last executing test programs:

6m18.855366185s ago: executing program 3 (id=1079):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x7, @ipv4={'\x00', '\xff\xff', @local}, 0x1}, 0x1c)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000400)=0x1, 0x4)
recvfrom(r0, &(0x7f0000002300)=""/4103, 0x20, 0x2, 0x0, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000200), r0)
setsockopt$sock_int(r0, 0x1, 0x12, &(0x7f00000000c0)=0x8, 0x4)

6m17.802747938s ago: executing program 3 (id=1082):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x881, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000300)={0x1, 0x0, [{0x40000021, 0x0, 0x1af}]})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x8)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

6m17.481067318s ago: executing program 3 (id=1087):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x20800, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
syz_kvm_setup_syzos_vm$x86(r1, &(0x7f0000b18000/0x400000)=nil)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4040aea0, &(0x7f0000000140)=@x86={0x6, 0x0, 0x8, 0x0, 0x3, 0x8, 0x84, 0xb, 0x1, 0x13, 0x5, 0x70, 0x0, 0x8, 0xb, 0xfe, 0x0, 0x0, 0x7, '\x00', 0x4, 0x80000000004})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

6m17.179740207s ago: executing program 3 (id=1090):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x51)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x81899, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/../file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000080)='./file0/file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount(0x0, &(0x7f0000000280)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$tmpfs(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0)

6m17.010564243s ago: executing program 3 (id=1093):
openat$ppp(0xffffffffffffff9c, 0x0, 0x8001, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0))
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={<r0=>0xffffffffffffffff})
sendmmsg(r0, &(0x7f0000001c00), 0x400000000000159, 0x40840)
socket$inet_tcp(0x2, 0x1, 0x0)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
syz_usb_connect$uac1(0x0, 0xa4, &(0x7f0000000080)=ANY=[@ANYBLOB="2a01000020000040b708000000000000030109029200030172e5000904000000010100000a24010000000201020c0d2407000005000000000000000c240000e9fffff5ffffffff092403f3ff000005024524", @ANYRES8=r1, @ANYBLOB="05"], 0x0)

6m16.603235376s ago: executing program 3 (id=1096):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f00000000c0)={0x6})
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000180)={0x20, 0xff, 0x4, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0xff, 0x2, 0xd9, 0x93}, 0xe)
sendto$inet6(r0, &(0x7f0000000300)="8b", 0x34000, 0x0, &(0x7f0000000000)={0xa, 0x0, 0x0, @private1}, 0x1c)
fcntl$setstatus(r0, 0x4, 0x2000)
shutdown(r0, 0x1)

6m15.596799257s ago: executing program 32 (id=1096):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f00000000c0)={0x6})
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000180)={0x20, 0xff, 0x4, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0xff, 0x2, 0xd9, 0x93}, 0xe)
sendto$inet6(r0, &(0x7f0000000300)="8b", 0x34000, 0x0, &(0x7f0000000000)={0xa, 0x0, 0x0, @private1}, 0x1c)
fcntl$setstatus(r0, 0x4, 0x2000)
shutdown(r0, 0x1)

5.020086003s ago: executing program 0 (id=2314):
syz_open_dev$vbi(&(0x7f0000000380), 0x0, 0x2)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pwritev(r0, &(0x7f0000000480)=[{0x0}, {0x0}, {&(0x7f00000003c0)="77cccb0deedbb94f1afd3ccb469a6721cc637e9cbc7f0685c4ab02897a615638b1ba209474e485e5c676dab2f779fc45e14a15eb8cab8dce71eaea08ea87db5609774523b75431043e4a32f82c5b61bea2b9b0eff207d81c7b175cfcb3e448d7fcac8844402e9401582eeb4a08d247096e183b9b7de727a818150a153b9397c4cc61a6bd461f30fb84b679bca11d47c56904a9d359442a5c3693048b8aa179cf9385", 0xa2}, {0x0}, {&(0x7f0000000300)}], 0x5, 0x8, 0x20000006)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, 0x0, 0x4b}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, &(0x7f0000000200)="f7790066baa00066b86b4266ef66ba420066b8e20066ef0f29902cbb0000c4e2b1ba8c88d9000000666666440f38826b410f7842280f07b8010000000f01d9c4033921820f47a753fd", 0x49}], 0x1, 0x43, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000040)={[0x4, 0x2, 0xe9b, 0x2, 0xd, 0x7f, 0x44233, 0x9, 0x80, 0x941, 0x8001, 0x1005, 0x4, 0x4, 0x0, 0xfffffdfffffffffd], 0xb000, 0x84340})
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000140)=@arm64={0x52, 0x6, 0x40, '\x00', 0x10000})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

3.84592255s ago: executing program 0 (id=2322):
syz_mount_image$reiserfs(&(0x7f0000000140), &(0x7f0000001140)='./file6\x00', 0x98, &(0x7f0000000280), 0x1, 0x10ef, &(0x7f00000022c0)="$eJzs2DGLE0EYBuB3dg/kqshcvx5oYSHHHfEPXKGQxsLaLljZmUrJz/HnyFX2R3pTBOyVTQwJEhDJYuB4Hlh252Vmvp1yvgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEDvLPlekosmqdusSVKSrrubLJJ02/zx17ZJydv3k9mrj+PXs8209FmT0q9aj+vN01rHdVxv6suL22d19unzh3avZEmX+9V8ev5mOehR+trtoDsCAADAw/DzaKMT1wcAAAD+ZrBGAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMAA6vajSVKSrrubLJJ0p/0tAAAA4EglTd6NDuWbNsDOi3wblZRHu+RH6edc58uB9QAAAMC/KXv38ec5z5O9/DJnubrajH+/srxN2iTXf+xzv5pP18/lfFr+5wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgF/swLEAAAAAgDB/6zQ6NgAAAAAAAAAAAAAAAGCqAAAA//9TGNII")
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x24, 0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x42, 0x81)
truncate(&(0x7f0000000900)='./file1\x00', 0x3000000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x15)
pwrite64(r1, &(0x7f0000000140)='/', 0x1, 0xc00)
syz_mount_image$reiserfs(&(0x7f0000000180), &(0x7f0000000280)='./file0\x00', 0x1080098, &(0x7f00000002c0), 0xfe, 0x10fd, &(0x7f0000006200)="$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")
write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000)
write$binfmt_script(r0, &(0x7f0000000200), 0xfea7)

3.84507071s ago: executing program 2 (id=2324):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x1, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000440)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x1, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x3, 0xae0, 0x6361, 0x5, 0xffffffff, 0x3}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40088c1}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000180)=@newqdisc={0x40, 0x24, 0x4ee4e6a52ff56541, 0x70bd28, 0x25dfdc01, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xb}, {0x4, 0xffe0}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0xc, 0x2, [@TCA_FQ_CODEL_MEMORY_LIMIT={0x8, 0x9, 0x6}]}}]}, 0x40}, 0x1, 0x0, 0x0, 0x240408a0}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$tipc(&(0x7f0000000140), r4)
sendmsg$TIPC_CMD_ENABLE_BEARER(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}, 0x1, 0x0, 0x0, 0x44081}, 0x0)

3.397232454s ago: executing program 2 (id=2325):
ioctl$int_in(0xffffffffffffffff, 0x40000000af01, 0x0)
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_INITMSG(r0, 0x84, 0x2, 0x0, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, 0xffffffffffffffff, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r1 = syz_ublk_setup_io_uring(0x1d, &(0x7f0000000040)={0x0, 0x30b5, 0x0, 0x2, 0x158}, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000280)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_ublk_add_dev(r1, r2, r3, r4, &(0x7f0000000200)={0x2e, 0x14, 0x0, 0xffffffffffffffff, 0xc0207504, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, '\x00', {0xffffffff, 0xffff, 0x2a, &(0x7f00000004c0)=@any_dev={0x4, 0xe26, 0x0, 0x0, 0x1000, 0x10000, 0xffffffffffffffff, 0x0, 0x4d}}}, &(0x7f0000000480)=<r5=>0x0)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
r7 = dup(r6)
syz_ublk_setup_queues(r7, r5, 0x0, &(0x7f0000000800)=[{0x0, 0x0, 0xffffffffffffffff, {0x0, 0x7ffffe, 0x8, 0x2000, 0x10000004, 0x0, r7}}, {0x0, 0x0, 0xffffffffffffffff, {0x0, 0x35bc, 0x1, 0x0, 0x30b}}, {0x0, 0x0, 0xffffffffffffffff, {0x0, 0xc1cf, 0x0, 0x0, 0x1f0, 0x0, r7}}, {0x0, 0x0, 0xffffffffffffffff, {0x0, 0x0, 0x8200, 0x2, 0x367}}], 0x7ffffffe, &(0x7f0000000340)={0x2e, 0x44, 0x0, 0xffffffffffffffff, 0xc0107520, 0x0, 0x0, 0x0, 0x0, {}, 0x1f, 0x0, '\x00', {0xfff9, 0x4, 0x0, 0x0}}, 0x0)

3.396962424s ago: executing program 4 (id=2326):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0xa, 0x8000000000002})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000001040)={0x4c, 0x0, &(0x7f0000000ec0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x41, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000740)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x400}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000c00)={0x44, 0x0, &(0x7f0000000a80)=[@transaction={0x40406300, {0x1, 0x0, 0x0, 0x0, 0x21, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0})

3.312366227s ago: executing program 0 (id=2327):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
renameat2(0xffffffffffffff9c, 0x0, 0xffffffffffffff9c, 0x0, 0x0)
inotify_init1(0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff})
connect$unix(r0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r1 = syz_open_procfs(0x0, &(0x7f00000011c0)='net/dev\x00')
preadv(r1, &(0x7f0000000000)=[{&(0x7f0000000100)=""/4096, 0x1004}], 0x1, 0x239, 0x0)

3.293434617s ago: executing program 4 (id=2328):
syz_mount_image$ext4(&(0x7f0000000380)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x1014014, &(0x7f0000000040)={[{@test_dummy_encryption}, {@grpquota}]}, 0x2, 0xbc9, &(0x7f0000002200)="$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")
syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000100)='./bus\x00', 0xd01ce0, 0x0, 0x82, 0x0, &(0x7f0000000080))
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0)
ioctl$DRM_IOCTL_GEM_OPEN(r0, 0xc010640b, &(0x7f00000000c0)={0x0, <r1=>0x0})
ioctl$DRM_IOCTL_PANTHOR_BO_SET_LABEL(r0, 0xc010644d, &(0x7f00000001c0)={r1, 0x0, &(0x7f0000000180)='ghash-generic\x00'})
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000180)=ANY=[], 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000600)={0x9, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, 0x0, 0x0)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[], 0x48)
r5 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r5, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x3, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x8, 0x0, 0x0, 0x3f000000, 0x69, 0x10, 0x28}, [@ldst={0x6, 0x3, 0x6, 0x8}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f00000000c0), 0x0, 0x10, &(0x7f0000000080), 0xffffffffffffffb2}, 0x48)
sendmsg$RDMA_NLDEV_CMD_GET_CHARDEV(r0, &(0x7f0000000340)={0xfffffffffffffffe, 0x0, &(0x7f0000000300)={&(0x7f0000000280)=ANY=[@ANYBLOB="200000000f14000125bd7000fedbdf259f004500736100000800010002000000"], 0x20}, 0x1, 0x0, 0x0, 0x4000}, 0x80)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan1\x00'})
accept4(r5, 0x0, 0x0, 0x0)
r6 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r6, 0x1, r0, &(0x7f0000000000)={0x2})
write$cgroup_int(r0, &(0x7f0000000080)=0x7, 0x12)

2.697045386s ago: executing program 1 (id=2329):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000010000000c00000009"], 0x50)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x5, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
sched_setaffinity(0x0, 0xfffffffffffffe02, &(0x7f00000002c0)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
fanotify_init(0x8, 0x40000)
r2 = openat(0xffffffffffffff9c, 0x0, 0x2141, 0x59)
pwrite64(r2, 0x0, 0x0, 0x8000c61)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000200), &(0x7f0000000280), 0x84, r0}, 0x38)

2.532339571s ago: executing program 1 (id=2330):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000600)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x1, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x3, 0x3, 0x6361, 0x5, 0xffffffff, 0x3}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40088c1}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000006c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70b926, 0x25dfdc01, {0x0, 0x0, 0x0, r3, {0x0, 0xd}, {0xffff, 0xb}, {0xffff, 0xfff1}}, [@qdisc_kind_options=@q_pfifo={{0xa}, {0x8}}]}, 0x38}, 0x1, 0x0, 0x0, 0x4c0e1}, 0x4890)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r4 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r4, 0x107, 0xf, &(0x7f0000000100)=0x207, 0x4)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'syzkaller0\x00', <r5=>0x0})
sendto$packet(r4, &(0x7f00000002c0)="05031c00d1fd140000004788031c09102c28", 0xfdef, 0x4, &(0x7f0000000140)={0x11, 0x0, r5, 0x1, 0x0, 0x6, @multicast}, 0x14)

2.24279526s ago: executing program 1 (id=2331):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x40040)
removexattr(0x0, 0x0)
ioctl$SG_GET_VERSION_NUM(0xffffffffffffffff, 0x2284, &(0x7f0000000080))
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000001200)={0x0, 0x0, &(0x7f00000011c0)={0x0}, 0x1, 0x0, 0x0, 0x4008011}, 0x20008004)
mkdirat(0xffffffffffffff9c, &(0x7f00000021c0)='./file0\x00', 0x3a)
mount(&(0x7f00000000c0)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000a00)='.\x00', &(0x7f0000000080)='hpfs\x00', 0x18800, 0x0)

2.2412881s ago: executing program 2 (id=2332):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = socket$inet6(0xa, 0x80002, 0x0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$BINDER_FREEZE(0xffffffffffffffff, 0x400c620e, &(0x7f0000000140)={0xffffffffffffffff, 0x0, 0x4})
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000400)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010008020000001800006600000008000300", @ANYRES32=r4, @ANYBLOB="08002600940900000800b70099"], 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYBLOB="90000000", @ANYRES16=r5, @ANYBLOB="010026bd7000000000003b00000008000300", @ANYRES32=r4, @ANYBLOB="0600cd00000000006c003300802009000802110000010802110000005050505050505f00ff"], 0x90}, 0x1, 0x0, 0x0, 0xc0}, 0x0)
setsockopt$inet6_IPV6_HOPOPTS(r1, 0x29, 0x6, 0x0, 0x88ba5c8f19cacbb0)
r6 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL802154_CMD_SET_LBT_MODE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000", @ANYRES16=r6, @ANYBLOB='\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x00\x00'], 0x14}, 0x1, 0x0, 0x0, 0x8000840}, 0x48000)

2.220718241s ago: executing program 4 (id=2333):
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
r2 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r2, 0xc02064b2, &(0x7f0000000100)={0x2, 0x1f, 0x6})
r3 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r3, 0xc02064b2, &(0x7f0000000400)={0x400, 0x7, 0x6})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f00000000c0)={0xdb, 0x1ff, 0xb})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r2, 0xc02064b2, &(0x7f0000000140)={0x2, 0x403, 0x8})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f00000002c0)={0x8, 0xd7, 0x8})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r2, 0xc02064b2, &(0x7f0000000340)={0x6, 0x5, 0x3})
close(r3)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000200)={0x8, 0x9, 0x1})
close_range(r0, 0xffffffffffffffff, 0x0)

2.120890534s ago: executing program 1 (id=2334):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f00000000c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
pread64(0xffffffffffffffff, 0x0, 0x0, 0xa6)
r3 = syz_open_dev$vim2m(&(0x7f00000001c0), 0xe992, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r3, 0xc0405602, &(0x7f0000000380)={0x11, 0x1, 0x3, "33c500100000000040fcd817a45b729fd5085780ee0f00", 0x20363059})

2.120608674s ago: executing program 0 (id=2335):
add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
kexec_load(0xff0f, 0x0, 0x0, 0x0)
setrlimit(0x7, &(0x7f0000000140)={0x4, 0x100})
syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)

2.060114926s ago: executing program 4 (id=2336):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000600)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x1, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x3, 0x3, 0x6364, 0x5, 0xffffffff, 0x3}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40088c1}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000a40)=@newqdisc={0x78, 0x24, 0x4ee4e6a52ff56541, 0x70b926, 0x25dfdc01, {0x0, 0x0, 0x0, r3, {0x0, 0x7}, {0x1, 0xb}, {0xffff, 0xfff2}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x4, 0x10, 0x6, 0x8, 0xfbee}, 0x20000001, 0xffffffff, 0x1, 0x5, 0xe, 0x4, 0xd, 0x18, 0x3, 0x2, {0x4, 0x8, 0xfffffffc, 0x0, 0x7, 0x5}}}}]}, 0x78}, 0x1, 0x0, 0x0, 0x240048e4}, 0x4890)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r4 = socket$kcm(0x11, 0x3, 0x0)
r5 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$kcm(r4, &(0x7f00000000c0)={&(0x7f0000000580)=@xdp={0x2c, 0x0, r6, 0x7}, 0x80, &(0x7f0000004900)=[{&(0x7f0000000180)="270302005902", 0x6}], 0x1}, 0x0)

2.059734086s ago: executing program 2 (id=2337):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={0x0, 0xfc}}, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000200)=ANY=[@ANYBLOB="aaaaaaaaaaaa0180c200000286dd9cd07fff000000ff00000000000000000000ffff6401010220010000000000000000000000000002"], 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
r3 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r3, &(0x7f0000000080), 0x10)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000540)={'vxcan0\x00', <r4=>0x0})
sendmsg$can_bcm(r3, &(0x7f00000001c0)={&(0x7f0000000040)={0x1d, r4}, 0x10, &(0x7f0000000180)={&(0x7f0000000100)={0x5, 0x0, 0x0, {}, {0x0, 0x2710}, {}, 0x1, @can={{}, 0x3, 0x2, 0x0, 0x0, "b68c52d2be3c0d90"}}, 0x48}}, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)=@newtfilter={0x24, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x74, r4, {0x10, 0xb}}}, 0x24}, 0x1, 0xf0ffffffffffff}, 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)

1.043450198s ago: executing program 1 (id=2338):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000340)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x1, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x3, 0x3, 0x6361, 0x7, 0xffffffff, 0x3}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40088c1}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000001040)=@newqdisc={0x3c, 0x24, 0x4ee4e6a52ff56541, 0x70b926, 0x25dfdc01, {0x0, 0x0, 0x0, r3, {0x0, 0xd}, {0xffff, 0xb}, {0xffff, 0xffe0}}, [@qdisc_kind_options=@q_codel={{0xa}, {0xc, 0x2, [@TCA_CODEL_CE_THRESHOLD={0x8, 0x5, 0x4}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x404c8f0}, 0x4890)
r4 = socket$packet(0x11, 0x3, 0x300)
sendto$packet(r4, &(0x7f00000005c0)="bad330fbc93f8b78040000ea0756", 0xe, 0x4041, &(0x7f00000001c0)={0x11, 0x8100, r3, 0x1, 0xd8, 0x6, @multicast}, 0x14)

965.22154ms ago: executing program 0 (id=2339):
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x2, 0x4)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x2000010, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f000000c3c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f, 0x9, 0x1100, 0x40, 0x0, 0x6, 0x0, 0x0, 0x0, 0x40}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f00000021c0)="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", 0x2000, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', 0x22801, 0x0)
io_setup(0x202, &(0x7f0000000200)=<r3=>0x0)
io_submit(r3, 0x1, &(0x7f0000000700)=[&(0x7f0000000100)={0xfff0, 0x20000000, 0x4, 0x1, 0xc, r2, &(0x7f00000009c0)='1', 0x1, 0xf}])
syz_fuse_handle_req(r0, &(0x7f00000041c0)="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", 0x2000, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={0x18}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r0, &(0x7f000000a3c0)="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", 0x2000, &(0x7f0000001140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)={0x18, 0x0, 0x0, {0x1}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
write$P9_RRENAME(r2, &(0x7f00000000c0)={0x7, 0x15, 0x1}, 0x7)
dup3(r2, r0, 0x80000)

864.244983ms ago: executing program 4 (id=2340):
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x4)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000480)=ANY=[], 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f00000002c0)='fdinfo/3\x00')
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0xdc, 0x0)
read$msr(r0, &(0x7f0000000300)=""/102400, 0x19000)
r1 = socket$netlink(0x10, 0x3, 0x4)
writev(r1, &(0x7f0000000300)=[{&(0x7f0000000000)="580000001400192340834b80040d8c560aff820fffff5bab00070000002058000b4824ca945f6400940f6a0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100030c100000000000224e0000", 0x58}], 0x1)

824.395474ms ago: executing program 1 (id=2341):
ioctl$int_in(0xffffffffffffffff, 0x40000000af01, 0x0)
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_INITMSG(r0, 0x84, 0x2, 0x0, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x7, 0x31, 0xffffffffffffffff, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r1 = syz_ublk_setup_io_uring(0x1d, &(0x7f0000000040)={0x0, 0x30b5, 0x0, 0x2, 0x158}, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000280)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_ublk_add_dev(r1, r2, r3, r4, &(0x7f0000000200)={0x2e, 0x14, 0x0, 0xffffffffffffffff, 0xc0207504, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, '\x00', {0xffffffff, 0xffff, 0x2a, &(0x7f00000004c0)=@any_dev={0x4, 0xe26, 0x0, 0x0, 0x1000, 0x10000, 0xffffffffffffffff, 0x0, 0x4d}}}, &(0x7f0000000480)=<r5=>0x0)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
r7 = dup(r6)
syz_ublk_setup_queues(r7, r5, 0x0, &(0x7f0000000800)=[{0x0, 0x0, 0xffffffffffffffff, {0x0, 0x7ffffe, 0x8, 0x2000, 0x10000004, 0x0, r7}}, {0x0, 0x0, 0xffffffffffffffff, {0x0, 0x35bc, 0x1, 0x0, 0x30b}}, {0x0, 0x0, 0xffffffffffffffff, {0x0, 0xc1cf, 0x0, 0x0, 0x1f0, 0x0, r7}}, {0x0, 0x0, 0xffffffffffffffff, {0x0, 0x0, 0x8200, 0x2, 0x367}}], 0x7ffffffe, &(0x7f0000000340)={0x2e, 0x44, 0x0, 0xffffffffffffffff, 0xc0107520, 0x0, 0x0, 0x0, 0x0, {}, 0x1f, 0x0, '\x00', {0xfff9, 0x4, 0x0, 0x0}}, 0x0)

814.625075ms ago: executing program 2 (id=2342):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x0, &(0x7f0000001040)={[{@journal_dev={'journal_dev', 0x3d, 0x800}}, {@errors_remount}, {@resgid}, {@journal_dev={'journal_dev', 0x3d, 0x800}}, {@quota}, {@noblock_validity}]}, 0x1, 0x783, &(0x7f0000001340)="$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")
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000480)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = fsopen(&(0x7f0000000000)='rpc_pipefs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
close(r3)
ioctl$KDFONTOP_SET(0xffffffffffffffff, 0x4b72, 0x0)
mount_setattr(0xffffffffffffffff, 0x0, 0x0, &(0x7f00000000c0)={0x100000, 0x79}, 0x20)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x80078b, &(0x7f00000000c0)={[{@nodioread_nolock}, {@journal_dev={'journal_dev', 0x3d, 0xff}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@nouid32}, {@resgid}, {@acl}, {@init_itable_val={'init_itable', 0x3d, 0x8d55}}, {@data_err_ignore}, {@jqfmt_vfsv0}]}, 0x0, 0x470, &(0x7f0000000bc0)="$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")
lsetxattr$trusted_overlay_upper(&(0x7f0000000140)='./file0\x00', &(0x7f0000000000), &(0x7f0000003280)=ANY=[], 0xe03, 0x1)
mbind(&(0x7f00005b4000/0x4000)=nil, 0x100000000004000, 0x10000000000001, 0x0, 0x0, 0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000880)={0x3, 0x5, &(0x7f0000000080)=ANY=[@ANYBLOB="18020000010000000000000006000000850000"], &(0x7f0000000200)='syzkaller\x00', 0x2, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x9}, 0x94)
mount$tmpfs(0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="6d706f6c3d696e7465726c65617665000009d2e68e47de72"])
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_ifreq(r4, 0x8910, &(0x7f0000000000)={'veth0_vlan\x00', @ifru_ivalue=0x4})

752.168827ms ago: executing program 4 (id=2343):
syz_mount_image$ext4(&(0x7f0000000380)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x1014014, &(0x7f0000000040)={[{@test_dummy_encryption}, {@grpquota}]}, 0x2, 0xbc9, &(0x7f0000002200)="$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")
syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000100)='./bus\x00', 0xd01ce0, 0x0, 0x82, 0x0, &(0x7f0000000080))
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0)
ioctl$DRM_IOCTL_GEM_OPEN(r0, 0xc010640b, &(0x7f00000000c0)={0x0, <r1=>0x0})
ioctl$DRM_IOCTL_PANTHOR_BO_SET_LABEL(r0, 0xc010644d, &(0x7f00000001c0)={r1, 0x0, &(0x7f0000000180)='ghash-generic\x00'})
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000180)=ANY=[], 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000600)={0x9, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, 0x0, 0x0)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[], 0x48)
r5 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r5, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x3, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x8, 0x0, 0x0, 0x3f000000, 0x69, 0x10, 0x28}, [@ldst={0x6, 0x3, 0x6, 0x8}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f00000000c0), 0x0, 0x10, &(0x7f0000000080), 0xffffffffffffffb2}, 0x48)
sendmsg$RDMA_NLDEV_CMD_GET_CHARDEV(r0, &(0x7f0000000340)={0xfffffffffffffffe, 0x0, &(0x7f0000000300)={&(0x7f0000000280)=ANY=[@ANYBLOB="200000000f14000125bd7000fedbdf259f004500736100000800010002000000"], 0x20}, 0x1, 0x0, 0x0, 0x4000}, 0x80)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan1\x00'})
accept4(r5, 0x0, 0x0, 0x0)
r6 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r6, 0x1, r0, &(0x7f0000000000)={0x2})
write$cgroup_int(r0, &(0x7f0000000080)=0x7, 0x12)

91.340288ms ago: executing program 0 (id=2344):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x0, &(0x7f0000000340)={[{@noload}, {@stripe={'stripe', 0x3d, 0x30c}}, {@jqfmt_vfsv1}, {@nojournal_checksum}, {@jqfmt_vfsv1}, {@usrjquota}]}, 0xff, 0x44d, &(0x7f0000000900)="$eJzs3MtvG8UfAPDvrp30/Ut+UB4tLQQKouKRNOnzwKUIJA4gIcGhiFNI0qrUbaAJEq0qKBzKEVXijjgi8RdwggsCTkhc4Y4qVaiXFiQko13vpsa107hx6rb+fKRNZrzjzHx3d+zZGTsBDKyx7EcSsTkifouIkUb2vwXGGr+uXTk389eVczNJ1Otv/Jnk5a5eOTdTFi2ft6mRqdeL/Lo29V54O2K6Vps7XeQnFk++N7Fw5uzzx09OH5s7Nndq6tChfXt3Dh+Y2t+TOLO4rm7/aH7HtlfeuvjazJGL7/z0TdbezcX+5jh6ZaxxdNt6qteV9dmWpnRS7WND6EolIrLTNZT3/5GoxIalfSPx8qd9bRywpur1er3d+3PhfB24hyXR7xYA/VG+0Wf3v+V2m4Yed4TLhyPeP9iI/1qxNfZUIy3KDLXc3/bSWEQcOf/3l9kWazQPAQDQ7LvDEfFcu/FfGg82lftfsYYyGhH/j4j7IuL+iNgaEQ9E5GUfioiHu6y/dYXkxvFPeumWAluhbPz3QrG2tTT++6eex18YrRS5LXn8Q8nR47W5PcUx2R1D67L85DJ1fP/Sr5932tc8/su2rP5yLNiQXqq2TNDNTi9OrzLsJZc/idhebYk/l0S5jJNExLaI2N7VX75+h3H8ma93dCp18/iX0YN1pvpXEU83zv/5aIm/lHRcn5w8eGBq/8T6qM3tmSivihv9/MuF1zvVv6r4eyA7/xtbr//cUvyjyfqIhTNnT+TrtQvd13Hh98863tPc6vU/nLyZp4eLxz6cXlw8PRkxnLx64+NT159b5svyWfy7d7WLP81f48oj8UhEZBfxzoh4NCIeK9r+eEQ8ERG7lon/xxeffLf7+JeZle+hLP7Zm53/aD7/3ScqJ374tvv4S9n535endhePrOT1b6UNXM2xAwAAgLtFmn8GPknHl9JpOj7e+Az/1tiY1uYXFp89Ov/BqdnGZ+VHYygtZ7pGmuZDJ4u54TI/1ZLfW8wbf1HZkOfHZ+Zrs/0OHgbcpg79P/NHpd+tA9ac72vB4NL/YXDp/zC49H8YXPo/DK52/f/jPrQDuP28/8Pg0v9hcOn/MLj0fxhIHb8bn67qK/8S93wi0u6fVY07pPF3U6K64n9mcYuJdW139fuVCQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoDf+DQAA//9X4u4v")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x400000000008d}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000240)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x4000087, 0x2, 0x0)
r3 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.kill\x00', 0x275a, 0x0)
write$cgroup_subtree(r4, &(0x7f0000000040)=ANY=[@ANYRESHEX=r3], 0x10448)

0s ago: executing program 2 (id=2345):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x400000000008d}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x1, &(0x7f0000000240)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs={0x0, 0x0, 0x3}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x4000087, 0x2, 0x0)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r4 = dup(r3)
write$UHID_INPUT(r4, &(0x7f0000002b40)={0xe, {"a2e3ad099b0d09f91b5f2f0987f70e06d038e7ff7fc6e5539b0d3d0e8b089b3f323063090810e0879b0f0a75e70a9b334d959b669a240d5b0af3988f7ef31952010afde8d178708c523c921b1b5b07070d075b0936cd3b78130daa61d8e81a3f00005802b77f07227227b7ba67e0e78657a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f30e065cd5b91cd0ae19397273ce1766769f0c91c00305d3f46635eb016d5b1dda98e2d739be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000000000075271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f9081b4dd0d8b38f3cd4498bee800490841bdb114f6b7638354a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1f416e56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617669314e2fbe70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f677747abc3609aa24b7d520c829d095083bba2987a67399eac430d145d546a40b9f6ff14ac488ec130bb3850a27af9544ae15a7e454dea05918b41243513f000000000000000a3621c56cea8d20fa911a0c41db6ebe8cac64f17679141d54b34bbc9963ac4f4bb3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e1088334975e9f73483b6a62fa678ca14ffd9f9db2a7869d85864056526f889af43a6056080572286522449df466c632b3570243f989cce7cd9f465e41e610c20d80421d653a5520000008213b704c7fb082ff27590678ef9f190bae97909507041d860420c5664b27921b14dc1db8892fd32d0ad7bc946813591ad8deff4b05f60cea0da7710ac0000000000008000bea37ce0d0d4aa202f928f28381aab144a5d429a04a6a2b83c7068ae949ed06e288e810bac9c76600025e19c907f8ea2e2010000008271a1f5f8528f227e79c1389dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4fb8a48a76eafc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b2860d1b3cff57d8b6d59fdee5325928974d12dad99dac44c3f0008047096a44002bebc2420aed92fa9b6578b4779415d4ac01b75d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2aed9e53803ed0ca4ae3a9737d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df07847754b8400daaa69bf5c8f4350aeae9ca1207e78283cd0b20ceb360c7e658828163e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034ef655b253ca509383815b1b6fc6522d4e4fdc11a4f0492d48604675fde2b34cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f42355bc7872c827467cfa5c4e72730d56bd068ed211cf847535edecb7b373f78b095b68441a34cb51682a8ae4d24ad0465f3927f889b813076038e79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdcce04579b5561dc825ab829827955e020c1f67ee615feb6243378e0610060f02cca4e91b2f001edb9754fb4b55668dda93aec92a5de203717aa49c2d284acfabe262fccfcbb2b75a2183c46eb65ca8104e1b4da7fbb77ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43eaeb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e94265c803b35ee5f83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad94e7475cb74642c37b4a6cc6c04effc1672db7e4b68d787d9a7a508ae54b3cd7369dde50e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c10238e204a67737c3b42aae501b20f7694a00f16e2d0174035a2c22656dc29880acebdbe8ddbd72ea4998d8ac2dfad2ba3a504767b6b45a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5ff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c58b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4483f8fd777d443e8b40427db6fe29068c0ca3d2414442e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf46366e7205dd8d6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439ff158e7c5419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b50517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864af090d81eaee5ee6cf1d0ab378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687461602f88df165d885b36ec2b6c25a2f33c715687e9d4afb96d6861aca47da73d6f3144345f48843dd014e5c5ad8fe995754bd9cf32fce1e31919c4b2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6d594f88a4facfd4c735a20307c737afa2d60399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1a85ae7e69fd1a47a284f4113c4c859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee2916580dac4b008e595f437491d87abed02cef8473b53d94d02daee67918e5d6787463183b4b87c1050000002f7809959bc048850613d17ca51055f2f416a44fe180d2d50c312cca7cb14a2bdc331f57a9817139a206fc76957227ffff2de20a4b8e3737fbb42913777c06376f799eba367e21f94ca598705f5dcb767d6f0900d6b0f6095e53c4c4234d0c1fbe434f6ab8f43c0013ee93b83946ee7759e89d7bdd1a32d7b311711b757fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7f96093530e76692839d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b344340002000000000000f288a4510de03dab19d26285eda89156d50dd385a60333ba5bbf5d77cd7007ad1519ad5470de3dd6d6080cccf8a97406bb5a68a1f0c4549820a73c8859dde0712ae00398e8bd1f4108b7807fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cf255315ab80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c6087f1ab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf652f406c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6528341b648cdd56fed7cdcb7427d8392c6289455e8f8d2ab2242729251ae033a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c2e14c27693102a3cd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08758897fb411a94b3c2fc5d5f0db42c0456ec015f08e5247d33ae2d35603ff8454c16f8342856935125102bb784ed7148b6ce431b63ec00000000000000b90e29389f22fc5b59a70efaea2bd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a52830052fcc460db043afe525629b40d7cee458e4cb5e930ed624806c43a006e39336d07c2b8081c128ad2706f48261f7897484c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da398000000000000000d80a4fe654578376e599aff3565b1d531f30912b9945030b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9c861a0e7e65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57079d0fe662a46b7f71cd47744db86c50b704c971d90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e0691953264d2700c838fa2c7b3425260f59554e502dcea39cb313b0000000000004ca7c12f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec685f068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe36d7d3e5db21b094b8b77940b5f07722e47a08d367e5f84c96ec664b72934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1162dfa13bdc1fa7cfaadba85c72e9758f03a755d0be53f8d2a1dfb1c68cc164b0a0780d971a96ea2c4d4ca0398c2235980a9307b3d5bd3b01faffd0a5dbed2881a9700af561ac8c6b00000000000e00f96f06817fb903729a7fb6ff957697c9ede7885d94ffb0969be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c148cd2f9c55f4901203a9a8a2c3e90f3943dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d0fc5a752f9000", 0x942}}, 0x1006)

kernel console output (not intermixed with test programs):

ue, screwing up backlog
[  490.233760][ T5775] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  490.521335][ T9647] loop3: detected capacity change from 0 to 2048
[  490.609782][ T9647] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  490.610651][ T9629] loop1: detected capacity change from 0 to 40427
[  490.631280][ T9647] ext4 filesystem being mounted at /211/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  490.663510][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  490.716245][ T9629] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  490.747388][ T9629] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  490.800537][ T9629] F2FS-fs (loop1): invalid crc value
[  490.936390][ T9629] F2FS-fs (loop1): Found nat_bits in checkpoint
[  491.129374][ T9661] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz.3.925: bg 0: block 345: padding at end of block bitmap is not set
[  491.149975][ T9661] EXT4-fs (loop3): Remounting filesystem read-only
[  491.157302][ T9661] EXT4-fs warning (device loop3): ext4_xattr_inode_lookup_create:1609: inode #18: comm syz.3.925: cleanup dec ref error -117
[  491.594109][ T9629] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  491.601701][ T9629] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  491.623192][ T5775] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  491.655453][   T27] audit: type=1800 audit(1781732594.340:162): pid=9629 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.920" name="bus" dev="loop1" ino=455 res=0 errno=0
[  491.800796][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  491.820965][ T6226] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  491.949895][ T6226] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  491.966017][  T787] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  492.428814][ T5832] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  492.726911][ T5832] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  492.760128][ T5832] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  492.786196][ T5832] usb 4-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00
[  492.813443][ T5832] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  492.860594][ T5832] usb 4-1: config 0 descriptor??
[  492.916457][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  493.523843][ T6220] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  493.532269][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  493.543095][ T6228] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  493.607117][ T5832] cm6533_jd 0003:0D8C:0022.0005: unknown main item tag 0x0
[  493.619423][ T5832] cm6533_jd 0003:0D8C:0022.0005: unknown main item tag 0x0
[  493.676724][ T5832] input: HID 0d8c:0022 as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:0D8C:0022.0005/input/input8
[  493.848497][ T5832] cm6533_jd 0003:0D8C:0022.0005: input,hiddev0,hidraw1: USB HID v0.00 Device [HID 0d8c:0022] on usb-dummy_hcd.3-1/input0
[  493.967415][ T5832] usb 4-1: USB disconnect, device number 9
[  494.042885][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  494.228712][ T6236] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  494.248009][ T9682] fido_id[9682]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory
[  494.915443][ T1322] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  494.923938][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  495.054640][ T9714] loop3: detected capacity change from 0 to 4096
[  495.083691][ T9714] ntfs3: Bad value for 'uid'
[  495.169389][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  495.256235][ T5832] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  495.744196][ T9714] loop3: detected capacity change from 0 to 32768
[  495.853870][ T9723] loop1: detected capacity change from 0 to 32768
[  495.870841][ T9723] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop1 scanned by syz.1.948 (9723)
[  495.948366][ T9714] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  495.977603][ T9723] BTRFS info (device loop1): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  496.181437][ T9723] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm
[  496.230206][ T9723] BTRFS info (device loop1): enabling disk space caching
[  496.279766][ T9723] BTRFS info (device loop1): force clearing of disk cache
[  496.326059][ T9723] BTRFS info (device loop1): setting incompat feature flag for COMPRESS_ZSTD (0x10)
[  496.426023][ T9723] BTRFS info (device loop1): use zstd compression, level 3
[  496.454377][ T9723] BTRFS info (device loop1): disk space caching is enabled
[  496.532782][ T9714] XFS (loop3): Ending clean mount
[  496.566675][ T9723] BTRFS info (device loop1): enabling ssd optimizations
[  496.608633][ T9723] BTRFS info (device loop1): auto enabling async discard
[  496.643487][ T5775] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  496.670045][ T9723] BTRFS info (device loop1): rebuilding free space tree
[  496.673480][ T9755] netlink: 16 bytes leftover after parsing attributes in process `syz.2.951'.
[  496.735629][ T9723] BTRFS info (device loop1): disabling free space tree
[  496.737081][ T9755] erspan0: entered promiscuous mode
[  496.753174][ T9723] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  496.783601][ T9723] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  496.823021][ T9755] erspan0: left promiscuous mode
[  496.890766][   T27] audit: type=1800 audit(1781732599.168:163): pid=9723 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.948" name="file1" dev="loop1" ino=260 res=0 errno=0
[  497.028052][ T9761] loop3: detected capacity change from 0 to 4096
[  497.297920][ T5776] BTRFS info (device loop1): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  498.442854][ T9787] loop3: detected capacity change from 0 to 32768
[  498.490251][ T9787] XFS (loop3): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  498.559764][    C0] net_ratelimit: 4 callbacks suppressed
[  498.559781][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  498.562459][ T9787] XFS (loop3): Ending clean mount
[  498.579481][ T5832] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  498.618615][ T5909] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  498.822943][ T5909] usb 2-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  498.844706][ T5909] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  498.875626][ T5909] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 66
[  498.901163][ T5909] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  498.926909][ T5909] usb 2-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  498.946036][ T5909] usb 2-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  498.968508][ T5909] usb 2-1: Product: syz
[  498.977700][ T5909] usb 2-1: Manufacturer: syz
[  498.980090][ T5775] XFS (loop3): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  499.013409][ T5909] cdc_wdm 2-1:1.0: skipping garbage
[  499.045650][ T5909] cdc_wdm 2-1:1.0: skipping garbage
[  499.100813][ T5909] cdc_wdm 2-1:1.0: cdc-wdm0: USB WDM device
[  499.142049][ T5909] cdc_wdm 2-1:1.0: Unknown control protocol
[  499.314007][    C0] cdc_wdm 2-1:1.0: nonzero urb status received: -71
[  499.320777][    C0] cdc_wdm 2-1:1.0: wdm_int_callback - 0 bytes
[  499.327118][    C0] cdc_wdm 2-1:1.0: nonzero urb status received: -71
[  499.333738][    C0] cdc_wdm 2-1:1.0: wdm_int_callback - 0 bytes
[  499.340301][    C0] cdc_wdm 2-1:1.0: nonzero urb status received: -71
[  499.346916][    C0] cdc_wdm 2-1:1.0: wdm_int_callback - 0 bytes
[  499.360920][    C0] cdc_wdm 2-1:1.0: nonzero urb status received: -71
[  499.367545][    C0] cdc_wdm 2-1:1.0: wdm_int_callback - 0 bytes
[  499.374045][    C0] cdc_wdm 2-1:1.0: nonzero urb status received: -71
[  499.380664][    C0] cdc_wdm 2-1:1.0: wdm_int_callback - 0 bytes
[  499.386968][    C0] cdc_wdm 2-1:1.0: nonzero urb status received: -71
[  499.393581][    C0] cdc_wdm 2-1:1.0: wdm_int_callback - 0 bytes
[  499.399915][    C0] cdc_wdm 2-1:1.0: nonzero urb status received: -71
[  499.406528][    C0] cdc_wdm 2-1:1.0: wdm_int_callback - 0 bytes
[  499.412869][    C0] cdc_wdm 2-1:1.0: nonzero urb status received: -71
[  499.419488][    C0] cdc_wdm 2-1:1.0: wdm_int_callback - 0 bytes
[  499.425891][    C0] cdc_wdm 2-1:1.0: nonzero urb status received: -71
[  499.432498][    C0] cdc_wdm 2-1:1.0: wdm_int_callback - 0 bytes
[  499.438982][    C0] cdc_wdm 2-1:1.0: nonzero urb status received: -71
[  499.445602][    C0] cdc_wdm 2-1:1.0: wdm_int_callback - 0 bytes
[  499.474623][ T5832] usb 2-1: USB disconnect, device number 11
[  499.474704][    C0] cdc_wdm 2-1:1.0: wdm_int_callback - usb_submit_urb failed with result -19
[  499.675513][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  499.774918][ T6228] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  499.788945][ T1322] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  499.797321][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  500.457935][ T6222] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  500.719864][ T9863] loop3: detected capacity change from 0 to 2048
[  500.801958][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  500.813030][ T9870] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  501.148672][ T6249] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  501.157035][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  502.888680][ T9919] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (128 ns). Using initial count to start timer.
[  503.270059][ T9940] loop3: detected capacity change from 0 to 512
[  503.350776][ T9940] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  503.550481][ T9940] overlayfs: invalid origin (00000079000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000)
[  503.905457][ T5775] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  504.181595][    C0] net_ratelimit: 3 callbacks suppressed
[  504.181616][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  504.989513][ T9962] hub 8-0:1.0: USB hub found
[  505.005719][ T9962] hub 8-0:1.0: 1 port detected
[  505.134913][ T5832] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  505.308207][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  505.579644][ T6249] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  505.587982][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  506.003415][ T6228] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  506.434588][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  506.695015][ T6222] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  507.391953][ T6228] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  507.400556][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  507.473138][T10004] loop3: detected capacity change from 0 to 2048
[  507.693158][T10009] loop1: detected capacity change from 0 to 4096
[  507.720835][T10004] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  508.032490][T10004] ext4 filesystem being mounted at /232/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  508.784015][T10024] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz.3.1030: bg 0: block 345: padding at end of block bitmap is not set
[  508.805717][T10024] EXT4-fs (loop3): Remounting filesystem read-only
[  508.812991][T10024] EXT4-fs warning (device loop3): ext4_xattr_inode_lookup_create:1609: inode #18: comm syz.3.1030: cleanup dec ref error -117
[  509.266099][ T5775] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  509.501267][T10036] loop3: detected capacity change from 0 to 4096
[  509.543148][T10036] EXT4-fs (loop3): Test dummy encryption mode enabled
[  509.574511][T10036] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  509.814083][    C0] net_ratelimit: 3 callbacks suppressed
[  509.814106][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  510.742606][ T5775] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  510.951460][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  511.586013][ T6228] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  511.594440][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  511.753691][  T787] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  511.876082][T10076] loop1: detected capacity change from 0 to 16
[  511.969896][T10076] erofs: (device loop1): mounted with root inode @ nid 36.
[  512.067208][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  512.254444][ T6220] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  512.935168][ T6222] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  513.193707][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  513.313448][T10104] loop3: detected capacity change from 0 to 2048
[  513.629172][ T1322] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  513.761420][T10104] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  513.839418][T10104] ext4 filesystem being mounted at /237/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  514.127120][ T5909] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  514.298963][T10111] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz.3.1058: bg 0: block 345: padding at end of block bitmap is not set
[  514.333137][T10111] EXT4-fs (loop3): Remounting filesystem read-only
[  514.340474][T10111] EXT4-fs warning (device loop3): ext4_xattr_inode_lookup_create:1609: inode #18: comm syz.3.1058: cleanup dec ref error -117
[  514.386487][ T5909] usb 2-1: Using ep0 maxpacket: 32
[  514.466357][ T5909] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  514.547807][ T5909] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  514.590537][ T5909] usb 2-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  514.718575][ T5909] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  514.738457][ T5775] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  514.765628][ T5909] usb 2-1: config 0 descriptor??
[  514.779664][ T5909] hub 2-1:0.0: USB hub found
[  514.928518][T10125] loop3: detected capacity change from 0 to 2048
[  514.992667][T10125] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  515.002380][ T5909] hub 2-1:0.0: 1 port detected
[  515.028570][T10125] ext4 filesystem being mounted at /238/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  515.435071][T10142] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz.3.1062: bg 0: block 345: padding at end of block bitmap is not set
[  515.449837][    C0] net_ratelimit: 3 callbacks suppressed
[  515.449853][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  515.467757][T10142] EXT4-fs (loop3): Remounting filesystem read-only
[  515.474419][T10142] EXT4-fs warning (device loop3): ext4_xattr_inode_lookup_create:1609: inode #18: comm syz.3.1062: cleanup dec ref error -117
[  516.017942][ T5827] hub 2-1:0.0: hub_ext_port_status failed (err = 0)
[  516.048200][ T5775] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  516.367615][ T5832] usb 2-1: USB disconnect, device number 12
[  516.573255][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  517.699791][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  517.789609][ T6222] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  517.798064][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  517.909003][T10187] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  517.966144][T10187] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  517.977067][T10187] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  517.997163][T10187] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  518.061513][T10187] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  518.484326][ T1291] ieee802154 phy0 wpan0: encryption failed: -22
[  518.492508][ T1291] ieee802154 phy1 wpan1: encryption failed: -22
[  518.951269][T10204] loop1: detected capacity change from 0 to 32768
[  519.060756][T10204]  loop1: p1 p3 < >
[  520.045558][ T6236] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  520.107630][ T8478] udevd[8478]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[  520.109429][ T8318] udevd[8318]: inotify_add_watch(7, /dev/loop1p3, 10) failed: No such file or directory
[  520.233819][ T6236] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  520.340374][ T6236] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  520.431448][ T6236] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  520.468990][T10244] overlayfs: failed to clone upperpath
[  520.776711][ T6236] tipc: Left network mode
[  520.817177][ T5088] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  520.844692][ T5088] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  520.853705][ T5088] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  520.861891][ T5088] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  520.914398][ T5088] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  521.055120][ T5088] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  521.079313][    C0] net_ratelimit: 10 callbacks suppressed
[  521.079331][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  521.615927][ T5832] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  521.629479][T10247] chnl_net:caif_netlink_parms(): no params data found
[  521.760458][T10247] bridge0: port 1(bridge_slave_0) entered blocking state
[  521.767840][T10247] bridge0: port 1(bridge_slave_0) entered disabled state
[  521.775771][T10247] bridge_slave_0: entered allmulticast mode
[  521.783458][T10247] bridge_slave_0: entered promiscuous mode
[  521.845407][T10247] bridge0: port 2(bridge_slave_1) entered blocking state
[  521.854440][T10247] bridge0: port 2(bridge_slave_1) entered disabled state
[  521.863214][T10247] bridge_slave_1: entered allmulticast mode
[  521.877357][T10247] bridge_slave_1: entered promiscuous mode
[  521.931775][T10247] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  521.944528][T10247] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  522.018542][T10247] team0: Port device team_slave_0 added
[  522.063302][T10247] team0: Port device team_slave_1 added
[  522.103483][T10247] batman_adv: batadv0: Adding interface: batadv_slave_0
[  522.117532][T10247] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  522.144698][T10247] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  522.190038][T10247] batman_adv: batadv0: Adding interface: batadv_slave_1
[  522.198096][T10247] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  522.224399][T10247] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  522.227513][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  522.337279][T10247] hsr_slave_0: entered promiscuous mode
[  522.338799][ T6236] IPVS: stopping master sync thread 7853 ...
[  522.357830][T10247] hsr_slave_1: entered promiscuous mode
[  522.722616][ T6236] hsr_slave_0: left promiscuous mode
[  522.763455][ T6236] hsr_slave_1: left promiscuous mode
[  522.772435][ T6236] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  522.786092][ T6236] batman_adv: batadv0: Removing interface: batadv_slave_0
[  522.796292][ T6236] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  522.814515][ T6236] batman_adv: batadv0: Removing interface: batadv_slave_1
[  522.828697][ T6236] bridge_slave_1: left allmulticast mode
[  522.834539][ T6236] bridge_slave_1: left promiscuous mode
[  522.844244][ T6236] bridge0: port 2(bridge_slave_1) entered disabled state
[  522.866644][ T6236] bridge_slave_0: left allmulticast mode
[  522.872492][ T6236] bridge0: port 1(bridge_slave_0) entered disabled state
[  522.928266][ T6236] veth1_macvtap: left promiscuous mode
[  522.934359][ T6236] veth0_macvtap: left promiscuous mode
[  522.940230][ T6236] veth1_vlan: left promiscuous mode
[  522.946324][ T6236] veth0_vlan: left promiscuous mode
[  523.023340][T10226] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  523.343167][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  523.359123][ T5778] Bluetooth: hci1: command tx timeout
[  523.720968][ T6236] bond1 (unregistering): Released all slaves
[  523.751483][ T6236] pimreg (unregistering): left allmulticast mode
[  523.971390][    T9] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[  524.044224][ T6220] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  524.052730][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  524.189951][    T9] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  524.199891][    T9] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  524.207907][    T9] usb 2-1: Product: syz
[  524.212617][    T9] usb 2-1: Manufacturer: syz
[  524.217238][    T9] usb 2-1: SerialNumber: syz
[  524.248707][    T9] usb 2-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  524.334547][ T5832] usb 2-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  524.381607][ T6236] team0 (unregistering): Port device team_slave_1 removed
[  524.439796][ T6236] team0 (unregistering): Port device team_slave_0 removed
[  524.469679][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  524.501333][ T6236] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  524.563518][ T6236] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  524.720421][ T1322] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  524.905171][    T9] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  525.028668][ T6236] bond0 (unregistering): Released all slaves
[  525.348179][T10247] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  525.383212][ T5909] usb 2-1: USB disconnect, device number 13
[  525.404827][T10247] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  525.412731][ T1322] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  525.428136][T10247] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  525.445460][T10247] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  525.585671][ T5778] Bluetooth: hci1: command tx timeout
[  525.762745][T10247] 8021q: adding VLAN 0 to HW filter on device bond0
[  526.209265][ T5832] usb 2-1: Service connection timeout for: 258
[  526.262582][ T5832] ath9k_htc 2-1:1.0: ath9k_htc: Unable to initialize HTC services
[  526.344553][T10247] 8021q: adding VLAN 0 to HW filter on device team0
[  526.384262][ T5832] ath9k_htc: Failed to initialize the device
[  526.474050][ T6228] bridge0: port 1(bridge_slave_0) entered blocking state
[  526.482127][ T6228] bridge0: port 1(bridge_slave_0) entered forwarding state
[  526.609757][ T6228] bridge0: port 2(bridge_slave_1) entered blocking state
[  526.616984][ T6228] bridge0: port 2(bridge_slave_1) entered forwarding state
[  526.642290][ T5909] usb 2-1: ath9k_htc: USB layer deinitialized
[  526.711859][    C0] net_ratelimit: 3 callbacks suppressed
[  526.711875][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  526.736520][ T6236] IPVS: stop unused estimator thread 0...
[  527.838673][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  527.847809][ T5778] Bluetooth: hci1: command tx timeout
[  528.200245][T10257] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  528.866701][T10247] 8021q: adding VLAN 0 to HW filter on device batadv0
[  528.959598][T10359] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1133'.
[  528.975674][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  528.981752][T10359] erspan0: entered promiscuous mode
[  529.018995][T10359] macvtap1: entered promiscuous mode
[  529.030032][T10359] macvtap1: entered allmulticast mode
[  529.038083][T10359] erspan0: entered allmulticast mode
[  529.092657][T10363] erspan0: left allmulticast mode
[  529.116437][T10363] erspan0: left promiscuous mode
[  529.135888][T10363] macvtap1: left promiscuous mode
[  529.143398][T10363] macvtap1: left allmulticast mode
[  529.572604][ T6236] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  529.580934][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  529.736079][T10247] veth0_vlan: entered promiscuous mode
[  529.783978][T10247] veth1_vlan: entered promiscuous mode
[  529.854475][T10247] veth0_macvtap: entered promiscuous mode
[  529.866134][T10247] veth1_macvtap: entered promiscuous mode
[  529.886362][T10247] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  529.896957][T10247] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  529.913912][T10247] batman_adv: batadv0: Interface activated: batadv_slave_0
[  529.931156][T10394] loop1: detected capacity change from 0 to 128
[  529.937829][T10247] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  529.956393][T10247] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  529.968281][T10247] batman_adv: batadv0: Interface activated: batadv_slave_1
[  529.981059][T10247] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  529.990168][T10247] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  529.999115][T10247] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  530.009717][T10247] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  530.028331][T10394] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  530.091391][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  530.157098][ T5778] Bluetooth: hci1: command tx timeout
[  530.219428][T10394] ext4 filesystem being mounted at /243/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  530.312529][ T6228] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  530.429540][ T6228] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  530.449245][T10394] syz.1.1141 (pid 10394) is setting deprecated v1 encryption policy; recommend upgrading to v2.
[  530.525306][ T6232] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  530.545270][ T6232] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  530.674124][ T5776] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  530.999923][ T6232] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  531.228751][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  531.569090][T10414] loop4: detected capacity change from 0 to 4096
[  531.662638][ T6232] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  531.712243][T10414] EXT4-fs (loop4): Test dummy encryption mode enabled
[  531.854177][T10414] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  532.355413][    C0] net_ratelimit: 1 callbacks suppressed
[  532.355432][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  532.372691][ T1322] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  532.381101][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  532.797327][T10247] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  533.470977][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  533.552901][T10462] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  533.604970][T10462] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  533.652657][T10462] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  533.662761][T10463] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  533.672859][T10426] loop1: detected capacity change from 0 to 40427
[  533.709316][T10463] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  533.738480][T10426] F2FS-fs (loop1): build fault injection attr: rate: 690, type: 0x7ffff
[  533.761560][T10463] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  533.770133][T10426] F2FS-fs (loop1): Image doesn't support compression
[  533.804198][T10426] F2FS-fs (loop1): Image doesn't support compression
[  533.814478][T10426] F2FS-fs (loop1): invalid crc value
[  533.899847][T10426] F2FS-fs (loop1): Found nat_bits in checkpoint
[  533.900724][T10468] loop4: detected capacity change from 0 to 4096
[  533.921259][T10468] EXT4-fs (loop4): Test dummy encryption mode enabled
[  533.975578][T10468] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  534.631916][T10426] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  534.984770][   T27] audit: type=1800 audit(1781732634.324:164): pid=10426 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1146" name="file1" dev="loop1" ino=10 res=0 errno=0
[  535.219065][T10426] syz.1.1146: attempt to access beyond end of device
[  535.219065][T10426] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  536.110946][ T5776] syz-executor: attempt to access beyond end of device
[  536.110946][ T5776] loop1: rw=2049, sector=45104, nr_sectors = 8 limit=40427
[  536.176584][ T5776] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  536.185858][T10247] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  536.746565][T10513] trusted_key: syz.4.1165 sent an empty control message without MSG_MORE.
[  536.755610][T10512] netlink: 84 bytes leftover after parsing attributes in process `syz.0.1163'.
[  537.830821][T10547] loop4: detected capacity change from 0 to 2048
[  537.871202][T10547] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  537.884148][T10547] ext4 filesystem being mounted at /7/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  537.896662][ T1322] net_ratelimit: 276 callbacks suppressed
[  537.896676][ T1322] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  537.910560][ T6249] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  537.919280][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  537.987859][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  538.229157][T10555] EXT4-fs error (device loop4): ext4_validate_block_bitmap:439: comm syz.4.1173: bg 0: block 345: padding at end of block bitmap is not set
[  538.256918][T10555] EXT4-fs (loop4): Remounting filesystem read-only
[  538.265706][T10555] EXT4-fs warning (device loop4): ext4_xattr_inode_lookup_create:1609: inode #18: comm syz.4.1173: cleanup dec ref error -117
[  538.342251][ T5832] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  538.562728][T10569] overlayfs: failed to clone upperpath
[  538.790049][T10557] loop1: detected capacity change from 0 to 32768
[  538.858275][T10247] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  538.948695][T10557] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  539.103531][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  539.119829][T10557] XFS (loop1): Ending clean mount
[  539.428934][ T5776] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  540.240837][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  541.065332][T10641] fuse: Bad value for 'fd'
[  541.357027][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  541.616456][ T5761] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  541.695334][T10658] bridge0: port 1(syz_tun) entered blocking state
[  541.717034][T10658] bridge0: port 1(syz_tun) entered disabled state
[  541.727924][T10658] syz_tun: entered allmulticast mode
[  541.734587][T10658] syz_tun: entered promiscuous mode
[  541.744572][T10658] bridge0: port 1(syz_tun) entered blocking state
[  541.751227][T10658] bridge0: port 1(syz_tun) entered forwarding state
[  541.936415][T10664] syzkaller0: entered promiscuous mode
[  541.943535][T10664] syzkaller0: entered allmulticast mode
[  541.958269][T10664] PF_CAN: dropped non conform CAN FD skbuff: dev type 280, len 65487
[  542.165132][ T6249] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  542.327147][T10677] hub 8-0:1.0: USB hub found
[  542.465828][T10677] hub 8-0:1.0: 1 port detected
[  542.676858][ T5778] Bluetooth: hci0: unexpected event 0x03 length: 1 < 11
[  543.231503][T10696] fuse: Bad value for 'fd'
[  543.448130][ T6232] net_ratelimit: 4 callbacks suppressed
[  543.448146][ T6232] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  543.609604][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  543.937584][T10710] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  543.976469][T10710] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  544.020695][T10715] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  544.075179][T10715] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  544.083460][T10715] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  544.129893][ T1322] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  544.150912][ T6249] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  544.159181][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  545.998677][T10739] loop4: detected capacity change from 0 to 2048
[  546.081227][T10739] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  546.147832][T10739] ext4 filesystem being mounted at /15/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  546.482714][T10756] EXT4-fs error (device loop4): ext4_validate_block_bitmap:439: comm syz.4.1214: bg 0: block 345: padding at end of block bitmap is not set
[  546.510571][T10756] EXT4-fs (loop4): Remounting filesystem read-only
[  546.519115][T10756] EXT4-fs warning (device loop4): ext4_xattr_inode_lookup_create:1609: inode #18: comm syz.4.1214: cleanup dec ref error -117
[  546.944137][T10247] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  546.962722][T10750] loop1: detected capacity change from 0 to 32768
[  547.005190][T10772] fuse: Bad value for 'fd'
[  547.663994][T10798] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1230'.
[  547.769803][ T5832] usb 2-1: new full-speed USB device number 14 using dummy_hcd
[  547.989357][ T5832] usb 2-1: config 0 has an invalid interface number: 214 but max is 0
[  548.103218][ T5832] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  548.137077][ T5832] usb 2-1: config 0 has no interface number 0
[  548.148173][ T5832] usb 2-1: config 0 interface 214 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  548.256652][ T5832] usb 2-1: New USB device found, idVendor=0596, idProduct=0001, bcdDevice= 5.f5
[  548.270822][ T5832] usb 2-1: New USB device strings: Mfr=1, Product=0, SerialNumber=3
[  548.293910][ T5832] usb 2-1: Manufacturer: syz
[  548.327280][ T5832] usb 2-1: SerialNumber: syz
[  548.524767][ T5832] usb 2-1: config 0 descriptor??
[  549.253019][    C0] net_ratelimit: 37 callbacks suppressed
[  549.253037][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  549.281798][ T5832] usb 2-1: USB disconnect, device number 14
[  549.675878][ T6222] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  550.368771][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  550.380069][ T6228] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  550.388320][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  550.398310][ T1322] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  551.012963][T10860] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1243'.
[  551.495208][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  551.593859][  T787] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  551.779400][   T27] audit: type=1800 audit(1781732649.843:165): pid=10861 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1241" name="/" dev="fuse" ino=4 res=0 errno=0
[  552.062303][T10906] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  552.138763][T10906] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  553.113235][T10921] netlink: 'syz.4.1257': attribute type 3 has an invalid length.
[  553.168213][T10921] netlink: 'syz.4.1257': attribute type 3 has an invalid length.
[  553.398426][T10921] netlink: 'syz.4.1257': attribute type 3 has an invalid length.
[  553.408581][T10921] netlink: 'syz.4.1257': attribute type 3 has an invalid length.
[  553.427844][T10921] netlink: 'syz.4.1257': attribute type 3 has an invalid length.
[  553.450477][T10921] netlink: 'syz.4.1257': attribute type 3 has an invalid length.
[  553.470972][T10921] netlink: 'syz.4.1257': attribute type 3 has an invalid length.
[  553.497347][T10921] netlink: 'syz.4.1257': attribute type 3 has an invalid length.
[  553.629511][T10921] netlink: 'syz.4.1257': attribute type 3 has an invalid length.
[  553.637747][T10921] netlink: 'syz.4.1257': attribute type 3 has an invalid length.
[  554.502433][T10954] binder: 10947:10954 ioctl c0306201 0 returned -14
[  554.885572][    C0] net_ratelimit: 19 callbacks suppressed
[  554.885588][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  554.900109][  T787] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  555.923096][ T6237] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  556.001398][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  556.609113][ T6237] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  556.617311][ T6222] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  556.625471][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  556.671408][T10997] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  556.685260][T10997] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  556.698466][T10997] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  556.991127][T11005] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  557.004130][T11005] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  557.849078][T11026] syz_tun: entered allmulticast mode
[  557.868726][T11024] syz_tun: left allmulticast mode
[  559.551298][T11060] loop4: detected capacity change from 0 to 4096
[  559.575769][T11060] EXT4-fs (loop4): Test dummy encryption mode enabled
[  559.594996][T11060] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  560.473605][T10247] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  560.518221][    C0] net_ratelimit: 9 callbacks suppressed
[  560.518238][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  560.681607][T11074] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1297'.
[  560.694286][T11074] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1297'.
[  560.940515][ T5910] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[  561.055863][T11084] loop4: detected capacity change from 0 to 2048
[  561.110958][T11084] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  561.145099][T11084] ext4 filesystem being mounted at /35/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  561.167927][ T5910] usb 2-1: Using ep0 maxpacket: 32
[  561.179859][ T5910] usb 2-1: config 0 has an invalid interface number: 89 but max is 0
[  561.187998][ T5910] usb 2-1: config 0 has no interface number 0
[  561.205868][ T5910] usb 2-1: config 0 interface 89 altsetting 2 endpoint 0x82 has invalid wMaxPacketSize 0
[  561.225122][ T5910] usb 2-1: config 0 interface 89 has no altsetting 0
[  561.245660][ T5910] usb 2-1: New USB device found, idVendor=0ccd, idProduct=10af, bcdDevice=38.4a
[  561.265404][ T5910] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  561.276310][ T5910] usb 2-1: Product: syz
[  561.280504][ T5910] usb 2-1: Manufacturer: syz
[  561.329037][ T5910] usb 2-1: SerialNumber: syz
[  561.371196][ T5910] usb 2-1: config 0 descriptor??
[  561.403029][ T5910] em28xx 2-1:0.89: New device syz syz @ 480 Mbps (0ccd:10af, interface 89, class 89)
[  561.422275][ T5910] em28xx 2-1:0.89: Video interface 89 found:
[  561.470321][ T5832] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  561.543533][T11098] EXT4-fs error (device loop4): ext4_validate_block_bitmap:439: comm syz.4.1303: bg 0: block 345: padding at end of block bitmap is not set
[  561.562071][T11098] EXT4-fs (loop4): Remounting filesystem read-only
[  561.569000][T11098] EXT4-fs warning (device loop4): ext4_xattr_inode_lookup_create:1609: inode #18: comm syz.4.1303: cleanup dec ref error -117
[  561.644668][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  561.814076][T11103] fuse: Bad value for 'fd'
[  561.923896][T11108] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  561.993509][T11108] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  562.075615][ T5910] em28xx 2-1:0.89: unknown em28xx chip ID (0)
[  562.380713][T11112] bridge0: port 1(bridge_slave_0) entered disabled state
[  562.603090][T10247] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  562.745253][T11119] loop4: detected capacity change from 0 to 2048
[  562.791828][T11119] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  562.815983][T11119] ext4 filesystem being mounted at /36/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  563.056366][T11112] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  563.147418][T11119] EXT4-fs error (device loop4): ext4_validate_block_bitmap:439: comm syz.4.1309: bg 0: block 345: padding at end of block bitmap is not set
[  563.163598][T11112] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  563.171434][T11119] EXT4-fs (loop4): Remounting filesystem read-only
[  563.178346][T11119] EXT4-fs warning (device loop4): ext4_xattr_inode_lookup_create:1609: inode #18: comm syz.4.1309: cleanup dec ref error -117
[  563.334538][T10247] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  563.493659][ T5910] em28xx 2-1:0.89: reading from i2c device at 0xa0 failed (error=-5)
[  563.504084][ T5910] em28xx 2-1:0.89: board has no eeprom
[  563.584116][ T5910] em28xx 2-1:0.89: Identified as Terratec Grabby (card=67)
[  563.596106][ T5910] em28xx 2-1:0.89: analog set to bulk mode.
[  563.602662][ T5827] em28xx 2-1:0.89: Registering V4L2 extension
[  563.629221][ T5910] usb 2-1: USB disconnect, device number 15
[  563.636239][ T5910] em28xx 2-1:0.89: Disconnecting em28xx
[  563.745390][ T5827] em28xx 2-1:0.89: Config register raw data: 0xffffffed
[  563.785186][ T5827] em28xx 2-1:0.89: AC97 chip type couldn't be determined
[  563.793537][ T5827] em28xx 2-1:0.89: No AC97 audio processor
[  563.816527][ T5827] usb 2-1: Decoder not found
[  563.821185][ T5827] em28xx 2-1:0.89: failed to create media graph
[  563.828106][ T5827] em28xx 2-1:0.89: V4L2 device video103 deregistered
[  563.837447][T11112] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  563.849771][T11112] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  563.850777][ T5827] em28xx 2-1:0.89: Registering snapshot button...
[  563.861132][T11112] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  563.872757][ T5827] input: em28xx snapshot button as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.89/input/input9
[  563.877450][T11112] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  563.895607][ T5827] em28xx 2-1:0.89: Remote control support is not available for this card.
[  563.906323][ T5910] em28xx 2-1:0.89: Closing input extension
[  563.918715][ T5910] em28xx 2-1:0.89: Deregistering snapshot button
[  563.991444][ T5910] em28xx 2-1:0.89: Freeing device
[  564.157029][T11141] loop2: detected capacity change from 0 to 7
[  564.180109][T11141]  loop2: p1
[  564.183690][T11141] loop2: partition table partially beyond EOD, truncated
[  564.191683][T11141] loop2: p1 size 1919251295 extends beyond EOD, truncated
[  564.240102][ T8478] udevd[8478]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  564.243671][T11144] fuse: Bad value for 'fd'
[  564.347670][T11148] fuse: Bad value for 'fd'
[  564.829719][T11175] loop4: detected capacity change from 0 to 128
[  564.884564][T11175] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  564.943555][T11175] ext4 filesystem being mounted at /39/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  565.045471][T11187] fuse: Bad value for 'fd'
[  565.128987][T11189] fuse: Bad value for 'fd'
[  565.210800][T10247] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  565.214739][T11192] fuse: Bad value for 'fd'
[  565.667171][T11207] loop4: detected capacity change from 0 to 4096
[  565.699356][T11207] EXT4-fs (loop4): Test dummy encryption mode enabled
[  565.724439][T11207] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  566.875704][T10247] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  570.082009][T11271] batman_adv: batadv0: Removing interface: batadv_slave_0
[  570.185219][T11271] batman_adv: batadv0: Removing interface: batadv_slave_1
[  570.337053][T11277] overlayfs: failed to resolve './file0': -2
[  570.412426][T11283] fuse: Bad value for 'fd'
[  570.424056][T11283] capability: warning: `syz.0.1356' uses deprecated v2 capabilities in a way that may be insecure
[  570.796352][T11291] fuse: Bad value for 'fd'
[  572.214019][T11368] fuse: Bad value for 'fd'
[  572.641627][T10257] usb 5-1: new full-speed USB device number 3 using dummy_hcd
[  572.833960][ T5761] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[  572.903717][T10257] usb 5-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  572.927684][T10257] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  572.959093][T10257] usb 5-1: Product: syz
[  572.975470][T10257] usb 5-1: Manufacturer: syz
[  572.994814][T10257] usb 5-1: SerialNumber: syz
[  573.027894][T10257] usb 5-1: config 0 descriptor??
[  573.168310][ T5761] usb 2-1: Using ep0 maxpacket: 32
[  573.208172][ T5761] usb 2-1: config 0 has an invalid interface number: 89 but max is 0
[  573.227709][ T5761] usb 2-1: config 0 has no interface number 0
[  573.233928][ T5761] usb 2-1: config 0 interface 89 altsetting 2 endpoint 0x82 has invalid wMaxPacketSize 0
[  573.248537][ T5761] usb 2-1: config 0 interface 89 has no altsetting 0
[  573.259033][ T5761] usb 2-1: New USB device found, idVendor=0ccd, idProduct=10af, bcdDevice=38.4a
[  573.277885][ T5761] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  573.311225][ T5761] usb 2-1: Product: syz
[  573.315705][T10257] usb 5-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  573.327328][ T5761] usb 2-1: Manufacturer: syz
[  573.340380][ T5761] usb 2-1: SerialNumber: syz
[  573.410611][ T5761] usb 2-1: config 0 descriptor??
[  573.432572][ T5761] em28xx 2-1:0.89: New device syz syz @ 480 Mbps (0ccd:10af, interface 89, class 89)
[  573.447534][ T5761] em28xx 2-1:0.89: Video interface 89 found:
[  574.171933][ T5761] em28xx 2-1:0.89: unknown em28xx chip ID (0)
[  574.853468][T10257] dvb_usb_rtl28xxu: probe of 5-1:0.0 failed with error -71
[  574.907324][T10257] usb 5-1: USB disconnect, device number 3
[  575.357660][ T5761] em28xx 2-1:0.89: AC97 command still being executed: not handled properly!
[  575.462013][T11446] fuse: Bad value for 'fd'
[  575.558776][ T5761] em28xx 2-1:0.89: reading from i2c device at 0xa0 failed (error=-5)
[  575.590389][ T5761] em28xx 2-1:0.89: board has no eeprom
[  575.620990][T11451] loop4: detected capacity change from 0 to 4096
[  575.667482][T11451] EXT4-fs (loop4): Test dummy encryption mode enabled
[  575.676040][ T5761] em28xx 2-1:0.89: Identified as Terratec Grabby (card=67)
[  575.696392][ T5761] em28xx 2-1:0.89: analog set to bulk mode.
[  575.721880][T11451] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  575.738074][ T5832] em28xx 2-1:0.89: Registering V4L2 extension
[  575.797426][ T5761] usb 2-1: USB disconnect, device number 16
[  575.839140][ T5761] em28xx 2-1:0.89: Disconnecting em28xx
[  576.092992][ T5832] em28xx 2-1:0.89: Config register raw data: 0xffffffed
[  576.133257][ T5832] em28xx 2-1:0.89: AC97 chip type couldn't be determined
[  576.724893][ T5832] em28xx 2-1:0.89: No AC97 audio processor
[  576.739695][ T5832] usb 2-1: Decoder not found
[  576.749302][ T5832] em28xx 2-1:0.89: failed to create media graph
[  576.751700][T10247] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  576.767140][ T5832] em28xx 2-1:0.89: V4L2 device video103 deregistered
[  576.806899][ T5832] em28xx 2-1:0.89: Registering snapshot button...
[  576.827324][ T5832] input: em28xx snapshot button as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.89/input/input10
[  576.863816][ T5832] em28xx 2-1:0.89: Remote control support is not available for this card.
[  576.894005][ T5761] em28xx 2-1:0.89: Closing input extension
[  576.899964][ T5761] em28xx 2-1:0.89: Deregistering snapshot button
[  577.120432][ T5761] em28xx 2-1:0.89: Freeing device
[  579.359971][T11526] loop4: detected capacity change from 0 to 4096
[  579.394555][T11526] EXT4-fs (loop4): Test dummy encryption mode enabled
[  579.453935][T11526] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  580.540461][T10247] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  581.295036][T11574] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1406'.
[  581.596869][T11574] 8021q: adding VLAN 0 to HW filter on device bond3
[  581.605979][T11574] bond2: (slave bond3): Enslaving as an active interface with an up link
[  581.678833][T11581] bond2 (unregistering): (slave bond3): Releasing backup interface
[  581.811405][T11581] bond2 (unregistering): Released all slaves
[  582.156873][T11596] fuse: Bad value for 'fd'
[  582.245930][T11598] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1410'.
[  583.534091][T11618] cgroup: fork rejected by pids controller in /syz0
[  584.049486][T11631] syzkaller0: entered promiscuous mode
[  584.060349][T11631] syzkaller0: entered allmulticast mode
[  584.609782][T11641] xt_CONNSECMARK: invalid mode: 0
[  585.702612][ T1291] ieee802154 phy0 wpan0: encryption failed: -22
[  585.709058][ T1291] ieee802154 phy1 wpan1: encryption failed: -22
[  585.884018][T11645] 9pnet_fd: Insufficient options for proto=fd
[  586.558753][   T27] audit: type=1326 audit(1781732681.942:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11650 comm="syz.2.1429" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f3371d9ce59 code=0x0
[  587.060998][T11660] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  587.072877][T11660] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  587.092062][T11660] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  587.101290][T11660] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  587.108875][T11660] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  587.116718][T11660] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  587.411868][T11662] loop1: detected capacity change from 0 to 4096
[  587.472929][T11662] EXT4-fs (loop1): Test dummy encryption mode enabled
[  587.566634][T11662] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  588.792392][T11658] chnl_net:caif_netlink_parms(): no params data found
[  589.112300][T11658] bridge0: port 1(bridge_slave_0) entered blocking state
[  589.120523][T11658] bridge0: port 1(bridge_slave_0) entered disabled state
[  589.127896][T11658] bridge_slave_0: entered allmulticast mode
[  589.135326][T11658] bridge_slave_0: entered promiscuous mode
[  589.144083][T11658] bridge0: port 2(bridge_slave_1) entered blocking state
[  589.151893][T11658] bridge0: port 2(bridge_slave_1) entered disabled state
[  589.159364][T11658] bridge_slave_1: entered allmulticast mode
[  589.166600][T11658] bridge_slave_1: entered promiscuous mode
[  589.216015][T11658] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  589.238358][T11658] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  589.373358][T11660] Bluetooth: hci3: command tx timeout
[  589.387517][T11658] team0: Port device team_slave_0 added
[  589.406934][T11658] team0: Port device team_slave_1 added
[  589.439420][T11658] batman_adv: batadv0: Adding interface: batadv_slave_0
[  589.449656][T11658] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  589.476252][T11658] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  589.489389][T11658] batman_adv: batadv0: Adding interface: batadv_slave_1
[  589.497403][T11658] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  589.524119][T11658] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  589.616321][T11658] hsr_slave_0: entered promiscuous mode
[  589.635208][T11658] hsr_slave_1: entered promiscuous mode
[  589.648213][T11658] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  589.668680][T11658] Cannot create hsr debugfs directory
[  590.244709][ T5776] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  590.627396][T11712] hub 8-0:1.0: USB hub found
[  590.633580][T11712] hub 8-0:1.0: 1 port detected
[  591.627588][T11660] Bluetooth: hci3: command tx timeout
[  593.876622][T11660] Bluetooth: hci3: command tx timeout
[  594.804998][T11658] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  594.821015][T11658] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  594.849805][T11658] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  594.887011][T11658] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  594.939555][T11727] validate_nla: 37 callbacks suppressed
[  594.939606][T11727] netlink: 'syz.2.1448': attribute type 10 has an invalid length.
[  594.955369][T11727] team0: left promiscuous mode
[  594.966262][T11727] team0: left allmulticast mode
[  595.331982][T11727] 8021q: adding VLAN 0 to HW filter on device team0
[  595.397014][T11727] bond0: (slave team0): Enslaving as an active interface with an up link
[  595.631429][T11736] loop1: detected capacity change from 0 to 4096
[  595.675398][T11736] EXT4-fs (loop1): Test dummy encryption mode enabled
[  595.707559][T11658] 8021q: adding VLAN 0 to HW filter on device bond0
[  595.735631][T11736] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  595.771655][T11742] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1452'.
[  595.802341][T11658] 8021q: adding VLAN 0 to HW filter on device team0
[  595.980820][ T6237] bridge0: port 1(bridge_slave_0) entered blocking state
[  595.988040][ T6237] bridge0: port 1(bridge_slave_0) entered forwarding state
[  596.044852][ T6237] bridge0: port 2(bridge_slave_1) entered blocking state
[  596.052070][ T6237] bridge0: port 2(bridge_slave_1) entered forwarding state
[  596.127603][ T5778] Bluetooth: hci3: command tx timeout
[  596.128529][T11658] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  596.143588][ T5761] usb 5-1: new full-speed USB device number 4 using dummy_hcd
[  596.365857][ T5761] usb 5-1: New USB device found, idVendor=174f, idProduct=6a31, bcdDevice=26.3f
[  596.375602][ T5761] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  596.385471][ T5761] usb 5-1: Product: syz
[  596.404069][ T5761] usb 5-1: Manufacturer: syz
[  596.415045][ T5761] usb 5-1: SerialNumber: syz
[  596.435758][ T5761] usb 5-1: config 0 descriptor??
[  596.456565][ T5761] gspca_main: stk1135-2.14.0 probing 174f:6a31
[  596.636909][T11658] 8021q: adding VLAN 0 to HW filter on device batadv0
[  596.939453][T11658] veth0_vlan: entered promiscuous mode
[  596.994134][T11658] veth1_vlan: entered promiscuous mode
[  597.134624][T11658] veth0_macvtap: entered promiscuous mode
[  597.173289][T11658] veth1_macvtap: entered promiscuous mode
[  597.219125][T11658] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  597.249452][T11658] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  597.283014][T11658] batman_adv: batadv0: Interface activated: batadv_slave_0
[  597.315287][T11658] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  597.346296][T11658] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  597.374085][T11658] batman_adv: batadv0: Interface activated: batadv_slave_1
[  597.438450][T11658] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  597.466443][T11658] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  597.486659][T11658] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  597.515321][T11658] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  597.801194][ T5776] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  597.855431][ T6220] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  597.865525][ T6220] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  597.936268][ T6223] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  597.952291][ T6223] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  598.627517][T11777] loop1: detected capacity change from 0 to 32768
[  598.669795][T11777] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 scanned by syz.1.1457 (11777)
[  598.739635][T11777] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  598.828240][T11777] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm
[  598.873642][T11777] BTRFS info (device loop1): setting nodatasum
[  598.879921][T11777] BTRFS info (device loop1): force zlib compression, level 3
[  598.927886][T11777] BTRFS info (device loop1): turning on flush-on-commit
[  599.009686][T11777] BTRFS info (device loop1): max_inline at 4096
[  599.027482][T11777] BTRFS info (device loop1): using free space tree
[  599.155593][T11777] BTRFS info (device loop1): enabling ssd optimizations
[  599.437796][T11777] loop1: detected capacity change from 32768 to 0
[  599.635785][ T5761] gspca_stk1135: reg_w 0x300 err -71
[  599.642589][ T5761] gspca_stk1135: serial bus timeout: status=0x00
[  599.649037][ T5761] gspca_stk1135: Sensor write failed
[  599.658073][ T5761] gspca_stk1135: serial bus timeout: status=0x00
[  599.664690][ T5761] gspca_stk1135: Sensor write failed
[  599.670019][ T5761] gspca_stk1135: serial bus timeout: status=0x00
[  599.687296][ T5761] gspca_stk1135: Sensor read failed
[  599.692951][ T5761] gspca_stk1135: serial bus timeout: status=0x00
[  599.701010][ T5761] gspca_stk1135: Sensor read failed
[  599.706237][ T5761] gspca_stk1135: Detected sensor type unknown (0x0)
[  599.718975][ T5761] gspca_stk1135: serial bus timeout: status=0x00
[  599.725337][ T5761] gspca_stk1135: Sensor read failed
[  599.727796][T11777] syz.1.1457: attempt to access beyond end of device
[  599.727796][T11777] loop1: rw=2049, sector=10464, nr_sectors = 128 limit=0
[  599.747150][ T5761] gspca_stk1135: serial bus timeout: status=0x00
[  599.756970][ T5761] gspca_stk1135: Sensor read failed
[  599.773140][ T5761] gspca_stk1135: serial bus timeout: status=0x00
[  599.780137][T11777] BTRFS error (device loop1): bdev /dev/loop1 errs: wr 1, rd 0, flush 0, corrupt 0, gen 0
[  599.783904][ T5761] gspca_stk1135: Sensor write failed
[  599.812561][ T5761] gspca_stk1135: serial bus timeout: status=0x00
[  599.839638][ T5761] gspca_stk1135: Sensor write failed
[  599.851719][ T5761] stk1135: probe of 5-1:0.0 failed with error -71
[  599.869598][ T5761] usb 5-1: USB disconnect, device number 4
[  600.003886][ T6229] kworker/u4:35: attempt to access beyond end of device
[  600.003886][ T6229] loop1: rw=4097, sector=2064, nr_sectors = 8 limit=0
[  601.311368][ T6229] BTRFS error (device loop1): bdev /dev/loop1 errs: wr 2, rd 0, flush 0, corrupt 0, gen 0
[  601.343957][ T6229] kworker/u4:35: attempt to access beyond end of device
[  601.343957][ T6229] loop1: rw=4097, sector=10448, nr_sectors = 8 limit=0
[  601.373290][ T6229] BTRFS error (device loop1): bdev /dev/loop1 errs: wr 3, rd 0, flush 0, corrupt 0, gen 0
[  601.392321][ T6229] kworker/u4:35: attempt to access beyond end of device
[  601.392321][ T6229] loop1: rw=4097, sector=12520, nr_sectors = 8 limit=0
[  601.425566][ T6229] BTRFS error (device loop1): bdev /dev/loop1 errs: wr 4, rd 0, flush 0, corrupt 0, gen 0
[  601.473315][ T6229] kworker/u4:35: attempt to access beyond end of device
[  601.473315][ T6229] loop1: rw=4097, sector=12528, nr_sectors = 8 limit=0
[  601.490588][ T6229] BTRFS error (device loop1): bdev /dev/loop1 errs: wr 5, rd 0, flush 0, corrupt 0, gen 0
[  601.502017][ T6229] kworker/u4:35: attempt to access beyond end of device
[  601.502017][ T6229] loop1: rw=4097, sector=12536, nr_sectors = 8 limit=0
[  601.516374][ T6229] BTRFS error (device loop1): bdev /dev/loop1 errs: wr 6, rd 0, flush 0, corrupt 0, gen 0
[  601.527581][ T5776] BTRFS error (device loop1): failed to run delayed ref for logical 6418432 num_bytes 4096 type 176 action 1 ref_mod 1: -5
[  601.543052][ T5776] BTRFS error (device loop1: state A): Transaction aborted (error -5)
[  601.553490][ T5776] BTRFS: error (device loop1: state A) in btrfs_run_delayed_refs:2200: errno=-5 IO failure
[  601.581089][T11829] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1470'.
[  601.592536][ T5776] BTRFS info (device loop1: state EA): forced readonly
[  601.599571][ T5776] BTRFS info (device loop1: state EA): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  602.282496][T11841] syzkaller0: entered promiscuous mode
[  602.292274][T11841] syzkaller0: entered allmulticast mode
[  604.174307][T11859] xt_cgroup: invalid path, errno=-2
[  607.038049][T11882] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1484'.
[  609.597576][T11909] Bluetooth: hci0: invalid length 0, exp 2 for type 9
[  609.620463][T11907] syzkaller0: entered promiscuous mode
[  609.625979][T11907] syzkaller0: entered allmulticast mode
[  613.851571][T11943] kvm: requested 90514 ns i8254 timer period limited to 200000 ns
[  613.862558][T11943] kvm: requested 185219 ns i8254 timer period limited to 200000 ns
[  613.871261][T11943] kvm: requested 162590 ns i8254 timer period limited to 200000 ns
[  613.881691][T11943] kvm: requested 187733 ns i8254 timer period limited to 200000 ns
[  613.890434][T11943] kvm: requested 91352 ns i8254 timer period limited to 200000 ns
[  614.731643][T11913] syzkaller0: entered promiscuous mode
[  614.737172][T11913] syzkaller0: entered allmulticast mode
[  614.771146][T11925] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  615.677919][T11946] loop1: detected capacity change from 0 to 4096
[  615.713625][T11946] EXT4-fs (loop1): Test dummy encryption mode enabled
[  615.745586][T11946] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  615.776349][T11959] syzkaller0: entered promiscuous mode
[  616.005051][T11955] syzkaller0: entered promiscuous mode
[  616.026594][T11955] syzkaller0: entered allmulticast mode
[  616.647221][T11972] netlink: 'syz.0.1507': attribute type 1 has an invalid length.
[  616.659370][T11972] netlink: 'syz.0.1507': attribute type 4 has an invalid length.
[  616.667647][T11972] netlink: 15334 bytes leftover after parsing attributes in process `syz.0.1507'.
[  616.802343][T11973] loop4: detected capacity change from 0 to 4096
[  617.449789][ T5776] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  617.458751][T11979] kvm: requested 154209 ns i8254 timer period limited to 200000 ns
[  617.459015][T11979] kvm: requested 116495 ns i8254 timer period limited to 200000 ns
[  617.484347][T11979] kvm: requested 166781 ns i8254 timer period limited to 200000 ns
[  617.505560][T11979] kvm: requested 126552 ns i8254 timer period limited to 200000 ns
[  617.543046][T11979] kvm: requested 99733 ns i8254 timer period limited to 200000 ns
[  618.199680][T12001] loop4: detected capacity change from 0 to 4096
[  618.812357][T12001] EXT4-fs (loop4): Test dummy encryption mode enabled
[  618.931604][T12001] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  619.963423][T10257] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  620.034049][T10247] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  620.223864][T10257] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  620.248086][T10257] usb 1-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  620.290851][T10257] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  620.815876][T10257] usb 1-1: config 0 descriptor??
[  620.825904][T10257] pwc: Askey VC010 type 2 USB webcam detected.
[  621.267845][T10257] pwc: recv_control_msg error -32 req 02 val 2b00
[  621.292987][T10257] pwc: recv_control_msg error -32 req 02 val 2700
[  621.313437][T10257] pwc: recv_control_msg error -32 req 02 val 2c00
[  621.342208][T10257] pwc: recv_control_msg error -32 req 04 val 1000
[  621.477417][T10257] pwc: recv_control_msg error -32 req 04 val 1300
[  621.503624][T12033] create_pit_timer: 2 callbacks suppressed
[  621.503636][T12033] kvm: requested 154209 ns i8254 timer period limited to 200000 ns
[  621.518581][T12033] kvm: requested 116495 ns i8254 timer period limited to 200000 ns
[  621.518858][T10257] pwc: recv_control_msg error -32 req 04 val 1400
[  623.033502][T10257] pwc: recv_control_msg error -71 req 02 val 2000
[  623.089274][T10257] pwc: recv_control_msg error -71 req 02 val 2100
[  623.122607][T10257] pwc: recv_control_msg error -71 req 04 val 1500
[  623.170315][T10257] pwc: recv_control_msg error -71 req 02 val 2500
[  623.178612][T10257] pwc: recv_control_msg error -71 req 02 val 2400
[  623.187819][T10257] pwc: recv_control_msg error -71 req 02 val 2600
[  623.195234][T10257] pwc: recv_control_msg error -71 req 02 val 2900
[  623.204953][T10257] pwc: recv_control_msg error -71 req 02 val 2800
[  623.213638][T10257] pwc: recv_control_msg error -71 req 04 val 1100
[  623.233632][T10257] pwc: recv_control_msg error -71 req 04 val 1200
[  623.309214][T10257] pwc: Registered as video103.
[  623.375785][T10257] input: PWC snapshot button as /devices/platform/dummy_hcd.0/usb1/1-1/input/input11
[  623.430469][T10257] usb 1-1: USB disconnect, device number 2
[  624.350019][T12055] loop1: detected capacity change from 0 to 40427
[  624.363577][T12055] F2FS-fs (loop1): invalid crc value
[  624.379735][T12066] syzkaller0: entered promiscuous mode
[  624.388802][T12055] F2FS-fs (loop1): Found nat_bits in checkpoint
[  624.399476][T12066] syzkaller0: entered allmulticast mode
[  624.518234][T12055] F2FS-fs (loop1): Start checkpoint disabled!
[  624.615919][T12055] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[  625.828042][T12079] Cannot find set identified by id 0 to match
[  626.421043][T12081] syzkaller0: entered promiscuous mode
[  626.426594][T12081] syzkaller0: entered allmulticast mode
[  626.671398][ T6229] kworker/u4:35: attempt to access beyond end of device
[  626.671398][ T6229] loop1: rw=2049, sector=40960, nr_sectors = 24 limit=40427
[  626.690556][ T6229] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  626.698117][ T6229] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  626.705477][ T6229] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  627.873443][T12090] kvm: kvm [12089]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x11e) = 0xc880
[  627.919094][T12090] kvm: kvm [12089]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0x11e) = 0xbe702111
[  627.946141][T12090] kvm: kvm [12089]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x187) = 0xa088
[  627.958487][T12090] kvm: kvm [12089]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x11e) = 0xd1a8
[  627.967778][T12090] kvm: kvm [12089]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0x11e) = 0xbe702111
[  633.493482][ T5761] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[  633.855771][ T5761] usb 2-1: Using ep0 maxpacket: 8
[  633.866200][ T5761] usb 2-1: unable to get BOS descriptor or descriptor too short
[  633.875771][ T5761] usb 2-1: config 3 has an invalid interface number: 92 but max is 1
[  633.884583][ T5761] usb 2-1: config 3 has an invalid interface number: 120 but max is 1
[  633.900475][ T5761] usb 2-1: config 3 has an invalid interface number: 92 but max is 1
[  633.908650][ T5761] usb 2-1: config 3 has no interface number 0
[  633.914769][ T5761] usb 2-1: config 3 has no interface number 1
[  633.920892][ T5761] usb 2-1: config 3 interface 120 altsetting 8 endpoint 0xE has invalid wMaxPacketSize 0
[  633.930767][ T5761] usb 2-1: config 3 interface 92 altsetting 4 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[  633.943757][ T5761] usb 2-1: config 3 interface 92 has no altsetting 0
[  633.950511][ T5761] usb 2-1: config 3 interface 92 has no altsetting 1
[  633.957204][ T5761] usb 2-1: config 3 interface 120 has no altsetting 0
[  633.966689][ T5761] usb 2-1: New USB device found, idVendor=1199, idProduct=6893, bcdDevice=16.b7
[  633.976075][ T5761] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  633.997227][ T5761] usb 2-1: Product: syz
[  634.024214][ T5761] usb 2-1: Manufacturer: syz
[  634.029108][ T5761] usb 2-1: SerialNumber: syz
[  634.144079][T12166] tipc: Started in network mode
[  634.150203][T12166] tipc: Node identity ced2f4090874, cluster identity 4711
[  634.173745][T12166] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  634.201574][T12166] syzkaller0: entered promiscuous mode
[  634.221270][T12166] syzkaller0: entered allmulticast mode
[  634.257668][T12166] sch_tbf: burst 255 is lower than device syzkaller0 mtu (1514) !
[  634.321663][ T5761] usb 2-1: selecting invalid altsetting 1
[  634.336607][ T5761] sierra 2-1:3.92: Sierra USB modem converter detected
[  634.358793][T12166] tipc: Resetting bearer <eth:syzkaller0>
[  634.373952][ T5761] usb 2-1: Sierra USB modem converter now attached to ttyUSB0
[  634.387064][T12165] tipc: Resetting bearer <eth:syzkaller0>
[  634.399334][ T5761] sierra 2-1:3.120: Sierra USB modem converter detected
[  634.437287][T12165] tipc: Disabling bearer <eth:syzkaller0>
[  634.443656][ T5761] usb 2-1: Sierra USB modem converter now attached to ttyUSB1
[  634.478229][ T5761] usb 2-1: USB disconnect, device number 17
[  634.500426][ T5761] sierra ttyUSB0: Sierra USB modem converter now disconnected from ttyUSB0
[  634.529271][ T5761] sierra 2-1:3.92: device disconnected
[  634.549772][ T5761] sierra ttyUSB1: Sierra USB modem converter now disconnected from ttyUSB1
[  634.563599][ T5761] sierra 2-1:3.120: device disconnected
[  634.711289][T12181] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  634.729957][T12181] syzkaller0: entered promiscuous mode
[  634.735532][T12181] syzkaller0: entered allmulticast mode
[  634.767849][T12181] tipc: Resetting bearer <eth:syzkaller0>
[  634.783201][T12179] tipc: Resetting bearer <eth:syzkaller0>
[  634.809124][T12179] tipc: Disabling bearer <eth:syzkaller0>
[  635.008693][T12190] netlink: 'syz.4.1560': attribute type 2 has an invalid length.
[  635.245369][T12197] kvm: kvm [12191]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x11e) = 0x80
[  635.254933][T12197] kvm: kvm [12191]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0x11e) = 0xbe702111
[  635.355761][T11135] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  635.638204][T11135] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  635.697754][T11135] usb 1-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  635.753038][T11135] usb 1-1: New USB device found, idVendor=2040, idProduct=4900, bcdDevice=4d.8b
[  635.801885][T11135] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  635.822582][T11135] usb 1-1: config 0 descriptor??
[  638.032385][T12230] syzkaller0: entered promiscuous mode
[  638.044188][T12230] syzkaller0: entered allmulticast mode
[  638.333312][T10257] usb 1-1: USB disconnect, device number 3
[  638.579935][T12247] misc userio: Invalid payload size
[  640.024186][T10257] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[  640.392765][T10257] usb 2-1: Using ep0 maxpacket: 16
[  640.449464][T10257] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  640.542812][T10257] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  640.612264][T10257] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  640.726200][T10257] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  640.738800][T10257] usb 2-1: Product: syz
[  640.743829][T10257] usb 2-1: Manufacturer: syz
[  640.748440][T10257] usb 2-1: SerialNumber: syz
[  640.948087][T12274] syzkaller0: entered promiscuous mode
[  640.953636][T12274] syzkaller0: entered allmulticast mode
[  640.981449][T12274] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  640.993385][T10257] usb 2-1: 0:2 : does not exist
[  641.018245][T12273] tipc: Resetting bearer <eth:syzkaller0>
[  641.023797][T10257] usb 2-1: 5:0: failed to get current value for ch 0 (-22)
[  641.063510][T12273] tipc: Disabling bearer <eth:syzkaller0>
[  641.070731][T10257] usb 2-1: USB disconnect, device number 18
[  641.117109][T12043] udevd[12043]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  641.531583][T12285] random: crng reseeded on system resumption
[  646.673753][T12323] kvm: kvm [12322]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x11e) = 0xa000
[  646.715530][T12323] kvm: kvm [12322]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0x11e) = 0xbe702111
[  646.758051][T12323] kvm: kvm [12322]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x187) = 0x4000
[  647.536328][T12334] syzkaller0: entered promiscuous mode
[  647.541563][ T5928] usb 2-1: new high-speed USB device number 19 using dummy_hcd
[  647.552152][T12334] syzkaller0: entered allmulticast mode
[  647.812281][ T5928] usb 2-1: Using ep0 maxpacket: 16
[  647.826100][ T5928] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  647.847442][ T5928] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  647.893106][ T5928] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  647.912633][T12338] netlink: 'syz.4.1601': attribute type 13 has an invalid length.
[  647.932001][ T5928] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[  648.597790][ T5928] usb 2-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  648.622282][ T5928] usb 2-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  648.631634][ T5928] usb 2-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  648.644115][T12336] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1600'.
[  648.658674][ T5928] usb 2-1: Manufacturer: syz
[  648.670352][ T5928] usb 2-1: config 0 descriptor??
[  649.634640][T12344] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1601'.
[  649.678460][ T5928] rc_core: IR keymap rc-hauppauge not found
[  649.684405][ T5928] Registered IR keymap rc-empty
[  649.713578][ T5928] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  649.783874][ T5928] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  649.820174][ T5928] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX (2040:b138) as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0
[  649.857899][ T5928] input: Conexant Hybrid TV (cx231xx) MCE IR no TX (2040:b138) as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0/input12
[  650.277377][ T5928] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  650.325456][ T5928] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  650.369480][ T5928] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  650.422766][ T5928] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  650.457346][ T5928] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  650.620295][ T5928] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  650.655021][ T5928] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  650.704535][ T5928] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  650.736835][ T5928] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  650.769785][ T5928] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  650.804284][ T5928] mceusb 2-1:0.0: Registered  with mce emulator interface version 1
[  650.823648][ T5928] mceusb 2-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[  650.940111][ T5928] usb 2-1: USB disconnect, device number 19
[  651.033135][T12367] loop4: detected capacity change from 0 to 16
[  651.062687][T12367] erofs: (device loop4): mounted with root inode @ nid 36.
[  651.750787][ T1291] ieee802154 phy0 wpan0: encryption failed: -22
[  652.106361][ T1291] ieee802154 phy1 wpan1: encryption failed: -22
[  652.530357][T12378] syz_tun: entered allmulticast mode
[  652.543250][T12377] loop1: detected capacity change from 0 to 2048
[  652.600342][T12377] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  652.624640][T12377] ext4 filesystem being mounted at /326/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  653.676371][T12374] syz_tun: left allmulticast mode
[  653.836743][ T5776] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  653.964692][ T5928] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  653.980400][T12395] loop1: detected capacity change from 0 to 1024
[  654.078148][T12395] hfsplus: request for non-existent node 33423360 in B*Tree
[  654.095855][T12395] hfsplus: request for non-existent node 33423360 in B*Tree
[  654.129080][T12396] hfsplus: request for non-existent node 33423360 in B*Tree
[  654.138491][T12396] hfsplus: request for non-existent node 33423360 in B*Tree
[  654.149004][T10257] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  654.159245][T12395] hfsplus: request for non-existent node 33423360 in B*Tree
[  654.166855][T12395] hfsplus: request for non-existent node 33423360 in B*Tree
[  654.177806][ T5928] usb 1-1: Using ep0 maxpacket: 8
[  654.197324][T12395] hfsplus: request for non-existent node 33423360 in B*Tree
[  654.197695][ T5928] usb 1-1: unable to get BOS descriptor or descriptor too short
[  654.225465][T12395] hfsplus: request for non-existent node 33423360 in B*Tree
[  654.225692][ T5928] usb 1-1: config 8 has an invalid interface number: 134 but max is 0
[  654.255394][T12395] hfsplus: request for non-existent node 33423360 in B*Tree
[  654.257102][ T5928] usb 1-1: config 8 has no interface number 0
[  654.266088][T12395] hfsplus: request for non-existent node 33423360 in B*Tree
[  654.284883][ T5928] usb 1-1: config 8 interface 134 has no altsetting 0
[  654.302384][ T5928] usb 1-1: New USB device found, idVendor=2013, idProduct=0246, bcdDevice=36.c5
[  654.309581][T12395] hfsplus: request for non-existent node 33423360 in B*Tree
[  654.319587][T12395] hfsplus: request for non-existent node 33423360 in B*Tree
[  654.322123][ T5928] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  654.346168][ T5928] usb 1-1: Product: syz
[  654.350428][ T5928] usb 1-1: Manufacturer: syz
[  654.352858][T12395] hfsplus: request for non-existent node 33423360 in B*Tree
[  654.363176][T12395] hfsplus: request for non-existent node 33423360 in B*Tree
[  654.363684][ T5928] usb 1-1: SerialNumber: syz
[  654.372660][T10257] usb 5-1: Using ep0 maxpacket: 32
[  654.400006][T10257] usb 5-1: New USB device found, idVendor=055f, idProduct=d001, bcdDevice=88.92
[  654.410328][T10257] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  654.414544][T12395] hfsplus: request for non-existent node 33423360 in B*Tree
[  654.427189][T10257] usb 5-1: config 0 descriptor??
[  654.441351][T12395] hfsplus: request for non-existent node 33423360 in B*Tree
[  654.447322][T10257] gspca_main: nw80x-2.14.0 probing 055f:d001
[  654.466042][T12396] hfsplus: request for non-existent node 33423360 in B*Tree
[  654.473458][T12396] hfsplus: request for non-existent node 33423360 in B*Tree
[  654.496538][T12395] hfsplus: request for non-existent node 33423360 in B*Tree
[  654.504065][T12395] hfsplus: request for non-existent node 33423360 in B*Tree
[  654.517431][T12395] hfsplus: request for non-existent node 33423360 in B*Tree
[  654.525585][T12395] hfsplus: request for non-existent node 33423360 in B*Tree
[  654.533001][ T5778] Bluetooth: hci1: command 0x0406 tx timeout
[  654.557323][T12395] hfsplus: request for non-existent node 33423360 in B*Tree
[  654.564964][T12395] hfsplus: request for non-existent node 33423360 in B*Tree
[  654.778809][T12395] hfsplus: request for non-existent node 33423360 in B*Tree
[  654.798339][T12395] hfsplus: request for non-existent node 33423360 in B*Tree
[  655.985871][T10257] gspca_nw80x: reg_w err -110
[  656.010766][T10257] nw80x: probe of 5-1:0.0 failed with error -110
[  656.278549][ T5928] as10x_usb: device has been detected
[  656.284988][ T5928] dvbdev: DVB: registering new adapter (PCTV Systems picoStick (74e))
[  656.312934][ T5928] usb 1-1: DVB: registering adapter 1 frontend 0 (PCTV Systems picoStick (74e))...
[  657.815421][T10257] usb 5-1: USB disconnect, device number 5
[  658.038489][ T5928] as10x_usb: error during firmware upload part1
[  658.045377][ T5928] Registered device PCTV Systems picoStick (74e)
[  658.051152][ T5928] usb 1-1: USB disconnect, device number 4
[  658.893373][T12436] loop4: detected capacity change from 0 to 2048
[  658.995366][T12418] kvm: kvm [12417]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x11e) = 0x80
[  659.005565][T12436] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  659.050878][T12418] kvm: kvm [12417]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0x11e) = 0xbe702111
[  659.067748][T12436] ext4 filesystem being mounted at /106/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  659.104039][ T5928] Unregistered device PCTV Systems picoStick (74e)
[  659.112093][ T5928] as10x_usb: device has been disconnected
[  660.301504][ T5827] usb 2-1: new low-speed USB device number 20 using dummy_hcd
[  660.722629][ T5827] usb 2-1: config 0 has no interfaces?
[  661.540799][ T5827] usb 2-1: string descriptor 0 read error: -22
[  661.548383][ T5827] usb 2-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=c3.de
[  661.557537][ T5827] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  661.596236][ T5827] usb 2-1: config 0 descriptor??
[  661.897262][T12460] EXT4-fs error (device loop4): ext4_validate_block_bitmap:439: comm syz.4.1619: bg 0: block 345: padding at end of block bitmap is not set
[  662.437060][T12466] syzkaller0: entered promiscuous mode
[  662.495055][T12460] EXT4-fs (loop4): Remounting filesystem read-only
[  662.539097][T12466] syzkaller0: entered allmulticast mode
[  662.591168][T12460] EXT4-fs warning (device loop4): ext4_xattr_inode_lookup_create:1609: inode #18: comm syz.4.1619: cleanup dec ref error -117
[  662.611175][T12462] tipc: Started in network mode
[  662.645200][T12462] tipc: Node identity ba0c5f260524, cluster identity 4711
[  662.696976][T12462] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  662.753462][T12461] tipc: Resetting bearer <eth:syzkaller0>
[  663.007482][T12461] tipc: Disabling bearer <eth:syzkaller0>
[  663.700177][ T5832] usb 2-1: USB disconnect, device number 20
[  664.896785][T10257] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  665.099940][T10257] usb 1-1: Using ep0 maxpacket: 32
[  665.113896][T10257] usb 1-1: New USB device found, idVendor=055f, idProduct=d001, bcdDevice=88.92
[  665.123232][T10257] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  665.145901][T10257] usb 1-1: config 0 descriptor??
[  665.170795][T10257] gspca_main: nw80x-2.14.0 probing 055f:d001
[  665.702643][T10247] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  666.961903][T10257] gspca_nw80x: reg_r err -110
[  667.719998][   T27] audit: type=1326 audit(1781732756.879:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12487 comm="syz.2.1631" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3371d9ce59 code=0x7fc00000
[  667.720253][T10257] nw80x: probe of 1-1:0.0 failed with error -110
[  668.446205][ T5827] usb 1-1: USB disconnect, device number 5
[  668.929450][T12521] hub 8-0:1.0: USB hub found
[  668.937617][T12521] hub 8-0:1.0: 1 port detected
[  670.340439][T12525] syzkaller0: entered promiscuous mode
[  670.346779][T12525] syzkaller0: entered allmulticast mode
[  670.382909][T12529] loop4: detected capacity change from 0 to 128
[  670.526684][T12528] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  670.548552][T12529] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (30846!=65535)
[  670.697866][T12529] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 ro without journal. Quota mode: none.
[  670.746023][T10247] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  671.621414][T12535] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[  675.225419][T12581] hub 8-0:1.0: USB hub found
[  675.230556][T12581] hub 8-0:1.0: 1 port detected
[  676.485008][T12588] loop1: detected capacity change from 0 to 4096
[  676.500481][T12588] ntfs3: Unknown parameter '®'
[  678.371110][T12601] loop4: detected capacity change from 0 to 2048
[  683.107113][T12656] loop4: detected capacity change from 0 to 4096
[  683.129740][T12656] ntfs3: Unknown parameter '®'
[  683.145016][T12655] loop1: detected capacity change from 0 to 8192
[  686.452612][T12682] tipc: New replicast peer: 255.255.255.255
[  686.461489][T12682] tipc: Enabled bearer <udp:syz2>, priority 10
[  686.530796][T12683] overlayfs: failed to resolve './file1/file0': -2
[  686.570712][T12682] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1673'.
[  686.690047][T12682] netlink: 'syz.0.1673': attribute type 1 has an invalid length.
[  687.214609][T12681] loop4: detected capacity change from 0 to 4096
[  687.229118][T12682] bond1: entered promiscuous mode
[  687.246322][T12682] 8021q: adding VLAN 0 to HW filter on device bond1
[  687.253667][T12681] EXT4-fs (loop4): Test dummy encryption mode enabled
[  687.350653][T12686] Illegal XDP return value 4294967294 on prog  (id 105) dev N/A, expect packet loss!
[  687.506009][T12684] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1673'.
[  687.699018][ T5827] tipc: Node number set to 3207094054
[  687.772499][T12681] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  689.014153][T10247] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  689.559211][T12702] No source specified
[  691.564160][ T6232] Bluetooth: (null): Invalid header checksum
[  691.656836][ T6232] Bluetooth: (null): Invalid header checksum
[  691.730169][ T6232] Bluetooth: (null): Invalid header checksum
[  691.835901][ T6232] Bluetooth: (null): Invalid header checksum
[  691.925404][ T6237] Bluetooth: (null): Invalid header checksum
[  692.043496][ T6230] Bluetooth: (null): Invalid header checksum
[  692.283135][T12729] loop4: detected capacity change from 0 to 4096
[  692.350447][T12729] EXT4-fs (loop4): Test dummy encryption mode enabled
[  692.403642][T12729] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  693.526013][T10247] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  694.414303][T12740] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1687'.
[  694.475488][T12740] bridge0: entered promiscuous mode
[  694.501616][T12740] macvtap1: entered promiscuous mode
[  694.722749][T12740] macvtap1: entered allmulticast mode
[  694.740675][T12740] bridge0: entered allmulticast mode
[  695.403833][T12744] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1687'.
[  695.428679][T12744] bridge0: left allmulticast mode
[  695.447023][T12744] bridge0: left promiscuous mode
[  695.460470][T12744] macvtap1: left promiscuous mode
[  695.475938][T12744] macvtap1: left allmulticast mode
[  695.915737][T12758] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  696.270714][T12758] loop1: detected capacity change from 0 to 128
[  696.365289][T12758] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (30846!=65535)
[  696.384116][T12758] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 ro without journal. Quota mode: none.
[  696.587024][ T5776] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  697.876627][T12778] hub 8-0:1.0: USB hub found
[  697.881612][T12778] hub 8-0:1.0: 1 port detected
[  698.856360][T12782] netlink: 84 bytes leftover after parsing attributes in process `syz.0.1696'.
[  698.874743][T12782] netlink: 'syz.0.1696': attribute type 1 has an invalid length.
[  705.105070][T12828] loop4: detected capacity change from 0 to 128
[  706.553473][T12839] sch_tbf: burst 0 is lower than device lo mtu (18) !
[  708.542388][T12850] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1713'.
[  709.871999][T12857] netlink: 'syz.0.1717': attribute type 11 has an invalid length.
[  713.796119][T12875] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  713.803439][T12875] IPv6: NLM_F_CREATE should be set when creating new route
[  713.904388][T12879] atomic_op ffff88803026f998 conn xmit_atomic 0000000000000000
[  718.227263][ T1291] ieee802154 phy0 wpan0: encryption failed: -22
[  718.233874][ T1291] ieee802154 phy1 wpan1: encryption failed: -22
[  718.406626][T12925] ip6tnl0: Caught tx_queue_len zero misconfig
[  721.449679][T11660] Bluetooth: hci3: command 0x0406 tx timeout
[  722.671523][T12959] overlayfs: failed to clone lowerpath
[  722.705468][T12961] overlayfs: failed to clone lowerpath
[  724.860370][T12972] hub 8-0:1.0: USB hub found
[  724.865297][T12972] hub 8-0:1.0: 1 port detected
[  725.371119][ T6220] tipc: Disabling bearer <udp:syz0>
[  725.408629][ T6220] tipc: Left network mode
[  728.905036][ T6220] bond1: (slave ip6gretap2): Releasing active interface
[  730.498113][T13009] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1751'.
[  730.507752][T13009] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1751'.
[  730.519867][T13009] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  730.529264][T13009] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  730.537967][T13009] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  730.546657][T13009] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  730.557285][T13010] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1751'.
[  730.566147][T13010] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1751'.
[  731.104344][T13017] ªªªªªª: renamed from vlan0 (while UP)
[  731.110201][ T5910] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  731.315513][ T5910] usb 5-1: Using ep0 maxpacket: 8
[  731.505391][ T5910] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  731.524591][ T5910] usb 5-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  731.545063][ T5910] usb 5-1: New USB device found, idVendor=0582, idProduct=0025, bcdDevice= 0.40
[  731.564607][ T5910] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  732.031874][ T5910] usb 5-1: Product: syz
[  732.037298][ T5910] usb 5-1: Manufacturer: syz
[  732.047725][ T5910] usb 5-1: SerialNumber: syz
[  732.217424][ T6220] hsr_slave_0: left promiscuous mode
[  732.226070][ T6220] hsr_slave_1: left promiscuous mode
[  732.234076][ T6220] batman_adv: batadv0: Removing interface: batadv_slave_0
[  732.441320][ T6220] batman_adv: batadv0: Removing interface: batadv_slave_1
[  732.470552][ T6220] bridge_slave_0: left allmulticast mode
[  732.487383][ T6220] bridge_slave_0: left promiscuous mode
[  732.493133][ T6220] bridge0: port 1(bridge_slave_0) entered disabled state
[  732.586395][ T5910] snd-usb-audio: probe of 5-1:1.0 failed with error -22
[  733.781479][ T5910] snd-usb-audio: probe of 5-1:1.1 failed with error -22
[  734.375804][T13040] overlayfs: failed to clone lowerpath
[  734.381486][T13039] overlayfs: failed to clone lowerpath
[  734.835738][ T5910] usb 5-1: USB disconnect, device number 6
[  734.877384][T12446] udevd[12446]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.1/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  735.850971][ T5778] Bluetooth: hci3: unexpected Set CIG Parameters response data
[  735.861203][ T5778] Bluetooth: hci3: unexpected event for opcode 0x2062
[  737.013582][ T6220] bond3 (unregistering): Released all slaves
[  737.795149][ T6220] bond1 (unregistering): Released all slaves
[  738.910826][T13075] Non-string source
[  738.915587][ T5778] Bluetooth: hci3: command 0x0406 tx timeout
[  739.273992][ T6220] team0 (unregistering): Port device team_slave_1 removed
[  739.336208][ T6220] team0 (unregistering): Port device team_slave_0 removed
[  739.398091][ T6220] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  739.470525][ T6220] bond0 (unregistering): (slave bridge_slave_1): Releasing backup interface
[  739.942189][ T6220] bond0 (unregistering): Released all slaves
[  740.258261][ T5778] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[  740.268947][ T5778] Bluetooth: hci3: Injecting HCI hardware error event
[  740.279600][ T5088] Bluetooth: hci3: hardware error 0x00
[  741.291875][T13093] netlink: 'syz.4.1770': attribute type 2 has an invalid length.
[  741.948730][ T6220] IPVS: stop unused estimator thread 0...
[  741.988088][T13099] lo: Caught tx_queue_len zero misconfig
[  742.004767][T13099] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  744.082437][ T5088] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  744.740117][   T27] audit: type=1326 audit(1781732827.983:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13116 comm="syz.4.1778" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e1219ce59 code=0x7ffc0000
[  744.811543][   T27] audit: type=1326 audit(1781732828.011:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13116 comm="syz.4.1778" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e1219ce59 code=0x7ffc0000
[  744.950372][   T27] audit: type=1326 audit(1781732828.011:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13116 comm="syz.4.1778" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f1e1219ce59 code=0x7ffc0000
[  744.974858][   T27] audit: type=1326 audit(1781732828.011:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13116 comm="syz.4.1778" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e1219ce59 code=0x7ffc0000
[  745.000192][   T27] audit: type=1326 audit(1781732828.011:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13116 comm="syz.4.1778" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e1219ce59 code=0x7ffc0000
[  745.026617][   T27] audit: type=1326 audit(1781732828.020:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13116 comm="syz.4.1778" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f1e1219ce59 code=0x7ffc0000
[  745.054730][   T27] audit: type=1326 audit(1781732828.020:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13116 comm="syz.4.1778" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e1219ce59 code=0x7ffc0000
[  745.080573][   T27] audit: type=1326 audit(1781732828.020:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13116 comm="syz.4.1778" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e1219ce59 code=0x7ffc0000
[  745.107272][   T27] audit: type=1326 audit(1781732828.020:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13116 comm="syz.4.1778" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f1e1219ce59 code=0x7ffc0000
[  745.133164][   T27] audit: type=1326 audit(1781732828.020:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13116 comm="syz.4.1778" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e1219ce59 code=0x7ffc0000
[  745.499901][T13122] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  745.508756][T13122] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  745.517575][T13122] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  745.526300][T13122] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  745.551846][T13122] netdevsim netdevsim0 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  745.560814][T13122] netdevsim netdevsim0 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  745.569703][T13122] netdevsim netdevsim0 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  745.578658][T13122] netdevsim netdevsim0 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  750.117068][T13152] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1784'.
[  751.075797][T13166] IPVS: sync thread started: state = MASTER, mcast_ifn = veth1_to_bridge, syncid = 32, id = 0
[  754.395426][T13194] No such timeout policy "syz1"
[  756.353774][T13201] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  756.361091][T13201] IPv6: NLM_F_CREATE should be set when creating new route
[  762.023821][T11128] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  762.043622][T13234] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1805'.
[  762.283827][T11128] usb 5-1: Using ep0 maxpacket: 16
[  762.296695][T11128] usb 5-1: config 0 interface 0 altsetting 9 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  762.309022][T11128] usb 5-1: config 0 interface 0 has no altsetting 0
[  763.345129][T11128] usb 5-1: New USB device found, idVendor=1e71, idProduct=2009, bcdDevice= 0.00
[  763.443121][T11128] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  764.181374][T13245] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1808'.
[  764.263964][T11128] usb 5-1: config 0 descriptor??
[  764.315964][T11128] usb 5-1: can't set config #0, error -71
[  764.352234][T11128] usb 5-1: USB disconnect, device number 7
[  766.580741][T13260] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1811'.
[  766.619515][T13260] netlink: set zone limit has 8 unknown bytes
[  774.178630][T13311] binder_alloc: 13305: binder_alloc_buf, no vma
[  778.258460][T13348] mmap: syz.1.1829 (13348): VmData 176136192 exceed data ulimit 33554432. Update limits or use boot option ignore_rlimit_data.
[  781.497139][T13371] hub 8-0:1.0: USB hub found
[  781.502420][T13371] hub 8-0:1.0: 1 port detected
[  782.368893][T13378] netlink: 'syz.0.1837': attribute type 2 has an invalid length.
[  783.274514][T13375] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[  784.911892][ T1291] ieee802154 phy0 wpan0: encryption failed: -22
[  784.918241][ T1291] ieee802154 phy1 wpan1: encryption failed: -22
[  786.262193][T13392] bond2: entered promiscuous mode
[  786.271578][T13401] loop4: detected capacity change from 0 to 2048
[  786.282428][T13392] 8021q: adding VLAN 0 to HW filter on device bond2
[  786.298546][T13401] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  786.322067][T13401] ext4 filesystem being mounted at /157/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  786.630220][T13401] EXT4-fs error (device loop4): ext4_validate_block_bitmap:439: comm syz.4.1843: bg 0: block 345: padding at end of block bitmap is not set
[  786.645004][T13401] EXT4-fs (loop4): Remounting filesystem read-only
[  786.651638][T13401] EXT4-fs warning (device loop4): ext4_xattr_inode_lookup_create:1609: inode #18: comm syz.4.1843: cleanup dec ref error -117
[  786.863906][T10247] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  786.988838][T13410] input: syz1 as /devices/virtual/input/input13
[  786.995888][T13410] input: failed to attach handler leds to device input13, error: -6
[  788.221204][T13422] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  788.230329][T13422] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  788.239245][T13422] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  788.248271][T13422] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  791.013903][T13433] xt_connbytes: Forcing CT accounting to be enabled
[  791.456679][T13422] netdevsim netdevsim4 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  791.465604][T13422] netdevsim netdevsim4 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  791.474444][T13422] netdevsim netdevsim4 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  791.483635][T13422] netdevsim netdevsim4 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  793.959007][   T27] kauditd_printk_skb: 30 callbacks suppressed
[  793.959021][   T27] audit: type=1326 audit(1781732873.368:208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13462 comm="syz.2.1857" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3371d9ce59 code=0x7ffc0000
[  793.990061][   T27] audit: type=1326 audit(1781732873.368:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13462 comm="syz.2.1857" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3371d9ce59 code=0x7ffc0000
[  794.021768][   T27] audit: type=1326 audit(1781732873.368:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13462 comm="syz.2.1857" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3371d9ce59 code=0x7ffc0000
[  794.067538][   T27] audit: type=1326 audit(1781732873.368:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13462 comm="syz.2.1857" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3371d9ce59 code=0x7ffc0000
[  794.331468][   T27] audit: type=1326 audit(1781732873.368:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13462 comm="syz.2.1857" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f3371d9ce59 code=0x7ffc0000
[  794.356607][   T27] audit: type=1326 audit(1781732873.368:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13462 comm="syz.2.1857" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f3371d9cbc2 code=0x7ffc0000
[  794.629446][   T27] audit: type=1326 audit(1781732873.377:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13462 comm="syz.2.1857" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f3371d5d68e code=0x7ffc0000
[  794.751241][   T27] audit: type=1326 audit(1781732873.377:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13462 comm="syz.2.1857" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f3371d9cc87 code=0x7ffc0000
[  794.782765][T13475] binder: 13472:13475 ioctl 4018620d 0 returned -22
[  795.675741][   T27] audit: type=1326 audit(1781732873.377:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13462 comm="syz.2.1857" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f3371d5d68e code=0x7ffc0000
[  795.885370][   T27] audit: type=1326 audit(1781732873.377:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13462 comm="syz.2.1857" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f3371d5d68e code=0x7ffc0000
[  799.681500][ T5088] Bluetooth: hci1: unexpected event for opcode 0x0c23
[  799.862451][T13519] loop4: detected capacity change from 0 to 256
[  799.915434][T13519] FAT-fs (loop4): Directory bread(block 64) failed
[  799.937730][T13519] FAT-fs (loop4): Directory bread(block 65) failed
[  799.944366][T13519] FAT-fs (loop4): Directory bread(block 66) failed
[  799.965626][T13519] FAT-fs (loop4): Directory bread(block 67) failed
[  799.972385][T13519] FAT-fs (loop4): Directory bread(block 68) failed
[  799.982548][T13519] FAT-fs (loop4): Directory bread(block 69) failed
[  799.989397][T13519] FAT-fs (loop4): Directory bread(block 70) failed
[  799.996102][T13519] FAT-fs (loop4): Directory bread(block 71) failed
[  800.007090][T13519] FAT-fs (loop4): Directory bread(block 72) failed
[  800.017367][T13519] FAT-fs (loop4): Directory bread(block 73) failed
[  800.053511][T13519] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  805.664722][T13567] fuse: Unknown parameter '0x0000000000000007'
[  807.375360][T13578] loop4: detected capacity change from 0 to 164
[  807.436246][T13578] rock: corrupted directory entry. extent=8388636 out of volume (nzones=41)
[  807.692423][T13592] loop4: detected capacity change from 0 to 512
[  807.836320][T13592] EXT4-fs (loop4): Test dummy encryption mode enabled
[  808.186963][T13592] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  808.327910][T13592] EXT4-fs error (device loop4): ext4_orphan_get:1430: comm syz.4.1892: bad orphan inode 131083
[  808.459164][T13592] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  808.810926][T13592] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  810.355452][T13622] afs: Unknown parameter 'rootcontext'
[  812.189464][ T5088] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[  812.200105][ T5088] Bluetooth: hci2: Injecting HCI hardware error event
[  812.210258][ T5778] Bluetooth: hci2: hardware error 0x00
[  812.316270][ T5928] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  812.550226][ T5928] usb 5-1: config 0 has an invalid interface number: 2 but max is 0
[  812.570382][ T5928] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  812.584390][ T5928] usb 5-1: config 0 has no interface number 0
[  812.591603][ T5928] usb 5-1: config 0 interface 2 has no altsetting 0
[  812.612250][ T5928] usb 5-1: New USB device found, idVendor=10fd, idProduct=1513, bcdDevice=7e.ce
[  812.632650][ T5928] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  812.643771][ T5928] usb 5-1: Product: syz
[  812.647965][ T5928] usb 5-1: Manufacturer: syz
[  812.654704][ T5928] usb 5-1: SerialNumber: syz
[  812.676203][ T5928] usb 5-1: config 0 descriptor??
[  814.948498][ T5778] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  815.009673][T11128] usb 5-1: USB disconnect, device number 8
[  815.037942][T11128] dvb-usb: generic DVB-USB module successfully deinitialized and disconnected.
[  815.293667][T13669] IPv6: sit1: Disabled Multicast RS
[  817.893972][T13687] binder: 13684:13687 ioctl 4018620d 0 returned -22
[  818.736571][T13692] bridge1: entered promiscuous mode
[  818.750383][T13692] bridge1: entered allmulticast mode
[  820.287733][T13735] genirq: Flags mismatch irq 4. 00000000 (aio_iiro_16) vs. 00000000 (ttyS0)
[  821.259941][T13745] bond0: option active_slave: mode dependency failed, not supported in mode balance-rr(0)
[  821.539297][T13743] loop4: detected capacity change from 0 to 32768
[  821.586014][T13743] XFS (loop4): Mounting V5 Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  821.650059][T13743] XFS (loop4): Ending clean mount
[  822.415906][T10247] XFS (loop4): Unmounting Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  822.968473][T13782] comedi comedi0: 8255: I/O port conflict (0x2004003,4)
[  822.987869][T13782] comedi comedi0: 8255: I/O port conflict (0x4,4)
[  822.994355][T13782] comedi comedi0: 8255: I/O port conflict (0x7fffffff,4)
[  823.018464][T13782] comedi comedi0: 8255: I/O port conflict (0x8,4)
[  823.034718][T13782] comedi comedi0: 8255: I/O port conflict (0x7,4)
[  823.050579][T13782] comedi comedi0: 8255: I/O port conflict (0xf1,4)
[  823.071895][T13782] comedi comedi0: 8255: I/O port conflict (0x8,4)
[  823.430421][T13790] loop4: detected capacity change from 0 to 2048
[  823.815067][T13790] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  824.187454][T10247] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  830.958105][T13832] loop4: detected capacity change from 0 to 40427
[  830.966551][T13832] F2FS-fs (loop4): Invalid SB checksum offset: 0
[  831.628710][T13832] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock
[  831.644186][T13832] F2FS-fs (loop4): invalid crc value
[  831.956592][T13832] F2FS-fs (loop4): Try to recover 2th superblock, ret: 0
[  831.967049][T13832] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  832.033083][T10247] syz-executor: attempt to access beyond end of device
[  832.033083][T10247] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  832.058900][T10247] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  833.097757][T13878] macsec1: entered promiscuous mode
[  833.135234][T13878] bridge0: entered promiscuous mode
[  834.279836][T13890] loop4: detected capacity change from 0 to 512
[  834.316355][T13890] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  834.357399][T13890] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  834.407226][T13890] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2855: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  834.457347][T13890] EXT4-fs (loop4): 1 truncate cleaned up
[  834.475518][T13890] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  834.555917][T13898] netlink: 136 bytes leftover after parsing attributes in process `syz.1.1996'.
[  834.647138][T10247] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  834.983493][T13907] tipc: Started in network mode
[  834.996098][T13907] tipc: Node identity 00002d003a2d003a0040ffffe0000001, cluster identity 4711
[  835.010150][T13907] tipc: Enabling of bearer <udp:ÿÿÿÿ> rejected, failed to enable media
[  836.651402][T13928] kvm: kvm [13927]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0xc0010001) = 0x1
[  839.808345][T13982] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2029'.
[  840.836074][T13992] loop4: detected capacity change from 0 to 2048
[  840.887977][T13992] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  840.907141][T13992] ext4 filesystem being mounted at /198/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  841.258792][T14003] EXT4-fs error (device loop4): ext4_validate_block_bitmap:439: comm syz.4.2033: bg 0: block 345: padding at end of block bitmap is not set
[  841.276072][T14003] EXT4-fs (loop4): Remounting filesystem read-only
[  841.283080][T14003] EXT4-fs warning (device loop4): ext4_xattr_inode_lookup_create:1609: inode #18: comm syz.4.2033: cleanup dec ref error -117
[  841.913557][T10247] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  842.362097][T14015] loop4: detected capacity change from 0 to 4096
[  842.397486][T14015] EXT4-fs (loop4): Test dummy encryption mode enabled
[  842.436471][T14015] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  842.484294][T14020] netlink: 164 bytes leftover after parsing attributes in process `syz.0.2039'.
[  843.678260][T10247] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  843.825401][   T27] kauditd_printk_skb: 119 callbacks suppressed
[  843.825416][   T27] audit: type=1326 audit(1781732919.454:337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14032 comm="syz.0.2044" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fca3f99ce59 code=0x0
[  843.885851][T14041] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2043'.
[  844.024011][T14047] loop4: detected capacity change from 0 to 512
[  844.073117][T14047] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  844.089871][T14047] ext4 filesystem being mounted at /202/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  844.350487][T10247] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  846.373145][T14082] loop4: detected capacity change from 0 to 40427
[  846.396753][T14082] F2FS-fs (loop4): Invalid SB checksum offset: 0
[  846.403140][T14082] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock
[  846.461406][T14082] F2FS-fs (loop4): invalid crc value
[  847.479981][T14082] F2FS-fs (loop4): Try to recover 2th superblock, ret: 0
[  847.487050][T14082] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  847.614045][T14082] syz.4.2063: attempt to access beyond end of device
[  847.614045][T14082] loop4: rw=10241, sector=45096, nr_sectors = 8 limit=40427
[  847.654467][T14082] syz.4.2063: attempt to access beyond end of device
[  847.654467][T14082] loop4: rw=2049, sector=77824, nr_sectors = 136 limit=40427
[  847.732849][T10247] syz-executor: attempt to access beyond end of device
[  847.732849][T10247] loop4: rw=2049, sector=45104, nr_sectors = 8 limit=40427
[  847.756391][T10247] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  848.241276][T14128] netlink: 164 bytes leftover after parsing attributes in process `syz.2.2079'.
[  848.254423][T14128] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2079'.
[  849.613951][   T27] audit: type=1326 audit(1781732924.809:338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14142 comm="syz.4.2085" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e1219ce59 code=0x7ffc0000
[  849.742995][   T27] audit: type=1326 audit(1781732924.882:339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14142 comm="syz.4.2085" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e1219ce59 code=0x7ffc0000
[  849.798094][   T27] audit: type=1326 audit(1781732924.882:340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14142 comm="syz.4.2085" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e1219ce59 code=0x7ffc0000
[  849.903257][   T27] audit: type=1326 audit(1781732924.919:341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14142 comm="syz.4.2085" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f1e1219ce59 code=0x7ffc0000
[  849.927354][    C0] vkms_vblank_simulate: vblank timer overrun
[  849.989472][   T27] audit: type=1326 audit(1781732924.919:342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14142 comm="syz.4.2085" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e1219ce59 code=0x7ffc0000
[  850.013634][    C0] vkms_vblank_simulate: vblank timer overrun
[  850.535987][   T27] audit: type=1326 audit(1781732924.919:343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14142 comm="syz.4.2085" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e1219ce59 code=0x7ffc0000
[  850.582671][   T27] audit: type=1326 audit(1781732924.929:344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14142 comm="syz.4.2085" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e1219ce59 code=0x7ffc0000
[  850.823515][   T27] audit: type=1326 audit(1781732924.929:345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14142 comm="syz.4.2085" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e1219ce59 code=0x7ffc0000
[  850.884106][   T27] audit: type=1326 audit(1781732924.929:346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14142 comm="syz.4.2085" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f1e1219ce59 code=0x7ffc0000
[  850.968464][   T27] audit: type=1326 audit(1781732924.929:347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14142 comm="syz.4.2085" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e1219ce59 code=0x7ffc0000
[  851.116594][T14165] 9pnet_fd: Insufficient options for proto=fd
[  851.241813][ T1291] ieee802154 phy0 wpan0: encryption failed: -22
[  851.248402][ T1291] ieee802154 phy1 wpan1: encryption failed: -22
[  851.270563][T14171] kvm: user requested TSC rate below hardware speed
[  851.293499][T14171] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (128 ns). Using initial count to start timer.
[  853.024445][T14222] input: syz0 as /devices/virtual/input/input14
[  856.445298][T11128] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  856.710123][T11128] usb 1-1: unable to get BOS descriptor or descriptor too short
[  856.739405][T11128] usb 1-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 64, changing to 7
[  856.835222][T11128] usb 1-1: New USB device found, idVendor=0582, idProduct=004c, bcdDevice= 0.40
[  856.870130][T11128] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  856.914003][T11128] usb 1-1: Product: syz
[  856.918278][T11128] usb 1-1: Manufacturer: syz
[  856.968346][T11128] usb 1-1: SerialNumber: syz
[  857.035700][T14271] fuse: Bad value for 'fd'
[  857.168403][T14278] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[  857.223970][T11128] usb 1-1: 1:1 : UAC_AS_GENERAL descriptor not found
[  857.592180][T14289] overlayfs: failed to clone upperpath
[  858.477911][T11128] usb 1-1: failed to enable PITCH for EP 0x82
[  858.484677][T11128] usb 1-1: uac_clock_source_is_valid(): cannot get clock validity for id 0
[  858.493496][T11128] usb 1-1: clock source 0 is not valid, cannot use
[  858.500978][T11128] usb 1-1: 2:1: cannot get freq (v2/v3): err -71
[  858.508451][T11128] usb 1-1: uac_clock_source_is_valid(): cannot get clock validity for id 0
[  858.647611][T11128] usb 1-1: USB disconnect, device number 6
[  858.885609][T14308] udevd[14308]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  861.099541][T14344] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2163'.
[  861.205491][T14346] fuse: Bad value for 'fd'
[  861.634359][T14361] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2167'.
[  861.665407][T14361] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2167'.
[  861.715167][T14361] erspan0: entered promiscuous mode
[  861.730351][T14361] gretap0: entered promiscuous mode
[  861.742612][T14363] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2167'.
[  861.751933][T14363] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2167'.
[  862.528401][T14369] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2170'.
[  863.742495][T14378] syz.0.2174 (14378): drop_caches: 2
[  864.364877][T14404] xt_hashlimit: size too large, truncated to 1048576
[  864.705910][T14419] fuse: Bad value for 'fd'
[  865.207886][T14425] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2190'.
[  865.544021][T10257] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  865.750270][T10257] usb 1-1: Using ep0 maxpacket: 8
[  865.988365][T10257] usb 1-1: unable to get BOS descriptor or descriptor too short
[  866.021273][T10257] usb 1-1: unable to read config index 0 descriptor/start: -71
[  866.036186][T10257] usb 1-1: can't read configurations, error -71
[  872.821569][T14547] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2232'.
[  873.028652][T14551] fuse: Bad value for 'fd'
[  877.476736][T14614] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2250'.
[  882.073571][ T5761] usb 1-1: new full-speed USB device number 9 using dummy_hcd
[  882.457089][ T5761] usb 1-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  882.474503][ T5761] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  882.509589][ T5761] usb 1-1: Product: syz
[  882.518100][ T5761] usb 1-1: Manufacturer: syz
[  882.522795][ T5761] usb 1-1: SerialNumber: syz
[  882.551796][ T5761] usb 1-1: config 0 descriptor??
[  882.653227][T14694] overlayfs: failed to resolve './file0': -2
[  882.809190][ T5761] usb 1-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  884.905244][ T5761] dvb_usb_rtl28xxu: probe of 1-1:0.0 failed with error -71
[  884.927507][ T5761] usb 1-1: USB disconnect, device number 9
[  887.366615][T14738] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2290'.
[  888.217808][T14768] overlayfs: failed to clone upperpath
[  888.571390][T14774] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2302'.
[  888.653182][T14774] bridge2: port 1(dummy0) entered blocking state
[  888.669863][T14774] bridge2: port 1(dummy0) entered disabled state
[  888.684268][T14774] dummy0: entered allmulticast mode
[  888.691157][T14774] dummy0: entered promiscuous mode
[  888.718788][T14774] netlink: 'syz.1.2302': attribute type 10 has an invalid length.
[  888.733554][T14774] netlink: 40 bytes leftover after parsing attributes in process `syz.1.2302'.
[  889.332091][T14774] bridge2: port 1(dummy0) entered blocking state
[  889.338670][T14774] bridge2: port 1(dummy0) entered forwarding state
[  889.364116][T14774] dummy0: left allmulticast mode
[  889.379981][T14774] bridge2: port 1(dummy0) entered disabled state
[  889.595852][T14788] netlink: 63 bytes leftover after parsing attributes in process `syz.4.2305'.
[  890.753208][T14804] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2313'.
[  890.833196][T14806] kvm: pic: non byte write
[  892.095878][T14831] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  893.601623][T14859] Unknown status report in ack skb
[  893.944944][T14871] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2337'.
[  910.522273][    C0] ------------[ cut here ]------------
[  910.528117][    C0] WARNING: CPU: 0 PID: 14907 at net/mac80211/tx.c:5033 __ieee80211_beacon_get+0x1233/0x1600
[  910.538735][    C0] Modules linked in:
[  910.543025][    C0] CPU: 0 PID: 14907 Comm: syz.2.2345 Not tainted syzkaller #0
[  910.550828][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  910.561199][    C0] RIP: 0010:__ieee80211_beacon_get+0x1233/0x1600
[  910.567835][    C0] Code: 24 4c 89 e7 e8 ae a6 be f7 45 31 f6 4c 8b bc 24 a0 00 00 00 e9 7a fe ff ff e8 b9 db 80 f7 0f 0b e9 f6 f7 ff ff e8 ad db 80 f7 <0f> 0b e9 48 fb ff ff e8 a1 db 80 f7 48 c7 c7 a0 d0 64 8e 4c 89 e6
[  910.588046][    C0] RSP: 0018:ffffc90000007a18 EFLAGS: 00010246
[  910.594439][    C0] RAX: ffffffff8a064fe3 RBX: ffffffff8a063de6 RCX: ffff888021130000
[  910.602690][    C0] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000
[  910.610910][    C0] RBP: 0000000000000000 R08: ffff888021130000 R09: 0000000000000003
[  910.619170][    C0] R10: 0000000000000007 R11: 0000000000000100 R12: ffff88805bca6440
[  910.627425][    C0] R13: dffffc0000000000 R14: ffff88805bca6930 R15: ffff8880252fb424
[  910.635686][    C0] FS:  00007f3372ca36c0(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[  910.644901][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  910.651762][    C0] CR2: 0000200000c1c030 CR3: 000000002dda7000 CR4: 00000000003506f0
[  910.660053][    C0] Call Trace:
[  910.663570][    C0]  <IRQ>
[  910.666653][    C0]  ? __ieee80211_beacon_get+0x36/0x1600
[  910.672542][    C0]  ieee80211_beacon_get_tim+0xbf/0x580
[  910.678247][    C0]  ? ieee80211_beacon_get_template_ema_list+0x90/0x90
[  910.685309][    C0]  mac80211_hwsim_beacon_tx+0x3c7/0x780
[  910.691202][    C0]  __iterate_interfaces+0x243/0x500
[  910.696820][    C0]  ? mac80211_hwsim_vendor_cmd_test+0x2f0/0x2f0
[  910.703405][    C0]  ? ieee80211_iterate_active_interfaces_atomic+0x2a/0x180
[  910.710912][    C0]  ? mac80211_hwsim_vendor_cmd_test+0x2f0/0x2f0
[  910.717479][    C0]  ieee80211_iterate_active_interfaces_atomic+0xdb/0x180
[  910.724778][    C0]  mac80211_hwsim_beacon+0xbb/0x1b0
[  910.730222][    C0]  __hrtimer_run_queues+0x520/0xc40
[  910.735692][    C0]  ? ktime_get_update_offsets_now+0x99/0x3f0
[  910.741986][    C0]  ? hw_scan_work+0xf60/0xf60
[  910.746935][    C0]  ? hrtimer_interrupt+0x9c0/0x9c0
[  910.752255][    C0]  ? ktime_get_update_offsets_now+0x3d2/0x3f0
[  910.758659][    C0]  hrtimer_run_softirq+0x187/0x2b0
[  910.764058][    C0]  handle_softirqs+0x280/0x820
[  910.769067][    C0]  ? __irq_exit_rcu+0xd3/0x190
[  910.774076][    C0]  ? do_softirq+0x1a0/0x1a0
[  910.778800][    C0]  ? irqtime_account_irq+0xb6/0x1c0
[  910.784252][    C0]  __irq_exit_rcu+0xd3/0x190
[  910.789100][    C0]  ? irq_exit_rcu+0x20/0x20
[  910.793849][    C0]  irq_exit_rcu+0x9/0x20
[  910.798319][    C0]  sysvec_apic_timer_interrupt+0xa4/0xc0
[  910.804325][    C0]  </IRQ>
[  910.807395][    C0]  <TASK>
[  910.810569][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  910.816895][    C0] RIP: 0010:finish_task_switch+0x26a/0x8f0
[  910.822988][    C0] Code: 0f 84 33 01 00 00 48 85 db 0f 85 52 01 00 00 e9 de 04 00 00 4c 8b 75 d0 4c 89 e7 e8 e0 94 34 09 e8 1b 2f 30 00 fb 4c 8b 65 c0 <49> 8d bc 24 f8 15 00 00 48 89 f8 48 c1 e8 03 42 0f b6 04 28 84 c0
[  910.843069][    C0] RSP: 0018:ffffc9000b7671f8 EFLAGS: 00000282
[  910.849347][    C0] RAX: 4e1019125a3a6c00 RBX: 0000000000000000 RCX: 4e1019125a3a6c00
[  910.857611][    C0] RDX: dffffc0000000000 RSI: ffffffff8acacbe0 RDI: ffffffff8b1c9c20
[  910.865857][    C0] RBP: ffffc9000b767250 R08: ffffffff911cd5af R09: 1ffffffff2239ab5
[  910.874090][    C0] R10: dffffc0000000000 R11: fffffbfff2239ab6 R12: ffff888021130000
[  910.882358][    C0] R13: dffffc0000000000 R14: ffff88802557da00 R15: ffff8880b8e3cb48
[  910.890630][    C0]  ? finish_task_switch+0x265/0x8f0
[  910.896184][    C0]  __schedule+0x155b/0x45a0
[  910.901067][    C0]  ? asan.module_dtor+0x20/0x20
[  910.906166][    C0]  ? do_raw_spin_unlock+0x121/0x230
[  910.911625][    C0]  ? preempt_schedule+0xc0/0xd0
[  910.916762][    C0]  preempt_schedule_common+0x82/0xc0
[  910.922316][    C0]  preempt_schedule+0xc0/0xd0
[  910.927178][    C0]  ? schedule_preempt_disabled+0x20/0x20
[  910.933052][    C0]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[  910.939282][    C0]  ? lock_chain_count+0x20/0x20
[  910.944407][    C0]  preempt_schedule_thunk+0x1a/0x30
[  910.949890][    C0]  _raw_spin_unlock_irqrestore+0x111/0x120
[  910.955972][    C0]  ? _raw_spin_unlock+0x40/0x40
[  910.961025][    C0]  ? __wake_up_common+0x2a4/0x4e0
[  910.966365][    C0]  __wake_up_sync_key+0x12c/0x1a0
[  910.971632][    C0]  ? __wake_up_locked_key_bookmark+0x20/0x20
[  910.977890][    C0]  ? sock_load_diag_module+0x140/0x140
[  910.983713][    C0]  __unix_dgram_recvmsg+0x4b8/0xd90
[  910.989320][    C0]  ? unix_unhash+0x10/0x10
[  910.994026][    C0]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  911.000466][    C0]  ? mark_lock+0x94/0x320
[  911.005025][    C0]  ? unix_dgram_recvmsg+0xad/0xd0
[  911.010318][    C0]  ? unix_dgram_sendmsg+0x16d0/0x16d0
[  911.015935][    C0]  sock_recvmsg_nosec+0x82/0xd0
[  911.021037][    C0]  ____sys_recvmsg+0x4e8/0x5e0
[  911.026040][    C0]  ? __sys_recvmsg_sock+0x50/0x50
[  911.031381][    C0]  ? import_iovec+0x73/0xa0
[  911.036213][    C0]  ___sys_recvmsg+0x216/0x590
[  911.041157][    C0]  ? __sys_recvmsg+0x2a0/0x2a0
[  911.046277][    C0]  ? __lock_acquire+0x7d40/0x7d40
[  911.051527][    C0]  ? __might_fault+0x9c/0x120
[  911.056520][    C0]  ? __might_fault+0xc6/0x120
[  911.061408][    C0]  ? __might_fault+0xaa/0x120
[  911.066325][    C0]  do_recvmmsg+0x39a/0x870
[  911.070991][    C0]  ? __sys_recvmmsg+0x290/0x290
[  911.076083][    C0]  ? asm_sysvec_call_function_single+0x1a/0x20
[  911.082536][    C0]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[  911.088683][    C0]  __x64_sys_recvmmsg+0x199/0x250
[  911.093990][    C0]  ? do_recvmmsg+0x870/0x870
[  911.098827][    C0]  ? lockdep_hardirqs_on+0x98/0x150
[  911.104304][    C0]  do_syscall_64+0x55/0xb0
[  911.108934][    C0]  ? clear_bhb_loop+0x40/0x90
[  911.113893][    C0]  ? clear_bhb_loop+0x40/0x90
[  911.118752][    C0]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  911.124938][    C0] RIP: 0033:0x7f3371d9ce59
[  911.129540][    C0] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  911.149653][    C0] RSP: 002b:00007f3372ca3028 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  911.158372][    C0] RAX: ffffffffffffffda RBX: 00007f3372016090 RCX: 00007f3371d9ce59
[  911.166604][    C0] RDX: 0000000004000087 RSI: 00002000000000c0 RDI: 0000000000000003
[  911.174872][    C0] RBP: 00007f3371e32d6f R08: 0000000000000000 R09: 0000000000000000
[  911.183095][    C0] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  911.191410][    C0] R13: 00007f3372016128 R14: 00007f3372016090 R15: 00007fff3591ec08
[  911.199644][    C0]  </TASK>
[  911.202849][    C0] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  911.210130][    C0] CPU: 0 PID: 14907 Comm: syz.2.2345 Not tainted syzkaller #0
[  911.217594][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  911.227664][    C0] Call Trace:
[  911.230949][    C0]  <IRQ>
[  911.233797][    C0]  dump_stack_lvl+0x18c/0x250
[  911.238495][    C0]  ? show_regs_print_info+0x20/0x20
[  911.243709][    C0]  ? load_image+0x420/0x420
[  911.248281][    C0]  panic+0x2dc/0x730
[  911.252213][    C0]  ? bpf_jit_dump+0xd0/0xd0
[  911.256755][    C0]  __warn+0x2e0/0x470
[  911.260753][    C0]  ? __ieee80211_beacon_get+0x1233/0x1600
[  911.266495][    C0]  ? __ieee80211_beacon_get+0x1233/0x1600
[  911.272234][    C0]  report_bug+0x2be/0x4f0
[  911.276608][    C0]  ? __ieee80211_beacon_get+0x1233/0x1600
[  911.282348][    C0]  ? __ieee80211_beacon_get+0x1233/0x1600
[  911.288084][    C0]  ? __ieee80211_beacon_get+0x1235/0x1600
[  911.293819][    C0]  handle_bug+0xcf/0x120
[  911.298081][    C0]  exc_invalid_op+0x1a/0x50
[  911.302603][    C0]  asm_exc_invalid_op+0x1a/0x20
[  911.307471][    C0] RIP: 0010:__ieee80211_beacon_get+0x1233/0x1600
[  911.313820][    C0] Code: 24 4c 89 e7 e8 ae a6 be f7 45 31 f6 4c 8b bc 24 a0 00 00 00 e9 7a fe ff ff e8 b9 db 80 f7 0f 0b e9 f6 f7 ff ff e8 ad db 80 f7 <0f> 0b e9 48 fb ff ff e8 a1 db 80 f7 48 c7 c7 a0 d0 64 8e 4c 89 e6
[  911.333789][    C0] RSP: 0018:ffffc90000007a18 EFLAGS: 00010246
[  911.339872][    C0] RAX: ffffffff8a064fe3 RBX: ffffffff8a063de6 RCX: ffff888021130000
[  911.347855][    C0] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000
[  911.355838][    C0] RBP: 0000000000000000 R08: ffff888021130000 R09: 0000000000000003
[  911.363816][    C0] R10: 0000000000000007 R11: 0000000000000100 R12: ffff88805bca6440
[  911.371797][    C0] R13: dffffc0000000000 R14: ffff88805bca6930 R15: ffff8880252fb424
[  911.379779][    C0]  ? __ieee80211_beacon_get+0x36/0x1600
[  911.385349][    C0]  ? __ieee80211_beacon_get+0x1233/0x1600
[  911.391093][    C0]  ? __ieee80211_beacon_get+0x1233/0x1600
[  911.396835][    C0]  ? __ieee80211_beacon_get+0x36/0x1600
[  911.402413][    C0]  ieee80211_beacon_get_tim+0xbf/0x580
[  911.407903][    C0]  ? ieee80211_beacon_get_template_ema_list+0x90/0x90
[  911.414702][    C0]  mac80211_hwsim_beacon_tx+0x3c7/0x780
[  911.420286][    C0]  __iterate_interfaces+0x243/0x500
[  911.425505][    C0]  ? mac80211_hwsim_vendor_cmd_test+0x2f0/0x2f0
[  911.431775][    C0]  ? ieee80211_iterate_active_interfaces_atomic+0x2a/0x180
[  911.438998][    C0]  ? mac80211_hwsim_vendor_cmd_test+0x2f0/0x2f0
[  911.445267][    C0]  ieee80211_iterate_active_interfaces_atomic+0xdb/0x180
[  911.452319][    C0]  mac80211_hwsim_beacon+0xbb/0x1b0
[  911.457545][    C0]  __hrtimer_run_queues+0x520/0xc40
[  911.462769][    C0]  ? ktime_get_update_offsets_now+0x99/0x3f0
[  911.468776][    C0]  ? hw_scan_work+0xf60/0xf60
[  911.473487][    C0]  ? hrtimer_interrupt+0x9c0/0x9c0
[  911.478618][    C0]  ? ktime_get_update_offsets_now+0x3d2/0x3f0
[  911.484715][    C0]  hrtimer_run_softirq+0x187/0x2b0
[  911.489852][    C0]  handle_softirqs+0x280/0x820
[  911.494646][    C0]  ? __irq_exit_rcu+0xd3/0x190
[  911.499432][    C0]  ? do_softirq+0x1a0/0x1a0
[  911.503957][    C0]  ? irqtime_account_irq+0xb6/0x1c0
[  911.509178][    C0]  __irq_exit_rcu+0xd3/0x190
[  911.513783][    C0]  ? irq_exit_rcu+0x20/0x20
[  911.518305][    C0]  irq_exit_rcu+0x9/0x20
[  911.522563][    C0]  sysvec_apic_timer_interrupt+0xa4/0xc0
[  911.528227][    C0]  </IRQ>
[  911.531163][    C0]  <TASK>
[  911.534099][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  911.540102][    C0] RIP: 0010:finish_task_switch+0x26a/0x8f0
[  911.545920][    C0] Code: 0f 84 33 01 00 00 48 85 db 0f 85 52 01 00 00 e9 de 04 00 00 4c 8b 75 d0 4c 89 e7 e8 e0 94 34 09 e8 1b 2f 30 00 fb 4c 8b 65 c0 <49> 8d bc 24 f8 15 00 00 48 89 f8 48 c1 e8 03 42 0f b6 04 28 84 c0
[  911.565541][    C0] RSP: 0018:ffffc9000b7671f8 EFLAGS: 00000282
[  911.571621][    C0] RAX: 4e1019125a3a6c00 RBX: 0000000000000000 RCX: 4e1019125a3a6c00
[  911.579605][    C0] RDX: dffffc0000000000 RSI: ffffffff8acacbe0 RDI: ffffffff8b1c9c20
[  911.587583][    C0] RBP: ffffc9000b767250 R08: ffffffff911cd5af R09: 1ffffffff2239ab5
[  911.595570][    C0] R10: dffffc0000000000 R11: fffffbfff2239ab6 R12: ffff888021130000
[  911.603551][    C0] R13: dffffc0000000000 R14: ffff88802557da00 R15: ffff8880b8e3cb48
[  911.611550][    C0]  ? finish_task_switch+0x265/0x8f0
[  911.616774][    C0]  __schedule+0x155b/0x45a0
[  911.621315][    C0]  ? asan.module_dtor+0x20/0x20
[  911.626199][    C0]  ? do_raw_spin_unlock+0x121/0x230
[  911.631435][    C0]  ? preempt_schedule+0xc0/0xd0
[  911.636300][    C0]  preempt_schedule_common+0x82/0xc0
[  911.641600][    C0]  preempt_schedule+0xc0/0xd0
[  911.646290][    C0]  ? schedule_preempt_disabled+0x20/0x20
[  911.651935][    C0]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[  911.657934][    C0]  ? lock_chain_count+0x20/0x20
[  911.662797][    C0]  preempt_schedule_thunk+0x1a/0x30
[  911.668029][    C0]  _raw_spin_unlock_irqrestore+0x111/0x120
[  911.673856][    C0]  ? _raw_spin_unlock+0x40/0x40
[  911.678723][    C0]  ? __wake_up_common+0x2a4/0x4e0
[  911.683767][    C0]  __wake_up_sync_key+0x12c/0x1a0
[  911.688809][    C0]  ? __wake_up_locked_key_bookmark+0x20/0x20
[  911.694809][    C0]  ? sock_load_diag_module+0x140/0x140
[  911.700292][    C0]  __unix_dgram_recvmsg+0x4b8/0xd90
[  911.705510][    C0]  ? unix_unhash+0x10/0x10
[  911.709952][    C0]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  911.716128][    C0]  ? mark_lock+0x94/0x320
[  911.720481][    C0]  ? unix_dgram_recvmsg+0xad/0xd0
[  911.725523][    C0]  ? unix_dgram_sendmsg+0x16d0/0x16d0
[  911.730921][    C0]  sock_recvmsg_nosec+0x82/0xd0
[  911.735793][    C0]  ____sys_recvmsg+0x4e8/0x5e0
[  911.740585][    C0]  ? __sys_recvmsg_sock+0x50/0x50
[  911.745640][    C0]  ? import_iovec+0x73/0xa0
[  911.750162][    C0]  ___sys_recvmsg+0x216/0x590
[  911.754861][    C0]  ? __sys_recvmsg+0x2a0/0x2a0
[  911.759665][    C0]  ? __lock_acquire+0x7d40/0x7d40
[  911.764713][    C0]  ? __might_fault+0x9c/0x120
[  911.769407][    C0]  ? __might_fault+0xc6/0x120
[  911.774093][    C0]  ? __might_fault+0xaa/0x120
[  911.778785][    C0]  do_recvmmsg+0x39a/0x870
[  911.783226][    C0]  ? __sys_recvmmsg+0x290/0x290
[  911.788099][    C0]  ? asm_sysvec_call_function_single+0x1a/0x20
[  911.794293][    C0]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[  911.800217][    C0]  __x64_sys_recvmmsg+0x199/0x250
[  911.805264][    C0]  ? do_recvmmsg+0x870/0x870
[  911.809874][    C0]  ? lockdep_hardirqs_on+0x98/0x150
[  911.815100][    C0]  do_syscall_64+0x55/0xb0
[  911.819532][    C0]  ? clear_bhb_loop+0x40/0x90
[  911.824220][    C0]  ? clear_bhb_loop+0x40/0x90
[  911.828904][    C0]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  911.834815][    C0] RIP: 0033:0x7f3371d9ce59
[  911.839239][    C0] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  911.858864][    C0] RSP: 002b:00007f3372ca3028 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  911.867296][    C0] RAX: ffffffffffffffda RBX: 00007f3372016090 RCX: 00007f3371d9ce59
[  911.875278][    C0] RDX: 0000000004000087 RSI: 00002000000000c0 RDI: 0000000000000003
[  911.883261][    C0] RBP: 00007f3371e32d6f R08: 0000000000000000 R09: 0000000000000000
[  911.891239][    C0] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  911.899219][    C0] R13: 00007f3372016128 R14: 00007f3372016090 R15: 00007fff3591ec08
[  911.907214][    C0]  </TASK>
[  911.910469][    C0] Kernel Offset: disabled
[  911.914830][    C0] Rebooting in 86400 seconds..