[  484.687393][T12764] EXT4-fs (loop2): Test dummy encryption mode enabled
[  484.690250][T12764] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c019, mo2=0002]
[  484.691872][T12764] System zones: 0-5
[  484.693238][T12764] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  485.182284][T12780] loop1: detected capacity change from 0 to 2048
[  485.568738][ T4330] EXT4-fs (loop2): unmounting filesystem.
[  485.622425][T12786] loop0: detected capacity change from 0 to 8
[  485.873380][T12795] loop4: detected capacity change from 0 to 512
[  485.885152][T12795] FAT-fs (loop4): Unrecognized mount option "³±eaìPÕ(~vâ¤V¥±[ø|$ë¾öÝ×w÷Nïé–§;¸ùÝíí­Ve+kGéJŠRD”D" or missing value
[  487.462265][T12798] loop0: detected capacity change from 0 to 16
[  487.959259][T12798] erofs: (device loop0): mounted with root inode @ nid 36.
[  487.974613][T12797] erofs: (device loop0): z_erofs_readahead: readahead error at page 2 @ nid 89
[  487.976158][T12797] erofs: (device loop0): z_erofs_readahead: readahead error at page 1 @ nid 89
[  488.033298][ T4338] erofs: (device loop0): z_erofs_lz4_decompress_mem: failed to decompress -5 in[4096, 0] out[4096]
[  488.241260][ T9874] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  488.274104][T12816] loop2: detected capacity change from 0 to 256
[  488.633043][T12819] loop4: detected capacity change from 0 to 1024
[  488.667200][ T9873] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  488.688120][T12816] loop2: detected capacity change from 0 to 4096
[  488.693601][T12816] EXT4-fs (loop2): Test dummy encryption mode enabled
[  488.702240][T12816] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c019, mo2=0002]
[  488.708150][T12816] System zones: 0-5
[  488.723870][T12816] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  489.196111][ T4330] EXT4-fs (loop2): unmounting filesystem.
[  489.225672][T12841] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  489.227951][T12841] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  489.778525][T12867] siw: device registration error -23
[  490.241917][T12878] netlink: 'syz.0.2695': attribute type 4 has an invalid length.
[  490.773745][T12884] loop4: detected capacity change from 0 to 256
[  490.870325][ T9860] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  490.910317][T12884] loop4: detected capacity change from 0 to 4096
[  490.911740][ T9860] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  490.926617][T12884] EXT4-fs (loop4): Test dummy encryption mode enabled
[  490.931976][T12884] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c019, mo2=0002]
[  490.936118][T12884] System zones: 0-5
[  490.938647][T12884] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  491.819628][T12900] loop6: detected capacity change from 0 to 128
[  491.825869][ T4334] EXT4-fs (loop4): unmounting filesystem.
[  491.985250][T12909] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  491.986846][T12909] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  492.045734][   T27] audit: type=1326 audit(741.230:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12908 comm="syz.2.2707" exe="/root/syz-executor" sig=9 arch=c00000b7 syscall=98 compat=0 ip=0xffff85b75928 code=0x0
[  492.047938][T12914] loop1: detected capacity change from 0 to 4096
[  492.060561][T12914] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  492.104109][ T4322] EXT4-fs (loop1): unmounting filesystem.
[  492.191657][ T4376] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  492.262701][T12930] loop6: detected capacity change from 0 to 128
[  492.330374][T12931] siw: device registration error -23
[  492.386293][ T4376] usb 1-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[  492.387808][ T4376] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  492.391043][ T4376] usb 1-1: config 0 descriptor??
[  492.867962][T12934] loop2: detected capacity change from 0 to 256
[  492.945176][T12934] loop2: detected capacity change from 0 to 4096
[  492.974501][T12934] EXT4-fs (loop2): Test dummy encryption mode enabled
[  492.983031][T12934] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c019, mo2=0002]
[  492.984569][T12934] System zones: 0-5
[  492.986842][T12934] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  493.955431][ T4376] usb 1-1: Cannot set autoneg
[  493.956455][ T4376] MOSCHIP usb-ethernet driver: probe of 1-1:0.0 failed with error -71
[  493.959681][ T4376] usb 1-1: USB disconnect, device number 14
[  493.968297][ T4330] EXT4-fs (loop2): unmounting filesystem.
[  493.981439][T12947] loop1: detected capacity change from 0 to 512
[  494.024145][T12947] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  494.092557][ T4322] EXT4-fs (loop1): unmounting filesystem.
[  494.114641][T12953] netlink: 56 bytes leftover after parsing attributes in process `syz.1.2721'.
[  494.484543][T12975] loop1: detected capacity change from 0 to 256
[  494.535220][T12978] loop0: detected capacity change from 0 to 512
[  494.542115][T12978] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  494.614074][T12978] EXT4-fs (loop0): 1 truncate cleaned up
[  494.615115][T12978] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  495.001377][T12991] UDF-fs: error (device loop6): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  495.012829][T12991] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  495.033725][T12991] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  495.039055][T12991] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  495.840188][T13003] netlink: 'syz.1.2741': attribute type 4 has an invalid length.
[  495.889053][ T4326] EXT4-fs (loop0): unmounting filesystem.
[  496.130655][T13023] set_capacity_and_notify: 1 callbacks suppressed
[  496.130666][T13023] loop1: detected capacity change from 0 to 1024
[  496.174540][T13023] EXT4-fs: inline encryption not supported
[  496.178092][T13023] EXT4-fs: Ignoring removed bh option
[  496.180825][T13023] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  496.191644][T13025] loop4: detected capacity change from 0 to 256
[  496.237289][T13023] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  496.254224][ T9873] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  496.284488][T13025] loop4: detected capacity change from 0 to 4096
[  496.311704][T13025] EXT4-fs (loop4): Test dummy encryption mode enabled
[  496.317356][T13033] loop0: detected capacity change from 0 to 512
[  496.319430][T13025] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c019, mo2=0002]
[  496.320827][T13025] System zones: 0-5
[  496.322504][T13033] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  496.327687][ T4322] EXT4-fs (loop1): unmounting filesystem.
[  496.342394][T13025] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  496.346821][T13033] EXT4-fs (loop0): 1 truncate cleaned up
[  496.347740][T13033] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  496.831615][T13042] siw: device registration error -23
[  497.134246][ T4334] EXT4-fs (loop4): unmounting filesystem.
[  497.371173][T13051] loop4: detected capacity change from 0 to 1024
[  497.395045][T13051] EXT4-fs: inline encryption not supported
[  497.396045][T13051] EXT4-fs: Ignoring removed nobh option
[  497.396844][T13051] EXT4-fs: Ignoring removed bh option
[  497.425981][T13051] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  497.456782][T13051] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  497.493059][T13051] EXT4-fs (loop4): unmounting filesystem.
[  497.556851][T13059] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2760'.
[  497.627592][ T4326] EXT4-fs (loop0): unmounting filesystem.
[  498.159501][T13075] loop0: detected capacity change from 0 to 2048
[  498.176799][T13075] UDF-fs: error (device loop0): udf_process_sequence: Primary Volume Descriptor not found!
[  498.188427][T13075] UDF-fs: unknown compression code (0)
[  498.245362][T13078] binder: 13077:13078 tried to acquire reference to desc 0, got 1 instead
[  498.247359][T13078] binder: 13077:13078 got transaction with invalid data ptr
[  498.248551][T13078] binder: 13077:13078 transaction call to 13077:0 failed 132/29201/-14, size 0-24 line 3333
[  498.258273][T13078] binder: 13077:13078 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10)
[  498.260294][T13078] binder: 13078 RLIMIT_NICE not set
[  498.312731][T13078] binder: 13078 RLIMIT_NICE not set
[  498.314538][ T4404] binder: undelivered TRANSACTION_ERROR: 29201
[  498.315580][ T4404] binder: release 13077:13079 transaction 133 out, still active
[  498.316942][ T4404] binder: undelivered TRANSACTION_COMPLETE
[  498.331357][ T4404] binder: release 13077:13078 transaction 133 in, still active
[  498.332775][ T4404] binder: send failed reply for transaction 133, target dead
[  498.566774][T13086] loop4: detected capacity change from 0 to 1024
[  498.594407][T13086] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  498.616971][T13086] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  498.636491][T13086] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1113: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters
[  498.708129][ T4334] EXT4-fs (loop4): unmounting filesystem.
[  498.867553][T13100] loop0: detected capacity change from 0 to 512
[  498.892507][T13100] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  498.898373][T13100] EXT4-fs (loop0): 1 truncate cleaned up
[  498.899240][T13100] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  498.920727][T13104] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  498.922281][T13104] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  499.159040][T13115] VFS: Can't find a Minix filesystem V1 | V2 | V3 on device nullb0.
[  500.493341][T13125] loop1: detected capacity change from 0 to 1024
[  500.545310][ T4605] hfsplus: b-tree write err: -5, ino 4
[  500.648631][ T4326] EXT4-fs (loop0): unmounting filesystem.
[  500.986763][T13166] loop0: detected capacity change from 0 to 1024
[  501.001207][T13166] hfsplus: unable to parse mount options
[  501.069092][T13169] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  501.207949][T13170] siw: device registration error -23
[  501.316177][T13178] EXT4-fs error (device loop4): ext4_free_blocks:6221: comm syz.4.2800: Freeing blocks not in datazone - block = 0, count = 16
[  501.992267][ T5624] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm kworker/u4:22: bg 0: block 112: padding at end of block bitmap is not set
[  501.999920][ T5624] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  502.001951][ T5624] EXT4-fs (loop4): This should not happen!! Data will be lost
[  502.001951][ T5624] 
[  502.003320][ T5624] EXT4-fs (loop4): Total free blocks count 0
[  502.004120][ T5624] EXT4-fs (loop4): Free/Dirty block details
[  502.005013][ T5624] EXT4-fs (loop4): free_blocks=16
[  502.025000][ T5624] EXT4-fs (loop4): dirty_blocks=16
[  502.025966][ T5624] EXT4-fs (loop4): Block reservation details
[  502.033488][T13183] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  502.035051][T13183] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  502.036401][ T5624] EXT4-fs (loop4): i_reserved_data_blocks=1
[  502.044498][ T4334] EXT4-fs (loop4): unmounting filesystem.
[  502.090551][T13188] netlink: 76 bytes leftover after parsing attributes in process `syz.0.2804'.
[  502.313678][ T4336] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  502.315797][ T4336] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  502.318599][ T4336] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  502.320137][ T4336] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  502.321520][ T4336] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  502.323528][ T4336] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  502.454579][ T4404] usb 1-1: new full-speed USB device number 15 using dummy_hcd
[  502.594987][T13201] chnl_net:caif_netlink_parms(): no params data found
[  502.645788][T13201] bridge0: port 1(bridge_slave_0) entered blocking state
[  502.648380][ T4404] usb 1-1: config 0 has an invalid interface number: 118 but max is 0
[  502.649671][ T4404] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  502.651318][ T4404] usb 1-1: config 0 has no interface number 0
[  502.652297][ T4404] usb 1-1: config 0 interface 118 altsetting 0 endpoint 0x2 has invalid maxpacket 512, setting to 64
[  502.652683][T13201] bridge0: port 1(bridge_slave_0) entered disabled state
[  502.653913][ T4404] usb 1-1: config 0 interface 118 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  502.658895][T13201] device bridge_slave_0 entered promiscuous mode
[  502.663385][ T4404] usb 1-1: New USB device found, idVendor=0ea0, idProduct=6858, bcdDevice=7a.37
[  502.664791][ T4404] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  502.666016][ T4404] usb 1-1: Product: syz
[  502.666709][ T4404] usb 1-1: Manufacturer: syz
[  502.667429][ T4404] usb 1-1: SerialNumber: syz
[  502.673981][ T4404] usb 1-1: config 0 descriptor??
[  502.676324][T13201] bridge0: port 2(bridge_slave_1) entered blocking state
[  502.676340][T13197] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  502.679308][T13201] bridge0: port 2(bridge_slave_1) entered disabled state
[  502.683452][T13201] device bridge_slave_1 entered promiscuous mode
[  502.684348][ T4404] oti6858 1-1:0.118: required endpoints missing
[  502.740335][T13201] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  502.749589][T13201] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  502.777160][T13201] team0: Port device team_slave_0 added
[  502.790407][T13215] netlink: 220 bytes leftover after parsing attributes in process `syz.2.2811'.
[  502.793876][T13201] team0: Port device team_slave_1 added
[  502.810615][T13201] batman_adv: batadv0: Adding interface: batadv_slave_0
[  502.811847][T13201] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  502.815900][T13201] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  502.832012][T13201] batman_adv: batadv0: Adding interface: batadv_slave_1
[  502.833190][T13201] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  502.839717][T13201] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  502.894658][T13201] device hsr_slave_0 entered promiscuous mode
[  502.901621][T13217] set_capacity_and_notify: 1 callbacks suppressed
[  502.901631][T13217] loop6: detected capacity change from 0 to 1024
[  502.901690][ T4404] usb 1-1: USB disconnect, device number 15
[  502.936126][T13201] device hsr_slave_1 entered promiscuous mode
[  502.946584][T13217] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  502.989720][T13201] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  502.990976][T13201] Cannot create hsr debugfs directory
[  503.163367][T13229] EXT4-fs error (device loop6): ext4_free_blocks:6221: comm syz.6.2812: Freeing blocks not in datazone - block = 0, count = 16
[  504.105576][ T4605] EXT4-fs error (device loop6): ext4_validate_block_bitmap:438: comm kworker/u4:16: bg 0: block 112: padding at end of block bitmap is not set
[  504.115264][ T4605] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  504.117236][ T4605] EXT4-fs (loop6): This should not happen!! Data will be lost
[  504.117236][ T4605] 
[  504.119903][ T4605] EXT4-fs (loop6): Total free blocks count 0
[  504.120878][ T4605] EXT4-fs (loop6): Free/Dirty block details
[  504.121836][ T4605] EXT4-fs (loop6): free_blocks=16
[  504.125159][ T4605] EXT4-fs (loop6): dirty_blocks=16
[  504.125898][ T4605] EXT4-fs (loop6): Block reservation details
[  504.127999][ T4605] EXT4-fs (loop6): i_reserved_data_blocks=1
[  504.130562][T10107] EXT4-fs (loop6): unmounting filesystem.
[  504.139751][T13201] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  504.187695][T13201] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  504.209575][T13243] netlink: 'syz.6.2820': attribute type 12 has an invalid length.
[  504.211037][T13243] netlink: 'syz.6.2820': attribute type 29 has an invalid length.
[  504.212296][T13243] netlink: 148 bytes leftover after parsing attributes in process `syz.6.2820'.
[  504.215038][T13243] netlink: 'syz.6.2820': attribute type 2 has an invalid length.
[  504.217660][T13243] netlink: 23 bytes leftover after parsing attributes in process `syz.6.2820'.
[  504.221037][T13201] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  504.255442][T13201] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  505.320339][T13256] siw: device registration error -23
[  505.725946][ T4336] Bluetooth: hci5: command 0x0409 tx timeout
[  505.808319][T13201] 8021q: adding VLAN 0 to HW filter on device bond0
[  505.830332][ T4507] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  505.831878][ T4507] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  505.840890][T13201] 8021q: adding VLAN 0 to HW filter on device team0
[  505.849927][ T5624] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  505.851973][ T5624] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  505.853506][ T5624] bridge0: port 1(bridge_slave_0) entered blocking state
[  505.854716][ T5624] bridge0: port 1(bridge_slave_0) entered forwarding state
[  505.859614][ T5624] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  505.868370][ T4702] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  505.870146][ T4702] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  505.871591][ T4702] bridge0: port 2(bridge_slave_1) entered blocking state
[  505.872777][ T4702] bridge0: port 2(bridge_slave_1) entered forwarding state
[  505.888836][ T5624] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  505.895158][ T5624] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  505.941072][T13201] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  505.942807][T13201] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  505.952144][   T55] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  505.954521][   T55] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  505.956185][   T55] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  505.975939][   T55] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  505.978639][   T55] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  505.978933][   T55] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  505.979273][   T55] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  505.979496][   T55] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  505.980007][   T55] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  505.980303][   T55] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  506.162579][T13276] loop2: detected capacity change from 0 to 1024
[  506.204814][T13276] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  506.888730][T13201] 8021q: adding VLAN 0 to HW filter on device batadv0
[  506.890115][   T55] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  506.896681][   T55] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  506.929194][T13292] loop0: detected capacity change from 0 to 16
[  506.945353][T13292] erofs: (device loop0): mounted with root inode @ nid 36.
[  506.951439][T13292] syz.0.2832: attempt to access beyond end of device
[  506.951439][T13292] loop0: rw=524288, sector=88, nr_sectors = 48 limit=16
[  506.954784][T13292] syz.0.2832: attempt to access beyond end of device
[  506.954784][T13292] loop0: rw=524288, sector=8, nr_sectors = 80 limit=16
[  506.958605][T13292] ==================================================================
[  506.959806][T13292] BUG: KASAN: use-after-free in z_erofs_transform_plain+0x3a4/0x490
[  506.960967][T13292] Read of size 4096 at addr ffff0000d5007000 by task syz.0.2832/13292
[  506.962160][T13292] 
[  506.962488][T13292] CPU: 1 PID: 13292 Comm: syz.0.2832 Not tainted syzkaller #0
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  506.963653][T13292] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025
[  506.965123][T13292] Call trace:
[  506.965601][T13292]  dump_backtrace+0x1c0/0x1ec
[  506.966264][T13292]  show_stack+0x2c/0x3c
[  506.966886][T13292]  __dump_stack+0x30/0x40
[  506.967501][T13292]  dump_stack_lvl+0xf4/0x15c
[  506.968166][T13292]  print_address_description+0x88/0x218
[  506.969065][T13292]  print_report+0x50/0x68
[  506.969657][T13292]  kasan_report+0xa8/0xfc
[  506.970290][T13292]  kasan_check_range+0x258/0x290
[  506.971028][T13292]  memcpy+0x48/0x90
[  506.971631][T13292]  z_erofs_transform_plain+0x3a4/0x490
[  506.972438][T13292]  z_erofs_decompress+0x9c/0xd4
[  506.973137][T13292]  z_erofs_decompress_queue+0x100c/0x1b40
[  506.973962][T13292]  z_erofs_runqueue+0x1510/0x1694
[  506.974690][T13292]  z_erofs_read_folio+0x2d8/0x5c8
[  506.975433][T13292]  filemap_read_folio+0x134/0x384
[  506.976159][T13292]  filemap_fault+0x98c/0xe98
[  506.976829][T13292]  __do_fault+0x11c/0x3d8
[  506.977464][T13292]  handle_mm_fault+0x1cac/0x2fb0
[  506.978109][T13292]  do_page_fault+0x310/0x98c
[  506.978782][T13292]  do_translation_fault+0x94/0xc8
[  506.979521][T13292]  do_mem_abort+0x70/0x194
[  506.980145][T13292]  el0_da+0x70/0x144
[  506.980720][T13292]  el0t_64_sync_handler+0x90/0xf0
[  506.981457][T13292]  el0t_64_sync+0x18c/0x190
[  506.982091][T13292] 
[  506.982486][T13292] Allocated by task 10621:
[  506.983197][T13292]  kasan_set_track+0x4c/0x80
[  506.983825][T13292]  kasan_save_alloc_info+0x24/0x30
[  506.984558][T13292]  __kasan_kmalloc+0xa0/0xb8
[  506.985262][T13292]  kmalloc_trace+0x7c/0x94
[  506.985962][T13292]  vkms_plane_duplicate_state+0x94/0x10c
[  506.986811][T13292]  drm_atomic_get_plane_state+0x1d8/0x418
[  506.987678][T13292]  drm_client_modeset_commit_atomic+0x188/0x6d8
[  506.988592][T13292]  drm_client_modeset_commit_locked+0xd0/0x4a0
[  506.989453][T13292]  drm_fb_helper_pan_display+0x36c/0xac4
[  506.990275][T13292]  fb_pan_display+0x2dc/0x554
[  506.990977][T13292]  bit_update_start+0x4c/0x1e4
[  506.991700][T13292]  fbcon_switch+0xfec/0x1984
[  506.992343][T13292]  csi_J+0x554/0xc24
[  506.992894][T13292]  do_con_write+0x3498/0x5800
[  506.993519][T13292]  con_write+0x34/0x58
[  506.994074][T13292]  n_tty_write+0xab0/0xeb8
[  506.994727][T13292]  file_tty_write+0x3c8/0x6f8
[  506.995375][T13292]  tty_write+0x44/0x54
[  506.995933][T13292]  vfs_write+0x3ec/0x7f0
[  506.996550][T13292]  ksys_write+0x12c/0x224
[  506.997187][T13292]  __arm64_sys_write+0x7c/0x90
[  506.997862][T13292]  invoke_syscall+0x98/0x2b4
[  506.998594][T13292]  el0_svc_common+0x138/0x258
[  506.999288][T13292]  do_el0_svc+0x58/0x130
[  506.999970][T13292]  el0_svc+0x58/0x128
[  507.000543][T13292]  el0t_64_sync_handler+0x84/0xf0
[  507.001245][T13292]  el0t_64_sync+0x18c/0x190
[  507.001916][T13292] 
[  507.002265][T13292] Freed by task 13063:
[  507.002878][T13292]  kasan_set_track+0x4c/0x80
[  507.003590][T13292]  kasan_save_free_info+0x38/0x5c
[  507.004308][T13292]  ____kasan_slab_free+0x148/0x1b0
[  507.005030][T13292]  __kasan_slab_free+0x18/0x28
[  507.005628][T13292]  slab_free_freelist_hook+0x16c/0x1e8
[  507.006378][T13292]  __kmem_cache_free+0xbc/0x218
[  507.007118][T13292]  kfree+0xd0/0x1a8
[  507.007702][T13292]  vkms_plane_destroy_state+0x120/0x178
[  507.008517][T13292]  drm_atomic_state_default_clear+0x5e0/0xa20
[  507.009373][T13292]  __drm_atomic_state_free+0xd8/0x1e8
[  507.010166][T13292]  drm_client_modeset_commit_atomic+0x5fc/0x6d8
[  507.011050][T13292]  drm_client_modeset_commit_locked+0xd0/0x4a0
[  507.011954][T13292]  drm_fb_helper_pan_display+0x36c/0xac4
[  507.012744][T13292]  fb_pan_display+0x2dc/0x554
[  507.013442][T13292]  bit_update_start+0x4c/0x1e4
[  507.014114][T13292]  fbcon_switch+0xfec/0x1984
[  507.014767][T13292]  csi_J+0x554/0xc24
[  507.015295][T13292]  do_con_write+0x3498/0x5800
[  507.015930][T13292]  con_write+0x34/0x58
[  507.016487][T13292]  n_tty_write+0xab0/0xeb8
[  507.017139][T13292]  file_tty_write+0x3c8/0x6f8
[  507.017833][T13292]  tty_write+0x44/0x54
[  507.018437][T13292]  vfs_write+0x3ec/0x7f0
[  507.019111][T13292]  ksys_write+0x12c/0x224
[  507.019721][T13292]  __arm64_sys_write+0x7c/0x90
[  507.020392][T13292]  invoke_syscall+0x98/0x2b4
[  507.021100][T13292]  el0_svc_common+0x138/0x258
[  507.021774][T13292]  do_el0_svc+0x58/0x130
[  507.022393][T13292]  el0_svc+0x58/0x128
[  507.022973][T13292]  el0t_64_sync_handler+0x84/0xf0
[  507.023690][T13292]  el0t_64_sync+0x18c/0x190
[  507.024392][T13292] 
[  507.024754][T13292] Last potentially related work creation:
[  507.025640][T13292]  kasan_save_stack+0x40/0x70
[  507.026321][T13292]  __kasan_record_aux_stack+0xc0/0xdc
[  507.027182][T13292]  kasan_record_aux_stack_noalloc+0x14/0x20
[  507.028065][T13292]  kvfree_call_rcu+0xb4/0x6e8
[  507.028776][T13292]  hash_ip4_flush+0x4ac/0x628
[  507.029449][T13292]  ip_set_flush+0x31c/0x5bc
[  507.030120][T13292]  nfnetlink_rcv_msg+0xad0/0xfac
[  507.030862][T13292]  netlink_rcv_skb+0x218/0x3e8
[  507.031601][T13292]  nfnetlink_rcv+0x214/0x1bfc
[  507.032228][T13292]  netlink_unicast+0x60c/0x814
[  507.032879][T13292]  netlink_sendmsg+0x6f4/0x9c0
[  507.033519][T13292]  ____sys_sendmsg+0x5c8/0x938
[  507.034206][T13292]  __sys_sendmsg+0x288/0x374
[  507.034868][T13292]  __arm64_sys_sendmsg+0x80/0x94
[  507.035605][T13292]  invoke_syscall+0x98/0x2b4
[  507.036274][T13292]  el0_svc_common+0x138/0x258
[  507.036945][T13292]  do_el0_svc+0x58/0x130
[  507.037573][T13292]  el0_svc+0x58/0x128
[  507.038152][T13292]  el0t_64_sync_handler+0x84/0xf0
[  507.038897][T13292]  el0t_64_sync+0x18c/0x190
[  507.039546][T13292] 
[  507.039885][T13292] The buggy address belongs to the object at ffff0000d5007000
[  507.039885][T13292]  which belongs to the cache kmalloc-128 of size 128
[  507.041887][T13292] The buggy address is located 0 bytes inside of
[  507.041887][T13292]  128-byte region [ffff0000d5007000, ffff0000d5007080)
[  507.043708][T13292] 
[  507.044044][T13292] The buggy address belongs to the physical page:
[  507.044885][T13292] page:00000000190b736e refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x115007
[  507.046347][T13292] flags: 0x5ffc00000000200(slab|node=0|zone=2|lastcpupid=0x7ff)
[  507.047396][T13292] raw: 05ffc00000000200 fffffc0003555440 dead000000000004 ffff0000c0002300
[  507.048622][T13292] raw: 0000000000000000 0000000000100010 00000001ffffffff 0000000000000000
[  507.049852][T13292] page dumped because: kasan: bad access detected
[  507.050708][T13292] 
[  507.051046][T13292] Memory state around the buggy address:
[  507.051845][T13292]  ffff0000d5006f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  507.052997][T13292]  ffff0000d5006f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  507.054216][T13292] >ffff0000d5007000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  507.055394][T13292]                    ^
[  507.056021][T13292]  ffff0000d5007080: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  507.057145][T13292]  ffff0000d5007100: 00 00 00 00 fc fc fc fc fc fc fc fc fc fc fc fc
[  507.058305][T13292] ==================================================================
[  507.076463][T13292] Disabling lock debugging due to kernel taint
[  507.107128][T10123] EXT4-fs (loop2): unmounting filesystem.
[  509.081287][ T4605] device hsr_slave_0 left promiscuous mode
[  509.116665][ T4605] device hsr_slave_1 left promiscuous mode
[  510.088315][ T4605] bond1 (unregistering): Released all slaves
[  510.547952][ T2062] ieee802154 phy0 wpan0: encryption failed: -22
[  510.549060][ T2062] ieee802154 phy1 wpan1: encryption failed: -22
[  514.857139][ T4605] bond0 (unregistering): Released all slaves