last executing test programs:

15m54.349288654s ago: executing program 3 (id=1524):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x3)
r1 = dup(r0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
syz_open_dev$video4linux(0x0, 0x0, 0x0)
mremap(&(0x7f00007f1000/0x4000)=nil, 0x4000, 0x800000, 0x0, &(0x7f0000130000/0x800000)=nil)
r4 = syz_open_dev$dri(&(0x7f0000000040), 0x1, 0x0)
r5 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
close(r5)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0)
ioctl$DRM_IOCTL_MODE_GET_LEASE(r4, 0xc01064c8, &(0x7f0000000300)={0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_PAGE_FLIP(r4, 0xc01864b0, &(0x7f0000000000)={0x0, 0x0, 0x1, 0x0, 0x3a9e9908})
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='loginuid\x00')
socket$key(0xf, 0x3, 0x2)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
mremap(&(0x7f00005a1000/0x3000)=nil, 0x3000, 0x4000, 0x3, &(0x7f0000ac4000/0x4000)=nil)
r6 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8002, 0x0)
write$P9_RSTATu(r6, &(0x7f00000009c0)=ANY=[@ANYBLOB="c20200007d00000005fa0000006a0000004000000000000000000000000000000010000000020000000000000000000000001f00046e6f6465767b6376666f7825ffffff8102000000000000000000000000003800704a86cec602007dfa673effeb09b5351f5bde054000000000187b8200b500003b595fcb14034354b9fd9ef196a51cd5157adc8106b494e11200fbe161e900000000351e000000000000f313f6005e00f8f67efb716dcf315ecaf385409ac65b9408679d2c3b9e1d52c3d6da9b109a5688dace6cde7ba4a400b4b0b4dbe64f64b1d63f26796dcbec498623d6a838c69a69dfcc9cdd5906f174a666a8529a45773407dbdab2885baf050000000000b3016f6465762d6eb17b2300f9daa1ee23266ecf85fea65eb2d979a3fde5f475daf03b1172d97badc7095afd76fe4f0441f7f7741eac030000ecff0000dba0c2f7f09ff53c7e4d1ad66e2d070198019f30118447aa9aada06834ccc7e274f51685f506ae89480687bd7f3d7f298d792c4a37f2e1cbbd2482929a0d8972b5cf732ea5b0d72300000100000000002ee7cac07de09d1d68a60333a882467d2b31aacdf9cf3ee3884002a91c54528b807a89ca184d16645f06188549b1125d6c4c9b18c2fb56c57d7dc626e4390796a1eb48274669ab13f8b11d146059f310e2634d593fec65d529f382066664df244e4c90570a70049f299f061f75b7797ce1e411ea918ebd888c1e156b84080000000000000009d51a41dd3de304bd7c7ed0a456f0ae12516105c9478f7df5a6e0b6a77d596cf88ba6e5c6397c7d5021d7989528fd1739e1c2d87fff000000000000e01fe52b06681244007461b0ccaaa1933a0e8a826b14d4fcb2989ffaaa1a0b03b3d80e5524f8495fee7e8d88cb5a040302acb0d1260f2584db48e8d9064e8ce178ce396e85b97e4886444049810f25f1ceca975deb491a125bf0d72f87cc10b0154e08936daadd8b1e978a4070ee1e87db55dc65e1400ac91caf955cc6708817ff62f15edefb9545f8087a0d6dad84354c8fe4af96be16b3be9d3759d6e2f217eb7e03c707a01200b195af18600dae704ebdffdd17f8d20cb060355c8d38097b08061b380fdc8eb2d9e2bfb816e5301cbaf92d57c65d4dc144d28ac269346800bbf6cb3fde9da3bce600"/838, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES64=r4], 0x2c2)
setsockopt$inet_sctp_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000000), 0x4)
setsockopt$inet_int(0xffffffffffffffff, 0x0, 0xf, &(0x7f0000d10ffc)=0xfffffffffffffff9, 0x4)
bind$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x4e23, 0xb430, @mcast2, 0x1}, 0x1c)
write$UHID_INPUT(r1, &(0x7f0000002080)={0xf, {"a2e3ad21e08eeb661b5d300987f70e06d038e7ff7fc6e5539b0d650e8b089b3f313b6c090890e0878f0e1ac6e7049b3b46959b649a240d5b67f3988f7ef319520100ffe8d178708c523c921b1b5b31070d07410936cd3b78130daa61d8e8040000005802b77f07227227b7ba67e0e78657a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f30e065cd5b91cd0ae193973735b36d5b1b63dd1c00305d3f46635eb016d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000000000075271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f9081b4dd0d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c554336909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1f416e56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617669314e2fbe70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f6777478bc360934b82910ff85bfd995083bba2987a67399eac427d145d546a40b9f6ff14ac488ec130fb3850a27af9544ae15ffffffffffffffff1243513f000000000000000a3621c56cea8d20fa911a0c41db6ebe8cac64f17679141d54b34bbc9963ac4f4bb3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e14ffd9f9db2a7869d85864056526f889af43a6056080572286522449df466c632b3570243f989cce7cd9f465e41e610c20d80421d653a5520000008213b704c7fb082ff27590678ef9f190bae97909507041d860420c5664b27921b14dc1db8892fd32d0ad7bc946813591ad8deff4b05f60cea0da7710ac0000000000008000bea37ce0d0d4aa202f928f28381aab144a5dc29a04a6a2b83c7068ae949ed06e288e810bac9c76600025e19c907f6435f7590000008271a1f5f8528f227e79c1389dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4fb8a48a76eafc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee5325928974d12dad99dac44c3f0008047096a44002bebc2420aed92fa9b6578b4779415d4ac01b75d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2aed9a53803ed0ca4ae3a9737d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df07847754b8400daaa69bf5c8f4350aeae9ca1207e78283cd0b20ceb360c7e658828163e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034ef655b253ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f423500c7872c827467cfa5c4e72730d56bd068ed211cf847535edecb7b373f78b095b68441a34cb51682a8ae4d24ad0465f3927f889b813076a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdcce04579b5561dc825ab829827945e020c1f67ee615feb6243378e0610060f02da93aec92a5de203717aa49c2d284acfabe262fccfcbb2b75a2183c46eb65ca8104e1b4da7fbb77ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43eaeb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e94265c803b35ee5f83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad94872cb2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7a508ae54b3cd7369dde50e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c10238e204a67737c3b42aae501b20f7694a00f16e2d0174035a2c22656dc29880acebdbe8ddbd75c2f998d8ac2dfad2ba3a504767b6b45a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7bcddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4e8b40427db6fe29068c0ca3d2414442e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf46366e7205dd8d6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439ff158e7c5419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d0300000000000000b378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9d4afb96d6861aca47da73d6f3144345f48843dd014e5c5ad8fe995754bd9cf32fce1e31919c4b2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6d594f88a4facfd4c735a20307c737afa2d60399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a3766d5439020484f4113c4c859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee2916580dac4b008e595f437491d87abed02cefcd9db53d94d02daee67918e5d678746383074c6bc1050000002f7809959bc048850613d17ca51055f2f416a44fe180d2d50c312cca7cb14a2bdc331f57a9817139a206fc76957227ffff2de20a4b8e3737fbb42913777c06376f799eba367e21f94ca598705f5dcb767d6f0900d6b0f6095e53c4c4234d0c1fbe434f6ab8f43c0013ee93b83946ee7759e89d7bdd1a32d7b311711b757fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7f96093530e76692839d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b3c7340002000000000000f288a4510de03dab19d26285eda89156d50dd385a60333ba5bbf5d77cd7007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f732ae00398e8bd1f4108b7807fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cf255315ab80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c6087f1ab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf652f406c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6528341b648cdd56fed7cdcbb1575912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae033a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a3cd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08758897fb411a94b3c2fc5d5f0da42c0456ec015f08e5247d33ae2d35603ff8454c16f8342856935125102bb784ed7148b6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee458e4cb5e930ed624806c43a006e39336d07c2b8081c128ad2706f48261f7897484c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da398000000000000000d80a4fe654578376e599aff3565b1d531f30912b9945030b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9cc8036cbd65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57079d0fe662a46b7f71cd47744db86c50b704c971d90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e0691953264d2700c838fa2c7b3425260f59554e502dcea39cb313b0000000000004ca7c12f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe36d7d3e5db21b094b8b77940b5f07722e47a08d367e5f84c96ec664b72934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1162dfa13bdc1fa7cfaadba85c72e9758f03a755d0be53f8d2a1dfb1c68cc164b0a0780d971a96ea2c4d4ca0398c2235980a9307b3d5bd3b01faffd0a5dbed2881a9700af561ac8c6b00000000000000f96f06817fb903729a7db6ff957697c9ede7885d94ffb0969be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c148cd2f9c55f4901203a9a8a2c3e90f3943dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d0fc5a752f90000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000400", 0x1000}}, 0x1006)

15m51.9291316s ago: executing program 3 (id=1531):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000001680)=ANY=[@ANYBLOB="18000000000300"/16], &(0x7f0000001700)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x9}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='contention_begin\x00', r0}, 0x18)
sendmmsg$inet(0xffffffffffffffff, &(0x7f00000000c0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)=[@ip_retopts={{0x10}}], 0x10}}], 0x2, 0x4000810)
r1 = syz_open_dev$sg(&(0x7f00000002c0), 0x5d7000000000000, 0x2402)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000100)={'\x00', 0x6, 0xa, 0x3, 0xffffffff})

15m51.738507385s ago: executing program 3 (id=1533):
syz_mount_image$exfat(&(0x7f0000000280), &(0x7f00000000c0)='./file2\x00', 0x2200050, &(0x7f0000000000)=ANY=[], 0x1, 0x1516, &(0x7f0000003140)="$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")
r0 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
fchdir(r0)
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000840)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc0ed000e, &(0x7f0000000200)={[{@jqfmt_vfsold}, {@orlov}, {@debug}, {@noload}, {@nombcache}, {@noblock_validity}, {@init_itable_val={'init_itable', 0x3d, 0x601}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x8000}}]}, 0xfa, 0x48d, &(0x7f0000000fc0)="$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")
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x8, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x5, 0x8b}, 0x0)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
ioctl$int_in(r1, 0x5452, 0x0)
listen(r1, 0x0)
shutdown(r1, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
mkdir(&(0x7f0000000000)='./control\x00', 0x10)
creat(&(0x7f0000000840)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x65)
openat(0xffffffffffffff9c, 0x0, 0x14b0c2, 0x4)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
open(&(0x7f0000000240)='./file1\x00', 0x202040, 0x0)

15m51.247316105s ago: executing program 3 (id=1535):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000019080)='./file0\x00', 0xe, &(0x7f0000000200)={[{}, {@oldalloc}, {@resuid}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@block_validity}, {@jqfmt_vfsv1}]}, 0x6, 0x434, &(0x7f0000000940)="$eJzs289vFFUcAPDvzLZFKNiK+IOCWkVj44+WFlQOXjSaeNDERA94rG0hlYUaWhMhjVZj8GhIvBuPJv4FnvRi1JOJV70bEmJ6AT2tmd2ZdrvdLW3ZdtH9fJKB92be5n2/O/N238zrBtC1hrN/koj9EfF7RAzUqmsbDNf+u7m8OPX38uJUEpXKW38l1XY3lheniqbF6/rzykgakX6WxJEm/c5funxuslyeuZjXxxbOvz82f+nys7PnJ8/OnJ25MHHq1MkT4y88P/FcW/LMYrox9NHc0cOvvXP1janTV9/9+dukyL8hjzYZ3ujgE5VKm7vrrAN15aSng4GwJaWIyE5Xb3X8D0QpVk/eQLz6aUeDA3ZUpVKp9Lc+vFQB/seS6HQEQGcUX/TZ/W+x7dLU445w/aXaDVCW9818qx3piTRv09twf9tOwxFxeumfr7ItduY5BADAGt9n859nms3/0ri/rt3d+drQYETcExEHI+LeiDgUEfdFVNs+EBEPbrH/xkWS9fOf9Nq2EtukbP73Yr62tXb+V8z+YrCU1w5U8+9NzsyWZ47n78lI9O7J6uMb9PHDK7990epY/fwv27L+i7lgHse1nj1rXzM9uTB5OznXu/5JxFBPs/yTlZWAJCIOR8TQNvuYfeqbo62O3Tr/DbRhnanydcSTtfO/FA35F5KN1yfH7oryzPGx4qpY75dfr7zZqv/byr8NsvO/r+n1v5L/YFK/Xju/9T6u/PF5y3ua7V7/fcnb1XJfvu/DyYWFi+MRfcnrtaDr90+svraoF+2z/EeONR//B2P1nTgSEdlF/FBEPBwRj+SxPxoRj0XEsQ3y/+nlx9/bfv47K8t/ekvnf7XQF417mhdK5378bk2ng1vJPzv/J6ulkXzPZj7/NhPX9q5mAAAA+O9JI2J/JOnoSjlNR0drfy9/KPal5bn5hafPzH1wYbr2G4HB6E2LJ10Ddc9Dx/Pb+qI+0VA/kT83/rK0t1ofnZorT3c6eehy/S3Gf+bPUqejA3ac32tB9zL+oXsZ/9C9jH/oXk3G/95OxAHsvmbf/x93IA5g9zWMf8t+0EXc/0P3Mv6hexn/0JXm98atfySvoLCuEOkdEYbCDhU6/ckEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADQHv8GAAD//5LX5s8=")
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x185641, 0x0)
r1 = open(&(0x7f00000003c0)='./bus\x00', 0x84902, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x11, r1, 0x0)
write$FUSE_ATTR(r0, &(0x7f0000000440)={0x78, 0x0, 0x0, {0x2000000000000001, 0x0, 0x0, {0xffffffffff7ffffe, 0x0, 0xffffffffbfffffff, 0x6, 0xffffffffffff592c, 0x6, 0x4, 0x6288f666, 0x0, 0xc000}}}, 0x78)
unlink(&(0x7f0000000180)='./file1\x00')

15m50.743918576s ago: executing program 3 (id=1538):
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000700), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB="2c726f6f746d6f64653d303030303030300f303030303030303030303430307c7d86780538d91b1a9cc0c11d30302c757365725f", @ANYRESDEC=0x0, @ANYRESDEC=0x0, @ANYBLOB], 0x0, 0x0, 0x0)
read$FUSE(r0, &(0x7f0000006340)={0x2020, 0x0, <r1=>0x0}, 0x2058)
write$FUSE_LSEEK(r0, &(0x7f00000021c0)={0x18, 0x0, r1, {0x7}}, 0x18)
read$FUSE(r0, &(0x7f0000008d40)={0x2020}, 0xfffffffffffffd21)
fsopen(&(0x7f0000002300)='ext4\x00', 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f000000ad80)={0x2020}, 0x2020)
openat$ptp0(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
write(r2, 0x0, 0x0)
r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000002340), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)={<r4=>0xffffffffffffffff}, 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r3, &(0x7f00000005c0)={0x15, 0x110, 0xfa00, {r4, 0x0, 0x0, 0x30, 0x0, @ib={0x1b, 0x8, 0x5, {}, 0x1, 0x2, 0x4}, @ib={0x1b, 0x0, 0x0, {"00000000000000000000000000000001"}, 0x80000001}}}, 0x118)
write$RDMA_USER_CM_CMD_QUERY(r3, &(0x7f0000000000)={0x13, 0x10, 0xfa00, {&(0x7f00000003c0), r4, 0x2}}, 0x18)
r5 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r5, 0x4018620d, &(0x7f0000000300))
r6 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r6, 0xc0306201, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
dup3(r6, r5, 0x0)
ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f0000000240)={0x20, 0x0, &(0x7f0000000340)=[@request_death={0x400c630e, 0xfffffffd}, @request_death={0x400c630e, 0x3}], 0xffffff32, 0x0, 0x0})
connect$inet(0xffffffffffffffff, 0x0, 0x0)

15m49.381483115s ago: executing program 3 (id=1542):
open(&(0x7f0000000580)='./file0\x00', 0xc0, 0x63)
r0 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
write$binfmt_register(r0, &(0x7f0000000000)={0x3a, 'syz3', 0x3a, 'E', 0x3a, 0x3, 0x3a, '!+\xf0!\\+Jj\x95\xa27W\xfd\xe3aE\xa9b;\xc44\xec\xa2i6\xc2<\xa73\xec&N(G\xc0E\xf4\xc2B', 0x3a, '\x90', 0x3a, './file0', 0x3a, [0x46]}, 0x50)

15m48.885201055s ago: executing program 32 (id=1542):
open(&(0x7f0000000580)='./file0\x00', 0xc0, 0x63)
r0 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
write$binfmt_register(r0, &(0x7f0000000000)={0x3a, 'syz3', 0x3a, 'E', 0x3a, 0x3, 0x3a, '!+\xf0!\\+Jj\x95\xa27W\xfd\xe3aE\xa9b;\xc44\xec\xa2i6\xc2<\xa73\xec&N(G\xc0E\xf4\xc2B', 0x3a, '\x90', 0x3a, './file0', 0x3a, [0x46]}, 0x50)

12m31.560769835s ago: executing program 4 (id=2028):
r0 = syz_usb_connect(0x0, 0x1cb, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000122f0d4071040403dfe4000000010902b90101000000"], 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000480)={0x2c, &(0x7f0000000040)={0x20, 0x30}, 0x0, 0x0, 0x0, 0x0})

12m28.413621229s ago: executing program 4 (id=2040):
socket$inet_udp(0x2, 0x2, 0x0)
syz_emit_ethernet(0x4d, 0x0, &(0x7f0000000080)={0x0, 0x2, [0xd62, 0xd67, 0x738, 0xa8d]})
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001c40)={0x8, 0x3, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r2 = syz_usb_connect$printer(0x0, 0x2d, &(0x7f00000000c0)={{0x12, 0x1, 0x110, 0x0, 0x0, 0x0, 0x10, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x1, 0x2, 0x7, 0x1, 0x1, 0x0, "", {{{0x9, 0x5, 0x1, 0x2, 0x0, 0x3}}}}}]}}]}}, 0x0)
mmap(&(0x7f00002e8000/0x4000)=nil, 0x4000, 0x2, 0x110, 0xffffffffffffffff, 0xf08a3000)
syz_usb_control_io$printer(r2, 0x0, &(0x7f00000011c0)={0x34, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000001180)={0x20, 0x0, 0x1}})
r3 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x20008005)
ioctl$EVIOCGMASK(r3, 0x60b, 0x0)
write$char_usb(r3, 0x0, 0x0)
syz_usb_disconnect(r2)
syz_emit_ethernet(0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r4 = syz_open_dev$sndctrl(&(0x7f0000000100), 0x1, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(r4, 0xc1105511, &(0x7f0000000040)={0xe, 0x0, 0x8, 0xb53, '\x00', 0x2})
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r4, 0xc1105511, &(0x7f0000000040))
connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x3, @mcast2, 0x5}, 0x1c)
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000000)=ANY=[], 0x28)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)

12m22.065082362s ago: executing program 4 (id=2051):
syz_mount_image$btrfs(&(0x7f00000055c0), &(0x7f0000000040)='./bus\x00', 0x18, &(0x7f0000000300)={[{@space_cache_v1}, {@nossd_spread}, {@ref_verify}, {@compress_algo={'compress', 0x3d, 'zlib'}}, {@clear_cache}, {@noacl}, {@nodatacow}, {@barrier}, {@ref_verify}]}, 0x1, 0x55ae, &(0x7f000000ac40)="$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")
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_usb_connect(0x2, 0x9a2, 0x0, 0x0)
unlinkat(0xffffffffffffff9c, &(0x7f0000000c40)='./file1\x00', 0x0)
link(&(0x7f00000000c0)='./file2\x00', &(0x7f0000000100)='./file1\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x0)
ioctl$FICLONERANGE(r0, 0x4020940d, &(0x7f00000000c0)={{r0}, 0x0, 0x0, 0x3000})

12m15.055547478s ago: executing program 4 (id=2057):
syz_mount_image$hfsplus(&(0x7f0000000140), &(0x7f0000000340)='./file1\x00', 0x1804810, &(0x7f0000000180)=ANY=[], 0x1, 0x675, &(0x7f0000000cc0)="$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")
syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo\x00')
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
socket$nl_xfrm(0x10, 0x3, 0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
clock_gettime(0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
r2 = fspick(0xffffffffffffff9c, 0x0, 0x0)
fsconfig$FSCONFIG_SET_FLAG(r2, 0x0, &(0x7f0000000080)='ro\x00', 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
prlimit64(0x0, 0x7, &(0x7f0000004080), 0x0)
fsmount(0xffffffffffffffff, 0x0, 0xf)
fsconfig$FSCONFIG_SET_FLAG(0xffffffffffffffff, 0x0, &(0x7f0000000000)='ro\x00', 0x0, 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(0xffffffffffffffff, 0x7, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r2, 0x7, 0x0, 0x0, 0x0)
syz_usb_connect(0x0, 0x36, 0x0, 0x0)

12m12.917560591s ago: executing program 4 (id=2058):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL802154_CMD_DEL_SEC_KEY(r0, &(0x7f0000000700)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000580)={0x34, r1, 0x1, 0x70bd25, 0x25dfdbfe, {}, [@NL802154_ATTR_SEC_KEY={0x4}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x34}, 0x1, 0x0, 0x0, 0x4050}, 0x40060)

12m12.403140523s ago: executing program 4 (id=2060):
r0 = openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
syz_mount_image$fuse(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB="2c726f6f746d6f64653d303030303030300f303030303030303030303430307c7d86780538d91b1a9cc0c11d30302c757365725f", @ANYRESDEC=0x0, @ANYRESDEC=0x0, @ANYBLOB], 0x0, 0x0, 0x0)
read$FUSE(r0, &(0x7f0000006340)={0x2020, 0x0, <r1=>0x0}, 0x2058)
write$FUSE_LSEEK(r0, &(0x7f00000021c0)={0x18, 0x0, r1, {0x7}}, 0x18)
read$FUSE(r0, &(0x7f0000008d40)={0x2020}, 0xfffffffffffffd21)
fsopen(&(0x7f0000002300)='ext4\x00', 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f000000ad80)={0x2020}, 0x2020)
openat$ptp0(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
write(r2, 0x0, 0x0)
r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000002340), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)={<r4=>0xffffffffffffffff}, 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r3, &(0x7f00000005c0)={0x15, 0x110, 0xfa00, {r4, 0x0, 0x0, 0x30, 0x0, @ib={0x1b, 0x8, 0x5, {}, 0x1, 0x2, 0x4}, @ib={0x1b, 0x0, 0x0, {"00000000000000000000000000000001"}, 0x80000001}}}, 0x118)
write$RDMA_USER_CM_CMD_QUERY(r3, &(0x7f0000000000)={0x13, 0x10, 0xfa00, {&(0x7f00000003c0), r4, 0x2}}, 0x18)
r5 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r5, 0x4018620d, &(0x7f0000000300))
r6 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r6, 0xc0306201, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
dup3(r6, r5, 0x0)
ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f0000000240)={0x20, 0x0, &(0x7f0000000340)=[@request_death={0x400c630e, 0xfffffffd}, @request_death={0x400c630e, 0x3}], 0xffffff32, 0x0, 0x0})
connect$inet(0xffffffffffffffff, 0x0, 0x0)

12m11.856084917s ago: executing program 33 (id=2060):
r0 = openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
syz_mount_image$fuse(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB="2c726f6f746d6f64653d303030303030300f303030303030303030303430307c7d86780538d91b1a9cc0c11d30302c757365725f", @ANYRESDEC=0x0, @ANYRESDEC=0x0, @ANYBLOB], 0x0, 0x0, 0x0)
read$FUSE(r0, &(0x7f0000006340)={0x2020, 0x0, <r1=>0x0}, 0x2058)
write$FUSE_LSEEK(r0, &(0x7f00000021c0)={0x18, 0x0, r1, {0x7}}, 0x18)
read$FUSE(r0, &(0x7f0000008d40)={0x2020}, 0xfffffffffffffd21)
fsopen(&(0x7f0000002300)='ext4\x00', 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f000000ad80)={0x2020}, 0x2020)
openat$ptp0(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
write(r2, 0x0, 0x0)
r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000002340), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)={<r4=>0xffffffffffffffff}, 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r3, &(0x7f00000005c0)={0x15, 0x110, 0xfa00, {r4, 0x0, 0x0, 0x30, 0x0, @ib={0x1b, 0x8, 0x5, {}, 0x1, 0x2, 0x4}, @ib={0x1b, 0x0, 0x0, {"00000000000000000000000000000001"}, 0x80000001}}}, 0x118)
write$RDMA_USER_CM_CMD_QUERY(r3, &(0x7f0000000000)={0x13, 0x10, 0xfa00, {&(0x7f00000003c0), r4, 0x2}}, 0x18)
r5 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r5, 0x4018620d, &(0x7f0000000300))
r6 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r6, 0xc0306201, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
dup3(r6, r5, 0x0)
ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f0000000240)={0x20, 0x0, &(0x7f0000000340)=[@request_death={0x400c630e, 0xfffffffd}, @request_death={0x400c630e, 0x3}], 0xffffff32, 0x0, 0x0})
connect$inet(0xffffffffffffffff, 0x0, 0x0)

8m16.916978144s ago: executing program 0 (id=2447):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'bridge_slave_0\x00', <r1=>0x0})
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000480)={0x26, 'hash\x00', 0x0, 0x0, 'nhpoly1305-sse2\x00'}, 0x58)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, 0x0, 0x0, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0)
ioctl$sock_inet_SIOCSIFBRDADDR(0xffffffffffffffff, 0x891a, 0x0)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x2000a080, 0x0, 0x0)
syz_kvm_add_vcpu$x86(0x0, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, 0x0, 0x0)
r7 = socket$netlink(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="300000001c00c92429bd70000000024007000000", @ANYRES32=r1, @ANYBLOB="80008f0b0a000200aac9aa"], 0x30}, 0x1, 0x0, 0x0, 0xc8890}, 0x0)

8m15.832809981s ago: executing program 0 (id=2448):
socketpair$unix(0x1, 0x3, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$VIDIOC_S_PARM(0xffffffffffffffff, 0xc0cc5616, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000009c0)={0x0, 0x0, &(0x7f0000000300), 0x0, 0x2}, 0x38)
syz_usb_connect(0x0, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100008010bd40820514009dbb0000000109022400011b00000009040000022a3e740009058bff7f0000100109050b36"], 0x0)
socket$nl_route(0x10, 0x3, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000001140)='net\x00')
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000240), 0xc2882, 0x0)
close(r0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000004d00)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x30000}}], 0x300, 0xf00)

8m13.414883857s ago: executing program 0 (id=2458):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000100)={0x26, 'hash\x00', 0x0, 0x0, 'md5-generic\x00'}, 0x5a)
r1 = accept4(r0, 0x0, 0x0, 0x80000)
write(r1, &(0x7f0000000040)="cb", 0xfffffdef)
setsockopt$sock_int(r1, 0x1, 0x2c, &(0x7f00000009c0)=0xfefffffb, 0x4)

8m12.069052275s ago: executing program 0 (id=2463):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x0, &(0x7f0000000280)={[{@noload}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1}}, {@bh}, {@noload}, {@data_err_ignore}, {@usrjquota}]}, 0xfe, 0x44d, &(0x7f0000000900)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f00000001c0)='./file1/file4\x00', 0x40, &(0x7f0000000180)={[{@errors_remount}, {@jqfmt_vfsv1}]}, 0x0, 0x4f7, &(0x7f0000000540)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000440)='./bus\x00', 0x141842, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000240)='./bus\x00', 0x187102, 0x122)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x28011, r0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3040045, &(0x7f0000000380)={[{@delalloc}, {@data_err_abort}, {@noload}, {@prjquota}, {@data_err_ignore}, {@resgid}, {@data_err_ignore}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x562, &(0x7f0000000440)="$eJzs3d9rW+UbAPDnpO1+f7/rYAwVkcIuHMyla+uPCV7MS9HhQG+8miE9K6PpMpp0rHXgduFuvJEheOFAvNd7L4f/gH/FQIdDRvHGm8hJT7quSdasy9rMfD5w2vfNe5L3PDnnefOenIQEMLQmsj+FiJcj4psk4nBEJHnbaOSNE2vrrT68Xs6WJBqNT/5KsvX2R0S59Vit+x3MKy9FxK9fRZwstPdbW16ZL1Uq6WJe3xsLVyZryyunLi2U5tK59PL0zMyZt2am333n7b7E2fhy7f/Hdz848/Xx1e9+vn/kdhJn41DensXVh25ubKxMxET+nIzF2U0rTvWhs0GS7PYGsC0jeZ6PRTYGHI6RPOuB/77sZbEBDKlE/sOQas0DWuf2fToPfmE8eH/tBKg9/tG190ZiX/Pc6MBq8tiZUXa+O96H/rM+fvnjzu1sif69DwGwpRs3I+L06Gj7+Jfk49/2ne5hnc19GP9g59zN5j9vdJr/FNbnP9Fh/nOwQ+5ux9b5X7jfh266yuZ/73Wc/65ftBofyWv/a875xpKLlyppNrb9PyJOxNjerP6k6zlnVu81urVtnP9lS9Z/ay6Yb8f90b2P32e2VC89S8wbPbgZ8UrH+W+yvv+TDvs/ez7O99jHsfTOa93ato7/+Wr8GPF6x/3/6IpWVpqsd70+Odk8HiZbR0W7v28d+61b/7sdf7b/Dzw5/vFk4/Xa2tP38cO+f9K8uG9z22PxR+/H/57k02Z5T37btVK9vjgVsSf5qP326Uf3bdVb62fxnzj+5PGv0/G/PyI+7zH+W0d/erVb2yDs/9mn2v9PX7j34Rffd+u/t/HvzWbpRH5LL+Nfrxv4LM8dAAAAAAAADJpCRByKpFBcLxcKxeLa5zuOxoFCpVqrn7xYXbo8G83vyo7HWKF1pfvwhs9DTOWfh23VpzfVZyLiSER8O7K/WS+Wq5XZ3Q4eAAAAAAAAAAAAAAAAAAAABsTBLt//z/w+0rb6Z3/u/CYCz5Of/IbhtWX+9+OXnoCB5PUfhpf8h+El/2F4yX8YXvIfhpf8h+El/2F4yX8AAAAAAAAAAAAAAAAAAAAAAAAAAADoq/PnzmVLY/Xh9XJWn726vDRfvXpqNq3NFxeWysVydfFKca5anaukxXJ1YavHq1SrV6amY+naZD2t1SdryysXFqpLl+sXLi2U5tIL6diORAUAAAAAAAAAAAAAAAAAAAAvltryynypUkkXFRS2VRgdjM1Q6HNht0cmAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHjk3wAAAP//cHo1gQ==")
r1 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
ftruncate(r1, 0x2007ffc)

8m11.303029348s ago: executing program 0 (id=2465):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r0}, 0x10)
r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0xb, 0x59032, 0xffffffffffffffff, 0x0)
r2 = userfaultfd(0x80001)
r3 = userfaultfd(0x801)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000000600))
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x1})
syz_io_uring_submit(r1, 0x0, 0x0)
ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000000100)={0xaa, 0x47d})
ioctl$UFFDIO_REGISTER(r2, 0x8010aa01, &(0x7f0000000140)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}})

8m10.817586237s ago: executing program 0 (id=2468):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x1, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x16, 0x8, &(0x7f0000000400)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, 0x0, 0xff12}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r3, 0x2800000002000000, 0x2d, 0x55, &(0x7f0000000540)="a06ad876d56a0064d082778c393848e47aafb93e825bc86755a2eacec33fc952dd561507bc6b135f56dbf06a9d9ceee56670596ed92308d08c59eca23dcc6b6ba358116f41e4d9ab66a8203331c0763188fac61ebb4303d19d417546d16adca03aa17717ad74a5ef4f998c04575bb63a549646e527acde027974c3cd1cfd4b6b0f8e2d00"/153, &(0x7f0000000380)=""/85, 0x400000, 0x4000000, 0x30, 0x0, &(0x7f0000000180)="63f48972dae3f4a86c0349357f1a22fe48450f85daf04828cd1a18ffb8ab4359ecbcfb78ef46d047d95d8091652b56000000", &(0x7f0000000180), 0x0, 0x0, 0x1}, 0x24)

8m10.215955055s ago: executing program 34 (id=2468):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x1, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x16, 0x8, &(0x7f0000000400)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, 0x0, 0xff12}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r3, 0x2800000002000000, 0x2d, 0x55, &(0x7f0000000540)="a06ad876d56a0064d082778c393848e47aafb93e825bc86755a2eacec33fc952dd561507bc6b135f56dbf06a9d9ceee56670596ed92308d08c59eca23dcc6b6ba358116f41e4d9ab66a8203331c0763188fac61ebb4303d19d417546d16adca03aa17717ad74a5ef4f998c04575bb63a549646e527acde027974c3cd1cfd4b6b0f8e2d00"/153, &(0x7f0000000380)=""/85, 0x400000, 0x4000000, 0x30, 0x0, &(0x7f0000000180)="63f48972dae3f4a86c0349357f1a22fe48450f85daf04828cd1a18ffb8ab4359ecbcfb78ef46d047d95d8091652b56000000", &(0x7f0000000180), 0x0, 0x0, 0x1}, 0x24)

7m50.916969335s ago: executing program 6 (id=2503):
socket(0x10, 0x80002, 0x0)
syz_init_net_socket$ax25(0x3, 0x2, 0x8)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socket$inet(0x2, 0x80001, 0x84)
mount(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x3c, 0x0, 0x8, 0x101, 0x0, 0x0, {0x2, 0x0, 0x6}, [@CTA_TIMEOUT_DATA={0xc, 0x4, 0x0, 0x1, @icmp=[@CTA_TIMEOUT_ICMP_TIMEOUT={0x8}]}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz1\x00'}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x926}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x6}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20000004}, 0x40040)

7m49.86683334s ago: executing program 6 (id=2504):
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
accept$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x0)
writev(0xffffffffffffffff, 0x0, 0x0)
ioctl$vim2m_VIDIOC_REQBUFS(0xffffffffffffffff, 0xc0145608, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
write$sndseq(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x9, 0x10}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
read$msr(r0, &(0x7f0000032680)=""/102392, 0x18ff8)
modify_ldt$read(0x0, 0x0, 0x0)
r1 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x8400, 0x0)
ioctl$FS_IOC_SETFLAGS(r1, 0x40186f40, &(0x7f0000000440)=0x1f)

7m45.885186572s ago: executing program 6 (id=2511):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, 0x0, 0x0)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
socket$inet6_sctp(0xa, 0x1, 0x84)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
socket$kcm(0xa, 0x922000000003, 0x11)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r2 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000002000), 0x2, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x18, 0x3, &(0x7f0000000200)=@framed={{0x18, 0x0, 0x0, 0x0, 0x20}}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='contention_end\x00', r3}, 0x10)
ioctl$VIDIOC_LOG_STATUS(r2, 0x5646, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
mkdir(&(0x7f0000000000)='./cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0xe80, 0x6000, &(0x7f0000000640)="b9ff03076844268cb89e14f088f747e0ffff200000002011000aac141440e0", 0x0, 0x11, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000}, 0x48)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x9, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3fe, 0x5, 0x3, 0x9, 0x8, 0x45ff, 0x7ffffffc}, 0x0, 0x0)

7m44.67388537s ago: executing program 6 (id=2513):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000004c0)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@data_err_ignore}, {@grpquota}, {@abort}, {@user_xattr}, {@bh}, {@errors_remount}]}, 0x1, 0x55f, &(0x7f0000000580)="$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")
r0 = creat(&(0x7f0000000280)='./bus\x00', 0x100)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x185641, 0x0)
r1 = open(&(0x7f00000003c0)='./bus\x00', 0x84902, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x11, r1, 0x0)
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000500)='./bus\x00', 0x1000410, &(0x7f0000000bc0)={[{@grpid}, {@bsdgroups}, {@dax_inode}, {@max_batch_time={'max_batch_time', 0x3d, 0x101}}], [{@fsuuid={'fsuuid', 0x3d, {[0x30, 0x31, 0x6c, 0x32, 0x39, 0x32, 0x0, 0x34], 0x2d, [0x65, 0x64, 0x64, 0x66], 0x2d, [0x64, 0x33, 0x62, 0x35], 0x2d, [0x36, 0x33, 0x0, 0x35], 0x2d, [0x65, 0x37, 0x32, 0x39, 0x37, 0x38, 0x36, 0x37]}}}, {@fsmagic={'fsmagic', 0x3d, 0x3d}}, {@obj_type}, {@permit_directio}, {@euid_eq}, {@mask={'mask', 0x3d, '^MAY_EXEC'}}, {@func={'func', 0x3d, 'PATH_CHECK'}}]}, 0x4, 0x4eb, &(0x7f0000000540)="$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")
write$P9_RFSYNC(r0, &(0x7f0000000180)={0x7, 0x33, 0x1}, 0x7)

7m43.222831027s ago: executing program 6 (id=2517):
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000280)='./file0\x00', 0x414, &(0x7f0000000080)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000"], 0x1, 0x2a1, &(0x7f0000000f40)="$eJzs3MFqE18Ux/Hzb/pv0pQ2EURQUA+60c3QxgfQIC2IAaU2RV0IUzvRkDEpM0MlIjYbcetzFJfuBPUFuhE37t0VQXDThTjiTKZN2rSmbdLE9PuBck9y7o+5bdNyUuis3339pFRwjYLpyVBCZUikJhsi6T9V3X/1dSioR6RRTS6P/fhy9s69+zezudz0rOpMdu5KRlUnzr9/+vzNhY/e2PzbiXdxWUs/WP+e+bp2au30+q+5x0VXi66WK56aulCpeOaCbeli0S0Zqrdty3QtLZZdy2nqF+zK0lJVzfLieHLJsVxXzXJVS1ZVvYp6TlXNR2axrIZh6HhSjrfhNvbkV2dnzeyubT/W0ROh60ZbPek42VrrZn71CM4EAAD6zN7zfzjr7z7/5+bDtcPzvwjzf5fUmh79Zf7HQHCcrJms//w2Y/4HAAAAAAAAAAAAAAAAAAAAAOBfsOH7Kd/3U9EafcRFJCEi0eNenxPdccDv/9UeHRcd1vCPewkR+9VyfjkfrmE/W5Ci2GLJpKTkZ/B6qAvrmRu56UkNpOWDvVLPryznYxKP8pF0q/y5E1NhXpvz/0uy8foZScnJ1tfPtMyPyKWLDXlDUvLpoVTElsXgdb2VfzGlev1Wblt+NNgHAAAAAMAgMHTTjvfvQT/YkJCd/TC/j78PbHt/PSxn2rlFJQAAAAAAODS3+qxk2rblHKCIi8gh4oNaxKQvjrGtuCYifXCMoyoSIhI+oweJf9uMt5Xy29gzLCI9/7Lso+j1byYAAAAAnbY19O8j9PllF08EAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMDx0+79wKL9O1pRY494w+ViR/4JAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAH3kdwAAAP//R8IgDA==")
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0)
renameat2(0xffffffffffffff9c, &(0x7f0000000480)='./file1/file2\x00', 0xffffffffffffff9c, &(0x7f00000004c0)='./file0\x00', 0x2)

7m42.670322401s ago: executing program 6 (id=2520):
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x104000, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file0\x00', 0x1c0)
mount$bind(&(0x7f0000000300)='./file0\x00', &(0x7f0000000140)='./file0/file0\x00', 0x0, 0x1805406, 0x0)
mount$fuse(0x0, &(0x7f00000005c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$9p_unix(&(0x7f0000000440)='./file0/file0/file0\x00', &(0x7f0000000180)='./file0/file0\x00', 0x0, 0x121f408, 0x0)
mount$bind(&(0x7f0000000200)='./file0/file0\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0xa06006, 0x0)
setns(r1, 0x24020000)
syz_clone(0xb21e0000, 0x0, 0x0, 0x0, 0x0, 0x0)
umount2(&(0x7f0000000040)='.\x00', 0x2)

7m41.886597815s ago: executing program 35 (id=2520):
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x104000, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file0\x00', 0x1c0)
mount$bind(&(0x7f0000000300)='./file0\x00', &(0x7f0000000140)='./file0/file0\x00', 0x0, 0x1805406, 0x0)
mount$fuse(0x0, &(0x7f00000005c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$9p_unix(&(0x7f0000000440)='./file0/file0/file0\x00', &(0x7f0000000180)='./file0/file0\x00', 0x0, 0x121f408, 0x0)
mount$bind(&(0x7f0000000200)='./file0/file0\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0xa06006, 0x0)
setns(r1, 0x24020000)
syz_clone(0xb21e0000, 0x0, 0x0, 0x0, 0x0, 0x0)
umount2(&(0x7f0000000040)='.\x00', 0x2)

17.483668516s ago: executing program 2 (id=3503):
socket$inet_udp(0x2, 0x2, 0x0)
syz_emit_ethernet(0x4d, &(0x7f0000000000)=ANY=[@ANYBLOB], &(0x7f0000000080)={0x0, 0x2, [0xd62, 0xd67, 0x738, 0xa8d]})
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
sched_setattr(0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001c40)={0x8, 0x3, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r2 = syz_usb_connect$printer(0x0, 0x2d, &(0x7f00000000c0)={{0x12, 0x1, 0x110, 0x0, 0x0, 0x0, 0x10, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x1, 0x2, 0x7, 0x1, 0x1, 0x0, "", {{{0x9, 0x5, 0x1, 0x2, 0x0, 0x3}}}}}]}}]}}, 0x0)
mmap(&(0x7f00002e8000/0x4000)=nil, 0x4000, 0x2, 0x110, 0xffffffffffffffff, 0xf08a3000)
syz_usb_control_io$printer(r2, 0x0, &(0x7f00000011c0)={0x34, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000001180)={0x20, 0x0, 0x1}})
r3 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x20008005)
ioctl$EVIOCGMASK(r3, 0x60b, 0x0)
write$char_usb(r3, 0x0, 0x0)
syz_usb_disconnect(r2)
syz_emit_ethernet(0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r4 = syz_open_dev$sndctrl(&(0x7f0000000100), 0x1, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(r4, 0xc1105511, &(0x7f0000000040)={0xe, 0x0, 0x8, 0xb53, '\x00', 0x2})
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r4, 0xc1105511, &(0x7f0000000040))
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000000)=ANY=[], 0x28)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)

14.273854698s ago: executing program 1 (id=3510):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x30000c6, &(0x7f0000000080), 0x1, 0x561, &(0x7f0000000f80)="$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")
lsetxattr$trusted_overlay_upper(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000180), &(0x7f00000001c0)=ANY=[], 0x361, 0x0)
lsetxattr$security_ima(&(0x7f0000000080)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000100)=@md5={0x1, "5211eb8e5ce6935e9bbd76e32c4c956e"}, 0x11, 0x1)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
fsopen(0x0, 0x0)
r4 = syz_open_dev$MSR(&(0x7f0000000180), 0x1, 0x0)
readv(r4, &(0x7f0000000740)=[{&(0x7f00000001c0)=""/103, 0x67}, {0x0}], 0x2)
lsetxattr$system_posix_acl(&(0x7f0000000000)='./file1\x00', &(0x7f00000003c0)='system.posix_acl_access\x00', &(0x7f0000000300)=ANY=[@ANYBLOB="0200000001000000000000000400000000000000100000000000000020"], 0x24, 0x0)

13.642834799s ago: executing program 5 (id=3511):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x40, &(0x7f0000000100)={[{@errors_remount}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}, {@dioread_nolock}]}, 0x1, 0x573, &(0x7f0000000ec0)="$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")
r0 = openat(0xffffffffffffff9c, 0x0, 0x40042, 0xa2)
write$UHID_INPUT(r0, &(0x7f0000001440)={0x8, {"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", 0x1000}}, 0x2000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r1, &(0x7f0000000140)='Q', 0x1, 0x200980)
r2 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x42, 0x0)
openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000100)='./bus\x00', 0x1000002, &(0x7f0000000500)=ANY=[@ANYBLOB="6e6f6e756d7461696c3d302c646973636172640061727365743d63703835322c757466383d202c6e6f6e756d7461696c3d302c6e6f6e75617461696c3d302c7574663c3d302c696f6368619615f9a9d8bc34fd234143727365743d69736f383835392d322c756e695f786c6174653d312c73686f72746e616d653d77696e6e742c756e695f786c6174653d312c757466383d312c756e695f786c6174653d302c756e695f786c6174653d302c73686f72746e616d653d6d697865642c726f6469722c756e695f786c"], 0x1, 0x37d, &(0x7f0000000e80)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000600)={0x9, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003900)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r3}, 0x10)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
getrlimit(0x6, &(0x7f0000000e40))
connect$inet(0xffffffffffffffff, 0x0, 0xfffffca4)
sendfile(r2, r2, 0x0, 0xe0000000)
open(&(0x7f00000001c0)='./file1\x00', 0x14927e, 0x20)

12.993466292s ago: executing program 2 (id=3512):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000140)='status\x00')
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000180), r0)
sendmsg$ETHTOOL_MSG_LINKINFO_SET(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000000c0)={0x2c, r1, 0x35, 0x70bd2d, 0x25dfdbfe, {}, [@ETHTOOL_A_LINKINFO_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge_slave_0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x91}, 0x48010)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000001c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r2}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socket$inet6_tcp(0xa, 0x1, 0x0)
open(&(0x7f00000001c0)='./bus\x00', 0x101000, 0x0)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f0000000080)={'dvmrp1\x00', 0x2})
ioctl$TUNATTACHFILTER(r6, 0x401054d5, &(0x7f0000000340)={0x2, &(0x7f00000000c0)=[{0x28, 0x0, 0x4, 0xfffff01c}, {0x6, 0x0, 0x5}]})

9.249431897s ago: executing program 1 (id=3513):
socket$inet_udp(0x2, 0x2, 0x0)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000580)='./file1\x00', 0x40, &(0x7f0000000180)={[{@errors_remount}, {@min_batch_time={'min_batch_time', 0x3d, 0x5}}, {@user_xattr}]}, 0xfd, 0x573, &(0x7f0000000ec0)="$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")
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x8)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r3, &(0x7f0000000040), 0x6)

9.010002866s ago: executing program 5 (id=3514):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
connect$unix(0xffffffffffffffff, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000440)='fsi_master_read\x00', 0xffffffffffffffff, 0x0, 0x8}, 0x18)
r1 = add_key$keyring(&(0x7f00000001c0), &(0x7f0000000240)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
r2 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x1}, 0x0, 0x0, r1)
keyctl$KEYCTL_MOVE(0x1e, r1, r1, r2, 0x0)
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_open_dev$sndpcmp(&(0x7f00000001c0), 0x0, 0x0)

7.871938889s ago: executing program 5 (id=3517):
sendmsg$MPTCP_PM_CMD_GET_LIMITS(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x41}, 0x809d)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e9"], 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
landlock_create_ruleset(&(0x7f0000000040)={0x501a, 0x3, 0x3}, 0x18, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f326635004000000f300f20e06635800000000f22e0f30fa6c8", 0x50}], 0x1, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20004000}, 0x14)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

7.519209648s ago: executing program 2 (id=3519):
r0 = socket$packet(0x11, 0x3, 0x300)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'xfrm0\x00', <r2=>0x0})
setsockopt$packet_int(r0, 0x107, 0x14, &(0x7f0000000000)=0x5, 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, 0x0, 0x0, 0x2, 0x0)
sendto$packet(r0, &(0x7f0000000080)="33031600d1fd14", 0x7, 0x40008c1, &(0x7f00000000c0)={0x11, 0x86dd, r2, 0x1, 0x62}, 0x14)

6.896720868s ago: executing program 5 (id=3521):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x20}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
syz_usb_connect(0x2, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000065895340f010022067d7010203010902240001fc00000009046b00020a00000009056b10000000000109058a"], 0x0)

6.592725963s ago: executing program 7 (id=3522):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x30000c6, &(0x7f0000000080), 0x1, 0x561, &(0x7f0000000f80)="$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")
lsetxattr$trusted_overlay_upper(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000180), &(0x7f00000001c0)=ANY=[], 0x361, 0x0)
lsetxattr$security_ima(&(0x7f0000000080)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000100)=@md5={0x1, "5211eb8e5ce6935e9bbd76e32c4c956e"}, 0x11, 0x1)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mount(&(0x7f0000000540)=@sr0, &(0x7f0000000580)='./file0\x00', &(0x7f00000005c0)='vxfs\x00', 0x40, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
fsopen(0x0, 0x0)
r4 = syz_open_dev$MSR(&(0x7f0000000180), 0x1, 0x0)
readv(r4, &(0x7f0000000740)=[{&(0x7f00000001c0)=""/103, 0x67}, {0x0}], 0x2)
lsetxattr$system_posix_acl(&(0x7f0000000000)='./file1\x00', &(0x7f00000003c0)='system.posix_acl_access\x00', &(0x7f0000000300)=ANY=[@ANYBLOB="0200000001000000000000000400000000000000100000000000000020"], 0x24, 0x0)

6.410505677s ago: executing program 2 (id=3523):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
fsopen(&(0x7f0000000000)='ufs\x00', 0x1)
syz_emit_vhci(0x0, 0x7)
syz_open_dev$cec(0x0, 0x0, 0x0)
openat$sw_sync(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB, @ANYBLOB, @ANYBLOB='\x00'/11], 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080), 0x0, 0x1003, r5}, 0x38)
ioctl$SW_SYNC_IOC_CREATE_FENCE(0xffffffffffffffff, 0xc0285700, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000180)={0x44, 0x2, 0x6, 0x101, 0x0, 0x0, {}, [@IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:net,net\x00'}]}, 0x44}, 0x1, 0x0, 0x0, 0x4040000}, 0x0)
sendmsg$IPSET_CMD_TEST(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="640000000906010800000000000000000600000505000100070000003c0007801800148014000240fc0000000000000000000000000000011800018014000240ff010000000000000000000000000001050003000700000009000200"], 0x64}}, 0x4800)
sendmsg$IPSET_CMD_DESTROY(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x20000090)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_setup(0x497, 0x0, 0x0, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', <r7=>0x0})
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, 0x0, 0x80)
sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@ipv6_newnexthop={0x20, 0x68, 0x5fb9a818fb7378e9, 0xfffffffe, 0x25dfdbff, {}, [@NHA_OIF={0x8, 0x5, r7}]}, 0x20}}, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)=@newnexthop={0x38, 0x68, 0x1, 0x100003, 0x7ffffffd, {}, [@NHA_GROUP={0xc, 0x2, [{0x1, 0x15}]}, @NHA_RES_GROUP={0xc, 0xc, 0x0, 0x1, [@NHA_RES_GROUP_BUCKETS={0x6, 0x1, 0x3fd7}]}, @NHA_GROUP_TYPE={0x6, 0x3, 0x1}]}, 0x38}, 0x1, 0x0, 0x0, 0x4008018}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000003c0)=@newlink={0x20, 0x10, 0x437, 0x0, 0x0, {0x0, 0x0, 0x0, r7, 0x192}}, 0x20}}, 0x0)

6.190837226s ago: executing program 7 (id=3524):
syz_open_procfs(0x0, &(0x7f0000000140)='status\x00')
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(0x0, r0)
sendmsg$ETHTOOL_MSG_LINKINFO_SET(r0, 0x0, 0x48010)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000001c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
copy_file_range(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x3df1, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000580)=@flushsa={0x14, 0x1c, 0x1, 0x70bd27, 0x0, {0xff}}, 0x14}}, 0x0)

5.628596351s ago: executing program 7 (id=3525):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000580)='./file1\x00', 0x40, &(0x7f0000000180)={[{@errors_remount}, {@min_batch_time={'min_batch_time', 0x3d, 0x5}}, {@user_xattr}]}, 0xfd, 0x573, &(0x7f0000000ec0)="$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")
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040), 0x6)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448e6, 0x0)
add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe)
openat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x143142, 0x40)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, 0x0, 0x0)

5.294702048s ago: executing program 1 (id=3526):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xb, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0xc0012060, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x22)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
r2 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r2, 0x0, 0x0)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TIOCSRS485(r3, 0x542f, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000480), 0x2, 0x0)
socket(0x10, 0x3, 0x0)
socket(0x10, 0x803, 0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000380)='contention_end\x00'}, 0x18)
r4 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x40)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r4, 0xc0145401, &(0x7f0000000940)={0x1, 0x2, 0x8aa5, 0x1, 0x3})

5.013696461s ago: executing program 5 (id=3527):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r0 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_open_procfs(0x0, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r2, 0xceb3)

4.203678547s ago: executing program 7 (id=3528):
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
chdir(&(0x7f0000000100)='./file0\x00')
syz_mount_image$hfsplus(&(0x7f0000000600), &(0x7f0000000200)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x800, &(0x7f0000000300)=ANY=[@ANYRES16=0x0, @ANYRES32=0x0, @ANYRES32, @ANYRESHEX, @ANYRES8=0x0, @ANYRESDEC=0x0, @ANYRESHEX], 0x1, 0x677, &(0x7f0000000640)="$eJzs3c9vHGf9B/D3rB07m/abumnS5osq1WokQEQkdqwUzIWAEMqhQlU5cLYSJ7GySYvjIrdC1OHntYf+AeXgC+ICEvdIhQMXuPWGfKyExKUXzAEtmtlZe7Neu+s28W7g9Ypmn2fmmXnm83yenf0xVrQB/mddPZ/JByly9fyr6+X61uZCa2tz4U63nmQ6yUYymaSRpPhnu93+MLmSFDvdFH3lHu+vLL7+0SdbH3fWJuul2r9x0HF96v02+jZvdLfNJpmoy8/hof6ufe7+ip3IryQ5V5cwcseStB/ywz8/vdPSozno6ONHEiPweBWd980ev6seZ5IT9YVefg7ovvM2jj7C4UwPuV//JwgAAAB40gzzHfiZ7WxnvTh5BOEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAf4WN3d//L+ql0a3Ppuj+/v9UvS11fby8dLjdHzyuOAAAAAAAAADgCL20ne2s52R3vV1Uf/N/uVo5XT0+lbdyL8tZzYWsZylrWctq5pPM9HQ0tb60trY6P8SRlwYeeelTAp2uy+ajGTcAAAAAAAAAjLWJQx/x01zd/fs/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACMgyKZ6BQp7vdsnkljMsnxJFPlho3kr936k+zBqAMAAACAI/DMdraznpPd9XaR00mer+4BHM9buZu1rGQtrSznenVfoPOtv7G1udDa2ly4Uy57+/3WPw4VRtVjOvceBp/5bLVHMzeyUm25kGt5I61cT6M6snS2jqfba19c98uYim/Whozsel2WI3+vLvd491CD3c/U7jQMY6bKyLGdjMzVsZXZeLY7M4Nn6JCz03+m+TR27vyc7jtT3x2hz5TzE3VZjueX++V8JPozcann2ff8wTlPvvSH3/5grq6Pz5CGM1GX7eqxuTcTCz2ZeGGYTNxq3b1968a9809aJvaYqzJxZmf9ar6b7+d8ZvNaVrOSH2Upa1nObL5T1ZbqyS967p/uk6krD6299mmRTNXP0M5kHS6ml6tjT2Yl38sbuZ7lvFL9u5T5fC2XczmLPTN85uAZbpZXfWOfq779fwODP/fl7sFJflWXR2x68OYyr8/25LX3NXemauvdspulUwdn6bO8Nk5+oa6U5/hZXY6H/kzM92TiuYMz8evqZeVe6+7t1VtLbw53ulPv1ZXyOvrFWL2kls+XU+VkVWsPPzvKtucGts1Xbad32hp72s7stHWu1I19r9Sp+jPc3p4uVW0vDGxbqNrO9rQN+rwFwNg78ZUTU82/N//S/KD58+at5qvHvz399ekXp3Lsj8e+MTk38cXGi8Xv80F+crgvngAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwGD33n7n9lKrtbzaV2m32+/u0zT2lcz+7alybAOauj9n9gjO9e8hd/7/p5OxSMtIK/9qt9v1lmKffX7zp7FJVLvWWr45FvGMojLa1yXg8bu4dufNi/fefuerK3eWbi7fXL67ePny4tzi5VcWLt5YaS3PdR5HHSXwOOy+6Y86EgAAAAAAAAAAAGBYR/HfCUY9RgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAODJdvV8Jh+kyPzchblyfWtzoVUu3frunpNJGkmKHyfFh8mVdJbM9HRX7Hee91cWX//ok62Pd/ua7O7fOOi44WzUS2aTTHTK+4+qv2t1eaDioCEUOyMsE3aumzgYtf8EAAD//1HnC5Q=")
fchmodat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0xfffffed3)

4.178745559s ago: executing program 1 (id=3529):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000000)={0x1, 0x0, 0x0, 0x8000000000000000, 0xffffffffffffffff})
write$binfmt_script(r2, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0)
sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

3.18814844s ago: executing program 5 (id=3530):
bind$inet6(0xffffffffffffffff, &(0x7f0000f65000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0xfffffefffff3ff3e, &(0x7f0000000100)={0xa, 0x4e20, 0x0, @empty, 0x6}, 0x1c)
socket(0x2, 0x3, 0xff)
r0 = socket(0x840000000002, 0x3, 0xff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$TOKEN_CREATE(0x24, 0x0, 0x0)
ioctl$BTRFS_IOC_START_SYNC(0xffffffffffffffff, 0x80089418, 0x0)
connect$inet(r0, &(0x7f0000000540)={0x2, 0x4e22, @remote}, 0x10)
sendmmsg$inet(r0, &(0x7f0000005240)=[{{0x0, 0x0, 0x0}, 0xfffffdef}], 0x300, 0x401eb94)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x6, 0x0, &(0x7f0000000080))

3.140223214s ago: executing program 7 (id=3531):
r0 = socket$packet(0x11, 0x3, 0x300)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'xfrm0\x00', <r2=>0x0})
setsockopt$packet_int(r0, 0x107, 0x14, &(0x7f0000000000)=0x5, 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendto$packet(r0, 0x0, 0x0, 0x40008c1, &(0x7f00000000c0)={0x11, 0x86dd, r2, 0x1, 0x62}, 0x14)

3.009150225s ago: executing program 1 (id=3532):
socket$inet6_udp(0xa, 0x2, 0x0)
io_setup(0x2, &(0x7f0000000000)=<r0=>0x0)
eventfd(0x4)
r1 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000080), 0x2)
r2 = memfd_create(&(0x7f0000000000)='-&:{-\xaa]{\x00', 0x2)
pwrite64(r2, &(0x7f00000002c0)="e6", 0x1, 0x2)
fcntl$addseals(r2, 0x409, 0x6)
close(0x3)
ioctl$UDMABUF_CREATE_LIST(r1, 0x40087543, &(0x7f00000000c0)={0x10000, 0x1, [{r2, 0x0, 0x0, 0x1000}]})
io_submit(r0, 0x0, &(0x7f00000001c0))

2.987588366s ago: executing program 2 (id=3533):
syz_open_procfs(0x0, &(0x7f0000000140)='status\x00')
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(0x0, r0)
sendmsg$ETHTOOL_MSG_LINKINFO_SET(r0, 0x0, 0x48010)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000001c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
copy_file_range(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x3df1, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000580)=@flushsa={0x14, 0x1c, 0x1, 0x70bd27, 0x0, {0xff}}, 0x14}}, 0x0)

552.557934ms ago: executing program 2 (id=3534):
socket$inet_udp(0x2, 0x2, 0x0)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000580)='./file1\x00', 0x40, &(0x7f0000000180)={[{@errors_remount}, {@min_batch_time={'min_batch_time', 0x3d, 0x5}}, {@user_xattr}]}, 0xfd, 0x573, &(0x7f0000000ec0)="$eJzs3T1sG+UbAPDnzvG/X/mTIoEEqEMFSEWq6iT9gMLUrohKlTogsUDkuFEVJ47iBJooQ7pXiA4IUJeywcAIYmBALIysLCBmpIpGIDUdwMhfaZo4wSl1XHK/n3T2vfee/bzvnZ/XvtOdHEBmHa0/pBHPRsTFJGJoXd1AtCqPNtdbXVkq3ltZKiZRq136LYkkIu6uLBXb6yet50MRsRwRz0TEd/mI4+nmuNWFxcmxcrk02yoPz03NDFcXFk9cmRqbKE2Upk+98uqZs6fPjJ4cXf+ye7X1pfzO+nr95xvvX//h9Vs3Pv/iyHLxw7EkzsVgq259Px6l5jbJx7kNy0/3IlgfJf1uAA8l18rzeio9HUORa2V9J7WhXW0a0GO1fRE1IKMS+Q8Z1f4dUD/+bU+7+fvj9vnmAUg97mpratYMNM9NxP7GscnB35MHjkzqx5uHd7Oh7EnL1yJiZGBg8+c/aX3+Ht7Io2ggPfXt+eaO2rz/07XxJzqMP4Ptc6f/Unv8W900/t2Pn9ti/LvYZYw/3/rlky3jX4t4rmP8ZC1+0iF+GhHvdBn/5ptfn92qrvZpxLHoHL8t2f788PDlK+XSSPOxY4xvjh15bbv+H9wifvOc7f7G10yn7T/TZf+/+v7L55e3if/SC9vv/07b/0BEfNBl/CfvfvbGVnW3ryV36r8Cdrr/68tudRn/5XNHf+pyVQAAAAAAAAAAYAfSxrVsSVpYm0/TQqF5D+9TcTAtV6pzxy9X5qfHm9e8HY582r7SaqhZTurl0db1uO3yyQ3lU7lWwNyBRrlQrJTH+9x3AAAAAAAAAAAAAAAAAAAAeFwc2nD//x+5xv3/G/+uGtirtv7Lb2Cvk/+QXQ/mf9K3dgC7z/c/ZFZN/kN2yX/ILvkP2SX/IbvkP2SX/Ifskv8AAAAAAAAAAAAAAAAAAAAAAAAAANATFy9cqE+1eytLxXp5fGBhfrLy7onxUnWyMDVfLBQrszOFiUplolwqFCtT//R+SaUyMxLT81eH50rVueHqwuLbU5X56fZ/ipbyPe8RAAAAAAAAAAAAAAAAAAAA/PcMNqYkLURE2phP00Ih4v8RcTjyyeUr5dJIRDwRET/m8vvq5dF+NxoAAAAAAAAAAAAAAAAAAAD2mOrC4uRYuVyazcjMwE5WjojlR9uM+jvu+FX51r56XLahmSzM9HlgAgAAAAAAAAAAAAAAAACADLp/02+3r/irtw0CAAAAAAAAAAAAAAAAAACATEp/TSKiPh0benFwY+3/ktVc4zki3rt56aOrY3Nzs6P15XfWls993Fp+sh/tB7rVztN2HgMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD3VRcWJ8fK5dJsD2f63UcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAh/F3AAAA///pCdd8")
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x8)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r3, &(0x7f0000000040), 0x6)

423.081155ms ago: executing program 7 (id=3535):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x30000c6, &(0x7f0000000080), 0x1, 0x561, &(0x7f0000000f80)="$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")
lsetxattr$trusted_overlay_upper(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000180), &(0x7f00000001c0)=ANY=[], 0x361, 0x0)
lsetxattr$security_ima(&(0x7f0000000080)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000100)=@md5={0x1, "5211eb8e5ce6935e9bbd76e32c4c956e"}, 0x11, 0x1)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mount(&(0x7f0000000540)=@sr0, &(0x7f0000000580)='./file0\x00', &(0x7f00000005c0)='vxfs\x00', 0x40, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
fsopen(0x0, 0x0)
r4 = syz_open_dev$MSR(&(0x7f0000000180), 0x1, 0x0)
readv(r4, &(0x7f0000000740)=[{&(0x7f00000001c0)=""/103, 0x67}, {0x0}], 0x2)
lsetxattr$system_posix_acl(&(0x7f0000000000)='./file1\x00', &(0x7f00000003c0)='system.posix_acl_access\x00', &(0x7f0000000300)=ANY=[@ANYBLOB="0200000001000000000000000400000000000000100000000000000020"], 0x24, 0x0)

0s ago: executing program 1 (id=3536):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000580)='./file1\x00', 0x40, &(0x7f0000000180)={[{@errors_remount}, {@min_batch_time={'min_batch_time', 0x3d, 0x5}}, {@user_xattr}]}, 0xfd, 0x573, &(0x7f0000000ec0)="$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")
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x8)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r5, 0x400448e7, 0x0)
add_key$keyring(&(0x7f0000000000), 0x0, 0x0, 0x0, 0xffffffffffffffff)
add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe)
request_key(&(0x7f0000000100)='dns_resolver\x00', &(0x7f0000000380)={'syz', 0x1}, 0x0, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x143142, 0x40)
ioctl$EXT4_IOC_GET_ES_CACHE(r6, 0xc020662a, &(0x7f00000001c0)={0x800, 0xffffffffffffffff, 0x6, 0x2})
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, 0x0, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
unshare(0x10020500)

kernel console output (not intermixed with test programs):

 3-1: new low-speed USB device number 42 using dummy_hcd
[ 1231.363383][T16796] loop5: detected capacity change from 0 to 512
[ 1231.398844][T16796] EXT4-fs: Ignoring removed nobh option
[ 1231.414748][T16797] warning: `syz.2.2635' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[ 1231.500393][   T55] usb 3-1: device not accepting address 42, error -71
[ 1231.535061][T16796] EXT4-fs error (device loop5): ext4_orphan_get:1399: inode #15: comm syz.5.2636: iget: bad i_size value: 38620345925642
[ 1231.652186][T16796] EXT4-fs error (device loop5): ext4_orphan_get:1404: comm syz.5.2636: couldn't read orphan inode 15 (err -117)
[ 1231.682516][T16796] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1232.890289][ T5925] usb 2-1: new high-speed USB device number 26 using dummy_hcd
[ 1232.928403][T16734] EXT4-fs error (device loop5): ext4_validate_block_bitmap:430: comm kworker/u4:14: bg 0: block 5: invalid block bitmap
[ 1232.957518][T16734] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 5 with error 28
[ 1232.973846][T16734] EXT4-fs (loop5): This should not happen!! Data will be lost
[ 1232.973846][T16734] 
[ 1232.984075][T16734] EXT4-fs (loop5): Total free blocks count 0
[ 1232.993556][T16734] EXT4-fs (loop5): Free/Dirty block details
[ 1232.999798][T16734] EXT4-fs (loop5): free_blocks=0
[ 1233.005440][T16734] EXT4-fs (loop5): dirty_blocks=16001
[ 1233.017531][T16734] EXT4-fs (loop5): Block reservation details
[ 1233.024731][T16734] EXT4-fs (loop5): i_reserved_data_blocks=16001
[ 1233.121138][T16805] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 8 with max blocks 2048 with error 28
[ 1233.779401][T16829] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2641'.
[ 1234.040272][T16350] usb 3-1: new high-speed USB device number 44 using dummy_hcd
[ 1234.220284][T16350] usb 3-1: Using ep0 maxpacket: 16
[ 1234.227710][T16350] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[ 1234.307198][T16350] usb 3-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[ 1234.307223][T16350] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1234.307238][T16350] usb 3-1: Product: syz
[ 1234.307272][T16350] usb 3-1: Manufacturer: syz
[ 1234.307284][T16350] usb 3-1: SerialNumber: syz
[ 1234.319858][T16350] usb 3-1: config 0 descriptor??
[ 1234.337522][T16350] hub 3-1:0.0: bad descriptor, ignoring hub
[ 1234.337553][T16350] hub: probe of 3-1:0.0 failed with error -5
[ 1234.356389][T16350] input: syz syz as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/input/input92
[ 1234.879770][T16838] loop7: detected capacity change from 0 to 1024
[ 1235.010208][   T27] audit: type=1800 audit(1754907335.703:50): pid=16838 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.2642" name="bus" dev="loop7" ino=0 res=0 errno=0
[ 1238.978146][ T1278] ieee802154 phy0 wpan0: encryption failed: -22
[ 1238.984665][ T1278] ieee802154 phy1 wpan1: encryption failed: -22
[ 1239.740798][    T9] usb 3-1: USB disconnect, device number 44
[ 1243.640451][   T23] usb 2-1: new high-speed USB device number 27 using dummy_hcd
[ 1243.890144][   T23] usb 2-1: Using ep0 maxpacket: 16
[ 1244.396738][   T23] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1244.443624][   T23] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 1244.890323][T16350] usb 3-1: new full-speed USB device number 45 using dummy_hcd
[ 1245.094490][T16350] usb 3-1: config 252 has an invalid interface number: 107 but max is 0
[ 1245.094529][T16350] usb 3-1: config 252 has no interface number 0
[ 1245.094606][T16350] usb 3-1: config 252 interface 107 altsetting 0 has an invalid endpoint with address 0x6B, skipping
[ 1245.094634][T16350] usb 3-1: config 252 interface 107 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0
[ 1245.098210][T16350] usb 3-1: New USB device found, idVendor=10f0, idProduct=2002, bcdDevice=d7.67
[ 1245.098241][T16350] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1245.098297][T16350] usb 3-1: Product: syz
[ 1245.098314][T16350] usb 3-1: Manufacturer: syz
[ 1245.098331][T16350] usb 3-1: SerialNumber: syz
[ 1246.386983][T10159] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[ 1246.850233][T10159] usb 8-1: Using ep0 maxpacket: 16
[ 1247.127876][    T9] usb 3-1: USB disconnect, device number 45
[ 1247.275922][T10159] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[ 1247.707602][   T23] usb 2-1: string descriptor 0 read error: -71
[ 1247.748830][   T23] usb 2-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[ 1247.812862][   T23] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1247.890622][   T23] usb 2-1: config 0 descriptor??
[ 1247.909517][   T23] usb 2-1: can't set config #0, error -71
[ 1247.945979][   T23] usb 2-1: USB disconnect, device number 27
[ 1250.206218][T10159] usb 8-1: string descriptor 0 read error: -71
[ 1250.255728][T10159] usb 8-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[ 1250.308078][T10159] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1250.342467][T10159] usb 8-1: config 0 descriptor??
[ 1250.381602][T10159] usb 8-1: can't set config #0, error -71
[ 1250.422583][T10159] usb 8-1: USB disconnect, device number 4
[ 1250.617254][T16967] loop7: detected capacity change from 0 to 2048
[ 1250.694273][T16967]  loop7: p1 < > p3
[ 1250.733030][T16967] loop7: p3 size 134217728 extends beyond EOD, truncated
[ 1251.806809][T16997] loop1: detected capacity change from 0 to 256
[ 1251.913042][T16997] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d)
[ 1252.019510][T16997] exFAT-fs (loop1): bogus allocation bitmap size(need : 2, cur : 17179869186)
[ 1252.120395][T10159] usb 3-1: new high-speed USB device number 46 using dummy_hcd
[ 1253.197210][T10159] usb 3-1: Using ep0 maxpacket: 16
[ 1255.272553][T17011] loop5: detected capacity change from 0 to 512
[ 1255.321435][T17011] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1255.508800][T17011] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1255.590370][T17011] ext4 filesystem being mounted at /159/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1256.242262][T13438] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1256.824992][T10159] usb 3-1: device descriptor read/all, error -71
[ 1258.090633][T17058] xt_TPROXY: Can be used only with -p tcp or -p udp
[ 1258.131974][T17058] loop2: detected capacity change from 0 to 128
[ 1261.248750][T17072] loop5: detected capacity change from 0 to 512
[ 1261.365131][T17072] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1261.516425][T17072] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1261.570345][T17072] ext4 filesystem being mounted at /163/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1262.114612][T13438] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1263.280969][T17108] loop5: detected capacity change from 0 to 512
[ 1263.335227][T17111] loop2: detected capacity change from 0 to 256
[ 1263.446014][T17111] exfat: Deprecated parameter 'utf8'
[ 1263.479269][T17108] EXT4-fs error (device loop5): ext4_xattr_ibody_find:2244: inode #15: comm syz.5.2684: corrupted in-inode xattr: invalid ea_ino
[ 1263.681105][T17108] EXT4-fs error (device loop5): ext4_orphan_get:1404: comm syz.5.2684: couldn't read orphan inode 15 (err -117)
[ 1263.714840][T17111] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[ 1263.754034][T17108] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1264.148335][T13438] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1264.724193][T17140] loop5: detected capacity change from 0 to 512
[ 1264.758600][T17140] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1265.733527][T17140] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1265.812478][T17140] ext4 filesystem being mounted at /167/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1266.380427][T13438] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1270.859345][T17190] loop7: detected capacity change from 0 to 512
[ 1270.906258][T17190] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1271.045989][T17190] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[ 1271.230718][T17190] EXT4-fs (loop7): 1 truncate cleaned up
[ 1271.237886][T17190] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1271.551041][T17190] EXT4-fs error (device loop7): ext4_lookup:1858: inode #16: comm syz.7.2698: iget: bad i_size value: 5497558147880
[ 1271.586642][T17201] loop1: detected capacity change from 0 to 512
[ 1271.679191][T17201] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[ 1271.771875][T17201] EXT4-fs (loop1): 1 truncate cleaned up
[ 1271.778458][T17201] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1272.091598][T16103] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1272.102521][T15312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1272.915009][T17224] loop5: detected capacity change from 0 to 512
[ 1272.998712][T17224] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1273.034405][T17227] loop2: detected capacity change from 0 to 2048
[ 1273.075617][T17224] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1273.200338][T17224] ext4 filesystem being mounted at /170/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1273.235048][T17227] EXT4-fs (loop2): mounted filesystem 00000800-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1273.447333][T17227] EXT4-fs error (device loop2): ext4_lookup:1858: inode #16: comm syz.2.2704: iget: bad i_size value: 8796093031208
[ 1273.790687][T17240] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[ 1273.811662][T13438] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1275.084875][T17251] loop7: detected capacity change from 0 to 256
[ 1275.225342][T17251] exFAT-fs (loop7): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x18b10316, utbl_chksum : 0xe619d30d)
[ 1276.521673][T17251] exFAT-fs (loop7): bogus allocation bitmap size(need : 2, cur : 17179869186)
[ 1276.721345][   T27] audit: type=1800 audit(1754907377.423:51): pid=17251 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.2707" name="file2" dev="loop7" ino=1048710 res=0 errno=0
[ 1277.847131][T17272] loop7: detected capacity change from 0 to 1024
[ 1277.943337][T15027] EXT4-fs (loop2): unmounting filesystem 00000800-0000-0000-0000-000000000000.
[ 1278.114401][T17272] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1278.149951][T17268] kvm: kvm [17267]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0x187) = 0x4000
[ 1278.177944][T17272] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1278.209140][T17276] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1278.232311][T17268] kvm: kvm [17267]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0x11e) = 0xbe706111
[ 1278.241907][T17276] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1278.258832][T17272] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1278.282510][T17272] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1278.300227][T17276] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1278.328010][T17276] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1278.355377][T17272] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1278.406497][T17272] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1278.450808][T17272] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1278.458174][T17272] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1278.497875][T17272] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1278.518078][T17272] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1278.530814][T17272] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1278.567076][T17272] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1278.613694][T17272] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1278.632444][T17272] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1278.653367][T17272] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1278.677321][T17272] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1278.707429][T17272] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1278.738785][T17272] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1278.777139][T17272] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1278.805075][T17272] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1278.828044][T17272] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1278.835991][T17272] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1278.862115][T17272] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1278.893163][T17272] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1278.900921][T17272] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1278.908360][T17272] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1278.917620][T17272] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1278.925890][T17272] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1278.938033][T17272] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1278.960669][T17272] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1278.987340][T17272] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1278.998090][T14633] Bluetooth: hci0: ACL packet for unknown connection handle 201
[ 1279.040247][T17272] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1279.047680][T17272] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1279.078660][T17272] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1279.088244][T17272] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1279.096699][T17272] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1279.109954][   T27] audit: type=1800 audit(1754907379.823:52): pid=17272 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.7.2711" name="file1" dev="loop7" ino=20 res=0 errno=0
[ 1279.208314][   T11] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1279.217790][   T11] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1280.646587][T17337] loop1: detected capacity change from 0 to 1024
[ 1280.680201][T17337] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1280.809024][T17337] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1280.860377][T17337] ext4 filesystem being mounted at /89/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1282.747558][T17349] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[ 1283.665832][T17349] EXT4-fs (loop1): Remounting filesystem read-only
[ 1284.012065][T15312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1284.401791][T17356] loop7: detected capacity change from 0 to 2048
[ 1284.526690][T17356] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1284.650767][T17356] ext4 filesystem being mounted at /44/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1285.672382][T16103] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1286.140442][T10159] usb 3-1: new low-speed USB device number 48 using dummy_hcd
[ 1286.380520][T10159] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1286.414905][T10159] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 1286.442148][T10159] usb 3-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[ 1286.452811][T10159] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1288.173486][T10159] usb 3-1: config 0 descriptor??
[ 1288.232649][T17391] loop1: detected capacity change from 0 to 512
[ 1288.239919][T17391] EXT4-fs: Ignoring removed nobh option
[ 1288.275577][T17391] EXT4-fs error (device loop1): ext4_orphan_get:1399: inode #15: comm syz.1.2734: iget: bad i_size value: 38620345925642
[ 1288.304604][T17391] EXT4-fs error (device loop1): ext4_orphan_get:1404: comm syz.1.2734: couldn't read orphan inode 15 (err -117)
[ 1288.391831][T17391] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1289.320943][   T48] EXT4-fs error (device loop1): ext4_validate_block_bitmap:430: comm kworker/u4:3: bg 0: block 5: invalid block bitmap
[ 1289.351123][   T48] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 5 with error 28
[ 1289.373816][   T48] EXT4-fs (loop1): This should not happen!! Data will be lost
[ 1289.373816][   T48] 
[ 1289.404236][   T48] EXT4-fs (loop1): Total free blocks count 0
[ 1289.431131][   T48] EXT4-fs (loop1): Free/Dirty block details
[ 1289.456735][   T48] EXT4-fs (loop1): free_blocks=0
[ 1289.471295][   T48] EXT4-fs (loop1): dirty_blocks=16001
[ 1289.476822][   T48] EXT4-fs (loop1): Block reservation details
[ 1289.499796][    T9] usb 3-1: USB disconnect, device number 48
[ 1289.508028][   T48] EXT4-fs (loop1): i_reserved_data_blocks=16001
[ 1289.607288][T17397] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 8 with max blocks 2048 with error 28
[ 1291.523823][T17436] loop1: detected capacity change from 0 to 2048
[ 1291.581720][T17436] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1291.748854][T17436] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[ 1291.879733][T17436] EXT4-fs (loop1): Remounting filesystem read-only
[ 1291.969401][T15312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1292.209854][T17452] loop7: detected capacity change from 0 to 256
[ 1292.254213][T17452] exFAT-fs (loop7): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d)
[ 1292.281509][T17452] exFAT-fs (loop7): bogus allocation bitmap size(need : 2, cur : 17179869186)
[ 1292.362701][   T27] audit: type=1800 audit(1754907393.073:53): pid=17452 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.2746" name="file1" dev="loop7" ino=1048714 res=0 errno=0
[ 1292.850860][T17456] netlink: 20 bytes leftover after parsing attributes in process `syz.7.2747'.
[ 1293.271779][T17449] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1293.979411][T17465] loop7: detected capacity change from 0 to 128
[ 1294.047730][T17465] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1294.081587][T17465] ext4 filesystem being mounted at /56/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1294.118147][T17469] loop1: detected capacity change from 0 to 256
[ 1294.237598][T13495] udevd[13495]: incorrect ext4dev checksum on /dev/loop7
[ 1294.239395][T17465] EXT4-fs error (device loop7): ext4_resize_begin:62: comm syz.7.2751: resize_inode disabled but reserved GDT blocks non-zero
[ 1294.250559][T16350] usb 3-1: new high-speed USB device number 49 using dummy_hcd
[ 1294.347853][T16103] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1294.492833][T16350] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1294.525809][T16350] usb 3-1: New USB device found, idVendor=04d9, idProduct=a04a, bcdDevice= 0.00
[ 1294.545463][T16350] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1294.604867][T16350] usb 3-1: config 0 descriptor??
[ 1295.547634][T16350] holtek_mouse 0003:04D9:A04A.001A: unbalanced collection at end of report description
[ 1295.570622][T16350] holtek_mouse 0003:04D9:A04A.001A: hid parse failed: -22
[ 1295.577874][T16350] holtek_mouse: probe of 0003:04D9:A04A.001A failed with error -22
[ 1295.813417][T16350] usb 3-1: USB disconnect, device number 49
[ 1295.967225][T17488] netlink: 20 bytes leftover after parsing attributes in process `syz.7.2756'.
[ 1296.685014][T17490] loop1: detected capacity change from 0 to 1024
[ 1296.730767][   T55] usb 6-1: new full-speed USB device number 28 using dummy_hcd
[ 1296.759101][T17490] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1296.771686][T17490] ext4 filesystem being mounted at /97/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1297.717018][   T55] usb 6-1: config 252 has an invalid interface number: 107 but max is 0
[ 1297.728971][   T27] audit: type=1800 audit(1754907398.283:54): pid=17504 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2757" name="file1" dev="loop1" ino=15 res=0 errno=0
[ 1297.754696][   T55] usb 6-1: config 252 has no interface number 0
[ 1297.761213][   T55] usb 6-1: config 252 interface 107 altsetting 0 has an invalid endpoint with address 0x6B, skipping
[ 1297.772403][   T55] usb 6-1: config 252 interface 107 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0
[ 1297.802512][T15312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1297.877565][   T55] usb 6-1: New USB device found, idVendor=10f0, idProduct=2002, bcdDevice=d7.67
[ 1297.932305][   T55] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1297.968885][T17509] netlink: 36 bytes leftover after parsing attributes in process `syz.1.2760'.
[ 1297.980341][   T55] usb 6-1: Product: syz
[ 1297.984518][   T55] usb 6-1: Manufacturer: syz
[ 1297.989112][   T55] usb 6-1: SerialNumber: syz
[ 1298.267855][   T55] usb 6-1: USB disconnect, device number 28
[ 1299.047266][T17526] loop5: detected capacity change from 0 to 256
[ 1300.416400][ T1278] ieee802154 phy0 wpan0: encryption failed: -22
[ 1300.422953][ T1278] ieee802154 phy1 wpan1: encryption failed: -22
[ 1300.510283][   T55] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[ 1300.702581][   T55] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1300.713670][   T55] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1300.723589][   T55] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1300.737901][   T55] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1300.747173][   T55] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1300.757359][   T55] usb 8-1: config 0 descriptor??
[ 1301.079677][T17544] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2771'.
[ 1301.183248][   T55] plantronics 0003:047F:FFFF.001B: ignoring exceeding usage max
[ 1301.214936][   T55] plantronics 0003:047F:FFFF.001B: No inputs registered, leaving
[ 1301.243942][   T55] plantronics 0003:047F:FFFF.001B: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.7-1/input0
[ 1301.490185][T15055] usb 6-1: new full-speed USB device number 29 using dummy_hcd
[ 1301.548544][T10159] usb 8-1: USB disconnect, device number 5
[ 1301.715621][T15055] usb 6-1: config 252 has an invalid interface number: 107 but max is 0
[ 1301.861027][T15055] usb 6-1: config 252 has no interface number 0
[ 1302.129878][T15055] usb 6-1: config 252 interface 107 altsetting 0 has an invalid endpoint with address 0x6B, skipping
[ 1302.261833][T15055] usb 6-1: config 252 interface 107 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0
[ 1302.274767][T15055] usb 6-1: New USB device found, idVendor=10f0, idProduct=2002, bcdDevice=d7.67
[ 1302.284452][T15055] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1302.292633][T15055] usb 6-1: Product: syz
[ 1302.296841][T15055] usb 6-1: Manufacturer: syz
[ 1302.301608][T15055] usb 6-1: SerialNumber: syz
[ 1302.482783][T17565] loop7: detected capacity change from 0 to 256
[ 1302.543520][T15055] usb 6-1: USB disconnect, device number 29
[ 1302.827057][T14633] Bluetooth: hci0: ACL packet for unknown connection handle 201
[ 1303.227962][T17571] loop5: detected capacity change from 0 to 8
[ 1303.568284][T17575] netlink: 36 bytes leftover after parsing attributes in process `syz.7.2781'.
[ 1307.388326][T17616] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2794'.
[ 1308.273426][ T5833] usb 3-1: new high-speed USB device number 50 using dummy_hcd
[ 1309.541743][ T5833] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1309.553256][ T5833] usb 3-1: config 0 interface 0 has no altsetting 0
[ 1309.559913][ T5833] usb 3-1: New USB device found, idVendor=054c, idProduct=03d5, bcdDevice= 0.00
[ 1309.569538][ T5833] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1309.600469][ T5833] usb 3-1: config 0 descriptor??
[ 1310.125611][ T5833] input: HID 054c:03d5 as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:054C:03D5.001C/input/input96
[ 1310.260811][T17630] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2799'.
[ 1310.304917][ T5833] sony 0003:054C:03D5.001C: input,hidraw0: USB HID v0.00 Joystick [HID 054c:03d5] on usb-dummy_hcd.2-1/input0
[ 1310.348726][ T5833] usb 3-1: USB disconnect, device number 50
[ 1310.695876][T17632] fido_id[17632]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/report_descriptor': No such file or directory
[ 1311.209214][T17638] loop2: detected capacity change from 0 to 512
[ 1311.253163][T17638] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1311.382644][T17638] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1311.442809][T17638] ext4 filesystem being mounted at /104/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1311.470763][T17647] netlink: 36 bytes leftover after parsing attributes in process `syz.5.2804'.
[ 1313.281974][T15027] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1314.027670][T14633] Bluetooth: hci4: ACL packet for unknown connection handle 201
[ 1315.186010][T17676] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2811'.
[ 1315.511490][T17685] loop2: detected capacity change from 0 to 512
[ 1315.542084][T17685] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1315.617133][T17685] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1315.696538][T17685] ext4 filesystem being mounted at /108/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1315.852878][T17689] netlink: 36 bytes leftover after parsing attributes in process `syz.7.2816'.
[ 1316.348165][T15027] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1316.712731][T14633] Bluetooth: hci0: ACL packet for unknown connection handle 201
[ 1320.132695][T17733] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2827'.
[ 1322.268774][T14633] Bluetooth: hci4: ACL packet for unknown connection handle 201
[ 1322.994211][T17776] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2840'.
[ 1323.179217][T17783] loop2: detected capacity change from 0 to 512
[ 1323.189119][T17783] EXT4-fs: Ignoring removed nobh option
[ 1323.231735][T17783] EXT4-fs error (device loop2): ext4_orphan_get:1399: inode #15: comm syz.2.2843: iget: bad i_size value: 38620345925642
[ 1323.266422][T17783] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.2843: couldn't read orphan inode 15 (err -117)
[ 1323.360668][T17783] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1323.461997][T15027] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1323.605313][T17794] netlink: 'syz.2.2846': attribute type 1 has an invalid length.
[ 1323.614686][T17794] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2846'.
[ 1324.785910][T17808] loop1: detected capacity change from 0 to 16
[ 1324.797143][T17808] erofs: (device loop1): mounted with root inode @ nid 36.
[ 1327.051595][T17823] netlink: 'syz.7.2855': attribute type 1 has an invalid length.
[ 1327.059393][T17823] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2855'.
[ 1327.254482][T17828] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2856'.
[ 1327.460301][T17834] loop7: detected capacity change from 0 to 512
[ 1327.474427][T17834] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[ 1327.505943][T17834] EXT4-fs (loop7): 1 truncate cleaned up
[ 1327.517705][T17834] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1328.812256][T16103] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1329.549386][T17848] binder: 17847:17848 ioctl 40046205 0 returned -22
[ 1330.009473][T17871] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2869'.
[ 1330.100259][   T42] usb 6-1: new low-speed USB device number 30 using dummy_hcd
[ 1330.295086][   T42] usb 6-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[ 1330.304530][   T42] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1330.315804][   T42] usb 6-1: config 0 descriptor??
[ 1330.527224][   T42] asix 6-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -32
[ 1330.537686][   T42] asix: probe of 6-1:0.0 failed with error -32
[ 1331.783071][T17896] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2878'.
[ 1332.937558][T10159] usb 6-1: USB disconnect, device number 30
[ 1333.052698][T17905] loop2: detected capacity change from 0 to 2048
[ 1333.134964][T17905] EXT4-fs (loop2): mounted filesystem 00000800-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1333.250513][T17905] EXT4-fs error (device loop2): ext4_lookup:1858: inode #16: comm syz.2.2881: iget: bad i_size value: 8796093031208
[ 1333.649178][T17920] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[ 1334.273259][T15027] EXT4-fs (loop2): unmounting filesystem 00000800-0000-0000-0000-000000000000.
[ 1334.294784][T17925] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2887'.
[ 1334.730266][ T5833] usb 3-1: new low-speed USB device number 51 using dummy_hcd
[ 1334.924881][ T5833] usb 3-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[ 1334.935005][ T5833] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1334.945984][ T5833] usb 3-1: config 0 descriptor??
[ 1335.151146][T17939] loop7: detected capacity change from 0 to 512
[ 1335.171907][ T5833] asix 3-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -32
[ 1335.183934][ T5833] asix: probe of 3-1:0.0 failed with error -32
[ 1335.200644][T17939] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1335.226546][T17939] ext4 filesystem being mounted at /90/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1335.246429][T17939] EXT4-fs error (device loop7): ext4_do_update_inode:5230: inode #2: comm syz.7.2892: corrupted inode contents
[ 1335.275067][T17939] EXT4-fs error (device loop7): ext4_dirty_inode:6106: inode #2: comm syz.7.2892: mark_inode_dirty error
[ 1335.291947][T17939] EXT4-fs error (device loop7): ext4_do_update_inode:5230: inode #2: comm syz.7.2892: corrupted inode contents
[ 1335.344163][T17944] EXT4-fs error (device loop7): ext4_do_update_inode:5230: inode #2: comm syz.7.2892: corrupted inode contents
[ 1335.386289][T17944] EXT4-fs error (device loop7): ext4_dirty_inode:6106: inode #2: comm syz.7.2892: mark_inode_dirty error
[ 1335.407602][T17944] EXT4-fs error (device loop7): ext4_do_update_inode:5230: inode #2: comm syz.7.2892: corrupted inode contents
[ 1335.421183][T17944] EXT4-fs error (device loop7): __ext4_ext_dirty:202: inode #2: comm syz.7.2892: mark_inode_dirty error
[ 1335.461108][T17944] EXT4-fs error (device loop7): ext4_do_update_inode:5230: inode #2: comm syz.7.2892: corrupted inode contents
[ 1335.486039][T17944] EXT4-fs error (device loop7): ext4_dirty_inode:6106: inode #2: comm syz.7.2892: mark_inode_dirty error
[ 1335.533676][T17939] EXT4-fs error (device loop7): ext4_do_update_inode:5230: inode #2: comm syz.7.2892: corrupted inode contents
[ 1335.652863][T16103] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1336.330377][T11245] Bluetooth: hci1: command 0x0405 tx timeout
[ 1337.198463][T17968] loop7: detected capacity change from 0 to 2048
[ 1337.655805][T17968] EXT4-fs (loop7): mounted filesystem 00000800-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1338.072057][T17968] EXT4-fs error (device loop7): ext4_lookup:1858: inode #16: comm syz.7.2899: iget: bad i_size value: 8796093031208
[ 1338.295187][T17968] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[ 1338.312081][T11767] usb 3-1: USB disconnect, device number 51
[ 1339.463172][T16103] EXT4-fs (loop7): unmounting filesystem 00000800-0000-0000-0000-000000000000.
[ 1340.550550][T17998] loop5: detected capacity change from 0 to 1024
[ 1340.608559][T17998] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1340.650938][T17998] ext4 filesystem being mounted at /212/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1340.783294][T18005] loop7: detected capacity change from 0 to 512
[ 1340.795919][T13438] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1340.810946][T18005] EXT4-fs: Ignoring removed nobh option
[ 1340.881185][T18005] EXT4-fs error (device loop7): ext4_orphan_get:1399: inode #15: comm syz.7.2911: iget: bad i_size value: 38620345925642
[ 1340.970327][    T9] usb 2-1: new low-speed USB device number 28 using dummy_hcd
[ 1341.000491][T18005] EXT4-fs error (device loop7): ext4_orphan_get:1404: comm syz.7.2911: couldn't read orphan inode 15 (err -117)
[ 1341.023553][T18005] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1341.086940][T18008] loop5: detected capacity change from 0 to 2048
[ 1341.127065][T16103] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1341.167503][T18008] EXT4-fs (loop5): mounted filesystem 00000800-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1341.208160][T18008] EXT4-fs error (device loop5): ext4_lookup:1858: inode #16: comm syz.5.2912: iget: bad i_size value: 8796093031208
[ 1341.230268][    T9] usb 2-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[ 1341.239380][    T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1341.503055][    T9] usb 2-1: config 0 descriptor??
[ 1341.861518][T18019] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[ 1342.030257][    T9] asix 2-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -32
[ 1342.041644][    T9] asix: probe of 2-1:0.0 failed with error -32
[ 1342.372387][T18023] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2914'.
[ 1342.907795][T13438] EXT4-fs (loop5): unmounting filesystem 00000800-0000-0000-0000-000000000000.
[ 1343.210815][T16350] usb 8-1: new full-speed USB device number 6 using dummy_hcd
[ 1343.412637][T16350] usb 8-1: config 252 has an invalid interface number: 107 but max is 0
[ 1343.434548][T16350] usb 8-1: config 252 has no interface number 0
[ 1343.442269][T16350] usb 8-1: config 252 interface 107 altsetting 0 has an invalid endpoint with address 0x6B, skipping
[ 1343.460591][T16350] usb 8-1: config 252 interface 107 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0
[ 1343.481760][T16350] usb 8-1: New USB device found, idVendor=10f0, idProduct=2002, bcdDevice=d7.67
[ 1343.491012][T16350] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1343.500187][T16350] usb 8-1: Product: syz
[ 1343.507534][T16350] usb 8-1: Manufacturer: syz
[ 1343.516532][T16350] usb 8-1: SerialNumber: syz
[ 1343.702056][T16350] usb 2-1: USB disconnect, device number 28
[ 1343.738392][T10159] usb 8-1: USB disconnect, device number 6
[ 1344.100973][T18050] xt_TPROXY: Can be used only with -p tcp or -p udp
[ 1344.141765][T18050] loop1: detected capacity change from 0 to 128
[ 1345.824339][T18061] netlink: 20 bytes leftover after parsing attributes in process `syz.7.2925'.
[ 1346.189822][T18065] loop2: detected capacity change from 0 to 128
[ 1346.205456][T18065] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[ 1346.247498][T18065] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 1347.086143][T18085] loop1: detected capacity change from 0 to 1764
[ 1347.658720][T10159] usb 6-1: new low-speed USB device number 31 using dummy_hcd
[ 1347.856421][T10159] usb 6-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[ 1347.959541][T10159] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1347.979073][T10159] usb 6-1: config 0 descriptor??
[ 1348.211763][T10159] asix 6-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -32
[ 1348.264510][T10159] asix: probe of 6-1:0.0 failed with error -32
[ 1348.650388][T11245] Bluetooth: hci1: command 0x0405 tx timeout
[ 1349.418229][T18104] netlink: 20 bytes leftover after parsing attributes in process `syz.7.2938'.
[ 1350.244921][    T9] usb 6-1: USB disconnect, device number 31
[ 1350.328050][T18108] loop7: detected capacity change from 0 to 256
[ 1350.348660][T18108] exfat: Deprecated parameter 'namecase'
[ 1350.359192][T18108] exFAT-fs (loop7): Medium has reported failures. Some data may be lost.
[ 1350.379012][T18108] exFAT-fs (loop7): Invalid exboot-signature(sector = 1): 0xaa000000
[ 1350.388021][T18108] exFAT-fs (loop7): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x1219aba6)
[ 1350.404139][T18108] exFAT-fs (loop7): invalid boot region
[ 1350.409847][T18108] exFAT-fs (loop7): failed to recognize exfat type
[ 1352.274695][T18120] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[ 1353.321752][T18131] loop2: detected capacity change from 0 to 128
[ 1353.370541][T18131] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[ 1353.442062][T18131] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 1353.871713][T18138] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2949'.
[ 1355.090439][T10159] usb 6-1: new low-speed USB device number 32 using dummy_hcd
[ 1355.207699][T18150] loop1: detected capacity change from 0 to 1024
[ 1355.417670][T18150] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1355.432024][T10159] usb 6-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[ 1355.490573][T18150] ext4 filesystem being mounted at /147/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1355.789189][T18153] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[ 1355.882394][T10159] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1356.841816][T10159] usb 6-1: config 0 descriptor??
[ 1357.066857][T15312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1357.076237][T10159] asix 6-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -32
[ 1357.086591][T10159] asix: probe of 6-1:0.0 failed with error -32
[ 1357.317335][T18160] loop1: detected capacity change from 0 to 1024
[ 1357.381930][T18160] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1358.338355][T15312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1358.342477][T16350] usb 6-1: USB disconnect, device number 32
[ 1358.485031][T18173] loop5: detected capacity change from 0 to 128
[ 1358.512686][T18173] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[ 1358.569377][T18173] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 1359.056350][T18186] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2959'.
[ 1359.967978][T18192] loop1: detected capacity change from 0 to 1024
[ 1360.566232][T18192] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1360.586227][T18192] ext4 filesystem being mounted at /151/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1360.714798][T15312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1361.872236][ T1278] ieee802154 phy0 wpan0: encryption failed: -22
[ 1361.878619][ T1278] ieee802154 phy1 wpan1: encryption failed: -22
[ 1362.135361][    T9] usb 3-1: new low-speed USB device number 52 using dummy_hcd
[ 1362.412678][    T9] usb 3-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[ 1362.431347][    T9] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1362.496762][    T9] usb 3-1: config 0 descriptor??
[ 1362.948581][    T9] asix 3-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -32
[ 1363.007789][    T9] asix 3-1:0.0 (unnamed net_device) (uninitialized): Error reading PHY_ID register: ffffffe0
[ 1363.036351][    T9] asix: probe of 3-1:0.0 failed with error -32
[ 1363.576253][T18240] loop5: detected capacity change from 0 to 1024
[ 1364.001914][T18241] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2970'.
[ 1364.202855][T18240] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1364.296856][T18240] ext4 filesystem being mounted at /230/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1364.328043][T11767] usb 3-1: USB disconnect, device number 52
[ 1364.472923][T13438] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1364.928130][T18253] loop2: detected capacity change from 0 to 8192
[ 1368.527009][T18287] loop5: detected capacity change from 0 to 1024
[ 1368.613223][T18287] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1368.640386][T18287] ext4 filesystem being mounted at /233/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1368.908535][T13438] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1369.524728][T18292] kvm: kvm [18291]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc1) = 0x4000
[ 1370.290233][   T55] usb 8-1: new low-speed USB device number 7 using dummy_hcd
[ 1371.416575][   T55] usb 8-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[ 1371.460255][   T55] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1371.471452][   T55] usb 8-1: config 0 descriptor??
[ 1371.604599][T18319] loop5: detected capacity change from 0 to 2048
[ 1371.648642][T18319] EXT4-fs (loop5): cluster size (2048) smaller than block size (4096)
[ 1371.744808][T18319] loop5: detected capacity change from 0 to 1024
[ 1371.771830][T18319] hfsplus: unable to find HFS+ superblock
[ 1371.910184][   T55] asix 8-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -32
[ 1371.986272][   T55] asix 8-1:0.0 (unnamed net_device) (uninitialized): Error reading PHY_ID register: ffffffe0
[ 1372.038326][   T55] asix: probe of 8-1:0.0 failed with error -32
[ 1372.127602][T18325] loop5: detected capacity change from 0 to 1024
[ 1372.171916][T18325] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1373.178785][T16350] usb 8-1: USB disconnect, device number 7
[ 1373.315544][T13438] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1375.243492][T18356] loop7: detected capacity change from 0 to 128
[ 1375.261496][T18356] FAT-fs (loop7): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[ 1375.309558][T18356] FAT-fs (loop7): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 1375.621409][   T55] usb 6-1: new low-speed USB device number 33 using dummy_hcd
[ 1375.825544][   T55] usb 6-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[ 1375.860105][   T55] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1375.883184][   T55] usb 6-1: config 0 descriptor??
[ 1376.200186][ T5833] usb 3-1: new full-speed USB device number 53 using dummy_hcd
[ 1376.302834][   T55] asix 6-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -32
[ 1376.313191][   T55] asix 6-1:0.0 (unnamed net_device) (uninitialized): Error reading PHY_ID register: ffffffe0
[ 1376.324019][   T55] asix: probe of 6-1:0.0 failed with error -32
[ 1376.392681][ T5833] usb 3-1: config 252 has an invalid interface number: 107 but max is 0
[ 1376.402639][ T5833] usb 3-1: config 252 has no interface number 0
[ 1376.412961][ T5833] usb 3-1: config 252 interface 107 altsetting 0 has an invalid endpoint with address 0x6B, skipping
[ 1376.436297][ T5833] usb 3-1: config 252 interface 107 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0
[ 1376.451503][ T5833] usb 3-1: New USB device found, idVendor=10f0, idProduct=2002, bcdDevice=d7.67
[ 1376.461491][ T5833] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1376.469616][ T5833] usb 3-1: Product: syz
[ 1376.474590][ T5833] usb 3-1: Manufacturer: syz
[ 1376.479946][ T5833] usb 3-1: SerialNumber: syz
[ 1376.703422][   T23] usb 3-1: USB disconnect, device number 53
[ 1377.287444][T18374] loop2: detected capacity change from 0 to 1024
[ 1377.434004][T18374] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1377.501353][T18374] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1377.524968][T18374] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1377.549867][T18374] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1377.572628][T18378] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1377.580821][T18378] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1377.589372][T18374] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1377.604637][T18374] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1377.616085][T18378] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1377.625637][T18378] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1378.373985][T18374] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1378.401986][T18374] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1378.461584][T18374] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1378.486909][T18374] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1378.500857][T18374] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1378.508170][   T42] usb 6-1: USB disconnect, device number 33
[ 1378.593445][T18374] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1378.605725][T18374] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1378.647100][T18374] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1378.686719][T18374] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1378.714782][T18374] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1378.757962][T18374] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1378.775745][T18374] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1378.816879][T18374] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1378.836214][T18374] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1378.843787][T18374] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1378.861700][T18374] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1378.875672][T18374] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1378.910245][T18374] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1378.928080][T18374] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1378.950082][T18374] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1379.000291][T18374] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1379.007672][T18374] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1379.158392][T18374] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1379.180569][T18374] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1379.196765][T18374] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1379.209015][T18374] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1379.254751][T18374] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1379.277052][T18374] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1379.288423][T18374] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1379.295914][T18374] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1379.407491][   T27] audit: type=1800 audit(1754907480.113:55): pid=18374 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.3011" name="file1" dev="loop2" ino=20 res=0 errno=0
[ 1379.503037][T16734] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1379.520790][T16734] hfsplus: request for non-existent node 16777216 in B*Tree
[ 1381.690174][ T5833] usb 3-1: new full-speed USB device number 54 using dummy_hcd
[ 1382.369699][ T5833] usb 3-1: config 252 has an invalid interface number: 107 but max is 0
[ 1382.406745][ T5833] usb 3-1: config 252 has no interface number 0
[ 1382.427695][ T5833] usb 3-1: config 252 interface 107 altsetting 0 has an invalid endpoint with address 0x6B, skipping
[ 1382.479282][ T5833] usb 3-1: config 252 interface 107 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0
[ 1382.497708][ T5833] usb 3-1: New USB device found, idVendor=10f0, idProduct=2002, bcdDevice=d7.67
[ 1382.513289][ T5833] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1382.558355][ T5833] usb 3-1: Product: syz
[ 1382.566816][ T5833] usb 3-1: Manufacturer: syz
[ 1382.574794][ T5833] usb 3-1: SerialNumber: syz
[ 1382.818017][   T42] usb 3-1: USB disconnect, device number 54
[ 1383.499175][T18420] loop2: detected capacity change from 0 to 2048
[ 1383.547044][T18420] EXT4-fs (loop2): mounted filesystem 00000800-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1383.620176][ T5833] usb 8-1: new high-speed USB device number 8 using dummy_hcd
[ 1383.902945][T18427] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[ 1383.929712][ T5833] usb 8-1: device descriptor read/64, error -71
[ 1384.490474][ T5833] usb 8-1: new high-speed USB device number 9 using dummy_hcd
[ 1384.529792][T16350] usb 6-1: new low-speed USB device number 34 using dummy_hcd
[ 1384.544547][T15027] EXT4-fs (loop2): unmounting filesystem 00000800-0000-0000-0000-000000000000.
[ 1384.702846][ T5833] usb 8-1: device descriptor read/64, error -71
[ 1384.716303][T16350] usb 6-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[ 1384.734313][T16350] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1384.767644][T16350] usb 6-1: config 0 descriptor??
[ 1384.880994][ T5833] usb usb8-port1: attempt power cycle
[ 1385.197048][T16350] asix 6-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -32
[ 1385.260412][T16350] asix 6-1:0.0 (unnamed net_device) (uninitialized): Error reading PHY_ID register: ffffffe0
[ 1385.303529][T16350] asix: probe of 6-1:0.0 failed with error -32
[ 1385.380279][ T5833] usb 8-1: new high-speed USB device number 10 using dummy_hcd
[ 1385.635183][ T5833] usb 8-1: device descriptor read/8, error -71
[ 1387.590395][ T5833] usb 8-1: new high-speed USB device number 11 using dummy_hcd
[ 1387.793629][T10159] usb 6-1: USB disconnect, device number 34
[ 1388.177608][T18451] loop2: detected capacity change from 0 to 1024
[ 1388.208307][ T5833] usb 8-1: device descriptor read/8, error -71
[ 1388.295015][T18451] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1388.317417][T18451] ext4 filesystem being mounted at /165/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1388.360320][ T5833] usb usb8-port1: unable to enumerate USB device
[ 1388.480743][T18455] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[ 1388.562755][T15027] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1390.530540][T18478] loop2: detected capacity change from 0 to 2048
[ 1390.674206][T18478] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1390.700220][T18478] ext4 filesystem being mounted at /167/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1391.071222][T15027] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1391.720175][    T9] usb 6-1: new full-speed USB device number 35 using dummy_hcd
[ 1391.921624][    T9] usb 6-1: config 252 has an invalid interface number: 107 but max is 0
[ 1391.939446][    T9] usb 6-1: config 252 has no interface number 0
[ 1391.959939][    T9] usb 6-1: config 252 interface 107 altsetting 0 has an invalid endpoint with address 0x6B, skipping
[ 1391.976486][   T55] usb 3-1: new low-speed USB device number 55 using dummy_hcd
[ 1391.995801][    T9] usb 6-1: config 252 interface 107 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0
[ 1392.033069][    T9] usb 6-1: New USB device found, idVendor=10f0, idProduct=2002, bcdDevice=d7.67
[ 1392.047898][    T9] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1392.058504][    T9] usb 6-1: Product: syz
[ 1392.066987][    T9] usb 6-1: Manufacturer: syz
[ 1392.074765][    T9] usb 6-1: SerialNumber: syz
[ 1392.172384][   T55] usb 3-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[ 1392.207310][   T55] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1392.248689][   T55] usb 3-1: config 0 descriptor??
[ 1392.324708][T16350] usb 6-1: USB disconnect, device number 35
[ 1393.009724][T18507] loop5: detected capacity change from 0 to 256
[ 1393.039890][T18507] exFAT-fs (loop5): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d)
[ 1393.082231][T18507] exFAT-fs (loop5): bogus allocation bitmap size(need : 2, cur : 17179869186)
[ 1393.170242][   T27] audit: type=1800 audit(1754907493.853:56): pid=18507 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.3043" name="file1" dev="loop5" ino=1048726 res=0 errno=0
[ 1393.794721][   T55] asix 3-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -32
[ 1393.898371][   T55] asix 3-1:0.0 (unnamed net_device) (uninitialized): Error reading PHY_ID register: ffffffe0
[ 1393.940948][   T55] asix: probe of 3-1:0.0 failed with error -32
[ 1394.015436][T18512] loop5: detected capacity change from 0 to 1024
[ 1394.084387][T18512] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1395.062415][   T55] usb 3-1: USB disconnect, device number 55
[ 1395.139056][T13438] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1395.311730][T18526] loop2: detected capacity change from 0 to 1024
[ 1395.385137][T18526] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1395.494632][T18526] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1395.517302][T18526] ext4 filesystem being mounted at /170/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1395.752195][T18535] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[ 1395.823316][T18535] EXT4-fs (loop2): Remounting filesystem read-only
[ 1396.038902][T15027] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1396.575456][T18544] loop5: detected capacity change from 0 to 1024
[ 1396.637203][T18544] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1396.660494][T18544] ext4 filesystem being mounted at /250/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1396.888036][T13438] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1399.220145][T11767] usb 3-1: new low-speed USB device number 56 using dummy_hcd
[ 1399.444976][T11767] usb 3-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[ 1399.460127][T11767] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1399.500875][T11767] usb 3-1: config 0 descriptor??
[ 1401.363269][T11767] asix 3-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -32
[ 1401.485197][T11767] asix 3-1:0.0 (unnamed net_device) (uninitialized): Error reading PHY_ID register: ffffffe0
[ 1401.619174][T11767] asix: probe of 3-1:0.0 failed with error -32
[ 1402.012402][T11767] usb 3-1: USB disconnect, device number 56
[ 1404.539772][T18604] loop1: detected capacity change from 0 to 1024
[ 1404.716462][T18604] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1404.741079][T18604] ext4 filesystem being mounted at /175/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1404.943413][T18612] loop5: detected capacity change from 0 to 256
[ 1405.002308][T18612] exFAT-fs (loop5): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d)
[ 1405.027132][T18612] exFAT-fs (loop5): bogus allocation bitmap size(need : 2, cur : 17179869186)
[ 1405.049139][T15312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1405.145020][   T27] audit: type=1800 audit(1754907505.853:57): pid=18612 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.3073" name="file1" dev="loop5" ino=1048738 res=0 errno=0
[ 1405.194079][T18614] loop7: detected capacity change from 0 to 1024
[ 1405.245924][T18614] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1405.351242][T18614] ext4 filesystem being mounted at /136/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1405.590272][T11767] usb 2-1: new low-speed USB device number 29 using dummy_hcd
[ 1406.113771][T11767] usb 2-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[ 1406.134404][T11767] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1406.246847][T16350] usb 3-1: new full-speed USB device number 57 using dummy_hcd
[ 1406.278368][T16103] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1406.303538][T11767] usb 2-1: config 0 descriptor??
[ 1406.608594][T16350] usb 3-1: config 252 has an invalid interface number: 107 but max is 0
[ 1406.634319][T16350] usb 3-1: config 252 has no interface number 0
[ 1406.642076][T16350] usb 3-1: config 252 interface 107 altsetting 0 has an invalid endpoint with address 0x6B, skipping
[ 1406.656588][T16350] usb 3-1: config 252 interface 107 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0
[ 1406.686273][T16350] usb 3-1: New USB device found, idVendor=10f0, idProduct=2002, bcdDevice=d7.67
[ 1406.705439][T16350] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1406.715584][T16350] usb 3-1: Product: syz
[ 1406.730170][T16350] usb 3-1: Manufacturer: syz
[ 1406.734904][T16350] usb 3-1: SerialNumber: syz
[ 1407.181692][T16350] usb 3-1: USB disconnect, device number 57
[ 1407.248708][T11767] asix 2-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -32
[ 1407.308914][T11767] asix: probe of 2-1:0.0 failed with error -32
[ 1408.097496][T18644] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1408.137931][T18644] batadv_slave_0: entered promiscuous mode
[ 1408.541785][    T9] usb 2-1: USB disconnect, device number 29
[ 1411.269920][T18665] loop1: detected capacity change from 0 to 1024
[ 1411.519277][T18665] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1412.262290][T18665] ext4 filesystem being mounted at /181/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1413.065334][T15312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1413.480547][   T23] usb 2-1: new low-speed USB device number 30 using dummy_hcd
[ 1413.701868][   T23] usb 2-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[ 1413.713615][   T23] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1413.863865][   T23] usb 2-1: config 0 descriptor??
[ 1414.686990][   T23] asix 2-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -32
[ 1414.698013][   T23] asix: probe of 2-1:0.0 failed with error -32
[ 1416.331905][   T42] usb 2-1: USB disconnect, device number 30
[ 1416.859220][T18705] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1417.009755][T18705] batadv_slave_0: entered promiscuous mode
[ 1419.549709][T18728] loop5: detected capacity change from 0 to 2048
[ 1419.891554][T18728] EXT4-fs (loop5): mounted filesystem 00000800-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1420.267657][T18739] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[ 1421.077879][ T5833] usb 2-1: new low-speed USB device number 31 using dummy_hcd
[ 1421.111777][T13438] EXT4-fs (loop5): unmounting filesystem 00000800-0000-0000-0000-000000000000.
[ 1421.302244][ T5833] usb 2-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[ 1421.370348][ T5833] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1421.452655][ T5833] usb 2-1: config 0 descriptor??
[ 1421.980352][T11767] usb 6-1: new high-speed USB device number 36 using dummy_hcd
[ 1422.102408][ T5833] asix 2-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -32
[ 1422.102552][ T5833] asix: probe of 2-1:0.0 failed with error -32
[ 1422.135938][T11767] usb 6-1: device descriptor read/64, error -71
[ 1422.247389][T18751] loop7: detected capacity change from 0 to 1024
[ 1422.351372][T18751] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1422.400227][T11767] usb 6-1: new high-speed USB device number 37 using dummy_hcd
[ 1422.651035][T18751] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1422.651128][T18751] ext4 filesystem being mounted at /141/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1422.790204][T11767] usb 6-1: device descriptor read/64, error -71
[ 1423.028181][T11767] usb usb6-port1: attempt power cycle
[ 1423.233175][T18758] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[ 1423.633759][ T1278] ieee802154 phy0 wpan0: encryption failed: -22
[ 1423.633822][ T1278] ieee802154 phy1 wpan1: encryption failed: -22
[ 1423.694418][T18758] EXT4-fs (loop7): Remounting filesystem read-only
[ 1423.855164][   T42] usb 2-1: USB disconnect, device number 31
[ 1423.920102][T11767] usb 6-1: new high-speed USB device number 38 using dummy_hcd
[ 1423.973958][T11767] usb 6-1: device descriptor read/8, error -71
[ 1424.009170][T16103] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1424.270145][T11767] usb 6-1: new high-speed USB device number 39 using dummy_hcd
[ 1424.340773][T11767] usb 6-1: device descriptor read/8, error -71
[ 1424.500074][T11767] usb usb6-port1: unable to enumerate USB device
[ 1425.671782][    T9] usb 8-1: new high-speed USB device number 12 using dummy_hcd
[ 1425.940098][T11767] usb 6-1: new low-speed USB device number 40 using dummy_hcd
[ 1425.988246][    T9] usb 8-1: Using ep0 maxpacket: 16
[ 1426.023560][    T9] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1426.046179][    T9] usb 8-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 1426.083037][    T9] usb 8-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[ 1426.112346][    T9] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1426.135794][T18791] loop2: detected capacity change from 0 to 1024
[ 1426.140134][    T9] usb 8-1: Product: syz
[ 1426.146852][    T9] usb 8-1: Manufacturer: syz
[ 1426.151833][    T9] usb 8-1: SerialNumber: syz
[ 1426.174632][    T9] usb 8-1: config 0 descriptor??
[ 1426.189338][T11767] usb 6-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[ 1426.237811][T11767] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1426.255872][T11767] usb 6-1: config 0 descriptor??
[ 1426.265133][T18791] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1426.440326][T18791] ext4 filesystem being mounted at /184/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1426.639347][T15027] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1426.884249][T11767] asix 6-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -32
[ 1426.917021][T11767] asix: probe of 6-1:0.0 failed with error -32
[ 1428.387443][    T9] usb 8-1: USB disconnect, device number 12
[ 1428.490167][T11767] usb 2-1: new high-speed USB device number 32 using dummy_hcd
[ 1428.728395][T11767] usb 2-1: Using ep0 maxpacket: 16
[ 1428.740429][T11767] usb 2-1: config 0 has no interfaces?
[ 1428.741693][   T42] usb 6-1: USB disconnect, device number 40
[ 1428.756681][T11767] usb 2-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[ 1428.783447][T11767] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1428.835111][T11767] usb 2-1: Product: syz
[ 1428.850655][T11767] usb 2-1: Manufacturer: syz
[ 1428.865763][T11767] usb 2-1: SerialNumber: syz
[ 1428.890798][T11767] usb 2-1: config 0 descriptor??
[ 1431.307485][T11767] usb 2-1: USB disconnect, device number 32
[ 1431.420144][   T42] usb 3-1: new high-speed USB device number 58 using dummy_hcd
[ 1432.460253][   T42] usb 3-1: Using ep0 maxpacket: 16
[ 1432.479792][   T42] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1432.509168][   T42] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 1432.562296][   T42] usb 3-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[ 1432.600199][    T9] usb 2-1: new low-speed USB device number 33 using dummy_hcd
[ 1432.617978][   T42] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1432.648301][   T42] usb 3-1: Product: syz
[ 1432.672188][   T42] usb 3-1: Manufacturer: syz
[ 1432.679714][   T42] usb 3-1: SerialNumber: syz
[ 1432.713510][   T42] usb 3-1: config 0 descriptor??
[ 1432.792737][    T9] usb 2-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[ 1432.812475][    T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1432.846398][    T9] usb 2-1: config 0 descriptor??
[ 1433.644390][    T9] asix 2-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -32
[ 1433.676724][    T9] asix: probe of 2-1:0.0 failed with error -32
[ 1434.587016][   T42] usb 3-1: USB disconnect, device number 58
[ 1434.820184][   T23] usb 6-1: new full-speed USB device number 41 using dummy_hcd
[ 1435.013617][   T23] usb 6-1: config 252 has an invalid interface number: 107 but max is 0
[ 1435.024094][   T23] usb 6-1: config 252 has no interface number 0
[ 1435.043442][   T23] usb 6-1: config 252 interface 107 altsetting 0 has an invalid endpoint with address 0x6B, skipping
[ 1435.083571][   T23] usb 6-1: config 252 interface 107 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0
[ 1435.110680][   T23] usb 6-1: New USB device found, idVendor=10f0, idProduct=2002, bcdDevice=d7.67
[ 1435.126480][   T23] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1435.154717][   T23] usb 6-1: Product: syz
[ 1435.173835][   T23] usb 6-1: Manufacturer: syz
[ 1435.178506][   T23] usb 6-1: SerialNumber: syz
[ 1435.431663][    T9] usb 6-1: USB disconnect, device number 41
[ 1435.465079][T11767] usb 2-1: USB disconnect, device number 33
[ 1436.300845][T11767] usb 3-1: new high-speed USB device number 59 using dummy_hcd
[ 1436.312639][T18888] loop5: detected capacity change from 0 to 1024
[ 1436.468413][T18888] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1436.548895][T18888] ext4 filesystem being mounted at /280/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1437.530331][T11767] usb 3-1: Using ep0 maxpacket: 16
[ 1437.539286][T11767] usb 3-1: config 0 has no interfaces?
[ 1437.543836][T13438] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1437.552828][T11767] usb 3-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[ 1437.570108][T11767] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1437.585120][T11767] usb 3-1: Product: syz
[ 1437.598822][T11767] usb 3-1: Manufacturer: syz
[ 1437.608059][T11767] usb 3-1: SerialNumber: syz
[ 1437.618912][T11767] usb 3-1: config 0 descriptor??
[ 1438.040401][    T9] usb 2-1: new low-speed USB device number 34 using dummy_hcd
[ 1438.232477][    T9] usb 2-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[ 1438.243557][    T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1438.260899][    T9] usb 2-1: config 0 descriptor??
[ 1438.891043][    T9] asix 2-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -32
[ 1438.927382][    T9] asix: probe of 2-1:0.0 failed with error -32
[ 1441.010884][T11767] usb 3-1: USB disconnect, device number 59
[ 1441.118741][    T9] usb 2-1: USB disconnect, device number 34
[ 1441.811066][T18931] loop2: detected capacity change from 0 to 1024
[ 1441.863529][T18931] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1441.890808][T18931] ext4 filesystem being mounted at /192/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1442.864372][T15027] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1443.103013][T18948] loop2: detected capacity change from 0 to 512
[ 1443.114653][T18948] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1443.431493][T18948] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1443.486817][T18948] ext4 filesystem being mounted at /193/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1444.290385][T15027] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1444.700230][T16350] usb 6-1: new high-speed USB device number 42 using dummy_hcd
[ 1444.760155][    T9] usb 3-1: new low-speed USB device number 60 using dummy_hcd
[ 1444.900975][T16350] usb 6-1: Using ep0 maxpacket: 16
[ 1444.912009][T16350] usb 6-1: config 0 has no interfaces?
[ 1444.925836][T16350] usb 6-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[ 1444.947315][T16350] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1444.952429][    T9] usb 3-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[ 1444.963245][T16350] usb 6-1: Product: syz
[ 1444.977283][T16350] usb 6-1: Manufacturer: syz
[ 1444.980321][    T9] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1444.999101][T16350] usb 6-1: SerialNumber: syz
[ 1445.018556][    T9] usb 3-1: config 0 descriptor??
[ 1445.045957][T16350] usb 6-1: config 0 descriptor??
[ 1445.641108][    T9] asix 3-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -61
[ 1445.659163][    T9] asix: probe of 3-1:0.0 failed with error -61
[ 1447.057070][T16350] usb 6-1: USB disconnect, device number 42
[ 1447.526680][    T9] usb 3-1: USB disconnect, device number 60
[ 1448.921071][    T9] usb 6-1: new high-speed USB device number 43 using dummy_hcd
[ 1449.100599][    T9] usb 6-1: Using ep0 maxpacket: 16
[ 1449.125972][    T9] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1449.138021][    T9] usb 6-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[ 1449.138052][    T9] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1449.138088][    T9] usb 6-1: Product: syz
[ 1449.138103][    T9] usb 6-1: Manufacturer: syz
[ 1449.138120][    T9] usb 6-1: SerialNumber: syz
[ 1449.140922][    T9] usb 6-1: config 0 descriptor??
[ 1449.945687][T19033] loop2: detected capacity change from 0 to 256
[ 1449.955614][T19033] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d)
[ 1449.955908][T19033] exFAT-fs (loop2): bogus allocation bitmap size(need : 2, cur : 17179869186)
[ 1450.009812][   T27] audit: type=1800 audit(1754907550.713:58): pid=19033 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.3181" name="file1" dev="loop2" ino=1048748 res=0 errno=0
[ 1451.756041][    T9] usb 6-1: USB disconnect, device number 43
[ 1453.709718][T19067] loop7: detected capacity change from 0 to 256
[ 1453.776399][T19067] exFAT-fs (loop7): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d)
[ 1453.816475][T19067] exFAT-fs (loop7): bogus allocation bitmap size(need : 2, cur : 17179869186)
[ 1453.893114][   T27] audit: type=1800 audit(1754907554.593:59): pid=19067 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.3192" name="file1" dev="loop7" ino=1048758 res=0 errno=0
[ 1454.485170][T19073] loop7: detected capacity change from 0 to 1024
[ 1454.547934][T19073] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1454.561445][T19073] ext4 filesystem being mounted at /165/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1455.213778][T19076] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[ 1455.446168][T19076] EXT4-fs (loop7): Remounting filesystem read-only
[ 1455.627601][T16103] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1458.134956][T19111] loop7: detected capacity change from 0 to 256
[ 1458.157257][T19111] exFAT-fs (loop7): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d)
[ 1458.157572][T19111] exFAT-fs (loop7): bogus allocation bitmap size(need : 2, cur : 17179869186)
[ 1458.204887][   T27] audit: type=1800 audit(1754907558.913:60): pid=19111 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.3201" name="file1" dev="loop7" ino=1048768 res=0 errno=0
[ 1458.580233][   T42] usb 6-1: new high-speed USB device number 44 using dummy_hcd
[ 1458.780075][   T42] usb 6-1: Using ep0 maxpacket: 16
[ 1458.796197][   T42] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1458.844071][   T42] usb 6-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[ 1458.861253][   T42] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1458.882929][   T42] usb 6-1: Product: syz
[ 1458.899944][   T42] usb 6-1: Manufacturer: syz
[ 1458.910379][   T42] usb 6-1: SerialNumber: syz
[ 1458.934951][   T42] usb 6-1: config 0 descriptor??
[ 1461.374464][T19131] loop2: detected capacity change from 0 to 1024
[ 1461.393437][T11767] usb 6-1: USB disconnect, device number 44
[ 1461.525072][T19131] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1461.540256][T19131] ext4 filesystem being mounted at /205/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1464.191002][T19136] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[ 1464.425851][T19136] EXT4-fs (loop2): Remounting filesystem read-only
[ 1464.452354][T15027] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1464.754952][T19146] loop2: detected capacity change from 0 to 256
[ 1464.871711][T19146] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d)
[ 1464.910386][T19146] exFAT-fs (loop2): bogus allocation bitmap size(need : 2, cur : 17179869186)
[ 1465.077714][   T27] audit: type=1800 audit(1754907565.783:61): pid=19146 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.3210" name="file1" dev="loop2" ino=1048778 res=0 errno=0
[ 1467.469997][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1467.709993][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1468.870091][T11767] usb 8-1: new high-speed USB device number 13 using dummy_hcd
[ 1469.079009][T11767] usb 8-1: Using ep0 maxpacket: 16
[ 1469.154632][T11767] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1469.183256][T11767] usb 8-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[ 1469.183289][T11767] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1469.183312][T11767] usb 8-1: Product: syz
[ 1469.183329][T11767] usb 8-1: Manufacturer: syz
[ 1469.183345][T11767] usb 8-1: SerialNumber: syz
[ 1469.185911][T11767] usb 8-1: config 0 descriptor??
[ 1469.599649][T19192] loop1: detected capacity change from 0 to 256
[ 1469.634206][T19192] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d)
[ 1469.634536][T19192] exFAT-fs (loop1): bogus allocation bitmap size(need : 2, cur : 17179869186)
[ 1469.686094][   T27] audit: type=1800 audit(1754907570.393:62): pid=19192 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.3222" name="file1" dev="loop1" ino=1048788 res=0 errno=0
[ 1471.275985][T10159] usb 8-1: USB disconnect, device number 13
[ 1473.328268][T19215] loop5: detected capacity change from 0 to 1024
[ 1473.368149][T19215] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1473.398113][T19215] ext4 filesystem being mounted at /298/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1473.519921][T13438] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1474.773941][T19233] loop2: detected capacity change from 0 to 256
[ 1475.582878][T19233] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d)
[ 1475.623622][T19233] exFAT-fs (loop2): bogus allocation bitmap size(need : 2, cur : 17179869186)
[ 1475.716171][T19238] loop7: detected capacity change from 0 to 1024
[ 1475.802484][T19238] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1475.805760][   T27] audit: type=1800 audit(1754907576.513:63): pid=19233 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.3233" name="file1" dev="loop2" ino=1048798 res=0 errno=0
[ 1475.831406][T19238] ext4 filesystem being mounted at /175/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1476.774419][T16103] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1482.414242][T19292] loop1: detected capacity change from 0 to 1024
[ 1482.473898][T19295] loop2: detected capacity change from 0 to 1024
[ 1482.544475][T19295] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1482.557548][T19292] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1482.590849][T19292] ext4 filesystem being mounted at /218/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1482.608263][T19295] ext4 filesystem being mounted at /217/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1483.196856][   T27] audit: type=1800 audit(1754907583.903:64): pid=19304 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.3247" name="file1" dev="loop1" ino=15 res=0 errno=0
[ 1483.420867][T19299] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[ 1483.522143][T15312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1483.526826][T15027] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1484.744410][ T1278] ieee802154 phy0 wpan0: encryption failed: -22
[ 1484.750882][ T1278] ieee802154 phy1 wpan1: encryption failed: -22
[ 1485.094552][T19321] loop5: detected capacity change from 0 to 128
[ 1485.111006][T19321] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[ 1485.128630][T19321] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 1488.376059][T19338] netlink: 860 bytes leftover after parsing attributes in process `syz.1.3257'.
[ 1490.068997][T19339] netlink: 860 bytes leftover after parsing attributes in process `syz.1.3257'.
[ 1490.188049][T19347] loop5: detected capacity change from 0 to 1024
[ 1490.241269][T19347] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1490.304710][T19347] ext4 filesystem being mounted at /306/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1491.180098][   T27] audit: type=1800 audit(1754907591.663:65): pid=19355 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.3259" name="file1" dev="loop5" ino=15 res=0 errno=0
[ 1491.217059][T13438] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1493.286685][T19365] loop5: detected capacity change from 0 to 1024
[ 1493.299288][T19367] loop1: detected capacity change from 0 to 256
[ 1493.308461][T19367] exfat: Unknown parameter 'keßQ«°†õ(dots'
[ 1493.545927][T19365] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1494.825846][T19377] loop1: detected capacity change from 0 to 1024
[ 1494.912453][T19377] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1495.000736][T19377] ext4 filesystem being mounted at /225/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1495.923015][T15312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1496.063331][T19389] loop7: detected capacity change from 0 to 1024
[ 1496.102343][T19389] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1496.136363][T19389] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1496.188075][T19389] ext4 filesystem being mounted at /182/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1496.235454][T13438] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1497.787849][T19399] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[ 1498.194140][T19399] EXT4-fs (loop7): Remounting filesystem read-only
[ 1498.485251][T16103] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1499.284517][T19404] netlink: 860 bytes leftover after parsing attributes in process `syz.5.3270'.
[ 1499.398753][T19409] netlink: 860 bytes leftover after parsing attributes in process `syz.5.3270'.
[ 1502.466810][T19425] loop2: detected capacity change from 0 to 1024
[ 1502.512043][T19425] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1502.561538][T19425] ext4 filesystem being mounted at /222/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1503.563945][T15027] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1506.758203][T11767] usb 6-1: new full-speed USB device number 45 using dummy_hcd
[ 1508.165115][T19464] loop1: detected capacity change from 0 to 256
[ 1508.211738][T19464] exfat: Deprecated parameter 'namecase'
[ 1508.238383][T19464] exFAT-fs (loop1): Medium has reported failures. Some data may be lost.
[ 1508.285346][T19464] exFAT-fs (loop1): Invalid exboot-signature(sector = 1): 0xaa000000
[ 1508.326666][T19464] exFAT-fs (loop1): Invalid boot checksum (boot checksum : 0x1119abd0, checksum : 0x1219aba6)
[ 1508.347516][T19464] exFAT-fs (loop1): invalid boot region
[ 1508.358532][T19464] exFAT-fs (loop1): failed to recognize exfat type
[ 1510.457022][T19473] loop7: detected capacity change from 0 to 1024
[ 1510.461687][T19475] netlink: 860 bytes leftover after parsing attributes in process `syz.2.3283'.
[ 1510.539399][T19479] netlink: 860 bytes leftover after parsing attributes in process `syz.2.3283'.
[ 1510.579380][T19473] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1510.666397][T19473] ext4 filesystem being mounted at /192/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1511.227242][T19478] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[ 1511.324409][T19478] EXT4-fs (loop7): Remounting filesystem read-only
[ 1511.334355][T16103] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1514.370443][T10159] usb 6-1: new full-speed USB device number 46 using dummy_hcd
[ 1515.924623][T10159] usb 6-1: unable to read config index 0 descriptor/start: -71
[ 1515.952371][T10159] usb 6-1: can't read configurations, error -71
[ 1516.070440][T19512] loop5: detected capacity change from 0 to 1024
[ 1516.135404][T19512] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1516.196277][T19512] ext4 filesystem being mounted at /315/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1516.493148][T19520] loop7: detected capacity change from 0 to 512
[ 1517.100707][T19517] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[ 1517.153773][T19517] EXT4-fs (loop5): Remounting filesystem read-only
[ 1517.158107][T19520] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1517.171973][T13438] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1517.272785][T19520] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1517.306257][T19526] loop2: detected capacity change from 0 to 1024
[ 1517.341078][T19520] ext4 filesystem being mounted at /194/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1517.434498][T19528] loop5: detected capacity change from 0 to 2048
[ 1517.454069][T19526] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1517.604149][T19528] EXT4-fs (loop5): mounted filesystem 00000800-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1518.388228][T19528] EXT4-fs error (device loop5): ext4_lookup:1858: inode #16: comm syz.5.3302: iget: bad i_size value: 8796093031208
[ 1518.430838][T16103] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1518.616766][T15027] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1518.713505][T19543] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[ 1520.081811][T13438] EXT4-fs (loop5): unmounting filesystem 00000800-0000-0000-0000-000000000000.
[ 1520.690065][T10159] usb 6-1: new full-speed USB device number 48 using dummy_hcd
[ 1520.860177][   T23] usb 3-1: new high-speed USB device number 61 using dummy_hcd
[ 1520.883799][T10159] usb 6-1: config 252 has an invalid interface number: 107 but max is 0
[ 1520.883830][T10159] usb 6-1: config 252 has no interface number 0
[ 1520.883876][T10159] usb 6-1: config 252 interface 107 altsetting 0 has an invalid endpoint with address 0x6B, skipping
[ 1520.883903][T10159] usb 6-1: config 252 interface 107 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0
[ 1520.897716][T10159] usb 6-1: New USB device found, idVendor=10f0, idProduct=2002, bcdDevice=d7.67
[ 1520.947328][T10159] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1520.947356][T10159] usb 6-1: Product: syz
[ 1520.947373][T10159] usb 6-1: Manufacturer: syz
[ 1520.947389][T10159] usb 6-1: SerialNumber: syz
[ 1520.994720][T19572] loop1: detected capacity change from 0 to 256
[ 1521.038203][T19572] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d)
[ 1521.038514][T19572] exFAT-fs (loop1): bogus allocation bitmap size(need : 2, cur : 17179869186)
[ 1521.060518][   T23] usb 3-1: Using ep0 maxpacket: 16
[ 1521.141057][   T23] usb 3-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0x0, skipping
[ 1521.143978][   T23] usb 3-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[ 1521.144008][   T23] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1521.144030][   T23] usb 3-1: Product: syz
[ 1521.144047][   T23] usb 3-1: Manufacturer: syz
[ 1521.144063][   T23] usb 3-1: SerialNumber: syz
[ 1521.146665][   T23] usb 3-1: config 0 descriptor??
[ 1521.147704][   T27] audit: type=1800 audit(1754907621.853:66): pid=19572 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.3310" name="file1" dev="loop1" ino=1048808 res=0 errno=0
[ 1521.154843][   T23] hub 3-1:0.0: bad descriptor, ignoring hub
[ 1521.154862][   T23] hub: probe of 3-1:0.0 failed with error -5
[ 1521.176934][T10159] usb 6-1: USB disconnect, device number 48
[ 1521.320224][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1521.334145][T19575] loop7: detected capacity change from 0 to 1024
[ 1521.406823][T19575] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1521.406942][T19575] ext4 filesystem being mounted at /197/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1521.714887][T19581] loop1: detected capacity change from 0 to 512
[ 1521.734411][T19581] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1521.796266][T19581] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1521.892748][T19581] ext4 filesystem being mounted at /233/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1523.855429][T16103] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1524.400999][T19592] fuse: Unknown parameter 'group_id00000000000000000000'
[ 1524.490024][T15055] usb 3-1: USB disconnect, device number 61
[ 1524.722368][T15312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1525.663957][T19609] loop7: detected capacity change from 0 to 1024
[ 1525.687726][T19609] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1525.745501][T19609] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1525.784683][T19609] ext4 filesystem being mounted at /200/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1526.173603][T19614] loop5: detected capacity change from 0 to 2048
[ 1526.271238][T19614] EXT4-fs (loop5): mounted filesystem 00000800-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1526.313121][T19619] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[ 1526.357906][T19619] EXT4-fs (loop7): Remounting filesystem read-only
[ 1526.392831][T19614] EXT4-fs error (device loop5): ext4_lookup:1858: inode #16: comm syz.5.3315: iget: bad i_size value: 8796093031208
[ 1526.432714][T19621] loop2: detected capacity change from 0 to 1024
[ 1526.583608][T19622] loop1: detected capacity change from 0 to 1024
[ 1526.626153][T16103] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1526.651100][T19612] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[ 1526.986000][T19622] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1527.041880][T19621] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1527.156224][T19622] ext4 filesystem being mounted at /235/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1527.170312][T19621] ext4 filesystem being mounted at /234/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1527.240298][T19629] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[ 1527.399063][T13438] EXT4-fs (loop5): unmounting filesystem 00000800-0000-0000-0000-000000000000.
[ 1527.410378][T19629] EXT4-fs (loop1): Remounting filesystem read-only
[ 1527.463320][T19631] loop7: detected capacity change from 0 to 1024
[ 1527.836286][T19631] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1527.926704][T19631] ext4 filesystem being mounted at /201/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1528.137902][T19638] loop5: detected capacity change from 0 to 1024
[ 1528.241032][T19638] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1528.278916][T15312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1528.589758][T16103] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1528.721107][T19648] fuse: Unknown parameter 'group_id00000000000000000000'
[ 1528.746492][T13438] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1529.223590][T15055] usb 2-1: new high-speed USB device number 35 using dummy_hcd
[ 1529.420128][T15055] usb 2-1: Using ep0 maxpacket: 16
[ 1529.423772][T15055] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[ 1529.437474][T15055] usb 2-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[ 1529.437522][T15055] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1529.437559][T15055] usb 2-1: Product: syz
[ 1529.437575][T15055] usb 2-1: Manufacturer: syz
[ 1529.437590][T15055] usb 2-1: SerialNumber: syz
[ 1529.440333][T15055] usb 2-1: config 0 descriptor??
[ 1529.447961][T15055] hub 2-1:0.0: bad descriptor, ignoring hub
[ 1529.447985][T15055] hub: probe of 2-1:0.0 failed with error -5
[ 1529.451687][T15055] input: syz syz as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/input/input104
[ 1531.827794][T19629] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[ 1532.027094][T19629] EXT4-fs (loop2): Remounting filesystem read-only
[ 1532.489793][T15027] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1532.666700][T19680] loop7: detected capacity change from 0 to 1024
[ 1532.685354][T19681] loop2: detected capacity change from 0 to 1024
[ 1532.745126][T19680] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1532.771736][T19681] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1532.794654][T19680] ext4 filesystem being mounted at /206/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1532.923781][T19681] ext4 filesystem being mounted at /235/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1533.310537][   T42] usb 2-1: USB disconnect, device number 35
[ 1534.181054][T19692] loop1: detected capacity change from 0 to 1024
[ 1534.246148][T15027] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1534.272099][T16103] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1534.285008][T19696] netlink: 772 bytes leftover after parsing attributes in process `syz.5.3333'.
[ 1534.308441][T19692] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1534.348050][T19697] netlink: 772 bytes leftover after parsing attributes in process `syz.5.3333'.
[ 1534.734914][T15312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1535.054589][T19709] loop1: detected capacity change from 0 to 1024
[ 1535.095789][T19709] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1535.112951][T19709] ext4 filesystem being mounted at /238/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1535.186246][T15312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1537.933580][T19728] loop7: detected capacity change from 0 to 1024
[ 1538.022178][T19728] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1538.051214][T19728] ext4 filesystem being mounted at /209/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1538.248647][T19736] loop2: detected capacity change from 0 to 1024
[ 1538.334761][T19736] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1538.334880][T19736] ext4 filesystem being mounted at /237/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1538.365807][T19733] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[ 1538.367802][T19733] EXT4-fs (loop7): Remounting filesystem read-only
[ 1539.509584][T16103] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1539.604832][T15027] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1539.663114][    T9] usb 2-1: new high-speed USB device number 36 using dummy_hcd
[ 1539.887462][    T9] usb 2-1: Using ep0 maxpacket: 16
[ 1539.910787][    T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[ 1539.928636][    T9] usb 2-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[ 1539.940120][    T9] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1539.949330][    T9] usb 2-1: Product: syz
[ 1539.963448][    T9] usb 2-1: Manufacturer: syz
[ 1539.968090][    T9] usb 2-1: SerialNumber: syz
[ 1539.979836][T19751] loop2: detected capacity change from 0 to 1024
[ 1539.990349][    T9] usb 2-1: config 0 descriptor??
[ 1540.013650][    T9] hub 2-1:0.0: bad descriptor, ignoring hub
[ 1540.036829][    T9] hub: probe of 2-1:0.0 failed with error -5
[ 1540.048330][    T9] input: syz syz as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/input/input105
[ 1540.062976][T19751] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1540.486987][T15027] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1540.734725][T19760] netlink: 772 bytes leftover after parsing attributes in process `syz.2.3350'.
[ 1540.892372][T19766] netlink: 772 bytes leftover after parsing attributes in process `syz.2.3350'.
[ 1543.610298][ T5925] usb 2-1: USB disconnect, device number 36
[ 1544.724651][T19790] loop5: detected capacity change from 0 to 1024
[ 1544.797979][T19794] loop7: detected capacity change from 0 to 1024
[ 1544.815584][T19790] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1544.880765][T19794] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1544.966566][T19794] ext4 filesystem being mounted at /212/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1545.688492][T19798] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[ 1545.770776][T19798] EXT4-fs (loop7): Remounting filesystem read-only
[ 1545.781321][T13438] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1545.801321][T16103] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1547.152619][ T1278] ieee802154 phy0 wpan0: encryption failed: -22
[ 1547.159067][ T1278] ieee802154 phy1 wpan1: encryption failed: -22
[ 1549.088993][T19828] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3364'.
[ 1549.760196][ T5853] usb 2-1: new high-speed USB device number 37 using dummy_hcd
[ 1549.980430][ T5853] usb 2-1: Using ep0 maxpacket: 16
[ 1550.018066][ T5853] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[ 1550.074779][ T5853] usb 2-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[ 1550.114702][ T5853] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1550.328956][ T5853] usb 2-1: Product: syz
[ 1550.343430][ T5853] usb 2-1: Manufacturer: syz
[ 1551.490242][ T5853] usb 2-1: SerialNumber: syz
[ 1551.540853][ T5853] usb 2-1: config 0 descriptor??
[ 1551.980845][ T5853] hub 2-1:0.0: bad descriptor, ignoring hub
[ 1552.140110][ T5853] hub: probe of 2-1:0.0 failed with error -5
[ 1552.183161][ T5853] input: syz syz as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/input/input106
[ 1554.070604][    T9] usb 2-1: USB disconnect, device number 37
[ 1555.191403][T19878] loop1: detected capacity change from 0 to 1024
[ 1555.291449][T19878] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1555.364189][T19883] loop7: detected capacity change from 0 to 1024
[ 1555.370387][T19878] ext4 filesystem being mounted at /247/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1555.436977][T19883] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1555.456292][T19883] ext4 filesystem being mounted at /217/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1555.469421][T19886] fuse: Bad value for 'fd'
[ 1556.417353][T15312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1556.492004][T16103] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1556.559581][T19897] loop5: detected capacity change from 0 to 1024
[ 1558.297382][T19920] fuse: Bad value for 'fd'
[ 1558.510053][   T23] usb 6-1: new high-speed USB device number 49 using dummy_hcd
[ 1558.900194][   T23] usb 6-1: Using ep0 maxpacket: 16
[ 1559.016407][   T23] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[ 1559.444266][   T23] usb 6-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[ 1559.453950][   T23] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1559.472213][   T23] usb 6-1: Product: syz
[ 1559.476495][   T23] usb 6-1: Manufacturer: syz
[ 1559.481220][   T23] usb 6-1: SerialNumber: syz
[ 1559.495895][   T23] usb 6-1: config 0 descriptor??
[ 1559.554726][   T23] hub 6-1:0.0: bad descriptor, ignoring hub
[ 1559.578241][   T23] hub: probe of 6-1:0.0 failed with error -5
[ 1559.613525][   T23] input: syz syz as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/input/input107
[ 1560.270210][T19931] loop2: detected capacity change from 0 to 1024
[ 1560.370594][T19931] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1560.486210][T19931] ext4 filesystem being mounted at /247/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1561.374762][T15027] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1561.413346][T19938] loop1: detected capacity change from 0 to 1024
[ 1561.546352][T19938] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1561.611848][T19938] ext4 filesystem being mounted at /250/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1561.867014][   T42] usb 6-1: USB disconnect, device number 49
[ 1561.899481][T19948] loop2: detected capacity change from 0 to 1024
[ 1561.925203][T19943] loop7: detected capacity change from 0 to 2048
[ 1562.737750][   T27] audit: type=1800 audit(1754907663.163:67): pid=19949 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.3391" name="file1" dev="loop1" ino=15 res=0 errno=0
[ 1562.841876][T19943] EXT4-fs (loop7): mounted filesystem 00000800-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1562.928081][T15312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1562.933009][T19942] EXT4-fs error (device loop7): ext4_lookup:1858: inode #16: comm syz.7.3393: iget: bad i_size value: 8796093031208
[ 1563.295848][T19959] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[ 1565.150713][T19965] fuse: Bad value for 'fd'
[ 1565.602166][T16103] EXT4-fs (loop7): unmounting filesystem 00000800-0000-0000-0000-000000000000.
[ 1568.378661][T19991] loop5: detected capacity change from 0 to 1024
[ 1568.713321][T10159] usb 2-1: new high-speed USB device number 38 using dummy_hcd
[ 1569.433457][T10159] usb 2-1: Using ep0 maxpacket: 16
[ 1569.452604][T10159] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[ 1569.472914][T10159] usb 2-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[ 1569.481094][T20001] fuse: Bad value for 'fd'
[ 1569.489282][T10159] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1569.497606][T10159] usb 2-1: Product: syz
[ 1569.510000][T10159] usb 2-1: Manufacturer: syz
[ 1569.514635][T10159] usb 2-1: SerialNumber: syz
[ 1569.550304][T10159] usb 2-1: config 0 descriptor??
[ 1569.569146][T10159] hub 2-1:0.0: bad descriptor, ignoring hub
[ 1569.587957][T10159] hub: probe of 2-1:0.0 failed with error -5
[ 1569.618073][T10159] input: syz syz as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/input/input108
[ 1570.809107][T20019] loop7: detected capacity change from 0 to 1024
[ 1570.937278][T20019] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1570.990198][T20019] ext4 filesystem being mounted at /227/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1571.060150][T20022] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[ 1571.142931][T20022] EXT4-fs (loop7): Remounting filesystem read-only
[ 1571.919478][T20031] loop2: detected capacity change from 0 to 1024
[ 1571.941712][T16103] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1572.293164][    T9] usb 2-1: USB disconnect, device number 38
[ 1572.300535][T20035] fuse: Bad value for 'fd'
[ 1572.470216][ T5853] usb 8-1: new full-speed USB device number 14 using dummy_hcd
[ 1573.191519][ T5853] usb 8-1: config 252 has an invalid interface number: 107 but max is 0
[ 1573.243477][ T5853] usb 8-1: config 252 has no interface number 0
[ 1573.303471][ T5853] usb 8-1: config 252 interface 107 altsetting 0 has an invalid endpoint with address 0x6B, skipping
[ 1573.339324][ T5853] usb 8-1: config 252 interface 107 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0
[ 1573.354983][ T5853] usb 8-1: New USB device found, idVendor=10f0, idProduct=2002, bcdDevice=d7.67
[ 1573.371607][ T5853] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1573.379727][ T5853] usb 8-1: Product: syz
[ 1573.389224][ T5853] usb 8-1: Manufacturer: syz
[ 1573.407152][ T5853] usb 8-1: SerialNumber: syz
[ 1573.635598][ T5853] usb 8-1: USB disconnect, device number 14
[ 1573.971586][T20054] loop1: detected capacity change from 0 to 8
[ 1574.075400][T20054] SQUASHFS error: Failed to read block 0x4e8: -5
[ 1574.115746][T20054] SQUASHFS error: Failed to read block 0x4de: -5
[ 1574.150688][T20054] SQUASHFS error: Failed to read block 0x4de: -5
[ 1574.157223][T20054] SQUASHFS error: Failed to read block 0x4de: -5
[ 1574.193311][   T27] audit: type=1800 audit(1754907674.903:68): pid=20054 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.3423" name="file1" dev="loop1" ino=5 res=0 errno=0
[ 1575.494716][T20064] loop5: detected capacity change from 0 to 1024
[ 1575.798514][T20071] fuse: Invalid rootmode
[ 1576.550196][   T42] usb 2-1: new high-speed USB device number 39 using dummy_hcd
[ 1577.070241][   T42] usb 2-1: Using ep0 maxpacket: 16
[ 1577.263524][   T42] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[ 1577.426347][   T42] usb 2-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[ 1577.488211][   T42] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1577.519678][T20089] loop2: detected capacity change from 0 to 1024
[ 1577.530218][   T42] usb 2-1: Product: syz
[ 1577.534670][   T42] usb 2-1: Manufacturer: syz
[ 1577.555949][   T42] usb 2-1: SerialNumber: syz
[ 1577.576705][   T42] usb 2-1: config 0 descriptor??
[ 1577.602359][   T42] hub 2-1:0.0: bad descriptor, ignoring hub
[ 1577.608340][   T42] hub: probe of 2-1:0.0 failed with error -5
[ 1577.628454][   T42] input: syz syz as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/input/input110
[ 1577.696207][T20089] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1577.799011][T20089] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1577.955709][T20089] ext4 filesystem being mounted at /260/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1577.962282][T20098] loop7: detected capacity change from 0 to 8
[ 1578.016404][T20098] SQUASHFS error: Failed to read block 0x4e8: -5
[ 1578.057219][T20098] SQUASHFS error: Failed to read block 0x4de: -5
[ 1578.150479][T20098] SQUASHFS error: Failed to read block 0x4de: -5
[ 1578.157018][T20098] SQUASHFS error: Failed to read block 0x4de: -5
[ 1578.248728][   T27] audit: type=1800 audit(1754907678.953:69): pid=20098 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.7.3434" name="file1" dev="loop7" ino=5 res=0 errno=0
[ 1578.502158][T20089] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[ 1578.926450][T20089] EXT4-fs (loop2): Remounting filesystem read-only
[ 1579.111890][T15027] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1580.031259][ T5853] usb 2-1: USB disconnect, device number 39
[ 1580.212660][T20114] loop7: detected capacity change from 0 to 1024
[ 1582.317390][T20138] loop1: detected capacity change from 0 to 1024
[ 1582.338796][T20138] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1582.462420][T20138] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1582.495922][T20143] loop7: detected capacity change from 0 to 1024
[ 1582.553481][T20143] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1582.573359][T20138] ext4 filesystem being mounted at /259/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1582.640162][T20143] ext4 filesystem being mounted at /238/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1583.953728][T16103] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1584.166233][T20163] 9pnet_fd: Insufficient options for proto=fd
[ 1584.235785][T20163] loop5: detected capacity change from 0 to 1024
[ 1585.153227][T20141] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[ 1585.260924][T20141] EXT4-fs (loop1): Remounting filesystem read-only
[ 1585.468957][T20176] loop5: detected capacity change from 0 to 2048
[ 1585.675907][T20176] EXT4-fs (loop5): mounted filesystem 00000800-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1585.819154][T20176] EXT4-fs error (device loop5): ext4_lookup:1858: inode #16: comm syz.5.3452: iget: bad i_size value: 8796093031208
[ 1585.840288][    T9] usb 8-1: new full-speed USB device number 15 using dummy_hcd
[ 1586.125381][T15312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1586.232038][T20186] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[ 1586.650381][    T9] usb 8-1: config 252 has an invalid interface number: 107 but max is 0
[ 1586.658795][    T9] usb 8-1: config 252 has no interface number 0
[ 1586.670996][    T9] usb 8-1: config 252 interface 107 altsetting 0 has an invalid endpoint with address 0x6B, skipping
[ 1586.682098][    T9] usb 8-1: config 252 interface 107 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0
[ 1586.704245][    T9] usb 8-1: New USB device found, idVendor=10f0, idProduct=2002, bcdDevice=d7.67
[ 1586.713910][    T9] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1586.729960][    T9] usb 8-1: Product: syz
[ 1586.734277][    T9] usb 8-1: Manufacturer: syz
[ 1586.738910][    T9] usb 8-1: SerialNumber: syz
[ 1586.968317][    T9] usb 8-1: USB disconnect, device number 15
[ 1587.189327][T13438] EXT4-fs (loop5): unmounting filesystem 00000800-0000-0000-0000-000000000000.
[ 1587.520682][T20192] loop5: detected capacity change from 0 to 1024
[ 1587.598675][T20192] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1587.737102][T20192] ext4 filesystem being mounted at /355/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1588.496720][   T27] audit: type=1800 audit(1754907689.123:70): pid=20201 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.3456" name="file1" dev="loop5" ino=15 res=0 errno=0
[ 1588.666235][T20206] 9pnet_fd: Insufficient options for proto=fd
[ 1588.684711][T20206] loop1: detected capacity change from 0 to 1024
[ 1588.737019][T13438] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1592.236131][    T9] usb 8-1: new full-speed USB device number 16 using dummy_hcd
[ 1592.506223][T20236] loop5: detected capacity change from 0 to 1024
[ 1592.561876][    T9] usb 8-1: config 252 has an invalid interface number: 107 but max is 0
[ 1592.584905][    T9] usb 8-1: config 252 has no interface number 0
[ 1592.611455][T20236] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1592.628491][    T9] usb 8-1: config 252 interface 107 altsetting 0 has an invalid endpoint with address 0x6B, skipping
[ 1592.630405][T20236] ext4 filesystem being mounted at /359/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1592.687536][    T9] usb 8-1: config 252 interface 107 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0
[ 1592.747828][    T9] usb 8-1: New USB device found, idVendor=10f0, idProduct=2002, bcdDevice=d7.67
[ 1592.752175][T20245] 9pnet_fd: Insufficient options for proto=fd
[ 1592.778563][    T9] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1592.784097][T20245] loop2: detected capacity change from 0 to 1024
[ 1592.798213][    T9] usb 8-1: Product: syz
[ 1592.810198][    T9] usb 8-1: Manufacturer: syz
[ 1592.835277][    T9] usb 8-1: SerialNumber: syz
[ 1593.082469][    T9] usb 8-1: USB disconnect, device number 16
[ 1593.312813][T13438] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1593.490014][T10159] usb 3-1: new high-speed USB device number 62 using dummy_hcd
[ 1593.670168][T10159] usb 3-1: Using ep0 maxpacket: 16
[ 1593.789345][T10159] usb 3-1: config 1 interface 0 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[ 1594.580890][T10159] usb 3-1: config 1 interface 0 altsetting 1 bulk endpoint 0x1 has invalid maxpacket 0
[ 1594.670215][T10159] usb 3-1: config 1 interface 0 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1595.438954][T10159] usb 3-1: config 1 interface 0 has no altsetting 0
[ 1595.830870][T10159] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[ 1595.850046][T10159] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1595.859996][T10159] usb 3-1: Product: syz
[ 1595.880007][T10159] usb 3-1: Manufacturer: syz
[ 1595.890038][T10159] usb 3-1: SerialNumber: syz
[ 1598.651822][T10159] usb 3-1: can't set config #1, error -71
[ 1598.724338][T10159] usb 3-1: USB disconnect, device number 62
[ 1598.852069][T20277] loop2: detected capacity change from 0 to 1024
[ 1599.266179][T20279] loop5: detected capacity change from 0 to 1024
[ 1599.365185][T20279] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1599.390483][T20288] loop1: detected capacity change from 0 to 2048
[ 1599.432351][T20279] ext4 filesystem being mounted at /362/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1599.471317][T20288] EXT4-fs (loop1): mounted filesystem 00000800-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1599.642951][T20288] EXT4-fs error (device loop1): ext4_lookup:1858: inode #16: comm syz.1.3476: iget: bad i_size value: 8796093031208
[ 1600.071237][T20297] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[ 1600.589772][T15312] EXT4-fs (loop1): unmounting filesystem 00000800-0000-0000-0000-000000000000.
[ 1601.504166][T20286] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[ 1601.593899][T20286] EXT4-fs (loop5): Remounting filesystem read-only
[ 1603.578710][T13438] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1603.693238][T20321] loop1: detected capacity change from 0 to 1024
[ 1603.980073][ T5925] usb 8-1: new high-speed USB device number 17 using dummy_hcd
[ 1604.160028][ T5925] usb 8-1: Using ep0 maxpacket: 16
[ 1604.241273][ T5925] usb 8-1: config 1 interface 0 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[ 1604.283012][ T5925] usb 8-1: config 1 interface 0 altsetting 1 bulk endpoint 0x1 has invalid maxpacket 0
[ 1604.297963][ T5925] usb 8-1: config 1 interface 0 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1604.323444][ T5925] usb 8-1: config 1 interface 0 has no altsetting 0
[ 1604.334069][ T5925] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[ 1604.344116][ T5925] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1604.352574][ T5925] usb 8-1: Product: syz
[ 1604.360149][ T5925] usb 8-1: Manufacturer: syz
[ 1604.365332][ T5925] usb 8-1: SerialNumber: syz
[ 1604.638312][ T5925] usblp 8-1:1.0: usblp0: USB Unidirectional printer dev 17 if 0 alt 1 proto 1 vid 0x0525 pid 0xA4A8
[ 1605.136312][    T9] usb 8-1: USB disconnect, device number 17
[ 1605.142585][T20317] usblp0:failed reading printer status (-71)
[ 1607.176905][T20316] usblp0: removed
[ 1607.735633][ T1278] ieee802154 phy0 wpan0: encryption failed: -22
[ 1607.742395][ T1278] ieee802154 phy1 wpan1: encryption failed: -22
[ 1607.781011][T20352] loop1: detected capacity change from 0 to 1024
[ 1608.667749][T20352] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1608.702486][T20352] ext4 filesystem being mounted at /271/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1608.734104][T20360] loop7: detected capacity change from 0 to 1024
[ 1608.754963][T20363] loop5: detected capacity change from 0 to 1024
[ 1608.852136][T20365] loop2: detected capacity change from 0 to 1024
[ 1608.951404][T20363] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1608.984123][T20363] ext4 filesystem being mounted at /366/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1609.000949][T20365] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1609.311094][T20365] ext4 filesystem being mounted at /279/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1609.652909][T15312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1610.365061][T15027] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1611.134766][ T5833] usb 3-1: new high-speed USB device number 63 using dummy_hcd
[ 1611.365355][ T5833] usb 3-1: Using ep0 maxpacket: 16
[ 1611.438470][ T5833] usb 3-1: config 1 interface 0 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[ 1611.470578][ T5833] usb 3-1: config 1 interface 0 altsetting 1 bulk endpoint 0x1 has invalid maxpacket 0
[ 1611.495552][T13438] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1611.518125][ T5833] usb 3-1: config 1 interface 0 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1611.534398][ T5833] usb 3-1: config 1 interface 0 has no altsetting 0
[ 1611.598995][ T5833] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[ 1611.638782][ T5833] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1611.680121][ T5833] usb 3-1: Product: syz
[ 1611.690903][ T5833] usb 3-1: Manufacturer: syz
[ 1611.843767][ T5833] usb 3-1: SerialNumber: syz
[ 1613.060238][ T5833] usblp 3-1:1.0: usblp0: USB Unidirectional printer dev 63 if 0 alt 1 proto 1 vid 0x0525 pid 0xA4A8
[ 1613.211726][ T5833] usb 3-1: USB disconnect, device number 63
[ 1613.234892][ T5833] usblp0: removed
[ 1613.454734][T20410] loop1: detected capacity change from 0 to 1024
[ 1614.315415][T20414] loop5: detected capacity change from 0 to 1024
[ 1614.340508][T20414] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1614.409422][T20416] loop1: detected capacity change from 0 to 1024
[ 1614.426127][T20414] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1614.440373][T20414] ext4 filesystem being mounted at /369/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1614.614150][T20416] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1618.422697][T20427] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[ 1618.728395][T20427] EXT4-fs (loop5): Remounting filesystem read-only
[ 1618.888403][T13438] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1618.896844][T15312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1620.152234][T20448] loop1: detected capacity change from 0 to 1024
[ 1620.356541][T20448] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1620.357003][T20453] loop7: detected capacity change from 0 to 1024
[ 1620.402401][T20448] ext4 filesystem being mounted at /278/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1621.403264][T20469] loop7: detected capacity change from 0 to 1024
[ 1621.450362][T20456] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[ 1621.481590][T20456] EXT4-fs (loop1): Remounting filesystem read-only
[ 1621.514763][T20469] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1621.540390][   T23] usb 6-1: new full-speed USB device number 50 using dummy_hcd
[ 1621.649552][T16103] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1621.753180][   T23] usb 6-1: config 252 has an invalid interface number: 107 but max is 0
[ 1621.770531][   T23] usb 6-1: config 252 has no interface number 0
[ 1621.778195][   T23] usb 6-1: config 252 interface 107 altsetting 0 has an invalid endpoint with address 0x6B, skipping
[ 1621.800230][   T23] usb 6-1: config 252 interface 107 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0
[ 1621.818039][   T23] usb 6-1: New USB device found, idVendor=10f0, idProduct=2002, bcdDevice=d7.67
[ 1621.829989][   T23] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1621.843737][   T23] usb 6-1: Product: syz
[ 1621.851380][   T23] usb 6-1: Manufacturer: syz
[ 1621.858240][   T23] usb 6-1: SerialNumber: syz
[ 1622.213585][ T5853] usb 6-1: USB disconnect, device number 50
[ 1622.306365][T20481] loop7: detected capacity change from 0 to 1024
[ 1622.379032][T20481] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1622.420075][T20481] ext4 filesystem being mounted at /259/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1622.539774][T15312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1623.673825][T16103] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1624.513440][T20498] loop7: detected capacity change from 0 to 1024
[ 1627.637134][T20514] loop7: detected capacity change from 0 to 1024
[ 1627.858474][T20515] loop2: detected capacity change from 0 to 1024
[ 1628.061206][T20515] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1628.102391][T20515] ext4 filesystem being mounted at /285/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1628.104857][T20514] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1628.197621][T20523] loop1: detected capacity change from 0 to 1024
[ 1628.393309][T20524] ==================================================================
[ 1628.401438][T20524] BUG: KASAN: out-of-bounds in ext4_xattr_set_entry+0x94b/0x1e90
[ 1628.409206][T20524] Read of size 18446744073709551572 at addr ffff88807a119850 by task syz.7.3535/20524
[ 1628.418777][T20524] 
[ 1628.421125][T20524] CPU: 1 PID: 20524 Comm: syz.7.3535 Not tainted 6.6.101-syzkaller #0
[ 1628.429310][T20524] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1628.439393][T20524] Call Trace:
[ 1628.442702][T20524]  <TASK>
[ 1628.445676][T20524]  dump_stack_lvl+0x16c/0x230
[ 1628.450399][T20524]  ? read_lock_is_recursive+0x20/0x20
[ 1628.455809][T20524]  ? show_regs_print_info+0x20/0x20
[ 1628.461046][T20524]  ? load_image+0x3b0/0x3b0
[ 1628.465598][T20524]  ? _raw_spin_lock_irqsave+0xb4/0xf0
[ 1628.471021][T20524]  ? __virt_addr_valid+0x18c/0x540
[ 1628.476171][T20524]  ? __virt_addr_valid+0x469/0x540
[ 1628.481315][T20524]  print_report+0xac/0x220
[ 1628.485772][T20524]  ? ext4_xattr_set_entry+0x94b/0x1e90
[ 1628.491238][T20524]  kasan_report+0x117/0x150
[ 1628.495752][T20524]  ? ext4_xattr_set_entry+0x94b/0x1e90
[ 1628.501225][T20524]  ? ext4_xattr_set_entry+0x94b/0x1e90
[ 1628.506690][T20524]  kasan_check_range+0x288/0x290
[ 1628.511635][T20524]  ? ext4_xattr_set_entry+0x94b/0x1e90
[ 1628.517106][T20524]  __asan_memmove+0x29/0x70
[ 1628.521623][T20524]  ext4_xattr_set_entry+0x94b/0x1e90
[ 1628.526942][T20524]  ext4_xattr_block_set+0xae3/0x32a0
[ 1628.532239][T20524]  ? ext4_destroy_inode+0xe8/0x1b0
[ 1628.537366][T20524]  ? ext4_destroy_inode+0x1b0/0x1b0
[ 1628.542588][T20524]  ? proc_nr_inodes+0x230/0x230
[ 1628.547509][T20524]  ? do_raw_spin_unlock+0x121/0x230
[ 1628.552729][T20524]  ? _raw_spin_unlock+0x28/0x40
[ 1628.557603][T20524]  ? ext4_xattr_block_find+0x350/0x350
[ 1628.563076][T20524]  ? ext4_xattr_ibody_set+0x50d/0x6a0
[ 1628.568503][T20524]  ext4_xattr_set_handle+0x10a1/0x1290
[ 1628.573982][T20524]  ? ext4_xattr_inode_free_quota+0x1b0/0x1b0
[ 1628.579980][T20524]  ? __ext4_journal_start_sb+0x259/0x570
[ 1628.585624][T20524]  ext4_xattr_set+0x22d/0x320
[ 1628.590320][T20524]  ? ext4_xattr_set_credits+0x2f0/0x2f0
[ 1628.595873][T20524]  ? evm_protected_xattr_common+0x170/0x190
[ 1628.601802][T20524]  ? evm_protect_xattr+0x534/0x7a0
[ 1628.606958][T20524]  ? ext4_xattr_security_get+0x40/0x40
[ 1628.612452][T20524]  __vfs_setxattr+0x431/0x470
[ 1628.617170][T20524]  __vfs_setxattr_noperm+0x12d/0x5e0
[ 1628.622467][T20524]  vfs_setxattr+0x16c/0x2f0
[ 1628.626984][T20524]  ? xattr_permission+0x470/0x470
[ 1628.632009][T20524]  ? __mnt_want_write+0x223/0x2a0
[ 1628.637048][T20524]  ? path_setxattr+0x314/0x550
[ 1628.641815][T20524]  path_setxattr+0x362/0x550
[ 1628.646412][T20524]  ? simple_xattrs_free+0x150/0x150
[ 1628.651648][T20524]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[ 1628.657641][T20524]  ? lock_chain_count+0x20/0x20
[ 1628.662502][T20524]  ? lock_chain_count+0x20/0x20
[ 1628.667361][T20524]  __x64_sys_lsetxattr+0xb8/0xd0
[ 1628.672314][T20524]  do_syscall_64+0x55/0xb0
[ 1628.676739][T20524]  ? clear_bhb_loop+0x40/0x90
[ 1628.681423][T20524]  ? clear_bhb_loop+0x40/0x90
[ 1628.686122][T20524]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1628.692031][T20524] RIP: 0033:0x7fca44b8ebe9
[ 1628.696448][T20524] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1628.716061][T20524] RSP: 002b:00007fca45a7b038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd
[ 1628.724502][T20524] RAX: ffffffffffffffda RBX: 00007fca44db6090 RCX: 00007fca44b8ebe9
[ 1628.732582][T20524] RDX: 0000200000000100 RSI: 00002000000000c0 RDI: 0000200000000080
[ 1628.740643][T20524] RBP: 00007fca44c11e19 R08: 0000000000000001 R09: 0000000000000000
[ 1628.748616][T20524] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000000
[ 1628.756619][T20524] R13: 00007fca44db6128 R14: 00007fca44db6090 R15: 00007ffc64b3d898
[ 1628.764602][T20524]  </TASK>
[ 1628.767619][T20524] 
[ 1628.769951][T20524] Allocated by task 20524:
[ 1628.774392][T20524]  kasan_set_track+0x4e/0x70
[ 1628.778990][T20524]  __kasan_kmalloc+0x8f/0xa0
[ 1628.783603][T20524]  __kmalloc_node_track_caller+0xb2/0x230
[ 1628.789343][T20524]  kmemdup+0x2b/0x70
[ 1628.793264][T20524]  ext4_xattr_block_set+0x9e5/0x32a0
[ 1628.798557][T20524]  ext4_xattr_set_handle+0x10a1/0x1290
[ 1628.804028][T20524]  ext4_xattr_set+0x22d/0x320
[ 1628.808715][T20524]  __vfs_setxattr+0x431/0x470
[ 1628.813414][T20524]  __vfs_setxattr_noperm+0x12d/0x5e0
[ 1628.818722][T20524]  vfs_setxattr+0x16c/0x2f0
[ 1628.823225][T20524]  path_setxattr+0x362/0x550
[ 1628.827812][T20524]  __x64_sys_lsetxattr+0xb8/0xd0
[ 1628.832756][T20524]  do_syscall_64+0x55/0xb0
[ 1628.837188][T20524]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1628.843103][T20524] 
[ 1628.845430][T20524] The buggy address belongs to the object at ffff88807a119800
[ 1628.845430][T20524]  which belongs to the cache kmalloc-1k of size 1024
[ 1628.859511][T20524] The buggy address is located 80 bytes inside of
[ 1628.859511][T20524]  1024-byte region [ffff88807a119800, ffff88807a119c00)
[ 1628.872806][T20524] 
[ 1628.875148][T20524] The buggy address belongs to the physical page:
[ 1628.881558][T20524] page:ffffea0001e84600 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x7a118
[ 1628.891726][T20524] head:ffffea0001e84600 order:3 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 1628.900685][T20524] flags: 0xfff00000000840(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[ 1628.908702][T20524] page_type: 0xffffffff()
[ 1628.913035][T20524] raw: 00fff00000000840 ffff888017841dc0 dead000000000100 dead000000000122
[ 1628.921620][T20524] raw: 0000000000000000 0000000080100010 00000001ffffffff 0000000000000000
[ 1628.930201][T20524] page dumped because: kasan: bad access detected
[ 1628.936612][T20524] page_owner tracks the page as allocated
[ 1628.942327][T20524] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x152820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 11, tgid 11 (kworker/u4:0), ts 896630814965, free_ts 896530062505
[ 1628.962814][T20524]  post_alloc_hook+0x1cd/0x210
[ 1628.967587][T20524]  get_page_from_freelist+0x195c/0x19f0
[ 1628.973143][T20524]  __alloc_pages+0x1e3/0x460
[ 1628.977742][T20524]  alloc_slab_page+0x5d/0x170
[ 1628.982517][T20524]  new_slab+0x87/0x2e0
[ 1628.986588][T20524]  ___slab_alloc+0xc6d/0x12f0
[ 1628.991278][T20524]  __kmem_cache_alloc_node+0x1a2/0x260
[ 1628.996748][T20524]  __kmalloc+0xa4/0x240
[ 1629.000915][T20524]  ieee802_11_parse_elems_full+0xb9/0x2080
[ 1629.006771][T20524]  ieee80211_inform_bss+0x107/0x1060
[ 1629.012083][T20524]  rdev_inform_bss+0x106/0x410
[ 1629.016856][T20524]  cfg80211_inform_bss_frame_data+0xb33/0x12b0
[ 1629.023014][T20524]  ieee80211_bss_info_update+0x70b/0x930
[ 1629.028658][T20524]  ieee80211_ibss_rx_queued_mgmt+0x17c9/0x2ac0
[ 1629.034823][T20524]  ieee80211_iface_work+0x717/0xc70
[ 1629.040031][T20524]  cfg80211_wiphy_work+0x225/0x260
[ 1629.045157][T20524] page last free stack trace:
[ 1629.049823][T20524]  free_unref_page_prepare+0x7ce/0x8e0
[ 1629.055292][T20524]  free_unref_page+0x32/0x2e0
[ 1629.059984][T20524]  __unfreeze_partials+0x1cf/0x210
[ 1629.065150][T20524]  put_cpu_partial+0x17c/0x250
[ 1629.069928][T20524]  __slab_free+0x31d/0x410
[ 1629.074363][T20524]  qlist_free_all+0x75/0xe0
[ 1629.079141][T20524]  kasan_quarantine_reduce+0x143/0x160
[ 1629.084614][T20524]  __kasan_slab_alloc+0x22/0x80
[ 1629.089469][T20524]  slab_post_alloc_hook+0x6e/0x4d0
[ 1629.094591][T20524]  __kmem_cache_alloc_node+0x13e/0x260
[ 1629.100059][T20524]  __kmalloc+0xa4/0x240
[ 1629.104218][T20524]  tomoyo_realpath_from_path+0xe3/0x5d0
[ 1629.109790][T20524]  tomoyo_path_number_perm+0x1ea/0x590
[ 1629.115257][T20524]  security_file_ioctl+0x70/0xa0
[ 1629.120288][T20524]  __se_sys_ioctl+0x48/0x170
[ 1629.124880][T20524]  do_syscall_64+0x55/0xb0
[ 1629.129298][T20524] 
[ 1629.131618][T20524] Memory state around the buggy address:
[ 1629.137245][T20524]  ffff88807a119700: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 1629.145302][T20524]  ffff88807a119780: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 1629.153364][T20524] >ffff88807a119800: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 1629.161423][T20524]                                                  ^
[ 1629.168093][T20524]  ffff88807a119880: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 1629.176165][T20524]  ffff88807a119900: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 1629.184221][T20524] ==================================================================
[ 1629.250412][T20523] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1629.270784][T20523] ext4 filesystem being mounted at /282/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1629.297812][T20524] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 1629.305048][T20524] CPU: 0 PID: 20524 Comm: syz.7.3535 Not tainted 6.6.101-syzkaller #0
[ 1629.313218][T20524] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1629.323284][T20524] Call Trace:
[ 1629.326621][T20524]  <TASK>
[ 1629.329557][T20524]  dump_stack_lvl+0x16c/0x230
[ 1629.334248][T20524]  ? show_regs_print_info+0x20/0x20
[ 1629.339467][T20524]  ? load_image+0x3b0/0x3b0
[ 1629.344019][T20524]  panic+0x2c0/0x710
[ 1629.347963][T20524]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1629.354148][T20524]  ? bpf_jit_dump+0xd0/0xd0
[ 1629.358703][T20524]  ? _raw_spin_unlock_irqrestore+0xfa/0x110
[ 1629.364626][T20524]  ? _raw_spin_unlock+0x40/0x40
[ 1629.369497][T20524]  ? ext4_xattr_set_entry+0x94b/0x1e90
[ 1629.374973][T20524]  check_panic_on_warn+0x84/0xa0
[ 1629.379937][T20524]  ? ext4_xattr_set_entry+0x94b/0x1e90
[ 1629.385456][T20524]  end_report+0x6f/0x140
[ 1629.389705][T20524]  kasan_report+0x128/0x150
[ 1629.394230][T20524]  ? ext4_xattr_set_entry+0x94b/0x1e90
[ 1629.399701][T20524]  ? ext4_xattr_set_entry+0x94b/0x1e90
[ 1629.405209][T20524]  kasan_check_range+0x288/0x290
[ 1629.410173][T20524]  ? ext4_xattr_set_entry+0x94b/0x1e90
[ 1629.415666][T20524]  __asan_memmove+0x29/0x70
[ 1629.420187][T20524]  ext4_xattr_set_entry+0x94b/0x1e90
[ 1629.425494][T20524]  ext4_xattr_block_set+0xae3/0x32a0
[ 1629.430794][T20524]  ? ext4_destroy_inode+0xe8/0x1b0
[ 1629.435920][T20524]  ? ext4_destroy_inode+0x1b0/0x1b0
[ 1629.441136][T20524]  ? proc_nr_inodes+0x230/0x230
[ 1629.445996][T20524]  ? do_raw_spin_unlock+0x121/0x230
[ 1629.451215][T20524]  ? _raw_spin_unlock+0x28/0x40
[ 1629.456088][T20524]  ? ext4_xattr_block_find+0x350/0x350
[ 1629.461566][T20524]  ? ext4_xattr_ibody_set+0x50d/0x6a0
[ 1629.466951][T20524]  ext4_xattr_set_handle+0x10a1/0x1290
[ 1629.472452][T20524]  ? ext4_xattr_inode_free_quota+0x1b0/0x1b0
[ 1629.478504][T20524]  ? __ext4_journal_start_sb+0x259/0x570
[ 1629.484168][T20524]  ext4_xattr_set+0x22d/0x320
[ 1629.488950][T20524]  ? ext4_xattr_set_credits+0x2f0/0x2f0
[ 1629.494508][T20524]  ? evm_protected_xattr_common+0x170/0x190
[ 1629.500416][T20524]  ? evm_protect_xattr+0x534/0x7a0
[ 1629.505543][T20524]  ? ext4_xattr_security_get+0x40/0x40
[ 1629.511012][T20524]  __vfs_setxattr+0x431/0x470
[ 1629.515709][T20524]  __vfs_setxattr_noperm+0x12d/0x5e0
[ 1629.521008][T20524]  vfs_setxattr+0x16c/0x2f0
[ 1629.525527][T20524]  ? xattr_permission+0x470/0x470
[ 1629.530564][T20524]  ? __mnt_want_write+0x223/0x2a0
[ 1629.535605][T20524]  ? path_setxattr+0x314/0x550
[ 1629.540390][T20524]  path_setxattr+0x362/0x550
[ 1629.544997][T20524]  ? simple_xattrs_free+0x150/0x150
[ 1629.550220][T20524]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[ 1629.556210][T20524]  ? lock_chain_count+0x20/0x20
[ 1629.561098][T20524]  ? lock_chain_count+0x20/0x20
[ 1629.565961][T20524]  __x64_sys_lsetxattr+0xb8/0xd0
[ 1629.570916][T20524]  do_syscall_64+0x55/0xb0
[ 1629.575342][T20524]  ? clear_bhb_loop+0x40/0x90
[ 1629.580041][T20524]  ? clear_bhb_loop+0x40/0x90
[ 1629.584752][T20524]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1629.590659][T20524] RIP: 0033:0x7fca44b8ebe9
[ 1629.595100][T20524] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1629.614740][T20524] RSP: 002b:00007fca45a7b038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd
[ 1629.623163][T20524] RAX: ffffffffffffffda RBX: 00007fca44db6090 RCX: 00007fca44b8ebe9
[ 1629.631165][T20524] RDX: 0000200000000100 RSI: 00002000000000c0 RDI: 0000200000000080
[ 1629.639140][T20524] RBP: 00007fca44c11e19 R08: 0000000000000001 R09: 0000000000000000
[ 1629.647202][T20524] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000000
[ 1629.655192][T20524] R13: 00007fca44db6128 R14: 00007fca44db6090 R15: 00007ffc64b3d898
[ 1629.663179][T20524]  </TASK>
[ 1629.666532][T20524] Kernel Offset: disabled
[ 1629.670888][T20524] Rebooting in 86400 seconds..