last executing test programs:

25m59.783814997s ago: executing program 32 (id=602):
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000840)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc0ed000e, &(0x7f0000000200)={[{@jqfmt_vfsold}, {@orlov}, {@debug}, {@noload}, {@nombcache}, {@noblock_validity}, {@init_itable_val={'init_itable', 0x3d, 0x601}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x8000}}]}, 0xfa, 0x47c, &(0x7f0000000a80)="$eJzs3M1vFOUfAPDvTLulwI9fK+ILCFJFI/GlpeVFDl40mnDQxEQPGE+1LaRSqKE1EUK0esCjIfFu/C+MJ70Y9aKJV70bEmK4gHpZMzsztLS77ZZud4H9fJLZfZ6Z2X2e78w8O8/Ms7sBdK2h7CGJ+F9E/B4RA3n29hWG8qeb1y9N/H390kQS1epbfyW19W5cvzRRrlq+bnueqVaL/JY65V5+N2J8ZmbqfJEfmT/7wcjchYsvTJ8dPz11eurc2PHjRw7v6zs2drQlcWZx3djz8eze3SfeufLGxMkr7/2UpJHHHcviaJWhfOvW9XSrC+uwHUvSSW/22F/k9v+yuKTekUAn9UREtrsqtfY/ED2x9daygXjts45WDthU1Wq1usqn8kIVuI8l0ekaAJ1Rnuiz699yalPX465w7eX8AiiL+2Yx5Ut6I80T+yvLrm9baSgiTi7881U2xSbdhwAAWOq7rP/zfL3+XxoP54m+7OH/xRjKYEQ8EBE7I+LBiNgVEQ9F1NZ9JCIeXWf5y0dIVvZ/0qt3HFwTsv7fS8XY1u39v7RcZbCnyO2oxV9JTk3PTB0qtsnBqGw5NZ1Mja5Sxvev/vZFo2VL+3/ZlJVf9gWLelztXXaDbnJ8fnwjMS917dOIPb314k9q4wJRjOvtjog9d1jG9LO9DZetHf8qGr9t06pfRzyT7/+FWBZ/KWk4Pjn64rGxoyP9MTN1aKQ8Klb6+dfLbzYqf0Pxt0C2/7fVPf5vxT+Y9EfMXbh4pjZeO7f+Mi7/8XnDa5p1Hv8ndhTHf1/ydm1GX7Hgo/H5+fOjEX3J6yvnjy2+W5kv18/iP3igfvvfGYtb4rGI2BsR+yLi8eyisKj7ExHxZEQcWCX+H1956v31x9+esdIs/sm19n8s3f/rT/Sc+eHbtePvj4hG+/9ILXWwmNPM51+zFdzItgMAAIB7Rf4d+CQdXkwnw8P5d/h3xbZ0ZnZu/rlTsx+em8y/Kz8YlbS80zWw5H7oaHFvuMyPLcsfLu4bf9mztZYfnpidmex08NDltq9o/2matf/Mnz2drh2w6Vowjgbco7R/6F7aP3SnZM32X2lbXYD2c/6H7lWv/X/ScO3hbza1MkBbOf9D92qi/S/kT417BcC9yfkfupf2D12p4W/j0w395L/tiX+L/zO8W+pz/ycivSuqcf8nepv+M4tGicrKtlwdyNt/NmdL3Vd1+pMJAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACgNf4LAAD///R05PQ=")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000080)=""/234, 0xea)

24m51.147080529s ago: executing program 33 (id=816):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
write(r0, &(0x7f0000000140)="5c000000010006", 0x7)

23m4.8536767s ago: executing program 34 (id=1270):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r0)
sendmsg$NLBL_MGMT_C_ADDDEF(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x44, r1, 0x1, 0x0, 0x0, {}, [@NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x7}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @ipv4={'\x00', '\xff\xff', @empty}}]}, 0x44}}, 0x0)

21m43.018743569s ago: executing program 35 (id=1690):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x19, 0x4, 0x4, 0x2, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000200)={r0, &(0x7f0000000080), &(0x7f0000000000)=""/10, 0x2}, 0x20)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000b40)={r0, &(0x7f0000000a80), 0x0}, 0x20)

12m44.372973913s ago: executing program 36 (id=4420):
r0 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r0, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r0, 0x0)
connect$unix(r0, &(0x7f0000000280)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)

11m52.563227289s ago: executing program 37 (id=4642):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000001c6a000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000a40)={{0x14}, [@NFT_MSG_NEWFLOWTABLE={0x40, 0x16, 0xa, 0x107, 0x0, 0x0, {0x2}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x14, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_PRIORITY={0x8}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}]}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x68}}, 0x0)
sendmsg$NFT_MSG_GETFLOWTABLE(r0, &(0x7f0000000f00)={0x0, 0x20, &(0x7f0000000ec0)={&(0x7f0000000dc0)=ANY=[@ANYBLOB="20000000170a0103000000000000000002000000090001"], 0x20}}, 0x0)

10m17.303913216s ago: executing program 7 (id=4967):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000880)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x1000043, &(0x7f0000000000)={[{@auto_da_alloc_val}]}, 0xa, 0x501, &(0x7f0000000140)="$eJzs3U9vG2kZAPBnnHibpGGdXTgsK7FbdrtKEdRJNvsn4rBsJf6cVkKUexoSJ4rixFXitE1UQfoJQKgCJE6cuCDxAZBQPwJCqgQ3DpxAFaTtgQsyGnvcJo6dJtRrt87vJ03nnfet53mepB7POzOqAzizLkTEpxExFBHvRUQh689lS+w1lvTvPdy/vZguSdRqV/+VRJL1te7zfPay1A++F/Gj5GjcrZ3dtYVyubR5uHv38ur6wkpppbQxOzvz0dzHcx/OTZ+wkmT4uNFXI+KTbz/+xU9/+91P/viNm3+f/+elH+cj4lo23q6ObmiUno+Rc82eY9N86QxlFeX7nQgAACdyMSJej4h3IuJrUYihATs/BQAAACJq3xpv3pmqAQAAAIMpFxHjkeSK2fO+45HLFYuNZ3i/FGO5cmWr+vXlyvbGUjoWMRH53PJquTSdPSs8Efkk3Z6pt59uv9+yPRsRr0XE3cJoul0fAwAAAHrjfMv8/3GhMf8HAAAABoyb8QAAADD4zP8BAABg8Jn/AwAAwED7/mefpUvt4f7t+vcALN3Y2V6r3Li8VNpaK65vLxYXK5vXiyuVykq5VBx69v7Klcr1D2Jj+9ZUdXirOrW1szu/XtneqM7Xv9d7vvR6D2oCAAAADnvt7Xt/TSJi75uj9SX1SjaW72tmwAskGW7puPbVPmUCdMUJLukfdmH780kE6LnWz3Tg7DDHB5LWjpYTg5FOpwp/On0s5xwAANAfk192/x/Oqly/EwD65mf9TgDoG9fi4ezKn/4JQGDAHLn/32Kk08Az7v8/vYZYq506KQAAoKvGG6u9yO4FjkcuVyw+uS2YLK+WS9MR8WpE/KWQP5duz/QxXwAAAAAAAAAAAAAAAAAAAAAAAAB4GdVqSdQAAACAgRaR+0eSff/XZOHieOv1gVeS/xTq64i4+eurv7y1UK1uzqT9/37SX/1V1v9+P65gAAAAwFmUP3a0OU9vzuMBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoJse7t9ebC69jPvgSozGRLv4wzFSX49EPiLGHiUxfOB1SUQMdSH+3p2IeKNd/CRNKyayLMYenTv0ulxEjPY0/uH60/jnuxAfzrJ7VyLi03bvv1xcqK/bv/+Gs+V5PbhSf5O3jd88/g11OP594YQx3rz/+6mO8e9EvDnc/vjTjJ90iP/uCeNf++Hubqex2m8iJtt+/iSHYk1V169Pbe3sXl5dX1gprZQ2ZmdnPpr7eO7Duemp5dVyKfuzbYyff+UPe3c71p+rrw/Gb9Y50cjwJ53qv3jC+v97/9b+FxvN/NH4EZfebf/7f6O+bv/zT/9NvJd9DqTjk832XqN90Fu/+/NbnXJL4y91+Pk3fv+FWqf6L3UuOTnQPlIzANBfWzu7awvlcmmzB413PujeDpMe5fwyNFbGInoedOTFqL3Xje88936ap8PPs5+/da2udM7QfqjPByYAAKDrnp709zsTAAAAAAAAAAAAAAAAAAAAOLv+r/887O3Tvao15l5/SgUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAONb/AgAA//9nwsbL")
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)

10m15.773444107s ago: executing program 7 (id=4973):
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'lo\x00'})
r1 = io_uring_setup(0x23be, &(0x7f0000000780)={0x0, 0x8269, 0x10000, 0x3, 0x6})
io_uring_register$IORING_REGISTER_FILES(r1, 0x1e, &(0x7f0000000000)=[r1], 0x1)

10m14.284829801s ago: executing program 7 (id=4980):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000015c0)=@base={0x1, 0x9, 0xbe, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000180)={r1, &(0x7f00000000c0), 0x0}, 0x20)

10m11.546879568s ago: executing program 38 (id=4980):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000015c0)=@base={0x1, 0x9, 0xbe, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000180)={r1, &(0x7f00000000c0), 0x0}, 0x20)

10m4.601045144s ago: executing program 1 (id=5005):
syz_mount_image$bfs(&(0x7f0000000040), &(0x7f0000000000)='./bus\x00', 0x98, &(0x7f00000004c0)=ANY=[], 0xff, 0xa4, &(0x7f00000000c0)="$eJzs0b+pAkEQB+C5e/C4A9EC7OFq0CKswBKMBEEsyFYswdTIwNTkZHFFuGDBQFH4Ptg/P4ZdBuZw3U9jHNFvI/q/eOiT1XoXJf/FKr+gzmeThj655/M8YhYRVaqn7bJZHvMaPF80xd9Hb+sbAAB4XTXIdXTdM53afGk/2RMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAN7kFAAD//z7jFwY=")
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x103042, 0x2)
r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='.\x00', 0x101d80, 0x0)
getdents64(r0, 0xfffffffffffffffe, 0x29)

10m3.69696999s ago: executing program 1 (id=5010):
syz_mount_image$udf(&(0x7f0000000080), &(0x7f0000000040)='./file1\x00', 0x14009, &(0x7f00000001c0)=ANY=[@ANYBLOB="2c756e64656c6574652c6e6f7672732c6164696e6963622c766f6c756d653d30303030303030303000003030303030303030322c7569643d666f726765742c6769643d666f726765742c6e6f7374726963742c6e6f7672732c0085f95733019d784ca386da1fd41ffabd4b47acca2b8d488be702157dd8711c31732d", @ANYBLOB="b08d8175", @ANYRESDEC, @ANYRESHEX], 0xff, 0xc3d, &(0x7f0000000f40)="$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")
mount(0x0, &(0x7f0000000000)='.\x00', 0x0, 0x2012024, 0x0)
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x81, 0xffffffff})
lchown(&(0x7f00000006c0)='./file0\x00', 0x0, 0xee01)

10m2.088443192s ago: executing program 1 (id=5016):
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1d00000007"], 0x50)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r0, &(0x7f0000000000), 0xd)

10m1.300573685s ago: executing program 1 (id=5018):
syz_mount_image$ext4(&(0x7f0000002080)='ext4\x00', &(0x7f0000000400)='./file0\x00', 0x400, &(0x7f00000020c0), 0x0, 0x548, &(0x7f0000000cc0)="$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")
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$bind(0x0, &(0x7f00000000c0)='./file0/../file0\x00', 0x0, 0x24000, 0x0)

10m0.312277818s ago: executing program 1 (id=5023):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000100000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
ioctl$TUNSETFILTEREBPF(r0, 0x800454e1, &(0x7f0000000280)=r1)

9m59.576452039s ago: executing program 1 (id=5026):
pipe2(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
vmsplice(r1, &(0x7f0000000140)=[{&(0x7f0000000100)="eb", 0x20000101}], 0x1, 0x0)
fcntl$setpipe(r1, 0x407, 0x2000000)
vmsplice(r0, &(0x7f00000003c0)=[{&(0x7f0000000180)="f0ada44579e17924e790de39aba0cb8a10c1e69822", 0x15}, {&(0x7f00000001c0)="8b96896e49af7015c72a7cbe09126f801083fdd0dd584273857eec303e0f9b4d5553127e7f7cc13d8f66d74e81a20c5a4c85ceaf0e695db5aa5fe65d5082c2de473b24", 0x43}, {&(0x7f0000002600)="ac5c447ec24fef5d0aaa8b442039c9a8d43ce2a8a1a06101d993d7f8f803e004fd1ed8d6c8ad14d9f1faf12c389ecdf3bb061fcc7af9528ecfbbbb071936949e8ba2b8ba6f241578e20f962ca5412ca7b063a47a8e770b05b155d4199953f83afc56d7eec2b22848fe6126e14af710f0c967fe25ab08b92a874f67c44e32920da71f27386c2eb894bdf4954a70fab8a8796e0d9a6b9f6c5f3066e6d564d96b72e43a2bec67b3f4e68391ab474c4d41a03abfcbe57b5e30a2a8bb0f566212ba839ca76fbc22f13e2ea4ea9cce699bfd824ed3adcb5dead2e5a5033d03d869cddf90eca59e43ea7ab4818f20acfd515fd8c39d196b2ffa39c508af8bc82dfaba7f079182838cfdaabaf598e82f9a8ad1d7365c5f2e3db98f94c09be7564703b941e0af53550f2a816cbb9698771b0b2706886e285c7ccf161a498fa2c1691e1a394453ad9d003dd64601a25af9686c29913c28293232588f9b4be9697d550f0059540f5b2a12333930710c2dca76a058cceb47db03f60f481d1cd8b645a8a7ee2b9301993e3b2995889e8544e23596a913022ba71fd20dd2cb5a87e9391105a1bffd52395a2a17926303a9abde0a9ea325bb4ce6ca9428a0032ae56cc8f1dbb00a6e8fb264f166f7079c2e4a70016d0ef01028c3e5ec4fd88a5765e6e74b8fb0d9715ec53ca4fc5c9490183c12ae652afdd59468dd27704fc523c47738da11fab0eeb44abeb0a9dcb3eaef3f6a01d99b86091753691baeb7c7fe802f729de43942ecfe87dbed46ccfe14d11fe526245cfbb5652e40854d3a1dba11eaabf59a87e94317d500abfe71227595157071788878eeefb393fb51c0982448dd7f49c655d6ee81a6eb8222b69946d62d89b61eb7d49536b7fccb733513c4480525ce57a555ebc31ea3b00be93a180e04eee3759ba931b2cd13378db764435a8c5e19c93535b5bbe61644e885b5daf0b38e7a3ead5123a1cdc7d1351d44b9d7c2453203d89f7c933aa87dbd709f6450c6b7c001cc7a716cb55d6caa917e5603f299a3937ab60f38602f14a4e4967fecb057e2033729487ef830db105b8cfb77eda0eb19d70e380180cf901c57d357ce0bc4851cb2356fb999c61de14c846efa46a27cbb5c372d78d4755a5adc5cb29a4e980e9a6687159ac9e4c5bf2b710252d4f74ef403ede85a04712a0002bbacdabde7fc54724b865d8204fae5c47ad1005e436a2cf78f0a71734091a50cb5310d7778091b9e8c324db0e3a511b777342e2c758d6f609884e98bc6274ce0f0a95dbf2031f55d2dc414209b73c72532cabad06d0dfeafe0fddf50ce500dd4b9079e53f5ca425b725ddfed196fd383d09f446d099d7a9702617fccdffb0b668e50e7a238e68acfc4e7589731b8c6da8c771b966f5fae2d5f7b0babf08601332f049be627304ca77de2b658333de7703f1e6826c15c84c3347b82d822486e745f35a656f83e8e3f935a1ecb15f8311f81b9c497fc9f352620c5211e8a2c14e8e8b3b96b470f8bab6d5ff15ec0c533e434c298829a28be74d7e6dbd76ee02254bc893e64825d78f1d98150372be279c5257f241298f9f70461ffd11b33aed798af69116a5f1c06b201a65dda8fef486c0a35607f155c435d8b8ab9299d2a7210cb4853135399e96b15fdb229111461699a029408b4bab9dea1449a14cb99e4e99ac8df2a41e695779ecfb1724b2010a6f801e51d9dbb201949f404cb703c256cc9a7cdcd2427554f2d38187c9753301e2ad6550c708f8be0bb8805fc473ca100f29a7b097ae4fa585e12481ee27e3e66768991fa00f066825d38c9cd9c1bc29d4a2fd1f6a0000ad6e7d6484aa95865b22d36f8eb88fb172ebc2695c649d268d084d2807b57fe6bb0988d7a7e8a35bd923feca5520fdb8a41bba5c0217364aaca632172ef649e60e7bd55de0bb37f3caf4f3377df509c34872ada0220c848394d1df48ae897b4ab2c741a99983815fa5c07a9b0b3e71b793de07a7ad334e9cba51ea584f98db0c3cb7325549eef5d56e3121e1c4b61479dd7536f02235311161d1674bf7c05092d0465fec79f0fb05e5fbb9b2723956dde24810f43f103f12cc6d706795d27b85aad4b97a5e87182f39ca1f7d4425b9487edd316c4dea3e43321c88796753e65ecb8a5cfa8a06f0f61d4caad6be9167994db553e63176ff052f76e15dd86c4424bd9e03d26e23c6f9e933c8f9dda941b970c3766a22846b4bef30314d830d213cbdc1614bdc67e0facf5479f68efda052bcb2ba3386b058c68ed97dbd3cd835c83072471fef35e5ad4e9e8cc47334ce9619563402e015422f49be5f58a6f1ededcc7e248a61718f967bb06e18b8788cddaccf1963824c44cfde30fc015f7c372c6e79dd1d93b9868ce0067b7271e214b259ab14efdc37f11b1126d50829fa8da397758a4a72e06cdd73c9d3a875775fd0e8e043619fb4de6490dc8cd0586409b20dfcbdee9d2e04c5d36fb37868eba6a15e53805c04313e392bfe5f50a27dc45ff9deb8640d5f3054ece235c904b30f7438efd3fe3733a54f9fc9daad7accfacf033ab07b0af3780964bf953327a42e55c95cde508961f62dc683a095dc102ea6bc54550e23a7c77d3e8ca582148c05df486641c11050320109f90c2a8e2d4d55d8ade74c11aea44f3df7728d5d3bde9dee03fed3e9a0e20f71f19bac2e83457bf496bac8ad759b9d421d2dde1136b360c99ee780ff0e981caec8d875de285f47e73596c15c35982df3dd0b41324d34db3818d5df34c9f43333121d9a78cbc8133e2f0905ab143bcc00046e52fd23cdd6263525bc46f763f1af43028231f0b202982a99ece5210484250b77981eca1b9d9015a46b21ebbacf17cdc8030133f7d35880a8da4afa069c7a5dd02406c6f7a1c520ceda993e609236442e3d895545efca98cc5def22498b3b597c4cd6d1aadd07143eef9b4a064466d5272b059339c92a82c72ce7a1812fe7d600e4cb8558ad83edc0a2f861eaf999b7061ce60adad1699560cbd801465f4da4cfbacbf5b68b0b3c8418b310b3d3c61f454ae9a1609c2be1d65d07b09adb334aeb6955704cc64f7af0ed5d18c17add736aa0db326371223aeac3e8d009676118bf67637e8b1bfa91691d71b50c2707618a38196805654d8f38b5151a7742d1bfd690df3751e1697231e91aed33757a5f6d0554eb119a544acf872dd69ddfb21d5bcafabede6ec1b18e2c2939e0e2b5111cc70445f68a176d333814b8789ad5934039e515f6418e7d7085023c0527b35f660a2e947a9f175f7b31cb061be46c09fca3a4e9262ed01dfa6c12cd86da57c829d4b0d093b8d9c502dc0da01fe9a42a5d8016ac44981cbadedb6e15dabd2e4726b3628fe5527c3c41cdf228c6c7dbdf800acff58f13b13d93980f7d40e61928424a77b6b4c9c5bbb79f0c3b2a28935b426cff07f729f90a426fbefdde615ee3d0b7897426f91a947924851486000783058f3ce111bbe763fbfb142ad103606d434d94a0d463b9e1dd8acc25f43a1e79eed763f805f3793c5322560729e9346d5c052414b35678144aef6eb68a8592a82d8e4c184beb293bdbbe95c5e33c989a9329e359f6b5946872ea61c167d4cfb0624f1449212ea2ed4c680218ebabbcf32db905bd39347087731b994df8153c21a2633dec6aa0d43d0bc2392ef7cb277e8c2e9466ebce5969faef8d2741bbd5df50489edc7e33ce7e3024b7c86f37b76c2d5ec41e8fad28c58519c564a2550afe6b3d8a6a21ba734b16eb0c62cafd1c0a0d095005e549ac7d9b82ca49087c3f8575192c2293cbedf4ab42e9127f80fdba86580038c121acb0372a01402dc6476fc8ac4cd221aae6db476196701e1fb70d9ffb8a17b27b51483fc3fc6a7a2eb830180f435b3bef904dfa809b8ff9ba5953c4d888d49431e55f995ad2f0d26d341fc6b18560daf2c178f197f8302158090d4908c0bf896e1603ffb49e9f3d545557f1f6a86e65f1470d75f49f6de86f4649f88bb729be6ebddb925182795bbd6b9383fce057ae92b6a2709e08dcb37264a937074e4f86befba3c43998c70eb9e8833986dd62d5bd7fe79624297e0a06cce296649e955685a0f1b654ed306344caf7a61274ba500e1a994a9755da9c65a4610889c1f4f94909fe8cd1f12847270708adb1e28624b557a6e9be4051136034695a25f9bfdb7d90e0c0a8e308fc23bb5b3aad0444c0eddc8b9b953febfd4c0d7e133b2c3224add738a9498a5d37f9ef37085fe1093b63b8e4d03f314d408356fa8a9fc60814f19b47ed06cbc5a88d159bc0c3e07ffe8d3c27bf5858a152315104d75035ac59f5974a9d86bc7e3038eb0e8c85e9d26b60d2020f13ef7fa2adb1a89596978cc22fd31488421a839806e935216c83bd1d279b00fde858bc62801ac7a8a811a3be16b6f181ef448352561a9227731f8a3abffac7526a0f8c03a7447bbd2ce0d4187a15f2c1f7e59152d9b72f31baadbfc3f962ed59b86dc8dc2037e8a0abcfadfec0959db4e3d54defc89756d436762ca5dd8615b0b5f0e8e37ea583274228de448e2f529666d5920cf93f84a1f8f267f399ebd11588714230a39fd8a9febb83e1f9a351955109e231084a68ab9d955deca7e8ee23b5ac454a5403fc406865d652d7e14477aa7849b98018cc13a6b269d3f2e6368ac6194b46a637abf3d0fcb1a19b4d7341c0987667999119b12432574740c0deac33f6ca8de7368b0a169d9c4dbcb901c5fb7e599e5addc9b7d8f1c36c627ddda523c2144df16aae1daa3117eef277246bd0e93b1996afe1792e18ec967f8fa8997a1f75eb6b53639ae82298e840b3ea8be0f94cd068ff4662659b56c56f779bf75155de009913afbae8d45c1e71d4f54eec21b98637b3cbe591036e40a573062bbdc088b05461ce5e12860ceb91715a4f498cffa2cc01ef1a04a4fe9bc465b576cfd4ef98d9dbd5e9408e58ed948b9225f2b8e4970b9b45eb2eb91b920c82fde8fb3b9647e57942f26d929e96f6a665b014ddf37c415ca1ae32ee9a8bba8ecaf2b7fb9ba9fde972e21d668dd764e3a6ef7dcf057ef1f172590815cd9f7e16d91871ac95b27517a454dd5667052e797a1836813eb47d2e4eeafb1fc90006a189410738ceecf55568598dd106b4f7ba5ad460e96a91639d2b71fe2a2fa52b1a367cb4724b6c7aab8741aeda72d22dca2d3f45f85faec669dfe984ba8e09ca52b2fe6b609bea921184dd09e26d76a873ffde11e4fde4e9de350c3e95e183b972d2eda7988449a10f6c73f734b184f7a704e5703122dedae689316d9cb0bcd658c3b45ed59096e747bf1", 0xea8}], 0x3, 0xb)

9m56.91903969s ago: executing program 39 (id=5026):
pipe2(&(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
vmsplice(r1, &(0x7f0000000140)=[{&(0x7f0000000100)="eb", 0x20000101}], 0x1, 0x0)
fcntl$setpipe(r1, 0x407, 0x2000000)
vmsplice(r0, &(0x7f00000003c0)=[{&(0x7f0000000180)="f0ada44579e17924e790de39aba0cb8a10c1e69822", 0x15}, {&(0x7f00000001c0)="8b96896e49af7015c72a7cbe09126f801083fdd0dd584273857eec303e0f9b4d5553127e7f7cc13d8f66d74e81a20c5a4c85ceaf0e695db5aa5fe65d5082c2de473b24", 0x43}, {&(0x7f0000002600)="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", 0xea8}], 0x3, 0xb)

5m37.721892157s ago: executing program 2 (id=6244):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000002c0)='sched_process_fork\x00', r0}, 0x10)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

5m36.877183226s ago: executing program 2 (id=6249):
r0 = socket$key(0xf, 0x3, 0x2)
r1 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'bridge0\x00', <r2=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[@ANYBLOB="2c0000001d00070f000000000000000007000000", @ANYRES32=r2, @ANYBLOB="00005200060005000100000008000800", @ANYRES16=r0], 0x2c}}, 0x4000000)

5m36.227619366s ago: executing program 2 (id=6253):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000580)=ANY=[@ANYBLOB="1800000000000000000000000f000000850000007500000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='netlink_extack\x00', r0}, 0x18)
r1 = socket$kcm(0xa, 0x5, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r1, 0x890b, &(0x7f0000000000))

5m35.286516347s ago: executing program 2 (id=6256):
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, &(0x7f0000000340)={[{@nls={'nls', 0x3d, 'cp866'}}, {}, {@uid}, {@force}, {@nobarrier}, {@part={'part', 0x3d, 0x6}}]}, 0x20, 0x6de, &(0x7f0000001f80)="$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")
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x891018, 0x0)

5m34.656683806s ago: executing program 2 (id=6259):
r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x205, 0x2581)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$USBDEVFS_SUBMITURB(r1, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000080)={0x80, 0xf, 0x0, 0x0, 0x7995}, 0x10007, 0x0, 0x0, 0x48000000, 0x0, 0x40000000, 0x0})
ioctl$USBDEVFS_REAPURBNDELAY(r0, 0x4004550c, 0x0)

5m33.669060956s ago: executing program 2 (id=6263):
r0 = socket$rxrpc(0x21, 0x2, 0x2)
ioctl$int_in(r0, 0x5452, &(0x7f0000000040)=0x8)
poll(&(0x7f0000000180)=[{r0, 0x2002}], 0x1, 0x7f)
setsockopt$sock_int(r0, 0x1, 0x7, &(0x7f0000000240), 0x4)

5m32.361911726s ago: executing program 40 (id=6263):
r0 = socket$rxrpc(0x21, 0x2, 0x2)
ioctl$int_in(r0, 0x5452, &(0x7f0000000040)=0x8)
poll(&(0x7f0000000180)=[{r0, 0x2002}], 0x1, 0x7f)
setsockopt$sock_int(r0, 0x1, 0x7, &(0x7f0000000240), 0x4)

1m54.288761128s ago: executing program 0 (id=7272):
unshare(0x20000400)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x9, 0x15031, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$ax25(0x3, 0x2, 0x0)
bind$ax25(r0, 0x0, 0x0)

1m53.589561703s ago: executing program 0 (id=7276):
r0 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000080), 0x8102, 0x0)
read$FUSE(r0, &(0x7f0000002600)={0x2020}, 0x2020)
writev(r0, &(0x7f0000000d00)=[{&(0x7f0000000cc0)='T01\n', 0x4}], 0x1)
writev(r0, &(0x7f0000000b80)=[{&(0x7f00000006c0)="a6564d22e25c174f287d5f12e1c2", 0x2f}], 0x1)

1m52.933387801s ago: executing program 0 (id=7282):
ioctl$TIOCL_BLANKSCREEN(0xffffffffffffffff, 0x5609, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x5, 0x4, 0x8, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x5, r0, 0x500}, 0x38)

1m52.45584977s ago: executing program 0 (id=7285):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f0000000040)={'batadv_slave_1\x00', {0x2, 0x480, @dev={0xac, 0x14, 0x14, 0x37}}})
ioctl$sock_inet_SIOCSIFADDR(r0, 0x891c, &(0x7f0000000540)={'batadv_slave_1\x00', {0x2, 0x0, @private=0xfffffffe}})
ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f0000000000)={'batadv_slave_1\x00', {0x2, 0x4e21, @empty}})

1m51.775672063s ago: executing program 0 (id=7286):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000002c0)=0x20)
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x6000, 0x1)
unlink(&(0x7f0000000200)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

1m51.239372245s ago: executing program 0 (id=7289):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=@bridge_newvlan={0x28, 0x70, 0x1, 0x0, 0x0, {0x7, 0x0, 0x0, r2}, [@BRIDGE_VLANDB_ENTRY={0x10, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_TUNNEL_INFO={0x4, 0x4, 0x0, 0x1, @BRIDGE_VLANDB_TINFO_ID={0x8, 0x1, 0x34000}}}]}, 0x28}}, 0x0)

1m41.472014465s ago: executing program 4 (id=7329):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000000)={0x6, @local, 0x0, 0x0, 'dh\x00', 0x10, 0x5, 0x2d}, 0x2c)

1m39.620985054s ago: executing program 4 (id=7336):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendmmsg$inet6(r0, &(0x7f0000000ac0)=[{{&(0x7f0000000180)={0xa, 0x4e24, 0x5, @private2={0xfc, 0x2, '\x00', 0x1}, 0x4}, 0x1c, &(0x7f0000000880)=[{&(0x7f0000000780)="e2", 0x1}], 0x1}}], 0x1, 0x20000080)
shutdown(r0, 0x1)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r0, 0x84, 0x14, &(0x7f0000000800)=@assoc_value, &(0x7f00000009c0)=0x8)

1m38.563621234s ago: executing program 4 (id=7340):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r0, 0x84, 0x81, &(0x7f0000000280)="1a00000002000000", 0x8)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r0, 0x84, 0x17, &(0x7f0000000240)=ANY=[@ANYRES32=0x0, @ANYBLOB="ff"], 0xe)
sendto$inet6(r0, &(0x7f00000002c0)="b1", 0x29fbc, 0x400c0d4, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c)

1m37.519354085s ago: executing program 4 (id=7344):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x8802, &(0x7f0000001940), 0x1, 0x1534, &(0x7f0000002d00)="$eJzs3AucTtX6OPDnWWvtMSbpbZLLsNZ6Nm8SyyRJLklySZIkSXJLSJrkSEJiyC1pSJJch+QyhOQyMWnc7/dLQpI0SRKSW7L+H8Vfnep3zvmdfjmfM8/383k/1jNrP2s/+33ey94b83WnwdUb1qhSn4jg34I//5EMALEA0B8ArgKAAADKxJeJPz+fU2Lyv7cT9ud6MO1yV8AuJ+5/9sb9z964/9kb9z974/5nb9z/7I37n71x/xnLzjZOLXA1P7Lvg+////er+4cz/P3/XySr5OjPV5e8tjNAzD+bwv3P3rj//7WCf2Yj7n/2xv3PrmIvdwHsPwC//7ODHH84w/3P3rj/jGVnl/v+8+V+QCR7PweX+/XHGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYYyx7OOUvUQBwcXy562KMMcYYY4wxxtifx+e43BUwxhhjjDHGGGPs/x6CAAkKAoiBHBALOSEOBABcCbnhKojA1RAP10AeuBbyQj7IDwUgAQpCIdBgwAJBCIWhCEThOigK10MxuAGKQwlwUBIS4UYoBTdBabgZysAtUBZuhXJQHipARbgNKsHtUBnugCpwJ1SFalAdasBdUBPuhlpwD9SGe6EO3Ad14X6oBw9AfXgQGsBD0BAehkbwCDSGJtAUmkHz/1X+89ANXoDu0AOSoSf0ghehN/SBvtAP+sNLMABehoHwCqTAIBgMr8IQeA2GwuswDN6A4fAmjICRMApGwxgYC6kwDsbDWzAB3oaJMAkmwxRIg6kwDd6B6TADZsK7MAveg9kwB+bCPEiH92E+LIAM+AAWwoeQCYtgMSyBpbAMlsMKWAmrYDWsgbWwDtbDBtgIm2AzbIGtsA22w0ewAz6GnbALdsMnsAc+/RfzT/5dfmcEBBQoUKHCGIzBWIzFOIzDXJgLc2NujGAE4zEe82AezIt5MT/mxwRMwEJYCA0aJCQsjIUxilEsikWxGBbD4lgcHTpMxEQshTdhaSyNZbAMlsWyWA7LY3msiBWxElbCylgZq2AVrIpVsTpWx7vwLuyJtbAW1sbaWAfrXLw9hfWxPjbABtgQG2IjbISNsTE2xabYHJtjC2yBLbEltsbW2AbbYFtsi0mYhO2wHbbH9tgBO2BH7IidsBN2xi7YJev5HIAv4AvYA6uKntgLe2FvTMnRF/thP3wJB+DL+DK+gik4CAfjq/gqvoZD8QQOwzdwOA7HSmIkjsLRSGIspmIqjsfxOAEn4ESchJNwCqbhVJyG03A6zsAZ+C7OwvfwPZyDc3AepmM6zscFmIEZuBBPYiYuwsW4BJfiMlyKK3AlrsDVuAZX4zpchxtwA27CTbgFt+A23AYfoQLAj3EX7sIU3IN7cC/uxX24D/fjfszCLDyAB/AgHsRDeAgP42E8gkfxGB7F43gcT+BJPIWn8AyewbP4bMKXDT66YVUKiPOUUCJGxIhYESviRJzIJXKJ3CK3iIiIiBfxIo/II/KKvCK/yC8SRIIoJAoJI4wgEcYAgIiKqCgqiopiopgoLooLJ5xIFImilCglSovSooy4RZQVt4pyorxo5SqKiqKSaO0qiztEFVFFVBXVRHVRQ9QQNUVNUUvUErVFbVFH1BF1xf2inuiJffFBcb4zDcUgbCQGY2PRRMgLn2AtxFBsKVqJ1uJx8QYOw7aihUsST4l2YhS2F38To/EZ0VGMxU7iOdFZdBFdxfOim2jpuoseYiL2FL3EFOwt+oi+op+YjtXEuzgrZ3XxikgRg8Rg8aqYh6+JoeJ1MeynI31TjBAjxSgxWowRY0WqGCfGi7fEBPG2mCgmicliikgTU8U08Y6YLmaImeJdMUu8J2aLOWKumCfSxftivlggMsQHYqH4UGSKRWKxWCKWimViuVghVopVYrVYI9aKdWK92CA2ik1is9gitoptYrv4SOwQH4udYpfYLT4Re8SnYq/4TOwTn4v94guRJb4UB8RX4qD4WhwS34jD4ltxRBwVx8R34rj4XpwQJ8UpcVqcET+Is+JHcU54ARKlkFIqGcgYmUPGypwyTl4hc8ngwrN7tYyX18g88lqZV+aT+WUBmSALykJSSyOtJBnKwrKIjMrrZFF5vSwmb5DFZQnpZEmZKG+UpeRNsrS8WZaRt8iy8lZZTpaXFWRFeZusJG+XEPl5H1VlNVld1pB3yWS4W9aS98ja8l5ZR94n68r7ZT35gKwvH5QN5EOyoXxYNpKPyMayiWwqm8nm8lHZQj4mW8pWsrV8XLaRT8i28kmZJJ+S7aS/8BJ5RnaUz8pO8jnZWXaRXeWP8pz0srvsIaEnyF7yRdlb9pF9ZT/ZX74kB8iX5UD5ikyRg+Rg+aocIl+TQ+Xrcph8Qw6Xb8oRcqQcJUfLMXKsTJXj5Hj5lpwg35YT5SQ5WU6RaXKq7HthpZlS/sP8t34nf+BPe98gN8pNcrPcIrfKbXK7/EjukDvkTrlT7pa75R65R+6Ve+U+uU/ul/tllsySB+QBeVAelIfkIXlYHpZH5FF5Wn4nj8vv5Ql5Up6Up+UZeUaevfAcgEIllFRKBSpG5VCxKqeKU1eoXOpKlVtdpSLqahWvrlF51LUqr8qn8qsCKkEVVIWUVkZZRSpUhVURFVXX4YUXjCquSiinSqpEdeO/kq+KqutVMXXDr/Iv1pf8B/U1V81VC9VCtVQtVWvVWrVRbVRb1VYlqSTVTrVT7VV71UF1UB1VR9VJdVKdVWfVVXVV3VQ31V11V8kqWfVSL6reqo/qq/qp/uolNUANUAPVQJWiUtRgNVgNUUPUUDVUDVPD1HA1XI1QI9QoNUqNUWNUqkpV49V4NUFNUBPVRDVZTVZpKk1NU9PUdDVdzVQz1Sw1S81Ws9VcNVelq3Q1X81XGSpDLVQLVaZapBapJWqJWqaWqRVqhVqlVqk1ao1ap9apTLVRbVSb1Wa1VW1V29V2tUPtUDvVTrVb7VZ71B61V+1V+9Q+tV/tV1kqSx1QB9RBdVAdUofUYXVYHVFH1DF1TB1Xx9UJdUKdUqfUGXVGnVVn1Tl17vxpXyACEahABTFBTBAbxAZxQVyQK8gV5A5yB5EgEsQH8UGe4Nogb5AvyB8UCBKCgkGhQAcmsIG40PRocF1QNLg+KBbcEBQPSgQuKBkkBjcGpYKbgtLBzUGZ4JagbHBrUC4oH1QIKga3BZWC24PKwR1BleDOoGpQLage1AjuCmoGdwe1gnuC2sG9QZ3gvqBucH9QL3ggqB88GDQIHgoaBg8HjYJHgsZBk6Bp0Cxo/qeu7/2JfI+57rqHTtY9dS/9ou6t++i+up/ur1/SA/TLeqB+RafoQXqwflUP0a/pofp1PUy/oYfrN/UIPVKP0qP1GD1Wp+pxerx+S0/Qb+uJepKerKfoND1VT9Pv6Ol6hp6p39Wz9Ht6tp6j5+p5Ol2/r+frBTpDf6AX6g91pl6kF+sleqleppfrFXqlXqVX6zV6rV6n1+sNeqPepDfrLXqr3qa364/0Dv2x3ql36d36E71Hf6r36s/0Pv253q+/0Fn6S31Af6UP6q/1If2NPqy/1Uf0UX1Mf6eP6+/1CX1Sn9Kn9Rn9gz6rf9TntD9/cn/+690oo0yMiTGxJtbEmTiTy+QyuU1uEzERE2/iTR6Tx+Q1eU1+k98kmARTyBQy55EhU9gUNlETNUVNUVPMFDPFTXHjjDOJJtGUMqVMaVPalDFlTFlT1pQz5UwFU8HcZm4zt5vbzR3mDnOnudNUM9VMDVPD1DQ1TS1Ty9Q2tU0dU8fUNXVNPVPP1Df1TQPTwDQ0DU0j08g0No1NU9PUNDfNTQvTwrQ0LU1r09q0MW1MW9PWJJkk0860M+1Ne9PBdDAdTUfTyXQynU1n09V0Nd1MN9PddDfJJtn0Mr1Mb9Pb9DV9TX/T3wwwA8xAM9CkmBQz2Aw2Q8wQM9QMNcPMG2b4+RNVM9KMMqPNGDPWpJpUM96MNxPMBDPRTDSTzWSTZtLMNDPNTDfTzUwz08wys8xsM9vMNXNNukk38818k2EyzEKz0GSaTLPYLDZLzVKz3Cw3K81Ks9qsNmthrVlv1puNZqPZbDabrWar2W62mx1mh9lpdprdZrfZY/aYvWav2Wf2mf1mv8kyWeaAOWAOmoPmkDlkDpvD5og5Yo6ZY+a4OW5OmBPmlDllzph8F74vvYm1OW2cvcLmslfa3PYq+/dxflvAJtiCtpDVNq/N96vYWGuL2RtscVvCOlvSJtobfxOXs+VtBVvR3mYr2dtt5d/ENe3dtpa9x9a299oa9q5fxXXsfbaufdjWQwSwTWwD28w2tA/bRvYR29g2sU1tM9vGPmHb2idtkn3KtrNP/yaebxfYlXaVXW3X2J12lz1lT9uD9mt7xv5gu9setr99yQ6wL9uB9hWbYgf9Jh5u37Qj7Eg7yo62Y+zY38ST7RSbZqfaafYdO93O+E2cbt+3s2yGnW3n2Ll23k/x+Zoy7Ad2of3QZtoAFtsldqldZpfbFf+/1iV2nV1vN9gd9mO72W6xW+02u/3iibDdZXfbT+we+6k9YL+y++zndr89ZLPslz/F54/vkP3GHrbf2iP2qD1mv7PH7ffqp9yRvQHsD/Y7+6M9Z70FQgKSpCigGMpBsZST4ugKykVXUm66iiJ0NcXTNZSHrqW8lI/yUwFKoIJUiDQZskQUUmEqQlG6ji6WV5xKkKOSlEg3Uim6iUrTzVSGbqGydCuVo/JUgSrSbVSJbqfKdAdVoTupKlWj6lSD7qKadDfVonuoNt1Ldeg+qkv3Uz16gOrTg9SAHqKG9DA1okeoMTWhptSMmtOj1IIeo5bUilrT49SGnqC29CQl0VPUjp6m9vQ36kDPUEd6ljrRc9SZulBXep660QvUnXpQMvWkXvQi9aY+1Jf6UX96iQbQyzSQXqEUGkSD6VUaQq/RUHqdhtEbNJzepBE0kkbRaBpDYymVxtF4eosm0Ns0kSbRZJpCaTSVptE7NJ1m0Ex6l2bRezSb5tBcmkfp9D7NpwWUQR/QQvqQMmkRLaYltJSW0XJaQStpFa2mNbSW1tF62kAbaRNtpi20lbbRdvqIdtDHtJN20W76hPbQp7SXPqN99Dntpy8oi76kA/QVHaSv6RB943vQt3SEjtIx+o6O0/d0gk7SKTpNZ+gHOks/0jnyBCGGIpShCoMwJswRxoY5w7jwijBXeGWYO7wqjIRXh/HhNWGe8Nowb5gvzB8WCBPCgmGhUIcmtCGFYVg4LBJGw+vCouH1YbEQw+JhidCFJcPE8MawVHhTWDq8OSwT3hKWDW8Ny4Xlw4fvrRjeFlYKbw8rh3eEVcI7w6phtbB6WCO8K6wZ3h3WCu8Ja4f3hqXD+8K64f1hvfCBsH74YNggfChsGD4cNgofCRuHTcKmYbOwefho2CJ8LGwZtgpbh4+HbcInwrbhk2FS+FTYLnz6p/n7FvzxfHLYM+wVvhi+GHp/j5wbnRdNj74fnR9dEM2IfhBdGP0wmhldFF0cXRJdGl0WXR5dEV0ZXRVdHV0TXRtdF10f3RD1vkYOcOiEk065wMW4HC7W5XRx7gqXy13pcrurXMRd7eLdNS6Pu9bldflcflfAJbiCrpDTzjjryIWusCviou46V9Rd74q5G1xxV8I5V9IlumauuWvuWrjHXEvXyrV2j7vH3RPuCfeke9I95dq5p1179zfXwT3jOrpn3bPuOdfZdXFd3fOumxuX++f3ZLLr5Xq53q636+v6uv6uvxvgBriBbqBLcSlusBvshrghbqgb6oa5YW64G+5GuBFulBvlxrgxLtWluvFuvJvgJriJbqKb7Ca7NJfmprlpbrqb7irN+Hkvs91sN9fNdeku3c13588ZM9xCt9Bluky32C12S91St9wtdyvdSrfarXZr3Vq33q13G91Gt9ltdlvdVrfdbXc73A6301/186Juj9vr9rp9bp/b775wWe5Ld8B95Q66r90h94077L51R9xRd8x95467790Jd9KdcqfdGfeDO+t+dOecd6mRcZHxkbciEyJvRyZGJkUmR6ZE0iJTI9Mi70SmR2ZEZkbejcyKvBeZHZkTmRuZF0mPvB+ZH1kQyYh8EFkY+TCSGVkUWRxZElkaWRbxvuDm0Bf2RXzUX+eL+ut9MX+DL+5LeOdL+kR/oy/lb/Kl/c2+jL/Fl/W3+nK+vK/gH/GNfRPf1Dfzzf2jvoV/zLf0rXxr/7hv45/wbf2TPsk/5dv5p317/zffwT/jO/pnfSf/nO/su/iu/nnfzb/gu/sePtn39L38i7637+P7+n6+v3/JD/Av+4H+FZ/iB/nB/lU/xL/mh/rX/TD/hh8e86YfcfESGcb6VD/Oj/dv+Qn+bT/RT/KT/RSf5qf6af4dP93P8DP9u36Wf8/P9nP8XD/Pp/v3/Xy/wGf4D/xC/6HP9Isu3lT2y/0Kv9Kv8qv9Gr/Wr/Pr/Qa/0W/ym/0Wv9Vv89v9R36H/9jv9Lv8bv+J3+M/9Xv9Z36f/9zv91/4LP+lP+C/8gf91/6Q/8Yf9t/6I/6oP+a/88f99/6EP+lP+dP+jP/Bn/U/+nP8f9YYY4wxxv4p4y4Nxa9nfr6d3/N3csQvNu4FAFduKZD1y/nzZ5Rr8/487iMS2kQA4KkenR68+KhaNTk5+cK2mRKCInMALv5N0HkxcCleBK3hCUiCVlDqd+vvI7qcoX+wfvQWgLhf5MTCpfjS+p8BYPLvrP/o48Pnlw1Pxf8P688BKFbkUk5OuBQvgtY/3V9pBaX/oP58LX5Zf+xv18/5eSpAy1/k5IJL8aX6E+ExeBqSfrUlY4wxxhhjjDH2sz6iQoeL158X/8Xn712fJ6hLOTngUvyPrs8ZY4wxxhhjjDF2+T3TpeuTjyYlterwrw8q/6+y/ulBI/i/WvkvGdzxn1HGvzDwHuDiTxQA/JsLApwfyL/yKDb9JftKufDW+fuppad9AP8ZrfwzBpf5g4kxxhhjjDH2p7t00v/rn6vLVRBjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMZYN/RW/TuyX++tx+Q6VMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYu2z+XwAAAP//dMcCKA==")
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x18d811, 0x0)
openat2$dir(0xffffffffffffff9c, &(0x7f0000000340)='./file0/../file0\x00', &(0x7f0000000300)={0x140, 0x161, 0x8}, 0x18)

1m36.603027869s ago: executing program 41 (id=7289):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=@bridge_newvlan={0x28, 0x70, 0x1, 0x0, 0x0, {0x7, 0x0, 0x0, r2}, [@BRIDGE_VLANDB_ENTRY={0x10, 0x1, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_TUNNEL_INFO={0x4, 0x4, 0x0, 0x1, @BRIDGE_VLANDB_TINFO_ID={0x8, 0x1, 0x34000}}}]}, 0x28}}, 0x0)

1m35.697535541s ago: executing program 4 (id=7352):
rt_sigprocmask(0x0, &(0x7f0000000100)={[0xfffffdeffffe]}, 0x0, 0x8)
r0 = gettid()
tkill(r0, 0x29)
rt_sigprocmask(0x2, &(0x7f0000000100)={[0x2]}, 0x0, 0x8)

1m28.354809887s ago: executing program 4 (id=7366):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000a00)='./bus\x00', 0x0, &(0x7f0000000080)={[{@errors_remount}, {@resuid}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1ff}}, {@noblock_validity}]}, 0x3, 0x488, &(0x7f0000001340)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000e00)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r0, 0x8004587d, &(0x7f0000000080)={@id={0x2, 0x0, @c}})
mount$9p_fd(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x10413, 0x0)

1m24.660363373s ago: executing program 42 (id=7366):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000a00)='./bus\x00', 0x0, &(0x7f0000000080)={[{@errors_remount}, {@resuid}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1ff}}, {@noblock_validity}]}, 0x3, 0x488, &(0x7f0000001340)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000e00)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r0, 0x8004587d, &(0x7f0000000080)={@id={0x2, 0x0, @c}})
mount$9p_fd(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x10413, 0x0)

41.26013599s ago: executing program 3 (id=7530):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
write$binfmt_elf64(r0, &(0x7f0000000f00)=ANY=[@ANYBLOB="7f454c4600040001ff7f00000000000003003e00ecffffff940200000000000048000000000000000000000000000000000000000000380001"], 0x78)
close(r0)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x0)

40.380530987s ago: executing program 3 (id=7536):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@updpolicy={0xb8, 0x13, 0xcb23c9c9931e99e9, 0x0, 0x0, {{@in6=@private0, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x9, 0xa, 0x30}, {0x0, 0x0, 0x0, 0x0, 0x1, 0x200000003}, {0x1, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x2}}, 0xb8}}, 0x0)
sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x2500, &(0x7f0000000440)={&(0x7f0000000000)=ANY=[@ANYBLOB="6501000014"], 0x188}}, 0x0)

39.550976807s ago: executing program 3 (id=7540):
pipe(&(0x7f0000000480)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
write(r1, &(0x7f0000000340), 0x11000)
pselect6(0x40, &(0x7f0000000100)={0x2, 0x0, 0xfffffffffffffff8, 0x0, 0x1, 0x10}, 0x0, &(0x7f0000000240)={0x1f, 0xc, 0x715, 0x8000000000000000, 0x0, 0x80000000000000, 0x800, 0x20000}, 0x0, 0x0)
vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)

38.039424747s ago: executing program 3 (id=7549):
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0x3008000, &(0x7f0000000140)={[{@quota}, {@resgid={'resgid', 0x3d, 0xee00}}, {@bh}, {@noload}, {@data_err_ignore}, {@abort}]}, 0xfe, 0x452, &(0x7f0000000980)="$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")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x1204001, &(0x7f00000011c0)={[{@lowerdir={'lowerdir', 0x3d, '.'}, 0x3a}], [], 0x2f})
r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x84)
getdents64(r0, 0x0, 0x0)

36.937317023s ago: executing program 3 (id=7555):
socket$inet6(0xa, 0x800000000000002, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
syz_emit_ethernet(0x3e, &(0x7f00000000c0)={@local, @random="7f0a00034011", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0xb, 0x0, 0x0, 0x12, 0x0, 0x2802, {0x5, 0x2, 0x0, 0x0, 0x0, 0x64, 0x0, 0x0, 0x2f, 0x0, @loopback, @local}}}}}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="0c04000010000104000000000000000000480000", @ANYRES32=r0, @ANYBLOB="101000000000000008000d0005000000e4031680a40001800c00070000000000adffffff0c00", @ANYRES16=r0], 0x40c}}, 0x0)

36.001099869s ago: executing program 3 (id=7559):
syz_mount_image$hfsplus(&(0x7f0000000100), &(0x7f0000000080)='./file1\x00', 0x2000c0, &(0x7f0000002380)=ANY=[@ANYBLOB="747970653d629bfeaa2c747970653d75699e3e2c666f7263652c6465636f6d706f73652c666f7263652c6e6c733d69736f383835392d392c00fb96ab4c9493d7be8b39915215ec88b35cc6fc60097459"], 0x1, 0x6e4, &(0x7f0000000240)="$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")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
r1 = fanotify_init(0x200, 0x40800)
fanotify_mark(r1, 0x261, 0x4800003e, r0, 0x0)

33.1732104s ago: executing program 43 (id=7559):
syz_mount_image$hfsplus(&(0x7f0000000100), &(0x7f0000000080)='./file1\x00', 0x2000c0, &(0x7f0000002380)=ANY=[@ANYBLOB="747970653d629bfeaa2c747970653d75699e3e2c666f7263652c6465636f6d706f73652c666f7263652c6e6c733d69736f383835392d392c00fb96ab4c9493d7be8b39915215ec88b35cc6fc60097459"], 0x1, 0x6e4, &(0x7f0000000240)="$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")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
r1 = fanotify_init(0x200, 0x40800)
fanotify_mark(r1, 0x261, 0x4800003e, r0, 0x0)

6.502741918s ago: executing program 5 (id=7664):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000800), r1)
sendmsg$IEEE802154_LLSEC_DEL_DEV(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000480)={0x20, r2, 0x1, 0x70bd29, 0x25dfdbff, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x10000004}, 0x4008040)

5.201001907s ago: executing program 8 (id=7668):
r0 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
write$binfmt_elf32(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="7f454c46040700030700000000000000020003"], 0x58)
close(r0)
execve(&(0x7f0000000400)='./file0\x00', 0x0, 0x0)

4.506027122s ago: executing program 8 (id=7670):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x11, &(0x7f0000000100)={[{@noblock_validity}, {@data_err_abort}, {@norecovery}, {@min_batch_time={'min_batch_time', 0x3d, 0x71d}}, {@abort}]}, 0x1, 0x610, &(0x7f0000000a40)="$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")
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f00000006c0)='tracefs\x00', 0x80, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000480)='./file0\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000940)=""/28, 0x1c)

4.442667386s ago: executing program 6 (id=7671):
socket$inet6_sctp(0xa, 0x5, 0x84)
r0 = io_uring_setup(0x63d6, &(0x7f0000000240))
io_uring_register$IORING_REGISTER_BUFFERS2(r0, 0x14, &(0x7f0000003480)={0x4, 0x0, 0x4, &(0x7f00000001c0)=[{0x0}, {0x0}, {0x0}, {0x0}], 0x0}, 0x2)
io_uring_register$IORING_UNREGISTER_RING_FDS(r0, 0x15, &(0x7f0000000940)=[{0x4, 0x0, 0x0, &(0x7f0000000200)=[{0x0}, {0x0}, {0x0}, {0x0}], 0x0}, {0x0, 0x0, 0x0, 0x0, 0x0}], 0x2)

4.209174789s ago: executing program 9 (id=7672):
r0 = openat$mice(0xffffffffffffff9c, &(0x7f0000001400), 0x101)
r1 = epoll_create(0xb46d)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000000))
writev(r0, &(0x7f0000001140)=[{&(0x7f000009df80)="c5", 0x1}], 0x1)

3.762346281s ago: executing program 7 (id=7562):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendmmsg$inet6(r0, &(0x7f0000000bc0)=[{{&(0x7f00000000c0)={0xa, 0x4e20, 0x1, @local, 0x7}, 0x1c, &(0x7f00000003c0)=[{&(0x7f0000002700)="89", 0x1}], 0x1}}, {{&(0x7f00000084c0)={0xa, 0x4e21, 0x0, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c, &(0x7f00000002c0)=[{&(0x7f0000008500)="88", 0x1}], 0x1}}], 0x2, 0x24040040)
shutdown(r0, 0x1)
setsockopt$inet_sctp6_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f0000000080)=@sack_info={0x0, 0x8, 0x7ff}, 0xc)

3.520803293s ago: executing program 6 (id=7673):
sendmsg$inet6(0xffffffffffffffff, &(0x7f0000002280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x5b0}, 0x20008001)
bind$inet6(0xffffffffffffffff, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
r0 = syz_open_procfs$pagemap(0x0, &(0x7f0000001080))
ioctl$PAGEMAP_SCAN(r0, 0xc0606610, &(0x7f00000001c0)={0x60, 0x0, &(0x7f0000001000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, 0x0, &(0x7f0000000000)=[{0x7, 0x0, 0x83}, {0x9, 0x0, 0xb187}], 0x2, 0x2, 0x0, 0x0, 0x42, 0x5c})

3.452241537s ago: executing program 9 (id=7674):
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getpid()
writev(0xffffffffffffffff, &(0x7f0000000000)=[{0x0}, {&(0x7f0000000100)="08000000246837f73199aee6fdb9291b3091ec1a2d41d227975ad8ec030f5919f397867997f9c0efa9c9092a31cdbb98ea272787afda0af59a320709c3a59ef05c6f40ceafec53f48d6186e7d8409e35306221caf67b", 0x56}], 0x2)
syz_emit_vhci(&(0x7f0000000100)=ANY=[@ANYBLOB="040e04910c20"], 0x7)

3.373333486s ago: executing program 8 (id=7675):
syz_mount_image$nilfs2(&(0x7f0000000ec0), &(0x7f0000000080)='./file0\x00', 0x4, &(0x7f0000000400)=ANY=[], 0x1, 0xf04, &(0x7f0000000f40)="$eJzs3U9sHNX9APA367+JTbwGfmDgR0ihFYGCHZJITW9BoB4Rl95BIaERhqKGHoiAmB4QlRBFQpwqDlRcKJVSpCKBKlWop7anVr31hHqhUpVKQT20SImr2G/Wuy/72PXYnrV3Px/p67dv3ux8v2M7zszs7NsAjKzG2tfjxxeKEN759O1HX36q+Pjasrtaaxxa+1rEXjOEMNHWL5LtfR4XXLn80qlubRGOrn0t++GxS63nzoQQVsKh8Flohg+Xlr/84N1HDn/02vQtb55/5pUd2v2WdD8AAGAYXfzT8t/u+8cfH5j/6uLBk2Gqtbw8Pm/G/kw87j8SD5TL4+VG6OwXbdFuMllvLEYjWW8sWW88yTOeyTeRbGcis95kj3xjbcu67ScAAADsReV5bTMUjcWOfqOxuLh+3n/N53OTxeJzZ5fPnBtQoQAAAEBl/76wdtOtEEIIIYQQQgghhjhW5wZ9BQIAAAAYNel8YddZ2d6Zulpba/aX/9LDje7Ph21Q9+//1+efHnD+LkY8//uv+osDAEB1w3o0We5XeRxdzmOQziM4ljxvs8f/jWQ745usMzev4F6ZbzBXZ/p93a1y9W/25zgoufrT+TB3q1z96Tydu1Wu/qma66gqV3+XKz+7Uq7+fTXXUVWu/v0111FVrv6ZmuuoKlf/bM11VJWr/4aa66gqV/+BmuuoKlf/XrmtNld/s+Y6qsrVP19zHVXl6r+x5jqqytV/U811VJWr/+aa6xiUO2Nbfh8OZtab6XJOt1fO8QAAAGDU/df8f0IIIUR7rN8CMfg6hBBCCCG2NS4M+gIEAAAAMHDl+wLKd72vRuX4WI/x8fbx6Y0VyvGJHs+f7DE+1WMcAAAACOG3r5+57a1iY767rc6HV84btS98fDVUmMconY9ws/m3Ou/ZVvPvlXnLAAAAGC3F9z67ev+j770w/9XFgyfbzn6vxvPdch7Q8Xht4JPYL+8LmE36RXkOfbIzTyOzXnp94Ibc9h7f4o4CAADACCvP35uhaCy2nXc3Q6OxuLhxPr4QJoozZ5dPH4n98vNZ/jA3MXVt+UM11w0AAAD0b+N8v/v5f/k5vgthslh87uzymXPr/dnW8olG+3WBuY3lRft1gWay/Ghm+bHYLz+/8wdz+9aWL5764fJT273zAAAAMCLOvXj+mSeXl0//yAMPPPCg9WDQf5kAAIDt9sUXb0/8+Njs79bf/78x/93V+OBQ7Dfj3H5/jsvL+wTK9wFc9379JzrzzOXWe75zvWay3liMqaTu6bbthLX5BjufN5/L1+zczmQm30ySbzbJl85TMJ6sX3SZSzB0mZ+wXG8uWZ7Owzie5CiS/Hd3yQUAAAClpReefX7p3IvnHzz77JNPn3769HPHjp747okTRx76zkNLa/f1L7Xf3Q8AAADsRRs3/Q66EgAAAAAAAAAAAAAAAAAAABhddXyc2KD3EQAAAEbdvy6EEFaEyET5AYODrkPs5lidGnwNwx3Bv0MhhBBCbDGc94mVEFZX00+aBwAAANhZVy6/dKq9vc5Ksa35WltrrjdXY96ynX3wr/PXolzt0sOd10v2b2s1jLq6f//l3635p7qOv//q9uafDht/+0Jff/8anRs42dHb12/ee5d+udDKH0K4fbzP/On+P95vxk6Hk/z3hv7yr76X5H+io9foN/99Sf79fea/bv+f7zdjp/tj/oXYP3xPv/k7d7H8LS33o99fgG8n+/9U6Dd/sv/NPhMmHoj5AWAUtf43X70w2EK2WXmUUB5Pz8R+ub/xcDOkdz9s9vi/kWxnfMuVd263PA66NfanW3V05i1ttv7y+zIb2xsq1pnaK3eV5Orfrp/jTsvVP1FzHVXl6p+suY6qcvV3P3vffXL1T9dcR1W5+vu+EDFgufr3ynXlXP0zNddRVa7+2ZrrqCpX/2b/Hx+UXP0Haq6jqlz9czXXUVWu/oqX1WqXq3++5jqqytV/Y811VJWr/6aa66gqV//NNdcxKHfENnc+XJ5/zsWxst9M+lNdvpd9vxgCAAAA7Kh/7sp5INquHAy8FiGEEEIIIYY//rO6btB1CCF2LlZXB3n1gUHb2XczA7Bb+fs/2vz8R5uf/2jz8+frlK/EF0m/NNZjfLzH+ESP8clkPP19neoxflOy3dXyumZ0c4/x/4t7kBs/0OP5t/YYX+gxfluP8dt7jN/RYxwAAIDRcEtsnR8CAADA8Hr5V5+88Zt7n7g8/9XFgyfD5HXzzh+J/an42vrrsZ/Oe1+aiK/5/yT2fxHb38f278n67j8BAACAnVd+TozX/wEAAGB4lZ9T6vwfAAAAhtd8bJ3/AwAAwPC6MbbO/wEAAGCIFdPdF8e2vC5wd2z7ndcPANj9/j+2d8b2YGzviu03YlseB9wT22/WVB8AsH1+/v2fnnir2Jjv/1gyfiUuL9vrrKxfKSganTP574vt/th+q8960s8D6Dd/6UCfeXYq/9wW8wMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAw6Ox9vX48YUihHc+ffvRn02+8Zdry+5qrXFo7WsRe80QwkTreeXoRv/XccUrl1861d5ejW0RjoYiFK3l4bFLrUwzIYSVcCh8Fprhw6XlLz9495HDH702fcub5595ZQe/BR37BwAAAMPofwEAAP//fccg7g==")
madvise(&(0x7f0000000000/0x600000)=nil, 0x600722, 0x19)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x0)
read(r0, &(0x7f0000000400)=""/4096, 0x1000)

2.975247945s ago: executing program 6 (id=7676):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x13, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000040000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000180)='sys_enter\x00', r0}, 0x10)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103)
removexattr(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240)=@known='system.posix_acl_access\x00')

2.925104029s ago: executing program 5 (id=7677):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1801000000000000000000004b84ffec850000006d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
setpriority(0x2, 0x0, 0x0)

2.819785386s ago: executing program 7 (id=7678):
r0 = syz_open_dev$sndctrl(&(0x7f0000000080), 0x0, 0xc8080)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000000)=0x639)
readv(r0, &(0x7f0000000180)=[{&(0x7f0000000200)=""/147, 0x48}, {0x0, 0x2}], 0x2)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r0, 0xc1105517, &(0x7f00000002c0)={{0x0, 0x6, 0xff00, 0x0, 'syz0\x00', 0xfffffffd}, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 'syz0\x00', 0x0})

2.771552527s ago: executing program 9 (id=7679):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r0, 0x84, 0xc, &(0x7f0000000000), 0x4)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000000140)=[@in={0x2, 0x4e20, @remote}], 0x10)
getsockopt$sock_buf(r0, 0x1, 0x1c, 0x0, &(0x7f0000000040))

2.193218602s ago: executing program 5 (id=7680):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', <r1=>0x0})
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000001800)={0x6, 0x3, &(0x7f00000006c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x3}}, &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', r1, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000580)={r2, r1, 0x25, 0x4, @val=@netkit={@void, @value=r2}}, 0x1c)

2.103553415s ago: executing program 7 (id=7681):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000040)={{0x12, 0x1, 0x200, 0xa, 0x86, 0xf3, 0x40, 0x1110, 0x9024, 0xdb24, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0xe9, 0x50, 0x9, [{{0x9, 0x4, 0x62, 0x4, 0x0, 0x6f, 0x6f, 0x49, 0x5}}]}}]}}, 0x0)
syz_usb_disconnect(r0)
r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6161, 0x4d15, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x4f8}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r1, 0x0, 0x0)

2.024625725s ago: executing program 6 (id=7682):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=ANY=[@ANYBLOB="280000000203010400000000ffffffff000000000800010001"], 0x28}, 0x1, 0x0, 0x0, 0x800}, 0x4000040)
sendmsg$NFQNL_MSG_CONFIG(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c000000020311"], 0x1c}}, 0x0)

1.585928732s ago: executing program 8 (id=7683):
socket$igmp(0x2, 0x3, 0x2)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/raw\x00')
socket$igmp(0x2, 0x3, 0x2)
pread64(r0, &(0x7f0000000040)=""/211, 0xd3, 0x10000000000076)

1.563685924s ago: executing program 5 (id=7684):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000002304e800000000000000ea850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f00000001c0)='netlink_extack\x00', r0}, 0x10)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r1, &(0x7f0000001280)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000380)={0x24, 0x2e, 0x1, 0x0, 0x0, "", [@typed={0x8, 0xc, 0x0, 0x0, @uid}, @nested={0x9, 0x1, 0x0, 0x1, [@generic="f1c2348fb4"]}]}, 0x24}], 0x1, 0x0, 0x0, 0x2000000}, 0x0)

1.409170589s ago: executing program 6 (id=7685):
syz_mount_image$nilfs2(&(0x7f0000000480), &(0x7f0000000f00)='./file1\x00', 0x208800, &(0x7f0000003100)=ANY=[], 0x1, 0xee7, &(0x7f00000042c0)="$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")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000500)='.\x00', 0x82400, 0x184)
lseek(r0, 0x8, 0x1)
getdents(r0, 0x0, 0x40)

1.240498054s ago: executing program 9 (id=7686):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r0, 0x0)
accept(r0, 0x0, 0x0)
shutdown(r0, 0x0)

984.814222ms ago: executing program 5 (id=7687):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000540)='./bus\x00', 0x8800, &(0x7f00000006c0)={[{@errors_remount}, {@sysvgroups}, {@minixdf}]}, 0x1, 0x50c, &(0x7f0000001000)="$eJzs3c9vG1kdAPCvnThx0uwmu+wBEOyW3YWCqjqJuxut9gDLEaGVEHsEqRsSN4pix1HsLJvQQ3rmikQlTvTIH8C5Jw7cuCC4cSkHJH5EoAaJg9GMJ6mb2o3VJHYUfz7SaObNm/r7fXH8Xuc59gtgZF2PiP2ImIiITyNiNjufy7b4qL0l1z05uLdyeHBvJRet1if/zKX1ybno+DeJa9ljFiPihw8jfpJ7Pm5jd29juVqtbGfl+WZta76xu3drvba8VlmrbJbLS4tLCx/cfr98bm19qzaRHX318R/2v/WzJK2Z7ExnO85Tu+mF4ziJ8Yj4/kUEG4KxrD0Tw06El5KPiNcj4u309T8bY+mzCQBcZa3WbLRmO8sAwFWXT+fAcvlSNhcwE/l8qdSew3sjpvPVeqN58259Z3O1PVc2F4X83fVqZSGbK5yLQi4pL6bHT8vlE+XbEfFaRPxiciotl1bq1dVh/scHAEbYtRPj/38m2+M/AHDFFYedAAAwcD3G//1B5wEADI77fwAYPcZ/ABg97fF/athpAAAD5P4fAEaP8R8ARsoPPv442VqH2fdfr362u7NR/+zWaqWxUartrJRW6ttbpbV6fS39zp7aaY9Xrde3Ft+Lnc/nvr3VaM43dvfu1Oo7m8076fd636kU0qt8sgAAhum1tx79OZeMyB9OpVt0rOVQGGpmwEXLDzsBYGjGhp0AMDRW+4LRdYZ7fNMDcEV0WaL3GcVuHxBqtVqti0sJuGA3vmT+H0ZVx/y/vwKGEWP+H0aX+X8YXa1Wrt81/6PfCwGAy80cP9Dj/f/Xs/1vsjcHfrx68ooHF5kVAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAXG5H6/+WsrXAZyKfL5UiXomIuSjk7q5XKwsR8WpE/GmyMJmUF4ecMwBwVvm/5bL1v27MvjvzTNWb144PJyLip7/65JefLzeb23+MmMj9a/LofPNBdr48+OwBgNMdjdPpvuNG/snBvZWjbZD5/P27EVFsxz88mIjD4/jjMZ7ui1GIiOl/57JyW65j7uIs9u9HxBe7tT8XM+kcSHvl05Pxk9ivDDR+/pn4+bSuvU9+Fl84h1xg1DxK+p+Pur3+8nE93Xd//RfTHurssv4veaiVw7QPfBr/qP8b69H/Xe83xnu/+177aOr5uvsRXx6POIp92NH/HMXP9Yj/bp/x//KVN9/uVdf6dcSN6B6/M9Z8s7Y139jdu7VeW16rrFU2y+WlxaWFD26/X55P56jne48G//jw5qu96pL2T/eIXzyl/V/vs/0P//fpj772gvjffKdb/Hy88YL4yZj4jT7jL0//ttirLom/2qP9pz3/N/uM//ive88tGw4ADE9jd29juVqtbI/kQfR38e+zH9alyHmkD5Jn4RKk0fXgO4OKNRHdq37+TvvXdDKi8xe71XqpWL16jPOYdQMug+MXfUT8d9jJAAAAAAAAAAAAAAAAXQ3iE0vDbiMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABX1/8DAAD//9RMyv0=")
r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
io_setup(0x2, &(0x7f0000000200)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000000080)=[&(0x7f00000000c0)={0x25, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f00000002c0)="f8", 0x1}])

954.129911ms ago: executing program 8 (id=7688):
io_setup(0x8, &(0x7f00000002c0)=<r0=>0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = eventfd(0x729)
io_submit(r0, 0x1, &(0x7f0000000380)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x6, 0x65, r1, 0x0, 0x0, 0x10, 0x0, 0x3, r2}])

620.729713ms ago: executing program 9 (id=7689):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r1=>0x0})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x40, r2, 0x1, 0x70bd29, 0x0, {{0x2}, {@val={0x8, 0x3, r1}, @val={0xc, 0x99, {0x41, 0x5f}}}}, [@chandef_params=[@NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x976}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}]]}, 0x40}}, 0x0)

464.605849ms ago: executing program 6 (id=7690):
r0 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000580)=@newqdisc={0x6c, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x3c, 0x2, {{0x9, 0x3, 0x0, 0x6, 0xfffffffa, 0x22}, [@TCA_NETEM_RATE={0x14, 0x6, {0xe1, 0x79d, 0x0, 0x3}}, @TCA_NETEM_RATE64={0xc, 0x8, 0xe61c6a5c983a3b82}]}}}]}, 0x6c}}, 0x0)

329.712001ms ago: executing program 8 (id=7691):
ioprio_set$pid(0x1, 0x0, 0x4007)
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001480), 0x42002, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/timer_list\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x20000023896)

303.810393ms ago: executing program 9 (id=7692):
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$TIPC_DEST_DROPPABLE(r0, 0x10f, 0x81, 0x0, 0x0)
sendmmsg$inet(r0, &(0x7f0000001540)=[{{0x0, 0xfffffffffffffda1, 0x0}}], 0x40001b6, 0x0)
close(r1)

0s ago: executing program 5 (id=7693):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
ioctl$int_in(r0, 0x5421, &(0x7f0000000080)=0xfffffffffbfffffe)
connect$vsock_stream(r0, &(0x7f0000000280)={0x28, 0x0, 0xffffffff, @local}, 0x31)
connect$vsock_stream(r0, 0x0, 0x0)

kernel console output (not intermixed with test programs):

p4: detected capacity change from 0 to 2048
[ 1705.195043][T22192] loop6: detected capacity change from 0 to 2048
[ 1705.385849][T22192] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1705.400362][T22192] ext4 filesystem being mounted at /262/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1705.512380][T22200] vhci_hcd vhci_hcd.0: pdev(8) rhport(0) sockfd(3)
[ 1705.519283][T22200] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[ 1705.527593][T22200] vhci_hcd vhci_hcd.0: Device attached
[ 1705.615730][   T30] audit: type=1800 audit(1749673154.340:271): pid=22192 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.6446" name="file1" dev="loop6" ino=15 res=0 errno=0
[ 1705.640543][T22203] vhci_hcd vhci_hcd.0: pdev(8) rhport(1) sockfd(5)
[ 1705.647417][T22203] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[ 1705.656047][T22203] vhci_hcd vhci_hcd.0: Device attached
[ 1705.676227][T22200] vhci_hcd vhci_hcd.0: pdev(8) rhport(2) sockfd(8)
[ 1705.683171][T22200] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[ 1705.691933][T22200] vhci_hcd vhci_hcd.0: Device attached
[ 1705.705513][T14167] vhci_hcd: vhci_device speed not set
[ 1705.785444][T14167] usb 49-1: new full-speed USB device number 2 using vhci_hcd
[ 1705.823680][T22210] vhci_hcd vhci_hcd.0: pdev(8) rhport(3) sockfd(11)
[ 1705.830630][T22210] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[ 1705.839664][T22210] vhci_hcd vhci_hcd.0: Device attached
[ 1705.889973][T22211] vhci_hcd: connection closed
[ 1705.891310][   T14] vhci_hcd: stop threads
[ 1705.909427][   T14] vhci_hcd: release socket
[ 1705.914121][   T14] vhci_hcd: disconnect device
[ 1705.942644][T22208] vhci_hcd: connection closed
[ 1705.944406][T22204] vhci_hcd: connection closed
[ 1705.950070][T22201] vhci_hcd: connection reset by peer
[ 1705.982845][   T14] vhci_hcd: stop threads
[ 1705.987398][   T14] vhci_hcd: release socket
[ 1705.999288][   T14] vhci_hcd: disconnect device
[ 1706.067994][   T14] vhci_hcd: stop threads
[ 1706.072560][   T14] vhci_hcd: release socket
[ 1706.077655][   T14] vhci_hcd: disconnect device
[ 1706.138832][   T14] vhci_hcd: stop threads
[ 1706.143388][   T14] vhci_hcd: release socket
[ 1706.148503][   T14] vhci_hcd: disconnect device
[ 1706.221233][T18481] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1706.963237][T22220] use of bytesused == 0 is deprecated and will be removed in the future,
[ 1706.978960][T22220] use the actual size instead.
[ 1708.118801][T22239] loop0: detected capacity change from 0 to 256
[ 1708.181883][T22239] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1708.193513][T22239] exFAT-fs (loop0): Medium has reported failures. Some data may be lost.
[ 1708.250386][T22239] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[ 1708.321028][T22237] loop6: detected capacity change from 0 to 2048
[ 1708.490585][T22237] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1708.572922][T22237] EXT4-fs (loop6): shut down requested (2)
[ 1708.696030][T18481] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1709.235817][T22249] loop6: detected capacity change from 0 to 1024
[ 1709.744581][   T30] audit: type=1800 audit(1749673158.685:272): pid=22259 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.6469" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[ 1710.684380][T14167] vhci_hcd: vhci_device speed not set
[ 1711.270871][T22276] netlink: 16 bytes leftover after parsing attributes in process `syz.4.6475'.
[ 1712.801276][T17287] usb 10-1: new high-speed USB device number 9 using dummy_hcd
[ 1712.992837][T17287] usb 10-1: config 0 has no interfaces?
[ 1713.001114][T17287] usb 10-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[ 1713.001287][T17287] usb 10-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[ 1713.001420][T17287] usb 10-1: Product: syz
[ 1713.001527][T17287] usb 10-1: Manufacturer: syz
[ 1713.026127][T17287] usb 10-1: config 0 descriptor??
[ 1713.144934][T22295] loop0: detected capacity change from 0 to 512
[ 1713.250340][T17287] usb 10-1: USB disconnect, device number 9
[ 1713.268412][T22295] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1713.268865][T22295] ext4 filesystem being mounted at /29/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1713.729831][T21748] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1716.940684][T22344] loop4: detected capacity change from 0 to 1024
[ 1717.041192][T22350] netlink: 104 bytes leftover after parsing attributes in process `syz.9.6507'.
[ 1717.860366][T21338] wlan1: BSS 50:50:50:50:50:50 switches to unsupported channel (0 MHz), disconnecting
[ 1717.929974][T21338] wlan1: Selected IBSS BSSID 50:50:50:50:50:50 based on configured SSID
[ 1721.696046][T17287] usb 10-1: new full-speed USB device number 10 using dummy_hcd
[ 1721.707558][T22419] loop4: detected capacity change from 0 to 64
[ 1721.883404][T17287] usb 10-1: config 0 interface 0 altsetting 8 has 1 endpoint descriptor, different from the interface descriptor's value: 4
[ 1721.902824][T17287] usb 10-1: config 0 interface 0 has no altsetting 0
[ 1721.909941][T17287] usb 10-1: New USB device found, idVendor=28bd, idProduct=0055, bcdDevice= 0.00
[ 1721.922602][T17287] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1722.048217][T17287] usb 10-1: config 0 descriptor??
[ 1722.282805][T22424] netlink: 48 bytes leftover after parsing attributes in process `syz.8.6540'.
[ 1722.502390][T17287] uclogic 0003:28BD:0055.0039: interface is invalid, ignoring
[ 1722.619010][T22428] netlink: 'syz.4.6543': attribute type 39 has an invalid length.
[ 1723.029194][T22435] block nbd8: NBD_DISCONNECT
[ 1724.595940][T14167] usb 10-1: USB disconnect, device number 10
[ 1725.512544][T22465] Attempt to restore checkpoint with obsolete wellknown handles
[ 1725.742988][T22470] loop6: detected capacity change from 0 to 128
[ 1725.822370][T22470] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 1725.933678][T22470] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1726.045261][T22470] ext2 filesystem being mounted at /283/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1726.547332][T18481] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1726.690646][T22476] loop4: detected capacity change from 0 to 4096
[ 1726.758278][T22476] ntfs3(loop4): Different NTFS sector size (1024) and media sector size (512).
[ 1727.813357][T22498] loop0: detected capacity change from 0 to 512
[ 1728.047268][T22498] EXT4-fs error (device loop0): ext4_orphan_get:1419: comm syz.0.6570: bad orphan inode 11862016
[ 1728.112393][T22498] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[ 1728.125877][T22498] ext4 filesystem being mounted at /50/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1728.281694][T22498] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000d40000 ro.
[ 1728.383603][T22505] EXT4-fs (loop0): warning: mounting fs with errors, running e2fsck is recommended
[ 1728.487697][T22505] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000d40000 r/w.
[ 1729.074789][T21748] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[ 1729.155473][T22516] netlink: 'syz.4.6578': attribute type 4 has an invalid length.
[ 1729.164365][T22516] netlink: 32 bytes leftover after parsing attributes in process `syz.4.6578'.
[ 1729.657778][   T30] audit: type=1326 audit(1749673179.583:273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22522 comm="syz.0.6577" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5429b8e929 code=0x7ffc0000
[ 1729.710859][   T30] audit: type=1326 audit(1749673179.625:274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22522 comm="syz.0.6577" exe="/root/syz-executor" sig=0 arch=c000003e syscall=93 compat=0 ip=0x7f5429b8e929 code=0x7ffc0000
[ 1729.734482][   T30] audit: type=1326 audit(1749673179.625:275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22522 comm="syz.0.6577" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5429b8e929 code=0x7ffc0000
[ 1730.725866][T22540] loop9: detected capacity change from 0 to 65
[ 1730.745575][T22540] BFS-fs: bfs_fill_super(): NOTE: filesystem loop9 was created with 512 inodes, the real maximum is 511, mounting anyway
[ 1731.104968][T22544] netlink: 12 bytes leftover after parsing attributes in process `syz.6.6589'.
[ 1731.296296][T10364] usb 9-1: new high-speed USB device number 25 using dummy_hcd
[ 1731.507438][T10364] usb 9-1: Using ep0 maxpacket: 32
[ 1731.532949][T10364] usb 9-1: config 0 has an invalid interface number: 51 but max is 0
[ 1731.542028][T10364] usb 9-1: config 0 has no interface number 0
[ 1731.624618][T10364] usb 9-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[ 1731.634558][T10364] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1731.643116][T10364] usb 9-1: Product: syz
[ 1731.647579][T10364] usb 9-1: Manufacturer: syz
[ 1731.657026][T10364] usb 9-1: SerialNumber: syz
[ 1731.778064][T10364] usb 9-1: config 0 descriptor??
[ 1731.804027][T10364] quatech2 9-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[ 1732.030588][T10364] usb 9-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[ 1732.069488][T10364] usb 9-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[ 1732.243646][T22545] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1732.254024][T22545] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1732.501262][    C0] usb 9-1: qt2_read_bulk_callback - non-zero urb status: -71
[ 1732.512090][T14167] usb 9-1: USB disconnect, device number 25
[ 1732.550379][T14167] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[ 1732.592275][T14167] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[ 1732.606260][T14167] quatech2 9-1:0.51: device disconnected
[ 1733.168756][T21332] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 1733.659568][T22566] loop0: detected capacity change from 0 to 32768
[ 1733.712078][T22566] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.6598 (22566)
[ 1734.445525][T22569] loop6: detected capacity change from 0 to 32768
[ 1734.494318][T22566] BTRFS info (device loop0): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[ 1734.505479][T22566] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm
[ 1734.515270][T22566] BTRFS info (device loop0): disk space caching is enabled
[ 1734.523022][T22566] BTRFS warning (device loop0): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[ 1734.666968][T22569] XFS (loop6): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1734.770711][T22566] BTRFS info (device loop0): rebuilding free space tree
[ 1734.818703][T22566] BTRFS info (device loop0): disabling free space tree
[ 1734.826161][T22566] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[ 1734.836947][T22566] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[ 1734.927068][T22598] loop9: detected capacity change from 0 to 64
[ 1734.939047][T22566] BTRFS info (device loop0): balance: start -susage=34359738372,drange=7..526336,limit=0..6
[ 1734.953742][T22566] ------------[ cut here ]------------
[ 1734.959631][T22566] BTRFS: Transaction aborted (error -28)
[ 1734.972387][T22566] WARNING: CPU: 0 PID: 22566 at fs/btrfs/block-group.c:2781 btrfs_create_pending_block_groups+0x1497/0x2720
[ 1734.984534][T22566] Modules linked in:
[ 1734.988854][T22566] CPU: 0 UID: 0 PID: 22566 Comm: syz.0.6598 Not tainted 6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(undef) 
[ 1735.001572][T22566] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1735.012295][T22566] RIP: 0010:btrfs_create_pending_block_groups+0x1497/0x2720
[ 1735.020016][T22566] Code: 44 89 a0 68 09 00 00 48 c7 80 80 0c 00 00 00 00 00 00 45 85 ed 0f 85 6d 11 00 00 48 c7 c7 c5 4d ff 91 89 de e8 fa 6c c9 fb 90 <0f> 0b 90 90 e9 2c ff ff ff 8b 7d d4 e8 78 64 40 fd 48 8b 45 b8 e9
[ 1735.040417][T22566] RSP: 0018:ffff88809385b4e8 EFLAGS: 00010287
[ 1735.046993][T22566] RAX: ffffffff81207e15 RBX: 00000000ffffffe4 RCX: 0000000000080000
[ 1735.055426][T22566] RDX: ffffc9001061b000 RSI: 00000000000046f9 RDI: 00000000000046fa
[ 1735.069061][T22566] RBP: ffff88809385b698 R08: ffffea000000000f R09: 0000000000000000
[ 1735.077382][T22566] R10: ffff888237b87028 R11: ffff88823f24d2e0 R12: 0000000000000000
[ 1735.090636][T22566] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000000
[ 1735.100326][T22566] FS:  00007f542a9cd6c0(0000) GS:ffff8881aa884000(0000) knlGS:0000000000000000
[ 1735.109769][T22566] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1735.116772][T22566] CR2: 0000001b2c81eff8 CR3: 0000000063962000 CR4: 00000000003526f0
[ 1735.125072][T22566] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1735.133526][T22566] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1735.141983][T22566] Call Trace:
[ 1735.146629][T22566]  <TASK>
[ 1735.149830][T22566]  ? kmsan_internal_unpoison_memory+0x14/0x20
[ 1735.157093][T22566]  ? btrfs_chunk_alloc_add_chunk_item+0x1583/0x18e0
[ 1735.168897][T22566]  ? kmsan_get_shadow_origin_ptr+0x40/0xb0
[ 1735.176445][T22566]  ? btrfs_trans_release_metadata+0x2e6/0xaa0
[ 1735.182962][T22566]  __btrfs_end_transaction+0x1a1/0xb40
[ 1735.189010][T22566]  ? kmsan_internal_unpoison_memory+0x14/0x20
[ 1735.195663][T22566]  btrfs_end_transaction+0x30/0x40
[ 1735.201131][T22566]  btrfs_inc_block_group_ro+0xf96/0x10e0
[ 1735.207545][T22566]  btrfs_relocate_block_group+0x589/0x1b30
[ 1735.213889][T22566]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1735.220171][T22566]  btrfs_relocate_chunk+0xe0/0x660
[ 1735.225786][T22566]  ? kmsan_get_metadata+0xfb/0x160
[ 1735.231442][T22566]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1735.237663][T22566]  __btrfs_balance+0x3507/0x3a00
[ 1735.243308][T22566]  btrfs_balance+0x14fa/0x1e50
[ 1735.248502][T22566]  btrfs_ioctl_balance+0x79d/0xdd0
[ 1735.254182][T22566]  btrfs_ioctl+0xe6a/0x1340
[ 1735.263535][T22566]  ? __pfx_btrfs_ioctl+0x10/0x10
[ 1735.269963][T22566]  __se_sys_ioctl+0x239/0x400
[ 1735.275033][T22566]  __x64_sys_ioctl+0x97/0xe0
[ 1735.280288][T22566]  x64_sys_call+0x1ebe/0x3db0
[ 1735.285371][T22566]  do_syscall_64+0xd9/0x210
[ 1735.290349][T22566]  ? irqentry_exit+0x16/0x60
[ 1735.295336][T22566]  ? clear_bhb_loop+0x40/0x90
[ 1735.300535][T22566]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1735.306869][T22566] RIP: 0033:0x7f5429b8e929
[ 1735.311585][T22566] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1735.331890][T22566] RSP: 002b:00007f542a9cd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1735.340829][T22566] RAX: ffffffffffffffda RBX: 00007f5429db5fa0 RCX: 00007f5429b8e929
[ 1735.349259][T22566] RDX: 0000200000000440 RSI: 00000000c4009420 RDI: 0000000000000003
[ 1735.361710][T22566] RBP: 00007f5429c10b39 R08: 0000000000000000 R09: 0000000000000000
[ 1735.371055][T22566] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1735.380194][T22566] R13: 0000000000000000 R14: 00007f5429db5fa0 R15: 00007ffe6299e328
[ 1735.388687][T22566]  </TASK>
[ 1735.391964][T22566] ---[ end trace 0000000000000000 ]---
[ 1735.397811][T22566] BTRFS info (device loop0 state A): dumping space info:
[ 1735.405270][T22566] BTRFS info (device loop0 state A): space_info DATA+METADATA (sub-group id 0) has 2240512 free, is full
[ 1735.416918][T22566] BTRFS info (device loop0 state A): space_info total=3276800, used=49152, pinned=0, reserved=0, may_use=987136, readonly=0 zone_unusable=0
[ 1735.431636][T22566] BTRFS info (device loop0 state A): space_info SYSTEM (sub-group id 0) has 8253440 free, is not full
[ 1735.443119][T22566] BTRFS info (device loop0 state A): space_info total=12451840, used=4096, pinned=0, reserved=4096, may_use=0, readonly=4190208 zone_unusable=0
[ 1735.462488][T22566] BTRFS info (device loop0 state A): global_block_rsv: size 983040 reserved 983040
[ 1735.473436][T22566] BTRFS info (device loop0 state A): trans_block_rsv: size 0 reserved 0
[ 1735.482230][T22566] BTRFS info (device loop0 state A): chunk_block_rsv: size 0 reserved 0
[ 1735.491000][T22566] BTRFS info (device loop0 state A): delayed_block_rsv: size 0 reserved 0
[ 1735.500074][T22566] BTRFS info (device loop0 state A): delayed_refs_rsv: size 196608 reserved 4096
[ 1735.509664][T22566] BTRFS: error (device loop0 state A) in btrfs_create_pending_block_groups:2781: errno=-28 No space left
[ 1735.521299][T22566] BTRFS info (device loop0 state EA): forced readonly
[ 1735.528695][T22566] BTRFS: error (device loop0 state EA) in btrfs_create_pending_block_groups:2793: errno=-28 No space left
[ 1735.540905][T22566] BTRFS info (device loop0 state EA): balance: ended with status: -30
[ 1735.683413][T22569] XFS (loop6): Ending clean mount
[ 1735.690744][T21748] BTRFS info (device loop0 state EA): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[ 1735.714278][T22569] XFS (loop6): Quotacheck needed: Please wait.
[ 1735.842996][T22569] XFS (loop6): Quotacheck: Done.
[ 1736.074702][T18481] XFS (loop6): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1737.293379][T22615] netlink: 16 bytes leftover after parsing attributes in process `syz.8.6612'.
[ 1737.609810][T14167] usb 10-1: new high-speed USB device number 11 using dummy_hcd
[ 1737.687067][T22619] vxcan3: entered allmulticast mode
[ 1737.823668][T14167] usb 10-1: Using ep0 maxpacket: 8
[ 1737.875718][T14167] usb 10-1: New USB device found, idVendor=0c45, idProduct=613e, bcdDevice=c4.6d
[ 1737.885707][T14167] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1737.901193][T14167] usb 10-1: Product: syz
[ 1737.905752][T14167] usb 10-1: Manufacturer: syz
[ 1737.913037][T14167] usb 10-1: SerialNumber: syz
[ 1737.989020][T14167] usb 10-1: config 0 descriptor??
[ 1738.063419][T14167] gspca_main: sonixj-2.14.0 probing 0c45:613e
[ 1738.083137][T22621] netlink: 24 bytes leftover after parsing attributes in process `syz.8.6615'.
[ 1738.907244][T14167] gspca_sonixj: reg_r err -71
[ 1738.912861][T14167] sonixj 10-1:0.0: probe with driver sonixj failed with error -71
[ 1738.938495][T14167] usb 10-1: USB disconnect, device number 11
[ 1740.192738][T22634] loop4: detected capacity change from 0 to 32768
[ 1740.204050][T22634] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.6619 (22634)
[ 1740.231547][T22634] BTRFS info (device loop4): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[ 1740.248059][T22634] BTRFS info (device loop4): using xxhash64 (xxhash64-generic) checksum algorithm
[ 1740.257920][T22634] BTRFS info (device loop4): using free-space-tree
[ 1740.479631][T22634] BTRFS info (device loop4): rebuilding free space tree
[ 1740.666264][T18329] BTRFS info (device loop4): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[ 1740.703305][T22657] loop6: detected capacity change from 0 to 16
[ 1740.777720][T22657] erofs (device loop6): mounted with root inode @ nid 36.
[ 1742.540573][T22672] loop9: detected capacity change from 0 to 1024
[ 1742.670078][T22672] syz.9.6631: attempt to access beyond end of device
[ 1742.670078][T22672] loop9: rw=0, sector=112668, nr_sectors = 2 limit=1024
[ 1742.688624][T22672] Buffer I/O error on dev loop9, logical block 56334, async page read
[ 1742.698667][T22672] syz.9.6631: attempt to access beyond end of device
[ 1742.698667][T22672] loop9: rw=0, sector=112668, nr_sectors = 2 limit=1024
[ 1742.712738][T22672] Buffer I/O error on dev loop9, logical block 56334, async page read
[ 1742.724363][   T30] audit: type=1800 audit(1749673193.312:276): pid=22672 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.9.6631" name="file1" dev="loop9" ino=20 res=0 errno=0
[ 1742.745795][T22681] sctp: [Deprecated]: syz.0.6632 (pid 22681) Use of int in max_burst socket option.
[ 1742.745795][T22681] Use struct sctp_assoc_value instead
[ 1742.793436][T22671] hfsplus: invalid extended attribute record
[ 1742.800375][T22671] hfsplus: can't free extent
[ 1743.103551][T15622] hfsplus: b-tree write err: -5, ino 4
[ 1744.729506][T22708] program syz.0.6645 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1745.392324][T22719] loop9: detected capacity change from 0 to 65
[ 1745.534256][T22719] BFS-fs: bfs_fill_super(): NOTE: filesystem loop9 was created with 512 inodes, the real maximum is 511, mounting anyway
[ 1745.710462][T22711] syz.4.6646 (22711): drop_caches: 2
[ 1746.386372][T22725] netlink: 72 bytes leftover after parsing attributes in process `syz.0.6652'.
[ 1746.933039][T22732] netlink: 72 bytes leftover after parsing attributes in process `syz.8.6654'.
[ 1749.477188][T22760] Falling back ldisc for ptm0.
[ 1749.551607][T22761] netlink: 36 bytes leftover after parsing attributes in process `syz.6.6664'.
[ 1753.136201][T22809] netlink: 56 bytes leftover after parsing attributes in process `syz.6.6687'.
[ 1755.094352][T22836] netlink: 'syz.6.6699': attribute type 21 has an invalid length.
[ 1755.102958][T22836] netlink: 'syz.6.6699': attribute type 1 has an invalid length.
[ 1755.111110][T22836] netlink: 144 bytes leftover after parsing attributes in process `syz.6.6699'.
[ 1756.199769][T22839] loop0: detected capacity change from 0 to 32768
[ 1756.286205][T22839] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1757.140046][T22839] XFS (loop0): Ending clean mount
[ 1757.255940][T21748] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1757.461760][T22864] rtc_cmos 00:00: Alarms can be up to one day in the future
[ 1757.513722][T22863] rtc_cmos 00:00: Alarms can be up to one day in the future
[ 1758.025650][T10362] rtc_cmos 00:00: Alarms can be up to one day in the future
[ 1758.034045][T10362] rtc_cmos 00:00: Alarms can be up to one day in the future
[ 1758.042265][T10362] rtc_cmos 00:00: Alarms can be up to one day in the future
[ 1758.050886][T10362] rtc_cmos 00:00: Alarms can be up to one day in the future
[ 1758.058768][T10362] rtc rtc0: __rtc_set_alarm: err=-22
[ 1759.214412][T22891] sp0: Synchronizing with TNC
[ 1760.113861][T22899] loop9: detected capacity change from 0 to 2048
[ 1760.190901][T22899] EXT4-fs (loop9): stripe (8) is not aligned with cluster size (16), stripe is disabled
[ 1760.219782][T22906] loop6: detected capacity change from 0 to 512
[ 1760.255939][T22906] EXT4-fs: Ignoring removed i_version option
[ 1760.303921][T22906] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[ 1760.355892][T22899] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1760.445201][T22899] EXT4-fs (loop9): shut down requested (2)
[ 1760.468195][T22906] EXT4-fs (loop6): 1 truncate cleaned up
[ 1760.476874][T22906] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1760.579423][T19255] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1760.681650][T22914] netlink: 'syz.8.6729': attribute type 10 has an invalid length.
[ 1760.752358][T22914] team0: Port device syz_tun added
[ 1761.129981][T18481] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1761.550504][T22924] netlink: 27 bytes leftover after parsing attributes in process `syz.8.6734'.
[ 1762.245870][T22935] netlink: 12 bytes leftover after parsing attributes in process `syz.8.6739'.
[ 1762.790880][T22940] loop4: detected capacity change from 0 to 256
[ 1762.839199][T22940] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[ 1762.868719][T22940] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=512, location=512
[ 1762.886210][T22940] UDF-fs: warning (device loop4): udf_load_vrs: No anchor found
[ 1762.896669][T22940] UDF-fs: Scanning with blocksize 512 failed
[ 1762.940363][T22945] loop9: detected capacity change from 0 to 256
[ 1763.000160][T22940] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[ 1763.086629][T22940] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1763.127405][T22945] exFAT-fs (loop9): failed to load upcase table (idx : 0x00011bf5, chksum : 0xdfba1b89, utbl_chksum : 0xe619d30d)
[ 1763.141489][T22945] exFAT-fs (loop9): bogus allocation bitmap size(need : 2, cur : 17179869186)
[ 1763.305453][   T30] audit: type=1800 audit(1749673214.912:277): pid=22945 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.6742" name="file2" dev="loop9" ino=1049082 res=0 errno=0
[ 1763.559369][T21338] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 1764.396108][T22953] loop0: detected capacity change from 0 to 32768
[ 1764.408336][T22953] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.6749 (22953)
[ 1764.440605][T22953] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[ 1764.451397][T22953] BTRFS info (device loop0): using sha256 (sha256-x86_64) checksum algorithm
[ 1764.463158][T22953] BTRFS info (device loop0): using free-space-tree
[ 1764.980194][T22953] BTRFS info (device loop0): rebuilding free space tree
[ 1765.445917][T22958] loop9: detected capacity change from 0 to 32768
[ 1765.487638][T21748] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[ 1765.573014][T22958] XFS (loop9): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1766.052213][T22958] XFS (loop9): Ending clean mount
[ 1766.247224][T19255] XFS (loop9): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1766.523562][T22992] loop4: detected capacity change from 0 to 1024
[ 1766.866570][   T30] audit: type=1800 audit(1749673218.649:278): pid=22992 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.6757" name="file2" dev="loop4" ino=26 res=0 errno=0
[ 1767.027116][T22985] syz.8.6754 (22985): attempted to duplicate a private mapping with mremap.  This is not supported.
[ 1767.444330][T15622] hfsplus: b-tree write err: -5, ino 4
[ 1768.680129][T23006] loop0: detected capacity change from 0 to 16
[ 1768.731504][T23006] erofs (device loop0): mounted with root inode @ nid 36.
[ 1769.561849][T23016] netlink: 28 bytes leftover after parsing attributes in process `syz.4.6768'.
[ 1769.571390][T23016] netlink: 72 bytes leftover after parsing attributes in process `syz.4.6768'.
[ 1771.872555][T23043] loop9: detected capacity change from 0 to 64
[ 1771.880459][T22430] usb 9-1: new high-speed USB device number 26 using dummy_hcd
[ 1772.077397][T22430] usb 9-1: Using ep0 maxpacket: 16
[ 1772.110744][T22430] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 8
[ 1772.167440][T22430] usb 9-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 6.00
[ 1772.177355][T22430] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1772.186122][T22430] usb 9-1: Product: syz
[ 1772.190800][T22430] usb 9-1: Manufacturer: syz
[ 1772.195684][T22430] usb 9-1: SerialNumber: syz
[ 1772.285354][T22430] usb 9-1: config 0 descriptor??
[ 1772.319186][T22430] ftdi_sio 9-1:0.0: FTDI USB Serial Device converter detected
[ 1772.328970][T22430] usb 9-1: Detected FT232R
[ 1772.403401][T23047] loop6: detected capacity change from 0 to 128
[ 1772.535897][T22430] ftdi_sio ttyUSB0: Unable to read latency timer: -32
[ 1772.763620][T22430] usb 9-1: FTDI USB Serial Device converter now attached to ttyUSB0
[ 1772.944604][T10362] usb 9-1: USB disconnect, device number 26
[ 1772.959371][T23049] loop4: detected capacity change from 0 to 4096
[ 1772.995735][T10362] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[ 1773.007306][T10362] ftdi_sio 9-1:0.0: device disconnected
[ 1773.031960][T23049] ntfs3(loop4): Different NTFS sector size (1024) and media sector size (512).
[ 1773.082002][T23053] loop6: detected capacity change from 0 to 1024
[ 1773.129820][T23053] EXT4-fs: Ignoring removed orlov option
[ 1773.165529][T23049] ntfs3(loop4): ino=1a, mi_enum_attr
[ 1773.171648][T23049] ntfs3(loop4): Mark volume as dirty due to NTFS errors
[ 1773.190294][T23053] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1773.438805][T23049] ntfs3(loop4): MFT: r=b, expect seq=0 instead of b!
[ 1773.555757][T18481] EXT4-fs error (device loop6): ext4_empty_dir:3105: inode #11: block 8192: comm syz-executor: Attempting to read directory block (8192) that is past i_size (8388864)
[ 1773.667478][T18481] EXT4-fs (loop6): Remounting filesystem read-only
[ 1773.989863][T18481] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1774.051093][   T30] audit: type=1326 audit(1749673226.164:279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23059 comm="syz.8.6787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4bf8e929 code=0x7ffc0000
[ 1774.124733][   T30] audit: type=1326 audit(1749673226.238:280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23059 comm="syz.8.6787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4bf8e929 code=0x7ffc0000
[ 1774.149233][   T30] audit: type=1326 audit(1749673226.258:281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23059 comm="syz.8.6787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdc4bf8e929 code=0x7ffc0000
[ 1774.246614][   T30] audit: type=1326 audit(1749673226.321:282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23059 comm="syz.8.6787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4bf8e929 code=0x7ffc0000
[ 1774.269771][   T30] audit: type=1326 audit(1749673226.321:283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23059 comm="syz.8.6787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4bf8e929 code=0x7ffc0000
[ 1774.353220][   T30] audit: type=1326 audit(1749673226.458:284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23059 comm="syz.8.6787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdc4bf8e929 code=0x7ffc0000
[ 1774.376519][   T30] audit: type=1326 audit(1749673226.458:285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23059 comm="syz.8.6787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4bf8e929 code=0x7ffc0000
[ 1774.404134][   T30] audit: type=1326 audit(1749673226.458:286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23059 comm="syz.8.6787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4bf8e929 code=0x7ffc0000
[ 1774.428217][   T30] audit: type=1326 audit(1749673226.468:287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23059 comm="syz.8.6787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=459 compat=0 ip=0x7fdc4bf8e929 code=0x7ffc0000
[ 1774.451600][   T30] audit: type=1326 audit(1749673226.468:288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23059 comm="syz.8.6787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4bf8e929 code=0x7ffc0000
[ 1775.140212][T23072] loop6: detected capacity change from 0 to 1024
[ 1776.256469][T10362] usb 10-1: new high-speed USB device number 12 using dummy_hcd
[ 1776.445414][T10362] usb 10-1: Using ep0 maxpacket: 16
[ 1776.479955][T10362] usb 10-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[ 1776.489516][T10362] usb 10-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[ 1776.500809][T10362] usb 10-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1776.605132][T10362] usb 10-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1776.642878][T10362] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1776.656353][T10362] usb 10-1: Product: syz
[ 1776.660921][T10362] usb 10-1: Manufacturer: syz
[ 1776.667262][T10362] usb 10-1: SerialNumber: syz
[ 1777.085146][T10362] usb 10-1: 0:2 : does not exist
[ 1777.156119][T23103] loop6: detected capacity change from 0 to 16
[ 1777.200545][T10362] usb 10-1: USB disconnect, device number 12
[ 1777.254737][T23103] erofs (device loop6): mounted with root inode @ nid 36.
[ 1777.339583][T23103] erofs (device loop6): corrupted dir block 8200 @ nid 36
[ 1778.327792][T23117] bond0: option fail_over_mac: unable to set because the bond device has slaves
[ 1778.495316][T22430] usb 10-1: new high-speed USB device number 13 using dummy_hcd
[ 1778.717403][T22430] usb 10-1: Using ep0 maxpacket: 16
[ 1778.777221][T22430] usb 10-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1778.788460][T22430] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 1778.801479][T22430] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[ 1778.811812][T22430] usb 10-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[ 1778.822700][T22430] usb 10-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1778.906577][T22430] usb 10-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[ 1778.916490][T22430] usb 10-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[ 1778.925017][T22430] usb 10-1: Manufacturer: syz
[ 1778.972375][T23111] loop6: detected capacity change from 0 to 40427
[ 1778.997431][T23111] F2FS-fs (loop6): Insane cp_payload (553648128 >= 504)
[ 1779.005058][T23111] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[ 1779.028801][T23111] F2FS-fs (loop6): build fault injection rate: 2
[ 1779.035744][T23111] F2FS-fs (loop6): build fault injection type: 0x1f8
[ 1779.048185][T23111] F2FS-fs (loop6): invalid crc value
[ 1779.512515][T23111] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[ 1779.520401][T23111] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[ 1779.544876][T23111] F2FS-fs (loop6): inject too big dir depth in f2fs_add_regular_entry of f2fs_do_add_link+0x480/0x7a0
[ 1779.995140][T22430] usb 10-1: config 0 descriptor??
[ 1782.229794][T22430] rc_core: IR keymap rc-hauppauge not found
[ 1782.236123][T22430] Registered IR keymap rc-empty
[ 1782.242047][T22430] mceusb 10-1:0.0: Error: mce write submit urb error = -90
[ 1782.326184][T22430] mceusb 10-1:0.0: Error: mce write submit urb error = -90
[ 1782.367610][T22430] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.9/usb10/10-1/10-1:0.0/rc/rc0
[ 1782.390192][T22430] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.9/usb10/10-1/10-1:0.0/rc/rc0/input33
[ 1782.630065][T22430] mceusb 10-1:0.0: Error: mce write submit urb error = -90
[ 1782.668385][T22430] mceusb 10-1:0.0: Error: mce write submit urb error = -90
[ 1782.709010][T22430] mceusb 10-1:0.0: Error: mce write submit urb error = -90
[ 1782.736204][T22430] mceusb 10-1:0.0: Error: mce write submit urb error = -90
[ 1782.771306][T22430] mceusb 10-1:0.0: Error: mce write submit urb error = -90
[ 1782.852786][T23140] loop4: detected capacity change from 0 to 2048
[ 1782.858892][T22430] mceusb 10-1:0.0: Error: mce write submit urb error = -90
[ 1782.895183][T22430] mceusb 10-1:0.0: Error: mce write submit urb error = -90
[ 1783.080189][T22430] mceusb 10-1:0.0: Error: mce write submit urb error = -90
[ 1783.108472][T22430] mceusb 10-1:0.0: Error: mce write submit urb error = -90
[ 1783.116947][T23140] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1783.151535][T22430] mceusb 10-1:0.0: Error: mce write submit urb error = -90
[ 1783.291101][T22430] mceusb 10-1:0.0: Registered  with mce emulator interface version 1
[ 1783.303326][T22430] mceusb 10-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[ 1783.480383][T22430] usb 10-1: USB disconnect, device number 13
[ 1783.679009][T23149] ip6_tunnel: non-ECT from fc02:0000:0000:0000:0000:0000:2000:0000 with DS=0x1
[ 1784.227355][T23151] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6825'.
[ 1784.656232][T23159] loop4: detected capacity change from 0 to 128
[ 1784.703298][T23159] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[ 1784.774586][T23159] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 1785.180188][T23165] loop6: detected capacity change from 0 to 1024
[ 1785.278764][T23165] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1785.361037][T23165] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1785.403099][T23165] EXT4-fs (loop6): shut down requested (1)
[ 1785.578383][T18481] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1785.912175][T23175] loop0: detected capacity change from 0 to 256
[ 1785.979757][T23175] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1785.995624][T23175] exFAT-fs (loop0): Medium has reported failures. Some data may be lost.
[ 1786.149633][T23175] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x062de574, utbl_chksum : 0xe619d30d)
[ 1786.931229][T23193] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1787.803919][   T30] kauditd_printk_skb: 1 callbacks suppressed
[ 1787.804007][   T30] audit: type=1400 audit(1749673240.617:290): apparmor="DENIED" operation="stack_onexec" class="file" info="label not found" error=-2 profile="unconfined" name=3A203A2020202030 pid=23204 comm="syz.4.6851"
[ 1788.804405][   T30] audit: type=1326 audit(1749673241.656:291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23219 comm="syz.0.6857" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f5429b8e929 code=0x0
[ 1789.371427][T23231] netlink: 'syz.8.6861': attribute type 7 has an invalid length.
[ 1790.806346][T23252] loop0: detected capacity change from 0 to 512
[ 1790.895906][T23252] EXT4-fs error (device loop0): ext4_orphan_get:1393: inode #15: comm syz.0.6871: casefold flag without casefold feature
[ 1790.996407][T23252] EXT4-fs error (device loop0): ext4_orphan_get:1398: comm syz.0.6871: couldn't read orphan inode 15 (err -117)
[ 1791.059466][T23252] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1791.921340][T21748] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1792.123382][T23261] loop6: detected capacity change from 0 to 32768
[ 1792.251258][T23261] bcachefs (loop6): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=gzip,erasure_code,norecovery,nojournal_transaction_names,reconstruct_alloc,nocow
[ 1792.251258][T23261]   allowing incompatible features above 0.0: (unknown version)
[ 1792.251258][T23261]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[ 1792.293305][T23261] bcachefs (loop6): Using encoding defined by superblock: utf8-12.1.0
[ 1792.302835][T23261] bcachefs (loop6): recovering from clean shutdown, journal seq 10
[ 1792.312770][T23261] bcachefs (loop6): Version upgrade required:
[ 1792.312770][T23261] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[ 1792.312770][T23261] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive
[ 1792.312770][T23261]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance
[ 1792.394487][T23261] bcachefs (loop6): dropping and reconstructing all alloc info
[ 1792.541051][T23261] bcachefs (loop6): accounting_read... done
[ 1792.551919][T23261] bcachefs (loop6): alloc_read... done
[ 1792.560354][T23261] bcachefs (loop6): snapshots_read... done
[ 1792.575880][T23261] bcachefs (loop6): done starting filesystem
[ 1792.636319][T23270] loop9: detected capacity change from 0 to 256
[ 1792.778768][T18481] bcachefs (loop6): shutting down
[ 1792.917051][T23274] sctp: [Deprecated]: syz.4.6879 (pid 23274) Use of struct sctp_assoc_value in delayed_ack socket option.
[ 1792.917051][T23274] Use struct sctp_sack_info instead
[ 1792.935227][T18481] bcachefs (loop6): shutdown complete
[ 1793.900823][T23285] Bluetooth: MGMT ver 1.23
[ 1794.097635][T21336] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 1795.678698][T23310] loop4: detected capacity change from 0 to 128
[ 1795.817742][T23310] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1795.854082][T23310] ext4 filesystem being mounted at /389/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1796.182409][T23315] loop9: detected capacity change from 0 to 512
[ 1796.244882][T23315] EXT4-fs: Ignoring removed i_version option
[ 1796.325091][T23315] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1796.458101][T18329] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1796.839513][T19255] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1798.801911][T23326] loop9: detected capacity change from 0 to 2048
[ 1798.927146][T23328] overlayfs: overlapping lowerdir path
[ 1799.114234][T23326] EXT4-fs (loop9): stripe (3) is not aligned with cluster size (16), stripe is disabled
[ 1799.323349][T23326] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1799.336591][T23326] ext4 filesystem being mounted at /299/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1799.806272][T23332] input: syz0 as /devices/virtual/input/input34
[ 1800.248391][T19255] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1800.552674][T23339] netlink: 4 bytes leftover after parsing attributes in process `syz.6.6905'.
[ 1801.006066][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1801.177384][T23351] loop6: detected capacity change from 0 to 256
[ 1801.244691][T23351] exfat: Deprecated parameter 'utf8'
[ 1801.250835][T23351] exfat: Deprecated parameter 'utf8'
[ 1801.256928][T23351] exfat: Deprecated parameter 'utf8'
[ 1801.296303][T23350] loop0: detected capacity change from 0 to 1024
[ 1801.397879][T23350] hfsplus: failed to load root directory
[ 1801.467543][T23351] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0x743489c8, utbl_chksum : 0xe619d30d)
[ 1803.834217][T23378] loop6: detected capacity change from 0 to 4096
[ 1803.906538][T23384] netlink: 20 bytes leftover after parsing attributes in process `syz.9.6927'.
[ 1804.017279][T23387] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1804.524722][T23394] netlink: 20 bytes leftover after parsing attributes in process `syz.9.6930'.
[ 1805.056507][T23396] loop6: detected capacity change from 0 to 2048
[ 1805.098711][T23404] loop9: detected capacity change from 0 to 8
[ 1805.184623][T23396] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1805.201018][T23404] netlink: 1256 bytes leftover after parsing attributes in process `syz.9.6935'.
[ 1805.216213][T23404] openvswitch: netlink: Message has 8 unknown bytes.
[ 1805.233012][T23398] loop4: detected capacity change from 0 to 2048
[ 1805.355786][T23398] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1805.370110][T23398] ext4 filesystem being mounted at /399/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1805.434109][T23396] overlayfs: upper fs needs to support d_type.
[ 1805.443528][T23396] overlayfs: cleanup of 'work/#16' failed (-2)
[ 1805.450362][T23396] overlayfs: upper fs does not support RENAME_WHITEOUT.
[ 1805.457716][T23396] overlayfs: failed to set xattr on upper
[ 1805.463705][T23396] overlayfs: ...falling back to redirect_dir=nofollow.
[ 1805.471052][T23396] overlayfs: ...falling back to index=off.
[ 1805.477229][T23396] overlayfs: ...falling back to uuid=null.
[ 1805.483379][T23396] overlayfs: conflicting lowerdir path
[ 1805.542638][T23398] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.6933: bg 0: block 345: padding at end of block bitmap is not set
[ 1805.560374][T23398] fs-verity (loop4, inode 13): Error -117 writing Merkle tree block 0
[ 1805.569166][T23398] fs-verity (loop4, inode 13): Error -117 building Merkle tree
[ 1805.954958][T23411] loop0: detected capacity change from 0 to 16
[ 1806.017597][T23411] erofs (device loop0): mounted with root inode @ nid 36.
[ 1806.019215][T18329] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1807.326865][T23424] netlink: 830 bytes leftover after parsing attributes in process `syz.0.6942'.
[ 1808.448549][T23440] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[ 1809.552338][T23446] loop0: detected capacity change from 0 to 2048
[ 1809.555134][T23453] loop4: detected capacity change from 0 to 512
[ 1809.637322][T23453] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[ 1809.726497][T23446] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1809.790417][T23453] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1809.809035][T23453] ext4 filesystem being mounted at /403/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1810.165078][T23460] netlink: 32 bytes leftover after parsing attributes in process `syz.9.6954'.
[ 1810.175122][T23460] netlink: 20 bytes leftover after parsing attributes in process `syz.9.6954'.
[ 1810.347692][T18329] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1810.417911][T23461] loop6: detected capacity change from 0 to 2048
[ 1810.503386][T23461] NILFS (loop6): invalid segment: Inconsistency found
[ 1810.514829][T23461] NILFS (loop6): trying rollback from an earlier position
[ 1810.608053][T23461] NILFS (loop6): recovery complete
[ 1810.662071][T23466] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1811.852286][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[ 1812.167137][T23479] loop6: detected capacity change from 0 to 32768
[ 1812.271253][T23479] bcachefs (loop6): starting version 0.263: (unknown version) opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,nojournal_transaction_names
[ 1812.271253][T23479]   allowing incompatible features above 0.0: (unknown version)
[ 1812.271253][T23479]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[ 1812.310334][T23479] bcachefs (loop6): Using encoding defined by superblock: utf8-12.1.0
[ 1812.318839][T23479] bcachefs (loop6): initializing new filesystem
[ 1812.337103][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[ 1812.347008][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[ 1812.347721][T23479] bcachefs (loop6): going read-write
[ 1812.440789][T23479] bcachefs (loop6): marking superblocks
[ 1812.483676][T23479] bcachefs (loop6): initializing freespace
[ 1812.506116][T23479] bcachefs (loop6): done initializing freespace
[ 1812.523135][T23479] bcachefs (loop6): reading snapshots table
[ 1812.531574][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[ 1812.543002][T23479] bcachefs (loop6): reading snapshots done
[ 1812.646442][T23479] bcachefs (loop6): done starting filesystem
[ 1812.992509][T18481] bcachefs (loop6): shutting down
[ 1812.998783][T18481] bcachefs (loop6): going read-only
[ 1813.004462][T18481] bcachefs (loop6): finished waiting for writes to stop
[ 1813.028164][T18481] bcachefs (loop6): flushing journal and stopping allocators, journal seq 2
[ 1813.156537][T18481] bcachefs (loop6): flushing journal and stopping allocators complete, journal seq 3
[ 1813.175646][T18481] bcachefs (loop6): clean shutdown complete, journal seq 4
[ 1813.186326][T18481] bcachefs (loop6): marking filesystem clean
[ 1813.302712][T23497] loop9: detected capacity change from 0 to 512
[ 1813.362986][T18481] bcachefs (loop6): shutdown complete
[ 1813.391326][T23497] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1813.478638][T23475] loop4: detected capacity change from 0 to 4096
[ 1813.519502][T23497] EXT4-fs error (device loop9): ext4_get_branch:178: inode #11: block 4294967295: comm syz.9.6965: invalid block
[ 1813.595983][T23497] EXT4-fs error (device loop9): ext4_free_branches:1023: inode #11: comm syz.9.6965: invalid indirect mapped block 4294967295 (level 1)
[ 1813.667871][T23497] EXT4-fs error (device loop9): ext4_free_branches:1023: inode #11: comm syz.9.6965: invalid indirect mapped block 4294967295 (level 1)
[ 1813.737874][T23497] EXT4-fs (loop9): 2 truncates cleaned up
[ 1813.746141][T23497] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1813.903854][T23497] EXT4-fs error (device loop9): ext4_inlinedir_to_tree:1340: inode #12: block 7: comm syz.9.6965: path /315/file0/file0: bad entry in directory: rec_len % 4 != 0 - offset=259, inode=4278190093, rec_len=255, size=60 fake=0
[ 1814.144408][T23504] netlink: 'syz.0.6969': attribute type 14 has an invalid length.
[ 1814.297472][T19255] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1817.301459][T23539] netlink: 40 bytes leftover after parsing attributes in process `syz.9.6985'.
[ 1817.958158][T10362] hid-generic C98F:0003:0000.003A: unknown main item tag 0x0
[ 1817.966021][T10362] hid-generic C98F:0003:0000.003A: unknown main item tag 0x0
[ 1818.042380][T10362] hid-generic C98F:0003:0000.003A: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[ 1818.784600][T23555] can0: slcan on ttyS3.
[ 1818.838501][T23557] netlink: 'syz.0.6993': attribute type 11 has an invalid length.
[ 1818.961295][T23555] can0 (unregistered): slcan off ttyS3.
[ 1819.645072][T23564] loop0: detected capacity change from 0 to 64
[ 1820.577229][T23575] loop4: detected capacity change from 0 to 128
[ 1820.704728][T23575] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1820.840380][T23575] ext4 filesystem being mounted at /413/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 1821.123755][T23583] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1821.295975][T18329] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1821.864540][T23590] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7008'.
[ 1822.475253][T23598] netlink: 'syz.4.7011': attribute type 1 has an invalid length.
[ 1822.489654][T23598] netlink: 44 bytes leftover after parsing attributes in process `syz.4.7011'.
[ 1822.558366][T23602] blkio.reset_stats is deprecated
[ 1823.667510][  T760] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 1824.243140][T23622] loop6: detected capacity change from 0 to 128
[ 1824.364250][T23622] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[ 1824.395656][T23622] ext4 filesystem being mounted at /359/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1824.874996][T23634] loop0: detected capacity change from 0 to 64
[ 1825.146402][T23636] loop9: detected capacity change from 0 to 128
[ 1825.254922][T23636] EXT4-fs (loop9): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1825.331263][T23636] ext4 filesystem being mounted at /330/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1825.399770][T18481] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1825.919493][T19255] EXT4-fs (loop9): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1826.785266][T23657] loop4: detected capacity change from 0 to 64
[ 1826.909051][   T30] audit: type=1800 audit(1749673281.646:292): pid=23658 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.9.7036" name="dmabuf" dev="dmabuf" ino=7 res=0 errno=0
[ 1827.490830][T23666] netlink: 'syz.8.7037': attribute type 30 has an invalid length.
[ 1827.499848][T23666] (unnamed net_device) (uninitialized): option arp_missed_max: invalid value (0)
[ 1827.509596][T23666] (unnamed net_device) (uninitialized): option arp_missed_max: allowed values 1 - 255
[ 1831.126062][T23690] netlink: 'syz.0.7050': attribute type 10 has an invalid length.
[ 1831.182691][T23690] veth0_vlan: left promiscuous mode
[ 1831.196713][T23690] veth0_vlan: entered promiscuous mode
[ 1831.222606][T23690] team0: Device veth0_vlan failed to register rx_handler
[ 1831.467040][T23695] batadv0: entered promiscuous mode
[ 1831.478352][T23695] 8021q: adding VLAN 0 to HW filter on device macvlan2
[ 1831.491567][T23695] batadv0: left promiscuous mode
[ 1832.566100][T10362] kernel write not supported for file /input/mice (pid: 10362 comm: kworker/0:0)
[ 1833.004505][T23707] loop4: detected capacity change from 0 to 4096
[ 1833.080075][T23707] ntfs3(loop4): Different NTFS sector size (1024) and media sector size (512).
[ 1834.459460][T23715] loop9: detected capacity change from 0 to 32768
[ 1834.651551][T23717] netlink: 'syz.0.7061': attribute type 1 has an invalid length.
[ 1834.659785][T23717] netlink: 28 bytes leftover after parsing attributes in process `syz.0.7061'.
[ 1834.843413][T23715] bcachefs (loop9): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,journal_flush_disabled,fsck,norecovery,nojournal_transaction_names,reconstruct_alloc,no_data_io
[ 1834.843413][T23715]   allowing incompatible features above 0.0: (unknown version)
[ 1834.843413][T23715]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[ 1834.892833][T23715] bcachefs (loop9): Using encoding defined by superblock: utf8-12.1.0
[ 1834.904073][T23715] bcachefs (loop9): recovering from clean shutdown, journal seq 10
[ 1834.914158][T23715] bcachefs (loop9): Version upgrade required:
[ 1834.914158][T23715] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[ 1834.914158][T23715] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive
[ 1834.914158][T23715]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance
[ 1834.995894][T23715] bcachefs (loop9): dropping and reconstructing all alloc info
[ 1835.232335][T23715] bcachefs (loop9): accounting_read... done
[ 1835.245016][T23715] bcachefs (loop9): alloc_read... done
[ 1835.253735][T23715] bcachefs (loop9): snapshots_read... done
[ 1835.272687][T23715] bcachefs (loop9): done starting filesystem
[ 1835.513635][T19255] bcachefs (loop9): shutting down
[ 1835.631300][T19255] bcachefs (loop9): shutdown complete
[ 1835.964394][   T30] audit: type=1400 audit(1749673291.166:293): apparmor="DENIED" operation="change_profile" class="file" info="label not found" error=-2 profile="unconfined" name=2626200D3A3A302020343A302020353A302020363A3020373A300A20454752455353207072696F72697479206D617070696E67733A pid=23722 comm="syz.0.7067"
[ 1838.937981][T23763] loop9: detected capacity change from 0 to 256
[ 1838.961486][T23762] loop6: detected capacity change from 0 to 16
[ 1838.997573][T23755] loop4: detected capacity change from 0 to 4197
[ 1839.099876][T23762] erofs (device loop6): mounted with root inode @ nid 36.
[ 1839.174469][T23755] F2FS-fs (loop4): build fault injection rate: 771
[ 1839.278176][T23755] syz.4.7079: attempt to access beyond end of device
[ 1839.278176][T23755] loop4: rw=12288, sector=8192, nr_sectors = 8 limit=4197
[ 1839.372999][T23762] overlayfs: failed to get redirect (-117)
[ 1839.491180][T23755] syz.4.7079: attempt to access beyond end of device
[ 1839.491180][T23755] loop4: rw=12288, sector=12288, nr_sectors = 8 limit=4197
[ 1839.505815][T23755] syz.4.7079: attempt to access beyond end of device
[ 1839.505815][T23755] loop4: rw=12288, sector=12288, nr_sectors = 8 limit=4197
[ 1839.520423][T23755] F2FS-fs (loop4): Failed to initialize F2FS segment manager (-5)
[ 1842.189795][T10362] usb 10-1: new high-speed USB device number 14 using dummy_hcd
[ 1842.257270][T23797] netlink: 8 bytes leftover after parsing attributes in process `syz.6.7097'.
[ 1842.390612][T10362] usb 10-1: Using ep0 maxpacket: 8
[ 1842.443538][T10362] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1842.455277][T10362] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1842.465972][T10362] usb 10-1: New USB device found, idVendor=046d, idProduct=c24f, bcdDevice= 0.00
[ 1842.475754][T10362] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1842.612502][T10362] usb 10-1: config 0 descriptor??
[ 1842.634419][T23800] loop4: detected capacity change from 0 to 2048
[ 1842.679041][T23802] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7099'.
[ 1842.688921][T23802] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7099'.
[ 1842.855344][T23800] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1843.030558][T10362] logitech 0003:046D:C24F.003B: unbalanced collection at end of report description
[ 1843.083011][T10362] logitech 0003:046D:C24F.003B: parse failed
[ 1843.089983][T10362] logitech 0003:046D:C24F.003B: probe with driver logitech failed with error -22
[ 1843.104417][T23800] EXT4-fs error (device loop4): ext4_read_inline_dir:1502: inode #12: block 9: comm syz.4.7098: path /434/file1/file0: bad entry in directory: rec_len % 4 != 0 - offset=24, inode=13, rec_len=21, size=80 fake=0
[ 1843.216824][T23800] EXT4-fs (loop4): Remounting filesystem read-only
[ 1843.247864][T10362] usb 10-1: USB disconnect, device number 14
[ 1843.644104][T18329] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1845.455438][T23838] netlink: 6 bytes leftover after parsing attributes in process `syz.9.7113'.
[ 1845.501935][T23838] netlink: 6 bytes leftover after parsing attributes in process `syz.9.7113'.
[ 1846.576031][T23852] netem: incorrect ge model size
[ 1846.587746][T23852] netem: change failed
[ 1846.748900][T23851] loop4: detected capacity change from 0 to 512
[ 1846.884903][   T49] Bluetooth: hci0: command 0x0406 tx timeout
[ 1847.170049][T23851] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.7118: bg 0: block 248: padding at end of block bitmap is not set
[ 1847.244511][T23851] Quota error (device loop4): write_blk: dquota write failed
[ 1847.252911][T23851] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[ 1847.272981][T23851] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.7118: Failed to acquire dquot type 1
[ 1847.589382][T23851] EXT4-fs (loop4): 1 truncate cleaned up
[ 1847.598497][T23851] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1847.612134][T23851] ext4 filesystem being mounted at /438/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1847.616293][T23854] loop6: detected capacity change from 0 to 32768
[ 1847.636359][T23854] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.7120 (23854)
[ 1847.761825][T23854] BTRFS info (device loop6): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1847.773033][T23854] BTRFS info (device loop6): using sha256 (sha256-x86_64) checksum algorithm
[ 1847.784993][T23854] BTRFS info (device loop6): using free-space-tree
[ 1848.093376][T18329] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1848.374508][T18481] BTRFS info (device loop6): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1848.557265][T23876] loop9: detected capacity change from 0 to 512
[ 1848.594253][T23876] ext3: Unknown parameter 'smackfsdef'
[ 1850.237555][T23891] loop9: detected capacity change from 0 to 512
[ 1850.388274][T23891] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a843c018, mo2=0002]
[ 1850.419677][T23891] System zones: 0-2, 18-18, 34-34
[ 1850.508518][T23891] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1850.521974][T23891] ext4 filesystem being mounted at /350/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1850.760549][T23894] loop4: detected capacity change from 0 to 4096
[ 1850.769002][T23891] EXT4-fs warning (device loop9): verify_group_input:156: Last group not full
[ 1851.059713][T23894] ntfs3(loop4): Mark volume as dirty due to NTFS errors
[ 1851.111178][T23894] ntfs3(loop4): Failed to initialize $Extend/$ObjId.
[ 1851.228153][T19255] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1851.908634][T23912] loop6: detected capacity change from 0 to 1024
[ 1851.955186][T23912] EXT4-fs: Ignoring removed nobh option
[ 1851.962563][T23912] EXT4-fs: Ignoring removed bh option
[ 1852.048313][T10362] usb 10-1: new high-speed USB device number 15 using dummy_hcd
[ 1852.092771][T23912] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1852.224578][T23907] loop0: detected capacity change from 0 to 4096
[ 1852.269704][T10362] usb 10-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1852.281111][T10362] usb 10-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[ 1852.394056][T10362] usb 10-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[ 1852.404895][T10362] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1852.414062][T10362] usb 10-1: Product: syz
[ 1852.419014][T10362] usb 10-1: Manufacturer: syz
[ 1852.424158][T10362] usb 10-1: SerialNumber: syz
[ 1852.573623][T10362] usb 10-1: config 0 descriptor??
[ 1852.817985][T18481] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1852.830917][T10362] snd-usb-audio 10-1:0.0: probe with driver snd-usb-audio failed with error -22
[ 1852.853467][T10362] usb 10-1: USB disconnect, device number 15
[ 1853.060831][T23927] loop4: detected capacity change from 0 to 256
[ 1853.087884][T23927] exfat: Deprecated parameter 'utf8'
[ 1853.207171][T23927] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d)
[ 1853.334514][T21332] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 1854.164849][T23929] loop6: detected capacity change from 0 to 32768
[ 1854.393175][T23935] netlink: 332 bytes leftover after parsing attributes in process `syz.0.7143'.
[ 1854.403010][T23935] netlink: 104 bytes leftover after parsing attributes in process `syz.0.7143'.
[ 1854.414046][T23935] netlink: 32 bytes leftover after parsing attributes in process `syz.0.7143'.
[ 1855.934330][T23950] loop0: detected capacity change from 0 to 256
[ 1856.105954][   T30] audit: type=1800 audit(1749673312.305:294): pid=23950 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.7152" name="file0" dev="loop0" ino=1049091 res=0 errno=0
[ 1857.275782][T23966] loop9: detected capacity change from 0 to 64
[ 1858.938095][T23987] loop6: detected capacity change from 0 to 16
[ 1858.983804][T23987] erofs (device loop6): mounted with root inode @ nid 36.
[ 1860.093067][T24001] sp0: Synchronizing with TNC
[ 1860.109468][T24002] loop6: detected capacity change from 0 to 256
[ 1860.129312][T24002] exfat: Deprecated parameter 'utf8'
[ 1860.135175][T24002] exfat: Deprecated parameter 'namecase'
[ 1860.147405][T24002] exfat: Deprecated parameter 'namecase'
[ 1860.153421][T24002] exfat: Deprecated parameter 'utf8'
[ 1860.562729][T24002] exFAT-fs (loop6): failed to load upcase table (idx : 0x00012153, chksum : 0xc9bffc20, utbl_chksum : 0xe619d30d)
[ 1860.880733][T22430] usb 10-1: new high-speed USB device number 16 using dummy_hcd
[ 1861.086981][T22430] usb 10-1: config 0 has an invalid interface number: 104 but max is 0
[ 1861.095748][T22430] usb 10-1: config 0 has no interface number 0
[ 1861.102607][T22430] usb 10-1: config 0 interface 104 has no altsetting 0
[ 1861.159087][T22430] usb 10-1: New USB device found, idVendor=0ac8, idProduct=0321, bcdDevice=a1.c9
[ 1861.168844][T22430] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1861.177484][T22430] usb 10-1: Product: syz
[ 1861.182048][T22430] usb 10-1: Manufacturer: syz
[ 1861.187744][T22430] usb 10-1: SerialNumber: syz
[ 1861.231517][T22430] usb 10-1: config 0 descriptor??
[ 1861.267620][T22430] gspca_main: vc032x-2.14.0 probing 0ac8:0321
[ 1861.464025][T22430] gspca_vc032x: reg_r err -71
[ 1861.469589][T22430] gspca_vc032x: I2c Bus Busy Wait 00
[ 1861.475136][T22430] gspca_vc032x: I2c Bus Busy Wait 00
[ 1861.481070][T22430] gspca_vc032x: I2c Bus Busy Wait 00
[ 1861.486601][T22430] gspca_vc032x: I2c Bus Busy Wait 00
[ 1861.492372][T22430] gspca_vc032x: I2c Bus Busy Wait 00
[ 1861.498017][T22430] gspca_vc032x: I2c Bus Busy Wait 00
[ 1861.510324][T22430] gspca_vc032x: I2c Bus Busy Wait 00
[ 1861.515875][T22430] gspca_vc032x: I2c Bus Busy Wait 00
[ 1861.523686][T22430] gspca_vc032x: I2c Bus Busy Wait 00
[ 1861.529385][T22430] gspca_vc032x: I2c Bus Busy Wait 00
[ 1861.534931][T22430] gspca_vc032x: I2c Bus Busy Wait 00
[ 1861.540564][T22430] gspca_vc032x: I2c Bus Busy Wait 00
[ 1861.546801][T22430] gspca_vc032x: I2c Bus Busy Wait 00
[ 1861.552344][T22430] gspca_vc032x: I2c Bus Busy Wait 00
[ 1861.558024][T22430] gspca_vc032x: I2c Bus Busy Wait 00
[ 1861.563699][T22430] gspca_vc032x: I2c Bus Busy Wait 00
[ 1861.569360][T22430] gspca_vc032x: I2c Bus Busy Wait 00
[ 1861.575553][T22430] gspca_vc032x: I2c Bus Busy Wait 00
[ 1861.581158][T22430] gspca_vc032x: Unknown sensor...
[ 1861.586864][T22430] vc032x 10-1:0.104: probe with driver vc032x failed with error -22
[ 1861.833453][T22430] usb 10-1: USB disconnect, device number 16
[ 1863.816049][T24036] loop9: detected capacity change from 0 to 1024
[ 1865.160478][T24054] netlink: 8 bytes leftover after parsing attributes in process `syz.9.7197'.
[ 1865.178491][T24053] loop6: detected capacity change from 0 to 8
[ 1865.231343][T24053] SQUASHFS error: lzo decompression failed, data probably corrupt
[ 1865.239886][T24053] SQUASHFS error: Failed to read block 0x91: -5
[ 1865.246618][T24053] SQUASHFS error: Unable to read metadata cache entry [8f]
[ 1865.254475][T24053] SQUASHFS error: Unable to read inode 0x11f
[ 1865.611058][T24056] loop4: detected capacity change from 0 to 2048
[ 1865.721930][T24056] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1866.692199][T24070] netlink: 144 bytes leftover after parsing attributes in process `syz.6.7205'.
[ 1867.123017][T24074] loop9: detected capacity change from 0 to 256
[ 1867.935620][T24087] Invalid ELF header magic: != ELF
[ 1868.535275][T24083] loop0: detected capacity change from 0 to 4096
[ 1869.339815][T24102] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 1280
[ 1869.841688][T24106] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[ 1869.872775][T24105] loop9: detected capacity change from 0 to 1024
[ 1870.025391][T24105] hfsplus: xattr searching failed
[ 1870.519803][T21332] hfsplus: bad catalog file entry
[ 1870.532275][T21332] hfsplus: b-tree write err: -5, ino 3
[ 1871.366431][T24126] netlink: 'syz.6.7227': attribute type 21 has an invalid length.
[ 1871.486901][T24129] loop4: detected capacity change from 0 to 512
[ 1871.514798][T24129] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1871.589014][T24129] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[ 1871.679488][T24129] EXT4-fs (loop4): 1 truncate cleaned up
[ 1871.688237][T24129] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1871.872590][T24129] syz.4.7228 (pid 24129) is setting deprecated v1 encryption policy; recommend upgrading to v2.
[ 1872.029540][   T30] audit: type=1326 audit(1749673329.025:295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24123 comm="syz.8.7225" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4bf8e929 code=0x7fc00000
[ 1872.151012][T22430] usb 10-1: new high-speed USB device number 17 using dummy_hcd
[ 1872.268256][T18329] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1872.379765][T22430] usb 10-1: Using ep0 maxpacket: 32
[ 1872.411997][T22430] usb 10-1: config 0 has an invalid interface number: 1 but max is 0
[ 1872.420788][T22430] usb 10-1: config 0 has no interface number 0
[ 1872.427767][T22430] usb 10-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1872.443601][T22430] usb 10-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1872.455536][T22430] usb 10-1: New USB device found, idVendor=28bd, idProduct=0094, bcdDevice= 0.00
[ 1872.465175][T22430] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1872.555531][T24140] loop6: detected capacity change from 0 to 1024
[ 1872.590485][T24142] netlink: 16 bytes leftover after parsing attributes in process `syz.4.7232'.
[ 1872.614583][T22430] usb 10-1: config 0 descriptor??
[ 1872.650414][T24140] EXT4-fs (loop6): Test dummy encryption mode enabled
[ 1872.758676][T24140] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1872.928106][T24140] EXT4-fs (loop6): shut down requested (1)
[ 1873.288054][T22430] uclogic 0003:28BD:0094.003C: pen parameters not found
[ 1873.295895][T22430] uclogic 0003:28BD:0094.003C: interface is invalid, ignoring
[ 1873.341763][T18481] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1873.487169][T22430] usb 10-1: USB disconnect, device number 17
[ 1874.862347][T24168] loop4: detected capacity change from 0 to 512
[ 1874.953575][T24168] EXT4-fs: Ignoring removed nobh option
[ 1875.138055][T24168] fscrypt (loop4, inode 2): Error -61 getting encryption context
[ 1875.199102][T24168] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -61
[ 1875.256198][T24168] EXT4-fs error (device loop4): ext4_orphan_get:1393: inode #13: comm syz.4.7243: casefold flag without casefold feature
[ 1875.313797][T24168] EXT4-fs error (device loop4): ext4_orphan_get:1398: comm syz.4.7243: couldn't read orphan inode 13 (err -117)
[ 1875.387494][T24168] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1875.821760][T18329] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1875.992751][T24181] mac80211_hwsim hwsim27 wlan0: entered promiscuous mode
[ 1876.073517][T24181] mac80211_hwsim hwsim27 wlan0: left promiscuous mode
[ 1876.973321][T24192] bond0: entered promiscuous mode
[ 1876.978898][T24192] bond_slave_0: entered promiscuous mode
[ 1876.986461][T24192] bond_slave_1: entered promiscuous mode
[ 1877.003293][T24192] batadv0: entered promiscuous mode
[ 1877.012192][T24192] debugfs: Directory 'hsr1' with parent 'hsr' already present!
[ 1877.025882][T24192] Cannot create hsr debugfs directory
[ 1877.035920][T24192] 8021q: adding VLAN 0 to HW filter on device hsr1
[ 1877.161228][T24192] bond0: left promiscuous mode
[ 1877.166551][T24192] bond_slave_0: left promiscuous mode
[ 1877.173863][T24192] bond_slave_1: left promiscuous mode
[ 1877.281108][T24192] batadv0: left promiscuous mode
[ 1878.174814][T24207] loop4: detected capacity change from 0 to 128
[ 1878.185128][T24206] netlink: 'syz.9.7261': attribute type 1 has an invalid length.
[ 1878.231394][T24207] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[ 1878.323628][T24207] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 1878.895837][ T4233] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 1879.546537][T24221] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1879.573933][T24221] A link change request failed with some changes committed already. Interface batadv_slave_0 may have been left with an inconsistent configuration, please check.
[ 1880.282528][T24231] netlink: 71 bytes leftover after parsing attributes in process `syz.9.7273'.
[ 1883.377661][ T1096] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 1883.760325][T24270] mkiss: ax0: crc mode is auto.
[ 1885.563341][T24280] loop6: detected capacity change from 0 to 32768
[ 1885.781092][T24280] ocfs2: Mounting device (7,6) on (node local, slot 0) with writeback data mode.
[ 1886.083253][T18481] ocfs2: Unmounting device (7,6) on (node local)
[ 1887.316636][T24299] loop9: detected capacity change from 0 to 1024
[ 1887.799687][ T4233] hfsplus: b-tree write err: -5, ino 4
[ 1889.093425][T24313] input: syz0 as /devices/virtual/input/input35
[ 1889.445140][T24319] netlink: 'syz.9.7314': attribute type 10 has an invalid length.
[ 1889.461726][T24319] lo: entered promiscuous mode
[ 1889.472641][T24319] bond0: (slave lo): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[ 1890.177767][T24323] loop9: detected capacity change from 0 to 512
[ 1890.226758][T24323] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[ 1890.338597][T24323] EXT4-fs (loop9): 1 truncate cleaned up
[ 1890.346738][T24323] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1890.604490][T24323] EXT4-fs error (device loop9): ext4_read_inline_dir:1502: inode #12: block 7: comm syz.9.7317: path /395/bus/file0: bad entry in directory: rec_len is smaller than minimal - offset=40, inode=2085390, rec_len=0, size=80 fake=0
[ 1890.996981][T19255] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1891.417166][T24336] ntfs3(nbd6): try to read out of volume at offset 0x0
[ 1891.672715][T24339] bond0: (slave veth0_macvtap): Error: Device is in use and cannot be enslaved
[ 1891.917810][T24341] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1891.926572][T24341] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1893.940971][T24357] IPVS: Scheduler module ip_vs_ not found
[ 1894.495588][T24366] loop6: detected capacity change from 0 to 1024
[ 1895.318241][ T4233] hfsplus: b-tree write err: -5, ino 4
[ 1896.259127][T24385] netlink: 8 bytes leftover after parsing attributes in process `syz.9.7341'.
[ 1897.323654][T24396] loop4: detected capacity change from 0 to 256
[ 1897.593673][T24396] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xf6dff195, utbl_chksum : 0xe619d30d)
[ 1898.486150][T14167] usb 9-1: new full-speed USB device number 27 using dummy_hcd
[ 1898.594186][T24407] netlink: 20 bytes leftover after parsing attributes in process `syz.9.7351'.
[ 1898.749120][T14167] usb 9-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08
[ 1898.759904][T14167] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1898.838952][T14167] usb 9-1: config 0 descriptor??
[ 1899.086071][   T49] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1899.107641][   T49] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1899.121922][   T49] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1899.192218][   T49] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1899.244206][   T49] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1899.590243][T14167] udl 9-1:0.0: [drm] Unrecognized vendor firmware descriptor
[ 1899.627346][T14167] [drm:udl_init] *ERROR* Selecting channel failed
[ 1899.755444][T14167] [drm] Initialized udl 0.0.1 for 9-1:0.0 on minor 2
[ 1899.766674][T14167] [drm] Initialized udl on minor 2
[ 1899.813327][T14167] udl 9-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[ 1899.823188][T14167] udl 9-1:0.0: [drm] Cannot find any crtc or sizes
[ 1899.881723][T22430] udl 9-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[ 1899.904177][T22430] udl 9-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[ 1899.913787][T22430] udl 9-1:0.0: [drm] Cannot find any crtc or sizes
[ 1899.926281][T14167] usb 9-1: USB disconnect, device number 27
[ 1900.852517][T21338] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1901.022080][T21338] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1901.234347][T23493] Bluetooth: hci5: command tx timeout
[ 1901.247847][T21338] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1901.377886][T21338] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1902.315383][T24408] chnl_net:caif_netlink_parms(): no params data found
[ 1902.339390][T21338] bridge_slave_1: left allmulticast mode
[ 1902.345615][T21338] bridge_slave_1: left promiscuous mode
[ 1902.352575][T21338] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1902.545523][T21338] bridge_slave_0: left allmulticast mode
[ 1902.552806][T21338] bridge_slave_0: left promiscuous mode
[ 1902.561655][T21338] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1902.879657][T24432] loop6: detected capacity change from 0 to 1024
[ 1903.247942][T23493] Bluetooth: hci5: command tx timeout
[ 1903.825367][T21338] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1903.869526][T21338] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1903.908602][T21338] bond0 (unregistering): Released all slaves
[ 1904.950183][T24444] loop9: detected capacity change from 0 to 512
[ 1905.057169][T24441] loop6: detected capacity change from 0 to 32768
[ 1905.183292][T24441] XFS (loop6): Mounting V5 Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[ 1905.220958][T23493] Bluetooth: hci5: command tx timeout
[ 1905.270606][T24444] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[ 1905.284087][T24444] ext4 filesystem being mounted at /410/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1905.812234][T21338] hsr_slave_0: left promiscuous mode
[ 1905.856691][T21338] hsr_slave_1: left promiscuous mode
[ 1905.865842][T21338] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1905.874083][T21338] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1905.959306][T21338] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1905.967452][T21338] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1906.022746][T24441] XFS (loop6): Ending clean mount
[ 1906.040092][T24441] XFS (loop6): Metadata CRC error detected at xfs_inobt_read_verify+0xaf/0x2d0, xfs_finobt block 0x20 
[ 1906.051908][T24441] XFS (loop6): Unmount and run xfs_repair
[ 1906.058186][T24441] XFS (loop6): First 128 bytes of corrupted metadata buffer:
[ 1906.066003][T24441] 00000000: 46 49 42 33 00 00 00 01 ff ff ff ff ff ff ff ff  FIB3............
[ 1906.075439][T24441] 00000010: 00 00 00 00 00 00 00 20 00 00 00 01 00 00 00 40  ....... .......@
[ 1906.084918][T24441] 00000020: 9f 1c ad 42 11 bd 4e 12 8f 0b f0 78 76 b8 1d 9a  ...B..N....xv...
[ 1906.098562][T24441] 00000030: 00 00 00 00 8a d2 18 46 00 00 16 80 00 00 40 37  .......F......@7
[ 1906.110210][T24441] 00000040: ff ff ff ff ff ff fe 00 00 00 00 00 00 00 00 00  ................
[ 1906.119747][T24441] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 09 00 00  ................
[ 1906.129155][T24441] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[ 1906.143362][T24441] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[ 1906.152578][T24441] XFS (loop6): metadata I/O error in "xfs_btree_read_buf_block+0x33d/0x5f0" at daddr 0x20 len 8 error 74
[ 1906.165545][T24441] XFS (loop6): Failed to initialize disk quotas, err -117.
[ 1906.173013][T21338] veth1_macvtap: left promiscuous mode
[ 1906.173172][T21338] veth0_macvtap: left promiscuous mode
[ 1906.185156][T21338] veth1_vlan: left promiscuous mode
[ 1906.198096][T21338] veth0_vlan: left promiscuous mode
[ 1906.303044][T18481] XFS (loop6): Unmounting Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[ 1906.572557][T18481] XFS (loop6): Uncorrected metadata errors detected; please run xfs_repair.
[ 1906.738475][T19255] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[ 1907.190161][T23493] Bluetooth: hci5: command tx timeout
[ 1907.257085][T24460] sctp: [Deprecated]: syz.9.7367 (pid 24460) Use of int in max_burst socket option deprecated.
[ 1907.257085][T24460] Use struct sctp_assoc_value instead
[ 1907.563751][T21338] team0 (unregistering): Port device team_slave_1 removed
[ 1907.680713][T21338] team0 (unregistering): Port device team_slave_0 removed
[ 1909.069619][T24408] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1909.077405][T24408] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1909.085473][T24408] bridge_slave_0: entered allmulticast mode
[ 1909.095736][T24408] bridge_slave_0: entered promiscuous mode
[ 1909.178737][T24408] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1909.186742][T24408] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1909.194740][T24408] bridge_slave_1: entered allmulticast mode
[ 1909.204713][T24408] bridge_slave_1: entered promiscuous mode
[ 1909.527958][T24408] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1909.556437][T24408] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1909.842863][   T30] audit: type=1326 audit(1749673368.689:296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24465 comm="syz.6.7370" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f607098e929 code=0x7ffc0000
[ 1909.866077][   T30] audit: type=1326 audit(1749673368.689:297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24465 comm="syz.6.7370" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f607098e929 code=0x7ffc0000
[ 1909.976316][   T30] audit: type=1326 audit(1749673368.784:298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24465 comm="syz.6.7370" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f607098e929 code=0x7ffc0000
[ 1910.003983][   T30] audit: type=1326 audit(1749673368.784:299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24465 comm="syz.6.7370" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f607098e929 code=0x7ffc0000
[ 1910.028560][   T30] audit: type=1326 audit(1749673368.784:300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24465 comm="syz.6.7370" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f607098e929 code=0x7ffc0000
[ 1910.051921][   T30] audit: type=1326 audit(1749673368.784:301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24465 comm="syz.6.7370" exe="/root/syz-executor" sig=0 arch=c000003e syscall=47 compat=0 ip=0x7f607098e929 code=0x7ffc0000
[ 1910.074964][   T30] audit: type=1326 audit(1749673368.889:302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24465 comm="syz.6.7370" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f607098e929 code=0x7ffc0000
[ 1910.102381][   T30] audit: type=1326 audit(1749673368.889:303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24465 comm="syz.6.7370" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f607098e929 code=0x7ffc0000
[ 1910.233355][T24408] team0: Port device team_slave_0 added
[ 1910.310408][T24408] team0: Port device team_slave_1 added
[ 1910.685566][T24408] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1910.693501][T24408] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1910.721773][T24408] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1910.842113][T24408] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1910.850519][T24408] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1910.881348][T24408] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1910.910280][   T49] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1910.947325][   T49] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1910.985027][   T49] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1911.048706][   T49] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1911.141946][   T49] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1911.231248][T24408] hsr_slave_0: entered promiscuous mode
[ 1911.244251][T24408] hsr_slave_1: entered promiscuous mode
[ 1911.253591][T24408] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1911.266926][T24408] Cannot create hsr debugfs directory
[ 1911.540336][T24480] ALSA: mixer_oss: invalid index 40000
[ 1912.100021][T24485] netlink: 44 bytes leftover after parsing attributes in process `syz.6.7377'.
[ 1912.109975][T24485] netlink: 'syz.6.7377': attribute type 6 has an invalid length.
[ 1912.118576][T24485] netlink: 'syz.6.7377': attribute type 5 has an invalid length.
[ 1912.126885][T24485] netlink: 'syz.6.7377': attribute type 4 has an invalid length.
[ 1912.144173][T24482] netlink: 4 bytes leftover after parsing attributes in process `syz.9.7376'.
[ 1912.169449][T24487] netlink: 4 bytes leftover after parsing attributes in process `syz.9.7376'.
[ 1912.872822][T24490] loop9: detected capacity change from 0 to 256
[ 1913.042477][T24490] exFAT-fs (loop9): failed to load upcase table (idx : 0x00010000, chksum : 0x987a2e96, utbl_chksum : 0xe619d30d)
[ 1913.124072][T23493] Bluetooth: hci0: command tx timeout
[ 1913.599555][T24408] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1913.692640][T24408] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1913.802721][T24475] chnl_net:caif_netlink_parms(): no params data found
[ 1913.852889][T24408] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1913.954864][T24408] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1915.102378][T23493] Bluetooth: hci0: command tx timeout
[ 1915.243909][T24408] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1915.410544][T24408] 8021q: adding VLAN 0 to HW filter on device team0
[ 1915.527680][T21338] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1915.535490][T21338] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1915.637634][T24508] Bluetooth: MGMT ver 1.23
[ 1915.712375][T21338] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1915.720190][T21338] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1916.227986][T24475] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1916.240141][T24475] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1916.248390][T24475] bridge_slave_0: entered allmulticast mode
[ 1916.258611][T24475] bridge_slave_0: entered promiscuous mode
[ 1916.450659][T24475] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1916.458553][T24475] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1916.466766][T24475] bridge_slave_1: entered allmulticast mode
[ 1916.477266][T24475] bridge_slave_1: entered promiscuous mode
[ 1916.939223][T24475] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1917.010274][T24475] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1917.086409][T23493] Bluetooth: hci0: command tx timeout
[ 1917.538860][T24520] loop6: detected capacity change from 0 to 1024
[ 1917.569035][T24475] team0: Port device team_slave_0 added
[ 1917.668224][T24475] team0: Port device team_slave_1 added
[ 1918.061113][T24475] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1918.068557][T24475] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1918.101546][T24475] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1918.293450][T24475] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1918.301114][T24475] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1918.328092][T24475] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1918.517228][T24408] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1918.637354][T24530] netdevsim netdevsim6: Firmware load for './cgroup/../file0' refused, path contains '..' component
[ 1918.981481][T24475] hsr_slave_0: entered promiscuous mode
[ 1918.992558][T24475] hsr_slave_1: entered promiscuous mode
[ 1919.001901][T24475] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1919.010615][T24475] Cannot create hsr debugfs directory
[ 1919.082254][T23493] Bluetooth: hci0: command tx timeout
[ 1920.879036][T24549] loop9: detected capacity change from 0 to 2048
[ 1921.126593][T24549] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1921.203799][T24475] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 1921.317371][T24475] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 1921.417123][T24475] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 1921.531964][T24475] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 1921.664452][T19255] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1921.805459][T24408] veth0_vlan: entered promiscuous mode
[ 1921.936084][T24408] veth1_vlan: entered promiscuous mode
[ 1922.348046][T24564] mac80211_hwsim hwsim30 wlan1: entered allmulticast mode
[ 1922.350401][T24563] loop6: detected capacity change from 0 to 16
[ 1922.410431][T24408] veth0_macvtap: entered promiscuous mode
[ 1922.465872][T24563] erofs (device loop6): mounted with root inode @ nid 36.
[ 1922.491600][T24408] veth1_macvtap: entered promiscuous mode
[ 1922.598017][   T30] audit: type=1800 audit(1749673382.082:304): pid=24563 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.7402" name="file1" dev="loop6" ino=86 res=0 errno=0
[ 1922.775680][T24408] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1922.942425][T24408] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1923.052009][T24475] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1923.113826][T24408] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1923.123429][T24408] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1923.133595][T24408] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1923.142874][T24408] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1923.303785][T24475] 8021q: adding VLAN 0 to HW filter on device team0
[ 1923.417531][ T1096] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1923.425182][ T1096] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1923.584673][ T1096] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1923.592443][ T1096] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1925.790678][T24594] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 1925.798465][T24594] IPv6: NLM_F_CREATE should be set when creating new route
[ 1925.805964][T24594] IPv6: NLM_F_CREATE should be set when creating new route
[ 1926.190263][T24475] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1926.812339][T24475] veth0_vlan: entered promiscuous mode
[ 1926.932396][T24475] veth1_vlan: entered promiscuous mode
[ 1927.356057][T24475] veth0_macvtap: entered promiscuous mode
[ 1927.465312][T24475] veth1_macvtap: entered promiscuous mode
[ 1927.731602][T24475] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1927.854889][T24475] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1927.960237][T24475] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1927.969792][T24475] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1927.979239][T24475] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1927.988662][T24475] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1928.463017][T24614] loop6: detected capacity change from 0 to 4096
[ 1928.695714][T24622] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1929.447402][T24631] loop9: detected capacity change from 0 to 512
[ 1929.480813][T24631] EXT4-fs: Ignoring removed i_version option
[ 1929.650348][T24631] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1929.872588][T24631] overlayfs: lowerdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior.
[ 1930.625605][T19255] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1931.731177][T21336] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1931.741163][T21336] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1931.955173][  T760] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1931.965101][  T760] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1932.656667][T24670] netlink: 27 bytes leftover after parsing attributes in process `syz.5.7347'.
[ 1933.827728][T24688] loop9: detected capacity change from 0 to 8
[ 1935.326729][T21332] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1935.335224][T21332] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1935.626970][ T4233] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1935.635416][ T4233] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1936.584743][T24712] loop6: detected capacity change from 0 to 32768
[ 1936.597943][T24712] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.7446 (24712)
[ 1936.645492][T24712] BTRFS info (device loop6): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[ 1936.656291][T24712] BTRFS info (device loop6): using xxhash64 (xxhash64-generic) checksum algorithm
[ 1936.666141][T24712] BTRFS info (device loop6): using free-space-tree
[ 1936.839676][T24712] BTRFS info (device loop6): rebuilding free space tree
[ 1936.990601][T24712] BTRFS info (device loop6): balance: start -f -susage=12582909,usage=12582909..0,devid=0,limit=10376293541461622786
[ 1937.004117][T24712] BTRFS info (device loop6): balance: ended with status: 0
[ 1937.210027][T18481] BTRFS info (device loop6): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[ 1937.630499][T24743] netlink: 16 bytes leftover after parsing attributes in process `syz.5.7453'.
[ 1937.841377][T14167] hid-generic 0000:0004:0000.003D: unknown main item tag 0x0
[ 1937.849228][T14167] hid-generic 0000:0004:0000.003D: unknown main item tag 0x0
[ 1937.857402][T14167] hid-generic 0000:0004:0000.003D: unknown main item tag 0x0
[ 1937.975928][T14167] hid-generic 0000:0004:0000.003D: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[ 1938.356041][T24750] loop5: detected capacity change from 0 to 736
[ 1938.901749][T24754] loop3: detected capacity change from 0 to 1024
[ 1939.003684][T24754] EXT4-fs: Ignoring removed orlov option
[ 1939.010002][T24754] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1939.186890][T24754] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1939.287586][T24760] loop6: detected capacity change from 0 to 256
[ 1939.880396][T24475] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1940.243852][T14167] usb 10-1: new full-speed USB device number 18 using dummy_hcd
[ 1940.392127][T24772] loop3: detected capacity change from 0 to 512
[ 1940.458366][T14167] usb 10-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1940.469305][T14167] usb 10-1: config 0 has no interfaces?
[ 1940.475391][T14167] usb 10-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[ 1940.486329][T14167] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1940.547997][T14167] usb 10-1: config 0 descriptor??
[ 1940.600801][T24772] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1940.614431][T24772] ext4 filesystem being mounted at /3/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1940.649445][T24774] loop6: detected capacity change from 0 to 1024
[ 1940.706424][T24774] EXT4-fs: Ignoring removed bh option
[ 1940.794254][T24774] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1940.809554][T14167] usb 10-1: USB disconnect, device number 18
[ 1940.882516][T24779] netlink: 8 bytes leftover after parsing attributes in process `syz.8.7466'.
[ 1941.014361][T24774] EXT4-fs error (device loop6): ext4_xattr_block_get:593: inode #15: comm syz.6.7465: corrupted xattr block 161: invalid header
[ 1941.067472][T24774] EXT4-fs (loop6): Remounting filesystem read-only
[ 1941.178871][T24475] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1941.351398][T18481] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1941.822388][T10364] usb 9-1: new high-speed USB device number 28 using dummy_hcd
[ 1942.043680][T10364] usb 9-1: Using ep0 maxpacket: 8
[ 1942.053132][T14167] usb 10-1: new high-speed USB device number 19 using dummy_hcd
[ 1942.110867][T10364] usb 9-1: New USB device found, idVendor=0ccd, idProduct=0039, bcdDevice=90.7b
[ 1942.120630][T10364] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1942.229117][T10364] pvrusb2: Hardware description: Terratec Grabster AV400
[ 1942.243607][T10364] pvrusb2: **********
[ 1942.247865][T10364] pvrusb2: ***WARNING*** Support for this device (Terratec Grabster AV400) is experimental.
[ 1942.253986][T14167] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1942.258429][T10364] pvrusb2: Important functionality might not be entirely working.
[ 1942.258512][T10364] pvrusb2: Please consider contacting the driver author to help with further stabilization of the driver.
[ 1942.258591][T10364] pvrusb2: **********
[ 1942.304842][T14167] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1942.315341][T14167] usb 10-1: New USB device found, idVendor=05ac, idProduct=4262, bcdDevice= 0.00
[ 1942.324908][T14167] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1942.463122][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[ 1942.557777][ T2331] pvrusb2: Invalid write control endpoint
[ 1942.569408][T14167] usb 10-1: config 0 descriptor??
[ 1942.742934][T22430] usb 9-1: USB disconnect, device number 28
[ 1942.865803][T24804] loop3: detected capacity change from 0 to 512
[ 1943.018936][T24804] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256
[ 1943.063515][T14167] hid-generic 0003:05AC:4262.003E: unbalanced delimiter at end of report description
[ 1943.123605][T14167] hid-generic 0003:05AC:4262.003E: probe with driver hid-generic failed with error -22
[ 1943.189132][ T2331] pvrusb2: Invalid write control endpoint
[ 1943.195203][ T2331] pvrusb2: ***WARNING*** Detected a wedged cx25840 chip; the device will not work.
[ 1943.205528][ T2331] pvrusb2: ***WARNING*** Try power cycling the pvrusb2 device.
[ 1943.213346][ T2331] pvrusb2: ***WARNING*** Disabling further access to the device to prevent other foul-ups.
[ 1943.224051][ T2331] pvrusb2: Device being rendered inoperable
[ 1943.230329][ T2331] cx25840 1-0044: Unable to detect h/w, assuming cx23887
[ 1943.239261][ T2331] cx25840 1-0044: cx23887 A/V decoder found @ 0x88 (pvrusb2_a)
[ 1943.246217][T14167] usb 10-1: USB disconnect, device number 19
[ 1943.248988][ T2331] pvrusb2: Attached sub-driver cx25840
[ 1943.264347][ T2331] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it.
[ 1943.276536][ T2331] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover.
[ 1944.931556][T24826] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check.
[ 1944.957177][T24828] (unnamed net_device) (uninitialized): option arp_interval: invalid value (18446744073709551615)
[ 1944.969178][T24828] (unnamed net_device) (uninitialized): option arp_interval: allowed values 0 - 2147483647
[ 1945.470529][T22430] hid-generic 0005:16C0:05DF.003F: item fetching failed at offset 0/1
[ 1945.495971][T22430] hid-generic 0005:16C0:05DF.003F: probe with driver hid-generic failed with error -22
[ 1945.757372][T24840] bridge0: port 3(batadv1) entered blocking state
[ 1945.764855][T24840] bridge0: port 3(batadv1) entered disabled state
[ 1945.772277][T24840] batadv1: entered allmulticast mode
[ 1945.781800][T24840] batadv1: entered promiscuous mode
[ 1945.833097][T24841] loop3: detected capacity change from 0 to 256
[ 1945.957282][T24841] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0xda218cab, utbl_chksum : 0xe619d30d)
[ 1946.361178][ T3577] batman_adv: batadv1: No IGMP Querier present - multicast optimizations disabled
[ 1946.371128][ T3577] batman_adv: batadv1: No MLD Querier present - multicast optimizations disabled
[ 1946.513795][T24844] loop9: detected capacity change from 0 to 4096
[ 1946.672162][T24854] NILFS (loop9): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1946.781610][T24844] NILFS (loop9): error -2 reading inode: ino=72057594037927936
[ 1947.994525][T24874] ALSA: mixer_oss: invalid OSS volume 'u'
[ 1948.001481][T24874] ALSA: mixer_oss: invalid OSS volume '�S}�B.�/�Y��Y9�9��2�W��hԅNE,�'
[ 1948.010562][T24874] ALSA: mixer_oss: invalid OSS volume 'c�OF8���!}�sd�"���t�x�8S����A'
[ 1948.019669][T24874] ALSA: mixer_oss: invalid OSS volume 'H�}�!����R�ͩ�Z'
[ 1948.027773][T24874] ALSA: mixer_oss: invalid OSS volume ';�p�o�^�3�#�/Y���j�}�l@�;�69�'
[ 1948.037553][T24874] ALSA: mixer_oss: invalid OSS volume '�Yե�\&��a�}�X�=ȉ5�x���i$��q'
[ 1948.050888][T24874] ALSA: mixer_oss: invalid OSS volume '��?٭���qo�Iy�Mt��o�>�lg���9'
[ 1948.059857][T24874] ALSA: mixer_oss: invalid OSS volume ')�֭I;�M�����o����B0��{���?�'
[ 1948.069104][T24874] ALSA: mixer_oss: invalid OSS volume 'S7s���W{���Z���N++�_�[����'
[ 1948.078020][T24874] ALSA: mixer_oss: invalid OSS volume ''
[ 1948.084404][T24874] ALSA: mixer_oss: invalid OSS volume 'c���sϑ=ZO҉�y/Ɠĥ�S&�R�J4�j'
[ 1948.093372][T24874] ALSA: mixer_oss: invalid OSS volume 'c�:3٣�/D@�a�I���tհ�fx���'
[ 1948.102042][T24874] ALSA: mixer_oss: invalid OSS volume 'T{����ʒ�w4M{��j%���t��
'
[ 1948.111025][T24874] ALSA: mixer_oss: invalid OSS volume '�6o�?�to�n�]i���'
[ 1948.119228][T24874] ALSA: mixer_oss: invalid OSS volume '�Φ�uL�?�΅v��4��+C'
[ 1948.128098][T24874] ALSA: mixer_oss: invalid OSS volume 'y����3g՘F8J��K`��V�e�>�ÓM'
[ 1948.140824][T24874] ALSA: mixer_oss: invalid OSS volume '����'
[ 1948.147455][T24874] ALSA: mixer_oss: invalid OSS volume 'C4�3��K��JD֞47�=�8q���PK^P'
[ 1948.157496][T24874] ALSA: mixer_oss: invalid OSS volume '}���c���Lu�rb��zI{����%�'
[ 1948.166387][T24874] ALSA: mixer_oss: invalid OSS volume 'Te�
����0�R+�!�ؘs�1N�2
�+Oq�'
[ 1948.175484][T24874] ALSA: mixer_oss: invalid OSS volume 'x'�Y�b���e:x�^�'
[ 1948.184145][T24874] ALSA: mixer_oss: invalid OSS volume '�?2���o���ZݓX����^�Ɩ�7'
[ 1948.193189][T24874] ALSA: mixer_oss: invalid OSS volume '�z�zv�avg��w4�-�=���A�*үcP��T'
[ 1948.202124][T24874] ALSA: mixer_oss: invalid OSS volume '�-ĉ����Ա��KU���$F���Z�Y�"2'
[ 1948.211213][T24874] ALSA: mixer_oss: invalid OSS volume '-�/��9�M=+ih��ԣ����x��|�ߝ/�'
[ 1948.220180][T24874] ALSA: mixer_oss: invalid OSS volume 'Å���~�SAd��gاL~�EV�bA�]q��4b�'
[ 1948.229079][T24874] ALSA: mixer_oss: invalid OSS volume 'Ǵ�Tr�z3"�)?���\�]�d�iTb
��'
[ 1948.241510][T24874] ALSA: mixer_oss: invalid OSS volume 'hJ���K��u+?�s��n�d�'
[ 1948.250380][T24874] ALSA: mixer_oss: invalid OSS volume '�>�(v[.zP��W[�l�٪H���v9I�*'
[ 1948.259387][T24874] ALSA: mixer_oss: invalid OSS volume 'I�M�}'
[ 1948.266579][T24874] ALSA: mixer_oss: invalid OSS volume '��ޚ��]����ZX��W�K������'
[ 1948.274917][T24874] ALSA: mixer_oss: invalid OSS volume '�gl�f'
[ 1948.281679][T24874] ALSA: mixer_oss: invalid OSS volume 'p�ǭ-���gl>��•?�5�b(Um����H�'
[ 1948.290984][T24874] ALSA: mixer_oss: invalid OSS volume 'HD-�5��G��:�y����_$Rt�s��C�o'
[ 1948.300051][T24874] ALSA: mixer_oss: invalid OSS volume 'O���S��l��R���$�X`�D�E����'
[ 1948.309041][T24874] ALSA: mixer_oss: invalid OSS volume 'j�bh�OS�{e�}����Y�yA!"L'
[ 1948.318180][T24874] ALSA: mixer_oss: invalid OSS volume '����'��c�+�әb�nR٫�b�2pBM���'
[ 1948.327149][T24874] ALSA: mixer_oss: invalid OSS volume '])�@:�T�1U2c��n�&C��[�g7xD'
[ 1948.339982][T24874] ALSA: mixer_oss: invalid OSS volume 'w���Uo����s���L!�NζW
�K���'
[ 1948.350893][T24874] ALSA: mixer_oss: invalid OSS volume '�ޭ1�ؽ�F�&��'
[ 1948.835832][T10364] usb 10-1: new high-speed USB device number 20 using dummy_hcd
[ 1948.982806][T24882] pimreg: entered allmulticast mode
[ 1949.021658][T10364] usb 10-1: Using ep0 maxpacket: 32
[ 1949.034138][T24885] pimreg: left allmulticast mode
[ 1949.085341][T10364] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1949.097455][T10364] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1949.107999][T10364] usb 10-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[ 1949.123182][T10364] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1949.205401][T10364] usb 10-1: config 0 descriptor??
[ 1949.229841][T10364] hub 10-1:0.0: USB hub found
[ 1949.452126][T10364] hub 10-1:0.0: config failed, hub doesn't have any ports! (err -19)
[ 1949.938476][T10364] hid-generic 0003:046D:C31C.0040: hidraw0: USB HID v8.00 Device [HID 046d:c31c] on usb-dummy_hcd.9-1/input0
[ 1950.048879][T10364] usb 10-1: USB disconnect, device number 20
[ 1950.084452][T24891] loop6: detected capacity change from 0 to 1024
[ 1950.174283][T24891] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1950.279271][T22430] usb 9-1: new high-speed USB device number 29 using dummy_hcd
[ 1950.446217][T22430] usb 9-1: Using ep0 maxpacket: 32
[ 1950.494358][T22430] usb 9-1: New USB device found, idVendor=0fd9, idProduct=0025, bcdDevice=29.40
[ 1950.504044][T22430] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1950.590230][T22430] usb 9-1: config 0 descriptor??
[ 1950.718945][T18481] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1950.857601][T22430] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[ 1950.929253][T22430] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[ 1951.005936][T22430] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[ 1951.013735][T22430] usb 9-1: media controller created
[ 1951.113474][T22430] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1951.320805][T22430] az6027: usb out operation failed. (-71)
[ 1951.331083][T22430] az6027: usb out operation failed. (-71)
[ 1951.337523][T22430] stb0899_attach: Driver disabled by Kconfig
[ 1951.344564][T22430] az6027: no front-end attached
[ 1951.344564][T22430] 
[ 1951.419162][T22430] az6027: usb out operation failed. (-71)
[ 1951.425427][T22430] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[ 1951.437030][T22430] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.8/usb9/9-1/input/input36
[ 1951.660692][T22430] dvb-usb: schedule remote query interval to 400 msecs.
[ 1951.670972][T22430] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
[ 1951.874325][T22430] usb 9-1: USB disconnect, device number 29
[ 1952.274577][T24912] loop5: detected capacity change from 0 to 32768
[ 1952.424304][T24912] ERROR: (device loop5): diAllocBit: iag inconsistent
[ 1952.424304][T24912] 
[ 1952.443641][T24912] ialloc: diAlloc returned -5!
[ 1952.687938][T22430] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected.
[ 1953.580884][T24929] loop9: detected capacity change from 0 to 128
[ 1953.736822][T24929] EXT4-fs (loop9): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1953.761667][T24932] netlink: 'syz.8.7535': attribute type 32 has an invalid length.
[ 1953.810331][T24929] ext4 filesystem being mounted at /453/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1953.891666][T24929] EXT4-fs warning (device loop9): verify_group_input:137: Cannot add at group 3976658945 (only 1 groups)
[ 1954.121298][T24936] netlink: 277 bytes leftover after parsing attributes in process `syz.3.7536'.
[ 1954.317934][T19255] EXT4-fs (loop9): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1955.042472][T24947] can0: slcan on ttyS3.
[ 1955.210629][T24947] can0 (unregistered): slcan off ttyS3.
[ 1955.232493][T24954] can0: slcan on ttyS3.
[ 1955.240285][T24955] loop9: detected capacity change from 0 to 128
[ 1955.424316][T24945] can0 (unregistered): slcan off ttyS3.
[ 1955.840343][T22430] IPVS: starting estimator thread 0...
[ 1955.849869][T24959] IPVS: sed: SCTP 172.20.20.187:0 - no destination available
[ 1955.964018][T24960] IPVS: using max 192 ests per chain, 9600 per kthread
[ 1956.445605][T24969] loop3: detected capacity change from 0 to 512
[ 1956.488270][T24969] EXT4-fs: Ignoring removed bh option
[ 1956.507999][T24969] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[ 1956.706668][T24969] EXT4-fs (loop3): 1 truncate cleaned up
[ 1956.715379][T24969] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1956.842777][T24971] loop6: detected capacity change from 0 to 4096
[ 1956.885715][T24971] ntfs3(loop6): Different NTFS sector size (1024) and media sector size (512).
[ 1957.248000][T24971] ntfs3(loop6): ino=1e, "file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" ni_find_attr
[ 1957.281333][T24977] loop5: detected capacity change from 0 to 1764
[ 1957.301477][T24475] EXT4-fs error (device loop3): ext4_lookup:1787: inode #14: comm syz-executor: invalid fast symlink length 39
[ 1957.344146][T24475] EXT4-fs error (device loop3): ext4_lookup:1787: inode #14: comm syz-executor: invalid fast symlink length 39
[ 1957.980247][T21336] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1957.999972][T24475] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1958.236443][T21336] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1958.426944][T21336] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1958.519150][T24988] netlink: 4 bytes leftover after parsing attributes in process `syz.6.7556'.
[ 1958.662785][T21336] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1959.061771][T24992] netlink: 12 bytes leftover after parsing attributes in process `syz.9.7561'.
[ 1959.155492][T21336] bridge_slave_1: left allmulticast mode
[ 1959.161474][T21336] bridge_slave_1: left promiscuous mode
[ 1959.177848][T21336] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1959.287982][T21336] bridge_slave_0: left allmulticast mode
[ 1959.294233][T21336] bridge_slave_0: left promiscuous mode
[ 1959.301302][T21336] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1960.061517][T21336] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1960.110163][T21336] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1960.132644][T21336] bond0 (unregistering): Released all slaves
[ 1960.936660][T21336] hsr_slave_0: left promiscuous mode
[ 1960.958167][T21336] hsr_slave_1: left promiscuous mode
[ 1960.968007][T21336] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1960.975959][T21336] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1961.045866][T21336] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1961.054324][T21336] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1961.225230][T21336] veth1_macvtap: left promiscuous mode
[ 1961.231289][T21336] veth0_macvtap: left promiscuous mode
[ 1961.237291][T21336] veth1_vlan: left promiscuous mode
[ 1961.244754][T21336] veth0_vlan: left promiscuous mode
[ 1962.331051][T21336] team0 (unregistering): Port device team_slave_1 removed
[ 1962.434261][T21336] team0 (unregistering): Port device team_slave_0 removed
[ 1963.165738][   T49] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1963.199100][   T49] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1963.214632][   T49] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1963.255597][   T49] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1963.291627][   T49] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1964.967263][T25008] chnl_net:caif_netlink_parms(): no params data found
[ 1965.243241][T25034] sctp: [Deprecated]: syz.9.7577 (pid 25034) Use of int in max_burst socket option deprecated.
[ 1965.243241][T25034] Use struct sctp_assoc_value instead
[ 1965.337873][T23493] Bluetooth: hci0: command tx timeout
[ 1966.257565][T25038] loop6: detected capacity change from 0 to 32768
[ 1966.273723][T25038] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.7580 (25038)
[ 1966.315462][T25038] BTRFS info (device loop6): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[ 1966.326320][T25038] BTRFS info (device loop6): using sha256 (sha256-x86_64) checksum algorithm
[ 1966.338269][T25038] BTRFS info (device loop6): using free-space-tree
[ 1966.693056][T18481] BTRFS info (device loop6): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[ 1967.060944][T25008] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1967.077740][T25008] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1967.086147][T25008] bridge_slave_0: entered allmulticast mode
[ 1967.096438][T25008] bridge_slave_0: entered promiscuous mode
[ 1967.192400][T25008] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1967.200420][T25008] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1967.208570][T25008] bridge_slave_1: entered allmulticast mode
[ 1967.218904][T25008] bridge_slave_1: entered promiscuous mode
[ 1967.320111][T23493] Bluetooth: hci0: command tx timeout
[ 1967.580893][T25008] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1967.607829][T25008] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1968.102611][T25008] team0: Port device team_slave_0 added
[ 1968.178451][T25008] team0: Port device team_slave_1 added
[ 1968.616977][T25008] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1968.624254][T25008] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1968.655737][T25008] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1968.758276][T25008] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1968.765629][T25008] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1968.792987][T25008] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1969.294344][T23493] Bluetooth: hci0: command tx timeout
[ 1969.485187][T25008] hsr_slave_0: entered promiscuous mode
[ 1969.496137][T25008] hsr_slave_1: entered promiscuous mode
[ 1969.514246][T25008] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1969.522314][T25008] Cannot create hsr debugfs directory
[ 1971.188098][T25102] loop5: detected capacity change from 0 to 512
[ 1971.267190][T25102] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256
[ 1971.278776][T23493] Bluetooth: hci0: command tx timeout
[ 1971.494968][T25008] netdevsim netdevsim7 netdevsim0: renamed from eth0
[ 1971.532599][T25008] netdevsim netdevsim7 netdevsim1: renamed from eth1
[ 1971.608313][T25008] netdevsim netdevsim7 netdevsim2: renamed from eth2
[ 1971.699761][T25008] netdevsim netdevsim7 netdevsim3: renamed from eth3
[ 1971.738449][T25099] loop6: detected capacity change from 0 to 4096
[ 1972.232008][T25099] ntfs3(loop6): ino=1a, mi_enum_attr
[ 1972.243404][T25099] ntfs3(loop6): Mark volume as dirty due to NTFS errors
[ 1972.379221][T25112] loop5: detected capacity change from 0 to 512
[ 1972.585676][T25112] EXT4-fs error (device loop5): ext4_expand_extra_isize_ea:2798: inode #11: comm syz.5.7603: corrupted xattr block 95: invalid header
[ 1972.646973][T25112] EXT4-fs error (device loop5): ext4_validate_block_bitmap:432: comm syz.5.7603: bg 0: block 7: invalid block bitmap
[ 1972.742169][T25112] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6548: Corrupt filesystem
[ 1972.789888][T25112] EXT4-fs error (device loop5): ext4_xattr_delete_inode:2962: inode #11: comm syz.5.7603: corrupted xattr block 95: invalid header
[ 1972.988978][T25112] EXT4-fs warning (device loop5): ext4_evict_inode:274: xattr delete (err -117)
[ 1972.998778][T25112] EXT4-fs (loop5): 1 orphan inode deleted
[ 1973.007396][T25112] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1973.165780][T25008] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1973.471402][T25008] 8021q: adding VLAN 0 to HW filter on device team0
[ 1973.563713][ T3577] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1973.571637][ T3577] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1973.691667][ T3577] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1973.699434][ T3577] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1973.762296][T25121] netlink: 28 bytes leftover after parsing attributes in process `syz.8.7607'.
[ 1973.813693][T24408] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1974.544593][T25124] loop6: detected capacity change from 0 to 1024
[ 1975.351568][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[ 1975.464572][    T0] NOHZ tick-stop error: local softirq work is pending, handler #42!!!
[ 1975.618108][T25142] loop6: detected capacity change from 0 to 128
[ 1975.708365][T25142] FAT-fs (loop6): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[ 1975.768578][T25142] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 1976.475903][T25008] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1976.668542][T25007] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 1976.868166][T25145] loop5: detected capacity change from 0 to 32768
[ 1976.994564][T25145] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1977.142185][T25145] XFS (loop5): Ending clean mount
[ 1977.300381][T24408] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1977.890878][T25167] program syz.6.7621 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1977.908337][T25167] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[ 1978.276434][T25170] loop9: detected capacity change from 0 to 2048
[ 1978.308894][T25170] NILFS (loop9): broken superblock, retrying with spare superblock (blocksize = 1024)
[ 1978.354085][T25173] netlink: 'syz.6.7624': attribute type 58 has an invalid length.
[ 1978.362567][T25173] netlink: 20 bytes leftover after parsing attributes in process `syz.6.7624'.
[ 1978.444317][T25174] NILFS (loop9): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1979.755589][T25008] veth0_vlan: entered promiscuous mode
[ 1979.908600][T25008] veth1_vlan: entered promiscuous mode
[ 1980.316471][T25008] veth0_macvtap: entered promiscuous mode
[ 1980.391525][T25008] veth1_macvtap: entered promiscuous mode
[ 1980.661953][T25008] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1980.780710][T25008] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1980.898944][T25008] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1980.908572][T25008] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1980.921963][T25008] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1980.932229][T25008] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1981.047241][T25199] xt_CT: No such helper "snmp"
[ 1981.102143][   T30] audit: type=1326 audit(1749673443.452:305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25205 comm="syz.9.7634" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fea4938e929 code=0x0
[ 1982.392867][T25222] loop9: detected capacity change from 0 to 1024
[ 1984.873545][T25257] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1986.873848][T25274] loop5: detected capacity change from 0 to 32768
[ 1986.885032][T25274] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.7658 (25274)
[ 1986.913576][T25274] BTRFS info (device loop5): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[ 1986.924439][T25274] BTRFS info (device loop5): using xxhash64 (xxhash64-generic) checksum algorithm
[ 1986.935870][T25274] BTRFS info (device loop5): using free-space-tree
[ 1987.160657][T25274] BTRFS info (device loop5): rebuilding free space tree
[ 1987.551503][T24408] BTRFS info (device loop5): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[ 1989.190081][T25311] loop6: detected capacity change from 0 to 1024
[ 1989.369257][T25311] hfsplus: bad catalog entry type
[ 1989.719378][T21338] hfsplus: b-tree write err: -5, ino 4
[ 1989.753241][ T1096] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1989.761592][ T1096] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1989.962883][ T1096] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1989.971462][ T1096] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1991.054580][T23493] Bluetooth: hci3: unexpected event for opcode 0x200c
[ 1991.433938][   T30] audit: type=1326 audit(1749673454.358:306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25337 comm="syz.5.7677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9c398e929 code=0x7ffc0000
[ 1991.559915][   T30] audit: type=1326 audit(1749673454.410:307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25337 comm="syz.5.7677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff9c398e929 code=0x7ffc0000
[ 1991.583469][   T30] audit: type=1326 audit(1749673454.452:308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25337 comm="syz.5.7677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9c398e929 code=0x7ffc0000
[ 1991.606798][   T30] audit: type=1326 audit(1749673454.452:309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25337 comm="syz.5.7677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff9c398e929 code=0x7ffc0000
[ 1991.629892][   T30] audit: type=1326 audit(1749673454.452:310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25337 comm="syz.5.7677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9c398e929 code=0x7ffc0000
[ 1991.657857][   T30] audit: type=1326 audit(1749673454.463:311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25337 comm="syz.5.7677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=141 compat=0 ip=0x7ff9c398e929 code=0x7ffc0000
[ 1991.682361][   T30] audit: type=1326 audit(1749673454.463:312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25337 comm="syz.5.7677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9c398e929 code=0x7ffc0000
[ 1992.428079][T25353] netlink: 12 bytes leftover after parsing attributes in process `syz.6.7682'.
[ 1992.477913][T25353] netlink: 8 bytes leftover after parsing attributes in process `syz.6.7682'.
[ 1993.163625][T25360] loop6: detected capacity change from 0 to 4096
[ 1993.324215][T25364] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1993.437004][T25365] loop5: detected capacity change from 0 to 512
[ 1993.512160][T25365] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1993.526140][T25365] ext4 filesystem being mounted at /52/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1994.156393][T24408] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1994.435273][ T1096] =====================================================
[ 1994.442795][ T1096] BUG: KMSAN: uninit-value in n_tty_receive_buf_standard+0xafd/0x98a0
[ 1994.451520][ T1096]  n_tty_receive_buf_standard+0xafd/0x98a0
[ 1994.458102][ T1096]  n_tty_receive_buf_common+0x1a68/0x2540
[ 1994.464808][ T1096]  n_tty_receive_buf2+0x4c/0x60
[ 1994.469914][ T1096]  tty_ldisc_receive_buf+0xc3/0x2c0
[ 1994.475720][ T1096]  tty_port_default_receive_buf+0xd7/0x1a0
[ 1994.487488][ T1096]  flush_to_ldisc+0x4a0/0xf00
[ 1994.494259][ T1096]  process_scheduled_works+0xb8e/0x1d80
[ 1994.500372][ T1096]  worker_thread+0xedf/0x1590
[ 1994.505559][ T1096]  kthread+0xd5c/0xf00
[ 1994.509851][ T1096]  ret_from_fork+0x1e3/0x310
[ 1994.514815][ T1096]  ret_from_fork_asm+0x1a/0x30
[ 1994.520969][ T1096] 
[ 1994.523436][ T1096] Uninit was stored to memory at:
[ 1994.529582][ T1096]  n_tty_receive_buf_standard+0xaf6/0x98a0
[ 1994.535696][ T1096]  n_tty_receive_buf_common+0x1a68/0x2540
[ 1994.541951][ T1096]  n_tty_receive_buf2+0x4c/0x60
[ 1994.547050][ T1096]  tty_ldisc_receive_buf+0xc3/0x2c0
[ 1994.553415][ T1096]  tty_port_default_receive_buf+0xd7/0x1a0
[ 1994.559728][ T1096]  flush_to_ldisc+0x4a0/0xf00
[ 1994.564776][ T1096]  process_scheduled_works+0xb8e/0x1d80
[ 1994.914885][ T1096]  worker_thread+0xedf/0x1590
[ 1994.927075][ T1096]  kthread+0xd5c/0xf00
[ 1994.932438][ T1096]  ret_from_fork+0x1e3/0x310
[ 1994.937282][ T1096]  ret_from_fork_asm+0x1a/0x30
[ 1994.942518][ T1096] 
[ 1994.944999][ T1096] Uninit was created at:
[ 1994.949751][ T1096]  __kmalloc_noprof+0x95f/0x1310
[ 1994.955089][ T1096]  __tty_buffer_request_room+0x3d4/0x7a0
[ 1994.961208][ T1096]  __tty_insert_flip_string_flags+0x157/0x6f0
[ 1994.973775][ T1096]  uart_insert_char+0x368/0x930
[ 1994.982099][ T1096]  serial8250_read_char+0x1ba/0x670
[ 1994.987734][ T1096]  serial8250_handle_irq+0x930/0x1110
[ 1994.993400][ T1096]  serial8250_default_handle_irq+0x116/0x2b0
[ 1994.999972][ T1096]  serial8250_interrupt+0xcb/0x400
[ 1995.005328][ T1096]  __handle_irq_event_percpu+0x11c/0xbf0
[ 1995.011556][ T1096]  handle_irq_event+0xe0/0x2a0
[ 1995.016774][ T1096]  handle_edge_irq+0x31c/0xc80
[ 1995.021777][ T1096]  __common_interrupt+0x9f/0x220
[ 1995.027207][ T1096]  common_interrupt+0x4c/0xb0
[ 1995.032312][ T1096]  asm_common_interrupt+0x2b/0x40
[ 1995.037759][ T1096] 
[ 1995.040288][ T1096] CPU: 0 UID: 0 PID: 1096 Comm: kworker/u8:6 Tainted: G        W           6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(undef) 
[ 1995.055160][ T1096] Tainted: [W]=WARN
[ 1995.059134][ T1096] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1995.076449][ T1096] Workqueue: events_unbound flush_to_ldisc
[ 1995.084466][ T1096] =====================================================
[ 1995.091878][ T1096] Disabling lock debugging due to kernel taint
[ 1995.098222][ T1096] Kernel panic - not syncing: kmsan.panic set ...
[ 1995.104852][ T1096] CPU: 0 UID: 0 PID: 1096 Comm: kworker/u8:6 Tainted: G    B   W           6.16.0-rc1-syzkaller-00004-gaef17cb3d3c4 #0 PREEMPT(undef) 
[ 1995.118973][ T1096] Tainted: [B]=BAD_PAGE, [W]=WARN
[ 1995.124174][ T1096] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1995.134544][ T1096] Workqueue: events_unbound flush_to_ldisc
[ 1995.140700][ T1096] Call Trace:
[ 1995.144147][ T1096]  <TASK>
[ 1995.147241][ T1096]  __dump_stack+0x26/0x30
[ 1995.151848][ T1096]  dump_stack_lvl+0x53/0x270
[ 1995.156718][ T1096]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1995.162849][ T1096]  dump_stack+0x1e/0x25
[ 1995.167264][ T1096]  panic+0x4bd/0xd50
[ 1995.171494][ T1096]  kmsan_report+0x31c/0x320
[ 1995.176301][ T1096]  ? __msan_warning+0x1b/0x30
[ 1995.181224][ T1096]  ? n_tty_receive_buf_standard+0xafd/0x98a0
[ 1995.187444][ T1096]  ? n_tty_receive_buf_common+0x1a68/0x2540
[ 1995.193658][ T1096]  ? n_tty_receive_buf2+0x4c/0x60
[ 1995.199174][ T1096]  ? tty_ldisc_receive_buf+0xc3/0x2c0
[ 1995.204810][ T1096]  ? tty_port_default_receive_buf+0xd7/0x1a0
[ 1995.213405][ T1096]  ? flush_to_ldisc+0x4a0/0xf00
[ 1995.218507][ T1096]  ? process_scheduled_works+0xb8e/0x1d80
[ 1995.224586][ T1096]  ? worker_thread+0xedf/0x1590
[ 1995.229686][ T1096]  ? kthread+0xd5c/0xf00
[ 1995.234122][ T1096]  ? ret_from_fork+0x1e3/0x310
[ 1995.239090][ T1096]  ? ret_from_fork_asm+0x1a/0x30
[ 1995.244296][ T1096]  ? ret_from_fork_asm+0x1a/0x30
[ 1995.249493][ T1096]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[ 1995.256079][ T1096]  ? kmsan_internal_unpoison_memory+0x14/0x20
[ 1995.263172][ T1096]  ? kmsan_get_metadata+0x150/0x160
[ 1995.268661][ T1096]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[ 1995.275245][ T1096]  ? kmsan_get_metadata+0x150/0x160
[ 1995.280697][ T1096]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1995.286773][ T1096]  ? n_tty_receive_char+0xfae/0x1440
[ 1995.292299][ T1096]  ? kmsan_get_metadata+0xfb/0x160
[ 1995.297682][ T1096]  __msan_warning+0x1b/0x30
[ 1995.302419][ T1096]  n_tty_receive_buf_standard+0xafd/0x98a0
[ 1995.308509][ T1096]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[ 1995.315094][ T1096]  ? kmsan_get_metadata+0xfb/0x160
[ 1995.320487][ T1096]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[ 1995.327072][ T1096]  ? kmsan_internal_unpoison_memory+0x14/0x20
[ 1995.333414][ T1096]  n_tty_receive_buf_common+0x1a68/0x2540
[ 1995.339482][ T1096]  n_tty_receive_buf2+0x4c/0x60
[ 1995.344552][ T1096]  ? __pfx_n_tty_receive_buf2+0x10/0x10
[ 1995.350320][ T1096]  tty_ldisc_receive_buf+0xc3/0x2c0
[ 1995.355791][ T1096]  tty_port_default_receive_buf+0xd7/0x1a0
[ 1995.361896][ T1096]  flush_to_ldisc+0x4a0/0xf00
[ 1995.366860][ T1096]  ? __pfx_tty_port_default_receive_buf+0x10/0x10
[ 1995.373573][ T1096]  ? __pfx_flush_to_ldisc+0x10/0x10
[ 1995.379043][ T1096]  process_scheduled_works+0xb8e/0x1d80
[ 1995.384919][ T1096]  worker_thread+0xedf/0x1590
[ 1995.389880][ T1096]  kthread+0xd5c/0xf00
[ 1995.394136][ T1096]  ? __pfx_worker_thread+0x10/0x10
[ 1995.399520][ T1096]  ? __pfx_kthread+0x10/0x10
[ 1995.404321][ T1096]  ret_from_fork+0x1e3/0x310
[ 1995.409120][ T1096]  ? __pfx_kthread+0x10/0x10
[ 1995.413916][ T1096]  ret_from_fork_asm+0x1a/0x30
[ 1995.418962][ T1096]  </TASK>
[ 1995.422486][ T1096] Kernel Offset: disabled
[ 1995.426922][ T1096] Rebooting in 86400 seconds..