last executing test programs:

8m57.496361019s ago: executing program 32 (id=58):
syz_genetlink_get_family_id$wireguard(0x0, 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000100)=ANY=[], 0x32600)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r0, 0x0)
mprotect(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x0)
r1 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r1)
ptrace$poke(0x1, r1, &(0x7f00000004c0), 0x101)

7m16.942678213s ago: executing program 33 (id=303):
syz_open_procfs(0x0, &(0x7f0000000100)='net/sockstat6\x00')
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x2d)
mount$9p_fd(0x0, &(0x7f00000001c0)='.\x00', &(0x7f0000000180), 0x0, 0x0)

6m32.303623967s ago: executing program 6 (id=343):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
select(0x40, &(0x7f0000000080)={0x0, 0x0, 0xfffffffffffffff2}, &(0x7f00000000c0)={0x4}, 0x0, 0x0)

6m29.509542126s ago: executing program 6 (id=455):
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x8, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="ae02000000000000631108000000000005000000000000009500740000000000"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @cgroup_skb}, 0x21)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x8004, &(0x7f0000000080)={[{@discard}, {@bh}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}]}, 0x1, 0x7b9, &(0x7f00000007c0)="$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")
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = epoll_create1(0x80000)
r2 = fcntl$dupfd(r0, 0x0, r1)
r3 = fanotify_init(0x18, 0x1000)
r4 = memfd_create(&(0x7f0000000080)='-B\xd5\x9appp\xf0\x00\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xac\xbe\xe1}\x00\x10\x00\x00\x00\x00\x00\x00\xc0\"\x9cc\x10d\xee\xa9\x8b\x06\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\xcf~\xb90a\xa9\xb2\x04\x1d\xa1\xce\x8b\x11\xea\xef\xe3\x00\x00\x00\x00\x00\x00\x00\x00', 0x1)
r5 = dup(r4)
fanotify_mark(r3, 0x1, 0x48001023, r5, 0x0)
ftruncate(r5, 0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
sendfile(r6, r4, &(0x7f0000000000)=0x5, 0x8001)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000000))
r7 = getpid()
r8 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
kcmp$KCMP_EPOLL_TFD(r7, r8, 0x7, r2, &(0x7f0000000100)={r1, r2})
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f00000006c0), 0xffffffffffffffff)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r11=>0x0})
sendmsg$NL80211_CMD_SET_TID_CONFIG(r10, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000bc0)={&(0x7f0000000040)={0x20, r9, 0x1, 0x70bd25, 0x0, {{}, {@val={0x8, 0x3, r11}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x4}]}, 0x20}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r12=>0x0})
sendmsg$NL80211_CMD_GET_INTERFACE(r2, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x28, r9, 0x800, 0x70bd2a, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r12}, @val={0xc, 0x99, {0x3ff, 0xffff}}}}, ["", "", "", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x4004}, 0x4000004)
syz_usb_connect$cdc_ncm(0x4, 0xd1, 0x0, 0x0)
r13 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141042, 0x0)
ioctl$EXT4_IOC_SWAP_BOOT(r13, 0x6611)

6m25.722409373s ago: executing program 6 (id=465):
syz_mount_image$hfsplus(&(0x7f0000000100), &(0x7f0000002900)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2000010, &(0x7f00000022c0)=ANY=[], 0x1, 0x6ca, &(0x7f0000000500)="$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")
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x10, 0x1)
creat(&(0x7f0000000d80)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
rename(&(0x7f0000000e80)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f00000002c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

6m23.823280054s ago: executing program 6 (id=470):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18020000801000000000000004000000850000002700000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x80)

6m19.330628349s ago: executing program 34 (id=470):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18020000801000000000000004000000850000002700000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x80)

3m5.345536323s ago: executing program 3 (id=1147):
semtimedop(0x0, &(0x7f00000003c0)=[{0x2, 0x4, 0x1800}], 0x1, 0x0)
semop(0x0, &(0x7f00000000c0)=[{0x4}, {0x2}], 0x2)
semop(0x0, &(0x7f0000001240)=[{}, {0x2, 0x0, 0x2000}], 0x2)
semctl$GETZCNT(0x0, 0x2, 0xf, 0x0)

3m4.83462289s ago: executing program 3 (id=1151):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f00000005c0)='./file1\x00', 0x1018ed8, &(0x7f0000000180)={[{@sysvgroups}, {@noload}, {@nobh}, {@noload}, {@journal_dev={'journal_dev', 0x3d, 0x4}}, {@norecovery}, {@errors_continue}, {@quota}]}, 0x1, 0x644, &(0x7f00000006c0)="$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")
r0 = open(&(0x7f0000000040)='.\x00', 0x0, 0x28)
quotactl_fd$Q_GETINFO(r0, 0xffffffff80000500, 0x0, 0x0)

3m3.638750912s ago: executing program 3 (id=1155):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
gettid()
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$packet(0x11, 0x3, 0x300)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=@newnexthop={0x24, 0x68, 0x1, 0x2, 0x7ffffffc, {}, [@NHA_GROUP={0xc, 0x2, [{0x2, 0x4}]}]}, 0x24}, 0x1, 0x0, 0x0, 0x24008000}, 0x4000)

3m3.555674755s ago: executing program 7 (id=1157):
syz_mount_image$exfat(&(0x7f0000000280), &(0x7f0000000240)='./file0\x00', 0x810, &(0x7f0000001800)=ANY=[], 0xfd, 0x1502, &(0x7f00000002c0)="$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")
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x22004006, &(0x7f00000010c0)={[{@jqfmt_vfsold}, {@nouid32}, {@nobh}, {@stripe={'stripe', 0x3d, 0xffff}}, {@block_validity}, {@grpjquota, 0x22}], [], 0x2}, 0xc4, 0x46f, &(0x7f0000000940)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
write$binfmt_script(r0, &(0x7f0000000080)={'#! ', './file0'}, 0xb)

3m3.038972315s ago: executing program 3 (id=1160):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = socket$packet(0x11, 0xa, 0x300)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000fbe000)={0x2, &(0x7f0000000100)=[{0x28, 0x0, 0x0, 0xfffff034}, {0x80000006, 0x0, 0x4}]}, 0x10)
r1 = socket$inet(0x2, 0x3, 0x6)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000140)='xfrm0\x00', 0x10)
sendto$inet(r1, 0x0, 0x0, 0x20000800, &(0x7f0000001080)={0x2, 0x4e24, @multicast1}, 0x10)

3m2.445020685s ago: executing program 7 (id=1164):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a00)={&(0x7f0000000d00)='sched_switch\x00'}, 0x10)
r1 = socket$igmp6(0xa, 0x3, 0x2)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000c80)={'lo\x00', <r3=>0x0})
ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f00000020c0)={@rand_addr=' \x01\x00', 0x80, r3})
ioctl$sock_inet6_SIOCDIFADDR(r1, 0x8936, &(0x7f00000000c0)={@loopback, 0x80, r3})

3m2.3459547s ago: executing program 3 (id=1165):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
ioctl$TCSETS(0xffffffffffffffff, 0x5402, &(0x7f0000000000)={0x401, 0x0, 0x10000, 0xb998, 0x0, "194f2f83c2e798c3584770116cddc8819592b1"})
write$tun(r0, &(0x7f0000000000)=ANY=[], 0x42)

3m1.942876458s ago: executing program 7 (id=1169):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x6)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
r1 = syz_open_procfs(0x0, &(0x7f0000000140)='stat\x00')
read$FUSE(r1, 0x0, 0x0)

3m1.765916032s ago: executing program 3 (id=1170):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xca0fb000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000003c0)=@bridge_getneigh={0x28, 0x1e, 0x3c964e403b131b43, 0x0, 0x0, {}, [@IFLA_MASTER={0x8}]}, 0x28}}, 0x0)

3m1.55758227s ago: executing program 7 (id=1171):
setxattr$trusted_overlay_upper(0x0, 0x0, 0x0, 0x835, 0x1)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan0\x00'})
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl(r0, 0x8b32, &(0x7f0000000040))

3m0.60228488s ago: executing program 7 (id=1174):
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x22004006, &(0x7f00000010c0)={[{@jqfmt_vfsold}, {@nouid32}, {@nobh}, {@stripe={'stripe', 0x3d, 0xffff}}, {@block_validity}, {@grpjquota, 0x22}], [], 0x2}, 0xc4, 0x46f, &(0x7f0000000940)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
write$binfmt_script(r0, &(0x7f0000000080)={'#! ', './file0'}, 0xb)

2m58.015719804s ago: executing program 7 (id=1183):
syz_open_dev$tty1(0xc, 0x4, 0x1)
setpriority(0x0, 0x0, 0xfffffffffffffffc)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f00000000c0)=0x3)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYRES32], 0x0, 0x3, 0x0, 0x0, 0x41000, 0x40, '\x00', 0x0, 0x2}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x102}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
getpid()
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x8000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000040))
add_key$fscrypt_v1(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_SET_PIT2(r1, 0x4070aea0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{0x5, 0x0, 0x4, 0x0, 0x0, 0x4, 0x0, 0x0, 0x2, 0x4, 0xff}, {0xfffffffe, 0x6, 0x1, 0x0, 0x0, 0x4, 0x0, 0x8, 0x2, 0x0, 0x0, 0x0, 0x800000000000000}, {0xffffffff, 0x0, 0x0, 0x4, 0xff, 0x2, 0x4, 0x0, 0x0, 0x0, 0x1, 0x0, 0xffe}], 0xfffffefc})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000003c0)={[0x0, 0x0, 0x4000000000000, 0x40, 0x0, 0x1, 0x2004cb, 0x0, 0x2, 0x1, 0x0, 0x9, 0x400000000000000], 0xdddd0000, 0x100000})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x2000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, 0x0, 0x0)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
ioctl$TCSETSW2(0xffffffffffffffff, 0x80047456, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
fchdir(r5)
mkdir(&(0x7f0000000100)='./control\x00', 0x0)

2m45.74779081s ago: executing program 35 (id=1170):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xca0fb000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000003c0)=@bridge_getneigh={0x28, 0x1e, 0x3c964e403b131b43, 0x0, 0x0, {}, [@IFLA_MASTER={0x8}]}, 0x28}}, 0x0)

2m42.450940913s ago: executing program 36 (id=1183):
syz_open_dev$tty1(0xc, 0x4, 0x1)
setpriority(0x0, 0x0, 0xfffffffffffffffc)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f00000000c0)=0x3)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYRES32], 0x0, 0x3, 0x0, 0x0, 0x41000, 0x40, '\x00', 0x0, 0x2}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x102}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
getpid()
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x8000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000040))
add_key$fscrypt_v1(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$KVM_SET_PIT2(r1, 0x4070aea0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000100)={[{0x5, 0x0, 0x4, 0x0, 0x0, 0x4, 0x0, 0x0, 0x2, 0x4, 0xff}, {0xfffffffe, 0x6, 0x1, 0x0, 0x0, 0x4, 0x0, 0x8, 0x2, 0x0, 0x0, 0x0, 0x800000000000000}, {0xffffffff, 0x0, 0x0, 0x4, 0xff, 0x2, 0x4, 0x0, 0x0, 0x0, 0x1, 0x0, 0xffe}], 0xfffffefc})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000003c0)={[0x0, 0x0, 0x4000000000000, 0x40, 0x0, 0x1, 0x2004cb, 0x0, 0x2, 0x1, 0x0, 0x9, 0x400000000000000], 0xdddd0000, 0x100000})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x2000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, 0x0, 0x0)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
ioctl$TCSETSW2(0xffffffffffffffff, 0x80047456, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
fchdir(r5)
mkdir(&(0x7f0000000100)='./control\x00', 0x0)

1m30.489765372s ago: executing program 4 (id=1415):
r0 = syz_usb_connect$cdc_ncm(0x0, 0x76, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000020000402505a1a44000010203010902640002010000000904010001020d0000052406000105240000000d240f0100000000000000000006241a00000008241c00000008000905810300020000000904010000020d000009040101"], 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)

1m28.838316104s ago: executing program 4 (id=1421):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x101800, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
capset(0x0, 0x0)
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000006540)='./file1\x00', 0x2a08800, &(0x7f0000000040)=ANY=[], 0x6, 0x6b0, &(0x7f0000002040)="$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")
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
ioperm(0x7, 0x33, 0x3)
syz_clone3(0x0, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
syz_open_dev$MSR(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x6)
ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000001e00)=ANY=[@ANYBLOB="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"])

1m27.817743792s ago: executing program 4 (id=1428):
r0 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r0, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
mount$9p_unix(0x0, &(0x7f0000000000)='\xe9\x1fq\x89Y\x1e\x923aK\x00', &(0x7f0000000040), 0x0, &(0x7f0000000180))

1m27.08251235s ago: executing program 4 (id=1431):
bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0x4008af12, 0x0)
ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, &(0x7f0000000240))
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000dc0)={0x0, 0x3, 0x1000002, 0x0, 0xff, "d4e9002b2c000000ff00"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup(r1)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000000c0)=0x3)
dup3(r0, r2, 0x0)
r3 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000000)=0x13)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, r2, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff}, 0x94)
r4 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000840), 0x1a01, 0x0)
ioctl$EVIOCGPROP(r4, 0x40047438, &(0x7f0000000180)=""/246)
pwritev(r4, &(0x7f00000002c0)=[{&(0x7f0000000500)="0000c1ec5750e74b44", 0x9}, {&(0x7f0000000640)='hQ', 0x2}, {0x0}], 0x3, 0xffffffff, 0x4)

1m26.35818602s ago: executing program 4 (id=1434):
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f0000000140)={0xa, 0x4e22}, 0x1c)
listen(0xffffffffffffffff, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x240540c7, &(0x7f0000000200)={0xa, 0x4e22, 0x0, @loopback}, 0x1c)
pipe(&(0x7f0000000140)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = socket(0x10, 0x803, 0x6)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000200)={'lo\x00', <r5=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=@ipv6_newaddr={0x34, 0x14, 0x9535393fea6295b5, 0x70bd27, 0x25dfdbff, {0xa, 0x40, 0x0, 0xff, r5}, [@IFA_LOCAL={0x14, 0x2, @loopback}, @IFA_RT_PRIORITY={0x8, 0x9, 0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x2004c041}, 0x400c0c0)
write$binfmt_misc(r2, &(0x7f0000000000), 0xfffffecc)
splice(r1, 0x0, r3, 0x0, 0x8001, 0xd)

1m25.013579615s ago: executing program 4 (id=1442):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x2d)
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
r5 = getpid()
prctl$PR_SET_PTRACER(0x59616d61, r5)

1m9.662832876s ago: executing program 37 (id=1442):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x2d)
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
r5 = getpid()
prctl$PR_SET_PTRACER(0x59616d61, r5)

1m7.865023427s ago: executing program 5 (id=1493):
io_submit(0x0, 0x1, &(0x7f0000000580)=[&(0x7f0000000200)={0x1000000, 0x0, 0x700000000000000, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2}])
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000006c0), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000280)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB='`\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000000000000000007000000080001006e00000008000300", @ANYRES32=r3, @ANYBLOB="0c0099000000000000000000050053000100000014000400776c616e310000000000000000000000140006"], 0x60}}, 0x0)

1m6.750549638s ago: executing program 5 (id=1497):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000740), 0x20001, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000080)=@generic={&(0x7f0000000040)='./file0\x00'}, 0x18)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000016000/0x18000)=nil, &(0x7f0000000000)=[@text16={0x10, &(0x7f00000000c0)="b882008ee8f3cf66b80500000066b9f10000000f01c10fc7ba8c9eba610066ed0f01f766b80500000066b90b0000000f01c1ba6100eddfdfbaa10066b80098000066ef", 0x43}], 0x1, 0x5c, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

1m5.170756647s ago: executing program 5 (id=1500):
r0 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
setsockopt$bt_rfcomm_RFCOMM_LM(r0, 0x12, 0x3, &(0x7f0000000080)=0x69, 0x4)

1m4.230266417s ago: executing program 5 (id=1503):
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2048c5, &(0x7f00000008c0)={[{@shortname_mixed}, {@utf8no}, {@uni_xlate}, {@shortname_winnt}, {@fat=@sys_immutable}, {@utf8no}, {@utf8}, {@fat=@flush}, {@utf8}, {@shortname_mixed}, {@fat=@dmask={'dmask', 0x3d, 0x90de}}, {@numtail}]}, 0x0, 0x2ab, &(0x7f0000000980)="$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")
r0 = syz_open_procfs(0x0, &(0x7f0000000540)='mounts\x00')
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000500)='./file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x1333404, 0x0)
mount$bind(&(0x7f0000000300)='./file0\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x11080, 0x0)
mount$bind(&(0x7f0000000240)='.\x00', &(0x7f0000000280)='./file0\x00', 0x0, 0x1005848, 0x0)
read$FUSE(r0, &(0x7f0000002c00)={0x2020}, 0x2020)

1m3.089811927s ago: executing program 5 (id=1506):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000280)={@mcast1, 0x800, 0x0, 0x103, 0x9}, 0x20)
setsockopt$inet6_int(r0, 0x29, 0x1000000000021, &(0x7f0000000040)=0x5, 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0x3c, 0x0, 0x0)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4000000)
sendmsg$inet6(r0, &(0x7f0000000100)={&(0x7f00000001c0)={0xa, 0x80c6, 0x80000, @remote, 0xfffffffd}, 0x1c, 0x0}, 0xc4)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080))
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r4, 0x10e, 0x1, 0x0, 0x0)
r5 = socket$inet6(0xa, 0x3, 0x87)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r6, 0x8946, &(0x7f00000004c0)={'xfrm0\x00', &(0x7f0000000480)=@ethtool_cmd={0x17}})
clock_settime(0x61c928c3e3727be3, &(0x7f0000007740))
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000280)={{{@in6=@private2, @in=@rand_addr=0x64010101, 0x0, 0xfffe, 0x4e20, 0x0, 0x2}, {0x0, 0xfffffffffffffffe, 0x2, 0x0, 0x0, 0x0, 0x10000000000, 0x1ff}, {0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0x0, 0x1, 0x1, 0x2}, {{@in=@rand_addr=0x64010101, 0x0, 0x6c}, 0x2, @in=@remote, 0x0, 0x2, 0x0, 0xfc, 0xffdffffc, 0x1000000}}, 0xe8)
connect$inet6(r5, 0x0, 0x0)
socket(0xa, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="040000000400000004000000"], 0x48)

1m2.362516838s ago: executing program 5 (id=1510):
syz_usb_control_io$uac1(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = eventfd(0x7)
syz_read_part_table(0x104e, &(0x7f0000002100)="$eJzsz9GpwjAYBeDT3tvGPjmCdSgXcBJxHGdxFWeItCXiAiLC9z0kPyfJgYTvumRe979k954PQxuS831+vA7++yTTNk+tYw2TbU2XrrXXei11PKQkGZMc+5L98rBbrp1uH/4dAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPyEZwAAAP//sKoJEw==")
ioctl$VHOST_SET_VRING_CALL(r0, 0x4008af21, &(0x7f0000000000)={0x0, r1})

59.433248011s ago: executing program 38 (id=1510):
syz_usb_control_io$uac1(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = eventfd(0x7)
syz_read_part_table(0x104e, &(0x7f0000002100)="$eJzsz9GpwjAYBeDT3tvGPjmCdSgXcBJxHGdxFWeItCXiAiLC9z0kPyfJgYTvumRe979k954PQxuS831+vA7++yTTNk+tYw2TbU2XrrXXei11PKQkGZMc+5L98rBbrp1uH/4dAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPyEZwAAAP//sKoJEw==")
ioctl$VHOST_SET_VRING_CALL(r0, 0x4008af21, &(0x7f0000000000)={0x0, r1})

14.571575981s ago: executing program 1 (id=1607):
r0 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2b, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0x3}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x4}}]}, 0x38}}, 0x0)
r4 = socket(0x400000000010, 0x3, 0x0)
r5 = socket(0x10, 0x803, 0x0)
r6 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000480)=@newtfilter={0xc4, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {0xe, 0x7}, {}, {0x7}}, [@filter_kind_options=@f_u32={{0x8}, {0x98, 0x2, [@TCA_U32_SEL={0x94, 0x5, {0x7, 0xef, 0x8, 0x8, 0x5, 0x809, 0x7, 0x0, [{0x1000, 0x4, 0x401, 0x6}, {0x8, 0x7, 0x1008, 0x5}, {0xfffffff9, 0x243, 0x7ffd, 0x6}, {0x7fde, 0x40, 0x52, 0x3ff}, {0x5, 0x200b, 0x8, 0x3e}, {0x6, 0x4, 0x12c5, 0x8}, {0x317, 0x0, 0x0, 0x8001}, {0x1, 0x1800004, 0xa523}]}}]}}]}, 0xc4}, 0x1, 0x0, 0x0, 0x80}, 0xc040)
r8 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r9=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=@gettfilter={0x5c, 0x2e, 0x205, 0x70bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r9, {0xc, 0x4}, {0x0, 0xfff1}, {0xfff3, 0x10}}, [{0x8}, {0x8, 0xb, 0xffffff7f}, {0x8, 0xb, 0x5}, {0x8, 0xb, 0x7}, {0x8, 0xb, 0x9}, {0x8, 0xb, 0x3}, {0x60, 0xb, 0x3}]}, 0x5c}, 0x1, 0x0, 0x0, 0x5}, 0x4041080)

12.695024505s ago: executing program 1 (id=1610):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000090024206d041cc340000000000109022400010000a00009040000010301010009210008000122010009058103"], 0x0)
socket$netlink(0x10, 0x3, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x14, &(0x7f00000002c0)=ANY=[@ANYBLOB, @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffe5b7"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000500)={r2}, 0xc)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000680)=@newsa={0xf0, 0x10, 0x713, 0x70bd25, 0x0, {{@in6=@mcast2, @in6=@rand_addr=' \x01\x00', 0x0, 0x8, 0x0, 0x2, 0x2, 0x0, 0x0, 0x3b, 0x0, 0xee00}, {@in=@loopback, 0x4d2, 0x32}, @in=@initdev={0xac, 0x1e, 0x8, 0x0}, {0x2, 0x0, 0x0, 0x2, 0x0, 0x1c00000000000}, {0x19df, 0x0, 0x0, 0xffffffffffffffff}, {}, 0x70bd29, 0x0, 0xa, 0x2}}, 0xf0}}, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000002c0)={0x24, &(0x7f0000000380)={0x0, 0x0, 0x9, {0x9, 0x0, "2a53fb8991f8e0"}}, 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000001640)={0x24, 0x0, 0x0, &(0x7f0000001bc0)={0x0, 0x22, 0x1, {[@main=@item_012={0x0, 0x0, 0x9}]}}, 0x0}, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x20040, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
r7 = ioctl$KVM_GET_STATS_FD_cpu(r6, 0xaece)
preadv(r7, &(0x7f0000003300)=[{&(0x7f0000000040)=""/26, 0x1a}, {&(0x7f00000063c0)=""/4111, 0x1005}], 0x1a7, 0x0, 0x7fff)
getuid()
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000840)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2, &(0x7f0000000280)={[{@jqfmt_vfsold}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x4000000}}, {@nombcache}, {@noload}, {@debug}, {@max_batch_time={'max_batch_time', 0x3d, 0x1}}, {@init_itable_val={'init_itable', 0x3d, 0x601}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x800}}, {@bsdgroups}, {@barrier_val={'barrier', 0x3d, 0x53}}]}, 0xfa, 0x477, &(0x7f0000001380)="$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")
r8 = syz_open_procfs(0x0, &(0x7f0000000000)='pagemap\x00')
open_tree(0xffffffffffffff9c, 0x0, 0x89901)
r9 = socket$packet(0x11, 0x3, 0x300)
getsockopt$packet_int(r9, 0x107, 0x12, 0x0, &(0x7f0000001600))
r10 = fanotify_init(0x0, 0x0)
fanotify_mark(r10, 0x1, 0x40001019, r8, 0x0)
r11 = syz_open_procfs(0x0, &(0x7f0000000380)='oom_adj\x00')
quotactl$Q_SETQUOTA(0xffffffff00001000, 0x0, 0x0, 0x0)
read$FUSE(r11, &(0x7f0000001800)={0x2020}, 0x2020)

11.282108328s ago: executing program 8 (id=1614):
mkdir(&(0x7f0000000000)='./cgroup/../file0/file0\x00', 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000380)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r1, &(0x7f0000000040), 0x12)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

9.922350331s ago: executing program 8 (id=1617):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$KVM_SET_MSRS(r2, 0x4140aecd, &(0x7f0000000100)=ANY=[])

9.778389786s ago: executing program 9 (id=1618):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = socket$packet(0x11, 0x2, 0x300)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000001000)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x44, 0x0, 0x0, 0x0}, 0x94)
setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f0000000180)=r2, 0x4)
syz_emit_ethernet(0x1e, &(0x7f0000000200)=ANY=[], 0x0)

9.326811841s ago: executing program 2 (id=1619):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x42002)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x0, 0x0, 'queue0\x00', 0xff})
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000100)=ANY=[@ANYBLOB="b405000000000000791089000000000007000000000000009500000000000000cb548074db0bcdeb2abeb974f26c4262b62bec2f89f72500088e709e9534de8c54da544091f90bd4"], 0x0, 0x5}, 0x94)
write$sndseq(r0, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32}], 0xffc8)

9.162088525s ago: executing program 1 (id=1620):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
mprotect(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x89a1, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
ioctl$KVM_GET_IRQCHIP(r1, 0xc208ae62, &(0x7f0000000500)={0x2, 0x0, @pic={0xc, 0x1, 0x3, 0x8, 0xff, 0x5, 0x7, 0x9, 0x33, 0x0, 0x7, 0x7, 0x5, 0xf, 0x40, 0x7}})

8.738614106s ago: executing program 9 (id=1621):
futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000048000), 0x0)
mount(0x0, &(0x7f0000000280)='./cgroup/../file0\x00', &(0x7f00000002c0)='openpromfs\x00', 0x8, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='io\x00')
preadv(r0, &(0x7f00000001c0)=[{&(0x7f0000000340)=""/230, 0xe6}], 0x1, 0x401, 0x9)

8.738178259s ago: executing program 8 (id=1622):
syz_mount_image$udf(&(0x7f0000000000), &(0x7f00000094c0)='./file1\x00', 0x0, &(0x7f0000001940)=ANY=[], 0x1, 0xc25, &(0x7f0000002580)="$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")
symlink(&(0x7f00000005c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', &(0x7f00000002c0)='.\x02\x00')

8.521263869s ago: executing program 2 (id=1623):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0x1, 0x3}, 0x5d)

8.018712359s ago: executing program 1 (id=1625):
setsockopt(0xffffffffffffffff, 0x1, 0x10000000000009, &(0x7f0000000100)="0100dd", 0x3)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000000)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r1, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r2, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

7.853037902s ago: executing program 2 (id=1626):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x101800, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
capset(0x0, 0x0)
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000006540)='./file1\x00', 0x2a08800, &(0x7f0000000040)=ANY=[], 0x6, 0x6b0, &(0x7f0000002040)="$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")
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
ioperm(0x7, 0x33, 0x3)
syz_clone3(0x0, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
syz_open_dev$MSR(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xa, 0x3, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x94)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x6)
ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000001e00)=ANY=[@ANYBLOB="0700000000000000070000000000000005000000050000000f0000000b00000001000000000000000000000000000000000000800800000000000000fbffffff000000000800000001010000000000000000000000000000000000c0090000000d0000009e05000007000000050000000100000000000000000000000000000019000080050000000300000008000000d4195340ffffff7f080000000000000000000000000000000e000040030000000000000009000000c1cd0000070000000600"/205])

7.501455211s ago: executing program 8 (id=1627):
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x3938700}, {0x0, 0x3938700}}, 0x0)
timer_create(0x0, &(0x7f0000000180)={0x0, 0x13, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000240)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000340)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(cipher_null)\x00'}, 0x58)
r2 = accept$alg(r1, 0x0, 0x0)
r3 = fcntl$dupfd(r2, 0x406, r2)
read$FUSE(r3, &(0x7f00000040c0)={0x2020, 0x0, 0x0, 0x0, <r4=>0x0}, 0x29bb9)
write$FUSE_ATTR(r3, &(0x7f0000000280)={0x78, 0xfffffffffffffff5, 0x0, {0x2, 0x3, 0x0, {0x0, 0x6, 0x400000000000000b, 0x0, 0x7ff, 0x2, 0x2, 0xd, 0x5, 0xa000, 0xa40, 0x0, r4, 0x3001, 0x2}}}, 0xffffff03)

7.28620673s ago: executing program 9 (id=1628):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000240)='./file2\x00', 0x0, &(0x7f0000000080)={[{@barrier_val={'barrier', 0x3d, 0x7}}]}, 0xc1, 0x7b7, &(0x7f00000007c0)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='pids.current\x00', 0x275a, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
ftruncate(r0, 0xc17a)
syz_open_procfs(0xffffffffffffffff, &(0x7f00000021c0)='clear_refs\x00')
fadvise64(r0, 0x0, 0x0, 0x4)

7.235411248s ago: executing program 0 (id=1629):
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
mount$nfs4(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='rdma'])

7.205667632s ago: executing program 1 (id=1630):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000090024206d041cc340000000000109022400010000a00009040000010301010009210008000122010009058103"], 0x0)
socket$netlink(0x10, 0x3, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x14, &(0x7f00000002c0)=ANY=[@ANYBLOB, @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffe5b7"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000500)={r2}, 0xc)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000680)=@newsa={0xf0, 0x10, 0x713, 0x70bd25, 0x0, {{@in6=@mcast2, @in6=@rand_addr=' \x01\x00', 0x0, 0x8, 0x0, 0x2, 0x2, 0x0, 0x0, 0x3b, 0x0, 0xee00}, {@in=@loopback, 0x4d2, 0x32}, @in=@initdev={0xac, 0x1e, 0x8, 0x0}, {0x2, 0x0, 0x0, 0x2, 0x0, 0x1c00000000000}, {0x19df, 0x0, 0x0, 0xffffffffffffffff}, {}, 0x70bd29, 0x0, 0xa, 0x2}}, 0xf0}}, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000002c0)={0x24, &(0x7f0000000380)={0x0, 0x0, 0x9, {0x9, 0x0, "2a53fb8991f8e0"}}, 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000001640)={0x24, 0x0, 0x0, &(0x7f0000001bc0)={0x0, 0x22, 0x1, {[@main=@item_012={0x0, 0x0, 0x9}]}}, 0x0}, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x20040, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
r7 = ioctl$KVM_GET_STATS_FD_cpu(r6, 0xaece)
preadv(r7, &(0x7f0000003300)=[{&(0x7f0000000040)=""/26, 0x1a}, {&(0x7f00000063c0)=""/4111, 0x1005}], 0x1a7, 0x0, 0x7fff)
getuid()
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000840)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2, &(0x7f0000000280)={[{@jqfmt_vfsold}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x4000000}}, {@nombcache}, {@noload}, {@debug}, {@max_batch_time={'max_batch_time', 0x3d, 0x1}}, {@init_itable_val={'init_itable', 0x3d, 0x601}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x800}}, {@bsdgroups}, {@barrier_val={'barrier', 0x3d, 0x53}}]}, 0xfa, 0x477, &(0x7f0000001380)="$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")
r8 = syz_open_procfs(0x0, &(0x7f0000000000)='pagemap\x00')
open_tree(0xffffffffffffff9c, 0x0, 0x89901)
r9 = socket$packet(0x11, 0x3, 0x300)
getsockopt$packet_int(r9, 0x107, 0x12, 0x0, &(0x7f0000001600))
r10 = fanotify_init(0x0, 0x0)
fanotify_mark(r10, 0x1, 0x40001019, r8, 0x0)
syz_open_procfs(0x0, &(0x7f0000000380)='oom_adj\x00')
quotactl$Q_SETQUOTA(0xffffffff00001000, 0x0, 0x0, 0x0)

5.550348483s ago: executing program 2 (id=1631):
bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0x4008af12, 0x0)
ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, &(0x7f0000000240))
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000dc0)={0x0, 0x3, 0x1000002, 0x0, 0xff, "d4e9002b2c000000ff00"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup(r1)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000000c0)=0x3)
dup3(r0, r2, 0x0)
r3 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000000)=0x13)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, r2, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff}, 0x94)
r4 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000840), 0x1a01, 0x0)
ioctl$EVIOCGPROP(r4, 0x40047438, &(0x7f0000000180)=""/246)
pwritev(r4, &(0x7f00000002c0)=[{&(0x7f0000000500)="0000c1ec5750e74b44", 0x9}, {0x0}, {&(0x7f0000000780)="4eeaa1d4dab2f268753f23d4b6119c", 0xf}], 0x3, 0xffffffff, 0x4)

3.980037887s ago: executing program 0 (id=1632):
pipe(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$nl_route(0x10, 0x3, 0x0)
write(0xffffffffffffffff, &(0x7f0000000000)="fc0000001c000705ab092509b86813000aab080102000000b85b0e93210001c0f0060848050000010000000000039815fa2c53c28648000000b937799f377a00bc000c00f0036cdf0db400600033d44000040060", 0x54)
write$binfmt_misc(r1, &(0x7f0000000000), 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x8001, 0xd)

3.91472931s ago: executing program 9 (id=1633):
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f0000000480)={[{@usrquota}, {@nodioread_nolock}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nogrpid}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x56a, &(0x7f00000015c0)="$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")
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000700)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x3000000, &(0x7f0000000800)={[{@usrjquota_path={'usrjquota', 0x3d, './file0'}}, {@grpjquota_path={'grpjquota', 0x3d, './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa'}}, {@inlinecrypt}, {@journal_async_commit}, {@sysvgroups}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x2}}, {@bh}]}, 0x1, 0x512, &(0x7f0000000c40)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x42)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r0, 0x8004587d, &(0x7f0000000080)={@desc={0x1, 0x0, @desc2}})
fsopen(0x0, 0x1)
symlink(0x0, &(0x7f0000000640)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
unlink(0x0)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, 0xffffffffffffffff)
renameat2(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0xffffffffffffff9c, &(0x7f0000001240)='./file0/file0\x00', 0x2)

3.482040365s ago: executing program 2 (id=1634):
syz_mount_image$udf(&(0x7f00000000c0), &(0x7f0000000c80)='./file0\x00', 0x800400, &(0x7f0000000200)=ANY=[@ANYRES64=0x0, @ANYRESHEX, @ANYBLOB="2c73686f727461642c7569643d69676e6f72652c73686f727461642c757466382c00c686dcc61a339255aaa76420c8c424db3c1339e528df2219ac3c0bc1e29d4d297bd457b47f230ae905dcc992ea60d614d13525d6b39ed99cc32fb16f7bbc6d4109d7db08e9355cd3d2d31136bd458b41cc1f965abd948802718f125b7c394c53eafdf096e17380b4bc297c66e70145e2e44274e41cfaf97f93268479be0eca9244b04384665d20cb8cdbc5c5d74600f04aa994741ec3770324330d4b2146b45f974feb9b1f7b641fe77a90d3c90126fb747bd60269db11c6ee269b6de27cf8ae875a392e9180803219389350fcfee3ed285b2b4a02056201c499d1bdeb8ee008a58ef356649d6c"], 0x4, 0xc24, &(0x7f0000000d00)="$eJzs3V9oXOl5B+D3myOtJW/TzG42zh/nYmAD2Xqzi2R51yregBwrIgvGa1ZWLhYKGluyO6w0kiW5eEMJLiSUkLa45CKXNWwCvauvWggNuFfbEgKiV6UXxW03Zns3CaQtvViVM/ONNNLalrK2JXn9PMb+nTnznpnvzOrVnDN7zpwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACK+/o2TQ8Npr0cBAOymM5NvDo14/weAJ8o5+/8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGwvRRHfjRTv/qCVptu3OwZON5pXrk6NT9x9scEUKSpRtOvLvwPDR0eOvfLq8dFu3n/5h+0L8cbkuZO1Uwvzi0uzy8uzM7WpZuPCwszsjh/hQZff6kj7BajNv31l5uLF5drRl0c23X21eufA04eqJ0YPj7zVrZ0an5iY7Knp6//Yz/4R6eE9FJ8gT0UR34wU7730QapHRCUevBe2+d3xqA1GX9l/7ZWYGp9or8hco95cKe9MlVzVF1HtWWis2yO70IsPZCziWvnfqRzwkXL1JhfrS/Xzc7O1s/WllcZKY6GZKp3RlutTjUqMpojFiGgVez149pv+KOJYpLjz61Y6HxFFtw9ePDP55tDI9g/QtwuDvMfTVouI1XgMehb2qQNRxF9Gih9OD8WF3Ffttnk/4itlvhZxucxbKa7n26n8BTEa8SvvJ/BY64sifhEpFlIrzXR7v71defpbtdebFxd6arvblY/9/sFusm3CPjYQRZxvb/G30sf/sAsAAAAAAAAAAAAA2B1F/DRS3Jx/IS1G7zmljeal2rn6+bnOUcHdY/9ream1tbW1aupkLedQzrGcZ3NO51zMeS3n9Zw3ct7MeSvnas7bOVs5o5KfP2ct51DOsZxnc07nXMx5Lef1nDdy3sx5K+dqzts5WznDeU8AAAAAAAAAAAAAAAAAAAA8ZINRxESkuPHuH7WvKx3t69J/+sTomfHneq8Z/7ltHqesfTkifho7uyZvf77WeKqUfx7+egHbG4givpOv//cnez0YAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABgX6hEEd+NFD/6TStFioixiOno5O1ir0cHAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAJQGUhGnIsV/fWOgfXs1Ir4YER+ulX8i/ndtq70eMQAAAAAAAAAAAAAAAAAAAHwCpSIuR4ofv9dK1Yi4Wr1z4OlD1ROjh0feKqKIVJb01r8xee5k7dTC/OLS7PLy7Extqtm4sDAzu9OnGzjdaF65OjU+8UhWZluDj3j8gwOnFhbfWWpc+sOVu95/cODk+eWVpfqFu98dg9EXMdQ750h7wFPjE+1BzzXqzfaiqXKPAfZF1Ha6MgAAAAAAAAAAAAAAAAAAAOwbB1MR45Hi+Z8dS93zxvs65/x/qnOrWK/9yR9vfBfA3Jbs6v3+gJ1Mp50O9Ej7xPva1PjExGTP7L7+j5aWY0qpiM9GisN///n2+fApDt713Piy7s8ixej/Hct11cNl3dimqoEjU+MTtTMLzZdOzs0tXKiv1M/PzdYmF+sXdvzFAQAAAAAAAAAAAAAAAAAAAHAfB1MRfx4pjr2+mrrXnc/n//d1bvWc//9aRPey8wNpc65rn9v/u+1z+zvTnz4x+vrR5+81/1Gc/1+OKaUiPowUz/zV59vX0++e/z+0pbas+3Gk+MX3vpTrKk+VdcPd1ek84sXG3OxQWftipPj+2W5ttGtfzbWf2agdLmv/IVI8+weba4/n2uc2ao+WtXcixcSZu9d+dqN2pKwdjBRf/dNat/ZgWfv1XHtoo/blCwtzMzt9eXkylf3/b5Hiy8PfTN2f+Xv2f8/3f1zbkus+0vP3n35Y/V/tmXct9/Va7v/hbfr/cqT4i+tfynWd3jua73+m/e9G/38/UvzepzbXvpJrn92oHd7pasFeKvv/nyLF6u1/Wf+Zz/2fO2ujQ3v7/4t9m7O7XbBX/f9Mz7xqHtfIb/lawJNm+Z1vv12fm5tdMmHChIn1ib3+zQQ8auX2/39Hiq9dLlJ3PzZv//9O59bG/v//fGdj+//Elly3R9v/z/bMO5H3Wvr7IgZW5hf7PxcxsPzOt19qzNcvzV6abY6MjB7//WPDR48P9z/V3bnfmNrxawePu7L/344UP/mbf17/HHvz/v/dP/87uCXX7VH/f6Z3nTbt1+z4pYAnTtn/fx0p/vXGB+v/v+l+n/91P+d74fnNOdgt2qP+f65nXi3/M9oz74Ui4uROnwsAAAAAAAAAAB4TB1MRP4sUf9v6x/Vr3m8+/ie+3K3tPf7vXvbD9f8BgPsr3/8nI8XPD341db9DZifH/89syXV7dPzvoZ55M7t0XvOOX2QAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPiYUhRxIFK8+4NWul2UtzsGTjeaV65OjU/cfbHBFCkqUbTry78Dw0dHjr3y6vHRbt5/+YftC/HG5LmTtVML84tLs8vLszO1qWbjwsLM7I4f4UGX3+pI+wWozb99ZebixeXa0ZdHNt19tXrnwNOHqidGD4+81a2dGp+YmOyp6ev/2M/+EenhPRSfIE9FET+PFO+99EH69yKiEg/eC9v87njUBqOv7L/2SkyNT7RXZK5Rb66Ud6ZKruqLqPYsNNbtkV3oxQcyFnEtIirlgI+Uqze5WF+qn5+brZ2tL600VhoLzVTpjLZcn2pUYjRFLEZEq9jrwbPf9EcRfxcp7vy6lf6jiCi6ffDimck3h0a2f4C+XRjkPZ62WkSsxmPQs7BPHYginosUP5weiv8sOn3Vbpv3I75S5msRl8u8leJ6vp3KXxCjEb/yfgKPtb4o4mykWEit9H6Re7+9XXn6W7XXmxcXemq725WP/f7BbrJtwj42EEX8sr3F30q/9H4OAAAAAAAAAAAAAPtcEV+LFDfnX0jt80PXzyltNC/VztXPz3UO6+8e+1/LS62tra1VUydrOYdyjuU8m3M652LOazmv57yR82bOWzlXc97O2coZlfz8OWs5h3KO5TybczrnYs5rOa/nvJHzZs5bOVdz3s7ZyhmOkwYAAAAAAAAAAAAAAAAA4BGpRBHfixQ/+k0rrRWd68tORydvO88VPtH+PwAA//9mFkcG")
r0 = creat(&(0x7f0000000100)='./bus\x00', 0x0)
r1 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x6, 0x4002011, r1, 0x0)
ftruncate(r0, 0x201f)
writev(r1, &(0x7f0000000a40)=[{&(0x7f0000002500)='\f', 0x1}], 0x1)

3.279000006s ago: executing program 8 (id=1635):
r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x1, 0x2002)
writev(r0, &(0x7f00000003c0)=[{&(0x7f0000000380)="390000001300034700bb65e1c3ecffff010000000100000056000000", 0x1c}], 0x1)

2.520575567s ago: executing program 0 (id=1636):
r0 = openat$kvm(0xffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000240)=ANY=[@ANYBLOB="fe"])
ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f0000000240))

2.340041744s ago: executing program 8 (id=1637):
syz_mount_image$udf(&(0x7f0000000c40), &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='noadinicb,nostrict,mode=00000000000000000000004,uid=forget,noadinicb,umask=00000000000000040002000,lastblock=00000000000000000013,undelete,partition=00000000000000000005,\x00'], 0x43, 0xc11, &(0x7f0000000d00)="$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")
creat(&(0x7f0000000100)='./bus\x00', 0x44)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x301400, 0x0)
r0 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x49)
pwritev2(r0, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x78c00}], 0x1, 0x7a00, 0x0, 0x3)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004280)='.\x00', 0x0, 0x0)
getdents64(r1, &(0x7f0000000000)=""/48, 0x30)

1.8642131s ago: executing program 1 (id=1638):
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000280)='./file0\x00', 0x2008000, &(0x7f0000000000)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000"], 0x1, 0x2c0, &(0x7f0000000700)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000440)='./file0\x00', 0x1810714, &(0x7f0000000200)={[{@journal_dev={'journal_dev', 0x3d, 0xcd29}}, {@noblock_validity}, {@init_itable_val={'init_itable', 0x3d, 0x1002}}, {@journal_dev={'journal_dev', 0x3d, 0x2}}, {@oldalloc}, {@jqfmt_vfsold}, {@usrjquota, 0x5}, {@min_batch_time}, {@nodiscard}]}, 0x1, 0x451, &(0x7f0000000d00)="$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")
r2 = inotify_init()
r3 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r3, &(0x7f0000000080)={0x10, 0x0, 0x25dfdbfe, 0x80201469}, 0xc)
r4 = syz_open_procfs(0x0, &(0x7f0000000200)='net/netlink\x00')
read$msr(r4, &(0x7f0000000040)=""/59, 0xffb5)
r5 = openat$binder_debug(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/binder/transactions\x00', 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_SYNC_PTR(r5, 0xc0884123, &(0x7f00000002c0)={0x1, "f5aa58fe47809b57701b4a6e77745cf37bfba3ee5d69ea3b1909f6d17b75ed78b6a70b1972eee68c13ccdabf3ea228cb4a12b0c68e16287c85e74e7de7327742", {0x9, 0x80bc}})
inotify_add_watch(r2, &(0x7f00000001c0)='.\x00', 0x4000423)
openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x531000, 0x100)
bpf$PROG_LOAD(0x5, 0x0, 0x42a609a18949c2cf)
r6 = open(&(0x7f0000000040)='./file1\x00', 0x80242, 0x0)
write$FUSE_CREATE_OPEN(r6, &(0x7f0000000180)={0xa0, 0xfffffffffffffff5, 0x0, {{0x3, 0x1, 0x5, 0xa, 0x3, 0x1, {0x5, 0x17d, 0x8, 0x5, 0x100, 0x7cf4, 0x9, 0x7ffffffd, 0xfffffffe, 0x8000, 0x20000000, 0xee00, 0x0, 0x3ff, 0x1}}, {0x0, 0x11}}}, 0xa0)
ioctl$sock_SIOCSIFBR(r3, 0x8941, &(0x7f00000003c0)=@get={0x1, &(0x7f0000000380)=""/13, 0x401})
syz_open_dev$usbmon(&(0x7f0000000080), 0x4, 0x40000)
sendfile(r6, r6, &(0x7f0000000080)=0x2, 0x7f03)

1.658932163s ago: executing program 0 (id=1639):
capset(&(0x7f0000000080)={0x19980330}, &(0x7f0000000040)={0x200000, 0x200000, 0x3, 0x9, 0x2, 0x8a56})
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48)

1.658511603s ago: executing program 9 (id=1640):
unshare(0x4040600)
r0 = socket$nl_audit(0x10, 0x3, 0x9)
setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r0, 0x10e, 0x2, &(0x7f0000000040)=0x10, 0x4)

1.410551525s ago: executing program 2 (id=1641):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x101800, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
capset(0x0, 0x0)
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000006540)='./file1\x00', 0x2a08800, &(0x7f0000000040)=ANY=[], 0x6, 0x6b0, &(0x7f0000002040)="$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")
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
ioperm(0x7, 0x33, 0x3)
syz_clone3(0x0, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
syz_open_dev$MSR(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xa, 0x3, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x94)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x6)
ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000001e00)=ANY=[@ANYBLOB="0700000000000000070000000000000005000000050000000f0000000b00000001000000000000000000000000000000000000800800000000000000fbffffff000000000800000001010000000000000000000000000000000000c0090000000d0000009e05000007000000050000000100000000000000000000000000000019000080050000000300000008000000d4195340ffffff7f080000000000000000000000000000000e000040030000000000000009000000c1cd0000070000000600"/205])

1.040168897s ago: executing program 0 (id=1642):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e21, 0x3, @ipv4={'\x00', '\xff\xff', @loopback}, 0x4}, 0x1c)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e21, 0x659, @empty, 0x421630d3}, 0x1c)

910.733069ms ago: executing program 9 (id=1643):
syz_mount_image$hfsplus(&(0x7f0000000180), &(0x7f0000000100)='./file1\x00', 0x0, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x11, 0x6cb, &(0x7f0000001180)="$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")
creat(0x0, 0x4)
listxattr(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)

0s ago: executing program 0 (id=1644):
bpf$BPF_GET_MAP_INFO(0xf, 0x0, 0x0)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0x4008af12, 0x0)
ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, &(0x7f0000000240))
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000dc0)={0x0, 0x3, 0x1000002, 0x0, 0xff, "d4e9002b2c000000ff00"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup(r1)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000000c0)=0x3)
dup3(r0, r2, 0x0)
r3 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000000)=0x13)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, r2, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff}, 0x94)
r4 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000840), 0x1a01, 0x0)
ioctl$EVIOCGPROP(r4, 0x40047438, &(0x7f0000000180)=""/246)
pwritev(r4, &(0x7f00000002c0)=[{&(0x7f0000000500)="0000c1ec5750e74b44", 0x9}, {0x0}, {&(0x7f0000000780)="4eeaa1d4dab2f268753f23d4b6119c", 0xf}], 0x3, 0xffffffff, 0x4)

kernel console output (not intermixed with test programs):

284394][ T6592] FAT-fs (loop0): Directory bread(block 1285) failed
[  280.377055][ T6597] FAT-fs (loop0): Directory bread(block 1285) failed
[  280.384579][ T6597] FAT-fs (loop0): FAT read failed (blocknr 1281)
[  280.567023][ T6598] FAT-fs (loop0): Directory bread(block 1285) failed
[  280.574495][ T6598] FAT-fs (loop0): FAT read failed (blocknr 1281)
[  280.787254][ T6597] FAT-fs (loop0): Directory bread(block 1285) failed
[  282.620404][ T6609] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input9
[  282.884952][ T6614] loop4: detected capacity change from 0 to 256
[  284.603557][ T6614] FAT-fs (loop4): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[  285.935443][ T5459] usb 6-1: new full-speed USB device number 2 using dummy_hcd
[  285.955689][ T1933] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  285.995251][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  286.001868][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  286.196616][ T1933] usb 5-1: Using ep0 maxpacket: 32
[  286.222438][ T5459] usb 6-1: too many endpoints for config 0 interface 0 altsetting 254: 253, using maximum allowed: 30
[  286.234209][ T5459] usb 6-1: config 0 interface 0 altsetting 254 endpoint 0x81 has invalid wMaxPacketSize 0
[  286.244727][ T5459] usb 6-1: config 0 interface 0 altsetting 254 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  286.258445][ T5459] usb 6-1: config 0 interface 0 has no altsetting 0
[  286.265429][ T5459] usb 6-1: New USB device found, idVendor=044e, idProduct=120c, bcdDevice= 0.00
[  286.274686][ T5459] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  286.320531][ T1933] usb 5-1: config 0 has an invalid interface number: 42 but max is 0
[  286.329305][ T1933] usb 5-1: config 0 has no interface number 0
[  286.335807][ T1933] usb 5-1: config 0 interface 42 has no altsetting 0
[  286.368609][ T5459] usb 6-1: config 0 descriptor??
[  286.407584][ T1933] usb 5-1: New USB device found, idVendor=1b3d, idProduct=9313, bcdDevice=e0.d0
[  286.417187][ T1933] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  286.425588][ T1933] usb 5-1: Product: syz
[  286.429964][ T1933] usb 5-1: Manufacturer: syz
[  286.434767][ T1933] usb 5-1: SerialNumber: syz
[  286.493980][ T1933] usb 5-1: config 0 descriptor??
[  286.594142][ T1933] ftdi_sio 5-1:0.42: FTDI USB Serial Device converter detected
[  286.611419][ T1933] ftdi_sio ttyUSB0: unknown device type: 0xe0d0
[  286.772342][ T6634] netlink: 68 bytes leftover after parsing attributes in process `syz.2.183'.
[  286.997475][ T5459] hid-alps 0003:044E:120C.0003: hidraw0: USB HID v0.04 Device [HID 044e:120c] on usb-dummy_hcd.5-1/input0
[  287.125199][ T5459] usb 6-1: USB disconnect, device number 2
[  287.632196][ T6637] fido_id[6637]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/report_descriptor': No such file or directory
[  287.765732][ T6640] loop0: detected capacity change from 0 to 4096
[  287.927018][ T6640] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  288.850592][ T5814] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  289.121720][ T6664] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input10
[  290.022671][ T5876] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  290.092751][ T5871] usb 5-1: USB disconnect, device number 6
[  290.101815][ T5871] ftdi_sio 5-1:0.42: device disconnected
[  290.243672][ T5876] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21
[  290.258359][ T5876] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  290.267897][ T5876] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  290.396246][ T5876] usb 1-1: config 0 descriptor??
[  290.453030][ T5876] usbhid 1-1:0.0: couldn't find an input interrupt endpoint
[  290.494559][ T6681] netlink: 68 bytes leftover after parsing attributes in process `syz.4.196'.
[  291.069958][ T6688] loop5: detected capacity change from 0 to 256
[  291.254585][ T6688] exFAT-fs (loop5): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x5bae1814, utbl_chksum : 0xe619d30d)
[  291.268875][ T6688] exFAT-fs (loop5): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  291.429100][ T6688] exFAT-fs (loop5): valid_size(150994954) is greater than size(10)
[  291.439278][   T30] audit: type=1800 audit(1757698357.790:7): pid=6688 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.198" name="file1" dev="loop5" ino=1048619 res=0 errno=0
[  291.495638][   T30] audit: type=1800 audit(1757698357.830:8): pid=6688 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.198" name="file1" dev="loop5" ino=1048619 res=0 errno=0
[  291.579956][   T30] audit: type=1800 audit(1757698357.870:9): pid=6688 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.198" name="file1" dev="loop5" ino=1048619 res=0 errno=0
[  295.098197][ T5871] usb 1-1: USB disconnect, device number 2
[  295.189388][ T6716] loop4: detected capacity change from 0 to 128
[  295.353454][ T6716] ext4: Unknown parameter 'context'
[  295.371206][ T6718] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input11
[  295.428316][ T6718] loop5: detected capacity change from 0 to 256
[  295.476238][ T6718] FAT-fs (loop5): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[  296.288584][ T6728] netlink: 68 bytes leftover after parsing attributes in process `syz.2.208'.
[  297.350645][ T6746] loop0: detected capacity change from 0 to 128
[  297.466679][ T6737] loop4: detected capacity change from 0 to 4096
[  297.942465][ T6746] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  298.040941][ T6737] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  298.138631][ T6746] ext4 filesystem being mounted at /41/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  298.759655][ T6759] netlink: 4 bytes leftover after parsing attributes in process `syz.2.217'.
[  299.291176][ T6737] loop7: detected capacity change from 0 to 7
[  299.387515][ T5814] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  299.492025][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  299.501617][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[  299.571777][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  299.581458][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[  299.629760][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  299.639419][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[  299.680489][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  299.690148][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[  299.711749][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  299.721393][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[  299.810034][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  299.819632][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[  299.856177][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  299.865687][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[  299.875368][ T6737] ldm_validate_partition_table(): Disk read failed.
[  299.914937][    C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  299.924434][    C1] Buffer I/O error on dev loop7, logical block 0, async page read
[  299.948019][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  299.957621][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[  299.987261][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  299.996758][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[  300.074571][ T6737] Dev loop7: unable to read RDB block 0
[  300.103985][ T6737]  loop7: unable to read partition table
[  300.247040][ T6737] loop7: partition table beyond EOD, truncated
[  300.253558][ T6737] loop_reread_partitions: partition scan of loop7 (���������C�j̖�P=ý?�}X���	���%��`��ր���{��֐�ȵ4FLQk݊) failed (rc=-5)
[  300.461897][ T6769] loop5: detected capacity change from 0 to 512
[  300.593850][ T6769] EXT4-fs (loop5): Test dummy encryption mode enabled
[  300.701910][ T6769] EXT4-fs error (device loop5): __ext4_fill_super:5504: inode #2: comm syz.5.220: casefold flag without casefold feature
[  300.766988][ T6769] EXT4-fs (loop5): get root inode failed
[  300.773117][ T6769] EXT4-fs (loop5): mount failed
[  300.949256][ T6763] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  301.173192][ T6783] netlink: 68 bytes leftover after parsing attributes in process `syz.3.224'.
[  301.445258][ T5871] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[  301.673223][ T5871] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  301.683771][ T5871] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  301.776408][ T5871] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  301.786226][ T5871] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  301.794431][ T5871] usb 3-1: SerialNumber: syz
[  302.287466][ T5871] usb 3-1: 0:2 : does not exist
[  302.533592][ T5871] usb 3-1: USB disconnect, device number 2
[  302.748737][ T6000] udevd[6000]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  302.817061][ T6809] netlink: 4 bytes leftover after parsing attributes in process `syz.3.231'.
[  303.257207][ T6815] 9pnet_fd: Insufficient options for proto=fd
[  303.815191][ T1933] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  304.015650][ T1933] usb 1-1: device descriptor read/64, error -71
[  304.221495][ T6832] netlink: 68 bytes leftover after parsing attributes in process `syz.2.239'.
[  304.283433][ T1933] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  304.458676][ T1933] usb 1-1: device descriptor read/64, error -71
[  304.587320][ T1933] usb usb1-port1: attempt power cycle
[  307.096022][ T6858] netlink: 4 bytes leftover after parsing attributes in process `syz.3.246'.
[  307.355163][ T1933] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  307.599821][ T1933] usb 1-1: device not accepting address 5, error -71
[  308.614411][ T5817] Bluetooth: hci0: command 0x0406 tx timeout
[  308.621102][   T49] Bluetooth: hci2: command 0x0406 tx timeout
[  308.628736][ T5818] Bluetooth: hci1: command 0x0406 tx timeout
[  308.630449][ T5822] Bluetooth: hci4: command 0x0406 tx timeout
[  308.951736][ T6879] netlink: 68 bytes leftover after parsing attributes in process `syz.3.252'.
[  309.467666][ T6889] loop5: detected capacity change from 0 to 512
[  309.700961][ T6889] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  309.714615][ T6889] ext4 filesystem being mounted at /21/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  309.739789][ T6898] netlink: 4 bytes leftover after parsing attributes in process `syz.4.260'.
[  309.919163][ T6889] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #2: comm syz.5.256: corrupted inode contents
[  310.005516][ T6889] EXT4-fs error (device loop5): ext4_dirty_inode:6538: inode #2: comm syz.5.256: mark_inode_dirty error
[  310.059816][ T6889] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #2: comm syz.5.256: corrupted inode contents
[  310.135954][ T6889] EXT4-fs error (device loop5): __ext4_ext_dirty:206: inode #2: comm syz.5.256: mark_inode_dirty error
[  310.588950][ T6192] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  310.906661][ T6914] netlink: 68 bytes leftover after parsing attributes in process `syz.0.267'.
[  314.277247][ T6939] netlink: 4 bytes leftover after parsing attributes in process `syz.0.274'.
[  316.159127][ T6957] netlink: 68 bytes leftover after parsing attributes in process `syz.2.281'.
[  316.463374][ T6960] netlink: 'syz.0.282': attribute type 16 has an invalid length.
[  316.472456][ T6960] netlink: 'syz.0.282': attribute type 17 has an invalid length.
[  317.643851][ T6973] loop0: detected capacity change from 0 to 1024
[  317.702583][ T6973] EXT4-fs: Ignoring removed i_version option
[  317.709758][ T6973] EXT4-fs: inline encryption not supported
[  317.759443][ T6973] EXT4-fs (loop0): Test dummy encryption mode enabled
[  317.853424][ T6973] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  318.370091][ T5814] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  318.667240][ T6991] netlink: 4 bytes leftover after parsing attributes in process `syz.4.292'.
[  319.513750][ T7004] loop0: detected capacity change from 0 to 512
[  319.586336][ T7004] EXT4-fs: Ignoring removed i_version option
[  319.624614][ T7008] fuse: root generation should be zero
[  319.763161][ T7004] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  319.781247][ T7004] ext4 filesystem being mounted at /58/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  320.510732][ T5814] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  321.145187][ T5871] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  321.280136][ T7032] loop0: detected capacity change from 0 to 256
[  321.325689][ T5871] usb 6-1: Using ep0 maxpacket: 16
[  321.360154][ T5871] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  321.392853][ T7032] exFAT-fs (loop0): error, The cluster chain has a loop
[  321.400306][ T7032] exFAT-fs (loop0): failed to count the number of clusters in root
[  321.411316][ T7032] exFAT-fs (loop0): failed to recognize exfat type
[  321.416703][ T5871] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  321.458698][ T5871] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  321.514644][ T5871] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  321.594929][ T5871] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  321.646593][ T5871] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  321.683308][ T5871] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  321.731837][ T5871] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  321.797520][ T5871] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  321.817363][ T5871] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=245
[  321.835474][ T5871] usb 6-1: SerialNumber: syz
[  321.939273][ T5871] cdc_acm 6-1:1.0: Zero length descriptor references
[  321.946335][ T5871] cdc_acm 6-1:1.0: probe with driver cdc_acm failed with error -22
[  322.183081][ T5871] usb 6-1: USB disconnect, device number 3
[  322.913146][ T7038] loop0: detected capacity change from 0 to 2048
[  323.030219][ T7038] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  323.269646][ T7046] netlink: 4 bytes leftover after parsing attributes in process `syz.3.311'.
[  324.574446][ T7053] loop0: detected capacity change from 0 to 1024
[  328.728402][ T7081] loop5: detected capacity change from 0 to 256
[  328.975677][ T7081] exFAT-fs (loop5): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d)
[  328.994133][ T7081] exFAT-fs (loop5): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  329.081910][ T1933] kernel write not supported for file [eventfd] (pid: 1933 comm: kworker/0:2)
[  329.152823][ T7087] loop0: detected capacity change from 0 to 1024
[  329.240611][ T7087] EXT4-fs (loop0): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  329.324118][ T7087] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  329.506492][ T7087] EXT4-fs error (device loop0): ext4_xattr_inode_iget:437: inode #11: comm syz.0.327: missing EA_INODE flag
[  329.567651][ T7087] EXT4-fs (loop0): Remounting filesystem read-only
[  329.575185][ T7087] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  330.064308][ T5814] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  336.673136][ T7138] loop0: detected capacity change from 0 to 1024
[  336.707501][ T5826] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  336.744680][ T5826] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  336.754048][ T5826] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  336.779590][ T5826] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  336.791749][ T5826] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  336.867036][ T7138] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  337.327983][ T7149] netlink: 8 bytes leftover after parsing attributes in process `syz.3.349'.
[  337.549869][ T5814] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  338.624608][ T7137] chnl_net:caif_netlink_parms(): no params data found
[  338.926943][ T5826] Bluetooth: hci5: command tx timeout
[  339.415858][ T4220] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  339.711339][ T4220] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  339.951344][ T4220] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  340.019870][ T7178] loop5: detected capacity change from 0 to 16
[  340.079390][ T7178] erofs (device loop5): rootino(nid 36) is not a directory(i_mode 142735)
[  340.206874][ T4220] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  341.957177][ T5826] Bluetooth: hci5: command tx timeout
[  344.015786][ T5826] Bluetooth: hci5: command tx timeout
[  344.352337][ T7137] bridge0: port 1(bridge_slave_0) entered blocking state
[  344.360094][ T7137] bridge0: port 1(bridge_slave_0) entered disabled state
[  344.368038][ T7137] bridge_slave_0: entered allmulticast mode
[  344.377601][ T7137] bridge_slave_0: entered promiscuous mode
[  344.463420][ T7137] bridge0: port 2(bridge_slave_1) entered blocking state
[  344.472625][ T7137] bridge0: port 2(bridge_slave_1) entered disabled state
[  344.480555][ T7137] bridge_slave_1: entered allmulticast mode
[  344.490090][ T7137] bridge_slave_1: entered promiscuous mode
[  344.998187][ T7137] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  345.070728][ T7137] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  345.269786][ T4220] bridge_slave_1: left allmulticast mode
[  345.280061][ T4220] bridge_slave_1: left promiscuous mode
[  345.287036][ T4220] bridge0: port 2(bridge_slave_1) entered disabled state
[  345.356453][ T4220] bridge_slave_0: left allmulticast mode
[  345.362312][ T4220] bridge_slave_0: left promiscuous mode
[  345.372942][ T4220] bridge0: port 1(bridge_slave_0) entered disabled state
[  345.641426][ T7207] fuse: Bad value for 'fd'
[  345.887556][ T7210] process 'syz.5.370' launched './file0' with NULL argv: empty string added
[  346.001019][ T4220] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  346.044332][ T4220] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  346.055899][ T5826] Bluetooth: hci5: command tx timeout
[  346.108351][ T4220] bond0 (unregistering): Released all slaves
[  346.268535][ T7137] team0: Port device team_slave_0 added
[  346.401524][ T7137] team0: Port device team_slave_1 added
[  346.957993][ T7137] batman_adv: batadv0: Adding interface: batadv_slave_0
[  346.965338][ T7137] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  346.993191][ T7137] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  347.071272][ T7137] batman_adv: batadv0: Adding interface: batadv_slave_1
[  347.078539][ T7137] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  347.105340][ T7137] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  347.206719][ T4220] hsr_slave_0: left promiscuous mode
[  347.235250][ T4220] hsr_slave_1: left promiscuous mode
[  347.243262][ T4220] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  347.252319][ T4220] batman_adv: batadv0: Removing interface: batadv_slave_0
[  347.342872][ T4220] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  347.350939][ T4220] batman_adv: batadv0: Removing interface: batadv_slave_1
[  347.412655][ T4220] veth1_macvtap: left promiscuous mode
[  347.424122][ T4220] veth0_macvtap: left promiscuous mode
[  347.430991][ T4220] veth1_vlan: left promiscuous mode
[  347.436713][ T4220] veth0_vlan: left promiscuous mode
[  347.460541][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  347.467652][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  348.194497][ T7230] loop0: detected capacity change from 0 to 1024
[  348.625996][ T4220] team0 (unregistering): Port device team_slave_1 removed
[  348.672178][ T4220] team0 (unregistering): Port device team_slave_0 removed
[  349.966325][ T7137] hsr_slave_0: entered promiscuous mode
[  349.980140][ T7137] hsr_slave_1: entered promiscuous mode
[  350.101363][ T7249] loop5: detected capacity change from 0 to 1024
[  350.963909][ T3521] hfsplus: b-tree write err: -5, ino 8
[  352.683751][ T7137] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  352.793891][ T7137] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  352.916169][ T7137] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  353.088356][ T7137] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  355.258898][ T7288] netlink: 8 bytes leftover after parsing attributes in process `syz.4.397'.
[  356.574696][ T7137] 8021q: adding VLAN 0 to HW filter on device bond0
[  356.890787][ T7137] 8021q: adding VLAN 0 to HW filter on device team0
[  357.070978][ T4084] bridge0: port 1(bridge_slave_0) entered blocking state
[  357.078786][ T4084] bridge0: port 1(bridge_slave_0) entered forwarding state
[  357.094604][ T4084] bridge0: port 2(bridge_slave_1) entered blocking state
[  357.102237][ T4084] bridge0: port 2(bridge_slave_1) entered forwarding state
[  357.336270][ T5871] usb 6-1: new full-speed USB device number 4 using dummy_hcd
[  357.540478][ T7137] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  357.588631][ T5871] usb 6-1: New USB device found, idVendor=056e, idProduct=4010, bcdDevice=20.1c
[  357.598891][ T5871] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  357.672047][ T5871] usb 6-1: config 0 descriptor??
[  358.121789][ T7314] loop0: detected capacity change from 0 to 1024
[  358.779653][ T5871] pegasus 6-1:0.0: probe with driver pegasus failed with error -71
[  359.024989][ T5871] usb 6-1: USB disconnect, device number 4
[  359.984462][ T7137] 8021q: adding VLAN 0 to HW filter on device batadv0
[  360.561844][ T7333] loop5: detected capacity change from 0 to 1024
[  360.790998][ T7333] hfsplus: write access to a journaled filesystem is not supported, use the force option at your own risk, mounting read-only.
[  363.904548][ T7357] netlink: 148 bytes leftover after parsing attributes in process `syz.4.415'.
[  364.187475][ T7137] veth0_vlan: entered promiscuous mode
[  364.401139][ T7137] veth1_vlan: entered promiscuous mode
[  364.500179][ T7364] loop5: detected capacity change from 0 to 512
[  364.777215][ T7364] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  364.790671][ T7364] ext4 filesystem being mounted at /54/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  364.895268][ T7137] veth0_macvtap: entered promiscuous mode
[  364.921605][ T7364] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.417: bg 0: block 360: padding at end of block bitmap is not set
[  365.052342][ T7364] Quota error (device loop5): write_blk: dquota write failed
[  365.062442][ T7364] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota
[  365.073151][ T7364] EXT4-fs error (device loop5): ext4_acquire_dquot:6937: comm syz.5.417: Failed to acquire dquot type 0
[  365.452686][ T7378] netlink: 8 bytes leftover after parsing attributes in process `syz.3.420'.
[  365.590833][ T7137] veth1_macvtap: entered promiscuous mode
[  365.660003][ T7137] batman_adv: batadv0: Interface activated: batadv_slave_0
[  365.686644][ T7137] batman_adv: batadv0: Interface activated: batadv_slave_1
[  365.902387][ T4084] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  366.081163][ T4084] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  366.188145][ T4084] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  366.316788][ T3521] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  366.334180][ T6192] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  367.068400][ T7383] loop0: detected capacity change from 0 to 4096
[  367.391208][ T7383] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  368.677111][ T7380] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  369.207317][ T7406] netlink: 8 bytes leftover after parsing attributes in process `syz.5.426'.
[  369.525915][ T7409] fuse: Bad value for 'fd'
[  374.601174][   T30] audit: type=1326 audit(1757698440.940:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7438 comm="syz.4.435" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff92b38eba9 code=0x0
[  378.356014][ T7483] loop5: detected capacity change from 0 to 2048
[  378.658267][ T7483] EXT4-fs (loop5): mounted filesystem 00000800-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  378.860882][ T7483] EXT4-fs error (device loop5): ext4_lookup:1787: inode #16: comm syz.5.445: iget: bad i_size value: 8796093031208
[  379.257744][ T6192] EXT4-fs (loop5): unmounting filesystem 00000800-0000-0000-0000-000000000000.
[  379.345524][ T4299] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  379.353717][ T4299] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  379.490004][ T4299] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  379.498985][ T4299] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  380.321035][ T7508] loop5: detected capacity change from 0 to 1024
[  380.425216][ T7508] EXT4-fs: Ignoring removed nobh option
[  380.431320][ T7508] EXT4-fs: inline encryption not supported
[  380.637121][ T7508] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  383.533708][ T7527] capability: warning: `syz.4.456' uses deprecated v2 capabilities in a way that may be insecure
[  383.609262][ T6192] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  384.014710][ T7524] loop6: detected capacity change from 0 to 2048
[  384.200081][ T7524] EXT4-fs: Ignoring removed bh option
[  384.625782][ T7524] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  386.119289][ T7544] loop5: detected capacity change from 0 to 2048
[  386.480734][ T7137] EXT4-fs error (device loop6): ext4_ext_check_inode:523: inode #11: comm syz-executor: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  386.587081][ T7544] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  386.690281][ T7137] EXT4-fs error (device loop6): ext4_ext_check_inode:523: inode #11: comm syz-executor: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  388.208844][ T7137] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  388.245512][ T3521] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  388.484491][ T3521] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  388.758770][ T3521] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  388.960393][ T3521] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  389.636392][ T3521] bridge_slave_1: left allmulticast mode
[  389.642244][ T3521] bridge_slave_1: left promiscuous mode
[  389.655257][ T3521] bridge0: port 2(bridge_slave_1) entered disabled state
[  389.980303][ T7581] loop5: detected capacity change from 0 to 1024
[  390.092213][ T7581] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  390.246903][ T7581] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  390.256214][ T7581] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e84ee118, mo2=0000]
[  390.265925][ T7581] System zones: 0-1, 3-12
[  390.271557][ T7581] EXT4-fs (loop5): orphan cleanup on readonly fs
[  390.293085][ T7581] EXT4-fs error (device loop5): __ext4_get_inode_loc:4861: comm syz.5.473: Invalid inode table block 0 in block_group 0
[  390.370421][ T7581] EXT4-fs error (device loop5) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  390.440932][ T7581] EXT4-fs error (device loop5): ext4_quota_write:7326: inode #3: comm syz.5.473: mark_inode_dirty error
[  390.510506][ T7581] Quota error (device loop5): write_blk: dquota write failed
[  390.518841][ T7581] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota
[  390.531644][ T7581] EXT4-fs error (device loop5): ext4_acquire_dquot:6937: comm syz.5.473: Failed to acquire dquot type 0
[  390.591295][ T7581] EXT4-fs error (device loop5): __ext4_get_inode_loc:4861: comm syz.5.473: Invalid inode table block 0 in block_group 0
[  390.652831][ T7581] EXT4-fs error (device loop5) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  390.697744][ T7581] EXT4-fs error (device loop5): ext4_ext_truncate:4475: inode #15: comm syz.5.473: mark_inode_dirty error
[  390.739741][ T7581] EXT4-fs error (device loop5): __ext4_get_inode_loc:4861: comm syz.5.473: Invalid inode table block 0 in block_group 0
[  390.745479][ T3521] bridge_slave_0: left allmulticast mode
[  390.758739][ T3521] bridge_slave_0: left promiscuous mode
[  390.765435][ T3521] bridge0: port 1(bridge_slave_0) entered disabled state
[  390.773832][ T7581] EXT4-fs error (device loop5) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  390.808937][ T7581] EXT4-fs error (device loop5) in ext4_orphan_del:305: Corrupt filesystem
[  390.840712][ T7581] EXT4-fs error (device loop5): __ext4_get_inode_loc:4861: comm syz.5.473: Invalid inode table block 0 in block_group 0
[  390.893423][ T7581] EXT4-fs error (device loop5) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  390.908712][ T7581] EXT4-fs error (device loop5): ext4_truncate:4666: inode #15: comm syz.5.473: mark_inode_dirty error
[  390.923271][ T7581] EXT4-fs error (device loop5) in ext4_process_orphan:347: Corrupt filesystem
[  390.947631][ T7581] EXT4-fs (loop5): 1 truncate cleaned up
[  390.956465][ T7581] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  392.371967][ T6192] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  392.626849][ T3521] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  392.691697][ T3521] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  392.738567][ T3521] bond0 (unregistering): Released all slaves
[  393.231757][ T7592] loop5: detected capacity change from 0 to 16
[  393.318789][ T7592] erofs (device loop5): mounted with root inode @ nid 36.
[  393.752471][ T3521] hsr_slave_0: left promiscuous mode
[  393.807876][ T3521] hsr_slave_1: left promiscuous mode
[  393.816315][ T3521] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  393.823888][ T3521] batman_adv: batadv0: Removing interface: batadv_slave_0
[  393.889711][ T3521] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  393.901799][ T3521] batman_adv: batadv0: Removing interface: batadv_slave_1
[  394.143308][ T3521] veth1_macvtap: left promiscuous mode
[  394.152179][ T3521] veth0_macvtap: left promiscuous mode
[  394.159498][ T3521] veth1_vlan: left promiscuous mode
[  394.165167][ T3521] veth0_vlan: left promiscuous mode
[  394.392125][ T7604] loop5: detected capacity change from 0 to 512
[  395.506366][ T7604] EXT4-fs warning (device loop5): dx_probe:801: inode #2: comm syz.5.481: Unrecognised inode hash code 15
[  395.518373][ T7604] EXT4-fs warning (device loop5): dx_probe:934: inode #2: comm syz.5.481: Corrupt directory, running e2fsck is recommended
[  395.690321][ T7604] EXT4-fs (loop5): Cannot turn on journaled quota: type 1: error -117
[  395.776493][ T7604] EXT4-fs error (device loop5): ext4_iget_extra_inode:5104: inode #15: comm syz.5.481: corrupted in-inode xattr: invalid ea_ino
[  395.889926][ T7604] EXT4-fs (loop5): Remounting filesystem read-only
[  395.898965][ T7604] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  396.129248][ T5828] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  396.185305][ T5828] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  396.294151][ T5828] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  396.320626][ T5828] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  396.337232][ T5828] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  396.691054][ T3521] team0 (unregistering): Port device team_slave_1 removed
[  396.722507][ T6192] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  396.780695][ T3521] team0 (unregistering): Port device team_slave_0 removed
[  398.326346][ T7615] chnl_net:caif_netlink_parms(): no params data found
[  398.530100][ T5828] Bluetooth: hci4: command tx timeout
[  400.605768][ T5828] Bluetooth: hci4: command tx timeout
[  401.864473][ T7615] bridge0: port 1(bridge_slave_0) entered blocking state
[  401.872190][ T7615] bridge0: port 1(bridge_slave_0) entered disabled state
[  401.880066][ T7615] bridge_slave_0: entered allmulticast mode
[  401.889790][ T7615] bridge_slave_0: entered promiscuous mode
[  402.248574][ T7615] bridge0: port 2(bridge_slave_1) entered blocking state
[  402.256290][ T7615] bridge0: port 2(bridge_slave_1) entered disabled state
[  402.263972][ T7615] bridge_slave_1: entered allmulticast mode
[  402.274007][ T7615] bridge_slave_1: entered promiscuous mode
[  402.614652][ T7615] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  402.687156][ T7615] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  402.692861][ T5828] Bluetooth: hci4: command tx timeout
[  402.949095][ T7615] team0: Port device team_slave_0 added
[  403.044538][ T7615] team0: Port device team_slave_1 added
[  403.321848][ T7615] batman_adv: batadv0: Adding interface: batadv_slave_0
[  403.333732][ T7615] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  403.361929][ T7615] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  403.465238][ T7615] batman_adv: batadv0: Adding interface: batadv_slave_1
[  403.472357][ T7615] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  403.499114][ T7615] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  404.122288][ T7615] hsr_slave_0: entered promiscuous mode
[  404.133244][ T7615] hsr_slave_1: entered promiscuous mode
[  404.765425][ T5828] Bluetooth: hci4: command tx timeout
[  407.107176][ T7615] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  407.133673][ T7615] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  408.321184][ T7615] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  408.468173][ T7615] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  408.713000][ T7747] loop5: detected capacity change from 0 to 256
[  408.870156][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  408.876976][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  410.035598][ T7747] exFAT-fs (loop5): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x467a0815, utbl_chksum : 0xe619d30d)
[  410.049397][ T7747] exFAT-fs (loop5): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  411.531402][ T7615] 8021q: adding VLAN 0 to HW filter on device bond0
[  411.737764][ T7615] 8021q: adding VLAN 0 to HW filter on device team0
[  411.819385][ T7522] bridge0: port 1(bridge_slave_0) entered blocking state
[  411.827009][ T7522] bridge0: port 1(bridge_slave_0) entered forwarding state
[  411.949798][ T7522] bridge0: port 2(bridge_slave_1) entered blocking state
[  411.957511][ T7522] bridge0: port 2(bridge_slave_1) entered forwarding state
[  413.165427][ T5871] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  413.345653][ T5871] usb 6-1: Using ep0 maxpacket: 32
[  413.399246][ T5871] usb 6-1: config 0 has an invalid interface number: 72 but max is 0
[  413.408033][ T5871] usb 6-1: config 0 has no interface number 0
[  413.414325][ T5871] usb 6-1: config 0 interface 72 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  413.427694][ T5871] usb 6-1: config 0 interface 72 has no altsetting 0
[  413.549202][ T5871] usb 6-1: New USB device found, idVendor=6069, idProduct=0f39, bcdDevice=e8.f9
[  413.559043][ T5871] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  413.571044][ T5871] usb 6-1: Product: syz
[  413.576637][ T5871] usb 6-1: Manufacturer: syz
[  413.581420][ T5871] usb 6-1: SerialNumber: syz
[  413.656572][ T5871] usb 6-1: config 0 descriptor??
[  413.993987][ T5871] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  414.001599][ T5871] usb 6-1: MIDIStreaming interface descriptor not found
[  414.211440][ T7615] 8021q: adding VLAN 0 to HW filter on device batadv0
[  414.250234][ T5871] usb 6-1: USB disconnect, device number 5
[  414.607158][ T6017] udevd[6017]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.72/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  415.902062][ T7828] loop5: detected capacity change from 0 to 764
[  415.985014][ T7828] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  417.133975][ T7615] veth0_vlan: entered promiscuous mode
[  417.310606][ T7615] veth1_vlan: entered promiscuous mode
[  417.602237][ T7615] veth0_macvtap: entered promiscuous mode
[  417.722161][ T7615] veth1_macvtap: entered promiscuous mode
[  417.944004][ T7615] batman_adv: batadv0: Interface activated: batadv_slave_0
[  417.963936][ T7853] netlink: 32 bytes leftover after parsing attributes in process `syz.0.557'.
[  418.029694][ T7615] batman_adv: batadv0: Interface activated: batadv_slave_1
[  418.150974][   T14] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  418.229909][ T4413] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  418.332714][ T4413] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  418.486163][ T4084] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  421.187294][ T5826] Bluetooth: hci3: command 0x0406 tx timeout
[  421.949027][ T7888] netlink: 25 bytes leftover after parsing attributes in process `syz.5.566'.
[  424.476754][ T7927] 9pnet_fd: Insufficient options for proto=fd
[  424.736877][ T7933] fuse: Bad value for 'fd'
[  427.571472][ T7960] loop5: detected capacity change from 0 to 1024
[  427.657377][ T7960] EXT4-fs: inline encryption not supported
[  427.663837][ T7960] EXT4-fs: Ignoring removed nobh option
[  427.670792][ T7960] EXT4-fs: Ignoring removed bh option
[  427.864637][ T7960] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  428.085038][   T30] audit: type=1800 audit(1757698494.420:11): pid=7960 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.585" name="bus" dev="loop5" ino=18 res=0 errno=0
[  428.123521][ T7960] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4183: comm syz.5.585: Allocating blocks 385-513 which overlap fs metadata
[  428.157779][ T7960] EXT4-fs (loop5): pa ffff888121474230: logic 16, phys. 129, len 24
[  428.166305][ T7960] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 8
[  428.216691][ T7960] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 2 with max blocks 3 with error 1
[  428.229627][ T7960] EXT4-fs (loop5): This should not happen!! Data will be lost
[  428.229627][ T7960] 
[  428.434187][ T6192] Trying to write to read-only block-device loop5
[  428.462018][ T6192] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  432.066254][ T3975] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  432.074365][ T3975] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  432.628186][ T4178] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  432.636975][ T4178] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  433.666508][ T8005] loop7: detected capacity change from 0 to 2048
[  433.784057][ T8005] UDF-fs: error (device loop7): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  433.913924][ T8005] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  434.679890][ T8005] UDF-fs: warning (device loop7): udf_truncate_tail_extent: Too long extent after EOF in inode 1346: i_size: 141733949440 lbcount: 141733951488 extent 75+10752
[  434.696558][ T8005] UDF-fs: error (device loop7): udf_truncate_tail_extent: Extent after EOF in inode 1346
[  437.581184][ T8048] netlink: 'syz.0.610': attribute type 16 has an invalid length.
[  439.148868][ T8060] input: syz1 as /devices/virtual/input/input12
[  443.845690][ T8079] syz.4.620 (8079) used greatest stack depth: 2440 bytes left
[  443.890068][ T8076] netlink: 4 bytes leftover after parsing attributes in process `syz.7.621'.
[  447.109284][ T8092] raw_sendmsg: syz.0.625 forgot to set AF_INET. Fix it!
[  447.831185][ T8101] loop7: detected capacity change from 0 to 1024
[  447.841151][ T8101] ext4: Unknown parameter 'nouser_xattr'
[  449.094571][ T8117] loop5: detected capacity change from 0 to 1024
[  450.285847][ T5826] Bluetooth: hci4: command 0x0405 tx timeout
[  454.002252][ T8170] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input13
[  454.182259][ T8170] loop7: detected capacity change from 0 to 256
[  454.614566][ T8170] FAT-fs (loop7): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[  457.744104][ T8188] loop5: detected capacity change from 0 to 512
[  458.586081][ T8190] loop7: detected capacity change from 0 to 2048
[  458.596073][ T8190] ext4: Bad value for 'init_itable'
[  459.059414][ T8198] mmap: syz.0.663 (8198): VmData 175878144 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data.
[  460.203479][ T8213] netlink: 108 bytes leftover after parsing attributes in process `syz.3.670'.
[  463.917907][ T8263] netlink: 4 bytes leftover after parsing attributes in process `syz.4.690'.
[  465.365082][ T8288] loop5: detected capacity change from 0 to 512
[  466.862709][ T8295] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input14
[  467.163636][ T8297] loop7: detected capacity change from 0 to 256
[  467.452060][ T8297] FAT-fs (loop7): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[  468.753416][ T8308] loop7: detected capacity change from 0 to 1024
[  468.891655][ T8308] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  468.995963][ T1933] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  469.893309][ T1933] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  469.905486][ T1933] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  469.915794][ T1933] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  469.929069][ T1933] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  469.938566][ T1933] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  470.328115][ T1933] usb 6-1: config 0 descriptor??
[  470.357942][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  470.364569][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  470.685837][ T7615] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  470.940066][ T1933] plantronics 0003:047F:FFFF.0004: ignoring exceeding usage max
[  470.959295][ T1933] plantronics 0003:047F:FFFF.0004: unbalanced collection at end of report description
[  471.143271][ T1933] plantronics 0003:047F:FFFF.0004: parse failed
[  471.150732][ T1933] plantronics 0003:047F:FFFF.0004: probe with driver plantronics failed with error -22
[  471.309647][ T1933] usb 6-1: USB disconnect, device number 6
[  471.338703][ T8323] netlink: 4 bytes leftover after parsing attributes in process `syz.7.707'.
[  472.187469][ T8336] loop7: detected capacity change from 0 to 256
[  472.424496][ T8336] exFAT-fs (loop7): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  472.646176][ T5871] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  472.905672][ T5871] usb 6-1: Using ep0 maxpacket: 16
[  472.966138][ T5871] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  472.977789][ T5871] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  472.988037][ T5871] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  473.001216][ T5871] usb 6-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  473.010714][ T5871] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  473.218347][ T5871] usb 6-1: config 0 descriptor??
[  473.710116][ T8358] loop7: detected capacity change from 0 to 1024
[  473.751413][ T5871] microsoft 0003:045E:07DA.0005: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.5-1/input0
[  473.763942][ T5871] microsoft 0003:045E:07DA.0005: no inputs found
[  473.770795][ T5871] microsoft 0003:045E:07DA.0005: could not initialize ff, continuing anyway
[  473.878070][ T5871] usb 6-1: USB disconnect, device number 7
[  473.991993][ T8358] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  474.329237][ T7615] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  474.407255][ T8366] fido_id[8366]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/report_descriptor': No such file or directory
[  474.485046][ T8374] netlink: 4 bytes leftover after parsing attributes in process `syz.0.721'.
[  475.539597][ T8381] loop7: detected capacity change from 0 to 2048
[  475.799294][ T8381] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  475.916040][ T8381] UDF-fs: error (device loop7): udf_read_inode: (ino 1345) failed !bh
[  480.351829][ T8420] loop7: detected capacity change from 0 to 512
[  480.543300][ T8420] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  480.576868][ T8430] netlink: 4 bytes leftover after parsing attributes in process `syz.4.738'.
[  481.475963][ T7615] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  481.670749][ T8443] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input16
[  481.865423][ T8443] loop5: detected capacity change from 0 to 256
[  483.020460][ T8463] loop7: detected capacity change from 0 to 512
[  483.292944][ T8463] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  483.310417][ T8463] ext4 filesystem being mounted at /25/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  483.520163][ T7615] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  484.880014][ T8483] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[  484.880014][ T8483] The task syz.7.754 (8483) triggered the difference, watch for misbehavior.
[  485.327370][ T8484] netlink: 4 bytes leftover after parsing attributes in process `syz.5.756'.
[  487.261799][ T8497] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input17
[  487.426105][ T8497] loop7: detected capacity change from 0 to 256
[  487.882775][ T8497] FAT-fs (loop7): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[  488.732936][ T8511] loop5: detected capacity change from 0 to 1024
[  491.081113][ T8536] netlink: 4 bytes leftover after parsing attributes in process `syz.4.768'.
[  493.665403][   T42] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  493.987592][   T42] usb 6-1: Using ep0 maxpacket: 16
[  494.071733][   T42] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  494.082633][   T42] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3
[  494.319697][   T42] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  494.329419][   T42] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  494.337855][   T42] usb 6-1: Product: syz
[  494.342196][   T42] usb 6-1: Manufacturer: syz
[  494.347074][   T42] usb 6-1: SerialNumber: syz
[  495.368390][   T42] usb 6-1: cannot find UAC_HEADER
[  495.680539][   T42] snd-usb-audio 6-1:1.0: probe with driver snd-usb-audio failed with error -22
[  495.870431][   T42] usb 6-1: USB disconnect, device number 8
[  495.916834][ T8584] netlink: 4 bytes leftover after parsing attributes in process `syz.7.784'.
[  496.010506][ T6000] udevd[6000]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  497.445201][ T8597] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input18
[  497.696575][ T8599] loop5: detected capacity change from 0 to 256
[  499.232948][ T8612] loop5: detected capacity change from 0 to 256
[  504.289024][ T8659] netlink: 4 bytes leftover after parsing attributes in process `syz.0.801'.
[  508.402309][ T8699] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input19
[  508.552815][ T8699] loop7: detected capacity change from 0 to 256
[  508.651219][ T8699] FAT-fs (loop7): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[  508.780785][ T8706] netlink: 4 bytes leftover after parsing attributes in process `syz.3.819'.
[  512.002539][ T8728] loop5: detected capacity change from 0 to 512
[  513.849392][ T8741] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input20
[  514.011729][ T8741] loop7: detected capacity change from 0 to 256
[  514.139821][ T8741] FAT-fs (loop7): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[  514.238248][ T8755] netlink: 4 bytes leftover after parsing attributes in process `syz.4.834'.
[  514.803880][ T8763] 9pnet_fd: Insufficient options for proto=fd
[  517.674380][ T8789] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input21
[  518.049855][ T8793] loop5: detected capacity change from 0 to 256
[  518.626201][ T8803] netlink: 4 bytes leftover after parsing attributes in process `syz.4.850'.
[  519.800344][ T8820] loop5: detected capacity change from 0 to 128
[  521.138310][ T8830] loop5: detected capacity change from 0 to 256
[  521.206616][ T8832] 9p: Unknown access argument 01777777777777777777777: -34
[  523.170176][ T8852] netlink: 4 bytes leftover after parsing attributes in process `syz.4.870'.
[  524.103077][ T8864] loop5: detected capacity change from 0 to 164
[  524.203864][ T8865] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input22
[  524.284092][ T8864] Unable to read rock-ridge attributes
[  524.382514][ T8865] loop7: detected capacity change from 0 to 256
[  524.572456][ T8865] FAT-fs (loop7): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[  525.606869][ T8883] 9pnet_fd: Insufficient options for proto=fd
[  526.582595][ T8890] loop5: detected capacity change from 0 to 1024
[  526.678966][ T8890] EXT4-fs: Ignoring removed orlov option
[  527.470787][ T8898] netlink: 4 bytes leftover after parsing attributes in process `syz.7.887'.
[  528.811228][ T8915] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input23
[  528.811333][ T8913] loop7: detected capacity change from 0 to 1024
[  528.897773][ T8913] EXT4-fs: Ignoring removed nomblk_io_submit option
[  528.985023][ T8915] loop5: detected capacity change from 0 to 256
[  529.111519][ T8913] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  529.126563][ T8918] fuse: Bad value for 'fd'
[  529.665238][ T7615] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  530.102171][ T8928] loop5: detected capacity change from 0 to 1024
[  530.172836][ T8932] loop7: detected capacity change from 0 to 1024
[  530.558886][ T8932] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  530.571750][ T8932] ext4 filesystem being mounted at /53/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  531.721906][ T8947] netlink: 4 bytes leftover after parsing attributes in process `syz.4.902'.
[  531.741124][ T8940] EXT4-fs error (device loop7): ext4_validate_block_bitmap:441: comm syz.7.899: bg 0: block 393: padding at end of block bitmap is not set
[  531.798429][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  531.805316][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  531.898411][ T8940] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 252 with error 117
[  531.911638][ T8940] EXT4-fs (loop7): This should not happen!! Data will be lost
[  531.911638][ T8940] 
[  532.041585][ T8940] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 2050 with max blocks 1 with error 28
[  532.059978][ T8940] EXT4-fs (loop7): This should not happen!! Data will be lost
[  532.059978][ T8940] 
[  532.071188][ T8940] EXT4-fs (loop7): Total free blocks count 0
[  532.077631][ T8940] EXT4-fs (loop7): Free/Dirty block details
[  532.083704][ T8940] EXT4-fs (loop7): free_blocks=0
[  532.089127][ T8940] EXT4-fs (loop7): dirty_blocks=16
[  532.094420][ T8940] EXT4-fs (loop7): Block reservation details
[  532.951205][ T8957] fuse: Bad value for 'fd'
[  533.176528][ T8963] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input24
[  533.219191][ T8961] loop5: detected capacity change from 0 to 512
[  533.383508][ T8963] loop7: detected capacity change from 0 to 256
[  533.546080][ T8963] FAT-fs (loop7): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[  534.213380][ T8978] netlink: 8 bytes leftover after parsing attributes in process `syz.0.912'.
[  534.442699][ T8980] loop7: detected capacity change from 0 to 1024
[  534.898651][ T8989] netlink: 4 bytes leftover after parsing attributes in process `syz.5.917'.
[  535.518108][ T8997] fuse: Bad value for 'fd'
[  536.108601][ T9004] 9p: Unknown access argument 01777777777777777777777: -34
[  537.355545][ T9020] loop7: detected capacity change from 0 to 2048
[  537.516093][ T9020] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  537.909547][ T9041] netlink: 4 bytes leftover after parsing attributes in process `syz.0.935'.
[  538.283432][ T9032] 9pnet_fd: p9_fd_create_tcp (9032): problem connecting socket to 127.0.0.1
[  540.012546][ T9062] loop5: detected capacity change from 0 to 2048
[  540.757890][ T9085] netlink: 4 bytes leftover after parsing attributes in process `syz.4.952'.
[  540.996950][ T9088] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input25
[  541.290449][ T9094] loop5: detected capacity change from 0 to 256
[  543.506302][ T9114] loop5: detected capacity change from 0 to 4096
[  543.547578][ T9114] ext4: Unknown parameter 'seclabel'
[  544.139514][ T9133] netlink: 4 bytes leftover after parsing attributes in process `syz.7.969'.
[  544.769033][ T9140] cgroup: Unknown subsys name 'cpuset'
[  547.651671][ T9148] loop7: detected capacity change from 0 to 2048
[  550.173793][ T9176] loop7: detected capacity change from 0 to 8
[  550.771783][ T9185] netlink: 4 bytes leftover after parsing attributes in process `syz.4.990'.
[  552.635815][ T9207] loop5: detected capacity change from 0 to 4096
[  553.164309][ T9218] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1006'.
[  553.302349][ T9222] loop7: detected capacity change from 0 to 512
[  553.454921][ T9222] EXT4-fs error (device loop7): ext4_orphan_get:1392: inode #15: comm syz.7.1005: casefold flag without casefold feature
[  553.516017][ T9229] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1009'.
[  553.561334][ T9222] EXT4-fs error (device loop7): ext4_orphan_get:1397: comm syz.7.1005: couldn't read orphan inode 15 (err -117)
[  553.638089][ T9222] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  554.318377][ T7615] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  554.769310][ T9244] loop7: detected capacity change from 0 to 1024
[  554.813183][ T9244] EXT4-fs: Ignoring removed nomblk_io_submit option
[  554.844501][ T9244] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  555.074897][ T9244] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  555.176463][ T9256] loop5: detected capacity change from 0 to 16
[  555.637490][ T7615] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  556.000889][ T9264] loop7: detected capacity change from 0 to 128
[  556.059972][ T9263] loop5: detected capacity change from 0 to 1024
[  556.190124][ T9264] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  556.310035][ T9264] ext4 filesystem being mounted at /74/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  556.436920][ T9275] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1025'.
[  557.582589][ T7615] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  559.555238][ T5874] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  559.576644][ T9322] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1041'.
[  559.761174][ T5874] usb 6-1: Using ep0 maxpacket: 32
[  559.787710][ T5874] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 32
[  559.865576][ T5874] usb 6-1: New USB device found, idVendor=0499, idProduct=1010, bcdDevice= a.f5
[  559.875441][ T5874] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  559.883729][ T5874] usb 6-1: Product: syz
[  559.888275][ T5874] usb 6-1: Manufacturer: syz
[  559.893049][ T5874] usb 6-1: SerialNumber: syz
[  559.935696][ T5874] usb 6-1: config 0 descriptor??
[  559.943836][ T9310] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  560.054032][ T5874] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  560.348203][ T5874] usb 6-1: USB disconnect, device number 9
[  560.672067][ T6017] udevd[6017]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  561.189187][ T9336] lo: entered allmulticast mode
[  562.635038][ T5874] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  562.855134][ T5874] usb 6-1: config 0 interface 0 altsetting 1 endpoint 0x81 has invalid wMaxPacketSize 0
[  562.868908][ T5874] usb 6-1: config 0 interface 0 has no altsetting 0
[  562.877072][ T5874] usb 6-1: New USB device found, idVendor=056a, idProduct=00ba, bcdDevice= 0.00
[  562.886496][ T5874] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  563.047856][ T5874] usb 6-1: config 0 descriptor??
[  563.667352][ T5874] wacom 0003:056A:00BA.0006: unbalanced delimiter at end of report description
[  563.758619][ T5874] wacom 0003:056A:00BA.0006: parse failed
[  563.765249][ T5874] wacom 0003:056A:00BA.0006: probe with driver wacom failed with error -22
[  563.986646][ T5874] usb 6-1: USB disconnect, device number 10
[  564.769416][ T9362] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1056'.
[  567.356912][ T9388] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1064'.
[  570.523664][ T9407] loop7: detected capacity change from 0 to 4096
[  570.562660][ T9407] ext4: Unknown parameter 'seclabel'
[  571.856646][ T9432] A link change request failed with some changes committed already. Interface wlan0 may have been left with an inconsistent configuration, please check.
[  572.877563][ T9442] capability: warning: `syz.4.1087' uses 32-bit capabilities (legacy support in use)
[  573.606387][ T9452] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  576.300083][ T5874] kernel write not supported for file /479/net/sockstat6 (pid: 5874 comm: kworker/0:4)
[  582.607840][ T9525] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input26
[  582.719249][ T9526] loop7: detected capacity change from 0 to 256
[  582.819501][ T9526] FAT-fs (loop7): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[  583.791179][ T9543] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1132'.
[  585.418007][ T9561] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1137'.
[  586.553860][ T9572] loop7: detected capacity change from 0 to 256
[  586.696461][ T9572] FAT-fs (loop7): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[  587.527229][ T9591] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1148'.
[  588.975523][ T9609] loop7: detected capacity change from 0 to 256
[  589.142422][ T9609] exFAT-fs (loop7): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x76936814, utbl_chksum : 0xe619d30d)
[  589.269872][ T9613] loop5: detected capacity change from 0 to 256
[  589.443247][ T9609] exFAT-fs (loop7): valid_size(150994954) is greater than size(10)
[  590.801775][ T9641] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1168'.
[  592.107978][ T9654] loop7: detected capacity change from 0 to 512
[  592.176623][ T9654] EXT4-fs: Ignoring removed nobh option
[  592.782053][ T9654] fscrypt (loop7, inode 2): Error -61 getting encryption context
[  592.961658][ T9654] EXT4-fs (loop7): Cannot turn on journaled quota: type 1: error -61
[  592.975985][ T9654] EXT4-fs error (device loop7): ext4_orphan_get:1392: inode #13: comm syz.7.1174: casefold flag without casefold feature
[  593.058610][ T9654] EXT4-fs error (device loop7): ext4_orphan_get:1397: comm syz.7.1174: couldn't read orphan inode 13 (err -117)
[  593.218722][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  593.226561][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  593.266745][ T9654] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  593.563668][ T9654] fscrypt (loop7, inode 2): Error -61 getting encryption context
[  594.372891][ T7615] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  595.501930][ T9687] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1185'.
[  598.916089][ T9708] loop5: detected capacity change from 0 to 512
[  599.005737][ T9708] EXT4-fs: Ignoring removed nobh option
[  601.870194][ T9723] loop5: detected capacity change from 0 to 4096
[  602.301462][ T9735] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1199'.
[  604.404183][ T9744] 9pnet_fd: Insufficient options for proto=fd
[  609.087948][ T9772] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1212'.
[  609.214839][ T5818] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  609.246068][ T5818] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  609.277060][ T5818] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  609.310905][ T5818] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  609.328272][ T5818] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  611.416730][ T5818] Bluetooth: hci5: command tx timeout
[  611.466384][ T9773] chnl_net:caif_netlink_parms(): no params data found
[  611.488730][ T5826] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  611.526865][ T5826] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  611.539729][ T5826] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  611.675556][ T5826] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  611.687572][ T5826] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  612.513512][ T9806] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci6/hci6:200/input27
[  612.688500][ T9773] bridge0: port 1(bridge_slave_0) entered blocking state
[  612.696118][ T9773] bridge0: port 1(bridge_slave_0) entered disabled state
[  612.703825][ T9773] bridge_slave_0: entered allmulticast mode
[  612.750104][ T9773] bridge_slave_0: entered promiscuous mode
[  612.767393][ T9773] bridge0: port 2(bridge_slave_1) entered blocking state
[  612.775104][ T9773] bridge0: port 2(bridge_slave_1) entered disabled state
[  612.782799][ T9773] bridge_slave_1: entered allmulticast mode
[  612.784078][ T9811] loop5: detected capacity change from 0 to 256
[  612.792379][ T9773] bridge_slave_1: entered promiscuous mode
[  612.968149][ T9815] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1225'.
[  613.487195][ T5828] Bluetooth: hci5: command tx timeout
[  613.725509][ T5828] Bluetooth: hci6: command tx timeout
[  613.818224][ T9773] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  614.043759][ T9773] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  614.595475][ T9773] team0: Port device team_slave_0 added
[  614.656503][ T9773] team0: Port device team_slave_1 added
[  615.033257][ T9835] loop5: detected capacity change from 0 to 512
[  615.212223][ T9773] batman_adv: batadv0: Adding interface: batadv_slave_0
[  615.221017][ T9773] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  615.248205][ T9773] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  615.321059][ T4478] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  615.571937][ T5828] Bluetooth: hci5: command tx timeout
[  615.695427][ T4478] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  615.798484][ T9793] chnl_net:caif_netlink_parms(): no params data found
[  615.810426][ T5828] Bluetooth: hci6: command tx timeout
[  615.845318][ T9773] batman_adv: batadv0: Adding interface: batadv_slave_1
[  615.852515][ T9773] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  615.879063][ T9773] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  616.030490][ T4478] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  616.246464][ T4478] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  616.472004][ T9845] loop5: detected capacity change from 0 to 16
[  616.577223][ T9845] erofs (device loop5): unsupported chunk format ffff of nid 36
[  616.948128][ T9850] loop5: detected capacity change from 0 to 164
[  616.967005][ T9773] hsr_slave_0: entered promiscuous mode
[  616.977722][ T9773] hsr_slave_1: entered promiscuous mode
[  616.986782][ T9773] debugfs: 'hsr0' already exists in 'hsr'
[  616.993135][ T9773] Cannot create hsr debugfs directory
[  617.609664][ T4478] bridge_slave_1: left allmulticast mode
[  617.615703][ T4478] bridge_slave_1: left promiscuous mode
[  617.622450][ T4478] bridge0: port 2(bridge_slave_1) entered disabled state
[  617.647716][ T5828] Bluetooth: hci5: command tx timeout
[  617.739248][ T9857] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1237'.
[  617.776087][ T4478] bridge_slave_0: left allmulticast mode
[  617.782048][ T4478] bridge_slave_0: left promiscuous mode
[  617.788958][ T4478] bridge0: port 1(bridge_slave_0) entered disabled state
[  617.886761][ T5828] Bluetooth: hci6: command tx timeout
[  618.637271][ T5871] usb 6-1: new full-speed USB device number 11 using dummy_hcd
[  618.893177][ T5871] usb 6-1: unable to get BOS descriptor or descriptor too short
[  618.957988][ T5871] usb 6-1: unable to read config index 0 descriptor/start: -71
[  618.966574][ T5871] usb 6-1: can't read configurations, error -71
[  619.043459][ T4478] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  619.068090][ T4478] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  619.097026][ T4478] bond0 (unregistering): Released all slaves
[  619.968688][ T5828] Bluetooth: hci6: command tx timeout
[  620.140990][ T9793] bridge0: port 1(bridge_slave_0) entered blocking state
[  620.148806][ T9793] bridge0: port 1(bridge_slave_0) entered disabled state
[  620.158812][ T9793] bridge_slave_0: entered allmulticast mode
[  620.169966][ T9793] bridge_slave_0: entered promiscuous mode
[  620.523307][ T9793] bridge0: port 2(bridge_slave_1) entered blocking state
[  620.531337][ T9793] bridge0: port 2(bridge_slave_1) entered disabled state
[  620.539222][ T9793] bridge_slave_1: entered allmulticast mode
[  620.548892][ T9793] bridge_slave_1: entered promiscuous mode
[  620.571404][ T9872] loop5: detected capacity change from 0 to 2048
[  620.617747][ T4478] hsr_slave_0: left promiscuous mode
[  620.639900][ T4478] hsr_slave_1: left promiscuous mode
[  620.689559][ T4478] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  620.697362][ T4478] batman_adv: batadv0: Removing interface: batadv_slave_0
[  620.778004][ T4478] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  620.785924][ T4478] batman_adv: batadv0: Removing interface: batadv_slave_1
[  620.888758][ T4478] veth1_macvtap: left promiscuous mode
[  620.894481][ T4478] veth0_macvtap: left promiscuous mode
[  620.900677][ T4478] veth1_vlan: left promiscuous mode
[  620.906636][ T4478] veth0_vlan: left promiscuous mode
[  620.994230][ T9872] loop5: detected capacity change from 0 to 512
[  622.293090][ T4478] team0 (unregistering): Port device team_slave_1 removed
[  622.318628][ T4478] team0 (unregistering): Port device team_slave_0 removed
[  622.372576][ T9890] loop5: detected capacity change from 0 to 512
[  623.295847][ T9793] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  623.431972][ T9793] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  623.632729][ T4478] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  623.649001][ T9902] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1248'.
[  623.907500][ T9773] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  624.051311][ T4478] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  624.330857][ T9793] team0: Port device team_slave_0 added
[  624.347293][ T9773] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  624.480303][ T4478] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  624.590153][ T9793] team0: Port device team_slave_1 added
[  624.606652][ T9773] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  624.748035][ T4478] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  625.008082][ T9773] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  625.306429][ T9793] batman_adv: batadv0: Adding interface: batadv_slave_0
[  625.313689][ T9793] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  625.343926][ T9793] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  625.549393][ T9793] batman_adv: batadv0: Adding interface: batadv_slave_1
[  625.556980][ T9793] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  625.583484][ T9793] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  625.911568][ T4478] bridge_slave_1: left allmulticast mode
[  625.917708][ T4478] bridge_slave_1: left promiscuous mode
[  625.924281][ T4478] bridge0: port 2(bridge_slave_1) entered disabled state
[  625.966913][ T4478] bridge_slave_0: left allmulticast mode
[  625.972773][ T4478] bridge_slave_0: left promiscuous mode
[  625.979757][ T4478] bridge0: port 1(bridge_slave_0) entered disabled state
[  626.729322][ T4478] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  626.783462][ T4478] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  626.815838][ T4478] bond0 (unregistering): Released all slaves
[  627.036824][ T9793] hsr_slave_0: entered promiscuous mode
[  627.047131][ T9793] hsr_slave_1: entered promiscuous mode
[  627.056125][ T9793] debugfs: 'hsr0' already exists in 'hsr'
[  627.062021][ T9793] Cannot create hsr debugfs directory
[  628.043008][ T4478] hsr_slave_0: left promiscuous mode
[  628.071479][ T4478] hsr_slave_1: left promiscuous mode
[  628.081858][ T4478] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  628.089650][ T4478] batman_adv: batadv0: Removing interface: batadv_slave_0
[  628.170594][ T4478] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  628.178449][ T4478] batman_adv: batadv0: Removing interface: batadv_slave_1
[  628.316238][ T4478] veth1_macvtap: left promiscuous mode
[  628.321965][ T4478] veth0_macvtap: left promiscuous mode
[  628.328220][ T4478] veth1_vlan: left promiscuous mode
[  628.333774][ T4478] veth0_vlan: left promiscuous mode
[  628.687570][ T9947] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1260'.
[  629.512060][ T4478] team0 (unregistering): Port device team_slave_1 removed
[  629.547312][ T4478] team0 (unregistering): Port device team_slave_0 removed
[  630.793626][ T9773] 8021q: adding VLAN 0 to HW filter on device bond0
[  631.055355][ T9773] 8021q: adding VLAN 0 to HW filter on device team0
[  631.080633][ T9793] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  631.137655][ T9793] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  631.197355][ T4956] bridge0: port 1(bridge_slave_0) entered blocking state
[  631.204957][ T4956] bridge0: port 1(bridge_slave_0) entered forwarding state
[  631.263444][ T9793] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  631.359317][ T4956] bridge0: port 2(bridge_slave_1) entered blocking state
[  631.367017][ T4956] bridge0: port 2(bridge_slave_1) entered forwarding state
[  631.408018][ T9793] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  632.656400][ T9793] 8021q: adding VLAN 0 to HW filter on device bond0
[  632.899285][ T9793] 8021q: adding VLAN 0 to HW filter on device team0
[  633.003160][ T4478] bridge0: port 1(bridge_slave_0) entered blocking state
[  633.010776][ T4478] bridge0: port 1(bridge_slave_0) entered forwarding state
[  633.152950][ T4478] bridge0: port 2(bridge_slave_1) entered blocking state
[  633.160705][ T4478] bridge0: port 2(bridge_slave_1) entered forwarding state
[  634.131842][ T9773] 8021q: adding VLAN 0 to HW filter on device batadv0
[  634.166435][T10009] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1273'.
[  634.404067][T10002] 9pnet_fd: p9_fd_create_tcp (10002): problem connecting socket to 127.0.0.1
[  635.831039][ T9793] 8021q: adding VLAN 0 to HW filter on device batadv0
[  637.301812][ T9773] veth0_vlan: entered promiscuous mode
[  637.432136][ T9773] veth1_vlan: entered promiscuous mode
[  637.839591][ T9773] veth0_macvtap: entered promiscuous mode
[  637.939339][ T9773] veth1_macvtap: entered promiscuous mode
[  638.158260][ T9773] batman_adv: batadv0: Interface activated: batadv_slave_0
[  638.269958][ T9773] batman_adv: batadv0: Interface activated: batadv_slave_1
[  638.447507][ T8643] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  638.492097][ T8643] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  638.573702][ T8643] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  638.627110][ T4178] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  638.881629][ T9793] veth0_vlan: entered promiscuous mode
[  639.037314][ T9793] veth1_vlan: entered promiscuous mode
[  639.329960][T10072] loop5: detected capacity change from 0 to 1024
[  639.498970][ T9793] veth0_macvtap: entered promiscuous mode
[  639.614782][ T9793] veth1_macvtap: entered promiscuous mode
[  639.876805][ T9793] batman_adv: batadv0: Interface activated: batadv_slave_0
[  640.030248][ T9793] batman_adv: batadv0: Interface activated: batadv_slave_1
[  640.155162][ T8643] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  640.168598][ T8606] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  640.365446][ T4478] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  640.387247][ T3861] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  645.327846][ T5459] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[  645.649888][ T5459] usb 6-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36
[  645.662088][ T5459] usb 6-1: New USB device strings: Mfr=241, Product=2, SerialNumber=3
[  645.670742][ T5459] usb 6-1: Product: syz
[  645.675379][ T5459] usb 6-1: Manufacturer: syz
[  645.680156][ T5459] usb 6-1: SerialNumber: syz
[  645.738199][ T5459] usb 6-1: config 0 descriptor??
[  645.839782][ T5459] ch341 6-1:0.0: ch341-uart converter detected
[  646.934542][ T5459] usb 6-1: failed to receive control message: -110
[  646.944094][ T5459] ch341-uart ttyUSB0: probe with driver ch341-uart failed with error -110
[  647.269599][T10157] 9pnet: p9_errstr2errno: server reported unknown error �1c�	��s0�(���z@�A��b����B6L�3��W2M�(�.�Gwk�"�6���(�
[  647.405936][ T5459] usb 6-1: USB disconnect, device number 13
[  647.415012][ T5459] ch341 6-1:0.0: device disconnected
[  649.481931][T10179] loop5: detected capacity change from 0 to 128
[  649.538771][T10179] EXT4-fs: Ignoring removed nobh option
[  651.014518][ T3861] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  651.023762][ T3861] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  651.119782][ T3861] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  651.128488][ T3861] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  651.950166][T10201] loop8: detected capacity change from 0 to 512
[  652.049854][T10201] EXT4-fs: Ignoring removed nobh option
[  652.255122][T10201] fscrypt (loop8, inode 2): Error -61 getting encryption context
[  652.342961][T10201] EXT4-fs (loop8): Cannot turn on journaled quota: type 1: error -61
[  652.415246][T10201] EXT4-fs error (device loop8): ext4_orphan_get:1392: inode #13: comm syz.8.1207: casefold flag without casefold feature
[  652.476216][T10201] EXT4-fs error (device loop8): ext4_orphan_get:1397: comm syz.8.1207: couldn't read orphan inode 13 (err -117)
[  652.484585][T10208] batadv_slave_1: entered promiscuous mode
[  652.542938][T10208] veth1: default FDB implementation only supports local addresses
[  652.575967][T10201] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  652.603709][ T7522] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  652.612267][ T7522] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  652.663598][T10208] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1316'.
[  652.677188][T10208] veth1: default FDB implementation only supports local addresses
[  652.730227][T10201] fscrypt (loop8, inode 2): Error -61 getting encryption context
[  652.789183][T10206] batadv_slave_1: left promiscuous mode
[  652.859080][ T4413] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  652.867991][ T4413] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  653.168276][ T9773] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  653.544597][T10222] loop8: detected capacity change from 0 to 8
[  653.628638][T10223] loop9: detected capacity change from 0 to 128
[  653.758575][T10223] EXT4-fs (loop9): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  653.789104][T10223] ext4 filesystem being mounted at /0/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  654.390255][ T9793] EXT4-fs (loop9): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  654.633578][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  654.640576][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  655.013315][T10235] loop9: detected capacity change from 0 to 512
[  655.080029][T10235] EXT4-fs: Ignoring removed oldalloc option
[  655.170160][T10235] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  655.239687][T10242] loop8: detected capacity change from 0 to 256
[  655.324495][T10235] EXT4-fs (loop9): 1 truncate cleaned up
[  655.338261][T10235] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  655.551141][T10242] exFAT-fs (loop8): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x76936814, utbl_chksum : 0xe619d30d)
[  656.065942][ T9793] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  656.662265][T10259] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1335'.
[  658.212874][T10273] loop5: detected capacity change from 0 to 2048
[  666.568637][T10299] loop8: detected capacity change from 0 to 512
[  666.667385][T10300] netlink: 16 bytes leftover after parsing attributes in process `syz.9.1350'.
[  666.937272][T10299] EXT4-fs (loop8): 1 orphan inode deleted
[  666.945434][T10299] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  666.967446][T10299] ext4 filesystem being mounted at /7/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  667.043849][ T4956] Quota error (device loop8): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  667.054357][ T4956] EXT4-fs error (device loop8): ext4_release_dquot:6973: comm kworker/u8:27: Failed to release dquot type 1
[  667.323477][ T7522] Quota error (device loop8): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  667.334116][ T7522] EXT4-fs error (device loop8): ext4_release_dquot:6973: comm kworker/u8:0: Failed to release dquot type 1
[  667.803836][ T9773] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  668.634392][T10328] loop5: detected capacity change from 0 to 128
[  669.131976][T10337] loop8: detected capacity change from 0 to 256
[  669.377368][T10337] exFAT-fs (loop8): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x76936814, utbl_chksum : 0xe619d30d)
[  669.606273][T10340] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1364'.
[  670.761375][T10358] loop9: detected capacity change from 0 to 1024
[  670.980221][T10358] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  671.559977][   T30] audit: type=1804 audit(1757698737.910:12): pid=10370 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.9.1372" name="/newroot/9/file1/file1" dev="loop9" ino=15 res=1 errno=0
[  672.057568][ T9793] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  672.679950][T10386] loop9: detected capacity change from 0 to 128
[  673.201551][T10396] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1381'.
[  673.505096][ T4178] bio_check_eod: 40 callbacks suppressed
[  673.505179][ T4178] kworker/u8:20: attempt to access beyond end of device
[  673.505179][ T4178] loop9: rw=1, sector=145, nr_sectors = 16 limit=128
[  673.526596][ T4178] kworker/u8:20: attempt to access beyond end of device
[  673.526596][ T4178] loop9: rw=1, sector=169, nr_sectors = 8 limit=128
[  673.541025][ T4178] kworker/u8:20: attempt to access beyond end of device
[  673.541025][ T4178] loop9: rw=1, sector=185, nr_sectors = 8 limit=128
[  673.555148][ T4178] kworker/u8:20: attempt to access beyond end of device
[  673.555148][ T4178] loop9: rw=1, sector=201, nr_sectors = 8 limit=128
[  673.816567][ T4178] kworker/u8:20: attempt to access beyond end of device
[  673.816567][ T4178] loop9: rw=1, sector=217, nr_sectors = 8 limit=128
[  675.883157][T10425] loop8: detected capacity change from 0 to 4096
[  676.192080][T10425] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  676.244083][T10430] loop9: detected capacity change from 0 to 1024
[  676.395929][T10437] netlink: 'syz.0.1392': attribute type 2 has an invalid length.
[  676.445355][T10425] __find_get_block_slow() failed. block=144115188075855872, b_blocknr=0, b_state=0x00000019, b_size=4096, device loop8 blocksize: 4096
[  676.459831][T10425] grow_buffers: requested out-of-range block 144115188075855872 for device loop8
[  676.469379][T10425] EXT4-fs warning (device loop8): ext4_resize_fs:2019: can't read last block, resize aborted
[  677.006794][ T9773] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  677.313097][T10443] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1394'.
[  679.068730][T10470] loop5: detected capacity change from 0 to 256
[  679.069736][T10469] netlink: 'syz.9.1405': attribute type 5 has an invalid length.
[  679.969047][T10478] netlink: 8 bytes leftover after parsing attributes in process `syz.8.1407'.
[  683.937026][T10523] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1423'.
[  686.379218][T10564] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1436'.
[  688.108041][T10582] loop5: detected capacity change from 0 to 1024
[  688.813864][T10585] loop8: detected capacity change from 0 to 4096
[  688.985280][   T30] audit: type=1326 audit(1757698755.330:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10593 comm="syz.5.1447" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fbfba78eba9 code=0x0
[  689.143080][T10585] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  689.342534][T10585] EXT4-fs error (device loop8): ext4_do_update_inode:5653: inode #15: comm syz.8.1445: corrupted inode contents
[  689.417022][T10585] EXT4-fs (loop8): Remounting filesystem read-only
[  689.471412][T10598] loop9: detected capacity change from 0 to 2048
[  689.608285][T10598] UDF-fs: error (device loop9): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  689.726997][T10598] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  689.939558][ T9773] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  690.011875][ T4299] EXT4-fs (loop8): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  690.028061][ T4299] Quota error (device loop8): write_blk: dquota write failed
[  690.036128][ T4299] Quota error (device loop8): free_dqentry: Can't write quota data block 5
[  690.939570][T10614] fuse: Unknown parameter 'grou00000000000000000000'
[  691.033016][ T5871] usb 9-1: new low-speed USB device number 2 using dummy_hcd
[  691.313934][ T5871] usb 9-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[  691.323589][ T5871] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  691.439291][ T5871] usb 9-1: config 0 descriptor??
[  691.753020][T10625] loop9: detected capacity change from 0 to 128
[  691.829340][T10625] FAT-fs (loop9): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  691.985235][T10625] FAT-fs (loop9): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  692.351923][ T5871] asix 9-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[  692.362897][ T5871] asix 9-1:0.0 (unnamed net_device) (uninitialized): Failed to write GPIO value 0x0080: ffffffb9
[  692.596547][ T5871] asix 9-1:0.0: probe with driver asix failed with error -71
[  692.906976][ T5871] usb 9-1: USB disconnect, device number 2
[  695.203477][ T4478] FAT-fs (loop9): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  695.643993][T10653] loop8: detected capacity change from 0 to 512
[  695.844376][T10650] loop5: detected capacity change from 0 to 1024
[  696.715638][T10662] fuse: Unknown parameter 'grou00000000000000000000'
[  697.448046][T10672] loop8: detected capacity change from 0 to 256
[  698.091329][T10672] exFAT-fs (loop8): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  700.305411][ T5826] Bluetooth: hci6: command 0x0405 tx timeout
[  701.100113][T10696] loop5: detected capacity change from 0 to 1024
[  701.345137][T10701] loop9: detected capacity change from 0 to 512
[  701.491845][T10704] loop8: detected capacity change from 0 to 16
[  701.595960][T10704] erofs (device loop8): mounted with root inode @ nid 36.
[  701.827596][T10701] Quota error (device loop9): do_check_range: Getting dqdh_next_free 256 out of range 0-7
[  701.841389][T10701] Quota error (device loop9): qtree_write_dquot: Error -117 occurred while creating quota
[  701.852300][T10701] EXT4-fs error (device loop9): ext4_acquire_dquot:6937: comm syz.9.1481: Failed to acquire dquot type 1
[  702.095252][T10701] EXT4-fs error (device loop9): ext4_do_update_inode:5653: inode #16: comm syz.9.1481: corrupted inode contents
[  702.207716][T10701] EXT4-fs error (device loop9): ext4_dirty_inode:6538: inode #16: comm syz.9.1481: mark_inode_dirty error
[  702.296176][T10701] EXT4-fs error (device loop9): ext4_do_update_inode:5653: inode #16: comm syz.9.1481: corrupted inode contents
[  702.375176][T10701] EXT4-fs error (device loop9): __ext4_ext_dirty:206: inode #16: comm syz.9.1481: mark_inode_dirty error
[  702.482821][T10701] EXT4-fs error (device loop9): ext4_do_update_inode:5653: inode #16: comm syz.9.1481: corrupted inode contents
[  702.675767][T10701] EXT4-fs error (device loop9) in ext4_orphan_del:305: Corrupt filesystem
[  702.779848][T10701] EXT4-fs error (device loop9): ext4_do_update_inode:5653: inode #16: comm syz.9.1481: corrupted inode contents
[  702.826286][T10701] EXT4-fs error (device loop9): ext4_truncate:4666: inode #16: comm syz.9.1481: mark_inode_dirty error
[  702.841911][T10720] loop8: detected capacity change from 0 to 128
[  702.876100][T10701] EXT4-fs error (device loop9) in ext4_process_orphan:347: Corrupt filesystem
[  702.968855][T10720] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  702.976223][T10701] EXT4-fs (loop9): 1 truncate cleaned up
[  703.059811][T10720] ext4 filesystem being mounted at /32/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  703.072979][T10701] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  703.086808][T10701] ext4 filesystem being mounted at /29/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  703.295024][T10701] EXT4-fs error (device loop9): ext4_lookup:1787: inode #15: comm syz.9.1481: iget: bad i_size value: 360287970189639690
[  703.709444][ T9773] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  704.416491][ T5826] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  704.457178][ T5826] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  704.466830][ T5826] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  704.492390][ T5826] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  704.536475][ T5826] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  704.656227][ T9793] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  705.045758][T10740] netlink: 'syz.5.1493': attribute type 11 has an invalid length.
[  705.747032][T10748] loop9: detected capacity change from 0 to 1024
[  706.586946][T10734] chnl_net:caif_netlink_parms(): no params data found
[  706.610727][ T5828] Bluetooth: hci1: command tx timeout
[  706.815070][T10744] loop8: detected capacity change from 0 to 8192
[  707.112052][T10762] loop9: detected capacity change from 0 to 512
[  707.215322][T10762] EXT4-fs: Ignoring removed oldalloc option
[  707.305542][T10762] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  707.420149][T10762] EXT4-fs (loop9): 1 truncate cleaned up
[  707.429482][T10762] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  708.232688][ T9793] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  708.292534][T10778] loop5: detected capacity change from 0 to 128
[  708.515553][ T3775] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  708.689973][ T5828] Bluetooth: hci1: command tx timeout
[  708.858162][ T3775] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  708.970664][T10783] netlink: 24 bytes leftover after parsing attributes in process `syz.9.1504'.
[  708.980732][T10783] netlink: 'syz.9.1504': attribute type 1 has an invalid length.
[  709.315961][ T3775] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  709.632855][ T3775] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  709.717251][T10734] bridge0: port 1(bridge_slave_0) entered blocking state
[  709.724938][T10734] bridge0: port 1(bridge_slave_0) entered disabled state
[  709.732781][T10734] bridge_slave_0: entered allmulticast mode
[  709.742635][T10734] bridge_slave_0: entered promiscuous mode
[  709.967794][T10734] bridge0: port 2(bridge_slave_1) entered blocking state
[  709.976691][T10734] bridge0: port 2(bridge_slave_1) entered disabled state
[  709.985010][T10734] bridge_slave_1: entered allmulticast mode
[  709.994511][T10734] bridge_slave_1: entered promiscuous mode
[  710.183819][T10792] loop8: detected capacity change from 0 to 1024
[  710.640651][T10797] loop9: detected capacity change from 0 to 256
[  710.742312][ T3775] bridge_slave_1: left allmulticast mode
[  710.748855][ T3775] bridge_slave_1: left promiscuous mode
[  710.755771][ T3775] bridge0: port 2(bridge_slave_1) entered disabled state
[  710.766648][ T5828] Bluetooth: hci1: command tx timeout
[  710.786129][T10797] exFAT-fs (loop9): error, invalid access to FAT free cluster (entry 0x00000005)
[  710.796100][T10797] exFAT-fs (loop9): failed to count the number of clusters in root
[  710.804163][T10797] exFAT-fs (loop9): failed to recognize exfat type
[  710.862787][ T3775] bridge_slave_0: left allmulticast mode
[  710.869812][ T3775] bridge_slave_0: left promiscuous mode
[  710.876735][ T3775] bridge0: port 1(bridge_slave_0) entered disabled state
[  711.646427][ T3775] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  711.726710][ T3775] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  711.788459][ T3775] bond0 (unregistering): Released all slaves
[  712.049051][T10734] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  712.117183][T10734] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  712.665950][T10734] team0: Port device team_slave_0 added
[  712.747575][T10734] team0: Port device team_slave_1 added
[  712.810026][ T3775] hsr_slave_0: left promiscuous mode
[  712.832335][ T3775] hsr_slave_1: left promiscuous mode
[  712.847276][ T3775] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  712.855016][ T3775] batman_adv: batadv0: Removing interface: batadv_slave_0
[  712.862712][ T5828] Bluetooth: hci1: command tx timeout
[  712.899401][ T3775] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  712.907279][ T3775] batman_adv: batadv0: Removing interface: batadv_slave_1
[  712.964536][ T3775] veth1_macvtap: left promiscuous mode
[  712.970594][ T3775] veth0_macvtap: left promiscuous mode
[  712.976861][ T3775] veth1_vlan: left promiscuous mode
[  712.982382][ T3775] veth0_vlan: left promiscuous mode
[  714.267618][T10821] netlink: 9 bytes leftover after parsing attributes in process `syz.0.1517'.
[  714.330460][T10822] netlink: 5 bytes leftover after parsing attributes in process `syz.0.1517'.
[  714.536180][ T3775] team0 (unregistering): Port device team_slave_1 removed
[  714.657041][ T3775] team0 (unregistering): Port device team_slave_0 removed
[  715.104237][ T5826] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  715.188423][T10821] gretap0: entered promiscuous mode
[  715.209733][ T5826] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  715.222469][ T5826] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  715.426032][ T5826] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  715.455891][T10822] 0��{X��: renamed from gretap0
[  715.476812][ T5826] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  715.495786][T10822] 0��{X��: left promiscuous mode
[  715.501099][T10822] 0��{X��: entered allmulticast mode
[  715.515645][T10822] A link change request failed with some changes committed already. Interface 
30��{X�� may have been left with an inconsistent configuration, please check.
[  715.791945][T10734] batman_adv: batadv0: Adding interface: batadv_slave_0
[  715.799328][T10734] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  715.826503][T10734] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  716.099052][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  716.106496][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  716.389994][T10734] batman_adv: batadv0: Adding interface: batadv_slave_1
[  716.401903][T10734] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  716.428737][T10734] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  716.754969][ T3775] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  717.089701][ T3775] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  717.159811][T10839] loop9: detected capacity change from 0 to 512
[  717.232650][T10839] EXT4-fs: Ignoring removed oldalloc option
[  717.401333][ T3775] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  717.525705][T10839] EXT4-fs (loop9): 1 truncate cleaned up
[  717.533716][T10839] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  717.734102][ T5826] Bluetooth: hci2: command tx timeout
[  717.801736][ T3775] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  718.468317][ T9793] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  718.671937][T10734] hsr_slave_0: entered promiscuous mode
[  718.682096][T10734] hsr_slave_1: entered promiscuous mode
[  719.465235][ T9972] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[  719.686178][ T9972] usb 10-1: Using ep0 maxpacket: 8
[  719.733002][ T9972] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  719.748599][ T9972] usb 10-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  719.763247][ T9972] usb 10-1: New USB device found, idVendor=06cb, idProduct=81a7, bcdDevice= 0.00
[  719.772914][ T9972] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  719.885986][ T5826] Bluetooth: hci2: command tx timeout
[  720.096949][ T3775] bridge_slave_1: left allmulticast mode
[  720.102927][ T3775] bridge_slave_1: left promiscuous mode
[  720.109912][ T3775] bridge0: port 2(bridge_slave_1) entered disabled state
[  720.127090][ T9972] usb 10-1: config 0 descriptor??
[  720.243849][ T3775] bridge_slave_0: left allmulticast mode
[  720.251298][ T3775] bridge_slave_0: left promiscuous mode
[  720.264012][ T3775] bridge0: port 1(bridge_slave_0) entered disabled state
[  720.634357][ T9972] hid-rmi 0003:06CB:81A7.0007: unknown main item tag 0x6
[  720.641931][ T9972] hid-rmi 0003:06CB:81A7.0007: unknown main item tag 0x0
[  720.649515][ T9972] hid-rmi 0003:06CB:81A7.0007: unknown main item tag 0x0
[  720.660263][ T9972] hid-rmi 0003:06CB:81A7.0007: unknown main item tag 0x0
[  720.674380][ T9972] hid-rmi 0003:06CB:81A7.0007: unknown main item tag 0x0
[  720.683764][ T9972] hid-rmi 0003:06CB:81A7.0007: unknown main item tag 0x0
[  720.691443][ T9972] hid-rmi 0003:06CB:81A7.0007: unbalanced collection at end of report description
[  720.729131][ T9972] hid-rmi 0003:06CB:81A7.0007: parse failed
[  720.736309][ T9972] hid-rmi 0003:06CB:81A7.0007: probe with driver hid-rmi failed with error -22
[  720.883415][T10626] usb 10-1: USB disconnect, device number 2
[  721.059814][ T3775] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  721.105973][ T3775] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  721.148436][ T3775] bond0 (unregistering): Released all slaves
[  721.967970][ T5826] Bluetooth: hci2: command tx timeout
[  721.999704][T10825] chnl_net:caif_netlink_parms(): no params data found
[  722.043217][T10874] loop8: detected capacity change from 0 to 1024
[  722.265089][ T3775] hsr_slave_0: left promiscuous mode
[  722.284850][ T3775] hsr_slave_1: left promiscuous mode
[  722.290229][T10874] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  722.292719][ T3775] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  722.317250][ T3775] batman_adv: batadv0: Removing interface: batadv_slave_0
[  722.337486][ T3775] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  722.347363][ T3775] batman_adv: batadv0: Removing interface: batadv_slave_1
[  722.417393][ T3775] veth1_macvtap: left promiscuous mode
[  722.423331][ T3775] veth0_macvtap: left promiscuous mode
[  722.429434][ T3775] veth1_vlan: left promiscuous mode
[  722.435073][ T3775] veth0_vlan: left promiscuous mode
[  722.930942][ T9773] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  723.260017][T10883] loop9: detected capacity change from 0 to 512
[  723.528543][T10883] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  723.545570][T10883] ext4 filesystem being mounted at /40/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  723.624748][   T30] audit: type=1800 audit(1757698789.970:14): pid=10883 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.1533" name="bus" dev="loop9" ino=18 res=0 errno=0
[  723.961346][ T3775] team0 (unregistering): Port device team_slave_1 removed
[  724.034167][ T3775] team0 (unregistering): Port device team_slave_0 removed
[  724.046488][ T5826] Bluetooth: hci2: command tx timeout
[  724.599433][ T9793] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  725.633134][T10734] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  725.803609][T10734] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  725.834925][   T42] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[  725.916650][T10734] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  725.983170][T10734] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  726.021605][   T42] usb 10-1: Using ep0 maxpacket: 32
[  726.066071][   T42] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  726.078391][   T42] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  726.089305][   T42] usb 10-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  726.100409][   T42] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  726.238727][   T42] usb 10-1: config 0 descriptor??
[  726.256762][   T42] hub 10-1:0.0: USB hub found
[  726.486926][   T42] hub 10-1:0.0: config failed, can't read hub descriptor (err -90)
[  726.722521][T10825] bridge0: port 1(bridge_slave_0) entered blocking state
[  726.730262][T10825] bridge0: port 1(bridge_slave_0) entered disabled state
[  726.738095][T10825] bridge_slave_0: entered allmulticast mode
[  726.747650][T10825] bridge_slave_0: entered promiscuous mode
[  726.920630][T10825] bridge0: port 2(bridge_slave_1) entered blocking state
[  726.928496][T10825] bridge0: port 2(bridge_slave_1) entered disabled state
[  726.936562][T10825] bridge_slave_1: entered allmulticast mode
[  726.946816][T10825] bridge_slave_1: entered promiscuous mode
[  727.042306][   T42] hid-generic 0003:046D:C31C.0008: hidraw0: USB HID v8.00 Device [HID 046d:c31c] on usb-dummy_hcd.9-1/input0
[  727.365392][T10902] loop9: detected capacity change from 0 to 512
[  727.443015][T10902] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842c11d, mo2=0002]
[  727.452770][T10902] System zones: 1-12
[  727.479893][T10902] EXT4-fs error (device loop9): ext4_iget_extra_inode:5104: inode #15: comm syz.9.1537: corrupted in-inode xattr: e_value size too large
[  727.507477][T10902] EXT4-fs error (device loop9): ext4_orphan_get:1397: comm syz.9.1537: couldn't read orphan inode 15 (err -117)
[  727.585615][T10825] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  727.631232][T10825] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  727.639743][T10902] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  728.096425][T10825] team0: Port device team_slave_0 added
[  728.202562][T10825] team0: Port device team_slave_1 added
[  728.325902][T10630] usb 10-1: USB disconnect, device number 3
[  728.524394][T10825] batman_adv: batadv0: Adding interface: batadv_slave_0
[  728.532620][T10825] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  728.562707][T10825] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  728.687666][T10825] batman_adv: batadv0: Adding interface: batadv_slave_1
[  728.694996][T10825] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  728.721653][T10825] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  728.766608][T10734] 8021q: adding VLAN 0 to HW filter on device bond0
[  729.009997][T10734] 8021q: adding VLAN 0 to HW filter on device team0
[  729.118761][ T9793] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  729.135293][T10825] hsr_slave_0: entered promiscuous mode
[  729.145471][T10825] hsr_slave_1: entered promiscuous mode
[  729.154373][T10825] debugfs: 'hsr0' already exists in 'hsr'
[  729.160370][T10825] Cannot create hsr debugfs directory
[  729.222159][ T3861] bridge0: port 1(bridge_slave_0) entered blocking state
[  729.229807][ T3861] bridge0: port 1(bridge_slave_0) entered forwarding state
[  729.614439][ T3861] bridge0: port 2(bridge_slave_1) entered blocking state
[  729.622028][ T3861] bridge0: port 2(bridge_slave_1) entered forwarding state
[  731.400465][T10949] loop9: detected capacity change from 0 to 1024
[  731.997667][T10734] 8021q: adding VLAN 0 to HW filter on device batadv0
[  732.389646][T10825] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  732.530463][T10825] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  732.627428][T10825] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  732.703003][T10825] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  732.907184][T10734] veth0_vlan: entered promiscuous mode
[  733.030101][T10734] veth1_vlan: entered promiscuous mode
[  733.409572][T10734] veth0_macvtap: entered promiscuous mode
[  733.486995][ T5828] Bluetooth: hci5: command 0x0406 tx timeout
[  733.497002][T10734] veth1_macvtap: entered promiscuous mode
[  733.810830][T10734] batman_adv: batadv0: Interface activated: batadv_slave_0
[  733.962729][T10734] batman_adv: batadv0: Interface activated: batadv_slave_1
[  734.135775][ T3861] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  734.192174][ T3861] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  734.224144][T10825] 8021q: adding VLAN 0 to HW filter on device bond0
[  734.244413][ T3861] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  734.258613][ T5875] usb 10-1: new high-speed USB device number 4 using dummy_hcd
[  734.314049][ T3861] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  734.439359][T10825] 8021q: adding VLAN 0 to HW filter on device team0
[  734.455234][ T5875] usb 10-1: Using ep0 maxpacket: 16
[  734.508184][ T5875] usb 10-1: config 0 has 1 interface, different from the descriptor's value: 8
[  734.613927][ T5875] usb 10-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 6.00
[  734.623514][ T5875] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  734.632009][ T5875] usb 10-1: Product: syz
[  734.635588][ T4478] bridge0: port 1(bridge_slave_0) entered blocking state
[  734.636801][ T5875] usb 10-1: Manufacturer: syz
[  734.643738][ T4478] bridge0: port 1(bridge_slave_0) entered forwarding state
[  734.648402][ T5875] usb 10-1: SerialNumber: syz
[  734.824451][ T4478] bridge0: port 2(bridge_slave_1) entered blocking state
[  734.832279][ T4478] bridge0: port 2(bridge_slave_1) entered forwarding state
[  734.845570][ T5875] usb 10-1: config 0 descriptor??
[  734.962264][ T5875] ftdi_sio 10-1:0.0: FTDI USB Serial Device converter detected
[  734.973380][ T5875] usb 10-1: Detected FT232R
[  735.147095][ T5875] ftdi_sio ttyUSB0: Unable to read latency timer: -32
[  735.446909][ T5875] usb 10-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  735.695327][T10984] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1554'.
[  735.707329][T10984] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  736.630111][T10995] sit0: entered promiscuous mode
[  736.663726][T10995] netlink: 'syz.0.1555': attribute type 1 has an invalid length.
[  736.671891][T10995] netlink: 1 bytes leftover after parsing attributes in process `syz.0.1555'.
[  737.291788][ T5876] usb 10-1: USB disconnect, device number 4
[  737.510383][T10825] 8021q: adding VLAN 0 to HW filter on device batadv0
[  737.541826][ T5876] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  737.554435][ T5876] ftdi_sio 10-1:0.0: device disconnected
[  737.711254][T11007] loop8: detected capacity change from 0 to 512
[  737.906899][T11007] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  737.939401][T11005] loop9: detected capacity change from 0 to 1024
[  738.087271][T11007] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  738.100802][T11007] ext4 filesystem being mounted at /47/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  738.265248][T10825] veth0_vlan: entered promiscuous mode
[  738.362018][T10825] veth1_vlan: entered promiscuous mode
[  738.608612][ T5828] Bluetooth: hci6: command 0x0405 tx timeout
[  738.703536][T10825] veth0_macvtap: entered promiscuous mode
[  738.806534][T10825] veth1_macvtap: entered promiscuous mode
[  738.968809][ T9773] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  739.125595][T10825] batman_adv: batadv0: Interface activated: batadv_slave_0
[  739.275666][T10825] batman_adv: batadv0: Interface activated: batadv_slave_1
[  739.463898][ T3975] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  739.623687][ T3975] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  739.709211][ T3975] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  739.742749][ T3975] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  740.352551][T11031] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  740.467566][T11034] loop9: detected capacity change from 0 to 8
[  740.761989][T11034] SQUASHFS error: zlib decompression failed, data probably corrupt
[  740.772909][T11034] SQUASHFS error: Failed to read block 0x9b: -5
[  740.783141][T11034] SQUASHFS error: Unable to read metadata cache entry [99]
[  740.791660][T11034] SQUASHFS error: Unable to read inode 0x127
[  743.133714][T11055] loop8: detected capacity change from 0 to 512
[  743.389549][T11055] EXT4-fs error (device loop8): ext4_orphan_get:1392: inode #15: comm syz.8.1567: casefold flag without casefold feature
[  743.464017][T11055] EXT4-fs error (device loop8): ext4_orphan_get:1397: comm syz.8.1567: couldn't read orphan inode 15 (err -117)
[  743.563452][T11055] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  744.197005][ T9773] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  744.623825][T11071] loop8: detected capacity change from 0 to 512
[  744.663476][ T3861] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  744.671861][ T3861] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  744.828429][T11071] EXT4-fs (loop8): Test dummy encryption mode enabled
[  744.965496][T11071] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  744.996392][ T4084] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  745.004402][ T4084] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  745.135113][   T30] audit: type=1800 audit(1757698811.470:15): pid=11071 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.1570" name="file1" dev="loop8" ino=15 res=0 errno=0
[  745.543470][T11081] loop1: detected capacity change from 0 to 16
[  745.745443][ T9773] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  746.745614][ T5875] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  746.988050][ T5875] usb 2-1: Using ep0 maxpacket: 32
[  747.006288][ T5875] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  747.017847][ T5875] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  747.028032][ T5875] usb 2-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  747.037428][ T5875] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  747.157794][ T5875] usb 2-1: config 0 descriptor??
[  747.230108][ T5875] hub 2-1:0.0: USB hub found
[  747.421877][ T5875] hub 2-1:0.0: config failed, can't read hub descriptor (err -90)
[  747.786707][   T42] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[  747.911322][ T5875] hid-generic 0003:046D:C31C.0009: hidraw0: USB HID v8.00 Device [HID 046d:c31c] on usb-dummy_hcd.1-1/input0
[  748.018415][   T42] usb 9-1: Using ep0 maxpacket: 8
[  748.050923][   T42] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  748.062240][   T42] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  748.072752][   T42] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 4
[  748.086099][   T42] usb 9-1: New USB device found, idVendor=045e, idProduct=008e, bcdDevice= 0.00
[  748.095761][   T42] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  748.321872][T11113] loop1: detected capacity change from 0 to 512
[  748.400627][   T42] usb 9-1: config 0 descriptor??
[  748.789724][ T5875] usb 2-1: USB disconnect, device number 3
[  748.852684][T11112] fido_id[11112]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/2-1/report_descriptor': No such file or directory
[  748.997423][   T42] hid-generic 0003:045E:008E.000A: hidraw0: USB HID vff.fa Device [HID 045e:008e] on usb-dummy_hcd.8-1/input0
[  749.156340][   T42] usb 9-1: USB disconnect, device number 3
[  749.995670][T11120] fido_id[11120]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.8/usb9/report_descriptor': No such file or directory
[  750.533240][T11133] loop8: detected capacity change from 0 to 512
[  750.849727][T11133] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  750.863159][T11133] ext4 filesystem being mounted at /53/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  750.936822][T11133] netlink: 12 bytes leftover after parsing attributes in process `syz.8.1581'.
[  751.001940][ T4084] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  751.010734][ T4084] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  751.327263][ T4413] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  751.335854][ T4413] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  751.447154][ T9773] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  751.930812][T11149] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  752.810975][T11158] loop1: detected capacity change from 0 to 256
[  757.104300][T11202] loop1: detected capacity change from 0 to 8192
[  757.585613][ T5875] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  757.800014][ T5875] usb 3-1: Using ep0 maxpacket: 32
[  757.858145][ T5875] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  757.869382][ T5875] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  757.879575][ T5875] usb 3-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  757.888925][ T5875] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  758.073928][ T5875] usb 3-1: config 0 descriptor??
[  758.140998][ T5875] hub 3-1:0.0: USB hub found
[  758.391884][T11229] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1607'.
[  758.437616][ T5875] hub 3-1:0.0: config failed, can't read hub descriptor (err -90)
[  759.049233][ T5875] hid-generic 0003:046D:C31C.000B: hidraw0: USB HID v8.00 Device [HID 046d:c31c] on usb-dummy_hcd.2-1/input0
[  759.285246][T11236] loop2: detected capacity change from 0 to 512
[  759.476229][T11236] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842c11d, mo2=0002]
[  759.496434][T11236] System zones: 1-12
[  759.587473][T11236] EXT4-fs error (device loop2): ext4_iget_extra_inode:5104: inode #15: comm syz.2.1605: corrupted in-inode xattr: e_value size too large
[  759.704241][T11236] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.1605: couldn't read orphan inode 15 (err -117)
[  759.807137][T11236] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  760.220566][ T5875] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  760.243488][   T42] usb 3-1: USB disconnect, device number 3
[  760.436289][ T5875] usb 2-1: Using ep0 maxpacket: 32
[  760.482949][ T5875] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  760.494502][ T5875] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  760.507920][ T5875] usb 2-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  760.518391][ T5875] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  760.557564][ T5875] usb 2-1: config 0 descriptor??
[  760.609817][ T5875] hub 2-1:0.0: USB hub found
[  760.867313][ T5875] hub 2-1:0.0: config failed, can't read hub descriptor (err -90)
[  761.065687][T10825] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  761.149968][T11244] loop9: detected capacity change from 0 to 8192
[  761.385030][T11250] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1613'.
[  761.462017][ T5875] hid-generic 0003:046D:C31C.000C: hidraw0: USB HID v8.00 Device [HID 046d:c31c] on usb-dummy_hcd.1-1/input0
[  761.692051][T11258] loop1: detected capacity change from 0 to 512
[  762.268091][   T42] usb 2-1: USB disconnect, device number 4
[  762.401234][T11260] fido_id[11260]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/2-1/report_descriptor': No such file or directory
[  764.123607][T11281] loop8: detected capacity change from 0 to 2048
[  764.254309][T11281] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  764.985342][T11292] loop2: detected capacity change from 0 to 1024
[  765.493111][T11296] loop9: detected capacity change from 0 to 2048
[  765.745434][ T5875] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  765.978657][ T5875] usb 2-1: Using ep0 maxpacket: 32
[  766.300957][T11296] EXT4-fs (loop9): mounted filesystem 00000800-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  766.424969][ T5875] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  766.439566][ T5875] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  766.450915][ T5875] usb 2-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  766.460487][ T5875] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  766.489329][T11309] EXT4-fs error (device loop9): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  766.981325][T11296] EXT4-fs (loop9): Delayed block allocation failed for inode 18 at logical offset 4 with max blocks 2 with error 28
[  766.994976][T11296] EXT4-fs (loop9): This should not happen!! Data will be lost
[  766.994976][T11296] 
[  767.005402][T11296] EXT4-fs (loop9): Total free blocks count 0
[  767.011567][T11296] EXT4-fs (loop9): Free/Dirty block details
[  767.017831][T11296] EXT4-fs (loop9): free_blocks=2415919104
[  767.023722][T11296] EXT4-fs (loop9): dirty_blocks=16
[  767.029322][T11296] EXT4-fs (loop9): Block reservation details
[  767.035629][T11296] EXT4-fs (loop9): i_reserved_data_blocks=1
[  767.120739][ T5875] usb 2-1: config 0 descriptor??
[  767.293412][ T5875] hub 2-1:0.0: USB hub found
[  767.855456][ T5875] hub 2-1:0.0: config failed, can't read hub descriptor (err -90)
[  768.466846][ T9793] EXT4-fs (loop9): unmounting filesystem 00000800-0000-0000-0000-000000000000.
[  768.507929][T11320] netlink: 'syz.0.1632': attribute type 12 has an invalid length.
[  768.561530][ T5875] hid-generic 0003:046D:C31C.000D: hidraw0: USB HID v8.00 Device [HID 046d:c31c] on usb-dummy_hcd.1-1/input0
[  768.789239][T11314] loop1: detected capacity change from 0 to 512
[  769.375609][   T42] usb 2-1: USB disconnect, device number 5
[  769.615643][T11321] fido_id[11321]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory
[  769.660309][T11326] loop2: detected capacity change from 0 to 2048
[  769.857588][T11326] UDF-fs: warning (device loop2): udf_load_vrs: No anchor found
[  769.865791][T11326] UDF-fs: Scanning with blocksize 512 failed
[  769.932792][T11327] loop9: detected capacity change from 0 to 512
[  770.008776][T11327] EXT4-fs: quotafile must be on filesystem root
[  770.146327][T11326] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  770.730138][T11340] loop1: detected capacity change from 0 to 128
[  770.812186][T11338] loop8: detected capacity change from 0 to 2048
[  771.647486][T11338] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  771.662689][T11354] loop1: detected capacity change from 0 to 512
[  771.671827][T11354] EXT4-fs: Ignoring removed oldalloc option
[  771.894430][T11353] loop9: detected capacity change from 0 to 1024
[  772.260984][T11353] =====================================================
[  772.268544][T11353] BUG: KMSAN: uninit-value in hfs_find_1st_rec_by_cnid+0x212/0x3d0
[  772.282330][T11353]  hfs_find_1st_rec_by_cnid+0x212/0x3d0
[  772.290531][T11353]  __hfsplus_brec_find+0x274/0x840
[  772.296236][T11353]  hfsplus_brec_find+0x4df/0x9f0
[  772.301324][T11353]  hfsplus_find_attr+0x1eb/0x260
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  772.306663][T11353]  hfsplus_listxattr+0x61b/0x1bc0
[  772.311987][T11353]  listxattr+0x1e8/0x730
[  772.316652][T11353]  path_listxattrat+0x21e/0x6e0
[  772.321665][T11353]  __x64_sys_listxattr+0x9e/0x100
[  772.328473][T11353]  x64_sys_call+0x3aa0/0x3e20
[  772.333366][T11353]  do_syscall_64+0xd9/0x210
[  772.338237][T11353]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  772.344295][T11353] 
[  772.346921][T11353] Uninit was created at:
[  772.351375][T11353]  __kmalloc_noprof+0x95f/0x1310
[  772.357208][T11353]  hfsplus_find_init+0x90/0x1d0
[  772.362269][T11353]  hfsplus_listxattr+0x4d4/0x1bc0
[  772.375468][T11353]  listxattr+0x1e8/0x730
[  772.379896][T11353]  path_listxattrat+0x21e/0x6e0
[  772.393590][T11353]  __x64_sys_listxattr+0x9e/0x100
[  772.401027][T11353]  x64_sys_call+0x3aa0/0x3e20
[  772.406136][T11353]  do_syscall_64+0xd9/0x210
[  772.410801][T11353]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  772.417103][T11353] 
[  772.419544][T11353] CPU: 1 UID: 0 PID: 11353 Comm: syz.9.1643 Not tainted syzkaller #0 PREEMPT(none) 
[  772.429270][T11353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  772.439665][T11353] =====================================================
[  772.447780][T11353] Disabling lock debugging due to kernel taint
[  772.454048][T11353] Kernel panic - not syncing: kmsan.panic set ...
[  772.460600][T11353] CPU: 1 UID: 0 PID: 11353 Comm: syz.9.1643 Tainted: G    B               syzkaller #0 PREEMPT(none) 
[  772.471726][T11353] Tainted: [B]=BAD_PAGE
[  772.475962][T11353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  772.486146][T11353] Call Trace:
[  772.489516][T11353]  <TASK>
[  772.492527][T11353]  __dump_stack+0x26/0x30
[  772.497029][T11353]  dump_stack_lvl+0x53/0x270
[  772.501788][T11353]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  772.507803][T11353]  dump_stack+0x1e/0x25
[  772.512131][T11353]  vpanic+0x361/0xc50
[  772.516293][T11353]  panic+0x15d/0x160
[  772.520436][T11353]  kmsan_report+0x31c/0x320
[  772.525099][T11353]  ? kmsan_get_metadata+0xfb/0x160
[  772.530361][T11353]  ? __msan_warning+0x1b/0x30
[  772.535170][T11353]  ? hfs_find_1st_rec_by_cnid+0x212/0x3d0
[  772.541085][T11353]  ? __hfsplus_brec_find+0x274/0x840
[  772.546497][T11353]  ? hfsplus_brec_find+0x4df/0x9f0
[  772.551739][T11353]  ? hfsplus_find_attr+0x1eb/0x260
[  772.557073][T11353]  ? hfsplus_listxattr+0x61b/0x1bc0
[  772.562421][T11353]  ? listxattr+0x1e8/0x730
[  772.567051][T11353]  ? path_listxattrat+0x21e/0x6e0
[  772.572215][T11353]  ? __x64_sys_listxattr+0x9e/0x100
[  772.577594][T11353]  ? x64_sys_call+0x3aa0/0x3e20
[  772.582638][T11353]  ? do_syscall_64+0xd9/0x210
[  772.587457][T11353]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  772.593676][T11353]  ? filter_irq_stacks+0x49/0x190
[  772.598848][T11353]  ? kmsan_get_metadata+0xfb/0x160
[  772.604126][T11353]  ? kmsan_get_metadata+0xfb/0x160
[  772.609392][T11353]  ? kmsan_internal_memmove_metadata+0x91/0x230
[  772.615801][T11353]  ? kmsan_get_metadata+0xfb/0x160
[  772.621077][T11353]  ? kmsan_internal_memmove_metadata+0x91/0x230
[  772.627486][T11353]  ? kmsan_get_metadata+0xfb/0x160
[  772.632783][T11353]  __msan_warning+0x1b/0x30
[  772.637425][T11353]  hfs_find_1st_rec_by_cnid+0x212/0x3d0
[  772.643180][T11353]  ? kmsan_get_metadata+0xfb/0x160
[  772.648483][T11353]  __hfsplus_brec_find+0x274/0x840
[  772.653726][T11353]  ? __pfx_hfs_find_1st_rec_by_cnid+0x10/0x10
[  772.660026][T11353]  hfsplus_brec_find+0x4df/0x9f0
[  772.665094][T11353]  ? __pfx_hfs_find_1st_rec_by_cnid+0x10/0x10
[  772.671401][T11353]  hfsplus_find_attr+0x1eb/0x260
[  772.676487][T11353]  hfsplus_listxattr+0x61b/0x1bc0
[  772.681783][T11353]  ? terminate_walk+0x541/0x5b0
[  772.686863][T11353]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  772.692859][T11353]  ? filename_lookup+0x6ab/0x800
[  772.698055][T11353]  ? kmsan_get_metadata+0xfb/0x160
[  772.703329][T11353]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  772.709301][T11353]  ? kmsan_get_metadata+0xfb/0x160
[  772.714576][T11353]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  772.720553][T11353]  ? __pfx_hfsplus_listxattr+0x10/0x10
[  772.726175][T11353]  ? __pfx_hfsplus_listxattr+0x10/0x10
[  772.731777][T11353]  listxattr+0x1e8/0x730
[  772.736178][T11353]  path_listxattrat+0x21e/0x6e0
[  772.741178][T11353]  __x64_sys_listxattr+0x9e/0x100
[  772.746396][T11353]  x64_sys_call+0x3aa0/0x3e20
[  772.751373][T11353]  do_syscall_64+0xd9/0x210
[  772.756007][T11353]  ? irqentry_exit+0x16/0x60
[  772.760767][T11353]  ? clear_bhb_loop+0x40/0x90
[  772.765597][T11353]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  772.771639][T11353] RIP: 0033:0x7faaad78eba9
[  772.776158][T11353] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  772.796007][T11353] RSP: 002b:00007faaae66b038 EFLAGS: 00000246 ORIG_RAX: 00000000000000c2
[  772.804579][T11353] RAX: ffffffffffffffda RBX: 00007faaad9d5fa0 RCX: 00007faaad78eba9
[  772.812708][T11353] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000000
[  772.820800][T11353] RBP: 00007faaad811e19 R08: 0000000000000000 R09: 0000000000000000
[  772.828900][T11353] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  772.836981][T11353] R13: 00007faaad9d6038 R14: 00007faaad9d5fa0 R15: 00007ffcf963b4d8
[  772.845110][T11353]  </TASK>
[  772.848554][T11353] Kernel Offset: disabled
[  772.852929][T11353] Rebooting in 86400 seconds..