last executing test programs:

14m35.108588298s ago: executing program 2 (id=127):
socket$alg(0x26, 0x5, 0x0)
syz_emit_vhci(0x0, 0x1d)

14m34.598288371s ago: executing program 2 (id=131):
r0 = syz_open_dev$dvb_demux(0x0, 0x0, 0x41)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
r2 = getpgrp(0x0)
sched_setaffinity(r2, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, r0, 0x0)
r3 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
read$msr(0xffffffffffffffff, &(0x7f0000019680)=""/102392, 0x18ff8)
connect$can_bcm(r1, &(0x7f0000000140), 0x10)
r4 = syz_io_uring_setup(0x835, &(0x7f00000000c0)={0x0, 0x679b, 0x80, 0x3, 0x403ce}, &(0x7f0000000040)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f00000002c0)=@IORING_OP_SEND={0x1a, 0x0, 0x0, r1, 0x0, &(0x7f0000000240)="144024aeae8b2b5d63f7449a372e1406d4defe495b5744eed6801d1d51e1d3fcdcf25bdf4a5f2ef4b45d6898757795c858f0c3d4b26bd644", 0x38, 0x40480d7, 0x1})
sendmsg$can_bcm(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="05000000"], 0x48}}, 0x0)
io_uring_enter(r4, 0x3516, 0x0, 0x0, 0x0, 0x0)

14m32.872713885s ago: executing program 2 (id=134):
socket$inet6_tcp(0xa, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
shmctl$IPC_INFO(0x0, 0x3, 0x0)

14m31.535770452s ago: executing program 2 (id=137):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000444ff8)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, 0x0, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000280)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
sendmmsg$inet6(r0, &(0x7f0000000480)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback, 0x80020}, 0x1c, &(0x7f0000000300)=[{&(0x7f00000034c0)='\x00', 0x1}], 0x1}}], 0x1, 0x34000811)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000640)=ANY=[@ANYBLOB="12e01b398adda1"], 0x1000f)

14m30.90538473s ago: executing program 2 (id=141):
syz_open_dev$usbmon(&(0x7f00000005c0), 0x40000, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
connect$bt_l2cap(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x2042, 0x0)
ioctl$AUTOFS_IOC_FAIL(r4, 0x4c80, 0x7000000)

14m29.484916823s ago: executing program 2 (id=144):
socket$nl_route(0x10, 0x3, 0x0)
openat$udambuf(0xffffffffffffff9c, 0x0, 0x2)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
openat$drirender128(0xffffffffffffff9c, &(0x7f00000003c0), 0x101000, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = syz_open_dev$video4linux(&(0x7f0000000040), 0x7fff, 0x48b03)
ioctl$VIDIOC_UNSUBSCRIBE_EVENT(r2, 0x80085665, &(0x7f00000000c0)={0x3, 0x1ff, 0x2})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
syz_open_dev$video4linux(0x0, 0x3, 0x3cf281)
syz_open_dev$dri(0x0, 0x1, 0x0)
getpid()
ioctl$TCSBRKP(0xffffffffffffffff, 0x5425, 0x2)
syz_80211_join_ibss(&(0x7f0000000200)='wlan0\x00', &(0x7f00000002c0)=@default_ap_ssid, 0x6, 0x1)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="54000000020601080000000000000000000000000c00078008000640000000000500010006000000050005000a00000005000400000000000900020073797a31000000000d000300686173683a6e6574"], 0x54}, 0x1, 0x0, 0x0, 0x48000}, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
setsockopt$sock_int(r3, 0x1, 0x1, &(0x7f0000000380)=0xfffff272, 0x4)
sendmsg$IPSET_CMD_ADD(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB="44000000090601020000000000000000000000000900020073797a310000000005000100070000001c0007801800018014000240"], 0x44}, 0x1, 0x0, 0x0, 0x10000047}, 0x4000084)

14m14.066017795s ago: executing program 32 (id=144):
socket$nl_route(0x10, 0x3, 0x0)
openat$udambuf(0xffffffffffffff9c, 0x0, 0x2)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
openat$drirender128(0xffffffffffffff9c, &(0x7f00000003c0), 0x101000, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = syz_open_dev$video4linux(&(0x7f0000000040), 0x7fff, 0x48b03)
ioctl$VIDIOC_UNSUBSCRIBE_EVENT(r2, 0x80085665, &(0x7f00000000c0)={0x3, 0x1ff, 0x2})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
syz_open_dev$video4linux(0x0, 0x3, 0x3cf281)
syz_open_dev$dri(0x0, 0x1, 0x0)
getpid()
ioctl$TCSBRKP(0xffffffffffffffff, 0x5425, 0x2)
syz_80211_join_ibss(&(0x7f0000000200)='wlan0\x00', &(0x7f00000002c0)=@default_ap_ssid, 0x6, 0x1)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="54000000020601080000000000000000000000000c00078008000640000000000500010006000000050005000a00000005000400000000000900020073797a31000000000d000300686173683a6e6574"], 0x54}, 0x1, 0x0, 0x0, 0x48000}, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
setsockopt$sock_int(r3, 0x1, 0x1, &(0x7f0000000380)=0xfffff272, 0x4)
sendmsg$IPSET_CMD_ADD(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB="44000000090601020000000000000000000000000900020073797a310000000005000100070000001c0007801800018014000240"], 0x44}, 0x1, 0x0, 0x0, 0x10000047}, 0x4000084)

3m19.174103484s ago: executing program 3 (id=1880):
syz_io_uring_setup(0x3a65, &(0x7f00000001c0)={0x0, 0xa010, 0x10100, 0xfffffffe, 0x3}, &(0x7f0000000240), &(0x7f0000000140))
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000040)='./file1\x00', 0x10, &(0x7f0000000180)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000", @ANYRES64=0x0, @ANYBLOB="0e756ae02c8b41209e0e3a0b59f9397944d77072f565944f5227713955b4b5bbb44d89f444a9a9f51b088506be4cd6372c721e6505e6954a4514c0f17ba2ef8a56dd23416184b1c3675e0fdd0e6f4e426adcb7f88cb62f2123bd58c827ab8c9c821dad2bf93eebc0a1d2fb541e8a3aceb362c808eb3e9ac4e7ed9c3c125e411d5ace0322d664dd43", @ANYRES64, @ANYBLOB="de96523bbf0b6f6f4110aebf2c3be7195d0ee65265a0ee4b8d50cc"], 0x4, 0x2cc, &(0x7f0000000440)="$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")
mkdirat(0xffffffffffffff9c, 0x0, 0x1c0)
mount$nfs(&(0x7f0000000100)='...', &(0x7f0000000140)='./file0\x00', 0x0, 0x2000, 0x0)
ioctl$SIOCRSSL2CALL(0xffffffffffffffff, 0x5411, 0x0)
fanotify_init(0x200, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$pptp(0x18, 0x1, 0x2)
connect$pptp(r3, &(0x7f0000000040)={0x18, 0x2, {0x0, @empty}}, 0x1e)
r4 = socket(0x10, 0x3, 0x0)
write(r4, &(0x7f0000000140)="2600000022004701050000070000000000000020002b1f000a4a51f1ee839cd53400b017ca", 0x25)

3m17.825995666s ago: executing program 3 (id=1883):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x6}, 0x28)
syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="120100009690342058200510f6b50102030109021b00020000000009043d0000518e3f0009"], 0x0)
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x8a002, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000dc0)=ANY=[@ANYBLOB="b7000000a5517f5fbfa30000000000000703000028feffff720af0fff8ffffff71a4f0ff00000000b7060000000000012e400300000000006506020001cd000071187c0000000000c3640000f10000007b0a00fe00000000850000000c00000079a000fe000000009500000000000000023bc065b7a379d179fc9e94af69912435f1b6a693172e6191a12bebf9f9804ea033388cd15b65877ad4b200000000000000000beca090f32050e436fe275daf51efd601b6bf01c8e8b1abe4fef3bef7074815ae98743d1ace4c46631256dd19aed0d600c0b6199fe3ff3128e599b0eaebbdbd7359a48f5b0afc3996792043a6787bac46aa7aa400000000000069669622208266f896ba2c9e73c2efeec2dc565fbafb2cb63f5fef9ab79ff8abaa8a08f54a062107e9bb3e980fff675c8d3e91df6648a7a6aebcb63e0867b75690152af27711f0cbb9c06018d21bf3f87b8eb65323b4267a526d53442db8e48dbc5ce47d67d07441a7975d5e41b14fd0154a8246249952a8b61633ce068220defe09d3b1136af6d03e9cf996c13d1bfcdc54567a9ca80dec2e943fe4ae7c617cc071f7add70cfbd48f8f6b50fe6a8297d88efa73e7e601040000b4a685969f28902bdecf66ef39755de79ed2c711477febc96231a53984d00877301d0ec62427a8e38618fdd1ce9aaed569ebc5f2e58d6028e66139a737cc7146a131d47dcebb32ed67021d76e983223c998aec22242ae54e87f438d26982876b58f9134366952f7399a733f07138a736924f3709000000e97f0c117ec439c6b7b965752bbc06eced08d97a32ae4b1ad4d11c5b6f68ee841975233e4cea13f3ef04b2cab9cc256d4539dbafd888c7097c1169e0bebcc81ca3da40bf34b6c9c1da2d6ed8acaf2a8091820ff4cf6be74ddca8bf2eed0e11b2139e8c3ec95436af5269d5792decda7d8b5dcf8640b504ba23c6d0a7f67cdfd27328100ebf9319a56f0f9cee17deecf747f3493f1dc39551f4c9a40b3e93fa80b8234ccbf39a9ef09bd97321f0dc20956f44ba2c5ec2e7569b05cf4690ddc189f174046a8b214acf23f42fb51ed4819e6b4cb5a8bf2b559d0c198fe0315483b8beb9801d06c58b22dd713fe3b7ef18e21081aacfd091b754125a488cea18255f79bebcb3051f622f8a1d9af1908e88a58774a24f35a4ccdbedea6212286c23dd89c2b4b90647f17231472af8dda7f3ab20f093aad3ce875f7458039ee6d0a50deb7bc8eb393f056a5e7725531c5485278e0362338e2e2710fe00465e0d182a322091022cf5b814eeb9b3cab21196581e4d92d0b6fe5525285eea359274f1f21d69233bbe94941f10ba292100000000000000000000000000000000c18e93a0c5231779f2ee201e9fe7e63e84b57b5f05ecd278919bad330ffcb594b8255b3085b352ca9533d6c31c1a30158c30352f8a126a65cb6582e58aa641007418611df53a601c3a8fb8d2286e86abf98136f345446730f68f5d6d1817a9e1b09e5650d2599fbe719a45337d29eb3fef5f7f565457660dec6fe903a1c2ea4f40a8ea1c179892afa219fc69a44163f0d731de418e9fd82a8c4661caea674b19242d1840d047882f640ea248457288c5ffb63e857da03ff5c0475c3cfff41c4806f1dc750eb1c45ec3a2a0b064834010604d6f88a29e8e9bda2bc9c18d1b53a08f25d62ccaa46bc0235c830a7b3fe64bc6031b431bcad6b698a1ba6027870ea9e55fafbbf140c5f82a33ee4ac793b989c12a5827a7957f4d8136cf918b7cbf5bc5fc64c8001992536584586edded6f65bdd371ac84fd5cc60ab79b84e9e85a1c54d5666a5d133e95eff121621dff14b9de7a188b8c5387f9da63c2cce405bc44079e34e2db2b275bfbb54841d647338cad74be91144b780cf381a6860f641446ef73bd11d45f5e4df8f3c6440d8425fd7382225cf8c2cada01bf3cd5cbc6a403173e0c89a491c75efc3c21b7825a521c6011945eef94abc3000000000000000000000000000000d71b794e9b4c145caf050429937eef4364d9e1cbe9150bccd9b2e73757f1f5e8ac50736cd3cbc029ede2869642841371bb4b9c1aaa8826889a909e6716b60e4b568b6761f8ccc7d35b0e66357746b10fc481b47e67f1e14408c1ef3e018a5e647e3f607654f3bf82bcfb42be038a272d82f8362944f608b3810000000019fda0b1b607f1ab34194ed954973f7a5accc0938d3364ab07574d0b32fc30f3ab73d012b63ee905e98ab6989ec2c840cd216eb18fedfb3b204e94e170bae930660368d3799c9b1bf7556ac57164966791626f06ad2e332341965f72141ec140b80efd7720ccdaa890b79bc4523386bd66553121543c9a35b7adcf2f6b257fefef1d6e1da2ee94d3f822bf45aad21e5b5a3788ab584090664065af39b0f43968dcd7c5f8e5a8dc6298691423fbf7e8e012260bc62f9422434a547ef7ca37953d435098d9b71edd1a03e46d0ade465d0c0db0a51f9e29cac05e5a04f94e"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x45}, 0x48)
socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = syz_open_dev$dri(0x0, 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f00000001c0)={0x8000, 0x2, 0x4})
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x91)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f00000000c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
setsockopt$netrom_NETROM_IDLE(0xffffffffffffffff, 0x103, 0x7, 0x0, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
syz_open_procfs$namespace(r2, 0x0)
r5 = socket(0x2000000000000021, 0x2, 0x2)
setsockopt$inet_tcp_TCP_CONGESTION(r5, 0x110, 0xd, 0x0, 0x0)
r6 = syz_open_dev$dri(&(0x7f0000000000), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r6, 0xc04064a0, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[<r7=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_CURSOR(r1, 0xc01c64a3, &(0x7f0000000040)={0x3, r7, 0x10000000, 0x80000001, 0xb, 0x1fd, 0x1})
close_range(r1, 0xffffffffffffffff, 0x0)

3m14.180312129s ago: executing program 3 (id=1893):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$inet_MCAST_MSFILTER(r0, 0x0, 0x30, 0x0, 0x0)

3m13.619539238s ago: executing program 3 (id=1896):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000003c0)='./bus\x00', 0xe, &(0x7f0000000240)={[{@resuid}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1df}}, {@stripe}, {@noblock_validity}]}, 0x3, 0x451, &(0x7f0000000f80)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file2\x00', 0x181)
r0 = socket$xdp(0x2c, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
lseek(0xffffffffffffffff, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bind$netlink(0xffffffffffffffff, 0x0, 0x0)
writev(0xffffffffffffffff, &(0x7f0000000000)=[{0x0}], 0x1)
r5 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r5, 0x0, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x8, 0x3, 0x300, 0x198, 0xffffffff, 0xffffffff, 0x198, 0xffffffff, 0x268, 0xffffff7a, 0xffffffff, 0x268, 0xffffffff, 0x7fffffe, 0x0, {[{{@ip={@broadcast, @loopback, 0x0, 0x0, 'veth1\x00', 'veth0_to_team\x00', {}, {}, 0x0, 0x0, 0x41}, 0x6, 0x130, 0x198, 0x0, {}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'bm\x00', "00000100cbd047da9ca965f96ad5801f0514d363ee84bb895919d9490f6785fba3c4a44f1e25ecefef2a2d6054f5260ece5ce1a56a5ef73be11d65bfe8c37674024c183ebacdf741cea92ded3a9ca54de15dd9ec8ef62f9e000000000000000000ffffff7f00", 0x7d}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x2, 0x0, 'snmp_trap\x00', 'syz1\x00'}}}, {{@uncond, 0x0, 0x70, 0xd0}, @common=@SET={0x60}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x360)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xd, 0x4, &(0x7f0000000400)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x61, 0x17, 0x5c}, [@ldst={0x6, 0x0, 0x5, 0x7}]}, &(0x7f0000000080)='GPL\x00', 0x4, 0x3e0, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x76}, 0x48)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'sit0\x00', <r6=>0x0})
bind$xdp(r0, &(0x7f0000000100)={0x2c, 0x0, r6}, 0x10)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c})
chdir(&(0x7f0000000140)='./file0\x00')
read$FUSE(0xffffffffffffffff, 0x0, 0x0)

3m12.136666329s ago: executing program 3 (id=1900):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000080)={0x0, 0x0, 0x1})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000480)={0x2, 0x110000, 0x1})
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

3m11.45970762s ago: executing program 3 (id=1902):
syz_io_uring_setup(0x3a65, &(0x7f00000001c0)={0x0, 0xa010, 0x10100, 0xfffffffe, 0x3}, &(0x7f0000000240), &(0x7f0000000140))
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000040)='./file1\x00', 0x10, &(0x7f0000000180)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000", @ANYRES64=0x0, @ANYBLOB="0e756ae02c8b41209e0e3a0b59f9397944d77072f565944f5227713955b4b5bbb44d89f444a9a9f51b088506be4cd6372c721e6505e6954a4514c0f17ba2ef8a56dd23416184b1c3675e0fdd0e6f4e426adcb7f88cb62f2123bd58c827ab8c9c821dad2bf93eebc0a1d2fb541e8a3aceb362c808eb3e9ac4e7ed9c3c125e411d5ace0322d664dd43", @ANYRES64, @ANYBLOB="de96523bbf0b6f6f4110aebf2c3be7195d0ee65265a0ee4b8d50cc"], 0x4, 0x2cc, &(0x7f0000000440)="$eJzs3U9rU1kYx/Ffm0yTptMmi2FgBoY5zGxmNqGTeQEzQVoQA0ptiroQbu2NhlyTcm+opIjNRtz6OopLd4L6BroRN+7dFUFw04V4pTdJmzR/TEP+tPb7gXKf5DlPzmlzWp5cuLf7N57eL+S8ZM4qazpqNC1VdSAlDqO6qfpxOohn1Kyqv+c+vfvt+s1bV9KZzNKKMcvp1X9TxpiF318+ePjsj9flubXnCy8i2kvc3v+Yer83s/fL/pfVe3nP5D1TLJWNZdZLpbK17thmI+8VksZcc2zLs02+6NluSz7nlDY3K8YqbszHNl3b84xVrJiCXTHlkim7FWPdtfJFk0wmzXxMF1u4jzHZ3ZUVK9017YeGuiKM3GynJ103Xe2czO6OYU0AAOCM6d3/13r97v1/Zq12PE3///O3+3+J/n9Eqi2PuvT/P45xQRg5101bsfrvbyv6fwAAAAAAAAAAAAAAAAAAAAAAzoMD34/7vh8/PNafCh5HJEUl+fV841qgvi4rx7nR/P77TV/t73+L/ya0XAxZ04V7Ucl5spXdytaOtXw6p7wc2VpUXJ+D/VBXi5cvZ5YWTSChV85OvX5nKxtSpFHfkOhUPxWWai/QWv+DYs3zpxTXT53nT5lO9TP668+m+qTienNHJTnaCPb1cf2jf4y5dDVzon42GAcAAAAAwPcgaY60fX4P8sGAqNrztfqm8wO+7+/0Oj9w4vN1WL9yLhEAAAAAgLHwKtsFy3Fsd4AgImmwcmngSXsFvi8N9QUHCkKa5Ozdgv8lnYFljCuIqrHHzCDlH3SqLer3MSYsaeI/llMEk/7LBAAAAGDYvMr28T/46dfbxyNaDQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAF1O/9wNrjG9LNRI97/Z3JDT2bxAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4Q74GAAD//yYcGFo=")
mkdirat(0xffffffffffffff9c, 0x0, 0x1c0)
mount$nfs(&(0x7f0000000100)='...', &(0x7f0000000140)='./file0\x00', 0x0, 0x2000, 0x0)
ioctl$SIOCRSSL2CALL(0xffffffffffffffff, 0x5411, 0x0)
fanotify_init(0x200, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$pptp(0x18, 0x1, 0x2)
connect$pptp(r3, &(0x7f0000000040)={0x18, 0x2, {0x0, @empty}}, 0x1e)
r4 = socket(0x10, 0x3, 0x0)
write(r4, &(0x7f0000000140)="2600000022004701050000070000000000000020002b1f000a4a51f1ee839cd53400b017ca", 0x25)

3m10.71112953s ago: executing program 33 (id=1902):
syz_io_uring_setup(0x3a65, &(0x7f00000001c0)={0x0, 0xa010, 0x10100, 0xfffffffe, 0x3}, &(0x7f0000000240), &(0x7f0000000140))
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000040)='./file1\x00', 0x10, &(0x7f0000000180)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000", @ANYRES64=0x0, @ANYBLOB="0e756ae02c8b41209e0e3a0b59f9397944d77072f565944f5227713955b4b5bbb44d89f444a9a9f51b088506be4cd6372c721e6505e6954a4514c0f17ba2ef8a56dd23416184b1c3675e0fdd0e6f4e426adcb7f88cb62f2123bd58c827ab8c9c821dad2bf93eebc0a1d2fb541e8a3aceb362c808eb3e9ac4e7ed9c3c125e411d5ace0322d664dd43", @ANYRES64, @ANYBLOB="de96523bbf0b6f6f4110aebf2c3be7195d0ee65265a0ee4b8d50cc"], 0x4, 0x2cc, &(0x7f0000000440)="$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")
mkdirat(0xffffffffffffff9c, 0x0, 0x1c0)
mount$nfs(&(0x7f0000000100)='...', &(0x7f0000000140)='./file0\x00', 0x0, 0x2000, 0x0)
ioctl$SIOCRSSL2CALL(0xffffffffffffffff, 0x5411, 0x0)
fanotify_init(0x200, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$pptp(0x18, 0x1, 0x2)
connect$pptp(r3, &(0x7f0000000040)={0x18, 0x2, {0x0, @empty}}, 0x1e)
r4 = socket(0x10, 0x3, 0x0)
write(r4, &(0x7f0000000140)="2600000022004701050000070000000000000020002b1f000a4a51f1ee839cd53400b017ca", 0x25)

2m31.546062795s ago: executing program 1 (id=2006):
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB="500000001000210425bd70000000000000000000", @ANYRES32, @ANYBLOB="0000000000020100300012800800010067726500240002"], 0x50}}, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_GET(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB='|\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000327bd7000fedbdf251300000008000100706369303a30303a31302e3000000000080003000000000008000b00d00900000600110007000000080001007063690011003f00303030303a30303a31302e30000000000800030000"], 0x7c}, 0x1, 0x0, 0x0, 0x4000000}, 0x48050)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', <r1=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="700200001300290a000000000000000007000000", @ANYRES32=r1, @ANYBLOB="000000000000000010010c8013000c800ca3488008000000000000000800038064001d80050006000000000014000500714abbd2547de97cbbf6efb226f19bf90d0002003a288e5e5b5b5a40000000006000078014000400293a02149f3b75a67093c28fd6f55a2314000400e48f01e49713f0c2d839f940d9f088d8050006000000003bd00002006272696467655f736c6176655f30000007000200293a00000500060000000000080001000000000018002580140004004d2906d0880fc8acc30fe2020f9849675000028004000500a1085e7df341b9dc3d8008a2fe5bdaad140004009c7e472c916020fe41bcc5aa8f56c9471400050080ab8be51421cfa3c9e5cbfe8217e0af0800010000000000080001000000000060001a803f0003"], 0x270}, 0x1, 0x0, 0x0, 0x20008014}, 0x4)
r2 = socket(0x10, 0x3, 0x0)
sendmmsg(r2, &(0x7f0000000000), 0x4000000000001f2, 0x0)

2m31.349727733s ago: executing program 1 (id=2007):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000000c0)='./bus\x00', 0x20081e, &(0x7f0000000040)={[{@nodelalloc}, {@orlov}, {@auto_da_alloc}]}, 0x1, 0x506, &(0x7f0000000e00)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r0, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)
r1 = open(&(0x7f0000000100)='./file1\x00', 0x109042, 0xae)
fallocate(r1, 0x10, 0x0, 0x7000000)

2m30.915687833s ago: executing program 1 (id=2008):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000640)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c000000020000000000000000000004"], 0x0, 0x26}, 0x28)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000080)='GPL\x00', 0x5, 0x1f6, &(0x7f00000002c0)=""/168, 0x0, 0x0, '\x00', 0x0, @sock_ops, r3, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000200), 0x1}, 0x6d)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000004c0)={r4, 0xc0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, 0x10)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x1018e58, &(0x7f00000005c0)={[{@user_xattr}, {@noblock_validity}, {@data_err_ignore}, {@max_batch_time={'max_batch_time', 0x3d, 0x6}}, {@debug}, {@nolazytime}, {@noauto_da_alloc}]}, 0x6, 0x61f, &(0x7f0000000b00)="$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")
symlinkat(0x0, 0xffffffffffffff9c, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000003c0)={'bridge0\x00'})
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f00000026c0), 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)

2m29.429914424s ago: executing program 1 (id=2012):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x0, &(0x7f0000000280)={[{@dioread_nolock}, {@nodiscard}, {@quota}]}, 0x4, 0x558, &(0x7f0000000c00)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./bus\x00', &(0x7f0000000440), 0x8, &(0x7f0000000300)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
mkdirat(0xffffffffffffff9c, &(0x7f0000000480)='./file1\x00', 0x1c0)
mount$overlay(0x0, &(0x7f0000000340)='./bus\x00', &(0x7f0000000b80), 0x18, &(0x7f0000000180)={[{@lowerdir={'lowerdir', 0x3d, './bus'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './file1'}}]})
syz_mount_image$fuse(&(0x7f00000001c0), &(0x7f0000000040)='./bus\x00', 0x322020, &(0x7f0000000380)=ANY=[], 0x1, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0)

2m26.847486798s ago: executing program 1 (id=2017):
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f00000001c0)='./file1\x00', 0x0, &(0x7f0000000900)=ANY=[@ANYBLOB="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"], 0x1, 0x192, &(0x7f0000009480)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file2\x00', 0x80000, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x10012, r0, 0x1000)
read(r0, &(0x7f0000000200)=""/189, 0xbd)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
munmap(&(0x7f0000002000/0x1000)=nil, 0x1000)
r1 = fsopen(&(0x7f0000000180)='proc\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r2 = fsmount(r1, 0x0, 0x80)
fchdir(r2)
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./bus\x00', 0x8880, 0x85)

2m25.545335108s ago: executing program 1 (id=2022):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x6}, 0x28)
syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="120100009690342058200510f6b50102030109021b00020000000009043d0000518e3f0009"], 0x0)
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x8a002, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000dc0)=ANY=[@ANYBLOB="b7000000a5517f5fbfa30000000000000703000028feffff720af0fff8ffffff71a4f0ff00000000b7060000000000012e400300000000006506020001cd000071187c0000000000c3640000f10000007b0a00fe00000000850000000c00000079a000fe000000009500000000000000023bc065b7a379d179fc9e94af69912435f1b6a693172e6191a12bebf9f9804ea033388cd15b65877ad4b200000000000000000beca090f32050e436fe275daf51efd601b6bf01c8e8b1abe4fef3bef7074815ae98743d1ace4c46631256dd19aed0d600c0b6199fe3ff3128e599b0eaebbdbd7359a48f5b0afc3996792043a6787bac46aa7aa400000000000069669622208266f896ba2c9e73c2efeec2dc565fbafb2cb63f5fef9ab79ff8abaa8a08f54a062107e9bb3e980fff675c8d3e91df6648a7a6aebcb63e0867b75690152af27711f0cbb9c06018d21bf3f87b8eb65323b4267a526d53442db8e48dbc5ce47d67d07441a7975d5e41b14fd0154a8246249952a8b61633ce068220defe09d3b1136af6d03e9cf996c13d1bfcdc54567a9ca80dec2e943fe4ae7c617cc071f7add70cfbd48f8f6b50fe6a8297d88efa73e7e601040000b4a685969f28902bdecf66ef39755de79ed2c711477febc96231a53984d00877301d0ec62427a8e38618fdd1ce9aaed569ebc5f2e58d6028e66139a737cc7146a131d47dcebb32ed67021d76e983223c998aec22242ae54e87f438d26982876b58f9134366952f7399a733f07138a736924f3709000000e97f0c117ec439c6b7b965752bbc06eced08d97a32ae4b1ad4d11c5b6f68ee841975233e4cea13f3ef04b2cab9cc256d4539dbafd888c7097c1169e0bebcc81ca3da40bf34b6c9c1da2d6ed8acaf2a8091820ff4cf6be74ddca8bf2eed0e11b2139e8c3ec95436af5269d5792decda7d8b5dcf8640b504ba23c6d0a7f67cdfd27328100ebf9319a56f0f9cee17deecf747f3493f1dc39551f4c9a40b3e93fa80b8234ccbf39a9ef09bd97321f0dc20956f44ba2c5ec2e7569b05cf4690ddc189f174046a8b214acf23f42fb51ed4819e6b4cb5a8bf2b559d0c198fe0315483b8beb9801d06c58b22dd713fe3b7ef18e21081aacfd091b754125a488cea18255f79bebcb3051f622f8a1d9af1908e88a58774a24f35a4ccdbedea6212286c23dd89c2b4b90647f17231472af8dda7f3ab20f093aad3ce875f7458039ee6d0a50deb7bc8eb393f056a5e7725531c5485278e0362338e2e2710fe00465e0d182a322091022cf5b814eeb9b3cab21196581e4d92d0b6fe5525285eea359274f1f21d69233bbe94941f10ba292100000000000000000000000000000000c18e93a0c5231779f2ee201e9fe7e63e84b57b5f05ecd278919bad330ffcb594b8255b3085b352ca9533d6c31c1a30158c30352f8a126a65cb6582e58aa641007418611df53a601c3a8fb8d2286e86abf98136f345446730f68f5d6d1817a9e1b09e5650d2599fbe719a45337d29eb3fef5f7f565457660dec6fe903a1c2ea4f40a8ea1c179892afa219fc69a44163f0d731de418e9fd82a8c4661caea674b19242d1840d047882f640ea248457288c5ffb63e857da03ff5c0475c3cfff41c4806f1dc750eb1c45ec3a2a0b064834010604d6f88a29e8e9bda2bc9c18d1b53a08f25d62ccaa46bc0235c830a7b3fe64bc6031b431bcad6b698a1ba6027870ea9e55fafbbf140c5f82a33ee4ac793b989c12a5827a7957f4d8136cf918b7cbf5bc5fc64c8001992536584586edded6f65bdd371ac84fd5cc60ab79b84e9e85a1c54d5666a5d133e95eff121621dff14b9de7a188b8c5387f9da63c2cce405bc44079e34e2db2b275bfbb54841d647338cad74be91144b780cf381a6860f641446ef73bd11d45f5e4df8f3c6440d8425fd7382225cf8c2cada01bf3cd5cbc6a403173e0c89a491c75efc3c21b7825a521c6011945eef94abc3000000000000000000000000000000d71b794e9b4c145caf050429937eef4364d9e1cbe9150bccd9b2e73757f1f5e8ac50736cd3cbc029ede2869642841371bb4b9c1aaa8826889a909e6716b60e4b568b6761f8ccc7d35b0e66357746b10fc481b47e67f1e14408c1ef3e018a5e647e3f607654f3bf82bcfb42be038a272d82f8362944f608b3810000000019fda0b1b607f1ab34194ed954973f7a5accc0938d3364ab07574d0b32fc30f3ab73d012b63ee905e98ab6989ec2c840cd216eb18fedfb3b204e94e170bae930660368d3799c9b1bf7556ac57164966791626f06ad2e332341965f72141ec140b80efd7720ccdaa890b79bc4523386bd66553121543c9a35b7adcf2f6b257fefef1d6e1da2ee94d3f822bf45aad21e5b5a3788ab584090664065af39b0f43968dcd7c5f8e5a8dc6298691423fbf7e8e012260bc62f9422434a547ef7ca37953d435098d9b71edd1a03e46d0ade465d0c0db0a51f9e29cac05e5a04f94e"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x45}, 0x48)
socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = syz_open_dev$dri(&(0x7f0000000080), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f00000001c0)={0x8000, 0x2, 0x4})
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x91)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f00000000c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
setsockopt$netrom_NETROM_IDLE(0xffffffffffffffff, 0x103, 0x7, 0x0, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
syz_open_procfs$namespace(r2, 0x0)
r5 = socket(0x2000000000000021, 0x2, 0x2)
setsockopt$inet_tcp_TCP_CONGESTION(r5, 0x110, 0xd, 0x0, 0x0)
r6 = syz_open_dev$dri(&(0x7f0000000000), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r6, 0xc04064a0, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[<r7=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_CURSOR(r1, 0xc01c64a3, &(0x7f0000000040)={0x3, r7, 0x10000000, 0x80000001, 0xb, 0x1fd, 0x1})
close_range(r1, 0xffffffffffffffff, 0x0)

2m24.373859309s ago: executing program 34 (id=2022):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x6}, 0x28)
syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="120100009690342058200510f6b50102030109021b00020000000009043d0000518e3f0009"], 0x0)
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x8a002, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000dc0)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x45}, 0x48)
socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = syz_open_dev$dri(&(0x7f0000000080), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f00000001c0)={0x8000, 0x2, 0x4})
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x91)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f00000000c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
setsockopt$netrom_NETROM_IDLE(0xffffffffffffffff, 0x103, 0x7, 0x0, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
syz_open_procfs$namespace(r2, 0x0)
r5 = socket(0x2000000000000021, 0x2, 0x2)
setsockopt$inet_tcp_TCP_CONGESTION(r5, 0x110, 0xd, 0x0, 0x0)
r6 = syz_open_dev$dri(&(0x7f0000000000), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r6, 0xc04064a0, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[<r7=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_CURSOR(r1, 0xc01c64a3, &(0x7f0000000040)={0x3, r7, 0x10000000, 0x80000001, 0xb, 0x1fd, 0x1})
close_range(r1, 0xffffffffffffffff, 0x0)

28.000453954s ago: executing program 6 (id=2316):
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x0, &(0x7f00000002c0), 0x0, 0x236, &(0x7f0000000300)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000540)='mnt\x00', 0x0, 0x0)
ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r0, 0x401c5820, 0x0)

27.710372916s ago: executing program 6 (id=2317):
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000140)='./file2\x00', 0x20048a, &(0x7f0000000300), 0x12, 0x522, &(0x7f0000000440)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file2\x00', 0x143042, 0x80)
pwritev2(r0, &(0x7f00000000c0)=[{&(0x7f0000000100)="ff", 0x1}], 0x1, 0x2000002, 0x0, 0x0)

27.291562616s ago: executing program 6 (id=2318):
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x110)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000280), 0x42, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r0=>0xffffffffffffffff})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
ioctl$sock_inet_SIOCSIFPFLAGS(0xffffffffffffffff, 0x8934, &(0x7f0000000040)={'virt_wifi0\x00', 0x6})
ioctl(0xffffffffffffffff, 0x8b22, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = syz_open_dev$swradio(&(0x7f0000000040), 0x1, 0x2)
pread64(r4, &(0x7f00000002c0)=""/75, 0x4b, 0x0)
ioctl$VIDIOC_EXPBUF(r4, 0xc0405610, &(0x7f00000000c0)={0x4, 0x0, 0x2})
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000340)=ANY=[@ANYBLOB="9feb010018000000000000003c0000003c000000020000000000000002000084ffffffff000000000300000000000000000000000200000000000000000000000000000a03000000000000000000001302"], 0x0, 0x56}, 0x20)
socket$netlink(0x10, 0x3, 0x0)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r5, 0x84, 0x9, &(0x7f0000000580)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3fc, 0x0, 0x32}, 0x9c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r5, 0x84, 0x72, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r5, 0x84, 0x9, &(0x7f0000000000)={0x0, @in6={{0xa, 0x0, 0x7, @empty}}, 0x0, 0x7fc, 0x0, 0x0, 0x8a, 0x0, 0x3}, 0x9c)
pselect6(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="043ef50d"], 0xf8)
sendto$inet6(r5, 0x0, 0x0, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$BPF_PROG_DETACH(0x1c, &(0x7f0000000180)=ANY=[@ANYRES32=r0, @ANYBLOB=',\x00\x00\x00\x00\x00', @ANYRES32, @ANYRES64=0x0], 0x20)

25.307610606s ago: executing program 6 (id=2324):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x2c)
mount$tmpfs(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000400), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='huge=always'])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='freezer.parent_freezing\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x28011, r0, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x9)
gettid()
timer_create(0x2, 0x0, &(0x7f0000044000))

25.036147841s ago: executing program 6 (id=2327):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000040)={0x80000004})
socket$nl_sock_diag(0x10, 0x3, 0x4)
socket(0x10, 0x3, 0x0)
r2 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_SET(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x3c, 0x3e9, 0x1, 0x70bd26, 0x25dfdbfb, {0x0, 0x1, 0x1, 0x0, 0xd, 0x80, 0x2, 0x80000000, 0x0, 0x7, 0x9}}, 0x3c}, 0x1, 0x0, 0x0, 0x4010}, 0x20040000)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
capset(0x0, &(0x7f0000000140)={0x0, 0x2c4})
syz_open_dev$tty1(0xc, 0x4, 0x1)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB], 0x48)
mmap(&(0x7f00001b9000/0x1000)=nil, 0x1000, 0x4, 0x8010, r3, 0x91502000)
r5 = syz_open_dev$usbfs(&(0x7f0000000480), 0x76, 0x160341)
ioctl$USBDEVFS_IOCTL(r5, 0xc0105512, &(0x7f0000000200))

24.647770286s ago: executing program 6 (id=2329):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r0, 0x4008af60, &(0x7f0000000180))

24.114133268s ago: executing program 35 (id=2329):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r0, 0x4008af60, &(0x7f0000000180))

14.645742584s ago: executing program 5 (id=2348):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000040)={0x80000004})
socket$nl_sock_diag(0x10, 0x3, 0x4)
socket(0x10, 0x3, 0x0)
r2 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_SET(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x3c, 0x3e9, 0x1, 0x70bd26, 0x25dfdbfb, {0x0, 0x1, 0x1, 0x0, 0xd, 0x80, 0x2, 0x80000000, 0x0, 0x7, 0x9}}, 0x3c}, 0x1, 0x0, 0x0, 0x4010}, 0x20040000)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
capset(0x0, &(0x7f0000000140)={0x0, 0x2c4})
syz_open_dev$tty1(0xc, 0x4, 0x1)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB], 0x48)
mmap(&(0x7f00001b9000/0x1000)=nil, 0x1000, 0x4, 0x8010, r3, 0x91502000)
r5 = syz_open_dev$usbfs(&(0x7f0000000480), 0x76, 0x160341)
ioctl$USBDEVFS_IOCTL(r5, 0xc0105512, &(0x7f0000000200))

12.599777664s ago: executing program 0 (id=2350):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x10000, &(0x7f0000000080)={[{@quota}, {@delalloc}, {@data_err_ignore}, {@debug}, {@usrjquota}, {@bsdgroups}]}, 0x1, 0x4e8, &(0x7f00000016c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x42, 0x0)
write$P9_RREADLINK(r0, &(0x7f0000000000)={0x10, 0x17, 0x2, {0x7, './file0'}}, 0xfffffdab)
syz_usb_connect(0x2, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="12010000d7dda41089119308000001020301090224", @ANYRESOCT, @ANYRES32], 0x0)
ioctl$FS_IOC_FIEMAP(r0, 0xc020660b, &(0x7f0000000300)={0x0, 0xfffffffffffffff9, 0x4, 0xfff})

11.890392716s ago: executing program 5 (id=2353):
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xe)
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000140)=ANY=[@ANYBLOB="1201000000000040ac054382408b0b00000109022400010000002009040000fd0301000009210000000122010009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000003c0)={0x24, 0x0, 0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="002281"], 0x0}, 0x0)
r1 = syz_open_dev$hiddev(&(0x7f00000000c0), 0x0, 0x0)
ioctl$HIDIOCSREPORT(r1, 0x81044804, &(0x7f0000000400)={0x1, 0x2})
ioctl$XFS_IOC_AG_GEOMETRY(r1, 0xc080583d, &(0x7f0000000180)={0x6, 0x0, 0x2, 0x9, 0x95c, 0x7, 0x6, 0x2})
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x1b, &(0x7f0000000080)={@local, 0xa1, 0x1, 0x3, 0x5, 0x2, 0x40}, 0x20)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r3, 0x29, 0x1b, &(0x7f0000000140)={@remote, 0x7, 0x0, 0x3, 0x1, 0x777, 0x4000}, 0x20)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r4, 0xffffffffffffffff, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000b00)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4881}, 0x10)
ioctl$HIDIOCGFLAG(r1, 0x8004480e, 0x0)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
gettid()
mremap(&(0x7f000020e000/0x2000)=nil, 0x2000, 0x800000, 0x3, &(0x7f0000800000/0x800000)=nil)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_usb_disconnect(0xffffffffffffffff)
madvise(&(0x7f000042f000/0x800000)=nil, 0x800000, 0x15)
r5 = creat(&(0x7f0000000240)='./file0\x00', 0x40)
close(r5)
mmap$KVM_VCPU(&(0x7f0000ffb000/0x3000)=nil, 0x930, 0x6000002, 0x4018831, r5, 0x0)
userfaultfd(0x80801)
ioctl$KVM_CREATE_VM(r5, 0xae01, 0x7)

9.420063076s ago: executing program 0 (id=2354):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000600)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x1, 0x25dfdbfd, {0x0, 0x0, 0x0, r2, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x3, 0x3, 0x6361, 0x5, 0xffffffff, 0x3}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40088c1}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000440)=@newqdisc={0x40, 0x24, 0x4ee4e6a52ff56541, 0x70b926, 0x25dfdc01, {0x0, 0x0, 0x0, r2, {0x0, 0xd}, {0xffff, 0xb}, {0xffff, 0x10}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0xc, 0x2, [@TCA_FQ_CODEL_CE_THRESHOLD={0x8, 0x7, 0xfffffff9}]}}]}, 0x40}, 0x1, 0x0, 0x0, 0x240040e0}, 0x4890)
close(0xffffffffffffffff)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r3 = socket$packet(0x11, 0x3, 0x300)
sendto$packet(r3, &(0x7f0000001680)="18", 0x1, 0x200000c1, &(0x7f00000001c0)={0x11, 0x88a8, r2, 0x1, 0xff}, 0x14)

9.330233861s ago: executing program 5 (id=2355):
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0)
socket$inet(0x2, 0x4000000000000001, 0x0)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000280)='.\x02\x00', 0x0, &(0x7f0000000d00)={[{@grpid}, {@mblk_io_submit}, {@mblk_io_submit}, {@test_dummy_encryption}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x80000}}, {@discard}, {@grpquota}, {@grpquota}]}, 0x1, 0xbc1, &(0x7f0000001080)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0xa5)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000680), 0x0, &(0x7f0000000340)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
chdir(&(0x7f0000000200)='./file0\x00')
unlink(&(0x7f0000000040)='./file0\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x141)

8.463748327s ago: executing program 4 (id=2357):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x6}, 0x28)
syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="120100009690342058200510f6b50102030109021b00020000000009043d0000518e3f0009"], 0x0)
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x8a002, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000100)={0xffffffffffffffff, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000680)="b9ff03316844268cb89e14f00800", 0x0, 0xfe, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000dc0)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x45}, 0x48)
socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = syz_open_dev$dri(&(0x7f0000000080), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f00000001c0)={0x8000, 0x2, 0x4})
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x91)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f00000000c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r3, 0x0, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
setsockopt$netrom_NETROM_IDLE(0xffffffffffffffff, 0x103, 0x7, 0x0, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
r4 = socket(0x2000000000000021, 0x2, 0x2)
setsockopt$inet_tcp_TCP_CONGESTION(r4, 0x110, 0xd, 0x0, 0x0)

8.349708578s ago: executing program 5 (id=2358):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000280)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, &(0x7f0000000580)={[{@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x8000000}}, {@noauto_da_alloc}, {@dioread_nolock}, {@test_dummy_encryption}, {@nobarrier}, {@nodelalloc}, {@minixdf}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x40}}]}, 0x1, 0xba6, &(0x7f0000000c00)="$eJzs3M1rXFUUAPDzXj7bRicVEeumEZEWxGlaSbFFsJWKGxeCboWGdFJCph8kkZo0i4n+A6KuBTeCWpQu7LobBbdutG4tLoQisVEQ0cibjyQ2M0naTvJq8vvBzbt3zpvcc/KYeffCTALYsQayH2nEvog4nUQU6o+nEdFd7fVGVGrnLczPjvwxPzuSxOLi678mkUTE7fnZkcbvSurHPfVBb0R891ISj7y7et7J6Znx4XK5NFEfH5o6d/HQ5PTMs2Pnhs+WzpbOHz76/NCRoaODx4baVuufP5249vuTr/xc+euzv6/89sEnSZyIvnpsZR3tMhADS3+TlTojYrjdk+Wko17PyjqTznWelG5yUgAAtJSuWMM9FoXoiOXFWyG+/j7X5AAAAIC2WOyIWAQAAAC2ucT+HwAAALa5xucAbs/PjjRavp9I2Fq3TkZEf63+hXqrRTqjUj32RldE7L6dxMqvtSa1p923gYi4+eOxL7MWm/Q95LVU5iLi8WbXP6nW31/9Fvfq+tOIGGzD/AN3jP9P9Z9ow/x51w/AznT9ZO1Gtvr+ly6tf6LJ/a+zyb3rXuR9/2us/xZWrf+W6+9osf57bYNzXP70o0utYln9L1x7+YtGy+bPjvdV1F24NRfxRGez+pOl+pMW9Z/e4ByFfy6VWsXyrn/x44gD0bz+hmTt/090aHSsXBqs/Ww6x9y3Q5+3mj/v+rPrv7tF/etd/4sbnOPNU6eutoqtX3/6S3fyRrXXXX/k7eGpqYnDEd3Jq6sfP7J2Lo1zGr8jq//gU2u//pvVn70nVOp/h2wvMFc/ZuN37pjzxSuXv1qr/mzvl+f1P3OP1/+9Dc7x9DfvH2wVW7n/zVo2/82kthcGAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgIY0IvoiSYtL/TQtFiP2RMSjsTstX5icemb0wlvnz2SxiP7oSkfHyqXBiCjUxkk2PlztL4+P3DF+LiL2RsSHhV3VcXHkQvlM3sUDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACwZE9E9EWSFiMijYiFQpoWi3lnBQAAALRdf94JAAAAAJvO/h8AAAC2P/t/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANtne/ddvJBFROb6r2jLd9VhXrpkBmy3NOwEgNx15JwDkpjPvBIDc3OUe33IBtqFknXhvy0hP23MBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4MF1YN/1G0lEVI7vqrZMdz3W1fQZ+7cwO2AzpXknAOSmY61g59blAWw9L3HYuZrv8YGdJFkn3rt8TuW/kZ5NywkAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAB09ftSVpMSLSaj9Ni8WIhyKiP7qS0bFyaTAiHo6IHwpdPdm4J++kAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAaLvJ6Znx4XK5NKGjo5NvJ3kw0qh18n5nAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgD5PTM+PD5XJpYjLvTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIC8TU7PjA+Xy6WJDXSu3s3JKzp51wgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQH7+DQAA//+LYA3r")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000040), 0x208e24b)

7.859703267s ago: executing program 0 (id=2361):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(r0, &(0x7f0000000200)={0x2, 0x1, @multicast1}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@dev, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0x0, 0x0, 0x5}, {}, 0x0, 0x0, 0x1}, {{@in6=@empty, 0x0, 0x33}, 0x0, @in=@broadcast, 0x0, 0x0, 0x0, 0xb7, 0xffffffff, 0x8}}, 0xe8)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x7000000)

6.926879012s ago: executing program 5 (id=2363):
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xe)
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000140)=ANY=[@ANYBLOB="1201000000000040ac054382408b0b00000109022400010000002009040000fd0301000009210000000122010009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000003c0)={0x24, 0x0, 0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="002281"], 0x0}, 0x0)
r1 = syz_open_dev$hiddev(&(0x7f00000000c0), 0x0, 0x0)
ioctl$HIDIOCSREPORT(r1, 0x81044804, &(0x7f0000000400)={0x1, 0x2})
ioctl$XFS_IOC_AG_GEOMETRY(r1, 0xc080583d, &(0x7f0000000180)={0x6, 0x0, 0x2, 0x9, 0x95c, 0x7, 0x6, 0x2})
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x1b, &(0x7f0000000080)={@local, 0xa1, 0x1, 0x3, 0x5, 0x2, 0x40}, 0x20)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r3, 0x29, 0x1b, &(0x7f0000000140)={@remote, 0x7, 0x0, 0x3, 0x1, 0x777, 0x4000}, 0x20)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r4, 0xffffffffffffffff, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000b00)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4881}, 0x10)
ioctl$HIDIOCGFLAG(r1, 0x8004480e, 0x0)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
gettid()
mremap(&(0x7f000020e000/0x2000)=nil, 0x2000, 0x800000, 0x3, &(0x7f0000800000/0x800000)=nil)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_usb_disconnect(0xffffffffffffffff)
madvise(&(0x7f000042f000/0x800000)=nil, 0x800000, 0x15)
r5 = creat(&(0x7f0000000240)='./file0\x00', 0x40)
close(r5)
mmap$KVM_VCPU(&(0x7f0000ffb000/0x3000)=nil, 0x930, 0x6000002, 0x4018831, r5, 0x0)
userfaultfd(0x80801)
ioctl$KVM_CREATE_VM(r5, 0xae01, 0x7)

6.490300359s ago: executing program 4 (id=2365):
socket$netlink(0x10, 0x3, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0))
socket$inet_tcp(0x2, 0x1, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
socketpair(0x1e, 0x80005, 0x0, 0x0)
pipe(&(0x7f0000000040))
close(0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_create_resource$binfmt(&(0x7f0000001400)='./file0\x00')
openat$binfmt(0xffffffffffffff9c, r1, 0x42, 0x1ff)
openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x100, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$can_raw(0x1d, 0x3, 0x1)
dup(r2)
socket$key(0xf, 0x3, 0x2)
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = creat(&(0x7f0000000140)='./file0\x00', 0x18a)
syz_usb_connect$uac1(0x0, 0xa4, &(0x7f0000001200)=ANY=[@ANYBLOB="2a01000020000040b708000000000000030109029200030172e5000904000000010100000a24010000000201020c0d2405000005000000000000000c240000e9fffff5ffffffff092403f3", @ANYRES8=r3, @ANYRES64=r0], 0x0)

6.451133003s ago: executing program 0 (id=2366):
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x18, &(0x7f0000000580)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x3}}, {}, {@bh}, {@oldalloc}, {@data_err_ignore}, {@nouid32}, {@nobh}, {@user_xattr}, {@nouid32}, {@dioread_nolock}]}, 0x1, 0x55e, &(0x7f0000001bc0)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./bus\x00', 0x1e0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000040)='./file1\x00', 0x21081e, &(0x7f00000001c0)={[{@grpquota}, {@nogrpid}, {@quota}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r0, 0x8004587d, &(0x7f0000000780)={@desc={0x1, 0x0, @desc2}})
mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000300)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})

5.810228106s ago: executing program 0 (id=2368):
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB="500000001000210425bd70000000000000000000", @ANYRES32, @ANYBLOB="0000000000020100300012800800010067726500240002"], 0x50}}, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_GET(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB='|\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000327bd7000fedbdf251300000008000100706369303a30303a31302e3000000000080003000000000008000b00d00900000600110007000000080001007063690011003f00303030303a30303a31302e3000000000080003000000000008000b000104000006"], 0x7c}, 0x1, 0x0, 0x0, 0x4000000}, 0x48050)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00'})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x270}, 0x1, 0x0, 0x0, 0x20008014}, 0x4)
r1 = socket(0x10, 0x3, 0x0)
sendmmsg(r1, &(0x7f0000000000), 0x4000000000001f2, 0x0)

4.333857901s ago: executing program 0 (id=2371):
r0 = syz_open_dev$evdev(&(0x7f0000000000), 0xc000000000, 0x442)
ioctl$EVIOCGRAB(r0, 0x40044590, &(0x7f0000000040)=0x4)
ioctl$EVIOCGRAB(r0, 0x40044590, &(0x7f0000000100)=0x4)

3.514816695s ago: executing program 7 (id=2372):
syz_mount_image$msdos(&(0x7f0000000200), &(0x7f0000000000)='./file2\x00', 0x2010410, &(0x7f00000002c0)=ANY=[@ANYBLOB='nodots,dmask=00000000000000000000003,usefree,nodots,flush,dots,dots,gid=', @ANYRESHEX=0x0, @ANYBLOB], 0x1, 0x214, &(0x7f0000000840)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000040), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000000c0)={0x0, 0x0})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
ftruncate(r0, 0x5)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, 0x0)

3.079501752s ago: executing program 36 (id=2371):
r0 = syz_open_dev$evdev(&(0x7f0000000000), 0xc000000000, 0x442)
ioctl$EVIOCGRAB(r0, 0x40044590, &(0x7f0000000040)=0x4)
ioctl$EVIOCGRAB(r0, 0x40044590, &(0x7f0000000100)=0x4)

3.048481827s ago: executing program 4 (id=2374):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(r0, &(0x7f0000000200)={0x2, 0x1, @multicast1}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@dev, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0x0, 0x0, 0x5}, {}, 0x0, 0x0, 0x1}, {{@in6=@empty, 0x0, 0x33}, 0x0, @in=@broadcast, 0x0, 0x0, 0x0, 0xb7, 0xffffffff, 0x8}}, 0xe8)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x7000000)

2.667930004s ago: executing program 7 (id=2375):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={0x4000000, {0x2, 0x4e22}, {0x2, 0x0, @local}, {0x2, 0x0, @broadcast}, 0x40, 0x0, 0x0, 0x0, 0xfff8, 0x0, 0x0, 0x5, 0x401})
write$P9_RLERRORu(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRESDEC], 0x52)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCSIFBR(r1, 0x890c, &(0x7f0000000000)=@generic={0x0, 0x2})

2.28309203s ago: executing program 7 (id=2376):
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
getsockopt$WPAN_SECURITY(r0, 0x0, 0x1, 0x0, &(0x7f0000002c40))

2.076259336s ago: executing program 5 (id=2377):
syz_mount_image$f2fs(&(0x7f0000000140), &(0x7f00000000c0)='./bus\x00', 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='nodiscard,alloc_mode=default,acl,alloc_mode=reuse,mode=fragment:block,disable_roll_forward,background_gc=on,nouser_xattr,checkpoint=disable,fsync_mode=strict,nobarrier,jqfmt=vfsold,mode=fragment:block,\x00'], 0x1, 0x5505, &(0x7f0000002480)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x183341, 0x0)
ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000180)=0xfffffff9)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000003})
syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000f00)='.\x00', 0x1a4a438, &(0x7f00000008c0)=ANY=[], 0xc, 0x0, &(0x7f0000000000))

1.875476683s ago: executing program 7 (id=2378):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000600)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x1, 0x25dfdbfd, {0x0, 0x0, 0x0, r2, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x3, 0x3, 0x6361, 0x5, 0xffffffff, 0x3}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40088c1}, 0x0)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r3)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r4 = socket$packet(0x11, 0x3, 0x300)
sendto$packet(r4, &(0x7f0000001680)="18", 0x1, 0x200000c1, &(0x7f00000001c0)={0x11, 0x88a8, r2, 0x1, 0xff}, 0x14)

1.677337619s ago: executing program 4 (id=2379):
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB="500000001000210425bd70000000000000000000", @ANYRES32, @ANYBLOB="0000000000020100300012800800010067726500240002"], 0x50}}, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_GET(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB='|\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000327bd7000fedbdf251300000008000100706369303a30303a31302e3000000000080003000000000008000b00d00900000600110007000000080001007063690011003f00303030303a30303a31302e3000000000080003000000000008000b000104000006"], 0x7c}, 0x1, 0x0, 0x0, 0x4000000}, 0x48050)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00'})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[], 0x270}, 0x1, 0x0, 0x0, 0x20008014}, 0x4)
r1 = socket(0x10, 0x3, 0x0)
sendmmsg(r1, &(0x7f0000000000), 0x4000000000001f2, 0x0)

1.375873489s ago: executing program 7 (id=2380):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, 0x0, 0x0)
r3 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="1c0000005e00679a3601ffc4910710007e5709"], 0x1c}, 0x1, 0x0, 0x0, 0x4004}, 0x0)
recvmmsg$unix(r3, &(0x7f0000002380)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
getsockopt$WPAN_WANTLQI(r3, 0x0, 0x3, &(0x7f0000000000), &(0x7f00000001c0)=0x4)
arch_prctl$ARCH_GET_MAX_TAG_BITS(0x4003, &(0x7f0000000280))
syz_emit_ethernet(0xfef3, &(0x7f0000000300)=ANY=[], 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
r4 = syz_open_dev$ttys(0xc, 0x2, 0x1)
ioctl$TIOCPKT(r4, 0x5420, &(0x7f0000003940)=0x10)
read(r4, &(0x7f0000000080)=""/193, 0xc1)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000400)=0x40)
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f0000000040)={0x0, 0xfffffffc, 0x1, 0x1ff, 0x90, "ff00"})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000800), 0xffffffffffffffff)
io_uring_setup(0x4c22, &(0x7f0000000180)={0x0, 0x1, 0x0, 0x0, 0x359})

1.375334019s ago: executing program 4 (id=2381):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000280)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, &(0x7f0000000580)={[{@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x8000000}}, {@noauto_da_alloc}, {@dioread_nolock}, {@test_dummy_encryption}, {@nobarrier}, {@nodelalloc}, {@minixdf}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x40}}]}, 0x1, 0xba6, &(0x7f0000000c00)="$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")
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000040), 0x208e24b)

122.973561ms ago: executing program 7 (id=2382):
socket$netlink(0x10, 0x3, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0))
socket$inet_tcp(0x2, 0x1, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
socketpair(0x1e, 0x80005, 0x0, &(0x7f0000000000)={0x0, <r1=>0x0})
pipe(0x0)
close(r1)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_create_resource$binfmt(&(0x7f0000001400)='./file0\x00')
openat$binfmt(0xffffffffffffff9c, r2, 0x42, 0x1ff)
openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x100, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$can_raw(0x1d, 0x3, 0x1)
dup(r3)
socket$key(0xf, 0x3, 0x2)
socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = creat(&(0x7f0000000140)='./file0\x00', 0x18a)
syz_usb_connect$uac1(0x0, 0xa4, &(0x7f0000001200)=ANY=[@ANYBLOB="2a01000020000040b708000000000000030109029200030172e5000904000000010100000a24010000000201020c0d2405000005000000000000000c240000e9fffff5ffffffff092403f3", @ANYRES8=r4, @ANYRES64=r0], 0x0)

0s ago: executing program 4 (id=2383):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pwritev(r0, 0x0, 0x0, 0xc, 0x5)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, 0x0}], 0x1, 0x4, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, &(0x7f0000000200)="f7790066baa00066b86b4266ef66ba420066b8e20066ef0f29902cbb0000c4e2b1ba8c88d9000000666666440f38826b410f7842280f07b8010000000f01d9c4033921820f47a753fd", 0x49}], 0x1, 0x43, 0x0, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)=@x86={0x15, 0x5, 0x9, 0x0, 0x2, 0x2, 0xf, 0xc5, 0x80, 0x2, 0x1, 0xc3, 0x0, 0xd, 0x0, 0x4, 0x8, 0x4, 0x3, '\x00', 0x5, 0x5})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

kernel console output (not intermixed with test programs):

: lblock 0 mapped to illegal pblock 48 (length 1)
[  852.078465][T13063] Quota error (device loop1): v2_write_file_info: Can't write info structure
[  852.087375][T13063] EXT4-fs error (device loop1): ext4_acquire_dquot:6949: comm syz.1.2008: Failed to acquire dquot type 0
[  852.100233][T13063] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5920: Corrupt filesystem
[  852.112177][T13063] EXT4-fs error (device loop1): ext4_evict_inode:252: inode #11: comm syz.1.2008: mark_inode_dirty error
[  852.124363][T13063] EXT4-fs warning (device loop1): ext4_evict_inode:255: couldn't mark inode dirty (err -117)
[  852.135119][T13063] EXT4-fs (loop1): 1 orphan inode deleted
[  852.226976][T13063] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  852.374740][ T2937] EXT4-fs error (device loop1): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:9: lblock 1 mapped to illegal pblock 1 (length 1)
[  852.569449][ T2937] Quota error (device loop1): remove_tree: Can't read quota data block 1
[  852.640714][ T2937] EXT4-fs error (device loop1): ext4_release_dquot:6985: comm kworker/u4:9: Failed to release dquot type 0
[  853.635430][ T5768] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  853.650784][ T5768] EXT4-fs error (device loop1): __ext4_get_inode_loc:4489: comm syz-executor: Invalid inode table block 1 in block_group 0
[  853.720874][ T5768] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5920: Corrupt filesystem
[  853.782230][ T5768] EXT4-fs error (device loop1): ext4_quota_off:7233: inode #3: comm syz-executor: mark_inode_dirty error
[  854.291129][T13087] loop1: detected capacity change from 0 to 512
[  854.549475][T13087] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  854.617099][T13087] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  854.671606][T13087] ext4 filesystem being mounted at /510/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  854.713901][T13087] EXT4-fs error (device loop1): ext4_do_update_inode:5248: inode #2: comm syz.1.2012: corrupted inode contents
[  854.766029][T13087] EXT4-fs error (device loop1): ext4_dirty_inode:6124: inode #2: comm syz.1.2012: mark_inode_dirty error
[  854.827188][T13087] EXT4-fs error (device loop1): ext4_do_update_inode:5248: inode #2: comm syz.1.2012: corrupted inode contents
[  854.885738][T13087] EXT4-fs error (device loop1): __ext4_ext_dirty:202: inode #2: comm syz.1.2012: mark_inode_dirty error
[  854.988675][T13087] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[  855.254356][T13078] loop4: detected capacity change from 0 to 40427
[  855.257522][ T5768] EXT4-fs error (device loop1): ext4_lookup:1855: inode #18: comm syz-executor: 'file0' linked to parent dir
[  855.274950][T13078] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  855.291657][T13078] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  855.462015][ T5768] EXT4-fs error (device loop1): ext4_lookup:1855: inode #18: comm syz-executor: 'file0' linked to parent dir
[  855.650504][T13078] F2FS-fs (loop4): Found nat_bits in checkpoint
[  856.191679][T13105] loop5: detected capacity change from 0 to 512
[  856.283794][T13105] EXT4-fs error (device loop5): ext4_iget_extra_inode:4732: inode #15: comm syz.5.2018: corrupted in-inode xattr: invalid ea_ino
[  856.355791][T13105] EXT4-fs error (device loop5): ext4_orphan_get:1403: comm syz.5.2018: couldn't read orphan inode 15 (err -117)
[  856.377208][T13105] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  856.454615][T12588] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  856.517824][ T5768] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  856.875251][  T993] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  857.569786][  T993] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  857.963286][  T993] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  858.026316][T13126] netlink: 'syz.5.2026': attribute type 12 has an invalid length.
[  858.056357][T13126] netlink: 'syz.5.2026': attribute type 29 has an invalid length.
[  858.070817][T13126] netlink: 148 bytes leftover after parsing attributes in process `syz.5.2026'.
[  858.109459][T13126] netlink: 'syz.5.2026': attribute type 3 has an invalid length.
[  858.120764][T13126] netlink: 7 bytes leftover after parsing attributes in process `syz.5.2026'.
[  858.155333][   T28] audit: type=1326 audit(2000000061.350:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13132 comm="syz.0.2027" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f35fe19c629 code=0x7ffc0000
[  858.236361][   T28] audit: type=1326 audit(2000000061.360:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13132 comm="syz.0.2027" exe="/root/syz-executor" sig=0 arch=c000003e syscall=290 compat=0 ip=0x7f35fe19c629 code=0x7ffc0000
[  858.268814][  T993] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  858.313241][   T28] audit: type=1326 audit(2000000061.360:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13132 comm="syz.0.2027" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f35fe19c629 code=0x7ffc0000
[  858.366705][   T28] audit: type=1326 audit(2000000061.360:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13132 comm="syz.0.2027" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f35fe19c629 code=0x7ffc0000
[  858.398490][   T28] audit: type=1326 audit(2000000061.360:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13132 comm="syz.0.2027" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f35fe19c629 code=0x7ffc0000
[  858.418093][T13140] loop5: detected capacity change from 0 to 128
[  858.473825][   T28] audit: type=1326 audit(2000000061.360:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13132 comm="syz.0.2027" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f35fe19c629 code=0x7ffc0000
[  858.486129][T13140] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  858.543211][   T28] audit: type=1326 audit(2000000061.360:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13132 comm="syz.0.2027" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f35fe19c629 code=0x7ffc0000
[  858.566909][   T28] audit: type=1326 audit(2000000061.360:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13132 comm="syz.0.2027" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f35fe19c629 code=0x7ffc0000
[  858.593034][   T28] audit: type=1326 audit(2000000061.370:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13132 comm="syz.0.2027" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f35fe19c629 code=0x7ffc0000
[  858.604991][T13140] ext4 filesystem being mounted at /18/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  858.699806][   T28] audit: type=1326 audit(2000000061.370:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13132 comm="syz.0.2027" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f35fe19c629 code=0x7ffc0000
[  858.780295][  T993] tipc: Left network mode
[  858.874686][T11025] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  858.891131][T11025] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  858.893919][T12588] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  858.908935][T11025] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  858.929402][T11025] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  858.951677][T11025] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  858.961313][T11025] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  859.904858][T13147] chnl_net:caif_netlink_parms(): no params data found
[  860.063416][T13173] loop4: detected capacity change from 0 to 1024
[  860.093999][T13173] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (58532!=20869)
[  860.121664][T13173] JBD2: no valid journal superblock found
[  860.161803][T13173] EXT4-fs (loop4): Could not load journal inode
[  860.676683][T13147] bridge0: port 1(bridge_slave_0) entered blocking state
[  860.683871][T13147] bridge0: port 1(bridge_slave_0) entered disabled state
[  860.721165][T13147] bridge_slave_0: entered allmulticast mode
[  860.737888][T13147] bridge_slave_0: entered promiscuous mode
[  860.758759][T13147] bridge0: port 2(bridge_slave_1) entered blocking state
[  860.766185][T13147] bridge0: port 2(bridge_slave_1) entered disabled state
[  860.773410][T13147] bridge_slave_1: entered allmulticast mode
[  860.781248][T13147] bridge_slave_1: entered promiscuous mode
[  860.809795][ T3457] Bluetooth: hci2: Frame reassembly failed (-84)
[  860.823316][ T3457] Bluetooth: hci2: Frame reassembly failed (-84)
[  860.911212][T13147] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  860.997154][T13147] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  861.060715][T13147] team0: Port device team_slave_0 added
[  861.098468][T13147] team0: Port device team_slave_1 added
[  861.153973][  T993] hsr_slave_0: left promiscuous mode
[  861.169102][  T993] hsr_slave_1: left promiscuous mode
[  861.175500][  T993] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  861.184759][  T993] batman_adv: batadv0: Removing interface: batadv_slave_0
[  861.200898][  T993] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  861.223011][  T993] batman_adv: batadv0: Removing interface: batadv_slave_1
[  861.231584][  T993] bridge_slave_1: left allmulticast mode
[  861.237990][  T993] bridge_slave_1: left promiscuous mode
[  861.243895][  T993] bridge0: port 2(bridge_slave_1) entered disabled state
[  861.253559][  T993] bridge_slave_0: left allmulticast mode
[  861.259712][  T993] bridge_slave_0: left promiscuous mode
[  861.265512][  T993] bridge0: port 1(bridge_slave_0) entered disabled state
[  861.305417][  T993] veth1_macvtap: left promiscuous mode
[  861.313161][  T993] veth0_macvtap: left promiscuous mode
[  861.319421][  T993] veth1_vlan: left promiscuous mode
[  861.324664][  T993] veth0_vlan: left promiscuous mode
[  861.486219][  T993] pim6reg (unregistering): left allmulticast mode
[  862.029563][  T993] team0 (unregistering): Port device team_slave_1 removed
[  862.083482][  T993] team0 (unregistering): Port device team_slave_0 removed
[  862.138453][  T993] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  862.195197][  T993] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  862.601054][  T993] bond0 (unregistering): Released all slaves
[  862.680801][T13201] netlink: 'syz.0.2035': attribute type 12 has an invalid length.
[  862.688851][T13201] netlink: 'syz.0.2035': attribute type 29 has an invalid length.
[  862.699639][T13201] netlink: 148 bytes leftover after parsing attributes in process `syz.0.2035'.
[  862.708908][T13201] netlink: 'syz.0.2035': attribute type 3 has an invalid length.
[  862.724351][T13201] netlink: 7 bytes leftover after parsing attributes in process `syz.0.2035'.
[  862.751320][T13147] batman_adv: batadv0: Adding interface: batadv_slave_0
[  862.759164][T13147] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  862.805810][T13147] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  862.843878][T13147] batman_adv: batadv0: Adding interface: batadv_slave_1
[  862.857876][T13147] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  862.893494][ T5774] Bluetooth: hci2: Opcode 0x1003 failed: -110
[  862.893967][T11025] Bluetooth: hci2: command 0x1003 tx timeout
[  862.916921][T13147] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  863.549465][T13211] loop4: detected capacity change from 0 to 512
[  864.355892][T13211] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  864.487085][T13147] hsr_slave_0: entered promiscuous mode
[  864.601420][T13147] hsr_slave_1: entered promiscuous mode
[  864.658453][T13147] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  864.697167][ T6393] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  864.715172][T13147] Cannot create hsr debugfs directory
[  864.807505][T13218] loop5: detected capacity change from 0 to 512
[  864.841744][T13218] EXT4-fs: Ignoring removed i_version option
[  864.951355][T13218] EXT4-fs (loop5): orphan cleanup on readonly fs
[  864.981816][T13218] EXT4-fs warning (device loop5): ext4_xattr_inode_get:560: inode #11: comm syz.5.2038: EA inode hash validation failed
[  865.002065][T13218] EXT4-fs error (device loop5): ext4_xattr_inode_update_ref:1037: inode #11: comm syz.5.2038: EA inode 11 ref wraparound: ref_count=0 ref_change=-1
[  865.167247][T13218] EXT4-fs (loop5): Remounting filesystem read-only
[  865.184213][T13218] EXT4-fs warning (device loop5): ext4_xattr_inode_dec_ref_all:1231: inode #11: comm syz.5.2038: ea_inode dec ref err=-117
[  865.300628][T13218] EXT4-fs warning (device loop5): ext4_evict_inode:272: xattr delete (err -5)
[  865.370657][T13224] loop4: detected capacity change from 0 to 1024
[  865.385992][T13218] EXT4-fs (loop5): 1 orphan inode deleted
[  865.419277][T13218] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  865.449733][T13224] EXT4-fs: Ignoring removed bh option
[  865.506326][T13224] EXT4-fs: Ignoring removed mblk_io_submit option
[  865.549376][T13224] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  865.788154][T13224] EXT4-fs error (device loop4): ext4_map_blocks:608: inode #3: block 2: comm syz.4.2039: lblock 2 mapped to illegal pblock 2 (length 1)
[  865.817736][T13224] __quota_error: 15 callbacks suppressed
[  865.817755][T13224] Quota error (device loop4): qtree_write_dquot: dquota write failed
[  865.832428][T13224] EXT4-fs error (device loop4): ext4_map_blocks:608: inode #3: block 48: comm syz.4.2039: lblock 0 mapped to illegal pblock 48 (length 1)
[  865.856175][T13224] Quota error (device loop4): v2_write_file_info: Can't write info structure
[  865.905933][T13224] EXT4-fs error (device loop4): ext4_acquire_dquot:6949: comm syz.4.2039: Failed to acquire dquot type 0
[  865.949475][T13224] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5920: Corrupt filesystem
[  865.994124][T13224] EXT4-fs error (device loop4): ext4_evict_inode:252: inode #11: comm syz.4.2039: mark_inode_dirty error
[  866.033145][T13147] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  866.063006][T13147] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  866.065349][T13224] EXT4-fs warning (device loop4): ext4_evict_inode:255: couldn't mark inode dirty (err -117)
[  866.101108][T13224] EXT4-fs (loop4): 1 orphan inode deleted
[  866.101193][T13147] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  866.116304][T13224] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  866.132443][T13147] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  866.134524][  T993] EXT4-fs error (device loop4): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:5: lblock 1 mapped to illegal pblock 1 (length 1)
[  866.206429][  T993] Quota error (device loop4): remove_tree: Can't read quota data block 1
[  866.214953][  T993] EXT4-fs error (device loop4): ext4_release_dquot:6985: comm kworker/u4:5: Failed to release dquot type 0
[  866.292235][T13224] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  866.325753][T13236] EXT4-fs error (device loop4): ext4_map_blocks:608: inode #2: block 16: comm syz.4.2039: lblock 0 mapped to illegal pblock 16 (length 1)
[  866.438987][ T6393] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  866.450661][T13147] 8021q: adding VLAN 0 to HW filter on device bond0
[  866.540018][T13147] 8021q: adding VLAN 0 to HW filter on device team0
[  866.608228][   T42] bridge0: port 1(bridge_slave_0) entered blocking state
[  866.615427][   T42] bridge0: port 1(bridge_slave_0) entered forwarding state
[  866.647975][   T42] bridge0: port 2(bridge_slave_1) entered blocking state
[  866.655165][   T42] bridge0: port 2(bridge_slave_1) entered forwarding state
[  866.675769][   T28] audit: type=1326 audit(2000000069.870:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13241 comm="syz.0.2042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f35fe19c629 code=0x7ffc0000
[  866.777563][   T28] audit: type=1326 audit(2000000069.870:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13241 comm="syz.0.2042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f35fe19c629 code=0x7ffc0000
[  866.875872][   T28] audit: type=1326 audit(2000000069.880:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13241 comm="syz.0.2042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=290 compat=0 ip=0x7f35fe19c629 code=0x7ffc0000
[  866.966164][   T28] audit: type=1326 audit(2000000069.880:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13241 comm="syz.0.2042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f35fe19c629 code=0x7ffc0000
[  867.008794][T13253] netlink: 'syz.4.2043': attribute type 12 has an invalid length.
[  867.011577][   T28] audit: type=1326 audit(2000000069.880:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13241 comm="syz.0.2042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f35fe19c629 code=0x7ffc0000
[  867.032459][T13253] netlink: 'syz.4.2043': attribute type 29 has an invalid length.
[  867.068921][T13253] netlink: 148 bytes leftover after parsing attributes in process `syz.4.2043'.
[  867.081817][   T28] audit: type=1326 audit(2000000069.880:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13241 comm="syz.0.2042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f35fe19c629 code=0x7ffc0000
[  867.089065][T13253] netlink: 'syz.4.2043': attribute type 3 has an invalid length.
[  867.136797][T13253] netlink: 7 bytes leftover after parsing attributes in process `syz.4.2043'.
[  867.158251][   T28] audit: type=1326 audit(2000000069.880:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13241 comm="syz.0.2042" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f35fe19c629 code=0x7ffc0000
[  867.518205][T13147] 8021q: adding VLAN 0 to HW filter on device batadv0
[  867.612165][T12588] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  868.734680][T13147] veth0_vlan: entered promiscuous mode
[  868.762374][T13147] veth1_vlan: entered promiscuous mode
[  868.834061][T13147] veth0_macvtap: entered promiscuous mode
[  868.849511][T13147] veth1_macvtap: entered promiscuous mode
[  868.873649][T13147] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  868.896746][T13147] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  868.916159][T13147] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  868.932197][T13147] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  868.942756][T13147] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  868.958811][T13147] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  868.972112][T13147] batman_adv: batadv0: Interface activated: batadv_slave_0
[  869.007138][T13147] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  869.019509][T13147] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  869.029910][T13147] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  869.040643][T13147] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  869.050659][T13147] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  869.061257][T13147] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  869.075428][T13147] batman_adv: batadv0: Interface activated: batadv_slave_1
[  869.102187][T13147] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  869.114831][T13147] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  869.139091][T13147] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  869.158252][T13147] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  869.292760][T13284] loop5: detected capacity change from 0 to 40427
[  869.310408][T13284] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12
[  869.335886][T13284] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  869.360023][T13284] F2FS-fs (loop5): invalid crc value
[  869.379432][   T42] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  869.398257][T13284] F2FS-fs (loop5): Found nat_bits in checkpoint
[  869.415861][   T42] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  869.518630][  T993] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  869.552241][  T993] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  869.570237][T13284] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  869.587381][T13284] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  870.402038][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  870.408791][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  871.067001][T13344] loop6: detected capacity change from 0 to 128
[  871.226712][T13349] netlink: 'syz.5.2051': attribute type 12 has an invalid length.
[  871.235414][T13349] netlink: 'syz.5.2051': attribute type 29 has an invalid length.
[  871.249929][T13349] netlink: 148 bytes leftover after parsing attributes in process `syz.5.2051'.
[  871.262119][T13349] netlink: 'syz.5.2051': attribute type 3 has an invalid length.
[  871.273903][T13349] netlink: 7 bytes leftover after parsing attributes in process `syz.5.2051'.
[  871.405924][    T9] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  871.450404][T13357] loop5: detected capacity change from 0 to 128
[  871.461806][T13356] loop4: detected capacity change from 0 to 512
[  871.497570][T13356] EXT4-fs error (device loop4): ext4_orphan_get:1398: inode #15: comm syz.4.2056: inode has both inline data and extents flags
[  871.519939][T10993] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  871.531177][T13356] EXT4-fs error (device loop4): ext4_orphan_get:1403: comm syz.4.2056: couldn't read orphan inode 15 (err -117)
[  871.573112][   T28] kauditd_printk_skb: 12 callbacks suppressed
[  871.573130][   T28] audit: type=1326 audit(2000000074.770:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13354 comm="syz.5.2055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f81d379c629 code=0x7ffc0000
[  871.605730][    T9] usb 7-1: Using ep0 maxpacket: 16
[  871.613365][    T9] usb 7-1: config 0 interface 0 has no altsetting 0
[  871.626109][    T9] usb 7-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  871.642162][T13356] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  871.685815][    T9] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  871.720908][   T28] audit: type=1326 audit(2000000074.810:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13354 comm="syz.5.2055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=290 compat=0 ip=0x7f81d379c629 code=0x7ffc0000
[  871.760436][    T9] usb 7-1: config 0 descriptor??
[  871.802083][   T28] audit: type=1326 audit(2000000074.810:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13354 comm="syz.5.2055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f81d379c629 code=0x7ffc0000
[  871.865821][   T28] audit: type=1326 audit(2000000074.810:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13354 comm="syz.5.2055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f81d379c629 code=0x7ffc0000
[  871.917489][   T28] audit: type=1326 audit(2000000074.810:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13354 comm="syz.5.2055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f81d379c629 code=0x7ffc0000
[  871.968040][   T28] audit: type=1326 audit(2000000074.810:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13354 comm="syz.5.2055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f81d379c629 code=0x7ffc0000
[  871.990515][   T28] audit: type=1326 audit(2000000074.810:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13354 comm="syz.5.2055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f81d379c629 code=0x7ffc0000
[  872.000254][ T6393] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  872.018133][   T28] audit: type=1326 audit(2000000074.810:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13354 comm="syz.5.2055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f81d379c629 code=0x7ffc0000
[  872.057225][   T28] audit: type=1326 audit(2000000074.810:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13354 comm="syz.5.2055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f81d379c629 code=0x7ffc0000
[  872.133332][   T28] audit: type=1326 audit(2000000074.810:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13354 comm="syz.5.2055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f81d379c629 code=0x7ffc0000
[  872.227305][    T9] hid (null): unknown global tag 0xe
[  872.233326][    T9] hid (null): global environment stack underflow
[  872.253961][    T9] hid (null): unknown global tag 0xc
[  872.266463][    T9] hid (null): unknown global tag 0xe
[  872.320060][T13372] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2058'.
[  872.329567][T13372] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  872.444015][    T9] usb 7-1: USB disconnect, device number 2
[  872.502860][T13372] batman_adv: batadv0: Removing interface: batadv_slave_1
[  873.456405][    T9] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  873.467080][ T5776] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  873.479489][ T5776] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  873.489981][ T5776] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  873.502724][ T5776] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  873.516922][ T5776] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  873.524518][ T5776] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  873.611522][  T993] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  873.659071][    T9] usb 7-1: config index 0 descriptor too short (expected 39, got 27)
[  873.670185][    T9] usb 7-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  873.686276][    T9] usb 7-1: config 0 interface 0 has no altsetting 0
[  873.699715][    T9] usb 7-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  873.709308][    T9] usb 7-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  873.718222][    T9] usb 7-1: Product: syz
[  873.722606][    T9] usb 7-1: Manufacturer: syz
[  873.727381][    T9] usb 7-1: SerialNumber: syz
[  873.737037][    T9] usb 7-1: config 0 descriptor??
[  873.745243][    T9] hub 7-1:0.0: bad descriptor, ignoring hub
[  873.751385][    T9] hub: probe of 7-1:0.0 failed with error -5
[  873.762288][    T9] usb 7-1: selecting invalid altsetting 0
[  873.771083][  T993] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  873.942719][  T993] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  874.057565][  T993] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  874.096450][ T2176] usb 7-1: USB disconnect, device number 3
[  874.274287][T13411] netlink: 'syz.4.2064': attribute type 12 has an invalid length.
[  874.284272][T13411] netlink: 'syz.4.2064': attribute type 29 has an invalid length.
[  874.296957][T13411] netlink: 148 bytes leftover after parsing attributes in process `syz.4.2064'.
[  874.314533][T13411] netlink: 'syz.4.2064': attribute type 3 has an invalid length.
[  874.332900][T13411] netlink: 7 bytes leftover after parsing attributes in process `syz.4.2064'.
[  874.491993][T13398] chnl_net:caif_netlink_parms(): no params data found
[  874.814810][  T993] tipc: Left network mode
[  874.864805][T13425] loop6: detected capacity change from 0 to 256
[  874.873293][T13425] FAT-fs (loop6): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  874.931706][T13425] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  874.980201][T13398] bridge0: port 1(bridge_slave_0) entered blocking state
[  875.021669][T13398] bridge0: port 1(bridge_slave_0) entered disabled state
[  875.052544][T13398] bridge_slave_0: entered allmulticast mode
[  875.120776][T13398] bridge_slave_0: entered promiscuous mode
[  875.260036][T13398] bridge0: port 2(bridge_slave_1) entered blocking state
[  875.278119][T13398] bridge0: port 2(bridge_slave_1) entered disabled state
[  875.291026][T13398] bridge_slave_1: entered allmulticast mode
[  875.308285][T13398] bridge_slave_1: entered promiscuous mode
[  875.516044][T13398] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  875.529221][T13398] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  875.596096][ T5774] Bluetooth: hci2: command tx timeout
[  875.787483][T13440] loop5: detected capacity change from 0 to 1024
[  875.804597][T13440] EXT4-fs: Ignoring removed orlov option
[  875.924825][T13398] team0: Port device team_slave_0 added
[  875.938360][T13398] team0: Port device team_slave_1 added
[  875.964153][T13440] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  876.062833][T12588] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  876.134686][T13398] batman_adv: batadv0: Adding interface: batadv_slave_0
[  876.183558][T13398] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  876.226116][T13398] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  876.291500][T13453] netlink: 'syz.5.2072': attribute type 12 has an invalid length.
[  876.309825][T13453] netlink: 'syz.5.2072': attribute type 29 has an invalid length.
[  876.325800][T13453] netlink: 148 bytes leftover after parsing attributes in process `syz.5.2072'.
[  876.343591][T13453] netlink: 'syz.5.2072': attribute type 3 has an invalid length.
[  876.361690][T13453] netlink: 7 bytes leftover after parsing attributes in process `syz.5.2072'.
[  876.383719][T13398] batman_adv: batadv0: Adding interface: batadv_slave_1
[  876.415998][T13398] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  876.488643][T13398] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  876.583221][T13460] loop5: detected capacity change from 0 to 512
[  876.639609][T13460] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  876.751950][T13460] ext4 filesystem being mounted at /29/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  876.821758][T13398] hsr_slave_0: entered promiscuous mode
[  876.864546][T13460] __quota_error: 3 callbacks suppressed
[  876.864562][T13460] Quota error (device loop5): do_check_range: Getting dqdh_next_free 4294967294 out of range 0-8
[  876.901622][T13398] hsr_slave_1: entered promiscuous mode
[  876.926650][T13398] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  876.934281][T13398] Cannot create hsr debugfs directory
[  876.948854][T13460] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota
[  876.971184][T13460] EXT4-fs error (device loop5): ext4_acquire_dquot:6949: comm syz.5.2073: Failed to acquire dquot type 0
[  877.178540][T13471] tipc: Cannot configure node identity twice
[  877.193620][T13460] EXT4-fs warning (device loop5): ext4_resize_begin:84: There are errors in the filesystem, so online resizing is not allowed
[  877.824330][ T5774] Bluetooth: hci2: command tx timeout
[  879.028320][T12588] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  879.079536][  T993] IPVS: stopping backup sync thread 8248 ...
[  879.831456][  T993] hsr_slave_0: left promiscuous mode
[  879.861663][  T993] hsr_slave_1: left promiscuous mode
[  879.878975][  T993] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  879.907665][  T993] batman_adv: batadv0: Removing interface: batadv_slave_0
[  879.924936][ T5774] Bluetooth: hci2: command tx timeout
[  880.041109][  T993] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  880.055724][  T993] batman_adv: batadv0: Removing interface: batadv_slave_1
[  880.111139][  T993] bridge_slave_1: left allmulticast mode
[  880.134698][  T993] bridge_slave_1: left promiscuous mode
[  880.156033][  T993] bridge0: port 2(bridge_slave_1) entered disabled state
[  880.208213][  T993] bridge_slave_0: left allmulticast mode
[  880.236092][  T993] bridge_slave_0: left promiscuous mode
[  880.241936][  T993] bridge0: port 1(bridge_slave_0) entered disabled state
[  880.334301][  T993] veth1_macvtap: left promiscuous mode
[  880.347031][  T993] veth0_macvtap: left promiscuous mode
[  880.360791][  T993] veth1_vlan: left promiscuous mode
[  880.374718][  T993] veth0_vlan: left promiscuous mode
[  881.995996][ T5774] Bluetooth: hci2: command tx timeout
[  882.352809][  T993] @ (unregistering): Port device team_slave_1 removed
[  882.434045][  T993] @ (unregistering): Port device team_slave_0 removed
[  882.526319][  T993] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  882.598188][T13488] loop6: detected capacity change from 0 to 131072
[  882.618192][  T993] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  882.646202][T13488] F2FS-fs (loop6): Wrong CP boundary, start(512) end(1536) blocks(0)
[  882.654367][T13488] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  882.746683][T13488] F2FS-fs (loop6): Found nat_bits in checkpoint
[  882.827966][T13488] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  882.835214][T13488] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  882.874704][   T28] audit: type=1800 audit(2000000005.590:158): pid=13488 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.2078" name="file1" dev="loop6" ino=7 res=0 errno=0
[  882.986088][   T28] audit: type=1800 audit(2000000005.700:159): pid=13488 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.2078" name="file1" dev="loop6" ino=8 res=0 errno=0
[  883.073592][   T28] audit: type=1804 audit(2000000005.790:160): pid=13511 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.6.2078" name="/newroot/8/file1/file1" dev="loop6" ino=8 res=1 errno=0
[  883.414188][  T993] bond0 (unregistering): Released all slaves
[  883.566024][T13493] netlink: 'syz.5.2080': attribute type 12 has an invalid length.
[  883.573924][T13493] netlink: 'syz.5.2080': attribute type 29 has an invalid length.
[  883.603750][T13493] netlink: 148 bytes leftover after parsing attributes in process `syz.5.2080'.
[  883.619310][T13493] netlink: 'syz.5.2080': attribute type 3 has an invalid length.
[  883.634317][T13493] netlink: 7 bytes leftover after parsing attributes in process `syz.5.2080'.
[  884.423475][  T993] IPVS: stop unused estimator thread 0...
[  884.490581][T13398] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  884.518518][T13398] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  884.572269][T13398] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  884.606216][T13398] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  884.895371][T13398] 8021q: adding VLAN 0 to HW filter on device bond0
[  884.930486][T13540] tipc: Cannot configure node identity twice
[  885.009546][T13398] 8021q: adding VLAN 0 to HW filter on device team0
[  885.049812][ T3499] bridge0: port 1(bridge_slave_0) entered blocking state
[  885.057057][ T3499] bridge0: port 1(bridge_slave_0) entered forwarding state
[  885.152445][ T1092] bridge0: port 2(bridge_slave_1) entered blocking state
[  885.159695][ T1092] bridge0: port 2(bridge_slave_1) entered forwarding state
[  886.071897][T13558] loop5: detected capacity change from 0 to 1024
[  886.093079][T13558] EXT4-fs: Ignoring removed mblk_io_submit option
[  886.229193][T13558] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  886.524692][T13398] 8021q: adding VLAN 0 to HW filter on device batadv0
[  886.655375][T13547] loop4: detected capacity change from 0 to 40427
[  886.684761][T13547] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  886.708744][T13398] veth0_vlan: entered promiscuous mode
[  886.720154][T13547] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  886.746374][T13547] F2FS-fs (loop4): invalid crc value
[  886.775674][T13398] veth1_vlan: entered promiscuous mode
[  886.783537][T13547] F2FS-fs (loop4): Found nat_bits in checkpoint
[  886.911172][   T28] audit: type=1800 audit(2000000009.630:161): pid=13558 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.2093" name="file1" dev="loop5" ino=15 res=0 errno=0
[  886.922519][T13398] veth0_macvtap: entered promiscuous mode
[  887.010465][T13398] veth1_macvtap: entered promiscuous mode
[  887.012992][T13547] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  887.036979][T13547] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  887.067110][T12588] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  887.122390][T13398] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  887.165269][T13398] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  887.220472][T13398] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  887.267347][T13398] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  887.318367][T13398] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  887.364900][T13398] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  887.399090][T13398] batman_adv: batadv0: Interface activated: batadv_slave_0
[  887.427605][T13398] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  887.451876][T13398] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  887.473266][T13398] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  887.550177][T13398] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  887.592692][T13398] batman_adv: batadv0: Interface activated: batadv_slave_1
[  887.650609][T13547] F2FS-fs (loop4): Stopped filesystem due to reason: 0
[  888.219531][T13398] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  888.296037][T13398] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  888.304808][T13398] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  888.395050][T13398] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  888.627113][ T2937] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  888.634974][ T2937] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  888.750506][ T3499] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  888.778496][ T3499] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  889.857085][T13618] loop5: detected capacity change from 0 to 256
[  889.989486][T13618] FAT-fs (loop5): Directory bread(block 64) failed
[  890.015751][T13618] FAT-fs (loop5): Directory bread(block 65) failed
[  890.022489][T13618] FAT-fs (loop5): Directory bread(block 66) failed
[  890.062757][T13618] FAT-fs (loop5): Directory bread(block 67) failed
[  890.092937][T13618] FAT-fs (loop5): Directory bread(block 68) failed
[  890.125060][T13618] FAT-fs (loop5): Directory bread(block 69) failed
[  890.146883][T13618] FAT-fs (loop5): Directory bread(block 70) failed
[  890.153484][T13618] FAT-fs (loop5): Directory bread(block 71) failed
[  890.175886][T13618] FAT-fs (loop5): Directory bread(block 72) failed
[  890.182488][T13618] FAT-fs (loop5): Directory bread(block 73) failed
[  890.430730][T13633] loop4: detected capacity change from 0 to 512
[  890.457061][T13633] ext4: Unknown parameter 'noacl'
[  890.521910][T10993] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  890.593290][T13633] loop4: detected capacity change from 0 to 512
[  890.597416][T10993] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  890.634191][T10993] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  890.685550][T10993] buffer_io_error: 27 callbacks suppressed
[  890.685566][T10993] Buffer I/O error on dev loop4, logical block 0, async page read
[  890.724613][T13633] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  890.825118][T13633] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  890.844589][T13633] ext4 filesystem being mounted at /460/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  891.188093][ T6393] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  891.389396][T13651] loop4: detected capacity change from 0 to 256
[  891.426654][T13651] exfat: Deprecated parameter 'namecase'
[  891.452218][T13651] exfat: Deprecated parameter 'namecase'
[  891.529052][T13651] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xfcc0b04e, utbl_chksum : 0xe619d30d)
[  892.227799][T13651] syz.4.2108: attempt to access beyond end of device
[  892.227799][T13651] loop4: rw=524288, sector=34225520824, nr_sectors = 1 limit=256
[  892.339755][T13651] syz.4.2108: attempt to access beyond end of device
[  892.339755][T13651] loop4: rw=0, sector=34225520824, nr_sectors = 1 limit=256
[  892.395343][   T28] audit: type=1800 audit(2000000015.110:162): pid=13651 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.2108" name="file1" dev="loop4" ino=1048697 res=0 errno=0
[  892.653752][T13674] loop6: detected capacity change from 0 to 128
[  893.915743][ T8829] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  894.118818][ T8829] usb 6-1: config 1 has an invalid descriptor of length 255, skipping remainder of the config
[  894.135203][ T8829] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3
[  894.153101][ T8829] usb 6-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  894.165764][ T8829] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  894.186418][ T8829] usb 6-1: SerialNumber: syz
[  894.264120][T13691] loop4: detected capacity change from 0 to 40427
[  894.294561][T13691] F2FS-fs (loop4): invalid crc value
[  894.325334][T13691] F2FS-fs (loop4): Found nat_bits in checkpoint
[  894.433149][ T8829] usb 6-1: 0:2 : does not exist
[  894.461112][ T8829] usb 6-1: unit 255 not found!
[  894.527703][T13691] F2FS-fs (loop4): Start checkpoint disabled!
[  894.529307][ T8829] usb 6-1: USB disconnect, device number 5
[  894.557484][T13691] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6
[  894.619262][T10993] udevd[10993]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  895.896037][T11636] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  896.101665][T11636] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  896.131304][T11636] usb 1-1: New USB device found, idVendor=07fd, idProduct=0001, bcdDevice=48.99
[  896.146156][T11636] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  896.154193][T11636] usb 1-1: Product: syz
[  896.160507][T11636] usb 1-1: Manufacturer: syz
[  896.165153][T11636] usb 1-1: SerialNumber: syz
[  896.180604][T11636] usb 1-1: config 0 descriptor??
[  896.191173][T11636] usb 1-1: Quirk or no altest; falling back to MIDI 1.0
[  896.434687][T11636] snd-usb-audio: probe of 1-1:0.0 failed with error -2
[  896.511971][T10993] udevd[10993]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  896.625931][T11636] usb 1-1: USB disconnect, device number 3
[  898.104463][T13718] loop6: detected capacity change from 0 to 131072
[  898.122383][T13718] F2FS-fs (loop6): Segment count (31) mismatch with total segments from devices (0)
[  898.133619][T13718] F2FS-fs (loop6): Can't find valid F2FS filesystem in 2th superblock
[  898.151466][T13718] F2FS-fs (loop6): Found nat_bits in checkpoint
[  898.165760][T11636] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  898.230335][T13718] F2FS-fs (loop6): Try to recover 2th superblock, ret: 0
[  898.237702][T13718] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  898.267327][T13718] F2FS-fs (loop6): lookup inode (7) has corrupted xattr
[  898.325872][T13718] F2FS-fs (loop6): lookup inode (7) has corrupted xattr
[  898.358270][T13718] F2FS-fs (loop6): f2fs_check_nid_range: out-of-range nid=fff70000, run fsck to fix.
[  898.365726][T11636] usb 1-1: Using ep0 maxpacket: 32
[  898.388461][T11636] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  898.412242][T11636] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  898.422926][T11636] usb 1-1: New USB device found, idVendor=13ec, idProduct=0006, bcdDevice= 0.00
[  898.445467][T11636] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  898.496974][T11636] usb 1-1: config 0 descriptor??
[  898.583469][T13752] loop5: detected capacity change from 0 to 40427
[  898.621405][T13752] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12
[  898.647322][T13752] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  898.696932][T13752] F2FS-fs (loop5): invalid crc value
[  898.723337][T13752] F2FS-fs (loop5): Found nat_bits in checkpoint
[  898.910883][T13752] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  898.929251][T11636] zydacron 0003:13EC:0006.0016: item fetching failed at offset 0/2
[  898.948434][T13752] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  898.959307][T11636] zydacron 0003:13EC:0006.0016: parse failed
[  898.965423][T11636] zydacron: probe of 0003:13EC:0006.0016 failed with error -22
[  899.211105][T13754] loop0: detected capacity change from 0 to 512
[  899.225536][T13754] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  899.243053][T13754] EXT4-fs (loop0): SIPHASH is not a valid default hash value
[  899.341466][T13754] loop0: detected capacity change from 0 to 512
[  899.457109][T13754] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  899.487784][T13754] ext4 filesystem being mounted at /9/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  899.689999][ T8829] usb 1-1: USB disconnect, device number 4
[  899.999857][T13784] loop5: detected capacity change from 0 to 256
[  900.032815][T13784] exFAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  900.073862][T13784] exFAT-fs (loop5): Medium has reported failures. Some data may be lost.
[  900.188440][T13787] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2138'.
[  900.242751][T13784] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  900.537862][T13398] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  900.624676][T13793] tmpfs: Unknown parameter 'nr_00000000000000000000'
[  902.534424][T13819] loop0: detected capacity change from 0 to 1024
[  902.558395][T13819] EXT4-fs: Ignoring removed bh option
[  902.607893][T13819] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: writeback.
[  902.637066][T13819] ext4 filesystem being mounted at /12/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  902.666536][T13825] EXT4-fs error (device loop0): ext4_validate_block_bitmap:439: comm ext4lazyinit: bg 0: block 112: padding at end of block bitmap is not set
[  902.724505][T13829] loop4: detected capacity change from 0 to 16
[  902.746120][T13829] erofs: (device loop4): mounted with root inode @ nid 36.
[  902.934821][T13398] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  902.974358][T13832] loop5: detected capacity change from 0 to 1024
[  902.994531][T13832] EXT4-fs: Ignoring removed orlov option
[  903.013914][T13836] loop4: detected capacity change from 0 to 16
[  903.044942][T13836] erofs: (device loop4): erofs_read_inode: unsupported datalayout 6 of nid 36
[  903.081555][T13832] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  903.332907][T12588] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  903.365978][ T5828] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  904.604978][ T5828] usb 7-1: Using ep0 maxpacket: 32
[  904.618357][ T5828] usb 7-1: config 0 has an invalid interface number: 61 but max is 1
[  904.636522][ T5828] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 2
[  904.639309][T13853] overlayfs: missing 'lowerdir'
[  904.653184][ T5828] usb 7-1: config 0 has no interface number 0
[  904.664336][ T5828] usb 7-1: New USB device found, idVendor=2058, idProduct=1005, bcdDevice=b5.f6
[  904.685956][ T5828] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  904.694091][ T5828] usb 7-1: Product: syz
[  904.706065][ T5828] usb 7-1: Manufacturer: syz
[  904.710804][ T5828] usb 7-1: SerialNumber: syz
[  904.726497][ T5828] usb 7-1: config 0 descriptor??
[  904.928092][ T5828] viperboard 7-1:0.61: version 0.00 found at bus 007 address 004
[  904.944175][ T5828] viperboard-i2c viperboard-i2c.2.auto: failure setting i2c_bus_freq to 100
[  904.953256][ T5828] viperboard-i2c: probe of viperboard-i2c.2.auto failed with error -5
[  905.262334][T13862] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2153'.
[  905.357911][T13864] loop4: detected capacity change from 0 to 512
[  905.368779][T13864] FAT-fs (loop4): Directory bread(block 199916) failed
[  905.405258][T13864] FAT-fs (loop4): Directory bread(block 199917) failed
[  905.479559][T13864] FAT-fs (loop4): Directory bread(block 199918) failed
[  905.514435][T13864] FAT-fs (loop4): Directory bread(block 199919) failed
[  905.524064][T13864] FAT-fs (loop4): Directory bread(block 199920) failed
[  905.556248][T13864] FAT-fs (loop4): Directory bread(block 199921) failed
[  905.576270][T13864] FAT-fs (loop4): Directory bread(block 199922) failed
[  905.604291][T13864] FAT-fs (loop4): Directory bread(block 199923) failed
[  906.403159][T13878] loop0: detected capacity change from 0 to 512
[  906.434509][T13878] EXT4-fs: Ignoring removed i_version option
[  906.503931][T13878] EXT4-fs (loop0): orphan cleanup on readonly fs
[  906.545121][T13878] EXT4-fs warning (device loop0): ext4_xattr_inode_get:560: inode #11: comm syz.0.2158: EA inode hash validation failed
[  906.631382][T13878] EXT4-fs error (device loop0): ext4_xattr_inode_update_ref:1037: inode #11: comm syz.0.2158: EA inode 11 ref wraparound: ref_count=0 ref_change=-1
[  906.706652][T13878] EXT4-fs (loop0): Remounting filesystem read-only
[  906.733013][T13878] EXT4-fs warning (device loop0): ext4_xattr_inode_dec_ref_all:1231: inode #11: comm syz.0.2158: ea_inode dec ref err=-117
[  906.765534][T13878] EXT4-fs warning (device loop0): ext4_evict_inode:272: xattr delete (err -5)
[  906.787019][T13878] EXT4-fs (loop0): 1 orphan inode deleted
[  906.803321][T13878] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  907.158293][ T8829] usb 7-1: USB disconnect, device number 4
[  907.775183][T13900] loop6: detected capacity change from 0 to 128
[  907.828285][T13900] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  908.040837][T13900] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  908.937180][T13398] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  909.054228][T13926] loop6: detected capacity change from 0 to 512
[  909.106863][T13926] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem
[  909.295116][T13926] EXT4-fs (loop6): 1 truncate cleaned up
[  909.331943][T13926] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  910.711890][T13939] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2167'.
[  910.740593][T13939] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  910.794700][T13147] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  911.366777][T13957] loop4: detected capacity change from 0 to 256
[  911.455403][T13957] FAT-fs (loop4): Directory bread(block 64) failed
[  911.509911][T13957] FAT-fs (loop4): Directory bread(block 65) failed
[  911.538542][T13957] FAT-fs (loop4): Directory bread(block 66) failed
[  911.545367][T13957] FAT-fs (loop4): Directory bread(block 67) failed
[  911.552146][T13957] FAT-fs (loop4): Directory bread(block 68) failed
[  911.559085][T13957] FAT-fs (loop4): Directory bread(block 69) failed
[  911.571601][T13957] FAT-fs (loop4): Directory bread(block 70) failed
[  911.579977][T13957] FAT-fs (loop4): Directory bread(block 71) failed
[  911.614269][T13957] FAT-fs (loop4): Directory bread(block 72) failed
[  911.668023][T13957] FAT-fs (loop4): Directory bread(block 73) failed
[  912.484961][T13972] loop6: detected capacity change from 0 to 512
[  912.493752][T13972] EXT4-fs: Ignoring removed i_version option
[  912.503321][T13972] EXT4-fs (loop6): orphan cleanup on readonly fs
[  912.525235][T13972] EXT4-fs warning (device loop6): ext4_xattr_inode_get:560: inode #11: comm syz.6.2173: EA inode hash validation failed
[  912.596488][T11636] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  912.628143][T13972] EXT4-fs error (device loop6): ext4_xattr_inode_update_ref:1037: inode #11: comm syz.6.2173: EA inode 11 ref wraparound: ref_count=0 ref_change=-1
[  912.678679][T13972] EXT4-fs (loop6): Remounting filesystem read-only
[  912.705476][T13972] EXT4-fs warning (device loop6): ext4_xattr_inode_dec_ref_all:1231: inode #11: comm syz.6.2173: ea_inode dec ref err=-117
[  912.760367][T13972] EXT4-fs warning (device loop6): ext4_evict_inode:272: xattr delete (err -5)
[  912.796216][T13972] EXT4-fs (loop6): 1 orphan inode deleted
[  912.813091][T11636] usb 1-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  912.867484][T13972] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  912.890232][T11636] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  912.977585][T11636] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  913.024818][T11636] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  913.170755][T11636] usb 1-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  913.190566][T11636] usb 1-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  913.207382][T11636] usb 1-1: Manufacturer: syz
[  913.225395][T11636] usb 1-1: config 0 descriptor??
[  913.713092][T13996] loop5: detected capacity change from 0 to 256
[  913.728568][T11636] appleir 0003:05AC:8243.0017: unknown main item tag 0x0
[  913.746671][T11636] appleir 0003:05AC:8243.0017: No inputs registered, leaving
[  913.790319][T11636] appleir 0003:05AC:8243.0017: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.0-1/input0
[  914.163282][ T8829] usb 1-1: USB disconnect, device number 5
[  914.286267][T14001] fido_id[14001]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/report_descriptor': No such file or directory
[  914.386247][   T27] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  914.495150][T14009] loop4: detected capacity change from 0 to 4096
[  914.515748][T14009] EXT4-fs: inline encryption not supported
[  914.561991][T14009] EXT4-fs (loop4): Test dummy encryption mode enabled
[  914.597708][   T27] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  914.616161][   T27] usb 6-1: New USB device found, idVendor=050d, idProduct=011b, bcdDevice=6f.a4
[  914.626868][T14009] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  914.651269][   T27] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  914.676403][   T27] usb 6-1: config 0 descriptor??
[  914.701577][   T27] usb 6-1: bad CDC descriptors
[  914.723060][   T27] usb 6-1: bad CDC descriptors
[  914.953262][ T6393] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  914.988947][T13147] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  915.593906][T13996] FAT-fs (loop5): error, fat_get_cluster: detected the cluster chain loop (i_pos 194)
[  915.654837][T13996] FAT-fs (loop5): error, fat_get_cluster: invalid cluster chain (i_pos 194)
[  915.736199][T14031] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2179'.
[  915.779133][T14031] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  915.879553][T11636] usb 6-1: USB disconnect, device number 6
[  917.678133][T14054] syzkaller0: entered promiscuous mode
[  917.815853][T14054] syzkaller0: entered allmulticast mode
[  918.587867][T14075] loop0: detected capacity change from 0 to 512
[  918.595780][ T5833] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  918.612092][T14075] EXT4-fs: Ignoring removed i_version option
[  918.675155][T14075] EXT4-fs (loop0): orphan cleanup on readonly fs
[  918.694303][T14075] EXT4-fs warning (device loop0): ext4_xattr_inode_get:560: inode #11: comm syz.0.2188: EA inode hash validation failed
[  918.768428][T14075] EXT4-fs error (device loop0): ext4_xattr_inode_update_ref:1037: inode #11: comm syz.0.2188: EA inode 11 ref wraparound: ref_count=0 ref_change=-1
[  918.827679][ T5833] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  918.838182][   T27] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  918.872758][T14075] EXT4-fs (loop0): Remounting filesystem read-only
[  918.885539][ T5833] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 3
[  918.915963][T14075] EXT4-fs warning (device loop0): ext4_xattr_inode_dec_ref_all:1231: inode #11: comm syz.0.2188: ea_inode dec ref err=-117
[  918.936793][ T5833] usb 7-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  918.955883][T14075] EXT4-fs warning (device loop0): ext4_evict_inode:272: xattr delete (err -5)
[  918.968793][ T5833] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  918.977486][T14075] EXT4-fs (loop0): 1 orphan inode deleted
[  918.983302][ T5833] usb 7-1: SerialNumber: syz
[  918.991084][T14075] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  919.003628][T14083] loop4: detected capacity change from 0 to 256
[  919.048453][   T27] usb 6-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  919.050401][T14083] exFAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  919.082950][   T27] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  919.145029][   T27] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  919.225298][ T5833] usb 7-1: 0:2 : does not exist
[  919.230602][   T27] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  919.255925][T14083] exFAT-fs (loop4): Medium has reported failures. Some data may be lost.
[  919.320002][T14083] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  919.339354][   T27] usb 6-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  919.370186][ T5833] usb 7-1: USB disconnect, device number 5
[  919.379361][   T27] usb 6-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  919.391640][   T27] usb 6-1: Manufacturer: syz
[  919.423716][   T27] usb 6-1: config 0 descriptor??
[  919.938601][T14096] tmpfs: Unknown parameter 'nr_00000000000000000000'
[  920.613877][   T27] appleir 0003:05AC:8243.0018: unknown main item tag 0x0
[  920.676450][   T27] appleir 0003:05AC:8243.0018: No inputs registered, leaving
[  920.766500][   T27] appleir 0003:05AC:8243.0018: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.5-1/input0
[  920.883847][   T27] usb 6-1: USB disconnect, device number 7
[  922.289527][T14104] fido_id[14104]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/report_descriptor': No such file or directory
[  923.522302][T14125] tipc: Started in network mode
[  923.585918][T14125] tipc: Node identity 0000006416173b000000000000000001, cluster identity 4711
[  923.612818][T13398] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  923.633318][T14125] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[  923.784839][T14129] overlayfs: workdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[  924.317726][T14142] loop5: detected capacity change from 0 to 512
[  924.325162][T14142] EXT4-fs: Ignoring removed orlov option
[  924.345752][T14142] EXT4-fs: Ignoring removed mblk_io_submit option
[  924.420035][T14142] EXT4-fs error (device loop5): ext4_iget_extra_inode:4732: inode #15: comm syz.5.2200: corrupted in-inode xattr: e_value size too large
[  924.509064][T14142] EXT4-fs error (device loop5): ext4_orphan_get:1403: comm syz.5.2200: couldn't read orphan inode 15 (err -117)
[  924.544215][T14142] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  925.689082][ T8829] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  925.923077][ T8829] usb 1-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  925.944454][ T8829] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  925.969554][ T8829] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  925.980799][ T8829] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  926.024752][ T8829] usb 1-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  926.041891][ T8829] usb 1-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  926.052950][ T8829] usb 1-1: Manufacturer: syz
[  926.061249][ T8829] usb 1-1: config 0 descriptor??
[  926.977861][ T8829] appleir 0003:05AC:8243.0019: unknown main item tag 0x0
[  926.993274][ T8829] appleir 0003:05AC:8243.0019: No inputs registered, leaving
[  927.004344][ T8829] appleir 0003:05AC:8243.0019: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.0-1/input0
[  927.236795][ T8829] usb 1-1: USB disconnect, device number 6
[  927.288900][T14176] fido_id[14176]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/report_descriptor': No such file or directory
[  928.038245][T12588] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  928.361531][T14186] loop5: detected capacity change from 0 to 512
[  928.392680][T14186] EXT4-fs: Ignoring removed i_version option
[  928.419699][T14186] EXT4-fs (loop5): orphan cleanup on readonly fs
[  928.441468][T14186] EXT4-fs warning (device loop5): ext4_xattr_inode_get:560: inode #11: comm syz.5.2206: EA inode hash validation failed
[  928.463082][T14186] EXT4-fs error (device loop5): ext4_xattr_inode_update_ref:1037: inode #11: comm syz.5.2206: EA inode 11 ref wraparound: ref_count=0 ref_change=-1
[  928.486484][T14186] EXT4-fs (loop5): Remounting filesystem read-only
[  928.535825][T14186] EXT4-fs warning (device loop5): ext4_xattr_inode_dec_ref_all:1231: inode #11: comm syz.5.2206: ea_inode dec ref err=-117
[  928.599513][T14186] EXT4-fs warning (device loop5): ext4_evict_inode:272: xattr delete (err -5)
[  928.629277][T14186] EXT4-fs (loop5): 1 orphan inode deleted
[  928.652005][T14186] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  930.384262][T14210] syzkaller0: entered promiscuous mode
[  930.400431][T14210] syzkaller0: entered allmulticast mode
[  931.470352][T14218] loop6: detected capacity change from 0 to 512
[  931.529276][T14218] EXT4-fs: Ignoring removed bh option
[  931.580471][T14218] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=2802e018, mo2=0003]
[  931.598678][T14218] System zones: 1-12
[  931.602909][T14218] EXT4-fs (loop6): orphan cleanup on readonly fs
[  931.640339][T14218] EXT4-fs error (device loop6): ext4_free_branches:1030: inode #13: comm syz.6.2216: invalid indirect mapped block 1819239214 (level 1)
[  931.682784][T14218] EXT4-fs error (device loop6): ext4_validate_block_bitmap:439: comm syz.6.2216: bg 0: block 361: padding at end of block bitmap is not set
[  931.701361][T14218] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6653: Corrupt filesystem
[  931.713008][T14218] EXT4-fs error (device loop6): ext4_clear_blocks:883: inode #13: comm syz.6.2216: attempt to clear invalid blocks 33619980 len 1
[  931.730824][T14218] EXT4-fs error (device loop6): ext4_free_branches:1030: inode #13: comm syz.6.2216: invalid indirect mapped block 1819239214 (level 0)
[  931.750809][T14218] EXT4-fs (loop6): 1 truncate cleaned up
[  931.765343][T14218] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  931.844511][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  931.851838][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  931.895978][T14218] EXT4-fs error (device loop6): dx_probe:823: inode #2: comm syz.6.2216: Directory hole found for htree index block 0
[  931.935784][T11636] usb 5-1: new high-speed USB device number 46 using dummy_hcd
[  931.987132][T13147] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  932.044552][T14227] loop0: detected capacity change from 0 to 4096
[  932.097966][T14227] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  932.145276][T14230] netlink: 'syz.6.2221': attribute type 12 has an invalid length.
[  932.160021][T11636] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  932.162148][T12588] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  932.173065][T14230] netlink: 'syz.6.2221': attribute type 29 has an invalid length.
[  932.203264][T14230] netlink: 148 bytes leftover after parsing attributes in process `syz.6.2221'.
[  932.206368][T11636] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  932.234926][T14230] netlink: 39 bytes leftover after parsing attributes in process `syz.6.2221'.
[  932.277192][T11636] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  932.318449][T11636] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  932.367323][T11636] usb 5-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  932.391136][T14232] loop5: detected capacity change from 0 to 128
[  932.394398][T13398] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  932.397546][T11636] usb 5-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  932.397583][T11636] usb 5-1: Manufacturer: syz
[  932.406894][T11636] usb 5-1: config 0 descriptor??
[  932.437373][T14232] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  933.537544][T14241] syzkaller0: entered promiscuous mode
[  933.543092][T14241] syzkaller0: entered allmulticast mode
[  933.549578][T14239] loop0: detected capacity change from 0 to 4096
[  933.589365][T11636] appleir 0003:05AC:8243.001A: unknown main item tag 0x0
[  933.598397][T11636] appleir 0003:05AC:8243.001A: No inputs registered, leaving
[  933.610705][T11636] appleir 0003:05AC:8243.001A: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.4-1/input0
[  933.611758][T14239] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  933.630290][T11636] usb 5-1: USB disconnect, device number 46
[  934.036146][T14245] fido_id[14245]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.4/usb5/report_descriptor': No such file or directory
[  935.529613][T14258] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2228'.
[  935.721889][T11636] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  935.820898][T14261] loop5: detected capacity change from 0 to 512
[  935.821295][T14263] netlink: 'syz.4.2231': attribute type 12 has an invalid length.
[  935.836553][T14261] EXT4-fs: Ignoring removed i_version option
[  935.886164][T14263] netlink: 'syz.4.2231': attribute type 29 has an invalid length.
[  935.904623][T14263] netlink: 148 bytes leftover after parsing attributes in process `syz.4.2231'.
[  935.935521][T14263] netlink: 39 bytes leftover after parsing attributes in process `syz.4.2231'.
[  935.975726][T11636] usb 7-1: Using ep0 maxpacket: 32
[  935.983413][T11636] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  936.018519][T11636] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  936.050936][T11636] usb 7-1: New USB device found, idVendor=13ec, idProduct=0006, bcdDevice= 0.00
[  936.071380][T14261] EXT4-fs (loop5): orphan cleanup on readonly fs
[  936.113371][T14261] EXT4-fs warning (device loop5): ext4_xattr_inode_get:560: inode #11: comm syz.5.2230: EA inode hash validation failed
[  936.131310][T11636] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  936.186510][T11636] usb 7-1: config 0 descriptor??
[  936.197637][T14261] EXT4-fs error (device loop5): ext4_xattr_inode_update_ref:1037: inode #11: comm syz.5.2230: EA inode 11 ref wraparound: ref_count=0 ref_change=-1
[  936.277781][T14261] EXT4-fs (loop5): Remounting filesystem read-only
[  936.299578][T14261] EXT4-fs warning (device loop5): ext4_xattr_inode_dec_ref_all:1231: inode #11: comm syz.5.2230: ea_inode dec ref err=-117
[  936.353795][T14261] EXT4-fs warning (device loop5): ext4_evict_inode:272: xattr delete (err -5)
[  936.392382][T14261] EXT4-fs (loop5): 1 orphan inode deleted
[  936.413325][T14261] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  936.643786][T13398] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  936.743980][T11636] zydacron 0003:13EC:0006.001B: item fetching failed at offset 0/2
[  936.761738][T11636] zydacron 0003:13EC:0006.001B: parse failed
[  936.767937][T11636] zydacron: probe of 0003:13EC:0006.001B failed with error -22
[  937.030110][T14255] loop6: detected capacity change from 0 to 512
[  937.207283][T14255] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  937.273713][T14255] EXT4-fs (loop6): SIPHASH is not a valid default hash value
[  938.852861][T14255] loop6: detected capacity change from 0 to 512
[  938.865372][T10993] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  939.036002][ T5776] Bluetooth: hci1: command 0x0406 tx timeout
[  939.056595][T14255] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  939.075972][T14255] ext4 filesystem being mounted at /49/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  939.344923][   T27] usb 7-1: USB disconnect, device number 6
[  939.358638][T12826] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  939.590841][T12826] usb 1-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  939.615843][T12826] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  939.641349][T12826] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  939.671785][T12826] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  939.774400][T12826] usb 1-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  939.790802][T12826] usb 1-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  939.816235][T12826] usb 1-1: Manufacturer: syz
[  939.835025][T12826] usb 1-1: config 0 descriptor??
[  939.962937][T13147] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  940.124522][T12588] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  940.294807][T12826] appleir 0003:05AC:8243.001C: unknown main item tag 0x0
[  940.326701][T12826] appleir 0003:05AC:8243.001C: No inputs registered, leaving
[  940.346203][T12826] appleir 0003:05AC:8243.001C: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.0-1/input0
[  940.503487][T14295] loop6: detected capacity change from 0 to 512
[  940.572484][T14295] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  940.640917][T14295] ext4 filesystem being mounted at /50/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  940.686003][ T5833] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  940.738773][T11636] usb 1-1: USB disconnect, device number 7
[  940.774920][T14306] netlink: 'syz.4.2240': attribute type 12 has an invalid length.
[  940.789213][T14306] netlink: 'syz.4.2240': attribute type 29 has an invalid length.
[  940.800513][T14306] netlink: 148 bytes leftover after parsing attributes in process `syz.4.2240'.
[  940.896113][ T5833] usb 6-1: Using ep0 maxpacket: 16
[  940.909822][ T5833] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  940.931490][ T5833] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  940.944738][ T5833] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  940.959558][ T5833] usb 6-1: New USB device found, idVendor=056a, idProduct=005e, bcdDevice= 0.00
[  940.961730][T13147] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  940.969172][ T5833] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  941.004592][ T5833] usb 6-1: config 0 descriptor??
[  941.037333][ T5833] usbhid 6-1:0.0: fixing wrong optional hid class descriptors count
[  941.071847][ T5833] usbhid 6-1:0.0: can't add hid device: -22
[  941.088465][ T5833] usbhid: probe of 6-1:0.0 failed with error -22
[  941.185759][T12826] usb 5-1: new high-speed USB device number 47 using dummy_hcd
[  941.241587][   T27] usb 6-1: USB disconnect, device number 8
[  941.385756][T12826] usb 5-1: Using ep0 maxpacket: 32
[  941.392387][T12826] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  941.404557][T12826] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  941.414390][T12826] usb 5-1: New USB device found, idVendor=13ec, idProduct=0006, bcdDevice= 0.00
[  941.423523][T12826] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  941.435408][T12826] usb 5-1: config 0 descriptor??
[  942.514473][T14308] loop4: detected capacity change from 0 to 512
[  942.604573][T14308] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  942.675305][T14329] loop5: detected capacity change from 0 to 512
[  942.691153][T12826] zydacron 0003:13EC:0006.001D: item fetching failed at offset 0/2
[  942.712405][T12826] zydacron 0003:13EC:0006.001D: parse failed
[  942.721310][T12826] zydacron: probe of 0003:13EC:0006.001D failed with error -22
[  942.726288][T14308] EXT4-fs (loop4): SIPHASH is not a valid default hash value
[  942.747360][T14329] EXT4-fs: Ignoring removed i_version option
[  942.812332][T14333] netlink: 'syz.6.2249': attribute type 12 has an invalid length.
[  942.821914][T14333] netlink: 'syz.6.2249': attribute type 29 has an invalid length.
[  942.830203][T14333] netlink: 148 bytes leftover after parsing attributes in process `syz.6.2249'.
[  942.881137][T14329] EXT4-fs (loop5): orphan cleanup on readonly fs
[  942.896342][ T5833] usb 5-1: USB disconnect, device number 47
[  942.910987][T14336] loop6: detected capacity change from 0 to 256
[  942.922952][T14329] EXT4-fs warning (device loop5): ext4_xattr_inode_get:560: inode #11: comm syz.5.2247: EA inode hash validation failed
[  942.926721][T14336] exFAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  942.951969][T14336] exFAT-fs (loop6): Medium has reported failures. Some data may be lost.
[  942.976270][T14336] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  943.128460][T14329] EXT4-fs error (device loop5): ext4_xattr_inode_update_ref:1037: inode #11: comm syz.5.2247: EA inode 11 ref wraparound: ref_count=0 ref_change=-1
[  943.286263][T14329] EXT4-fs (loop5): Remounting filesystem read-only
[  943.306048][T14329] EXT4-fs warning (device loop5): ext4_xattr_inode_dec_ref_all:1231: inode #11: comm syz.5.2247: ea_inode dec ref err=-117
[  943.361734][T14340] tmpfs: Unknown parameter 'nr_00000000000000000000'
[  944.345851][T14329] EXT4-fs warning (device loop5): ext4_evict_inode:272: xattr delete (err -5)
[  944.355145][T14329] EXT4-fs (loop5): 1 orphan inode deleted
[  944.487144][T14329] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  945.055388][T14355] loop6: detected capacity change from 0 to 512
[  945.080700][T14355] EXT4-fs: Ignoring removed bh option
[  945.112450][T14355] EXT4-fs: Mount option(s) incompatible with ext3
[  945.393300][ T5833] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  945.550019][T14357] loop6: detected capacity change from 0 to 256
[  945.613353][ T5833] usb 1-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  945.874762][ T5833] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  946.053528][ T5833] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  946.134770][ T5833] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  946.242080][ T5833] usb 1-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  946.314320][ T5833] usb 1-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  946.365747][ T5833] usb 1-1: Manufacturer: syz
[  946.460127][ T5833] usb 1-1: config 0 descriptor??
[  946.986970][ T5833] appleir 0003:05AC:8243.001E: unknown main item tag 0x0
[  947.043452][ T5833] appleir 0003:05AC:8243.001E: No inputs registered, leaving
[  947.104374][ T5833] appleir 0003:05AC:8243.001E: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.0-1/input0
[  947.492913][   T27] usb 1-1: USB disconnect, device number 8
[  947.678592][T14365] fido_id[14365]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/report_descriptor': No such file or directory
[  947.722957][T12588] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  948.506888][T14371] netlink: 'syz.5.2258': attribute type 12 has an invalid length.
[  948.712019][T14371] netlink: 'syz.5.2258': attribute type 29 has an invalid length.
[  948.750855][T14371] netlink: 148 bytes leftover after parsing attributes in process `syz.5.2258'.
[  950.566767][T14393] vivid-009: kernel_thread() failed
[  950.700888][ T5774] Bluetooth: hci4: Unknown advertising packet type: 0x73
[  950.700935][ T5774] Bluetooth: hci4: Malformed LE Event: 0x0d
[  950.967147][T14399] loop0: detected capacity change from 0 to 512
[  950.990995][T14399] EXT4-fs: Ignoring removed i_version option
[  951.264169][T14399] EXT4-fs (loop0): orphan cleanup on readonly fs
[  951.293799][T14399] EXT4-fs warning (device loop0): ext4_xattr_inode_get:560: inode #11: comm syz.0.2266: EA inode hash validation failed
[  951.322348][T14399] EXT4-fs error (device loop0): ext4_xattr_inode_update_ref:1037: inode #11: comm syz.0.2266: EA inode 11 ref wraparound: ref_count=0 ref_change=-1
[  951.821208][T14399] EXT4-fs (loop0): Remounting filesystem read-only
[  951.850904][T14399] EXT4-fs warning (device loop0): ext4_xattr_inode_dec_ref_all:1231: inode #11: comm syz.0.2266: ea_inode dec ref err=-117
[  951.975023][T14399] EXT4-fs warning (device loop0): ext4_evict_inode:272: xattr delete (err -5)
[  951.987899][T14399] EXT4-fs (loop0): 1 orphan inode deleted
[  951.995179][T14399] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  952.693965][T14422] loop4: detected capacity change from 0 to 512
[  952.719217][T14422] EXT4-fs: Ignoring removed bh option
[  952.761950][T14422] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  952.856364][T12826] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  952.993377][T14422] EXT4-fs (loop4): 1 truncate cleaned up
[  953.000712][T14422] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  953.783867][ T6393] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  953.892381][T12826] usb 6-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  953.907443][T12826] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  953.919844][T12826] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  953.937571][T12826] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  953.952519][T12826] usb 6-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  953.969881][T12826] usb 6-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  954.000774][T12826] usb 6-1: Manufacturer: syz
[  954.023850][T12826] usb 6-1: config 0 descriptor??
[  954.180612][T14439] loop6: detected capacity change from 0 to 4096
[  954.260524][T14439] EXT4-fs (loop6): Test dummy encryption mode enabled
[  954.653571][T14439] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  955.477389][T13398] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  955.507651][T12826] appleir 0003:05AC:8243.001F: unknown main item tag 0x0
[  955.517271][T12826] appleir 0003:05AC:8243.001F: No inputs registered, leaving
[  955.999631][T12826] appleir 0003:05AC:8243.001F: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.5-1/input0
[  956.682471][T14453] loop5: detected capacity change from 0 to 1024
[  957.519576][T12826] usb 6-1: USB disconnect, device number 9
[  957.804517][T14463] fido_id[14463]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/report_descriptor': No such file or directory
[  957.934910][T13147] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  958.034124][T14472] loop0: detected capacity change from 0 to 512
[  958.067407][ T5809] usb 5-1: new high-speed USB device number 48 using dummy_hcd
[  959.359490][T14479] loop5: detected capacity change from 0 to 512
[  959.404336][ T5809] usb 5-1: Using ep0 maxpacket: 32
[  959.430895][ T5809] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  959.442644][T14479] EXT4-fs: Ignoring removed i_version option
[  959.450461][ T5809] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  959.463750][ T5809] usb 5-1: New USB device found, idVendor=13ec, idProduct=0006, bcdDevice= 0.00
[  959.479349][ T5809] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  959.515231][ T5809] usb 5-1: config 0 descriptor??
[  960.152679][T14479] EXT4-fs (loop5): orphan cleanup on readonly fs
[  960.211524][T14479] EXT4-fs warning (device loop5): ext4_xattr_inode_get:560: inode #11: comm syz.5.2285: EA inode hash validation failed
[  960.265469][T14479] EXT4-fs error (device loop5): ext4_xattr_inode_update_ref:1037: inode #11: comm syz.5.2285: EA inode 11 ref wraparound: ref_count=0 ref_change=-1
[  960.281099][T14479] EXT4-fs (loop5): Remounting filesystem read-only
[  960.288953][T14479] EXT4-fs warning (device loop5): ext4_xattr_inode_dec_ref_all:1231: inode #11: comm syz.5.2285: ea_inode dec ref err=-117
[  960.303274][T14479] EXT4-fs warning (device loop5): ext4_evict_inode:272: xattr delete (err -5)
[  960.314818][T14479] EXT4-fs (loop5): 1 orphan inode deleted
[  960.327443][T14479] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  960.374242][ T5809] zydacron 0003:13EC:0006.0020: item fetching failed at offset 0/2
[  960.399936][ T5809] zydacron 0003:13EC:0006.0020: parse failed
[  960.414665][ T5809] zydacron: probe of 0003:13EC:0006.0020 failed with error -22
[  960.580914][T12826] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  960.597076][T14491] loop6: detected capacity change from 0 to 512
[  960.629289][T14462] loop4: detected capacity change from 0 to 512
[  960.633187][T14491] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  960.647358][T14462] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  960.685691][T14462] EXT4-fs (loop4): SIPHASH is not a valid default hash value
[  960.711653][T14491] ext4 filesystem being mounted at /71/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  960.787854][T12826] usb 1-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  960.804569][T10993] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  960.806391][T12826] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  960.821328][ T5809] usb 5-1: USB disconnect, device number 48
[  960.834050][T12826] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  960.877592][T12826] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  960.907354][T12826] usb 1-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  960.925844][T12826] usb 1-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  960.944281][T12826] usb 1-1: Manufacturer: syz
[  960.951837][T12826] usb 1-1: config 0 descriptor??
[  961.388103][T12826] appleir 0003:05AC:8243.0021: unknown main item tag 0x0
[  961.420147][T12826] appleir 0003:05AC:8243.0021: No inputs registered, leaving
[  961.450622][T13147] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  961.460988][T12826] appleir 0003:05AC:8243.0021: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.0-1/input0
[  961.473769][T12588] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  962.816731][   T28] audit: type=1326 audit(2000000085.500:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14499 comm="syz.5.2291" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f81d379c629 code=0x0
[  963.758931][T14511] loop6: detected capacity change from 0 to 40427
[  963.890193][T14511] F2FS-fs (loop6): build fault injection attr: rate: 771, type: 0x7ffff
[  963.903567][T14511] F2FS-fs (loop6): invalid crc value
[  963.957677][T14511] F2FS-fs (loop6): Found nat_bits in checkpoint
[  964.113010][T14511] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  964.924600][T11636] usb 1-1: USB disconnect, device number 9
[  966.350988][T14524] loop5: detected capacity change from 0 to 512
[  966.371183][T14524] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  966.754056][T14524] EXT4-fs (loop5): orphan cleanup on readonly fs
[  967.604062][T14524] EXT4-fs warning (device loop5): ext4_enable_quotas:7184: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix.
[  967.615893][T13147] syz-executor: attempt to access beyond end of device
[  967.615893][T13147] loop6: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  967.666294][T13147] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[  967.770725][T14524] EXT4-fs (loop5): Cannot turn on quotas: error -22
[  967.796227][T14524] EXT4-fs error (device loop5): ext4_ext_check_inode:520: inode #13: comm syz.5.2297: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  967.850924][T14524] EXT4-fs error (device loop5): ext4_orphan_get:1403: comm syz.5.2297: couldn't read orphan inode 13 (err -117)
[  967.865288][T14524] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  968.280400][ T5774] Bluetooth: hci2: Unknown advertising packet type: 0x73
[  968.281319][ T5774] Bluetooth: hci2: Malformed LE Event: 0x0d
[  968.610353][T14524] EXT4-fs (loop5): warning: mounting fs with errors, running e2fsck is recommended
[  968.731062][T14524] EXT4-fs warning (device loop5): ext4_enable_quotas:7184: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix.
[  968.891243][T12588] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  969.155934][ T5809] usb 5-1: new high-speed USB device number 49 using dummy_hcd
[  969.346289][ T5809] usb 5-1: Using ep0 maxpacket: 32
[  969.492788][ T5809] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  969.568783][ T5809] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  969.638871][ T5809] usb 5-1: New USB device found, idVendor=13ec, idProduct=0006, bcdDevice= 0.00
[  969.795388][ T5809] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  969.837797][ T5809] usb 5-1: config 0 descriptor??
[  969.983640][T14549] loop0: detected capacity change from 0 to 512
[  969.997717][T14549] EXT4-fs: Ignoring removed i_version option
[  970.035170][T14549] EXT4-fs error (device loop0): __ext4_iget:5071: inode #11: block 1: comm syz.0.2302: invalid block
[  970.055073][T14549] EXT4-fs error (device loop0): ext4_orphan_get:1403: comm syz.0.2302: couldn't read orphan inode 11 (err -117)
[  970.070695][T14549] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  970.085946][    T9] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  970.095096][T11636] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  970.148979][T13398] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  970.265196][ T5809] zydacron 0003:13EC:0006.0022: item fetching failed at offset 0/2
[  970.279259][ T5809] zydacron 0003:13EC:0006.0022: parse failed
[  970.285400][ T5809] zydacron: probe of 0003:13EC:0006.0022 failed with error -22
[  970.285809][T11636] usb 7-1: Using ep0 maxpacket: 32
[  970.314927][    T9] usb 6-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  970.329636][    T9] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  970.341453][    T9] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  970.351954][    T9] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  970.370215][T11636] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  970.380944][    T9] usb 6-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  970.390555][    T9] usb 6-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  970.399709][    T9] usb 6-1: Manufacturer: syz
[  970.406343][T11636] usb 7-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80
[  970.420612][T11636] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  970.430254][    T9] usb 6-1: config 0 descriptor??
[  970.435512][T11636] usb 7-1: Product: syz
[  970.444859][T11636] usb 7-1: Manufacturer: syz
[  970.449771][T11636] usb 7-1: SerialNumber: syz
[  970.484753][T11636] usb 7-1: config 0 descriptor??
[  970.495833][T14535] loop4: detected capacity change from 0 to 512
[  970.499931][T11636] usb 7-1: bad CDC descriptors
[  970.526869][T11636] usb 7-1: unsupported MDLM descriptors
[  970.538198][T14535] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  970.575413][T14535] EXT4-fs (loop4): SIPHASH is not a valid default hash value
[  970.630963][ T5809] usb 5-1: USB disconnect, device number 49
[  970.786209][T11636] usb 7-1: USB disconnect, device number 7
[  970.851701][    T9] appleir 0003:05AC:8243.0023: unknown main item tag 0x0
[  970.865346][    T9] appleir 0003:05AC:8243.0023: No inputs registered, leaving
[  970.918765][    T9] appleir 0003:05AC:8243.0023: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.5-1/input0
[  971.266077][T11636] usb 6-1: USB disconnect, device number 10
[  971.468636][T14563] loop4: detected capacity change from 0 to 128
[  972.715220][T14574] Invalid argument reading file caps for ./file0
[  974.237756][T14596] loop6: detected capacity change from 0 to 128
[  974.268454][T14596] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  974.292391][T14596] ext4 filesystem being mounted at /79/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  974.469407][T13147] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  974.623120][T14599] loop6: detected capacity change from 0 to 512
[  974.722279][T14599] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  974.761141][T14599] ext4 filesystem being mounted at /80/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  974.865157][T13147] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  975.184244][T14603] loop4: detected capacity change from 0 to 256
[  975.204451][T14603] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  975.272569][T14603] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  976.805802][T14621] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2323'.
[  976.820243][T12826] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  976.994641][T14625] vlan2: entered allmulticast mode
[  977.015831][T14625] syz_tun: entered allmulticast mode
[  977.027451][T12826] usb 6-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  977.055212][T12826] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  977.067307][T12826] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  977.087520][T12826] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  977.117235][T12826] usb 6-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  977.130917][T12826] usb 6-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  977.161498][T12826] usb 6-1: Manufacturer: syz
[  977.193902][T12826] usb 6-1: config 0 descriptor??
[  977.260072][T14631] loop4: detected capacity change from 0 to 4096
[  977.307520][T14631] EXT4-fs (loop4): Test dummy encryption mode enabled
[  977.342881][T14631] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  977.611726][T12826] appleir 0003:05AC:8243.0024: unknown main item tag 0x0
[  977.649233][T12826] appleir 0003:05AC:8243.0024: No inputs registered, leaving
[  977.690661][ T2937] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  977.694331][T12826] appleir 0003:05AC:8243.0024: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.5-1/input0
[  977.867580][ T6393] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  977.870623][ T2937] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  978.040569][ T2937] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  978.127493][T12826] usb 6-1: USB disconnect, device number 11
[  978.295922][ T2937] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  979.241135][T11636] usb 5-1: new high-speed USB device number 50 using dummy_hcd
[  979.406891][ T2937] tipc: Left network mode
[  979.426679][T11636] usb 5-1: Using ep0 maxpacket: 32
[  979.439701][T11636] usb 5-1: config 0 has an invalid interface number: 61 but max is 1
[  979.458424][T11636] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 2
[  979.486414][T11636] usb 5-1: config 0 has no interface number 0
[  979.516229][ T5776] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  979.530330][ T5776] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  979.539936][ T5776] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  979.551168][ T5776] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  979.576848][ T5776] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  979.586796][T11636] usb 5-1: New USB device found, idVendor=2058, idProduct=1005, bcdDevice=b5.f6
[  979.596081][ T5776] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  979.603259][T11636] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  979.613552][T11636] usb 5-1: Product: syz
[  979.618205][T11636] usb 5-1: Manufacturer: syz
[  979.622950][T11636] usb 5-1: SerialNumber: syz
[  979.631163][T11636] usb 5-1: config 0 descriptor??
[  979.759205][T11636] viperboard 5-1:0.61: version 0.00 found at bus 005 address 050
[  979.798535][T11636] viperboard-i2c viperboard-i2c.2.auto: failure setting i2c_bus_freq to 100
[  979.821580][T11636] viperboard-i2c: probe of viperboard-i2c.2.auto failed with error -5
[  980.098786][T14662] loop5: detected capacity change from 0 to 256
[  980.835722][ T5833] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  980.986083][T14651] chnl_net:caif_netlink_parms(): no params data found
[  981.018008][ T5833] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  981.056472][ T5833] usb 1-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  981.094086][ T5833] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  981.117944][ T5833] usb 1-1: config 0 descriptor??
[  981.294859][ T5809] usb 5-1: USB disconnect, device number 50
[  981.389192][T14687] loop4: detected capacity change from 0 to 4096
[  981.412041][T14687] EXT4-fs (loop4): Test dummy encryption mode enabled
[  981.535042][T14687] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  981.621809][ T5833] keytouch 0003:0926:3333.0025: fixing up Keytouch IEC report descriptor
[  981.676118][ T5774] Bluetooth: hci0: command tx timeout
[  981.685209][ T5833] input: HID 0926:3333 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:0926:3333.0025/input/input19
[  981.937261][ T5833] keytouch 0003:0926:3333.0025: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.0-1/input0
[  981.967129][ T2937] hsr_slave_0: left promiscuous mode
[  982.015054][ T2937] hsr_slave_1: left promiscuous mode
[  982.061989][ T2937] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  982.076289][   T27] usb 1-1: USB disconnect, device number 10
[  982.108783][ T2937] batman_adv: batadv0: Removing interface: batadv_slave_0
[  982.207609][T14695] fido_id[14695]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/1-1/report_descriptor': No such file or directory
[  982.220095][ T2937] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  982.264817][ T2937] batman_adv: batadv0: Removing interface: batadv_slave_1
[  982.321258][ T2937] bridge_slave_1: left allmulticast mode
[  982.350849][ T2937] bridge_slave_1: left promiscuous mode
[  982.365933][ T2937] bridge0: port 2(bridge_slave_1) entered disabled state
[  982.396435][ T2937] bridge_slave_0: left allmulticast mode
[  982.402143][ T2937] bridge_slave_0: left promiscuous mode
[  982.415228][ T6393] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  982.426858][ T2937] bridge0: port 1(bridge_slave_0) entered disabled state
[  982.481567][ T2937] veth1_macvtap: left promiscuous mode
[  982.511762][ T2937] veth0_macvtap: left promiscuous mode
[  982.521305][ T2937] veth1_vlan: left promiscuous mode
[  982.547627][ T2937] veth0_vlan: left promiscuous mode
[  983.740282][ T5810] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  983.756684][ T5774] Bluetooth: hci0: command tx timeout
[  983.850654][T11636] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[  983.962058][ T5810] usb 1-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  983.973048][ T5810] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  983.984555][ T5810] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  983.994351][ T5810] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  984.009908][ T5810] usb 1-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  984.019245][ T5810] usb 1-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  984.027634][ T5810] usb 1-1: Manufacturer: syz
[  984.050909][ T5810] usb 1-1: config 0 descriptor??
[  984.057702][T11636] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  984.069032][T11636] usb 6-1: config 1 interface 1 altsetting 1 bulk endpoint 0x83 has invalid maxpacket 16
[  984.090971][T11636] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  984.100278][T11636] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  984.108361][T11636] usb 6-1: Product: syz
[  984.112693][T11636] usb 6-1: Manufacturer: syz
[  984.118009][T11636] usb 6-1: SerialNumber: syz
[  984.394555][T14709] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22
[  984.407921][ T2937] team0 (unregistering): Port device team_slave_1 removed
[  984.471507][ T2937] team0 (unregistering): Port device team_slave_0 removed
[  984.510270][ T5810] appleir 0003:05AC:8243.0026: unknown main item tag 0x0
[  984.532386][ T5810] appleir 0003:05AC:8243.0026: No inputs registered, leaving
[  984.542751][ T2937] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  984.547665][ T5810] appleir 0003:05AC:8243.0026: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.0-1/input0
[  984.658273][ T2937] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  985.045176][T14709] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22
[  985.083924][ T5810] usb 1-1: USB disconnect, device number 11
[  985.240419][ T2937] bond0 (unregistering): Released all slaves
[  985.262179][T11636] cdc_ncm 6-1:1.0: bind() failure
[  985.280162][T11636] cdc_ncm: probe of 6-1:1.1 failed with error -71
[  985.288769][T11636] cdc_mbim: probe of 6-1:1.1 failed with error -71
[  985.296941][T11636] usbtest: probe of 6-1:1.1 failed with error -71
[  985.321804][T11636] usb 6-1: USB disconnect, device number 12
[  985.421677][T14651] bridge0: port 1(bridge_slave_0) entered blocking state
[  985.432888][T14651] bridge0: port 1(bridge_slave_0) entered disabled state
[  985.441311][T14651] bridge_slave_0: entered allmulticast mode
[  985.450808][T14651] bridge_slave_0: entered promiscuous mode
[  985.461637][T14651] bridge0: port 2(bridge_slave_1) entered blocking state
[  985.474119][T14651] bridge0: port 2(bridge_slave_1) entered disabled state
[  985.483734][T14651] bridge_slave_1: entered allmulticast mode
[  985.493716][T14651] bridge_slave_1: entered promiscuous mode
[  985.653226][T14651] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  985.680924][T14651] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  985.717632][T14720] loop4: detected capacity change from 0 to 128
[  985.730522][T14720] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  985.748820][T14720] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  985.769815][T14651] team0: Port device team_slave_0 added
[  985.792416][T14651] team0: Port device team_slave_1 added
[  985.853019][ T5774] Bluetooth: hci0: command tx timeout
[  985.883960][T14651] batman_adv: batadv0: Adding interface: batadv_slave_0
[  985.912008][T14651] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  985.937939][    C1] vkms_vblank_simulate: vblank timer overrun
[  985.998653][   T49] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  986.017227][T14651] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  986.069145][T14651] batman_adv: batadv0: Adding interface: batadv_slave_1
[  986.095688][T14651] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  986.121616][    C1] vkms_vblank_simulate: vblank timer overrun
[  986.190217][T14651] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  986.375228][T14651] hsr_slave_0: entered promiscuous mode
[  986.406413][T11636] usb 5-1: new high-speed USB device number 51 using dummy_hcd
[  986.440013][T14651] hsr_slave_1: entered promiscuous mode
[  986.457293][T14651] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  986.464945][T14651] Cannot create hsr debugfs directory
[  986.498289][T14738] loop5: detected capacity change from 0 to 512
[  986.600860][T14738] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  986.618607][T11636] usb 5-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[  986.646146][T11636] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  986.667838][T11636] usb 5-1: config 0 descriptor??
[  986.672232][T14738] ext4 filesystem being mounted at /89/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  986.726283][T12826] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  986.945780][T12826] usb 1-1: Using ep0 maxpacket: 32
[  986.961862][T12826] usb 1-1: config 0 has an invalid interface number: 61 but max is 1
[  986.970420][T12826] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 2
[  986.989572][T12826] usb 1-1: config 0 has no interface number 0
[  987.009458][T12826] usb 1-1: New USB device found, idVendor=2058, idProduct=1005, bcdDevice=b5.f6
[  987.026651][T12826] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  987.036414][T12826] usb 1-1: Product: syz
[  987.040715][T12826] usb 1-1: Manufacturer: syz
[  987.045826][T12826] usb 1-1: SerialNumber: syz
[  987.056346][T12826] usb 1-1: config 0 descriptor??
[  987.082097][T14651] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  987.095223][T14651] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  987.114022][T14651] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  987.128473][T14651] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  987.177660][T12826] viperboard 1-1:0.61: version 0.00 found at bus 001 address 012
[  987.219867][T12826] viperboard-i2c viperboard-i2c.2.auto: failure setting i2c_bus_freq to 100
[  987.241698][T12826] viperboard-i2c: probe of viperboard-i2c.2.auto failed with error -5
[  987.290705][T14651] 8021q: adding VLAN 0 to HW filter on device bond0
[  987.324026][T14651] 8021q: adding VLAN 0 to HW filter on device team0
[  987.380124][ T1109] bridge0: port 1(bridge_slave_0) entered blocking state
[  987.387435][ T1109] bridge0: port 1(bridge_slave_0) entered forwarding state
[  987.465011][ T1109] bridge0: port 2(bridge_slave_1) entered blocking state
[  987.472273][ T1109] bridge0: port 2(bridge_slave_1) entered forwarding state
[  987.560192][T12588] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  987.918697][ T5774] Bluetooth: hci0: command tx timeout
[  988.274925][T14651] 8021q: adding VLAN 0 to HW filter on device batadv0
[  988.327020][T11636] usb 5-1: Cannot set autoneg
[  988.346941][T11636] MOSCHIP usb-ethernet driver: probe of 5-1:0.0 failed with error -71
[  988.390840][T11636] usb 5-1: USB disconnect, device number 51
[  989.082283][T14651] veth0_vlan: entered promiscuous mode
[  989.131729][T14651] veth1_vlan: entered promiscuous mode
[  989.164272][T14780] loop4: detected capacity change from 0 to 4096
[  989.212027][T14780] EXT4-fs (loop4): Test dummy encryption mode enabled
[  989.250198][T14651] veth0_macvtap: entered promiscuous mode
[  989.279582][T14780] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  989.322943][T14651] veth1_macvtap: entered promiscuous mode
[  989.513254][T14651] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  989.517199][    T8] usb 1-1: USB disconnect, device number 12
[  989.584586][T14651] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  989.598753][T14651] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  989.611087][T14651] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  989.645991][T14651] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  989.680849][T14651] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  989.687778][T14794] loop0: detected capacity change from 0 to 512
[  989.720174][T14794] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  989.730779][ T6393] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  989.742113][T14651] batman_adv: batadv0: Interface activated: batadv_slave_0
[  989.785370][T14794] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a80ec01c, mo2=0003]
[  989.807816][T14651] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  989.869346][T14794] System zones: 1-2, 4-12, 8-8
[  989.874477][T14794] EXT4-fs error (device loop0): ext4_orphan_get:1398: inode #15: comm syz.0.2350: iget: bad i_size value: 38620345925642
[  989.896855][T14651] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  989.958042][T14794] EXT4-fs error (device loop0): ext4_orphan_get:1403: comm syz.0.2350: couldn't read orphan inode 15 (err -117)
[  989.971060][T14651] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  990.021968][T14651] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  990.035184][T14794] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  990.081365][T14651] batman_adv: batadv0: Interface activated: batadv_slave_1
[  990.143595][T14651] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  990.171819][T14651] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  990.195722][T14651] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  990.204551][T14651] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  990.478422][  T993] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  990.494486][  T993] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  990.535323][ T2937] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  990.572351][ T2937] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  990.616566][   T27] usb 1-1: new full-speed USB device number 13 using dummy_hcd
[  990.694407][    T8] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[  990.827774][   T27] usb 1-1: config index 0 descriptor too short (expected 12324, got 36)
[  990.847232][   T27] usb 1-1: config 55 has too many interfaces: 49, using maximum allowed: 32
[  990.867671][   T27] usb 1-1: config 55 has an invalid descriptor of length 55, skipping remainder of the config
[  990.885796][   T27] usb 1-1: config 55 has 0 interfaces, different from the descriptor's value: 49
[  990.898200][    T8] usb 6-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  990.914464][   T27] usb 1-1: New USB device found, idVendor=1189, idProduct=0893, bcdDevice= 0.00
[  990.923966][    T8] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  990.933879][   T27] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  990.954192][   T27] usb 1-1: Product: syz
[  990.958805][    T8] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  990.959303][   T27] usb 1-1: Manufacturer: syz
[  990.982848][    T8] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  990.983439][   T27] usb 1-1: SerialNumber: syz
[  991.007227][    T8] usb 6-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  991.027184][    T8] usb 6-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  991.045106][    T8] usb 6-1: Manufacturer: syz
[  991.053316][    T8] usb 6-1: config 0 descriptor??
[  991.480952][    T8] appleir 0003:05AC:8243.0027: unknown main item tag 0x0
[  991.500384][    T8] appleir 0003:05AC:8243.0027: No inputs registered, leaving
[  991.515187][    T8] appleir 0003:05AC:8243.0027: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.5-1/input0
[  991.888130][    T8] usb 6-1: USB disconnect, device number 13
[  992.410351][  T993] EXT4-fs error (device loop0): ext4_validate_block_bitmap:430: comm kworker/u4:5: bg 0: block 5: invalid block bitmap
[  992.433823][  T993] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  992.454433][  T993] EXT4-fs (loop0): This should not happen!! Data will be lost
[  992.454433][  T993] 
[  992.464984][  T993] EXT4-fs (loop0): Total free blocks count 0
[  992.474451][  T993] EXT4-fs (loop0): Free/Dirty block details
[  992.481738][  T993] EXT4-fs (loop0): free_blocks=0
[  992.487297][  T993] EXT4-fs (loop0): dirty_blocks=16024
[  992.492811][  T993] EXT4-fs (loop0): Block reservation details
[  992.499542][  T993] EXT4-fs (loop0): i_reserved_data_blocks=16024
[  992.605378][  T993] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 2052 with max blocks 2048 with error 28
[  992.757694][   T27] usb 1-1: USB disconnect, device number 13
[  993.037680][T14849] loop5: detected capacity change from 0 to 4096
[  993.045132][T14849] EXT4-fs: Ignoring removed mblk_io_submit option
[  993.075695][T14849] EXT4-fs: Ignoring removed mblk_io_submit option
[  993.128187][T14849] EXT4-fs (loop5): Test dummy encryption mode enabled
[  993.164434][T14849] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  993.285153][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  993.292599][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  993.470029][T14859] loop4: detected capacity change from 0 to 256
[  993.497186][T14859] FAT-fs (loop4): "posix" option is obsolete, not supported now
[  993.990546][T12588] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  994.104616][T12826] usb 5-1: new high-speed USB device number 52 using dummy_hcd
[  994.329075][T12826] usb 5-1: Using ep0 maxpacket: 32
[  994.349589][T12826] usb 5-1: config 0 has an invalid interface number: 61 but max is 1
[  994.365652][T12826] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 2
[  994.378619][T14878] loop5: detected capacity change from 0 to 4096
[  994.385384][T12826] usb 5-1: config 0 has no interface number 0
[  994.428024][T14878] EXT4-fs (loop5): Test dummy encryption mode enabled
[  994.461538][T12826] usb 5-1: New USB device found, idVendor=2058, idProduct=1005, bcdDevice=b5.f6
[  994.482106][T12826] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  994.489090][T14878] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  994.514129][T12826] usb 5-1: Product: syz
[  994.533209][T12826] usb 5-1: Manufacturer: syz
[  994.543176][T12826] usb 5-1: SerialNumber: syz
[  994.556585][T12826] usb 5-1: config 0 descriptor??
[  994.663870][T14884] loop7: detected capacity change from 0 to 1024
[  994.676297][T12826] viperboard 5-1:0.61: version 0.00 found at bus 005 address 052
[  994.705072][T14884] EXT4-fs: Ignoring removed nomblk_io_submit option
[  994.713978][T12826] viperboard-i2c viperboard-i2c.2.auto: failure setting i2c_bus_freq to 100
[  994.757679][T12826] viperboard-i2c: probe of viperboard-i2c.2.auto failed with error -5
[  994.788757][T14884] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  994.867366][T14884] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  994.929402][T14884] System zones: 0-1, 3-36
[  995.021582][T14884] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  995.044279][ T5809] usb 5-1: USB disconnect, device number 52
[  995.307776][T14651] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  995.397203][T12588] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  995.542282][T14894] loop7: detected capacity change from 0 to 1024
[  995.558162][T14894] EXT4-fs: Ignoring removed orlov option
[  995.601422][T14894] EXT4-fs: inline encryption not supported
[  995.632372][T14894] EXT4-fs (loop7): ext4_check_descriptors: Checksum for group 0 failed (52289!=20869)
[  995.704247][T14894] EXT4-fs (loop7): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  995.753139][T14894] EXT4-fs (loop7): invalid journal inode
[  995.795791][T14894] EXT4-fs (loop7): can't get journal size
[  995.818522][T14894] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  995.949093][T14904] loop0: detected capacity change from 0 to 1024
[  995.959768][T14904] EXT4-fs: Ignoring removed bh option
[  995.965293][T14904] EXT4-fs: Ignoring removed oldalloc option
[  995.984104][T14904] EXT4-fs: Ignoring removed nobh option
[  995.991781][T14904] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  996.019412][T14651] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  996.053278][T14904] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  996.076710][T12826] usb 6-1: new high-speed USB device number 14 using dummy_hcd
[  996.113314][ T5809] usb 5-1: new high-speed USB device number 53 using dummy_hcd
[  996.172184][T14904] EXT4-fs (loop0): shut down requested (1)
[  996.257842][T14904] overlayfs: failed to create directory ./bus/work (errno: 5); mounting read-only
[  996.270180][T14904] overlayfs: failed to get uuid (/file0, err=-5); falling back to uuid=null.
[  996.300292][T12826] usb 6-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  996.311567][T12826] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  996.369104][T12826] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  996.385319][T12826] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  996.405948][T12826] usb 6-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  996.415529][T12826] usb 6-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  996.788629][ T5809] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  996.927549][ T5809] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  997.127317][ T5809] usb 5-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  997.160533][ T5809] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  997.195177][ T5809] usb 5-1: SerialNumber: syz
[  997.245724][T12826] usb 6-1: Manufacturer: syz
[  997.259457][T12826] usb 6-1: config 0 descriptor??
[  997.484193][ T5809] usb 5-1: 0:2 : does not exist
[  997.539000][ T5809] usb 5-1: USB disconnect, device number 53
[  997.564269][T13398] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  997.729515][T12826] appleir 0003:05AC:8243.0028: unknown main item tag 0x0
[  997.745052][ T1109] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  997.766823][T12826] appleir 0003:05AC:8243.0028: No inputs registered, leaving
[  997.814483][T12826] appleir 0003:05AC:8243.0028: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.5-1/input0
[  998.361116][ T9941] udevd[9941]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  998.617684][ T1109] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  998.811374][ T5809] usb 6-1: USB disconnect, device number 14
[  998.859146][T14929] loop7: detected capacity change from 0 to 128
[  998.919716][ T1109] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  999.072044][T14930] fido_id[14930]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/report_descriptor': No such file or directory
[  999.093806][T14929] syz.7.2372: attempt to access beyond end of device
[  999.093806][T14929] loop7: rw=2049, sector=138, nr_sectors = 96 limit=128
[  999.154839][ T1109] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  999.216738][T14929] syz.7.2372: attempt to access beyond end of device
[  999.216738][T14929] loop7: rw=2049, sector=138, nr_sectors = 2 limit=128
[  999.967214][ T5776] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  999.985402][ T5776] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  999.994190][ T5776] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1000.003266][ T5776] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1000.018366][ T5776] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[ 1000.030600][ T5776] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1000.407373][T14953] syzkaller0: entered promiscuous mode
[ 1000.427587][T14953] syzkaller0: entered allmulticast mode
[ 1001.055483][T14964] loop4: detected capacity change from 0 to 4096
[ 1001.160501][T14964] EXT4-fs (loop4): Test dummy encryption mode enabled
[ 1001.675503][T14964] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1002.087815][ T5774] Bluetooth: hci2: command tx timeout
[ 1002.154684][ T6393] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1002.201110][T14951] loop5: detected capacity change from 0 to 40427
[ 1002.283079][T14951] F2FS-fs (loop5): invalid crc value
[ 1002.322361][T14951] F2FS-fs (loop5): Found nat_bits in checkpoint
[ 1002.413633][T14951] F2FS-fs (loop5): Start checkpoint disabled!
[ 1002.425063][T14951] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6
[ 1002.460216][T14951] ------------[ cut here ]------------
[ 1002.466553][T14951] kernel BUG at fs/f2fs/segment.c:3481!
[ 1002.473883][T14951] invalid opcode: 0000 [#1] PREEMPT SMP KASAN
[ 1002.479994][T14951] CPU: 1 PID: 14951 Comm: syz.5.2377 Not tainted syzkaller #0
[ 1002.487483][T14951] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1002.497567][T14951] RIP: 0010:f2fs_allocate_data_block+0x3f6f/0x3fb0
[ 1002.504229][T14951] Code: 1a fe 48 8b 54 24 30 e9 88 eb ff ff e8 ea ef c1 fd 48 c7 c7 d0 e5 6f 8d 4c 89 f6 e8 9b 79 97 00 e9 a4 eb ff ff e8 d1 ef c1 fd <0f> 0b e8 ca ef c1 fd 0f 0b e8 c3 ef c1 fd 0f 0b e8 bc ef c1 fd 0f
[ 1002.523867][T14951] RSP: 0018:ffffc90004edf410 EFLAGS: 00010287
[ 1002.529965][T14951] RAX: ffffffff83c5253f RBX: 0000000000000200 RCX: 0000000000080000
[ 1002.538029][T14951] RDX: ffffc9000d64b000 RSI: 000000000002927a RDI: 000000000002927b
[ 1002.546007][T14951] RBP: 0000000000000200 R08: ffff88802633b85f R09: 1ffff11004c6770b
[ 1002.554072][T14951] R10: dffffc0000000000 R11: ffffed1004c6770c R12: 1ffff920009dbef8
[ 1002.562130][T14951] R13: 0000000000000000 R14: 0000000000002c00 R15: dffffc0000000000
[ 1002.570129][T14951] FS:  00007f81d19f66c0(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[ 1002.579078][T14951] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1002.585680][T14951] CR2: 0000001b2f023ffc CR3: 0000000060da5000 CR4: 00000000003526e0
[ 1002.593674][T14951] Call Trace:
[ 1002.596965][T14951]  <TASK>
[ 1002.599912][T14951]  ? f2fs_mark_inode_dirty_sync+0x120/0x1f0
[ 1002.605831][T14951]  f2fs_map_blocks+0x1338/0x3e60
[ 1002.610805][T14951]  ? f2fs_get_block_locked+0xe0/0xe0
[ 1002.616110][T14951]  ? __up_read+0x2b6/0x6b0
[ 1002.620631][T14951]  ? up_read+0x20/0x20
[ 1002.624706][T14951]  ? f2fs_allocate_pinning_section+0x1af/0x590
[ 1002.630873][T14951]  f2fs_expand_inode_data+0x67a/0xa10
[ 1002.636261][T14951]  ? f2fs_insert_range+0x470/0x470
[ 1002.641383][T14951]  ? down_write+0x16e/0x200
[ 1002.646003][T14951]  ? file_modified_flags+0x136/0x2a0
[ 1002.651337][T14951]  f2fs_fallocate+0x416/0x890
[ 1002.656028][T14951]  vfs_fallocate+0x58e/0x700
[ 1002.660634][T14951]  do_vfs_ioctl+0x19f6/0x1cc0
[ 1002.665324][T14951]  ? __ia32_compat_sys_ioctl+0x8a0/0x8a0
[ 1002.670984][T14951]  ? tomoyo_path_number_perm+0x217/0x620
[ 1002.676669][T14951]  ? __lock_acquire+0x7d40/0x7d40
[ 1002.681697][T14951]  ? slab_free_freelist_hook+0x130/0x1a0
[ 1002.687338][T14951]  ? tomoyo_path_number_perm+0x5b4/0x620
[ 1002.693023][T14951]  ? tomoyo_path_number_perm+0x217/0x620
[ 1002.698664][T14951]  ? tomoyo_check_path_acl+0x1c0/0x1c0
[ 1002.704148][T14951]  ? __fget_files+0x28/0x4b0
[ 1002.708750][T14951]  ? __fget_files+0x28/0x4b0
[ 1002.713355][T14951]  ? bpf_lsm_file_ioctl+0x9/0x10
[ 1002.718325][T14951]  ? security_file_ioctl+0x80/0xa0
[ 1002.723446][T14951]  __se_sys_ioctl+0x83/0x170
[ 1002.728045][T14951]  do_syscall_64+0x55/0xa0
[ 1002.732511][T14951]  ? clear_bhb_loop+0x40/0x90
[ 1002.737251][T14951]  ? clear_bhb_loop+0x40/0x90
[ 1002.741935][T14951]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1002.747836][T14951] RIP: 0033:0x7f81d379c629
[ 1002.752264][T14951] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1002.771877][T14951] RSP: 002b:00007f81d19f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1002.780298][T14951] RAX: ffffffffffffffda RBX: 00007f81d3a15fa0 RCX: 00007f81d379c629
[ 1002.788275][T14951] RDX: 00002000000000c0 RSI: 0000000040305828 RDI: 0000000000000004
[ 1002.796246][T14951] RBP: 00007f81d3832b39 R08: 0000000000000000 R09: 0000000000000000
[ 1002.804219][T14951] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 1002.812215][T14951] R13: 00007f81d3a16038 R14: 00007f81d3a15fa0 R15: 00007ffc24a88998
[ 1002.820224][T14951]  </TASK>
[ 1002.823250][T14951] Modules linked in:
[ 1002.888666][T14951] ---[ end trace 0000000000000000 ]---
[ 1002.894193][T14951] RIP: 0010:f2fs_allocate_data_block+0x3f6f/0x3fb0
[ 1002.995625][T14951] Code: 1a fe 48 8b 54 24 30 e9 88 eb ff ff e8 ea ef c1 fd 48 c7 c7 d0 e5 6f 8d 4c 89 f6 e8 9b 79 97 00 e9 a4 eb ff ff e8 d1 ef c1 fd <0f> 0b e8 ca ef c1 fd 0f 0b e8 c3 ef c1 fd 0f 0b e8 bc ef c1 fd 0f
[ 1003.038684][T14951] RSP: 0018:ffffc90004edf410 EFLAGS: 00010287
[ 1003.044820][T14951] RAX: ffffffff83c5253f RBX: 0000000000000200 RCX: 0000000000080000
[ 1003.068455][T14951] RDX: ffffc9000d64b000 RSI: 000000000002927a RDI: 000000000002927b
[ 1003.076761][T14951] RBP: 0000000000000200 R08: ffff88802633b85f R09: 1ffff11004c6770b
[ 1003.084768][T14951] R10: dffffc0000000000 R11: ffffed1004c6770c R12: 1ffff920009dbef8
[ 1003.148142][T14951] R13: 0000000000000000 R14: 0000000000002c00 R15: dffffc0000000000
[ 1003.195932][T14951] FS:  00007f81d19f66c0(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[ 1003.204937][T14951] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1003.235622][T14951] CR2: 00007f38078c3878 CR3: 0000000060da5000 CR4: 00000000003506e0
[ 1003.243683][T14951] Kernel panic - not syncing: Fatal exception
[ 1003.250081][T14951] Kernel Offset: disabled
[ 1003.254401][T14951] Rebooting in 86400 seconds..