last executing test programs:

2m57.380029376s ago: executing program 2 (id=390):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_BIND_MAP(0xa, 0x0, 0x0)
syz_usb_control_io(0xffffffffffffffff, &(0x7f00000006c0)={0x2c, &(0x7f00000004c0)={0x0, 0x24, 0x4, {0x4, 0xb, "fddf"}}, &(0x7f0000000540)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x411}}, 0x0, &(0x7f00000005c0)={0x20, 0x29, 0xf, {0xf, 0x29, 0x9, 0x10, 0x1, 0x0, "d5d06f25", "f47e9d15"}}, 0x0}, 0x0)

2m56.079174992s ago: executing program 2 (id=394):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000004000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='fib_table_lookup\x00', r1}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000280)={'wg2\x00'})
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000020000008500000082"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000009c0)={r4, 0xf, 0x0, 0x0, 0x0, 0x0, 0xfff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='fib_table_lookup\x00'}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000300)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000040)={'wg2\x00', @multicast})

2m55.790094753s ago: executing program 2 (id=395):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000000}, 0x8090)
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000000)='./file0\x00', 0x400, &(0x7f0000000180)=ANY=[@ANYBLOB="6572726f72733d72656d6f756e742d726f2c757466383d302c757365667265652c646973636172642c757466383d312c756e695f786c6174653d302c73686f72746e616d653d77696e39352c756e695f786c6174653d302c756e695f786c6174653d302c0008442895b66131b4e4d54b2ba6ae54da0e13047e9f62fbb85ccc774b3ec4c81a1a985232d16d0d934460e920a59172e764c68194b9d9d0be76c595bac1fc5a0a8256a7b77e071e9bdd6100f9ae"], 0xfd, 0x274, &(0x7f0000000500)="$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")
ptrace$setregs(0xd, r0, 0x0, &(0x7f00000003c0)="18607651149d7b10b4024fbbdc08899b8f589df2dbb5d7a8d1b36cfab675cb3976ee8100e2878c9cfa178cac130eb046eda93df39ed4b41924dc225ad4028dd63defb87d698be5c749450b350a789dcfc6b2d6a696b5026d1e52f19274566d1da0f353dd65e330ebf71c5e823f2753c5fd76724828ef31b353e71805205c3dceb44cc4c7b3664e29fb")
ptrace$getregset(0x4205, r0, 0x2, &(0x7f0000000080)={&(0x7f0000000000)=""/120, 0x78})
ptrace$getregset(0x4204, r0, 0x2, &(0x7f0000000740)={0x0})

2m55.227355664s ago: executing program 2 (id=398):
r0 = socket(0x840000000002, 0x3, 0xff)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000100)={0x0, <r1=>0x0, <r2=>0x0}, &(0x7f0000000140)=0xc)
syz_mount_image$exfat(&(0x7f0000000400), &(0x7f0000000240)='./file0\x00', 0x2000084c, &(0x7f0000000540)=ANY=[@ANYBLOB='iocharset=ascii,discard,dmask=00000000000000000000007,uid=', @ANYRESHEX=r1, @ANYBLOB=',dmask=00000000000000000000152,fmask=00000000000000000000006,gid=', @ANYRESHEX=r2, @ANYBLOB=',uid=', @ANYRESHEX=0xee00, @ANYBLOB="2c646973636172642c00fb278330ab3b4884d36adf6908d11f57832035e96a1513231140da182ca77aeedc492bbc501d94f854a7e26909bde6e698d72a15ec808a86c25d"], 0x81, 0x14f5, &(0x7f0000001580)="$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")
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000000e00000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x31)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000680)={&(0x7f0000000000)='tlb_flush\x00', r3}, 0x10)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x100)
clock_gettime(0x0, &(0x7f0000001280))
getdents(r4, &(0x7f0000001fc0)=""/184, 0xb8)

2m54.208509579s ago: executing program 2 (id=402):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000240)=@filter={'filter\x00', 0x2, 0x4, 0x3f8, 0xffffffff, 0x0, 0x0, 0x1a0, 0xfeffffff, 0xffffffff, 0x328, 0x328, 0x328, 0xffffffff, 0x4, 0x0, {[{{@ipv6={@dev, @mcast1, [], [], 'macsec0\x00', 'bond_slave_0\x00'}, 0x2f2, 0xa8, 0xd0}, @REJECT={0x28, 'REJECT\x00', 0x0, {0x5}}}, {{@ipv6={@rand_addr=' \x01\x00', @empty, [], [], 'sit0\x00', 'dvmrp0\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@uncond, 0x0, 0x160, 0x188, 0x0, {}, [@common=@eui64={{0x28}}, @common=@srh1={{0x90}, {0x0, 0x0, 0x0, 0x0, 0x0, @local, @loopback, @remote}}]}, @common=@inet=@SYNPROXY={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x458)

2m53.683951067s ago: executing program 2 (id=405):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r2 = socket$inet(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8b04, &(0x7f0000000000)={'wlan1\x00'})
sendmsg$NL80211_CMD_SET_KEY(r0, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x50, r1, 0x20, 0x70bd27, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x401, 0x20}}}}, [@NL80211_ATTR_KEY={0x30, 0x50, 0x0, 0x1, [@NL80211_KEY_DEFAULT_MGMT={0x4}, @NL80211_KEY_MODE={0x5, 0x9, 0x1}, @NL80211_KEY_DEFAULT_TYPES={0x20, 0x8, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}]}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x4080}, 0x24001000)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000240)={'wlan0\x00', <r6=>0x0})
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$EXT4_IOC_MIGRATE(r7, 0x6609)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r9, 0x8933, &(0x7f0000000d40)={'wlan0\x00', <r10=>0x0})
sendmsg$NL80211_CMD_SET_TID_CONFIG(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000280)={0x30, r8, 0xc31, 0x0, 0x0, {{}, {@val={0x8, 0x3, r10}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x14, 0x11d, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0xe5}]}, {0x4}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x40040}, 0x0)
r11 = fcntl$getown(r0, 0x9)
sendmsg$NL80211_CMD_SET_WIPHY_NETNS(r0, &(0x7f0000000380)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x48, r1, 0x400, 0x70bd2c, 0x25dfdbfe, {{}, {@val={0x8, 0x1, 0x42}, @val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r10}, @NL80211_ATTR_WDEV={0xc, 0x99, {0x0, 0x6b}}, @NL80211_ATTR_NETNS_FD={0x8}, @NL80211_ATTR_PID={0x8, 0x52, r11}]}, 0x48}, 0x1, 0x0, 0x0, 0x40}, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'syz_tun\x00', <r12=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x100000, 0xfffffffc, {0x0, 0x0, 0x0, r12, {}, {0xfff1, 0xffff}, {0x5}}, [@qdisc_kind_options=@q_clsact={0xb}, @TCA_INGRESS_BLOCK={0x8, 0xd, 0x6}]}, 0x38}, 0x1, 0x0, 0x0, 0x40}, 0x0)

2m53.449162624s ago: executing program 32 (id=405):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r2 = socket$inet(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8b04, &(0x7f0000000000)={'wlan1\x00'})
sendmsg$NL80211_CMD_SET_KEY(r0, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x50, r1, 0x20, 0x70bd27, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x401, 0x20}}}}, [@NL80211_ATTR_KEY={0x30, 0x50, 0x0, 0x1, [@NL80211_KEY_DEFAULT_MGMT={0x4}, @NL80211_KEY_MODE={0x5, 0x9, 0x1}, @NL80211_KEY_DEFAULT_TYPES={0x20, 0x8, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}]}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x4080}, 0x24001000)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000240)={'wlan0\x00', <r6=>0x0})
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$EXT4_IOC_MIGRATE(r7, 0x6609)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r9, 0x8933, &(0x7f0000000d40)={'wlan0\x00', <r10=>0x0})
sendmsg$NL80211_CMD_SET_TID_CONFIG(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000280)={0x30, r8, 0xc31, 0x0, 0x0, {{}, {@val={0x8, 0x3, r10}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x14, 0x11d, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0xe5}]}, {0x4}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x40040}, 0x0)
r11 = fcntl$getown(r0, 0x9)
sendmsg$NL80211_CMD_SET_WIPHY_NETNS(r0, &(0x7f0000000380)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x48, r1, 0x400, 0x70bd2c, 0x25dfdbfe, {{}, {@val={0x8, 0x1, 0x42}, @val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_IFINDEX={0x8, 0x3, r10}, @NL80211_ATTR_WDEV={0xc, 0x99, {0x0, 0x6b}}, @NL80211_ATTR_NETNS_FD={0x8}, @NL80211_ATTR_PID={0x8, 0x52, r11}]}, 0x48}, 0x1, 0x0, 0x0, 0x40}, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'syz_tun\x00', <r12=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x100000, 0xfffffffc, {0x0, 0x0, 0x0, r12, {}, {0xfff1, 0xffff}, {0x5}}, [@qdisc_kind_options=@q_clsact={0xb}, @TCA_INGRESS_BLOCK={0x8, 0xd, 0x6}]}, 0x38}, 0x1, 0x0, 0x0, 0x40}, 0x0)

2m34.312793797s ago: executing program 5 (id=462):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000180)='./file0\x00', 0x20044e, &(0x7f0000000340)={[{@minixdf}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1ff}}, {@grpquota}, {@noblock_validity}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x8}}]}, 0x3, 0x451, &(0x7f0000000f80)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000440)='./bus\x00', 0x141842, 0x1ad)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000240)='./bus\x00', 0x187102, 0x1)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x28011, r0, 0x0)
chdir(&(0x7f0000000240)='./file0\x00')
bind$alg(r0, &(0x7f0000000440)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cipher_null\x00'}, 0x58)
syz_mount_image$exfat(0x0, &(0x7f0000000200)='./bus\x00', 0x1200010, 0x0, 0x0, 0x0, &(0x7f0000000000))

2m33.905160267s ago: executing program 5 (id=465):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x24048084}, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_clone3(&(0x7f0000000200)={0x2000300, 0x0, 0x0, 0x0, {0x33}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = dup(r2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000240)=ANY=[@ANYBLOB="01000000000000008d04"])

2m33.383960205s ago: executing program 5 (id=467):
syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x0, &(0x7f0000000c00), 0x1, 0xb80, &(0x7f0000000c40)="$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")
r0 = socket(0x11, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'syz_tun\x00'})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
syz_emit_vhci(0x0, 0x0)
shutdown(r4, 0x0)
recvmmsg(r4, 0x0, 0x0, 0x120, 0x0)
ioctl$KDFONTOP_GET(0xffffffffffffffff, 0x4b72, &(0x7f0000000400)={0x1, 0x1, 0x5, 0xf, 0xe})
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r5, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)={0x70, 0x0, 0x1, 0x401, 0x0, 0x0, {0xa}, [@CTA_TUPLE_REPLY={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @local}, {0x14, 0x4, @local}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}, @CTA_NAT_SRC={0x18, 0x6, 0x0, 0x1, [@CTA_NAT_V6_MINIP={0x14, 0x4, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}]}]}, 0x70}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1400000007"], 0x50)
r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r7, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
dup2(r0, 0xffffffffffffffff)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)

2m31.723350297s ago: executing program 5 (id=472):
r0 = socket(0x840000000002, 0x3, 0xff)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000100)={0x0, <r1=>0x0, <r2=>0x0}, &(0x7f0000000140)=0xc)
syz_mount_image$exfat(&(0x7f0000000400), &(0x7f0000000240)='./file0\x00', 0x2000084c, &(0x7f0000000540)=ANY=[@ANYBLOB='iocharset=ascii,discard,dmask=00000000000000000000007,uid=', @ANYRESHEX=r1, @ANYBLOB=',dmask=00000000000000000000152,fmask=00000000000000000000006,gid=', @ANYRESHEX=r2, @ANYBLOB=',uid=', @ANYRESHEX=0xee00, @ANYBLOB="2c646973636172642c00fb278330ab3b4884d36adf6908d11f57832035e96a1513231140da182ca77aeedc492bbc501d94f854a7e26909bde6e698d72a15ec808a86c25d"], 0x81, 0x14f5, &(0x7f0000001580)="$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")
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000000e00000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x31)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000680)={&(0x7f0000000000)='tlb_flush\x00', r3}, 0x10)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x100)
getdents(r4, &(0x7f0000001fc0)=""/184, 0xb8)

2m31.094471053s ago: executing program 5 (id=480):
r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x2, 0x0)
ioctl$EVIOCSMASK(r0, 0x40104593, &(0x7f00000000c0)={0x0, 0x0, 0x0})
unshare(0x68040200)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r1, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000300))
r2 = socket$inet6(0xa, 0x800000000000002, 0x0)
sendmmsg$inet6(r2, 0x0, 0x0, 0x4004880)
mknod$loop(&(0x7f0000000040)='./file0\x00', 0x100000000000600d, 0x1)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000002280)={{'fd', 0x3d, r3}, 0x2c, {'rootmode', 0x3d, 0x8000}})
write$FUSE_INIT(r3, &(0x7f0000000240)={0x50, 0x0, 0x0, {0x7, 0x27, 0x0, 0x9501200}}, 0x50)
lgetxattr(&(0x7f0000000000)='./file0\x00', &(0x7f00000002c0)=@known='system.posix_acl_default\x00', 0x0, 0x0)

2m29.812005327s ago: executing program 5 (id=483):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000280)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(cipher_null)\x00'}, 0x58)
accept4(r0, 0x0, 0x0, 0x0)

2m29.280039576s ago: executing program 33 (id=483):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000280)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(cipher_null)\x00'}, 0x58)
accept4(r0, 0x0, 0x0, 0x0)

1m7.143095857s ago: executing program 0 (id=852):
syz_mount_image$ext4(&(0x7f0000000880)='ext2\x00', &(0x7f0000000000)='./file1\x00', 0x21000e, &(0x7f0000000380), 0xde, 0x529, &(0x7f00000008c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x1db)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
sendmmsg(r4, &(0x7f0000007fc0), 0x800001d, 0xa1a)
open_tree(r0, 0x0, 0x81000)
syz_mount_image$vfat(&(0x7f0000000780), &(0x7f0000000000)='./file0\x00', 0x490, &(0x7f0000000100)=ANY=[], 0x8, 0x2db, &(0x7f0000000400)="$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")
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000}, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000010001000900200001000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$MAP_UPDATE_CONST_STR(0x4, 0x0, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000003480)='net/netlink\x00')
preadv(r5, &(0x7f0000003440), 0x0, 0x162, 0xb)
inotify_init1(0x0)
r6 = syz_open_dev$usbfs(&(0x7f0000000140), 0xd, 0x3501)
ioctl$BTRFS_IOC_SCRUB(r6, 0xc400941b, &(0x7f00000010c0)={<r7=>0x0, 0x10001})
ioctl$BTRFS_IOC_SCRUB_PROGRESS(r6, 0xc400941d, &(0x7f00000014c0)={r7, 0x8, 0x5, 0x1})
rename(&(0x7f0000000880)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000180)='./file0\x00')

1m5.256202496s ago: executing program 0 (id=857):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = eventfd(0x4)
ioctl$VHOST_SET_VRING_BASE(r0, 0x4008af12, 0x0)
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/53, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/236, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/66})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0xfffffeac, &(0x7f00000001c0)=""/115}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1)
sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000400)=[{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000800)="f78d9ca38fff48f3be52163448412ba88fc6aedbaba048ab831e798bde58a3fedfac293f60d25874be11618269d58b417944a3e9de17b503d93a65e112adb1", 0x3f}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x1)

1m4.905287252s ago: executing program 0 (id=861):
syz_mount_image$ext4(&(0x7f0000000880)='ext2\x00', &(0x7f0000000000)='./file1\x00', 0x21000e, &(0x7f0000000380), 0xde, 0x529, &(0x7f00000008c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x1db)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
sendmmsg(r4, &(0x7f0000007fc0), 0x800001d, 0xa1a)
r5 = open_tree(r0, 0x0, 0x81000)
syz_mount_image$vfat(&(0x7f0000000780), &(0x7f0000000000)='./file0\x00', 0x490, &(0x7f0000000100)=ANY=[], 0x8, 0x2db, &(0x7f0000000400)="$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")
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000}, 0x50)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000010001000900200001000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r6, 0x0, 0x0}, 0x20)
read$msr(r5, &(0x7f0000000300)=""/112, 0x70)
bpf$MAP_UPDATE_CONST_STR(0x4, 0x0, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000003440), 0x0, 0x162, 0xb)
inotify_init1(0x0)
r7 = syz_open_dev$usbfs(&(0x7f0000000140), 0xd, 0x3501)
ioctl$USBDEVFS_SUBMITURB(r7, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x0, 0xc1, &(0x7f00000004c0)={0x4b5a9da54893e123, 0x15, 0x4, 0x2}, 0x8, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0})
ioctl$BTRFS_IOC_SCRUB(r7, 0xc400941b, &(0x7f00000010c0)={<r8=>0x0, 0x10001})
ioctl$BTRFS_IOC_SCRUB_PROGRESS(r7, 0xc400941d, &(0x7f00000014c0)={r8, 0x8, 0x5, 0x1})
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0x408e, &(0x7f0000000240)={[{@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@min_batch_time={'min_batch_time', 0x3d, 0xfff}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x80}}, {@prjquota}, {@errors_remount}, {@max_batch_time={'max_batch_time', 0x3d, 0x4}}]}, 0x3, 0x44c, &(0x7f00000018c0)="$eJzs28tvG8UfAPDvruP0lz5+CaU8+gACBRHxSJq0QA9cQCBxAAkJDuUYkrQqdRvUBIlWFbQIlSOqxB1xROIv4AQXBJyQuMIdVapQLi2cjNbebRzXThNjx6X+fKRtZ3ZnPfP17NizO3EAA2s8+yeJ2BkRv0XEaD27tsB4/b8bKxfm/lq5MJdEtfrWn0mt3PWVC3NF0eK8HXlmIo1IP01if4t6l86dPzVbqSyczfNTy6ffn1o6d/7Zk6dnTyycWDgzc/TokcPTLzw/81xX4szadH3fR4sH9r72zpU35o5defenb5Ii/qY4umR8vYNPVKtdrq6/djWkk6E+NoRNKUVE1l3l2vgfjVKsdt5ovPpJXxsH9FS1Wq3uaH/4YhW4iyWx0ZKn8s8L4O5QfNFn97/FtkVTjzvCtZfqN0BZ3DfyrX5kKNK8TLnp/rabxiPi2MW/v8y26M1zCACANb7L5j/PtJr/pXF/Q7n/52tDYxFxT0Tsjoh7I2JPRNwXUSv7QEQ8uMn6mxdJbp3/pFc7CmyDsvnfi/na1tr5XzH7i7FSnttVi7+cHD9ZWTiUvycTUd6W5afXqeP7V379vN2xxvlftmX1F3PBvB1Xh7atPWd+dnn238Tc6NqliH1DreJP4lIUqYi9EbGvwzpOPvX1gXbH2sVf3sgLd2GdqfpVxJP1/r8YTfEXkvXXJ6f+F5WFQ1PFVXGrn3+5/Ga7+m/f/72V9f/2ltf/zfjHksb12qXN13H598/a3tN0ev0PJ2/X0sP5vg9nl5fPTkcMJ6/XG924f2b13CJflM/inzjYevzvjtV3Yn9EZBfxQxHxcEQ8krf90Yh4LCIOrhP/jy8//l7n8fdWFv/8pvp/NTEczXtaJ0qnfvh2TaVjm4k/6/8jtdREvmcjn38baVdnVzMAAAD896QRsTOSdPJmOk0nJ+t/L78ntqeVxaXlp48vfnBmvv4bgbEop8WTrtGG56HT+W19kZ9pyh/Onxt/URqp5SfnFivz/Q4eBtyONuM/80ep360Des7vtWBwGf8wuIx/GFzGPwyuFuN/pB/tALZeq+//j/vQDmDrNY1/y34wQNz/w+Ay/mFwGf8wkJZG4vY/km+dKHd01novmLepay848ImRiOhVFZHeAQFK9CzR5w8mAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACALvknAAD//7Ef3ig=")
rename(&(0x7f0000000880)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000180)='./file0\x00')

1m2.923702497s ago: executing program 0 (id=866):
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file0\x00', 0x2000480, &(0x7f0000000000)={[{@jqfmt_vfsv0}, {@nogrpid}]}, 0x1, 0x792, &(0x7f0000000f80)="$eJzs3c9rHGUfAPDvbJKmSfu+yQsvaD0FBA2UbkyNrYKHigcRLBT0bLtstqFmky3ZTWlCwBYRvAgqHgS99OyPevPqj6v+Fx6kpWparHiQyGx2222zm27a/RHJ5wOTfZ6Z2TzPd5+ZZ57ZGXYC2LMm0j+ZiEMR8UESMVabn0TEUDU1GHFic73b62v5dEpiY+P135LqOrfW1/LR8J7UgVrm8Yj4/t2Iw5mt5ZZXVudzxWJhqZafqiycnyqvrB45t5CbK8wVFo9Nz8wcPf7c8WOdi/WPn1YPXv/wlae/OvHXO49dff+HJE7Ewdqyxjg6ZSImap/JUPoR3uPlThfWZ0m/K8BDSXfNgc29PA7FWAxUUy2M9LJmAEC3vB0RGwDAHpM4/gPAHlP/HuDW+lq+PvX3G4neuvFSROzfjL9+fXNzyWDtmt3+6nXQ0VvJPVdGkogY70D5ExHx2TdvfpFO0aXrkADNXLocEWfGJ7b2/8mWexZ26pntFm4MV18m7put/4Pe+TYd/zzfbPyXuTP+iSbjn+Em++7DePD+n7nWgWJaSsd/Lzbc23a7If6a8YFa7j/VMd9QcvZcsZD2bf+NiMkYGk7z09VVm98FNXnz75utym8c//3+0Vufp+Wnr3fXyFwbHL73PbO5Su5R4667cTniicFm8Sd32j9pMf491WYZr77w3qetlqXxp/HWp63xd9fGlYinmrb/3bZMtr0/caq6OUzVN4omvv75k9FW5Te2fzql5dfPBXohbf/R7eMfTxrv1yzvvIwfr4x912rZg+Nvvv3vS96opvfV5l3MVSpL0xH7kte2zj969731fH39NP7JJ5vv/9tt/+k54Zk24x+8/uuXDx9/d6Xxz+6o/XeeuHp7fqBV+e21/0w1NVmb007/124FH+WzAwAAAAAAAAAAAAAAAAAAAAAAAIB2ZSLiYCSZ7J10JpPNbj7D+/8xmimWypXDZ0vLi7NRfVb2eAxl6j91Odbwe6jTtd/Dr+eP3pd/NiL+FxEfD49U89l8qTjb7+ABAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoOZAi+f/p34Z7nftAICu2d/vCgAAPef4DwB7z86O/yNdqwcA0DvO/wFg72n7+H+mu/UAAHrH+T8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABddurkyXTa+HN9LZ/mZy+sLM+XLhyZLZTnswvL+Wy+tHQ+O1cqzRUL2XxpoeU/urT5UiyVzs/E4vLFqUqhXJkqr6yeXigtL1ZOn1vIzRVOF4Z6FhkAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAtK+8sjqfKxYLS51LDEZER//hbkiM7I5q7JrEYOyKanQkkXRjL/jXJxp7iZH+dVAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAu9w/AQAA//8PEihV")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./bus\x00', 0x103c42, 0x10)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x14113e, 0x0)
write$binfmt_script(r1, &(0x7f0000000280), 0x208e24b)
write$UHID_INPUT2(r0, &(0x7f0000001740), 0x6)

1m0.959715841s ago: executing program 0 (id=877):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000280)={[{@nombcache}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@auto_da_alloc}, {@errors_remount}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
chown(&(0x7f0000000000)='./file1\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000040)=ANY=[], 0xfe37, 0x0)
unlink(0x0)

59.164029323s ago: executing program 0 (id=882):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
pipe2(&(0x7f0000000000)={0x0, <r3=>0x0}, 0x0)
r4 = socket(0x2c, 0x3, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x11, 0x4, 0x4, 0xff, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={r5, 0x0, &(0x7f0000000080)=@udp6=r4}, 0x20)
close_range(r3, 0xffffffffffffffff, 0x0)

58.861462024s ago: executing program 34 (id=882):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
pipe2(&(0x7f0000000000)={0x0, <r3=>0x0}, 0x0)
r4 = socket(0x2c, 0x3, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x11, 0x4, 0x4, 0xff, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={r5, 0x0, &(0x7f0000000080)=@udp6=r4}, 0x20)
close_range(r3, 0xffffffffffffffff, 0x0)

9.308312787s ago: executing program 7 (id=1099):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
msync(&(0x7f0000952000/0x2000)=nil, 0x87abbe8d1cc6ad9, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@xino_on}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
r3 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r3, &(0x7f0000001fc0)=""/184, 0x20002078)

8.413509753s ago: executing program 7 (id=1103):
r0 = openat$incfs(0xffffffffffffffff, 0x0, 0x380, 0x24)
ioctl$SNDRV_TIMER_IOCTL_PAUSE(r0, 0x54a3)
membarrier(0x4, 0x0)

8.236022436s ago: executing program 7 (id=1105):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000090400206d041cc340000000000109022400010000a00009040000010301010009210008000122010009058103"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)

6.968019899s ago: executing program 6 (id=1108):
syz_mount_image$ext4(&(0x7f0000000080)='ext2\x00', &(0x7f00000000c0)='./file0\x00', 0x1a060f0, &(0x7f0000000140)={[{@min_batch_time}, {@mb_optimize_scan}, {@user_xattr}]}, 0x0, 0x7be, &(0x7f0000000f80)="$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")
sched_setscheduler(0x0, 0x1, 0x0)
r0 = inotify_init1(0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x30000, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
inotify_add_watch(r0, &(0x7f00000000c0)='.\x00', 0x4000000e)
r5 = open(&(0x7f0000000040)='./file1\x00', 0x80242, 0x0)
write$FUSE_CREATE_OPEN(r5, &(0x7f0000000180)={0xa0, 0xfffffffffffffffe, 0x0, {{0x3, 0x1, 0x5, 0x6, 0x5, 0x1, {0x1, 0x180, 0xff, 0x1, 0x2, 0xd615, 0x5, 0x800001, 0xfffffffe, 0x8000, 0x0, 0xee00, 0x0, 0x3fa, 0x1}}, {0x0, 0x1f}}}, 0xa0)
sendfile(r5, r5, &(0x7f0000000080), 0x7f03)

6.117385141s ago: executing program 4 (id=1111):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f0000000340)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x5}}, {@journal_dev={'journal_dev', 0x3d, 0x8000}}, {@nojournal_checksum}, {@minixdf}, {@resgid}, {@nobarrier}, {@usrjquota}]}, 0x3, 0x44a, &(0x7f0000000400)="$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")
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004}, 0x0)
timer_settime(0x0, 0x0, 0x0, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
sendto$packet(r0, 0x0, 0x0, 0x40010, &(0x7f0000000080)={0x11, 0x17, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x14)
socket$nl_route(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(0xffffffffffffffff, 0x401c5820, &(0x7f0000000080)=@v1={0x0, @adiantum, 0x10, @desc1})

6.084650754s ago: executing program 7 (id=1112):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
dup(0xffffffffffffffff)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x1a, 0x3, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x18, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x64, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$TCSETS(0xffffffffffffffff, 0x5402, 0x0)
syz_open_pts(0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x13, 0x13, &(0x7f0000000080)=@framed={{0x18, 0x8, 0x0, 0x0, 0xffd0}, [@func={0x85, 0x0, 0x1, 0x0, 0x6}, @map_fd={0x18, 0x0, 0x0}, @generic={0x66, 0x8}, @initr0, @exit, @alu={0x6, 0x0, 0x3, 0xa, 0x0, 0x2}, @printk={@x, {}, {}, {}, {}, {0x5, 0x0, 0xb, 0xa}}]}, &(0x7f0000000000)='GPL\x00', 0x2, 0xff5c, &(0x7f0000000340)=""/222, 0x0, 0x8, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)

6.021718128s ago: executing program 3 (id=1113):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
msync(&(0x7f0000952000/0x2000)=nil, 0x87abbe8d1cc6ad9, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@xino_on}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
r3 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r3, &(0x7f0000001fc0)=""/184, 0x20002078)

5.552072123s ago: executing program 4 (id=1114):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, 0x0, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r2=>0x0}, &(0x7f0000cab000)=0xc)
setresuid(r2, r2, 0x0)
connect$inet6(r0, &(0x7f0000000380)={0xa, 0xfffe, 0x4, @remote, 0x9}, 0x1c)
r3 = socket$inet6(0x10, 0x2, 0x4)
sendto$inet6(r3, &(0x7f0000000080)="4c00000012001f15b9409b849ac00a00a5784002000000000000030038c88cc055c5ac27a6c5b068d0bf46d323452536005ad94a461cdbfee9bdb942352359a351d1ec0cffc8792cd8000080", 0x4c, 0x0, 0x0, 0x0)

4.888300431s ago: executing program 1 (id=1117):
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f00000000c0))
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file3\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup_subtree(r3, &(0x7f0000000200), 0x2, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r5, 0x6, 0x2000000000000022, 0x0, 0x0)
sendto$inet6(r5, &(0x7f0000000240)="04ec1a", 0x3, 0x20000045, &(0x7f00000001c0)={0xa, 0x2, 0x1000, @empty}, 0x1c)
write$cgroup_subtree(r4, &(0x7f0000000080)={[{0x2b, 'cpu'}]}, 0x5)

4.568703164s ago: executing program 4 (id=1118):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000180)='./bus\x00', 0x1400c, &(0x7f00000000c0)={[{@stripe={'stripe', 0x3d, 0x3d}}, {@init_itable}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}]}, 0x3, 0x44c, &(0x7f0000000340)="$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")
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x101080, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000140)=@x86={0x4, 0x8, 0xc, 0x0, 0x9, 0x10, 0x5, 0x2, 0xe, 0x3, 0x6, 0x11, 0x0, 0x8, 0x615, 0x3, 0x4, 0x22, 0xa, '\x00', 0x7, 0x3})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

3.670159851s ago: executing program 1 (id=1119):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./bus\x00', 0x103c42, 0x10)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x14113e, 0x0)
write$binfmt_script(r1, &(0x7f0000000280), 0x208e24b)
write$UHID_INPUT2(r0, &(0x7f0000001740), 0x6)

3.534165241s ago: executing program 1 (id=1120):
syz_mount_image$ext4(&(0x7f0000000880)='ext2\x00', &(0x7f0000000000)='./file1\x00', 0x21000e, &(0x7f0000000380), 0xde, 0x529, &(0x7f00000008c0)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x1db)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
sendmmsg(r3, &(0x7f0000007fc0), 0x800001d, 0xa1a)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000}, 0x50)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000010001000900200001000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r4, 0x0, 0x0}, 0x20)
bpf$MAP_UPDATE_CONST_STR(0x4, 0x0, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000003480)='net/netlink\x00')
preadv(r5, &(0x7f0000003440), 0x0, 0x162, 0xb)
inotify_init1(0x0)
r6 = syz_open_dev$usbfs(&(0x7f0000000140), 0xd, 0x3501)
ioctl$BTRFS_IOC_SCRUB(r6, 0xc400941b, &(0x7f00000010c0)={<r7=>0x0, 0x10001})
ioctl$BTRFS_IOC_SCRUB_PROGRESS(r6, 0xc400941d, &(0x7f00000014c0)={r7, 0x8, 0x5, 0x1})
rename(&(0x7f0000000880)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000180)='./file0\x00')

3.260034721s ago: executing program 4 (id=1121):
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x81, 0xffffffff})
r0 = syz_open_dev$loop(0x0, 0x81, 0x101000)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.stat\x00', 0x275a, 0x0)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f0000000180)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x8000000018, 0x0, 0x0, 0x0, 0x1a, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd64c6a4b4e00d9683dda1af1ea89de2b7fb0a0100000000000000000300", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "91be8b1c551265406c7f306003d8a0f4bd004ab3fde500", [0x6, 0x800000000000007b]}})
ioctl$LOOP_CHANGE_FD(r0, 0x4c03, r1)

3.212075775s ago: executing program 3 (id=1122):
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_INFO(0xffffffffffffffff, 0xc08c5334, &(0x7f00000000c0)={0x2, 0x10, 0x1, 'queue1\x00', 0x7})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x4)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
pipe2$9p(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff017f000e0800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000000)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="b0"], 0xb0)
mount$9p_fd(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000280), 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1])
utime(&(0x7f0000000200)='./file0\x00', 0x0)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
landlock_restrict_self(0xffffffffffffffff, 0x0)

3.162244738s ago: executing program 6 (id=1123):
r0 = bpf$ITER_CREATE(0xb, 0x0, 0x0)
close(r0)
syz_clone(0x24b200, 0x0, 0x0, 0x0, 0x0, 0x0)

3.109472092s ago: executing program 6 (id=1124):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f0000000340)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x5}}, {@journal_dev={'journal_dev', 0x3d, 0x8000}}, {@nojournal_checksum}, {@minixdf}, {@resgid}, {@nobarrier}, {@usrjquota}]}, 0x3, 0x44a, &(0x7f0000000400)="$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")
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004}, 0x0)
timer_settime(0x0, 0x0, 0x0, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
sendto$packet(r0, 0x0, 0x0, 0x40010, &(0x7f0000000080)={0x11, 0x17, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x14)
socket$nl_route(0x10, 0x3, 0x0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r1, 0x401c5820, &(0x7f0000000080)=@v1={0x0, @adiantum, 0x10, @desc1})

3.096038023s ago: executing program 7 (id=1125):
r0 = syz_usb_connect(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x21, 0x5d, 0x6b, 0x10, 0x424, 0xcf30, 0x398c, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x10, 0x0, [{{0x9, 0x4, 0x20, 0x6, 0x2, 0x12, 0xe, 0xfb, 0x3, [], [{{0x9, 0x5, 0x2, 0x3, 0x200, 0x2, 0x25}}, {{0x9, 0x5, 0x82, 0x2, 0x200}}]}}]}}]}}, 0x0)
r1 = add_key$keyring(0x0, &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd)
r2 = add_key(&(0x7f0000000100)='syzkaller\x00', &(0x7f0000000140)={'syz', 0x3}, &(0x7f0000000180)="5b3aa2b781f60e7f0c94d01e6796e65ce956679f1ac58ff88efe717e3a15ce2cbcb5075a014b008220aac55c5047691d16db", 0x32, 0xfffffffffffffff9)
keyctl$unlink(0x9, r1, r2)
syz_usb_control_io$printer(r0, 0x0, 0x0)
r3 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
shutdown(r3, 0x1)
r4 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000b00)=@raw={'raw\x00', 0x8, 0x3, 0x428, 0xd0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x358, 0xffffffff, 0xffffffff, 0x358, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00'}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x488)
syz_emit_ethernet(0x4a, &(0x7f00000004c0)={@broadcast, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "101040", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x2, 0x5, 0x70}}}}}}}, 0x0)
syz_emit_ethernet(0x4e, &(0x7f0000000040)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x2, 0x11, 0x0, 0x0, {[@nop]}}}}}}}}, 0x0)

2.870813079s ago: executing program 4 (id=1126):
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000500)='.\x00', 0x0, 0x0)
lseek(r0, 0xfffffffffffffffc, 0x2)
getdents(r0, 0x0, 0x58)

2.870596369s ago: executing program 3 (id=1127):
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f0000000280)='./file1\x00', 0x0, &(0x7f0000000740)=ANY=[], 0x1, 0x17d, &(0x7f00000004c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x80400, 0x0)
preadv(r0, 0x0, 0x0, 0x1000, 0x72)

2.810251674s ago: executing program 4 (id=1128):
r0 = syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000280)={[{@nombcache}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@auto_da_alloc}, {@errors_remount}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
statx(r0, 0x0, 0x0, 0x10, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000040)=ANY=[], 0xfe37, 0x0)
unlink(&(0x7f0000000180)='./file1\x00')

2.325075179s ago: executing program 6 (id=1129):
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f00000000c0))
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file3\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup_subtree(r3, &(0x7f0000000200), 0x2, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r5, 0x6, 0x2000000000000022, 0x0, 0x0)
sendto$inet6(r5, &(0x7f0000000240)="04ec1a", 0x3, 0x20000045, &(0x7f00000001c0)={0xa, 0x2, 0x1000, @empty}, 0x1c)
write$cgroup_subtree(r4, &(0x7f0000000080)={[{0x2b, 'cpu'}]}, 0x5)

2.244007385s ago: executing program 3 (id=1130):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./bus\x00', 0x103c42, 0x10)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x14113e, 0x0)
write$binfmt_script(r1, &(0x7f0000000280), 0x208e24b)
write$UHID_INPUT2(r0, &(0x7f0000001740), 0x6)

2.192526589s ago: executing program 1 (id=1131):
syz_mount_image$hfsplus(&(0x7f0000000100), &(0x7f0000000d00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2000010, &(0x7f00000022c0)=ANY=[], 0xfd, 0x6ca, &(0x7f0000000500)="$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")
creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x8)
mkdir(&(0x7f0000000500)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
mkdir(&(0x7f00000002c0)='./control\x00', 0x0)
rename(&(0x7f0000000140)='./control\x00', &(0x7f0000000400)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
setxattr$trusted_overlay_upper(&(0x7f0000000140)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f00000000c0), 0x0, 0x0, 0x0)

1.966482416s ago: executing program 3 (id=1132):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
msync(&(0x7f0000952000/0x2000)=nil, 0x87abbe8d1cc6ad9, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@xino_on}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
r3 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r3, &(0x7f0000001fc0)=""/184, 0x20002078)

1.08075868s ago: executing program 3 (id=1133):
syz_mount_image$ext4(&(0x7f0000000080)='ext2\x00', &(0x7f00000000c0)='./file0\x00', 0x1a060f0, &(0x7f0000000140)={[{@min_batch_time}, {@mb_optimize_scan}, {@user_xattr}]}, 0x0, 0x7be, &(0x7f0000000f80)="$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")
sched_setscheduler(0x0, 0x1, 0x0)
r0 = inotify_init1(0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x30000, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
inotify_add_watch(r0, &(0x7f00000000c0)='.\x00', 0x4000000e)
r5 = open(&(0x7f0000000040)='./file1\x00', 0x80242, 0x0)
write$FUSE_CREATE_OPEN(r5, &(0x7f0000000180)={0xa0, 0xfffffffffffffffe, 0x0, {{0x3, 0x1, 0x5, 0x6, 0x5, 0x1, {0x1, 0x180, 0xff, 0x1, 0x2, 0xd615, 0x5, 0x800001, 0xfffffffe, 0x8000, 0x0, 0xee00, 0x0, 0x3fa, 0x1}}, {0x0, 0x1f}}}, 0xa0)
sendfile(r5, r5, &(0x7f0000000080), 0x7f03)

867.949716ms ago: executing program 6 (id=1134):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='fib_table_lookup\x00', r0}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000280)={'wg2\x00'})
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000020000008500000082"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000009c0)={r3, 0xf, 0x0, 0x0, 0x0, 0x0, 0xfff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='fib_table_lookup\x00', r4}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000300)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000040)={'wg2\x00', @multicast})

618.907645ms ago: executing program 6 (id=1135):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
dup(0xffffffffffffffff)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x1a, 0x3, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x18, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x64, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$TCSETS(0xffffffffffffffff, 0x5402, 0x0)
syz_open_pts(0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x13, 0x13, &(0x7f0000000080)=@framed={{0x18, 0x8, 0x0, 0x0, 0xffd0}, [@func={0x85, 0x0, 0x1, 0x0, 0x6}, @map_fd={0x18, 0x0, 0x0}, @generic={0x66, 0x8}, @initr0, @exit, @alu={0x6, 0x0, 0x3, 0xa, 0x0, 0x2}, @printk={@x, {}, {}, {}, {}, {0x5, 0x0, 0xb, 0xa}}]}, &(0x7f0000000000)='GPL\x00', 0x2, 0xff5c, &(0x7f0000000340)=""/222, 0x0, 0x8, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)

604.829325ms ago: executing program 1 (id=1136):
creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x8)
mkdir(&(0x7f0000000500)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
mkdir(&(0x7f00000002c0)='./control\x00', 0x0)
rename(&(0x7f0000000140)='./control\x00', &(0x7f0000000400)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

323.422096ms ago: executing program 1 (id=1137):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000640)='./bus\x00', 0xa00000, &(0x7f0000000ac0)={[{@inlinecrypt}, {@errors_remount}, {@resuid}]}, 0x41, 0x53d, &(0x7f0000000080)="$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")
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000002c0)={'wlan0\x00'})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f00000002c0)=ANY=[@ANYBLOB="010000000000000001000080"])

0s ago: executing program 7 (id=1138):
syz_mount_image$exfat(&(0x7f0000001500), &(0x7f0000001540)='./file1\x00', 0x0, &(0x7f0000000100)=ANY=[], 0x1, 0x14fe, &(0x7f0000002ac0)="$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")
truncate(&(0x7f0000000080)='./file1\x00', 0xf000)
inotify_add_watch(0xffffffffffffffff, &(0x7f0000000340)='./file0\x00', 0x24000100)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000500)='.\x00', 0x0, 0x0)
getdents(r0, 0x0, 0x58)

kernel console output (not intermixed with test programs):

r: -71
[  202.720255][ T1111] ftdi_sio ttyUSB0: Unable to write latency timer: -71
[  202.771365][ T1111] ftdi_sio 2-1:3.25: GPIO initialisation failed: -71
[  202.805209][ T1111] usb 2-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  202.862564][ T1111] usb 2-1: USB disconnect, device number 24
[  202.877845][ T1111] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  202.900553][ T1111] ftdi_sio 2-1:3.25: device disconnected
[  202.991313][ T6212] loop3: detected capacity change from 0 to 1024
[  203.003068][  T144] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  203.022501][  T144] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  203.046432][ T4249] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  203.082166][ T4249] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  203.103660][ T6212] EXT4-fs (loop3): Test dummy encryption mode enabled
[  203.108622][ T4249] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  203.144616][ T6214] device wg2 left promiscuous mode
[  203.178974][ T6212] EXT4-fs (loop3): mounted filesystem without journal. Opts: nombcache,barrier=0x00000000000003ff,stripe=0x0000000000000007,discard,data=ordered,debug_want_extra_isize=0x0000000000000084,max_batch_time=0x0000000000000000,test_dummy_encryption=v1,,errors=continue. Quota mode: writeback.
[  203.238689][ T4904] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  203.256496][ T4249] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  203.286545][ T6214] device wg2 entered promiscuous mode
[  203.471634][ T6223] loop0: detected capacity change from 0 to 128
[  203.508579][ T4904] usb 5-1: Using ep0 maxpacket: 16
[  203.531185][ T6223] FAT-fs (loop0): Unrecognized mount option "ÿÿÿÿÿÿ" or missing value
[  203.593396][ T6224] loop3: detected capacity change from 0 to 4096
[  203.636807][ T6227] loop1: detected capacity change from 0 to 2048
[  203.643574][ T4904] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 8
[  203.696765][ T6224] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  203.706361][ T6227] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  203.817600][ T4212] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  203.844978][ T4904] usb 5-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 6.00
[  204.180819][ T5260] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  204.245869][ T4904] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  204.254080][ T4904] usb 5-1: Product: syz
[  204.258516][ T4904] usb 5-1: Manufacturer: syz
[  204.263134][ T4904] usb 5-1: SerialNumber: syz
[  204.271295][ T4904] usb 5-1: config 0 descriptor??
[  204.319962][ T4904] ftdi_sio 5-1:0.0: FTDI USB Serial Device converter detected
[  204.332771][ T4904] usb 5-1: Detected FT232RL
[  204.458646][ T4212] usb 7-1: Using ep0 maxpacket: 16
[  204.476673][ T6236] loop3: detected capacity change from 0 to 2048
[  204.508664][ T5260] usb 1-1: Using ep0 maxpacket: 8
[  204.549888][ T6238] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  204.629428][ T4212] usb 7-1: config 0 has an invalid interface number: 202 but max is 0
[  204.651269][ T4212] usb 7-1: config 0 has no interface number 0
[  204.657625][ T4212] usb 7-1: config 0 interface 202 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64
[  204.669824][ T5260] usb 1-1: config 0 has no interfaces?
[  204.745373][ T5260] usb 1-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  204.890486][ T5260] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  205.117675][ T4904] ftdi_sio ttyUSB0: Unable to read latency timer: -32
[  205.128277][ T4212] usb 7-1: New USB device found, idVendor=19d2, idProduct=1290, bcdDevice=3b.a8
[  205.138657][ T4212] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  205.146688][ T4212] usb 7-1: Product: syz
[  205.153181][ T4212] usb 7-1: Manufacturer: syz
[  205.159867][ T5260] usb 1-1: config 0 descriptor??
[  205.164917][ T4212] usb 7-1: SerialNumber: syz
[  205.190651][ T4212] usb 7-1: config 0 descriptor??
[  205.208997][ T6225] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  205.418712][ T4595] usb 1-1: USB disconnect, device number 11
[  205.540516][ T4212] option 7-1:0.202: GSM modem (1-port) converter detected
[  205.548782][ T4904] ftdi_sio 5-1:0.0: GPIO initialisation failed: -71
[  205.564102][ T6242] binder: 6241:6242 ioctl c00c620f 4000000005c0 returned -22
[  205.658219][ T4904] usb 5-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  205.667972][ T4212] usb 7-1: USB disconnect, device number 2
[  205.700746][ T4212] option 7-1:0.202: device disconnected
[  205.714001][ T4904] usb 5-1: USB disconnect, device number 11
[  205.744935][ T4904] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  205.781231][ T4904] ftdi_sio 5-1:0.0: device disconnected
[  205.865108][ T6248] loop3: detected capacity change from 0 to 8192
[  206.006957][ T6252] Illegal XDP return value 4294967274, expect packet loss!
[  207.738208][ T6256] loop0: detected capacity change from 0 to 256
[  207.895794][ T6256] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  208.031839][ T6264] loop4: detected capacity change from 0 to 4096
[  208.062305][ T6254] netlink: 'syz.1.542': attribute type 4 has an invalid length.
[  208.125623][ T6268] loop6: detected capacity change from 0 to 2048
[  208.150089][ T6264] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  208.329637][ T6268] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  208.366329][ T6275] loop3: detected capacity change from 0 to 512
[  208.438011][   T26] audit: type=1800 audit(1739518667.435:15): pid=6268 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.547" name="file1" dev="loop6" ino=15 res=0 errno=0
[  208.494540][ T6275] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  208.514821][ T6278] loop0: detected capacity change from 0 to 2048
[  208.656360][ T6275] EXT4-fs (loop3): 1 truncate cleaned up
[  208.663156][ T6275] EXT4-fs (loop3): mounted filesystem without journal. Opts: nombcache,jqfmt=vfsold,debug_want_extra_isize=0x000000000000006a,auto_da_alloc,errors=remount-ro,quota,. Quota mode: writeback.
[  210.128432][ T4974] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[  210.289983][ T6305] loop0: detected capacity change from 0 to 2048
[  210.383159][ T4974] usb 4-1: Using ep0 maxpacket: 16
[  210.859106][ T6305] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  211.452162][ T6312] netlink: 'syz.4.560': attribute type 4 has an invalid length.
[  211.460272][ T4974] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 8
[  211.681390][ T6318] loop1: detected capacity change from 0 to 2048
[  211.689671][ T4974] usb 4-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 6.00
[  211.705221][ T4974] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  211.737882][ T4974] usb 4-1: Product: syz
[  211.758114][ T4974] usb 4-1: Manufacturer: syz
[  211.769686][ T4974] usb 4-1: SerialNumber: syz
[  211.781787][ T4974] usb 4-1: config 0 descriptor??
[  211.818621][ T6320] loop6: detected capacity change from 0 to 4096
[  211.835114][ T4974] ftdi_sio 4-1:0.0: FTDI USB Serial Device converter detected
[  211.846248][ T4974] usb 4-1: Detected FT232RL
[  212.018671][ T6320] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  213.133694][ T4974] ftdi_sio ttyUSB0: Unable to read latency timer: -32
[  213.329285][ T4974] ftdi_sio 4-1:0.0: GPIO initialisation failed: -71
[  213.348708][ T4974] usb 4-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  213.386743][ T6341] loop1: detected capacity change from 0 to 256
[  213.407692][ T4974] usb 4-1: USB disconnect, device number 14
[  213.457673][ T4974] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  213.493820][ T6341] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x36e06c6e, utbl_chksum : 0xe619d30d)
[  213.529192][ T4974] ftdi_sio 4-1:0.0: device disconnected
[  213.681783][ T6344] loop3: detected capacity change from 0 to 512
[  213.805446][ T6344] EXT4-fs (loop3): Ignoring removed orlov option
[  214.304447][ T6344] EXT4-fs (loop3): 1 orphan inode deleted
[  214.548708][ T6344] EXT4-fs (loop3): mounted filesystem without journal. Opts: errors=remount-ro,sb=0x0000000000000076,auto_da_alloc,init_itable,stripe=0x000000000000007b,orlov,sysvgroups,delalloc,usrquota,. Quota mode: writeback.
[  214.642596][ T6344] ext4 filesystem being mounted at /114/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  214.698798][ T6360] loop4: detected capacity change from 0 to 2048
[  214.714379][ T6355] netlink: 'syz.6.575': attribute type 4 has an invalid length.
[  215.532880][ T6371] loop3: detected capacity change from 0 to 4096
[  215.634304][ T6371] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  216.191025][ T6383] loop6: detected capacity change from 0 to 128
[  216.270110][ T6383] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=256, location=256
[  216.298961][ T6383] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=512, location=512
[  216.318090][ T6383] UDF-fs: warning (device loop6): udf_load_vrs: No anchor found
[  216.337349][ T6387] loop1: detected capacity change from 0 to 2048
[  216.365310][ T6383] UDF-fs: Scanning with blocksize 512 failed
[  216.401929][ T6383] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=256, location=256
[  216.447740][ T6387] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  216.464573][ T6383] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=512, location=512
[  216.482360][ T6389] loop4: detected capacity change from 0 to 512
[  216.498518][ T6383] UDF-fs: warning (device loop6): udf_load_vrs: No anchor found
[  216.536066][ T6383] UDF-fs: Scanning with blocksize 1024 failed
[  216.671343][ T6383] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=256, location=256
[  216.684509][ T6389] EXT4-fs (loop4): Ignoring removed orlov option
[  216.742890][ T6383] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=512, location=512
[  216.784303][ T6383] UDF-fs: warning (device loop6): udf_load_vrs: No anchor found
[  216.809163][ T6389] EXT4-fs (loop4): 1 orphan inode deleted
[  216.894391][ T6389] EXT4-fs (loop4): mounted filesystem without journal. Opts: errors=remount-ro,sb=0x0000000000000076,auto_da_alloc,init_itable,stripe=0x000000000000007b,orlov,sysvgroups,delalloc,usrquota,. Quota mode: writeback.
[  216.928341][ T6383] UDF-fs: Scanning with blocksize 2048 failed
[  216.950062][ T6383] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=256, location=256
[  217.019361][ T6389] ext4 filesystem being mounted at /115/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  217.067860][ T6383] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=512, location=512
[  217.138780][ T6397] loop3: detected capacity change from 0 to 2048
[  217.147897][ T6383] UDF-fs: warning (device loop6): udf_load_vrs: No anchor found
[  217.198937][ T6383] UDF-fs: Scanning with blocksize 4096 failed
[  217.205049][ T6383] UDF-fs: warning (device loop6): udf_fill_super: No partition found (1)
[  217.327286][ T6400] netlink: 'syz.0.591': attribute type 4 has an invalid length.
[  217.721845][ T6416] loop0: detected capacity change from 0 to 4096
[  217.800363][ T6423] loop6: detected capacity change from 0 to 512
[  217.841766][ T6426] loop1: detected capacity change from 0 to 512
[  217.848522][ T6416] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  217.873551][ T6418] loop3: detected capacity change from 0 to 8192
[  217.917722][ T6423] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  217.965929][ T6426] EXT4-fs (loop1): Ignoring removed orlov option
[  218.145972][ T6423] EXT4-fs (loop6): 1 truncate cleaned up
[  218.219413][ T6423] EXT4-fs (loop6): mounted filesystem without journal. Opts: nombcache,jqfmt=vfsold,debug_want_extra_isize=0x000000000000006a,auto_da_alloc,errors=remount-ro,quota,. Quota mode: writeback.
[  218.289450][ T6426] EXT4-fs (loop1): 1 orphan inode deleted
[  218.295824][ T6426] EXT4-fs (loop1): mounted filesystem without journal. Opts: errors=remount-ro,sb=0x0000000000000076,auto_da_alloc,init_itable,stripe=0x000000000000007b,orlov,sysvgroups,delalloc,usrquota,. Quota mode: writeback.
[  218.465442][ T6426] ext4 filesystem being mounted at /139/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  218.880490][ T6439] loop1: detected capacity change from 0 to 512
[  218.928663][ T2300] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  218.969026][ T6439] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  218.978245][ T6439] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[  219.000019][ T6439] EXT4-fs (loop1): warning: checktime reached, running e2fsck is recommended
[  219.029698][ T4895] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  219.071126][ T6439] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  219.111988][ T6439] System zones: 0-2, 18-18, 34-34
[  219.151637][ T6439] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1062: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  219.181839][ T6444] netlink: 'syz.3.607': attribute type 4 has an invalid length.
[  219.229112][ T6439] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.606: bg 0: block 88: padding at end of block bitmap is not set
[  219.259501][ T6439] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6183: Corrupt filesystem
[  219.279813][ T6439] EXT4-fs (loop1): 1 truncate cleaned up
[  219.285489][ T6439] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  219.330817][ T2300] usb 1-1: config 3 has an invalid interface number: 25 but max is 0
[  219.339198][ T4895] usb 7-1: Using ep0 maxpacket: 16
[  219.375240][ T2300] usb 1-1: config 3 has no interface number 0
[  219.393016][ T2300] usb 1-1: config 3 interface 25 altsetting 6 endpoint 0xC has invalid maxpacket 1552, setting to 64
[  219.414691][   T26] audit: type=1800 audit(1739518678.415:16): pid=6439 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.606" name="file2" dev="loop1" ino=16 res=0 errno=0
[  219.448634][ T2300] usb 1-1: config 3 interface 25 altsetting 6 endpoint 0x5 has invalid wMaxPacketSize 0
[  219.477069][ T2300] usb 1-1: config 3 interface 25 has no altsetting 0
[  219.485098][ T4895] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  219.501151][ T4895] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 3
[  219.684509][ T2300] usb 1-1: New USB device found, idVendor=1b3d, idProduct=9302, bcdDevice=ae.b0
[  219.693912][ T4895] usb 7-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  219.713485][ T4895] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  219.726006][ T2300] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  219.734429][ T2300] usb 1-1: Product: syz
[  219.743991][ T4895] usb 7-1: Product: syz
[  219.748197][ T4895] usb 7-1: Manufacturer: syz
[  219.755238][ T2300] usb 1-1: Manufacturer: syz
[  219.765496][ T2300] usb 1-1: SerialNumber: syz
[  219.771007][ T4895] usb 7-1: SerialNumber: syz
[  219.935744][ T6458] loop3: detected capacity change from 0 to 4096
[  220.005394][ T6463] loop1: detected capacity change from 0 to 512
[  220.044396][ T6458] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  220.069870][ T2300] ftdi_sio 1-1:3.25: FTDI USB Serial Device converter detected
[  220.090265][ T6463] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  220.111467][ T2300] usb 1-1: Detected FT-X
[  220.115756][ T2300] ftdi_sio ttyUSB0: Overriding wMaxPacketSize on endpoint 5
[  220.276962][ T2300] ftdi_sio ttyUSB0: Unable to read latency timer: -71
[  220.286377][ T4895] usb 7-1: 0:2 : does not exist
[  220.292715][ T6463] EXT4-fs (loop1): 1 truncate cleaned up
[  220.325378][ T6463] EXT4-fs (loop1): mounted filesystem without journal. Opts: nombcache,jqfmt=vfsold,debug_want_extra_isize=0x000000000000006a,auto_da_alloc,errors=remount-ro,quota,. Quota mode: writeback.
[  220.351315][ T2300] ftdi_sio ttyUSB0: Unable to write latency timer: -71
[  220.429675][ T2300] ftdi_sio 1-1:3.25: GPIO initialisation failed: -71
[  220.509586][ T2300] usb 1-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  220.569028][ T4895] usb 7-1: USB disconnect, device number 3
[  220.620577][ T2300] usb 1-1: USB disconnect, device number 12
[  220.702125][ T6470] 9pnet: p9_errstr2errno: server reported unknown error ave_1
[  220.720721][ T2300] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  220.733849][ T2300] ftdi_sio 1-1:3.25: device disconnected
[  220.885573][ T6474] netlink: 'syz.1.618': attribute type 4 has an invalid length.
[  220.897314][ T4171] udevd[4171]: error opening ATTR{/sys/devices/platform/dummy_hcd.6/usb7/7-1/7-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  221.236523][ T6493] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  221.282341][ T6492] loop1: detected capacity change from 0 to 512
[  221.384827][ T6492] EXT4-fs (loop1): Ignoring removed bh option
[  221.405336][ T6492] EXT4-fs (loop1): Test dummy encryption mode enabled
[  221.430984][ T6492] EXT4-fs (loop1): Can't change test_dummy_encryption on remount
[  221.719687][ T6501] loop6: detected capacity change from 0 to 4096
[  221.823807][ T6501] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  222.874350][ T6526] netlink: 'syz.6.636': attribute type 4 has an invalid length.
[  223.081029][ T6537] loop1: detected capacity change from 0 to 256
[  223.123049][ T6537] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  223.181487][ T6537] exFAT-fs (loop1): Medium has reported failures. Some data may be lost.
[  223.224716][ T6537] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  223.626479][ T6551] loop0: detected capacity change from 0 to 4096
[  223.766504][ T6551] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  223.948537][ T5260] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  224.198853][ T5260] usb 7-1: Using ep0 maxpacket: 16
[  224.541842][ T5260] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  224.558850][ T5260] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 3
[  224.728681][ T5260] usb 7-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  224.733208][ T6573] loop1: detected capacity change from 0 to 256
[  224.738311][ T5260] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  224.790155][ T5260] usb 7-1: Product: syz
[  224.794541][ T5260] usb 7-1: Manufacturer: syz
[  224.821090][ T5260] usb 7-1: SerialNumber: syz
[  224.875590][ T6573] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x36e06c6e, utbl_chksum : 0xe619d30d)
[  225.917370][ T6591] loop6: detected capacity change from 0 to 1024
[  225.918743][ T5260] usb 7-1: 0:2 : does not exist
[  225.986624][ T5260] usb 7-1: USB disconnect, device number 4
[  226.090574][ T6602] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  226.179702][ T6603] loop1: detected capacity change from 0 to 256
[  226.187401][ T6591] hfsplus: xattr searching failed
[  226.208754][ T2300] usb 5-1: new full-speed USB device number 12 using dummy_hcd
[  226.270537][ T6606] hfsplus: xattr search failed
[  226.288933][ T6603] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  226.345178][ T6603] exFAT-fs (loop1): Medium has reported failures. Some data may be lost.
[  226.463423][ T6603] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  226.569779][ T4159] udevd[4159]: error opening ATTR{/sys/devices/platform/dummy_hcd.6/usb7/7-1/7-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  226.621548][ T4274] hfsplus: bad catalog file entry
[  226.639685][ T2300] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  226.657918][ T4274] hfsplus: b-tree write err: -5, ino 3
[  226.670594][ T2300] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 4
[  226.724546][ T2300] usb 5-1: New USB device found, idVendor=1e7d, idProduct=2db4, bcdDevice= 0.00
[  226.744335][ T2300] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  226.776603][ T6608] loop0: detected capacity change from 0 to 4096
[  226.789878][ T2300] usb 5-1: config 0 descriptor??
[  226.943308][ T6608] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  227.569584][ T2300] usbhid 5-1:0.0: can't add hid device: -71
[  227.575936][ T2300] usbhid: probe of 5-1:0.0 failed with error -71
[  227.604206][ T2300] usb 5-1: USB disconnect, device number 12
[  227.697739][ T6623] loop0: detected capacity change from 0 to 512
[  227.765283][ T6623] EXT4-fs (loop0): Ignoring removed bh option
[  227.774272][ T6623] EXT4-fs (loop0): Test dummy encryption mode enabled
[  227.788664][ T4211] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  227.796417][ T6623] EXT4-fs (loop0): Can't change test_dummy_encryption on remount
[  228.038606][ T4211] usb 7-1: Using ep0 maxpacket: 16
[  228.096676][ T6628] loop1: detected capacity change from 0 to 256
[  228.882948][ T6635] loop0: detected capacity change from 0 to 4096
[  228.958672][   T13] usb 5-1: new full-speed USB device number 13 using dummy_hcd
[  229.003877][ T6628] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x36e06c6e, utbl_chksum : 0xe619d30d)
[  229.126190][ T6635] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  229.187848][ T6635] EXT4-fs (loop0): shut down requested (1)
[  229.338592][   T13] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  229.346446][ T4211] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  229.362919][   T13] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 4
[  229.377929][   T13] usb 5-1: New USB device found, idVendor=1e7d, idProduct=2db4, bcdDevice= 0.00
[  229.396386][ T4211] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 3
[  229.400014][   T13] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  229.491393][ T6646] loop1: detected capacity change from 0 to 512
[  229.522596][   T13] usb 5-1: config 0 descriptor??
[  229.539399][ T6651] loop0: detected capacity change from 0 to 256
[  229.558895][ T4211] usb 7-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  229.567973][ T4211] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  229.576581][ T6646] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  229.600075][ T6651] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  229.620348][ T4211] usb 7-1: Product: syz
[  229.624560][ T4211] usb 7-1: Manufacturer: syz
[  229.634400][ T6646] EXT4-fs (loop1): 1 truncate cleaned up
[  229.638706][ T6651] exFAT-fs (loop0): Medium has reported failures. Some data may be lost.
[  229.649444][ T6646] EXT4-fs (loop1): mounted filesystem without journal. Opts: nombcache,jqfmt=vfsold,debug_want_extra_isize=0x000000000000006a,auto_da_alloc,errors=remount-ro,quota,. Quota mode: writeback.
[  229.663036][ T4211] usb 7-1: SerialNumber: syz
[  229.694890][ T6654] overlayfs: missing 'lowerdir'
[  229.720486][ T6651] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  229.871861][ T6656] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  230.068935][   T13] usbhid 5-1:0.0: can't add hid device: -71
[  230.082441][   T13] usbhid: probe of 5-1:0.0 failed with error -71
[  230.282172][   T13] usb 5-1: USB disconnect, device number 13
[  230.678817][ T4211] usb 7-1: 0:2 : does not exist
[  230.705185][ T6661] loop1: detected capacity change from 0 to 512
[  230.724761][ T4211] usb 7-1: USB disconnect, device number 5
[  230.782917][ T6661] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  230.912607][ T6661] EXT4-fs (loop1): 1 truncate cleaned up
[  230.928314][ T6661] EXT4-fs (loop1): mounted filesystem without journal. Opts: nombcache,jqfmt=vfsold,debug_want_extra_isize=0x000000000000006a,auto_da_alloc,errors=remount-ro,quota,. Quota mode: writeback.
[  231.000349][ T4159] udevd[4159]: error opening ATTR{/sys/devices/platform/dummy_hcd.6/usb7/7-1/7-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  231.977991][ T6679] loop1: detected capacity change from 0 to 256
[  231.994230][ T6685] loop0: detected capacity change from 0 to 1024
[  232.085044][ T6679] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x36e06c6e, utbl_chksum : 0xe619d30d)
[  232.324191][ T6685] EXT4-fs (loop0): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  232.338590][ T6685] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (53380!=20869)
[  232.346629][ T6695] loop4: detected capacity change from 0 to 2048
[  232.383171][ T6685] EXT4-fs (loop0): mounted filesystem without journal. Opts: sysvgroups,noquota,auto_da_alloc=0x0000000000000008,usrjquota=,norecovery,errors=remount-ro,min_batch_time=0x0000000000000005,block_validity,. Quota mode: writeback.
[  232.445044][ T6695] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  232.528110][ T6685] Error parsing options; rc = [-22]
[  232.568555][ T4895] usb 7-1: new full-speed USB device number 6 using dummy_hcd
[  232.575328][ T6700] loop1: detected capacity change from 0 to 512
[  232.681021][ T6700] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  232.682793][ T6703] loop3: detected capacity change from 0 to 512
[  232.740586][ T6700] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[  232.808544][ T6703] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  232.848444][ T6700] EXT4-fs (loop1): warning: checktime reached, running e2fsck is recommended
[  232.862238][ T6700] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  232.898207][ T6700] System zones: 0-2, 18-18, 34-34
[  232.931732][ T6700] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1062: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  232.933741][ T6703] EXT4-fs (loop3): 1 truncate cleaned up
[  232.977469][ T6700] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.695: bg 0: block 88: padding at end of block bitmap is not set
[  233.009186][ T4895] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  233.018969][ T6703] EXT4-fs (loop3): mounted filesystem without journal. Opts: nombcache,jqfmt=vfsold,debug_want_extra_isize=0x000000000000006a,auto_da_alloc,errors=remount-ro,quota,. Quota mode: writeback.
[  233.020425][ T4895] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 4
[  233.050032][ T6700] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6183: Corrupt filesystem
[  233.160991][ T4895] usb 7-1: New USB device found, idVendor=1e7d, idProduct=2db4, bcdDevice= 0.00
[  233.170242][ T4895] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  233.184930][ T6700] EXT4-fs (loop1): 1 truncate cleaned up
[  233.187592][ T4895] usb 7-1: config 0 descriptor??
[  233.200321][ T6700] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  233.282897][   T26] audit: type=1800 audit(1739518692.285:17): pid=6700 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.695" name="file1" dev="loop1" ino=15 res=0 errno=0
[  233.328597][   T13] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  233.384837][   T26] audit: type=1800 audit(1739518692.285:18): pid=6700 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.695" name="file2" dev="loop1" ino=16 res=0 errno=0
[  233.749795][ T4895] usbhid 7-1:0.0: can't add hid device: -71
[  233.795246][ T4895] usbhid: probe of 7-1:0.0 failed with error -71
[  233.928838][   T13] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  233.957875][ T4895] usb 7-1: USB disconnect, device number 6
[  234.075144][   T13] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  234.488778][   T13] usb 1-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  234.508261][   T13] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  234.748104][ T6730] loop4: detected capacity change from 0 to 256
[  234.748691][   T13] usb 1-1: SerialNumber: syz
[  234.861451][ T6730] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x36e06c6e, utbl_chksum : 0xe619d30d)
[  235.063322][   T13] usb 1-1: 0:2 : does not exist
[  235.113060][ T6738] netlink: 'syz.4.707': attribute type 2 has an invalid length.
[  235.116628][   T13] usb 1-1: USB disconnect, device number 13
[  235.133458][ T6738] netlink: 'syz.4.707': attribute type 1 has an invalid length.
[  235.371641][ T6740] overlayfs: missing 'lowerdir'
[  235.490927][ T4159] udevd[4159]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  235.537374][ T6743] 9pnet: Insufficient options for proto=fd
[  235.623968][ T6745] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  236.338717][ T6748] loop0: detected capacity change from 0 to 512
[  236.363089][ T6749] loop3: detected capacity change from 0 to 2048
[  236.428721][ T6748] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  236.449065][ T6749] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  236.510768][ T6748] EXT4-fs (loop0): 1 truncate cleaned up
[  236.545010][ T6748] EXT4-fs (loop0): mounted filesystem without journal. Opts: nombcache,jqfmt=vfsold,debug_want_extra_isize=0x000000000000006a,auto_da_alloc,errors=remount-ro,quota,. Quota mode: writeback.
[  236.603836][ T6757] loop4: detected capacity change from 0 to 128
[  237.829341][ T6769] loop3: detected capacity change from 0 to 256
[  237.980111][ T6769] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x36e06c6e, utbl_chksum : 0xe619d30d)
[  238.096928][ T6773] loop6: detected capacity change from 0 to 256
[  238.242925][ T6773] exFAT-fs (loop6): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  238.468920][   T26] audit: type=1804 audit(1739518697.465:19): pid=6780 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.6.718" name="/newroot/34/file1/bus" dev="loop6" ino=1048622 res=1 errno=0
[  238.557838][ T6782] loop1: detected capacity change from 0 to 1024
[  238.648475][ T2300] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[  238.730706][ T4274] hfsplus: bad catalog file entry
[  238.735993][ T4274] hfsplus: b-tree write err: -5, ino 3
[  238.924220][ T6786] overlayfs: unrecognized mount option "/" or missing value
[  239.330582][ T6791] loop4: detected capacity change from 0 to 512
[  239.617727][ T6791] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  239.620047][ T6793] loop1: detected capacity change from 0 to 128
[  239.633506][ T2300] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  239.643941][ T2300] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  239.658691][ T6791] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  239.680467][ T6791] EXT4-fs (loop4): warning: checktime reached, running e2fsck is recommended
[  239.728760][ T2300] usb 4-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  239.738514][ T6791] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  239.745297][ T6797] loop0: detected capacity change from 0 to 2048
[  239.746677][ T6791] System zones: 
[  239.774504][ T2300] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  239.793185][ T6797] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  239.857932][ T6791] 0-2, 18-18, 34-34
[  239.862816][ T2300] usb 4-1: SerialNumber: syz
[  239.903370][ T6791] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1062: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  239.920265][ T6791] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.724: bg 0: block 88: padding at end of block bitmap is not set
[  239.937259][ T6791] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6183: Corrupt filesystem
[  239.953373][ T6791] EXT4-fs (loop4): 1 truncate cleaned up
[  239.988603][ T6791] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  240.087063][ T6800] loop1: detected capacity change from 0 to 2048
[  240.155938][   T26] audit: type=1800 audit(1739518699.155:20): pid=6791 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.724" name="file1" dev="loop4" ino=15 res=0 errno=0
[  240.191398][ T2300] usb 4-1: 0:2 : does not exist
[  240.207128][ T6800] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  240.209938][   T26] audit: type=1800 audit(1739518699.185:21): pid=6791 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.724" name="file2" dev="loop4" ino=16 res=0 errno=0
[  240.234984][ T2300] usb 4-1: unit 5 not found!
[  241.351111][ T2300] usb 4-1: USB disconnect, device number 15
[  241.501878][ T6811] loop3: detected capacity change from 0 to 256
[  241.626876][ T6817] netlink: 16 bytes leftover after parsing attributes in process `syz.6.732'.
[  241.636730][ T6817] netlink: 16 bytes leftover after parsing attributes in process `syz.6.732'.
[  241.739588][ T4159] udevd[4159]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  241.779359][ T6823] loop6: detected capacity change from 0 to 512
[  241.808906][ T6811] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x36e06c6e, utbl_chksum : 0xe619d30d)
[  241.957117][ T6823] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  242.556323][ T6823] EXT4-fs (loop6): 1 truncate cleaned up
[  242.568482][ T6823] EXT4-fs (loop6): mounted filesystem without journal. Opts: nombcache,jqfmt=vfsold,debug_want_extra_isize=0x000000000000006a,auto_da_alloc,errors=remount-ro,quota,. Quota mode: writeback.
[  242.708458][ T4211] usb 2-1: new full-speed USB device number 25 using dummy_hcd
[  242.858569][ T6834] loop4: detected capacity change from 0 to 128
[  243.228760][ T4211] usb 2-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08
[  243.241105][ T4211] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  243.275045][ T4211] usb 2-1: config 0 descriptor??
[  244.578205][ T6852] loop0: detected capacity change from 0 to 256
[  244.906541][ T6861] loop4: detected capacity change from 0 to 2048
[  245.011836][ T6861] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  245.062274][ T6864] loop6: detected capacity change from 0 to 512
[  245.178700][ T6864] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  245.467822][ T4211] usb 2-1: USB disconnect, device number 25
[  245.555031][ T6864] EXT4-fs (loop6): 1 truncate cleaned up
[  245.695058][ T6864] EXT4-fs (loop6): mounted filesystem without journal. Opts: nombcache,jqfmt=vfsold,debug_want_extra_isize=0x000000000000006a,auto_da_alloc,errors=remount-ro,quota,. Quota mode: writeback.
[  246.344180][ T6875] loop1: detected capacity change from 0 to 128
[  249.277429][ T6909] loop1: detected capacity change from 0 to 128
[  249.463984][ T6909] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[  249.745072][ T6916] loop4: detected capacity change from 0 to 512
[  249.751823][ T6914] device wg2 entered promiscuous mode
[  249.828627][ T6916] EXT4-fs (loop4): Ignoring removed nobh option
[  249.882914][   T13] usb 4-1: new high-speed USB device number 16 using dummy_hcd
[  249.962279][ T6927] loop6: detected capacity change from 0 to 128
[  250.063145][ T6916] EXT4-fs error (device loop4): ext4_do_update_inode:5174: inode #3: comm syz.4.761: corrupted inode contents
[  250.123041][ T6916] EXT4-fs (loop4): Remounting filesystem read-only
[  250.138015][ T6916] EXT4-fs error (device loop4): ext4_dirty_inode:6010: inode #3: comm syz.4.761: mark_inode_dirty error
[  250.338537][   T13] usb 4-1: Using ep0 maxpacket: 32
[  250.413765][ T6916] EXT4-fs (loop4): Remounting filesystem read-only
[  250.479583][   T13] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  250.565800][   T13] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  250.582742][ T6916] EXT4-fs error (device loop4): ext4_do_update_inode:5174: inode #3: comm syz.4.761: corrupted inode contents
[  250.697274][ T6916] EXT4-fs (loop4): Remounting filesystem read-only
[  250.802090][   T13] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  250.822406][ T6916] EXT4-fs error (device loop4): __ext4_ext_dirty:183: inode #3: comm syz.4.761: mark_inode_dirty error
[  250.838400][   T13] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  250.862014][ T6916] EXT4-fs (loop4): Remounting filesystem read-only
[  250.895291][   T13] usb 4-1: config 0 descriptor??
[  250.903414][ T6916] Quota error (device loop4): write_blk: dquota write failed
[  250.921437][ T6916] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  250.952096][   T13] hub 4-1:0.0: bad descriptor, ignoring hub
[  250.958107][   T13] hub: probe of 4-1:0.0 failed with error -5
[  250.992726][   T13] usbhid 4-1:0.0: couldn't find an input interrupt endpoint
[  251.019046][ T6916] EXT4-fs error (device loop4): ext4_acquire_dquot:6197: comm syz.4.761: Failed to acquire dquot type 0
[  251.055667][ T6916] EXT4-fs (loop4): Remounting filesystem read-only
[  251.093991][ T6916] EXT4-fs error (device loop4): ext4_do_update_inode:5174: inode #16: comm syz.4.761: corrupted inode contents
[  251.125258][ T6916] EXT4-fs (loop4): Remounting filesystem read-only
[  251.133211][ T6916] EXT4-fs error (device loop4): ext4_dirty_inode:6010: inode #16: comm syz.4.761: mark_inode_dirty error
[  251.209832][ T6916] EXT4-fs (loop4): Remounting filesystem read-only
[  251.217412][ T6916] EXT4-fs error (device loop4): ext4_do_update_inode:5174: inode #16: comm syz.4.761: corrupted inode contents
[  251.235046][ T6937] loop0: detected capacity change from 0 to 2048
[  251.248725][ T6916] EXT4-fs (loop4): Remounting filesystem read-only
[  251.265578][ T6916] EXT4-fs error (device loop4): __ext4_ext_dirty:183: inode #16: comm syz.4.761: mark_inode_dirty error
[  251.297895][ T6916] EXT4-fs (loop4): Remounting filesystem read-only
[  251.303908][ T6942] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  251.307758][ T6916] EXT4-fs error (device loop4): ext4_do_update_inode:5174: inode #16: comm syz.4.761: corrupted inode contents
[  251.336036][ T6942] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  251.343889][ T6916] EXT4-fs (loop4): Remounting filesystem read-only
[  251.345342][ T6937] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  251.357921][ T6916] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem
[  251.373371][ T6916] EXT4-fs (loop4): Remounting filesystem read-only
[  251.380518][ T6916] EXT4-fs error (device loop4): ext4_do_update_inode:5174: inode #16: comm syz.4.761: corrupted inode contents
[  251.403442][ T6916] EXT4-fs (loop4): Remounting filesystem read-only
[  251.416688][ T6916] EXT4-fs error (device loop4): ext4_truncate:4272: inode #16: comm syz.4.761: mark_inode_dirty error
[  251.439503][ T6916] EXT4-fs (loop4): Remounting filesystem read-only
[  251.453380][ T6916] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem
[  251.472934][ T6916] EXT4-fs (loop4): Remounting filesystem read-only
[  251.492411][ T6916] EXT4-fs (loop4): 1 truncate cleaned up
[  251.502700][ T6916] EXT4-fs (loop4): mounted filesystem without journal. Opts: errors=remount-ro,nobh,. Quota mode: writeback.
[  251.524806][ T6916] ext4 filesystem being mounted at /160/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  251.765615][ T6916] EXT4-fs error (device loop4): ext4_generic_delete_entry:2729: inode #12: block 13: comm syz.4.761: bad entry in directory: inode out of bounds - offset=24, inode=33554445, rec_len=16, size=4096 fake=0
[  251.818894][ T6946] loop0: detected capacity change from 0 to 2048
[  251.872591][ T6916] EXT4-fs (loop4): Remounting filesystem read-only
[  251.910909][ T6916] EXT4-fs error (device loop4) in ext4_delete_entry:2800: Corrupt filesystem
[  251.927139][ T6946] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  251.936078][ T6916] EXT4-fs (loop4): Remounting filesystem read-only
[  251.948173][ T6946] ext4 filesystem being mounted at /144/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  251.994189][ T6946] fs-verity (loop0, inode 13): Unknown hash algorithm number: 8192
[  252.135995][ T6950] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  252.315789][ T6952] loop4: detected capacity change from 0 to 1024
[  252.386261][ T6955] loop6: detected capacity change from 0 to 128
[  252.527645][ T6952] hfsplus: xattr searching failed
[  252.759398][ T5260] usb 4-1: USB disconnect, device number 16
[  253.029704][ T4274] hfsplus: bad catalog file entry
[  253.107847][ T4274] hfsplus: b-tree write err: -5, ino 3
[  253.685133][ T6970] loop0: detected capacity change from 0 to 2048
[  253.817929][ T6970] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  253.914889][ T6973] loop3: detected capacity change from 0 to 8192
[  254.244186][ T6981] netlink: 56 bytes leftover after parsing attributes in process `syz.0.783'.
[  254.268775][ T6981] netlink: 56 bytes leftover after parsing attributes in process `syz.0.783'.
[  255.144405][ T6981] loop0: detected capacity change from 0 to 2048
[  255.808317][ T1422] ieee802154 phy0 wpan0: encryption failed: -22
[  255.814761][ T1422] ieee802154 phy1 wpan1: encryption failed: -22
[  255.946767][ T6981] UDF-fs: error (device loop0): udf_process_sequence: Primary Volume Descriptor not found!
[  256.102827][ T6995] loop1: detected capacity change from 0 to 512
[  256.216083][ T6995] EXT4-fs error (device loop1): ext4_orphan_get:1401: inode #15: comm syz.1.787: casefold flag without casefold feature
[  256.266628][ T6998] loop4: detected capacity change from 0 to 128
[  256.287789][ T6995] EXT4-fs (loop1): Remounting filesystem read-only
[  256.343460][ T6995] EXT4-fs error (device loop1): ext4_orphan_get:1406: comm syz.1.787: couldn't read orphan inode 15 (err -117)
[  256.442663][ T6995] EXT4-fs (loop1): Remounting filesystem read-only
[  256.469349][ T6995] EXT4-fs (loop1): mounted filesystem without journal. Opts: nombcache,noauto_da_alloc,bsdgroups,errors=remount-ro,quota,auto_da_alloc=0x0000000000000009,noquota,. Quota mode: writeback.
[  256.705038][ T6995] EXT4-fs warning (device loop1): ext4_empty_dir:3147: inode #2: comm syz.1.787: directory missing '.'
[  257.839730][ T7015] loop0: detected capacity change from 0 to 2048
[  258.034606][ T7015] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  258.428538][ T7026] loop6: detected capacity change from 0 to 2048
[  259.238083][ T7036] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input11
[  259.652209][ T7046] loop0: detected capacity change from 0 to 512
[  260.366876][ T7058] loop3: detected capacity change from 0 to 512
[  260.496265][ T7058] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  260.518489][ T7058] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem
[  260.685107][ T7046] EXT4-fs (loop0): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock
[  260.759043][ T7058] EXT4-fs (loop3): warning: checktime reached, running e2fsck is recommended
[  260.790351][ T7058] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  260.798583][ T4353] usb 2-1: new high-speed USB device number 26 using dummy_hcd
[  260.799619][ T7058] System zones: 0-2, 18-18, 34-34
[  260.978322][ T7046] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock
[  261.079580][ T7058] EXT4-fs warning (device loop3): ext4_update_dynamic_rev:1062: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  261.417311][ T7058] EXT4-fs (loop3): 1 truncate cleaned up
[  261.468114][ T7058] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  261.530566][ T7046] EXT4-fs (loop0): ext4_check_descriptors: Inode table for group 1 overlaps superblock
[  261.650555][   T26] audit: type=1800 audit(1739518720.655:22): pid=7058 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.808" name="file1" dev="loop3" ino=15 res=0 errno=0
[  261.650780][ T7046] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  261.724448][ T7046] [EXT4 FS bs=4096, gc=2, bpg=35, ipg=32, mo=e040e01c, mo2=0000]
[  261.798643][ T4353] usb 2-1: Using ep0 maxpacket: 32
[  261.856009][ T7046] EXT4-fs (loop0): failed to initialize system zone (-117)
[  261.864118][ T7046] EXT4-fs (loop0): mount failed
[  262.118853][ T7074] usb usb3: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  262.126310][ T7074] usb usb3: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  263.908535][ T4353] usb 2-1: unable to read config index 0 descriptor/all
[  263.915723][ T4353] usb 2-1: can't read configurations, error -71
[  264.116006][ T7082] loop1: detected capacity change from 0 to 2048
[  264.337230][ T7091] loop0: detected capacity change from 0 to 1024
[  264.348033][ T7082] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  264.378552][ T7082] ext4 filesystem being mounted at /184/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  264.495097][ T7086] loop3: detected capacity change from 0 to 8192
[  264.587144][ T7091] hfsplus: xattr searching failed
[  264.821152][ T4249] hfsplus: bad catalog file entry
[  264.826375][ T4249] hfsplus: b-tree write err: -5, ino 3
[  265.703460][ T7107] loop6: detected capacity change from 0 to 512
[  267.460040][ T7120] loop4: detected capacity change from 0 to 2048
[  267.509580][ T7118] loop1: detected capacity change from 0 to 512
[  267.619970][ T7120] EXT4-fs (loop4): Ignoring removed mblk_io_submit option
[  267.627163][ T7120] EXT4-fs (loop4): Unrecognized mount option "fscontext=unconfined_u" or missing value
[  267.653313][ T7118] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  267.688418][ T7118] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[  267.768071][ T7118] EXT4-fs (loop1): warning: checktime reached, running e2fsck is recommended
[  267.864282][ T7118] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  267.968621][ T7118] System zones: 0-2, 18-18, 34-34
[  267.976575][ T7118] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1062: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  267.998637][ T4353] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  268.042640][ T7118] EXT4-fs (loop1): 1 truncate cleaned up
[  268.050764][ T7118] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  268.135730][   T26] audit: type=1800 audit(1739518727.135:23): pid=7118 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.825" name="file1" dev="loop1" ino=15 res=0 errno=0
[  268.186960][ T7136] netlink: 4 bytes leftover after parsing attributes in process `syz.3.832'.
[  268.222041][ T4353] usb 1-1: device descriptor read/64, error -71
[  268.492670][ T7141] usb usb3: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  268.500396][ T7141] usb usb3: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  269.168866][ T7136] bridge0: port 2(bridge_slave_1) entered disabled state
[  269.188477][ T4353] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  269.298049][ T7136] device bridge_slave_1 left promiscuous mode
[  269.338923][ T7136] bridge0: port 2(bridge_slave_1) entered disabled state
[  269.473963][ T7149] loop1: detected capacity change from 0 to 512
[  269.579454][ T4353] usb 1-1: device descriptor read/64, error -71
[  269.779343][ T4353] usb usb1-port1: attempt power cycle
[  270.143376][ T7149] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  270.238559][ T7149] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[  270.277841][ T7149] EXT4-fs (loop1): warning: checktime reached, running e2fsck is recommended
[  270.299788][ T7149] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  270.388621][ T7149] System zones: 0-2, 18-18, 34-34
[  270.401283][ T4353] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[  270.455344][ T7149] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1062: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  270.483445][ T7149] EXT4-fs (loop1): 1 truncate cleaned up
[  270.492469][ T7149] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  270.777270][   T26] audit: type=1800 audit(1739518729.585:24): pid=7149 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.835" name="file1" dev="loop1" ino=15 res=0 errno=0
[  270.850691][ T4353] usb 1-1: device descriptor read/8, error -71
[  270.873642][ T4895] usb 7-1: new full-speed USB device number 7 using dummy_hcd
[  271.669701][ T4895] usb 7-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08
[  271.742850][ T4895] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  272.353395][ T4895] usb 7-1: config 0 descriptor??
[  272.519493][ T7175] 9pnet: p9_errstr2errno: server reported unknown error 
[  272.679732][ T7182] loop4: detected capacity change from 0 to 512
[  272.688666][ T4895] [drm] vendor descriptor length:b9 data:00 00 00 00 00 00 00 00 00 00 00
[  272.697678][ T4895] [drm:udl_init] *ERROR* Unrecognized vendor firmware descriptor
[  272.718677][ T4895] [drm:udl_init] *ERROR* Selecting channel failed
[  272.743988][ T4895] [drm] Initialized udl 0.0.1 20120220 for 7-1:0.0 on minor 2
[  272.761115][ T4895] [drm] Initialized udl on minor 2
[  272.770591][ T7180] loop1: detected capacity change from 0 to 8192
[  272.798694][ T4895] [drm:udl_get_edid_block] *ERROR* Read EDID byte 0 failed err ffffffb9
[  272.811953][ T4895] udl 7-1:0.0: [drm] Cannot find any crtc or sizes
[  272.830621][ T7182] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  272.839740][ T4895] usb 7-1: USB disconnect, device number 7
[  272.881743][ T7182] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  272.884191][ T2300] [drm:udl_get_edid_block] *ERROR* Read EDID byte 0 failed err ffffffed
[  272.920576][ T7182] EXT4-fs (loop4): warning: checktime reached, running e2fsck is recommended
[  272.938097][ T2300] [drm:udl_get_edid_block] *ERROR* Read EDID byte 0 failed err ffffffed
[  272.975595][ T7182] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  273.010563][ T7182] System zones: 0-2, 18-18, 34-34
[  273.047870][ T7182] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1062: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  273.060105][ T2300] udl 7-1:0.0: [drm] Cannot find any crtc or sizes
[  273.070543][ T7182] EXT4-fs (loop4): 1 truncate cleaned up
[  273.076748][ T7182] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  273.097272][   T26] audit: type=1800 audit(1739518732.095:25): pid=7182 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.845" name="file1" dev="loop4" ino=15 res=0 errno=0
[  273.364056][ T7192] usb usb3: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  273.371652][ T7192] usb usb3: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  274.024105][ T7198] loop3: detected capacity change from 0 to 1024
[  274.158105][ T7198] EXT4-fs (loop3): Ignoring removed orlov option
[  274.218565][ T7198] EXT4-fs (loop3): Ignoring removed nomblk_io_submit option
[  274.251011][ T7201] loop0: detected capacity change from 0 to 512
[  274.344886][ T7201] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  274.371107][ T7198] EXT4-fs (loop3): mounted filesystem without journal. Opts: noblock_validity,bsddf,sysvgroups,norecovery,debug_want_extra_isize=0x0000000000000080,orlov,nogrpid,noauto_da_alloc,nomblk_io_submit,,errors=continue. Quota mode: none.
[  274.400449][ T7201] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem
[  274.458078][ T7201] EXT4-fs (loop0): warning: checktime reached, running e2fsck is recommended
[  274.473726][ T7208] device wg2 left promiscuous mode
[  274.476302][ T7204] loop6: detected capacity change from 0 to 2048
[  274.504544][ T7201] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  274.510462][ T7208] device wg2 entered promiscuous mode
[  274.540981][ T7201] System zones: 0-2, 18-18, 34-34
[  274.572285][ T7201] EXT4-fs warning (device loop0): ext4_update_dynamic_rev:1062: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  274.601391][ T7201] EXT4-fs (loop0): 1 truncate cleaned up
[  274.619523][ T7201] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  274.772165][ T7204] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  275.013638][   T26] audit: type=1800 audit(1739518733.815:26): pid=7201 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.852" name="file1" dev="loop0" ino=15 res=0 errno=0
[  276.303356][ T7227] loop4: detected capacity change from 0 to 1024
[  276.461672][ T7229] loop3: detected capacity change from 0 to 2048
[  276.471199][ T7227] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  276.494841][ T7235] loop0: detected capacity change from 0 to 512
[  276.587612][ T7229] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  276.727034][ T7235] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  276.835596][ T7235] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem
[  276.954812][ T7235] EXT4-fs (loop0): warning: checktime reached, running e2fsck is recommended
[  277.083970][ T7235] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  277.168698][ T7235] System zones: 0-2, 18-18, 34-34
[  277.214457][ T7235] EXT4-fs warning (device loop0): ext4_update_dynamic_rev:1062: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  277.306341][ T7235] EXT4-fs (loop0): 1 truncate cleaned up
[  277.343775][ T7235] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  277.454338][   T26] audit: type=1800 audit(1739518736.455:27): pid=7235 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.861" name="file1" dev="loop0" ino=15 res=0 errno=0
[  277.643409][ T7249] loop4: detected capacity change from 0 to 2048
[  278.127330][ T7251] usb usb3: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  278.134971][ T7251] usb usb3: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  278.210703][ T7248] device wg2 entered promiscuous mode
[  279.176908][ T7260] loop0: detected capacity change from 0 to 2048
[  279.674641][ T7260] EXT4-fs (loop0): mounted filesystem without journal. Opts: jqfmt=vfsv0,nogrpid,,errors=continue. Quota mode: none.
[  279.768622][   T13] usb 4-1: new high-speed USB device number 17 using dummy_hcd
[  280.147372][ T7280] loop6: detected capacity change from 0 to 512
[  280.153973][   T13] usb 4-1: Using ep0 maxpacket: 32
[  280.166800][ T7278] loop1: detected capacity change from 0 to 512
[  280.250592][ T7278] EXT4-fs (loop1): Test dummy encryption mode enabled
[  280.257556][ T7278] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  280.268264][ T7280] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  280.269275][ T7282] loop4: detected capacity change from 0 to 512
[  280.288633][   T13] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  280.308425][   T13] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  280.323252][ T4167] EXT4-fs error (device loop0): ext4_map_blocks:628: inode #2: block 16: comm syz-executor: lblock 0 mapped to illegal pblock 16 (length 1)
[  280.349369][ T7280] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a802e12c, mo2=0002]
[  280.368062][ T7282] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  280.370370][ T7278] EXT4-fs error (device loop1): ext4_orphan_get:1427: comm syz.1.873: bad orphan inode 131083
[  280.387812][ T7282] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  280.408549][ T7280] System zones: 1-12
[  280.413630][ T7280] EXT4-fs (loop6): orphan cleanup on readonly fs
[  280.423968][ T7280] EXT4-fs error (device loop6): ext4_validate_block_bitmap:438: comm syz.6.875: bg 0: block 361: padding at end of block bitmap is not set
[  280.447579][ T4167] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5806: Corrupt filesystem
[  280.457506][ T7280] EXT4-fs (loop6): Remounting filesystem read-only
[  280.457630][   T13] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  280.464444][ T7280] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6183: Corrupt filesystem
[  280.479041][ T4167] EXT4-fs error (device loop0): ext4_dirty_inode:6010: inode #18: comm syz-executor: mark_inode_dirty error
[  280.494691][ T7280] EXT4-fs (loop6): Remounting filesystem read-only
[  280.503115][ T7280] EXT4-fs error (device loop6): ext4_free_branches:1030: inode #11: comm syz.6.875: invalid indirect mapped block 12 (level 1)
[  280.517238][ T7282] EXT4-fs (loop4): warning: checktime reached, running e2fsck is recommended
[  280.519312][ T7278] EXT4-fs (loop1): mounted filesystem without journal. Opts: test_dummy_encryption,init_itable,mb_optimize_scan=0x0000000000000001,,errors=continue. Quota mode: none.
[  280.544337][ T7280] EXT4-fs (loop6): Remounting filesystem read-only
[  280.551116][ T7282] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  280.554287][   T13] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  280.560533][ T7282] System zones: 0-2, 18-18, 34-34
[  280.584783][   T13] usb 4-1: config 0 descriptor??
[  280.601884][ T7280] EXT4-fs error (device loop6): ext4_free_branches:1030: inode #11: comm syz.6.875: invalid indirect mapped block 2 (level 2)
[  280.628706][ T7282] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1062: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  280.643825][ T7280] EXT4-fs (loop6): Remounting filesystem read-only
[  280.654798][   T13] hub 4-1:0.0: bad descriptor, ignoring hub
[  280.660867][   T13] hub: probe of 4-1:0.0 failed with error -5
[  280.664082][ T7280] EXT4-fs (loop6): 1 truncate cleaned up
[  280.669411][   T13] usbhid 4-1:0.0: couldn't find an input interrupt endpoint
[  280.675497][ T7282] EXT4-fs (loop4): 1 truncate cleaned up
[  280.688678][ T7280] EXT4-fs (loop6): mounted filesystem without journal. Opts: noload,max_batch_time=0x0000000000000007,inode_readahead_blks=0x0000000000000040,errors=remount-ro,init_itable. Quota mode: none.
[  280.700606][ T7282] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  280.807573][   T26] audit: type=1800 audit(1739518739.805:28): pid=7282 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.876" name="file1" dev="loop4" ino=15 res=0 errno=0
[  281.161361][ T7290] usb usb3: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  281.169111][ T7290] usb usb3: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  281.480360][ T7278] fscrypt: AES-256-CTS-CBC using implementation "cts-cbc-aes-aesni"
[  282.165007][ T7298] device wg2 left promiscuous mode
[  282.171359][   T13] usb 4-1: USB disconnect, device number 17
[  282.292974][ T7298] device wg2 entered promiscuous mode
[  282.467145][ T7309] loop3: detected capacity change from 0 to 1024
[  282.492346][ T7304] loop6: detected capacity change from 0 to 8192
[  282.651340][ T7315] loop1: detected capacity change from 0 to 512
[  282.789899][   T13] usb 5-1: new full-speed USB device number 14 using dummy_hcd
[  282.843572][ T4301] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  282.846593][ T7315] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  283.691609][ T7315] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[  283.909889][ T7315] EXT4-fs (loop1): warning: checktime reached, running e2fsck is recommended
[  283.931524][ T7324] 9pnet: Insufficient options for proto=fd
[  283.942722][ T7315] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  283.970110][ T7315] System zones: 0-2, 18-18, 34-34
[  284.004798][ T7315] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1062: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  284.026542][ T7315] EXT4-fs (loop1): 1 truncate cleaned up
[  284.043311][ T7315] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  284.068749][   T26] audit: type=1800 audit(1739518743.075:29): pid=7315 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.889" name="file1" dev="loop1" ino=15 res=0 errno=0
[  284.150658][ T7328] loop3: detected capacity change from 0 to 512
[  284.245927][ T4301] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  284.261579][   T13] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  284.274645][ T7331] loop6: detected capacity change from 0 to 16
[  284.285453][ T7328] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  284.295833][   T13] usb 5-1: too many endpoints for config 1 interface 0 altsetting 0: 255, using maximum allowed: 30
[  284.314917][ T7331] erofs: (device loop6): mounted with root inode @ nid 36.
[  284.325228][   T13] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  284.366243][ T7328] EXT4-fs (loop3): 1 truncate cleaned up
[  284.433956][ T7333] usb usb3: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  284.441904][ T7333] usb usb3: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  284.722737][ T7328] EXT4-fs (loop3): mounted filesystem without journal. Opts: nombcache,jqfmt=vfsold,debug_want_extra_isize=0x000000000000006a,auto_da_alloc,errors=remount-ro,quota,. Quota mode: writeback.
[  284.909120][ T4301] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  285.092393][   T13] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  285.102774][   T13] usb 5-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 255
[  285.241182][   T13] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  285.257080][ T7316] chnl_net:caif_netlink_parms(): no params data found
[  285.283507][   T13] usb 5-1: New USB device strings: Mfr=8, Product=0, SerialNumber=1
[  285.296453][   T13] usb 5-1: Manufacturer: syz
[  285.302844][   T13] usb 5-1: SerialNumber: syz
[  285.346402][ T4301] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  285.493025][ T7343] loop1: detected capacity change from 0 to 2048
[  285.539645][   T13] cdc_acm 5-1:1.0: Control and data interfaces are not separated!
[  285.555802][   T13] cdc_acm 5-1:1.0: This needs exactly 3 endpoints
[  285.564948][   T13] cdc_acm: probe of 5-1:1.0 failed with error -22
[  285.576017][   T13] usb 5-1: USB disconnect, device number 14
[  285.605955][ T7343] EXT4-fs (loop1): Project quota feature not enabled. Cannot enable project quota enforcement.
[  285.641103][ T7354] loop6: detected capacity change from 0 to 8192
[  285.718475][ T4212] Bluetooth: hci1: command 0x0409 tx timeout
[  285.738063][ T7316] bridge0: port 1(bridge_slave_0) entered blocking state
[  285.770032][ T7316] bridge0: port 1(bridge_slave_0) entered disabled state
[  285.919929][ T7316] device bridge_slave_0 entered promiscuous mode
[  285.923857][ T7358] loop4: detected capacity change from 0 to 512
[  285.954055][ T7316] bridge0: port 2(bridge_slave_1) entered blocking state
[  285.963817][ T7360] loop1: detected capacity change from 0 to 512
[  285.977007][ T7316] bridge0: port 2(bridge_slave_1) entered disabled state
[  286.899443][ T7360] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  286.913576][ T7358] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  286.945640][ T7316] device bridge_slave_1 entered promiscuous mode
[  287.001478][ T7360] EXT4-fs (loop1): 1 truncate cleaned up
[  287.008898][ T7358] EXT4-fs (loop4): 1 truncate cleaned up
[  287.062806][ T7360] EXT4-fs (loop1): mounted filesystem without journal. Opts: nombcache,jqfmt=vfsold,debug_want_extra_isize=0x000000000000006a,auto_da_alloc,errors=remount-ro,quota,. Quota mode: writeback.
[  287.082918][ T7358] EXT4-fs (loop4): mounted filesystem without journal. Opts: debug_want_extra_isize=0x000000000000002e,min_batch_time=0x0000000000000fff,inode_readahead_blks=0x0000000000000080,stripe=0x0000000000004000,errors=remount-ro,max_batch_time=0x0000000000000004,. Quota mode: none.
[  287.205076][ T7316] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  287.269756][ T7316] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  287.326198][ T7369] loop3: detected capacity change from 0 to 512
[  287.410863][ T7369] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  287.437754][ T7316] team0: Port device team_slave_0 added
[  287.464039][ T7369] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem
[  287.535096][ T7369] EXT4-fs (loop3): warning: checktime reached, running e2fsck is recommended
[  287.551716][ T7316] team0: Port device team_slave_1 added
[  287.618827][ T7369] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  287.628092][ T7369] System zones: 0-2, 18-18, 34-34
[  287.635393][ T7369] EXT4-fs warning (device loop3): ext4_update_dynamic_rev:1062: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  287.652368][ T7369] EXT4-fs (loop3): 1 truncate cleaned up
[  287.658055][ T7369] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  287.690106][   T26] audit: type=1800 audit(1739518746.695:30): pid=7369 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.904" name="file1" dev="loop3" ino=15 res=0 errno=0
[  287.877907][ T4595] Bluetooth: hci1: command 0x041b tx timeout
[  288.035130][ T7381] usb usb3: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  288.042773][ T7381] usb usb3: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  288.369262][ T7316] batman_adv: batadv0: Adding interface: batadv_slave_0
[  288.376444][ T7316] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  288.432971][ T7316] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  288.455968][ T7316] batman_adv: batadv0: Adding interface: batadv_slave_1
[  288.465837][ T7316] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  288.518176][ T7316] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  288.584539][ T7316] device hsr_slave_0 entered promiscuous mode
[  288.741894][ T7316] device hsr_slave_1 entered promiscuous mode
[  288.758789][ T7316] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  288.759130][ T7389] loop1: detected capacity change from 0 to 512
[  288.766430][ T7316] Cannot create hsr debugfs directory
[  288.814565][ T7392] IPv6: NLM_F_CREATE should be specified when creating new route
[  288.853361][ T7393] loop3: detected capacity change from 0 to 2048
[  288.898216][ T7393] EXT4-fs (loop3): Project quota feature not enabled. Cannot enable project quota enforcement.
[  288.908525][ T7389] EXT4-fs (loop1): Ignoring removed nobh option
[  288.986667][ T7395] loop6: detected capacity change from 0 to 8192
[  289.056358][ T7389] EXT4-fs error (device loop1): ext4_do_update_inode:5174: inode #3: comm syz.1.912: corrupted inode contents
[  289.099604][ T7389] EXT4-fs (loop1): Remounting filesystem read-only
[  289.106166][ T7389] EXT4-fs error (device loop1): ext4_dirty_inode:6010: inode #3: comm syz.1.912: mark_inode_dirty error
[  289.166247][ T7407] loop3: detected capacity change from 0 to 1024
[  289.296832][ T7389] EXT4-fs (loop1): Remounting filesystem read-only
[  289.319600][ T7389] EXT4-fs error (device loop1): ext4_do_update_inode:5174: inode #3: comm syz.1.912: corrupted inode contents
[  289.379865][ T7389] EXT4-fs (loop1): Remounting filesystem read-only
[  290.040798][ T4353] Bluetooth: hci1: command 0x040f tx timeout
[  290.112736][ T7389] EXT4-fs error (device loop1): __ext4_ext_dirty:183: inode #3: comm syz.1.912: mark_inode_dirty error
[  290.133052][ T7412] loop4: detected capacity change from 0 to 512
[  290.189177][ T7389] EXT4-fs (loop1): Remounting filesystem read-only
[  290.197140][ T7407] hfsplus: xattr searching failed
[  290.222507][ T7389] Quota error (device loop1): write_blk: dquota write failed
[  290.255431][ T7413] hfsplus: xattr searching failed
[  290.268748][ T7389] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  290.281986][ T7316] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  290.304164][ T7413] hfsplus: xattr searching failed
[  290.319220][ T7389] EXT4-fs error (device loop1): ext4_acquire_dquot:6197: comm syz.1.912: Failed to acquire dquot type 0
[  290.331958][ T7316] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  290.356793][ T7316] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  290.371279][ T7389] EXT4-fs (loop1): Remounting filesystem read-only
[  290.399197][ T7389] EXT4-fs error (device loop1): ext4_do_update_inode:5174: inode #16: comm syz.1.912: corrupted inode contents
[  290.432488][ T7316] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  290.471916][ T7389] EXT4-fs (loop1): Remounting filesystem read-only
[  290.478787][ T7389] EXT4-fs error (device loop1): ext4_dirty_inode:6010: inode #16: comm syz.1.912: mark_inode_dirty error
[  290.502148][ T7389] EXT4-fs (loop1): Remounting filesystem read-only
[  290.508814][ T7389] EXT4-fs error (device loop1): ext4_do_update_inode:5174: inode #16: comm syz.1.912: corrupted inode contents
[  290.538498][ T7412] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  290.539118][ T7389] EXT4-fs (loop1): Remounting filesystem read-only
[  290.547700][ T7412] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  290.639597][ T7412] EXT4-fs (loop4): warning: checktime reached, running e2fsck is recommended
[  290.673479][ T7389] EXT4-fs error (device loop1): __ext4_ext_dirty:183: inode #16: comm syz.1.912: mark_inode_dirty error
[  290.691997][ T7420] loop6: detected capacity change from 0 to 164
[  290.730897][ T7389] EXT4-fs (loop1): Remounting filesystem read-only
[  290.741303][ T7389] EXT4-fs error (device loop1): ext4_do_update_inode:5174: inode #16: comm syz.1.912: corrupted inode contents
[  290.760068][ T7389] EXT4-fs (loop1): Remounting filesystem read-only
[  290.787345][ T7389] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem
[  290.796353][ T7412] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  290.823880][ T7389] EXT4-fs (loop1): Remounting filesystem read-only
[  290.835189][ T7389] EXT4-fs error (device loop1): ext4_do_update_inode:5174: inode #16: comm syz.1.912: corrupted inode contents
[  290.858453][ T7412] System zones: 0-2, 18-18, 34-34
[  290.876792][ T7316] 8021q: adding VLAN 0 to HW filter on device bond0
[  290.879301][ T7412] 
[  290.892741][ T7389] EXT4-fs (loop1): Remounting filesystem read-only
[  290.913615][ T7412] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1062: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  290.928698][ T7389] EXT4-fs error (device loop1): ext4_truncate:4272: inode #16: comm syz.1.912: mark_inode_dirty error
[  290.937477][ T7412] EXT4-fs (loop4): 1 truncate cleaned up
[  290.963248][ T7412] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  290.971048][ T7316] 8021q: adding VLAN 0 to HW filter on device team0
[  290.981232][ T7389] EXT4-fs (loop1): Remounting filesystem read-only
[  290.987768][ T7389] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem
[  291.007887][   T26] audit: type=1800 audit(1739518749.995:31): pid=7412 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.919" name="file1" dev="loop4" ino=15 res=0 errno=0
[  291.133489][ T4516] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  291.147720][ T7389] EXT4-fs (loop1): Remounting filesystem read-only
[  291.155695][ T4516] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  291.189415][ T7389] EXT4-fs (loop1): 1 truncate cleaned up
[  291.196356][ T4516] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  291.198595][ T7389] EXT4-fs (loop1): mounted filesystem without journal. Opts: errors=remount-ro,nobh,. Quota mode: writeback.
[  291.326566][ T7428] usb usb3: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  291.334228][ T7428] usb usb3: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  291.736609][ T4516] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  291.858702][ T7389] ext4 filesystem being mounted at /200/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  291.959848][ T4516] bridge0: port 1(bridge_slave_0) entered blocking state
[  291.967025][ T4516] bridge0: port 1(bridge_slave_0) entered forwarding state
[  292.037239][ T4516] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  292.046247][ T4516] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  292.076849][ T4516] bridge0: port 2(bridge_slave_1) entered blocking state
[  292.084101][ T4516] bridge0: port 2(bridge_slave_1) entered forwarding state
[  292.129829][ T4212] Bluetooth: hci1: command 0x0419 tx timeout
[  292.178914][ T4516] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  292.194807][ T7430] loop6: detected capacity change from 0 to 2048
[  292.354496][ T4516] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  292.374840][ T4516] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  292.412138][ T7442] loop4: detected capacity change from 0 to 512
[  292.429867][ T4516] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  292.449962][ T4516] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  292.460739][ T4516] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  292.499759][ T7442] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: comm syz.4.929: inode #1: comm syz.4.929: iget: illegal inode #
[  292.523548][ T7316] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  292.529532][ T7430]  loop6: unable to read partition table
[  292.535073][ T7316] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  292.552542][ T7430] loop6: partition table beyond EOD, truncated
[  292.558900][ T7430] loop_reread_partitions: partition scan of loop6 () failed (rc=-5)
[  292.562676][ T7442] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.929: error while reading EA inode 1 err=-117
[  292.582384][ T5337] usb 2-1: new high-speed USB device number 28 using dummy_hcd
[  292.590646][ T1418] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  292.600742][ T1418] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  292.611228][ T1418] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  292.618805][ T4595] usb 4-1: new full-speed USB device number 18 using dummy_hcd
[  292.620529][ T1418] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  292.637576][ T1418] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  292.646688][ T1418] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  292.661433][ T7442] EXT4-fs (loop4): 1 orphan inode deleted
[  292.667389][ T7442] EXT4-fs (loop4): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000005,journal_dev=0x0000000000008000,nojournal_checksum,minixdf,resgid=0x0000000000000000,nobarrier,usrjquota=,,errors=continue. Quota mode: none.
[  292.707858][ T1418] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  292.737444][ T3546]  loop6: unable to read partition table
[  292.778608][ T3546] loop6: partition table beyond EOD, truncated
[  292.848498][ T5337] usb 2-1: Using ep0 maxpacket: 16
[  292.916127][ T4301] device hsr_slave_0 left promiscuous mode
[  292.927105][ T7449] loop4: detected capacity change from 0 to 512
[  292.933838][ T4301] device hsr_slave_1 left promiscuous mode
[  292.949090][ T4301] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  292.966900][ T4301] batman_adv: batadv0: Removing interface: batadv_slave_0
[  292.974842][ T5337] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  292.989313][ T4595] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  293.003543][ T5337] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  293.014473][ T7449] EXT4-fs (loop4): Ignoring removed mblk_io_submit option
[  293.022992][ T4595] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 4
[  293.036517][ T7449] EXT4-fs (loop4): Unrecognized mount option "seclabel" or missing value
[  293.079175][ T4595] usb 4-1: New USB device found, idVendor=1e7d, idProduct=2db4, bcdDevice= 0.00
[  293.088267][ T4595] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  293.150143][ T4595] usb 4-1: config 0 descriptor??
[  293.200143][ T4301] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  293.218113][ T4301] batman_adv: batadv0: Removing interface: batadv_slave_1
[  293.225834][ T5337] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  293.272110][ T5337] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  293.300719][ T5337] usb 2-1: Product: syz
[  293.305705][ T5337] usb 2-1: Manufacturer: syz
[  293.317273][ T5337] usb 2-1: SerialNumber: syz
[  293.372301][ T7456] loop4: detected capacity change from 0 to 512
[  294.185958][ T4301] device bridge_slave_1 left promiscuous mode
[  294.192347][ T4301] bridge0: port 2(bridge_slave_1) entered disabled state
[  294.212997][ T4301] device bridge_slave_0 left promiscuous mode
[  294.228873][ T4301] bridge0: port 1(bridge_slave_0) entered disabled state
[  294.238865][ T5337] usb 2-1: 0:2 : does not exist
[  294.255536][ T4301] device veth1_macvtap left promiscuous mode
[  294.262163][ T4301] device veth0_macvtap left promiscuous mode
[  294.272376][ T7461] loop1: detected capacity change from 0 to 512
[  294.284619][ T7460] loop6: detected capacity change from 0 to 512
[  294.302996][ T4301] device veth1_vlan left promiscuous mode
[  294.314991][ T5337] usb 2-1: USB disconnect, device number 28
[  294.321465][ T4301] device veth0_vlan left promiscuous mode
[  294.346443][ T7460] EXT4-fs (loop6): feature flags set on rev 0 fs, running e2fsck is recommended
[  294.356067][ T7461] EXT4-fs (loop1): Ignoring removed nobh option
[  294.367862][ T7460] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[  294.382502][ T7460] EXT4-fs (loop6): warning: checktime reached, running e2fsck is recommended
[  294.396413][ T7460] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  294.407508][ T7460] System zones: 0-2, 18-18, 34-34
[  294.415400][ T7460] EXT4-fs warning (device loop6): ext4_update_dynamic_rev:1062: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  294.415949][ T7461] EXT4-fs error (device loop1): ext4_do_update_inode:5174: inode #3: comm syz.1.934: corrupted inode contents
[  294.454761][ T7460] EXT4-fs (loop6): 1 truncate cleaned up
[  294.461349][ T7460] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  294.461392][ T7461] EXT4-fs (loop1): Remounting filesystem read-only
[  294.482138][   T26] audit: type=1800 audit(1739518753.495:32): pid=7460 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.935" name="file1" dev="loop6" ino=15 res=0 errno=0
[  294.498803][ T4595] usbhid 4-1:0.0: can't add hid device: -71
[  294.503229][ T7461] EXT4-fs error (device loop1): ext4_dirty_inode:6010: inode #3: comm syz.1.934: mark_inode_dirty error
[  294.522689][ T7461] EXT4-fs (loop1): Remounting filesystem read-only
[  294.526095][ T4595] usbhid: probe of 4-1:0.0 failed with error -71
[  294.653815][ T7461] EXT4-fs error (device loop1): ext4_do_update_inode:5174: inode #3: comm syz.1.934: corrupted inode contents
[  294.716763][ T4159] udevd[4159]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  294.737440][ T4595] usb 4-1: USB disconnect, device number 18
[  294.741534][ T7461] EXT4-fs (loop1): Remounting filesystem read-only
[  294.866328][ T7467] usb usb3: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  294.874613][ T7467] usb usb3: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  294.999571][ T7461] EXT4-fs error (device loop1): __ext4_ext_dirty:183: inode #3: comm syz.1.934: mark_inode_dirty error
[  295.196605][ T7461] EXT4-fs (loop1): Remounting filesystem read-only
[  295.234935][ T7461] Quota error (device loop1): write_blk: dquota write failed
[  295.298717][ T7461] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  295.315341][ T4301] team0 (unregistering): Port device team_slave_1 removed
[  295.347014][ T7461] EXT4-fs error (device loop1): ext4_acquire_dquot:6197: comm syz.1.934: Failed to acquire dquot type 0
[  295.416245][ T4301] team0 (unregistering): Port device team_slave_0 removed
[  295.428862][ T7461] EXT4-fs (loop1): Remounting filesystem read-only
[  295.461447][ T4301] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  295.480761][ T7461] EXT4-fs error (device loop1): ext4_do_update_inode:5174: inode #16: comm syz.1.934: corrupted inode contents
[  295.486238][ T4301] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  295.509393][ T7461] EXT4-fs (loop1): Remounting filesystem read-only
[  295.516034][ T7461] EXT4-fs error (device loop1): ext4_dirty_inode:6010: inode #16: comm syz.1.934: mark_inode_dirty error
[  295.568874][ T7461] EXT4-fs (loop1): Remounting filesystem read-only
[  295.589311][ T7461] EXT4-fs error (device loop1): ext4_do_update_inode:5174: inode #16: comm syz.1.934: corrupted inode contents
[  295.639163][ T7461] EXT4-fs (loop1): Remounting filesystem read-only
[  295.645921][ T7461] EXT4-fs error (device loop1): __ext4_ext_dirty:183: inode #16: comm syz.1.934: mark_inode_dirty error
[  295.707613][ T7461] EXT4-fs (loop1): Remounting filesystem read-only
[  295.732026][ T7461] EXT4-fs error (device loop1): ext4_do_update_inode:5174: inode #16: comm syz.1.934: corrupted inode contents
[  295.764779][ T4301] bond0 (unregistering): Released all slaves
[  295.766299][ T7461] EXT4-fs (loop1): Remounting filesystem read-only
[  295.786230][ T7461] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem
[  295.796479][ T7461] EXT4-fs (loop1): Remounting filesystem read-only
[  295.804750][ T7461] EXT4-fs error (device loop1): ext4_do_update_inode:5174: inode #16: comm syz.1.934: corrupted inode contents
[  295.828831][ T7461] EXT4-fs (loop1): Remounting filesystem read-only
[  295.835395][ T7461] EXT4-fs error (device loop1): ext4_truncate:4272: inode #16: comm syz.1.934: mark_inode_dirty error
[  295.868054][ T7461] EXT4-fs (loop1): Remounting filesystem read-only
[  295.876134][ T7461] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem
[  295.916144][ T7461] EXT4-fs (loop1): Remounting filesystem read-only
[  295.927109][ T7461] EXT4-fs (loop1): 1 truncate cleaned up
[  295.947324][ T4516] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  295.959326][ T7461] EXT4-fs (loop1): mounted filesystem without journal. Opts: errors=remount-ro,nobh,. Quota mode: writeback.
[  295.960673][ T4516] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  296.004513][ T7461] ext4 filesystem being mounted at /202/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  296.026577][ T7316] 8021q: adding VLAN 0 to HW filter on device batadv0
[  296.348835][ T7498] loop1: detected capacity change from 0 to 512
[  296.398477][   T23] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[  296.419500][ T7498] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  296.433486][ T7498] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[  296.436385][ T7485] loop3: detected capacity change from 0 to 256
[  296.453804][ T4516] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  296.463254][ T4516] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  296.477231][ T7498] EXT4-fs (loop1): warning: checktime reached, running e2fsck is recommended
[  296.487231][ T7498] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  296.490331][ T4516] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  296.495916][ T7498] System zones: 0-2, 18-18, 34-34
[  296.511432][ T4516] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  296.528439][ T4211] usb 7-1: new full-speed USB device number 8 using dummy_hcd
[  296.541319][ T4516] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  296.541998][ T4516] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  296.542121][ T7498] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1062: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  296.546270][ T7316] device veth0_vlan entered promiscuous mode
[  296.556028][ T7498] EXT4-fs (loop1): 1 truncate cleaned up
[  296.595509][ T7316] device veth1_vlan entered promiscuous mode
[  296.596140][ T7498] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  296.638648][   T23] usb 5-1: Using ep0 maxpacket: 16
[  296.675493][ T4274] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  296.693358][   T26] audit: type=1800 audit(1739518755.695:33): pid=7498 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.947" name="file1" dev="loop1" ino=15 res=0 errno=0
[  296.703275][ T4274] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  296.768698][   T23] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  296.803789][   T23] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  296.846283][ T4274] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  296.886726][ T4274] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  296.900677][ T4211] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  296.922194][ T7316] device veth0_macvtap entered promiscuous mode
[  296.935707][ T4211] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 4
[  296.954733][ T4372] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  297.070698][ T7504] usb usb3: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  297.078312][ T7504] usb usb3: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  297.349597][ T7316] device veth1_macvtap entered promiscuous mode
[  297.490012][ T7316] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  297.548394][ T7316] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  297.599686][ T7316] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  297.629029][   T23] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  297.638245][ T4211] usb 7-1: New USB device found, idVendor=1e7d, idProduct=2db4, bcdDevice= 0.00
[  297.644109][ T7316] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  297.648126][   T23] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  297.665379][ T4211] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  297.674221][   T23] usb 5-1: Product: syz
[  297.678488][   T23] usb 5-1: Manufacturer: syz
[  297.683098][   T23] usb 5-1: SerialNumber: syz
[  297.689415][ T4211] usb 7-1: config 0 descriptor??
[  297.719709][ T7316] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  297.733113][ T7316] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  297.758659][ T7316] batman_adv: batadv0: Interface activated: batadv_slave_0
[  297.772758][ T7316] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  297.783320][ T7316] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  297.793855][ T7316] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  297.807092][ T7316] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  297.817079][ T7316] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  297.827580][ T7316] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  297.845911][ T7316] batman_adv: batadv0: Interface activated: batadv_slave_1
[  297.855605][ T4516] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  297.886717][ T4516] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  297.906242][ T7512] netlink: 8 bytes leftover after parsing attributes in process `syz.3.952'.
[  297.922370][ T4516] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  297.949691][ T4516] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  297.968593][ T7512] netlink: 8 bytes leftover after parsing attributes in process `syz.3.952'.
[  298.032293][   T23] usb 5-1: 0:2 : does not exist
[  298.112423][   T23] usb 5-1: USB disconnect, device number 15
[  298.209179][ T7316] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  298.238507][ T7316] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  298.247267][ T7316] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  298.276080][ T7316] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  298.399426][ T4171] udevd[4171]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  298.417052][ T4372] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  298.446552][ T4372] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  298.472785][ T4211] usbhid 7-1:0.0: can't add hid device: -71
[  298.487596][ T4211] usbhid: probe of 7-1:0.0 failed with error -71
[  298.501556][ T7520] loop1: detected capacity change from 0 to 2048
[  298.510907][ T4372] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  298.528662][ T4211] usb 7-1: USB disconnect, device number 8
[  298.555712][ T4372] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  298.587966][ T4372] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  298.627685][ T4274] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  298.638025][ T7520] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  299.808579][ T7537] loop4: detected capacity change from 0 to 512
[  300.042353][ T7549] loop7: detected capacity change from 0 to 256
[  300.998886][ T7537] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  301.043947][ T7537] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  301.076314][ T7549] exFAT-fs (loop7): failed to load upcase table (idx : 0x00011a39, chksum : 0xd54015fb, utbl_chksum : 0xe619d30d)
[  301.137203][ T7537] EXT4-fs (loop4): warning: checktime reached, running e2fsck is recommended
[  301.178541][ T7537] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  301.198504][ T1111] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[  301.238109][ T7537] System zones: 0-2, 18-18, 34-34
[  301.291183][ T7537] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1062: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  301.333249][ T7537] EXT4-fs (loop4): 1 truncate cleaned up
[  301.344763][ T7537] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  301.366101][ T7566] loop1: detected capacity change from 0 to 1024
[  301.374280][   T26] audit: type=1800 audit(1739518760.375:34): pid=7537 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.959" name="file1" dev="loop4" ino=15 res=0 errno=0
[  301.787141][ T4555] usb 4-1: new high-speed USB device number 19 using dummy_hcd
[  301.813758][ T7571] usb usb3: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  301.822093][ T7571] usb usb3: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  303.818701][ T1111] usb 7-1: unable to read config index 0 descriptor/start: -71
[  303.826497][ T1111] usb 7-1: can't read configurations, error -71
[  303.934107][ T7588] device wg2 left promiscuous mode
[  303.962333][ T7591] loop1: detected capacity change from 0 to 16
[  303.983316][ T7588] device wg2 entered promiscuous mode
[  304.078266][ T7591] erofs: (device loop1): mounted with root inode @ nid 36.
[  304.088801][ T4555] usb 4-1: config 0 interface 0 has no altsetting 0
[  304.110484][ T4555] usb 4-1: New USB device found, idVendor=054c, idProduct=024b, bcdDevice= 0.00
[  304.138539][ T4555] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  304.175652][ T4555] usb 4-1: config 0 descriptor??
[  304.247261][ T7599] loop4: detected capacity change from 0 to 512
[  304.406771][ T7599] EXT4-fs (loop4): couldn't mount as ext3 due to feature incompatibilities
[  305.468643][ T4555] usbhid 4-1:0.0: can't add hid device: -71
[  305.481931][ T4555] usbhid: probe of 4-1:0.0 failed with error -71
[  305.585030][ T4555] usb 4-1: USB disconnect, device number 19
[  305.598202][ T7608] loop3: detected capacity change from 0 to 512
[  306.077969][ T7616] loop6: detected capacity change from 0 to 1024
[  306.235088][ T7616] hfsplus: xattr searching failed
[  306.296204][ T7608] EXT4-fs error (device loop3): ext4_do_update_inode:5174: inode #3: comm syz.3.985: corrupted inode contents
[  306.329148][ T7608] EXT4-fs error (device loop3): ext4_dirty_inode:6010: inode #3: comm syz.3.985: mark_inode_dirty error
[  306.402093][ T4370] hfsplus: bad catalog file entry
[  306.409126][ T7608] EXT4-fs error (device loop3): ext4_do_update_inode:5174: inode #3: comm syz.3.985: corrupted inode contents
[  306.432997][ T4370] hfsplus: b-tree write err: -5, ino 3
[  306.480696][ T7608] EXT4-fs error (device loop3): __ext4_ext_dirty:183: inode #3: comm syz.3.985: mark_inode_dirty error
[  306.507957][ T7608] Quota error (device loop3): write_blk: dquota write failed
[  306.522744][ T7629] loop1: detected capacity change from 0 to 512
[  306.583432][ T7608] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  306.630144][ T7608] EXT4-fs error (device loop3): ext4_acquire_dquot:6197: comm syz.3.985: Failed to acquire dquot type 0
[  306.722836][ T7608] EXT4-fs error (device loop3): ext4_do_update_inode:5174: inode #16: comm syz.3.985: corrupted inode contents
[  306.734944][ T7634] loop6: detected capacity change from 0 to 8
[  306.742862][ T7608] EXT4-fs error (device loop3): ext4_dirty_inode:6010: inode #16: comm syz.3.985: mark_inode_dirty error
[  306.833909][ T7638] loop4: detected capacity change from 0 to 8
[  306.871787][ T7637] loop7: detected capacity change from 0 to 512
[  306.895710][ T7608] EXT4-fs error (device loop3): ext4_do_update_inode:5174: inode #16: comm syz.3.985: corrupted inode contents
[  306.915351][ T7608] EXT4-fs error (device loop3): __ext4_ext_dirty:183: inode #16: comm syz.3.985: mark_inode_dirty error
[  306.932626][ T7608] EXT4-fs error (device loop3): ext4_do_update_inode:5174: inode #16: comm syz.3.985: corrupted inode contents
[  306.954607][ T7608] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[  307.062267][ T7638] MTD: Attempt to mount non-MTD device "/dev/loop4"
[  307.130701][ T7638] cramfs: Error -5 while decompressing!
[  307.136362][ T7638] cramfs: ffffffff96bbb2a8(26)->ffff888072528000(4096)
[  307.143590][ T7638] cramfs: Error -3 while decompressing!
[  307.149309][ T7638] cramfs: ffffffff96bbb2c2(26)->ffff88807252a000(4096)
[  307.156332][ T7638] cramfs: Error -3 while decompressing!
[  307.162022][ T7638] cramfs: ffffffff96bbb2dc(16)->ffff88807252b000(4096)
[  307.170087][ T7638] cramfs: Error -5 while decompressing!
[  307.175706][ T7638] cramfs: ffffffff96bbb2a8(26)->ffff888072528000(4096)
[  307.367991][ T7608] EXT4-fs error (device loop3): ext4_do_update_inode:5174: inode #16: comm syz.3.985: corrupted inode contents
[  307.369160][ T7608] EXT4-fs error (device loop3): ext4_truncate:4272: inode #16: comm syz.3.985: mark_inode_dirty error
[  307.369633][ T7608] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[  307.383754][ T7608] EXT4-fs (loop3): 1 truncate cleaned up
[  307.383783][ T7608] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  307.383907][ T7608] ext4 filesystem being mounted at /193/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  307.388885][ T7637] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  307.399586][ T7629] EXT4-fs error (device loop1): ext4_expand_extra_isize_ea:2766: inode #12: comm syz.1.994: corrupted xattr block 142
[  307.423053][ T7629] EXT4-fs (loop1): Remounting filesystem read-only
[  307.423143][ T7629] EXT4-fs (loop1): 1 truncate cleaned up
[  307.423165][ T7629] EXT4-fs (loop1): mounted filesystem without journal. Opts: abort,jqfmt=vfsv0,debug_want_extra_isize=0x000000000000005c,noauto_da_alloc,errors=remount-ro,usrjquota=,noload,. Quota mode: none.
[  307.430502][ T7629] EXT4-fs error (device loop1): ext4_xattr_block_list:719: inode #12: comm syz.1.994: corrupted xattr block 142
[  307.434117][ T7629] EXT4-fs (loop1): Remounting filesystem read-only
[  307.593823][ T7637] EXT4-fs (loop7): 1 truncate cleaned up
[  307.620547][ T7608] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: comm syz.3.985: inode #59392: comm syz.3.985: iget: illegal inode #
[  307.634669][ T7637] EXT4-fs (loop7): mounted filesystem without journal. Opts: nombcache,jqfmt=vfsold,debug_want_extra_isize=0x000000000000006a,auto_da_alloc,errors=remount-ro,quota,. Quota mode: writeback.
[  307.697481][ T7608] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.985: error while reading EA inode 59392 err=-117
[  307.768478][ T7608] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: comm syz.3.985: inode #59392: comm syz.3.985: iget: illegal inode #
[  307.839909][ T7648] loop4: detected capacity change from 0 to 256
[  307.868067][ T7647] loop1: detected capacity change from 0 to 512
[  307.901024][ T7608] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.985: error while reading EA inode 59392 err=-117
[  309.230428][ T7648] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d)
[  309.292364][ T7647] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  309.318097][ T7647] ext4 filesystem being mounted at /217/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  309.654154][   T26] audit: type=1800 audit(1739518768.655:35): pid=7648 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.999" name="file1" dev="loop4" ino=1048628 res=0 errno=0
[  309.757669][ T7659] loop6: detected capacity change from 0 to 1024
[  309.973655][ T7659] hfsplus: xattr searching failed
[  310.029269][ T7670] loop1: detected capacity change from 0 to 16
[  310.075249][  T394] hfsplus: bad catalog file entry
[  310.081748][ T7673] loop7: detected capacity change from 0 to 512
[  310.086125][  T394] hfsplus: b-tree write err: -5, ino 3
[  310.103633][ T7670] erofs: (device loop1): mounted with root inode @ nid 36.
[  310.234023][ T4555] usb 4-1: new high-speed USB device number 20 using dummy_hcd
[  310.243162][ T7673] EXT4-fs (loop7): Ignoring removed oldalloc option
[  310.273277][ T7673] EXT4-fs (loop7): feature flags set on rev 0 fs, running e2fsck is recommended
[  310.368176][ T7678] loop6: detected capacity change from 0 to 256
[  310.430581][ T7679] loop4: detected capacity change from 0 to 8
[  310.521859][ T7679] MTD: Attempt to mount non-MTD device "/dev/loop4"
[  310.564027][ T7679] cramfs: Error -5 while decompressing!
[  310.569794][ T7679] cramfs: ffffffff96bbf2a8(26)->ffff888058ffd000(4096)
[  310.576926][ T7679] cramfs: Error -3 while decompressing!
[  310.582610][ T7679] cramfs: ffffffff96bbf2c2(26)->ffff88805a7ca000(4096)
[  310.589653][ T7679] cramfs: Error -3 while decompressing!
[  310.595262][ T7679] cramfs: ffffffff96bbf2dc(16)->ffff888058efd000(4096)
[  310.602825][ T7679] cramfs: Error -5 while decompressing!
[  310.608481][ T7679] cramfs: ffffffff96bbf2a8(26)->ffff888058ffd000(4096)
[  310.858055][ T7673] EXT4-fs (loop7): warning: checktime reached, running e2fsck is recommended
[  311.027711][ T7673] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=b846c01c, mo2=0002]
[  311.037495][ T7678] exFAT-fs (loop6): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  311.088669][ T7673] System zones: 0-2, 18-18, 34-34
[  311.097948][ T7682] loop1: detected capacity change from 0 to 1024
[  311.154040][ T7673] EXT4-fs (loop7): Cannot turn on journaled quota: type 0: error -117
[  311.167203][ T7678] exFAT-fs (loop6): hint_cluster is invalid (17)
[  311.204643][ T7682] EXT4-fs (loop1): Test dummy encryption mode enabled
[  311.205653][ T7673] EXT4-fs error (device loop7): ext4_orphan_get:1427: comm syz.7.1008: bad orphan inode 15
[  311.243619][ T7685] loop4: detected capacity change from 0 to 512
[  311.256901][ T7682] EXT4-fs (loop1): mounted filesystem without journal. Opts: nombcache,barrier=0x00000000000003ff,stripe=0x0000000000000007,discard,data=ordered,debug_want_extra_isize=0x0000000000000084,max_batch_time=0x0000000000000000,test_dummy_encryption,,errors=continue. Quota mode: writeback.
[  311.261719][ T7673] ext4_test_bit(bit=14, block=18) = 1
[  311.298649][ T7673] is_bad_inode(inode)=0
[  311.302849][ T7673] NEXT_ORPHAN(inode)=2264924160
[  311.318541][ T7673] max_ino=32
[  311.321784][ T7673] i_nlink=0
[  311.324964][ T7673] EXT4-fs warning (device loop7): ext4_update_dynamic_rev:1062: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  311.338035][ T7685] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  311.375016][ T7685] EXT4-fs (loop4): 1 truncate cleaned up
[  311.381890][ T7673] EXT4-fs error (device loop7): ext4_validate_block_bitmap:438: comm syz.7.1008: bg 0: block 80: padding at end of block bitmap is not set
[  311.407551][ T4555] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  311.419012][ T4555] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  311.429216][ T4555] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  311.442431][ T4555] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  311.451782][ T4555] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  311.463707][ T7685] EXT4-fs (loop4): mounted filesystem without journal. Opts: nombcache,jqfmt=vfsold,debug_want_extra_isize=0x000000000000006a,auto_da_alloc,errors=remount-ro,quota,. Quota mode: writeback.
[  311.483972][ T4555] usb 4-1: config 0 descriptor??
[  311.718483][ T7673] EXT4-fs error (device loop7) in ext4_mb_clear_bb:6183: Corrupt filesystem
[  313.693638][ T7673] EXT4-fs (loop7): mounted filesystem without journal. Opts: abort,usrjquota=.,init_itable,init_itable,inode_readahead_blks=0x0000000000800000,data_err=abort,oldalloc,jqfmt=vfsv0,min_batch_time=0x0000000000000003,acl,,errors=continue. Quota mode: writeback.
[  313.759636][ T4595] usb 7-1: new full-speed USB device number 11 using dummy_hcd
[  313.978697][ T4555] usbhid 4-1:0.0: can't add hid device: -71
[  313.992009][ T4555] usbhid: probe of 4-1:0.0 failed with error -71
[  314.037893][ T4555] usb 4-1: USB disconnect, device number 20
[  314.138712][ T4595] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  314.175325][ T4595] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 4
[  314.318894][ T4595] usb 7-1: New USB device found, idVendor=1e7d, idProduct=2db4, bcdDevice= 0.00
[  314.327989][ T4595] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  314.420729][ T4595] usb 7-1: config 0 descriptor??
[  314.464017][ T7711] loop7: detected capacity change from 0 to 1024
[  314.470733][ T4595] usb 7-1: can't set config #0, error -71
[  314.483459][ T4595] usb 7-1: USB disconnect, device number 11
[  314.536400][ T7714] loop6: detected capacity change from 0 to 128
[  314.605193][ T7711] hfsplus: xattr searching failed
[  314.607704][ T7716] loop4: detected capacity change from 0 to 512
[  314.668513][ T4555] usb 4-1: new high-speed USB device number 21 using dummy_hcd
[  314.686082][ T7716] EXT4-fs (loop4): Ignoring removed mblk_io_submit option
[  314.718031][ T7716] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b816c118, mo2=0002]
[  314.737466][ T7716] System zones: 1-12
[  314.738493][  T394] hfsplus: bad catalog file entry
[  314.752860][  T394] hfsplus: b-tree write err: -5, ino 3
[  314.796246][ T7716] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2219: inode #15: comm syz.4.1023: corrupted in-inode xattr
[  314.819199][ T7716] EXT4-fs error (device loop4): ext4_orphan_get:1406: comm syz.4.1023: couldn't read orphan inode 15 (err -117)
[  314.908428][ T4555] usb 4-1: Using ep0 maxpacket: 16
[  314.968286][ T7716] EXT4-fs (loop4): mounted filesystem without journal. Opts: jqfmt=vfsold,data_err=abort,debug,noload,mblk_io_submit,commit=0x0000000000000005,init_itable=0x0000000000000601,grpquota,,errors=continue. Quota mode: writeback.
[  315.009216][ T7724] loop6: detected capacity change from 0 to 128
[  315.063178][ T7725] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  315.074402][ T7725] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  315.124147][ T7724] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (39871!=39978)
[  315.134395][ T4555] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  315.165324][ T4555] usb 4-1: config 0 has no interfaces?
[  315.223589][ T7724] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  315.851786][ T7730] loop1: detected capacity change from 0 to 512
[  315.968652][ T7730] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  316.008616][ T4555] usb 4-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 6.00
[  316.187644][ T7730] EXT4-fs (loop1): 1 truncate cleaned up
[  316.190402][ T4555] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  316.202333][ T4555] usb 4-1: Product: syz
[  316.206526][ T4555] usb 4-1: Manufacturer: syz
[  316.212207][ T4555] usb 4-1: SerialNumber: syz
[  316.221937][ T7730] EXT4-fs (loop1): mounted filesystem without journal. Opts: nombcache,jqfmt=vfsold,debug_want_extra_isize=0x000000000000006a,auto_da_alloc,errors=remount-ro,quota,. Quota mode: writeback.
[  316.244961][ T4555] usb 4-1: config 0 descriptor??
[  317.663885][ T5337] usb 4-1: USB disconnect, device number 21
[  317.746863][ T7744] loop7: detected capacity change from 0 to 1024
[  317.815570][ T1422] ieee802154 phy0 wpan0: encryption failed: -22
[  317.822488][ T1422] ieee802154 phy1 wpan1: encryption failed: -22
[  317.954792][ T7752] loop1: detected capacity change from 0 to 1024
[  317.977107][ T7744] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  318.027979][ T7748] loop3: detected capacity change from 0 to 8192
[  318.044020][ T7744] EXT4-fs error (device loop7): ext4_mb_mark_diskspace_used:3876: comm syz.7.1031: Allocating blocks 385-513 which overlap fs metadata
[  318.138537][ T2300] usb 5-1: new full-speed USB device number 16 using dummy_hcd
[  318.150093][ T7743] EXT4-fs (loop7): pa ffff8880601d7620: logic 16, phys. 129, len 24
[  318.158812][ T7743] EXT4-fs error (device loop7): ext4_mb_release_inode_pa:4893: group 0, free 0, pa_free 8
[  318.172659][ T7752] hfsplus: xattr searching failed
[  318.352869][  T394] hfsplus: bad catalog file entry
[  318.361503][  T394] hfsplus: b-tree write err: -5, ino 3
[  319.471305][ T7762] loop6: detected capacity change from 0 to 512
[  319.519060][ T2300] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  319.598896][ T2300] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 4
[  319.663148][ T2300] usb 5-1: New USB device found, idVendor=1e7d, idProduct=2db4, bcdDevice= 0.00
[  319.698460][ T2300] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  319.767103][ T2300] usb 5-1: config 0 descriptor??
[  319.810808][ T7762] EXT4-fs error (device loop6): ext4_xattr_inode_iget:404: comm syz.6.1038: inode #1: comm syz.6.1038: iget: illegal inode #
[  319.833861][ T7762] EXT4-fs error (device loop6): ext4_xattr_inode_iget:409: comm syz.6.1038: error while reading EA inode 1 err=-117
[  319.887924][ T7762] EXT4-fs (loop6): 1 orphan inode deleted
[  319.910229][ T7762] EXT4-fs (loop6): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000005,journal_dev=0x0000000000008000,nojournal_checksum,minixdf,resgid=0x0000000000000000,nobarrier,usrjquota=,,errors=continue. Quota mode: none.
[  319.988120][ T7772] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  320.000845][ T7772] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  320.057179][ T7774] loop3: detected capacity change from 0 to 164
[  320.303529][ T7782] loop6: detected capacity change from 0 to 1024
[  320.358929][ T4975] usb 2-1: new high-speed USB device number 29 using dummy_hcd
[  320.558616][ T2300] usbhid 5-1:0.0: can't add hid device: -71
[  320.564700][ T2300] usbhid: probe of 5-1:0.0 failed with error -71
[  320.573913][ T7782] hfsplus: xattr searching failed
[  320.589150][ T2300] usb 5-1: USB disconnect, device number 16
[  320.622751][ T4516] hfsplus: bad catalog file entry
[  320.627865][ T4516] hfsplus: b-tree write err: -5, ino 3
[  320.738596][ T4975] usb 2-1: Using ep0 maxpacket: 16
[  320.835167][ T7791] loop7: detected capacity change from 0 to 8192
[  320.862286][ T4975] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  320.912152][ T4975] usb 2-1: config 0 has no interfaces?
[  322.129067][ T4975] usb 2-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 6.00
[  322.158297][ T7799] loop4: detected capacity change from 0 to 512
[  322.165127][ T4975] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  322.231485][ T4975] usb 2-1: Product: syz
[  322.241685][ T4975] usb 2-1: Manufacturer: syz
[  322.266312][ T4975] usb 2-1: SerialNumber: syz
[  322.303040][ T4975] usb 2-1: config 0 descriptor??
[  322.580595][ T7799] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: comm syz.4.1051: inode #1: comm syz.4.1051: iget: illegal inode #
[  322.668207][ T7799] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.1051: error while reading EA inode 1 err=-117
[  322.742422][ T7799] EXT4-fs (loop4): 1 orphan inode deleted
[  322.758623][ T7799] EXT4-fs (loop4): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000005,journal_dev=0x0000000000008000,nojournal_checksum,minixdf,resgid=0x0000000000000000,nobarrier,usrjquota=,,errors=continue. Quota mode: none.
[  322.846940][ T7817] loop3: detected capacity change from 0 to 2048
[  322.947367][ T7821] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  322.958704][ T7821] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  324.553197][ T2300] usb 2-1: USB disconnect, device number 29
[  324.920995][ T7843] loop4: detected capacity change from 0 to 16
[  324.978580][ T7843] erofs: (device loop4): mounted with root inode @ nid 36.
[  325.493620][ T7855] loop4: detected capacity change from 0 to 128
[  326.078104][ T7855] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  326.184351][ T7860] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  326.195491][ T7860] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  326.482730][ T7867] loop6: detected capacity change from 0 to 1024
[  327.264950][ T7870] loop4: detected capacity change from 0 to 2048
[  327.409947][ T7875] loop3: detected capacity change from 0 to 1024
[  327.555806][ T7875] hfsplus: xattr search failed
[  327.658101][ T4170] hfsplus: node 4:3 still has 1 user(s)!
[  329.142451][ T7901] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  329.153828][ T7901] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  329.316141][ T7904] loop6: detected capacity change from 0 to 1024
[  329.542061][ T4372] hfsplus: bad catalog file entry
[  329.554058][ T4372] hfsplus: b-tree write err: -5, ino 3
[  330.120003][ T7908] loop7: detected capacity change from 0 to 1024
[  330.174929][ T7914] loop3: detected capacity change from 0 to 1024
[  331.013476][ T7908] hfsplus: xattr search failed
[  331.134251][ T4249] hfsplus: b-tree write err: -5, ino 3
[  331.425536][ T7923] loop7: detected capacity change from 0 to 2048
[  331.587886][ T7923] EXT4-fs (loop7): mounted filesystem without journal. Opts: jqfmt=vfsv0,nogrpid,,errors=continue. Quota mode: none.
[  331.957591][ T7936] loop4: detected capacity change from 0 to 1024
[  332.115844][ T7940] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  332.127702][ T7940] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  332.892814][ T7944] loop3: detected capacity change from 0 to 1024
[  332.909498][ T4516] hfsplus: bad catalog file entry
[  332.923434][ T4516] hfsplus: b-tree write err: -5, ino 3
[  333.218445][ T4595] usb 2-1: new high-speed USB device number 30 using dummy_hcd
[  333.325755][ T7956] loop3: detected capacity change from 0 to 512
[  333.336883][ T7956] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  333.346982][ T7956] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem
[  333.448680][ T4555] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  333.537816][ T7956] EXT4-fs (loop3): warning: checktime reached, running e2fsck is recommended
[  333.575520][ T7956] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  333.632139][ T7956] System zones: 0-2, 18-18, 34-34
[  333.716369][ T7956] EXT4-fs warning (device loop3): ext4_update_dynamic_rev:1062: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  333.769029][ T4555] usb 8-1: Using ep0 maxpacket: 32
[  333.870414][ T7956] EXT4-fs (loop3): 1 truncate cleaned up
[  333.934652][ T7956] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  334.027269][ T4555] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  334.054327][ T4555] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  334.105532][ T4555] usb 8-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  334.125893][ T4555] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  334.158384][   T26] audit: type=1800 audit(1739519049.157:36): pid=7956 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1106" name="file1" dev="loop3" ino=15 res=0 errno=0
[  334.185563][ T4555] usb 8-1: config 0 descriptor??
[  334.345176][ T7960] loop4: detected capacity change from 0 to 2048
[  334.369193][ T4595] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  334.409561][ T4555] hub 8-1:0.0: USB hub found
[  334.418452][ T4595] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  334.426905][ T7962] loop6: detected capacity change from 0 to 2048
[  334.531142][ T7960] EXT4-fs (loop4): mounted filesystem without journal. Opts: jqfmt=vfsv0,nogrpid,,errors=continue. Quota mode: none.
[  334.720965][ T4555] hub 8-1:0.0: config failed, can't read hub descriptor (err -22)
[  334.842139][ T4555] usbhid 8-1:0.0: can't add hid device: -71
[  334.848718][ T4555] usbhid: probe of 8-1:0.0 failed with error -71
[  334.914546][ T4555] usb 8-1: USB disconnect, device number 2
[  335.038779][ T4595] usb 2-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  335.047872][ T4595] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  335.067873][ T4595] usb 2-1: SerialNumber: syz
[  335.217028][ T7972] loop4: detected capacity change from 0 to 512
[  335.422226][ T7972] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: comm syz.4.1111: inode #1: comm syz.4.1111: iget: illegal inode #
[  335.471293][ T4595] usb 2-1: 0:2 : does not exist
[  335.480485][ T4595] usb 2-1: unit 5: unexpected type 0x09
[  335.491134][ T7981] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  335.502337][ T7981] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  335.529504][ T4595] usb 2-1: USB disconnect, device number 30
[  335.561347][ T7972] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.1111: error while reading EA inode 1 err=-117
[  335.591852][ T7972] EXT4-fs (loop4): 1 orphan inode deleted
[  335.597647][ T7972] EXT4-fs (loop4): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000005,journal_dev=0x0000000000008000,nojournal_checksum,minixdf,resgid=0x0000000000000000,nobarrier,usrjquota=,,errors=continue. Quota mode: none.
[  335.770161][ T4159] udevd[4159]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  336.216805][ T7990] loop1: detected capacity change from 0 to 1024
[  337.437023][ T7996] loop4: detected capacity change from 0 to 512
[  337.531182][ T7996] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  337.630879][ T7996] EXT4-fs error (device loop4): ext4_orphan_get:1427: comm syz.4.1118: bad orphan inode 131083
[  337.711305][ T7996] EXT4-fs (loop4): mounted filesystem without journal. Opts: stripe=0x000000000000003d,init_itable,mb_optimize_scan=0x0000000000000001,,errors=continue. Quota mode: none.
[  337.804293][ T8002] loop1: detected capacity change from 0 to 512
[  337.834266][ T7996] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3534952332 (3534952332 ns) > initial count (699843755 ns). Using initial count to start timer.
[  337.906743][ T8002] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  337.943019][ T8002] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[  338.008125][ T8002] EXT4-fs (loop1): warning: checktime reached, running e2fsck is recommended
[  338.053388][ T8002] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  338.061780][ T8002] System zones: 0-2, 18-18, 34-34
[  338.076886][ T8002] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1062: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  338.104771][ T8002] EXT4-fs (loop1): 1 truncate cleaned up
[  338.118511][ T8002] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  338.216892][   T26] audit: type=1800 audit(1739519053.217:37): pid=8002 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1120" name="file1" dev="loop1" ino=15 res=0 errno=0
[  338.221347][ T8011] loop6: detected capacity change from 0 to 512
[  338.394782][ T8011] EXT4-fs error (device loop6): ext4_xattr_inode_iget:404: comm syz.6.1124: inode #1: comm syz.6.1124: iget: illegal inode #
[  338.423885][ T8011] EXT4-fs error (device loop6): ext4_xattr_inode_iget:409: comm syz.6.1124: error while reading EA inode 1 err=-117
[  338.456470][ T8011] EXT4-fs (loop6): 1 orphan inode deleted
[  338.467752][ T8011] EXT4-fs (loop6): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000005,journal_dev=0x0000000000008000,nojournal_checksum,minixdf,resgid=0x0000000000000000,nobarrier,usrjquota=,,errors=continue. Quota mode: none.
[  338.754817][ T8021] loop4: detected capacity change from 0 to 512
[  338.823254][ T8023] loop3: detected capacity change from 0 to 16
[  338.874432][ T8023] erofs: (device loop3): mounted with root inode @ nid 36.
[  338.889440][ T8021] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  339.046353][ T8021] EXT4-fs (loop4): 1 truncate cleaned up
[  339.059768][ T8021] EXT4-fs (loop4): mounted filesystem without journal. Opts: nombcache,jqfmt=vfsold,debug_want_extra_isize=0x000000000000006a,auto_da_alloc,errors=remount-ro,quota,. Quota mode: writeback.
[  339.078840][ T4975] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  339.937947][ T8035] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  339.949299][ T8035] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  340.211677][ T8037] loop1: detected capacity change from 0 to 1024
[  340.370218][ T8040] loop3: detected capacity change from 0 to 2048
[  340.478406][ T4975] usb 8-1: Using ep0 maxpacket: 16
[  340.510055][ T8037] hfsplus: xattr search failed
[  340.518689][ T8043] device wg2 left promiscuous mode
[  340.534782][ T8037] hfsplus: catalog searching failed
[  340.554404][ T8043] device wg2 entered promiscuous mode
[  340.623254][ T4975] usb 8-1: config 0 has an invalid interface number: 32 but max is 0
[  340.643892][ T4975] usb 8-1: config 0 has no interface number 0
[  340.666398][ T4975] usb 8-1: config 0 interface 32 has no altsetting 0
[  340.705473][ T4168] hfsplus: node 4:3 still has 1 user(s)!
[  340.908896][ T4975] usb 8-1: New USB device found, idVendor=0424, idProduct=cf30, bcdDevice=39.8c
[  340.956533][ T4975] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  340.992508][ T4975] usb 8-1: Product: syz
[  341.015750][ T4975] usb 8-1: Manufacturer: syz
[  341.036017][ T4975] usb 8-1: SerialNumber: syz
[  341.037833][ T8051] loop1: detected capacity change from 0 to 512
[  341.062970][ T4975] usb 8-1: config 0 descriptor??
[  341.129360][ T8051] EXT4-fs (loop1): inline encryption not supported
[  341.213834][ T8051] EXT4-fs error (device loop1): ext4_do_update_inode:5174: inode #16: comm syz.1.1137: corrupted inode contents
[  341.265851][ T8051] EXT4-fs (loop1): Remounting filesystem read-only
[  341.297754][ T8057] loop7: detected capacity change from 0 to 256
[  341.300706][ T4975] usb 8-1: USB disconnect, device number 3
[  341.318780][ T8051] EXT4-fs error (device loop1): ext4_dirty_inode:6010: inode #16: comm syz.1.1137: mark_inode_dirty error
[  341.348028][ T8057] exFAT-fs (loop7): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  341.394897][ T8051] EXT4-fs (loop1): Remounting filesystem read-only
[  341.410705][ T8051] EXT4-fs error (device loop1): ext4_do_update_inode:5174: inode #16: comm syz.1.1137: corrupted inode contents
[  341.429823][ T8057] exFAT-fs (loop7): hint_cluster is invalid (17)
[  341.448498][ T8051] EXT4-fs (loop1): Remounting filesystem read-only
[  341.455061][ T8051] EXT4-fs error (device loop1): __ext4_ext_dirty:183: inode #16: comm syz.1.1137: mark_inode_dirty error
[  341.508112][ T4975] ==================================================================
[  341.516818][ T4975] BUG: KASAN: use-after-free in hdm_disconnect+0x109/0x1c0
[  341.524053][ T4975] Read of size 8 at addr ffff88805a821960 by task kworker/0:19/4975
[  341.532057][ T4975] 
[  341.534401][ T4975] CPU: 0 PID: 4975 Comm: kworker/0:19 Not tainted 5.15.178-syzkaller #0
[  341.542757][ T4975] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  341.552837][ T4975] Workqueue: usb_hub_wq hub_event
[  341.557914][ T4975] Call Trace:
[  341.561211][ T4975]  <TASK>
[  341.564156][ T4975]  dump_stack_lvl+0x1e3/0x2d0
[  341.568868][ T4975]  ? io_uring_drop_tctx_refs+0x1a0/0x1a0
[  341.574554][ T4975]  ? _printk+0xd1/0x120
[  341.578754][ T4975]  ? __wake_up_klogd+0xcc/0x100
[  341.583643][ T4975]  ? panic+0x860/0x860
[  341.587745][ T4975]  ? _raw_spin_lock_irqsave+0xdd/0x120
[  341.593253][ T4975]  print_address_description+0x63/0x3b0
[  341.598843][ T4975]  ? hdm_disconnect+0x109/0x1c0
[  341.603732][ T4975]  kasan_report+0x16b/0x1c0
[  341.608271][ T4975]  ? hdm_disconnect+0x109/0x1c0
[  341.613162][ T4975]  hdm_disconnect+0x109/0x1c0
[  341.617880][ T4975]  usb_unbind_interface+0x1cd/0x840
[  341.623127][ T4975]  ? usb_driver_release_interface+0x1c0/0x1c0
[  341.629329][ T4975]  device_release_driver_internal+0x50e/0x7f0
[  341.635443][ T4975]  bus_remove_device+0x2e5/0x400
[  341.640412][ T4975]  device_del+0x6e2/0xbd0
[  341.644795][ T4975]  ? kill_device+0x160/0x160
[  341.649411][ T4975]  ? kobject_put+0x429/0x460
[  341.654041][ T4975]  usb_disable_device+0x3b8/0x840
[  341.659102][ T4975]  usb_disconnect+0x33c/0x8c0
[  341.663823][ T4975]  hub_event+0x1d58/0x54c0
[  341.668279][ T4975]  ? mark_lock+0x98/0x340
[  341.672666][ T4975]  ? led_work+0x700/0x700
[  341.677033][ T4975]  ? read_lock_is_recursive+0x10/0x10
[  341.682438][ T4975]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[  341.688536][ T4975]  ? __mutex_trylock_common+0x2d0/0x2e0
[  341.694110][ T4975]  ? _raw_spin_unlock_irqrestore+0xd9/0x130
[  341.700032][ T4975]  ? do_raw_spin_unlock+0x137/0x8b0
[  341.705272][ T4975]  process_one_work+0x8a1/0x10c0
[  341.710261][ T4975]  ? worker_detach_from_pool+0x260/0x260
[  341.715926][ T4975]  ? _raw_spin_lock_irqsave+0x120/0x120
[  341.721500][ T4975]  ? kthread_data+0x4e/0xc0
[  341.726031][ T4975]  ? wq_worker_running+0x97/0x170
[  341.731084][ T4975]  worker_thread+0xdcf/0x1280
[  341.735824][ T4975]  kthread+0x3f6/0x4f0
[  341.739916][ T4975]  ? rcu_lock_release+0x20/0x20
[  341.744793][ T4975]  ? kthread_blkcg+0xd0/0xd0
[  341.749420][ T4975]  ret_from_fork+0x1f/0x30
[  341.753885][ T4975]  </TASK>
[  341.756918][ T4975] 
[  341.759252][ T4975] Allocated by task 4975:
[  341.763589][ T4975]  ____kasan_kmalloc+0xba/0xf0
[  341.768375][ T4975]  kmem_cache_alloc_trace+0x143/0x290
[  341.773778][ T4975]  hdm_probe+0x91/0x13d0
[  341.778045][ T4975]  usb_probe_interface+0x5c0/0xaf0
[  341.783182][ T4975]  really_probe+0x24e/0xb60
[  341.787710][ T4975]  __driver_probe_device+0x1a2/0x3d0
[  341.793013][ T4975]  driver_probe_device+0x50/0x420
[  341.798059][ T4975]  __device_attach_driver+0x2b9/0x500
[  341.803450][ T4975]  bus_for_each_drv+0x183/0x200
[  341.808328][ T4975]  __device_attach+0x359/0x570
[  341.813108][ T4975]  bus_probe_device+0xba/0x1e0
[  341.817890][ T4975]  device_add+0xb48/0xfd0
[  341.822237][ T4975]  usb_set_configuration+0x19dd/0x2020
[  341.827715][ T4975]  usb_generic_driver_probe+0x84/0x140
[  341.833199][ T4975]  usb_probe_device+0x130/0x260
[  341.838082][ T4975]  really_probe+0x24e/0xb60
[  341.842609][ T4975]  __driver_probe_device+0x1a2/0x3d0
[  341.847932][ T4975]  driver_probe_device+0x50/0x420
[  341.852985][ T4975]  __device_attach_driver+0x2b9/0x500
[  341.858385][ T4975]  bus_for_each_drv+0x183/0x200
[  341.863258][ T4975]  __device_attach+0x359/0x570
[  341.868103][ T4975]  bus_probe_device+0xba/0x1e0
[  341.872888][ T4975]  device_add+0xb48/0xfd0
[  341.877243][ T4975]  usb_new_device+0xc21/0x18f0
[  341.882030][ T4975]  hub_event+0x2cdf/0x54c0
[  341.886474][ T4975]  process_one_work+0x8a1/0x10c0
[  341.891448][ T4975]  worker_thread+0xaca/0x1280
[  341.896143][ T4975]  kthread+0x3f6/0x4f0
[  341.900232][ T4975]  ret_from_fork+0x1f/0x30
[  341.904798][ T4975] 
[  341.907143][ T4975] Freed by task 4975:
[  341.911221][ T4975]  kasan_set_track+0x4b/0x80
[  341.915836][ T4975]  kasan_set_free_info+0x1f/0x40
[  341.920887][ T4975]  ____kasan_slab_free+0xd8/0x120
[  341.925935][ T4975]  slab_free_freelist_hook+0xdd/0x160
[  341.931348][ T4975]  kfree+0xf1/0x270
[  341.935204][ T4975]  device_release+0x91/0x1c0
[  341.939841][ T4975]  kobject_put+0x224/0x460
[  341.944281][ T4975]  hdm_disconnect+0xef/0x1c0
[  341.948903][ T4975]  usb_unbind_interface+0x1cd/0x840
[  341.954123][ T4975]  device_release_driver_internal+0x50e/0x7f0
[  341.960213][ T4975]  bus_remove_device+0x2e5/0x400
[  341.965171][ T4975]  device_del+0x6e2/0xbd0
[  341.969524][ T4975]  usb_disable_device+0x3b8/0x840
[  341.974572][ T4975]  usb_disconnect+0x33c/0x8c0
[  341.979263][ T4975]  hub_event+0x1d58/0x54c0
[  341.983696][ T4975]  process_one_work+0x8a1/0x10c0
[  341.988665][ T4975]  worker_thread+0xdcf/0x1280
[  341.993362][ T4975]  kthread+0x3f6/0x4f0
[  341.997444][ T4975]  ret_from_fork+0x1f/0x30
[  341.998982][ T8051] EXT4-fs (loop1): Remounting filesystem read-only
[  342.001878][ T4975] 
[  342.010709][ T4975] Last potentially related work creation:
[  342.016434][ T4975]  kasan_save_stack+0x36/0x60
[  342.021229][ T4975]  kasan_record_aux_stack+0xba/0x100
[  342.026674][ T4975]  call_rcu+0x1c4/0xa70
[  342.029385][ T8051] EXT4-fs error (device loop1): ext4_do_update_inode:5174: inode #16: comm syz.1.1137: corrupted inode contents
[  342.030905][ T4975]  generic_shutdown_super+0x130/0x310
[  342.048192][ T4975]  kill_block_super+0x7a/0xe0
[  342.052909][ T4975]  deactivate_locked_super+0xa0/0x110
[  342.058304][ T4975]  cleanup_mnt+0x44e/0x500
[  342.062751][ T4975]  task_work_run+0x129/0x1a0
[  342.067372][ T4975]  exit_to_user_mode_loop+0x106/0x130
[  342.072764][ T4975]  exit_to_user_mode_prepare+0xb1/0x140
[  342.074277][ T8051] EXT4-fs (loop1): Remounting filesystem read-only
[  342.078331][ T4975]  syscall_exit_to_user_mode+0x5d/0x240
[  342.078362][ T4975]  do_syscall_64+0x47/0xb0
[  342.078381][ T4975]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  342.078407][ T4975] 
[  342.078413][ T4975] The buggy address belongs to the object at ffff88805a820000
[  342.078413][ T4975]  which belongs to the cache kmalloc-8k of size 8192
[  342.078431][ T4975] The buggy address is located 6496 bytes inside of
[  342.078431][ T4975]  8192-byte region [ffff88805a820000, ffff88805a822000)
[  342.078452][ T4975] The buggy address belongs to the page:
[  342.078475][ T4975] page:ffffea00016a0800 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x5a820
[  342.078503][ T4975] head:ffffea00016a0800 order:3 compound_mapcount:0 compound_pincount:0
[  342.078521][ T4975] flags: 0xfff00000010200(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[  342.119192][ T8051] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem
[  342.131586][ T4975] raw: 00fff00000010200 0000000000000000 0000000100000001 ffff888017442280
[  342.131610][ T4975] raw: 0000000000000000 0000000080020002 00000001ffffffff 0000000000000000
[  342.131620][ T4975] page dumped because: kasan: bad access detected
[  342.131646][ T4975] page_owner tracks the page as allocated
[  342.131654][ T4975] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x1d20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_HARDWALL), pid 5720, ts 169723148058, free_ts 169611677767
[  342.131698][ T4975]  get_page_from_freelist+0x3b78/0x3d40
[  342.164317][ T8051] EXT4-fs (loop1): Remounting filesystem read-only
[  342.172381][ T4975]  __alloc_pages+0x272/0x700
[  342.172414][ T4975]  new_slab+0xbb/0x4b0
[  342.172436][ T4975]  ___slab_alloc+0x6f6/0xe10
[  342.172455][ T4975]  __kmalloc_node+0x1fa/0x390
[  342.172475][ T4975]  kvmalloc_node+0x80/0x140
[  342.172495][ T4975]  bpf_check+0x142/0x12d40
[  342.172514][ T4975]  bpf_prog_load+0x12b3/0x1b60
[  342.172530][ T4975]  __sys_bpf+0x343/0x670
[  342.172553][ T4975]  __x64_sys_bpf+0x78/0x90
[  342.172574][ T4975]  do_syscall_64+0x3b/0xb0
[  342.222672][ T8051] EXT4-fs error (device loop1): ext4_do_update_inode:5174: inode #16: comm syz.1.1137: corrupted inode contents
[  342.228080][ T4975]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  342.228115][ T4975] page last free stack trace:
[  342.261267][ T8051] EXT4-fs (loop1): Remounting filesystem read-only
[  342.261502][ T4975]  free_unref_page_prepare+0xc34/0xcf0
[  342.278501][ T8051] EXT4-fs error (device loop1): ext4_truncate:4272: inode #16: comm syz.1.1137: mark_inode_dirty error
[  342.279301][ T4975]  free_unref_page+0x95/0x2d0
[  342.322986][ T8051] EXT4-fs (loop1): Remounting filesystem read-only
[  342.324609][ T4975]  __unfreeze_partials+0x1b7/0x210
[  342.340880][ T4975]  put_cpu_partial+0x132/0x1a0
[  342.345111][ T8051] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem
[  342.345662][ T4975]  ___cache_free+0xe3/0x100
[  342.359004][ T4975]  qlist_free_all+0x36/0x90
[  342.363533][ T4975]  kasan_quarantine_reduce+0x162/0x180
[  342.369009][ T4975]  __kasan_slab_alloc+0x2f/0xc0
[  342.373873][ T4975]  slab_post_alloc_hook+0x53/0x380
[  342.376354][ T8051] EXT4-fs (loop1): Remounting filesystem read-only
[  342.379001][ T4975]  kmem_cache_alloc_node+0x121/0x2c0
[  342.379027][ T4975]  __alloc_skb+0xdd/0x590
[  342.379047][ T4975]  alloc_skb_with_frags+0xa3/0x780
[  342.379070][ T4975]  sock_alloc_send_pskb+0x915/0xa50
[  342.379088][ T4975]  unix_dgram_sendmsg+0x6fd/0x2090
[  342.379108][ T4975]  ____sys_sendmsg+0x59e/0x8f0
[  342.415580][ T8051] EXT4-fs (loop1): 1 truncate cleaned up
[  342.415626][ T4975]  ___sys_sendmsg+0x252/0x2e0
[  342.426029][ T4975] 
[  342.428364][ T4975] Memory state around the buggy address:
[  342.431004][ T8051] EXT4-fs (loop1): mounted filesystem without journal. Opts: inlinecrypt,errors=remount-ro,resuid=0x0000000000000000,. Quota mode: writeback.
[  342.433998][ T4975]  ffff88805a821800: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  342.434015][ T4975]  ffff88805a821880: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  342.434030][ T4975] >ffff88805a821900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  342.472598][ T4975]                                                        ^
[  342.479816][ T4975]  ffff88805a821980: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  342.482887][ T8051] ext4 filesystem being mounted at /245/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  342.487889][ T4975]  ffff88805a821a00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  342.487902][ T4975] ==================================================================
[  342.487912][ T4975] Disabling lock debugging due to kernel taint
[  342.640839][ T8060] loop7: detected capacity change from 0 to 512
[  342.733317][ T8060] EXT4-fs error (device loop7): ext4_xattr_inode_iget:404: comm syz.7.1139: inode #1: comm syz.7.1139: iget: illegal inode #
[  342.788647][ T8060] EXT4-fs error (device loop7): ext4_xattr_inode_iget:409: comm syz.7.1139: error while reading EA inode 1 err=-117
[  342.808648][ T8060] EXT4-fs (loop7): 1 orphan inode deleted
[  342.814458][ T8060] EXT4-fs (loop7): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000005,journal_dev=0x0000000000008000,nojournal_checksum,minixdf,resgid=0x0000000000000000,nobarrier,usrjquota=,,errors=continue. Quota mode: none.
[  342.862675][ T4975] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  342.869920][ T4975] CPU: 0 PID: 4975 Comm: kworker/0:19 Tainted: G    B             5.15.178-syzkaller #0
[  342.879659][ T4975] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  342.889846][ T4975] Workqueue: usb_hub_wq hub_event
[  342.894907][ T4975] Call Trace:
[  342.898189][ T4975]  <TASK>
[  342.901123][ T4975]  dump_stack_lvl+0x1e3/0x2d0
[  342.905817][ T4975]  ? io_uring_drop_tctx_refs+0x1a0/0x1a0
[  342.911471][ T4975]  ? panic+0x860/0x860
[  342.915553][ T4975]  ? rcu_is_watching+0x11/0xa0
[  342.920334][ T4975]  ? preempt_schedule_common+0xa6/0xd0
[  342.925804][ T4975]  panic+0x318/0x860
[  342.929719][ T4975]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  342.935900][ T4975]  ? check_panic_on_warn+0x1d/0xa0
[  342.941039][ T4975]  ? fb_is_primary_device+0xd0/0xd0
[  342.946260][ T4975]  ? _raw_spin_unlock_irqrestore+0x128/0x130
[  342.952252][ T4975]  ? _raw_spin_unlock+0x40/0x40
[  342.957132][ T4975]  check_panic_on_warn+0x7e/0xa0
[  342.962082][ T4975]  ? hdm_disconnect+0x109/0x1c0
[  342.966950][ T4975]  end_report+0x6d/0xf0
[  342.971124][ T4975]  kasan_report+0x18e/0x1c0
[  342.975626][ T4975]  ? hdm_disconnect+0x109/0x1c0
[  342.980475][ T4975]  hdm_disconnect+0x109/0x1c0
[  342.985147][ T4975]  usb_unbind_interface+0x1cd/0x840
[  342.990344][ T4975]  ? usb_driver_release_interface+0x1c0/0x1c0
[  342.996403][ T4975]  device_release_driver_internal+0x50e/0x7f0
[  343.002462][ T4975]  bus_remove_device+0x2e5/0x400
[  343.007488][ T4975]  device_del+0x6e2/0xbd0
[  343.011834][ T4975]  ? kill_device+0x160/0x160
[  343.016508][ T4975]  ? kobject_put+0x429/0x460
[  343.021090][ T4975]  usb_disable_device+0x3b8/0x840
[  343.026124][ T4975]  usb_disconnect+0x33c/0x8c0
[  343.031281][ T4975]  hub_event+0x1d58/0x54c0
[  343.035847][ T4975]  ? mark_lock+0x98/0x340
[  343.040214][ T4975]  ? led_work+0x700/0x700
[  343.044889][ T4975]  ? read_lock_is_recursive+0x10/0x10
[  343.050342][ T4975]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[  343.056350][ T4975]  ? __mutex_trylock_common+0x2d0/0x2e0
[  343.061911][ T4975]  ? _raw_spin_unlock_irqrestore+0xd9/0x130
[  343.067900][ T4975]  ? do_raw_spin_unlock+0x137/0x8b0
[  343.073116][ T4975]  process_one_work+0x8a1/0x10c0
[  343.078058][ T4975]  ? worker_detach_from_pool+0x260/0x260
[  343.083704][ T4975]  ? _raw_spin_lock_irqsave+0x120/0x120
[  343.089268][ T4975]  ? kthread_data+0x4e/0xc0
[  343.093918][ T4975]  ? wq_worker_running+0x97/0x170
[  343.099063][ T4975]  worker_thread+0xdcf/0x1280
[  343.103760][ T4975]  kthread+0x3f6/0x4f0
[  343.107830][ T4975]  ? rcu_lock_release+0x20/0x20
[  343.112796][ T4975]  ? kthread_blkcg+0xd0/0xd0
[  343.117396][ T4975]  ret_from_fork+0x1f/0x30
[  343.121823][ T4975]  </TASK>
[  343.125186][ T4975] Kernel Offset: disabled
[  343.129730][ T4975] Rebooting in 86400 seconds..