last executing test programs:

8.635751915s ago: executing program 2 (id=650):
syz_clone(0x54912300, 0x0, 0x0, 0x0, 0x0, 0x0)

8.635543955s ago: executing program 2 (id=652):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000100)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c)
sendmmsg(r0, &(0x7f00000018c0)=[{{&(0x7f0000000180)=@hci, 0x80, 0x0, 0x0, &(0x7f0000000200)=ANY=[], 0xf}}], 0x1, 0x0)

8.578196649s ago: executing program 2 (id=653):
r0 = syz_open_procfs(0x0, &(0x7f0000000140)='net/ip6_flowlabel\x00')
pread64(r0, &(0x7f0000000180)=""/4100, 0x1004, 0x500)

8.525065283s ago: executing program 2 (id=654):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x2200010, &(0x7f0000000000)={[{@init_itable_val}, {@debug}]}, 0x1, 0x576, &(0x7f00000007c0)="$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")
open(&(0x7f0000000080)='./bus\x00', 0xa942, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000040)='./file1\x00', 0x4810, &(0x7f0000000540)=ANY=[@ANYRES8=0x0, @ANYRESHEX, @ANYRES32], 0x11, 0x6a0, &(0x7f0000004200)="$eJzs3c1vHGcdB/DvrNcvm0qO26ZpQJUwjVRQIxI7VgrhkoAQClKFqnDgbDVOY8VJg+OitAfiAhJXDvwB5RAucAIhJCSkSOUMt4qbxakSEpee0h4YNLOz9trd9UvebMPnE80+zzPPzDO/+c3LvkTWBPi/delU2vfTyaVTr9+p2mv35pbW7s3d6NWTjCdpJe1ukeJmUnyYXEx3yheqmc1wxbDt/Grx/OWPPln7uNtqZ2O86qUzPMD2bvZitZkynWSkKR/BpvHefLjxxjeqxXpmqoSd7CUO9ttoknKTHx3f6BmkHOlrDL3egcOj6L5v9ule/1PJkSQTvTe01W5n6+lHuKM93YtWn1wcAAAAcGAcfXA3uZPJ/Y4DAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADpPm+f9FM7V69ekUvef/j/U9Y39sn8MdbvvIJnqV+62nEQwAAAAAAAAAPFlfepDfXi7LyV67LOr/83+5bhyrX5/JO7mdhSzndO5kPitZyXJmk0z1DTR2Z35lZXm2t+ZnZVkOWfPswDXP7jLgzuPYawAAAAAAAAD4n3GhKX+aS5nc51gAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGCTIhnpFvV0rFefSqudZCLJWLXcavL3Xv0wu7/fAQAAAMBTcPRBHuROJnvtsqi/8x+vv/dP5J3czEoWs5KlLORK/VtA91t/a+3e3NLavbkb1fT5cb/17436HyZ3DKMeMd3fHgZv+US9RCdXs1jPOZ0383aWciWtes3KiV48g+N6v4qpuNBVlrtL0JWmrPb8l015MEzVGRldz8hME1uVjWe3z0T/0XmILc2mtf7Lz7E95PzCtlsp/tM7Jkd6c5Jnvrdzzkf3tDOPZGsmzvadfce3z0TylT/+7ofXlm5ev1asnjo4p9EejP9z46rZmom5vky8uOtMXL19ODOxVSsvrNcv5bv5QU5lOm9kOYv5ceazkoVM5zt1bb45n6vXqe0zdXFT642dohhrjsvIlpi+fLRbbhfTy/W6k1nM9/N2rmQhr9X/zmY2X8+5nMv5viP8wi6u+taAq/5Pw4M/+dWm0knyi6Y8GKq8PtuX1/577lTd1z+nlXK8u95zj+3euK79xaZSHYmfNeXBsJ6Jiay/S/Sie76XgdGBmfh1fVu5vXTz+vK1+Vtbxi1WB2/vlWze/T3dSEb2svBeVefLc9XBqlubz46q7/mBfbN137H1vtbWvt901vt2ulLHms9wnx/pbN334sC+ubrvRF/fxuetz8qy7H7eAuDAO/LqkbHOvzp/63zQ+XnnWuf1iW+Pf2P8pbGM/nX0m+2ZkVdaLxW/zwf5SXb+hg4AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOzo9rvvXZ9fWlpY3lIpy/LukK4nUkk72TTnL3/uWyZJ/TCg3Q9YLX2xldRz2mkqewvs7sPtzvsPm4R/NMfkqST8sVQmhp4/WyuflmV5MGLeTaVsHJR4nkDl1bIst11mX29LwFNwZuXGrTO3333va4s35t9aeGvh5vlz587PnD/32tyZq4tLCzPd1/2OEngS+j6BAwAAAAAAAAAAAIfE7v44p3i0v+0BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAeASXTqV9P0VmZ07PVO21e3NL1dSrbyz5aZJWkmI6KT5MLqY7ZapvuGLYdlaTyx99svZxt9Vupnr51nbr7c5qM2U6yUhTDjAxaGZ5d9h4RT3OreHjbTFsL4r1viphJ3uJg/323wAAAP//H4wcFQ==")
chdir(&(0x7f0000000000)='./file0\x00')

8.259711295s ago: executing program 2 (id=655):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x2c)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x6, 0x1b, &(0x7f0000001800)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000000000950000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000000000008500000017000000180100002020690000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000006000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r3=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000700)={r1, r3, 0x25, 0x0, @val=@perf_event}, 0x40)
syz_emit_ethernet(0xfdef, &(0x7f0000000280)={@local, @broadcast, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @empty, @empty}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0)

7.790048023s ago: executing program 3 (id=656):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001200)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0xe80, 0x6000002c, &(0x7f0000000100)="b9ff0f316844fe8cb89e14f008004ce0050000000000006c77fbac141416e000030a89079f03b180004415050300845013f2325f009409050b038da1880b25181aa59d943be3f4aed50ea5a6b8686731cb89ef77123c899b699eeaa8eaa0073461119663906400f30c0600000000000059b6d3296e8ca31bce1d8392078b72f24996ae17dffc2e43c8174b54b620636894aaacf28ff62616363c70a440aec4014c0000c0adc043084617d7ecf41effff38cae870b9a1df48b238190da450296b0ac01496ace23eefc9d4246dd14afbf79a2283a0bb7e1d235f3df126c3acc240d7da058f6efa6d1f5f7ff400"/254, 0x0, 0xfe, 0x60000000, 0x0, 0xfffffffe}, 0x2c)

7.647346695s ago: executing program 3 (id=657):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd600a847500140600fe8000000000000000000000000000bb", @ANYRES32=0x41424344], 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000327000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f326635004000000f300f20e06635800000000f22e0f30fa6c8", 0x50}], 0x1, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x0, &(0x7f0000000080)=0xff, 0x4)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
unlinkat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

7.067557513s ago: executing program 2 (id=660):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="440000001000010400100000000000c10000", @ANYRES32, @ANYBLOB="0100000000000000240012000c"], 0x44}}, 0x0)

6.590691551s ago: executing program 3 (id=663):
unshare(0x400)
r0 = syz_open_dev$sndpcmp(&(0x7f0000001540), 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_HW_PARAMS_OLD(r0, 0x80084121, 0x0)

6.473264411s ago: executing program 3 (id=664):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x2200010, &(0x7f0000000000)={[{@init_itable_val}, {@debug}]}, 0x1, 0x576, &(0x7f00000007c0)="$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")
open(&(0x7f0000000080)='./bus\x00', 0xa942, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000040)='./file1\x00', 0x4810, &(0x7f0000000540)=ANY=[@ANYRES8=0x0, @ANYRESHEX, @ANYRES32], 0x11, 0x6a0, &(0x7f0000004200)="$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")
chdir(&(0x7f0000000000)='./file0\x00')

6.419683135s ago: executing program 4 (id=665):
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x101c088, &(0x7f0000000c00)=ANY=[@ANYBLOB="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"], 0x6, 0x2c3, &(0x7f0000000900)="$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")

6.267378858s ago: executing program 4 (id=666):
syz_open_dev$vcsu(&(0x7f00000001c0), 0x0, 0x0)
socket$packet(0x11, 0x3, 0x300)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r1}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r2, 0xfffff000, 0xe40, 0x0, &(0x7f0000000300)="88291242a03c3f98722780b605a7", 0x0, 0x990d, 0x7000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
setsockopt$sock_int(r0, 0x1, 0x3c, &(0x7f00000000c0), 0x4)
sendto$inet(r0, 0x0, 0x0, 0x0, 0x0, 0x0)
sendto$inet(r0, &(0x7f0000000100)='J', 0xfdbe, 0x4004084, 0x0, 0x11000a00)
r3 = socket$packet(0x11, 0x0, 0x300)
syz_mount_image$ext4(&(0x7f0000000540)='ext4\x00', &(0x7f0000000040)='./file1\x00', 0x2, &(0x7f0000000300)={[{@journal_async_commit}, {@data_err_ignore}, {@norecovery}, {@resuid}, {@prjquota}, {@nojournal_checksum}, {@usrjquota}, {@resgid={'resgid', 0x3d, 0xee01}}, {@nodiscard}]}, 0x0, 0x468, &(0x7f0000000780)="$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")
pipe(&(0x7f0000000140)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
close(0xffffffffffffffff)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB, @ANYRES32], 0x94}}, 0x0)
write$binfmt_misc(r5, 0x0, 0xfffffecc)
splice(r4, 0x0, 0xffffffffffffffff, 0x0, 0x8f8, 0x0)
setsockopt$packet_int(r3, 0x107, 0xf, &(0x7f0000000100), 0x4)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000300)={'bridge0\x00', <r7=>0x0})
sendto$packet(r3, 0x0, 0x0, 0x0, &(0x7f0000000140)={0x11, 0x0, r7}, 0x14)

6.047510856s ago: executing program 3 (id=667):
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x20040, 0x0)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
r1 = syz_usb_connect$uac1(0x0, 0xa4, &(0x7f00000000c0)=ANY=[@ANYBLOB="2a01000020000040b708000000000000030109029200030172e5000904000000010100000a24010000000201020c0d24070000030769dc000049c40c240000e9fffff5ffffffff092403f3ff000005024524", @ANYRES8=r0, @ANYBLOB="05"], 0x0)
syz_usb_control_io$uac1(r1, &(0x7f0000000180)={0x14, 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0003040000002203"]}, 0x0)
syz_usb_control_io$uac1(r1, &(0x7f0000000680)={0x14, 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB]}, 0x0)

5.887813489s ago: executing program 1 (id=668):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa20000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
creat(&(0x7f0000000100)='./file0\x00', 0x0)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r3, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r3, &(0x7f0000006380)={0x2020, 0x0, <r4=>0x0}, 0x2020)
write$FUSE_INIT(r3, &(0x7f0000000100)={0x50, 0x0, r4, {0x7, 0x1f, 0x0, 0x61f285}}, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x0, 0x4, 0x8, 0x8}, 0x48)
syz_fuse_handle_req(r3, &(0x7f00000041c0)="412e450a2a7b9586d1e6e9de257afc4fd60c8de430c0d6348b2cf1db8d070a539de9c1e91a178f9240dbcfe303566018f6c20c55d643a2ed46aaacf49ca491ee2f06184bdb548778a2c56e56f6b40b994419428bbbb9dfa5f9593511ca8ae1c088fb0ee5da72f505000000000000002c04754204f194ae6ceff4570d44496eeffe619998eafc7167d22e1c6aa73e89ad19224e35130a37cf68d5c41ccafe59b4b753a26e06c4306d31d78de6cede97c06e3ca2cc4af66b7548268efa91621ffca2655d2c8f1a9bb019b88fa729cb3d32f72c098c44898d42c42f39feb4faead93980726c236129acdf31c01f1cabb5ca3ec4e45eb5e6e59912792b4976e3f2b560c861d49b539d8e1870040a8cf190a8a767ec067a8048aac53336b44669d3d425843ae80681a7c02a5d5a3d90f355fd4a6ac277e75230d558f0df20cb323cc65e9b5a258cdd669c8a9534e4aff09a8fe89b124748c9e756c28789c2152a5142bc0bb205e339d43bb980b3f04a3c1a424a2a093966b20600a5410e0528fb35937c998eea19f01eaf2f39e16d85563a6737ddab3213ca1832f0afdf891e34a582f6a4ac81fda70ebc3fedac2fb3a492fdb40b91021e5d371d990064cd1f7c2c1a6472dec7505f9a4940057a3e57fd53aa3cd2eb914e073a19b6e925f8553e6875c093c7d19de25861fd9640f0eca4cda0467f12126daa2e0c6df7d4e4babe5a6e59e8391be7700790315b6b8a8aa74cd6d3f054aceaeda79430676b67fe25c9029e0894b413377fc4d8300d9f9338fadd07e4c80cac08113df8971a868458c47c06fff0c1c4bfd48ea583e9e76ef103d42c233b6de10b30612cdbeb6b60a6a4dbbe2da63cc2dd4fb93cac65af3c1279274f4af0e2c5b96e6068aa5b41f7548fb72b0c142351f64446db7425115b89132b5589ee642ebbde655adb2d7d1117456a6e4f2886879b42baf85e05d53e2aceea9c3830673bdc4d081675fe76b994651af9c3f16b7513834fce4654f84558a8308fa677d05bffcc893d9813bf87c5ec520cd66ad58dc06f0c47d253cd36dfec82980fc8dbdcd4b1c037c2b30bef455984f3e8ed19d69e185fe4fbdda2c2517ec9abfbb4841252e650b6bf56fdeca9a4ee3c311de3c6859ec14cc00e95323c57c02fa894d83ea17944f3112fc19a7e11335d7951ec6dd5b4f06fb9b637313a230341ea5da6a7a959e707d0cd5fca60a6649c8df8d6c17e9a49d230e5775df14e4b43aa3420bd0b8814ec7360ab1910e69fab8932f7646d7998bdc2e8ec354c52da21ed83fb7582cb9d37bb95f144974f72c7b0ae7b42945768fa8ec0dd6daba72d05809670506ef1054282201b00906c8af64e3e13a10f180688c96549b2d3d6b04403fd571e7b132891dd4b7cf37aec25ca1e9190c17aaefbc31e059915c12c232fb7097e9fa6f35fbb265c7102db62e2264590c583ea90f1aee3f166af81430d9084eb0c760ebbb16049c9fd1fee6ce33c8ac205e3ac9c275531feadfa4054e0c027c26beb009f54aa72b864d39bb11753f77931bb960276db33021c65671e57b3708bbf979be222e8439d71f58ca87cec7a054517af398a42735b580717377a54f139e2c46813cbb03d98e49c26f4ed54d75e48573cd06145f913f4e313eeee837496dfff75aa722fd8486c45f9c959da12ae48ba4a10712120a203e2476c7b96031d8f8773f68344e6fa21831287655aabbd594e9f272eb1a7315d2d79b8bcd5e63004cd106f80b1e40a5d9e428a01bc58264f4d63c2ee9db6efa70607a642aeb883bf4b9fe009d7f09c16b05a2c9b73573e9019e161ebbdc1fc9b9cd0c5fe1b57adcba2d0f3a767ad59aafa159b3dd181f0601ff95e8af8b5410e56c81ffb8ab35b1e04af35dabf69f08572e69260b72bfd502c5a0de627fd3fee44bf1d4a261bd356056c5739398e3ff161beec1240a089625daffbc61dc5e660c274565477a0ff1797fefff04a98704802ab0674ab72d400686229608cbfd2ca20f4e62495e8b09de9d180c47375bbad72f4474b67d56104b4b466192be60f7aa668fd0a4338b856f114311842ee806d6488ab09098ed9de0e21bcc8b42a5d5713d15eca108fcc7a65d6b414a112524a6e1418644508dd957147a92d4399d13faaf01cacef40549cd11900f9aa32a8333f55796ef25d33c554a308da9797cd0ac25888311b0ac88eff0be7a36ddedcfc2b095abb4d5a6a4edbbad67b70cdf60c7ed0c5e040ced90edb3322ef684332358942ede9191b431c99b3abf8f9c50206479f0ac118c0a99df61fb9c90d846f41caa6a2448fb7e15640965e051c2af4ee72a5cc7c962bacff7019615c10e6c3054e2e5792df3aa6e2c33425552148466a88568cc79b6edebf0107b7d3d24423a665d20c3a1c0f1a6b34eb475bf875912115914cfabcf394f8a096d64e5dc95705074fe5e985497dcf052b9f748b9d4688859c0200fa43719e4722ed6c064c0efa7e07beb2a26fd724b63537fa0eb506365d5c029cd8dce7dd0a1cb9d9058c061739734af6be9e880fe7e28a211a4c368a7babd1107110ecbb384b274cc092b9511c4abde2ddd863162e2739984a9f3c0a76e3c530a27d5e385f4a3b87607b2a944e09d28239661d27719e22c0a657ea383c30859ca29cdb8fbc79bc83e995dcb361743a7e195650c37e570b768a0a1f0b118fa5be9b3c838326343ec5b376d5ee040ee29dfd868cccf9cfa4591151f519cd6e2ae1453a58aa92f90ee5be11ceb8511ab743f399be0a190eeddfd112336866831c3255ef6520d88b2581ea3767f3df01a38d9b4656f2a89c5df41443291a795da45c8a846015cd041bea0dfbe648348b10ae73ce43d9017182792cd9172eee642c549a530cc1f537f9aa70ca63792ba4a86a713ae09b917136e5bf1506ad7f367d8d2f77f47a2318facd109bba9b1327b5db9e4aeffbdcf414db761eeacc227a15cd72aa52c8ede33bdbab9de9aa1e8f470a388013d07f08777e2131bbd4856ab5c1c38d03ef407197ccf24e8b2a8db69e78f9d6623033c453541bb79f9e0be9a55588e2e54fce65fb785467064a146c4bf218068b5e3efdafaf93a98253becaef226cd79468ff1bbe0c9d43877f5cbb5844fd8957f15d3ef208aac11816585cdccf039c36b429d3d7fb634054fd0f09c8abea3746a6b7379142abde26d998ac7e39b94746c60c09f86ddbd7497849d1ef839730672449f35a3c3253666e9fc053ac1c518e44e0b84555be507f7c00fa9e4864b4bf40ac3d93f12001eb780a779e655d0633803268c094ae161a0efd652003d6ac47f9a6c28d866b56233f371627b01e0fe9361dca611a28841968d4e12cb73d49ce08fe25de4a90b2d34607202b20e71f5e1eed38e17d0a2748f548cf61735f4c9cead1cb93b11929d906d65fc60f88e6919b7b5a1014e6d408bce9c8cc832eecf9147708fe451891717d2ed99dee70773feaa97985102abd3dd05c904c28898afe060621db6564887bc4afe158fbe1d819136a1ac1dc9d8674798a93daf5255460b50c34496205834c668db4c764e76ebb6cdaf5fc44b881cc2ae87b4a7cc045143f96b1620abfd0f116e673b335beefdafa1e58d9194e010cb78956044646da5ba853ce981667f2b8e5001c2df437c9d597ccd2be7d2887f5cb7aad0539abb3f9db1c8f5cd4d7d831946ba1c1aa8737c114fec1ac9a82519f57cb48c49b7f62e9eaa89f448df33fb307cd0036c70b490ac340f7d04e14f32bfeebb08a9d5bc7bbef8f231ea09311d4c82cc55c90eb53c6c003cc98a34dd3c4ec2d8b3a655a78e16e908f368733d0a02b36fe963e2d80b5e6f7b2e3aae3013c900c76e4d56e8348bef221f8a642e692c23b12520fb68c793e789eeeceb4efb2097a4d5952d144094cd7be6edc933d257f6230e962d70ba42e1b07ad9eca0ccd60d3d9a6e06b73ccf96a8aa490ed3bd58bf4d79db65355ae145b54be004e464f4dd23fb8b1bf15e13838116083da67186513652608e37c8f847b2bcafb57bcefc7efc8c8182c7d708cce5d14695b4e618e77f8e7be81f27a05e415fd37ac21507a665b2558daee5c0b0859fedfede8c03f181ef5e0ec0da6caa3edf402dd73bcb4026c489a7cca8ab700d3e9f050006c36768a16e8a48e48ed5750b8cdb7ad1fd12d4cc8333d324d6c83905303fa7013fc02553b587544affe38f1a95e0c4c39740d63b6d387fc89b30bd5fd745cb64844b13897ccf5cca135f7d39e03ce8adcda919d86b25b52764b0a0c4f07f88df68868415de13863df84a7e8d355b09cf90e482eb4174fd01f1b371a4dc52f3c89fc3a70c71657aa5d7573ef9acf4d2b0b321c41ff2640515bb43637ba2288ca0bff2e2a3a998ad8294c52f9edfe0a4ee0a3f8ed5b4b5c43319bb9c58dd07ea3237d7bb62cb086e7ea4a81cba2cdeb28794a09c275a704963110b64720bd089e3737ee1a91e348b5e97b63e1724de1fa9f49961d653bbb47b6fa993b035cf59659bcd0306180645162568abf51127845cbe6e37cc3c19b9d69657db4258fa5e8428a73eff6506bff474c2e302ad5559ac8de44c6f0baba5e2e579e7d7f9d9ebf540674432ac11d92bfc9abdc24126888b533f43bd6f293b0bc315915743114a35308a0ee2e710522137918a2b09ddbbc7a2313a2a6b85a1ad26f14dd70072651c8300ddf6de29704b716ce1bc431c66ccc96731f46359a9f6850976c96dcb5e0ee47446f50b6b3ba90d45224066e123ad3854d877c0cdd9325000ac0d6813c30cd43d3e150335601724ca3666458dc4c04f6562296982353e155d5255c9008c0b46d21a678c8fcb3aa8d6574476e0458eb0a76a6cb50f929ed218cc4654cb4f95fb3afbc2548b74acc312563375a19e55d488599488dfed4dd31b39f29ad61dad343dfca3b45b316a34e7a7bebd2b0f562a9e69848d13fc80a4fa52d0f17bd15d9e1fd39a7dcc86128d14493805d105a745673bddea68ca74ac09d95cc7412d5be2cbd0a247a81dc9e148111e22cdf3375805469226ca3538f960a6ba6aa0eeeb87c784ffb1bfc09180a61be3c7c535fc6d593c3b3f4de21b8c3eccc9021e80fb07dce0aeb3b023bd55f24356f646791ba80e5ca21ac092a069ae0a22cfefc08c23cc7aa69b570bd17cce9de15871d363f167288f99f04761caa67f12c949466493f661d39ee4280c955446ff5a9bb14f2d1ae21cdb91a5868e0c52097cf380f571935b140562922763f1b79c3709b949c57a00b08828ce9e685f6b234b5fe3c62d9feb249ce75e81f5efd556c14d5da24dc0554723fdbe52659969a39f470e82c50c4777c908628436e31177af1125d5f70ff627462247e5bc20c47ef75f369174586d43d42f7eefdd47fefa745badebca2a881ccc018ea411cc8a7a0881422bee8704bb98e6bea9fbec63441fb45d7ccfd436909b57a2b60b788e15bda3ca7663b19bd84d0879deb639f10def9a99d42a4b9a4fd7fecbf6d2e7598678307ba9a5b6f143c27cf1ca41e3c904007bb762cd5df6e63c4cf422c2ba959e53bd8e5664cf5df6a91a4bc8cebc52b22f30060fcbc5ead53d38eabd160c1da4cab8aa95c3640ffd78074aa2cbb05cb8ea90a0c95a4a1b2be1ee94f238000f1faffa069d87039f13f5f84ff368aec5a0b10020232b9fc954a6c22573ef48459e574d48a4845837e1d6ef386738ccedd093d4d5bf3a3f790c875ba7449d03397642feb71100f2c25ab2cadf0b0802544a2095a51b19cdece623b17d420b173a99c081f8e229b6de3c680d6bb39bb98b479517d77cca581b81cf856753a44ebd64cff111fb8ca37ea45d217a3fca44a083e6c35b0fed9f8f7631178d15e88f86c85f1ce68c900afdd1f7e5b8bd4ef3f58c447b77d3befc49180df7a5eb2ae8ae33b4ef573f3a425da8a60cde84d8eeae6d6399b9fbbfa0fa8d448b25c7f79b7554d0b02b0decbc74ae8560f630af596313fb33d442a410061ace0aa7a440d5e31ca8bb2cc495c4f0b672edb011b0c5f16781836df7f4af8329143d5a1a99d7b18ef9f774c4199d635848cedebac82637a03a189c65bf667503737c75b6639ac65ad424ca475285437e6f19830b36549f607ffc387c8b11a34a838159376a6335afaa045bd2bb04e279dd72436331d07dfbd72e2436b27f0df23a266fd15cf56d1a9e93aaac8901cfe49a3219ae36c5c65c75e5c708fb82cac4d6a50726509ec3a7d32d54cf584ae353a5bff75a6de77a0b240cf8a0a72817c9d37699ca89c96e0e0d96a7665ac3a7d1febca1a1d79e2cbde8025c271360e2f90048b2d9fd56f45c013e001dad4b7785be69dc01f8a954ef7a84455986fc5c9d5167d91808efdb4476ed79f99563d887cfd4e99809d9e388501dea228cbb3cf3770082dc566455251fd9c2c742963c33500618c6ec99e0bef007408a0462a081237be4c6e5db0258d4be5fc9cf63fd1ace1f4166c053b0fb84fe24917da1255cf40bbb1b45644f6a7699cf802a35a932c374b1d62013e6afca3787627469994c02f622ab877ed5491fc2a89eea60e4e1628da89e3ad600ff6442e4ebf20e47304176b6a1703c094b3cf6d7fbbddd8d8fa5a00f28b4d8f43d88487e9d4531071512f2027198714a8d1cef126775547fc74f2a35840510f325e50361be76557767560055e084f2ecaefa0dd8ca8215301a7a887d2eaddaeb1f5c3dfdbd2cc1ba5f02d4426b98c0f861c5f724405758f442560ea6cd1d953456cc4aac6642ad61c03dbaffc2364d8ec2ef9f483c70355139d1fbd9617ab3c7eedf0b8963c1cfdab769180db43c416a90d9fdf3fd0eb2f81187642b4e2a09d6462d27527fdfda31f7b262501749dcfc6c184983f9923424131d05cc811cacf5c2c87e8e6f135349e68cde0e8997bf1dde248e5124d5dca2681abdbe58d327a8edd585821f03fdd4515728f1336495ba25c9bba56a3f706d60c35cbd0b40d0ac0583a981f9af08510ed8ed0a726e5472f8995af3837fbf1e89587633d2ef944868a153919165778e963710872af12faf96c0919c638e5affa97104471ba6e178d27602f96b9546ebe52190d91be245be08742b96389080676a566d3229e593e4f56a76ae4c58113c6adc1088703b1b92dafe32a5600e14ac1e71df829dfef425911f16a2b91f693599ecabf93065c6c4f5fefca8d4ed095599113529f65d9120d5252f577af95b404979508c343df54e4d239720e7d3a861f1dcabfa69e12d655c8a026c10a4df279b139fd222e561d205ac9b45c1054f8699eca594fb23886e0de565186597766dd5e40f74a423d5708dac254f4172f1089270988fb18715813f13ee4d131b64dd517c7e77f27f804b229f5339ac2f483b14739ac33a9645044d3010bd77ed18fb117f7b11bb51c4ed683b59e28bf25a58f123dfbeb1f0f21f03d9b57d8e61d59b311037a5b757b03ca5c95e0eb73922c6918530c99de4d6733640f2b8d13bebce31d4f5e27aab201101e48cde23a0d7e87b9511949d812e3187ee5ff11bc5858c022ed7b00790eba32f9ef7e134ce5f73a01269ca971b40e62133eca9d596a768686d6390b2c74602f6dc597faec3ed9d9658102d99c9624c1a97d00d63853578afaccc7e30a77fe054ebc23eec45f608f996fd015cd6bd50a111360f0790eff6ffb1ea59d13c8e29480bd96217188f97e53a1f5d9eae0a2badb4fea52f2bb4f8cb04d0afd99e7371a978a7d7ef473f77ea6738ff84af655313a12db24cff692ec7e282245ae9a42338db814593448f7115df3dc3f4e2faa2c2fdbd68f679d6aba01a15031347bb17d8bf8f1fad0ecf365e9dcd32e69803c5c05f4b47adbf8a21af7e9fb327f267df1c914486389a9820edf0a03bde6ef388c255761e439b2f7e1f9c1c3c95bd30c502197ab37f76b52f0d0675f366e919be19329853767bba34a540fb75bcdcc9596a4cda254a660e11bed5af9d8646ac4b7d6d7aa5d7c0005879b6d08058a56c3d3a4d3d401b883153fa7f2f6a6d34dd010f6b9e7b4e457b9ff5a5802d7723abb35f9dca0afc10f6791824dbe0a7725d534e7753445b7268d90145b6438b93fc475f44d5d678d79da6c5770f3a9106f3cffbabe4b88cbe7eda9b8a495be4f6717b0fbee6fec78c86031b6d878d47e357b2089de3e6dd19a265552553d1f7da53884ef84d0eebe782791c48a9c68a28d8ea3bb70c922b01dc20b2cd05cfb276e326651398f766f5faaea54a41da597cf6b50f3d5ebc634185b99069126b8d935c6bc42c47f2109de42091ef4ade3d87cc44aeb78709255501e64f34ac2d4b2725cf7777315f8ca9424bc9d61a896a93500faa6cf5a5aee1fb888e17b47a38a667be2ffa3bae46afa88bfd8b5b6e1186d6e41b9a4e490591043372c23f36fb48d80caff74cc349adc92bb25f701738c809ccf74c47afa193795ee67bc58ea7fd85542fa7e70218490fff212163401cfde016df2f42496bae403d5391e53fe200f758bbcdead0fe72c77861889b9632a257229c35bdfe8fa78375b4f5c768b9c60cafbde1f00aff6ca1879f6472f28001f5f13d4d9d6c3a90e04d8df09873550daa8262d39efbe96a79c697fbcc9a7f27c9f6d782d5d5f6d024b291376e9cc40d902f809072e1f0f2c2ab88ce3d074e88461f5971853e7be749943ab6e25e25e8afa5042dd73407f49b50841c7782c54eece62ec2beef1f16caf1ca5989427bd2726ca0fee33e303702e9892e4382e92c3f3a03a6188f39762db81819c7e12b424be8fd964dcdbfbac00139e8c5a6200506f13f484ac34ef3d26e7cadd53cf402117419c1618205bfa5382486094bd55448f2b1aa4dbec2289189b601b1bbf5792b2a641c6f5dd19cf24abc72fc5264cf11f6b44a4929267a02cd1de1b602b9de65a6c06640aa0f76109baa90d66eeb17295b1711365b7d6835a2dd55b7fe868c59453613240643c847a5b48d27897a58dda63e579c1bba58350550e147b190f0a2c9a5ce719d627ce3302028b4b6801bbfa8cd74874ffba35817c0eca034d19210950796807125fe6065dcd47d7c870ed2db5c00cff235e4154e2d89ec2a09a87551f9b7ca25d519b5603c0c33d2cf72878199ffab567fc5e093529b89d1163587f3564ba8291d2d96cf9762e7f568e786ea90849f6312c1a10f45d61600cd45c48e6870a7d76c913f9c4497374fc04401cbd11f7710740148234fe8f041f24d0278fcfd48846e6aa49f05016fc332dc5d46b4a26574fed5c0751cebb9f7ab4cdbc1ee011d82d6ef95c52c9df8eedac3ab5cf30805f23d88d4f707601f8e6c606b58f2fe234e948d6756d430a5c4ec76a33874886c8fb484059b47a9bd198a61a1896419288a9e81d0969dec778a53e8233f0f63bd0134e5f29825e7817e7c8ccb7d9acd8f86ac9d3af78c43df3036d7934dd294f2bb12063bee52c547d27a218145befb0ca96cbfaabd39fa245b51c39f4cd4cf8db105f9dc46a7aaa8f7d06fa208120ce1ac49326179618fa2c8596c44e174eb7a141056b1d17689c10dee089c8b0867b8a757ae12251bbd68db5fba2be341275fb6ee379309f5cde9b31242b0b2bac44da74776fac141936bd96e3177161f057c820a8c22cca8cce29b158eb55aed0260253fbee70a6dd281d9fca23e0b0a38d46c76a95e1262f1cafcf0fc37b52e649a1ba1e2c0f97d10bbf4d2b5632cf340bce56736071d5885ec9b4e17910744d3e63e2ca6deb21e43fc21e89c6865d3ad424ef4a14efe8843ff3168c99ee395400dcc8755719d290c567c95a5e7d28ec1190ceee240084d444265cc801cd960f69b368359bbf06b8a4ec23b47c7bf9d4b16c701a1c4fb9e81abb55bf49d450b566ce03de939fc6f5c51291380086f8c995cdd4fa15a325601c4846a69f15c77f55c900270bc9ea5f406480cb0e3e89bc869fe8b7cec4fbef7e76283d50c25ab1b4d34d093a7df062990a925a9c44aa2661abd7d381a4d6cdb64821ef624dd51b72e99af914bca2f80c25b82ac6945df7c7582e6d0ce2cd073e35f1fc120a68ba210410db64592a9aa319b30f2b818c495750e1cea0610e27d52be31e52e501a3bd51b501bc51c2ec8592f679b6e55b9aa58d513fd2bebadc83ba76eb45e5676f130193e9a666b8c8132c9f5141681fbab324b555c5c890d488ac2dd00feead0a20fbd8a46391438e3193edc6fb89161cd864fca98f4f39a2893c933dcd13bc8c5d5a548d24862e8161c0fad7f33aca8c86791d620815fe3f0daddb5defd933d0c10097a7a98e67625420b6c0db7c3e17ab07ea64e6f0f53fdc670799e06a2e3a871d6be363a2639e35339361311e0f528cc433eacea4f79bf217108c7b1d657840253ffdea18bdd1f93cdee63e7a9b8dbcb4ee06162b253e09ea0641f2771bd9823dd210905e9ea495f43194bb471cdeb690e8890b03b50835d53dde1b572dd123ccc8507bb57a45e46c0efb8fb3d5596bddf9782d86dd911636eae2cf64b5829cf8893faf789be3fa22859accf688f5b5da6c29cacc96d477e23b63cc934f685b6e42e1655c9a9b94d6d78402de22b8d9776e3915391aa258e57467d770d65480ba2f6a94b0337965a8c659c42b4e90b14da4697d0c0a6d74774c94c52d8ecb694eee747bdaa6c3a6d60739db18c6446090eebba72e62ab88b0e8b88e728ba8cb133d8524eda89a2bff1c8414da3edfa6f83788331c8a7e5a8af2dd3682d4752190a3c689949abdad8350111373e7fb46151f54a10f79d91940e37efb05f9f157bddcfacf018b65a38ab614807c34a2786af4a1d48c4d1c1abd31815715f9d1b103992207fc664f12c82fd923c57d8e7cfb9f4af55182318d055c704865cf484206d60e34cf7fe9b6ce60b1772c5c7cdacb6695227d80da18ec1f98a434b1aaf9c6b6d082f5663aed2bf267e559dca6b93d3ce34273846fc677f529690482df0a8f782b8ad7269f344f5f2b4d320a7ce2d2fa02284f8db634dc930c3e2b9a629245364acf35d41e9a14c88efde4e742ef1ea4b43d0caf2e70d4a617278823e6403934524debbd933e7676e441a48f630dc8bcccd55d9032d6bf3dea97d1669c39fb865b0e619eeb3f5461e517000f5aee3ef2abdb87d3a76b88e140eb4644a9fbddbdc9e20972cdfacf00bffa3a1ca5f84122c2ebc54067cdaa23967eaeb7bbbfe44e5843382b834fae1f62a066688595e4ee67c7ff9858672355abf7893ebeb4bcf88a62b2237c6e6cec9aebe3f28bfc310ced3a590e88d4bd0f53289206deb9addbf6f3c02115ce4980dadfc112683ae250c2d438fd9c0f2a090dbf122a0072828db798bdb868dcd47384dd3f5eeebc0307a5b268683cd51f312e8f02b5a7746b11a97ac43287d9b9765f03c720503cfe6e0117660a4c00d67895224c4d42b032000a10d7a743054758a8f54941fd5eaf72498b678d1579b3de4e5518f90f1e3d32517d09d7f5da9d180215e66218e9dd64036819cf12638ce82712a6cc79a9ddb36e86814b797d72c2bc58b18ba439e99965f745b4fb7de2878e3186e3e7b835c746b0935f6c67e92e3770bd8d5eb4f66d8175ceb7850e418c55e574db891639aa77fc62bc45dcb734681ede8484d4d4109a9adb8c3d00", 0x2000, &(0x7f0000000e40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)={0x20, 0x0, 0x0, {0x0, 0x9}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r5 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x24c01, 0x0)
io_setup(0x202, &(0x7f0000000200)=<r6=>0x0)
io_submit(r6, 0x1, &(0x7f0000000780)=[&(0x7f0000000440)={0xfffffffe, 0x20011004, 0x4, 0x1, 0x0, r5, &(0x7f00000000c0)}])
dup3(r5, r3, 0x0)
syz_open_procfs(0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000005c0), 0x0, &(0x7f0000000680)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@msize}], [{@context={'context', 0x3d, 'unconfined_u'}, 0x22}]}})

5.887500099s ago: executing program 4 (id=670):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x2000040, &(0x7f00000001c0)={[{@errors_remount}, {@nodiscard}, {@auto_da_alloc}, {@init_itable}, {@stripe={'stripe', 0x3d, 0x7b}}, {@orlov}, {@sysvgroups}, {@delalloc}, {@usrquota}]}, 0x10, 0x4d2, &(0x7f00000002c0)="$eJzs3c9rHG8ZAPBnJtlvf+VrUvVQC7bFVtKi3U0a2wYPtYLYU8Fa7zUmmxCyyYbspm1CkRTvCiIqePLkRfAPEKR/gggFvUsVRbTVgwd1ZWdnaxt3m0i3OzX5fGA67zvv7j7P27Az88687ARwaJ2LiJsRMRIRlyJiPN+e5sutdvudzutePH80316SaLXu/jmJJN/W/awkX5+IiJ2IOBoRX70V8Y3kv+M2trZX5mq16kZerzRX1yuNre3Ly6tzS9Wl6trMzPS12euzV2enBtLPiYi48aXff/87P/nyjV989sFv7/3x4jfbaY3l7a/2Y5A6XS9l/xddoxGx8S6CFWAkX5f6tH97ZIjJAACwp/Y5/kcj4lPZ+f94jGRnpwAAAMBB0vrCWPwjiWgBAAAAB1aazYFN0nI+F2As0rRc7szh/XgcT2v1RvMzi/XNtYXOXNmJKKWLy7XqVD5XeCJKSbs+nc+x7dav7KrPRMTJiPje+LGsXp6v1xaKvvgBAAAAh8SJXeP/v41n4/8jRecFAAAADNhE0QkAAAAA75zxPwAAABx8xv8AAABwoH3l9u320uo+/3rh/tbmSv3+5YVqY6W8ujlfnq9vrJeX6vWl7Df7Vvf6vFq9vv65WNt8WGlWG81KY2v73mp9c615b/m1R2ADAAAAQ3Ty7JPfJBGx8/lj2dL2QdFJAUOR7NGePSTkWV753RASAoZmpOgEgMKMFp0AUJhS0QkAhdvrOkDfyTu/HHwuAADAuzH5if73/10bgIMtLToBAGDo3P+Hw6v0+gzAq8VlAhTlI3u0v/39/1brf0oIAAAYuLFsSdJyfi9wLNK0XI74MHssQClZXK5Vp/Lxwa/HS0fa9ensncmec4YBAAAAAAAAAAAAAAAAAAAAAAAAgI5WK4kWAAAAcKBFpH9Isl/zj5gcvzC2+/rAB8nfx7N1RDz40d0fPJxrNjem29v/8nJ784f59itFXMEAAAAAduuO07vjeAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYpBfPH813l2HG/dMXI2KiZ/yzR7PV0ShFxPG/JjH6yvuSiBgZQPydxxFxqlf8pJ1WTEQni17xjxUYP42IEwOID4fZk/b+52av718a57J17+/faL68rf77vzS6+7+RPvufD/cZ4/TTn1X6xn8ccXq09/6nGz/pE//8PuN//Wvb2/3aWj+OmOx5/Elei1Vprq5XGlvbl5dX55aqS9W1mZnpa7PXZ6/OTlUWl2vV/N+eMb77yZ//6039P94n/sQe/b+wz/7/8+nD5x/rFEu94l883/v4e6pP/DQ/9n06L7fbJ7vlnU75VWd++qszb+r/Qp/+v/z79zjQtmNe3Gf/L9351rN9vhQAGILG1vbKXK1W3fh/LKTxXqShMJDCkfcjDYVOoeg9EwAAMGj/OekvOhMAAAAAAAAAAAAAAAAAAAA4vIbxc2K7Y+4U01UAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgDf6dwAAAP//sf7Zeg==")
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "7f12ddc1517600"})
r2 = syz_open_pts(r1, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r3, 0x8933, &(0x7f0000000080)={'wg0\x00'})
ioctl$TIOCVHANGUP(r2, 0x5437, 0x0)
poll(&(0x7f0000000000), 0x57, 0x0)

5.212453664s ago: executing program 1 (id=671):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0x1c, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x100002, 0x0)

5.207348664s ago: executing program 4 (id=672):
socket$inet(0x2, 0x2, 0x1)
setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, &(0x7f0000000100)='ip6_vti0\x00', 0x10)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000240)='./file0\x00', 0x1008002, &(0x7f0000001a40)={[{@prjquota}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x88}}, {@resuid}, {@max_batch_time={'max_batch_time', 0x3d, 0x7}}, {@delalloc}, {@nodelalloc}, {@discard}, {@data_err_abort}]}, 0x1, 0x5e5, &(0x7f0000000300)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ptrace$ARCH_MAP_VDSO_64(0x1e, 0x0, 0xfff, 0x2003)
ioctl$SIOCGSTAMP(r2, 0x8906, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x3, &(0x7f0000000000)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
io_uring_setup(0x488, &(0x7f0000000080)={0x0, 0x5eb4})
r3 = syz_open_dev$usbmon(&(0x7f0000000080), 0x0, 0x0)
r4 = syz_open_dev$usbfs(&(0x7f0000000000), 0x20000007d, 0x0)
r5 = dup3(r3, r4, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_INPUT(r6, &(0x7f0000000940)={0x8, {"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", 0x1000}}, 0x1006)
ioctl$MON_IOCG_STATS(r5, 0xc0109207, &(0x7f00000001c0))

5.097627373s ago: executing program 1 (id=673):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
pipe2(0x0, 0x0)
dup(0xffffffffffffffff)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000040)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x0, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
pipe(0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xa, 0x7, &(0x7f00000003c0)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x73, 0x11, 0x7a}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @initr0={0x18, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0xc27e}, @exit], {0x95, 0x0, 0x5a5}}, &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70200001400001cb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

4.03493313s ago: executing program 4 (id=674):
memfd_create(&(0x7f0000000140)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xe7a\x9b\x11x\x0e\xa1\xcf\x1a\x98S7\xc9\x00\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x04\x879\xa24\xa9am\xde\xb2\xd3\xcbZJoa\xc4\x1acB\xaa\xc1\xfb Q\xd4\xf4\x01\xa52\xe2DG\xd4\xbd{\x9f\xa9\x97\x9b@\xdb\x00b\xe1br\xb6\xea7\xe3\x10\xff\xc2\x9d\r2\x9e\x8e\x04sW\x1b\xb7\xb3\xa2\xc9&@\xca\xda\xdc\xe2/\x97X\xac\b\xb0\xc2<\x80E\x1a\xbc\xc7W\xda9VsA\xaf\xc6\xcf\xe1\xa1\xb5M\xa2\x85\xa6y\xc4J\xf1\xf7\xfcD\x95\xe3\xeb\xc7\xbc\x91\xb0\xa8\x9eo\xebF(\x9dL\x01vRk\xaacB\x04\xa7I\v\x86EZ\x96\xd5\x14OD\\\xe8R\xe4\xcd\xec\xcc\xd1\x0fre\xe86\xcd\xeb\xc4$\x98\x06J\xd6dD\x8d_U`ji{\xab\x97\xaf;l\x1f\xaf\xb38U\xcb\xfa\xb3j\x92\f\x81\xa0\xa2-g\b\x99\x0e\x8d\x8d\x16\xd9w\\\xf8\xce\xb0j\x9d\'\x93\xef\x1d\xa0H\xcd\xbd\xd9\xaf\x12$\x8d\x16%\x8b\x00', 0x0)
syz_mount_image$vfat(&(0x7f0000000100), &(0x7f0000000640)='./bus\x00', 0x0, &(0x7f0000000440)=ANY=[], 0x1, 0x1268, &(0x7f0000002500)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000180)='./bus\x00', 0x0)
chdir(&(0x7f0000000540)='./file0\x00')
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r1, &(0x7f0000000000)={0x2, 0x20, @local}, 0x10)
setsockopt$sock_int(r1, 0x1, 0x3c, &(0x7f00000000c0)=0x1, 0x4)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f00000003c0)={'syztnl2\x00', &(0x7f0000000280)={'syztnl0\x00', <r2=>0x0, 0x20, 0x700, 0x1, 0x101, {{0x25, 0x4, 0x0, 0x14, 0x94, 0x67, 0x0, 0x6, 0x2f, 0x0, @local, @initdev={0xac, 0x1e, 0x1, 0x0}, {[@end, @ra={0x94, 0x4}, @end, @timestamp={0x44, 0x14, 0x41, 0x0, 0x0, [0x6, 0x2, 0x4, 0x100]}, @timestamp={0x44, 0xffffffffffffffed, 0xe6, 0x0, 0x4, [0x1, 0x1, 0x2, 0x4, 0x1]}, @timestamp={0x44, 0x24, 0x5c, 0x0, 0x3, [0xcaa, 0x7, 0xffffff5d, 0xff, 0x5, 0x5, 0x6, 0x81]}, @noop, @ssrr={0x89, 0x27, 0xdc, [@dev={0xac, 0x14, 0x14, 0x20}, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, @rand_addr=0x64010100, @multicast2, @empty, @loopback, @local, @empty]}]}}}}})
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x3, 0xc, 0x6046, 0x1, 0x1, 0x6, '\x00', r2}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f00000008c0)=ANY=[@ANYBLOB="9d92fd7d0dc90653480e96255ffa012cf0adb2f6c32eac979c2a7358329dffcc18490a4e993b65a5842894888506489ab3c9258fc3db9bc91b7452c34ee796f1f450ff96e8d523dd85dfb806903629d0aa477162c52bb6b6a844f2fbb0899cede1dba6bc0dde67874723fd679bd91d80426275149a4bf38b50c68b6b4a18ab5c9e25a02f1e6346b1456880bf4bcfa9635425f53dd18d55a49c816f6433c678eb9dd9cfa71b34a6706b02fc595aaa36f21d4f65a348e294e15cb7619ddbdb408f2bcfe57feff04915b0a24809581275f234fce97afc4724108053252d554a77b590e5e499dc8ff11c924800", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000001ac0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r4}, 0x10)
sendto$inet(r1, 0x0, 0x0, 0x20048886, &(0x7f0000000080)={0x2, 0x4a20, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10)
write$binfmt_elf64(r1, &(0x7f0000000400)=ANY=[], 0x678)
creat(&(0x7f0000000e00)='./file0\x00', 0x0)
renameat2(r0, &(0x7f0000000380)='./file0\x00', r0, &(0x7f0000000200)='./bus/file0\x00', 0x0)
r5 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000200)=ANY=[@ANYBLOB="12010100000000105801000100000000000109022400010000002009040000010300000009210000000122dc01090589"], 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'sit0\x00', &(0x7f0000000340)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0xf, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x0, 0x0, @remote, @remote, {[@timestamp={0x44, 0x8, 0x0, 0x0, 0x0, [0x0]}, @cipso={0x86, 0x1f, 0x0, [{0x0, 0x9, "34a6caf58db769"}, {0x0, 0x2}, {0x5, 0xe, "4f1347dfaaca82c253d084b7"}]}]}}}}})
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r6, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r6, 0x0)
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
r9 = dup(r8)
r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r10, 0x4008ae90, &(0x7f00000000c0)=ANY=[@ANYBLOB="020000000000000007000000a5000000050000000500000000000000000001000200000000000000000000000000000007"])
syz_usb_control_io$hid(r5, 0x0, 0x0)
syz_usb_connect$printer(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="12011003000012002505a8a4f0"], 0x0)

3.879879022s ago: executing program 1 (id=675):
socket$nl_route(0x10, 0x3, 0x0)
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[<r1=>0x0], 0x1})
syz_open_dev$cec(&(0x7f0000000680), 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r2}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = getpid()
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$batadv(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_DAT_CACHE(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)={0x14, r5, 0x305, 0x0, 0x0, {0x7}}, 0x14}}, 0x0)
process_vm_readv(r3, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
openat$sndtimer(0xffffffffffffff9c, 0x0, 0x0)
syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
syz_open_dev$MSR(0x0, 0x0, 0x0)
r6 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r6, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(aes-aesni)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r6, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r7 = accept4(r6, 0x0, 0x0, 0x0)
recvmmsg(r7, &(0x7f0000002ac0)=[{{0x0, 0x0, &(0x7f0000002940)=[{&(0x7f0000001600)=""/137, 0x89}], 0x1}}], 0x40000a4, 0x0, 0x0)
socket$nl_sock_diag(0x10, 0x3, 0x4)
socket$inet6(0xa, 0x40000080806, 0x0)
ioctl$DRM_IOCTL_MODE_GETPLANE(r0, 0xc02064b6, &(0x7f00000003c0)={r1, <r8=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_SETCRTC(r0, 0xc06864a2, &(0x7f0000000400)={0x0, 0x0, r8, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "b4bc323ef77d1f000071849800000000dfff00"}})
r9 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r9, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r9, 0xc01064b5, &(0x7f0000000140)={&(0x7f00000006c0)=[0x0], 0x1})

3.451499878s ago: executing program 3 (id=676):
openat$zero(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bind$bt_sco(0xffffffffffffffff, 0x0, 0x0)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/fscaps', 0x202, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, 0x0)
r0 = socket$inet(0x2, 0x0, 0x0)
bind$inet(r0, 0x0, 0x0)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
socket(0x0, 0x3, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x20, &(0x7f00000000c0)={@rand_addr=' \x01\x00', 0x0, 0x0, 0x103, 0x1}, 0x20)
setsockopt$inet6_IPV6_RTHDRDSTOPTS(r1, 0x29, 0x37, &(0x7f0000000480)=ANY=[@ANYBLOB="000000ff7f000000"], 0x8)
futex(0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0)
memfd_create(0x0, 0xf4ff5b07793b0d56)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000380)='./file0\x00', 0x28000ca, &(0x7f0000000380)=ANY=[], 0x97, 0x2b0, &(0x7f0000000800)="$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")
readlink(0x0, 0x0, 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)

2.882860934s ago: executing program 1 (id=678):
syz_mount_image$fuse(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000200)='sched_switch\x00', r0}, 0x10)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_SIOCBRDELBR(0xffffffffffffffff, 0x89a2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newqdisc={0x54, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x1}, {}, {0xe}}, [@TCA_INGRESS_BLOCK={0x8}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}}, 0x0)

1.335012651s ago: executing program 0 (id=680):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000003c0)=ANY=[@ANYBLOB="180000000000000000000000004000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000005600)='sys_enter\x00', r0}, 0x10)
signalfd(0xffffffffffffffff, &(0x7f00000000c0), 0x8)

1.179702633s ago: executing program 0 (id=681):
syz_mount_image$fuse(0x0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000000080)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000100)={[{@workdir={'workdir', 0x3d, './file1'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@default_permissions}], [], 0x2c})

1.0979183s ago: executing program 0 (id=682):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200))
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f00000000c0)='./file0\x00', 0x400, &(0x7f0000000a40)=ANY=[@ANYBLOB="6572726f72982ef433a0eedb01e706180b81cf2f03733d63090074696e75652c759f3aabe535e0081841b5287466383d302c757365667265652c73686f58746e616d654f77696e6e742c757466383d312c756e695f786c6174653d302c73686f72746e616d653d6d697865642c7368", @ANYRES8=r2, @ANYRES16=r0, @ANYBLOB="dd22b97cbaa0e25204af8b385789d152a9d430c67cca23ecb6cbc759b14ddd3726243fffaf0058dcf285e9a1d6ba7f6e37355f95948c83c5755eea", @ANYRES8=r0, @ANYBLOB="b6a32f6d098960424fb5deeaba3a72a6dc6d6d8b1d228cd3a3baacddf5dc11640380d20a199993dea81de760718340b83a7e3a59fb4d6ea29943419c009319e07eda9c9be6aa929b912944b5333fadef5b8948c91967d578573102d1fe49960e4058b7276b9bea48175ef8f62682274209fc5557dc1cfd9a802a425e17f934d774876405c592f72d456d5aed7b41fc14a77fd9c1a416a11fda7c31f41d3063b90189ed4997d021460083e67c58705698c60f93052bcc895141e8e509c18dbb9536b06052e9e448031bf2a3372081f5c085f75a5d7268d6526aec08882dd1035b8f77fac40a4f5eb179ea29f3d0b640bb22c6684adbad1495", @ANYRESDEC=r1], 0x0, 0x284, &(0x7f0000000c00)="$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")
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='mounts\x00')
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0)
mount$bind(&(0x7f0000000200)='./file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000140)={0x0, 0x8b}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff})
recvmmsg(r4, &(0x7f00000000c0), 0xaef9, 0x2, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, r3}, 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r5}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r6}, 0x10)
r7 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r7, 0x4018620d, &(0x7f0000000100))
r8 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r8, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})

890.879457ms ago: executing program 4 (id=683):
syz_mount_image$fuse(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000200)='sched_switch\x00', r0}, 0x10)
socket$netlink(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
mmap(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0x0, 0x12, 0xffffffffffffffff, 0x0)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r3}, 0x10)
r4 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$SO_ATTACH_FILTER(r4, 0x1, 0x1a, &(0x7f0000000480)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10)
sendto$inet(r4, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
ioctl$sock_SIOCBRDELBR(0xffffffffffffffff, 0x89a2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newqdisc={0x2c, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x1}, {}, {0xe}}, [@TCA_INGRESS_BLOCK={0x8}]}, 0x2c}}, 0x0)

367.71274ms ago: executing program 1 (id=684):
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x20040, 0x0)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
r1 = syz_usb_connect$uac1(0x0, 0xa4, &(0x7f00000000c0)=ANY=[@ANYBLOB="2a01000020000040b708000000000000030109029200030172e5000904000000010100000a24010000000201020c0d24070000030769dc000049c40c240000e9fffff5ffffffff092403f3ff000005024524", @ANYRES8=r0, @ANYBLOB="05"], 0x0)
syz_usb_control_io$uac1(r1, &(0x7f0000000180)={0x14, 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0003040000002203"]}, 0x0)
syz_usb_control_io$uac1(r1, &(0x7f0000000680)={0x14, 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB]}, 0x0)

185.101234ms ago: executing program 0 (id=685):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000070"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r0}, 0x10)
unlink(0x0)

108.857621ms ago: executing program 0 (id=686):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0x8, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r0}, &(0x7f0000000040), &(0x7f0000000280)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x10)
unlink(0x0)

0s ago: executing program 0 (id=687):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f00000018010000646c012500000000000000007b1a"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='timer_start\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000e8ffff7f850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000200)='timer_start\x00', r1}, 0x10)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000140))

kernel console output (not intermixed with test programs):

loop3): Found nat_bits in checkpoint
[   70.695841][ T4100] loop4: detected capacity change from 0 to 512
[   70.782012][   T21] usb 1-1: USB disconnect, device number 3
[   70.854622][ T4064] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[   70.863233][ T4064] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[   70.885865][ T4100] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[   70.939900][ T4100] ext4 filesystem being mounted at /28/file0 supports timestamps until 2038 (0x7fffffff)
[   71.106107][ T4064] attempt to access beyond end of device
[   71.106107][ T4064] loop3: rw=2049, want=78360, limit=40427
[   71.117872][ T4064] attempt to access beyond end of device
[   71.117872][ T4064] loop3: rw=2049, want=78352, limit=40427
[   71.174680][ T1377] ieee802154 phy0 wpan0: encryption failed: -22
[   71.181824][ T1377] ieee802154 phy1 wpan1: encryption failed: -22
[   71.192584][   T25] audit: type=1326 audit(1720747644.180:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4106 comm="syz.1.182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5eb6b9bd9 code=0x7ffc0000
[   71.204619][ T1065] cfg80211: failed to load regulatory.db
[   71.260593][  T144] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[   71.300992][  T144] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[   71.324216][ T3497] udevd[3497]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[   71.390021][   T25] audit: type=1326 audit(1720747644.180:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4106 comm="syz.1.182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5eb6b9bd9 code=0x7ffc0000
[   71.470169][   T25] audit: type=1326 audit(1720747644.220:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4106 comm="syz.1.182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa5eb6b9bd9 code=0x7ffc0000
[   71.598463][   T25] audit: type=1326 audit(1720747644.220:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4106 comm="syz.1.182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5eb6b9bd9 code=0x7ffc0000
[   71.622711][ T4117] loop0: detected capacity change from 0 to 1024
[   71.633414][   T25] audit: type=1326 audit(1720747644.220:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4106 comm="syz.1.182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa5eb6b9bd9 code=0x7ffc0000
[   71.808102][   T25] audit: type=1326 audit(1720747644.220:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4106 comm="syz.1.182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5eb6b9bd9 code=0x7ffc0000
[   72.302250][   T25] audit: type=1326 audit(1720747644.220:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4106 comm="syz.1.182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=28 compat=0 ip=0x7fa5eb6b9bd9 code=0x7ffc0000
[   72.419259][   T25] audit: type=1326 audit(1720747644.220:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4106 comm="syz.1.182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5eb6b9bd9 code=0x7ffc0000
[   72.438998][ T4117] netlink: 'syz.0.186': attribute type 4 has an invalid length.
[   72.974497][ T4133] loop1: detected capacity change from 0 to 64
[   73.110760][ T4108] loop2: detected capacity change from 0 to 32768
[   73.291596][ T4108] XFS (loop2): Mounting V5 Filesystem
[   73.432636][ T4108] XFS (loop2): Ending clean mount
[   74.222076][ T3506] XFS (loop2): Unmounting Filesystem
[   74.348721][ T4135] loop3: detected capacity change from 0 to 32768
[   74.578091][ T4135] XFS (loop3): Mounting V5 Filesystem
[   74.658820][ T4135] XFS (loop3): Ending clean mount
[   74.832922][ T3515] XFS (loop3): Unmounting Filesystem
[   74.846561][ T4162] loop2: detected capacity change from 0 to 512
[   75.048261][ T4162] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[   75.095273][ T4148] loop1: detected capacity change from 0 to 32768
[   75.101963][ T4162] ext4 filesystem being mounted at /38/file0 supports timestamps until 2038 (0x7fffffff)
[   75.443278][ T4152] loop4: detected capacity change from 0 to 32768
[   75.536780][ T4152] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop4 scanned by syz.4.193 (4152)
[   75.645225][ T4152] BTRFS info (device loop4): using xxhash64 (xxhash64-generic) checksum algorithm
[   75.691337][ T4174] loop2: detected capacity change from 0 to 1024
[   75.709724][ T4152] BTRFS info (device loop4): force zlib compression, level 3
[   75.747687][ T4152] BTRFS info (device loop4): force clearing of disk cache
[   75.781526][ T4152] BTRFS info (device loop4): setting nodatasum
[   75.827471][ T4174] netlink: 'syz.2.199': attribute type 4 has an invalid length.
[   75.841252][ T4152] BTRFS info (device loop4): allowing degraded mounts
[   75.878421][ T4152] BTRFS info (device loop4): enabling disk space caching
[   75.936355][ T4152] BTRFS info (device loop4): disk space caching is enabled
[   75.987773][ T4152] BTRFS info (device loop4): has skinny extents
[   76.008904][ T4177] loop1: detected capacity change from 0 to 1024
[   76.187555][ T4177] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[   76.313228][   T25] audit: type=1800 audit(1720747649.300:20): pid=4177 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.197" name="file1" dev="loop1" ino=15 res=0 errno=0
[   76.398707][ T4152] BTRFS info (device loop4): clearing free space tree
[   76.448977][ T4152] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[   76.618771][ T4152] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[   76.626281][ T4204] loop1: detected capacity change from 0 to 1024
[   77.307451][ T4167] loop3: detected capacity change from 0 to 40427
[   77.412056][ T4167] F2FS-fs (loop3): Small segment_count (9 < 1 * 24)
[   77.418651][ T4167] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[   77.594385][ T4167] F2FS-fs (loop3): Found nat_bits in checkpoint
[   78.070802][ T4219] loop1: detected capacity change from 0 to 1024
[   78.131168][ T4167] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[   78.208890][ T4167] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[   78.245889][ T4219] EXT4-fs (loop1): Ignoring removed nobh option
[   78.269792][ T4219] EXT4-fs (loop1): Ignoring removed orlov option
[   78.276163][ T4219] EXT4-fs (loop1): Ignoring removed nomblk_io_submit option
[   78.320217][ T4219] EXT4-fs (loop1): mounted filesystem without journal. Opts: noblock_validity,nobh,abort,norecovery,nojournal_checksum,orlov,nogrpid,noauto_da_alloc,nomblk_io_submit,,errors=continue. Quota mode: none.
[   78.694946][ T4228] loop0: detected capacity change from 0 to 256
[   78.705494][ T4227] loop1: detected capacity change from 0 to 512
[   78.819370][ T4230] loop4: detected capacity change from 0 to 1024
[   78.910747][ T4220] loop2: detected capacity change from 0 to 32768
[   78.950225][ T4230] EXT4-fs (loop4): Ignoring removed nomblk_io_submit option
[   78.976244][ T4237] loop3: detected capacity change from 0 to 1024
[   78.996223][ T4227] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[   79.004020][ T4220] XFS (loop2): Mounting V5 Filesystem
[   79.010280][ T4227] ext4 filesystem being mounted at /53/file0 supports timestamps until 2038 (0x7fffffff)
[   79.017487][ T4230] EXT4-fs (loop4): mounted filesystem without journal. Opts: noblock_validity,max_dir_size_kb=0x0000000000000003,sysvgroups,grpquota,debug_want_extra_isize=0x0000000000000080,user_xattr,nogrpid,noauto_da_alloc,nomblk_io_submit,,errors=continue. Quota mode: writeback.
[   79.612548][ T4249] overlayfs: './file1' not a directory
[   79.674535][ T4220] XFS (loop2): Ending clean mount
[   79.758321][ T4251] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[   79.780281][ T4237] netlink: 'syz.3.210': attribute type 4 has an invalid length.
[   80.116210][ T4261] netlink: 68 bytes leftover after parsing attributes in process `syz.4.213'.
[   80.782358][ T3506] XFS (loop2): Unmounting Filesystem
[   81.479818][ T3550] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[   81.542369][ T4288] loop0: detected capacity change from 0 to 512
[   81.614171][ T4290] netlink: 24 bytes leftover after parsing attributes in process `syz.2.218'.
[   81.683560][ T2927] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   81.870351][ T4288] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[   81.897697][ T4288] ext4 filesystem being mounted at /34/file0 supports timestamps until 2038 (0x7fffffff)
[   81.939702][ T2927] usb 5-1: Using ep0 maxpacket: 8
[   82.063632][ T2927] usb 5-1: config 179 has an invalid interface number: 65 but max is 0
[   82.082378][ T2927] usb 5-1: config 179 has no interface number 0
[   82.088651][ T2927] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[   82.125026][ T2927] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[   82.146529][ T2927] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[   82.188945][ T2927] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[   82.200028][ T3550] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 1088, setting to 1024
[   82.201856][ T4299] loop0: detected capacity change from 0 to 256
[   82.217592][ T3550] usb 4-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 1024
[   82.227972][ T2927] usb 5-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[   82.233155][ T4286] loop1: detected capacity change from 0 to 40427
[   82.248369][ T3550] usb 4-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[   82.265963][ T2927] usb 5-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[   82.357113][ T4286] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[   82.365253][ T3550] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[   82.403385][ T4286] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[   82.416413][ T2927] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   82.423574][ T3550] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[   82.439956][ T4270] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[   82.454235][ T3550] usb 4-1: SerialNumber: syz
[   82.460915][ T4286] F2FS-fs (loop1): invalid crc value
[   82.467240][ T2927] xpad: probe of 5-1:179.65 failed with error -5
[   82.480071][ T4278] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[   82.735219][ T4286] F2FS-fs (loop1): Found nat_bits in checkpoint
[   83.210381][ T4272] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[   83.314615][ T4286] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[   83.317265][ T4308] loop0: detected capacity change from 0 to 1024
[   83.326568][ T4286] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[   83.369174][ T4296] loop2: detected capacity change from 0 to 32768
[   83.399261][ T4308] netlink: 'syz.0.226': attribute type 4 has an invalid length.
[   83.540632][ T4314] loop0: detected capacity change from 0 to 2048
[   83.629921][ T4314] EXT4-fs (loop0): mounted filesystem without journal. Opts: stripe=0x0000000000000401,errors=remount-ro,. Quota mode: none.
[   83.681204][ T3550] cdc_ether: probe of 4-1:1.0 failed with error -71
[   83.690776][ T3550] usb 4-1: USB disconnect, device number 2
[   83.756738][ T4322] loop2: detected capacity change from 0 to 256
[   83.822436][ T4322] exfat: Unknown parameter 'ioc'
[   83.933733][ T4325] process 'syz.0.227' launched './file1' with NULL argv: empty string added
[   84.398519][ T1232] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   84.444827][ T1232] EXT4-fs (loop0): Remounting filesystem read-only
[   84.523527][ T3598] usb 5-1: USB disconnect, device number 2
[   84.651488][ T3708] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[   84.688836][ T4336] loop4: detected capacity change from 0 to 1024
[   84.703723][ T3708] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[   84.732324][   T25] audit: type=1326 audit(1720747657.720:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4337 comm="syz.0.230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f421b29abd9 code=0x7ffc0000
[   84.797294][ T4336] EXT4-fs (loop4): Project quota feature not enabled. Cannot enable project quota enforcement.
[   85.039088][   T25] audit: type=1326 audit(1720747657.750:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4337 comm="syz.0.230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f421b299517 code=0x7ffc0000
[   85.066907][ T4343] loop0: detected capacity change from 0 to 512
[   85.182749][   T25] audit: type=1326 audit(1720747657.750:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4337 comm="syz.0.230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f421b29abd9 code=0x7ffc0000
[   85.252097][   T25] audit: type=1326 audit(1720747657.750:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4337 comm="syz.0.230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f421b29abd9 code=0x7ffc0000
[   85.274449][   T25] audit: type=1326 audit(1720747657.750:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4337 comm="syz.0.230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=332 compat=0 ip=0x7f421b29abd9 code=0x7ffc0000
[   85.300540][   T25] audit: type=1326 audit(1720747657.750:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4337 comm="syz.0.230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f421b29abd9 code=0x7ffc0000
[   85.322676][   T25] audit: type=1326 audit(1720747657.750:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4337 comm="syz.0.230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f421b29abd9 code=0x7ffc0000
[   85.359152][ T4343] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[   85.435979][ T4343] ext4 filesystem being mounted at /39/file0 supports timestamps until 2038 (0x7fffffff)
[   85.621813][ T4330] loop2: detected capacity change from 0 to 32768
[   86.540617][ T4330] XFS (loop2): Mounting V5 Filesystem
[   86.586650][ T4361] netlink: 'syz.1.237': attribute type 10 has an invalid length.
[   86.650061][ T4361] team0: Port device netdevsim0 added
[   86.662657][ T4330] XFS (loop2): Ending clean mount
[   86.729921][   T21] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[   86.833575][ T3506] XFS (loop2): Unmounting Filesystem
[   86.882571][   T25] audit: type=1326 audit(1720747659.870:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4372 comm="syz.3.239" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f80e2fb6bd9 code=0x0
[   86.910194][ T3598] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[   87.072787][ T4377] loop2: detected capacity change from 0 to 1024
[   87.120657][   T21] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   87.125637][ T4377] netlink: 'syz.2.241': attribute type 4 has an invalid length.
[   87.131344][   T21] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[   87.159705][ T3550] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[   87.202181][ T4379] loop2: detected capacity change from 0 to 512
[   87.222953][   T21] usb 5-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[   87.232890][   T21] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[   87.244122][   T21] usb 5-1: SerialNumber: syz
[   87.275139][ T4379] EXT4-fs error (device loop2): ext4_orphan_get:1397: inode #15: comm syz.2.242: casefold flag without casefold feature
[   87.288930][ T4379] EXT4-fs error (device loop2): ext4_xattr_inode_iget:404: inode #12: comm syz.2.242: missing EA_INODE flag
[   87.304191][ T4379] EXT4-fs error (device loop2): ext4_xattr_inode_iget:409: comm syz.2.242: error while reading EA inode 12 err=-117
[   87.317253][ T4379] EXT4-fs (loop2): 1 orphan inode deleted
[   87.323072][ T4379] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[   87.329879][ T3598] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   87.345838][ T3598] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   87.355812][ T3598] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[   87.368878][   T25] audit: type=1804 audit(1720747660.350:29): pid=4379 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.242" name="/newroot/50/file0/bus" dev="loop2" ino=15 res=1 errno=0
[   87.390267][ T3598] usb 1-1: New USB device found, idVendor=04d9, idProduct=a070, bcdDevice= 0.00
[   87.399726][ T3598] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   87.409247][ T3598] usb 1-1: config 0 descriptor??
[   87.450146][ T3550] usb 2-1: Using ep0 maxpacket: 8
[   87.575410][ T4382] loop2: detected capacity change from 0 to 256
[   87.590083][ T3550] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   87.756089][ T3550] usb 2-1: New USB device found, idVendor=05ac, idProduct=8501, bcdDevice=20.9d
[   87.775553][ T3550] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=105
[   87.805359][ T3550] usb 2-1: SerialNumber: syz
[   87.808737][   T21] usb 5-1: 0:2 : does not exist
[   87.848667][ T3550] usb 2-1: config 0 descriptor??
[   87.883475][ T3598] holtek_mouse 0003:04D9:A070.0001: unknown global tag 0xd
[   88.690696][ T3550] usb 2-1: Found UVC 0.00 device <unnamed> (05ac:8501)
[   88.699532][ T3550] usb 2-1: No valid video chain found.
[   88.708906][ T3598] holtek_mouse 0003:04D9:A070.0001: item 0 4 1 13 parsing failed
[   88.729405][ T3598] holtek_mouse 0003:04D9:A070.0001: hid parse failed: -22
[   88.784966][   T21] usb 5-1: USB disconnect, device number 3
[   88.843158][ T3598] holtek_mouse: probe of 0003:04D9:A070.0001 failed with error -22
[   89.302961][ T3598] usb 1-1: USB disconnect, device number 4
[   89.327354][ T3550] usb 2-1: USB disconnect, device number 2
[   89.397452][ T4396] loop2: detected capacity change from 0 to 512
[   89.479098][ T4398] loop4: detected capacity change from 0 to 512
[   89.511871][ T4026] udevd[4026]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[   89.547368][ T4398] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[   89.547562][ T4396] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[   89.569939][ T4396] ext4 filesystem being mounted at /53/file0 supports timestamps until 2038 (0x7fffffff)
[   89.570272][ T4398] ext4 filesystem being mounted at /39/file0 supports timestamps until 2038 (0x7fffffff)
[   89.757863][ T4398] EXT4-fs error (device loop4): ext4_do_update_inode:5160: inode #2: comm syz.4.247: corrupted inode contents
[   89.829907][ T4398] EXT4-fs error (device loop4): ext4_dirty_inode:5993: inode #2: comm syz.4.247: mark_inode_dirty error
[   89.841874][ T4398] EXT4-fs error (device loop4): ext4_do_update_inode:5160: inode #2: comm syz.4.247: corrupted inode contents
[   90.203698][ T4412] netlink: 24 bytes leftover after parsing attributes in process `syz.0.249'.
[   90.234953][ T4398] EXT4-fs error (device loop4): __ext4_ext_dirty:183: inode #2: comm syz.4.247: mark_inode_dirty error
[   90.387274][ T4420] netlink: 'syz.2.251': attribute type 10 has an invalid length.
[   90.451930][ T4420] team0: Port device netdevsim0 added
[   90.589086][ T4425] loop4: detected capacity change from 0 to 512
[   90.705086][ T4425] EXT4-fs error (device loop4): ext4_orphan_get:1397: inode #15: comm syz.4.253: casefold flag without casefold feature
[   90.772078][ T4425] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: inode #12: comm syz.4.253: missing EA_INODE flag
[   90.817485][ T4425] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.253: error while reading EA inode 12 err=-117
[   90.842739][ T4425] EXT4-fs (loop4): 1 orphan inode deleted
[   90.857957][ T4425] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[   90.880575][   T25] audit: type=1804 audit(1720747663.870:30): pid=4425 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.253" name="/newroot/40/file0/bus" dev="loop4" ino=15 res=1 errno=0
[   91.179825][ T3550] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[   91.599812][ T3550] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   91.629631][   T21] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[   91.636446][ T3550] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[   91.741413][ T3550] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[   91.757200][ T3550] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[   91.788311][ T3550] usb 3-1: SerialNumber: syz
[   93.009081][ T3550] usb 3-1: 0:2 : does not exist
[   93.280126][ T3550] usb 3-1: USB disconnect, device number 3
[   93.581230][ T3497] udevd[3497]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[   93.589791][   T21] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   93.644846][   T21] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   93.656337][   T21] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[   93.670100][   T21] usb 5-1: New USB device found, idVendor=04d9, idProduct=a070, bcdDevice= 0.00
[   93.679138][   T21] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   93.691916][   T21] usb 5-1: config 0 descriptor??
[   93.819837][ T4462] netlink: 24 bytes leftover after parsing attributes in process `syz.1.265'.
[   94.052257][   T25] audit: type=1326 audit(1720747667.040:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4466 comm="syz.0.268" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f421b29abd9 code=0x0
[   94.143370][ T4470] loop2: detected capacity change from 0 to 512
[   94.210897][ T4470] EXT4-fs error (device loop2): ext4_orphan_get:1397: inode #15: comm syz.2.269: casefold flag without casefold feature
[   94.232046][   T21] holtek_mouse 0003:04D9:A070.0002: unknown global tag 0xd
[   94.249461][   T21] holtek_mouse 0003:04D9:A070.0002: item 0 4 1 13 parsing failed
[   94.257841][   T21] holtek_mouse 0003:04D9:A070.0002: hid parse failed: -22
[   94.265088][   T21] holtek_mouse: probe of 0003:04D9:A070.0002 failed with error -22
[   94.297317][ T4470] EXT4-fs error (device loop2): ext4_xattr_inode_iget:404: inode #12: comm syz.2.269: missing EA_INODE flag
[   94.327655][ T4474] loop1: detected capacity change from 0 to 1024
[   94.374920][ T4470] EXT4-fs error (device loop2): ext4_xattr_inode_iget:409: comm syz.2.269: error while reading EA inode 12 err=-117
[   94.411055][ T4474] EXT4-fs (loop1): Ignoring removed orlov option
[   94.426611][ T4470] EXT4-fs (loop2): 1 orphan inode deleted
[   94.471058][ T4470] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[   94.474978][ T3550] usb 5-1: USB disconnect, device number 4
[   94.535923][ T4474] EXT4-fs (loop1): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000000001000,data_err=abort,barrier=0x0000000000000002,jqfmt=vfsv1,norecovery,max_dir_size_kb=0x00000000000007b1,orlov,bsdgroups,max_batch_time=0x0000000000000400,user_xattr,quota,,errors=continue. Quota mode: writeback.
[   94.560874][   T25] audit: type=1804 audit(1720747667.520:32): pid=4470 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.269" name="/newroot/57/file0/bus" dev="loop2" ino=15 res=1 errno=0
[   95.599659][   T21] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[   95.975433][   T21] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   95.999711][   T21] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[   96.109950][   T21] usb 5-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[   96.132200][   T21] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[   96.159055][ T4485] loop2: detected capacity change from 0 to 40427
[   96.162120][   T21] usb 5-1: SerialNumber: syz
[   96.359930][ T4485] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[   96.388271][ T4485] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[   96.409420][ T4497] loop0: detected capacity change from 0 to 40427
[   96.415638][ T4485] F2FS-fs (loop2): invalid crc value
[   96.601610][   T21] usb 5-1: 0:2 : does not exist
[   96.622104][ T4497] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[   96.654939][ T4497] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[   96.672530][ T4485] F2FS-fs (loop2): Found nat_bits in checkpoint
[   96.776737][ T4497] F2FS-fs (loop0): Found nat_bits in checkpoint
[   96.863960][ T4485] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[   96.888261][ T4485] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[   96.950553][   T21] usb 5-1: USB disconnect, device number 5
[   96.959763][ T4497] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[   96.966924][ T4497] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[   97.109295][ T4518] loop1: detected capacity change from 0 to 512
[   97.512865][ T3497] udevd[3497]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[   97.607583][ T4518] EXT4-fs error (device loop1): ext4_orphan_get:1397: inode #15: comm syz.1.282: casefold flag without casefold feature
[   97.721813][ T3507] F2FS-fs (loop0): invalid namelen(0), ino:0, run fsck to fix.
[   97.721873][ T3507] F2FS-fs (loop0): invalid namelen(0), ino:0, run fsck to fix.
[   97.735847][ T4518] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: inode #12: comm syz.1.282: missing EA_INODE flag
[   97.759927][ T3507] F2FS-fs (loop0): invalid namelen(0), ino:0, run fsck to fix.
[   97.759947][ T3507] F2FS-fs (loop0): invalid namelen(0), ino:0, run fsck to fix.
[   97.767491][ T3507] F2FS-fs (loop0): invalid namelen(0), ino:0, run fsck to fix.
[   97.776376][ T4518] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz.1.282: error while reading EA inode 12 err=-117
[   97.800575][ T3507] F2FS-fs (loop0): invalid namelen(0), ino:0, run fsck to fix.
[   97.800595][ T3507] F2FS-fs (loop0): invalid namelen(0), ino:0, run fsck to fix.
[   97.806749][ T3605] F2FS-fs (loop2): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[   97.808475][ T4518] EXT4-fs (loop1): 1 orphan inode deleted
[   97.826524][ T3605] F2FS-fs (loop2): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[   97.830924][ T4518] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[   97.921508][   T25] audit: type=1804 audit(1720747670.910:33): pid=4518 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.282" name="/newroot/71/file0/bus" dev="loop1" ino=15 res=1 errno=0
[   98.153836][ T4530] loop1: detected capacity change from 0 to 512
[   98.219723][ T4530] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   98.268128][ T4530] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   98.301608][ T4530] EXT4-fs (loop1): 1 truncate cleaned up
[   98.307342][ T4530] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[   98.340911][ T4530] fuse: Unknown parameter 'user_i00000000000000000000'
[   98.559898][   T13] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[   98.585628][ T4547] device batadv_slave_1 entered promiscuous mode
[   98.637998][ T4547] netlink: 28 bytes leftover after parsing attributes in process `syz.2.291'.
[   98.652357][   T25] audit: type=1326 audit(1720747671.640:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4548 comm="syz.0.285" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f421b29abd9 code=0x0
[   98.673998][ T4547] netlink: 8 bytes leftover after parsing attributes in process `syz.2.291'.
[   98.693431][ T4545] device batadv_slave_1 left promiscuous mode
[   98.850602][ T4559] loop2: detected capacity change from 0 to 512
[   98.921420][ T4559] EXT4-fs error (device loop2): ext4_orphan_get:1397: inode #15: comm syz.2.296: casefold flag without casefold feature
[   98.940136][ T4559] EXT4-fs error (device loop2): ext4_xattr_inode_iget:404: inode #12: comm syz.2.296: missing EA_INODE flag
[   98.952623][ T4559] EXT4-fs error (device loop2): ext4_xattr_inode_iget:409: comm syz.2.296: error while reading EA inode 12 err=-117
[   98.965897][   T13] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   98.978092][ T4559] EXT4-fs (loop2): 1 orphan inode deleted
[   98.984234][   T13] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   98.999834][ T4559] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[   99.017057][   T13] usb 5-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[   99.029645][ T1065] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[   99.050868][   T25] audit: type=1804 audit(1720747672.040:35): pid=4559 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.296" name="/newroot/63/file0/bus" dev="loop2" ino=18 res=1 errno=0
[   99.053301][   T13] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   99.097040][   T13] usb 5-1: config 0 descriptor??
[   99.389728][ T1065] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   99.406348][ T1065] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[   99.489864][ T1065] usb 2-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[   99.503773][ T1065] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[   99.539655][ T1065] usb 2-1: SerialNumber: syz
[   99.568008][ T4568] loop0: detected capacity change from 0 to 512
[   99.603490][ T4568] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   99.652375][ T4568] EXT4-fs (loop0): 1 truncate cleaned up
[   99.658273][ T4568] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[   99.706597][ T4568] fuse: Unknown parameter 'user_i00000000000000000000'
[  100.160527][   T13] usb 5-1: string descriptor 0 read error: -71
[  100.218866][   T13] uclogic 0003:256C:006D.0003: failed retrieving string descriptor #200: -71
[  100.358813][ T4579] netlink: 'syz.0.302': attribute type 33 has an invalid length.
[  100.428210][   T13] uclogic 0003:256C:006D.0003: failed retrieving pen parameters: -71
[  100.523048][ T4579] netlink: 152 bytes leftover after parsing attributes in process `syz.0.302'.
[  100.539308][ T1065] usb 2-1: 0:2 : does not exist
[  100.564772][   T13] uclogic 0003:256C:006D.0003: failed probing pen v2 parameters: -71
[  100.607989][   T13] uclogic 0003:256C:006D.0003: failed probing parameters: -71
[  100.625930][ T4585] device batadv_slave_1 entered promiscuous mode
[  100.646135][   T13] uclogic: probe of 0003:256C:006D.0003 failed with error -71
[  100.669106][ T4585] netlink: 28 bytes leftover after parsing attributes in process `syz.1.304'.
[  100.721075][ T4585] netlink: 8 bytes leftover after parsing attributes in process `syz.1.304'.
[  100.722688][   T13] usb 5-1: USB disconnect, device number 6
[  100.737436][ T1065] usb 2-1: USB disconnect, device number 3
[  101.056788][ T4589] loop4: detected capacity change from 0 to 512
[  101.267068][ T4584] device batadv_slave_1 left promiscuous mode
[  101.428144][ T4589] EXT4-fs error (device loop4): ext4_orphan_get:1397: inode #15: comm syz.4.307: casefold flag without casefold feature
[  101.481485][ T3497] udevd[3497]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  101.540071][ T4589] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: inode #12: comm syz.4.307: missing EA_INODE flag
[  101.559155][ T4601] loop2: detected capacity change from 0 to 512
[  101.576679][   T25] audit: type=1326 audit(1720747674.560:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4602 comm="syz.1.311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5eb6b9bd9 code=0x7ffc0000
[  101.600030][ T4589] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.307: error while reading EA inode 12 err=-117
[  101.625857][ T4589] EXT4-fs (loop4): 1 orphan inode deleted
[  101.633432][ T4589] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  101.650854][ T4601] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  101.670035][   T25] audit: type=1326 audit(1720747674.600:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4602 comm="syz.1.311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7fa5eb6b9bd9 code=0x7ffc0000
[  101.705547][   T25] audit: type=1326 audit(1720747674.600:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4602 comm="syz.1.311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fa5eb6b9c13 code=0x7ffc0000
[  101.743462][   T25] audit: type=1326 audit(1720747674.600:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4602 comm="syz.1.311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fa5eb6b9c13 code=0x7ffc0000
[  101.745894][ T4601] EXT4-fs (loop2): 1 truncate cleaned up
[  101.767727][   T25] audit: type=1326 audit(1720747674.600:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4602 comm="syz.1.311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5eb6b9bd9 code=0x7ffc0000
[  101.789755][ T3546] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  101.793998][   T25] audit: type=1326 audit(1720747674.600:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4602 comm="syz.1.311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=426 compat=0 ip=0x7fa5eb6b9bd9 code=0x7ffc0000
[  101.823147][   T25] audit: type=1326 audit(1720747674.600:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4602 comm="syz.1.311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5eb6b9bd9 code=0x7ffc0000
[  101.847155][ T4601] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  101.864537][ T4601] fuse: Unknown parameter 'user_i00000000000000000000'
[  102.189751][ T3546] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  102.210877][ T3546] usb 4-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  102.229601][ T3546] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  102.251155][ T3546] usb 4-1: config 0 descriptor??
[  102.501423][   T13] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  103.000289][   T13] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  103.059738][   T13] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  103.219878][   T13] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  103.239750][   T13] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  103.279821][ T3546] usbhid 4-1:0.0: can't add hid device: -71
[  103.285819][ T3546] usbhid: probe of 4-1:0.0 failed with error -71
[  103.288396][   T13] usb 3-1: SerialNumber: syz
[  103.318418][ T3546] usb 4-1: USB disconnect, device number 3
[  103.365397][ T4623] netlink: 132 bytes leftover after parsing attributes in process `syz.0.318'.
[  103.454175][ T4625] syz.0.319 uses obsolete (PF_INET,SOCK_PACKET)
[  103.612337][   T13] usb 3-1: 0:2 : does not exist
[  103.702954][ T4621] loop4: detected capacity change from 0 to 40427
[  103.766553][ T4621] F2FS-fs (loop4): Invalid Fs Meta Ino: node(1) meta(262146) root(3)
[  103.789705][ T4621] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock
[  103.800882][ T4631] device batadv_slave_1 entered promiscuous mode
[  103.818044][ T4621] F2FS-fs (loop4): Found nat_bits in checkpoint
[  103.846680][ T4631] netlink: 28 bytes leftover after parsing attributes in process `syz.3.322'.
[  103.872847][ T4631] netlink: 8 bytes leftover after parsing attributes in process `syz.3.322'.
[  103.887303][   T13] usb 3-1: USB disconnect, device number 4
[  103.916432][ T4621] F2FS-fs (loop4): Try to recover 2th superblock, ret: 0
[  103.925961][ T4621] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  103.939086][ T3497] udevd[3497]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  103.948546][ T4630] device batadv_slave_1 left promiscuous mode
[  103.971541][   T25] kauditd_printk_skb: 2 callbacks suppressed
[  103.971554][   T25] audit: type=1804 audit(1720747676.950:45): pid=4621 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.317" name="/newroot/50/file2/bus" dev="loop4" ino=10 res=1 errno=0
[  104.043189][   T25] audit: type=1804 audit(1720747677.000:46): pid=4621 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.317" name="/newroot/50/file2/bus" dev="loop4" ino=10 res=1 errno=0
[  104.075572][ T4639] loop3: detected capacity change from 0 to 512
[  104.086838][   T25] audit: type=1804 audit(1720747677.070:47): pid=4640 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.317" name="/newroot/50/file2/bus" dev="loop4" ino=10 res=1 errno=0
[  104.132959][ T3514] attempt to access beyond end of device
[  104.132959][ T3514] loop4: rw=2049, want=45104, limit=40427
[  104.155293][ T4639] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  104.177743][ T4639] EXT4-fs (loop3): 1 truncate cleaned up
[  104.202242][ T4639] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  104.309525][ T4639] fuse: Unknown parameter 'user_id00000000000000000000'
[  104.454880][ T4606] loop1: detected capacity change from 0 to 131072
[  104.526739][ T4651] tun0: tun_chr_ioctl cmd 1074025680
[  104.545891][ T4606] F2FS-fs (loop1): Invalid log blocks per segment (1)
[  104.554013][ T4606] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  104.581392][ T4606] F2FS-fs (loop1): invalid crc value
[  104.603503][ T4606] F2FS-fs (loop1): Found nat_bits in checkpoint
[  104.767605][ T4663] loop4: detected capacity change from 0 to 512
[  104.931860][   T21] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  105.009744][ T4663] EXT4-fs error (device loop4): ext4_orphan_get:1397: inode #15: comm syz.4.325: casefold flag without casefold feature
[  105.309856][   T21] usb 3-1: config 0 has an invalid interface number: 154 but max is 0
[  105.339435][ T4663] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: inode #12: comm syz.4.325: missing EA_INODE flag
[  105.394107][   T21] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  105.578549][ T4663] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.325: error while reading EA inode 12 err=-117
[  105.578630][   T21] usb 3-1: config 0 has no interface number 0
[  105.600658][   T21] usb 3-1: New USB device found, idVendor=413c, idProduct=8196, bcdDevice=1f.e0
[  105.633717][ T4663] EXT4-fs (loop4): 1 orphan inode deleted
[  105.639476][ T4663] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  105.659595][   T21] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  105.697323][   T21] usb 3-1: config 0 descriptor??
[  105.750777][   T21] qmi_wwan 3-1:0.154: bogus CDC Union: master=0, slave=0
[  105.760231][   T21] qmi_wwan: probe of 3-1:0.154 failed with error -22
[  105.797833][   T25] audit: type=1804 audit(1720747678.780:48): pid=4663 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.325" name="/newroot/51/file0/bus" dev="loop4" ino=15 res=1 errno=0
[  105.955490][ T3560] usb 3-1: USB disconnect, device number 5
[  105.994198][ T4668] loop3: detected capacity change from 0 to 40427
[  106.049980][ T4668] F2FS-fs (loop3): Invalid Fs Meta Ino: node(1) meta(262146) root(3)
[  106.067524][ T4668] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock
[  106.091183][   T21] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  106.140724][ T4668] F2FS-fs (loop3): Found nat_bits in checkpoint
[  106.217924][ T4668] F2FS-fs (loop3): Try to recover 2th superblock, ret: 0
[  106.235081][ T4668] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  106.314920][   T25] audit: type=1804 audit(1720747679.300:49): pid=4668 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.335" name="/newroot/67/file2/bus" dev="loop3" ino=10 res=1 errno=0
[  106.446614][ T4689] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  106.481939][   T25] audit: type=1804 audit(1720747679.330:50): pid=4668 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.335" name="/newroot/67/file2/bus" dev="loop3" ino=10 res=1 errno=0
[  106.570374][   T21] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  106.621141][ T4696] netlink: 16 bytes leftover after parsing attributes in process `syz.1.342'.
[  106.663320][   T21] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  106.705594][   T25] audit: type=1804 audit(1720747679.500:51): pid=4692 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.335" name="/newroot/67/file2/bus" dev="loop3" ino=10 res=1 errno=0
[  106.926690][   T21] usb 1-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  107.128504][   T21] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  107.137869][   T21] usb 1-1: SerialNumber: syz
[  107.219910][ T3515] attempt to access beyond end of device
[  107.219910][ T3515] loop3: rw=2049, want=45104, limit=40427
[  107.458476][ T4706] loop1: detected capacity change from 0 to 512
[  107.463842][   T21] usb 1-1: 0:2 : does not exist
[  107.543423][ T4706] EXT4-fs error (device loop1): ext4_orphan_get:1397: inode #15: comm syz.1.348: casefold flag without casefold feature
[  107.585188][ T4706] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: inode #12: comm syz.1.348: missing EA_INODE flag
[  107.617113][ T4706] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz.1.348: error while reading EA inode 12 err=-117
[  107.648516][ T4706] EXT4-fs (loop1): 1 orphan inode deleted
[  107.667987][ T4706] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  107.709027][   T21] usb 1-1: USB disconnect, device number 5
[  107.724673][   T25] audit: type=1804 audit(1720747680.710:52): pid=4706 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.348" name="/newroot/86/file0/bus" dev="loop1" ino=15 res=1 errno=0
[  107.976000][ T4713] netlink: 24 bytes leftover after parsing attributes in process `syz.3.344'.
[  108.161816][ T3497] udevd[3497]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  108.278492][ T4720] loop1: detected capacity change from 0 to 512
[  108.323014][ T4720] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  108.354174][ T4720] EXT4-fs (loop1): 1 truncate cleaned up
[  108.364005][ T4720] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  108.516914][ T4720] fuse: Unknown parameter 'user_id00000000000000000000'
[  108.647113][ T4734] overlayfs: unrecognized mount option "smackfsroot=#!*" or missing value
[  109.970185][ T4751] netlink: 24 bytes leftover after parsing attributes in process `syz.1.363'.
[  110.189859][ T1281] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  110.450182][ T4760] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  110.459612][ T1281] usb 5-1: Using ep0 maxpacket: 8
[  110.512777][ T4763] device vlan1 entered promiscuous mode
[  110.523169][ T4763] netlink: 12 bytes leftover after parsing attributes in process `syz.2.368'.
[  110.565960][ T4763] device vlan1 left promiscuous mode
[  110.614690][ T4767] loop0: detected capacity change from 0 to 512
[  110.629901][ T1281] usb 5-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[  110.650692][ T1281] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  110.675178][ T1281] usb 5-1: config 0 descriptor??
[  110.678203][ T4769] loop2: detected capacity change from 0 to 512
[  110.693765][ T4733] loop3: detected capacity change from 0 to 40427
[  110.736395][ T4769] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  110.749921][ T4733] F2FS-fs (loop3): Invalid Fs Meta Ino: node(1) meta(262146) root(3)
[  110.758232][ T4733] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock
[  110.779104][ T4769] EXT4-fs (loop2): 1 truncate cleaned up
[  110.785003][ T4769] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  110.785085][ T4767] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  110.801227][ T4769] fuse: Bad value for 'fd'
[  110.819881][ T4767] ext4 filesystem being mounted at /70/file0 supports timestamps until 2038 (0x7fffffff)
[  110.875632][ T4733] F2FS-fs (loop3): Found nat_bits in checkpoint
[  110.938298][ T4733] F2FS-fs (loop3): Try to recover 2th superblock, ret: 0
[  110.954077][ T4733] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  110.994322][   T25] audit: type=1804 audit(1720747683.980:53): pid=4733 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.355" name="/newroot/70/file2/bus" dev="loop3" ino=10 res=1 errno=0
[  111.025067][   T25] audit: type=1804 audit(1720747683.980:54): pid=4733 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.355" name="/newroot/70/file2/bus" dev="loop3" ino=10 res=1 errno=0
[  111.062030][   T25] audit: type=1804 audit(1720747684.050:55): pid=4783 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.355" name="/newroot/70/file2/bus" dev="loop3" ino=10 res=1 errno=0
[  111.159352][ T3515] attempt to access beyond end of device
[  111.159352][ T3515] loop3: rw=2049, want=45104, limit=40427
[  111.264786][   T21] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  111.316260][ T4793] netlink: 12 bytes leftover after parsing attributes in process `syz.1.377'.
[  111.519765][   T21] usb 1-1: Using ep0 maxpacket: 8
[  111.542241][ T4803] loop1: detected capacity change from 0 to 512
[  111.628364][ T4803] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  111.640352][   T21] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  111.651239][   T21] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 2
[  111.660884][   T21] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10
[  111.663830][ T4803] EXT4-fs (loop1): 1 truncate cleaned up
[  111.678534][ T4803] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  111.679825][   T21] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024
[  111.700363][   T21] usb 1-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  111.709393][   T21] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  111.740880][ T4803] fuse: Bad value for 'fd'
[  111.761253][   T21] hub 1-1:1.0: bad descriptor, ignoring hub
[  111.767707][   T21] hub: probe of 1-1:1.0 failed with error -5
[  111.774442][   T21] cdc_wdm 1-1:1.0: skipping garbage
[  111.783045][   T21] cdc_wdm 1-1:1.0: skipping garbage
[  111.796769][   T21] cdc_wdm 1-1:1.0: cdc-wdm0: USB WDM device
[  111.797580][ T4809] loop3: detected capacity change from 0 to 512
[  111.803058][   T21] cdc_wdm 1-1:1.0: Unknown control protocol
[  111.819858][ T1281] asix 5-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[  111.836425][ T1281] asix: probe of 5-1:0.0 failed with error -71
[  111.851351][ T1281] usb 5-1: USB disconnect, device number 7
[  111.954645][ T4809] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  111.978985][ T4809] ext4 filesystem being mounted at /73/file0 supports timestamps until 2038 (0x7fffffff)
[  112.246613][ T4832] loop1: detected capacity change from 0 to 1024
[  112.292786][ T4832] netlink: 'syz.1.390': attribute type 4 has an invalid length.
[  112.349849][   T21] usb 1-1: USB disconnect, device number 6
[  112.700811][ T4846] loop4: detected capacity change from 0 to 512
[  112.741082][ T4846] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  112.805619][ T4846] EXT4-fs (loop4): 1 truncate cleaned up
[  112.817436][ T4851] loop1: detected capacity change from 0 to 512
[  112.822556][ T4846] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  112.843679][ T4830] loop2: detected capacity change from 0 to 40427
[  112.870028][ T4846] fuse: Bad value for 'fd'
[  112.923358][ T4830] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  112.931419][ T4830] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  112.952620][ T4830] F2FS-fs (loop2): invalid crc value
[  112.958664][ T4828] loop3: detected capacity change from 0 to 40427
[  112.977290][ T4830] F2FS-fs (loop2): Found nat_bits in checkpoint
[  112.980070][ T4851] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  113.015633][ T4851] ext4 filesystem being mounted at /108/file0 supports timestamps until 2038 (0x7fffffff)
[  113.026107][ T4828] F2FS-fs (loop3): Invalid Fs Meta Ino: node(1) meta(262146) root(3)
[  113.034468][ T4828] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock
[  113.039757][ T4862] netlink: 'syz.4.399': attribute type 1 has an invalid length.
[  113.094681][ T4862] netlink: 76 bytes leftover after parsing attributes in process `syz.4.399'.
[  113.126700][ T4864] netlink: 68 bytes leftover after parsing attributes in process `syz.0.400'.
[  113.771206][ T4830] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  113.789702][ T4830] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  113.812030][ T4828] F2FS-fs (loop3): Found nat_bits in checkpoint
[  114.716657][ T4828] F2FS-fs (loop3): Try to recover 2th superblock, ret: 0
[  114.760853][ T4828] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  114.792028][ T4830] attempt to access beyond end of device
[  114.792028][ T4830] loop2: rw=2049, want=78272, limit=40427
[  114.841999][   T25] audit: type=1804 audit(1720747687.830:56): pid=4828 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.387" name="/newroot/74/file2/bus" dev="loop3" ino=10 res=1 errno=0
[  114.925903][   T25] audit: type=1804 audit(1720747687.860:57): pid=4828 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.387" name="/newroot/74/file2/bus" dev="loop3" ino=10 res=1 errno=0
[  114.980798][  T599] F2FS-fs (loop2): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  114.989537][ T4895] loop4: detected capacity change from 0 to 512
[  115.005031][   T25] audit: type=1804 audit(1720747687.940:58): pid=4894 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.387" name="/newroot/74/file2/bus" dev="loop3" ino=10 res=1 errno=0
[  115.012919][  T599] F2FS-fs (loop2): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  115.045532][ T4895] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  115.056136][ T3515] attempt to access beyond end of device
[  115.056136][ T3515] loop3: rw=2049, want=45104, limit=40427
[  115.104848][ T4895] EXT4-fs (loop4): 1 truncate cleaned up
[  115.137630][ T4895] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  115.175394][ T4895] fuse: Bad value for 'fd'
[  115.206330][ T4906] syzkaller0: tun_chr_ioctl cmd 2148553947
[  115.826433][ T4932] loop2: detected capacity change from 0 to 512
[  115.925141][ T4932] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  115.959196][ T4932] ext4 filesystem being mounted at /79/file0 supports timestamps until 2038 (0x7fffffff)
[  116.047991][ T4921] loop1: detected capacity change from 0 to 40427
[  116.112154][ T4921] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  116.120268][ T4921] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  116.151362][ T4921] F2FS-fs (loop1): invalid crc value
[  116.182926][ T4921] F2FS-fs (loop1): Found nat_bits in checkpoint
[  116.242458][ T4925] loop4: detected capacity change from 0 to 40427
[  116.279883][ T4942] loop0: detected capacity change from 0 to 512
[  116.288483][ T4921] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  116.295648][ T4921] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  116.319734][ T4925] F2FS-fs (loop4): Invalid Fs Meta Ino: node(1) meta(262146) root(3)
[  116.326758][ T4942] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  116.343197][ T4925] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock
[  116.366509][ T4942] EXT4-fs (loop0): 1 truncate cleaned up
[  116.372617][ T4942] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  116.412204][ T4942] fuse: Bad value for 'fd'
[  116.418377][ T4925] F2FS-fs (loop4): Found nat_bits in checkpoint
[  116.493446][ T4921] attempt to access beyond end of device
[  116.493446][ T4921] loop1: rw=2049, want=78024, limit=40427
[  116.500675][ T4925] F2FS-fs (loop4): Try to recover 2th superblock, ret: 0
[  116.525589][ T4925] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  116.602360][   T25] audit: type=1804 audit(1720747689.590:59): pid=4925 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.424" name="/newroot/69/file2/bus" dev="loop4" ino=10 res=1 errno=0
[  116.613254][ T4956] netlink: 104 bytes leftover after parsing attributes in process `syz.0.430'.
[  116.654006][   T25] audit: type=1804 audit(1720747689.630:60): pid=4925 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.424" name="/newroot/69/file2/bus" dev="loop4" ino=10 res=1 errno=0
[  116.678818][  T599] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  116.707181][   T25] audit: type=1804 audit(1720747689.690:61): pid=4960 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.424" name="/newroot/69/file2/bus" dev="loop4" ino=10 res=1 errno=0
[  116.710870][ T4958] syzkaller0: tun_chr_ioctl cmd 2148553947
[  116.730551][  T599] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  116.800653][ T3514] attempt to access beyond end of device
[  116.800653][ T3514] loop4: rw=2049, want=45104, limit=40427
[  116.868125][ T4965] loop0: detected capacity change from 0 to 512
[  116.920886][  T599] attempt to access beyond end of device
[  116.920886][  T599] loop1: rw=1, want=45104, limit=40427
[  116.998853][ T4965] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  117.015056][ T4971] loop3: detected capacity change from 0 to 512
[  117.028359][ T4965] ext4 filesystem being mounted at /82/file0 supports timestamps until 2038 (0x7fffffff)
[  117.086450][ T4971] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  117.229373][ T4971] EXT4-fs (loop3): 1 truncate cleaned up
[  117.250170][ T4971] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  117.278805][ T4971] fuse: Bad value for 'fd'
[  117.733499][ T4996] netlink: 52 bytes leftover after parsing attributes in process `syz.4.443'.
[  118.374701][ T5004] loop4: detected capacity change from 0 to 512
[  118.383300][ T4999] loop3: detected capacity change from 0 to 2048
[  118.384953][ T5000] syzkaller0: tun_chr_ioctl cmd 2148553947
[  118.401907][ T5006] loop2: detected capacity change from 0 to 512
[  118.444226][ T5008] loop1: detected capacity change from 0 to 2048
[  118.459843][ T5004] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  118.470142][ T4999] EXT4-fs (loop3): Unrecognized mount option "sync" or missing value
[  118.488630][ T5004] EXT4-fs (loop4): 1 truncate cleaned up
[  118.496044][ T5004] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  118.496227][ T3497]  loop1: p2 < >
[  118.521043][ T5004] fuse: Unknown parameter '0x0000000000000004'
[  118.541648][ T5006] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  118.589943][ T5006] ext4 filesystem being mounted at /83/file0 supports timestamps until 2038 (0x7fffffff)
[  118.626726][ T5008]  loop1: p2 < >
[  118.769818][   T25] audit: type=1326 audit(1720747691.750:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5022 comm="syz.3.456" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f80e2fb6bd9 code=0x0
[  118.837078][ T2966]  loop1: p2 < >
[  118.876254][   T25] audit: type=1326 audit(1720747691.860:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5007 comm="syz.1.451" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa5eb6b9bd9 code=0x0
[  119.096659][ T5040] syzkaller0: tun_chr_ioctl cmd 2148553947
[  119.136497][ T5042] loop2: detected capacity change from 0 to 512
[  119.232641][ T5042] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  119.258421][ T5042] EXT4-fs (loop2): 1 truncate cleaned up
[  119.264657][ T5042] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  119.295550][ T5042] fuse: Unknown parameter '0x0000000000000004'
[  119.310656][   T25] audit: type=1326 audit(1720747692.300:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5045 comm="syz.0.465" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f421b29abd9 code=0x0
[  119.336794][ T2966]  loop1: p1 p2 < p5 p6 p7 p8 p9 p10 p11 p12 p13 p14 p15 p16 p17 p18 p19 p20 p21 p22 p23 p24 p25 p26 p27 p28 p29 p30 p31 p32 p33 p34 p35 p36 p37 p38 p39 p40 p41 p42 p43 p44 p45 p46 p47 p48 p49 p50 p51 p52 p53 p54 p55 p56 p57 p58 p59 p60 p61 p62 p63 p64 p65 p66 p67 p68 p69 p70 p71 p72 p73 p74 p75 p76 p77 p78 p79 p80 p81 p82 p83 p84 p85 p86 p87 p88 p89 p90 p91 p92 p93 p94 p95 p96 p97 p98 p99 p100 p101 p102 p103 p104 p105 p106 p107 p108 p109 p110 p111 p112 p113 p114 p115 p116 p117 p118 p119 p120 p121 p122 p123 p124 p125 p126 p127 p128 p129 p130 p131 p132 p133 p134 p135 p136 p137 p138 p139 p140 p141 p142 p143 p144 p145 p146 p147 p148 p149 p150 p151 p152 p153 p154 p155 p156 p157 p158 p159 p160 p161 p162 p163 p164 p165 p166 p167 p168 p169 p170 p171 p172 p173 p174 p175 p176 p177 p178 p179 p180 p181 p182 p183 p184 p185 p186 p187 p188 p189 p190 p191 p192 p193 p194 p195 p196 p197 p198 p199 p200 p201 p202 p203 p204 p205 p206 p207 p208 p209 p210 p211 p212 p213 p214 p215 p2
[  119.336977][ T2966] loop1: p1 start 12585217 is beyond EOD, truncated
[  119.437564][ T2966] loop1: p5 start 12585217 is beyond EOD, truncated
[  119.446658][ T2966] loop1: p6 start 12585217 is beyond EOD, truncated
[  119.453321][ T2966] loop1: p7 start 12585217 is beyond EOD, truncated
[  119.459937][ T2966] loop1: p8 start 12585217 is beyond EOD, truncated
[  119.466529][ T2966] loop1: p9 start 12585217 is beyond EOD, truncated
[  119.473157][ T2966] loop1: p10 start 12585217 is beyond EOD, truncated
[  119.479901][ T2966] loop1: p11 start 12585217 is beyond EOD, truncated
[  119.486574][ T2966] loop1: p12 start 12585217 is beyond EOD, truncated
[  119.493288][ T2966] loop1: p13 start 12585217 is beyond EOD, truncated
[  119.500005][ T2966] loop1: p14 start 12585217 is beyond EOD, truncated
[  119.506678][ T2966] loop1: p15 start 12585217 is beyond EOD, truncated
[  119.513374][ T2966] loop1: p16 start 12585217 is beyond EOD, truncated
[  119.520107][ T2966] loop1: p17 start 12585217 is beyond EOD, truncated
[  119.526782][ T2966] loop1: p18 start 12585217 is beyond EOD, truncated
[  119.533505][ T2966] loop1: p19 start 12585217 is beyond EOD, truncated
[  119.540300][ T2966] loop1: p20 start 12585217 is beyond EOD, truncated
[  119.547380][ T2966] loop1: p21 start 12585217 is beyond EOD, truncated
[  119.555745][ T2966] loop1: p22 start 12585217 is beyond EOD, truncated
[  119.562466][ T2966] loop1: p23 start 12585217 is beyond EOD, truncated
[  119.569137][ T2966] loop1: p24 start 12585217 is beyond EOD, truncated
[  119.592435][ T2966] loop1: p25 start 12585217 is beyond EOD, truncated
[  119.600067][ T2966] loop1: p26 start 12585217 is beyond EOD, truncated
[  119.607086][ T2966] loop1: p27 start 12585217 is beyond EOD, truncated
[  119.616625][ T2966] loop1: p28 start 12585217 is beyond EOD, truncated
[  119.619142][ T5057] loop3: detected capacity change from 0 to 512
[  119.623583][ T2966] loop1: p29 start 12585217 is beyond EOD, truncated
[  119.644233][ T2966] loop1: p30 start 12585217 is beyond EOD, truncated
[  119.660657][ T5059] loop2: detected capacity change from 0 to 1024
[  119.667066][ T2966] loop1: p31 start 12585217 is beyond EOD, truncated
[  119.679444][ T2966] loop1: p32 start 12585217 is beyond EOD, truncated
[  119.686243][ T2966] loop1: p33 start 12585217 is beyond EOD, truncated
[  119.693408][ T2966] loop1: p34 start 12585217 is beyond EOD, truncated
[  119.697395][ T5057] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  119.700126][ T2966] loop1: p35 start 12585217 is beyond EOD, truncated
[  119.700147][ T2966] loop1: p36 start 12585217 is beyond EOD, 
[  119.717749][ T5057] ext4 filesystem being mounted at /86/file0 supports timestamps until 2038 (0x7fffffff)
[  119.718156][ T2966] truncated
[  119.768163][ T2966] loop1: p37 start 12585217 is beyond EOD, truncated
[  119.802417][ T2966] loop1: p38 start 12585217 is beyond EOD, truncated
[  119.815171][ T2966] loop1: p39 start 12585217 is beyond EOD, truncated
[  119.837939][ T2966] loop1: p40 start 12585217 is beyond EOD, truncated
[  119.846273][ T2966] loop1: p41 start 12585217 is beyond EOD, truncated
[  119.851053][ T5059] EXT4-fs (loop2): mounted filesystem without journal. Opts: jqfmt=vfsv1,bsddf,barrier=0x0000000000000000,nodiscard,debug_want_extra_isize=0x0000000000000080,resuid=0x0000000000000000,user_xattr,acl,errors=continue,,errors=continue. Quota mode: none.
[  119.853432][ T2966] loop1: p42 start 12585217 is beyond EOD, truncated
[  119.884526][ T2966] loop1: p43 start 12585217 is beyond EOD, truncated
[  119.891426][ T2966] loop1: p44 start 12585217 is beyond EOD, truncated
[  119.898240][ T2966] loop1: p45 start 12585217 is beyond EOD, truncated
[  119.907172][ T2966] loop1: p46 start 12585217 is beyond EOD, truncated
[  119.914643][ T2966] loop1: p47 start 12585217 is beyond EOD, truncated
[  119.921522][ T2966] loop1: p48 start 12585217 is beyond EOD, truncated
[  119.928205][ T2966] loop1: p49 start 12585217 is beyond EOD, truncated
[  119.935117][ T2966] loop1: p50 start 12585217 is beyond EOD, truncated
[  119.942001][ T2966] loop1: p51 start 12585217 is beyond EOD, truncated
[  119.949043][ T2966] loop1: p52 start 12585217 is beyond EOD, truncated
[  119.956014][ T2966] loop1: p53 start 12585217 is beyond EOD, truncated
[  119.963991][ T2966] loop1: p54 start 12585217 is beyond EOD, truncated
[  119.972798][ T2966] loop1: p55 start 12585217 is beyond EOD, truncated
[  119.972819][ T2966] loop1: p56 start 12585217 is beyond EOD, truncated
[  119.972834][ T2966] loop1: p57 start 12585217 is beyond EOD, truncated
[  119.972849][ T2966] loop1: p58 start 12585217 is beyond EOD, truncated
[  119.972864][ T2966] loop1: p59 start 12585217 is beyond EOD, truncated
[  119.972879][ T2966] loop1: p60 start 12585217 is beyond EOD, truncated
[  119.972893][ T2966] loop1: p61 start 12585217 is beyond EOD, truncated
[  119.972908][ T2966] loop1: p62 start 12585217 is beyond EOD, truncated
[  119.972922][ T2966] loop1: p63 start 12585217 is beyond EOD, truncated
[  119.972936][ T2966] loop1: p64 start 12585217 is beyond EOD, truncated
[  119.972952][ T2966] loop1: p65 start 12585217 is beyond EOD, truncated
[  119.972967][ T2966] loop1: p66 start 12585217 is beyond EOD, truncated
[  119.973044][ T2966] loop1: p67 start 12585217 is beyond EOD, truncated
[  119.973062][ T2966] loop1: p68 start 12585217 is beyond EOD, truncated
[  119.973077][ T2966] loop1: p69 start 12585217 is beyond EOD, truncated
[  119.973093][ T2966] loop1: p70 start 12585217 is beyond EOD, truncated
[  119.973109][ T2966] loop1: p71 start 12585217 is beyond EOD, truncated
[  119.973124][ T2966] loop1: p72 start 12585217 is beyond EOD, truncated
[  119.973140][ T2966] loop1: p73 start 12585217 is beyond EOD, truncated
[  119.973156][ T2966] loop1: p74 start 12585217 is beyond EOD, truncated
[  119.973171][ T2966] loop1: p75 start 12585217 is beyond EOD, truncated
[  119.973185][ T2966] loop1: p76 start 12585217 is beyond EOD, truncated
[  119.973200][ T2966] loop1: p77 start 12585217 is beyond EOD, truncated
[  119.973215][ T2966] loop1: p78 start 12585217 is beyond EOD, truncated
[  119.973230][ T2966] loop1: p79 start 12585217 is beyond EOD, truncated
[  119.973245][ T2966] loop1: p80 start 12585217 is beyond EOD, truncated
[  119.973261][ T2966] loop1: p81 start 12585217 is beyond EOD, truncated
[  119.973276][ T2966] loop1: p82 start 12585217 is beyond EOD, truncated
[  119.973292][ T2966] loop1: p83 start 12585217 is beyond EOD, truncated
[  119.973307][ T2966] loop1: p84 start 12585217 is beyond EOD, truncated
[  119.973323][ T2966] loop1: p85 start 12585217 is beyond EOD, truncated
[  119.973338][ T2966] loop1: p86 start 12585217 is beyond EOD, truncated
[  119.973354][ T2966] loop1: p87 start 12585217 is beyond EOD, truncated
[  119.973370][ T2966] loop1: p88 start 12585217 is beyond EOD, truncated
[  119.973385][ T2966] loop1: p89 start 12585217 is beyond EOD, truncated
[  119.973401][ T2966] loop1: p90 start 12585217 is beyond EOD, truncated
[  119.973416][ T2966] loop1: p91 start 12585217 is beyond EOD, truncated
[  119.973432][ T2966] loop1: p92 start 12585217 is beyond EOD, truncated
[  119.973447][ T2966] loop1: p93 start 12585217 is beyond EOD, truncated
[  119.973462][ T2966] loop1: p94 start 12585217 is beyond EOD, truncated
[  119.973478][ T2966] loop1: p95 start 12585217 is beyond EOD, truncated
[  119.973493][ T2966] loop1: p96 start 12585217 is beyond EOD, truncated
[  119.973509][ T2966] loop1: p97 start 12585217 is beyond EOD, truncated
[  119.973524][ T2966] loop1: p98 start 12585217 is beyond EOD, truncated
[  119.973538][ T2966] loop1: p99 start 12585217 is beyond EOD, truncated
[  119.973553][ T2966] loop1: p100 start 12585217 is beyond EOD, truncated
[  119.973568][ T2966] loop1: p101 start 12585217 is beyond EOD, truncated
[  119.973584][ T2966] loop1: p102 start 12585217 is beyond EOD, truncated
[  119.973600][ T2966] loop1: p103 start 12585217 is beyond EOD, truncated
[  119.973615][ T2966] loop1: p104 start 12585217 is beyond EOD, truncated
[  119.973631][ T2966] loop1: p105 start 12585217 is beyond EOD, truncated
[  119.973647][ T2966] loop1: p106 start 12585217 is beyond EOD, truncated
[  119.973662][ T2966] loop1: p107 start 12585217 is beyond EOD, truncated
[  119.973678][ T2966] loop1: p108 start 12585217 is beyond EOD, truncated
[  119.973693][ T2966] loop1: p109 start 12585217 is beyond EOD, truncated
[  119.973709][ T2966] loop1: p110 start 12585217 is beyond EOD, truncated
[  119.973724][ T2966] loop1: p111 start 12585217 is beyond EOD, truncated
[  119.973740][ T2966] loop1: p112 start 12585217 is beyond EOD, truncated
[  119.973755][ T2966] loop1: p113 start 12585217 is beyond EOD, truncated
[  119.973771][ T2966] loop1: p114 start 12585217 is beyond EOD, truncated
[  119.973793][ T2966] loop1: p115 start 12585217 is beyond EOD, truncated
[  119.973808][ T2966] loop1: p116 start 12585217 is beyond EOD, truncated
[  119.973824][ T2966] loop1: p117 start 12585217 is beyond EOD, truncated
[  119.973839][ T2966] loop1: p118 start 12585217 is beyond EOD, truncated
[  119.973854][ T2966] loop1: p119 start 12585217 is beyond EOD, truncated
[  119.973869][ T2966] loop1: p120 start 12585217 is beyond EOD, truncated
[  119.973883][ T2966] loop1: p121 start 12585217 is beyond EOD, truncated
[  119.973898][ T2966] loop1: p122 start 12585217 is beyond EOD, truncated
[  119.973913][ T2966] loop1: p123 start 12585217 is beyond EOD, truncated
[  119.973928][ T2966] loop1: p124 start 12585217 is beyond EOD, truncated
[  119.973942][ T2966] loop1: p125 start 12585217 is beyond EOD, truncated
[  119.973957][ T2966] loop1: p126 start 12585217 is beyond EOD, truncated
[  119.973972][ T2966] loop1: p127 start 12585217 is beyond EOD, truncated
[  119.973986][ T2966] loop1: p128 start 12585217 is beyond EOD, truncated
[  119.974001][ T2966] loop1: p129 start 12585217 is beyond EOD, truncated
[  119.974017][ T2966] loop1: p130 start 12585217 is beyond EOD, truncated
[  119.974032][ T2966] loop1: p131 start 12585217 is beyond EOD, truncated
[  119.974047][ T2966] loop1: p132 start 12585217 is beyond EOD, truncated
[  119.974062][ T2966] loop1: p133 start 12585217 is beyond EOD, truncated
[  119.974077][ T2966] loop1: p134 start 12585217 is beyond EOD, truncated
[  119.974092][ T2966] loop1: p135 start 12585217 is beyond EOD, truncated
[  119.974106][ T2966] loop1: p136 start 12585217 is beyond EOD, truncated
[  119.974120][ T2966] loop1: p137 start 12585217 is beyond EOD, truncated
[  119.974134][ T2966] loop1: p138 start 12585217 is beyond EOD, truncated
[  119.974149][ T2966] loop1: p139 start 12585217 is beyond EOD, truncated
[  119.974164][ T2966] loop1: p140 start 12585217 is beyond EOD, truncated
[  119.974178][ T2966] loop1: p141 start 12585217 is beyond EOD, truncated
[  119.974193][ T2966] loop1: p142 start 12585217 is beyond EOD, truncated
[  119.974209][ T2966] loop1: p143 start 12585217 is beyond EOD, truncated
[  119.974224][ T2966] loop1: p144 start 12585217 is beyond EOD, truncated
[  119.974240][ T2966] loop1: p145 start 12585217 is beyond EOD, truncated
[  119.974254][ T2966] loop1: p146 start 12585217 is beyond EOD, truncated
[  119.974269][ T2966] loop1: p147 start 12585217 is beyond EOD, truncated
[  119.974283][ T2966] loop1: p148 start 12585217 is beyond EOD, truncated
[  119.974298][ T2966] loop1: p149 start 12585217 is beyond EOD, truncated
[  119.974314][ T2966] loop1: p150 start 12585217 is beyond EOD, truncated
[  119.974329][ T2966] loop1: p151 start 12585217 is beyond EOD, truncated
[  119.974344][ T2966] loop1: p152 start 12585217 is beyond EOD, truncated
[  119.974355][ T2966] loop1: p153 start 12585217 is beyond EOD, truncated
[  119.974366][ T2966] loop1: p154 start 12585217 is beyond EOD, truncated
[  119.974377][ T2966] loop1: p155 start 12585217 is beyond EOD, truncated
[  119.974391][ T2966] loop1: p156 start 12585217 is beyond EOD, truncated
[  119.974406][ T2966] loop1: p157 start 12585217 is beyond EOD, truncated
[  119.974421][ T2966] loop1: p158 start 12585217 is beyond EOD, truncated
[  119.974435][ T2966] loop1: p159 start 12585217 is beyond EOD, truncated
[  119.974451][ T2966] loop1: p160 start 12585217 is beyond EOD, truncated
[  119.974466][ T2966] loop1: p161 start 12585217 is beyond EOD, truncated
[  119.974481][ T2966] loop1: p162 start 12585217 is beyond EOD, truncated
[  119.974497][ T2966] loop1: p163 start 12585217 is beyond EOD, truncated
[  119.974511][ T2966] loop1: p164 start 12585217 is beyond EOD, truncated
[  119.974526][ T2966] loop1: p165 start 12585217 is beyond EOD, truncated
[  119.974540][ T2966] loop1: p166 start 12585217 is beyond EOD, truncated
[  119.974555][ T2966] loop1: p167 start 12585217 is beyond EOD, truncated
[  119.974570][ T2966] loop1: p168 start 12585217 is beyond EOD, truncated
[  119.974586][ T2966] loop1: p169 start 12585217 is beyond EOD, truncated
[  119.974602][ T2966] loop1: p170 start 12585217 is beyond EOD, truncated
[  119.974617][ T2966] loop1: p171 start 12585217 is beyond EOD, truncated
[  119.974633][ T2966] loop1: p172 start 12585217 is beyond EOD, truncated
[  119.974649][ T2966] loop1: p173 start 12585217 is beyond EOD, truncated
[  119.974665][ T2966] loop1: p174 start 12585217 is beyond EOD, truncated
[  119.974680][ T2966] loop1: p175 start 12585217 is beyond EOD, truncated
[  119.974695][ T2966] loop1: p176 start 12585217 is beyond EOD, truncated
[  119.974710][ T2966] loop1: p177 start 12585217 is beyond EOD, truncated
[  119.974725][ T2966] loop1: p178 start 12585217 is beyond EOD, truncated
[  119.974740][ T2966] loop1: p179 start 12585217 is beyond EOD, truncated
[  119.974755][ T2966] loop1: p180 start 12585217 is beyond EOD, truncated
[  119.974770][ T2966] loop1: p181 start 12585217 is beyond EOD, truncated
[  119.974791][ T2966] loop1: p182 start 12585217 is beyond EOD, 
[  120.049857][ T5079] IPv6: addrconf: prefix option has invalid lifetime
[  120.059747][ T2966] truncated
[  120.394887][ T5081] loop0: detected capacity change from 0 to 512
[  120.401739][ T2966] loop1: p183 start 12585217 is beyond EOD, truncated
[  120.867211][ T2966] loop1: p184 start 12585217 is beyond EOD, truncated
[  120.874410][ T2966] loop1: p185 start 12585217 is beyond EOD, truncated
[  120.881880][ T2966] loop1: p186 start 12585217 is beyond EOD, truncated
[  120.895160][ T2966] loop1: p187 start 12585217 is beyond EOD, truncated
[  120.897452][ T5081] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  120.901990][ T2966] loop1: p188 start 12585217 is beyond EOD, truncated
[  120.902011][ T2966] loop1: p189 start 12585217 is beyond EOD, truncated
[  120.902026][ T2966] loop1: p190 start 12585217 is beyond EOD, truncated
[  120.902041][ T2966] loop1: p191 start 12585217 is beyond EOD, truncated
[  120.902055][ T2966] loop1: p192 start 12585217 is beyond EOD, truncated
[  120.902071][ T2966] loop1: p193 start 12585217 is beyond EOD, truncated
[  120.959332][ T5081] EXT4-fs (loop0): 1 truncate cleaned up
[  120.965437][ T2966] loop1: p194 start 12585217 is beyond EOD, truncated
[  120.977052][ T2966] loop1: p195 start 12585217 is beyond EOD, truncated
[  120.984956][ T2966] loop1: p196 start 12585217 is beyond EOD, truncated
[  120.991929][ T2966] loop1: p197 start 12585217 is beyond EOD, truncated
[  120.999657][ T2966] loop1: p198 start 12585217 is beyond EOD, truncated
[  120.999981][ T5081] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  121.006419][ T2966] loop1: p199 start 12585217 is beyond EOD, truncated
[  121.006439][ T2966] loop1: p200 start 12585217 is beyond EOD, truncated
[  121.006454][ T2966] loop1: p201 start 12585217 is beyond EOD, truncated
[  121.006469][ T2966] loop1: p202 start 12585217 is beyond EOD, truncated
[  121.062115][ T2966] loop1: p203 start 12585217 is beyond EOD, truncated
[  121.068882][ T2966] loop1: p204 start 12585217 is beyond EOD, truncated
[  121.075752][ T2966] loop1: p205 start 12585217 is beyond EOD, truncated
[  121.076943][ T5081] fuse: Unknown parameter '0x0000000000000004'
[  121.082549][ T2966] loop1: p206 start 12585217 is beyond EOD, truncated
[  121.082571][ T2966] loop1: p207 start 12585217 is beyond EOD, truncated
[  121.082586][ T2966] loop1: p208 start 12585217 is beyond EOD, truncated
[  121.082602][ T2966] loop1: p209 start 12585217 is beyond EOD, truncated
[  121.082617][ T2966] loop1: p210 start 12585217 is beyond EOD, truncated
[  121.082633][ T2966] loop1: p211 start 12585217 is beyond EOD, truncated
[  121.082648][ T2966] loop1: p212 start 12585217 is beyond EOD, truncated
[  121.082663][ T2966] loop1: p213 start 12585217 is beyond EOD, truncated
[  121.149850][ T2966] loop1: p214 start 12585217 is beyond EOD, truncated
[  121.156814][ T2966] loop1: p215 start 12585217 is beyond EOD, truncated
[  121.173629][ T2966] loop1: p216 start 12585217 is beyond EOD, truncated
[  121.186013][ T2966] loop1: p217 start 12585217 is beyond EOD, truncated
[  121.186292][ T5106] macvlan1: MTU too low for tipc bearer
[  121.199710][ T2966] loop1: p218 start 12585217 is beyond EOD, truncated
[  121.218832][ T2966] loop1: p219 start 12585217 is beyond EOD, truncated
[  121.229132][ T5106] tipc: Disabling bearer <eth:macvlan1>
[  121.237793][ T2966] loop1: p220 start 12585217 is beyond EOD, truncated
[  121.265100][ T2966] loop1: p221 start 12585217 is beyond EOD, truncated
[  121.315061][ T2966] loop1: p222 start 12585217 is beyond EOD, truncated
[  121.324213][ T2966] loop1: p223 start 12585217 is beyond EOD, truncated
[  121.326191][ T5120] loop4: detected capacity change from 0 to 128
[  121.348904][ T2966] loop1: p224 start 12585217 is beyond EOD, truncated
[  121.365222][ T2966] loop1: p225 start 12585217 is beyond EOD, truncated
[  121.384694][ T2966] loop1: p226 start 12585217 is beyond EOD, truncated
[  121.413219][ T2966] loop1: p227 start 12585217 is beyond EOD, truncated
[  121.426388][ T2966] loop1: p228 start 12585217 is beyond EOD, truncated
[  121.447597][ T2966] loop1: p229 start 12585217 is beyond EOD, truncated
[  121.479904][ T2966] loop1: p230 start 12585217 is beyond EOD, truncated
[  121.486902][ T2966] loop1: p231 start 12585217 is beyond EOD, truncated
[  121.500616][ T2966] loop1: p232 start 12585217 is beyond EOD, truncated
[  121.507742][ T2966] loop1: p233 start 12585217 is beyond EOD, truncated
[  121.529899][ T2966] loop1: p234 start 12585217 is beyond EOD, truncated
[  121.536681][ T2966] loop1: p235 start 12585217 is beyond EOD, truncated
[  121.561106][ T2966] loop1: p236 start 12585217 is beyond EOD, truncated
[  121.568254][ T2966] loop1: p237 start 12585217 is beyond EOD, truncated
[  121.578242][ T5141] loop4: detected capacity change from 0 to 512
[  121.592012][ T2966] loop1: p238 start 12585217 is beyond EOD, truncated
[  121.615400][ T2966] loop1: p239 start 12585217 is beyond EOD, truncated
[  121.630146][ T2966] loop1: p240 start 12585217 is beyond EOD, truncated
[  121.644928][ T2966] loop1: p241 start 12585217 is beyond EOD, truncated
[  121.662283][ T2966] loop1: p242 start 12585217 is beyond EOD, truncated
[  121.669057][ T2966] loop1: p243 start 12585217 is beyond EOD, truncated
[  121.685235][ T5141] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  121.695371][ T2966] loop1: p244 start 12585217 is beyond EOD, truncated
[  121.695393][ T2966] loop1: p245 start 12585217 is beyond EOD, truncated
[  121.695408][ T2966] loop1: p246 start 12585217 is beyond EOD, truncated
[  121.695423][ T2966] loop1: p247 start 12585217 is beyond EOD, truncated
[  121.695438][ T2966] loop1: p248 start 12585217 is beyond EOD, truncated
[  121.695453][ T2966] loop1: p249 start 12585217 is beyond EOD, truncated
[  121.695468][ T2966] loop1: p250 start 12585217 is beyond EOD, truncated
[  121.695483][ T2966] loop1: p251 start 12585217 is beyond EOD, truncated
[  121.695499][ T2966] loop1: p252 start 12585217 is beyond EOD, truncated
[  121.695514][ T2966] loop1: p253 start 12585217 is beyond EOD, truncated
[  121.695530][ T2966] loop1: p254 start 12585217 is beyond EOD, truncated
[  121.695545][ T2966] loop1: p255 start 12585217 is beyond EOD, truncated
[  121.869265][ T5141] EXT4-fs (loop4): 1 truncate cleaned up
[  121.881144][ T5141] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  121.892547][ T5163] loop0: detected capacity change from 0 to 2048
[  121.939406][ T5168] loop1: detected capacity change from 0 to 1024
[  121.962136][ T5141] fuse: Unknown parameter '0x0000000000000004'
[  121.986469][ T5163] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  121.995950][ T5175] loop3: detected capacity change from 0 to 512
[  122.035106][ T5173] loop2: detected capacity change from 0 to 256
[  122.045879][ T5163] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  122.064071][ T5163] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 12 with max blocks 6 with error 28
[  122.077422][ T5163] EXT4-fs (loop0): This should not happen!! Data will be lost
[  122.077422][ T5163] 
[  122.086455][   T25] audit: type=1804 audit(1720747695.070:65): pid=5176 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.516" name="/newroot/126/bus/bus" dev="loop1" ino=26 res=1 errno=0
[  122.087925][ T5163] EXT4-fs (loop0): Total free blocks count 0
[  122.120073][ T5163] EXT4-fs (loop0): Free/Dirty block details
[  122.126034][ T5163] EXT4-fs (loop0): free_blocks=2415919104
[  122.132347][ T5163] EXT4-fs (loop0): dirty_blocks=32
[  122.136119][ T5173] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  122.137475][ T5163] EXT4-fs (loop0): Block reservation details
[  122.137492][ T5163] EXT4-fs (loop0): i_reserved_data_blocks=2
[  122.197330][ T5175] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  122.215748][ T3709] hfsplus: b-tree write err: -5, ino 4
[  122.239762][ T5175] ext4 filesystem being mounted at /99/file0 supports timestamps until 2038 (0x7fffffff)
[  122.376565][ T5182] loop4: detected capacity change from 0 to 512
[  122.508760][ T5182] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  122.644105][ T5182] EXT4-fs error (device loop4): ext4_fill_super:4840: inode #2: comm syz.4.519: casefold flag without casefold feature
[  122.663828][ T5182] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0002]
[  122.677316][ T5182] System zones: 0-2, 18-18, 34-35
[  122.689181][ T5182] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  123.038146][ T5186] fuse: Bad value for 'fd'
[  123.141458][ T5195] loop0: detected capacity change from 0 to 8
[  123.158447][ T5187] loop1: detected capacity change from 0 to 2048
[  123.316620][ T5187]  loop1: p1 < > p3
[  123.324469][ T5195] Major/Minor mismatch, older Squashfs 0.0 filesystems are unsupported
[  123.341696][ T5187] loop1: p3 size 134217728 extends beyond EOD, truncated
[  123.798521][ T3497] udevd[3497]: inotify_add_watch(7, /dev/loop1p2, 10) failed: No such file or directory
[  123.839520][ T5211] loop0: detected capacity change from 0 to 256
[  123.895539][ T5213] loop3: detected capacity change from 0 to 512
[  123.932469][ T5211] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  123.973373][ T5213] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  123.998755][ T5217] loop1: detected capacity change from 0 to 512
[  124.005277][ T5213] ext4 filesystem being mounted at /101/file0 supports timestamps until 2038 (0x7fffffff)
[  124.075640][ T5217] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  124.155141][ T5221] fuse: Bad value for 'fd'
[  124.181920][ T5217] EXT4-fs (loop1): 1 truncate cleaned up
[  124.187583][ T5217] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  124.187931][ T5219] loop4: detected capacity change from 0 to 2048
[  124.230259][ T5217] fuse: Unknown parameter '0x0000000000000004'
[  124.246844][ T5219]  loop4: p1 < > p3
[  124.279834][ T5219] loop4: p3 size 134217728 extends beyond EOD, truncated
[  124.388830][ T5231] loop0: detected capacity change from 0 to 512
[  124.540260][ T5231] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem
[  124.605776][ T5231] EXT4-fs error (device loop0): ext4_fill_super:4840: inode #2: comm syz.0.535: casefold flag without casefold feature
[  124.623774][ T5231] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0002]
[  124.632174][ T5231] System zones: 0-2, 18-18, 34-35
[  124.641364][ T5231] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  125.123265][ T2966]  loop4: p1 < > p3
[  125.128620][ T2966] loop4: p3 size 134217728 extends beyond EOD, truncated
[  125.247878][   T25] audit: type=1326 audit(1720747698.230:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5242 comm="syz.2.543" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fb7b923fbd9 code=0x0
[  125.279100][ T5237] loop3: detected capacity change from 0 to 2048
[  125.354422][ T5249] loop2: detected capacity change from 0 to 256
[  125.419150][ T5237]  loop3: p1 < > p3
[  125.429217][ T5237] loop3: p3 size 134217728 extends beyond EOD, truncated
[  125.868310][ T5254] netlink: 52 bytes leftover after parsing attributes in process `syz.0.542'.
[  126.215081][ T2966]  loop3: p1 < > p3
[  126.237374][ T5258] loop0: detected capacity change from 0 to 512
[  126.240396][ T2966] loop3: p3 size 134217728 extends beyond EOD, truncated
[  126.394321][ T5258] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  126.405724][ T5258] ext4 filesystem being mounted at /106/file0 supports timestamps until 2038 (0x7fffffff)
[  126.443272][ T5268] loop3: detected capacity change from 0 to 512
[  126.458267][ T5262] loop1: detected capacity change from 0 to 2048
[  126.503191][ T5268] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  126.519995][ T5262] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  126.590762][ T5268] EXT4-fs (loop3): 1 truncate cleaned up
[  126.596418][ T5268] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  126.746204][ T5268] fuse: Unknown parameter '0x0000000000000004'
[  126.969516][ T5285] loop2: detected capacity change from 0 to 2048
[  127.022749][ T5285]  loop2: p1 < > p3
[  127.027821][ T5285] loop2: p3 size 134217728 extends beyond EOD, truncated
[  127.058790][ T5291] loop1: detected capacity change from 0 to 2048
[  127.143272][ T5291]  loop1: p1 < > p3
[  127.149475][ T5291] loop1: p3 size 134217728 extends beyond EOD, truncated
[  127.387205][   T25] audit: type=1326 audit(1720747700.370:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5299 comm="syz.2.563" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fb7b923fbd9 code=0x0
[  127.492399][ T5306] loop2: detected capacity change from 0 to 256
[  127.769866][ T5317] loop4: detected capacity change from 0 to 512
[  127.867791][ T5317] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  127.945727][ T5317] EXT4-fs (loop4): 1 truncate cleaned up
[  127.956075][ T5329] ieee802154 phy0 wpan0: encryption failed: -22
[  128.011451][ T5317] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  128.193710][ T5317] fuse: Unknown parameter 'fd0x0000000000000004'
[  128.641576][ T5337] loop2: detected capacity change from 0 to 2048
[  128.884408][ T5337]  loop2: p1 < > p3
[  128.902548][ T5337] loop2: p3 size 134217728 extends beyond EOD, truncated
[  129.083409][   T25] audit: type=1326 audit(1720747702.070:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5357 comm="syz.0.581" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f421b29abd9 code=0x0
[  129.140607][ T5363] loop3: detected capacity change from 0 to 1024
[  129.193810][ T5363] netlink: 'syz.3.584': attribute type 4 has an invalid length.
[  129.195380][ T5368] loop2: detected capacity change from 0 to 512
[  129.233901][ T5368] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  129.245972][ T5369] netlink: 36 bytes leftover after parsing attributes in process `syz.1.583'.
[  129.277529][ T5368] EXT4-fs (loop2): 1 truncate cleaned up
[  129.298604][ T5368] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  129.356479][ T5368] fuse: Unknown parameter 'fd0x0000000000000004'
[  130.441410][ T5401] loop0: detected capacity change from 0 to 1024
[  130.507875][ T5401] netlink: 'syz.0.595': attribute type 4 has an invalid length.
[  130.628573][ T5403] loop0: detected capacity change from 0 to 512
[  130.693239][ T5403] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  130.872853][ T5403] EXT4-fs (loop0): 1 truncate cleaned up
[  130.878505][ T5403] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  131.240840][ T5403] fuse: Unknown parameter 'fd0x0000000000000004'
[  131.299261][ T5416] tmpfs: Unknown parameter 'usrquota'
[  131.427830][ T5426] loop1: detected capacity change from 0 to 256
[  131.485353][ T5431] loop3: detected capacity change from 0 to 512
[  131.486539][ T5430] loop0: detected capacity change from 0 to 1024
[  131.513375][ T5426] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[  131.553015][ T5431] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  131.587869][ T5430] netlink: 'syz.0.606': attribute type 4 has an invalid length.
[  131.598348][ T5431] EXT4-fs error (device loop3): ext4_orphan_get:1397: inode #15: comm syz.3.607: casefold flag without casefold feature
[  131.613051][ T5431] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: inode #12: comm syz.3.607: missing EA_INODE flag
[  131.625322][ T5431] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.607: error while reading EA inode 12 err=-117
[  131.638187][ T5431] EXT4-fs (loop3): 1 orphan inode deleted
[  131.644153][ T5431] EXT4-fs (loop3): mounted filesystem without journal. Opts: dioread_nolock,journal_dev=0x0000000000000007,quota,noinit_itable,errors=continue,errors=continue,errors=remount-ro,delalloc,auto_da_alloc,norecovery,errors=continue,journal_ioprio=0x0000000000000001,. Quota mode: writeback.
[  131.798461][ T5434] loop1: detected capacity change from 0 to 2048
[  131.864549][ T5434]  loop1: p1 < > p3
[  131.869435][ T5434] loop1: p3 size 134217728 extends beyond EOD, truncated
[  132.186990][ T5443] loop1: detected capacity change from 0 to 512
[  132.246985][ T5443] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  132.297582][ T5443] EXT4-fs (loop1): 1 truncate cleaned up
[  132.313710][ T5443] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  132.572910][ T1377] ieee802154 phy0 wpan0: encryption failed: -22
[  132.579870][ T1377] ieee802154 phy1 wpan1: encryption failed: -22
[  132.809712][ T3590] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  132.848886][ T5457] loop0: detected capacity change from 0 to 736
[  133.060326][ T3560] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[  133.068900][ T3560] Bluetooth: hci3: Injecting HCI hardware error event
[  133.086796][ T3517] Bluetooth: hci3: hardware error 0x00
[  133.118686][ T5461] loop2: detected capacity change from 0 to 1024
[  133.199849][ T3590] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  133.211388][ T3590] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  133.228003][ T5465] xt_hashlimit: max too large, truncated to 1048576
[  133.234967][ T5465] x_tables: ip_tables: cgroup match: used from hooks PREROUTING, but only valid from INPUT/OUTPUT/POSTROUTING
[  133.257813][ T5461] netlink: 'syz.2.619': attribute type 4 has an invalid length.
[  133.305282][ T5467] loop0: detected capacity change from 0 to 512
[  133.312049][ T3590] usb 2-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  133.329580][ T3590] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  133.347752][ T3590] usb 2-1: SerialNumber: syz
[  133.458101][ T5472] loop2: detected capacity change from 0 to 512
[  133.461051][ T5467] EXT4-fs error (device loop0): ext4_do_update_inode:5160: inode #16: comm syz.0.621: corrupted inode contents
[  133.492206][ T5467] EXT4-fs error (device loop0): ext4_dirty_inode:5993: inode #16: comm syz.0.621: mark_inode_dirty error
[  133.525402][ T5467] EXT4-fs error (device loop0): ext4_do_update_inode:5160: inode #16: comm syz.0.621: corrupted inode contents
[  133.568140][ T5472] EXT4-fs error (device loop2): ext4_ext_check_inode:501: inode #15: comm syz.2.623: pblk 0 bad header/extent: invalid eh_entries - magic f30a, entries 24833, max 4(4), depth 0(0)
[  133.592306][ T5467] EXT4-fs error (device loop0): __ext4_ext_dirty:183: inode #16: comm syz.0.621: mark_inode_dirty error
[  133.622136][ T5467] EXT4-fs error (device loop0): ext4_do_update_inode:5160: inode #16: comm syz.0.621: corrupted inode contents
[  133.622162][ T3590] usb 2-1: 0:2 : does not exist
[  133.651660][ T5467] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem
[  133.660455][ T5472] EXT4-fs error (device loop2): ext4_orphan_get:1402: comm syz.2.623: couldn't read orphan inode 15 (err -117)
[  133.679363][ T5467] EXT4-fs error (device loop0): ext4_do_update_inode:5160: inode #16: comm syz.0.621: corrupted inode contents
[  133.699434][ T5472] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  133.728637][ T5467] EXT4-fs error (device loop0): ext4_truncate:4261: inode #16: comm syz.0.621: mark_inode_dirty error
[  133.749705][ T5472] ext4 filesystem being mounted at /122/file0 supports timestamps until 2038 (0x7fffffff)
[  133.769968][ T5467] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem
[  133.798022][ T5467] EXT4-fs (loop0): 1 truncate cleaned up
[  133.804167][ T5467] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  133.829845][ T5467] ext4 filesystem being mounted at /125/file1 supports timestamps until 2038 (0x7fffffff)
[  133.852872][   T25] audit: type=1800 audit(1720747706.840:69): pid=5467 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.621" name="bus" dev="loop0" ino=18 res=0 errno=0
[  133.864105][ T3590] usb 2-1: USB disconnect, device number 4
[  133.927585][ T3507] EXT4-fs warning (device loop0): ext4_dirblock_csum_set:426: inode #2: comm syz-executor: No space for directory leaf checksum. Please run e2fsck -D.
[  133.976418][ T3507] EXT4-fs warning (device loop0): ext4_dirblock_csum_set:426: inode #2: comm syz-executor: No space for directory leaf checksum. Please run e2fsck -D.
[  134.020251][ T3507] EXT4-fs warning (device loop0): ext4_dirblock_csum_set:426: inode #2: comm syz-executor: No space for directory leaf checksum. Please run e2fsck -D.
[  134.082398][ T3507] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2925: inode #15: comm syz-executor: corrupted xattr block 19
[  134.099532][ T3507] EXT4-fs warning (device loop0): ext4_evict_inode:302: xattr delete (err -74)
[  134.114856][ T3507] EXT4-fs warning (device loop0): ext4_dirblock_csum_verify:405: inode #12: comm syz-executor: No space for directory leaf checksum. Please run e2fsck -D.
[  134.131012][ T3507] EXT4-fs error (device loop0): htree_dirblock_to_tree:1082: inode #12: comm syz-executor: Directory block failed checksum
[  134.150461][ T3507] EXT4-fs warning (device loop0): ext4_dirblock_csum_verify:405: inode #12: comm syz-executor: No space for directory leaf checksum. Please run e2fsck -D.
[  134.166655][ T3507] EXT4-fs error (device loop0): ext4_empty_dir:3093: inode #12: comm syz-executor: Directory block failed checksum
[  134.215753][ T3507] EXT4-fs warning (device loop0): ext4_dirblock_csum_verify:405: inode #12: comm syz-executor: No space for directory leaf checksum. Please run e2fsck -D.
[  134.248074][ T3507] EXT4-fs error (device loop0): htree_dirblock_to_tree:1082: inode #12: comm syz-executor: Directory block failed checksum
[  134.268897][ T3507] EXT4-fs warning (device loop0): ext4_dirblock_csum_verify:405: inode #12: comm syz-executor: No space for directory leaf checksum. Please run e2fsck -D.
[  134.298931][ T3507] EXT4-fs error (device loop0): ext4_empty_dir:3093: inode #12: comm syz-executor: Directory block failed checksum
[  134.322908][ T3507] EXT4-fs warning (device loop0): ext4_dirblock_csum_verify:405: inode #12: comm syz-executor: No space for directory leaf checksum. Please run e2fsck -D.
[  134.362067][ T3507] EXT4-fs error (device loop0): htree_dirblock_to_tree:1082: inode #12: comm syz-executor: Directory block failed checksum
[  134.406405][ T3507] EXT4-fs warning (device loop0): ext4_dirblock_csum_verify:405: inode #12: comm syz-executor: No space for directory leaf checksum. Please run e2fsck -D.
[  134.436009][ T3507] EXT4-fs error (device loop0): ext4_empty_dir:3093: inode #12: comm syz-executor: Directory block failed checksum
[  134.454630][ T3507] EXT4-fs error (device loop0): htree_dirblock_to_tree:1082: inode #12: comm syz-executor: Directory block failed checksum
[  134.486800][ T3507] EXT4-fs error (device loop0): ext4_empty_dir:3093: inode #12: comm syz-executor: Directory block failed checksum
[  134.518880][ T3507] EXT4-fs error (device loop0): htree_dirblock_to_tree:1082: inode #12: comm syz-executor: Directory block failed checksum
[  134.926359][ T5515] loop2: detected capacity change from 0 to 512
[  134.976263][ T5515] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  135.020248][ T5515] EXT4-fs error (device loop2): ext4_orphan_get:1397: inode #15: comm syz.2.642: casefold flag without casefold feature
[  135.057413][ T3707] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  135.069313][ T5515] EXT4-fs error (device loop2): ext4_xattr_inode_iget:404: inode #12: comm syz.2.642: missing EA_INODE flag
[  135.104170][ T5515] EXT4-fs error (device loop2): ext4_xattr_inode_iget:409: comm syz.2.642: error while reading EA inode 12 err=-117
[  135.133891][ T5515] EXT4-fs (loop2): 1 orphan inode deleted
[  135.145873][ T5515] EXT4-fs (loop2): mounted filesystem without journal. Opts: dioread_nolock,journal_dev=0x0000000000000007,quota,noinit_itable,errors=continue,errors=continue,errors=remount-ro,delalloc,auto_da_alloc,norecovery,errors=continue,journal_ioprio=0x0000000000000001,. Quota mode: writeback.
[  135.173173][ T3560] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  135.204531][ T3707] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  135.321290][ T3707] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  135.393741][ T3707] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  135.508702][ T5518] chnl_net:caif_netlink_parms(): no params data found
[  135.549823][ T3560] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  135.579680][ T3560] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  135.608709][ T5518] bridge0: port 1(bridge_slave_0) entered blocking state
[  135.616238][ T5518] bridge0: port 1(bridge_slave_0) entered disabled state
[  135.625308][ T5518] device bridge_slave_0 entered promiscuous mode
[  135.628259][ T5538] loop3: detected capacity change from 0 to 512
[  135.633822][ T5518] bridge0: port 2(bridge_slave_1) entered blocking state
[  135.645268][ T5518] bridge0: port 2(bridge_slave_1) entered disabled state
[  135.653781][ T5518] device bridge_slave_1 entered promiscuous mode
[  135.684226][ T3560] usb 2-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  135.713234][ T3560] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  135.729863][ T5538] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2213: inode #15: comm syz.3.651: corrupted in-inode xattr
[  135.740445][ T5518] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  135.742640][ T3560] usb 2-1: SerialNumber: syz
[  135.757328][ T5538] EXT4-fs error (device loop3): ext4_orphan_get:1402: comm syz.3.651: couldn't read orphan inode 15 (err -117)
[  135.763121][ T5518] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  135.777504][ T5545] loop2: detected capacity change from 0 to 1024
[  135.788937][ T5538] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  135.815587][ T5518] team0: Port device team_slave_0 added
[  135.829393][ T5518] team0: Port device team_slave_1 added
[  135.840297][ T5545] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a802c018, mo2=0002]
[  135.848438][ T5545] System zones: 0-1, 3-12
[  135.854158][ T5545] EXT4-fs (loop2): mounted filesystem without journal. Opts: init_itable=0x0000000000000000,debug,,errors=continue. Quota mode: none.
[  135.906816][ T5518] batman_adv: batadv0: Adding interface: batadv_slave_0
[  135.920480][ T5518] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  135.921981][ T3506] EXT4-fs error (device loop2): ext4_readdir:260: inode #11: block 32: comm syz-executor: path /135/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  135.956058][ T5518] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  135.978259][ T3506] EXT4-fs error (device loop2): ext4_empty_dir:3099: inode #11: block 32: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  135.982011][ T5518] batman_adv: batadv0: Adding interface: batadv_slave_1
[  136.005346][ T5518] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  136.010139][ T3506] EXT4-fs warning (device loop2): ext4_empty_dir:3101: inode #11: comm syz-executor: directory missing '.'
[  136.033509][ T3560] usb 2-1: 0:2 : does not exist
[  136.047618][ T5518] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  136.051205][ T3506] EXT4-fs error (device loop2): ext4_readdir:260: inode #11: block 32: comm syz-executor: path /135/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  136.083242][ T3506] EXT4-fs error (device loop2): ext4_empty_dir:3099: inode #11: block 32: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  136.103858][ T3506] EXT4-fs warning (device loop2): ext4_empty_dir:3101: inode #11: comm syz-executor: directory missing '.'
[  136.115712][ T3506] EXT4-fs error (device loop2): ext4_readdir:260: inode #11: block 32: comm syz-executor: path /135/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  136.138431][ T3506] EXT4-fs error (device loop2): ext4_empty_dir:3099: inode #11: block 32: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  136.158003][ T3506] EXT4-fs warning (device loop2): ext4_empty_dir:3101: inode #11: comm syz-executor: directory missing '.'
[  136.176058][ T5518] device hsr_slave_0 entered promiscuous mode
[  136.176988][ T3506] EXT4-fs error (device loop2): ext4_readdir:260: inode #11: block 32: comm syz-executor: path /135/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  136.204936][ T5518] device hsr_slave_1 entered promiscuous mode
[  136.211857][ T3506] EXT4-fs error (device loop2): ext4_empty_dir:3099: inode #11: block 32: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  136.231528][ T3506] EXT4-fs warning (device loop2): ext4_empty_dir:3101: inode #11: comm syz-executor: directory missing '.'
[  136.238565][ T5518] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  136.243935][ T3506] EXT4-fs error (device loop2): ext4_readdir:260: inode #11: block 32: comm syz-executor: path /135/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  136.257760][ T5518] Cannot create hsr debugfs directory
[  136.280147][ T3506] EXT4-fs error (device loop2): ext4_empty_dir:3099: inode #11: block 32: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  136.296465][ T3560] usb 2-1: USB disconnect, device number 5
[  136.306635][ T3506] EXT4-fs warning (device loop2): ext4_empty_dir:3101: inode #11: comm syz-executor: directory missing '.'
[  136.325630][ T3506] EXT4-fs warning (device loop2): ext4_empty_dir:3101: inode #11: comm syz-executor: directory missing '.'
[  136.351110][ T3506] EXT4-fs warning (device loop2): ext4_empty_dir:3101: inode #11: comm syz-executor: directory missing '.'
[  136.373541][ T3506] EXT4-fs warning (device loop2): ext4_empty_dir:3101: inode #11: comm syz-executor: directory missing '.'
[  136.386898][ T3506] EXT4-fs warning (device loop2): ext4_empty_dir:3101: inode #11: comm syz-executor: directory missing '.'
[  136.406634][ T3506] EXT4-fs warning (device loop2): ext4_empty_dir:3101: inode #11: comm syz-executor: directory missing '.'
[  136.813240][ T5556] loop1: detected capacity change from 0 to 1024
[  136.831260][ T5518] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  136.846862][ T5518] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  136.859199][ T5518] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  136.878409][ T5518] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  136.894521][ T5556] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  136.969379][ T5518] 8021q: adding VLAN 0 to HW filter on device bond0
[  136.987409][ T5518] 8021q: adding VLAN 0 to HW filter on device team0
[  136.995932][ T1192] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  137.011408][ T1192] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  137.028220][ T3560] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  137.051013][ T3560] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  137.060333][ T3560] bridge0: port 1(bridge_slave_0) entered blocking state
[  137.067403][ T3560] bridge0: port 1(bridge_slave_0) entered forwarding state
[  137.142550][   T21] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  137.150754][   T21] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  137.188261][   T21] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  137.217505][   T21] bridge0: port 2(bridge_slave_1) entered blocking state
[  137.224624][   T21] bridge0: port 2(bridge_slave_1) entered forwarding state
[  137.249189][   T21] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  137.271226][   T21] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  137.290712][   T21] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  137.316894][   T21] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  137.344317][   T21] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  137.359263][   T21] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  137.369378][ T3546] Bluetooth: hci2: command 0x0409 tx timeout
[  137.386256][ T5518] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  137.408383][ T5518] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  137.443422][ T3546] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  137.452287][ T3546] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  137.470158][ T3546] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  137.478669][ T3546] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  137.487514][ T3546] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  137.501321][ T3546] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  137.652878][ T3707] device hsr_slave_0 left promiscuous mode
[  137.672362][ T3707] device hsr_slave_1 left promiscuous mode
[  137.687382][ T3707] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  137.710732][ T3707] batman_adv: batadv0: Removing interface: batadv_slave_0
[  137.731810][ T3707] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  137.739293][ T3707] batman_adv: batadv0: Removing interface: batadv_slave_1
[  137.754484][ T3707] device bridge_slave_1 left promiscuous mode
[  137.764552][ T3707] bridge0: port 2(bridge_slave_1) entered disabled state
[  137.798263][ T5578] loop4: detected capacity change from 0 to 256
[  137.816731][ T3707] device bridge_slave_0 left promiscuous mode
[  137.834127][ T5576] loop3: detected capacity change from 0 to 1024
[  137.845285][ T3707] bridge0: port 1(bridge_slave_0) entered disabled state
[  137.876415][ T3707] device veth1_macvtap left promiscuous mode
[  137.888496][ T3707] device veth0_macvtap left promiscuous mode
[  137.897078][ T3707] device veth1_vlan left promiscuous mode
[  137.907640][ T3707] device veth0_vlan left promiscuous mode
[  137.957642][ T5576] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a802c018, mo2=0002]
[  137.986502][ T5576] System zones: 0-1, 3-12
[  138.012973][ T5576] EXT4-fs (loop3): mounted filesystem without journal. Opts: init_itable=0x0000000000000000,debug,,errors=continue. Quota mode: none.
[  138.072728][ T5582] loop4: detected capacity change from 0 to 512
[  138.115127][ T5582] EXT4-fs (loop4): can't mount with journal_async_commit, fs mounted w/o journal
[  138.197577][ T3515] EXT4-fs error (device loop3): ext4_readdir:260: inode #11: block 32: comm syz-executor: path /128/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  138.220457][ T3515] EXT4-fs error (device loop3): ext4_empty_dir:3099: inode #11: block 32: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  138.240753][ T3515] EXT4-fs warning (device loop3): ext4_empty_dir:3101: inode #11: comm syz-executor: directory missing '.'
[  138.276858][ T3515] EXT4-fs error (device loop3): ext4_readdir:260: inode #11: block 32: comm syz-executor: path /128/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  138.316405][ T3515] EXT4-fs error (device loop3): ext4_empty_dir:3099: inode #11: block 32: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  138.338250][ T3515] EXT4-fs warning (device loop3): ext4_empty_dir:3101: inode #11: comm syz-executor: directory missing '.'
[  138.363640][ T5587] loop4: detected capacity change from 0 to 512
[  138.425073][ T3707] team0 (unregistering): Port device team_slave_1 removed
[  138.454394][ T3707] team0 (unregistering): Port device team_slave_0 removed
[  138.477293][ T3707] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  138.495540][ T3515] EXT4-fs error (device loop3): ext4_readdir:260: inode #11: block 32: comm syz-executor: path /128/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  138.517034][ T3707] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  138.518167][ T3515] EXT4-fs error (device loop3): ext4_empty_dir:3099: inode #11: block 32: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  138.632432][ T5587] EXT4-fs (loop4): Ignoring removed orlov option
[  138.813869][ T3707] bond0 (unregistering): Released all slaves
[  138.836512][ T5587] EXT4-fs (loop4): 1 orphan inode deleted
[  138.874038][ T5587] EXT4-fs (loop4): mounted filesystem without journal. Opts: errors=remount-ro,nodiscard,auto_da_alloc,init_itable,stripe=0x000000000000007b,orlov,sysvgroups,delalloc,usrquota,. Quota mode: writeback.
[  138.914025][ T5587] ext4 filesystem being mounted at /110/file1 supports timestamps until 2038 (0x7fffffff)
[  139.013372][ T3515] EXT4-fs warning (device loop3): ext4_empty_dir:3101: inode #11: comm syz-executor: directory missing '.'
[  139.037753][ T3515] EXT4-fs error (device loop3): ext4_readdir:260: inode #11: block 32: comm syz-executor: path /128/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  139.066466][ T3515] EXT4-fs error (device loop3): ext4_empty_dir:3099: inode #11: block 32: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  139.093066][ T3515] EXT4-fs warning (device loop3): ext4_empty_dir:3101: inode #11: comm syz-executor: directory missing '.'
[  139.108857][ T3515] EXT4-fs error (device loop3): ext4_readdir:260: inode #11: block 32: comm syz-executor: path /128/file1/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  139.143717][ T3590] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  139.167276][ T3590] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  139.184448][ T5518] 8021q: adding VLAN 0 to HW filter on device batadv0
[  139.213159][ T5600] loop4: detected capacity change from 0 to 1024
[  139.241860][ T3515] EXT4-fs error (device loop3): ext4_empty_dir:3099: inode #11: block 32: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1
[  139.261799][ T3515] EXT4-fs warning (device loop3): ext4_empty_dir:3101: inode #11: comm syz-executor: directory missing '.'
[  139.273844][ T5600] EXT4-fs (loop4): Project quota feature not enabled. Cannot enable project quota enforcement.
[  139.291561][ T3515] EXT4-fs warning (device loop3): ext4_empty_dir:3101: inode #11: comm syz-executor: directory missing '.'
[  139.340265][ T3515] EXT4-fs warning (device loop3): ext4_empty_dir:3101: inode #11: comm syz-executor: directory missing '.'
[  139.350928][   T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  139.361045][ T3515] EXT4-fs warning (device loop3): ext4_empty_dir:3101: inode #11: comm syz-executor: directory missing '.'
[  139.373541][   T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  139.414030][ T5518] device veth0_vlan entered promiscuous mode
[  139.428125][ T3515] EXT4-fs warning (device loop3): ext4_empty_dir:3101: inode #11: comm syz-executor: directory missing '.'
[  139.448678][ T3590] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  139.457583][ T3590] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  139.479191][ T3515] EXT4-fs warning (device loop3): ext4_empty_dir:3101: inode #11: comm syz-executor: directory missing '.'
[  139.508985][ T5518] device veth1_vlan entered promiscuous mode
[  139.527627][ T2927] Bluetooth: hci1: command 0x0409 tx timeout
[  139.536794][ T2927] Bluetooth: hci2: command 0x041b tx timeout
[  139.552749][ T3550] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  139.567247][ T3550] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  140.203413][ T3550] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  140.220455][ T5564] chnl_net:caif_netlink_parms(): no params data found
[  140.252074][ T3590] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  140.298613][ T5518] device veth0_macvtap entered promiscuous mode
[  140.327338][ T3590] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  140.340457][ T3590] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  140.394843][ T5608] loop4: detected capacity change from 0 to 8192
[  140.417055][ T3590] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  140.469179][ T5518] device veth1_macvtap entered promiscuous mode
[  140.599810][ T5518] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  140.611558][ T5518] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  140.622086][ T5518] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  140.633057][ T5518] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  140.643320][ T5518] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  140.659709][ T5518] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  140.679686][ T5518] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  140.699842][ T5518] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  140.718108][ T5518] batman_adv: batadv0: Interface activated: batadv_slave_0
[  140.725595][ T5564] bridge0: port 1(bridge_slave_0) entered blocking state
[  140.745890][ T5564] bridge0: port 1(bridge_slave_0) entered disabled state
[  140.754667][ T5564] device bridge_slave_0 entered promiscuous mode
[  140.775452][ T2927] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  140.795541][ T2927] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  140.819442][ T2927] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  140.838042][ T5564] bridge0: port 2(bridge_slave_1) entered blocking state
[  140.847884][ T5564] bridge0: port 2(bridge_slave_1) entered disabled state
[  140.859934][ T3560] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  140.872740][ T5564] device bridge_slave_1 entered promiscuous mode
[  140.912166][ T5518] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  140.931177][ T5518] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  140.946957][ T5518] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  140.961910][ T5518] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  140.979308][ T5518] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  140.996891][ T5518] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  141.007084][ T5518] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  141.025016][ T5518] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  141.037645][ T5518] batman_adv: batadv0: Interface activated: batadv_slave_1
[  141.068132][   T13] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  141.080312][   T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  141.107310][ T5518] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  141.116295][ T3560] usb 5-1: Using ep0 maxpacket: 16
[  141.122309][ T5518] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  141.146455][ T5518] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  141.156037][ T5518] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  141.172610][ T5564] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  141.205061][ T5564] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  141.239933][ T3560] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 33032, setting to 1024
[  141.272235][ T3560] usb 5-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[  141.299888][ T3560] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  141.327037][ T3560] usb 5-1: config 0 descriptor??
[  141.385930][ T5564] team0: Port device team_slave_0 added
[  141.408660][ T5564] team0: Port device team_slave_1 added
[  141.416485][ T2599] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  141.462006][ T2599] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  141.488341][  T144] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  141.489190][ T5564] batman_adv: batadv0: Adding interface: batadv_slave_0
[  141.503786][ T5564] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  141.530465][ T5564] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  141.535710][  T144] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  141.543049][ T5564] batman_adv: batadv0: Adding interface: batadv_slave_1
[  141.555614][ T5564] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  141.584886][ T5564] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  141.609918][ T3546] Bluetooth: hci2: command 0x040f tx timeout
[  141.615963][ T3546] Bluetooth: hci1: command 0x041b tx timeout
[  141.650650][   T21] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  141.658496][   T21] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  141.804986][ T5564] device hsr_slave_0 entered promiscuous mode
[  141.825582][ T5564] device hsr_slave_1 entered promiscuous mode
[  141.843550][ T5617] chnl_net:caif_netlink_parms(): no params data found
[  142.010132][ T5608] udc-core: couldn't find an available UDC or it's busy
[  142.026938][ T5608] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  142.879673][ T3560] usbhid 5-1:0.0: can't add hid device: -71
[  142.885666][ T3560] usbhid: probe of 5-1:0.0 failed with error -71
[  142.913575][ T5617] bridge0: port 1(bridge_slave_0) entered blocking state
[  142.923559][ T5617] bridge0: port 1(bridge_slave_0) entered disabled state
[  142.931599][ T5617] device bridge_slave_0 entered promiscuous mode
[  142.949894][ T3560] usb 5-1: USB disconnect, device number 8
[  142.973617][ T5617] bridge0: port 2(bridge_slave_1) entered blocking state
[  142.981027][ T3550] Bluetooth: hci4: command 0x0409 tx timeout
[  142.987568][ T5617] bridge0: port 2(bridge_slave_1) entered disabled state
[  143.004526][ T5617] device bridge_slave_1 entered promiscuous mode
[  143.079436][ T5617] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  143.113703][ T5617] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  143.183372][ T5564] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  143.183974][ T5642] loop0: detected capacity change from 0 to 128
[  143.240876][ T5642] FAT-fs (loop0): Unrecognized mount option "error˜.ô3 îÛ
ç�Ï/s=c	" or missing value
[  143.281241][ T5617] team0: Port device team_slave_0 added
[  143.366055][ T5564] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  143.409715][ T5617] team0: Port device team_slave_1 added
[  143.476630][ T5564] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  143.538964][ T5617] batman_adv: batadv0: Adding interface: batadv_slave_0
[  143.562960][ T5617] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  143.663299][ T5617] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  143.677360][ T5617] batman_adv: batadv0: Adding interface: batadv_slave_1
[  143.684351][ T5617] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  143.710680][ T5617] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  143.719758][ T3598] Bluetooth: hci1: command 0x040f tx timeout
[  143.748532][ T3598] Bluetooth: hci2: command 0x0419 tx timeout
[  143.806606][ T5564] team0: Port device netdevsim0 removed
[  143.836189][ T5564] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  143.872178][ T5617] device hsr_slave_0 entered promiscuous mode
[  143.904359][ T5617] device hsr_slave_1 entered promiscuous mode
[  143.939372][ T5617] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  143.975560][ T5617] Cannot create hsr debugfs directory
[  144.003677][ T5649] netlink: 12 bytes leftover after parsing attributes in process `syz.4.683'.
[  144.120685][ T3550] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  144.229664][    C1] ------------[ cut here ]------------
[  144.229750][    C1] 
[  144.229755][    C1] ======================================================
[  144.229761][    C1] WARNING: possible circular locking dependency detected
[  144.229767][    C1] 5.15.162-syzkaller #0 Not tainted
[  144.229776][    C1] ------------------------------------------------------
[  144.229780][    C1] syz.0.687/5657 is trying to acquire lock:
[  144.229788][    C1] ffffffff8c7fc378 ((console_sem).lock){-.-.}-{2:2}, at: down_trylock+0x1c/0xa0
[  144.229833][    C1] 
[  144.229833][    C1] but task is already holding lock:
[  144.229836][    C1] ffff8880b9b28098 (&base->lock){-.-.}-{2:2}, at: lock_timer_base+0x120/0x260
[  144.229873][    C1] 
[  144.229873][    C1] which lock already depends on the new lock.
[  144.229873][    C1] 
[  144.229877][    C1] 
[  144.229877][    C1] the existing dependency chain (in reverse order) is:
[  144.229882][    C1] 
[  144.229882][    C1] -> #3 (&base->lock){-.-.}-{2:2}:
[  144.229904][    C1]        lock_acquire+0x1db/0x4f0
[  144.229921][    C1]        _raw_spin_lock_irqsave+0xd1/0x120
[  144.229940][    C1]        lock_timer_base+0x120/0x260
[  144.229957][    C1]        __mod_timer+0x1d6/0xeb0
[  144.229972][    C1]        queue_delayed_work_on+0x156/0x250
[  144.229989][    C1]        enqueue_task+0x2fe/0x3a0
[  144.230006][    C1]        wake_up_new_task+0x515/0xb60
[  144.230023][    C1]        kernel_clone+0x44e/0x960
[  144.230038][    C1]        kernel_thread+0x168/0x1e0
[  144.230052][    C1]        rest_init+0x21/0x330
[  144.230069][    C1]        start_kernel+0x48c/0x540
[  144.230087][    C1]        secondary_startup_64_no_verify+0xb1/0xbb
[  144.230105][    C1] 
[  144.230105][    C1] -> #2 (&rq->__lock){-.-.}-{2:2}:
[  144.230126][    C1]        lock_acquire+0x1db/0x4f0
[  144.230139][    C1]        _raw_spin_lock_nested+0x2d/0x40
[  144.230153][    C1]        raw_spin_rq_lock_nested+0x26/0x140
[  144.230170][    C1]        task_fork_fair+0x5d/0x350
[  144.230185][    C1]        sched_cgroup_fork+0x2d3/0x330
[  144.230202][    C1]        copy_process+0x224a/0x3ef0
[  144.230216][    C1]        kernel_clone+0x210/0x960
[  144.230230][    C1]        kernel_thread+0x168/0x1e0
[  144.230244][    C1]        rest_init+0x21/0x330
[  144.230260][    C1]        start_kernel+0x48c/0x540
[  144.230276][    C1]        secondary_startup_64_no_verify+0xb1/0xbb
[  144.230293][    C1] 
[  144.230293][    C1] -> #1 (&p->pi_lock){-.-.}-{2:2}:
[  144.230313][    C1]        lock_acquire+0x1db/0x4f0
[  144.230327][    C1]        _raw_spin_lock_irqsave+0xd1/0x120
[  144.230345][    C1]        try_to_wake_up+0xae/0x1300
[  144.230361][    C1]        up+0x6e/0x90
[  144.230375][    C1]        __up_console_sem+0x11a/0x1e0
[  144.230390][    C1]        console_unlock+0x1145/0x12b0
[  144.230405][    C1]        vprintk_emit+0xbf/0x150
[  144.230419][    C1]        _printk+0xd1/0x120
[  144.230435][    C1]        bpf_get_probe_write_proto+0x96/0xb0
[  144.230452][    C1]        check_helper_call+0x1bf/0x60b0
[  144.230467][    C1]        do_check+0x8481/0xf310
[  144.230493][    C1]        do_check_common+0x844/0x1070
[  144.230508][    C1]        bpf_check+0xcb80/0x12d00
[  144.230522][    C1]        bpf_prog_load+0x12b3/0x1b60
[  144.230541][    C1]        __sys_bpf+0x343/0x670
[  144.230557][    C1]        __x64_sys_bpf+0x78/0x90
[  144.230573][    C1]        do_syscall_64+0x3b/0xb0
[  144.230588][    C1]        entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  144.230603][    C1] 
[  144.230603][    C1] -> #0 ((console_sem).lock){-.-.}-{2:2}:
[  144.230624][    C1]        validate_chain+0x1649/0x5930
[  144.230639][    C1]        __lock_acquire+0x1295/0x1ff0
[  144.230653][    C1]        lock_acquire+0x1db/0x4f0
[  144.230666][    C1]        _raw_spin_lock_irqsave+0xd1/0x120
[  144.230684][    C1]        down_trylock+0x1c/0xa0
[  144.230699][    C1]        __down_trylock_console_sem+0x105/0x250
[  144.230715][    C1]        console_trylock_spinning+0x8a/0x3f0
[  144.230735][    C1]        vprintk_emit+0xa6/0x150
[  144.230749][    C1]        _printk+0xd1/0x120
[  144.230764][    C1]        report_bug+0x1e5/0x2e0
[  144.230782][    C1]        handle_bug+0x3d/0x70
[  144.230796][    C1]        exc_invalid_op+0x16/0x40
[  144.230811][    C1]        asm_exc_invalid_op+0x16/0x20
[  144.230825][    C1]        copy_from_user_nofault+0x15c/0x1c0
[  144.230840][    C1]        bpf_probe_read_compat+0xe4/0x180
[  144.230855][    C1]        bpf_prog_4595f2d530cd9aa3+0x35/0x5a4
[  144.230869][    C1]        bpf_trace_run3+0x1d1/0x380
[  144.230883][    C1]        enqueue_timer+0x3ae/0x540
[  144.230900][    C1]        __mod_timer+0xa60/0xeb0
[  144.230915][    C1]        dsp_cmx_send+0x21bb/0x2240
[  144.230930][    C1]        call_timer_fn+0x16d/0x560
[  144.230942][    C1]        __run_timers+0x67c/0x890
[  144.230957][    C1]        run_timer_softirq+0x63/0xf0
[  144.230972][    C1]        handle_softirqs+0x3a7/0x930
[  144.230985][    C1]        __irq_exit_rcu+0x157/0x240
[  144.230997][    C1]        irq_exit_rcu+0x5/0x20
[  144.231009][    C1]        sysvec_apic_timer_interrupt+0x91/0xb0
[  144.231027][    C1]        asm_sysvec_apic_timer_interrupt+0x16/0x20
[  144.231042][    C1]        unwind_next_frame+0xa58/0x1fa0
[  144.231057][    C1]        __unwind_start+0x59d/0x720
[  144.231071][    C1]        arch_stack_walk+0xdb/0x140
[  144.231087][    C1]        stack_trace_save+0x113/0x1c0
[  144.231102][    C1]        __kasan_slab_alloc+0x8e/0xc0
[  144.231115][    C1]        slab_post_alloc_hook+0x53/0x380
[  144.231131][    C1]        kmem_cache_alloc+0xf3/0x280
[  144.231145][    C1]        security_file_alloc+0x24/0x120
[  144.231160][    C1]        __alloc_file+0xc3/0x240
[  144.231176][    C1]        alloc_empty_file+0x92/0x180
[  144.231190][    C1]        alloc_file+0x5b/0x4f0
[  144.231205][    C1]        alloc_file_pseudo+0x259/0x2f0
[  144.231218][    C1]        sock_alloc_file+0xb4/0x240
[  144.231232][    C1]        __sys_socketpair+0x427/0x700
[  144.231247][    C1]        __x64_sys_socketpair+0x97/0xb0
[  144.231262][    C1]        do_syscall_64+0x3b/0xb0
[  144.231274][    C1]        entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  144.231288][    C1] 
[  144.231288][    C1] other info that might help us debug this:
[  144.231288][    C1] 
[  144.231292][    C1] Chain exists of:
[  144.231292][    C1]   (console_sem).lock --> &rq->__lock --> &base->lock
[  144.231292][    C1] 
[  144.231316][    C1]  Possible unsafe locking scenario:
[  144.231316][    C1] 
[  144.231320][    C1]        CPU0                    CPU1
[  144.231324][    C1]        ----                    ----
[  144.231328][    C1]   lock(&base->lock);
[  144.231337][    C1]                                lock(&rq->__lock);
[  144.231347][    C1]                                lock(&base->lock);
[  144.231357][    C1]   lock((console_sem).lock);
[  144.231366][    C1] 
[  144.231366][    C1]  *** DEADLOCK ***
[  144.231366][    C1] 
[  144.231369][    C1] 4 locks held by syz.0.687/5657:
[  144.231378][    C1]  #0: ffffc90000dd0be0 ((&dsp_spl_tl)){+.-.}-{0:0}, at: call_timer_fn+0xbe/0x560
[  144.231412][    C1]  #1: ffffffff8d7a54d8 (dsp_lock){..-.}-{2:2}, at: dsp_cmx_send+0x22/0x2240
[  144.231446][    C1]  #2: ffff8880b9b28098 (&base->lock){-.-.}-{2:2}, at: lock_timer_base+0x120/0x260
[  144.231481][    C1]  #3: ffffffff8c91fb20 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire+0x5/0x30
[  144.231517][    C1] 
[  144.231517][    C1] stack backtrace:
[  144.231522][    C1] CPU: 1 PID: 5657 Comm: syz.0.687 Not tainted 5.15.162-syzkaller #0
[  144.231538][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  144.231547][    C1] Call Trace:
[  144.231552][    C1]  <IRQ>
[  144.231558][    C1]  dump_stack_lvl+0x1e3/0x2d0
[  144.231576][    C1]  ? io_uring_drop_tctx_refs+0x1a0/0x1a0
[  144.231596][    C1]  ? print_circular_bug+0x12b/0x1a0
[  144.231612][    C1]  check_noncircular+0x2f8/0x3b0
[  144.231630][    C1]  ? add_chain_block+0x850/0x850
[  144.231645][    C1]  ? lockdep_lock+0x11f/0x2a0
[  144.231664][    C1]  validate_chain+0x1649/0x5930
[  144.231681][    C1]  ? unwind_get_return_address+0x49/0x80
[  144.231705][    C1]  ? reacquire_held_locks+0x660/0x660
[  144.231724][    C1]  ? lockdep_lock+0x11f/0x2a0
[  144.231746][    C1]  ? lockdep_unlock+0x166/0x300
[  144.231758][    C1]  ? lockdep_lock+0x2a0/0x2a0
[  144.231775][    C1]  ? mark_lock+0x98/0x340
[  144.231790][    C1]  __lock_acquire+0x1295/0x1ff0
[  144.231810][    C1]  lock_acquire+0x1db/0x4f0
[  144.231824][    C1]  ? down_trylock+0x1c/0xa0
[  144.231840][    C1]  ? vsnprintf+0x1c70/0x1c70
[  144.231859][    C1]  ? read_lock_is_recursive+0x10/0x10
[  144.231874][    C1]  ? memcpy+0x3c/0x60
[  144.231888][    C1]  ? vsnprintf+0x1b96/0x1c70
[  144.231905][    C1]  ? _prb_commit+0x30a/0x3e0
[  144.231921][    C1]  ? prb_reserve+0x1240/0x1240
[  144.231923][ T5564] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  144.231937][    C1]  _raw_spin_lock_irqsave+0xd1/0x120
[  144.231954][    C1]  ? down_trylock+0x1c/0xa0
[  144.231966][    C1]  ? _raw_spin_lock+0x40/0x40
[  144.231981][    C1]  ? vprintk_store+0xf1b/0x1300
[  144.231996][    C1]  down_trylock+0x1c/0xa0
[  144.232012][    C1]  __down_trylock_console_sem+0x105/0x250
[  144.232028][    C1]  ? printk_parse_prefix+0x2c0/0x2c0
[  144.232042][    C1]  ? vprintk_emit+0xa6/0x150
[  144.232055][    C1]  ? console_trylock+0x70/0x70
[  144.232072][    C1]  ? vprintk_emit+0xa6/0x150
[  144.232085][    C1]  console_trylock_spinning+0x8a/0x3f0
[  144.232099][    C1]  ? vprintk_emit+0x150/0x150
[  144.232113][    C1]  ? reacquire_held_locks+0x660/0x660
[  144.232127][    C1]  ? validate_chain+0x112/0x5930
[  144.232140][    C1]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[  144.232154][    C1]  ? ieee80211_rx_handlers+0x915a/0x91c0
[  144.232176][    C1]  vprintk_emit+0xa6/0x150
[  144.232190][    C1]  _printk+0xd1/0x120
[  144.232206][    C1]  ? mark_lock+0x98/0x340
[  144.232220][    C1]  ? report_bug+0x16e/0x2e0
[  144.232235][    C1]  ? panic+0x860/0x860
[  144.232250][    C1]  ? __lock_acquire+0x1295/0x1ff0
[  144.232265][    C1]  ? find_bug+0x9c/0x350
[  144.232281][    C1]  ? copy_from_user_nofault+0x15c/0x1c0
[  144.232295][    C1]  report_bug+0x1e5/0x2e0
[  144.232312][    C1]  handle_bug+0x3d/0x70
[  144.232326][    C1]  exc_invalid_op+0x16/0x40
[  144.232341][    C1]  asm_exc_invalid_op+0x16/0x20
[  144.232361][    C1] RIP: 0010:copy_from_user_nofault+0x15c/0x1c0
[  144.232377][    C1] Code: db 48 c7 c0 f2 ff ff ff 48 0f 44 c5 eb 0c e8 ab cd d5 ff 48 c7 c0 f2 ff ff ff 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 94 cd d5 ff <0f> 0b e9 1e ff ff ff 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c ef fe ff
[  144.232390][    C1] RSP: 0018:ffffc90000dd0770 EFLAGS: 00010046
[  144.232403][    C1] RAX: ffffffff81aa8dcc RBX: 0000000000000000 RCX: ffff88801ca08000
[  144.232414][    C1] RDX: 0000000080000104 RSI: 0000000000000000 RDI: 0000000000000000
[  144.232423][    C1] RBP: dffffc0000000000 R08: ffffffff81aa8cdd R09: ffffed1003941001
[  144.232434][    C1] R10: 0000000000000000 R11: dffffc0000000001 R12: 000000007fffffe8
[  144.232444][    C1] R13: 0000000000000000 R14: 000000007fffffe8 R15: ffffc90000dd07e8
[  144.232457][    C1]  ? copy_from_user_nofault+0x6d/0x1c0
[  144.232470][    C1]  ? copy_from_user_nofault+0x15c/0x1c0
[  144.232488][    C1]  bpf_probe_read_compat+0xe4/0x180
[  144.232504][    C1]  bpf_prog_4595f2d530cd9aa3+0x35/0x5a4
[  144.232517][    C1]  bpf_trace_run3+0x1d1/0x380
[  144.232532][    C1]  ? bpf_trace_run2+0x340/0x340
[  144.232545][    C1]  ? _raw_spin_unlock_irqrestore+0xd9/0x130
[  144.232563][    C1]  ? _raw_spin_lock_irqsave+0xdd/0x120
[  144.232583][    C1]  ? _raw_spin_lock+0x40/0x40
[  144.232601][    C1]  enqueue_timer+0x3ae/0x540
[  144.232619][    C1]  __mod_timer+0xa60/0xeb0
[  144.232635][    C1]  ? seqcount_lockdep_reader_access+0x1bd/0x220
[  144.232653][    C1]  ? mod_timer_pending+0x20/0x20
[  144.232668][    C1]  ? _raw_read_unlock_irqrestore+0xd9/0x130
[  144.232682][    C1]  ? _raw_read_unlock+0x40/0x40
[  144.232693][    C1]  ? _raw_spin_lock_irqsave+0xdd/0x120
[  144.232710][    C1]  ? _raw_spin_lock+0x40/0x40
[  144.232727][    C1]  ? ktime_get+0x242/0x270
[  144.232746][    C1]  dsp_cmx_send+0x21bb/0x2240
[  144.232761][    C1]  ? read_lock_is_recursive+0x10/0x10
[  144.232776][    C1]  ? detach_timer+0x24/0x2f0
[  144.232797][    C1]  call_timer_fn+0x16d/0x560
[  144.232810][    C1]  ? dsp_cmx_receive+0x1370/0x1370
[  144.232824][    C1]  ? __run_timers+0x890/0x890
[  144.232842][    C1]  ? do_raw_spin_unlock+0x137/0x8b0
[  144.232857][    C1]  ? _raw_spin_unlock_irq+0x1f/0x40
[  144.232872][    C1]  ? dsp_cmx_receive+0x1370/0x1370
[  144.232886][    C1]  ? lockdep_hardirqs_on+0x94/0x130
[  144.232902][    C1]  ? dsp_cmx_receive+0x1370/0x1370
[  144.232916][    C1]  __run_timers+0x67c/0x890
[  144.232936][    C1]  ? detach_timer+0x2f0/0x2f0
[  144.232951][    C1]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[  144.232967][    C1]  ? ktime_get_real_ts64+0x460/0x460
[  144.232984][    C1]  run_timer_softirq+0x63/0xf0
[  144.233000][    C1]  handle_softirqs+0x3a7/0x930
[  144.233016][    C1]  ? __irq_exit_rcu+0x157/0x240
[  144.233031][    C1]  ? do_softirq+0x240/0x240
[  144.233043][    C1]  ? hrtimer_interrupt+0x76b/0x980
[  144.233057][    C1]  ? irqtime_account_irq+0xd0/0x1e0
[  144.233075][    C1]  __irq_exit_rcu+0x157/0x240
[  144.233088][    C1]  ? irq_exit_rcu+0x20/0x20
[  144.233105][    C1]  irq_exit_rcu+0x5/0x20
[  144.233117][    C1]  sysvec_apic_timer_interrupt+0x91/0xb0
[  144.233134][    C1]  </IRQ>
[  144.233138][    C1]  <TASK>
[  144.233142][    C1]  asm_sysvec_apic_timer_interrupt+0x16/0x20
[  144.233157][    C1] RIP: 0010:unwind_next_frame+0xa58/0x1fa0
[  144.233174][    C1] Code: 85 b3 0e 00 00 49 89 dd 49 c1 ed 03 41 0f b6 44 15 00 84 c0 0f 85 c7 0e 00 00 0f b6 75 01 83 e6 03 83 fe 02 0f 84 83 01 00 00 <83> fe 01 0f 84 ab 02 00 00 85 f6 0f 85 dc 03 00 00 4c 89 74 24 10
[  144.233186][    C1] RSP: 0018:ffffc90002de7648 EFLAGS: 00000293
[  144.233198][    C1] RAX: 0000000000000000 RBX: ffffffff8e59aecf RCX: ffffffff8df25edc
[  144.233208][    C1] RDX: dffffc0000000000 RSI: 0000000000000000 RDI: ffffffff8df25eb8
[  144.233217][    C1] RBP: ffffffff8e59aece R08: 0000000000000009 R09: ffffc90002de7760
[  144.233228][    C1] R10: 0000000000000000 R11: dffffc0000000001 R12: 1ffffffff1cb35d9
[  144.233238][    C1] R13: 1ffffffff1cb35d9 R14: ffffffff8e59aeca R15: ffffc90002de7760
[  144.233255][    C1]  ? unwind_next_frame+0xbb/0x1fa0
[  144.233273][    C1]  ? __unwind_start+0xef/0x720
[  144.233290][    C1]  __unwind_start+0x59d/0x720
[  144.233312][    C1]  ? stack_trace_save+0x1c0/0x1c0
[  144.233324][    C1]  arch_stack_walk+0xdb/0x140
[  144.233340][    C1]  ? __unwind_start+0xef/0x720
[  144.233355][    C1]  stack_trace_save+0x113/0x1c0
[  144.233371][    C1]  ? stack_trace_snprint+0xe0/0xe0
[  144.233384][    C1]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[  144.233401][    C1]  ? print_irqtrace_events+0x210/0x210
[  144.233418][    C1]  __kasan_slab_alloc+0x8e/0xc0
[  144.233448][    C1]  slab_post_alloc_hook+0x53/0x380
[  144.233465][    C1]  ? should_failslab+0x5/0x20
[  144.233479][    C1]  ? slab_pre_alloc_hook+0x53/0xc0
[  144.233492][    C1]  ? security_file_alloc+0x24/0x120
[  144.233508][    C1]  kmem_cache_alloc+0xf3/0x280
[  144.233525][    C1]  security_file_alloc+0x24/0x120
[  144.233541][    C1]  __alloc_file+0xc3/0x240
[  144.233558][    C1]  alloc_empty_file+0x92/0x180
[  144.233574][    C1]  alloc_file+0x5b/0x4f0
[  144.233592][    C1]  alloc_file_pseudo+0x259/0x2f0
[  144.233610][    C1]  ? alloc_empty_file_noaccount+0x80/0x80
[  144.233627][    C1]  ? tipc_node_get_capabilities+0xe7/0x120
[  144.233646][    C1]  sock_alloc_file+0xb4/0x240
[  144.233666][    C1]  __sys_socketpair+0x427/0x700
[  144.233684][    C1]  ? __ia32_sys_socket+0x80/0x80
[  144.233699][    C1]  ? vtime_user_exit+0x2d1/0x400
[  144.233716][    C1]  ? syscall_enter_from_user_mode+0x2e/0x240
[  144.233739][    C1]  __x64_sys_socketpair+0x97/0xb0
[  144.233756][    C1]  do_syscall_64+0x3b/0xb0
[  144.233769][    C1]  ? clear_bhb_loop+0x15/0x70
[  144.233784][    C1]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  144.233798][    C1] RIP: 0033:0x7f4824402bd9
[  144.233810][    C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  144.233821][    C1] RSP: 002b:00007f4822e83048 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[  144.233835][    C1] RAX: ffffffffffffffda RBX: 00007f4824590f60 RCX: 00007f4824402bd9
[  144.233847][    C1] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 000000000000001e
[  144.233856][    C1] RBP: 00007f4824471e60 R08: 0000000000000000 R09: 0000000000000000
[  144.233865][    C1] R10: 0000000020000140 R11: 0000000000000246 R12: 0000000000000000
[  144.233874][    C1] R13: 000000000000000b R14: 00007f4824590f60 R15: 00007ffefbdb2a08
[  144.233890][    C1]  </TASK>
[  145.787721][    C1] WARNING: CPU: 1 PID: 5657 at mm/maccess.c:226 copy_from_user_nofault+0x15c/0x1c0
[  145.796990][    C1] Modules linked in:
[  145.800861][    C1] CPU: 1 PID: 5657 Comm: syz.0.687 Not tainted 5.15.162-syzkaller #0
[  145.808890][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  145.818913][    C1] RIP: 0010:copy_from_user_nofault+0x15c/0x1c0
[  145.825035][    C1] Code: db 48 c7 c0 f2 ff ff ff 48 0f 44 c5 eb 0c e8 ab cd d5 ff 48 c7 c0 f2 ff ff ff 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 94 cd d5 ff <0f> 0b e9 1e ff ff ff 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c ef fe ff
[  145.844607][    C1] RSP: 0018:ffffc90000dd0770 EFLAGS: 00010046
[  145.850644][    C1] RAX: ffffffff81aa8dcc RBX: 0000000000000000 RCX: ffff88801ca08000
[  145.858584][    C1] RDX: 0000000080000104 RSI: 0000000000000000 RDI: 0000000000000000
[  145.866521][    C1] RBP: dffffc0000000000 R08: ffffffff81aa8cdd R09: ffffed1003941001
[  145.874457][    C1] R10: 0000000000000000 R11: dffffc0000000001 R12: 000000007fffffe8
[  145.882412][    C1] R13: 0000000000000000 R14: 000000007fffffe8 R15: ffffc90000dd07e8
[  145.890354][    C1] FS:  00007f4822e836c0(0000) GS:ffff8880b9b00000(0000) knlGS:0000000000000000
[  145.899252][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  145.905804][    C1] CR2: 000000110c3f65af CR3: 0000000063c5c000 CR4: 00000000003506e0
[  145.913747][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  145.921691][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  145.929644][    C1] Call Trace:
[  145.932902][    C1]  <IRQ>
[  145.935727][    C1]  ? __warn+0x15b/0x300
[  145.939860][    C1]  ? copy_from_user_nofault+0x15c/0x1c0
[  145.945376][    C1]  ? report_bug+0x1b7/0x2e0
[  145.949856][    C1]  ? handle_bug+0x3d/0x70
[  145.954153][    C1]  ? exc_invalid_op+0x16/0x40
[  145.958797][    C1]  ? asm_exc_invalid_op+0x16/0x20
[  145.963788][    C1]  ? copy_from_user_nofault+0x6d/0x1c0
[  145.969233][    C1]  ? copy_from_user_nofault+0x15c/0x1c0
[  145.974745][    C1]  ? copy_from_user_nofault+0x15c/0x1c0
[  145.980257][    C1]  bpf_probe_read_compat+0xe4/0x180
[  145.985433][    C1]  bpf_prog_4595f2d530cd9aa3+0x35/0x5a4
[  145.990958][    C1]  bpf_trace_run3+0x1d1/0x380
[  145.995614][    C1]  ? bpf_trace_run2+0x340/0x340
[  146.000441][    C1]  ? _raw_spin_unlock_irqrestore+0xd9/0x130
[  146.006311][    C1]  ? _raw_spin_lock_irqsave+0xdd/0x120
[  146.011744][    C1]  ? _raw_spin_lock+0x40/0x40
[  146.016391][    C1]  enqueue_timer+0x3ae/0x540
[  146.020956][    C1]  __mod_timer+0xa60/0xeb0
[  146.025342][    C1]  ? seqcount_lockdep_reader_access+0x1bd/0x220
[  146.031552][    C1]  ? mod_timer_pending+0x20/0x20
[  146.036457][    C1]  ? _raw_read_unlock_irqrestore+0xd9/0x130
[  146.042317][    C1]  ? _raw_read_unlock+0x40/0x40
[  146.047135][    C1]  ? _raw_spin_lock_irqsave+0xdd/0x120
[  146.052563][    C1]  ? _raw_spin_lock+0x40/0x40
[  146.057208][    C1]  ? ktime_get+0x242/0x270
[  146.061592][    C1]  dsp_cmx_send+0x21bb/0x2240
[  146.066237][    C1]  ? read_lock_is_recursive+0x10/0x10
[  146.071588][    C1]  ? detach_timer+0x24/0x2f0
[  146.076151][    C1]  call_timer_fn+0x16d/0x560
[  146.080706][    C1]  ? dsp_cmx_receive+0x1370/0x1370
[  146.085787][    C1]  ? __run_timers+0x890/0x890
[  146.090431][    C1]  ? do_raw_spin_unlock+0x137/0x8b0
[  146.095602][    C1]  ? _raw_spin_unlock_irq+0x1f/0x40
[  146.100780][    C1]  ? dsp_cmx_receive+0x1370/0x1370
[  146.105858][    C1]  ? lockdep_hardirqs_on+0x94/0x130
[  146.111024][    C1]  ? dsp_cmx_receive+0x1370/0x1370
[  146.116103][    C1]  __run_timers+0x67c/0x890
[  146.120577][    C1]  ? detach_timer+0x2f0/0x2f0
[  146.125220][    C1]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[  146.131169][    C1]  ? ktime_get_real_ts64+0x460/0x460
[  146.136454][    C1]  run_timer_softirq+0x63/0xf0
[  146.141185][    C1]  handle_softirqs+0x3a7/0x930
[  146.145916][    C1]  ? __irq_exit_rcu+0x157/0x240
[  146.150733][    C1]  ? do_softirq+0x240/0x240
[  146.155202][    C1]  ? hrtimer_interrupt+0x76b/0x980
[  146.160281][    C1]  ? irqtime_account_irq+0xd0/0x1e0
[  146.165462][    C1]  __irq_exit_rcu+0x157/0x240
[  146.170109][    C1]  ? irq_exit_rcu+0x20/0x20
[  146.174580][    C1]  irq_exit_rcu+0x5/0x20
[  146.178791][    C1]  sysvec_apic_timer_interrupt+0x91/0xb0
[  146.184394][    C1]  </IRQ>
[  146.187297][    C1]  <TASK>
[  146.190198][    C1]  asm_sysvec_apic_timer_interrupt+0x16/0x20
[  146.196145][    C1] RIP: 0010:unwind_next_frame+0xa58/0x1fa0
[  146.201929][    C1] Code: 85 b3 0e 00 00 49 89 dd 49 c1 ed 03 41 0f b6 44 15 00 84 c0 0f 85 c7 0e 00 00 0f b6 75 01 83 e6 03 83 fe 02 0f 84 83 01 00 00 <83> fe 01 0f 84 ab 02 00 00 85 f6 0f 85 dc 03 00 00 4c 89 74 24 10
[  146.221668][    C1] RSP: 0018:ffffc90002de7648 EFLAGS: 00000293
[  146.227707][    C1] RAX: 0000000000000000 RBX: ffffffff8e59aecf RCX: ffffffff8df25edc
[  146.235647][    C1] RDX: dffffc0000000000 RSI: 0000000000000000 RDI: ffffffff8df25eb8
[  146.243587][    C1] RBP: ffffffff8e59aece R08: 0000000000000009 R09: ffffc90002de7760
[  146.251525][    C1] R10: 0000000000000000 R11: dffffc0000000001 R12: 1ffffffff1cb35d9
[  146.259463][    C1] R13: 1ffffffff1cb35d9 R14: ffffffff8e59aeca R15: ffffc90002de7760
[  146.267409][    C1]  ? unwind_next_frame+0xbb/0x1fa0
[  146.272494][    C1]  ? __unwind_start+0xef/0x720
[  146.277227][    C1]  __unwind_start+0x59d/0x720
[  146.281871][    C1]  ? stack_trace_save+0x1c0/0x1c0
[  146.286866][    C1]  arch_stack_walk+0xdb/0x140
[  146.291511][    C1]  ? __unwind_start+0xef/0x720
[  146.296245][    C1]  stack_trace_save+0x113/0x1c0
[  146.301060][    C1]  ? stack_trace_snprint+0xe0/0xe0
[  146.306146][    C1]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[  146.312091][    C1]  ? print_irqtrace_events+0x210/0x210
[  146.317515][    C1]  __kasan_slab_alloc+0x8e/0xc0
[  146.322347][    C1]  slab_post_alloc_hook+0x53/0x380
[  146.327425][    C1]  ? should_failslab+0x5/0x20
[  146.332070][    C1]  ? slab_pre_alloc_hook+0x53/0xc0
[  146.337147][    C1]  ? security_file_alloc+0x24/0x120
[  146.342318][    C1]  kmem_cache_alloc+0xf3/0x280
[  146.347048][    C1]  security_file_alloc+0x24/0x120
[  146.352038][    C1]  __alloc_file+0xc3/0x240
[  146.356422][    C1]  alloc_empty_file+0x92/0x180
[  146.361156][    C1]  alloc_file+0x5b/0x4f0
[  146.365365][    C1]  alloc_file_pseudo+0x259/0x2f0
[  146.370269][    C1]  ? alloc_empty_file_noaccount+0x80/0x80
[  146.375960][    C1]  ? tipc_node_get_capabilities+0xe7/0x120
[  146.381736][    C1]  sock_alloc_file+0xb4/0x240
[  146.386381][    C1]  __sys_socketpair+0x427/0x700
[  146.391199][    C1]  ? __ia32_sys_socket+0x80/0x80
[  146.396104][    C1]  ? vtime_user_exit+0x2d1/0x400
[  146.401008][    C1]  ? syscall_enter_from_user_mode+0x2e/0x240
[  146.406955][    C1]  __x64_sys_socketpair+0x97/0xb0
[  146.411943][    C1]  do_syscall_64+0x3b/0xb0
[  146.416323][    C1]  ? clear_bhb_loop+0x15/0x70
[  146.420964][    C1]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  146.426828][    C1] RIP: 0033:0x7f4824402bd9
[  146.431211][    C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  146.450782][    C1] RSP: 002b:00007f4822e83048 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[  146.459162][    C1] RAX: ffffffffffffffda RBX: 00007f4824590f60 RCX: 00007f4824402bd9
[  146.467098][    C1] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 000000000000001e
[  146.475036][    C1] RBP: 00007f4824471e60 R08: 0000000000000000 R09: 0000000000000000
[  146.482983][    C1] R10: 0000000020000140 R11: 0000000000000246 R12: 0000000000000000
[  146.490919][    C1] R13: 000000000000000b R14: 00007f4824590f60 R15: 00007ffefbdb2a08
[  146.498859][    C1]  </TASK>
[  146.501855][    C1] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  146.509097][    C1] CPU: 1 PID: 5657 Comm: syz.0.687 Not tainted 5.15.162-syzkaller #0
[  146.517126][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  146.527160][    C1] Call Trace:
[  146.530410][    C1]  <IRQ>
[  146.533222][    C1]  dump_stack_lvl+0x1e3/0x2d0
[  146.537866][    C1]  ? io_uring_drop_tctx_refs+0x1a0/0x1a0
[  146.543464][    C1]  ? panic+0x860/0x860
[  146.547499][    C1]  ? copy_from_user_nofault+0x90/0x1c0
[  146.552922][    C1]  ? copy_from_user_nofault+0x90/0x1c0
[  146.558347][    C1]  panic+0x318/0x860
[  146.562209][    C1]  ? __warn+0x16a/0x300
[  146.566337][    C1]  ? fb_is_primary_device+0xd0/0xd0
[  146.571504][    C1]  ? copy_from_user_nofault+0x15c/0x1c0
[  146.577016][    C1]  __warn+0x2b2/0x300
[  146.580962][    C1]  ? copy_from_user_nofault+0x15c/0x1c0
[  146.586470][    C1]  report_bug+0x1b7/0x2e0
[  146.590768][    C1]  handle_bug+0x3d/0x70
[  146.594891][    C1]  exc_invalid_op+0x16/0x40
[  146.599358][    C1]  asm_exc_invalid_op+0x16/0x20
[  146.604174][    C1] RIP: 0010:copy_from_user_nofault+0x15c/0x1c0
[  146.610292][    C1] Code: db 48 c7 c0 f2 ff ff ff 48 0f 44 c5 eb 0c e8 ab cd d5 ff 48 c7 c0 f2 ff ff ff 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 94 cd d5 ff <0f> 0b e9 1e ff ff ff 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c ef fe ff
[  146.629862][    C1] RSP: 0018:ffffc90000dd0770 EFLAGS: 00010046
[  146.635915][    C1] RAX: ffffffff81aa8dcc RBX: 0000000000000000 RCX: ffff88801ca08000
[  146.643857][    C1] RDX: 0000000080000104 RSI: 0000000000000000 RDI: 0000000000000000
[  146.651794][    C1] RBP: dffffc0000000000 R08: ffffffff81aa8cdd R09: ffffed1003941001
[  146.659730][    C1] R10: 0000000000000000 R11: dffffc0000000001 R12: 000000007fffffe8
[  146.667668][    C1] R13: 0000000000000000 R14: 000000007fffffe8 R15: ffffc90000dd07e8
[  146.675607][    C1]  ? copy_from_user_nofault+0x6d/0x1c0
[  146.681045][    C1]  ? copy_from_user_nofault+0x15c/0x1c0
[  146.686558][    C1]  bpf_probe_read_compat+0xe4/0x180
[  146.691722][    C1]  bpf_prog_4595f2d530cd9aa3+0x35/0x5a4
[  146.697231][    C1]  bpf_trace_run3+0x1d1/0x380
[  146.701872][    C1]  ? bpf_trace_run2+0x340/0x340
[  146.706687][    C1]  ? _raw_spin_unlock_irqrestore+0xd9/0x130
[  146.712549][    C1]  ? _raw_spin_lock_irqsave+0xdd/0x120
[  146.717974][    C1]  ? _raw_spin_lock+0x40/0x40
[  146.722617][    C1]  enqueue_timer+0x3ae/0x540
[  146.727178][    C1]  __mod_timer+0xa60/0xeb0
[  146.731561][    C1]  ? seqcount_lockdep_reader_access+0x1bd/0x220
[  146.737774][    C1]  ? mod_timer_pending+0x20/0x20
[  146.742675][    C1]  ? _raw_read_unlock_irqrestore+0xd9/0x130
[  146.748545][    C1]  ? _raw_read_unlock+0x40/0x40
[  146.753360][    C1]  ? _raw_spin_lock_irqsave+0xdd/0x120
[  146.758786][    C1]  ? _raw_spin_lock+0x40/0x40
[  146.763431][    C1]  ? ktime_get+0x242/0x270
[  146.767812][    C1]  dsp_cmx_send+0x21bb/0x2240
[  146.772457][    C1]  ? read_lock_is_recursive+0x10/0x10
[  146.777808][    C1]  ? detach_timer+0x24/0x2f0
[  146.782455][    C1]  call_timer_fn+0x16d/0x560
[  146.787010][    C1]  ? dsp_cmx_receive+0x1370/0x1370
[  146.792088][    C1]  ? __run_timers+0x890/0x890
[  146.796731][    C1]  ? do_raw_spin_unlock+0x137/0x8b0
[  146.801896][    C1]  ? _raw_spin_unlock_irq+0x1f/0x40
[  146.807060][    C1]  ? dsp_cmx_receive+0x1370/0x1370
[  146.812140][    C1]  ? lockdep_hardirqs_on+0x94/0x130
[  146.817319][    C1]  ? dsp_cmx_receive+0x1370/0x1370
[  146.822396][    C1]  __run_timers+0x67c/0x890
[  146.826870][    C1]  ? detach_timer+0x2f0/0x2f0
[  146.831510][    C1]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[  146.837456][    C1]  ? ktime_get_real_ts64+0x460/0x460
[  146.842708][    C1]  run_timer_softirq+0x63/0xf0
[  146.847437][    C1]  handle_softirqs+0x3a7/0x930
[  146.852167][    C1]  ? __irq_exit_rcu+0x157/0x240
[  146.856981][    C1]  ? do_softirq+0x240/0x240
[  146.861448][    C1]  ? hrtimer_interrupt+0x76b/0x980
[  146.866526][    C1]  ? irqtime_account_irq+0xd0/0x1e0
[  146.871690][    C1]  __irq_exit_rcu+0x157/0x240
[  146.876332][    C1]  ? irq_exit_rcu+0x20/0x20
[  146.880800][    C1]  irq_exit_rcu+0x5/0x20
[  146.885005][    C1]  sysvec_apic_timer_interrupt+0x91/0xb0
[  146.890604][    C1]  </IRQ>
[  146.893508][    C1]  <TASK>
[  146.896409][    C1]  asm_sysvec_apic_timer_interrupt+0x16/0x20
[  146.902357][    C1] RIP: 0010:unwind_next_frame+0xa58/0x1fa0
[  146.908131][    C1] Code: 85 b3 0e 00 00 49 89 dd 49 c1 ed 03 41 0f b6 44 15 00 84 c0 0f 85 c7 0e 00 00 0f b6 75 01 83 e6 03 83 fe 02 0f 84 83 01 00 00 <83> fe 01 0f 84 ab 02 00 00 85 f6 0f 85 dc 03 00 00 4c 89 74 24 10
[  146.927701][    C1] RSP: 0018:ffffc90002de7648 EFLAGS: 00000293
[  146.933733][    C1] RAX: 0000000000000000 RBX: ffffffff8e59aecf RCX: ffffffff8df25edc
[  146.941672][    C1] RDX: dffffc0000000000 RSI: 0000000000000000 RDI: ffffffff8df25eb8
[  146.949617][    C1] RBP: ffffffff8e59aece R08: 0000000000000009 R09: ffffc90002de7760
[  146.957572][    C1] R10: 0000000000000000 R11: dffffc0000000001 R12: 1ffffffff1cb35d9
[  146.965515][    C1] R13: 1ffffffff1cb35d9 R14: ffffffff8e59aeca R15: ffffc90002de7760
[  146.973464][    C1]  ? unwind_next_frame+0xbb/0x1fa0
[  146.978552][    C1]  ? __unwind_start+0xef/0x720
[  146.983288][    C1]  __unwind_start+0x59d/0x720
[  146.987935][    C1]  ? stack_trace_save+0x1c0/0x1c0
[  146.992930][    C1]  arch_stack_walk+0xdb/0x140
[  146.997580][    C1]  ? __unwind_start+0xef/0x720
[  147.002312][    C1]  stack_trace_save+0x113/0x1c0
[  147.007134][    C1]  ? stack_trace_snprint+0xe0/0xe0
[  147.012210][    C1]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[  147.018163][    C1]  ? print_irqtrace_events+0x210/0x210
[  147.023589][    C1]  __kasan_slab_alloc+0x8e/0xc0
[  147.028420][    C1]  slab_post_alloc_hook+0x53/0x380
[  147.033498][    C1]  ? should_failslab+0x5/0x20
[  147.038146][    C1]  ? slab_pre_alloc_hook+0x53/0xc0
[  147.043224][    C1]  ? security_file_alloc+0x24/0x120
[  147.048392][    C1]  kmem_cache_alloc+0xf3/0x280
[  147.053123][    C1]  security_file_alloc+0x24/0x120
[  147.058113][    C1]  __alloc_file+0xc3/0x240
[  147.062501][    C1]  alloc_empty_file+0x92/0x180
[  147.067232][    C1]  alloc_file+0x5b/0x4f0
[  147.071446][    C1]  alloc_file_pseudo+0x259/0x2f0
[  147.076350][    C1]  ? alloc_empty_file_noaccount+0x80/0x80
[  147.082052][    C1]  ? tipc_node_get_capabilities+0xe7/0x120
[  147.087827][    C1]  sock_alloc_file+0xb4/0x240
[  147.092474][    C1]  __sys_socketpair+0x427/0x700
[  147.097295][    C1]  ? __ia32_sys_socket+0x80/0x80
[  147.102199][    C1]  ? vtime_user_exit+0x2d1/0x400
[  147.107104][    C1]  ? syscall_enter_from_user_mode+0x2e/0x240
[  147.113053][    C1]  __x64_sys_socketpair+0x97/0xb0
[  147.118045][    C1]  do_syscall_64+0x3b/0xb0
[  147.122427][    C1]  ? clear_bhb_loop+0x15/0x70
[  147.127073][    C1]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  147.132945][    C1] RIP: 0033:0x7f4824402bd9
[  147.137330][    C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  147.156904][    C1] RSP: 002b:00007f4822e83048 EFLAGS: 00000246 ORIG_RAX: 0000000000000035
[  147.165284][    C1] RAX: ffffffffffffffda RBX: 00007f4824590f60 RCX: 00007f4824402bd9
[  147.173225][    C1] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 000000000000001e
[  147.181170][    C1] RBP: 00007f4824471e60 R08: 0000000000000000 R09: 0000000000000000
[  147.189120][    C1] R10: 0000000020000140 R11: 0000000000000246 R12: 0000000000000000
[  147.197059][    C1] R13: 000000000000000b R14: 00007f4824590f60 R15: 00007ffefbdb2a08
[  147.205004][    C1]  </TASK>
[  148.288736][    C1] Shutting down cpus with NMI
[  148.293771][    C1] Kernel Offset: disabled
[  148.298098][    C1] Rebooting in 86400 seconds..