last executing test programs:

5m45.627471008s ago: executing program 32 (id=755):
openat$procfs(0xffffffffffffff9c, &(0x7f00000005c0)='/proc/stat\x00', 0x0, 0x0)
r0 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0)
writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000140)='3', 0x1}], 0x1)

3m16.629600337s ago: executing program 5 (id=1514):
r0 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x201, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x11012, r0, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/consoles\x00', 0x0, 0x0)
mremap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1000, 0x3, &(0x7f0000ffd000/0x1000)=nil)
syz_clone(0x42164000, 0x0, 0x0, 0x0, 0x0, 0x0)

3m16.014009106s ago: executing program 33 (id=1514):
r0 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x201, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x11012, r0, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/consoles\x00', 0x0, 0x0)
mremap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1000, 0x3, &(0x7f0000ffd000/0x1000)=nil)
syz_clone(0x42164000, 0x0, 0x0, 0x0, 0x0, 0x0)

3m8.976463652s ago: executing program 0 (id=1546):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x41}, 0x4000000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x9}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
sched_setaffinity(r0, 0x8, &(0x7f00000001c0)=0x9)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r1 = syz_open_dev$MSR(&(0x7f0000000180), 0xfffffffffffff998, 0x0)
timer_settime(0x0, 0x0, 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = openat$vhost_vsock(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r2, 0xaf01, 0x0)
mlock(&(0x7f00008c4000/0x3000)=nil, 0x3000)

3m6.028324527s ago: executing program 0 (id=1553):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
unlink(0x0)
r2 = msgget$private(0x0, 0x0)
msgctl$IPC_SET(r2, 0x1, &(0x7f00000001c0)={{0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1, 0x2}, 0x0, 0x0, 0x8000000000000000, 0x3ff, 0x2, 0x9, 0x3, 0x401, 0x7, 0x6})
msgctl$IPC_INFO(r2, 0x3, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x3e70, 0x0, @void, @value}, 0x28)

3m6.028121177s ago: executing program 0 (id=1554):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x38, 0x3, 0x1, 0x101, 0x0, 0x0, {0xa}, [@CTA_TUPLE_REPLY={0x18, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @dev={0xac, 0x14, 0x14, 0x36}}, {0x8, 0x2, @multicast2}}}]}, @CTA_FILTER={0xc, 0x19, 0x0, 0x1, [@CTA_FILTER_REPLY_FLAGS={0x8, 0x2, 0x2}]}]}, 0x38}}, 0x0)

3m6.027921527s ago: executing program 0 (id=1555):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x0, &(0x7f0000000280), 0x1, 0x42e, &(0x7f0000000940)="$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")
r0 = creat(&(0x7f0000000280)='./bus\x00', 0x81)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x185641, 0x0)
r1 = open(&(0x7f00000003c0)='./bus\x00', 0x84902, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x11, r1, 0x0)
write$FUSE_ATTR(r0, &(0x7f0000000440)={0x78, 0x0, 0x0, {0xfffffffffffffffc, 0x0, 0x0, {0xffffffffff7ffffe, 0x0, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc000}}}, 0x78)

3m5.905352649s ago: executing program 0 (id=1556):
r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000080)='ns/pid_for_children\x00')
setns(r0, 0x20000000)

3m4.869227195s ago: executing program 0 (id=1565):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x18, 0x8003)
syz_mount_image$udf(&(0x7f0000000c40), &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='noadinicb,nostrict,mode=00000000000000000000004,uid=forget,noadinicb,umask=00000000000000040002000,lastblock=00000000000000000013,undelete,partition=00000000000000000005,\x00'], 0x43, 0xc11, &(0x7f0000000d00)="$eJzs3V1oXOl5B/DnnSOtRto00WYTb9Jm04GUxCi18VdsBZcgZxW1AccbIit0r6LRh51h5ZGR5MabtkFtSQu9Cd2b0psimi4t5KJX3V5WabaQUAol5CK9KAiaLHvRC10ECi0bhXPmHWlky7ayXlvS7u+3zP7PnHnO+P0YnzkCvzoBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAER89nOXTp1OB90KAOBxujL5pVNnff8DwLvKVT//AwAAAAAAAAAAAADAYZeiiGORYujVzTRdPe+oX261b92eGp/Y+7DBFClqUVT15aN++szZc586f2G0m/c//u324Xh+8uqlxnOLN24uzS8vz881ptqt2cW5+X2/w8Mef6eRagAaN168NXft2nLjzMmzu16+Pfz6wJPHhi9eOHF+tFs7NT4xMdlT09f/lv/0u9xrhccTUUQzUrw5/EZqRkQtHn4sHvDZedQGq06MVJ2YGp+oOrLQarZXyhdTLVfVIho9B411x+gxzMVDGYtYLZtfNnik7N7kzeZSc2ZhvvHF5tJKa6W12E61TmvL/jSiFqMpYi0iNgbufrv+KOKjkeLlU5tpJiKK7jh8sloY/OD21B5BH/ehbGejP2KtdgTm7BAbiCKuRIqfvXY8Zssxy4/4eMQXynw14pUyPxORyg/GuYif7vE54mjqiyL+PVIsps00V50PuueVy19ufL59bbGntnteOfLfD4/TIT831aOImeqMv5ne+sUOAAAAAAAAAAAAAAAAAG+3wSji25HiT579vWpdcVTr0t93cfQ9L/x275rxZx7wPmXtyYhYre1vTW5/XjqcauV/j6Bj7Es9ivhGXv/3RwfdGAAAAAAAAAAAAAAAAAAAgHe1Il6IFF85cTytRe89xVvt642rzZmFzl1hu/f+7d4zfWtra6uROjmWczrnas61nOs5N3JGLR+fcyzndM7VnGs513Nu5IwiH59zLOd0ztWcaznXc27kjL58fM6xnNM5V3Ou5VzPuZEzDsm9ewEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA3klqUcTPI8W3vraZIkXEWMR0dHJ94KBbBwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACU6qmIk5Fi/YV69XytFnE1In6+tbXVfUTEZpkP66D7CgAAAAAAAAAAAAAAAAAAAIdWKuJjkeLp/9tMjYi4Pfz6wJPHhi9eOHF+tIgiUlnSW//85NVLjecWb9xcml9enp9rTLVbs4tz8/v94+qXW+1bt6fGJx5JZx5o8BG3f7D+3OLNl5Za17+6sufrQ/VLM8srS83ZvV+OwahFTPfuGakaPDU+UTV6odVsV4em2j0aWIsY229nAAAAAAAAAAAAAAAAAAAAODSGUhGfixQ/+a9zqbtuvK+z5v9XOs+K7dpX/mDndwEs3JFdvb8/YD/bab8NHakW3jemxicmJnt29/XfXVq2KaUinokUn3j5Q9V6+BRDe66NL+veW9bdOJfrhn+trFvdVVUfmRqfaFxZbJ+4tLCwONtcac4szDcmbzZn9/2LAwAAAAAAAAAAAAAAAAAAAOA+hlIRP4oU//P3/5G6953P6//7Os961v//VrWEvlJPu3Nbtbb/vdXa/s72+y6ODn302XvtfxTr/8s2pVTENyPF2R99qLqffnf9//QdtWXdn0WKN579SK6rPVHWNbvd6bzjtdbC/Kmy9q8jxa+/2a2NqvZ6rn16p/Z0WTsYKf5yc3ftV3PtB3Zqz5S1xyPF9/5779oP7tSeLWt/Ein+6e8a3dqhsvb3c+2xndqTs4sLcw8a1nL+vxMp/vbK76Run+85/z2//2H1jtx215zff/vtmv/hnn2reV7/NM9/8wHzfz5SfKf+kVzXGfuZ/PpT1f935v8TkeI//2137bVc+/6d2tP77dZBK+f/25Hiu3/14+0+5/nPI7szQ73z/6t9u3P7U3JA8/9Uz77h3K7ZX3Is3o2WX/r6i82FhfklGzZs2NjeOOgzE49D+f3/55Hi/48VqXsdk7//39N5tnP997/f2Pn+v3hHbjug7//39+y7mK9a+vsi6is3bvY/E1FffunrJ1o3mtfnr8+3z5w+9elPnz996vT5/ie6F3c7W/seu3eCcv5/ECl++A8/3P45Zvf1397X/0N35LYDmv+ne/u067pm30PxrlTO/99Eiqc+++Ptnzfvd/3f/fn/+Md25/bfvwOa/w/07BvO7Wr9kmMBAAAAAAAAAABwlAylIv4iUvzuH/9m6q4h2s+//5u7I7cd0L//Otazb+4xrWvY9yADABwi5fXfByPFP299f3st9+7rv/iNbm3v9d+9HIb7/wMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwFGXoog/jBRDr26m9YHyeUf9cqt96/bU+MTehw2mSFGLoqovH/XTZ86e+9T5C6PdvP/xb7cPx/OTVy81nlu8cXNpfnl5fq4x1W7NLs7N7/sdHvb4O41UA9C48eKtuWvXlhtnTp7d9fLt4dcHnjw2fPHCifOj3dqp8YmJyZ6avv63/KffJd1j/xNRxPcjxZvDb6TvDkTU4uHH4gGfnUdtsOrESNWJqfGJqiMLrWZ7pXwx1XJVLaLRc9BYd4wew1w8lLGI1bL5ZYNHyu5N3mwuNWcW5htfbC6ttFZai+1U67S27E8jajGaItYiYmPg7rfrjyK+GSlePrWZ/mUgouiOwyevTH7p1NkHt6f2CPq4D2U7G/0Ra7UjMGeH2EAU8Y+R4mevHY/vDUT0RecRH4/4QpmvRrxS5mciUvnBOBfx0z0+RxxNfVHEuUixmDbTawPl+aB7Xrn85cbn29cWe2q755Uj//3wOB3yc1M9ivhBdcbfTP/q7zUAAAAAAAAAAAAAAADAIVLEWqT4yonjqVofvL2muNW+3rjanFnoLOvrrv3rrpne2traaqROjuWczrmacy3nes6NnFHLx+ccyzmdczXnWs71nBs5o8jH5xzLOZ1zNedazvWcGzmjLx+fcyzndM7VnGs513Nu5IxDsnYPAAAAAAAAAAAAAAAAAAB4Z6lFUd3F/Vtf20xbA537S09HJ9fdD/Qd7xcBAAD//0kCdPc=")
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r1)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
syz_open_procfs$namespace(r0, &(0x7f0000000140)='ns/pid_for_children\x00')

3m4.48037997s ago: executing program 34 (id=1565):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x18, 0x8003)
syz_mount_image$udf(&(0x7f0000000c40), &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='noadinicb,nostrict,mode=00000000000000000000004,uid=forget,noadinicb,umask=00000000000000040002000,lastblock=00000000000000000013,undelete,partition=00000000000000000005,\x00'], 0x43, 0xc11, &(0x7f0000000d00)="$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")
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r1)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
syz_open_procfs$namespace(r0, &(0x7f0000000140)='ns/pid_for_children\x00')

2m58.460925301s ago: executing program 3 (id=1581):
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(0xffffffffffffffff, 0x0, 0x24008004)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e21, @multicast2}, 0x10)
mknodat$null(0xffffffffffffff9c, 0x0, 0x0, 0x103)
openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000040)=0x1)
sched_setaffinity(0x0, 0xfffffffffffffdc5, &(0x7f00000002c0)=0x800002)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
fsetxattr$trusted_overlay_opaque(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1)
setpriority(0x2, 0x0, 0x800)
r2 = dup(0xffffffffffffffff)
fanotify_mark(0xffffffffffffffff, 0x1, 0x40000039, r2, 0x0)
recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket(0x28, 0x5, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_SET_FPU(0xffffffffffffffff, 0x41a0ae8d, &(0x7f0000001d40)={'\x00', 0x4, 0x9, 0x4, 0x0, 0x3, 0x5000, 0x6000, '\x00', 0x85})

2m57.568079335s ago: executing program 3 (id=1583):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
r1 = gettid()
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
syz_usb_ep_write(r0, 0x81, 0x0, 0x0)
syz_usb_ep_write(r0, 0x81, 0x0, 0x0)

2m56.028537618s ago: executing program 3 (id=1589):
r0 = socket$inet6(0xa, 0x3, 0x5)
setsockopt$inet6_int(r0, 0x29, 0x1000000000021, &(0x7f0000000000)=0xffffffc3, 0x4)
sendmmsg(r0, &(0x7f0000001a00)=[{{&(0x7f0000000180)=@l2tp6={0xa, 0x500, 0x80000, @remote, 0x0, 0x3}, 0x80, 0x0}, 0x5b4}, {{&(0x7f0000000580)=@l2tp6={0xa, 0x0, 0x7080000, @ipv4={'\x00', '\xff\xff', @loopback}, 0x6, 0x1}, 0x80, 0x0, 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="10000000000000000100f8676ccc6661"], 0x10}}], 0x2, 0x0)

2m55.856885581s ago: executing program 3 (id=1590):
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000100)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x10400, &(0x7f0000000540)={[{@quota}]}, 0xfe, 0x253, &(0x7f0000000240)="$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")
symlink(&(0x7f0000001640)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/../file0\x00', &(0x7f0000000e40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
creat(&(0x7f0000000000)='./bus\x00', 0x0)
mount(&(0x7f0000000440)=@loop={'/dev/loop', 0x0}, &(0x7f0000000080)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000000000000006, 0x200000000000000, 0x0, 0x0, 0x5, 0x8, "ef359f413bb901527f00d1ce5d29c3ee5e5ca9000f7c41499dc2aac63a01000000800000004faa2ad9c084a003ea0000000000000000000800002000", "036c47c678082004bdbcef549ba19700e47ddfdd753abd950100002a00ffffffffffffffff00000000e8f20000000200", "b7326713181c208220000000b9000000000000000000fffffffffff2ff00", [0x1, 0x1000]})
mount$tmpfs(0x0, &(0x7f00000002c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/../file0\x00', 0x0, 0x208000, 0x0)

2m55.348013528s ago: executing program 3 (id=1592):
setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, 0x0, 0x0)
r0 = openat$kvm(0xffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
prctl$PR_SET_SECUREBITS(0x1c, 0x1d)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0xc028ae92, &(0x7f00000001c0)={0x5, 0x3})

2m53.697876073s ago: executing program 3 (id=1599):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0xc0ed0040, &(0x7f0000000000)={[{@barrier}, {@resgid={'resgid', 0x3d, 0xee00}}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x7b}}, {@noload}, {@nobarrier}, {@nodiscard}]}, 0xfe, 0x473, &(0x7f0000000940)="$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")
pipe(0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0xd}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(0xffffffffffffffff, 0x0, 0x80)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x50)
sched_setaffinity(r0, 0x8, &(0x7f00000001c0)=0x9)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
syz_open_dev$hiddev(&(0x7f0000000280), 0x3ff, 0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r1 = syz_open_dev$MSR(&(0x7f0000000180), 0xfffffffffffff998, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
openat$rfkill(0xffffffffffffff9c, 0x0, 0x0, 0x0)
write$FUSE_INIT(0xffffffffffffffff, 0x0, 0x0)
creat(&(0x7f00000002c0)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000140), 0x0)
mount$9p_fd(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240), 0x0, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd'])
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000000)=[{0x20, 0x0, 0x0, 0xfffffff9}]})
connect$bt_sco(r3, &(0x7f0000000080)={0x1f, @none}, 0x8)

2m52.827139136s ago: executing program 35 (id=1599):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0xc0ed0040, &(0x7f0000000000)={[{@barrier}, {@resgid={'resgid', 0x3d, 0xee00}}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x7b}}, {@noload}, {@nobarrier}, {@nodiscard}]}, 0xfe, 0x473, &(0x7f0000000940)="$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")
pipe(0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0xd}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(0xffffffffffffffff, 0x0, 0x80)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x50)
sched_setaffinity(r0, 0x8, &(0x7f00000001c0)=0x9)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
syz_open_dev$hiddev(&(0x7f0000000280), 0x3ff, 0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r1 = syz_open_dev$MSR(&(0x7f0000000180), 0xfffffffffffff998, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
openat$rfkill(0xffffffffffffff9c, 0x0, 0x0, 0x0)
write$FUSE_INIT(0xffffffffffffffff, 0x0, 0x0)
creat(&(0x7f00000002c0)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000140), 0x0)
mount$9p_fd(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240), 0x0, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd'])
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000000)=[{0x20, 0x0, 0x0, 0xfffffff9}]})
connect$bt_sco(r3, &(0x7f0000000080)={0x1f, @none}, 0x8)

2m2.644637448s ago: executing program 2 (id=1834):
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f00000001c0)='./file1\x00', 0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="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"], 0x1, 0x17d, &(0x7f00000004c0)="$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")
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0)
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x24000000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
pipe(&(0x7f0000000140)={<r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
socket$key(0xf, 0x3, 0x2)
splice(r1, 0x0, r2, 0x0, 0x200c, 0xe)

2m1.609108624s ago: executing program 2 (id=1838):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000300), 0xffffffffffffffff)
sendmsg$SEG6_CMD_GET_TUNSRC(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={0x14, r1, 0x1, 0x70bd27, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0xc850)

2m1.21245928s ago: executing program 2 (id=1842):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x40, &(0x7f0000000340), 0x0, 0x4f7, &(0x7f0000000540)="$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")
chdir(&(0x7f0000000240)='./file0\x00')
bind$unix(0xffffffffffffffff, 0x0, 0x0)
r0 = open(&(0x7f0000000000)='./file1\x00', 0x1c927e, 0xb4)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
ioctl$F2FS_IOC_DEFRAGMENT(r0, 0xc010f508, 0x0)

2m0.213594275s ago: executing program 2 (id=1846):
syz_mount_image$hfsplus(&(0x7f0000000500), &(0x7f0000000640)='./file0\x00', 0x200000, &(0x7f0000000680)=ANY=[@ANYBLOB="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"], 0x1, 0x5e2, &(0x7f0000000900)="$eJzs3UFvHGcZB/D/bGLHDlK6SZOmICSscgA1IrF3IxMkJEQpyEIVqsSlVyvZ1FY2aWRvkdsDCohz+xXKwZw5cEJByoEzX8GoRwQSR9+CZnbWu3E2rk1c77r9/aTZ95l5Z9555snsaGasaAN8ba28l5knKbJy7Z2tcn5nu93d2W7fH8RJziVpJHNJinLxX5J8njxKf8o3Bx0j7XOKT1durz3+5Gp/bq6eqvWLg7Y7nL1cmv1cq/a4xmu99HjDI1xIcqluYeKeDvxzbPdLfi8BgGlWJGfGLW8m5+ub9fI5oH9X3L/HPtUeTToBAAAAOAGv7GY3W7kw6TwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgNKl//7+op8YgXkgx+P3/2XpZ6vhUezLpBAAAAAAAAADgGHxnN7vZyoXB/NOi+pv/G9XM5erzG/kwm+lkI9ezldX00stGlpI0Rwaa3Vrt9TaWDrFla+yWrZM5XgAAAAAAAAD4ivp9VoZ//wcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgGlQJGf6TTVdHsTNNM4mmUsyW673KHk8iE+zJ5NOAAAAAE7AK7vZzVYuDOafFtUz/2vVc/9cPsyD9LKeXrrp5E71LqD/1N/Y2W53d7bb98vp+XF/+p8jpVGNmP67h/F7XqzWuLK3xUp+kV/nWhbybjaynt9kNb10spC3q2g1RZr124vmIM+x+f732VTe/aJcX68ymc/drFe5Xc/tfJBu7qRRHUO1zoF7zO/K6hQ/qR2yRnfqtjyiX9btyWq8YHmz6pvZq8hiXfty/YsHV+KI58n+PS2lsfcO6vKXUPPzdVvW+u2J1PxF9leiNXL2vXZwJZLF1r8frnUf3Fu7u3lteg5p1BGy2l+J9kglrp7+ShzBbF2N/lX0aFfLN6ptL2Q9v8oHuZNObmUxt7Kcm2lnOT/K8khdrxziu9Y42nftu9+vg5kkP6/b6VDW9eJIXUevdM2qb3TJsEqXjv+KdPZbdVCerG9N3RXp4r5r86ASrx5ciT8+LT83uw/ubaytPjzk/r5Xt2UFfjZVlSjPl0vlP1Y19+zZUfa9OrZvqeq7vNfXeK7vyl7fF31TZ+t7uOdHalV9V8f2tau+10f6xt3lADD1zr95fnb+X/P/mP9s/g/za/PvzL117ta5b89m5u9n/3rmz40/NX5cvJnP8tvh8z8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPD/2/zo43ur3W5nYxjMZ/8SgeCYg3P1+Tct+Qj2BxO+MAFfuhu9+w9vbH708Q/W76++33m/8+Dm0nLr5s3F5R/eunF3vdtZ7H9OOk0A4BgNb/onnQkAAAAAAAAAAAAAAPAiJ/HfiSd9jAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwFfbynuZeZIiS4vXF8v5ne12t5wG8XDNuSRFGfwtyefJo/SnNEeGK160n+LTldtrjz+5OhxrbrB+cdB2h/NMLo19Ob3seK2XHm94hAtJLtUtTNz/AgAA///N8v+s")
syz_mount_image$udf(&(0x7f0000000080), &(0x7f0000000180)='./file1\x00', 0x5000, &(0x7f00000003c0)=ANY=[], 0x11, 0xc38, &(0x7f0000002080)="$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")
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000000e00000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x31)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000680)={&(0x7f0000000000)='tlb_flush\x00', r0}, 0x10)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x100)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.stat\x00', 0x275a, 0x0)
getdents(r1, &(0x7f0000001fc0)=""/184, 0xb8)

1m59.516990666s ago: executing program 2 (id=1849):
r0 = socket(0x10, 0x803, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$unix(0x1, 0x1, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
ioctl$EXT4_IOC_CHECKPOINT(0xffffffffffffffff, 0x4004662b, 0x0)
sendmmsg$unix(r0, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=@ipv4_newrule={0x3c, 0x20, 0x1, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x12}, [@FRA_TUN_ID={0xc, 0x14, 0x1, 0x0, 0x8000000000000001}, @FRA_GENERIC_POLICY=@FRA_OIFNAME={0x14, 0x11, 'pim6reg\x00'}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4008000}, 0xc0)

1m58.838980726s ago: executing program 2 (id=1853):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_DIRTY_LOG_RING_ACQ_REL(r1, 0x4068aea3, &(0x7f0000000080)={0xdf, 0x0, 0x8000})
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)

1m58.262149694s ago: executing program 36 (id=1853):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_DIRTY_LOG_RING_ACQ_REL(r1, 0x4068aea3, &(0x7f0000000080)={0xdf, 0x0, 0x8000})
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)

1m34.813591999s ago: executing program 6 (id=1938):
syz_mount_image$vfat(&(0x7f0000001200), &(0x7f0000001240)='./file0\x00', 0x0, &(0x7f0000002480)=ANY=[@ANYRES32=0x0], 0xfe, 0x1222, &(0x7f00000024c0)="$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")
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
io_setup(0x202, &(0x7f0000000200)=<r1=>0x0)
io_submit(r1, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x4000, 0xa00}])

1m34.420740645s ago: executing program 6 (id=1943):
r0 = gettid()
process_vm_readv(r0, &(0x7f0000000f80)=[{&(0x7f0000000e40)=""/215, 0xd7}], 0x1, &(0x7f0000002280)=[{&(0x7f0000001080)=""/4096, 0x1000}], 0x1, 0x0)

1m34.072991789s ago: executing program 6 (id=1946):
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0)
mmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x9, 0x8031, 0xffffffffffffffff, 0x148a1000)
mlock2(&(0x7f0000627000/0x3000)=nil, 0x3000, 0x0)
mremap(&(0x7f0000532000/0x3000)=nil, 0x3000, 0x3000, 0x3, &(0x7f0000ffb000/0x3000)=nil)
mlock(&(0x7f0000626000/0x5000)=nil, 0x5000)

1m30.920520707s ago: executing program 6 (id=1949):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x0, &(0x7f0000000280), 0x1, 0x42e, &(0x7f0000000940)="$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")
creat(&(0x7f0000000280)='./bus\x00', 0x81)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x185641, 0x0)
r0 = open(&(0x7f00000003c0)='./bus\x00', 0x84902, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x11, r0, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f0000000380)={[{@nodioread_nolock}, {@discard}, {@grpquota}, {@minixdf}, {@resgid}, {@journal_dev={'journal_dev', 0x3d, 0x3fc}}, {@usrjquota}, {@debug}, {@usrquota}, {@min_batch_time={'min_batch_time', 0x3d, 0x8}}, {@nouid32}]}, 0x5, 0x45e, &(0x7f0000000780)="$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")
chdir(0x0)
r1 = socket(0x2, 0x3, 0xff)
connect$inet(r1, &(0x7f00000000c0)={0x2, 0xfffd, @remote}, 0x10)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
write$binfmt_elf32(r1, &(0x7f0000000180)=ANY=[], 0x20)

1m29.312075051s ago: executing program 6 (id=1957):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000001d80)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(cipher_null)\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
sendmmsg$alg(r1, &(0x7f0000000400)=[{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe1a}], 0x1, &(0x7f0000000380)=[@op={0x18}], 0x18}], 0x4924924924924b9, 0x0)
recvmsg$unix(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000004c0)=""/48, 0x30}, {&(0x7f0000000680)=""/116, 0x74}], 0x2}, 0x140)

1m28.729983811s ago: executing program 6 (id=1962):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x10)
r0 = syz_usb_connect$hid(0x5, 0x36, &(0x7f0000001240)=ANY=[@ANYBLOB="12010000090024206d041cc340000000000109022400010000a000090400000103010100092100080001220100090581", @ANYRES64], 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000240)={0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="00000c000000070001"], 0x0, 0x0, 0x0}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
lchown(0x0, 0x0, 0x0)

1m28.225345248s ago: executing program 37 (id=1962):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x10)
r0 = syz_usb_connect$hid(0x5, 0x36, &(0x7f0000001240)=ANY=[@ANYBLOB="12010000090024206d041cc340000000000109022400010000a000090400000103010100092100080001220100090581", @ANYRES64], 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000240)={0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="00000c000000070001"], 0x0, 0x0, 0x0}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
lchown(0x0, 0x0, 0x0)

42.613577287s ago: executing program 1 (id=2093):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x14, r1, 0x9c3fa077fa966179, 0x0, 0x0, {{0x7e}, {@void, @void}}}, 0x14}}, 0x0)

40.973616071s ago: executing program 1 (id=2099):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x20000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, 0x0, 0x0)
sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x46001)

38.609757287s ago: executing program 1 (id=2108):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f0000000200)={[{@quota}, {@oldalloc}, {@barrier_val={'barrier', 0x3d, 0x3}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@block_validity}, {@jqfmt_vfsv1}]}, 0x3, 0x434, &(0x7f0000000940)="$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")
creat(&(0x7f0000000340)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000500)='./bus\x00', 0x0, 0x42)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x20, &(0x7f0000001b00)={@mcast1={0xff, 0x0}, 0x10000, 0x0, 0x2, 0x8, 0xfff0}, 0x20)
ioctl$BTRFS_IOC_GET_FEATURES(r1, 0x80189439, &(0x7f0000000180))
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000a00)={0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x13, 0x0, "ef359f41a4ae6dddfbd1ce5d29c2ee5e5c9d000ff8ee09e737ff0edf110ff4eb4b78c66ee677df701905b9aafab4ffffffff00", "cba3d625780820d1cbf7db71038259ca171ce1a311ef97e4298d1e14ef01060000e9009600fdff00000000000000000000000000000000000400", "d300e6d6ae9ef30bea2a004000", [0x2]})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141042, 0x0)
pwritev2(r2, &(0x7f00000001c0)=[{&(0x7f0000000080)="ff", 0xfdef}], 0x1, 0xe7b, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x40)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r5 = dup(r4)
write$UHID_INPUT(r5, &(0x7f0000001040)={0xf, {"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", 0x1000}}, 0x1006)
ioctl$TIOCCONS(r5, 0x541d)
openat$udambuf(0xffffffffffffff9c, &(0x7f00000000c0), 0x2)
write$cgroup_subtree(r3, &(0x7f0000000200)=ANY=[], 0x32600)

36.275978782s ago: executing program 1 (id=2120):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000c80)='./file1\x00', 0x210090, &(0x7f0000000100)={[{@jqfmt_vfsv1}, {@noinit_itable}, {@barrier_val={'barrier', 0x3d, 0xd0d}}, {@norecovery}, {@inlinecrypt}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4}}, {@nodelalloc}, {@stripe={'stripe', 0x3d, 0x4}}, {@bsdgroups}, {@errors_remount}, {@orlov}]}, 0xfc, 0x583, &(0x7f0000000480)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
syz_io_uring_setup(0x6f6c, 0x0, 0x0, 0x0)
creat(&(0x7f0000000000)='./bus\x00', 0x0)
mount(&(0x7f0000000440)=@loop={'/dev/loop', 0x0}, &(0x7f0000000080)='./bus\x00', 0x0, 0x1000, 0x0)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
write$binfmt_script(r0, &(0x7f00000005c0)={'#! ', './bus'}, 0x9)
ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x0, 0x0, 0x0, 0x5, 0x0, "ef359f413bb901527f00d1ce5d29c3ee5e5ca9000f7c41499dc2aac63a01000000000000004faa2ad9c084a003ea0000000000000000000800002000", "036c47c67808200400000000000000335263bdbcef549ba197fce47ddfdd753abd950100002a00ffffffffffffffff00000000e8f20000000200", "b7326736181c208220000000b9000000000000000000f0fffffffff2ff00", [0x4]})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x9)

33.402528135s ago: executing program 1 (id=2134):
r0 = socket$inet6(0xa, 0x80803, 0x84)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000004c0)={{{@in6=@empty, @in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x1, 0xffff, 0x4e22, 0x0, 0xa}, {0x4ed2b3f1, 0x1, 0x0, 0x3000000, 0x0, 0x3, 0xffffffffffffffff, 0x8000000000}, {0x0, 0x0, 0x0, 0xfffffffffffffffc}, 0xfffffffc, 0x0, 0x1}, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0xff80, 0x32}, 0xa, @in6=@mcast1, 0x0, 0x0, 0x0, 0x6, 0x2}}, 0xe8)
connect$inet6(r0, &(0x7f00000000c0), 0x1c)

31.863323018s ago: executing program 1 (id=2148):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r0, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40}, 0x4040)
sendmsg$IPCTNL_MSG_TIMEOUT_DELETE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="14000000020801"], 0x14}, 0x1, 0x0, 0x0, 0x4c080}, 0x80080)

31.406003846s ago: executing program 38 (id=2148):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r0, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40}, 0x4040)
sendmsg$IPCTNL_MSG_TIMEOUT_DELETE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="14000000020801"], 0x14}, 0x1, 0x0, 0x0, 0x4c080}, 0x80080)

7.488369796s ago: executing program 7 (id=2250):
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = gettid()
timer_create(0x3, &(0x7f0000000240)={0x0, 0x1e, 0x800000000004, @thr={&(0x7f0000000280)="4f6685bddefa497a75b976c25a66efca78d350d0227d5c1e02187418c5baea5375fb7da55409acc61f75db844fbd9a17ce69b6c472857af03550d143bab00896", &(0x7f0000000340)="8dfa42ed29520c8f40022d6a96161471977d6459413128046ae27d25ce10747f75a66184260bbc86b913e796af90562c0fb923890d335941443e604a00422d52062bd502bd245574c5bc5e88f520abdc77403db75b1b1357d159125b4db9dd948245c0e2942c0adf4e671030e0"}}, &(0x7f0000bbdffc))
prlimit64(r0, 0xe, &(0x7f0000000140)={0x8, 0xbb2f}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x100010, 0xffffffffffffffff, 0x0)
syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB='\x00'/15, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x51a)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r3, 0x6, 0x13, &(0x7f00000000c0)=0x1, 0x4)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='debugfs\x00', 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000480)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000004c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
r4 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x55c467058f8bfec6, 0x110)
lseek(r4, 0x0, 0x1)
setsockopt(r3, 0x1, 0x10000000000009, &(0x7f0000000180)="00050002", 0x4)
connect$inet6(r3, &(0x7f0000000140)={0xa, 0x4e24, 0x0, @loopback, 0x2}, 0x1c)
close(r3)
r5 = syz_pidfd_open(0x0, 0x0)
ioctl$BLKROTATIONAL(0xffffffffffffffff, 0x40101286, 0x0)
setns(r5, 0x34020000)

6.416831503s ago: executing program 7 (id=2254):
ioctl$TCSETSW(0xffffffffffffffff, 0x5403, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x5}, 0x1c)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @ipv4}, 0x1c)
socket$nl_generic(0x10, 0x3, 0x10)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x6, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, 0x0, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x4, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r2, 0xc0045516, &(0x7f0000000b00)=0x6)
read(r2, &(0x7f00000023c0)=""/152, 0x98)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r2, 0xc4c85513, &(0x7f0000000540)={{0x1, 0x0, 0x800, 0x0, 'syz0\x00'}, 0x0, [0xfffffffffffffe00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xde, 0x0, 0x40000004, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000000000, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0xfffffffffffffff6, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x1000000, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x7fffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0xfffffffffffffffc, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x4, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000]})
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, 0x0)
r3 = syz_open_procfs(r1, 0x0)
lseek(r3, 0x2, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_open_procfs(0x0, &(0x7f0000000080)='net/fib_trie\x00')
syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_NEW(r5, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="6000000000020104000000000000000000000000040001800400038044000280"], 0x60}}, 0x4004)

5.514104726s ago: executing program 9 (id=2257):
ioperm(0x8, 0x7, 0x91b)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(0xffffffffffffffff, 0xc04c5349, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, 0x0, 0x0)
modify_ldt$write(0x1, &(0x7f0000002a40)={0x8, 0x20101000, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1}, 0x10)
socket$unix(0x1, 0x1, 0x0)

5.416897978s ago: executing program 9 (id=2258):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000001540)='./file0\x00', 0x2000104c, &(0x7f00000001c0)=ANY=[@ANYBLOB="787fd34580c3b851d7919ec27e2a54f25b0444d29317e95422c8ad6f58dc523658866778b829702d93c36b05eec8fa599c90daa58df75c4f11a6df03e400b1778e570b59d206130f9c189902d6950277350ef6d34bf836dc9478bd94ba9453693c070b5a66a4a22802a101a983b865f493eac79ddaaafabfb457e71ded03f5b11a0d3f8c4e56fb5a9a0221d03910f32ae62d94621a39581e91b2dd10081c69e0b98f2eb883b1e0eefe97bc8103d533811a1341e218c74c803ecede84e3d986f8a4a4627a7950aa4309a84d7035b8b9b0fe40a994eaff22f15dc5cb65fb35454c23e9f5ca965e012db566798d4678eef4fc6ac55313a6f2", @ANYRES16, @ANYRES8=r1, @ANYRES64, @ANYBLOB="5d6c52630802cda809e74acca9294c6811914cc5c79e73196fda0e3ddee587bee94f2e1842080e86fda44a52041fb2fcb4b7f593f8c069e66289e9041bced2fb6bffa7af473dc5b67b659d998eee21a8aeba869302"], 0x1, 0x14fb, &(0x7f0000002a80)="$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")
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f00000ab000/0x18000)=nil, &(0x7f0000000000)=[@textreal={0x8, &(0x7f0000000140)="36d0e866b8970000000f23c80f21f866350c00a0000f23f89d0f326635000400000f302e8dcc0f23742e3b5753baf80466b8f494f78e66efbafc0c66b83ac80000666fda6509", 0x46}], 0x1, 0xe5, 0x0, 0x0)
syz_mount_image$erofs(&(0x7f0000001240), &(0x7f0000000200)='./file0\x00', 0x2800080, &(0x7f0000001280)=ANY=[], 0xff, 0x20d, &(0x7f0000001000)="$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")
socket$inet_udp(0x2, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
ptrace$ARCH_GET_UNTAG_MASK(0x1e, 0x0, 0x0, 0x4001)
read$msr(0xffffffffffffffff, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

5.052751433s ago: executing program 7 (id=2260):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f0000000200)={[{@quota}, {@oldalloc}, {@barrier_val={'barrier', 0x3d, 0x3}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@block_validity}, {@jqfmt_vfsv1}]}, 0x3, 0x434, &(0x7f0000000940)="$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")
creat(&(0x7f0000000340)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000500)='./bus\x00', 0x0, 0x42)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x20, &(0x7f0000001b00)={@mcast1={0xff, 0x0}, 0x10000, 0x0, 0x2, 0x8, 0xfff0}, 0x20)
ioctl$BTRFS_IOC_GET_FEATURES(r1, 0x80189439, &(0x7f0000000180))
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000a00)={0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x13, 0x0, "ef359f41a4ae6dddfbd1ce5d29c2ee5e5c9d000ff8ee09e737ff0edf110ff4eb4b78c66ee677df701905b9aafab4ffffffff00", "cba3d625780820d1cbf7db71038259ca171ce1a311ef97e4298d1e14ef01060000e9009600fdff00000000000000000000000000000000000400", "d300e6d6ae9ef30bea2a004000", [0x2]})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141042, 0x0)
pwritev2(r2, &(0x7f00000001c0)=[{&(0x7f0000000080)="ff", 0xfdef}], 0x1, 0xe7b, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x40)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r5 = dup(r4)
write$UHID_INPUT(r5, &(0x7f0000001040)={0xf, {"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", 0x1000}}, 0x1006)
ioctl$TIOCCONS(r5, 0x541d)
write$cgroup_subtree(r3, &(0x7f0000000200)=ANY=[], 0x32600)
mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000080), 0x2000008, &(0x7f0000000100)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@msize={'msize', 0x3d, 0xfffffffffffffff2}}], [{@dont_measure}]}})

4.479828912s ago: executing program 8 (id=2262):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000040)={0x1, 0x5})

4.456919552s ago: executing program 7 (id=2263):
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = gettid()
timer_create(0x3, &(0x7f0000000240)={0x0, 0x1e, 0x800000000004, @thr={&(0x7f0000000280)="4f6685bddefa497a75b976c25a66efca78d350d0227d5c1e02187418c5baea5375fb7da55409acc61f75db844fbd9a17ce69b6c472857af03550d143bab00896", &(0x7f0000000340)="8dfa42ed29520c8f40022d6a96161471977d6459413128046ae27d25ce10747f75a66184260bbc86b913e796af90562c0fb923890d335941443e604a00422d52062bd502bd245574c5bc5e88f520abdc77403db75b1b1357d159125b4db9dd948245c0e2942c0adf4e671030e0"}}, &(0x7f0000bbdffc))
prlimit64(r0, 0xe, &(0x7f0000000140)={0x8, 0xbb2f}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x100010, 0xffffffffffffffff, 0x0)
syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB='\x00'/15, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x51a)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r3, 0x6, 0x13, &(0x7f00000000c0)=0x1, 0x4)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='debugfs\x00', 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000480)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000004c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
r4 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x55c467058f8bfec6, 0x110)
lseek(r4, 0x0, 0x1)
setsockopt(r3, 0x1, 0x10000000000009, &(0x7f0000000180)="00050002", 0x4)
connect$inet6(r3, &(0x7f0000000140)={0xa, 0x4e24, 0x0, @loopback, 0x2}, 0x1c)
close(r3)
r5 = syz_pidfd_open(0x0, 0x0)
ioctl$BLKROTATIONAL(0xffffffffffffffff, 0x40101286, 0x0)
setns(r5, 0x34020000)

4.369757594s ago: executing program 4 (id=2264):
unshare(0x2020400)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff})
fallocate(r0, 0x70, 0x3, 0x800)

3.012987834s ago: executing program 7 (id=2265):
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x1, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
getpgrp(0x0)
ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
semop(0x0, 0x0, 0x0)

3.012386464s ago: executing program 9 (id=2266):
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000140), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x10400}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f0000008380)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea21056000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001c000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fdffffff00000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b6000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e200", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000440)={0x20, 0x0, 0x88, {0x0, 0x10}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r0, &(0x7f0000004200)="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", 0x2000, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x78, 0x0, 0x0, {0x0, 0xfffffffc, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x8000}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x101001, 0x0)
writev(r2, &(0x7f0000000000)=[{&(0x7f0000000cc0)="e1", 0x56000}], 0x1)
close(r0)
write$sndseq(r2, &(0x7f0000000300)=[{0xb5, 0x8, 0x7, 0x8, @tick=0x200, {0xc}, {0x9, 0x2}, @connect={{0x1, 0x6}, {0xfe, 0x4}}}], 0x1c)

2.961861905s ago: executing program 8 (id=2267):
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000180)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x82, &(0x7f0000000700)=ANY=[@ANYBLOB='iocharset=default,noadinicb,gid=forget,gid=ignore,nostrict,gid=', @ANYRESDEC=0x0, @ANYBLOB="2c616e63686f723d30303030000088be0900303030303030303030312c7569643d666f726765742c00215e8c2e42462f3ab5e1f7c0527abbb422be9178aa60681964adb069ae876c4a599d560075ac47c0de1a9bb9146af6433efdcdac853a8e8f16d6bad90ecce0a1fab46f48331e6b3c325c08df3c334e4da28067a30b3b1dc64bf692c712fc273bc1702008f563765c6f3e67d97e1369973c2a87f0ecca7320819863179fb85e394a8cf1d62c70d8306633b6958ebf998a0685bc5cdd1f97291328743add4c867115fae1082f8faf482e15eb939968"], 0xfd, 0xc34, &(0x7f0000001080)="$eJzs3U9sHNd9B/DfGy5F0m4rJk5Uu42LTVukMmO5sqSYilW4q5pmG0CWiVDMLQBX5EpdmFoSJNXIbtowvfTQQ4Ci6CEnAq1RIEUDoymKHtnWBZKLD4VPPREtbARFD2wRIKeAxcy+FVf/LMkkJcr+fGzqOzv73sx7M+MZWdCbFwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABAxO+8cvb48+lhtwIAeJDOT3/1+AnPfwD4RLng//8BAAAAAAAAAAAAAOCgS1HEE5Fi6fxWmq0+dw2fa3euXpuZmLx9tZFU1Ryoypc/w8+fOHnqSy+Mn+7lh9ffa0/Fa9MXztZfXryytNxaWWnN12c67bnF+dY9b2G39W82Vh2A+pXXr85furRSP/HcyRu+vjb6wdDjR0bPjD9z7Ole2ZmJycnpvjK1wY+891vcaYTHoSjiWKR49vs/Ts2IKGL3x+Iu185+G6k6MVZ1YmZisurIQrvZWS2/nOodiCKi3lep0TtGD+Bc7EojYq1sftngsbJ700vN5ebFhVZ9qrm82l5tL3amUre1ZX/qUcTpFLEeEZtDt25uMIqoRYrvHt5KFyNioHccvlgNDL5zO4p97OM9KNtZH4xYLx6Bc3aADUURr0aKn7xTxFx5zPJPfCHi1TL/MeKtMl+KSOWFcSri/eo6GnnILWcv1KKIPyvP/5mtNF/dD3r3lXNfq3+lc2mxr2zvvvLIPx8epAN+bxqOIprVHX8rffTf7AAAAAAAAAAAAAAAAACw10aiiKcixSv//gfVuOKoxqUfPjP+u6M/3z9m/Mm7bKcs+1xErBX3Nib3UB5CPJWmUnrIY4k/yYajiD/K4/++/bAbAwAAAAAAAAAAAAAAAAAA8IlWxHuR4sV3j6b16J9TvN25XL/QvLjQnRW2N/dvb8707e3t7XrqZiPnbM61nOs5N3Ju5owi18/ZyDmbcy3nes6NnJs5YyDXz9nIOZtzLed6zo2cmzmjluvnbOSczbmWcz3nRs7NnHFA5u4FAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPg4KaKIn0WK73xjK0WKiEbEbHRzY6hXBgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4mIZSET+IFPXfa1xfV4uIVP3bdbT85VQ0DpX56WiMl/lSNM7mbFZZa3z7IbSf3RlMRfwoUgwNv339hOfzP9j9dP0yiLe+ufPpl2rdHOh9OfrB0ONHDp8Zn/yVJ++0nG7XgLFz7c7Va/WZicnJ6b7Vtbz3T/etG837Lfam60TEyhtvvt5cWGgtW/hkLNS6C7XY0y2PROztBvduodZdyPereOjtucNC42A0Y2chqnv/be/ZfGyUz//3I8VvvvsfvQd+7/n/c91P15/w8dM/3nn+v3jzhvbp+f9E37oX8+9GBmsRw6tXlgaPRAyvvPHmsfaV5uXW5Vbn1PHjXx4f//LJ44OHIoYvtRdafUu7PlQAAAAAAAAAAAAAAAAAD1Yq4rcjRfNHW6keEdeq8VqjZ8afOfb0QAxU461uGLf12vSFs/WXF68sLbdWVlrz9ZlOe25xvnWvuxuuhnvNTEzuS2fuamSf2z8y/PLi0hvL7cu/v3rb7x8bPntxZXW5OXf7r2MkiohG/5qxqsEzE5NVoxfazU5VdWqPBmYOpiL+M1LMnaqnz+d1efxfGe8N9pXtH/+/1re+Wt6n8X+fumk/KRXx00jxG3/+ZHy+audjccsxy+X+OlKMnf5cLheHynK9NnTfK9AdGViW/d9I8fc/u7Fsr+9P7JR9/v6O7sFXnv/DkeIHf/q9+NW87sb3P+yM/+w//4/dvKF9Ov+f6Vv32A3vK9h118nn/1ikeOmJt+PX8roPe/9HEdvb29+KOJoLX38/xz6d/8/2rRuN7n5/fe+6DwAAAAAAAAAA8MgaTEX8TaR4erKWXsjr7uXv/83fvKF9+vtfv9i3bv4BzVe064MKAAAAAAfEYCrivUhxefXt62Oo+8Z/3zj+87d25l6fSDd9W/053y9U7w3Yyz//6zea9zu7+24DAAAAAAAAAAAAAAAAAADAgZJSES/k+dRn7zKf+kakeOW/n83l0pGyXG8e+NHq1+Hzi51jZxcWFueaq82LC6369FJzrlXW/Uyk2Pqrz+W6RTW/em+++e4c78PbvbnYlyPF5N/2ynbnYu/NTd6dD7w7F3tZ9lOR4r/+7sayvXmsP7tT9kRZ9i8jxdf/6fZlj+yUPVmW/V6k+OHX672yj5Vle+9H7b6TdLgWC63n5hYXbnkVKgAAAAAAAAAAAAAAAAAAANyvwVTEn0SK/7myHmt52H+e/783A3+tV/atb/bN93+Ta9U8/6PV/P93Wv4o8/+P7llPAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADg0ZGiiDcjxdL5rbQxVH7uGj7X7ly9NjMxeftqI6mqOVCVL3+Gnz9x8tSXXhg/3csPr7/XnorXpi+crb+8eGVpubWy0pqvz3Tac4vzrXvewm7r7xy6rrHqANSvvH51/tKllfqJ507e8PW10Q+GHj8yemb8mWNP98rOTExOTveVqQ3ex97vq3E7DkURfxEpnv3+j9M/D0UUsftjcZdrZ7+NVJ0YqzoxMzFZdWSh3eysll9O9Q5EEVHvq9ToHaMHcC52pRGxVja/bPBY2b3ppeZy8+JCqz7VXF5tr7YXO1Op29qyP/Uo4nSKWI+IzaFbNzcYRbweKb57eCv9y1DEQO84fPH89FePn7hzO4p97OM9KNtZH4xYLx6Bc3aADUUR/xApfvLO0fjXoYhadH/iCxGv9hd8KSKVF8apiPdvcx3xaKpFEf9Xnv8zW+mdofJ+0LuvnPta/SudS4t9ZXv3lYP0fNi+/2txZA92e+8O+L1pOIr4YXXH30r/5r9rAAAAAAAAAAAAAAAAgAOkiF+OFC++ezRV44Ovjyludy7XLzQvLnSH9fXG/tUj/rDM7e3t7XrqZiPnbM61nOs5N3Ju5owi18/ZyDmbcy3nes6NnJs5YyDXz9nIOZtzLed6zo2cmzmjVsX29va3uvVruX7OtZzrtYiirJ8/b+aMAzJ2DwAAAAAAAAAAAAAAAAAA+Hgpqn9SfOcbW6maS7URMRvd3DAf6Mfe/wcAAP//3sf+xA==")
memfd_create(0x0, 0x0)
mknod$loop(0x0, 0x0, 0x0)
lseek(0xffffffffffffffff, 0x8, 0x4)
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x1, 0xfa, 0x419}}}, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'vcan0\x00'})
symlink(&(0x7f0000001000)='./file0\x00', 0x0)
mount$bind(0x0, 0x0, 0x0, 0x101091, 0x0)

2.906507816s ago: executing program 4 (id=2268):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IE={0x6, 0x2a, [@random={0xdd}]}]}, 0x24}}, 0x0)

2.854517417s ago: executing program 5 (id=2149):
socketpair$unix(0x1, 0x2, 0x0, 0x0)
unshare(0x20000600)
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCGPTPEER(r0, 0x5441, 0x3fffffff80000)

2.699765999s ago: executing program 4 (id=2269):
r0 = socket(0x10, 0x803, 0x0)
write(r0, &(0x7f0000000040)="2600000022004701050007108980e8ff06006d20002b1f00c0e90101c7bb0000b00000000000", 0x26)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000080), r0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000d9bffc), 0x4)
sendto(r0, &(0x7f00000005c0)="120000001200e7ef007b00000000000000a1", 0x12, 0x200080c0, 0x0, 0x0)
recvmmsg(r0, &(0x7f0000003680)=[{{0x0, 0x0, 0x0}, 0x887a}], 0x1, 0x20, 0x0)

2.59679417s ago: executing program 5 (id=2270):
ioctl$TCSETSW(0xffffffffffffffff, 0x5403, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x5}, 0x1c)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @ipv4}, 0x1c)
socket$nl_generic(0x10, 0x3, 0x10)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x6, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, 0x0, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x4, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r2, 0xc0045516, &(0x7f0000000b00)=0x6)
read(r2, &(0x7f00000023c0)=""/152, 0x98)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r2, 0xc4c85513, &(0x7f0000000540)={{0x1, 0x0, 0x800, 0x0, 'syz0\x00'}, 0x0, [0xfffffffffffffe00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xde, 0x0, 0x40000004, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000000000, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0xfffffffffffffff6, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x1000000, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x7fffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0xfffffffffffffffc, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x4, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000]})
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, 0x0)
r3 = syz_open_procfs(r1, 0x0)
lseek(r3, 0x2, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_open_procfs(0x0, &(0x7f0000000080)='net/fib_trie\x00')
syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$TOKEN_CREATE(0x24, 0x0, 0x0)

2.501758512s ago: executing program 9 (id=2271):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'sit0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=@newlink={0x34, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, r2, 0x585d}, [@IFLA_IFNAME={0x14, 0x3, 'sit0\x00'}]}, 0x34}}, 0x0)

2.459034893s ago: executing program 8 (id=2272):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x48)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18020000801000000000000004000000850000002700000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r0, r1, 0x5, 0x0, 0x0, @void, @value}, 0x10)

2.332882784s ago: executing program 4 (id=2273):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f0000000200)={[{@quota}, {@oldalloc}, {@barrier_val={'barrier', 0x3d, 0x3}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@block_validity}, {@jqfmt_vfsv1}]}, 0x3, 0x434, &(0x7f0000000940)="$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")
creat(&(0x7f0000000340)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000500)='./bus\x00', 0x0, 0x42)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x20, &(0x7f0000001b00)={@mcast1={0xff, 0x0}, 0x10000, 0x0, 0x2, 0x8, 0xfff0}, 0x20)
ioctl$BTRFS_IOC_GET_FEATURES(r1, 0x80189439, &(0x7f0000000180))
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000a00)={0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x13, 0x0, "ef359f41a4ae6dddfbd1ce5d29c2ee5e5c9d000ff8ee09e737ff0edf110ff4eb4b78c66ee677df701905b9aafab4ffffffff00", "cba3d625780820d1cbf7db71038259ca171ce1a311ef97e4298d1e14ef01060000e9009600fdff00000000000000000000000000000000000400", "d300e6d6ae9ef30bea2a004000", [0x2]})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141042, 0x0)
pwritev2(r2, &(0x7f00000001c0)=[{&(0x7f0000000080)="ff", 0xfdef}], 0x1, 0xe7b, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x40)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r5 = dup(r4)
write$UHID_INPUT(r5, &(0x7f0000001040)={0xf, {"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", 0x1000}}, 0x1006)
openat$udambuf(0xffffffffffffff9c, &(0x7f00000000c0), 0x2)
write$cgroup_subtree(r3, &(0x7f0000000200)=ANY=[], 0x32600)
mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000080), 0x2000008, &(0x7f0000000100)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@msize={'msize', 0x3d, 0xfffffffffffffff2}}], [{@dont_measure}]}})

2.133513788s ago: executing program 9 (id=2274):
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = gettid()
timer_create(0x3, &(0x7f0000000240)={0x0, 0x1e, 0x800000000004, @thr={&(0x7f0000000280)="4f6685bddefa497a75b976c25a66efca78d350d0227d5c1e02187418c5baea5375fb7da55409acc61f75db844fbd9a17ce69b6c472857af03550d143bab00896", &(0x7f0000000340)="8dfa42ed29520c8f40022d6a96161471977d6459413128046ae27d25ce10747f75a66184260bbc86b913e796af90562c0fb923890d335941443e604a00422d52062bd502bd245574c5bc5e88f520abdc77403db75b1b1357d159125b4db9dd948245c0e2942c0adf4e671030e0"}}, &(0x7f0000bbdffc))
prlimit64(r0, 0xe, &(0x7f0000000140)={0x8, 0xbb2f}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x100010, 0xffffffffffffffff, 0x0)
syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB='\x00'/15, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x51a)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r3, 0x6, 0x13, &(0x7f00000000c0)=0x1, 0x4)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='debugfs\x00', 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000480)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000004c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
r4 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x55c467058f8bfec6, 0x110)
lseek(r4, 0x0, 0x1)
setsockopt(r3, 0x1, 0x10000000000009, &(0x7f0000000180)="00050002", 0x4)
connect$inet6(r3, &(0x7f0000000140)={0xa, 0x4e24, 0x0, @loopback, 0x2}, 0x1c)
close(r3)
r5 = syz_pidfd_open(0x0, 0x0)
ioctl$BLKROTATIONAL(0xffffffffffffffff, 0x40101286, 0x0)
setns(r5, 0x34020000)

2.050814449s ago: executing program 8 (id=2275):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_read_part_table(0x634, &(0x7f0000000000)="$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")
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000640)={0x0, 0xd000})
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x80a, &(0x7f0000000000)={[{@grpquota}, {@lazytime}, {@data_err_abort}, {@errors_remount}]}, 0x1, 0x7ad, &(0x7f0000001240)="$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")
pipe2(&(0x7f0000000000), 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

669.87623ms ago: executing program 9 (id=2276):
r0 = syz_open_dev$loop(&(0x7f00000003c0), 0x101, 0x40)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000020000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r5}, 0x10)
r6 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r6, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='freezer.state\x00', 0x275a, 0x0)
write$binfmt_script(r7, &(0x7f0000000040), 0xfed1)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r7, 0x0)
ioctl$KVM_SET_CPUID2(r7, 0x4008ae90, 0x0)
bind$inet(r6, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x11, 0xc, &(0x7f0000000380)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000000040), 0x2}, 0xa0)
sendto$inet(r6, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
r8 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r8, 0x89f1, &(0x7f0000000440)={'sit0\x00', &(0x7f0000000080)={'syztnl0\x00', 0x0, 0x700, 0x10, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x7, 0x0, 0x0, @remote, @multicast2}}}})
ioctl$BLKPG(r0, 0x1269, &(0x7f0000000400)={0x2, 0x0, 0x0, 0x0})

668.0081ms ago: executing program 4 (id=2277):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000180)='./file0\x00', 0x1218088, &(0x7f0000000d40)=ANY=[@ANYBLOB="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"], 0xa, 0x2c2, &(0x7f00000008c0)="$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")
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f00000004c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bf"], &(0x7f0000000100)='GPL\x00', 0xfffffffe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r0}, 0x10)
gettid()
timer_create(0x0, 0x0, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
pipe(&(0x7f0000002480)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1a"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r2}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x2, 0x1, 0x33}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
splice(0xffffffffffffffff, 0x0, r1, 0x0, 0x7, 0x9)
r3 = syz_open_dev$usbfs(&(0x7f0000000100), 0x206, 0x20182)
ioctl$USBDEVFS_ALLOW_SUSPEND(r3, 0x5522)
ioctl$USBDEVFS_BULK(r3, 0x5523, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
ioctl$USBDEVFS_ALLOW_SUSPEND(r3, 0x5522)
syz_open_dev$usbfs(&(0x7f0000000040), 0x76, 0x149702)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0xc1105511, &(0x7f0000000040)=0x2)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0)
ioctl$FIBMAP(r4, 0x1, &(0x7f0000000000)=0x1)
close(0xffffffffffffffff)
ioctl$TUNGETDEVNETNS(r4, 0x54e3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$devlink(&(0x7f00000002c0), r5)

653.93211ms ago: executing program 5 (id=2278):
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0100000000000000000000001200000014"], 0x50)

449.013553ms ago: executing program 5 (id=2279):
r0 = socket$igmp6(0xa, 0x3, 0x3a)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r1, 0x0)
getsockopt$MRT6(r0, 0x3a, 0x1, 0x0, 0x0)

386.152454ms ago: executing program 8 (id=2280):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IE={0x6, 0x2a, [@random={0xdd}]}]}, 0x24}}, 0x0)

254.280246ms ago: executing program 5 (id=2281):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000040)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
iopl(0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x3, 0x4, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000062010c000000190095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
syz_mount_image$udf(&(0x7f0000000f00), &(0x7f00000000c0)='./file1\x00', 0x800, &(0x7f0000001040)=ANY=[@ANYBLOB='uid=', @ANYRESDEC=0x0, @ANYBLOB="2c756e64656c6574652c6e6f7672732c6164696e6963622c766f6c756d653d30303030303030303030303030303030303030322c7569643d666f726765742c6769643d666f726765742c6e6f7374726963742c6e6f7672732c0085f95733019d784ca386da1fd41ffabd4b47acca2b8d488be702157dd8711c31732d"], 0xff, 0xc2d, &(0x7f00000001c0)="$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")
syz_mount_image$udf(&(0x7f0000000f00), &(0x7f00000000c0)='./file1\x00', 0x800, &(0x7f0000001040)=ANY=[@ANYBLOB='uid=', @ANYRESDEC=0x0, @ANYBLOB="2c756e64656c6574652c6e6f7672732c6164696e6963622c766f6c756d653d30303030303030303030303030303030303030322c7569643d666f726765742c6769643d666f726765742c6e6f7374726963742c6e6f7672732c0085f95733019d784ca386da1fd41ffabd4b47acca2b8d488be702157dd8711c31732d"], 0xff, 0xc2d, &(0x7f00000001c0)="$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")
rename(&(0x7f0000000000)='./file1\x00', &(0x7f00000000c0)='./file0/file0\x00')
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4000, 0x1ff)
unlink(&(0x7f0000000000)='./file0/file0\x00')
rename(&(0x7f0000000000)='./file2\x00', &(0x7f0000000040)='./file1\x00')
rename(&(0x7f0000000000)='./file1\x00', &(0x7f00000000c0)='./file0/file0\x00')
unlink(&(0x7f0000000000)='./file0/file0\x00')
rename(&(0x7f0000000000)='./file2\x00', 0x0)
socket$netlink(0x10, 0x3, 0x15)

159.935427ms ago: executing program 7 (id=2282):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0xe, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x101000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x800000000003)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000180), 0xffffffffffffffff)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, &(0x7f00000001c0)="66b8517d2b300f23c00f21f8663503000d000f23f83e0f216b0f6915670f01d936660f35d80db844008ee0660f1c022ec10306650f01d1", 0x37}], 0x1, 0x20, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

13.35582ms ago: executing program 8 (id=2283):
syz_emit_vhci(&(0x7f0000001100)=ANY=[@ANYBLOB="040e04061c0c"], 0x7)
mount_setattr(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)

0s ago: executing program 4 (id=2284):
r0 = socket(0x840000000002, 0x3, 0xff)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000100)={0x0, <r1=>0x0}, &(0x7f0000000140)=0xc)
ioperm(0x5, 0x4, 0x4)
setuid(r1)

kernel console output (not intermixed with test programs):

audit(1744530527.129:305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10081 comm="syz.6.1823" exe="/root/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7f6ace18d169 code=0x7ffc0000
[  506.826522][ T9250] EXT4-fs (loop8): unmounting filesystem.
[  506.874070][   T27] audit: type=1326 audit(1744530527.199:306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10081 comm="syz.6.1823" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ace18d169 code=0x7ffc0000
[  506.953659][T10104] loop2: detected capacity change from 0 to 2048
[  507.008988][   T27] audit: type=1326 audit(1744530527.199:307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10081 comm="syz.6.1823" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ace18d169 code=0x7ffc0000
[  507.075357][   T27] audit: type=1326 audit(1744530527.239:308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10081 comm="syz.6.1823" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f6ace129359 code=0x7ffc0000
[  507.113061][T10104] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  507.220403][   T27] audit: type=1326 audit(1744530527.239:309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10081 comm="syz.6.1823" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ace18d169 code=0x7ffc0000
[  507.244670][T10112] loop7: detected capacity change from 0 to 512
[  507.269392][T10112] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  507.279268][ T4295] usb 2-1: new low-speed USB device number 7 using dummy_hcd
[  507.301170][   T27] audit: type=1326 audit(1744530527.239:310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10081 comm="syz.6.1823" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ace18d169 code=0x7ffc0000
[  507.352911][   T27] audit: type=1326 audit(1744530527.239:311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10081 comm="syz.6.1823" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ace18d169 code=0x7ffc0000
[  507.370273][T10116] loop8: detected capacity change from 0 to 512
[  507.439367][T10112] EXT4-fs (loop7): 1 truncate cleaned up
[  507.452681][T10116] EXT4-fs error (device loop8): ext4_xattr_inode_iget:404: comm syz.8.1832: inode #1: comm syz.8.1832: iget: illegal inode #
[  507.464046][ T4295] usb 2-1: config 5 has an invalid interface number: 242 but max is 0
[  507.471919][T10112] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[  507.491762][T10116] EXT4-fs error (device loop8): ext4_xattr_inode_iget:409: comm syz.8.1832: error while reading EA inode 1 err=-117
[  507.492421][ T4295] usb 2-1: config 5 has no interface number 0
[  507.512371][ T4295] usb 2-1: config 5 interface 242 altsetting 1 endpoint 0x4 has invalid maxpacket 16, setting to 0
[  507.523355][ T4295] usb 2-1: config 5 interface 242 has no altsetting 0
[  507.551872][ T4295] usb 2-1: string descriptor 0 read error: -22
[  507.558511][ T4295] usb 2-1: New USB device found, idVendor=0421, idProduct=026c, bcdDevice=94.2e
[  507.567628][ T4295] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  507.589504][T10116] EXT4-fs (loop8): 1 orphan inode deleted
[  507.596264][T10116] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[  507.762601][ T4295] rndis_wlan 2-1:5.242: invalid descriptor buffer length
[  507.781507][ T4295] usb 2-1: bad CDC descriptors
[  507.796422][ T4295] rndis_host 2-1:5.242: invalid descriptor buffer length
[  507.890993][ T4295] usb 2-1: bad CDC descriptors
[  507.898124][ T4295] cdc_acm 2-1:5.242: invalid descriptor buffer length
[  508.475280][ T9115] EXT4-fs (loop7): unmounting filesystem.
[  508.495885][ T9250] EXT4-fs (loop8): unmounting filesystem.
[  508.547998][T10129] loop2: detected capacity change from 0 to 16
[  508.585131][T10129] erofs: (device loop2): mounted with root inode @ nid 36.
[  508.640087][ T4398] usb 2-1: USB disconnect, device number 7
[  509.272833][ T4398] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[  509.396449][T10152] loop2: detected capacity change from 0 to 512
[  509.414341][T10154] loop1: detected capacity change from 0 to 16
[  509.425320][T10154] erofs: (device loop1): z_erofs_load_lz4_config: too large lz4 pclusterblks 16832
[  509.442285][ T4298] usb 7-1: new full-speed USB device number 3 using dummy_hcd
[  509.471569][T10152] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  509.496616][T10152] ext4 filesystem being mounted at /412/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  509.642251][ T4398] usb 9-1: Using ep0 maxpacket: 32
[  509.649711][ T4398] usb 9-1: unable to get BOS descriptor or descriptor too short
[  509.657866][ T4298] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  509.665979][ T4398] usb 9-1: no configurations
[  509.674280][ T4298] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 512, setting to 64
[  509.685999][ T4298] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 576, setting to 64
[  509.698143][ T4298] usb 7-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22
[  509.726446][ T4398] usb 9-1: can't read configurations, error -22
[  510.335254][ T4298] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  510.345577][ T4261] EXT4-fs (loop2): unmounting filesystem.
[  510.392382][ T4298] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  510.421463][ T4298] usb 7-1: SerialNumber: syz
[  510.463466][T10167] loop1: detected capacity change from 0 to 16
[  510.487923][ T4398] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[  510.494463][T10149] raw-gadget.1 gadget.6: fail, usb_ep_enable returned -22
[  510.532668][T10149] raw-gadget.1 gadget.6: fail, usb_ep_enable returned -22
[  510.553851][T10167] erofs: (device loop1): mounted with root inode @ nid 36.
[  510.569055][ T4298] cdc_acm 7-1:1.0: Control and data interfaces are not separated!
[  510.607537][T10170] loop2: detected capacity change from 0 to 1024
[  510.682478][ T4398] usb 9-1: Using ep0 maxpacket: 32
[  510.690390][ T4398] usb 9-1: unable to get BOS descriptor or descriptor too short
[  510.714873][ T4398] usb 9-1: no configurations
[  510.728003][ T4398] usb 9-1: can't read configurations, error -22
[  510.737967][ T4398] usb usb9-port1: attempt power cycle
[  510.771172][ T4298] cdc_acm 7-1:1.0: ttyACM0: USB ACM device
[  510.790211][ T4298] usb 7-1: USB disconnect, device number 3
[  510.790691][T10177] loop1: detected capacity change from 0 to 1024
[  510.864749][T10177] hfsplus: request for non-existent node 16777216 in B*Tree
[  510.885395][T10177] hfsplus: request for non-existent node 16777216 in B*Tree
[  510.896845][T10177] hfsplus: request for non-existent node 16777216 in B*Tree
[  510.910297][T10177] hfsplus: request for non-existent node 16777216 in B*Tree
[  511.072517][ T4529] hfsplus: request for non-existent node 16777216 in B*Tree
[  511.093029][ T4529] hfsplus: request for non-existent node 16777216 in B*Tree
[  511.152262][ T4398] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[  511.187228][ T4398] usb 9-1: Using ep0 maxpacket: 32
[  511.196745][ T4398] usb 9-1: unable to get BOS descriptor or descriptor too short
[  511.229930][ T4398] usb 9-1: no configurations
[  511.245616][ T4398] usb 9-1: can't read configurations, error -22
[  511.421022][T10195] loop6: detected capacity change from 0 to 2048
[  511.432797][ T4398] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[  511.472132][T10195] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  511.492387][ T4398] usb 9-1: Using ep0 maxpacket: 32
[  511.502039][ T4398] usb 9-1: unable to get BOS descriptor or descriptor too short
[  511.521835][ T4398] usb 9-1: no configurations
[  511.530677][ T4398] usb 9-1: can't read configurations, error -22
[  511.540016][   T22] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  511.557892][ T4398] usb usb9-port1: unable to enumerate USB device
[  511.747615][   T22] usb 2-1: Using ep0 maxpacket: 32
[  511.754764][   T22] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  511.781539][   T22] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  511.811612][   T22] usb 2-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  511.817750][    T9] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  511.862668][   T22] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  511.912113][   T22] usb 2-1: config 0 descriptor??
[  512.066776][    T9] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  512.256054][   T27] kauditd_printk_skb: 292 callbacks suppressed
[  512.256072][   T27] audit: type=1326 audit(1744530533.679:604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10205 comm="syz.8.1856" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e5f8d169 code=0x7ffc0000
[  512.342653][    T9] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  512.351285][   T22] savu 0003:1E7D:2D5A.0004: hiddev0,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.1-1/input0
[  512.384690][   T27] audit: type=1326 audit(1744530533.719:605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10205 comm="syz.8.1856" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e5f8d169 code=0x7ffc0000
[  512.454298][   T27] audit: type=1326 audit(1744530533.719:606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10205 comm="syz.8.1856" exe="/root/syz-executor" sig=0 arch=c000003e syscall=94 compat=0 ip=0x7fa5e5f8d169 code=0x7ffc0000
[  512.561925][   T27] audit: type=1326 audit(1744530533.719:607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10205 comm="syz.8.1856" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e5f8d169 code=0x7ffc0000
[  512.642481][   T22] usb 2-1: USB disconnect, device number 8
[  512.647725][   T27] audit: type=1326 audit(1744530533.719:608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10205 comm="syz.8.1856" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e5f8d169 code=0x7ffc0000
[  512.741949][    T9] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  513.199111][ T4264] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  513.210230][ T4264] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  513.218719][ T4264] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  513.234164][ T4264] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  513.246201][ T4264] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  513.253723][ T4264] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  513.562926][T10234] loop7: detected capacity change from 0 to 8
[  513.918589][T10223] chnl_net:caif_netlink_parms(): no params data found
[  513.946708][T10240] loop8: detected capacity change from 0 to 1024
[  514.000494][T10237] loop7: detected capacity change from 0 to 8192
[  514.033508][   T27] audit: type=1800 audit(1744530535.449:609): pid=10237 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.1865" name="file2" dev="loop7" ino=1048698 res=0 errno=0
[  514.105212][T10223] bridge0: port 1(bridge_slave_0) entered blocking state
[  514.112979][T10223] bridge0: port 1(bridge_slave_0) entered disabled state
[  514.121303][T10223] device bridge_slave_0 entered promiscuous mode
[  514.131865][T10223] bridge0: port 2(bridge_slave_1) entered blocking state
[  514.141053][T10223] bridge0: port 2(bridge_slave_1) entered disabled state
[  514.169652][T10223] device bridge_slave_1 entered promiscuous mode
[  514.643175][T10246] syz.7.1865: attempt to access beyond end of device
[  514.643175][T10246] loop7: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  515.024684][T10223] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  515.051198][T10223] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  515.150482][T10255] loop1: detected capacity change from 0 to 1024
[  515.190338][T10255] EXT4-fs (loop1): couldn't mount as ext3 due to feature incompatibilities
[  515.219078][T10223] team0: Port device team_slave_0 added
[  515.274986][    T9] device hsr_slave_0 left promiscuous mode
[  515.281538][    T9] device hsr_slave_1 left promiscuous mode
[  515.300860][    T9] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  515.326312][    T9] batman_adv: batadv0: Removing interface: batadv_slave_0
[  515.343315][   T48] Bluetooth: hci4: command 0x0409 tx timeout
[  515.359573][    T9] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  515.387646][    T9] batman_adv: batadv0: Removing interface: batadv_slave_1
[  515.409598][    T9] device bridge_slave_1 left promiscuous mode
[  515.442558][    T9] bridge0: port 2(bridge_slave_1) entered disabled state
[  515.459819][    T9] device bridge_slave_0 left promiscuous mode
[  515.466447][    T9] bridge0: port 1(bridge_slave_0) entered disabled state
[  515.496372][    T9] device veth1_macvtap left promiscuous mode
[  515.504216][    T9] device veth0_macvtap left promiscuous mode
[  515.510575][    T9] device veth1_vlan left promiscuous mode
[  515.516921][    T9] device veth0_vlan left promiscuous mode
[  515.902619][ T4345] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[  516.122491][ T4345] usb 8-1: Using ep0 maxpacket: 32
[  516.147220][T10273] loop6: detected capacity change from 0 to 2048
[  516.185101][T10273] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  516.317187][ T4345] usb 8-1: config 0 has no interfaces?
[  516.343871][ T4345] usb 8-1: New USB device found, idVendor=1557, idProduct=8150, bcdDevice=29.ed
[  516.362238][ T4345] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  516.380659][ T4345] usb 8-1: Product: syz
[  516.384981][ T4345] usb 8-1: Manufacturer: syz
[  516.389611][ T4345] usb 8-1: SerialNumber: syz
[  516.404156][ T4345] usb 8-1: config 0 descriptor??
[  517.753154][T10274] 9pnet_fd: Insufficient options for proto=fd
[  517.832354][   T27] audit: type=1326 audit(1744530538.569:610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10268 comm="syz.6.1871" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6ace18d169 code=0x0
[  518.088915][T10281] netlink: 12 bytes leftover after parsing attributes in process `syz.8.1873'.
[  518.444108][    T9] team0 (unregistering): Port device team_slave_1 removed
[  518.557656][T10285] loop1: detected capacity change from 0 to 256
[  518.575408][ T4345] usb 8-1: USB disconnect, device number 4
[  518.614780][T10285] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d)
[  518.681245][    T9] team0 (unregistering): Port device team_slave_0 removed
[  518.833683][    T9] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  518.990004][    T9] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  519.059518][   T27] audit: type=1326 audit(1744530540.479:611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10294 comm="syz.1.1879" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f268d98d169 code=0x7ffc0000
[  519.111057][   T48] Bluetooth: hci4: command 0x041b tx timeout
[  519.148198][   T27] audit: type=1326 audit(1744530540.509:612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10294 comm="syz.1.1879" exe="/root/syz-executor" sig=0 arch=c000003e syscall=22 compat=0 ip=0x7f268d98d169 code=0x7ffc0000
[  519.222376][   T27] audit: type=1326 audit(1744530540.509:613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10294 comm="syz.1.1879" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f268d98d169 code=0x7ffc0000
[  519.316703][T10297] loop6: detected capacity change from 0 to 128
[  519.338285][   T27] audit: type=1326 audit(1744530540.509:614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10294 comm="syz.1.1879" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f268d98d169 code=0x7ffc0000
[  519.349485][T10297] FAT-fs (loop6): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  519.414022][   T27] audit: type=1326 audit(1744530540.509:615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10294 comm="syz.1.1879" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f268d98d169 code=0x7ffc0000
[  519.447496][   T27] audit: type=1326 audit(1744530540.509:616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10294 comm="syz.1.1879" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f268d98d169 code=0x7ffc0000
[  519.488317][T10297] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  519.490649][   T27] audit: type=1326 audit(1744530540.509:617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10294 comm="syz.1.1879" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f268d98d169 code=0x7ffc0000
[  519.531374][   T27] audit: type=1326 audit(1744530540.509:618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10294 comm="syz.1.1879" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f268d98d169 code=0x7ffc0000
[  519.553948][   T27] audit: type=1326 audit(1744530540.509:619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10294 comm="syz.1.1879" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f268d98d169 code=0x7ffc0000
[  520.233672][T10309] binder: BC_ACQUIRE_RESULT not supported
[  520.239543][T10309] binder: 10308:10309 ioctl c0306201 2000000003c0 returned -22
[  520.619393][T10320] loop1: detected capacity change from 0 to 1024
[  520.634217][T10320] hfsplus: unable to parse mount options
[  520.964395][    T9] bond0 (unregistering): Released all slaves
[  521.124300][T10223] team0: Port device team_slave_1 added
[  521.182688][   T48] Bluetooth: hci4: command 0x040f tx timeout
[  521.292860][T10325] loop1: detected capacity change from 0 to 256
[  521.346529][T10325] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d)
[  521.369864][T10223] batman_adv: batadv0: Adding interface: batadv_slave_0
[  521.387149][T10223] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  521.514318][T10331] loop8: detected capacity change from 0 to 256
[  521.712589][T10223] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  522.012988][T10223] batman_adv: batadv0: Adding interface: batadv_slave_1
[  522.142485][T10223] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  522.269413][T10223] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  522.425141][T10341] loop6: detected capacity change from 0 to 2048
[  522.472456][T10341] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  522.730125][T10223] device hsr_slave_0 entered promiscuous mode
[  522.784112][T10223] device hsr_slave_1 entered promiscuous mode
[  523.262985][   T48] Bluetooth: hci4: command 0x0419 tx timeout
[  523.374178][   T27] kauditd_printk_skb: 11 callbacks suppressed
[  523.374219][   T27] audit: type=1326 audit(1744530544.799:631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10338 comm="syz.6.1896" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6ace18d169 code=0x0
[  523.823251][T10362] loop8: detected capacity change from 0 to 2048
[  523.925230][T10366] loop6: detected capacity change from 0 to 256
[  523.939907][T10362]  loop8: p1 < > p3
[  523.946319][T10362] loop8: p3 size 134217728 extends beyond EOD, truncated
[  523.986070][T10366] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  524.000847][T10223] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  524.033046][T10223] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  524.089882][T10223] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  524.137585][T10223] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  524.197259][T10378] loop1: detected capacity change from 0 to 512
[  524.231470][T10378] EXT4-fs: Ignoring removed oldalloc option
[  524.249384][T10378] EXT4-fs: Ignoring removed nomblk_io_submit option
[  524.267052][T10378] ext4: Unknown parameter 'nouser_xattr'
[  524.395032][T10383] loop8: detected capacity change from 0 to 512
[  524.414634][T10386] loop6: detected capacity change from 0 to 256
[  524.479503][T10383] EXT4-fs (loop8): revision level too high, forcing read-only mode
[  524.488251][T10383] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002]
[  524.497027][T10383] System zones: 0-1, 15-15, 18-18, 34-34
[  524.504020][T10383] EXT4-fs (loop8): orphan cleanup on readonly fs
[  524.510511][T10383] Quota error (device loop8): v2_read_header: Failed header read: expected=8 got=0
[  524.522079][T10383] EXT4-fs warning (device loop8): ext4_enable_quotas:7037: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  524.536769][T10383] EXT4-fs (loop8): Cannot turn on quotas: error -22
[  524.552433][T10383] EXT4-fs error (device loop8): ext4_validate_block_bitmap:438: comm syz.8.1906: bg 0: block 40: padding at end of block bitmap is not set
[  524.567707][T10383] EXT4-fs error (device loop8) in ext4_mb_clear_bb:6170: Corrupt filesystem
[  524.581781][T10383] EXT4-fs (loop8): 1 truncate cleaned up
[  524.621315][T10383] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[  524.738114][T10386] exFAT-fs (loop6): error, invalid dentry access beyond EOF (clu : 5, eidx : 129)
[  524.764550][T10386] exFAT-fs (loop6): Filesystem has been set read-only
[  524.951969][T10383] EXT4-fs (loop8): unmounting filesystem.
[  525.056086][T10400] loop9: detected capacity change from 0 to 8
[  525.197709][T10400]  loop9: [CUMANA/ADFS] p1 [ADFS] p1
[  525.203317][T10400] loop9: partition table partially beyond EOD, truncated
[  525.215635][T10400] loop9: p1 size 81768186 extends beyond EOD, truncated
[  525.727525][T10403] loop6: detected capacity change from 0 to 1024
[  525.853816][T10410] loop1: detected capacity change from 0 to 128
[  525.918468][T10410] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  525.933728][T10410] ext4 filesystem being mounted at /411/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  526.036129][ T4254] EXT4-fs (loop1): unmounting filesystem.
[  526.159015][T10418] loop1: detected capacity change from 0 to 256
[  526.289828][T10421] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  526.306283][T10421] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  526.318230][T10421] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  526.357245][T10421] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  526.390141][T10421] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  526.594820][T10421] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  526.691344][T10421] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  526.763453][T10421] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  526.810074][T10421] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  526.878533][T10421] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  526.960710][T10421] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  527.108645][T10421] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  527.130984][T10421] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  527.249312][T10421] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  527.365302][T10421] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  527.573696][T10421] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  527.582636][T10421] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  527.601406][T10421] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  527.653451][T10421] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  527.662123][T10421] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  527.732326][T10421] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  527.832366][T10421] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  527.919541][T10421] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  527.934648][T10421] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  528.032319][T10421] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  528.051856][T10421] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  528.123713][T10421] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  528.212420][T10421] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  528.221096][T10421] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  528.258013][T10421] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  528.271814][T10421] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  528.281778][T10421] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  528.296000][T10421] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  528.304879][T10421] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  528.317081][T10421] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  528.325908][T10421] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  528.335492][T10421] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  528.356721][T10421] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  528.370686][T10421] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  528.379349][T10421] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  528.395267][T10421] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  528.404003][T10421] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  528.412825][T10421] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  528.421444][T10421] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  528.430365][T10421] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  528.440893][T10421] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  528.449738][T10421] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  528.459009][T10421] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  528.476709][   T27] audit: type=1800 audit(1744530549.899:632): pid=10421 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1913" name="file1" dev="loop1" ino=1048710 res=0 errno=0
[  528.659443][T10494] loop1: detected capacity change from 0 to 1024
[  528.698810][T10494] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  528.716131][   T27] audit: type=1800 audit(1744530550.129:633): pid=10494 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1915" name="bus" dev="loop1" ino=18 res=0 errno=0
[  528.724749][T10494] EXT4-fs error (device loop1): ext4_get_first_dir_block:3605: inode #11: comm syz.1.1915: directory missing '..'
[  530.280527][T10223] 8021q: adding VLAN 0 to HW filter on device bond0
[  530.341188][ T4254] EXT4-fs (loop1): unmounting filesystem.
[  530.360570][T10477] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  530.388848][T10477] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  530.466602][T10223] 8021q: adding VLAN 0 to HW filter on device team0
[  530.615745][T10507] Bluetooth: MGMT ver 1.22
[  531.284079][T10510] netlink: 52 bytes leftover after parsing attributes in process `syz.7.1920'.
[  531.353636][T10477] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  531.371488][T10477] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  531.406349][T10477] bridge0: port 1(bridge_slave_0) entered blocking state
[  531.413556][T10477] bridge0: port 1(bridge_slave_0) entered forwarding state
[  531.421253][T10511] usb usb5: usbfs: process 10511 (syz.1.1919) did not claim interface 0 before use
[  531.421647][T10477] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  531.445694][T10477] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  531.456397][T10477] bridge0: port 2(bridge_slave_1) entered blocking state
[  531.463562][T10477] bridge0: port 2(bridge_slave_1) entered forwarding state
[  531.471543][T10477] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  531.480742][T10477] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  531.503478][T10477] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  531.542456][T10477] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  531.557045][T10477] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  531.597596][T10477] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  531.642053][T10477] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  531.690188][T10477] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  531.703597][T10477] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  531.738948][T10477] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  531.828011][T10223] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  531.836266][T10520] loop8: detected capacity change from 0 to 512
[  531.891634][T10223] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  531.912831][T10520] EXT4-fs (loop8): filesystem is read-only
[  532.090053][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  532.138065][T10520] EXT4-fs (loop8): filesystem is read-only
[  532.165618][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  532.168338][T10525] loop7: detected capacity change from 0 to 512
[  532.311063][T10520] EXT4-fs (loop8): orphan cleanup on readonly fs
[  532.392622][T10520] EXT4-fs error (device loop8): ext4_orphan_get:1426: comm syz.8.1923: bad orphan inode 16
[  532.403431][T10520] ext4_test_bit(bit=15, block=3) = 0
[  532.408785][T10520] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[  532.756020][T10525] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  532.852989][T10525] ext4 filesystem being mounted at /59/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  532.964530][ T9250] EXT4-fs (loop8): unmounting filesystem.
[  533.106876][ T9115] EXT4-fs (loop7): unmounting filesystem.
[  533.714172][ T5886] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  533.757125][ T5886] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  533.780132][T10552] loop7: detected capacity change from 0 to 736
[  534.352584][T10223] 8021q: adding VLAN 0 to HW filter on device batadv0
[  534.707404][T10573] loop8: detected capacity change from 0 to 2048
[  534.817037][T10573] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  535.729273][T10593] loop6: detected capacity change from 0 to 8192
[  535.742414][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  535.759119][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  535.812427][ T4306] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[  535.850473][ T4346] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  535.859467][T10600] loop1: detected capacity change from 0 to 1024
[  535.861646][ T4346] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  535.888313][T10223] device veth0_vlan entered promiscuous mode
[  535.888322][T10602] loop8: detected capacity change from 0 to 256
[  535.908538][ T4346] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  535.917118][ T4346] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  535.930187][T10602] FAT-fs (loop8): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  535.940012][T10223] device veth1_vlan entered promiscuous mode
[  535.950963][T10600] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  535.952789][T10602] FAT-fs (loop8): Filesystem has been set read-only
[  535.968205][T10602] FAT-fs (loop8): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  535.998451][T10602] FAT-fs (loop8): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  536.012510][ T4306] usb 8-1: Using ep0 maxpacket: 16
[  536.025182][ T4306] usb 8-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 64, changing to 7
[  536.040441][   T27] audit: type=1800 audit(1744530557.459:634): pid=10602 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.8.1942" name="file1" dev="loop8" ino=1048712 res=0 errno=0
[  536.044359][T10223] device veth0_macvtap entered promiscuous mode
[  536.077210][ T4306] usb 8-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[  536.098163][ T4306] usb 8-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  536.120555][T10481] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  536.141721][ T4306] usb 8-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  536.152663][T10481] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  536.156710][ T4306] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  536.168523][ T4306] usb 8-1: Product: syz
[  536.172909][ T4306] usb 8-1: Manufacturer: syz
[  536.177943][ T4306] usb 8-1: SerialNumber: syz
[  536.189788][T10481] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  536.199327][T10481] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  536.214174][T10223] device veth1_macvtap entered promiscuous mode
[  536.230679][T10481] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  536.250443][T10481] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  536.293858][T10223] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  536.348572][T10223] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  536.378103][T10223] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  536.411298][T10223] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  536.437248][T10223] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  536.457757][T10223] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  536.475980][T10223] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  536.489151][T10223] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  536.510458][T10223] batman_adv: batadv0: Interface activated: batadv_slave_0
[  536.521677][T10223] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  536.532590][T10223] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  536.542617][T10223] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  536.553141][T10223] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  536.563151][T10223] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  536.573718][T10223] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  536.583616][T10223] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  536.594345][T10223] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  536.606157][T10223] batman_adv: batadv0: Interface activated: batadv_slave_1
[  536.617829][T10223] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  536.628356][T10223] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  536.638811][T10223] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  536.647613][T10223] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  536.802732][T10481] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  536.813680][T10481] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  536.830075][T10481] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  536.847738][T10481] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  538.842409][ T4293] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  538.878989][ T4293] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  538.908673][ T4293] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  538.941416][ T4293] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  539.469123][ T4306] usb 8-1: 2:1 : UAC_AS_GENERAL descriptor not found
[  539.529978][ T4293] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  539.538216][ T4293] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  539.543609][ T4306] usb 8-1: unit 5 not found!
[  539.672067][T10630] loop6: detected capacity change from 0 to 512
[  539.698010][ T4306] usb 8-1: USB disconnect, device number 5
[  539.782008][T10630] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  539.811142][T10635] loop1: detected capacity change from 0 to 2048
[  539.849885][T10630] EXT4-fs (loop6): 1 truncate cleaned up
[  539.860487][T10630] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  539.870727][T10635] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  540.542230][   T27] audit: type=1326 audit(1744530561.939:635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10634 comm="syz.1.1953" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f268d98d169 code=0x0
[  541.023188][ T8935] EXT4-fs error (device loop6): ext4_map_blocks:634: inode #2: block 13: comm syz-executor: lblock 0 mapped to illegal pblock 13 (length 1)
[  541.032570][ T8935] EXT4-fs warning (device loop6): htree_dirblock_to_tree:1083: inode #2: lblock 0: comm syz-executor: error -117 reading directory block
[  541.032623][ T8935] EXT4-fs error (device loop6): __ext4_get_inode_loc:4506: comm syz-executor: Invalid inode table block 2145121010 in block_group 0
[  541.042707][ T8935] EXT4-fs error (device loop6) in ext4_reserve_inode_write:5885: Corrupt filesystem
[  541.066099][ T8935] EXT4-fs error (device loop6): ext4_dirty_inode:6089: inode #2: comm syz-executor: mark_inode_dirty error
[  541.136927][T10654] loop9: detected capacity change from 0 to 256
[  541.178145][T10654] exFAT-fs (loop9): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  541.226171][   T46] EXT4-fs error (device loop6): __ext4_get_inode_loc:4506: comm kworker/u4:3: Invalid inode table block 2145121010 in block_group 0
[  541.230471][ T8935] EXT4-fs (loop6): unmounting filesystem.
[  541.314166][T10662] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  541.336275][T10667] loop8: detected capacity change from 0 to 512
[  541.337895][T10667] EXT4-fs: Ignoring removed oldalloc option
[  541.375105][T10644] tty tty3: ldisc open failed (-12), clearing slot 2
[  541.410217][T10667] EXT4-fs (loop8): 1 truncate cleaned up
[  541.427816][T10667] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[  541.446598][T10667] EXT4-fs error (device loop8): htree_dirblock_to_tree:1112: inode #2: block 13: comm syz.8.1958: bad entry in directory: rec_len is smaller than minimal - offset=76, inode=0, rec_len=0, size=1024 fake=0
[  541.507418][T10667] EXT4-fs (loop8): Remounting filesystem read-only
[  541.628462][ T9250] EXT4-fs (loop8): unmounting filesystem.
[  541.720893][ T4346] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  541.791917][   T27] audit: type=1326 audit(1744530563.209:636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10679 comm="syz.9.1961" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14ad78d169 code=0x7ffc0000
[  541.867788][   T27] audit: type=1326 audit(1744530563.219:637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10679 comm="syz.9.1961" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f14ad78d169 code=0x7ffc0000
[  541.893668][ T4346] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  541.961567][   T27] audit: type=1326 audit(1744530563.219:638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10679 comm="syz.9.1961" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14ad78d169 code=0x7ffc0000
[  542.014633][   T27] audit: type=1326 audit(1744530563.219:639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10679 comm="syz.9.1961" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14ad78d169 code=0x7ffc0000
[  542.041184][ T4346] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  542.080688][   T27] audit: type=1326 audit(1744530563.219:640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10679 comm="syz.9.1961" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f14ad78d169 code=0x7ffc0000
[  542.138912][   T27] audit: type=1326 audit(1744530563.219:641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10679 comm="syz.9.1961" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14ad78d169 code=0x7ffc0000
[  542.228414][ T4346] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  542.243155][   T27] audit: type=1326 audit(1744530563.219:642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10679 comm="syz.9.1961" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14ad78d169 code=0x7ffc0000
[  542.318046][   T27] audit: type=1326 audit(1744530563.219:643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10679 comm="syz.9.1961" exe="/root/syz-executor" sig=0 arch=c000003e syscall=115 compat=0 ip=0x7f14ad78d169 code=0x7ffc0000
[  542.368809][T10694] loop9: detected capacity change from 0 to 2048
[  542.394951][   T27] audit: type=1326 audit(1744530563.219:644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10679 comm="syz.9.1961" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14ad78d169 code=0x7ffc0000
[  542.420736][T10694] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  542.485127][   T27] audit: type=1326 audit(1744530563.219:645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10679 comm="syz.9.1961" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14ad78d169 code=0x7ffc0000
[  542.732820][T10704] loop7: detected capacity change from 0 to 256
[  542.993459][ T4264] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  543.035545][ T4264] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  543.045286][ T4264] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  543.054152][ T4264] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  543.063950][ T4264] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  543.071261][ T4264] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  543.294778][T10726] loop7: detected capacity change from 0 to 512
[  543.370105][T10726] ext4: Bad value for 'debug_want_extra_isize'
[  543.471915][T10726] loop7: detected capacity change from 0 to 256
[  543.500084][T10726] exfat: Deprecated parameter 'debug'
[  543.513780][T10726] exfat: Unknown parameter 'block_validity'
[  543.735695][T10740] loop8: detected capacity change from 0 to 256
[  543.742956][T10740] exfat: Deprecated parameter 'namecase'
[  543.831867][T10740] exFAT-fs (loop8): failed to load upcase table (idx : 0x00010000, chksum : 0xe3f33698, utbl_chksum : 0xe619d30d)
[  543.976134][T10749] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci0/hci0:200/input10
[  544.830450][T10711] chnl_net:caif_netlink_parms(): no params data found
[  544.911878][T10769] loop8: detected capacity change from 0 to 128
[  545.103779][   T48] Bluetooth: hci0: command 0x0409 tx timeout
[  545.554975][T10791] loop7: detected capacity change from 0 to 512
[  545.562070][T10791] EXT4-fs: Ignoring removed mblk_io_submit option
[  545.666826][T10711] bridge0: port 1(bridge_slave_0) entered blocking state
[  545.678358][T10711] bridge0: port 1(bridge_slave_0) entered disabled state
[  545.689392][T10711] device bridge_slave_0 entered promiscuous mode
[  545.705961][T10711] bridge0: port 2(bridge_slave_1) entered blocking state
[  545.718478][T10711] bridge0: port 2(bridge_slave_1) entered disabled state
[  545.729648][T10711] device bridge_slave_1 entered promiscuous mode
[  545.806385][T10791] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  545.820361][T10791] ext4 filesystem being mounted at /75/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  546.858595][T10803] loop8: detected capacity change from 0 to 736
[  546.866671][ T4346] device hsr_slave_0 left promiscuous mode
[  546.899805][T10804] loop9: detected capacity change from 0 to 16
[  547.107427][T10804] erofs: (device loop9): z_erofs_load_lz4_config: too large lz4 pclusterblks 16832
[  547.261457][   T48] Bluetooth: hci0: command 0x041b tx timeout
[  547.520047][ T4346] device hsr_slave_1 left promiscuous mode
[  547.556146][ T4346] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  547.577928][ T4346] batman_adv: batadv0: Removing interface: batadv_slave_0
[  547.619033][ T4346] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  547.639039][ T4346] batman_adv: batadv0: Removing interface: batadv_slave_1
[  547.650875][ T4346] device bridge_slave_1 left promiscuous mode
[  547.664937][ T4346] bridge0: port 2(bridge_slave_1) entered disabled state
[  547.678562][ T4346] device bridge_slave_0 left promiscuous mode
[  547.688674][ T4346] bridge0: port 1(bridge_slave_0) entered disabled state
[  547.823902][ T4346] device veth1_macvtap left promiscuous mode
[  547.911040][T10817] loop8: detected capacity change from 0 to 2048
[  547.924812][ T4346] device veth0_macvtap left promiscuous mode
[  547.936177][ T4346] device veth1_vlan left promiscuous mode
[  547.942275][ T4346] device veth0_vlan left promiscuous mode
[  548.348776][T10817]  loop8: p1 < > p3
[  548.534283][T10817] loop8: p3 size 134217728 extends beyond EOD, truncated
[  549.072679][T10811] 9pnet_fd: Insufficient options for proto=fd
[  549.859781][ T4346] team0 (unregistering): Port device team_slave_1 removed
[  549.946992][ T4346] team0 (unregistering): Port device team_slave_0 removed
[  550.032606][   T22] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  550.051330][   T48] Bluetooth: hci0: command 0x040f tx timeout
[  550.093867][ T4346] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  550.152097][ T4346] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  550.203316][ T7184] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[  550.313918][   T22] usb 2-1: Using ep0 maxpacket: 32
[  550.324218][   T22] usb 2-1: config 0 has no interfaces?
[  550.340365][   T22] usb 2-1: New USB device found, idVendor=1557, idProduct=8150, bcdDevice=29.ed
[  550.351514][   T22] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  550.359634][   T22] usb 2-1: Product: syz
[  550.370259][   T22] usb 2-1: Manufacturer: syz
[  550.375029][   T22] usb 2-1: SerialNumber: syz
[  550.388711][   T22] usb 2-1: config 0 descriptor??
[  550.392341][ T7184] usb 10-1: Using ep0 maxpacket: 32
[  550.413151][ T7184] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  550.437239][ T7184] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  550.447208][ T7184] usb 10-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  550.456938][ T7184] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  550.470005][ T7184] usb 10-1: config 0 descriptor??
[  550.901311][ T4346] bond0 (unregistering): Released all slaves
[  550.901308][ T7184] savu 0003:1E7D:2D5A.0005: hiddev0,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.9-1/input0
[  551.001616][T10711] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  551.029161][T10711] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  551.110209][T10711] team0: Port device team_slave_0 added
[  551.126742][ T9115] EXT4-fs (loop7): unmounting filesystem.
[  551.155131][T10711] team0: Port device team_slave_1 added
[  551.206757][ T4296] usb 10-1: USB disconnect, device number 2
[  551.274999][T10711] batman_adv: batadv0: Adding interface: batadv_slave_0
[  551.288882][T10711] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  551.340612][T10839] loop7: detected capacity change from 0 to 2048
[  551.354710][T10711] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  551.367985][T10711] batman_adv: batadv0: Adding interface: batadv_slave_1
[  551.376715][T10711] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  551.403229][T10711] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  551.420493][T10839]  loop7: p1 < > p3
[  551.426580][T10839] loop7: p3 size 134217728 extends beyond EOD, truncated
[  551.550975][T10711] device hsr_slave_0 entered promiscuous mode
[  551.582559][T10711] device hsr_slave_1 entered promiscuous mode
[  551.591357][T10711] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  551.600122][T10711] Cannot create hsr debugfs directory
[  551.915897][T10856] loop9: detected capacity change from 0 to 1764
[  552.062305][   T48] Bluetooth: hci0: command 0x0419 tx timeout
[  552.200233][T10860] Bluetooth: MGMT ver 1.22
[  552.997736][T10866] loop7: detected capacity change from 0 to 256
[  553.005393][T10866] exFAT-fs (loop7): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  553.016586][T10866] exFAT-fs (loop7): Medium has reported failures. Some data may be lost.
[  553.035792][T10866] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  553.043557][ T4296] usb 2-1: USB disconnect, device number 9
[  553.683756][T10884] loop7: detected capacity change from 0 to 16
[  553.797837][T10884] erofs: (device loop7): z_erofs_load_lz4_config: too large lz4 pclusterblks 16832
[  554.343153][   T27] kauditd_printk_skb: 31 callbacks suppressed
[  554.343169][   T27] audit: type=1326 audit(1744530575.769:677): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10888 comm="syz.8.2009" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e5f8d169 code=0x7ffc0000
[  554.427993][T10892] loop7: detected capacity change from 0 to 512
[  554.460656][   T27] audit: type=1326 audit(1744530575.799:678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10888 comm="syz.8.2009" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e5f8d169 code=0x7ffc0000
[  554.522971][T10892] EXT4-fs (loop7): mounting ext3 file system using the ext4 subsystem
[  554.570527][T10892] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c119, mo2=0082]
[  554.579165][   T27] audit: type=1326 audit(1744530575.799:679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10888 comm="syz.8.2009" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa5e5f8d169 code=0x7ffc0000
[  554.607480][T10892] System zones: 1-12
[  554.650054][   T27] audit: type=1326 audit(1744530575.799:680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10888 comm="syz.8.2009" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e5f8d169 code=0x7ffc0000
[  554.664965][T10892] EXT4-fs error (device loop7): ext4_xattr_ibody_find:2186: inode #15: comm syz.7.2010: corrupted in-inode xattr
[  554.679478][   T27] audit: type=1326 audit(1744530575.799:681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10888 comm="syz.8.2009" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e5f8d169 code=0x7ffc0000
[  554.716031][T10904] loop1: detected capacity change from 0 to 512
[  554.722465][   T27] audit: type=1326 audit(1744530575.799:682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10888 comm="syz.8.2009" exe="/root/syz-executor" sig=0 arch=c000003e syscall=282 compat=0 ip=0x7fa5e5f8d169 code=0x7ffc0000
[  554.746346][T10892] EXT4-fs error (device loop7): ext4_orphan_get:1405: comm syz.7.2010: couldn't read orphan inode 15 (err -117)
[  554.757457][T10900] loop9: detected capacity change from 0 to 2048
[  554.799366][T10892] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[  554.807967][   T27] audit: type=1326 audit(1744530575.799:683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10888 comm="syz.8.2009" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e5f8d169 code=0x7ffc0000
[  554.834057][T10900]  loop9: p1 < > p3
[  554.839092][T10900] loop9: p3 size 134217728 extends beyond EOD, truncated
[  554.901976][T10904] EXT4-fs (loop1): 1 orphan inode deleted
[  554.942214][T10904] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  554.950198][T10897] loop9: detected capacity change from 0 to 2048
[  554.978039][T10904] ext4 filesystem being mounted at /434/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  554.990041][ T4293] Quota error (device loop1): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  555.005506][   T27] audit: type=1326 audit(1744530575.799:684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10888 comm="syz.8.2009" exe="/root/syz-executor" sig=0 arch=c000003e syscall=38 compat=0 ip=0x7fa5e5f8d169 code=0x7ffc0000
[  555.052319][ T4293] EXT4-fs error (device loop1): ext4_release_dquot:6825: comm kworker/u4:5: Failed to release dquot type 1
[  555.335509][   T27] audit: type=1326 audit(1744530575.799:685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10888 comm="syz.8.2009" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e5f8d169 code=0x7ffc0000
[  555.769496][ T9115] EXT4-fs (loop7): unmounting filesystem.
[  555.799259][T10711] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  555.839174][ T4254] EXT4-fs (loop1): unmounting filesystem.
[  555.848175][T10711] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  555.905832][T10711] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  555.960147][T10711] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  556.019788][T10917] loop1: detected capacity change from 0 to 512
[  556.045005][T10917] EXT4-fs: Ignoring removed mblk_io_submit option
[  556.108588][T10917] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  556.227776][T10917] ext4 filesystem being mounted at /435/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  556.357535][T10711] 8021q: adding VLAN 0 to HW filter on device bond0
[  556.440831][T10481] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  556.498026][T10481] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  556.515452][T10711] 8021q: adding VLAN 0 to HW filter on device team0
[  556.567807][T10481] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  556.691812][T10481] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  556.901127][T10481] bridge0: port 1(bridge_slave_0) entered blocking state
[  556.908364][T10481] bridge0: port 1(bridge_slave_0) entered forwarding state
[  557.010594][T10481] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  557.069415][T10481] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  557.133780][T10481] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  557.142678][T10481] bridge0: port 2(bridge_slave_1) entered blocking state
[  557.145674][ T4254] EXT4-fs (loop1): unmounting filesystem.
[  557.149788][T10481] bridge0: port 2(bridge_slave_1) entered forwarding state
[  557.169218][T10481] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  557.194678][T10940] loop8: detected capacity change from 0 to 128
[  557.215445][T10481] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  557.397567][T10711] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  557.408350][T10711] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  557.426175][T10947] loop1: detected capacity change from 0 to 256
[  557.441610][T10940] UDF-fs: error (device loop8): udf_read_tagged: read failed, block=256, location=256
[  557.452064][ T4483] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  557.490504][T10940] UDF-fs: error (device loop8): udf_bitmap_new_block: bitmap for partition 0 corrupted (block 264 marked as free, partition length is 40)
[  557.578781][ T4483] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  558.445434][ T4483] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  558.459074][ T4483] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  558.469511][ T4483] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  558.481295][ T4483] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  558.496415][ T4483] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  558.821145][ T4483] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  559.033409][ T4483] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  559.074763][T10950] loop7: detected capacity change from 0 to 1024
[  559.082537][ T4483] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  559.170571][T10950] trusted_key: encrypted_key: insufficient parameters specified
[  559.270558][T10961] loop9: detected capacity change from 0 to 512
[  559.301352][T10961] EXT4-fs: Ignoring removed nobh option
[  559.348671][T10961] EXT4-fs: Ignoring removed mblk_io_submit option
[  559.418640][T10961] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[  559.524716][   T27] kauditd_printk_skb: 13 callbacks suppressed
[  559.524733][   T27] audit: type=1800 audit(1744530580.939:699): pid=10961 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.2021" name="file1" dev="loop9" ino=15 res=0 errno=0
[  559.844155][T10223] EXT4-fs (loop9): unmounting filesystem.
[  560.012969][ T4293] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  560.024018][ T4293] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  560.048352][T10984] netlink: 64 bytes leftover after parsing attributes in process `syz.8.2026'.
[  560.070946][T10711] 8021q: adding VLAN 0 to HW filter on device batadv0
[  560.098991][T10987] 9pnet: p9_errstr2errno: server reported unknown error í<jqzÂPL¿�òóØáß<Òp—µ ×#‡ý»vëgÚB·B§Ì
[  560.514083][T10996] loop7: detected capacity change from 0 to 512
[  560.581141][T10996] EXT4-fs (loop7): 1 orphan inode deleted
[  560.588412][T10996] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  560.597980][ T4483] Quota error (device loop7): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  560.648928][T10996] ext4 filesystem being mounted at /85/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  560.679923][ T4483] EXT4-fs error (device loop7): ext4_release_dquot:6825: comm kworker/u4:14: Failed to release dquot type 1
[  560.727340][T11003] loop9: detected capacity change from 0 to 2048
[  560.838806][T11003]  loop9: p1 < > p3
[  560.854584][T11003] loop9: p3 size 134217728 extends beyond EOD, truncated
[  560.996392][T11009] EXT4-fs error (device loop7): ext4_lookup:1862: inode #2: comm syz.7.2029: deleted inode referenced: 16
[  561.557548][ T9115] EXT4-fs (loop7): unmounting filesystem.
[  561.719320][T10481] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  561.738805][T10481] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  561.764949][T11018] loop7: detected capacity change from 0 to 256
[  561.902721][T10479] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  561.922405][T10479] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  562.110901][T10711] device veth0_vlan entered promiscuous mode
[  562.432609][T10479] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  562.442728][T10479] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  562.514139][T10711] device veth1_vlan entered promiscuous mode
[  562.527546][T11027] loop9: detected capacity change from 0 to 512
[  562.540550][T11027] EXT4-fs: Ignoring removed mblk_io_submit option
[  562.618699][T11027] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[  562.639647][T10479] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  562.667902][T11027] ext4 filesystem being mounted at /23/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  562.681780][T10479] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  562.697967][T11034] loop1: detected capacity change from 0 to 1024
[  562.709195][ T1272] ieee802154 phy0 wpan0: encryption failed: -22
[  562.716464][ T1272] ieee802154 phy1 wpan1: encryption failed: -22
[  562.717233][T10479] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  562.790627][T10479] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  562.818292][T10711] device veth0_macvtap entered promiscuous mode
[  562.827035][T11038] trusted_key: encrypted_key: insufficient parameters specified
[  562.878923][T10711] device veth1_macvtap entered promiscuous mode
[  562.930534][T10479] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  562.949032][T10479] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  563.539376][T10223] EXT4-fs (loop9): unmounting filesystem.
[  563.554353][T10711] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  563.575677][T10711] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  563.630910][T10711] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  563.662486][T10711] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  563.685917][T10711] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  563.707027][T11044] loop8: detected capacity change from 0 to 256
[  563.727065][T10711] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  563.737270][T10711] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  563.758159][T10711] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  563.780518][T11044] FAT-fs (loop8): Directory bread(block 64) failed
[  563.793628][T11044] FAT-fs (loop8): Directory bread(block 65) failed
[  563.800294][T11044] FAT-fs (loop8): Directory bread(block 66) failed
[  563.804197][T10711] batman_adv: batadv0: Interface activated: batadv_slave_0
[  563.846856][T11044] FAT-fs (loop8): Directory bread(block 67) failed
[  563.859320][T10711] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  563.884803][T11044] FAT-fs (loop8): Directory bread(block 68) failed
[  563.891698][T11044] FAT-fs (loop8): Directory bread(block 69) failed
[  563.911904][T11044] FAT-fs (loop8): Directory bread(block 70) failed
[  563.912276][T10711] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  563.925725][T11044] FAT-fs (loop8): Directory bread(block 71) failed
[  563.940642][T10711] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  563.948338][T11044] FAT-fs (loop8): Directory bread(block 72) failed
[  563.962229][T10711] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  563.971199][T11044] FAT-fs (loop8): Directory bread(block 73) failed
[  563.985145][T10711] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  564.009047][T10711] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  564.060863][T10711] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  564.116988][T10711] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  564.172453][T10711] batman_adv: batadv0: Interface activated: batadv_slave_1
[  564.224073][T10481] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  564.234177][T10481] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  564.244300][T10481] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  564.253281][T10481] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  564.512976][T10711] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  564.574127][T10711] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  564.593871][T11044] syz.8.2036: attempt to access beyond end of device
[  564.593871][T11044] loop8: rw=2049, sector=1320, nr_sectors = 8 limit=256
[  564.613606][T10711] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  564.651563][T10711] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  564.655021][T11059] loop7: detected capacity change from 0 to 512
[  564.727113][T11059] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  564.765821][T11065] loop1: detected capacity change from 0 to 2048
[  564.773126][T11065] EXT4-fs: Ignoring removed bh option
[  564.850087][T11059] ext4 filesystem being mounted at /88/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  564.915833][ T4332] kworker/u4:7: attempt to access beyond end of device
[  564.915833][ T4332] loop8: rw=1, sector=1224, nr_sectors = 4 limit=256
[  564.936497][ T4332] kworker/u4:7: attempt to access beyond end of device
[  564.936497][ T4332] loop8: rw=1, sector=1328, nr_sectors = 60 limit=256
[  564.958649][T11065] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  565.004534][ T4332] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  565.041689][ T4332] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  565.291186][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  565.292916][ T4254] EXT4-fs (loop1): unmounting filesystem.
[  565.501220][T11079] EXT4-fs error (device loop7): ext4_do_update_inode:5224: inode #2: comm syz.7.2041: corrupted inode contents
[  565.634261][ T4332] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  565.650649][T11079] EXT4-fs error (device loop7): ext4_dirty_inode:6089: inode #2: comm syz.7.2041: mark_inode_dirty error
[  565.656109][ T4332] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  565.674332][ T4332] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  566.358038][T11079] EXT4-fs error (device loop7): ext4_do_update_inode:5224: inode #2: comm syz.7.2041: corrupted inode contents
[  566.435884][T11093] loop9: detected capacity change from 0 to 1024
[  566.490348][T11079] EXT4-fs error (device loop7): __ext4_ext_dirty:202: inode #2: comm syz.7.2041: mark_inode_dirty error
[  566.649881][T11093] hfsplus: xattr search failed
[  566.739667][ T9115] EXT4-fs (loop7): unmounting filesystem.
[  566.749275][T11099] loop4: detected capacity change from 0 to 512
[  566.759229][T11091] loop8: detected capacity change from 0 to 512
[  566.813326][T11091] EXT4-fs: Ignoring removed nomblk_io_submit option
[  566.857347][T11091] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  566.887359][T11099] EXT4-fs (loop4): 1 orphan inode deleted
[  566.894354][T10223] hfsplus: node 4:3 still has 1 user(s)!
[  566.902415][T10479] Quota error (device loop4): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  566.923391][T11099] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  566.946320][T10479] EXT4-fs error (device loop4): ext4_release_dquot:6825: comm kworker/u4:27: Failed to release dquot type 1
[  568.042506][T11099] ext4 filesystem being mounted at /1/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  568.069747][T11091] EXT4-fs: failed to create workqueue
[  568.087004][T11091] EXT4-fs (loop8): mount failed
[  568.795993][T11099] EXT4-fs error (device loop4): ext4_lookup:1862: inode #2: comm syz.4.2048: deleted inode referenced: 16
[  568.943426][T10711] EXT4-fs (loop4): unmounting filesystem.
[  569.077834][T11118] loop1: detected capacity change from 0 to 512
[  569.315758][T11127] loop4: detected capacity change from 0 to 512
[  569.532438][T11118] EXT4-fs error (device loop1): ext4_get_branch:178: inode #13: block 2: comm syz.1.2054: invalid block
[  569.588929][T11118] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.2054: invalid indirect mapped block 10 (level 1)
[  569.649893][T11118] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.2054: invalid indirect mapped block 8 (level 1)
[  569.713437][T11118] EXT4-fs (loop1): 1 truncate cleaned up
[  569.724314][T11118] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  570.101774][   T48] Bluetooth: hci1: command 0x0406 tx timeout
[  572.104897][T11127] EXT4-fs: failed to create workqueue
[  572.110335][T11127] EXT4-fs (loop4): mount failed
[  572.181798][T11144] loop7: detected capacity change from 0 to 512
[  572.203682][T11144] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  572.334102][ T4254] EXT4-fs (loop1): unmounting filesystem.
[  572.429026][T11144] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  572.484111][T11144] ext4 filesystem being mounted at /90/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  572.519467][T11155] loop9: detected capacity change from 0 to 512
[  572.571909][T11155] EXT4-fs: Ignoring removed mblk_io_submit option
[  572.715366][T11161] loop8: detected capacity change from 0 to 2048
[  573.615637][T11155] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[  573.646632][ T9115] EXT4-fs (loop7): unmounting filesystem.
[  573.655755][T11155] ext4 filesystem being mounted at /30/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  573.671750][T11161] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[  573.717527][T11165] netlink: 64 bytes leftover after parsing attributes in process `syz.4.2057'.
[  573.743895][T11161] ext4 filesystem being mounted at /78/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  573.765693][T11176] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2061'.
[  573.982657][   T27] audit: type=1800 audit(1744530595.409:700): pid=11161 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.2060" name="file0" dev="loop8" ino=13 res=0 errno=0
[  575.042326][T11179] device team_slave_0 entered promiscuous mode
[  575.242940][T11179] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2062'.
[  575.258204][T10223] EXT4-fs (loop9): unmounting filesystem.
[  575.260443][T11179] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  575.300065][ T9250] EXT4-fs (loop8): unmounting filesystem.
[  576.113205][T11190] loop1: detected capacity change from 0 to 512
[  576.122784][T11191] loop9: detected capacity change from 0 to 1024
[  576.188413][T11190] EXT4-fs: Ignoring removed nomblk_io_submit option
[  576.207273][T11197] trusted_key: encrypted_key: insufficient parameters specified
[  576.237919][T11179] batman_adv: batadv0: Removing interface: batadv_slave_1
[  576.252084][T11190] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  576.369682][T11190] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #16: comm syz.1.2064: invalid indirect mapped block 83886080 (level 1)
[  576.418459][T11190] EXT4-fs (loop1): Remounting filesystem read-only
[  576.453637][T11190] EXT4-fs (loop1): 1 orphan inode deleted
[  576.463887][T11190] EXT4-fs (loop1): 1 truncate cleaned up
[  576.667812][T11178] device team_slave_0 left promiscuous mode
[  576.677387][T11189] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  577.013331][T11190] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  577.293666][T11208] loop4: detected capacity change from 0 to 512
[  577.373163][T11208] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  577.382598][   T27] audit: type=1326 audit(1744530598.799:701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11212 comm="syz.9.2070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14ad78d169 code=0x7ffc0000
[  577.392689][T11215] loop7: detected capacity change from 0 to 512
[  577.460139][T11219] loop8: detected capacity change from 0 to 128
[  577.577733][T11219] UDF-fs: error (device loop8): udf_read_tagged: read failed, block=256, location=256
[  577.588406][   T27] audit: type=1326 audit(1744530598.799:702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11212 comm="syz.9.2070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14ad78d169 code=0x7ffc0000
[  578.952725][T11151] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  578.962434][T11208] ext4 filesystem being mounted at /5/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  578.985427][T11151] EXT4-fs (loop1): Remounting filesystem read-only
[  578.990475][T11219] UDF-fs: error (device loop8): udf_bitmap_new_block: bitmap for partition 0 corrupted (block 264 marked as free, partition length is 40)
[  579.057748][T11215] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  579.081599][   T27] audit: type=1326 audit(1744530598.799:703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11212 comm="syz.9.2070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=94 compat=0 ip=0x7f14ad78d169 code=0x7ffc0000
[  579.162294][T11215] ext4 filesystem being mounted at /92/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  579.207179][ T4254] EXT4-fs (loop1): unmounting filesystem.
[  579.231453][   T27] audit: type=1326 audit(1744530598.799:704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11212 comm="syz.9.2070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14ad78d169 code=0x7ffc0000
[  579.254933][T11215] EXT4-fs warning (device loop7): verify_group_input:169: Last group not full
[  579.340155][   T27] audit: type=1326 audit(1744530598.799:705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11212 comm="syz.9.2070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14ad78d169 code=0x7ffc0000
[  579.406254][   T27] audit: type=1326 audit(1744530598.799:706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11212 comm="syz.9.2070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f14ad78d169 code=0x7ffc0000
[  579.450699][T10711] EXT4-fs (loop4): unmounting filesystem.
[  579.530112][   T27] audit: type=1326 audit(1744530598.799:707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11212 comm="syz.9.2070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14ad78d169 code=0x7ffc0000
[  580.352326][   T27] audit: type=1326 audit(1744530598.799:708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11212 comm="syz.9.2070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14ad78d169 code=0x7ffc0000
[  581.245403][   T27] audit: type=1326 audit(1744530598.799:709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11212 comm="syz.9.2070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f14ad78d169 code=0x7ffc0000
[  581.278031][   T27] audit: type=1326 audit(1744530598.799:710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11212 comm="syz.9.2070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14ad78d169 code=0x7ffc0000
[  581.300749][   T27] audit: type=1326 audit(1744530598.799:711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11212 comm="syz.9.2070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f14ad78d169 code=0x7ffc0000
[  581.323182][   T27] audit: type=1326 audit(1744530598.799:712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11212 comm="syz.9.2070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14ad78d169 code=0x7ffc0000
[  581.485014][ T9115] EXT4-fs (loop7): unmounting filesystem.
[  581.799399][T11245] snd_dummy snd_dummy.0: control 0:0:3:syz0:0 is already present
[  584.617815][T11263] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  584.750768][T11270] loop7: detected capacity change from 0 to 16
[  584.789910][T11270] erofs: (device loop7): mounted with root inode @ nid 36.
[  586.439105][T11293] snd_dummy snd_dummy.0: control 0:0:3:syz0:0 is already present
[  587.572052][T11297] loop4: detected capacity change from 0 to 256
[  587.613704][T11298] netlink: 4300 bytes leftover after parsing attributes in process `syz.1.2090'.
[  587.629019][T11297] FAT-fs (loop4): bogus sectors per cluster 223
[  587.649370][T11297] FAT-fs (loop4): Can't find a valid FAT filesystem
[  587.969367][T11313] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  587.971766][T11312] loop7: detected capacity change from 0 to 2048
[  587.992260][T11313] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  588.002495][ T7184] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  588.071217][T11312]  loop7: p1 < > p3
[  588.076422][T11312] loop7: p3 size 134217728 extends beyond EOD, truncated
[  588.192382][ T7184] usb 5-1: Using ep0 maxpacket: 8
[  588.205203][ T7184] usb 5-1: config 0 has an invalid interface number: 52 but max is 0
[  588.226177][ T7184] usb 5-1: config 0 has an invalid descriptor of length 174, skipping remainder of the config
[  588.232839][T11312] loop7: detected capacity change from 0 to 2048
[  588.262193][ T7184] usb 5-1: config 0 has no interface number 0
[  588.294955][ T7184] usb 5-1: config 0 interface 52 altsetting 1 endpoint 0x8A has an invalid bInterval 133, changing to 11
[  588.328059][ T7184] usb 5-1: config 0 interface 52 altsetting 1 endpoint 0x8A has invalid maxpacket 33993, setting to 1024
[  588.359744][ T7184] usb 5-1: config 0 interface 52 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  588.387340][ T7184] usb 5-1: config 0 interface 52 has no altsetting 0
[  588.422267][ T7184] usb 5-1: New USB device found, idVendor=06cb, idProduct=0003, bcdDevice=e8.00
[  588.440437][ T7184] usb 5-1: New USB device strings: Mfr=22, Product=0, SerialNumber=0
[  588.457782][ T7184] usb 5-1: Manufacturer: syz
[  588.480909][ T7184] usb 5-1: config 0 descriptor??
[  588.705997][ T7184] input: syz as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.52/input/input11
[  589.300692][ T4306] usb 5-1: USB disconnect, device number 3
[  589.538203][T11336] loop7: detected capacity change from 0 to 2048
[  590.483066][ T4264] Bluetooth: hci3: command 0x0406 tx timeout
[  590.652109][T11336] EXT4-fs: Ignoring removed bh option
[  590.778619][T11336] EXT4-fs: Ignoring removed nomblk_io_submit option
[  590.785569][T11336] EXT4-fs: Ignoring removed nobh option
[  590.970027][T11336] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[  591.067879][T11350] loop4: detected capacity change from 0 to 128
[  591.121019][T11350] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[  591.170784][T11350] UDF-fs: error (device loop4): udf_bitmap_new_block: bitmap for partition 0 corrupted (block 264 marked as free, partition length is 40)
[  591.501422][ T9115] EXT4-fs (loop7): unmounting filesystem.
[  591.838989][T11371] loop8: detected capacity change from 0 to 128
[  591.897906][   T27] kauditd_printk_skb: 28 callbacks suppressed
[  591.897923][   T27] audit: type=1800 audit(1744530613.319:741): pid=11371 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.2107" name="file1" dev="loop8" ino=1048727 res=0 errno=0
[  591.930138][T11374] loop1: detected capacity change from 0 to 512
[  591.968536][T11374] EXT4-fs: Ignoring removed oldalloc option
[  592.025829][T11374] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  592.048491][   T27] audit: type=1800 audit(1744530613.359:742): pid=11371 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.2107" name="file1" dev="loop8" ino=1048727 res=0 errno=0
[  592.110280][T11379] loop4: detected capacity change from 0 to 512
[  592.170684][T10465] FAT-fs (loop8): error, invalid FAT chain (i_pos 548, last_block 8)
[  592.304943][T11374] EXT4-fs (loop1): 1 truncate cleaned up
[  592.310647][T11374] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  592.330157][T10465] FAT-fs (loop8): Filesystem has been set read-only
[  593.026772][T10465] FAT-fs (loop8): error, corrupted file size (i_pos 548, 522)
[  593.066302][T11379] EXT4-fs (loop4): 1 orphan inode deleted
[  593.066338][T11379] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  593.066646][T11379] ext4 filesystem being mounted at /11/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  593.242224][T11374] loop1: detected capacity change from 512 to 64
[  593.266228][T11396] loop9: detected capacity change from 0 to 128
[  593.348296][T11396] UDF-fs: error (device loop9): udf_read_tagged: read failed, block=256, location=256
[  593.425277][T11374] syz.1.2108: attempt to access beyond end of device
[  593.425277][T11374] loop1: rw=2049, sector=74, nr_sectors = 24 limit=64
[  593.613944][T11374] EXT4-fs warning (device loop1): ext4_end_bio:347: I/O error 10 writing to inode 15 starting block 37)
[  593.635602][T11396] UDF-fs: error (device loop9): udf_bitmap_new_block: bitmap for partition 0 corrupted (block 264 marked as free, partition length is 40)
[  593.670506][T11374] Buffer I/O error on device loop1, logical block 37
[  593.677776][T11374] Buffer I/O error on device loop1, logical block 38
[  593.684479][T11374] Buffer I/O error on device loop1, logical block 39
[  593.691180][T11374] Buffer I/O error on device loop1, logical block 40
[  593.819888][T10711] EXT4-fs (loop4): unmounting filesystem.
[  593.834269][T11409] fuse: Invalid rootmode
[  593.842434][T11374] Buffer I/O error on device loop1, logical block 41
[  593.849166][T11374] Buffer I/O error on device loop1, logical block 42
[  593.855874][T11374] Buffer I/O error on device loop1, logical block 43
[  593.862582][T11374] Buffer I/O error on device loop1, logical block 44
[  593.941238][T11374] Buffer I/O error on device loop1, logical block 45
[  593.948005][T11374] Buffer I/O error on device loop1, logical block 46
[  594.141990][ T4254] EXT4-fs error (device loop1): mb_free_blocks:1815: group 0, inode 16: block 35:freeing already freed block (bit 34); block bitmap corrupt.
[  594.145703][   T27] audit: type=1326 audit(1744530615.569:743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11415 comm="syz.8.2119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e5f8d169 code=0x7ffc0000
[  594.216131][ T4254] EXT4-fs (loop1): unmounting filesystem.
[  594.249151][   T27] audit: type=1326 audit(1744530615.569:744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11415 comm="syz.8.2119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e5f8d169 code=0x7ffc0000
[  594.319580][   T27] audit: type=1326 audit(1744530615.609:745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11415 comm="syz.8.2119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=326 compat=0 ip=0x7fa5e5f8d169 code=0x7ffc0000
[  594.373223][T11419] loop9: detected capacity change from 0 to 16
[  594.410172][T11421] loop1: detected capacity change from 0 to 1024
[  594.416835][T11419] erofs: (device loop9): mounted with root inode @ nid 36.
[  594.425051][T11421] EXT4-fs: inline encryption not supported
[  594.430964][T11421] EXT4-fs: Ignoring removed orlov option
[  594.436741][   T27] audit: type=1326 audit(1744530615.609:746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11415 comm="syz.8.2119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e5f8d169 code=0x7ffc0000
[  594.487684][   T27] audit: type=1326 audit(1744530615.609:747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11415 comm="syz.8.2119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e5f8d169 code=0x7ffc0000
[  594.537197][T11421] EXT4-fs (loop1): warning: checktime reached, running e2fsck is recommended
[  594.565284][T11421] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  594.675807][T11437] binder: 11436:11437 ioctl c0306201 0 returned -14
[  594.722302][T11421] loop1: detected capacity change from 1024 to 0
[  594.760037][    C0] I/O error, dev loop1, sector 18 op 0x0:(READ) flags 0x3000 phys_seg 1 prio class 2
[  594.772417][T11441] EXT4-fs error (device loop1): ext4_get_inode_loc:4644: inode #18: block 9: comm syz.1.2120: unable to read itable block
[  594.787990][    C0] I/O error, dev loop1, sector 20 op 0x0:(READ) flags 0x80700 phys_seg 4 prio class 2
[  594.797702][    C0] I/O error, dev loop1, sector 10 op 0x0:(READ) flags 0x80700 phys_seg 4 prio class 2
[  594.831619][T10473] loop: Write error at byte offset 9223372036854776831, length 1024.
[  594.840417][    C0] I/O error, dev loop1, sector 2 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  594.849983][    C0] I/O error, dev loop1, sector 2 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  594.860188][    C0] Buffer I/O error on dev loop1, logical block 1, lost sync page write
[  594.868501][T11441] EXT4-fs (loop1): I/O error while writing superblock
[  594.900787][T11441] EXT4-fs (loop1): Remounting filesystem read-only
[  594.909983][T11441] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5885: IO failure
[  594.922414][    T9] loop: Write error at byte offset 9223372036854776831, length 1024.
[  594.933635][T11448] loop8: detected capacity change from 0 to 128
[  594.945352][    C0] I/O error, dev loop1, sector 2 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  594.954926][    C0] I/O error, dev loop1, sector 2 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  594.964282][T11450] loop4: detected capacity change from 0 to 512
[  594.964402][    C0] Buffer I/O error on dev loop1, logical block 1, lost sync page write
[  594.978140][T11450] EXT4-fs: Ignoring removed oldalloc option
[  594.985222][T11441] EXT4-fs (loop1): I/O error while writing superblock
[  594.993349][T11448] UDF-fs: error (device loop8): udf_read_tagged: read failed, block=256, location=256
[  594.998660][T11441] EXT4-fs (loop1): Remounting filesystem read-only
[  595.018278][T11441] EXT4-fs error (device loop1): ext4_dirty_inode:6089: inode #18: comm syz.1.2120: mark_inode_dirty error
[  595.018375][T11450] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  595.038804][T11448] UDF-fs: error (device loop8): udf_bitmap_new_block: bitmap for partition 0 corrupted (block 264 marked as free, partition length is 40)
[  595.054353][T10473] loop: Write error at byte offset 9223372036854776831, length 1024.
[  595.062904][    C0] I/O error, dev loop1, sector 2 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  595.068155][T11450] EXT4-fs (loop4): 1 truncate cleaned up
[  595.072436][    C0] I/O error, dev loop1, sector 2 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  595.072469][    C0] Buffer I/O error on dev loop1, logical block 1, lost sync page write
[  595.072564][T11441] EXT4-fs (loop1): I/O error while writing superblock
[  595.072582][T11441] EXT4-fs (loop1): Remounting filesystem read-only
[  595.123319][    C1] I/O error, dev loop1, sector 10 op 0x0:(READ) flags 0x80700 phys_seg 4 prio class 2
[  595.141289][T11421] EXT4-fs error (device loop1): ext4_get_inode_loc:4644: inode #18: block 9: comm syz.1.2120: unable to read itable block
[  595.142872][T11450] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  595.177238][T10473] loop: Write error at byte offset 9223372036854776831, length 1024.
[  595.201387][    C0] Buffer I/O error on dev loop1, logical block 1, lost sync page write
[  595.211603][T11421] EXT4-fs (loop1): I/O error while writing superblock
[  595.218531][T11421] EXT4-fs (loop1): Remounting filesystem read-only
[  595.229951][T11450] loop4: detected capacity change from 512 to 64
[  595.280838][T11450] syz.4.2130: attempt to access beyond end of device
[  595.280838][T11450] loop4: rw=2049, sector=74, nr_sectors = 20 limit=64
[  595.308212][T11450] EXT4-fs warning (device loop4): ext4_end_bio:347: I/O error 10 writing to inode 15 starting block 37)
[  595.995268][T11450] syz.4.2130: attempt to access beyond end of device
[  595.995268][T11450] loop4: rw=34817, sector=74, nr_sectors = 2 limit=64
[  596.017517][ T4254] EXT4-fs error (device loop1): ext4_get_inode_loc:4644: inode #2: block 5: comm syz-executor: unable to read itable block
[  597.037747][    T9] loop: Write error at byte offset 9223372036854776831, length 1024.
[  597.136196][    C1] Buffer I/O error on dev loop1, logical block 1, lost sync page write
[  597.144944][ T4254] EXT4-fs (loop1): I/O error while writing superblock
[  597.296647][ T4254] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5885: IO failure
[  597.306319][   T75] loop: Write error at byte offset 9223372036854776831, length 1024.
[  597.317127][T11469] loop9: detected capacity change from 0 to 512
[  597.336365][T11469] EXT4-fs: Ignoring removed mblk_io_submit option
[  597.383172][    C1] Buffer I/O error on dev loop1, logical block 1, lost sync page write
[  597.401895][T11469] EXT4-fs error (device loop9): ext4_get_branch:178: inode #13: block 2: comm syz.9.2133: invalid block
[  597.473453][ T4254] EXT4-fs error (device loop1): ext4_dirty_inode:6089: inode #2: comm syz-executor: mark_inode_dirty error
[  597.509127][T10711] EXT4-fs error (device loop4): mb_free_blocks:1815: group 0, inode 16: block 35:freeing already freed block (bit 34); block bitmap corrupt.
[  597.532007][T11469] EXT4-fs error (device loop9): ext4_free_branches:1030: inode #13: comm syz.9.2133: invalid indirect mapped block 10 (level 1)
[  597.554111][    T9] loop: Write error at byte offset 9223372036854776831, length 1024.
[  597.582285][    C1] Buffer I/O error on dev loop1, logical block 1, lost sync page write
[  597.587644][T11469] EXT4-fs error (device loop9): ext4_free_branches:1030: inode #13: comm syz.9.2133: invalid indirect mapped block 8 (level 1)
[  597.616634][T10711] EXT4-fs (loop4): unmounting filesystem.
[  597.668564][T11469] EXT4-fs (loop9): 1 truncate cleaned up
[  597.674625][T10479] EXT4-fs error (device loop1): __ext4_get_inode_loc_noinmem:4629: inode #18: block 9: comm kworker/u4:27: unable to read itable block
[  597.692242][T11469] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: none.
[  597.700965][    T9] loop: Write error at byte offset 9223372036854776831, length 1024.
[  597.715279][T11480] loop8: detected capacity change from 0 to 1024
[  597.740498][    C1] Buffer I/O error on dev loop1, logical block 1, lost sync page write
[  597.757708][T10479] EXT4-fs error (device loop1): __ext4_get_inode_loc_noinmem:4629: inode #2: block 5: comm kworker/u4:27: unable to read itable block
[  597.781556][   T75] loop: Write error at byte offset 9223372036854776831, length 1024.
[  597.797790][T11480] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[  597.822278][    C1] Buffer I/O error on dev loop1, logical block 1, lost sync page write
[  597.863696][T10477] loop: Write error at byte offset 9223372036854776831, length 1024.
[  597.871959][    C1] Buffer I/O error on dev loop1, logical block 1, lost sync page write
[  597.914355][T10223] EXT4-fs (loop9): unmounting filesystem.
[  598.045054][ T9250] EXT4-fs (loop8): unmounting filesystem.
[  598.237573][T11504] loop7: detected capacity change from 0 to 128
[  598.271946][T11504] UDF-fs: error (device loop7): udf_read_tagged: read failed, block=256, location=256
[  598.338348][T11504] UDF-fs: error (device loop7): udf_bitmap_new_block: bitmap for partition 0 corrupted (block 264 marked as free, partition length is 40)
[  598.461749][T11508] loop9: detected capacity change from 0 to 2048
[  598.516326][T11508]  loop9: p1 < > p3
[  598.536422][T11508] loop9: p3 size 134217728 extends beyond EOD, truncated
[  598.561981][T11514] loop8: detected capacity change from 0 to 512
[  598.595686][T11514] EXT4-fs: Ignoring removed oldalloc option
[  598.626869][T11514] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  598.657234][    T9] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  598.683213][T11514] EXT4-fs (loop8): 1 truncate cleaned up
[  598.699136][T11514] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[  598.747213][T11508] loop9: detected capacity change from 0 to 2048
[  598.829883][    T9] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  598.849214][T11514] loop8: detected capacity change from 512 to 64
[  598.906830][T11514] syz.8.2147: attempt to access beyond end of device
[  598.906830][T11514] loop8: rw=2049, sector=74, nr_sectors = 20 limit=64
[  598.929765][T11514] EXT4-fs warning (device loop8): ext4_end_bio:347: I/O error 10 writing to inode 15 starting block 37)
[  598.942081][T11514] buffer_io_error: 12 callbacks suppressed
[  598.942098][T11514] Buffer I/O error on device loop8, logical block 37
[  598.973342][T11514] Buffer I/O error on device loop8, logical block 38
[  599.022444][T11514] Buffer I/O error on device loop8, logical block 39
[  599.029178][T11514] Buffer I/O error on device loop8, logical block 40
[  599.035889][T11514] Buffer I/O error on device loop8, logical block 41
[  599.042615][T11514] Buffer I/O error on device loop8, logical block 42
[  599.134626][T11514] Buffer I/O error on device loop8, logical block 43
[  599.141377][T11514] Buffer I/O error on device loop8, logical block 44
[  599.148084][T11514] Buffer I/O error on device loop8, logical block 45
[  599.154798][T11514] Buffer I/O error on device loop8, logical block 46
[  599.173872][    T9] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  599.254521][T11520] syz.8.2147: attempt to access beyond end of device
[  599.254521][T11520] loop8: rw=34817, sector=74, nr_sectors = 2 limit=64
[  599.387705][    T9] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  599.515377][ T9250] EXT4-fs error (device loop8): mb_free_blocks:1815: group 0, inode 16: block 35:freeing already freed block (bit 34); block bitmap corrupt.
[  599.629866][ T9250] EXT4-fs (loop8): unmounting filesystem.
[  599.859894][T11550] loop8: detected capacity change from 0 to 512
[  599.895148][ T4264] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  599.906316][ T4264] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  599.914809][ T4264] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  599.923920][ T4264] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  599.931486][ T4264] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  599.950330][ T4264] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  599.978669][T11550] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  600.048205][T11555] loop7: detected capacity change from 0 to 128
[  600.073774][T11555] UDF-fs: error (device loop7): udf_read_tagged: read failed, block=256, location=256
[  600.142081][T11550] EXT4-fs (loop8): 1 truncate cleaned up
[  600.152549][T11550] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[  600.327334][ T9250] EXT4-fs (loop8): unmounting filesystem.
[  600.400441][T11545] chnl_net:caif_netlink_parms(): no params data found
[  600.499958][T11566] loop7: detected capacity change from 0 to 512
[  600.533903][T11566] EXT4-fs: Ignoring removed mblk_io_submit option
[  600.599778][T11566] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  600.614761][T11566] ext4 filesystem being mounted at /115/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  601.460991][T11587] loop4: detected capacity change from 0 to 2048
[  601.575174][ T9115] EXT4-fs (loop7): unmounting filesystem.
[  601.597986][T11587]  loop4: p1 < > p3
[  601.613101][T11587] loop4: p3 size 134217728 extends beyond EOD, truncated
[  601.706871][T11545] bridge0: port 1(bridge_slave_0) entered blocking state
[  601.719006][T11545] bridge0: port 1(bridge_slave_0) entered disabled state
[  601.750340][T11545] device bridge_slave_0 entered promiscuous mode
[  601.829103][T11545] bridge0: port 2(bridge_slave_1) entered blocking state
[  601.838720][T11545] bridge0: port 2(bridge_slave_1) entered disabled state
[  601.879514][T11585] loop4: detected capacity change from 0 to 2048
[  601.883585][T11545] device bridge_slave_1 entered promiscuous mode
[  602.069143][   T48] Bluetooth: hci2: command 0x0409 tx timeout
[  602.217323][T11545] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  602.245971][T11610] loop8: detected capacity change from 0 to 128
[  602.272568][T11610] UDF-fs: error (device loop8): udf_read_tagged: read failed, block=256, location=256
[  602.543826][T11613] loop4: detected capacity change from 0 to 2048
[  602.799610][T11545] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  602.842065][T11613] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  602.922081][T11631] loop9: detected capacity change from 0 to 512
[  602.929457][T11631] EXT4-fs: Ignoring removed mblk_io_submit option
[  603.010141][    T9] device hsr_slave_0 left promiscuous mode
[  603.025629][T11631] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[  603.052929][T11631] ext4 filesystem being mounted at /52/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  603.063832][    T9] device hsr_slave_1 left promiscuous mode
[  603.070383][    T9] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  603.079093][    T9] batman_adv: batadv0: Removing interface: batadv_slave_0
[  603.087629][    T9] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  603.123715][    T9] batman_adv: batadv0: Removing interface: batadv_slave_1
[  603.272768][    T9] device bridge_slave_1 left promiscuous mode
[  603.279090][    T9] bridge0: port 2(bridge_slave_1) entered disabled state
[  603.292855][T11623] EXT4-fs error (device loop4): ext4_validate_block_bitmap:429: comm ext4lazyinit: bg 0: block 2: invalid block bitmap
[  603.347051][    T9] device bridge_slave_0 left promiscuous mode
[  603.353362][    T9] bridge0: port 1(bridge_slave_0) entered disabled state
[  603.373713][T11623] EXT4-fs (loop4): Remounting filesystem read-only
[  603.469103][T10711] EXT4-fs (loop4): unmounting filesystem.
[  603.677750][    T9] device veth1_macvtap left promiscuous mode
[  603.687256][    T9] device veth0_macvtap left promiscuous mode
[  603.889599][    T9] device veth1_vlan left promiscuous mode
[  603.922394][    T9] device veth0_vlan left promiscuous mode
[  604.076727][T11652] loop4: detected capacity change from 0 to 512
[  604.101748][T11652] EXT4-fs: Ignoring removed mblk_io_submit option
[  604.152320][   T48] Bluetooth: hci2: command 0x041b tx timeout
[  604.177921][T11654] loop7: detected capacity change from 0 to 2048
[  604.188385][T11652] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  604.219357][T11652] ext4 filesystem being mounted at /25/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  604.232916][T11654]  loop7: p1 < > p3
[  604.238005][T11654] loop7: p3 size 134217728 extends beyond EOD, truncated
[  604.481811][T11654] kvm: emulating exchange as write
[  605.183743][T10711] EXT4-fs (loop4): unmounting filesystem.
[  605.460290][T11677] loop7: detected capacity change from 0 to 128
[  605.479739][T11677] UDF-fs: error (device loop7): udf_read_tagged: read failed, block=256, location=256
[  605.653240][T11684] loop7: detected capacity change from 0 to 128
[  605.701911][T11684] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  605.747836][T11684] ext4 filesystem being mounted at /123/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  605.863314][    T9] team0 (unregistering): Port device team_slave_1 removed
[  605.970726][    T9] team0 (unregistering): Port device team_slave_0 removed
[  606.003108][ T9115] EXT4-fs (loop7): unmounting filesystem.
[  606.062827][    T9] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  606.174225][    T9] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  606.242594][   T48] Bluetooth: hci2: command 0x040f tx timeout
[  607.080189][T11718] loop7: detected capacity change from 0 to 2048
[  607.101165][T11718] UDF-fs: error (device loop7): udf_read_tagged: read failed, block=513, location=513
[  607.175945][T11718] loop7: detected capacity change from 0 to 256
[  607.176016][    T9] bond0 (unregistering): Released all slaves
[  607.183629][T11718] exfat: Deprecated parameter 'namecase'
[  607.201124][T11718] exfat: Deprecated parameter 'namecase'
[  607.214543][T11718] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0xfcc0b04e, utbl_chksum : 0xe619d30d)
[  607.311825][T11545] team0: Port device team_slave_0 added
[  607.321151][T11545] team0: Port device team_slave_1 added
[  607.457024][T10223] EXT4-fs (loop9): unmounting filesystem.
[  607.503236][T11545] batman_adv: batadv0: Adding interface: batadv_slave_0
[  607.510243][T11545] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  607.603099][T11722] loop7: detected capacity change from 0 to 2048
[  607.623254][T11545] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  607.640689][T11722]  loop7: p1 < > p3
[  607.645740][T11722] loop7: p3 size 134217728 extends beyond EOD, truncated
[  607.668472][T11729] loop9: detected capacity change from 0 to 512
[  607.684814][T11545] batman_adv: batadv0: Adding interface: batadv_slave_1
[  607.712809][T11732] loop4: detected capacity change from 0 to 128
[  607.714380][T11729] EXT4-fs: Ignoring removed oldalloc option
[  607.721958][T11732] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[  607.725512][T11545] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  607.765940][T11545] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  607.776678][T11729] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  607.899089][T11729] EXT4-fs (loop9): 1 truncate cleaned up
[  607.932513][T11729] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[  607.960737][T11545] device hsr_slave_0 entered promiscuous mode
[  607.974364][T11545] device hsr_slave_1 entered promiscuous mode
[  608.054866][T11545] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  608.080526][T11545] Cannot create hsr debugfs directory
[  608.087035][T11729] loop9: detected capacity change from 512 to 64
[  608.302528][   T48] Bluetooth: hci2: command 0x0419 tx timeout
[  608.330240][T10223] EXT4-fs error (device loop9): mb_free_blocks:1815: group 0, inode 16: block 35:freeing already freed block (bit 34); block bitmap corrupt.
[  608.405614][T11759] loop7: detected capacity change from 0 to 512
[  608.430213][T11759] EXT4-fs: Ignoring removed mblk_io_submit option
[  608.463239][T10223] EXT4-fs (loop9): unmounting filesystem.
[  608.525618][T11759] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  608.557709][T11759] ext4 filesystem being mounted at /131/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  609.902980][ T9115] EXT4-fs (loop7): unmounting filesystem.
[  610.196743][T11791] loop4: detected capacity change from 0 to 2048
[  610.402612][T11798] loop8: detected capacity change from 0 to 512
[  610.409597][T11798] EXT4-fs: Ignoring removed oldalloc option
[  610.449516][T11798] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  610.534597][T11798] EXT4-fs (loop8): 1 truncate cleaned up
[  610.537096][T11791]  loop4: p1 < > p3
[  610.543827][T11798] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[  610.661344][T11791] loop4: p3 size 134217728 extends beyond EOD, truncated
[  610.671618][T11805] loop7: detected capacity change from 0 to 128
[  610.690492][T11805] UDF-fs: error (device loop7): udf_read_tagged: read failed, block=256, location=256
[  610.702677][T11798] loop8: detected capacity change from 512 to 64
[  610.744586][T11798] syz.8.2209: attempt to access beyond end of device
[  610.744586][T11798] loop8: rw=2049, sector=74, nr_sectors = 20 limit=64
[  610.771143][T11798] EXT4-fs warning (device loop8): ext4_end_bio:347: I/O error 10 writing to inode 15 starting block 37)
[  610.771184][T11798] Buffer I/O error on device loop8, logical block 37
[  610.771202][T11798] Buffer I/O error on device loop8, logical block 38
[  610.771236][T11798] Buffer I/O error on device loop8, logical block 39
[  610.771250][T11798] Buffer I/O error on device loop8, logical block 40
[  610.771263][T11798] Buffer I/O error on device loop8, logical block 41
[  610.771276][T11798] Buffer I/O error on device loop8, logical block 42
[  610.771297][T11798] Buffer I/O error on device loop8, logical block 43
[  610.771310][T11798] Buffer I/O error on device loop8, logical block 44
[  610.771322][T11798] Buffer I/O error on device loop8, logical block 45
[  610.771334][T11798] Buffer I/O error on device loop8, logical block 46
[  611.138098][T11814] loop9: detected capacity change from 0 to 1764
[  611.229134][ T9250] EXT4-fs error (device loop8): mb_free_blocks:1815: group 0, inode 16: block 35:freeing already freed block (bit 34); block bitmap corrupt.
[  611.261557][T11821] loop7: detected capacity change from 0 to 512
[  611.278926][ T9250] EXT4-fs (loop8): unmounting filesystem.
[  611.286166][T11821] EXT4-fs: Ignoring removed mblk_io_submit option
[  611.408785][T11821] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  611.563914][T11821] ext4 filesystem being mounted at /134/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  612.959009][T11852] loop4: detected capacity change from 0 to 256
[  613.161658][T11855] loop8: detected capacity change from 0 to 128
[  613.174447][T11855] UDF-fs: error (device loop8): udf_read_tagged: read failed, block=256, location=256
[  613.215454][ T9115] EXT4-fs (loop7): unmounting filesystem.
[  613.231780][T11847] loop4: detected capacity change from 0 to 512
[  614.076984][T11863] loop8: detected capacity change from 0 to 2048
[  614.337424][T11545] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  614.573425][T11545] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  614.578482][T11863]  loop8: p1 < > p3
[  614.603278][T11863] loop8: p3 size 134217728 extends beyond EOD, truncated
[  614.608861][T11545] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  614.690005][T11545] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  614.738736][T11876] loop7: detected capacity change from 0 to 512
[  614.848617][T11877] netlink: 64 bytes leftover after parsing attributes in process `syz.9.2226'.
[  614.859573][T11876] EXT4-fs: Ignoring removed oldalloc option
[  614.910652][T11876] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  615.036171][T11876] EXT4-fs (loop7): 1 truncate cleaned up
[  615.062325][T11876] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  616.295547][T11545] 8021q: adding VLAN 0 to HW filter on device bond0
[  616.330861][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  616.342966][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  616.386560][T11545] 8021q: adding VLAN 0 to HW filter on device team0
[  616.403701][T11876] loop7: detected capacity change from 512 to 64
[  616.452388][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  616.466178][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  616.484250][   T27] audit: type=1800 audit(1744530637.909:748): pid=11888 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.2227" name="file1" dev="loop7" ino=15 res=0 errno=0
[  616.536381][    T9] bridge0: port 1(bridge_slave_0) entered blocking state
[  616.536453][    T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[  616.537052][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  616.537705][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  616.538250][    T9] bridge0: port 2(bridge_slave_1) entered blocking state
[  616.538310][    T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[  616.538925][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  616.552869][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  616.644856][T11876] syz.7.2227: attempt to access beyond end of device
[  616.644856][T11876] loop7: rw=2049, sector=74, nr_sectors = 24 limit=64
[  616.712937][T11876] EXT4-fs warning (device loop7): ext4_end_bio:347: I/O error 10 writing to inode 15 starting block 37)
[  616.735842][T11896] loop4: detected capacity change from 0 to 512
[  616.745445][ T4293] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  616.758920][T11876] Buffer I/O error on device loop7, logical block 37
[  616.765639][T11876] Buffer I/O error on device loop7, logical block 38
[  616.772343][T11876] Buffer I/O error on device loop7, logical block 39
[  616.779018][T11876] Buffer I/O error on device loop7, logical block 40
[  616.793147][ T4293] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  616.812953][T11896] EXT4-fs: Ignoring removed mblk_io_submit option
[  616.848063][ T4293] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  616.871065][T11896] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  616.881113][ T4293] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  616.912584][T11876] Buffer I/O error on device loop7, logical block 41
[  616.919329][T11876] Buffer I/O error on device loop7, logical block 42
[  616.926037][T11876] Buffer I/O error on device loop7, logical block 43
[  616.928066][T11896] ext4 filesystem being mounted at /39/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  616.932711][T11876] Buffer I/O error on device loop7, logical block 44
[  616.933167][T11876] Buffer I/O error on device loop7, logical block 45
[  616.956651][T11876] Buffer I/O error on device loop7, logical block 46
[  616.985167][ T4293] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  617.018839][ T9115] EXT4-fs error (device loop7): mb_free_blocks:1815: group 0, inode 16: block 35:freeing already freed block (bit 34); block bitmap corrupt.
[  617.047388][ T4293] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  617.163123][T11545] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  617.201851][ T9115] EXT4-fs (loop7): unmounting filesystem.
[  617.244951][T11545] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  617.308023][ T4293] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  617.322709][ T4293] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  617.556130][ T4293] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  617.632004][ T4293] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  617.689121][ T4293] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  617.813836][T11908] netlink: 24 bytes leftover after parsing attributes in process `syz.9.2235'.
[  617.990726][T10711] EXT4-fs (loop4): unmounting filesystem.
[  618.259565][T11930] loop7: detected capacity change from 0 to 512
[  619.302733][T11930] EXT4-fs: Ignoring removed mblk_io_submit option
[  619.989396][T11930] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  620.005032][T11930] ext4 filesystem being mounted at /140/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  621.428175][T11945] netlink: 64 bytes leftover after parsing attributes in process `syz.8.2240'.
[  621.464392][ T9115] EXT4-fs (loop7): unmounting filesystem.
[  621.470811][T10479] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  621.489604][T10479] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  621.543761][T11545] 8021q: adding VLAN 0 to HW filter on device batadv0
[  621.631572][T11957] loop7: detected capacity change from 0 to 512
[  621.673174][T11957] EXT4-fs: Ignoring removed oldalloc option
[  621.689137][T11957] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  621.734774][T11957] EXT4-fs (loop7): 1 truncate cleaned up
[  621.762266][T11957] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  621.861688][T11966] loop4: detected capacity change from 0 to 512
[  621.871696][T11966] EXT4-fs: Ignoring removed mblk_io_submit option
[  621.882498][T11957] loop7: detected capacity change from 512 to 64
[  621.938954][T11966] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  621.964998][T11957] syz.7.2243: attempt to access beyond end of device
[  621.964998][T11957] loop7: rw=2049, sector=74, nr_sectors = 20 limit=64
[  622.032067][T11966] ext4 filesystem being mounted at /43/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  622.098038][T11957] EXT4-fs warning (device loop7): ext4_end_bio:347: I/O error 10 writing to inode 15 starting block 37)
[  622.229827][T11957] buffer_io_error: 2 callbacks suppressed
[  622.229848][T11957] Buffer I/O error on device loop7, logical block 37
[  622.306269][T11957] Buffer I/O error on device loop7, logical block 38
[  622.313652][T11957] Buffer I/O error on device loop7, logical block 39
[  622.320374][T11957] Buffer I/O error on device loop7, logical block 40
[  622.324558][T11978] loop9: detected capacity change from 0 to 2048
[  622.327049][T11957] Buffer I/O error on device loop7, logical block 41
[  622.340090][T11957] Buffer I/O error on device loop7, logical block 42
[  622.349691][T11957] Buffer I/O error on device loop7, logical block 43
[  622.356416][T11957] Buffer I/O error on device loop7, logical block 44
[  622.363115][T11957] Buffer I/O error on device loop7, logical block 45
[  622.369816][T11957] Buffer I/O error on device loop7, logical block 46
[  622.639051][T11978]  loop9: p1 < > p3
[  622.872499][T11978] loop9: p3 size 134217728 extends beyond EOD, truncated
[  622.928575][ T9115] EXT4-fs error (device loop7): mb_free_blocks:1815: group 0, inode 16: block 35:freeing already freed block (bit 34); block bitmap corrupt.
[  623.041826][T10711] EXT4-fs (loop4): unmounting filesystem.
[  623.114609][ T9115] EXT4-fs (loop7): unmounting filesystem.
[  623.222312][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  623.246406][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  623.297628][T12000] loop4: detected capacity change from 0 to 1024
[  623.299049][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  623.329111][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  623.329890][   T27] audit: type=1804 audit(1744530644.749:749): pid=12000 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.2251" name="/newroot/44/file2/bus" dev="loop4" ino=25 res=1 errno=0
[  623.354626][T11545] device veth0_vlan entered promiscuous mode
[  623.384485][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  623.393322][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  623.934568][T11545] device veth1_vlan entered promiscuous mode
[  623.974077][T12010] loop9: detected capacity change from 0 to 256
[  624.146804][ T1272] ieee802154 phy0 wpan0: encryption failed: -22
[  624.153204][ T1272] ieee802154 phy1 wpan1: encryption failed: -22
[  624.183706][T11545] device veth0_macvtap entered promiscuous mode
[  624.791536][T10473] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  624.840986][T10473] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  624.845478][T12022] loop4: detected capacity change from 0 to 2048
[  624.902845][T10473] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  624.932055][T12025] netlink: 64 bytes leftover after parsing attributes in process `syz.7.2254'.
[  624.942570][T12022]  loop4: p1 < > p3
[  624.951415][T12022] loop4: p3 size 134217728 extends beyond EOD, truncated
[  624.961318][T10473] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  625.030514][T10473] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  625.048388][T12029] loop9: detected capacity change from 0 to 256
[  625.066057][T11545] device veth1_macvtap entered promiscuous mode
[  625.137196][T11545] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  625.167489][T12033] loop8: detected capacity change from 0 to 1024
[  625.191315][T12034] loop9: detected capacity change from 0 to 16
[  625.213588][T12034] erofs: (device loop9): mounted with root inode @ nid 36.
[  625.220915][T11545] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  625.251242][T11545] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  625.291851][T11545] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  625.317139][T11545] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  625.354469][T11545] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  625.408422][T11545] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  625.416081][T12037] loop7: detected capacity change from 0 to 512
[  625.426199][T11545] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  625.446488][T12037] EXT4-fs: Ignoring removed oldalloc option
[  625.453996][T11545] batman_adv: batadv0: Interface activated: batadv_slave_0
[  625.464047][T12037] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  625.474408][T12019] loop4: detected capacity change from 0 to 2048
[  625.485528][T12037] EXT4-fs (loop7): 1 truncate cleaned up
[  625.491703][T12037] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  625.504329][T10471] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  625.519373][T10471] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  625.551383][T11545] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  625.562253][T12037] loop7: detected capacity change from 512 to 64
[  625.594396][T11545] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  625.606567][T11545] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  625.617819][T11545] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  625.628020][T11545] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  625.648046][T11545] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  625.686111][T12037] syz.7.2260: attempt to access beyond end of device
[  625.686111][T12037] loop7: rw=2049, sector=74, nr_sectors = 24 limit=64
[  625.704679][T11545] batman_adv: batadv0: Interface activated: batadv_slave_1
[  625.738852][T11545] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  625.764422][T12037] EXT4-fs warning (device loop7): ext4_end_bio:347: I/O error 10 writing to inode 15 starting block 37)
[  625.776017][T11545] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  625.809764][T11545] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  625.838767][T11545] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  625.900863][T10479] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  625.941018][T10479] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  625.957788][ T9115] EXT4-fs error (device loop7): mb_free_blocks:1815: group 0, inode 16: block 35:freeing already freed block (bit 34); block bitmap corrupt.
[  626.091937][ T9115] EXT4-fs (loop7): unmounting filesystem.
[  626.154277][T10465] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  626.203098][T10465] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  626.276379][T10479] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  627.369563][T10465] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  627.423432][T10465] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  627.468086][T10479] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  627.607417][T12065] loop8: detected capacity change from 0 to 2048
[  627.657363][T12065] UDF-fs: error (device loop8): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  627.725296][T12065] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  627.810858][T12075] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2269'.
[  628.128190][T12085] loop4: detected capacity change from 0 to 512
[  628.136569][T12085] EXT4-fs: Ignoring removed oldalloc option
[  628.155558][T12085] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  628.205071][T12085] EXT4-fs (loop4): 1 truncate cleaned up
[  628.212593][T12085] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  628.273377][T12085] loop4: detected capacity change from 512 to 64
[  628.301039][T12085] syz.4.2273: attempt to access beyond end of device
[  628.301039][T12085] loop4: rw=2049, sector=74, nr_sectors = 20 limit=64
[  628.325316][T12085] EXT4-fs warning (device loop4): ext4_end_bio:347: I/O error 10 writing to inode 15 starting block 37)
[  628.368422][T12085] buffer_io_error: 12 callbacks suppressed
[  628.368443][T12085] Buffer I/O error on device loop4, logical block 37
[  628.399876][T12085] Buffer I/O error on device loop4, logical block 38
[  628.408055][T12085] Buffer I/O error on device loop4, logical block 39
[  628.414762][T12085] Buffer I/O error on device loop4, logical block 40
[  628.421563][T12085] Buffer I/O error on device loop4, logical block 41
[  628.428269][T12085] Buffer I/O error on device loop4, logical block 42
[  628.443622][T12085] Buffer I/O error on device loop4, logical block 43
[  628.450351][T12085] Buffer I/O error on device loop4, logical block 44
[  628.457043][T12085] Buffer I/O error on device loop4, logical block 45
[  628.463736][T12085] Buffer I/O error on device loop4, logical block 46
[  628.487566][T12085] syz.4.2273: attempt to access beyond end of device
[  628.487566][T12085] loop4: rw=34817, sector=74, nr_sectors = 2 limit=64
[  629.678224][T12103] loop8: detected capacity change from 0 to 2048
[  629.750098][T10711] EXT4-fs error (device loop4): mb_free_blocks:1815: group 0, inode 16: block 35:freeing already freed block (bit 34); block bitmap corrupt.
[  629.753390][T12103]  loop8: p1 < > p3
[  629.821213][T10711] EXT4-fs (loop4): unmounting filesystem.
[  629.831213][T12103] loop8: p3 size 134217728 extends beyond EOD, truncated
[  630.026235][T12115] loop4: detected capacity change from 0 to 256
[  630.180389][T12115] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  630.203085][T12115] FAT-fs (loop4): Filesystem has been set read-only
[  630.222588][T12115] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  630.252260][T12115] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  630.279762][   T27] audit: type=1800 audit(1744530651.699:750): pid=12115 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.2277" name="file1" dev="loop4" ino=1048732 res=0 errno=0
[  630.339113][T12125] loop5: detected capacity change from 0 to 2048
[  630.400375][T12125] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  630.571348][   T27] audit: type=1800 audit(1744530651.989:751): pid=12125 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.2281" name="file1" dev="loop5" ino=1346 res=0 errno=0
[  630.604090][T12125] ------------[ cut here ]------------
[  630.609963][T12125] WARNING: CPU: 1 PID: 12125 at fs/inode.c:332 drop_nlink+0xbb/0x100
[  630.618522][T12125] Modules linked in:
[  630.622503][T12125] CPU: 1 PID: 12125 Comm: syz.5.2281 Not tainted 6.1.134-syzkaller #0
[  630.630706][T12125] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  630.640828][T12125] RIP: 0010:drop_nlink+0xbb/0x100
[  630.645939][T12125] Code: 49 8b 1e 48 8d bb c0 07 00 00 be 08 00 00 00 e8 6b e7 e9 ff f0 48 ff 83 c0 07 00 00 5b 41 5c 41 5e 41 5f 5d c3 e8 d5 83 92 ff <0f> 0b eb 89 44 89 e1 80 e1 07 80 c1 03 38 c1 0f 8c 62 ff ff ff 4c
[  630.665645][T12125] RSP: 0018:ffffc90004f17650 EFLAGS: 00010287
[  630.671746][T12125] RAX: ffffffff81f8267b RBX: 1ffff1100a9dd101 RCX: 0000000000080000
[  630.679785][T12125] RDX: ffffc9000dcbb000 RSI: 0000000000004880 RDI: 0000000000004881
[  630.687822][T12125] RBP: 0000000000000000 R08: ffffffff81f825ff R09: fffffbfff225787c
[  630.695857][T12125] R10: 0000000000000000 R11: dffffc0000000001 R12: ffff888054ee8808
[  630.703906][T12125] R13: 0000000067fb6cdc R14: ffff888054ee87c0 R15: dffffc0000000000
[  630.711912][T12125] FS:  00007f9fecb5d6c0(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[  630.720910][T12125] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  630.727569][T12125] CR2: 000000110c3b1074 CR3: 00000000545f8000 CR4: 00000000003506e0
[  630.735615][T12125] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  630.743656][T12125] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  630.751662][T12125] Call Trace:
[  630.755010][T12125]  <TASK>
[  630.757979][T12125]  udf_rename+0xa46/0xdd0
[  630.762426][T12125]  ? udf_mknod+0x90/0x90
[  630.766785][T12125]  ? register_lock_class+0x100/0x990
[  630.772195][T12125]  ? lockdep_hardirqs_on+0x94/0x130
[  630.777449][T12125]  ? is_dynamic_key+0x260/0x260
[  630.782467][T12125]  vfs_rename+0xd32/0x10f0
[  630.786947][T12125]  ? tomoyo_path_link+0x170/0x170
[  630.792022][T12125]  ? __ia32_sys_link+0x90/0x90
[  630.796879][T12125]  ? security_path_rename+0x17f/0x210
[  630.802340][T12125]  do_renameat2+0xde0/0x1440
[  630.807008][T12125]  ? fsnotify_move+0x4f0/0x4f0
[  630.811826][T12125]  ? __virt_addr_valid+0x17f/0x530
[  630.817017][T12125]  ? __virt_addr_valid+0x17f/0x530
[  630.822198][T12125]  ? __virt_addr_valid+0x45b/0x530
[  630.827354][T12125]  ? __phys_addr_symbol+0x2b/0x70
[  630.832461][T12125]  ? strncpy_from_user+0x1f9/0x360
[  630.837647][T12125]  ? getname_flags+0x1f9/0x4f0
[  630.842492][T12125]  __x64_sys_rename+0x82/0x90
[  630.847221][T12125]  do_syscall_64+0x3b/0xb0
[  630.851672][T12125]  ? clear_bhb_loop+0x45/0xa0
[  630.856429][T12125]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  630.862387][T12125] RIP: 0033:0x7f9febd8d169
[  630.866864][T12125] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  630.886551][T12125] RSP: 002b:00007f9fecb5d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000052
[  630.895059][T12125] RAX: ffffffffffffffda RBX: 00007f9febfa5fa0 RCX: 00007f9febd8d169
[  630.903106][T12125] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000200000000000
[  630.911117][T12125] RBP: 00007f9febe0e990 R08: 0000000000000000 R09: 0000000000000000
[  630.919164][T12125] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  630.927207][T12125] R13: 0000000000000000 R14: 00007f9febfa5fa0 R15: 00007ffe7f1e4a28
[  630.935263][T12125]  </TASK>
[  630.938399][T12125] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  630.945694][T12125] CPU: 1 PID: 12125 Comm: syz.5.2281 Not tainted 6.1.134-syzkaller #0
[  630.953868][T12125] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  630.963944][T12125] Call Trace:
[  630.967239][T12125]  <TASK>
[  630.970188][T12125]  dump_stack_lvl+0x1e3/0x2cb
[  630.974900][T12125]  ? nf_tcp_handle_invalid+0x647/0x647
[  630.980388][T12125]  ? panic+0x764/0x764
[  630.984498][T12125]  ? vscnprintf+0x59/0x80
[  630.988870][T12125]  panic+0x318/0x764
[  630.992803][T12125]  ? __warn+0x169/0x520
[  630.996995][T12125]  ? memcpy_page_flushcache+0xfc/0xfc
[  631.002429][T12125]  __warn+0x348/0x520
[  631.006442][T12125]  ? drop_nlink+0xbb/0x100
[  631.010899][T12125]  report_bug+0x2af/0x500
[  631.015256][T12125]  ? drop_nlink+0xbb/0x100
[  631.019715][T12125]  handle_bug+0x3d/0x70
[  631.023901][T12125]  exc_invalid_op+0x16/0x40
[  631.028434][T12125]  asm_exc_invalid_op+0x16/0x20
[  631.033316][T12125] RIP: 0010:drop_nlink+0xbb/0x100
[  631.038378][T12125] Code: 49 8b 1e 48 8d bb c0 07 00 00 be 08 00 00 00 e8 6b e7 e9 ff f0 48 ff 83 c0 07 00 00 5b 41 5c 41 5e 41 5f 5d c3 e8 d5 83 92 ff <0f> 0b eb 89 44 89 e1 80 e1 07 80 c1 03 38 c1 0f 8c 62 ff ff ff 4c
[  631.058016][T12125] RSP: 0018:ffffc90004f17650 EFLAGS: 00010287
[  631.064114][T12125] RAX: ffffffff81f8267b RBX: 1ffff1100a9dd101 RCX: 0000000000080000
[  631.072112][T12125] RDX: ffffc9000dcbb000 RSI: 0000000000004880 RDI: 0000000000004881
[  631.080110][T12125] RBP: 0000000000000000 R08: ffffffff81f825ff R09: fffffbfff225787c
[  631.088107][T12125] R10: 0000000000000000 R11: dffffc0000000001 R12: ffff888054ee8808
[  631.096105][T12125] R13: 0000000067fb6cdc R14: ffff888054ee87c0 R15: dffffc0000000000
[  631.104112][T12125]  ? drop_nlink+0x3f/0x100
[  631.108569][T12125]  ? drop_nlink+0xbb/0x100
[  631.113043][T12125]  udf_rename+0xa46/0xdd0
[  631.117426][T12125]  ? udf_mknod+0x90/0x90
[  631.121718][T12125]  ? register_lock_class+0x100/0x990
[  631.127047][T12125]  ? lockdep_hardirqs_on+0x94/0x130
[  631.132282][T12125]  ? is_dynamic_key+0x260/0x260
[  631.137242][T12125]  vfs_rename+0xd32/0x10f0
[  631.141703][T12125]  ? tomoyo_path_link+0x170/0x170
[  631.146770][T12125]  ? __ia32_sys_link+0x90/0x90
[  631.151579][T12125]  ? security_path_rename+0x17f/0x210
[  631.156998][T12125]  do_renameat2+0xde0/0x1440
[  631.161656][T12125]  ? fsnotify_move+0x4f0/0x4f0
[  631.166461][T12125]  ? __virt_addr_valid+0x17f/0x530
[  631.171613][T12125]  ? __virt_addr_valid+0x17f/0x530
[  631.176758][T12125]  ? __virt_addr_valid+0x45b/0x530
[  631.181903][T12125]  ? __phys_addr_symbol+0x2b/0x70
[  631.186971][T12125]  ? strncpy_from_user+0x1f9/0x360
[  631.192126][T12125]  ? getname_flags+0x1f9/0x4f0
[  631.196926][T12125]  __x64_sys_rename+0x82/0x90
[  631.201674][T12125]  do_syscall_64+0x3b/0xb0
[  631.206119][T12125]  ? clear_bhb_loop+0x45/0xa0
[  631.210837][T12125]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  631.216762][T12125] RIP: 0033:0x7f9febd8d169
[  631.221201][T12125] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  631.240836][T12125] RSP: 002b:00007f9fecb5d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000052
[  631.249301][T12125] RAX: ffffffffffffffda RBX: 00007f9febfa5fa0 RCX: 00007f9febd8d169
[  631.257319][T12125] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000200000000000
[  631.265318][T12125] RBP: 00007f9febe0e990 R08: 0000000000000000 R09: 0000000000000000
[  631.273313][T12125] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  631.281304][T12125] R13: 0000000000000000 R14: 00007f9febfa5fa0 R15: 00007ffe7f1e4a28
[  631.289320][T12125]  </TASK>
[  631.292688][T12125] Kernel Offset: disabled
[  631.297092][T12125] Rebooting in 86400 seconds..