last executing test programs:

26.134276262s ago: executing program 0 (id=1042):
socket(0x15, 0x5, 0x0)
r0 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r0, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10)
bind$inet(r0, &(0x7f0000000340)={0x2, 0x2000, @loopback}, 0x10)
r1 = socket(0x15, 0x5, 0x0)
sendto$inet(r0, 0x0, 0x0, 0x0, 0x0, 0x0)
getsockopt(r1, 0x200000000114, 0x271e, 0x0, &(0x7f0000000040))

25.971156144s ago: executing program 0 (id=1045):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f0000000100)=@framed, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r0}, 0x10)
r1 = syz_open_dev$usbfs(&(0x7f0000000100), 0x75, 0x1a9a81)
ioctl$USBDEVFS_FREE_STREAMS(r1, 0x802c550a, &(0x7f0000000000)=ANY=[@ANYBLOB="02002303100007006000000002000020d3"])
ioctl$USBDEVFS_CONTROL(r1, 0x4004550d, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

25.731825222s ago: executing program 0 (id=1047):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=@updsa={0x104, 0x1a, 0x1, 0x3, 0x0, {{@in6=@private0, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x0, 0x0, 0xfffd}, {@in6=@local, 0x0, 0x2b}, @in6=@mcast2, {0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0xfffffffffffffffd}, {}, {}, 0x0, 0x0, 0xa, 0x2}, [@coaddr={0x14}]}, 0x104}}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount(&(0x7f0000000100)=@nullb, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0)
r1 = fcntl$getown(r0, 0x9)
sched_setscheduler(r1, 0x6, &(0x7f0000000000))

24.077543916s ago: executing program 0 (id=1050):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r1, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(&(0x7f0000000440)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
mount$bind(&(0x7f0000000400)='./file0\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x18d883, 0x0)
r2 = open_tree(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x89901)
move_mount(r2, &(0x7f0000000040)='.\x00', 0xffffffffffffff9c, 0x0, 0x0)
mount$bind(&(0x7f0000000440)='./file0\x00', &(0x7f0000000000)='./file0/file0\x00', 0x0, 0x10a5840, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000200)={'wlan0\x00'})

21.449503974s ago: executing program 0 (id=1058):
socket$netlink(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0))
bpf$MAP_CREATE(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee6, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x9}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r3, 0xc0502100, &(0x7f0000000240))
mmap$dsp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x11, 0xffffffffffffffff, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000180)='pagemap\x00')
pread64(r4, &(0x7f000001a240)=""/102400, 0x19000, 0x100018)

19.349815063s ago: executing program 0 (id=1064):
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x38}}, 0x20000040)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000300)={0x0, 0x0, 0x6, 0x3}, 0x10)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000900)=[@in6={0xa, 0x0, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x32}, 0x9c)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
recvmmsg(r0, &(0x7f0000000100)=[{{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001c40)=""/4096, 0x1000}, {&(0x7f0000000440)=""/238, 0xee}], 0x2}, 0xfffffffc}], 0x40000000000008b, 0x0, 0x0)

10.831458014s ago: executing program 2 (id=1090):
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x2, 0x4, &(0x7f0000000040)=ANY=[], &(0x7f0000003ff6)='GPL\x00', 0x4}, 0x90)
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000700), 0x8, 0x0)
fchmod(r0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000a40), 0x2040)
ioctl$SNDRV_SEQ_IOCTL_CLIENT_ID(r1, 0x80045301, &(0x7f0000000a80))
r2 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000080)=ANY=[@ANYBLOB="92dd1670b4588904d142db41c9e6455b4ecbb217afc30ef677a5c1"], 0x15)
r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
close(r1)
openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
syz_mount_image$exfat(&(0x7f0000001500), &(0x7f0000001540)='./file0\x00', 0x0, &(0x7f0000000100)=ANY=[], 0x2, 0x14fe, &(0x7f0000002ac0)="$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")
syz_mount_image$fuse(0x0, &(0x7f0000000540)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file2\x00', 0x143042, 0x0)
pwritev2(r4, &(0x7f0000000140)=[{&(0x7f0000000080)="ff", 0x1}], 0x1, 0x5505, 0x4, 0x0)
sendfile(r4, r4, 0x0, 0x10fc)
read$FUSE(r3, &(0x7f000000c3c0)={0x2020}, 0x2020)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_usb_connect(0x2, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000079db8540da0b77010b7d000000010902120001000000000904", @ANYRES32=r5, @ANYRES64=r5], 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
rt_sigprocmask(0x0, &(0x7f0000000480)={[0xfffffffffffffffd]}, 0x0, 0x8)
sendmsg$ETHTOOL_MSG_FEATURES_GET(0xffffffffffffffff, 0x0, 0x40)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r6}, 0x10)

8.671107367s ago: executing program 2 (id=1095):
unshare(0x22020400)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x5, &(0x7f0000000080)=0x7, 0x4)

8.521498008s ago: executing program 2 (id=1096):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
r1 = open(0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
bind$inet(0xffffffffffffffff, 0x0, 0x0)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x2d)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
sendmsg$DEVLINK_CMD_RELOAD(r1, &(0x7f0000000480)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x100000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x800}, 0x40408c2)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_NEW(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000007c0)=ANY=[@ANYBLOB="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"], 0xbc}}, 0x0)
mmap(&(0x7f000053b000/0x3000)=nil, 0x3000, 0x3000000, 0x50, r3, 0xd6477000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TCSETS(r7, 0x40045431, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "df3e0400000000000000000000000609000040"})
r8 = syz_open_pts(r7, 0x0)
r9 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r9, 0x1, r7, &(0x7f0000000080))
dup3(r8, r7, 0x0)

7.738722957s ago: executing program 4 (id=1098):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r6=>0xffffffffffffffff}, 0x0)
mkdirat$binderfs(0xffffffffffffff9c, &(0x7f00000019c0)='./binderfs2\x00', 0x1ff)
mount$binderfs(0x0, &(0x7f0000001dc0)='./binderfs2\x00', &(0x7f0000001e00), 0x0, &(0x7f0000001e40)={[{@stats}]})
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
close_range(r6, 0xffffffffffffffff, 0x0)
sendmsg$IPVS_CMD_NEW_SERVICE(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x3c, r1, 0x1, 0x0, 0x0, {}, [@IPVS_CMD_ATTR_SERVICE={0x28, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_FWMARK={0x8}, @IPVS_SVC_ATTR_FLAGS={0xc}, @IPVS_SVC_ATTR_SCHED_NAME={0x7, 0x6, 'rr\x00'}, @IPVS_SVC_ATTR_TIMEOUT={0x8}]}]}, 0x3c}}, 0x0)
sendmsg$IPVS_CMD_NEW_SERVICE(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14, r1, 0x1, 0x0, 0x0, {0x11}}, 0x14}}, 0x0)
dup(0xffffffffffffffff)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(0xffffffffffffffff, 0x84009422, &(0x7f0000000240)={0x0, 0x0, {0x0, @struct}, {}, {0x0, @struct}})
ioctl$BTRFS_IOC_SCRUB_PROGRESS(0xffffffffffffffff, 0xc400941d, &(0x7f0000000140)={0x0, 0xfffffffffffffbf9, 0xffffffff, 0x1})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x4, &(0x7f0000001780)=ANY=[@ANYBLOB="181e8297882c80bdf05e64000000000000000000000000000071183e00000000009500000000000000dfc8ecdde4934ce9f64ad31725580628efaca6ebe2e0526ff53d641ab49f8ef90cb4f8fc922fb47953eba41ba9d7c98a47425e3b3f1936151368ab93b8aaead9250afeb4a1674bb4cc96ac079a907fcc98bc7325e1958f874b7ddc13bef4954886a07adc6eb4c12d08745987e70c5a001111c928ffbeff4bcc872b62d84be1e205f93bb02fa12d3e6e0440c9c0492ec3f20e15d36f53"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x90)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r7, 0x6, 0x0, 0x0, 0x0)
ioctl$int_in(r7, 0x5421, &(0x7f0000000300)=0x208)
bind$inet6(r7, &(0x7f0000000000)={0xa, 0x8000002}, 0x1c)
setsockopt$sock_int(r7, 0x1, 0x12, 0x0, 0x0)

7.468343967s ago: executing program 2 (id=1099):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000600), 0x0, 0x0)
ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000280)={{}, 'syz1\x00', 0x10})
pipe2$9p(0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000001a00)=[{{0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000100)="2bb042a72d7d159fb1aba526251dfa280b6742fd12c271fa874978797eb6", 0x1e}, {&(0x7f0000000340)="8333b614a8820a89f30d5676495ccdfb2c9ad80bce9256e69ce7b5cea2e969240360e8e0e5edad9d2c1a074f9fab26a625dad2f7b8baba9ae3bb26421e0dfbc0be30b4d84316f391f730edbda600c1d5fdbc6d273d75914d8f661df56a2b97663fbf1b87f389dcdd4248c680cea777b32a2fb05ebf0ede", 0x77}], 0x2, &(0x7f0000000780)=[@ip_tos_int={{0x14, 0x0, 0x1, 0x5}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @empty, @broadcast}}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x55}}, @ip_retopts={{0x24, 0x0, 0x7, {[@noop, @end, @generic={0x86, 0x11, "230883ebfe8d554a60f16f2a4cafce"}]}}}], 0x78}}, {{&(0x7f0000000800)={0x2, 0x4e22, @loopback}, 0x10, &(0x7f00000012c0)=[{0x0}, {0x0}, {&(0x7f0000000900)="ae3c255a7cb3210c216d25e619a4c07bc37397bb29f95fa55adbbe275aef09f6f26bae7bf541224ca0e74e2ac9cd04e7dcc5ab8d80abe73ca0f966c00217ced3cb8adcf04f9f1927531e110ed237e9768b4bfd7868e9f76e35cfed0acf3750cfdc5f1fbacbf021cc001695200cae33d2fe20d99a6557f4ba45c91e39a83019baed6fe62abbe9c80df64bacc9f8b0c4b0c744de4edb7b5f0c8c8bc4b230b3d7a3aa082ed9a6e2a6aebcdfb694e61fc6069e33b13d", 0xb4}, {&(0x7f0000001200)="becc521b5876c2f88c2c5f7ca3b9a4c83ace37aa6ea08198d8afc7cc9c61b1a2a289f37cf211eb39bc328b6590379360aeed6c852f7705a7d3eba219d5ea623063b0b3e64bc50ac23c61a4cba2002a33bf12ee3e21eaae6c88dcd1e4299524d361956d635f65a577fdd3f580c4dbdf1e73482e01f9721b7aae4a7dcd51b196202e738c285d7fc83865aabd13b2e5d2f6dce6015c61fe2de92db6de401042b449d3220a88570f3f1d2c35", 0xaa}], 0x4, &(0x7f0000001340)=[@ip_tos_u8={{0x11, 0x0, 0x1, 0x5}}, @ip_tos_u8={{0x11}}], 0x30}}, {{0x0, 0x0, &(0x7f0000001440), 0x0, &(0x7f0000001500)=[@ip_retopts={{0x10}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x9}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @initdev={0xac, 0x1e, 0x1, 0x0}, @loopback}}}, @ip_tos_int={{0x14}}], 0x60}}, {{&(0x7f0000001480)={0x2, 0x4e23, @rand_addr=0x64010102}, 0x10, 0x0}}], 0x4, 0x2000040)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000600), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x80000c, &(0x7f00000003c0)=ANY=[@ANYBLOB="706172743d3078300002a27f9edc6b44900000c63d5f852c6769643d", @ANYRESOCT, @ANYRESOCT=0x0, @ANYRES8, @ANYRES32, @ANYRES8, @ANYBLOB="2c6e03d465636f6d706f73652c6769643d29ab72f4a2f73b811c7fd9bae7ecd520839bd791f81b6637f549a77ac6cb621635f9c08b2615964a3c43b727df50d049dc760465dea7349206240e6fb4756f276c72f20bab7d507fe4853b18ebe583cbf9009044b021249834326e80399ca072639251325e38177eef4f05093acfe76553919ecca99460ea4ebdbcef9c4e0ed3f10f86889116979b7aa52b38442546b806d6b8964f99a04195ad43adb611", @ANYRES16, @ANYBLOB="4599"], 0x1, 0x701, &(0x7f00000009c0)="$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")
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, &(0x7f0000000200)="f7790066baa00066b86b4266ef66ba420066b8e20066ef0f29902cbb0000c4e2b1ba8c88d9000000666666440f38826b410f7842280f07b8010000000f01d9c4033921820f47a753fd", 0x49}], 0x1, 0x0, 0x0, 0x0)
clock_adjtime(0x0, &(0x7f00000004c0)={0xc5, 0x0, 0xfffffffffffffff9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200004, 0x0, 0x0, 0x0, 0x0, 0x7})
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, &(0x7f0000000680)="66420f3841c5b9f60200000f3266baf80cb870047a85ef66bafc0c66ed66b80c008ee80fe9b300000100b9220000400f322e0f211c26460fc7b0003000000f78e2b8010000000f01c1", 0x49}], 0x1, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
open(&(0x7f00000000c0)='./bus\x00', 0x5e142, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140))
ioctl$KVM_RUN(r4, 0xae80, 0x0)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r6, 0x89f3, &(0x7f00000001c0)={'syztnl0\x00', &(0x7f0000000040)={'ip_vti0\x00', 0x0, 0x20, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x16, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @loopback, @private=0xa010102}}}})
creat(&(0x7f0000000080)='./file0\x00', 0x142)

6.616509532s ago: executing program 4 (id=1100):
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'sit0\x00', &(0x7f00000002c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x400, {{0x28, 0x4, 0x0, 0x0, 0xa0, 0x64, 0x0, 0x0, 0x0, 0x0, @broadcast, @remote, {[@timestamp={0x44, 0x18, 0x0, 0x0, 0x9, [0x401, 0x5, 0x0, 0x5, 0x0]}, @timestamp_prespec={0x44, 0x44, 0xc0, 0x3, 0x1, [{@private=0xa010100}, {@multicast1, 0x5}, {@remote}, {@dev, 0x65c}, {@broadcast}, {@empty}, {@multicast1, 0xffd200}, {@private=0xa010100, 0x7}]}, @timestamp_prespec={0x44, 0x4, 0x0, 0x3, 0x8}, @noop, @noop, @noop, @lsrr={0x83, 0xf, 0xdc, [@private=0xa010102, @rand_addr=0x64010102, @multicast1]}, @rr={0x7, 0x17, 0x0, [@dev, @remote, @multicast1, @private=0xa010102, @remote]}]}}}}})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000})
ioctl$KVM_NMI(r4, 0xae9a)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, &(0x7f0000000680)={0x101, [], 0xc1, "b7b22e04038224"})

5.933622013s ago: executing program 4 (id=1101):
socketpair$unix(0x1, 0x2, 0x0, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f00000004c0)={0x0, 0x3, 0x6, @broadcast}, 0x10)
close(r0)

5.933366003s ago: executing program 3 (id=1102):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f00000005c0)=ANY=[@ANYBLOB="050000000000000061110c00000000008510000002000000850000000500000095000000000000009500a5050000000077d8f3b423cdac8d80000000000000002be16ad10a48b243ccc42606d25dfd73a015e0ca7fc2506a0f7535f7866907dc6751dfb265a0d6453559c3421eed73d56615fe6c54c3b3ffe1b4ce25d7c983c044c03bf3a48dfe47ec9dd6c091c30b93bfae76d9ebacd3ed3e26e7a23129d6606fd28a69989d552af6bda9df2c3af36effff9af2551ce896165127cb3f011a7d06602e2fd52347125907000000000000003ed38ae89d24e1cebfba2f87925bfacba83109751fe6c05405d027edd68149ee99eef6a6992308a4fc0b7c70bc677d6dd4aed4af7500d7900a820b6347184e9a217b5614cd50cbe43a1ed2526814bc0000e9e086ce48e90defb6670c3df262ad0a97aec7291c25447c106a99893e10db21901eb397b2f5fd71d20fa7a050fbbef9e326ea27e513e96068fd1e8a43e89f9c85c822a961546ed5363c17ff1432d08806bc376e3e49ee52b59d13182e1f24ed200ada12f7a1001500a710eb1affb87ba55b2d72078e9f40b4ae7d01000000d11cd22c35d32940000088dde499000000fdffffff000000000000000000000000000000000000000000000c52f4ebd2c893bb97a068bd10734a83584898eccb26f7b789cfc4cd995fa3e11a5c74c85404e2df3ad37b729ac83b0dcb4f48f3c3356b9997fc455a17690b6f7f9ccbe4b1701941b18a904c0e585a66c3b84b138efc20a546d3d5227e23b03f2a834391ad24fe7d9b20cf92cb151763d41f5c76e2ff3e93ee296c4082ee73e7e197253a2b66c353312c9d75711ce1623e9c54bdff59d2a69dcb7d84c235b23a4480c2461b405cfd1a38992f295ad3adc94cd07c850d1ce6d0b2fea02c24e9280333152fb794e4ddea02017a6c139b50101caecaf2abc0842b99a96fc4275ad107274e2934a87a4ddcdb112754ca5bdec0ead14b6c0f19a43a2f04c7f0be31491eb8c9ff68236c8600000000000000000000000066e034c81c3cab4e33fc8dc55ce0ada18dcbf31c6ea1893add3bee3e10fc873d1d922b0877cbcd95b839d3059d5140a1f742f6e75741e39e5cb6a193e06a1043375b0f61b5d4e17c81baa31b924d84f2243471221c15fa12313ffbfa7c2730302b66a99f66705b71e6205e7cbf3643561eabb9a63fcd604d5cc27e1317ad94cf438d71873e540be16b6ca20508011132153c528f7bca92980a3223c5b9cdddedb0a14adddf9a6e70a26b5c0ee0879c349814bee9d96d8bd23db4e801d49201ae84090455682794098afa42b34196b1d849020eeeb1ef48d003d71524683d7cdfa841bca708414fb8ff49742420d1ab7fa678aa4806d5247616e8bc0b02887f8efe9310ccf9bec1c9b7f6671c9d59ac6b09b4436cafdd1887c8e884c930d21ace088ccc99a94d4b33da2fc1b1310bb607a9ad65844655de1ac9fd36d12e07a821fb951368a970c58fb4f3f403fdaf68902874"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6}, 0x70)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
syz_emit_ethernet(0x3e, 0x0, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@metacopy_on}]})
r4 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
mknodat$loop(r4, &(0x7f0000001600)='./file1\x00', 0x0, 0x0)
chdir(&(0x7f0000000140)='./bus\x00')
link(&(0x7f0000000200)='./file1\x00', &(0x7f0000000300)='./bus\x00')
linkat(r4, &(0x7f0000000180)='./file1\x00', r4, 0x0, 0x0)
rename(0x0, &(0x7f0000000280)='./file1\x00')
open(&(0x7f00000002c0)='./bus\x00', 0x14927e, 0x0)
creat(&(0x7f0000000100)='./bus\x00', 0xe4c68c55c8a9ffa8)

4.610088733s ago: executing program 3 (id=1103):
r0 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r1, &(0x7f0000000680)={0x0, 0xec0, &(0x7f0000000540)={&(0x7f0000000700)={0x38, r0, 0x10ada85e65c25349, 0x0, 0x8000000, {{0x6b}, {@val={0x8}, @val={0xc}}}, [@NL80211_ATTR_TID_CONFIG={0x10, 0x11d, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE={0x8, 0xd, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x4}]}]}]}]}, 0x38}}, 0x0)

4.494137551s ago: executing program 1 (id=1104):
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x2, 0x4, &(0x7f0000000040)=ANY=[], &(0x7f0000003ff6)='GPL\x00', 0x4}, 0x90)
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000700), 0x8, 0x0)
fchmod(r0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000a40), 0x2040)
ioctl$SNDRV_SEQ_IOCTL_CLIENT_ID(r1, 0x80045301, &(0x7f0000000a80))
r2 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000080)=ANY=[@ANYBLOB="92dd1670b4588904d142db41c9e6455b4ecbb217afc30ef677a5c1"], 0x15)
r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
close(r1)
openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
syz_mount_image$exfat(&(0x7f0000001500), &(0x7f0000001540)='./file0\x00', 0x0, &(0x7f0000000100)=ANY=[], 0x2, 0x14fe, &(0x7f0000002ac0)="$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")
syz_mount_image$fuse(0x0, &(0x7f0000000540)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file2\x00', 0x143042, 0x0)
pwritev2(r4, &(0x7f0000000140)=[{&(0x7f0000000080)="ff", 0x1}], 0x1, 0x5505, 0x4, 0x0)
sendfile(r4, r4, 0x0, 0x10fc)
read$FUSE(r3, &(0x7f000000c3c0)={0x2020}, 0x2020)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_usb_connect(0x2, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000079db8540da0b77010b7d000000010902120001000000000904", @ANYRES32=r5, @ANYRES64=r5], 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
rt_sigprocmask(0x0, &(0x7f0000000480)={[0xfffffffffffffffd]}, 0x0, 0x8)
sendmsg$ETHTOOL_MSG_FEATURES_GET(0xffffffffffffffff, 0x0, 0x40)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r6}, 0x10)

4.390577059s ago: executing program 3 (id=1105):
r0 = socket$inet(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000d06000)=0x1, 0x4)
setsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000000000)="89070404", 0x4)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f00000000c0)='bridge_slave_1\x00', 0x10)
connect$inet(r0, &(0x7f0000000080)={0x2, 0x0, @broadcast}, 0x10)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)={0x2, 0xe, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}}, @sadb_address={0x3, 0x6}, @sadb_x_policy={0x8, 0x12, 0x0, 0x2, 0x0, 0x0, 0x0, {0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @in6=@mcast2, @in=@empty}}]}, 0x80}}, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000140), 0x4)

4.177367655s ago: executing program 3 (id=1106):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
getpid()
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000180)=0xfffd)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_int(r1, &(0x7f0000000080)='cpuset.mems\x00', 0x2, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000080)={0x54, 0x2, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_CADT_FLAGS={0x8, 0x11}]}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_TYPENAME={0x10, 0x3, 'hash:ip,mac\x00'}]}, 0x54}}, 0x0)
r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$IP_VS_SO_SET_ADD(r2, 0x0, 0x482, &(0x7f0000000040)={0x3a, @private=0xa010100, 0x4e23, 0x0, 'wlc\x00', 0x0, 0xfffffffe}, 0x2c)
r3 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX(r3, 0x84, 0x6e, &(0x7f0000009200)=[@in={0x2, 0x0, @remote}], 0x10)
fcntl$getownex(r0, 0x10, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)=ANY=[], 0x50}}, 0x0)
sendmsg$IPSET_CMD_FLUSH(r4, &(0x7f0000002900)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB="1c000000040601080000000000000000000000000500010007"], 0x1c}, 0x1, 0x0, 0x0, 0x20004084}, 0x10)
setsockopt$inet6_IPV6_RTHDRDSTOPTS(0xffffffffffffffff, 0x29, 0x37, &(0x7f0000000400)=ANY=[@ANYBLOB="3c0e000000000000c91000000000000000000000ffff64010102075000000001120003003367d3a8f8adb3a3a200000000000000f9ffffffffffffff228200000000"], 0x80)
removexattr(&(0x7f0000000040)='./cgroup.cpu/cpuset.cpus\x00', &(0x7f0000000480)=@known='system.posix_acl_access\x00')
socket$xdp(0x2c, 0x3, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
r5 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
ioctl$VIDIOC_S_SELECTION(r5, 0xc040565f, &(0x7f00000000c0)={0x3, 0x0, 0x0, {0x0, 0x204, 0xf75c, 0x80}})
r6 = syz_usb_connect(0x0, 0x3f, &(0x7f0000000080)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f000200000009050502000000001009058b1e20"], 0x0)
syz_usb_control_io(r6, 0x0, &(0x7f0000000300)={0x84, &(0x7f0000001a80)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_open_dev$char_usb(0xc, 0xb4, 0x0)

2.493008042s ago: executing program 4 (id=1107):
r0 = msgget$private(0x0, 0x82)
msgctl$IPC_STAT(r0, 0x2, &(0x7f0000000000)=""/233)
msgctl$MSG_STAT(r0, 0xb, &(0x7f0000000100)=""/129)
msgsnd(r0, &(0x7f00000001c0)={0x1, "0ef22a009a787218037f66a6927fe5255c0fe28a92ec80c9aa13db31a41d563aea495d7dfd3e6d108dc00af943fae107a3d33abb71303fb74807b2a41d105bf0a4a0398933ca09a4aac82625e9e3d033359f491048671920bdc9e5c347ffeff040800359567c18d1ad41f72302f03e73fbe60bf8db93b10c0c9bdbb97d28e4fe0c774cd3b93a1ff2889d1f0f5fd4d908788f999761db8f6fbd285d002f24ff185d8adefb43498fd55d920be1da1e0abd8eebf71106027fc250812d8d0ec04436c4e5aeeced36137006"}, 0xd1, 0x800)
msgsnd(r0, &(0x7f00000002c0)={0x3, "4d5d53d5fa39d72c9c198891149ec998c2d6750cc8da77a42fa4dcff75786227778972f5b126a5e6d74570537b31e9eba6e7a5602cf49c358f221747"}, 0x44, 0x800)
msgrcv(r0, &(0x7f0000000340)={0x0, ""/116}, 0x7c, 0x1, 0x1000)
msgrcv(r0, &(0x7f0000000440)={0x0, ""/93}, 0x65, 0x1, 0x0)
getresuid(&(0x7f0000000700), &(0x7f0000000740)=<r1=>0x0, &(0x7f0000000780))
r2 = getpid()
msgctl$IPC_SET(r0, 0x1, &(0x7f0000000840)={{0x2, 0x0, 0x0, r1, 0x0, 0x26, 0x81}, 0x0, 0x0, 0x5, 0x40, 0x8, 0x2, 0x5, 0x81, 0x3ac0, 0x5, 0x0, r2})

2.488042963s ago: executing program 1 (id=1108):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={<r2=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_MAX_BURST(r0, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={r2, 0x8}, 0x8)

2.452798515s ago: executing program 2 (id=1109):
socket$nl_netfilter(0x10, 0x3, 0xc)
clock_getres(0xb, &(0x7f0000000000))
clock_nanosleep(0x0, 0x1, &(0x7f0000000040)={0x8000000000000000, 0x1}, &(0x7f0000000080))
clock_settime(0x4, &(0x7f0000000140)={0x2, 0xfffffffffffff112})
clock_nanosleep(0xf, 0x1, &(0x7f0000000180)={0x77359400}, &(0x7f00000001c0))
clock_settime(0xe, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000240)=0x1)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x5)
r3 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r3, 0x0, 0x48b, &(0x7f0000000000)={0x2, 'macvlan0\x00'}, 0x18)
setsockopt$IP_VS_SO_SET_STOPDAEMON(r3, 0x0, 0x48c, &(0x7f00000002c0)={0x2, 'pim6reg1\x00'}, 0x18)

2.249595191s ago: executing program 1 (id=1110):
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)={0x15, 0x65, 0xffff, 0x0, 0x8, '9P2000.u'}, 0x15)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff0180"], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000040)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000180)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$RDMA_USER_CM_CMD_BIND_IP(r2, &(0x7f00000002c0)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}}}, 0x30)
write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=fd,rfd', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',access=', @ANYBLOB='9'])
chdir(&(0x7f0000000200)='./file0\x00')
fchmodat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0xffffff19)

1.141001784s ago: executing program 2 (id=1111):
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000000), 0x3a)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000040)=@framed, 0x0}, 0x90)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x40000000000008b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$key(0xf, 0x3, 0x2)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/timer_list\x00', 0x0, 0x0)
sendfile(r3, r4, 0x0, 0x20000023896)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
gettid()
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000017c0)=@newtaction={0xe6c, 0x30, 0x25, 0x0, 0x0, {}, [{0xe58, 0x1, [@m_pedit={0xe54, 0x1, 0x0, 0x0, {{0xa}, {0xe28, 0x2, 0x0, 0x1, [@TCA_PEDIT_KEYS_EX={0x4}, @TCA_PEDIT_PARMS_EX={0xe20, 0x4, {{{}, 0x2}, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x80000}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, {}, {}, {}, {}, {}, {0x0, 0xfffffffe}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x8}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0xffffffff}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}], [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x2}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe6c}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r0}, 0x10)
mmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x2, 0x13, 0xffffffffffffffff, 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f00000000c0), 0xffffffffffffffff)

1.073237069s ago: executing program 1 (id=1112):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_type(r0, &(0x7f00000001c0), 0x2, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000a70000000800000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
socket$tipc(0x1e, 0x5, 0x0)
sendfile(r2, r1, 0x0, 0x8fa)

941.656729ms ago: executing program 1 (id=1113):
socket$netlink(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0))
bpf$MAP_CREATE(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x9}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r3, 0xc0502100, &(0x7f0000000240))
mmap$dsp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x11, 0xffffffffffffffff, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000180)='pagemap\x00')
pread64(r4, &(0x7f000001a240)=""/102400, 0x19000, 0x100018)

941.419199ms ago: executing program 4 (id=1114):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000011000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000680)={&(0x7f00000006c0)='net_dev_xmit\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000002ec0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r2, 0x18000000000002a0, 0xe2c, 0x60000000, &(0x7f0000000100)="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", 0x0, 0x24, 0x60000000}, 0x2c)

867.570245ms ago: executing program 3 (id=1115):
r0 = socket$inet(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000d06000)=0x1, 0x4)
setsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000000000)="89070404", 0x4)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f00000000c0)='bridge_slave_1\x00', 0x10)
connect$inet(r0, &(0x7f0000000080)={0x2, 0x0, @broadcast}, 0x10)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)={0x2, 0xe, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}}, @sadb_address={0x3, 0x6}, @sadb_x_policy={0x8, 0x12, 0x0, 0x2, 0x0, 0x0, 0x0, {0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @in6=@mcast2, @in=@empty}}]}, 0x80}}, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000140), 0x4)

540.317319ms ago: executing program 4 (id=1116):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x2000040, &(0x7f00000007c0)={[{@errors_remount}, {@nodiscard}, {@noquota}, {@init_itable}, {@stripe={'stripe', 0x3d, 0x79}}, {@resgid}, {@sysvgroups}, {@delalloc}, {@usrquota}]}, 0x10, 0x4d2, &(0x7f00000002c0)="$eJzs3c9rHG8ZAPBnJtlvf+VrUvVQC7bFVtKi3U0a2wYPtYLYU8Fa7zUmmxCyyYbspm1CkRTvCiIqePLkRfAPEKR/gggFvUsVRbTVgwd1ZWdnaxt3m0i3OzX5fGA67zvv7j7P27Az88687ARwaJ2LiJsRMRIRlyJiPN+e5sutdvudzutePH80316SaLXu/jmJJN/W/awkX5+IiJ2IOBoRX70V8Y3kv+M2trZX5mq16kZerzRX1yuNre3Ly6tzS9Wl6trMzPS12euzV2enBtLPiYi48aXff/87P/nyjV989sFv7/3x4jfbaY3l7a/2Y5A6XS9l/xddoxGx8S6CFWAkX5f6tH97ZIjJAACwp/Y5/kcj4lPZ+f94jGRnpwAAAMBB0vrCWPwjiWgBAAAAB1aazYFN0nI+F2As0rRc7szh/XgcT2v1RvMzi/XNtYXOXNmJKKWLy7XqVD5XeCJKSbs+nc+x7dav7KrPRMTJiPje+LGsXp6v1xaKvvgBAAAAh8SJXeP/v41n4/8jRecFAAAADNhE0QkAAAAA75zxPwAAABx8xv8AAABwoH3l9u320uo+/3rh/tbmSv3+5YVqY6W8ujlfnq9vrJeX6vWl7Df7Vvf6vFq9vv65WNt8WGlWG81KY2v73mp9c615b/m1R2ADAAAAQ3Ty7JPfJBGx8/lj2dL2QdFJAUOR7NGePSTkWV753RASAoZmpOgEgMKMFp0AUJhS0QkAhdvrOkDfyTu/HHwuAADAuzH5if73/10bgIMtLToBAGDo3P+Hw6v0+gzAq8VlAhTlI3u0v/39/1brf0oIAAAYuLFsSdJyfi9wLNK0XI74MHssQClZXK5Vp/Lxwa/HS0fa9ensncmec4YBAAAAAAAAAAAAAAAAAAAAAAAAgI5WK4kWAAAAcKBFpH9Isl/zj5gcvzC2+/rAB8nfx7N1RDz40d0fPJxrNjem29v/8nJ784f59itFXMEAAAAAduuO07vjeAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYpBfPH813l2HG/dMXI2KiZ/yzR7PV0ShFxPG/JjH6yvuSiBgZQPydxxFxqlf8pJ1WTEQni17xjxUYP42IEwOID4fZk/b+52av718a57J17+/faL68rf77vzS6+7+RPvufD/cZ4/TTn1X6xn8ccXq09/6nGz/pE//8PuN//Wvb2/3aWj+OmOx5/Elei1Vprq5XGlvbl5dX55aqS9W1mZnpa7PXZ6/OTlUWl2vV/N+eMb77yZ//6039P94n/sQe/b+wz/7/8+nD5x/rFEu94l883/v4e6pP/DQ/9n06L7fbJ7vlnU75VWd++qszb+r/Qp/+v/z79zjQtmNe3Gf/L9351rN9vhQAGILG1vbKXK1W3fh/LKTxXqShMJDCkfcjDYVOoeg9EwAAMGj/OekvOhMAAAAAAAAAAAAAAAAAAAA4vIbxc2K7Y+4U01UAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgDf6dwAAAP//sf7Zeg==")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000780)={&(0x7f0000000740)='ext4_es_lookup_extent_exit\x00', r3}, 0x10)
ioctl$BTRFS_IOC_SET_FEATURES(0xffffffffffffffff, 0x40309439, &(0x7f0000000000)={0x0, 0x0, 0x4})
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8b04, &(0x7f0000000000)={'wlan1\x00'})
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
io_setup(0x2, &(0x7f0000000140)=<r4=>0x0)
io_destroy(r4)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r6 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r6, 0x0, 0x0, 0x0, 0x0)
prlimit64(0x0, 0x8, 0x0, 0x0)

357.467713ms ago: executing program 3 (id=1117):
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x2, 0x4, &(0x7f0000000040)=ANY=[], &(0x7f0000003ff6)='GPL\x00', 0x4}, 0x90)
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000700), 0x8, 0x0)
fchmod(r0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000a40), 0x2040)
ioctl$SNDRV_SEQ_IOCTL_CLIENT_ID(r1, 0x80045301, &(0x7f0000000a80))
r2 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000080)=ANY=[@ANYBLOB="92dd1670b4588904d142db41c9e6455b4ecbb217afc30ef677a5c1"], 0x15)
r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
close(r1)
openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
syz_mount_image$exfat(&(0x7f0000001500), &(0x7f0000001540)='./file0\x00', 0x0, &(0x7f0000000100)=ANY=[], 0x2, 0x14fe, &(0x7f0000002ac0)="$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")
syz_mount_image$fuse(0x0, &(0x7f0000000540)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file2\x00', 0x143042, 0x0)
pwritev2(r4, &(0x7f0000000140)=[{&(0x7f0000000080)="ff", 0x1}], 0x1, 0x5505, 0x4, 0x0)
sendfile(r4, r4, 0x0, 0x10fc)
read$FUSE(r3, &(0x7f000000c3c0)={0x2020}, 0x2020)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_usb_connect(0x2, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000079db8540da0b77010b7d000000010902120001000000000904", @ANYRES32=r5, @ANYRES64=r5], 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
rt_sigprocmask(0x0, &(0x7f0000000480)={[0xfffffffffffffffd]}, 0x0, 0x8)
sendmsg$ETHTOOL_MSG_FEATURES_GET(0xffffffffffffffff, 0x0, 0x40)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r6}, 0x10)

0s ago: executing program 1 (id=1118):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000600), 0x0, 0x0)
ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000280)={{}, 'syz1\x00', 0x10})
pipe2$9p(0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000001a00)=[{{0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000100)="2bb042a72d7d159fb1aba526251dfa280b6742fd12c271fa874978797eb6", 0x1e}, {&(0x7f0000000340)="8333b614a8820a89f30d5676495ccdfb2c9ad80bce9256e69ce7b5cea2e969240360e8e0e5edad9d2c1a074f9fab26a625dad2f7b8baba9ae3bb26421e0dfbc0be30b4d84316f391f730edbda600c1d5fdbc6d273d75914d8f661df56a2b97663fbf1b87f389dcdd4248c680cea777b32a2fb05ebf0ede", 0x77}], 0x2, &(0x7f0000000780)=[@ip_tos_int={{0x14, 0x0, 0x1, 0x5}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @empty, @broadcast}}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x55}}, @ip_retopts={{0x24, 0x0, 0x7, {[@noop, @end, @generic={0x86, 0x11, "230883ebfe8d554a60f16f2a4cafce"}]}}}], 0x78}}, {{&(0x7f0000000800)={0x2, 0x4e22, @loopback}, 0x10, &(0x7f00000012c0)=[{0x0}, {0x0}, {&(0x7f0000000900)="ae3c255a7cb3210c216d25e619a4c07bc37397bb29f95fa55adbbe275aef09f6f26bae7bf541224ca0e74e2ac9cd04e7dcc5ab8d80abe73ca0f966c00217ced3cb8adcf04f9f1927531e110ed237e9768b4bfd7868e9f76e35cfed0acf3750cfdc5f1fbacbf021cc001695200cae33d2fe20d99a6557f4ba45c91e39a83019baed6fe62abbe9c80df64bacc9f8b0c4b0c744de4edb7b5f0c8c8bc4b230b3d7a3aa082ed9a6e2a6aebcdfb694e61fc6069e33b13d", 0xb4}, {&(0x7f0000001200)="becc521b5876c2f88c2c5f7ca3b9a4c83ace37aa6ea08198d8afc7cc9c61b1a2a289f37cf211eb39bc328b6590379360aeed6c852f7705a7d3eba219d5ea623063b0b3e64bc50ac23c61a4cba2002a33bf12ee3e21eaae6c88dcd1e4299524d361956d635f65a577fdd3f580c4dbdf1e73482e01f9721b7aae4a7dcd51b196202e738c285d7fc83865aabd13b2e5d2f6dce6015c61fe2de92db6de401042b449d3220a88570f3f1d2c35", 0xaa}], 0x4, &(0x7f0000001340)=[@ip_tos_u8={{0x11, 0x0, 0x1, 0x5}}, @ip_tos_u8={{0x11}}], 0x30}}, {{0x0, 0x0, &(0x7f0000001440), 0x0, &(0x7f0000001500)=[@ip_retopts={{0x10}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x9}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @initdev={0xac, 0x1e, 0x1, 0x0}, @loopback}}}, @ip_tos_int={{0x14}}], 0x60}}, {{&(0x7f0000001480)={0x2, 0x4e23, @rand_addr=0x64010102}, 0x10, 0x0}}], 0x4, 0x2000040)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000600), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x80000c, &(0x7f00000003c0)=ANY=[@ANYBLOB="706172743d3078300002a27f9edc6b44900000c63d5f852c6769643d", @ANYRESOCT, @ANYRESOCT=0x0, @ANYRES8, @ANYRES32, @ANYRES8, @ANYBLOB="2c6e03d465636f6d706f73652c6769643d29ab72f4a2f73b811c7fd9bae7ecd520839bd791f81b6637f549a77ac6cb621635f9c08b2615964a3c43b727df50d049dc760465dea7349206240e6fb4756f276c72f20bab7d507fe4853b18ebe583cbf9009044b021249834326e80399ca072639251325e38177eef4f05093acfe76553919ecca99460ea4ebdbcef9c4e0ed3f10f86889116979b7aa52b38442546b806d6b8964f99a04195ad43adb611", @ANYRES16, @ANYBLOB="4599"], 0x1, 0x701, &(0x7f00000009c0)="$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")
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, &(0x7f0000000200)="f7790066baa00066b86b4266ef66ba420066b8e20066ef0f29902cbb0000c4e2b1ba8c88d9000000666666440f38826b410f7842280f07b8010000000f01d9c4033921820f47a753fd", 0x49}], 0x1, 0x0, 0x0, 0x0)
clock_adjtime(0x0, &(0x7f00000004c0)={0xc5, 0x0, 0xfffffffffffffff9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200004, 0x0, 0x0, 0x0, 0x0, 0x7})
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, &(0x7f0000000680)="66420f3841c5b9f60200000f3266baf80cb870047a85ef66bafc0c66ed66b80c008ee80fe9b300000100b9220000400f322e0f211c26460fc7b0003000000f78e2b8010000000f01c1", 0x49}], 0x1, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
open(&(0x7f00000000c0)='./bus\x00', 0x5e142, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$KVM_SET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140))
ioctl$KVM_RUN(r4, 0xae80, 0x0)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r6, 0x89f3, &(0x7f00000001c0)={'syztnl0\x00', &(0x7f0000000040)={'ip_vti0\x00', 0x0, 0x20, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x16, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @loopback, @private=0xa010102}}}})
creat(&(0x7f0000000080)='./file0\x00', 0x142)

kernel console output (not intermixed with test programs):

97148][ T5170] loop3: detected capacity change from 0 to 4096
[  169.803992][ T5167] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  169.839052][ T5167] ext4 filesystem being mounted at /71/file0 supports timestamps until 2038 (0x7fffffff)
[  169.867503][ T5173] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  169.918259][ T5176] kvm: vcpu 0: requested 394 ns lapic timer period limited to 200000 ns
[  170.014640][ T3640] EXT4-fs (loop2): unmounting filesystem.
[  170.025758][   T26] audit: type=1800 audit(1725416437.373:105): pid=5170 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.372" name="bus" dev="loop3" ino=18 res=0 errno=0
[  170.219675][    C0] hrtimer: interrupt took 396056 ns
[  170.449590][  T153] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  170.500435][ T5184] loop3: detected capacity change from 0 to 256
[  170.649823][ T5184] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  170.784544][ T5187] netlink: 24 bytes leftover after parsing attributes in process `syz.4.376'.
[  170.813441][  T153] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  170.845838][  T153] usb 3-1: New USB device found, idVendor=0eb1, idProduct=7007, bcdDevice= 2.09
[  170.858765][  T153] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  170.898734][  T153] usb 3-1: config 0 descriptor??
[  171.033271][   T22] usb 4-1: new full-speed USB device number 5 using dummy_hcd
[  171.186626][  T153] libceph: connect (1)[c::]:6789 error -101
[  171.192866][  T153] libceph: mon0 (1)[c::]:6789 connect error
[  171.253359][ T5180] ceph: No mds server is up or the cluster is laggy
[  171.427490][  T153] usb 3-1: USB disconnect, device number 9
[  172.348980][   T22] usb 4-1: config 0 has an invalid interface number: 10 but max is 0
[  172.453031][   T22] usb 4-1: config 0 has no interface number 0
[  172.459956][   T22] usb 4-1: New USB device found, idVendor=0bda, idProduct=0177, bcdDevice=7d.0b
[  172.469859][   T22] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  172.484601][   T22] usb 4-1: config 0 descriptor??
[  172.534462][   T22] ums-realtek 4-1:0.10: USB Mass Storage device detected
[  172.740589][ T3798] usb 4-1: USB disconnect, device number 5
[  173.813342][ T5217] loop1: detected capacity change from 0 to 128
[  173.944465][ T5217] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  173.981439][ T5217] ext4 filesystem being mounted at /93/file0 supports timestamps until 2038 (0x7fffffff)
[  174.048621][ T5221] netlink: 60 bytes leftover after parsing attributes in process `syz.0.385'.
[  175.564774][ T5229] overlayfs: missing 'lowerdir'
[  175.680047][ T3635] EXT4-fs (loop1): unmounting filesystem.
[  175.769558][ T5236] loop4: detected capacity change from 0 to 4096
[  175.813440][   T48] Bluetooth: hci1: command 0x0406 tx timeout
[  175.813993][ T3639] Bluetooth: hci2: command 0x0406 tx timeout
[  175.819662][   T48] Bluetooth: hci4: command 0x0406 tx timeout
[  175.826848][ T3649] Bluetooth: hci3: command 0x0406 tx timeout
[  175.938070][ T5240] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  176.180186][ T5236] syz.4.388 (5236) used greatest stack depth: 18368 bytes left
[  176.284300][ T3678] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  176.704608][ T3678] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  176.748392][ T3678] usb 2-1: New USB device found, idVendor=0eb1, idProduct=7007, bcdDevice= 2.09
[  176.800090][ T3678] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  176.916725][ T3678] usb 2-1: config 0 descriptor??
[  177.154668][ T5249] loop4: detected capacity change from 0 to 1024
[  177.189549][ T5249] hfsplus: extend alloc file! (8192,65536,366)
[  177.352301][ T5253] loop2: detected capacity change from 0 to 256
[  177.364828][ T3798] libceph: connect (1)[c::]:6789 error -101
[  177.380574][ T3798] libceph: mon0 (1)[c::]:6789 connect error
[  177.426174][ T5239] ceph: No mds server is up or the cluster is laggy
[  177.447458][ T5253] exFAT-fs (loop2): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  177.539243][   T22] usb 2-1: USB disconnect, device number 11
[  177.873349][ T3678] usb 3-1: new full-speed USB device number 10 using dummy_hcd
[  178.443574][ T3678] usb 3-1: config 0 has an invalid interface number: 10 but max is 0
[  179.092852][ T3678] usb 3-1: config 0 has no interface number 0
[  179.102555][ T5277] loop1: detected capacity change from 0 to 128
[  179.106277][ T3678] usb 3-1: New USB device found, idVendor=0bda, idProduct=0177, bcdDevice=7d.0b
[  179.154863][ T3678] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  179.172706][ T3678] usb 3-1: config 0 descriptor??
[  179.173572][ T5277] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  179.231182][ T5277] ext4 filesystem being mounted at /96/file0 supports timestamps until 2038 (0x7fffffff)
[  179.371174][ T3678] ums-realtek 3-1:0.10: USB Mass Storage device detected
[  179.476862][ T5289] overlayfs: missing 'lowerdir'
[  179.529169][ T3635] EXT4-fs (loop1): unmounting filesystem.
[  179.558046][ T3678] usb 3-1: USB disconnect, device number 10
[  179.779270][ T5293] netlink: 60 bytes leftover after parsing attributes in process `syz.1.402'.
[  182.062602][ T5297] loop1: detected capacity change from 0 to 4096
[  182.391357][ T5308] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  183.304716][   T41] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  183.986755][   T41] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  184.022894][ T5329] loop4: detected capacity change from 0 to 128
[  184.097416][   T41] usb 1-1: New USB device found, idVendor=0eb1, idProduct=7007, bcdDevice= 2.09
[  184.107982][   T41] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  184.139027][   T41] usb 1-1: config 0 descriptor??
[  184.183279][ T5329] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  184.204805][ T5334] netlink: 68 bytes leftover after parsing attributes in process `syz.1.413'.
[  184.244501][ T5329] ext4 filesystem being mounted at /49/file0 supports timestamps until 2038 (0x7fffffff)
[  184.439924][ T3798] libceph: connect (1)[c::]:6789 error -101
[  184.447049][ T3798] libceph: mon0 (1)[c::]:6789 connect error
[  184.634418][ T5313] ceph: No mds server is up or the cluster is laggy
[  184.680367][ T5351] loop1: detected capacity change from 0 to 1024
[  184.728308][ T3787] libceph: connect (1)[c::]:6789 error -101
[  185.416791][ T3787] libceph: mon0 (1)[c::]:6789 connect error
[  185.467759][ T4275] EXT4-fs (loop4): unmounting filesystem.
[  185.474268][ T5351] hfsplus: extend alloc file! (8192,65536,366)
[  185.498945][ T3789] usb 1-1: USB disconnect, device number 12
[  185.677726][ T5354] loop3: detected capacity change from 0 to 4096
[  185.799211][ T5359] overlayfs: missing 'lowerdir'
[  185.812381][ T5360] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  185.836292][ T5351] kvm: vcpu 0: requested 394 ns lapic timer period limited to 200000 ns
[  188.080366][ T5384] netlink: 68 bytes leftover after parsing attributes in process `syz.1.425'.
[  188.247098][ T5387] loop0: detected capacity change from 0 to 256
[  188.275834][ T5387] exFAT-fs (loop0): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  188.344277][ T3711] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  188.614062][ T3787] usb 1-1: new full-speed USB device number 13 using dummy_hcd
[  189.492825][ T5397] loop1: detected capacity change from 0 to 128
[  189.562466][ T5397] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  189.597176][ T5397] ext4 filesystem being mounted at /107/file0 supports timestamps until 2038 (0x7fffffff)
[  189.693358][ T3787] usb 1-1: config 0 has an invalid interface number: 10 but max is 0
[  189.729393][ T3787] usb 1-1: config 0 has no interface number 0
[  189.757848][ T3787] usb 1-1: New USB device found, idVendor=0bda, idProduct=0177, bcdDevice=7d.0b
[  189.760808][ T5400] loop3: detected capacity change from 0 to 4096
[  189.778974][ T3787] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  189.795373][ T3787] usb 1-1: config 0 descriptor??
[  189.825957][ T5406] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  189.837559][ T3787] ums-realtek 1-1:0.10: USB Mass Storage device detected
[  189.897121][   T26] audit: type=1800 audit(1725416457.243:106): pid=5400 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.430" name="bus" dev="loop3" ino=18 res=0 errno=0
[  190.042895][ T3787] usb 1-1: USB disconnect, device number 13
[  190.089509][   T41] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  190.114722][ T3635] EXT4-fs (loop1): unmounting filesystem.
[  190.252640][ T5416] loop1: detected capacity change from 0 to 1024
[  190.264846][ T5416] hfsplus: extend alloc file! (8192,65536,366)
[  190.321634][ T3711] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  190.439532][ T5418] kvm: vcpu 0: requested 394 ns lapic timer period limited to 200000 ns
[  190.493525][   T41] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  190.512027][   T41] usb 3-1: New USB device found, idVendor=0eb1, idProduct=7007, bcdDevice= 2.09
[  190.521555][   T41] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  190.540085][   T41] usb 3-1: config 0 descriptor??
[  190.930899][ T3787] libceph: connect (1)[c::]:6789 error -101
[  190.950515][ T5429] netlink: 68 bytes leftover after parsing attributes in process `syz.4.436'.
[  190.953591][ T3787] libceph: mon0 (1)[c::]:6789 connect error
[  191.000513][ T5403] ceph: No mds server is up or the cluster is laggy
[  191.346020][   T22] usb 3-1: USB disconnect, device number 11
[  191.488099][ T5441] netlink: 24 bytes leftover after parsing attributes in process `syz.4.439'.
[  193.679626][ T5457] overlayfs: missing 'lowerdir'
[  194.040291][ T5460] loop3: detected capacity change from 0 to 128
[  194.200148][ T5460] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  194.219038][ T1259] ieee802154 phy0 wpan0: encryption failed: -22
[  194.225421][ T1259] ieee802154 phy1 wpan1: encryption failed: -22
[  194.307784][ T5460] ext4 filesystem being mounted at /21/file0 supports timestamps until 2038 (0x7fffffff)
[  194.666124][ T5464] loop1: detected capacity change from 0 to 4096
[  194.795407][ T4947] EXT4-fs (loop3): unmounting filesystem.
[  194.836237][ T5467] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  194.967632][   T26] audit: type=1800 audit(1725416462.313:107): pid=5464 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.445" name="bus" dev="loop1" ino=18 res=0 errno=0
[  195.820551][ T5482] loop4: detected capacity change from 0 to 256
[  195.889635][ T5482] exFAT-fs (loop4): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  196.070741][ T5491] netlink: 24 bytes leftover after parsing attributes in process `syz.1.454'.
[  196.657877][ T3728] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  196.703198][ T3787] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  196.834063][ T5497] loop0: detected capacity change from 0 to 1024
[  196.870567][ T5497] hfsplus: extend alloc file! (8192,65536,366)
[  196.919602][ T5501] loop1: detected capacity change from 0 to 128
[  196.953330][ T3798] usb 5-1: new full-speed USB device number 4 using dummy_hcd
[  196.980751][ T5501] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  197.007030][ T5501] ext4 filesystem being mounted at /112/file0 supports timestamps until 2038 (0x7fffffff)
[  197.125641][ T3787] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  197.160494][ T3787] usb 4-1: New USB device found, idVendor=0eb1, idProduct=7007, bcdDevice= 2.09
[  197.172704][ T3787] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  197.258026][ T5510] kvm: vcpu 0: requested 394 ns lapic timer period limited to 200000 ns
[  197.270240][ T3787] usb 4-1: config 0 descriptor??
[  197.353490][ T3798] usb 5-1: config 0 has an invalid interface number: 10 but max is 0
[  197.371965][ T3798] usb 5-1: config 0 has no interface number 0
[  197.384352][ T3798] usb 5-1: New USB device found, idVendor=0bda, idProduct=0177, bcdDevice=7d.0b
[  197.397158][ T3798] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  197.467932][ T3798] usb 5-1: config 0 descriptor??
[  197.499735][ T3635] EXT4-fs (loop1): unmounting filesystem.
[  197.534351][ T3798] ums-realtek 5-1:0.10: USB Mass Storage device detected
[  197.580209][ T3789] usb 4-1: USB disconnect, device number 6
[  197.744577][ T3798] usb 5-1: USB disconnect, device number 4
[  199.699724][ T5525] loop3: detected capacity change from 0 to 4096
[  199.936531][ T5533] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  200.018806][   T26] audit: type=1800 audit(1725416467.363:108): pid=5525 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.461" name="bus" dev="loop3" ino=18 res=0 errno=0
[  200.476742][ T5541] overlayfs: missing 'lowerdir'
[  201.405152][ T5546] loop1: detected capacity change from 0 to 128
[  201.486332][ T5546] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  201.538571][ T5546] ext4 filesystem being mounted at /116/file0 supports timestamps until 2038 (0x7fffffff)
[  201.777529][ T5555] netlink: 24 bytes leftover after parsing attributes in process `syz.0.468'.
[  202.489212][ T5561] loop4: detected capacity change from 0 to 256
[  202.530120][ T5561] exFAT-fs (loop4): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  202.684227][ T4260] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  202.833522][ T3798] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  202.859437][ T3635] EXT4-fs (loop1): unmounting filesystem.
[  202.973305][ T3789] usb 5-1: new full-speed USB device number 5 using dummy_hcd
[  203.203643][ T3798] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  203.232851][ T3798] usb 4-1: New USB device found, idVendor=0eb1, idProduct=7007, bcdDevice= 2.09
[  203.243034][ T3798] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  203.272036][ T3798] usb 4-1: config 0 descriptor??
[  204.633512][ T3789] usb 5-1: config 0 has an invalid interface number: 10 but max is 0
[  204.681612][ T3789] usb 5-1: config 0 has no interface number 0
[  204.715848][ T3789] usb 5-1: New USB device found, idVendor=0bda, idProduct=0177, bcdDevice=7d.0b
[  204.751271][ T3789] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  204.782028][ T3789] usb 5-1: config 0 descriptor??
[  204.940123][ T3789] ums-realtek 5-1:0.10: USB Mass Storage device detected
[  204.981975][ T3798] usb 4-1: USB disconnect, device number 7
[  205.135295][    T7] usb 5-1: USB disconnect, device number 5
[  205.235525][ T5582] loop1: detected capacity change from 0 to 4096
[  205.375278][ T5583] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  205.497109][   T26] audit: type=1800 audit(1725416472.843:109): pid=5582 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.476" name="bus" dev="loop1" ino=18 res=0 errno=0
[  205.889528][ T5589] loop4: detected capacity change from 0 to 1024
[  205.979178][ T5589] hfsplus: extend alloc file! (8192,65536,366)
[  206.054609][ T3711] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  207.451082][ T5604] kvm: vcpu 0: requested 394 ns lapic timer period limited to 200000 ns
[  207.557628][ T5607] loop2: detected capacity change from 0 to 128
[  207.607873][ T5607] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  207.679010][ T5612] netlink: 24 bytes leftover after parsing attributes in process `syz.3.483'.
[  207.929365][ T5607] ext4 filesystem being mounted at /86/file0 supports timestamps until 2038 (0x7fffffff)
[  209.149027][ T3640] EXT4-fs (loop2): unmounting filesystem.
[  209.489976][ T5632] loop1: detected capacity change from 0 to 4096
[  209.564031][ T5636] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  209.727901][   T26] audit: type=1800 audit(1725416477.073:110): pid=5632 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.489" name="bus" dev="loop1" ino=18 res=0 errno=0
[  209.803334][ T5197] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  211.135711][ T5655] netlink: 24 bytes leftover after parsing attributes in process `syz.1.495'.
[  211.344146][ T5197] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  211.828812][ T5197] usb 3-1: New USB device found, idVendor=0eb1, idProduct=7007, bcdDevice= 2.09
[  212.643050][ T5197] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  212.701262][ T5197] usb 3-1: config 0 descriptor??
[  212.760030][ T5675] loop2: detected capacity change from 0 to 128
[  212.764178][ T5197] usb 3-1: can't set config #0, error -71
[  212.777168][ T5197] usb 3-1: USB disconnect, device number 12
[  212.822485][ T5675] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  212.900751][ T5675] ext4 filesystem being mounted at /88/file0 supports timestamps until 2038 (0x7fffffff)
[  213.390058][ T3640] EXT4-fs (loop2): unmounting filesystem.
[  213.974090][ T5687] loop2: detected capacity change from 0 to 4096
[  213.985899][ T5691] loop0: detected capacity change from 0 to 256
[  214.011316][ T5691] exfat: Deprecated parameter 'utf8'
[  214.025366][ T5691] exfat: Unknown parameter 'smackfstransmute'
[  214.050245][ T5693] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  214.225585][ T3711] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  214.266294][ T5691] overlayfs: failed to resolve './file2': -2
[  215.290993][ T5710] loop3: detected capacity change from 0 to 128
[  215.456578][ T5718] netlink: 24 bytes leftover after parsing attributes in process `syz.2.508'.
[  216.750064][ T5710] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  216.915624][ T5710] ext4 filesystem being mounted at /36/file0 supports timestamps until 2038 (0x7fffffff)
[  216.925908][ T3798] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  217.224704][ T4947] EXT4-fs (loop3): unmounting filesystem.
[  217.313386][ T3798] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  217.355221][ T3798] usb 2-1: New USB device found, idVendor=0eb1, idProduct=7007, bcdDevice= 2.09
[  217.373332][ T3798] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  217.384814][ T3798] usb 2-1: config 0 descriptor??
[  217.698436][  T155] libceph: connect (1)[c::]:6789 error -101
[  217.718043][  T155] libceph: mon0 (1)[c::]:6789 connect error
[  217.771266][ T5740] loop3: detected capacity change from 0 to 4096
[  217.778502][ T5708] ceph: No mds server is up or the cluster is laggy
[  217.896419][ T5748] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  217.951243][   T41] usb 2-1: USB disconnect, device number 12
[  218.095890][   T26] audit: type=1800 audit(1725416485.443:111): pid=5740 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.518" name="bus" dev="loop3" ino=18 res=0 errno=0
[  222.046426][ T3649] Bluetooth: hci5: command 0x0406 tx timeout
[  222.289855][ T5782] netlink: 24 bytes leftover after parsing attributes in process `syz.3.525'.
[  222.454487][ T5791] netlink: 4 bytes leftover after parsing attributes in process `syz.0.531'.
[  222.506705][ T5788] loop1: detected capacity change from 0 to 4096
[  222.597848][ T5795] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  222.636410][   T26] audit: type=1800 audit(1725416489.983:112): pid=5788 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.530" name="bus" dev="loop1" ino=18 res=0 errno=0
[  222.734221][  T153] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  223.187369][  T153] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  223.264959][  T153] usb 3-1: New USB device found, idVendor=0eb1, idProduct=7007, bcdDevice= 2.09
[  223.348028][  T153] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  223.463702][  T153] usb 3-1: config 0 descriptor??
[  223.798223][   T41] libceph: connect (1)[c::]:6789 error -101
[  223.813977][   T41] libceph: mon0 (1)[c::]:6789 connect error
[  223.894567][ T5794] ceph: No mds server is up or the cluster is laggy
[  224.088778][ T3789] usb 3-1: USB disconnect, device number 13
[  226.266593][ T5829] loop0: detected capacity change from 0 to 7
[  226.289071][ T5829] Dev loop0: unable to read RDB block 7
[  226.326547][ T5829]  loop0: AHDI p2
[  226.332573][ T5829] loop0: partition table partially beyond EOD, truncated
[  226.436199][ T5831] loop4: detected capacity change from 0 to 4096
[  226.512571][ T5836] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  226.597272][   T26] audit: type=1800 audit(1725416493.943:113): pid=5831 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.544" name="bus" dev="loop4" ino=18 res=0 errno=0
[  227.752897][ T3789] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  227.875605][ T5858] loop3: detected capacity change from 0 to 16
[  227.899706][ T5858] erofs: (device loop3): mounted with root inode @ nid 36.
[  228.173541][ T3789] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  228.276084][ T3789] usb 3-1: New USB device found, idVendor=0eb1, idProduct=7007, bcdDevice= 2.09
[  228.292203][ T3789] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  228.307853][ T3789] usb 3-1: config 0 descriptor??
[  228.970830][ T5197] libceph: connect (1)[c::]:6789 error -101
[  228.978658][ T5197] libceph: mon0 (1)[c::]:6789 connect error
[  229.042270][ T5846] ceph: No mds server is up or the cluster is laggy
[  229.053332][ T5875] loop0: detected capacity change from 0 to 7
[  229.107707][ T5875] Dev loop0: unable to read RDB block 7
[  229.128982][ T3789] usb 3-1: USB disconnect, device number 14
[  229.163341][ T5875]  loop0: AHDI p2
[  229.171752][ T5875] loop0: partition table partially beyond EOD, truncated
[  229.705589][ T5880] loop3: detected capacity change from 0 to 4096
[  229.830848][ T5883] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  229.907142][   T26] audit: type=1800 audit(1725416497.253:114): pid=5880 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.558" name="bus" dev="loop3" ino=18 res=0 errno=0
[  229.941540][ T5880] NILFS (loop3): unrecognized mount option "ÿÿÿÿÿÿÿÿÿÿ¤	Z*¬ð¿Ë m˜.Dc�8�'ñ@Ø×C9Gö9œùõ?À9†Så¦{»1Ÿ¿JÆöÌÕ¬¿á5æÒÔŒöÀ‰Ýöqqÿ³±Yˆç³”ÅÚóá"
[  230.127138][ T5885] EXT4-fs warning (device sda1): verify_group_input:151: Cannot add at group 2 (only 8 groups)
[  230.907766][ T5887] loop3: detected capacity change from 0 to 256
[  230.941372][ T5887] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  231.194641][ T5891] loop1: detected capacity change from 0 to 1024
[  231.202156][ T5891] hfsplus: unable to parse mount options
[  231.238152][ T3711] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  231.292821][ T5891] loop1: detected capacity change from 0 to 1024
[  231.478992][ T3678] usb 4-1: new full-speed USB device number 8 using dummy_hcd
[  232.293570][ T3678] usb 4-1: config 0 has an invalid interface number: 10 but max is 0
[  232.303281][ T3678] usb 4-1: config 0 has no interface number 0
[  232.309676][ T3678] usb 4-1: New USB device found, idVendor=0bda, idProduct=0177, bcdDevice=7d.0b
[  232.322344][ T3678] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  232.336449][ T3678] usb 4-1: config 0 descriptor??
[  232.384852][ T3678] ums-realtek 4-1:0.10: USB Mass Storage device detected
[  232.686269][ T5907] netlink: 36 bytes leftover after parsing attributes in process `syz.2.566'.
[  232.826083][ T3678] usb 4-1: USB disconnect, device number 8
[  234.869807][ T3639] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  234.881067][ T3639] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  235.671173][ T3639] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  235.680860][ T3639] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  235.689402][ T3639] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[  235.697495][ T3639] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  235.924405][ T5945] loop3: detected capacity change from 0 to 1024
[  235.954311][ T5945] hfsplus: unable to parse mount options
[  236.115125][ T5936] chnl_net:caif_netlink_parms(): no params data found
[  236.138219][ T5945] loop3: detected capacity change from 0 to 1024
[  236.615094][ T5948] loop1: detected capacity change from 0 to 4096
[  236.720927][ T5952] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  236.812477][   T26] audit: type=1800 audit(1725416504.153:115): pid=5948 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.578" name="bus" dev="loop1" ino=18 res=0 errno=0
[  236.851488][ T5948] NILFS (loop1): unrecognized mount option "ÿÿÿÿÿÿÿÿÿÿ¤	Z*¬ð¿Ë m˜.Dc�8�'ñ@Ø×C9Gö9œùõ?À9†Så¦{»1Ÿ¿JÆöÌÕ¬¿á5æÒÔŒöÀ‰Ýöqqÿ³±Yˆç³”ÅÚóá"
[  236.965304][ T5936] bridge0: port 1(bridge_slave_0) entered blocking state
[  237.031452][ T5936] bridge0: port 1(bridge_slave_0) entered disabled state
[  237.078814][ T5936] device bridge_slave_0 entered promiscuous mode
[  237.126888][ T5936] bridge0: port 2(bridge_slave_1) entered blocking state
[  237.151791][ T5936] bridge0: port 2(bridge_slave_1) entered disabled state
[  237.180676][ T5936] device bridge_slave_1 entered promiscuous mode
[  237.343200][   T22] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  237.349388][ T5936] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  237.387680][ T5936] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  237.536881][ T5936] team0: Port device team_slave_0 added
[  237.554801][ T5936] team0: Port device team_slave_1 added
[  237.583296][   T22] usb 4-1: Using ep0 maxpacket: 16
[  237.745144][ T3649] Bluetooth: hci6: command tx timeout
[  238.348647][ T5936] batman_adv: batadv0: Adding interface: batadv_slave_0
[  238.403391][ T5936] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  238.443283][   T22] usb 4-1: config 0 has no interfaces?
[  238.524142][ T5936] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  238.558148][ T5968] tipc: Started in network mode
[  238.573255][ T5968] tipc: Node identity f7, cluster identity 4711
[  238.583735][ T5968] tipc: Node number set to 247
[  238.613315][ T5936] batman_adv: batadv0: Adding interface: batadv_slave_1
[  238.620388][ T5936] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  238.809482][   T22] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  238.819080][   T22] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  238.827549][   T22] usb 4-1: Product: syz
[  238.832386][   T22] usb 4-1: Manufacturer: syz
[  238.837375][   T22] usb 4-1: SerialNumber: syz
[  238.842704][ T5936] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  238.843716][   T22] usb 4-1: config 0 descriptor??
[  239.566650][ T3785] usb 4-1: USB disconnect, device number 9
[  239.619557][ T5936] device hsr_slave_0 entered promiscuous mode
[  239.658044][ T5936] device hsr_slave_1 entered promiscuous mode
[  239.713032][ T5936] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  239.768503][ T5936] Cannot create hsr debugfs directory
[  239.772394][ T5980] loop4: detected capacity change from 0 to 1024
[  239.813349][ T3649] Bluetooth: hci6: command tx timeout
[  239.822388][ T5980] hfsplus: unable to parse mount options
[  239.975685][ T5980] loop4: detected capacity change from 0 to 1024
[  240.332550][ T5936] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  240.349779][ T5992] loop4: detected capacity change from 0 to 512
[  240.466267][ T5992] Quota error (device loop4): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0
[  240.483861][ T5992] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0
[  240.495399][ T5992] EXT4-fs error (device loop4): ext4_acquire_dquot:6800: comm syz.4.592: Failed to acquire dquot type 0
[  240.608319][ T5936] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  240.643398][ T5992] EXT4-fs (loop4): Remounting filesystem read-only
[  240.669221][ T5992] EXT4-fs (loop4): 1 orphan inode deleted
[  240.694247][ T5992] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  240.767614][ T5992] ext4 filesystem being mounted at /82/file1 supports timestamps until 2038 (0x7fffffff)
[  241.460126][ T5936] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  241.982252][ T3649] Bluetooth: hci6: command tx timeout
[  242.109147][ T6007] loop3: detected capacity change from 0 to 16
[  242.119891][ T5936] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  242.179736][ T6007] erofs: (device loop3): mounted with root inode @ nid 36.
[  242.348177][ T4275] EXT4-fs (loop4): unmounting filesystem.
[  242.597381][ T5936] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  242.628431][ T5936] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  242.678023][ T5936] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  242.709592][ T5936] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  242.810253][ T6014] loop4: detected capacity change from 0 to 256
[  242.853753][ T6014] exfat: Deprecated parameter 'utf8'
[  242.861012][ T6014] exfat: Unknown parameter 'smackfstransmute'
[  242.933279][ T3711] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  242.960428][ T6014] overlayfs: missing 'lowerdir'
[  243.086070][ T5936] 8021q: adding VLAN 0 to HW filter on device bond0
[  243.154298][ T4719] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  243.192548][ T4719] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  243.236757][ T5936] 8021q: adding VLAN 0 to HW filter on device team0
[  243.281619][ T4697] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  243.292598][ T4697] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  243.334124][ T4697] bridge0: port 1(bridge_slave_0) entered blocking state
[  243.341303][ T4697] bridge0: port 1(bridge_slave_0) entered forwarding state
[  243.379470][ T4697] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  243.436084][ T4697] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  243.474628][ T4697] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  243.535293][ T4697] bridge0: port 2(bridge_slave_1) entered blocking state
[  243.542418][ T4697] bridge0: port 2(bridge_slave_1) entered forwarding state
[  243.974724][ T4697] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  244.053648][ T3639] Bluetooth: hci6: command tx timeout
[  244.207733][ T3661] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  244.243262][ T3661] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  244.279194][ T6024] loop4: detected capacity change from 0 to 1024
[  244.306970][ T3661] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  244.354212][ T3661] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  244.374406][ T6024] hfsplus: unable to parse mount options
[  244.385943][ T3661] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  244.412859][ T3661] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  244.463975][ T3661] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  244.475697][ T5936] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  244.537205][ T5936] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  244.591106][ T3711] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  244.601019][ T3661] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  244.630494][ T3661] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  244.661577][ T6024] loop4: detected capacity change from 0 to 1024
[  244.670215][ T3711] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  244.826567][ T3711] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  244.870256][ T3661] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  244.979857][ T3711] Buffer I/O error on dev loop4, logical block 0, async page read
[  246.449181][ T6054] overlayfs: missing 'lowerdir'
[  247.544695][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  247.552287][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  247.579043][ T5936] 8021q: adding VLAN 0 to HW filter on device batadv0
[  247.605229][ T3661] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  247.617540][ T3661] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  247.668081][ T3661] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  247.684880][ T3661] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  247.726614][ T5936] device veth0_vlan entered promiscuous mode
[  247.744496][ T3661] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  247.804434][ T3661] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  247.889867][ T5936] device veth1_vlan entered promiscuous mode
[  248.038812][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  248.084574][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  248.144146][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  248.182243][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  248.247236][ T5936] device veth0_macvtap entered promiscuous mode
[  248.280669][ T5936] device veth1_macvtap entered promiscuous mode
[  249.018491][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  249.069382][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  249.122685][ T6075] loop4: detected capacity change from 0 to 1024
[  249.144776][ T5936] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  249.179250][ T6075] hfsplus: unable to parse mount options
[  249.204402][ T5936] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  249.227996][ T5936] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  249.269182][ T5936] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  249.397336][ T5936] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  250.103243][ T5936] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  250.139912][ T5936] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  250.155560][ T5936] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  250.191583][ T5936] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  250.215835][ T5936] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  250.246927][ T5936] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  250.291103][ T5936] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  250.334294][ T5936] batman_adv: batadv0: Interface activated: batadv_slave_0
[  250.346539][ T4719] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  250.377358][ T4719] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  250.421380][ T6075] loop4: detected capacity change from 0 to 1024
[  250.435962][ T5936] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  250.480030][ T5936] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  250.526998][ T5936] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  250.549366][ T5936] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  250.569329][ T5936] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  250.610559][ T5936] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  250.677382][ T5936] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  250.728038][ T5936] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  250.760933][ T5936] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  250.783223][ T5936] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  250.808607][ T5936] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  250.833327][ T5936] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  250.902975][ T5936] batman_adv: batadv0: Interface activated: batadv_slave_1
[  251.006915][ T3661] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  251.034126][ T3661] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  251.725073][ T5936] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  251.888412][ T5936] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  251.917136][ T5936] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  251.979401][   T26] audit: type=1326 audit(1725416519.323:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6090 comm="syz.4.621" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f4cd6d7ceb9 code=0x0
[  252.767545][ T5936] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  252.794596][   T26] audit: type=1326 audit(1725416520.083:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6101 comm="syz.4.627" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cd6d7ceb9 code=0x7ffc0000
[  252.851628][   T26] audit: type=1326 audit(1725416520.083:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6101 comm="syz.4.627" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4cd6d7ceb9 code=0x7ffc0000
[  252.874915][   T26] audit: type=1326 audit(1725416520.083:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6101 comm="syz.4.627" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cd6d7ceb9 code=0x7ffc0000
[  252.912448][   T26] audit: type=1326 audit(1725416520.083:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6101 comm="syz.4.627" exe="/root/syz-executor" sig=0 arch=c000003e syscall=266 compat=0 ip=0x7f4cd6d7ceb9 code=0x7ffc0000
[  253.541724][   T26] audit: type=1326 audit(1725416520.083:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6101 comm="syz.4.627" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cd6d7ceb9 code=0x7ffc0000
[  253.697475][    T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  253.748536][    T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  253.818700][ T3778] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  253.832786][ T6117] loop3: detected capacity change from 0 to 1024
[  253.846671][ T6119] overlayfs: missing 'lowerdir'
[  253.855266][ T3778] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  253.882761][ T3778] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  253.915096][ T6117] hfsplus: unable to parse mount options
[  253.919378][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  253.964415][ T3711] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  254.052801][ T6117] loop3: detected capacity change from 0 to 1024
[  255.500192][   T26] audit: type=1326 audit(1725416522.843:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6139 comm="syz.0.637" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f116ab7ceb9 code=0x7ffc0000
[  255.559341][   T26] audit: type=1326 audit(1725416522.873:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6139 comm="syz.0.637" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f116ab7ceb9 code=0x7ffc0000
[  255.656653][ T1259] ieee802154 phy0 wpan0: encryption failed: -22
[  255.663037][ T1259] ieee802154 phy1 wpan1: encryption failed: -22
[  255.799772][   T26] audit: type=1326 audit(1725416522.873:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6139 comm="syz.0.637" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f116ab7ceb9 code=0x7ffc0000
[  255.872841][ T6145] loop3: detected capacity change from 0 to 512
[  255.943893][ T6145] Quota error (device loop3): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0
[  256.022601][ T6145] EXT4-fs error (device loop3): ext4_acquire_dquot:6800: comm syz.3.639: Failed to acquire dquot type 0
[  256.873837][ T6145] EXT4-fs (loop3): Remounting filesystem read-only
[  256.882383][ T6145] EXT4-fs (loop3): 1 orphan inode deleted
[  256.900710][ T6145] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  256.946829][ T6145] ext4 filesystem being mounted at /67/file1 supports timestamps until 2038 (0x7fffffff)
[  259.395377][ T4947] EXT4-fs (loop3): unmounting filesystem.
[  259.564232][ T6171] loop1: detected capacity change from 0 to 16
[  259.596176][ T6171] erofs: (device loop1): mounted with root inode @ nid 36.
[  260.601542][   T26] kauditd_printk_skb: 5 callbacks suppressed
[  260.601557][   T26] audit: type=1326 audit(1725416527.943:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6182 comm="syz.0.649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f116ab7ceb9 code=0x7ffc0000
[  260.678195][   T26] audit: type=1326 audit(1725416527.983:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6182 comm="syz.0.649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f116ab7ceb9 code=0x7ffc0000
[  260.796930][   T26] audit: type=1326 audit(1725416527.993:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6182 comm="syz.0.649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f116ab7ceb9 code=0x7ffc0000
[  260.864315][   T26] audit: type=1326 audit(1725416527.993:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6182 comm="syz.0.649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f116ab7ceb9 code=0x7ffc0000
[  261.238698][   T26] audit: type=1326 audit(1725416527.993:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6182 comm="syz.0.649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f116ab7ceb9 code=0x7ffc0000
[  261.571569][   T26] audit: type=1326 audit(1725416527.993:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6182 comm="syz.0.649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=266 compat=0 ip=0x7f116ab7ceb9 code=0x7ffc0000
[  261.736622][   T26] audit: type=1326 audit(1725416527.993:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6182 comm="syz.0.649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f116ab7ceb9 code=0x7ffc0000
[  261.814682][   T26] audit: type=1326 audit(1725416527.993:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6182 comm="syz.0.649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f116ab7ceb9 code=0x7ffc0000
[  262.055187][ T6204] loop2: detected capacity change from 0 to 1024
[  262.085518][ T6204] hfsplus: unable to parse mount options
[  262.458153][   T26] audit: type=1326 audit(1725416529.803:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6216 comm="syz.4.660" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4cd6d7ceb9 code=0x7ffc0000
[  262.521298][   T26] audit: type=1326 audit(1725416529.833:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6216 comm="syz.4.660" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4cd6d7ceb9 code=0x7ffc0000
[  262.550686][ T6219] loop2: detected capacity change from 0 to 1024
[  262.605336][ T6219] hfsplus: extend alloc file! (8192,65536,366)
[  262.897996][ T6215] kvm: vcpu 0: requested 394 ns lapic timer period limited to 200000 ns
[  262.931464][ T6225] loop1: detected capacity change from 0 to 128
[  262.985365][ T6225] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  263.007574][ T6225] ext4 filesystem being mounted at /163/file0 supports timestamps until 2038 (0x7fffffff)
[  263.372622][ T3635] EXT4-fs (loop1): unmounting filesystem.
[  264.452493][ T6242] loop1: detected capacity change from 0 to 1024
[  264.490902][ T6242] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  264.568466][ T6242] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  265.025388][ T3635] EXT4-fs (loop1): unmounting filesystem.
[  266.190559][ T6252] loop1: detected capacity change from 0 to 1024
[  266.216347][ T6252] hfsplus: unable to parse mount options
[  266.261231][ T3711] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  266.316077][ T6252] loop1: detected capacity change from 0 to 1024
[  266.866421][ T6262] overlayfs: failed to resolve './file1': -2
[  268.147194][ T6275] loop4: detected capacity change from 0 to 512
[  268.188290][ T6275] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  268.269422][ T6275] ext4 filesystem being mounted at /109/file0 supports timestamps until 2038 (0x7fffffff)
[  268.383515][   T26] kauditd_printk_skb: 3 callbacks suppressed
[  268.383919][   T26] audit: type=1804 audit(1725416535.693:142): pid=6275 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.678" name="/newroot/109/file0/file1" dev="loop4" ino=15 res=1 errno=0
[  268.737052][ T4712] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  268.825668][ T4712] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 65793 with max blocks 1 with error 28
[  268.898605][ T4712] EXT4-fs (loop4): This should not happen!! Data will be lost
[  268.898605][ T4712] 
[  268.964726][ T4712] EXT4-fs (loop4): Total free blocks count 0
[  268.981966][ T4712] EXT4-fs (loop4): Free/Dirty block details
[  269.004869][ T4712] EXT4-fs (loop4): free_blocks=65280
[  269.026972][ T4712] EXT4-fs (loop4): dirty_blocks=1
[  269.032192][ T4712] EXT4-fs (loop4): Block reservation details
[  269.038971][ T4712] EXT4-fs (loop4): i_reserved_data_blocks=1
[  269.050149][ T4275] EXT4-fs (loop4): unmounting filesystem.
[  269.341397][ T6289] loop4: detected capacity change from 0 to 1024
[  269.359593][ T6289] EXT4-fs: Ignoring removed orlov option
[  269.372583][ T6289] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  269.381854][ T6289] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  269.403383][ T6289] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869)
[  269.404196][ T6292] overlayfs: missing 'lowerdir'
[  269.421974][ T6289] EXT4-fs (loop4): invalid journal inode
[  269.429135][ T6289] EXT4-fs (loop4): can't get journal size
[  269.454981][ T6289] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  269.532385][ T4275] EXT4-fs (loop4): unmounting filesystem.
[  269.645743][ T6296] loop4: detected capacity change from 0 to 256
[  269.664364][ T6206] netlink: 16 bytes leftover after parsing attributes in process `syz.3.654'.
[  270.107329][ T6310] loop2: detected capacity change from 0 to 128
[  272.445683][ T6335] loop2: detected capacity change from 0 to 1024
[  272.492990][ T6335] hfsplus: extend alloc file! (8192,65536,366)
[  272.729400][ T6335] kvm: vcpu 0: requested 394 ns lapic timer period limited to 200000 ns
[  273.173314][ T3649] Bluetooth: hci0: command 0x0406 tx timeout
[  274.029231][   T26] audit: type=1326 audit(1725416541.373:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6360 comm="syz.1.705" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1fc137ceb9 code=0x7ffc0000
[  274.075200][   T26] audit: type=1326 audit(1725416541.403:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6360 comm="syz.1.705" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1fc137ceb9 code=0x7ffc0000
[  274.131670][   T26] audit: type=1326 audit(1725416541.403:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6360 comm="syz.1.705" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1fc137ceb9 code=0x7ffc0000
[  274.198962][   T26] audit: type=1326 audit(1725416541.403:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6360 comm="syz.1.705" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1fc137ceb9 code=0x7ffc0000
[  274.348286][ T6365] overlayfs: failed to resolve './file0': -2
[  274.355891][   T26] audit: type=1326 audit(1725416541.403:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6360 comm="syz.1.705" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1fc137ceb9 code=0x7ffc0000
[  274.379528][   T26] audit: type=1326 audit(1725416541.403:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6360 comm="syz.1.705" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1fc137ceb9 code=0x7ffc0000
[  274.402783][   T26] audit: type=1326 audit(1725416541.403:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6360 comm="syz.1.705" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1fc137ceb9 code=0x7ffc0000
[  274.427510][   T26] audit: type=1326 audit(1725416541.403:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6360 comm="syz.1.705" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1fc137ceb9 code=0x7ffc0000
[  274.458443][ T6363] input: syz0 as /devices/virtual/input/input35
[  274.480210][   T26] audit: type=1326 audit(1725416541.413:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6360 comm="syz.1.705" exe="/root/syz-executor" sig=0 arch=c000003e syscall=115 compat=0 ip=0x7f1fc137ceb9 code=0x7ffc0000
[  274.543363][   T26] audit: type=1326 audit(1725416541.413:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6360 comm="syz.1.705" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1fc137ceb9 code=0x7ffc0000
[  275.714231][ T6375] netlink: 12 bytes leftover after parsing attributes in process `syz.0.710'.
[  276.958469][ T6386] overlayfs: missing 'lowerdir'
[  278.601241][ T6351] netlink: 12 bytes leftover after parsing attributes in process `syz.3.702'.
[  281.086807][ T6428] netlink: 12 bytes leftover after parsing attributes in process `syz.2.727'.
[  281.095612][ T6424] loop3: detected capacity change from 0 to 1024
[  281.411087][ T6424] hfsplus: extend alloc file! (8192,65536,366)
[  281.804235][   T26] kauditd_printk_skb: 1 callbacks suppressed
[  281.804253][   T26] audit: type=1326 audit(1725416549.053:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6431 comm="syz.1.728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1fc137ceb9 code=0x7ffc0000
[  281.948804][   T26] audit: type=1326 audit(1725416549.053:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6431 comm="syz.1.728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1fc137ceb9 code=0x7ffc0000
[  282.017064][   T26] audit: type=1326 audit(1725416549.073:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6431 comm="syz.1.728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1fc137ceb9 code=0x7ffc0000
[  282.074715][ T6445] netlink: 32 bytes leftover after parsing attributes in process `syz.4.730'.
[  282.084402][   T26] audit: type=1326 audit(1725416549.073:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6431 comm="syz.1.728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1fc137ceb9 code=0x7ffc0000
[  282.698455][ T6441] loop2: detected capacity change from 0 to 2048
[  282.731625][ T6443] netlink: 8 bytes leftover after parsing attributes in process `syz.4.730'.
[  282.843278][   T26] audit: type=1326 audit(1725416549.073:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6431 comm="syz.1.728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1fc137ceb9 code=0x7ffc0000
[  282.889521][ T6441] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  283.083336][   T26] audit: type=1326 audit(1725416549.073:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6431 comm="syz.1.728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1fc137ceb9 code=0x7ffc0000
[  283.150504][   T26] audit: type=1326 audit(1725416549.073:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6431 comm="syz.1.728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1fc137ceb9 code=0x7ffc0000
[  283.174901][   T26] audit: type=1326 audit(1725416549.073:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6431 comm="syz.1.728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1fc137ceb9 code=0x7ffc0000
[  283.199504][ T4716] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  283.208022][   T26] audit: type=1326 audit(1725416549.073:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6431 comm="syz.1.728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1fc137ceb9 code=0x7ffc0000
[  283.242444][   T26] audit: type=1326 audit(1725416549.073:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6431 comm="syz.1.728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1fc137ceb9 code=0x7ffc0000
[  283.326437][ T6461] loop1: detected capacity change from 0 to 256
[  283.337414][ T4716] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[  283.360022][ T6461] exFAT-fs (loop1): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  283.396444][ T4716] EXT4-fs (loop2): This should not happen!! Data will be lost
[  283.396444][ T4716] 
[  283.431272][ T4716] EXT4-fs (loop2): Total free blocks count 0
[  283.442817][ T4716] EXT4-fs (loop2): Free/Dirty block details
[  283.452896][ T4716] EXT4-fs (loop2): free_blocks=2415919104
[  283.453547][ T6463] loop4: detected capacity change from 0 to 128
[  283.463861][ T4716] EXT4-fs (loop2): dirty_blocks=16
[  283.506833][ T6463] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  283.521247][ T6463] ext4 filesystem being mounted at /120/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038 (0x7fffffff)
[  283.546928][ T4716] EXT4-fs (loop2): Block reservation details
[  283.706763][ T4716] EXT4-fs (loop2): i_reserved_data_blocks=1
[  283.931281][ T3640] EXT4-fs (loop2): unmounting filesystem.
[  284.573991][   T22] usb 2-1: new full-speed USB device number 13 using dummy_hcd
[  285.156340][ T6473] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  285.168530][ T4275] EXT4-fs (loop4): unmounting filesystem.
[  286.247085][ T6483] overlayfs: missing 'lowerdir'
[  286.393401][   T22] usb 2-1: unable to read config index 0 descriptor/all
[  286.445061][   T22] usb 2-1: can't read configurations, error -71
[  286.907437][ T6503] loop2: detected capacity change from 0 to 256
[  286.942600][ T6503] netlink: 4 bytes leftover after parsing attributes in process `syz.2.750'.
[  287.921983][ T6514] loop3: detected capacity change from 0 to 256
[  287.935968][ T6514] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  288.893261][ T3787] usb 4-1: new full-speed USB device number 10 using dummy_hcd
[  289.616905][   T26] kauditd_printk_skb: 13 callbacks suppressed
[  289.617064][   T26] audit: type=1326 audit(1725416556.953:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6529 comm="syz.0.759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f116ab7ceb9 code=0x7ffc0000
[  289.825186][ T6532] overlayfs: missing 'lowerdir'
[  289.830809][   T26] audit: type=1326 audit(1725416557.003:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6529 comm="syz.0.759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f116ab7ceb9 code=0x7ffc0000
[  289.853382][   T26] audit: type=1326 audit(1725416557.013:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6529 comm="syz.0.759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f116ab7ceb9 code=0x7ffc0000
[  289.879095][   T26] audit: type=1326 audit(1725416557.023:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6529 comm="syz.0.759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f116ab7ceb9 code=0x7ffc0000
[  289.909424][   T26] audit: type=1326 audit(1725416557.033:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6529 comm="syz.0.759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f116ab7ceb9 code=0x7ffc0000
[  289.932230][   T26] audit: type=1326 audit(1725416557.063:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6529 comm="syz.0.759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f116ab7ceb9 code=0x7ffc0000
[  289.956013][   T26] audit: type=1326 audit(1725416557.103:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6529 comm="syz.0.759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f116ab7ceb9 code=0x7ffc0000
[  289.978646][ T3787] usb 4-1: config 0 has an invalid interface number: 9 but max is 0
[  289.987098][   T26] audit: type=1326 audit(1725416557.113:184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6529 comm="syz.0.759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f116ab7ceb9 code=0x7ffc0000
[  290.010927][ T3787] usb 4-1: config 0 has no interface number 0
[  290.028729][ T3787] usb 4-1: New USB device found, idVendor=0bda, idProduct=0177, bcdDevice=7d.0b
[  290.032883][   T26] audit: type=1326 audit(1725416557.113:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6529 comm="syz.0.759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f116ab7ceb9 code=0x7ffc0000
[  290.040087][ T6536] loop1: detected capacity change from 0 to 512
[  290.069671][   T26] audit: type=1326 audit(1725416557.113:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6529 comm="syz.0.759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f116ab7ceb9 code=0x7ffc0000
[  290.101842][ T3787] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  290.114681][ T3787] usb 4-1: config 0 descriptor??
[  290.121262][ T6536] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  290.164364][ T3787] ums-realtek 4-1:0.9: USB Mass Storage device detected
[  290.235698][ T6536] EXT4-fs (loop1): 1 truncate cleaned up
[  290.241394][ T6536] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  290.339072][ T3635] EXT4-fs error (device loop1): mb_free_blocks:1815: group 0, inode 16: block 35:freeing already freed block (bit 34); block bitmap corrupt.
[  290.704102][   T41] usb 4-1: USB disconnect, device number 10
[  290.966761][ T3635] EXT4-fs (loop1): unmounting filesystem.
[  291.170195][ T6551] syz.1.764[6551] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  291.170299][ T6551] syz.1.764[6551] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  291.263016][ T6557] netlink: 20 bytes leftover after parsing attributes in process `syz.2.767'.
[  292.296889][ T6566] loop4: detected capacity change from 0 to 1024
[  292.670704][ T6566] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  292.754248][ T6577] overlayfs: missing 'lowerdir'
[  293.150149][ T6566] EXT4-fs error (device loop4): ext4_expand_extra_isize_ea:2738: inode #12: comm syz.4.769: corrupted in-inode xattr
[  293.248925][ T4275] EXT4-fs (loop4): unmounting filesystem.
[  294.790981][   T26] kauditd_printk_skb: 36 callbacks suppressed
[  294.790997][   T26] audit: type=1326 audit(1725416562.133:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6603 comm="syz.1.782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1fc137ceb9 code=0x7ffc0000
[  294.798998][ T6604] loop1: detected capacity change from 0 to 512
[  294.857969][ T6604] EXT4-fs: Ignoring removed mblk_io_submit option
[  294.902760][   T26] audit: type=1326 audit(1725416562.133:224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6603 comm="syz.1.782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1fc137ceb9 code=0x7ffc0000
[  294.981431][ T6604] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  295.011908][   T26] audit: type=1326 audit(1725416562.133:225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6603 comm="syz.1.782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1fc137ceb9 code=0x7ffc0000
[  295.056353][ T6604] EXT4-fs (loop1): can't mount with data=, fs mounted w/o journal
[  295.077949][ T6611] loop3: detected capacity change from 0 to 256
[  295.320421][ T6611] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  297.060059][   T26] audit: type=1326 audit(1725416562.133:226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6603 comm="syz.1.782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1fc137ceb9 code=0x7ffc0000
[  297.147105][   T26] audit: type=1326 audit(1725416562.133:227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6603 comm="syz.1.782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1fc137ceb9 code=0x7ffc0000
[  297.194145][   T26] audit: type=1326 audit(1725416562.133:228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6603 comm="syz.1.782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f1fc137ceb9 code=0x7ffc0000
[  297.258057][ T6624] overlayfs: missing 'lowerdir'
[  297.265132][   T26] audit: type=1326 audit(1725416562.133:229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6603 comm="syz.1.782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f1fc137cef3 code=0x7ffc0000
[  297.339419][   T26] audit: type=1326 audit(1725416562.133:230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6603 comm="syz.1.782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f1fc137b99f code=0x7ffc0000
[  297.393409][ T3785] usb 4-1: new full-speed USB device number 11 using dummy_hcd
[  297.451985][   T26] audit: type=1326 audit(1725416562.153:231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6603 comm="syz.1.782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f1fc137cf47 code=0x7ffc0000
[  297.483624][   T26] audit: type=1326 audit(1725416562.153:232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6603 comm="syz.1.782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f1fc137b850 code=0x7ffc0000
[  297.823433][ T3785] usb 4-1: config 0 has an invalid interface number: 9 but max is 0
[  297.912293][ T3785] usb 4-1: config 0 has no interface number 0
[  297.988363][ T3785] usb 4-1: New USB device found, idVendor=0bda, idProduct=0177, bcdDevice=7d.0b
[  298.077047][ T3785] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  298.249659][ T3785] usb 4-1: config 0 descriptor??
[  299.089929][ T3785] usb 4-1: can't set config #0, error -71
[  299.098814][ T3785] usb 4-1: USB disconnect, device number 11
[  299.156286][ T6651] sctp: [Deprecated]: syz.2.794 (pid 6651) Use of int in maxseg socket option.
[  299.156286][ T6651] Use struct sctp_assoc_value instead
[  299.162010][ T6649] loop1: detected capacity change from 0 to 256
[  299.262620][ T6649] exfat: Deprecated parameter 'utf8'
[  299.301150][ T6649] exfat: Unknown parameter 'smackfstransmute'
[  300.167626][ T3711] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  300.429281][ T6674] loop2: detected capacity change from 0 to 256
[  300.440278][ T6672] loop4: detected capacity change from 0 to 16
[  300.492349][ T6672] erofs: (device loop4): mounted with root inode @ nid 36.
[  300.528061][ T6674] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  300.621738][ T6674] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  300.665894][ T6677] overlayfs: missing 'lowerdir'
[  302.789991][ T6690] loop4: detected capacity change from 0 to 256
[  302.878745][ T6690] exFAT-fs (loop4): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  303.255065][ T3785] usb 5-1: new full-speed USB device number 6 using dummy_hcd
[  304.103461][ T3785] usb 5-1: config 0 has an invalid interface number: 8 but max is 0
[  304.153663][ T3785] usb 5-1: config 0 has no interface number 0
[  304.164588][ T3785] usb 5-1: New USB device found, idVendor=0bda, idProduct=0177, bcdDevice=7d.0b
[  304.193862][ T3785] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  304.938593][ T3785] usb 5-1: config 0 descriptor??
[  304.984032][ T3785] ums-realtek 5-1:0.8: USB Mass Storage device detected
[  305.197706][ T3785] usb 5-1: USB disconnect, device number 6
[  306.781329][ T6723] loop3: detected capacity change from 0 to 16
[  306.828542][ T6723] erofs: (device loop3): mounted with root inode @ nid 36.
[  306.905032][ T6724] overlayfs: failed to resolve './file0': -2
[  307.146666][ T6732] syz.4.819[6732] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  307.146770][ T6732] syz.4.819[6732] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  307.215969][ T6732] syz.4.819[6732] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  307.267196][ T6732] syz.4.819[6732] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  307.857834][ T6755] netlink: 12 bytes leftover after parsing attributes in process `syz.0.825'.
[  308.913351][ T6768] loop4: detected capacity change from 0 to 256
[  308.928980][ T6772] loop2: detected capacity change from 0 to 256
[  308.966646][ T6772] exfat: Deprecated parameter 'utf8'
[  308.976458][ T6774] netlink: 104 bytes leftover after parsing attributes in process `syz.1.830'.
[  308.987281][ T6772] exfat: Unknown parameter 'smackfstransmute'
[  308.998504][ T6775] overlayfs: missing 'lowerdir'
[  309.010037][ T6768] exFAT-fs (loop4): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  309.459947][  T153] usb 5-1: new full-speed USB device number 7 using dummy_hcd
[  309.583686][   T26] kauditd_printk_skb: 13 callbacks suppressed
[  309.583748][   T26] audit: type=1326 audit(1725416576.923:246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6786 comm="syz.2.834" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd587d7ceb9 code=0x0
[  309.874294][  T153] usb 5-1: config 0 has an invalid interface number: 8 but max is 0
[  310.240914][  T153] usb 5-1: config 0 has no interface number 0
[  310.285763][  T153] usb 5-1: New USB device found, idVendor=0bda, idProduct=0177, bcdDevice=7d.0b
[  310.333243][  T153] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  310.372964][  T153] usb 5-1: config 0 descriptor??
[  310.443978][  T153] ums-realtek 5-1:0.8: USB Mass Storage device detected
[  310.647540][ T3682] usb 5-1: USB disconnect, device number 7
[  311.163377][ T3700] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[  311.473380][ T3700] usb 3-1: Using ep0 maxpacket: 8
[  311.623614][ T3700] usb 3-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  312.429302][ T3700] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  312.483002][ T3700] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  312.539234][ T3700] usb 3-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  312.618882][ T3700] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  312.669271][ T3700] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  312.800690][ T6837] loop1: detected capacity change from 0 to 256
[  312.860675][ T6837] exfat: Deprecated parameter 'utf8'
[  312.885587][ T6837] exfat: Unknown parameter 'smackfstransmute'
[  312.963522][ T3700] usb 3-1: GET_CAPABILITIES returned 0
[  312.969373][ T3700] usbtmc 3-1:16.0: can't read capabilities
[  314.424081][ T6857] loop1: detected capacity change from 0 to 256
[  314.487498][ T6857] exFAT-fs (loop1): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  314.864347][ T3700] usb 2-1: new full-speed USB device number 15 using dummy_hcd
[  315.000500][ T3785] usb 3-1: USB disconnect, device number 15
[  315.038270][ T6834] loop4: detected capacity change from 0 to 40427
[  315.104526][ T3711] I/O error, dev loop4, sector 40192 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  315.973378][ T3700] usb 2-1: config 0 has an invalid interface number: 8 but max is 0
[  315.985219][ T3700] usb 2-1: config 0 has no interface number 0
[  315.993905][ T3700] usb 2-1: New USB device found, idVendor=0bda, idProduct=0177, bcdDevice=7d.0b
[  316.011256][ T3700] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  316.035163][ T3700] usb 2-1: config 0 descriptor??
[  316.104329][ T3700] ums-realtek 2-1:0.8: USB Mass Storage device detected
[  316.308492][ T6549] usb 2-1: USB disconnect, device number 15
[  316.351973][ T6893] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  316.847404][ T6902] netlink: 16 bytes leftover after parsing attributes in process `syz.4.858'.
[  317.113471][ T1259] ieee802154 phy0 wpan0: encryption failed: -22
[  317.119816][ T1259] ieee802154 phy1 wpan1: encryption failed: -22
[  317.753397][ T6549] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[  318.601694][ T6922] loop2: detected capacity change from 0 to 512
[  318.684923][ T6922] Quota error (device loop2): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0
[  318.712847][ T6922] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0
[  318.723302][ T6549] usb 2-1: Using ep0 maxpacket: 8
[  318.757668][ T6927] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  318.784714][ T6922] EXT4-fs error (device loop2): ext4_acquire_dquot:6800: comm syz.2.866: Failed to acquire dquot type 0
[  318.883637][ T6549] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  318.897951][ T6922] EXT4-fs (loop2): Remounting filesystem read-only
[  318.923554][ T6922] EXT4-fs (loop2): 1 orphan inode deleted
[  318.934297][ T6549] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  318.949034][ T6922] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  318.973426][ T6922] ext4 filesystem being mounted at /164/file1 supports timestamps until 2038 (0x7fffffff)
[  318.983236][ T6549] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  319.024792][ T6549] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  319.081621][ T6549] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  319.101310][ T6549] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  319.663653][ T6549] usb 2-1: GET_CAPABILITIES returned 0
[  319.669153][ T6549] usbtmc 2-1:16.0: can't read capabilities
[  319.834854][ T3640] EXT4-fs (loop2): unmounting filesystem.
[  320.183099][ T6941] loop2: detected capacity change from 0 to 256
[  320.250255][ T6941] exFAT-fs (loop2): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  321.122961][ T3700] usb 3-1: new full-speed USB device number 16 using dummy_hcd
[  321.605741][ T3682] usb 2-1: USB disconnect, device number 16
[  321.806752][ T6958] loop3: detected capacity change from 0 to 1024
[  321.823583][ T3700] usb 3-1: config 0 has an invalid interface number: 9 but max is 0
[  321.832184][ T6958] hfsplus: extend alloc file! (8192,65536,366)
[  321.837992][ T3700] usb 3-1: config 0 has no interface number 0
[  321.852089][ T3700] usb 3-1: New USB device found, idVendor=0bda, idProduct=0177, bcdDevice=7d.0b
[  321.875323][ T3700] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  321.905276][ T3700] usb 3-1: config 0 descriptor??
[  321.964435][ T3700] ums-realtek 3-1:0.9: USB Mass Storage device detected
[  322.028848][ T6970] kvm: vcpu 0: requested 394 ns lapic timer period limited to 200000 ns
[  322.168990][ T5197] usb 3-1: USB disconnect, device number 16
[  323.863215][ T3677] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  324.143320][ T3677] usb 5-1: Using ep0 maxpacket: 8
[  324.231768][ T3639] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  324.255475][ T3677] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  324.265649][ T3639] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  324.274675][ T3677] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  324.285139][ T3639] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  324.292840][ T3677] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  324.303648][ T3677] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  324.319348][ T3677] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  324.329466][ T3677] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  324.337555][ T3639] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  324.346962][ T3639] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[  324.355227][ T3639] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  324.639314][ T3677] usb 5-1: GET_CAPABILITIES returned 0
[  324.649024][ T3677] usbtmc 5-1:16.0: can't read capabilities
[  326.167325][ T7016] loop2: detected capacity change from 0 to 256
[  326.229209][ T7016] exFAT-fs (loop2): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  326.458606][ T3649] Bluetooth: hci7: command tx timeout
[  326.474922][ T3700] usb 5-1: USB disconnect, device number 8
[  326.563345][   T22] usb 3-1: new full-speed USB device number 17 using dummy_hcd
[  327.833325][   T22] usb 3-1: config 0 has an invalid interface number: 9 but max is 0
[  327.841471][   T22] usb 3-1: config 0 has no interface number 0
[  327.879958][   T22] usb 3-1: New USB device found, idVendor=0bda, idProduct=0177, bcdDevice=7d.0b
[  328.028527][   T22] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  328.095184][   T22] usb 3-1: config 0 descriptor??
[  328.448874][   T22] ums-realtek 3-1:0.9: USB Mass Storage device detected
[  328.576550][ T3649] Bluetooth: hci7: command tx timeout
[  328.645185][ T6997] chnl_net:caif_netlink_parms(): no params data found
[  328.693679][   T22] usb 3-1: USB disconnect, device number 17
[  328.890004][ T6997] bridge0: port 1(bridge_slave_0) entered blocking state
[  328.902080][ T7052] loop4: detected capacity change from 0 to 512
[  328.908076][ T6997] bridge0: port 1(bridge_slave_0) entered disabled state
[  328.919627][   T26] audit: type=1326 audit(1725416596.263:247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7044 comm="syz.3.906" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9c817ceb9 code=0x7ffc0000
[  328.951734][ T6997] device bridge_slave_0 entered promiscuous mode
[  328.962298][   T26] audit: type=1326 audit(1725416596.263:248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7044 comm="syz.3.906" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff9c817ceb9 code=0x7ffc0000
[  328.996491][ T6997] bridge0: port 2(bridge_slave_1) entered blocking state
[  329.009399][ T6997] bridge0: port 2(bridge_slave_1) entered disabled state
[  329.010273][ T7052] Quota error (device loop4): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0
[  329.017742][ T6997] device bridge_slave_1 entered promiscuous mode
[  329.037900][   T26] audit: type=1326 audit(1725416596.263:249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7044 comm="syz.3.906" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9c817ceb9 code=0x7ffc0000
[  329.060486][ T7052] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0
[  329.063751][   T26] audit: type=1326 audit(1725416596.263:250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7044 comm="syz.3.906" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff9c817ceb9 code=0x7ffc0000
[  329.071307][ T7052] EXT4-fs error (device loop4): ext4_acquire_dquot:6800: comm syz.4.908: Failed to acquire dquot type 0
[  329.101229][   T26] audit: type=1326 audit(1725416596.263:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7044 comm="syz.3.906" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9c817ceb9 code=0x7ffc0000
[  329.142973][   T26] audit: type=1326 audit(1725416596.263:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7044 comm="syz.3.906" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7ff9c817ceb9 code=0x7ffc0000
[  329.165253][ T7052] EXT4-fs (loop4): Remounting filesystem read-only
[  329.172236][ T7052] EXT4-fs (loop4): 1 orphan inode deleted
[  329.173025][   T26] audit: type=1326 audit(1725416596.263:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7044 comm="syz.3.906" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9c817ceb9 code=0x7ffc0000
[  329.195709][ T7052] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  329.201615][   T26] audit: type=1326 audit(1725416596.263:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7044 comm="syz.3.906" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9c817ceb9 code=0x7ffc0000
[  329.223646][ T6997] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  329.247052][ T7052] ext4 filesystem being mounted at /158/file1 supports timestamps until 2038 (0x7fffffff)
[  329.291537][ T6997] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  329.364534][ T6997] team0: Port device team_slave_0 added
[  329.374858][ T6997] team0: Port device team_slave_1 added
[  329.426038][ T6997] batman_adv: batadv0: Adding interface: batadv_slave_0
[  329.468239][ T6997] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  329.521942][ T6997] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  329.545436][ T6997] batman_adv: batadv0: Adding interface: batadv_slave_1
[  329.559226][ T6997] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  329.596766][ T6997] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  330.111489][ T6997] device hsr_slave_0 entered promiscuous mode
[  330.137169][ T4275] EXT4-fs (loop4): unmounting filesystem.
[  330.186170][ T6997] device hsr_slave_1 entered promiscuous mode
[  330.219580][ T6997] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  330.275731][ T6997] Cannot create hsr debugfs directory
[  330.744495][ T3649] Bluetooth: hci7: command tx timeout
[  331.542373][ T7089] loop1: detected capacity change from 0 to 256
[  331.566410][ T6997] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  331.585586][ T7070] loop2: detected capacity change from 0 to 32768
[  331.596302][ T7089] exFAT-fs (loop1): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  331.628392][ T7070] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 scanned by syz.2.914 (7070)
[  331.726700][ T7070] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  331.760770][ T7070] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm
[  331.801771][ T7070] BTRFS info (device loop2): using free space tree
[  331.826797][ T6997] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  331.915322][ T6997] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  331.954057][ T7070] BTRFS info (device loop2): enabling ssd optimizations
[  332.033379][ T3682] usb 2-1: new full-speed USB device number 17 using dummy_hcd
[  332.048506][ T6997] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  332.271859][ T7118] loop4: detected capacity change from 0 to 512
[  332.364943][ T7121] loop3: detected capacity change from 0 to 128
[  332.406682][ T7118] EXT4-fs error (device loop4): ext4_acquire_dquot:6800: comm syz.4.922: Failed to acquire dquot type 0
[  332.429018][ T7118] EXT4-fs (loop4): Remounting filesystem read-only
[  332.435977][ T3682] usb 2-1: config 0 has an invalid interface number: 9 but max is 0
[  332.442417][    T9] BTRFS info (device loop2): qgroup scan completed (inconsistency flag cleared)
[  332.444493][ T7118] EXT4-fs (loop4): 1 orphan inode deleted
[  332.458901][ T3640] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  332.463997][ T3682] usb 2-1: config 0 has no interface number 0
[  332.473329][ T7118] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  332.479445][ T3682] usb 2-1: New USB device found, idVendor=0bda, idProduct=0177, bcdDevice=7d.0b
[  332.497484][ T3682] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  332.508975][ T3682] usb 2-1: config 0 descriptor??
[  332.515666][ T7118] ext4 filesystem being mounted at /163/file1 supports timestamps until 2038 (0x7fffffff)
[  332.671428][ T6997] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  332.696127][ T3682] ums-realtek 2-1:0.9: USB Mass Storage device detected
[  332.806647][ T3649] Bluetooth: hci7: command tx timeout
[  333.049279][ T3682] usb 2-1: USB disconnect, device number 17
[  333.123605][ T6997] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  333.423091][ T6997] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  333.475615][ T4275] EXT4-fs (loop4): unmounting filesystem.
[  333.487105][ T6997] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  333.881138][ T6997] 8021q: adding VLAN 0 to HW filter on device bond0
[  334.503930][ T3864] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  334.516213][ T3864] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  334.578890][ T6997] 8021q: adding VLAN 0 to HW filter on device team0
[  334.619722][ T3864] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  334.677633][ T3864] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  334.688220][ T3864] bridge0: port 1(bridge_slave_0) entered blocking state
[  334.695396][ T3864] bridge0: port 1(bridge_slave_0) entered forwarding state
[  334.705804][ T3864] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  334.720117][ T7158] batman_adv: batadv0: Adding interface: erspan1
[  334.727636][ T7158] batman_adv: batadv0: The MTU of interface erspan1 is too small (1450) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  334.782515][ T7158] batman_adv: batadv0: Not using interface erspan1 (retrying later): interface not active
[  334.854507][ T7163] loop2: detected capacity change from 0 to 512
[  334.885531][ T4719] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  334.897932][ T4719] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  334.908353][ T7165] loop4: detected capacity change from 0 to 164
[  334.932013][ T7165] Unable to read rock-ridge attributes
[  334.937350][ T4719] bridge0: port 2(bridge_slave_1) entered blocking state
[  334.938800][   T26] kauditd_printk_skb: 13 callbacks suppressed
[  334.938813][   T26] audit: type=1326 audit(1725416602.293:266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7166 comm="syz.3.934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9c817ceb9 code=0x7ffc0000
[  334.945092][ T4719] bridge0: port 2(bridge_slave_1) entered forwarding state
[  334.973243][   T26] audit: type=1326 audit(1725416602.293:267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7166 comm="syz.3.934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9c817ceb9 code=0x7ffc0000
[  335.020966][ T4719] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  335.024337][   T26] audit: type=1326 audit(1725416602.363:268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7166 comm="syz.3.934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff9c817ceb9 code=0x7ffc0000
[  335.030033][ T4719] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  335.067020][ T4711] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  335.078913][ T7163] Quota error (device loop2): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0
[  335.103311][   T26] audit: type=1326 audit(1725416602.423:269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7166 comm="syz.3.934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9c817ceb9 code=0x7ffc0000
[  335.113674][ T7163] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0
[  335.127171][   T26] audit: type=1326 audit(1725416602.423:270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7166 comm="syz.3.934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9c817ceb9 code=0x7ffc0000
[  335.157610][   T26] audit: type=1326 audit(1725416602.423:271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7166 comm="syz.3.934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff9c817ceb9 code=0x7ffc0000
[  335.174590][ T4711] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  335.180812][   T26] audit: type=1326 audit(1725416602.423:272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7166 comm="syz.3.934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9c817ceb9 code=0x7ffc0000
[  335.210689][ T7163] EXT4-fs error (device loop2): ext4_acquire_dquot:6800: comm syz.2.935: Failed to acquire dquot type 0
[  335.235310][ T7163] EXT4-fs (loop2): Remounting filesystem read-only
[  335.241932][ T7163] EXT4-fs (loop2): 1 orphan inode deleted
[  335.261051][ T7163] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  335.272859][ T4711] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  335.281127][   T26] audit: type=1326 audit(1725416602.423:273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7166 comm="syz.3.934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9c817ceb9 code=0x7ffc0000
[  335.281405][ T7163] ext4 filesystem being mounted at /182/file1 supports timestamps until 2038 (0x7fffffff)
[  335.317122][ T7165] iso9660: Corrupted directory entry in block 4 of inode 1792
[  335.351336][ T4711] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  335.401889][ T4711] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  335.403765][ T7175] syz.3.938 uses obsolete (PF_INET,SOCK_PACKET)
[  335.463936][ T4711] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  335.488869][ T4711] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  335.505158][ T4711] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  335.514467][ T4711] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  335.627686][ T7179] loop1: detected capacity change from 0 to 256
[  335.831695][ T7179] exFAT-fs (loop1): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  336.799895][ T3640] EXT4-fs (loop2): unmounting filesystem.
[  337.135463][ T4716] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  337.154126][ T4716] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  337.169929][ T6997] 8021q: adding VLAN 0 to HW filter on device batadv0
[  337.213202][ T5197] usb 2-1: new full-speed USB device number 18 using dummy_hcd
[  337.377030][ T7205] loop4: detected capacity change from 0 to 256
[  337.390024][ T7203] device veth1_macvtap left promiscuous mode
[  337.411680][ T7203] A link change request failed with some changes committed already. Interface macsec0 may have been left with an inconsistent configuration, please check.
[  337.474377][ T4716] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  337.484236][ T4716] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  337.604733][ T4716] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  337.626665][ T4716] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  337.652455][ T6997] device veth0_vlan entered promiscuous mode
[  337.664128][ T4716] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  337.678641][ T4716] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  337.701812][ T6997] device veth1_vlan entered promiscuous mode
[  337.872766][ T4716] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  337.885084][ T4716] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  337.900946][ T4716] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  337.914432][ T4716] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  337.959891][ T6997] device veth0_macvtap entered promiscuous mode
[  337.985383][ T6997] device veth1_macvtap entered promiscuous mode
[  338.003454][ T5197] usb 2-1: config 0 has an invalid interface number: 9 but max is 0
[  338.026534][ T6997] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  338.053439][ T6997] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  338.074548][ T6997] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  338.095210][ T6997] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  338.112834][ T6997] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  338.119035][ T5197] usb 2-1: config 0 has no interface number 0
[  338.139721][ T5197] usb 2-1: New USB device found, idVendor=0bda, idProduct=0177, bcdDevice=7d.0b
[  338.153234][ T5197] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  338.175133][ T5197] usb 2-1: config 0 descriptor??
[  338.181916][ T6997] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  338.214444][ T5197] ums-realtek 2-1:0.9: USB Mass Storage device detected
[  338.222616][ T6997] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  338.246957][ T6997] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  338.257345][ T6997] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  338.270386][ T6997] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  338.290469][ T6997] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  338.301766][ T6997] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  338.312301][ T6997] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  338.323104][ T6997] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  338.335224][ T6997] batman_adv: batadv0: Interface activated: batadv_slave_0
[  338.344248][ T4716] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  338.355912][ T4716] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  338.432971][ T4716] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  338.448406][ T5197] usb 2-1: USB disconnect, device number 18
[  338.466668][ T4716] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  338.474435][ T7222] loop3: detected capacity change from 0 to 16
[  338.490462][ T6997] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  338.514143][ T7222] erofs: (device loop3): mounted with root inode @ nid 36.
[  338.520792][ T6997] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  338.545161][ T6997] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  338.574457][ T6997] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  338.585111][ T6997] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  338.598333][ T6997] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  338.608641][ T6997] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  338.619402][ T6997] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  338.649992][ T6997] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  338.670905][ T6997] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  338.691203][ T6997] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  338.712168][ T6997] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  338.763216][ T6997] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  338.803810][ T6997] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  338.820081][ T6997] batman_adv: batadv0: Interface activated: batadv_slave_1
[  338.831504][ T4719] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  338.851567][ T4719] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  339.402005][ T7229] netlink: 8 bytes leftover after parsing attributes in process `syz.2.954'.
[  339.642651][ T7235] 9pnet_fd: p9_fd_create_tcp (7235): problem connecting socket to 127.0.0.1
[  339.672854][ T6997] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  339.712603][ T6997] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  339.732153][ T6997] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  339.761467][ T6997] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  339.935903][ T4719] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  339.949473][ T4719] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  339.992982][ T3776] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  339.994182][ T7241] fuse: Bad value for 'fd'
[  340.065403][ T3776] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  340.103436][ T3776] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  340.127236][ T4719] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  340.412194][   T26] kauditd_printk_skb: 21 callbacks suppressed
[  340.412211][   T26] audit: type=1326 audit(1725416607.753:295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7253 comm="syz.2.965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd587d7ceb9 code=0x7ffc0000
[  340.421662][ T7255] loop4: detected capacity change from 0 to 256
[  340.561928][ T7255] exFAT-fs (loop4): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  340.624202][   T26] audit: type=1326 audit(1725416607.753:296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7253 comm="syz.2.965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd587d7ceb9 code=0x7ffc0000
[  340.765414][ T3711] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  340.775933][   T26] audit: type=1326 audit(1725416607.813:297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7253 comm="syz.2.965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd587d7ceb9 code=0x7ffc0000
[  340.817616][ T7269] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  340.848159][   T26] audit: type=1326 audit(1725416607.813:298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7253 comm="syz.2.965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd587d7ceb9 code=0x7ffc0000
[  340.876192][   T26] audit: type=1326 audit(1725416607.813:299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7253 comm="syz.2.965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd587d7ceb9 code=0x7ffc0000
[  340.940129][   T26] audit: type=1326 audit(1725416607.823:300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7259 comm="syz.0.968" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f01bb37ceb9 code=0x7ffc0000
[  341.001755][   T26] audit: type=1326 audit(1725416607.823:301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7253 comm="syz.2.965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd587d7ceb9 code=0x7ffc0000
[  341.043423][ T6549] usb 5-1: new full-speed USB device number 9 using dummy_hcd
[  341.070351][   T26] audit: type=1326 audit(1725416607.823:302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7253 comm="syz.2.965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd587d7ceb9 code=0x7ffc0000
[  341.096770][   T26] audit: type=1326 audit(1725416607.823:303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7253 comm="syz.2.965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd587d7ceb9 code=0x7ffc0000
[  341.143932][   T26] audit: type=1326 audit(1725416607.823:304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7253 comm="syz.2.965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd587d7ceb9 code=0x7ffc0000
[  341.543451][ T6549] usb 5-1: config 0 has an invalid interface number: 9 but max is 0
[  341.551513][ T6549] usb 5-1: config 0 has no interface number 0
[  341.584621][ T6549] usb 5-1: New USB device found, idVendor=0bda, idProduct=0177, bcdDevice=7d.0b
[  341.620773][ T6549] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  341.648123][ T7293] netlink: 16 bytes leftover after parsing attributes in process `syz.3.981'.
[  341.661961][ T6549] usb 5-1: config 0 descriptor??
[  341.725161][ T7293] netlink: 4 bytes leftover after parsing attributes in process `syz.3.981'.
[  341.734688][ T6549] ums-realtek 5-1:0.9: USB Mass Storage device detected
[  341.767816][ T7293] netlink: 8 bytes leftover after parsing attributes in process `syz.3.981'.
[  341.796858][ T7299] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  341.945815][ T5197] usb 5-1: USB disconnect, device number 9
[  342.132236][ T7307] syz.3.986[7307] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  342.132337][ T7307] syz.3.986[7307] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  342.687333][ T7315] Dead loop on virtual device ip6_vti0, fix it urgently!
[  342.706132][ T7315] Dead loop on virtual device ip6_vti0, fix it urgently!
[  342.713689][ T7315] Dead loop on virtual device ip6_vti0, fix it urgently!
[  342.721129][ T7315] Dead loop on virtual device ip6_vti0, fix it urgently!
[  342.728620][ T7315] Dead loop on virtual device ip6_vti0, fix it urgently!
[  342.736161][ T7315] Dead loop on virtual device ip6_vti0, fix it urgently!
[  343.789027][ T7329] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  344.239538][ T7345] loop3: detected capacity change from 0 to 256
[  344.251492][ T7345] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  345.076745][ T3711] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  345.363380][ T5197] usb 4-1: new full-speed USB device number 12 using dummy_hcd
[  345.529821][ T7372] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  345.555572][ T7374] syz.0.1009 (7374): attempted to duplicate a private mapping with mremap.  This is not supported.
[  345.733550][ T5197] usb 4-1: config 0 has an invalid interface number: 9 but max is 0
[  345.748578][ T5197] usb 4-1: config 0 has no interface number 0
[  345.773031][ T5197] usb 4-1: New USB device found, idVendor=0bda, idProduct=0177, bcdDevice=7d.0b
[  345.799653][ T5197] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  345.840466][ T7380] netlink: 228 bytes leftover after parsing attributes in process `syz.0.1009'.
[  345.851883][ T5197] usb 4-1: config 0 descriptor??
[  345.861073][ T7380] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1009'.
[  345.988593][ T5197] ums-realtek 4-1:0.9: USB Mass Storage device detected
[  346.178948][ T7134] usb 4-1: USB disconnect, device number 12
[  348.543229][ T7420] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  348.850960][   T26] kauditd_printk_skb: 61 callbacks suppressed
[  348.850979][   T26] audit: type=1326 audit(1725416616.183:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7425 comm="syz.0.1023" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f01bb37ceb9 code=0x0
[  348.953252][ T7134] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[  350.073653][ T7134] usb 4-1: config 0 has an invalid descriptor of length 1, skipping remainder of the config
[  350.173220][ T5197] usb 1-1: new full-speed USB device number 14 using dummy_hcd
[  350.256306][ T7134] usb 4-1: New USB device found, idVendor=0408, idProduct=4011, bcdDevice=fa.f1
[  350.276997][ T7134] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  350.303614][ T7134] usb 4-1: Product: syz
[  350.314180][ T7134] usb 4-1: Manufacturer: syz
[  350.328659][ T7134] usb 4-1: SerialNumber: syz
[  350.348607][ T7134] usb 4-1: config 0 descriptor??
[  350.399028][ T7134] usb 4-1: Found UVC 0.00 device syz (0408:4011)
[  350.410100][ T7134] usb 4-1: No valid video chain found.
[  350.459867][ T7459] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  350.543413][ T5197] usb 1-1: config 0 has an invalid interface number: 9 but max is 0
[  350.556053][ T5197] usb 1-1: config 0 has no interface number 0
[  350.568639][ T5197] usb 1-1: New USB device found, idVendor=0bda, idProduct=0177, bcdDevice=7d.0b
[  350.582616][ T5197] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  350.591184][ T3677] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  350.769607][ T5197] usb 1-1: config 0 descriptor??
[  350.814290][ T5197] ums-realtek 1-1:0.9: USB Mass Storage device detected
[  350.941334][ T7468] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1036'.
[  351.585683][ T3677] usb 5-1: Using ep0 maxpacket: 16
[  351.646999][ T3682] usb 4-1: USB disconnect, device number 13
[  351.711125][ T5197] usb 1-1: USB disconnect, device number 14
[  351.753458][ T3677] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  351.770266][ T3677] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  351.792411][ T3677] usb 5-1: New USB device found, idVendor=05a4, idProduct=2000, bcdDevice= 0.00
[  351.811899][ T3677] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  351.831455][ T3677] usb 5-1: config 0 descriptor??
[  352.002431][   T26] audit: type=1326 audit(1725416619.343:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7475 comm="syz.2.1038" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd587d7ceb9 code=0x0
[  352.183510][ T3677] usbhid 5-1:0.0: can't add hid device: -71
[  352.189717][ T3677] usbhid: probe of 5-1:0.0 failed with error -71
[  352.241480][ T3677] usb 5-1: USB disconnect, device number 10
[  352.487996][ T7497] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  354.292170][   T26] audit: type=1400 audit(1725416621.633:368): apparmor="DENIED" operation="setprocattr" info="fscreate" error=-22 profile="unconfined" pid=7507 comm="syz.4.1049"
[  356.697666][ T7526] loop3: detected capacity change from 0 to 1024
[  356.698445][ T7525] loop1: detected capacity change from 0 to 256
[  356.733568][ T7525] exFAT-fs (loop1): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  356.746541][ T7526] hfsplus: extend alloc file! (8192,65536,366)
[  357.163397][ T5197] usb 2-1: new full-speed USB device number 19 using dummy_hcd
[  357.533590][ T5197] usb 2-1: config 0 has an invalid interface number: 9 but max is 0
[  357.684824][ T5197] usb 2-1: config 0 has no interface number 0
[  357.690978][ T5197] usb 2-1: New USB device found, idVendor=0bda, idProduct=0177, bcdDevice=7d.0b
[  357.706553][ T7537] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  357.842393][ T5197] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  358.606226][ T5197] usb 2-1: config 0 descriptor??
[  358.653451][ T5197] usb 2-1: can't set config #0, error -71
[  358.670360][ T5197] usb 2-1: USB disconnect, device number 19
[  359.170953][ T3776] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  359.382247][ T7556] overlayfs: failed to resolve './file1': -2
[  360.078132][ T3776] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  360.133642][ T3650] Bluetooth: hci6: command 0x0406 tx timeout
[  360.275062][   T26] audit: type=1326 audit(1725416627.623:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7558 comm="syz.2.1067" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd587d7ceb9 code=0x7ffc0000
[  360.300745][ T3776] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  360.330708][   T26] audit: type=1326 audit(1725416627.653:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7558 comm="syz.2.1067" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd587d7ceb9 code=0x7ffc0000
[  360.362276][   T26] audit: type=1326 audit(1725416627.653:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7558 comm="syz.2.1067" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd587d7ceb9 code=0x7ffc0000
[  360.364114][ T7560] netlink: 1 bytes leftover after parsing attributes in process `syz.4.1068'.
[  360.385805][   T26] audit: type=1326 audit(1725416627.653:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7558 comm="syz.2.1067" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd587d7ceb9 code=0x7ffc0000
[  360.579127][ T7568] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  360.647630][   T26] audit: type=1326 audit(1725416627.653:373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7558 comm="syz.2.1067" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd587d7ceb9 code=0x7ffc0000
[  360.714432][   T26] audit: type=1326 audit(1725416627.663:374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7558 comm="syz.2.1067" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7fd587d7ceb9 code=0x7ffc0000
[  360.717744][ T3776] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  361.552707][   T26] audit: type=1326 audit(1725416627.663:375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7558 comm="syz.2.1067" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd587d7ceb9 code=0x7ffc0000
[  361.625103][   T26] audit: type=1326 audit(1725416627.663:376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7558 comm="syz.2.1067" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd587d7ceb9 code=0x7ffc0000
[  361.672823][   T26] audit: type=1326 audit(1725416627.663:377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7558 comm="syz.2.1067" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd587d7ceb9 code=0x7ffc0000
[  361.701908][ T7576] loop2: detected capacity change from 0 to 256
[  361.816632][ T7576] exFAT-fs (loop2): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  361.939926][   T26] audit: type=1326 audit(1725416627.673:378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7558 comm="syz.2.1067" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd587d7ceb9 code=0x7ffc0000
[  362.185394][ T3639] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  362.208804][ T3639] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  362.226278][ T3639] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  362.235666][ T3639] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  362.243708][ T3639] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[  362.253102][ T3639] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  362.343328][ T3680] usb 3-1: new full-speed USB device number 18 using dummy_hcd
[  362.409776][ T7583] loop4: detected capacity change from 0 to 8192
[  362.797955][ T3680] usb 3-1: config 0 has an invalid interface number: 9 but max is 0
[  362.806667][ T3680] usb 3-1: config 0 has no interface number 0
[  362.824428][ T3680] usb 3-1: New USB device found, idVendor=0bda, idProduct=0177, bcdDevice=7d.0b
[  362.834151][ T3680] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  362.923178][ T3680] usb 3-1: config 0 descriptor??
[  363.004483][ T3680] ums-realtek 3-1:0.9: USB Mass Storage device detected
[  363.238872][ T3680] usb 3-1: USB disconnect, device number 18
[  364.295611][ T3639] Bluetooth: hci7: command tx timeout
[  364.393782][ T7585] chnl_net:caif_netlink_parms(): no params data found
[  364.886100][ T7627] overlayfs: failed to get index nlink (file1/bus, err=-61)
[  366.373725][ T3639] Bluetooth: hci7: command tx timeout
[  367.006709][ T7640] IPVS: set_ctl: invalid protocol: 58 10.1.1.0:20003
[  367.099709][ T7585] bridge0: port 1(bridge_slave_0) entered blocking state
[  367.110081][ T7585] bridge0: port 1(bridge_slave_0) entered disabled state
[  367.129596][ T7585] device bridge_slave_0 entered promiscuous mode
[  367.292738][ T7585] bridge0: port 2(bridge_slave_1) entered blocking state
[  367.316243][ T7585] bridge0: port 2(bridge_slave_1) entered disabled state
[  367.357787][ T7585] device bridge_slave_1 entered promiscuous mode
[  367.393369][ T3677] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[  367.404568][   T26] kauditd_printk_skb: 18 callbacks suppressed
[  367.404587][   T26] audit: type=1326 audit(1725416634.753:397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7651 comm="syz.2.1089" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd587d7ceb9 code=0x7ffc0000
[  367.455059][   T26] audit: type=1326 audit(1725416634.783:398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7651 comm="syz.2.1089" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd587d7ceb9 code=0x7ffc0000
[  367.477859][   T26] audit: type=1326 audit(1725416634.783:399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7651 comm="syz.2.1089" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd587d7ceb9 code=0x7ffc0000
[  367.571296][   T26] audit: type=1326 audit(1725416634.783:400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7651 comm="syz.2.1089" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd587d7ceb9 code=0x7ffc0000
[  367.632290][ T7656] loop2: detected capacity change from 0 to 256
[  367.643421][ T3677] usb 4-1: Using ep0 maxpacket: 8
[  367.692238][ T7656] exFAT-fs (loop2): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  367.723614][   T22] usb 2-1: new high-speed USB device number 20 using dummy_hcd
[  367.754541][   T26] audit: type=1326 audit(1725416634.783:401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7651 comm="syz.2.1089" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd587d7ceb9 code=0x7ffc0000
[  367.763437][ T3677] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  367.838133][ T3677] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  367.915936][ T3677] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  367.916785][   T26] audit: type=1326 audit(1725416634.783:402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7651 comm="syz.2.1089" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7fd587d7ceb9 code=0x7ffc0000
[  367.947521][ T3677] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  367.983265][ T3677] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  367.993375][   T22] usb 2-1: Using ep0 maxpacket: 8
[  368.004529][ T3677] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  368.028577][   T26] audit: type=1326 audit(1725416634.783:403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7651 comm="syz.2.1089" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd587d7ceb9 code=0x7ffc0000
[  368.074958][   T26] audit: type=1326 audit(1725416634.783:404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7651 comm="syz.2.1089" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd587d7ceb9 code=0x7ffc0000
[  368.115046][   T26] audit: type=1326 audit(1725416634.783:405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7651 comm="syz.2.1089" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd587d7ceb9 code=0x7ffc0000
[  368.138191][   T22] usb 2-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0xFF, skipping
[  368.172879][   T26] audit: type=1326 audit(1725416634.803:406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7651 comm="syz.2.1089" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd587d7ceb9 code=0x7ffc0000
[  368.175103][ T7585] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  368.256639][ T7585] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  368.273586][ T3677] usb 4-1: GET_CAPABILITIES returned 0
[  368.280692][ T3677] usbtmc 4-1:16.0: can't read capabilities
[  368.313415][ T3700] usb 3-1: new full-speed USB device number 19 using dummy_hcd
[  368.334425][   T22] usb 2-1: New USB device found, idVendor=0e9c, idProduct=0000, bcdDevice=5b.1e
[  368.349565][   T22] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  368.396832][   T22] usb 2-1: Product: syz
[  368.409298][   T22] usb 2-1: Manufacturer: syz
[  368.424652][   T22] usb 2-1: SerialNumber: syz
[  368.453376][ T3639] Bluetooth: hci7: command tx timeout
[  368.460499][   T22] usb 2-1: config 0 descriptor??
[  368.755062][   T22] streamzap 2-1:0.0: streamzap_probe: Unexpected desc.bNumEndpoints (0)
[  368.790856][ T7585] team0: Port device team_slave_0 added
[  368.806520][ T7585] team0: Port device team_slave_1 added
[  368.853774][ T3700] usb 3-1: config 0 has an invalid interface number: 9 but max is 0
[  368.862907][ T3700] usb 3-1: config 0 has no interface number 0
[  368.869828][ T3700] usb 3-1: New USB device found, idVendor=0bda, idProduct=0177, bcdDevice=7d.0b
[  368.882406][ T3700] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  368.900339][ T3700] usb 3-1: config 0 descriptor??
[  368.921895][ T3776] device hsr_slave_0 left promiscuous mode
[  368.937438][ T3776] device hsr_slave_1 left promiscuous mode
[  368.944537][ T3700] ums-realtek 3-1:0.9: USB Mass Storage device detected
[  368.960551][   T22] usb 2-1: USB disconnect, device number 20
[  368.964629][ T3776] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  369.001116][ T3776] batman_adv: batadv0: Removing interface: batadv_slave_0
[  369.027817][ T3776] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  369.053547][ T3776] batman_adv: batadv0: Removing interface: batadv_slave_1
[  369.064105][ T3776] device bridge_slave_1 left promiscuous mode
[  369.079157][ T3776] bridge0: port 2(bridge_slave_1) entered disabled state
[  369.120398][ T3776] device bridge_slave_0 left promiscuous mode
[  369.140511][ T3776] bridge0: port 1(bridge_slave_0) entered disabled state
[  369.159295][ T3680] usb 3-1: USB disconnect, device number 19
[  369.202187][ T3776] device veth1_macvtap left promiscuous mode
[  369.260040][ T3776] device veth0_macvtap left promiscuous mode
[  369.271674][ T3776] device veth1_vlan left promiscuous mode
[  369.281555][ T3776] device veth0_vlan left promiscuous mode
[  369.865592][ T3680] usb 4-1: USB disconnect, device number 14
[  369.933241][ T7132] usb 2-1: new high-speed USB device number 21 using dummy_hcd
[  370.533268][ T3639] Bluetooth: hci7: command tx timeout
[  370.933625][ T7132] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  370.991615][ T7132] usb 2-1: New USB device found, idVendor=0eb1, idProduct=7007, bcdDevice= 2.09
[  371.001800][ T7132] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  371.019718][ T7132] usb 2-1: config 0 descriptor??
[  371.297038][ T7703] loop2: detected capacity change from 0 to 1024
[  371.804091][ T7132] go7007: probe of 2-1:0.0 failed with error -12
[  371.825092][ T7703] hfsplus: extend alloc file! (8192,65536,366)
[  371.857540][ T3625] libceph: connect (1)[c::]:6789 error -101
[  371.866307][ T3625] libceph: mon0 (1)[c::]:6789 connect error
[  371.874602][ T6761] libceph: connect (1)[c::]:6789 error -101
[  371.892693][ T6761] libceph: mon0 (1)[c::]:6789 connect error
[  371.982501][ T7706] ceph: No mds server is up or the cluster is laggy
[  372.118977][ T7703] kvm: vcpu 0: requested 394 ns lapic timer period limited to 200000 ns
[  372.153488][ T6761] libceph: connect (1)[c::]:6789 error -101
[  372.166293][ T6761] libceph: mon0 (1)[c::]:6789 connect error
[  373.865945][ T7132] usb 2-1: USB disconnect, device number 21
[  373.894543][ T3776] team0 (unregistering): Port device team_slave_1 removed
[  374.035935][ T7730] loop1: detected capacity change from 0 to 256
[  374.094914][ T7730] exFAT-fs (loop1): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  374.154980][ T3776] team0 (unregistering): Port device team_slave_0 removed
[  374.328446][ T3776] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  374.364241][ T7735] IPVS: set_ctl: invalid protocol: 58 10.1.1.0:20003
[  374.503297][ T7132] usb 2-1: new full-speed USB device number 22 using dummy_hcd
[  374.513573][ T3776] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  374.693388][ T6761] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[  374.928702][ T7132] usb 2-1: config 0 has an invalid interface number: 9 but max is 0
[  374.937165][ T7132] usb 2-1: config 0 has no interface number 0
[  374.953547][ T6761] usb 4-1: Using ep0 maxpacket: 8
[  374.960106][ T7132] usb 2-1: New USB device found, idVendor=0bda, idProduct=0177, bcdDevice=7d.0b
[  374.971323][ T7132] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  375.000890][ T7132] usb 2-1: config 0 descriptor??
[  375.044292][ T7132] ums-realtek 2-1:0.9: USB Mass Storage device detected
[  375.077026][ T6761] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  375.087165][ T6761] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  375.097120][ T6761] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  375.107495][ T6761] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  375.125438][ T6761] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  375.135339][ T6761] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  375.324183][ T3680] usb 2-1: USB disconnect, device number 22
[  375.432221][ T6761] usb 4-1: GET_CAPABILITIES returned 0
[  375.442423][ T6761] usbtmc 4-1:16.0: can't read capabilities
[  375.669985][ T3776] bond0 (unregistering): Released all slaves
[  375.784568][ T7585] batman_adv: batadv0: Adding interface: batadv_slave_0
[  375.791757][ T7585] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  375.821009][ T7585] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  375.932568][ T7585] batman_adv: batadv0: Adding interface: batadv_slave_1
[  375.989575][ T7585] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  376.159050][ T7585] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  377.087894][ T7751] 9pnet_fd: Insufficient options for proto=fd
[  377.338313][ T7585] device hsr_slave_0 entered promiscuous mode
[  377.429780][ T7585] device hsr_slave_1 entered promiscuous mode
[  377.444363][ T7585] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  377.466747][ T3680] usb 4-1: USB disconnect, device number 15
[  377.493509][ T7585] Cannot create hsr debugfs directory
[  377.580222][   T26] kauditd_printk_skb: 4 callbacks suppressed
[  377.580238][   T26] audit: type=1326 audit(1725416644.923:411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7763 comm="syz.1.1113" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1fc137ceb9 code=0x0
[  377.954729][ T7773] loop4: detected capacity change from 0 to 512
[  378.049492][ T7779] loop3: detected capacity change from 0 to 256
[  378.087823][ T7773] Quota error (device loop4): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0
[  378.110633][ T7773] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0
[  378.123561][ T7773] EXT4-fs error (device loop4): ext4_acquire_dquot:6800: comm syz.4.1116: Failed to acquire dquot type 0
[  378.150077][ T7779] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  378.169422][ T7773] EXT4-fs (loop4): Remounting filesystem read-only
[  378.186585][ T7773] EXT4-fs (loop4): 1 orphan inode deleted
[  378.192430][ T7773] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  378.282998][ T7773] ext4 filesystem being mounted at /204/file1 supports timestamps until 2038 (0x7fffffff)
[  378.541648][ T1259] ieee802154 phy0 wpan0: encryption failed: -22
[  378.548698][   T27] INFO: task syz.0.533:5798 blocked for more than 143 seconds.
[  378.553255][ T3680] usb 4-1: new full-speed USB device number 16 using dummy_hcd
[  378.561010][   T27]       Not tainted 6.1.107-syzkaller #0
[  378.566567][ T1259] ieee802154 phy1 wpan1: encryption failed: -22
[  378.570148][   T27] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  378.592570][   T27] task:syz.0.533       state:D stack:26176 pid:5798  ppid:3645   flags:0x00004004
[  378.632058][   T27] Call Trace:
[  378.678378][   T27]  <TASK>
[  378.681531][   T27]  __schedule+0x143f/0x4570
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  378.778311][   T27]  ? release_firmware_map_entry+0x186/0x186
[  378.897038][   T27]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[  378.913910][ T7790] loop1: detected capacity change from 0 to 1024
[  379.020699][   T27]  ? print_irqtrace_events+0x210/0x210
[  379.113204][   T27]  ? _raw_spin_lock_irq+0xdb/0x110
[  379.118399][   T27]  schedule+0xbf/0x180
[  379.122670][   T27]  ? down_read+0x69f/0xa30
[  379.143506][   T27]  schedule_preempt_disabled+0xf/0x20
[  379.148945][   T27]  down_read+0x6ff/0xa30
[  379.174552][   T27]  ? __down_common+0x8b0/0x8b0
[  379.179377][   T27]  ? do_raw_spin_lock+0x14a/0x370
[  379.184052][ T7790] hfsplus: extend alloc file! (8192,65536,366)
[  379.198706][   T27]  ? do_raw_spin_unlock+0x137/0x8a0
[  379.211685][   T27]  iterate_supers+0xac/0x1e0
[  379.226816][   T27]  ? do_quotactl+0x6c0/0x6c0
[  379.231469][   T27]  __se_sys_quotactl+0x347/0x770
[  379.243253][   T27]  ? __x64_sys_quotactl+0xa0/0xa0
[  379.248328][   T27]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[  379.265134][   T27]  ? print_irqtrace_events+0x210/0x210
[  379.270653][   T27]  ? print_irqtrace_events+0x210/0x210
[  379.286732][   T27]  ? syscall_user_dispatch+0x45/0x90
[  379.292071][   T27]  ? syscall_enter_from_user_mode+0x51/0x230
[  379.308103][   T27]  do_syscall_64+0x3b/0xb0
[  379.312572][   T27]  ? clear_bhb_loop+0x45/0xa0
[  379.321700][   T27]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  379.333355][   T27] RIP: 0033:0x7f57c497ceb9
[  379.337814][   T27] RSP: 002b:00007f57c57a4038 EFLAGS: 00000246 ORIG_RAX: 00000000000000b3
[  379.346973][   T27] RAX: ffffffffffffffda RBX: 00007f57c4b35f80 RCX: 00007f57c497ceb9
[  379.360465][   T27] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffff80000102
[  379.372960][   T27] RBP: 00007f57c49eefbe R08: 0000000000000000 R09: 0000000000000000
[  379.390970][   T27] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  379.400132][   T27] R13: 0000000000000000 R14: 00007f57c4b35f80 R15: 00007ffe59a12b68
[  379.418287][   T27]  </TASK>
[  379.421409][   T27] 
[  379.421409][   T27] Showing all locks held in the system:
[  379.439008][   T27] 1 lock held by rcu_tasks_kthre/12:
[  379.448453][   T27]  #0: ffffffff8d32b190 (rcu_tasks.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x29/0xe30
[  379.459173][   T27] 1 lock held by rcu_tasks_trace/13:
[  379.479443][   T27]  #0: ffffffff8d32b990 (rcu_tasks_trace.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x29/0xe30
[  379.503613][   T27] 1 lock held by khungtaskd/27:
[  379.513221][   T27]  #0: ffffffff8d32afc0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x51/0x290
[  379.543251][   T27] 1 lock held by dhcpcd/3305:
[  379.547971][   T27]  #0: ffffffff8e4f8de8 (rtnl_mutex){+.+.}-{3:3}, at: __netlink_dump_start+0x12e/0x6c0
[  379.583190][   T27] 2 locks held by getty/3390:
[  379.587998][   T27]  #0: ffff88814b38c098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x21/0x70
[  379.613189][   T27]  #1: ffffc900031262f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6a7/0x1db0
[  379.633203][   T27] 5 locks held by kworker/0:3/3680:
[  379.638455][   T27]  #0: ffff88814329b938 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[  379.656428][   T27]  #1: ffffc900041dfd20 ((work_completion)(&hub->events)){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[  379.668459][   T27]  #2: ffff888144fc6190 (&dev->mutex){....}-{3:3}, at: hub_event+0x1fe/0x5730
[  379.677636][   T27]  #3: ffff8880285414f8 (&port_dev->status_lock){+.+.}-{3:3}, at: hub_event+0x2471/0x5730
[  379.687671][   T27]  #4: ffff888026e87068 (hcd->address0_mutex){+.+.}-{3:3}, at: hub_event+0x249e/0x5730
[  379.700642][   T27] 2 locks held by kworker/1:7/3700:
[  379.710876][   T27]  #0: ffff888017c70938 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[  379.728252][   T27]  #1: ffffc9000424fd20 (free_ipc_work){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[  379.738078][   T27] 1 lock held by syz.3.284/4816:
[  379.743031][   T27]  #0: ffff888078f080e0 (&type->s_umount_key#55/1){+.+.}-{3:3}, at: alloc_super+0x217/0x930
[  379.753305][   T27] 1 lock held by syz.0.533/5798:
[  379.758266][   T27]  #0: ffff888078f080e0 (&type->s_umount_key#56){++++}-{3:3}, at: iterate_supers+0xac/0x1e0
[  379.768546][   T27] 1 lock held by syz.0.846/6848:
[  379.773709][   T27]  #0: ffff888078f080e0 (&type->s_umount_key#56){++++}-{3:3}, at: iterate_supers+0xac/0x1e0
[  379.784007][   T27] 2 locks held by kworker/0:15/7133:
[  379.789300][   T27]  #0: ffff888017c72138 ((wq_completion)rcu_gp){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[  379.799885][   T27]  #1: ffffc9001b1afd20 ((work_completion)(&rew->rew_work)){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[  379.812579][   T27] 3 locks held by kworker/0:16/7134:
[  379.818131][   T27]  #0: ffff88802dec7938 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[  379.830824][   T27]  #1: ffffc9001b29fd20 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[  379.844181][   T27]  #2: ffffffff8e4f8de8 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_verify_work+0x15/0x30
[  379.853938][   T27] 8 locks held by syz-executor/7585:
[  379.859264][   T27]  #0: ffff88807e57a460 (sb_writers#8){.+.+}-{0:0}, at: vfs_write+0x269/0xbc0
[  379.868234][   T27]  #1: ffff888025500888 (&of->mutex){+.+.}-{3:3}, at: kernfs_fop_write_iter+0x1e7/0x4f0
[  379.878159][   T27]  #2: ffff8881447d50f0 (kn->active#50){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x20b/0x4f0
[  379.888271][   T27]  #3: ffffffff8de22548 (nsim_bus_dev_list_lock){+.+.}-{3:3}, at: del_device_store+0xf8/0x480
[  379.898806][   T27]  #4: ffff88802e86e0e8 (&dev->mutex){....}-{3:3}, at: device_release_driver_internal+0xb6/0x880
[  379.909399][   T27]  #5: ffff88807e4082f8 (&devlink->lock_key#8){+.+.}-{3:3}, at: nsim_drv_remove+0x54/0x160
[  379.920694][   T27]  #6: ffffffff8e4f8de8 (rtnl_mutex){+.+.}-{3:3}, at: nsim_destroy+0x3a/0x140
[  379.930642][   T27]  #7: ffffffff8d3305b8 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x360/0x930
[  379.941890][   T27] 1 lock held by syz.2.1111/7760:
[  379.947145][   T27]  #0: ffffffff8d3305b8 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x360/0x930
[  379.958570][   T27] 3 locks held by syz.3.1117/7779:
[  379.964036][   T27]  #0: ffff8880584310b8 (&hdev->req_lock){+.+.}-{3:3}, at: hci_unregister_dev+0x1ff/0x500
[  379.974307][   T27]  #1: ffff888058430078 (&hdev->lock){+.+.}-{3:3}, at: hci_dev_close_sync+0x48d/0x1020
[  379.984215][   T27]  #2: ffffffff8e650188 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_conn_hash_flush+0xb8/0x2a0
[  380.000463][   T27] 
[  380.002830][   T27] =============================================
[  380.002830][   T27] 
[  380.028801][   T27] NMI backtrace for cpu 1
[  380.033206][   T27] CPU: 1 PID: 27 Comm: khungtaskd Not tainted 6.1.107-syzkaller #0
[  380.041196][   T27] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  380.051271][   T27] Call Trace:
[  380.054649][   T27]  <TASK>
[  380.057601][   T27]  dump_stack_lvl+0x1e3/0x2cb
[  380.062303][   T27]  ? preempt_schedule_thunk+0x16/0x18
[  380.067754][   T27]  ? nf_tcp_handle_invalid+0x642/0x642
[  380.073243][   T27]  ? panic+0x764/0x764
[  380.077322][   T27]  ? vprintk_emit+0x622/0x740
[  380.082015][   T27]  ? printk_sprint+0x490/0x490
[  380.086800][   T27]  ? nmi_cpu_backtrace+0x252/0x560
[  380.091937][   T27]  nmi_cpu_backtrace+0x4e1/0x560
[  380.096981][   T27]  ? nmi_trigger_cpumask_backtrace+0x3f0/0x3f0
[  380.103140][   T27]  ? _printk+0xd1/0x111
[  380.107291][   T27]  ? panic+0x764/0x764
[  380.111354][   T27]  ? __wake_up_klogd+0xcc/0x100
[  380.116197][   T27]  ? panic+0x764/0x764
[  380.120280][   T27]  ? nmi_trigger_cpumask_backtrace+0xe0/0x3f0
[  380.126887][   T27]  ? arch_trigger_cpumask_backtrace+0x10/0x10
[  380.132957][   T27]  nmi_trigger_cpumask_backtrace+0x1ae/0x3f0
[  380.138958][   T27]  watchdog+0xf88/0xfd0
[  380.143128][   T27]  ? watchdog+0x1f8/0xfd0
[  380.147623][   T27]  kthread+0x28d/0x320
[  380.151688][   T27]  ? hungtask_pm_notify+0x50/0x50
[  380.156705][   T27]  ? kthread_blkcg+0xd0/0xd0
[  380.161288][   T27]  ret_from_fork+0x1f/0x30
[  380.165708][   T27]  </TASK>
[  380.169285][   T27] Sending NMI from CPU 1 to CPUs 0:
[  380.174611][    C0] NMI backtrace for cpu 0
[  380.174622][    C0] CPU: 0 PID: 3073 Comm: syslogd Not tainted 6.1.107-syzkaller #0
[  380.174637][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  380.174644][    C0] RIP: 0010:vfs_read+0x2bc/0xbf0
[  380.174663][    C0] Code: 08 48 89 df e8 b5 97 f1 ff 48 89 5c 24 58 4c 8b 33 49 8d 5e 10 48 89 d8 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df 80 3c 08 00 <74> 08 48 89 df e8 8a 97 f1 ff 48 8b 1b 48 85 db 0f 84 a8 00 00 00
[  380.174674][    C0] RSP: 0018:ffffc9000315fcc0 EFLAGS: 00000246
[  380.174687][    C0] RAX: 1ffffffff180a1b6 RBX: ffffffff8c050db0 RCX: dffffc0000000000
[  380.174697][    C0] RDX: ffff88807dbb0000 RSI: 0000000000000000 RDI: 0000000000000000
[  380.174706][    C0] RBP: ffffc9000315fe30 R08: ffffffff81f095b1 R09: ffffed10282cf0fa
[  380.174716][    C0] R10: 0000000000000000 R11: dffffc0000000001 R12: 1ffff1100fabe855
[  380.174726][    C0] R13: 1ffff9200062bfa4 R14: ffffffff8c050da0 R15: 1ffff1100fabe85f
[  380.174736][    C0] FS:  00007fa98a35d380(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[  380.174748][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  380.174758][    C0] CR2: 000000110c35cbf1 CR3: 000000002d382000 CR4: 00000000003526f0
[  380.174769][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  380.174777][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  380.174791][    C0] Call Trace:
[  380.174795][    C0]  <NMI>
[  380.174800][    C0]  ? nmi_cpu_backtrace+0x3de/0x560
[  380.174819][    C0]  ? read_lock_is_recursive+0x10/0x10
[  380.174839][    C0]  ? nmi_trigger_cpumask_backtrace+0x3f0/0x3f0
[  380.174858][    C0]  ? nmi_handle+0x25/0x440
[  380.174883][    C0]  ? nmi_cpu_backtrace_handler+0x8/0x10
[  380.174901][    C0]  ? nmi_handle+0x12e/0x440
[  380.174919][    C0]  ? nmi_handle+0x25/0x440
[  380.174936][    C0]  ? vfs_read+0x2bc/0xbf0
[  380.174948][    C0]  ? default_do_nmi+0x62/0x150
[  380.174962][    C0]  ? exc_nmi+0xa8/0x100
[  380.174974][    C0]  ? end_repeat_nmi+0x16/0x31
[  380.174993][    C0]  ? vfs_read+0x241/0xbf0
[  380.175006][    C0]  ? vfs_read+0x2bc/0xbf0
[  380.175018][    C0]  ? vfs_read+0x2bc/0xbf0
[  380.175031][    C0]  ? vfs_read+0x2bc/0xbf0
[  380.175043][    C0]  </NMI>
[  380.175047][    C0]  <TASK>
[  380.175055][    C0]  ? kernel_read+0x1f0/0x1f0
[  380.175069][    C0]  ? __rseq_handle_notify_resume+0x3b7/0x1500
[  380.175091][    C0]  ? __fdget_pos+0x1db/0x360
[  380.175106][    C0]  ksys_read+0x19c/0x2c0
[  380.175118][    C0]  ? print_irqtrace_events+0x210/0x210
[  380.175136][    C0]  ? vfs_write+0xbc0/0xbc0
[  380.175148][    C0]  ? syscall_enter_from_user_mode+0x2e/0x230
[  380.175162][    C0]  ? lockdep_hardirqs_on+0x94/0x130
[  380.175177][    C0]  ? syscall_enter_from_user_mode+0x2e/0x230
[  380.175192][    C0]  do_syscall_64+0x3b/0xb0
[  380.175208][    C0]  ? clear_bhb_loop+0x45/0xa0
[  380.175225][    C0]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  380.175241][    C0] RIP: 0033:0x7fa98a4b1b6a
[  380.175252][    C0] Code: 00 3d 00 00 41 00 75 0d 50 48 8d 3d 2d 08 0a 00 e8 ea 7d 01 00 31 c0 e9 07 ff ff ff 64 8b 04 25 18 00 00 00 85 c0 75 1b 0f 05 <48> 3d 00 f0 ff ff 76 6c 48 8b 15 8f a2 0d 00 f7 d8 64 89 02 48 83
[  380.175261][    C0] RSP: 002b:00007ffeb46cca28 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  380.175274][    C0] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007fa98a4b1b6a
[  380.175283][    C0] RDX: 00000000000000ff RSI: 000055d138d66950 RDI: 0000000000000000
[  380.175292][    C0] RBP: 000055d138d66910 R08: 0000000000000001 R09: 0000000000000000
[  380.175300][    C0] R10: 00007fa98a6503a3 R11: 0000000000000246 R12: 000055d138d66982
[  380.175308][    C0] R13: 000055d138d66950 R14: 0000000000000000 R15: 00007fa98a68ea80
[  380.175324][    C0]  </TASK>
[  380.284002][   T27] Kernel panic - not syncing: hung_task: blocked tasks
[  380.284017][   T27] CPU: 1 PID: 27 Comm: khungtaskd Not tainted 6.1.107-syzkaller #0
[  380.284035][   T27] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  380.284044][   T27] Call Trace:
[  380.284050][   T27]  <TASK>
[  380.284056][   T27]  dump_stack_lvl+0x1e3/0x2cb
[  380.284086][   T27]  ? nf_tcp_handle_invalid+0x642/0x642
[  380.284108][   T27]  ? panic+0x764/0x764
[  380.284125][   T27]  ? llist_add_batch+0x160/0x1d0
[  380.284149][   T27]  ? vscnprintf+0x59/0x80
[  380.284170][   T27]  panic+0x318/0x764
[  380.284187][   T27]  ? nmi_trigger_cpumask_backtrace+0x2bf/0x3f0
[  380.284211][   T27]  ? memcpy_page_flushcache+0xfc/0xfc
[  380.284233][   T27]  ? nmi_trigger_cpumask_backtrace+0x2bf/0x3f0
[  380.284254][   T27]  ? nmi_trigger_cpumask_backtrace+0x338/0x3f0
[  380.284278][   T27]  ? nmi_trigger_cpumask_backtrace+0x33d/0x3f0
[  380.284303][   T27]  watchdog+0xfc7/0xfd0
[  380.284327][   T27]  ? watchdog+0x1f8/0xfd0
[  380.284350][   T27]  kthread+0x28d/0x320
[  380.284364][   T27]  ? hungtask_pm_notify+0x50/0x50
[  380.284381][   T27]  ? kthread_blkcg+0xd0/0xd0
[  380.284398][   T27]  ret_from_fork+0x1f/0x30
[  380.284428][   T27]  </TASK>
[  380.285792][   T27] Kernel Offset: disabled
[  380.657357][   T27] Rebooting in 86400 seconds..