last executing test programs:

13m25.564674076s ago: executing program 1 (id=1249):
syz_open_procfs(0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x8004000}, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000180)="420fc7bc4898580000640f01c50f01c566baf80cb864c95782ef66bafc0cec67670f1b0166b8fb008ec046d9c3c442b90a2c81c442812852fcc744240012000000c74424020b000000ff1c24", 0x4c}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

13m25.254507349s ago: executing program 1 (id=1255):
sendmsg$NFULNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4}, 0x4044844)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x28100, 0x0)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000000)={@multicast1, @local}, 0xc)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_open_procfs(0x0, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000280)={0xffffffffffffffff, 0x0, 0x0}, 0x10)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000440)={[0x0, 0x100000000, 0x0, 0x7f, 0x100000, 0x0, 0x2004c8, 0x8000000, 0x0, 0x3, 0x7, 0x0, 0x5, 0x0, 0x2, 0xffffffffffffffff], 0xd000, 0x200})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

13m25.034724669s ago: executing program 1 (id=1258):
syz_open_procfs(0x0, &(0x7f0000000040)='fd\x00')
syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00')
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff7000/0x1000)=nil, &(0x7f0000226000/0x1000)=nil, &(0x7f00005af000/0x1000)=nil, &(0x7f000005a000/0x1000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f000004c000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r0 = io_uring_setup(0x4fee, &(0x7f0000000040)={0x0, 0xc89f, 0xc000, 0x3, 0x20002f7})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000093c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@deltfilter={0x24, 0x2d, 0x800, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x1}, {0xd, 0x8}, {0xe, 0xffff}}}, 0x24}, 0x1, 0x0, 0x0, 0x40005}, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3, &(0x7f0000000000)=0x6, 0x4)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
io_uring_enter(r0, 0x2219, 0x7721, 0x16, 0x0, 0x0)

13m24.904675515s ago: executing program 1 (id=1259):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000680)='./file0\x00', 0x2148c5, &(0x7f00000002c0)={[{@utf8no}, {@fat=@time_offset={'time_offset', 0x3d, 0x30a}}, {@shortname_mixed}, {@utf8}, {@uni_xlateno}, {@fat=@nfs_nostale_ro}, {@fat=@quiet}, {@uni_xlate}, {@shortname_mixed}, {@fat=@errors_continue}, {@shortname_lower}, {@shortname_lower}, {@rodir}, {@utf8}]}, 0x0, 0x2c4, &(0x7f0000000a40)="$eJzs3UFr02AYwPFn7dZ2HVt7GIKC+KAXvYStfoIiG4gFZVvFeRAyl2ppbEZTKxVxu3n1E/gBht48Kah32cWbd/Gyi+BlB7WyNLFdF7FVttTt/4ORd++bp3nT9015Etpk+8bTe5WSa5TMusRSKjGRDdkRye6WfCP+MuaVE9JtQy5MfP14enH55pV8oTC3oDqfX7qYU9WpM28ePHp+9l194vrLqddJ2cre2v6S+7R1Yuvk9o+l4NUdEVNXHKdurtiWrpbdiqF6zbZM19Jy1bVqde1qL9nO2lpTzerqZHqtZrmumtWmVqym1h2t15pq3jHLVTUMQyfTvd0/8uIDRxS/J0TyB9IZRGE8rLJWy5vx0Mbi5mF0CgAADJeo8v+7ZVfLrladPfn9/vw/JgPk/yJh+T9+q7i5sGCS/x9xu/l/2j9+9yL/BwAAAAAAAAAAAAAAAAAAAADgf7Ajkmm1WpmdVstbBn9JEUmJSPB/1P3EwQjGnfE/nhaXR8T/4V5KxH7SKDaK7WW7PV+SsthiycyYyDdvPvja5fnLhbkZ9WTlrb3ux683inFJBvGBbHj8bDteu+PXZUzS3dvPSUamw+NzIfGNYkLOn2sl/S1bYkhGPtwWR2xZ9eZ1J/7xrOqlq4We+HFvPQAAAAAAjgJDf9l3/u61GxrcNqSnvV3ZuT4gmc71gbmw6wM959ejcmo0uv0GAAAAAOA4cZsPK6ZtW7U/FVKdmvf9Rw1VIXj+wcDh8ZCm4Bsx0e1Oqt+VR0XEr3k1LGPRTyH2D29vfIBRHts/nxMisqdm+vDn/ItnAxye/RU+3+9/0kb1iQQAAADgoARJ/7F5SCYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEOo35uHBev/zb3HujYXj2YvAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgOHwMwAA//8VhA3+")
r0 = syz_open_procfs(0x0, &(0x7f0000000540)='mounts\x00')
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000500)='./file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x1333406, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x11080, 0x0)
mount$bind(&(0x7f0000000240)='.\x00', &(0x7f0000000280)='./file0\x00', 0x0, 0x1005c48, 0x0)
read$FUSE(r0, &(0x7f0000004c40)={0x2020}, 0x2020)

13m24.71186797s ago: executing program 1 (id=1261):
fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40042, 0x1)
socket$netlink(0x10, 0x3, 0x0)
r0 = open(&(0x7f0000000380)='./bus\x00', 0x40, 0x0)
r1 = creat(&(0x7f0000000200)='./bus\x00', 0x84)
write$FUSE_NOTIFY_STORE(r1, &(0x7f0000000240)=ANY=[@ANYBLOB='+\x00\x00\x00', @ANYRES32=r0], 0x2b)
sendfile(0xffffffffffffffff, r0, 0x0, 0x4000000053d2)

13m24.404745243s ago: executing program 1 (id=1266):
quotactl$Q_QUOTAON(0xffffffff80000201, &(0x7f0000000180)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)
r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x189240, 0x0)
ioctl$XFS_IOC_PATH_TO_FSHANDLE(r0, 0xc0385868, &(0x7f0000000300)={0xffffffffffffffff, &(0x7f0000000100)='ext4\x00', 0x180, 0x0, 0xe, 0x0, 0x0})
r1 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x48)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000001c0)={r1, r2, 0x26, 0x0, @void}, 0x10)
ioctl$KVM_SET_DEBUGREGS(0xffffffffffffffff, 0x4080aea2, &(0x7f0000000080)={[0xeeee0000, 0xeeef0000, 0xdddd0000, 0xb000], 0x2000000db, 0xc})
openat$kvm(0x0, &(0x7f0000000040), 0x200800, 0x0)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xf88e470f, 0xed}]})
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x2, 0x9, 0xfffffffffffffffd, 0x2, 0x2, 0x0, 0x4002004c4, 0x1004, 0x8000000000000000, 0xc595, 0x0, 0x0, 0xffffffffffffffff, 0x2000000000000000, 0xb3, 0x8d], 0xeeee8000, 0x2010d3})
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

13m24.145083816s ago: executing program 32 (id=1266):
quotactl$Q_QUOTAON(0xffffffff80000201, &(0x7f0000000180)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)
r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x189240, 0x0)
ioctl$XFS_IOC_PATH_TO_FSHANDLE(r0, 0xc0385868, &(0x7f0000000300)={0xffffffffffffffff, &(0x7f0000000100)='ext4\x00', 0x180, 0x0, 0xe, 0x0, 0x0})
r1 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x48)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000001c0)={r1, r2, 0x26, 0x0, @void}, 0x10)
ioctl$KVM_SET_DEBUGREGS(0xffffffffffffffff, 0x4080aea2, &(0x7f0000000080)={[0xeeee0000, 0xeeef0000, 0xdddd0000, 0xb000], 0x2000000db, 0xc})
openat$kvm(0x0, &(0x7f0000000040), 0x200800, 0x0)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xf88e470f, 0xed}]})
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000200)={[0x2, 0x9, 0xfffffffffffffffd, 0x2, 0x2, 0x0, 0x4002004c4, 0x1004, 0x8000000000000000, 0xc595, 0x0, 0x0, 0xffffffffffffffff, 0x2000000000000000, 0xb3, 0x8d], 0xeeee8000, 0x2010d3})
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

10m40.10426248s ago: executing program 3 (id=2669):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x101000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000a80)={0x1, 0x0, @pic={0xb, 0x9, 0xe5, 0x1, 0x3, 0xa, 0x4, 0x7, 0x81, 0x39, 0x0, 0x1b, 0xfd, 0x4, 0x3, 0x2}})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, 0x0)

10m39.828607799s ago: executing program 3 (id=2675):
socket$inet6_sctp(0xa, 0x1, 0x84)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x1, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000640)="430fc73f0f2390b9800000c00f3235010000000f300f20d835080000000f22d8c4e18173f53866baf80cb83879e487ef66bafc0cec66b88e008ec02d1aa80000460f1c460041ae", 0x47}], 0x1, 0x74, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f00000000c0)=ANY=[@ANYBLOB="12"], 0x1000f)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x0, 0x0, &(0x7f0000000240))
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, 0x1, 0x2}, 0x28)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
sendmsg$inet6(0xffffffffffffffff, &(0x7f0000000800)={&(0x7f0000000080)={0xa, 0x4e24, 0x8, @loopback, 0x4}, 0x1c, 0x0}, 0x4048043)
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x1800)
setrlimit(0xf, &(0x7f0000000000)={0x1, 0x5})

10m39.309111244s ago: executing program 3 (id=2678):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2002, 0x0)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000080)="67400f07c40249af4b8bb9800000c00f3235010200000f300f20a366450f769e00000100440f20c03588001d00445b66baf80cb88cf4b684ef66bafc0ced460f01c9c4827d24c366ba4cf0ff07ef87f345a57a43e16806a4", 0x58}], 0x1, 0x7c, 0x0, 0x0)
ioctl$KVM_RUN(r0, 0xae80, 0x0)
ioctl$KVM_SET_SREGS(r0, 0x4138ae84, &(0x7f00000001c0)={{0x200000, 0xeeef0000, 0x8, 0x9, 0xfb, 0x9, 0x40, 0x7, 0x0, 0x2e, 0x19}, {0x5000, 0xc000, 0x3, 0x0, 0x7, 0x5, 0x79, 0x6, 0x5, 0x3, 0x3, 0xa6}, {0xeeef0003, 0x80a0000, 0xe, 0x5, 0x3, 0x7, 0x0, 0x9, 0x1, 0x8, 0x5, 0x81}, {0x3000, 0x1, 0x9, 0x1, 0x8, 0x42, 0xb, 0xff, 0x6, 0x7, 0xe}, {0x11f6593269eab9dc, 0x60000, 0xb, 0x3, 0x15, 0x19, 0xc0, 0x7f, 0x7, 0x83, 0x8, 0x83}, {0x70000, 0x0, 0xd, 0x5a, 0xad, 0x8, 0x1, 0x9e, 0x8, 0xf, 0x2}, {0x3000, 0x8000000, 0x4, 0x5, 0x2, 0x5, 0x9, 0x3, 0x5, 0x81, 0xff, 0x6d}, {0x100000, 0x1, 0xe, 0x5, 0xf, 0x7, 0x0, 0x34, 0x2, 0xb, 0xb0, 0x9}, {0xa000, 0x30}, {0x100000, 0x10a}, 0x80050021, 0x0, 0x8000000, 0x2424, 0x3, 0x0, 0x8000c00, [0x6800200000000000, 0x4, 0x61, 0x4]})
ioctl$KVM_RUN(r0, 0xae80, 0x0)

10m39.055949698s ago: executing program 3 (id=2680):
mkdir(&(0x7f0000001a80)='./file0\x00', 0x18b)
mount$bpf(0x200000000000, &(0x7f0000000000)='./file0/../file0\x00', 0x0, 0x989046, 0x0)
mount$bpf(0x0, &(0x7f00000000c0)='./file0/../file0\x00', 0x0, 0x100000, 0x0)
mount$bpf(0x200000000000, &(0x7f0000000000)='.\x00', 0x0, 0x8b7848, 0x0)
mount$bpf(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x84000, 0x0)
mount$bpf(0x200000002000, &(0x7f0000000100)='./file0/../file0\x00', 0x0, 0x80000, 0x0)
mount$bpf(0x200000000000, &(0x7f0000000000)='./file0/../file0\x00', 0x0, 0x8b7848, 0x0)

10m38.942333197s ago: executing program 3 (id=2682):
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x800, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r0, 0xc008561c, &(0x7f0000000040)={0xf0f024})
r1 = syz_open_dev$cec(&(0x7f0000000000), 0x0, 0x0)
ioctl$CEC_S_MODE(r1, 0x40046109, &(0x7f0000000180)=0x20)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='new user:syz 000000000000000020'], 0x2a, 0xfffffffffffffffc)
add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe)
add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
setsockopt$ARPT_SO_SET_REPLACE(r2, 0x0, 0x60, &(0x7f00000000c0)={'filter\x00', 0x7, 0x2, 0x3e0, 0x1f8, 0x2f8, 0x1f8, 0x2f8, 0x2f8, 0x2f8, 0x4, 0x0, {[{{@uncond, 0xc0, 0xe8}, @unspec=@NFQUEUE2={0x28}}, {{@arp={@multicast2, @empty, 0x0, 0x0, 0x0, 0x0, {@mac=@broadcast}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'vxcan1\x00', 'nr0\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @mac, @broadcast}}}, {{@arp={@remote, @multicast2, 0x0, 0x0, 0x0, 0x0, {@mac}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'pim6reg\x00', 'vcan0\x00'}, 0xc0, 0x100}, @unspec=@ERROR={0x40, 'ERROR\x00', 0x0, "dcbc4f0fcafe5fd600342efa7968d220b64d039e8a81d171eeb2e9630554"}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x430)
ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000180)={0x2, @vbi={0x9, 0xdc, 0x2, 0x32314142, [0x1, 0x1], [0x8, 0x5], 0x1}})

10m38.603742035s ago: executing program 3 (id=2687):
syz_open_dev$sg(&(0x7f0000000280), 0x0, 0x22c43)
socket$netlink(0x10, 0x3, 0xc)
syz_io_uring_setup(0x498, &(0x7f0000000400)={0x0, 0x16fa, 0x800, 0x4, 0x8}, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
socket$key(0xf, 0x3, 0x2)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet(0x2, 0x4000000000000001, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x800, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_procfs$pagemap(0x0, &(0x7f0000000980))
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000200))
r2 = syz_open_dev$dri(&(0x7f0000000440), 0x1, 0x48240)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r2, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r2, 0xc01064b5, &(0x7f0000000040)={&(0x7f0000000100)=[<r3=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_ATOMIC(r2, 0xc03864bc, &(0x7f0000000180)={0x700, 0x1, &(0x7f00000000c0)=[r3], &(0x7f0000000180), &(0x7f0000000200), &(0x7f0000000140)=[0x0], 0x0, 0x1})

10m38.40987794s ago: executing program 33 (id=2687):
syz_open_dev$sg(&(0x7f0000000280), 0x0, 0x22c43)
socket$netlink(0x10, 0x3, 0xc)
syz_io_uring_setup(0x498, &(0x7f0000000400)={0x0, 0x16fa, 0x800, 0x4, 0x8}, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
socket$key(0xf, 0x3, 0x2)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet(0x2, 0x4000000000000001, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x800, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_procfs$pagemap(0x0, &(0x7f0000000980))
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000200))
r2 = syz_open_dev$dri(&(0x7f0000000440), 0x1, 0x48240)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r2, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r2, 0xc01064b5, &(0x7f0000000040)={&(0x7f0000000100)=[<r3=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_ATOMIC(r2, 0xc03864bc, &(0x7f0000000180)={0x700, 0x1, &(0x7f00000000c0)=[r3], &(0x7f0000000180), &(0x7f0000000200), &(0x7f0000000140)=[0x0], 0x0, 0x1})

5m22.019123113s ago: executing program 4 (id=4300):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f00000003c0), 0x40001, 0x0)
r1 = dup(r0)
ioctl$PTP_EXTTS_REQUEST2(r1, 0x40603d10, &(0x7f00000002c0)={0x1, 0x9})
sched_setscheduler(0x0, 0x1, &(0x7f0000000400)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$devlink(&(0x7f0000000600), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_GET(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000740)={0x14, r6, 0x303, 0x3, 0x25dfdbfd, {0x3d}}, 0x14}, 0x1, 0x0, 0x0, 0x880}, 0x0)

5m19.006621226s ago: executing program 4 (id=4304):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010600000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff1b000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYBLOB], 0x64}, 0x1, 0x0, 0x0, 0x4080}, 0x4000884)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000540)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05000000000000000000010000000900010073797a300000000040000000030a01010000000000000000010000000900030073797a310000000014000480080002400000000008000140000000000900010073797a300000000040000000060a010400000000020000000100000018000480140001800d00010073796e70726f78790000000008000b40000000000900010073797a30"], 0xc8}}, 0x0)

5m18.394235543s ago: executing program 4 (id=4307):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
sendmsg$nl_route_sched(r1, 0x0, 0x20040084)
r3 = socket$unix(0x1, 0x1, 0x0)
r4 = socket$kcm(0x11, 0x3, 0x0)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r5)
socket$tipc(0x1e, 0x2, 0x0)
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r6 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000940)=@newtfilter={0x38, 0x2c, 0xd27, 0x70bd26, 0x25dfdc00, {0x0, 0x0, 0x0, r7, {0xffff, 0x4}, {}, {0x8, 0xfff2}}, [@filter_kind_options=@f_matchall={{0xd}, {0x4}}]}, 0x38}, 0x1, 0x0, 0x0, 0x8000}, 0x20000044)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
setsockopt$sock_attach_bpf(r4, 0x107, 0xf, &(0x7f0000000600), 0x56)
sendmsg$kcm(r4, &(0x7f0000000280)={&(0x7f0000000380)=@xdp={0x2c, 0x0, r8, 0x3e}, 0x80, &(0x7f00000001c0)=[{&(0x7f0000000180)="27030200000214000e00002fb96dffff1144ee163cddcb000000800000827600000000000000", 0x26}, {&(0x7f00000004c0)="f058050000007f8f", 0x300}], 0x2}, 0x5)

5m12.516739956s ago: executing program 4 (id=4319):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x102}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = getpid()
r4 = syz_pidfd_open(r3, 0x0)
setns(r4, 0x24020000)
r5 = landlock_create_ruleset(&(0x7f0000000040)={0x0, 0x3}, 0x10, 0x0)
landlock_restrict_self(r5, 0x0)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000001700)={'syz0\x00', {0x54f, 0x1, 0x5, 0xfff}, 0x1b, [0x7, 0x4, 0x7ff, 0x1000004, 0x8, 0x3, 0x1, 0x3, 0x19d2, 0xaa, 0x123, 0x7, 0x3, 0x65f, 0x6, 0xa, 0x3, 0x5, 0x6, 0xe, 0x7fff, 0x800, 0x0, 0xc, 0x2, 0x3, 0xae, 0x2, 0x10, 0x40, 0x40055c, 0x7, 0xc, 0x4, 0x6, 0xc, 0x0, 0x9, 0x80000001, 0x1200000, 0x2, 0xfffff8e4, 0x0, 0xcb0, 0x4, 0x9, 0x8, 0x4, 0x0, 0x3, 0xfff, 0x3ff, 0x1, 0x5b, 0xffffe9ab, 0x9, 0x7, 0x2169, 0xffff8000, 0x5, 0xee, 0x9, 0xd7a, 0x7fffffff], [0x36, 0x200, 0x6, 0x10ff, 0x6, 0x2, 0xe00, 0x6, 0x10, 0xfffffff8, 0x1c, 0x3, 0xd1, 0xa, 0x800, 0x4, 0xf8b, 0x3, 0x9, 0x1, 0x6, 0x6, 0x627e, 0x10000, 0x784, 0x7dd, 0x8, 0x1000, 0x5, 0x9, 0xa, 0xfffffffa, 0xa80, 0x7, 0x3, 0x3, 0xb, 0x80000001, 0x7f, 0x6, 0xfff, 0x591b999d, 0x80000000, 0xa7c1, 0x4, 0x101, 0xffff7fff, 0x4, 0x7, 0x3, 0x401, 0x8000, 0x1, 0x0, 0x2, 0xd, 0x5, 0x4, 0x3, 0x9, 0x8001, 0x68a3, 0x100, 0x8], [0x400, 0x5, 0x2, 0x9e4, 0x1, 0x100, 0x6d, 0x7, 0x8854, 0x4, 0x6, 0x2f, 0xe7, 0x9, 0x1, 0x2, 0xd3, 0x6, 0x4, 0xffff, 0xfffffffe, 0x3, 0xffffffff, 0x1, 0x1500, 0x0, 0xb8, 0x5, 0x80, 0x572, 0x9, 0x4, 0xe, 0x0, 0x0, 0x8, 0xe, 0x76, 0x60, 0x4, 0xf6b2, 0x5, 0x80000000, 0x0, 0x0, 0x4, 0xa20, 0x7, 0x97, 0x5, 0x18c9, 0x80000001, 0x0, 0x1, 0x6c, 0x0, 0x1, 0xfffffffb, 0x9264, 0x3, 0x9f, 0x2, 0x60e, 0x10000], [0x7, 0x1, 0x1, 0x1, 0x80000000, 0x9, 0x9, 0x4, 0x5, 0x6, 0x3, 0x4, 0x6, 0x242, 0x3800, 0x1, 0x0, 0x5e, 0xfff, 0xffffffff, 0x0, 0x6, 0x1, 0x5, 0x6, 0x84000000, 0x9, 0x6, 0x0, 0x100, 0x9, 0x4, 0xb98c, 0x2, 0xae341edb, 0x9, 0xb, 0x5, 0x5375, 0x8000, 0x800, 0x5, 0x6, 0xffffff15, 0x8, 0x3, 0x3a1, 0x0, 0x7, 0x7, 0x1, 0x5, 0x7, 0x7fff, 0x0, 0x7, 0x8, 0x6, 0x1000, 0x9, 0x4, 0x1e, 0x94, 0x9]}, 0x45c)
mkdir(0x0, 0x5)
waitid(0x2, r0, 0x0, 0x2, &(0x7f0000000080))
fcntl$setown(0xffffffffffffffff, 0x8, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r6, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0)
syz_emit_vhci(&(0x7f00000004c0)=ANY=[@ANYBLOB="04221d02aaaaaaaaaa12040395a77fb5820affffffffffff0002a3b9270900ef1c4cfd7fc45def47d67b5e982234e122456d6876f21b7dd50c0c1ef7de1f61cd9d81f10babdf36d3482799de4975ead52b76b73f773b59cea231a96cd9a4120706772b87ed464dfd"], 0x20)
sendmsg$NFT_BATCH(r6, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000a40)=ANY=[], 0x3c}, 0x1, 0x0, 0x0, 0x4011}, 0x40440c4)

5m11.435424406s ago: executing program 4 (id=4323):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, 0x0, 0x0)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ppoll(0x0, 0x0, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$WG_CMD_SET_DEVICE(0xffffffffffffffff, &(0x7f0000002f40)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40001}, 0x4000000)
listen(r4, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="1802000000c400000000000000000000850000003e00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000}, 0x43)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000023c0)=ANY=[@ANYBLOB="1200000004000000080000000b"], 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000540)=ANY=[@ANYRES32=r6, @ANYRES32=r5, @ANYBLOB='\a'], 0x10)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000500)={r6, &(0x7f0000000240), &(0x7f00000004c0)=@tcp6=r4}, 0x20)
sendmmsg$inet6(r4, 0x0, 0x0, 0x10)

5m10.10635283s ago: executing program 4 (id=4327):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
sendmsg$nl_route_sched(r1, 0x0, 0x20040084)
r3 = socket$unix(0x1, 0x1, 0x0)
r4 = socket$kcm(0x11, 0x3, 0x0)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r5)
socket$tipc(0x1e, 0x2, 0x0)
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r6 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000940)=@newtfilter={0x38, 0x2c, 0xd27, 0x70bd26, 0x25dfdc00, {0x0, 0x0, 0x0, r7, {0xffff, 0x4}, {}, {0x8, 0xfff2}}, [@filter_kind_options=@f_matchall={{0xd}, {0x4}}]}, 0x38}, 0x1, 0x0, 0x0, 0x8000}, 0x20000044)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
setsockopt$sock_attach_bpf(r4, 0x107, 0xf, &(0x7f0000000600), 0x56)
sendmsg$kcm(r4, &(0x7f0000000280)={&(0x7f0000000380)=@xdp={0x2c, 0x0, r8, 0x3e}, 0x80, &(0x7f00000001c0)=[{&(0x7f0000000180)="27030200000214000e00002fb96dffff1144ee163cddcb000000800000827600000000000000", 0x26}, {&(0x7f00000004c0)="f058050000007f8f", 0x300}], 0x2}, 0x5)

4m54.358452398s ago: executing program 34 (id=4327):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
sendmsg$nl_route_sched(r1, 0x0, 0x20040084)
r3 = socket$unix(0x1, 0x1, 0x0)
r4 = socket$kcm(0x11, 0x3, 0x0)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r5)
socket$tipc(0x1e, 0x2, 0x0)
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r6 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000940)=@newtfilter={0x38, 0x2c, 0xd27, 0x70bd26, 0x25dfdc00, {0x0, 0x0, 0x0, r7, {0xffff, 0x4}, {}, {0x8, 0xfff2}}, [@filter_kind_options=@f_matchall={{0xd}, {0x4}}]}, 0x38}, 0x1, 0x0, 0x0, 0x8000}, 0x20000044)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
setsockopt$sock_attach_bpf(r4, 0x107, 0xf, &(0x7f0000000600), 0x56)
sendmsg$kcm(r4, &(0x7f0000000280)={&(0x7f0000000380)=@xdp={0x2c, 0x0, r8, 0x3e}, 0x80, &(0x7f00000001c0)=[{&(0x7f0000000180)="27030200000214000e00002fb96dffff1144ee163cddcb000000800000827600000000000000", 0x26}, {&(0x7f00000004c0)="f058050000007f8f", 0x300}], 0x2}, 0x5)

1m49.104931284s ago: executing program 6 (id=4853):
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
sendmsg$IPSET_CMD_SAVE(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000000c0)={0x0, 0x48}, 0x1, 0x0, 0x0, 0x2000c800}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = fsmount(0xffffffffffffffff, 0x1, 0x0)
fchdir(r4)
setsockopt$bt_BT_VOICE(r0, 0x112, 0xb, 0x0, 0x0)
mknodat$loop(0xffffffffffffff9c, 0x0, 0x6004, 0x1)

1m47.951136521s ago: executing program 6 (id=4856):
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
openat2$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)={0x2afc0, 0x1c1, 0x6}, 0x18)
r3 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000180), 0x1, 0x0)
write$binfmt_register(r3, &(0x7f0000000140)={0x3a, 'syz3', 0x3a, 'E', 0x3a, 0x3, 0x3a, 'M', 0x3a, '^', 0x3a, './file0', 0x3a, [0x46]}, 0x2a)
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x40240, 0x6)
setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000440)={'filter\x00', 0x104, 0x4, 0x3c8, 0xe8, 0x1d0, 0x1d0, 0x2e0, 0x2e0, 0x2e0, 0x7fffffe, 0x0, {[{{@arp={@remote, @multicast2, 0x0, 0x0, 0x7, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 'bridge0\x00', 'erspan0\x00'}, 0xc0, 0xe8}, @unspec=@CLASSIFY={0x28}}, {{@uncond, 0xc0, 0xe8}, @unspec=@NFQUEUE2={0x28, 'NFQUEUE\x00', 0x2, {0x0, 0x100}}}, {{@arp={@rand_addr, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0xfc, {@empty, {[0xff, 0x0, 0x0, 0x0, 0x0, 0xff]}}, {@mac=@multicast, {[0xff]}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bond_slave_1\x00', 'ipvlan1\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@mac=@multicast, @empty, @initdev={0xac, 0x1e, 0x1, 0x0}, @private=0xa010100, 0x4, 0x1}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x418)
statx(0xffffffffffffffff, 0x0, 0x400, 0x200, 0x0)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x1e, 0x0, 0x0)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x10, &(0x7f0000000140)=0x1, 0x4)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000a00)={'syz1\x00', {0x9, 0x7, 0x5, 0x5}, 0x3f, [0x9, 0x2, 0x5, 0x6, 0x2, 0x400, 0x80400000, 0x0, 0x8, 0x0, 0x6, 0x2, 0xfffffffb, 0x39, 0x747d5e13, 0x800, 0xfffffb9a, 0xfffffffe, 0x0, 0xfffffffb, 0x2004, 0x3, 0x0, 0xf250, 0x80, 0x4800, 0x300000, 0x7, 0xe, 0x4623f, 0x0, 0x10001, 0x1ff, 0x8003, 0x0, 0x3, 0xd, 0x3, 0xba55, 0x8da8, 0x1, 0x200, 0x2, 0x4, 0xe, 0x4, 0x2, 0x6f, 0x8, 0x9, 0x1, 0x199d, 0x6, 0x2, 0x9, 0xfffbffff, 0x4, 0x6, 0x1000, 0x5, 0x3d, 0x8, 0xa, 0x5], [0x1, 0x101, 0x3, 0x8000, 0xfffffffd, 0x3, 0x0, 0x25, 0x7, 0xfffffffc, 0x8, 0x7fff, 0x72c, 0x1c32, 0x3, 0x6, 0x10000, 0x400, 0x7ffd, 0x3, 0x1, 0xf, 0x5, 0x0, 0x981, 0x4, 0x0, 0x3ff, 0x0, 0x0, 0x0, 0x1000001, 0x10, 0xfffffff9, 0xfffffffd, 0x7, 0x1, 0xffffffff, 0x6, 0x8, 0x800, 0x7, 0x6, 0x96, 0xfffffff9, 0x2, 0x0, 0x2, 0x411, 0xc, 0x3, 0x379, 0x9, 0xe, 0x5, 0x7, 0x6, 0x2, 0x1, 0x1, 0x8, 0x7, 0xed, 0x3], [0x401, 0x8000c584, 0xffff, 0xcd3, 0x7, 0x1f, 0x404, 0x4, 0x4008, 0xc, 0x7, 0x0, 0xe8b, 0x5, 0x80000001, 0x8, 0x3f92, 0x1000, 0x0, 0x10, 0x1, 0xfffffff9, 0x0, 0x1000, 0x80040101, 0x5, 0x4, 0x5, 0x200003, 0x2, 0x5, 0x80, 0x9, 0x8001, 0x10000, 0x0, 0x7, 0x400004, 0x3, 0x6d7e, 0x3, 0x8, 0x3, 0xbf23, 0x6, 0x9, 0x1956, 0x0, 0x3ff, 0xe, 0x6, 0x100fffd, 0x2005, 0x9, 0x4, 0xea, 0x9, 0x20000005, 0x3, 0xd9, 0x0, 0x7d, 0x401, 0x5], [0x108e, 0x8000ffff, 0x7, 0x3, 0x88, 0x2, 0x4000000, 0x4, 0x4c, 0x2, 0x763, 0xb, 0x402, 0x1, 0x9, 0x4001000, 0x7f, 0x5, 0x3fa6, 0x4, 0x0, 0x5, 0x6, 0x4, 0xe47, 0x4, 0x3, 0x4, 0x2, 0x2851, 0x3b, 0x20000001, 0x5, 0x5, 0xa80a, 0x65f413f9, 0x4, 0x20006, 0x8a5, 0x86, 0x44, 0x409, 0x3, 0x4, 0x4, 0x10, 0x4, 0xffffffff, 0x7fff, 0xffff8a33, 0xfffffff9, 0x401, 0x3, 0x200, 0x7, 0x4edf, 0xfffffffd, 0xa, 0xe, 0x2, 0xf, 0xf, 0x136, 0x7fffffff]}, 0x45c)
r4 = socket$netlink(0x10, 0x3, 0x4)
r5 = socket$packet(0x11, 0x2, 0x300)
setsockopt$SO_ATTACH_FILTER(r5, 0x1, 0x1a, 0x0, 0x0)
close_range(r4, 0xffffffffffffffff, 0x0)

1m46.949195606s ago: executing program 6 (id=4858):
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f00000001c0)='./file1\x00', 0x0, &(0x7f0000000900)=ANY=[@ANYBLOB="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"], 0x1, 0x19c, &(0x7f00000002c0)="$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")
socket$inet6_tcp(0xa, 0x1, 0x0)
capset(&(0x7f0000000000)={0x20080522}, 0x0)
llistxattr(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)

1m46.548131272s ago: executing program 6 (id=4859):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x1a00444, &(0x7f0000000080)={[{@grpquota}, {@noblock_validity}]}, 0x1, 0xbbb, &(0x7f0000001800)="$eJzs3M9rHOUbAPBnJpvf+TbpF1FbBANSFcVt2pQKPbWeRQU9eGxMNiVk+8Mkggk9pPWuHkQ8FKR/guDdXjwJHupB619QxCJFL20PK7M/0jWb3cR0s2PTzwfezPvOO9nneTLZzDuwkwCeWJPZlzTiUEScTSLG6/vTiBio9oYi1mvH3b97eTZrSVQq7/6RRBIR9+5enm28VlLfjtYHQxFx840k/v9Ja9zl1bXFmXK5tFQfH105f+no8uraawvnZ86VzpUunJh+/cT0yenpLtZ6+9IHXz3301svXr3+6dTbXx74IYnTMVafa66jWyZjcuNn0qwQETPdDpaTvno9zXUmhRwTAgCgo7RpDfd0jEdfPFy8jcf3P+eaHAAAANAVlb6ICgAAALDPJe7/AQAAYJ9rfA7g3t3Ls42W7ycSeuvOmYiYqNXfeL65NlOI9ep2KPojYuTPJJofa01q3/bIJrNI3/5Yylps9xzycBcCbrJ+JSKe3er8J9X6J6pPcbfWn0bEVBfiT24a9/r371HqP92F+HnXD8CT6caZ2oWs9fqX1tY/g7XR5utfYYtr127kff1rrP/ut6z/0o31X1+b9d87O4xx+MErN9vNNa//3v/s17ksfrZ9pKL+hTtXIg4Xtqo/2ag/aVP/2R3GGJ29fa3dXFZ/Vm+j9br+yvWII9XVXGv9DUmn/090dH6hXJqqfd3i9VdPdo7ffP6zlsVv3Av0Qnb+R2J35//SDmNMPPP7oXZz29ef/jaQvFftDdT3fDyzsrJ0LGIgebN1//HOuTSOabxGVv/LL3R+/29Vf/Y3Yb3+c8h+e67Ut9n46qaYo0eOf7P7+vdWVv/cLs//5zuM8fV31z7ctGvjzZV3/QAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8HtKIGIskLW7007RYjBiNiKdiJC1fXF55df7iRxfmsrmIiehP5xfKpamIGK+Nk2x8rNp/OD6+aTwdEQcj4ovx4eq4OHuxPJd38QAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGwYjYixSNJiRKQR8dd4mhaLeWcFAAAAdN1E3gkAAAAAe879PwAAAOx/Lff/hX+MhnqZCwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPvSwedv3EoiYv3UcLVlBupz/blmBuy1dGeHjex1HkDv9eWdAJCbQlO/UqlUckwF6DH3+ECyzfxQ25nBrucCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwH/XS4du3EoiYv3UcLVlBupz/blmBuy1NO8EgNz0dZpMtt0BPMYKeScA5MY9PlBb2T+o1LTOD7X9zsGH3fXdRQUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADg8TFWbUlajIi02k/TYjHifxExEf3J/ELEVEQciIhfxvsH5xfKpWN5Jw0AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEDXLa+uLc6Uy6UlHR2dLnaGo2exhutv5jbHDLaf6tDJ+Q8TAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC5WF5dW5wpl0tLy3lnAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAORteXVtcaZcLi3tYSfvGgEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAyM/fAQAA///+hAlq")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='freezer.parent_freezing\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000000), 0x208e24b)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000100)='./bus\x00', 0x0, 0x63d014, 0x0)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x28011, r2, 0x0)
connect$inet(0xffffffffffffffff, &(0x7f0000000400)={0x2, 0x4e20, @remote}, 0x10)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r1, 0xc0185879, &(0x7f0000000080)={@desc={0x1, 0x0, @desc3}})

1m45.441289667s ago: executing program 6 (id=4863):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000a40)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff5653f, 0x70bd2d, 0x25dfdbfc, {0x0, 0x0, 0x0, r2, {0x0, 0x9}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x81}, 0x0)
r3 = socket(0x400000000010, 0x3, 0x0)
r4 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000640)=@newtfilter={0x84, 0x2c, 0xd27, 0x30bd29, 0x25dfdc00, {0x0, 0x0, 0x0, r5, {0x0, 0x7}, {}, {0x8, 0xf}}, [@filter_kind_options=@f_matchall={{0xd}, {0x50, 0x2, [@TCA_MATCHALL_ACT={0x4c, 0x2, [@m_gact={0x48, 0x1, 0x0, 0x0, {{0x9}, {0x1c, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18, 0x2, {0x6, 0x1000, 0x4, 0xfffffffc, 0x8}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x0, 0x3}}}}]}]}}]}, 0x84}, 0x1, 0x0, 0x0, 0x20000010}, 0x20000000)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
close(r6)
socket$unix(0x1, 0x2, 0x0)
ioctl$SIOCSIFHWADDR(r6, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r7 = socket$kcm(0x11, 0x3, 0x0)
setsockopt$sock_attach_bpf(r7, 0x107, 0xf, &(0x7f0000000600), 0x56)
sendmsg$kcm(r7, 0x0, 0x4)

1m43.824969368s ago: executing program 6 (id=4866):
r0 = socket$caif_seqpacket(0x25, 0x5, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, 0x0, 0x0)
writev(0xffffffffffffffff, &(0x7f0000000640)=[{&(0x7f0000000fc0)="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", 0x773e5fbbb08fced6}, {&(0x7f0000000ec0)="e419797185d72f2f74896bdc7b4bdbbc6ff22c6a134910130deb67126762e2d02ce15f81b08f7d99b762cb848fca6ef49eb1eca0fe812d4f9a32861d471c1c288ed7f895088efb09c9ef7c4fd461b1d0ce720dd8a53bb036dfd80c8af7921cdacdc4d7883a25076ab7cc537a3070b6a7238cb83d0c89d4f0e1a56c6fd15843506ff6aa3fede60762e0d67570fbf0ae886a3b6d67774f2e40e3439a1066b3"}], 0x1)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x0, 0x0, 0x0}, 0x94)
io_uring_enter(0xffffffffffffffff, 0x8ae, 0x6933, 0x17, 0x0, 0xeffd)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000002000)=""/102400, 0x19000)
unshare(0x8000000)
semget$private(0x0, 0x4000, 0x555)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000000)={'batadv0\x00', <r2=>0x0})
close_range(r0, r1, 0x0)
ioctl$sock_SIOCDELRT(r0, 0x890c, &(0x7f00000000c0)={0x0, @llc={0x1a, 0x308, 0x1, 0x9, 0x9, 0x1, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x44}}, @xdp={0x2c, 0x1, r2, 0xc}, @tipc=@nameseq={0x1e, 0x1, 0x2, {0x1, 0x2, 0x2}}, 0x4, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)='netpci0\x00', 0x9, 0x3, 0x9})
semtimedop(0x0, &(0x7f0000000040)=[{0x3, 0x8, 0x1800}], 0x1, 0x0)
unshare(0x2c040000)

1m42.840283356s ago: executing program 35 (id=4866):
r0 = socket$caif_seqpacket(0x25, 0x5, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, 0x0, 0x0)
writev(0xffffffffffffffff, &(0x7f0000000640)=[{&(0x7f0000000fc0)="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", 0x773e5fbbb08fced6}, {&(0x7f0000000ec0)="e419797185d72f2f74896bdc7b4bdbbc6ff22c6a134910130deb67126762e2d02ce15f81b08f7d99b762cb848fca6ef49eb1eca0fe812d4f9a32861d471c1c288ed7f895088efb09c9ef7c4fd461b1d0ce720dd8a53bb036dfd80c8af7921cdacdc4d7883a25076ab7cc537a3070b6a7238cb83d0c89d4f0e1a56c6fd15843506ff6aa3fede60762e0d67570fbf0ae886a3b6d67774f2e40e3439a1066b3"}], 0x1)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x0, 0x0, 0x0}, 0x94)
io_uring_enter(0xffffffffffffffff, 0x8ae, 0x6933, 0x17, 0x0, 0xeffd)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000002000)=""/102400, 0x19000)
unshare(0x8000000)
semget$private(0x0, 0x4000, 0x555)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000000)={'batadv0\x00', <r2=>0x0})
close_range(r0, r1, 0x0)
ioctl$sock_SIOCDELRT(r0, 0x890c, &(0x7f00000000c0)={0x0, @llc={0x1a, 0x308, 0x1, 0x9, 0x9, 0x1, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x44}}, @xdp={0x2c, 0x1, r2, 0xc}, @tipc=@nameseq={0x1e, 0x1, 0x2, {0x1, 0x2, 0x2}}, 0x4, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)='netpci0\x00', 0x9, 0x3, 0x9})
semtimedop(0x0, &(0x7f0000000040)=[{0x3, 0x8, 0x1800}], 0x1, 0x0)
unshare(0x2c040000)

12.378819829s ago: executing program 7 (id=5049):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0xffffffffffffff7c, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee7, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
listen(r0, 0x4)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r5, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r6, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000004c0)={0x30, r7, 0x1, 0x70bd2c, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x1c}}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x3}]}]}, 0x30}}, 0x0)

10.675647214s ago: executing program 7 (id=5052):
r0 = syz_usb_connect(0x5, 0x36, &(0x7f0000000480)=ANY=[@ANYBLOB="12010000b510f210950b2a7773820102030109022400010000000009042200028953950009050a02ff0300fa000905820250"], 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae03, 0x7b)
unshare(0x26000400)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, 0xffffffffffffffff)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x30000c6, &(0x7f0000000080), 0x1, 0x574, &(0x7f00000003c0)="$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")
socketpair$unix(0x1, 0x2, 0x0, 0x0)
creat(0x0, 0x12e)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000140)='.\x00', 0x0, 0x0)
symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r2, &(0x7f0000000380)='./bus\x00')
readlinkat(r2, &(0x7f0000000400)='./bus\x00', &(0x7f0000000680)=""/206, 0xce)
readlinkat(r2, &(0x7f0000000000)='./bus\x00', &(0x7f00000002c0)=""/163, 0xa3)
bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
syz_emit_ethernet(0x4a, &(0x7f0000000100)=ANY=[], 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000080)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaabb86dd6016044000140601fe8000000000000000000000000000bb977a00000000000000000000000000aa00004e22", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB='P'], 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f00000022c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffd2}, 0x48)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$printer(r0, 0x0, &(0x7f00000004c0)={0x34, &(0x7f0000000240)={0x40, 0xa, 0x3b, "73a0761120c97d1ae2e850242a496b6c5e66c53b36bd24a161fed6ac11c79fbe1647dbd73d21bcf7148548f7f0708590807bdb9f6428f33a822eff"}, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)

9.815749755s ago: executing program 5 (id=5058):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000000a40)={[{@iocharset={'iocharset', 0x3d, 'cp857'}}, {@fmask={'fmask', 0x3d, 0x68e7}}, {@errors_continue}, {@iocharset={'iocharset', 0x3d, 'iso8859-7'}}, {@fmask={'fmask', 0x3d, 0x5}}, {@umask={'umask', 0x3d, 0x7fffffffffffffff}}, {@gid}, {@dmask={'dmask', 0x3d, 0x1}}, {@errors_continue}, {}], [{@rootcontext={'rootcontext', 0x3d, 'user_u'}}, {@obj_role}, {@obj_role}, {@obj_type={'obj_type', 0x3d, '9p\x00'}}, {@fscontext={'fscontext', 0x3d, 'system_u'}}]}, 0x1, 0x152f, &(0x7f00000037c0)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000240)={0xa, 0x10001}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'batadv_slave_1\x00'})
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x840, &(0x7f0000000140)={[{@test_dummy_encryption_v1}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x2}}]}, 0x1, 0x241, &(0x7f0000000540)="$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")
ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000100)={0x17, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x9, 0x1, 0x1}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x9}, 0x80)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r3, 0x0, 0x40, &(0x7f0000000540)=@raw={'raw\x00', 0x8, 0x3, 0x478, 0x340, 0x11, 0x148, 0x340, 0x0, 0x3e0, 0x2a8, 0x2a8, 0x3e0, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0x2f8, 0x340, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'ip_vti0\x00', {0x0, 0x2, 0x3f, 0x0, 0x0, 0x3, 0x9}}}, @common=@unspec=@bpf1={{0x230}, @pinned={0x1, 0x0, 0x0, './file0/../file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa'}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x8, 'syz0\x00', {0x80000001}}}}, {{@ip={@multicast2, @empty, 0x0, 0xffffff00, 'vlan0\x00', 'netdevsim0\x00', {}, {}, 0x1d, 0x0, 0x44}, 0x0, 0x70, 0xa0}, @common=@unspec=@CONNMARK={0x30, 'CONNMARK\x00', 0x1, {0x0, 0x0, 0x0, 0x1}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x4d8)
syz_mount_image$fuse(0x0, &(0x7f0000000180)='./bus\x00', 0x3000408, 0x0, 0x1, 0x0, 0x0)

9.51692601s ago: executing program 0 (id=5059):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000540)=@raw={'raw\x00', 0x8, 0x3, 0x478, 0x340, 0x11, 0x148, 0x340, 0x0, 0x3e0, 0x2a8, 0x2a8, 0x3e0, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0x2f8, 0x340, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'ip_vti0\x00', {0x0, 0x2, 0x3f, 0x0, 0x0, 0x3, 0x9}}}, @common=@unspec=@bpf1={{0x230}, @pinned={0x1, 0x0, 0x0, './file0/../file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa'}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x8, 'syz0\x00', {0x80000001}}}}, {{@ip={@multicast2, @empty, 0x0, 0xffffff00, 'vlan0\x00', 'netdevsim0\x00', {}, {}, 0x1d, 0x0, 0x44}, 0x0, 0x70, 0xa0}, @common=@unspec=@CONNMARK={0x30, 'CONNMARK\x00', 0x1, {0x0, 0x0, 0x0, 0x1}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x4d8)

8.728721494s ago: executing program 0 (id=5060):
pwritev2(0xffffffffffffffff, 0x0, 0x0, 0xe7b, 0x0, 0x6)
setresuid(0x0, 0xee00, 0x0)
capset(&(0x7f0000000500)={0x20080522}, &(0x7f0000000200)={0x200002, 0x200003, 0x801, 0x4, 0x7})
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000100)='./file1\x00', 0x2010000, &(0x7f00000002c0)=ANY=[@ANYBLOB="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"/399], 0x1, 0x34c, &(0x7f0000001740)="$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")
utimensat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)={{0x77359400}}, 0x0)
r0 = syz_usb_connect(0x0, 0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="12010000e09d7040460a2196324f01020301090224000100000000090400000206d3450009050102100000000009058b0240"], 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004280)='.\x00', 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00')
ppoll(&(0x7f0000000040)=[{r2}], 0x1, 0x0, 0x0, 0x0)
r3 = syz_usb_connect(0x3, 0x36, 0x0, 0x0)
close(0x3)
syz_usb_disconnect(r3)
mount$binderfs(0x0, &(0x7f0000000700)='./binderfs\x00', 0x0, 0x20, 0x0)
ioctl$F2FS_IOC_COMPRESS_FILE(r1, 0xf518, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), r4)
socket(0x1e, 0x1, 0x0)
sendmsg$TIPC_NL_PUBL_GET(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB="18000000", @ANYRES16=r5, @ANYBLOB="130f000000000000f6ff06"], 0x18}}, 0x0)
getdents64(r1, &(0x7f0000000500)=""/45, 0x2d)
getdents64(r1, 0x0, 0x18)
syz_usb_control_io$printer(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r0, &(0x7f0000000480)={0x14, &(0x7f00000001c0)={0x40, 0x5, 0xc4, {0xc4, 0x23, "e696b497ee52763b904f6c12e0595bcbbe67199b10f8b2ed682435dad6974df3c4a20d6dcd9f5623734fafe71250ad8bc1b4811f8c3ee8a2f1f41f7f76df424bc412fc49be87e3a6becb33f64b2f55102ee811c7c519c4f4bb323e05a1fdfce54d90e870db1ee7e471c803263532c028b198fa245e76cdebc4fde2e6db8e5b27e36f3516be9671c315a60f0ddfafbc8fcc75817496d5937fd29af07460732e30ede8de649502b132bf11381979b2086519ec3146aaf7a3fb3a44c5663f065952295d"}}, &(0x7f00000004c0)={0x0, 0x3, 0x1a, {0x1a}}}, &(0x7f00000003c0)={0x1c, &(0x7f0000000540)={0x20, 0x15, 0xcb, "bb0400ecc29e29c915a12ee65e5f3f15918a593d12b762b9e726dceb71bd8ef22023c20aeeacd603ed226067216606d4a6d048cec564e6d6fe93f2aa2d7ab7553f8b70250e8b082b35601385b1b533b38e534649dcd7d224106876268ac59e2fd60ebb2cc2c23b2718f92b14df25d3d197b61206ad45af49b368d3f7df635a2b1f0c7f73403c953ab89e05e76a71ff7bfdea51801516778dd08354ea31ca91bfb28293e2a7cb3e9f4bd9f196724cf06327fa3b1e40ff50e7a052462ab577eda19f1bea8968124e495e0c74"}, &(0x7f0000000080)={0x0, 0xa, 0x1, 0x5}, &(0x7f0000000380)})
socket$inet_udp(0x2, 0x2, 0x0)

7.554670057s ago: executing program 2 (id=5062):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet(0x2, 0x1, 0x0)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
read$msr(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_xfrm(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="fc0000001900010000000000fcdbdf2500000000000000000000000000000000fe8000000000000000000000000000bb", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000004000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000001000000000000004400050000000000000000000000000000000000000000022b"], 0xfc}, 0x1, 0x0, 0x0, 0x2000c010}, 0x20000080)
setsockopt$inet_opts(r3, 0x0, 0xd, &(0x7f0000000300)="89078404c0201cc332000000", 0xc)
setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000180)='bridge0\x00', 0x10)
connect$inet(r3, &(0x7f0000000080)={0x2, 0x4e21, @broadcast}, 0x10)

7.436082735s ago: executing program 7 (id=5063):
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000001240)='./file2\x00', 0x14552, &(0x7f0000000b40)=ANY=[], 0xfb, 0x11ff, &(0x7f0000001280)="$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")
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='.\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x40440, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
syz_kvm_setup_syzos_vm$x86(r4, &(0x7f0000000000/0x400000)=nil)
ioctl$KVM_SET_MSRS(r0, 0x4008ae89, &(0x7f00000000c0))
close(r2)
madvise(&(0x7f0000130000/0xc00000)=nil, 0xc00000, 0x4)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
getdents64(r0, &(0x7f0000000140)=""/32, 0x20)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
getdents(r0, &(0x7f0000000880)=""/232, 0xe8)

6.408573265s ago: executing program 2 (id=5064):
syz_open_dev$usbfs(0x0, 0x3, 0x513601)
syz_open_dev$usbfs(0x0, 0x20000007d, 0x0)
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000140)=ANY=[@ANYBLOB="1201000000000040ac054382408b0b00000109022400010000002009040000fd0301000009210000000122010009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000003c0)={0x24, 0x0, 0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="002281"], 0x0}, 0x0)
r1 = syz_open_dev$hiddev(&(0x7f0000000540), 0x0, 0x0)
ioctl$HIDIOCSREPORT(r1, 0x400c4808, &(0x7f0000000080)={0x2, 0x100})

5.576034701s ago: executing program 7 (id=5065):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000000c0)='./bus\x00', 0x20081e, &(0x7f0000000040)={[{@nodelalloc}, {@orlov}, {@auto_da_alloc}]}, 0x1, 0x4ef, &(0x7f00000003c0)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
quotactl$Q_QUOTAON(0xffffffff80000202, &(0x7f0000000180)=@loop={'/dev/loop', 0x0}, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x9)
r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='cgroup.stat\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x28011, r1, 0x0)
syz_mount_image$f2fs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x8, &(0x7f00000059c0)=ANY=[@ANYBLOB="6e6f646973636172642c6e6f636865636b706f696e745f6d657267652c616c6c6f635f6d6f64653d64656661756c742c6163746976655f6c6f67733d362c666c7573685f6d657267652c6661756c745f696e6a656374696f6e3d30303030303030303030303030303030303235362c646973636172642c6e6f61636c2c6673796e635f6d6f64653d706f7369782c616c6c6f635f6d6f64653d64656661756c742c6e6f657874656e745f63616368652c6163746976655f6c6f67733d322c6661756c745f747970653d30303030303030303030303031363737373231342c0002d1c71f8348abae1fff96ec907a723dca530cf5aea9622c1169c27c91b4d703f02da55a70e4108d30dd0a1b6e467d05c6c0237e3772dfb37da0e9705c62c7f6dc21ef782f52303a65f3196af86a3d58c8bfb0ef60c974b0e0b44af5ce33f407facb3838bd4bf9b7a99d612518ac3ddddf95b10ead9f78580da79051b5011a94bc44336ebf9378b479860af435366b6d4cdb9c5ffd949b52f82ac9c92de853"], 0x5, 0x5505, &(0x7f0000000340)="$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")
ioctl$EXT4_IOC_GET_ES_CACHE(0xffffffffffffffff, 0xc020660b, 0x0)
ftruncate(r0, 0x8008976)

5.160240284s ago: executing program 0 (id=5066):
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
getsockopt$WPAN_WANTACK(r0, 0x300, 0x0, 0x0, 0x0)

4.991465143s ago: executing program 0 (id=5067):
close(0x3)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="12000000040000000400000008"], 0x48)
close(0x3)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0x9, 0x8, 0x80, 0x40, 0x42, 0x1}, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100), &(0x7f0000000580), 0x1000, r1}, 0x38)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xd, &(0x7f0000000f80)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000850000000800000095"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r2, 0x0, 0x0, 0x0, &(0x7f0000000100), 0x0, 0x4002000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

4.736491716s ago: executing program 0 (id=5068):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)={0x14, r2, 0x301, 0x70bd26, 0x25dfdbfb, {0x1c}}, 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x5c399000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
read$FUSE(0xffffffffffffffff, &(0x7f0000000f80)={0x2020, 0x0, 0x0, 0x0, 0x0, <r5=>0x0}, 0x2020)
sched_setscheduler(r5, 0x5, &(0x7f0000000100)=0x8)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=@newsa={0x190, 0x10, 0x1, 0x70bd27, 0x100, {{@in=@multicast2, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x1, 0x714, 0x4e23, 0x5, 0x0, 0x0, 0x0, 0x2e}, {@in6=@mcast2, 0x1004d4, 0x6c}, @in6=@empty, {0x0, 0x4, 0x6, 0xffff, 0x8251c, 0x2, 0xfffffffffffffff8}, {0xffffffffffffffff, 0x0, 0x1f, 0xfffffffffffffffe}, {0x2, 0xfffffffc}, 0x70bd2a, 0x3504, 0xa, 0x1, 0x0, 0x20}, [@algo_comp={0x9d, 0x3, {{'deflate\x00'}, 0x2a8, "251e3e0c8a219d3deb2ffbf6b7c824a57ea66cc2ff21fc55e9e4497d5f0a77246e5c954285d146449ef1d09efe178a29865fdc1a6bf191e0c257c457d3494c4b692080c0155bc8772242852035616b7b8965aa8753"}}]}, 0x190}, 0x1, 0x0, 0x0, 0x4008805}, 0x0)

4.483838099s ago: executing program 5 (id=5069):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000000a40)={[{@iocharset={'iocharset', 0x3d, 'cp857'}}, {@fmask={'fmask', 0x3d, 0x68e7}}, {@errors_continue}, {@iocharset={'iocharset', 0x3d, 'iso8859-7'}}, {@fmask={'fmask', 0x3d, 0x5}}, {@umask={'umask', 0x3d, 0x7fffffffffffffff}}, {@gid}, {@dmask={'dmask', 0x3d, 0x1}}, {@errors_continue}, {}], [{@rootcontext={'rootcontext', 0x3d, 'user_u'}}, {@obj_role}, {@obj_role}, {@obj_type={'obj_type', 0x3d, '9p\x00'}}, {@fscontext={'fscontext', 0x3d, 'system_u'}}]}, 0x1, 0x152f, &(0x7f00000037c0)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000240)={0xa, 0x10001}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'batadv_slave_1\x00'})
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x840, &(0x7f0000000140)={[{@test_dummy_encryption_v1}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x2}}]}, 0x1, 0x241, &(0x7f0000000540)="$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")
ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000100)={0x17, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x9, 0x1, 0x1}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x9}, 0x80)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000000540)=@raw={'raw\x00', 0x8, 0x3, 0x478, 0x340, 0x11, 0x148, 0x340, 0x0, 0x3e0, 0x2a8, 0x2a8, 0x3e0, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0x2f8, 0x340, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'ip_vti0\x00', {0x0, 0x2, 0x3f, 0x0, 0x0, 0x3, 0x9}}}, @common=@unspec=@bpf1={{0x230}, @pinned={0x1, 0x0, 0x0, './file0/../file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa'}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x8, 'syz0\x00', {0x80000001}}}}, {{@ip={@multicast2, @empty, 0x0, 0xffffff00, 'vlan0\x00', 'netdevsim0\x00', {}, {}, 0x1d, 0x0, 0x44}, 0x0, 0x70, 0xa0}, @common=@unspec=@CONNMARK={0x30, 'CONNMARK\x00', 0x1, {0x0, 0x0, 0x0, 0x1}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x4d8)

3.612082838s ago: executing program 0 (id=5070):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0xffffffffffffff7c, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee7, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
listen(r0, 0x4)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r5, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r6, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000004c0)={0x30, r7, 0x1, 0x70bd2c, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x1c}}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x3}]}]}, 0x30}}, 0x0)

3.611720758s ago: executing program 2 (id=5071):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x2c)
mount$tmpfs(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000400), 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB='huge=always'])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000002, 0x28011, r0, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)

3.545222805s ago: executing program 2 (id=5072):
openat$binder_debug(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x100, 0x0)
getsockopt$TIPC_SRC_DROPPABLE(0xffffffffffffffff, 0x10f, 0x80, 0x0, &(0x7f0000000640))
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000d40)={<r3=>0xffffffffffffffff})
sendmsg$inet(r3, &(0x7f0000000b00)={0x0, 0xf22fff7f, &(0x7f0000000180)=[{&(0x7f0000000080)="31de76fb398bc62d058b8a96924594f5476a0824be53f7a5949f80614c42391e4b80412938c955d34d37eb96ba7849c3eb823bb36724bd6f6d0219cfe5c884afcd2bdea5acf9c877c03dcdbbb3e47417b6707c27d4c5c1db1924071f6b6f23c7d199c799c9b0c41101e625fcdb7bbfd12a3eeeef4540a5698f058aaf6a141e5d333929b92a7f64e925bf0ef424c3ef29fcd5fd4721c547fde6abe4d47048b64511693624b0d786711abe4a66e250fcbfe95ac9037e58f331b26b6ed0d08e5c73ba4c49", 0xc00e}], 0x9, &(0x7f00000001c0)=[@ip_tos_int={{0x7ff4d4260000}}, @ip_ttl={{0x14}}, @ip_ttl={{0x14}}, @ip_tos_u8={{0x11}}, @ip_tos_u8={{0x11, 0x2}}, @ip_retopts={{0x0, 0x0, 0x7, {[@lsrr, @generic={0x0, 0x0, "96"}, @generic={0x0, 0x0, "206a77bdd1a004129054e7704a"}]}}}], 0xf}, 0x0)

2.229672652s ago: executing program 7 (id=5073):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000780)='./file0\x00', 0x0, &(0x7f0000000000)={[{@i_version}, {@init_itable}, {@noblock_validity}]}, 0x5, 0x71e, &(0x7f0000000f40)="$eJzs3U1rXNUbAPDn3nb+yb+NJoKKLyAVxYqlkya2lK6sC9FNMVBwm4bkJsTc9MbMTG1CF+nKrYii4Ea/gxtXims/gF9BQbTURV1F7rykbzPNVJMMZH4/uNPn3Hub55yZzHkgZ5gTwNA6UT6kEc9HxEwSMd4+n0REpRkdjbjYuu/2rRvz5ZHE9vblP5LmPWU77vk/peMRsRURz0XET5WIU+nDeWsbmytzeZ6tt9uT9dW1ydrG5unl1bmlbCm7euHs2emz589duLB3Y33j/Q+erZ57Z+z7mcXZk1O/fpfExRhrX7t3HHup9ZxUyqfwPu/uR7IBSgbdAf6V8q15pPUuj2diPI40IwDgMNseidgGAIZMov4DwJDp/B2gs7a3X+tgvfz+dkSMdst/tL1mNtpchzx2O7lvZSKJiImD7CiH0tbNiLgyceLh37/koTXbx3VmLzrIvvqxnH8udpt/0p35J7rMP6Odz078R73nv7v5j/SY/2b6zPHei42iZ/6bES8c7ZY/2cmf9Mh/pc/8P9xZ+LvXte1vI17rWn+S+3L1/nzI5OJynp1pPXbPcaJx48NHjf9Yj/xbu4x/rc/xj3328s9bj8j/+iuPfv275S9r4qd95v+k8tYXva6V+Rd6jH+31/+bPvOff+mjzT5vBQAAAAAAAAAAAAAAAAAAAAAAAAAAgEMhjYixSNLqTpym1WprD++n41iaF7X6qcWicXUhmntlT0Ql7XzV8nirnZTtqfb38Xfa0w+034yIpyLi85H/N9vV+SJfGPTgAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKDt+AP7//810tr/HwA45EYH3QEA4MCp/wAwfNR/ABg+6j8ADB/1HwCGj/oPAMNH/QcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADggM1culQe27dv3Zgv2wvXNhorxbXTC1ltpbramK/OF+tr1aWiWMqz6nyxutvPy4tibXo6Gtcn61mtPlnb2JxdLRpX67PLq3NL2WxWOZBRAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMDjGWseSVqNiLQZp2m1GvFERExEJVlczrMzEfFkRPwyUhkp21OD7jQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA7LHaxubKXJ5n6wKBQLATDHpmAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgIN3d9PvQfcEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYp/S2JiPI4Of7q2INX/5fcGWn+GxEff335y+tz9fr6VHn+z53z9a/a56cH0X8AYDedOt2p4wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADQTW1jc2Uuz7P1fQwGPUYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPbOPwEAAP//vT/OxQ==")
sendmsg$tipc(0xffffffffffffffff, 0x0, 0x40000)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x1000040, &(0x7f0000000480), 0x11, 0x5aa, &(0x7f00000007c0)="$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")
socket$nl_xfrm(0x10, 0x3, 0x6)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x4000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setrlimit(0x9, &(0x7f0000000080)={0x860b, 0xffff})
io_setup(0x8f0, 0x0)
getdents64(0xffffffffffffffff, &(0x7f0000000fc0)=""/224, 0xe0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)

1.445614947s ago: executing program 5 (id=5074):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1, 0x2}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000180), &(0x7f0000000340)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r2, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x3800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

1.248750981s ago: executing program 5 (id=5075):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x40)
syz_mount_image$exfat(&(0x7f0000000280), &(0x7f00000000c0)='./file2\x00', 0x2000000, &(0x7f00000018c0)=ANY=[], 0xfb, 0x1501, &(0x7f00000002c0)="$eJzs3Am4T1X3OPC19t6H62b4JpnP2uvwTYZNkoSSZEiSJCRzQpIkSZK4ZEpCEjLeJHPInG665nnInHTzSpIkJCTZ/+c2/P16h5/3fX/9/vq/d32e5zz2cs7aZ+27nu89w/Pc79ddh1VvVKNKfWaGf4f+bYC//JMEAAkAMBAAcgBAAABlc5bNmb4/i8akf+sk4n9JgxlXugJxJUn/Mzbpf8Ym/c/YpP8Zm/Q/Y5P+Z2zS/4xN+i9EhjYr39WyZdxN3v//f079T5Ll+p8h4D/aIf3/T6P/paOl/xmb9D9jk/5nbNL/jCy40gWIK0w+/xmb9F+IDO0Pf6e84dyVfqct27+wCSGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQ/w+c85cYAPhtfKXrEkIIIYQQQgghxB/Hv3ulKxBCCCGEEEIIIcT/PgQFGgwEkAkyQwJkgUS4CrJCNsgOOSAGV0NOuAZywbWQG/JAXsgH+aEAFIQQCCwwRFAICkMcroMicD0UhWJQHEqAg5JQCm6A0nAjlIGboCzcDOXgFigPFX4+Z7rboTLcAVXgTqgK1aA61IC7oCbcDbXgHqgN90IduA/qwv1QDx6A+tAAGsKD0AgegsbQBJpCM2gOLaDlZfKTc/y9/OehB7wAPaEXJEFv6AMvQl/oB/1hAAyEl2AQvAyD4RUYAkNhGLwKw+E1GAGvw0gYBaPhDRgDY2EcjIcJMBGS4U2YBG/BZHj7oWwwFabBdJgBM2EWvAOzYQ7MhXdhHsyHBZCcZREshiXwHiyF9yEFPoBl8CGkwnJYASthFayGNbAW1sF62AAbYRNshi2wFbbBR7AddsBO2AW7YQ/shY9hH3wC++FTSMPP/sX8s7/Ph24ICKhQoUGDmTATJmACJmIiZsWsmB2zYwxjmBNzYi7MhbkxN+bFvJiE+bEgFkRCQkbGQlgI4xjHIlgEi2JRLI7F0aHDUlgKS+ONWAbLYFksi+WwHJbHClgBb8VbsRJWwspYGatgFayKVbE6Vse78C68G2thLayNtbEO1sG6WBfrYT2sj/WxITbERtgIG2NjbIpNsTk2x5bYElthK2yNrbEttsV22A7bY3vsgB2wI3bETtgJO2Nn7IJdsCt2xW74HD6Hz+Pz+AK+gL2wquqNfbAP9sW+2B8H4AB8CQfhy/gyvoJDcCgOw1fxVXwNR+AZHImjcDSOxkpqLI7D8chqIiZjMmaGSTgZJ+MUnIpTcTrOwJk4C2fhbJyDc/BdnIfzcT4uxIW4GJfgElyK72MKpuAyPIupuBxX4EpchatxFa7FdbgWN+BG3ICbcTNuxa34EX6EO3AH7sJduAf34Mf4MX6Cn+AQTMM0PIAH8CAexEN4CA/jYTyCR/AoHsVjeAyP43E8gSfxFJ7E03gaz+BZPAcA5/E8XsALeBEvpn/4VTqjjMqkMqkElaASVaLKqrKq7Cq7iqmYyqlyqlwql8qtcqu8Kq/Kr/KrgqqgIkWKVaQKqUIqruKqiCqiiqqiqrgqrpxyqpQqpUqr0qqMKqPKqptVOXWLKq8qqDbuVnWrqqTausrqDlVFVVFVVTVVXdVQNVRNVVPVUrVUbVVb1VF1VF11v6qnemN/bKDSO9NIDcXGahg2Vc1Uc9VCvYYPq1ZqBLZWbVRb9agahSOxvWrlOqgnVEc1Djupp9R4fFp1UROxq3pWdVPPqe7qedVDtXY9VS81BXurPmo69lX9VH81QM3Gaiq9Y9XVK+r5zEPVMPWqWoyvqRHqdTVSjVKj1RtqjBqrxqnxaoKaqJLVm2qSektNVm+rKWqqmqamqxlqppql3lGz1Rw1V72r5qn5aoFaqBapxWqJek8tVe+rFPWBWqY+VKlquVqhVqpVarVao9aqdWq92qA2qk1qs9qitqpt6iO1Xe1QO9UutVvtUXvVx2qf+kTtV5+qNPWZOqD+og6qz9Uh9YU6rL5UR9RX6qj6Wh1T36jj6lt1Qp1Up9R36rT6Xp1RZ9U59YM6r35UF9RP6qLyCjRqpbU2OtCZdGadoLPoRH2Vzqqz6ew6h47pq3VOfY3Opa/VuXUendfk0/l1AV1Qh5q01awjXUgX1nF9nS6ir9dFdTFdXJfQTpfUpfQNurS+UZfRN+my+mZdTt+iy+sKuqIHfZuupG/XlfUduoq+U1fV1XR1XUPfpWvqu3UtfY+ure/VdfR9uq6+X9fTD+j6uoFuqB/UjfRDurFuopvqZrq5bqFb6od1K/2Ibq3b6Lb6Ud1OP6bb68d1B/2E7qif1J30U7qzflp30c/orvpZ3U0/p7vrn/RF7XVP3Usn6d66j35R99X9dH89QA/UL+lB+mU9WL+ih+iheph+VQ/Xr+kR+nU9Uo/So/Ubeoweq8fp8XqCnqiT9Zt6kn5LT9Zv6yl6qp6mp+sZeqbu/+tMc/+J/Lf+Tv7gn8++VW/TH+nteofeqXfp3XqP3qv36n16n96v9+s0naYP6AP6oD6oD+lD+rA+rI/oI/qoPqqP6WP6uD6uT+iT+gf9nT6tv9dn9Fl9Vv+gz+vz+sKvPwMwaJTRxpjAZDKZTYLJYhLNVSaryWaymxwmZq42Oc01Jpe51uQ2eUxek8/kNwVMQRMaMtawiUwhU9jEzXWmiLneFDXFTHFTwjhT0pQyN/yP8y9XX0vT0rQyrUxr09q0NW1NO9POtDftTQfTwXQ0HU0n08l0Np1NF9PFdDVdTTfTzXQ33U0P08P0ND1NkkkyfcyLpq/pZ/qbAWageckMMoPMYDPYDDFDzDAzzAw3w80IM8KMNCPNaDPajDFjzDgzzkwwE0yyz2EmmUlmsplsppgpZtrAHGaGmWFmmVlmtplt5pq5Zp6ZZxaYBWaRWWSWmCVmqVlqUkyKWWaWmVSz3Cw3K81Ks9qsNmvNWrPerDcbzUaz2Ww2qWab2Wa2m+1mp9lpdpvdZq/Za/aZfWa/2W/STJo5YA6Yg+agOWQOmcPmsDlijpij5qg5Zo6Z4+a4OWFOmFPmlDltTpsz5ow5Z86Z8+a8uWAumIvmYvptX6ACFZjABJmCTEFCkBAkBolB1iBrkD3IHsSCWJAzyBnkCq4Ncgd5grxBviB/UCAoGIQBBTbgIAoKBYWDeHBdUCS4PigaFAuKByUCF5QMSgU3BKWDG4MywU1B2eDmoFxwS1A+qBBUDG4NbgsqBbcHlYM7girBnUHVoFpQPagR3BXUDO4OagX3BLWDe4M6wX1B3eD+oF7wQFA/aBA0DB4MGgUPBY2DJkHToFnQPGgRtPxD5/f+TJ5HXM+wV5gU9g77hC+GfcN+Yf9wQDgwfCkcFL4cDg5fCYeEQ8Nh4avh8PC1cET4ejgyHBWODt8Ix4Rjw3Hh+HBCODFMDt8MJ4VvhZPDt8Mp4dRwWjA9nBHODGeF74Szwznh3PDdcF44P1wQLgwXhYtD/OWWGFLCD8Jl4Ydharg8XBGuDFeFq8M14dpwXbg+3BBuDDeFm8sO+uXQcHu4I9wZ7gp3h3vCveHH4b7wk3B/+GmYFn4WHgj/Eh4MPw8PhV+Eh8MvwyPhV+HR8OvwWPhNeDz8NjwRngxPhd+Fp8PvwzPh2fBc+EN4PvwxvBD+FF4MffrNffrlnQwZykSZKIESKJESKStlpeyUnWIUo5yUk3JRLspNuSkv5aX8lJ8KUkFKx8RUiApRnOJUhIpQUSpKxak4OXJUikpRaSpNZagMlaWyVI7KUXkqTxWpIt1Gt9HtdDvdQXfQnXQnVaNqVINqUE2qSbWoFtWm2lSH6lBdqkv1qB7Vp/rUkBpSI2pEjakxNaWm1JyaU0tqSa2oFbWm1tSW2lI7akftqT11oA7UkTpSJ+pEnakzdaEu1JW6UjfqRt2pO/WgHtSTelISJVEf6kN9qS/1p/40kAbSIBpEg2kwDaEhNIyG0XAaTiNoBI2kUTSa3qAxNJbG0XiaQBMpmZJpEk2iyTSZptAUmkbTaAbNoFk0i2bTbJpLc2kezaMFtIAW0SJaQktoKS2lFEqhZbSMUimVVtAKWkWraA2toXW0jjbQBtpEm2gLbaFttI2203baSTtpN+2mvbSX9tE+2k/7KY3S6AAdoIN0kA7RITpMh+kIHaGjdJSO0TE6TsfpBJ2gU3SKTtNpOkNn6Bydo/P0I12gn+gieUqwWWyivcpmtdlsdpvD/nWc1+az+W0BW9CGNrfN87uYrLVFbTFb3Jawzpa0pewNfxOXtxVsRXurvc1Wsrfbyra8zQL/Na5p77a17D22tr3X1rB3/S6uY++zde1Dtp5tYuvbZrahbWEb2YdsY9vENrXNbHPbwrazj9n29nHbwT5hO9on/yZeat+36+x6u8FutPvsJ/ac/cEetV/b8/ZH29P2sgPtS3aQfdkOtq/YIXbo72MAO9q+YcfYsXacHW8n2Il/E0+z0+0MO9POsu/Y2XbO38RL7Ht2nk2xC+xCu8gu/jlOrynFfmCX2Q9tql1uV9iVdpVdbdfYtf+31pV2s91it9q99mO73e6wO+0uu9vu+TlOX8d++6lNs5/ZI/Yre9B+bg/ZY/aw/fLnOH19x+w39rj91p6wJ+0p+509bb+3Z+zZn9efvvbv7E/2ovUWGFmxZsMBZ+LMnMBZOJGv4qycjbNzDo7x1ZyTr+FcfC3n5jycl/Nxfi7ABTlkYsvMERfiwhzn67gIX89FuRgX5xLsuCSX4hu4NN/IZfgmLss3czm+hctzBa7It/JtXIlv58p8B1fhO7kqV+PqXIPv4pp8N9fie7g238t1+D6uy/dzPX6A63MDbsgPciN+iBtzE27Kzbg5t+CW/DC34ke4Nbfhtvwot+PHuD0/zh34Ce7IT3Infoo789PchZ/hrvwsd+PnuDs/zz34Be7JvTiJe3MffpH7cj/uzwN4IL/Eg/hlHsyv8BAeysP4VR7Or/EIfp1H8igezW/wGB7L43g8T+CJnMxv8iR+iyfz2zyFp/I0ns4zeCbP4nd4Ns/hufwuz+P5vIAX8iJezEv4PV7K73MKf8DL+ENO5eW8glfyKl7Na3gtr+P1vIE38ibezFt4K2/jj3g77+CdvIt38x7eyx/zPv6E9/OnnMaf8QH+Cx/kz/kQf8GH+Us+wl/xUf6aj/E3fJy/5RN8kk/xd3yav+czfJbP8Q98nn/kC/wTX2TPEGGkIh2ZKIgyRZmjhChLlBhdFWWNskXZoxxRLLo6yhldE+WKro1yR3mivFG+KH9UICoYhRFFNuIoigpFhaN4dF1UJLo+KhoVi4pHJSIXlYxKRTdEpaMbozLRTVHZ6OaoXHRLVD6qEFWMbo1uiypFt0eVozuiKtGdUdWoWlQ9qhHdFdWM7o5qRfdEtaN7ozLRfVHd6P6oXvRAVD9qEDWMHowaRQ9FjaMmUdOoWdQ8ahG1jB6OWkWPRK2jNlHb6NGoXfRY1D56POoQPRF1jJ68tL9Y8MvV9K/2J0W9I/3rG7J79KL44viS+HvxpfH34ynxD+LL4h/GU+PL4yviK+Or4qvja+Jr4+vi6+Mb4hvjm+Kb41viW+Pe18gMDtMfhMG4wGVymV2Cy+IS3VUuq8vmsrscLuaudjndNS6Xu9bldnlcXpfP5XcFXA4XOnLWsYtcIVfYxd11roi73hV1xVxxV8I5V9KVci1cS9fStXKPuNaujWvrHnWPusfcY+7xhF8Ld53cU66ze9p1cc+4Z9yzrpt7znV3z7se7gXX0/VySS7J9XF9XF/X1/V3/d1AN9ANcoPcYDfYDXFD3DA3zA13w90IN8KNdCPdaDfajXFj3Dg3zk1wE1yyS3aT3CQ32U12U9wUN81NczPcDDfLzXKz3Ww3181189w8t8AtcIvcIrfELXFL3VKX4lLcMrfMpbpUt8KtcKvcKrfGrXHr3Dq3wW1wm9wmt8VtcdvcNrfdbXc73U632+12e91et8/tc/vdfpfm0twBd8AddAfdIfeFO+y+dEfcV+6o+9odc9+44+5bd8KddKec16fd9+6MO+vOuR/cefeju+B+chedd8mxN2OTYm/FJsfejk2JTY1Ni02PzYjNjM2KvRObHZsTmxt7NzYvNj+2ILYwtii2OLYk9l5saez9WErsg9iy2Iex1Njy2IrYytiq2OqY9wW2R76QL+zj/jpfxF/vi/pivrgv4Z0v6Uv5G3xpf6Mv42/yZf3Nvpy/xZf3FXxF38Q39c18c9/Ct/QP+1b+Ed/at/Ft/aO+nX/Mt/eP+w7+Cd/RP+k7+ad8Z/+07+Kf8V39s/N/7bLv4V/wPX0vn+R7+z7+Rd/X9/P9/QA/0L/kB/mX/WD/ih/ih/ph/lU/3L/mR/jX/Ug/yo/2b/gxfqwf58f7CX6iT/Zv+kn+LT/Zv+2n+Kl+mp/uZ/iZfpZ/x8/2c/xc/66f5+f7BX6hX+QX+yX+Pb/Uv+9T/Ad+mf/Qp/rlfoVf6Vf51X6NX+vX+fV+g9/oN/nNfovf6rf5j/x2v8Pv9Lv8br/H7/Uf+33+E7/ff+rT/Gf+gP+LP+g/94f8F/6w/9If8V/5o/5rf8x/44/7b/0Jf9Kf8t/50/57f8af9ef8D/68/9Ff8D/5i/I3a0IIIYQQ/xR9mf29/87/qV+3dH0AINuOfIf/es5NuX8Z91P7OsYA4IleXRv8tjVokJSU9OuxqRqCwgsBIHYp/+fvH/g1Xg5t4THoAG2g9N+tr5+q+PN93383f/xmgESALL/lpD8eJcJfz3/jP5i/yXt8ufkXAhQtfCkn/US/xZfmL/MP5t/T7jLzZ/k8GaD1f8nJCpfiS/OXgkfgSejwuyOFEEIIIYQQQohf9FPnu13u+Tb9+Ty/uZSTGS7Fl3s+v4zKf8QahBBCCCGEEEII8d97+rnujz/coUObzv/Jg8x/jjL+BAMEgD9BGTL48w+u9G8mIYQQQgghxB/t0k3/la5ECCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYTIuP79bwhT//TBV3qNQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghxJX2fwIAAP//hBVVxg==")
write$UHID_INPUT(0xffffffffffffffff, 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x2e, 0x0, 0x0)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, 0x0)
creat(&(0x7f0000000200)='./file1\x00', 0x12e)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
syz_mount_image$vfat(&(0x7f0000000300), &(0x7f0000000280)='./bus\x00', 0x3c9c9b, 0x0, 0x0, 0x0, &(0x7f0000000140))

535.120799ms ago: executing program 5 (id=5076):
close(0x3)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="12000000040000000400000008"], 0x48)
close(0x3)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0x9, 0x8, 0x80, 0x40, 0x42, 0x1}, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100), &(0x7f0000000580), 0x1000, r1}, 0x38)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xd, &(0x7f0000000f80)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000850000000800000095"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r2, 0x0, 0x7, 0x0, &(0x7f0000000100)="e0b9547ed387db", 0x0, 0x4002000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

289.020093ms ago: executing program 7 (id=5077):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x800718, &(0x7f00000003c0)={[{@delalloc}, {@journal_dev={'journal_dev', 0x3d, 0x40000ff}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x60}}, {@nobh}, {@resgid}, {@resuid}, {@nombcache}, {@noblock_validity}, {@usrquota}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x4}}]}, 0x2, 0x4a3, &(0x7f00000004c0)="$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")
chdir(&(0x7f0000000140)='./file0\x00')
symlink(&(0x7f0000000dc0)='./file0\x00', &(0x7f0000000cc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

215.83401ms ago: executing program 2 (id=5078):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'dummy0\x00', <r1=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000001a40)=@newqdisc={0x24, 0x24, 0x4ee4e6a52ff56541, 0x1, 0x25dfdbfd, {0x0, 0x0, 0x0, r1, {0xb, 0xb}, {0xffff, 0xffff}, {0xfff2, 0x8}}}, 0x24}, 0x1, 0x0, 0x0, 0x100088c1}, 0x40)

12.074702ms ago: executing program 2 (id=5079):
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/uevent_seqnum', 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$OCFS2_IOC_REFLINK(r0, 0x40186f04, &(0x7f00000001c0)={&(0x7f0000000040)='})%\xa8\x00', &(0x7f0000000100)='\x00', 0x7})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x200000000000008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x8)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f00000024c0)=@raw={'raw\x00', 0x8, 0x3, 0x248, 0x140, 0xb, 0xd0e0011, 0x0, 0xc6, 0x218, 0x1d8, 0x190, 0x218, 0x1d8, 0x3, 0x0, {[{{@ip={@rand_addr, @broadcast, 0x0, 0x0, 'nr0\x00', '\x00', {}, {}, 0x1, 0x0, 0x3b}, 0x0, 0x70, 0xd8, 0x2000000}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x1, 0x101, 0x0, 0xc, 'netbios-ns\x00', 'syz1\x00', {0x27ff}}}}, {{@uncond, 0x0, 0x70, 0xd8}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x20000, 'syz1\x00', 'syz1\x00'}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x2a8)
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
keyctl$assume_authority(0x10, 0x0)
chdir(&(0x7f0000000140)='./file0\x00')
r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0xa41, 0x0)
setrlimit(0x1, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff})
copy_file_range(0xffffffffffffffff, 0x0, r3, 0x0, 0xffffffffa003e45b, 0x700000000000000)
socket(0x10, 0x803, 0x0)
socket$inet(0x2, 0x4000000000000001, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="05000000020000000800000040000000c0000000", @ANYRES32=0x1, @ANYBLOB='\x00'/19, @ANYRES32, @ANYBLOB="000000000000000004000000000000000000"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xd, &(0x7f0000000700)=ANY=[@ANYRES32], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, 0x0, 0x0)

0s ago: executing program 5 (id=5080):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000300), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
recvmmsg(r2, &(0x7f0000001640)=[{{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f00000004c0)=""/4096, 0x1e1c}, {&(0x7f00000000c0)=""/250, 0x4}], 0x2, 0x0, 0xd64}}], 0x300, 0x34000, 0x0)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000280)=ANY=[@ANYBLOB="18000000", @ANYRES16=r1, @ANYBLOB="a787000000ff000000000b00000404000180"], 0x18}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=@newlink={0x4c, 0x10, 0xffffffffffffffff, 0x70bd28, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, 0x37c13, 0x51a23}, [@IFLA_LINKINFO={0x2c, 0x12, 0x0, 0x1, @ip6gretap={{0xe}, {0x18, 0x2, 0x0, 0x1, [@IFLA_GRE_LOCAL={0x14, 0x6, @private0={0xfc, 0x0, '\x00', 0x1}}]}}}]}, 0x4c}}, 0x20040040)

kernel console output (not intermixed with test programs):

failed: -22
[  686.333921][ T1289] ieee802154 phy1 wpan1: encryption failed: -22
[  689.158533][T19154] loop5: detected capacity change from 0 to 32768
[  692.457684][   T28] audit: type=1326 audit(1773228347.433:374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19187 comm="syz.2.4357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb079d9c799 code=0x7ffc0000
[  692.489427][   T28] audit: type=1326 audit(1773228347.433:375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19187 comm="syz.2.4357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb079d9c799 code=0x7ffc0000
[  692.525441][   T28] audit: type=1326 audit(1773228347.433:376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19187 comm="syz.2.4357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=246 compat=0 ip=0x7fb079d9c799 code=0x7ffc0000
[  692.549033][   T28] audit: type=1326 audit(1773228347.433:377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19187 comm="syz.2.4357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb079d9c799 code=0x7ffc0000
[  692.696154][   T28] audit: type=1326 audit(1773228347.433:378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19187 comm="syz.2.4357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb079d9c799 code=0x7ffc0000
[  692.813102][   T28] audit: type=1326 audit(1773228347.433:379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19187 comm="syz.2.4357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fb079d9c799 code=0x7ffc0000
[  692.915568][   T28] audit: type=1326 audit(1773228347.433:380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19187 comm="syz.2.4357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb079d9c799 code=0x7ffc0000
[  693.012073][   T28] audit: type=1326 audit(1773228347.433:381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19187 comm="syz.2.4357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb079d9c799 code=0x7ffc0000
[  693.038625][T19201] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4361'.
[  693.047882][   T28] audit: type=1326 audit(1773228347.433:382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19187 comm="syz.2.4357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=126 compat=0 ip=0x7fb079d9c799 code=0x7ffc0000
[  693.070210][    C0] vkms_vblank_simulate: vblank timer overrun
[  693.132259][   T28] audit: type=1326 audit(1773228347.433:383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19187 comm="syz.2.4357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb079d9c799 code=0x7ffc0000
[  693.154616][    C0] vkms_vblank_simulate: vblank timer overrun
[  695.460471][T19237] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4372'.
[  695.795265][ T5085] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  695.810263][ T5085] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  695.823926][ T5085] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  695.832410][ T5085] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  695.854349][ T5085] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  695.862754][ T5085] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  697.917605][T19247] Bluetooth: hci4: command tx timeout
[  699.997614][T19247] Bluetooth: hci4: command tx timeout
[  700.043817][T19244] chnl_net:caif_netlink_parms(): no params data found
[  700.477829][   T28] kauditd_printk_skb: 41 callbacks suppressed
[  700.477845][   T28] audit: type=1326 audit(1773228355.463:425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19282 comm="syz.2.4385" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb079d9c799 code=0x7ffc0000
[  701.467833][   T28] audit: type=1326 audit(1773228355.463:426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19282 comm="syz.2.4385" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb079d9c799 code=0x7ffc0000
[  701.579659][   T28] audit: type=1326 audit(1773228355.513:427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19282 comm="syz.2.4385" exe="/root/syz-executor" sig=0 arch=c000003e syscall=126 compat=0 ip=0x7fb079d9c799 code=0x7ffc0000
[  701.665624][   T28] audit: type=1326 audit(1773228355.513:428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19282 comm="syz.2.4385" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb079d9c799 code=0x7ffc0000
[  701.736955][   T28] audit: type=1326 audit(1773228355.513:429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19282 comm="syz.2.4385" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb079d9c799 code=0x7ffc0000
[  701.760238][   T28] audit: type=1326 audit(1773228355.513:430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19282 comm="syz.2.4385" exe="/root/syz-executor" sig=0 arch=c000003e syscall=188 compat=0 ip=0x7fb079d9c799 code=0x7ffc0000
[  701.783141][   T28] audit: type=1326 audit(1773228355.513:431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19282 comm="syz.2.4385" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb079d9c799 code=0x7ffc0000
[  701.805994][   T28] audit: type=1326 audit(1773228356.393:432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19282 comm="syz.2.4385" exe="/root/syz-executor" sig=0 arch=c000003e syscall=198 compat=0 ip=0x7fb079d9c799 code=0x7ffc0000
[  701.863440][   T28] audit: type=1326 audit(1773228356.393:433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19282 comm="syz.2.4385" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb079d9c799 code=0x7ffc0000
[  702.206733][T19247] Bluetooth: hci4: command tx timeout
[  702.243811][   T28] audit: type=1326 audit(1773228356.393:434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19282 comm="syz.2.4385" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb079d9c799 code=0x7ffc0000
[  702.685708][T18637] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  703.224123][T19244] bridge0: port 1(bridge_slave_0) entered blocking state
[  703.238046][T19244] bridge0: port 1(bridge_slave_0) entered disabled state
[  703.245390][T19244] bridge_slave_0: entered allmulticast mode
[  703.262464][T19244] bridge_slave_0: entered promiscuous mode
[  703.385939][T18637] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  703.446641][T19244] bridge0: port 2(bridge_slave_1) entered blocking state
[  703.462268][T19244] bridge0: port 2(bridge_slave_1) entered disabled state
[  703.478817][T19244] bridge_slave_1: entered allmulticast mode
[  703.486927][T19244] bridge_slave_1: entered promiscuous mode
[  703.541924][T18637] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  703.592306][T19244] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  703.651684][T18637] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  703.678494][T19244] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  703.743822][T19244] team0: Port device team_slave_0 added
[  703.793043][T19244] team0: Port device team_slave_1 added
[  703.894933][T19244] batman_adv: batadv0: Adding interface: batadv_slave_0
[  703.907466][T19244] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  703.942344][T19244] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  703.983083][T19244] batman_adv: batadv0: Adding interface: batadv_slave_1
[  703.993813][T19244] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  704.041859][T19244] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  704.237907][T19247] Bluetooth: hci4: command tx timeout
[  705.234082][T19244] hsr_slave_0: entered promiscuous mode
[  705.328910][T19244] hsr_slave_1: entered promiscuous mode
[  705.377783][T19244] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  705.399708][T19244] Cannot create hsr debugfs directory
[  716.745636][T19244] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  717.587012][T19244] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  719.736469][T19244] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  720.597214][T19244] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  720.742589][T19247] Bluetooth: hci3: Malformed HCI Event
[  721.177566][T18637] hsr_slave_0: left promiscuous mode
[  721.200207][T18637] hsr_slave_1: left promiscuous mode
[  721.220945][T18637] batman_adv: batadv0: Removing interface: batadv_slave_0
[  721.241905][T18637] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  721.265614][T18637] batman_adv: batadv0: Removing interface: batadv_slave_1
[  721.379939][T18637] veth1_macvtap: left promiscuous mode
[  721.404283][T18637] veth0_macvtap: left promiscuous mode
[  721.420189][T18637] veth1_vlan: left promiscuous mode
[  721.447855][T18637] veth0_vlan: left promiscuous mode
[  728.816949][T19487] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4434'.
[  729.033551][T19490] tmpfs: Bad value for 'mpol'
[  729.867939][T19501] loop5: detected capacity change from 0 to 2048
[  729.928222][T19501] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  730.564704][T18637] team0 (unregistering): Port device team_slave_1 removed
[  730.592939][    T8] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  730.643682][T18637] team0 (unregistering): Port device team_slave_0 removed
[  730.727016][T18637] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  730.820337][    T8] usb 3-1: Using ep0 maxpacket: 32
[  730.826908][T18637] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  730.839958][    T8] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0xD has an invalid bInterval 0, changing to 7
[  730.867950][    T8] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0xD has invalid wMaxPacketSize 0
[  731.097667][    T8] usb 3-1: New USB device found, idVendor=084e, idProduct=1001, bcdDevice=bf.99
[  731.108137][    T8] usb 3-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3
[  731.121953][    T8] usb 3-1: Product: syz
[  731.126281][    T8] usb 3-1: SerialNumber: syz
[  731.178402][    T8] usb 3-1: config 0 descriptor??
[  733.936972][T19522] tmpfs: Bad value for 'mpol'
[  733.980104][   T23] usb 3-1: USB disconnect, device number 5
[  734.077663][T19526] netlink: 232 bytes leftover after parsing attributes in process `syz.2.4445'.
[  735.366715][T19544] loop2: detected capacity change from 0 to 2048
[  735.439409][T19544] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  735.555412][T18637] bond0 (unregistering): Released all slaves
[  736.156133][T19244] 8021q: adding VLAN 0 to HW filter on device bond0
[  736.225980][T19244] 8021q: adding VLAN 0 to HW filter on device team0
[  736.236314][T19559] tmpfs: Bad value for 'mpol'
[  736.266751][ T4119] bridge0: port 1(bridge_slave_0) entered blocking state
[  736.273997][ T4119] bridge0: port 1(bridge_slave_0) entered forwarding state
[  736.359860][ T4119] bridge0: port 2(bridge_slave_1) entered blocking state
[  736.367035][ T4119] bridge0: port 2(bridge_slave_1) entered forwarding state
[  736.459147][T19565] tmpfs: Bad value for 'mpol'
[  737.458772][T18637] IPVS: stop unused estimator thread 0...
[  737.616837][T19244] 8021q: adding VLAN 0 to HW filter on device batadv0
[  739.135923][T19244] veth0_vlan: entered promiscuous mode
[  739.154663][T19244] veth1_vlan: entered promiscuous mode
[  739.173820][T19613] tmpfs: Bad value for 'mpol'
[  739.235067][T19244] veth0_macvtap: entered promiscuous mode
[  739.253801][T19244] veth1_macvtap: entered promiscuous mode
[  739.270576][T19614] loop2: detected capacity change from 0 to 2048
[  739.291281][T19614] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  739.374267][T19244] batman_adv: batadv0: Interface activated: batadv_slave_0
[  739.488849][T19244] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  739.917137][T19244] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  739.979613][T19244] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  739.993169][T19244] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  740.016083][T19244] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  740.038412][T19244] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  740.059295][T19244] batman_adv: batadv0: Interface activated: batadv_slave_1
[  740.128365][T19244] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  740.172797][T19244] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  740.213771][T19244] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  740.252207][T19244] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  741.142019][T18378] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  741.170723][T18378] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  741.341163][ T4119] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  741.361552][ T4119] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  741.545903][T19644] tmpfs: Bad value for 'mpol'
[  741.682957][T19647] syzkaller0: entered promiscuous mode
[  741.707588][T19647] syzkaller0: entered allmulticast mode
[  743.277313][ T5776] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  743.297583][ T5776] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  743.306677][ T5776] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  743.316911][ T5776] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  743.329959][ T5776] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  743.337740][ T5776] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  743.402358][T19682] block device autoloading is deprecated and will be removed.
[  744.314850][T19704] netlink: 232 bytes leftover after parsing attributes in process `syz.0.4485'.
[  744.640199][T19677] chnl_net:caif_netlink_parms(): no params data found
[  744.785776][T19710] netlink: 184 bytes leftover after parsing attributes in process `syz.0.4487'.
[  744.799572][T19710] netlink: 13 bytes leftover after parsing attributes in process `syz.0.4487'.
[  744.909518][T19713] loop6: detected capacity change from 0 to 164
[  745.122745][T19677] bridge0: port 1(bridge_slave_0) entered blocking state
[  745.189629][T19726] Unsupported NM flag settings (240)
[  745.196638][T19677] bridge0: port 1(bridge_slave_0) entered disabled state
[  745.212266][T19677] bridge_slave_0: entered allmulticast mode
[  745.248945][T19677] bridge_slave_0: entered promiscuous mode
[  745.420005][ T2113] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  745.437904][T19247] Bluetooth: hci2: command tx timeout
[  745.512599][T19677] bridge0: port 2(bridge_slave_1) entered blocking state
[  745.522250][T19677] bridge0: port 2(bridge_slave_1) entered disabled state
[  745.531615][T19677] bridge_slave_1: entered allmulticast mode
[  745.551062][T19677] bridge_slave_1: entered promiscuous mode
[  745.658064][ T2113] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  745.716715][T19677] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  745.754454][T19677] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  745.794006][ T2113] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  745.916065][ T2113] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  745.979890][T19677] team0: Port device team_slave_0 added
[  745.999133][T19677] team0: Port device team_slave_1 added
[  746.084417][T19677] batman_adv: batadv0: Adding interface: batadv_slave_0
[  746.091885][T19677] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  746.118536][T19677] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  746.165841][T19677] batman_adv: batadv0: Adding interface: batadv_slave_1
[  746.173919][T19677] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  746.200275][T19677] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  746.324106][T19677] hsr_slave_0: entered promiscuous mode
[  746.336731][T19677] hsr_slave_1: entered promiscuous mode
[  747.517629][T19247] Bluetooth: hci2: command tx timeout
[  747.637607][T19747] netlink: 232 bytes leftover after parsing attributes in process `syz.0.4494'.
[  747.763765][ T1289] ieee802154 phy0 wpan0: encryption failed: -22
[  747.771211][ T1289] ieee802154 phy1 wpan1: encryption failed: -22
[  748.008797][T19762] loop6: detected capacity change from 0 to 128
[  748.103121][   T28] kauditd_printk_skb: 4 callbacks suppressed
[  748.103136][   T28] audit: type=1804 audit(1773228403.093:439): pid=19762 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.6.4497" name="/newroot/6/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/usrjquota=.." dev="loop6" ino=1048638 res=1 errno=0
[  749.604775][T19247] Bluetooth: hci2: command tx timeout
[  749.912374][ T2113] hsr_slave_0: left promiscuous mode
[  749.934665][ T2113] hsr_slave_1: left promiscuous mode
[  749.951743][ T2113] batman_adv: batadv0: Removing interface: batadv_slave_0
[  749.963056][ T2113] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  749.977419][ T1527] usb 6-1: new full-speed USB device number 4 using dummy_hcd
[  750.004042][ T2113] batman_adv: batadv0: Removing interface: batadv_slave_1
[  750.018307][ T2113] bridge_slave_1: left allmulticast mode
[  750.024010][ T2113] bridge_slave_1: left promiscuous mode
[  750.037749][ T2113] bridge0: port 2(bridge_slave_1) entered disabled state
[  750.058090][ T2113] bridge_slave_0: left allmulticast mode
[  750.063828][ T2113] bridge_slave_0: left promiscuous mode
[  750.077667][ T2113] bridge0: port 1(bridge_slave_0) entered disabled state
[  750.137247][ T2113] veth1_macvtap: left promiscuous mode
[  750.164227][ T2113] veth0_macvtap: left promiscuous mode
[  750.170064][ T2113] veth1_vlan: left promiscuous mode
[  750.175446][ T2113] veth0_vlan: left promiscuous mode
[  750.191569][ T1527] usb 6-1: config 253 has an invalid descriptor of length 0, skipping remainder of the config
[  750.203493][ T1527] usb 6-1: too many endpoints for config 253 interface 0 altsetting 0: 255, using maximum allowed: 30
[  750.224886][ T1527] usb 6-1: config 253 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 255
[  750.251621][ T1527] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  750.262079][ T1527] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  750.279704][ T1527] usb 6-1: SerialNumber: syz
[  750.611310][ T1527] rndis_wlan: probe of 6-1:253.0 failed with error -22
[  750.629575][ T1527] rndis_host: probe of 6-1:253.0 failed with error -22
[  750.673167][ T1527] usb 6-1: USB disconnect, device number 4
[  751.677525][T19247] Bluetooth: hci2: command tx timeout
[  751.839431][T19816] loop6: detected capacity change from 0 to 4096
[  751.852336][T19816] EXT4-fs: inline encryption not supported
[  751.936424][T19816] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[  752.015280][T19816] System zones: 0-5
[  752.143253][T19816] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  752.655656][T19244] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  754.397952][ T2113] team0 (unregistering): Port device team_slave_1 removed
[  754.637734][ T2113] team0 (unregistering): Port device team_slave_0 removed
[  754.829050][ T2113] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  755.029077][ T2113] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  755.058609][ T5804] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  755.259424][ T5804] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  755.279313][ T5804] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  755.314639][ T5804] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  755.364006][ T5804] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  755.388069][ T5804] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  755.414069][ T5804] usb 1-1: config 0 descriptor??
[  755.854591][ T5804] plantronics 0003:047F:FFFF.0004: No inputs registered, leaving
[  755.910452][ T5804] plantronics 0003:047F:FFFF.0004: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  756.146423][ T5806] usb 1-1: USB disconnect, device number 4
[  756.182152][ T2113] bond0 (unregistering): Released all slaves
[  756.397982][T19677] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  756.409192][    T8] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  756.439320][T19677] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  756.467866][T19677] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  756.500840][T19677] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  756.630099][    T8] usb 6-1: Using ep0 maxpacket: 16
[  756.659931][    T8] usb 6-1: config 0 has an invalid interface number: 34 but max is 0
[  756.689050][    T8] usb 6-1: config 0 has no interface number 0
[  756.705604][    T8] usb 6-1: config 0 interface 34 altsetting 0 bulk endpoint 0xA has invalid maxpacket 1023
[  756.731198][    T8] usb 6-1: config 0 interface 34 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 80
[  756.757573][    T8] usb 6-1: New USB device found, idVendor=0b95, idProduct=772a, bcdDevice=82.73
[  756.766895][    T8] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  756.775005][    T8] usb 6-1: Product: syz
[  756.779473][    T8] usb 6-1: Manufacturer: syz
[  756.791915][    T8] usb 6-1: SerialNumber: syz
[  756.814011][    T8] usb 6-1: config 0 descriptor??
[  756.826500][T19882] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22
[  756.839479][T19677] 8021q: adding VLAN 0 to HW filter on device bond0
[  756.850193][T19882] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22
[  756.921009][T19677] 8021q: adding VLAN 0 to HW filter on device team0
[  756.958158][T18647] bridge0: port 1(bridge_slave_0) entered blocking state
[  756.965395][T18647] bridge0: port 1(bridge_slave_0) entered forwarding state
[  756.991337][T18641] bridge0: port 2(bridge_slave_1) entered blocking state
[  756.998597][T18641] bridge0: port 2(bridge_slave_1) entered forwarding state
[  757.100569][T19882] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22
[  757.117996][T19882] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22
[  757.346521][    T8] asix 6-1:0.34 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -61
[  757.377660][    T8] asix: probe of 6-1:0.34 failed with error -61
[  757.501545][T19677] 8021q: adding VLAN 0 to HW filter on device batadv0
[  757.605823][T19677] veth0_vlan: entered promiscuous mode
[  757.627228][T19677] veth1_vlan: entered promiscuous mode
[  757.669225][T19677] veth0_macvtap: entered promiscuous mode
[  757.694535][T19677] veth1_macvtap: entered promiscuous mode
[  757.722205][T19677] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  757.739734][T19677] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  757.751554][T19677] batman_adv: batadv0: Interface activated: batadv_slave_0
[  757.772204][T19677] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  757.783240][T19677] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  757.807504][T19677] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  757.821098][T19677] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  757.897479][T19677] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  757.908199][T19677] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  757.932711][T19677] batman_adv: batadv0: Interface activated: batadv_slave_1
[  757.964997][T19677] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  757.981121][T19677] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  757.993063][T19677] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  758.002426][T19677] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  759.001746][ T2113] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  759.033403][ T2113] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  759.180007][T18626] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  759.199779][ T5803] usb 6-1: USB disconnect, device number 5
[  759.223965][T18626] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  759.484594][T19936] block device autoloading is deprecated and will be removed.
[  759.492172][T19938] loop2: detected capacity change from 0 to 512
[  759.493238][T19938] EXT4-fs: Ignoring removed orlov option
[  759.523103][T19938] EXT4-fs (loop2): Test dummy encryption mode enabled
[  759.558661][T19938] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  759.608057][T19938] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  759.636029][T19938] EXT4-fs (loop2): 1 truncate cleaned up
[  759.655227][T19938] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  759.795619][T19677] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  759.988578][T19947] tmpfs: Bad value for 'mpol'
[  760.449200][ T5804] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  761.331499][ T5804] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  761.347820][ T5804] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  761.367824][ T5804] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  761.381227][ T5804] usb 6-1: New USB device found, idVendor=0458, idProduct=501a, bcdDevice= 0.00
[  761.399564][ T5804] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  761.430871][ T5804] usb 6-1: config 0 descriptor??
[  762.085292][ T5804] kye 0003:0458:501A.0005: tablet report size too small, or kye_tablet_rdesc unexpectedly large
[  762.116641][ T5804] kye 0003:0458:501A.0005: unknown main item tag 0x4
[  762.136196][ T5804] kye 0003:0458:501A.0005: hidraw0: USB HID vff.fc Device [HID 0458:501a] on usb-dummy_hcd.5-1/input0
[  762.166947][ T5804] kye 0003:0458:501A.0005: tablet-enabling feature report not found
[  762.180429][ T5804] kye 0003:0458:501A.0005: tablet enabling failed
[  762.210171][ T5804] usb 6-1: USB disconnect, device number 6
[  762.324009][T19973] fido_id[19973]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/report_descriptor': No such file or directory
[  762.407659][T19976] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4539'.
[  763.420166][T20000] loop6: detected capacity change from 0 to 512
[  763.441102][T20000] FAT-fs (loop6): Unrecognized mount option "" or missing value
[  764.135712][T18995] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  764.594264][T20009] loop6: detected capacity change from 0 to 1024
[  765.378705][T20009] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  765.722490][T20021] block device autoloading is deprecated and will be removed.
[  766.025227][   T28] audit: type=1804 audit(1773228420.823:440): pid=20027 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.6.4546" name="/newroot/18/file2/bus" dev="loop6" ino=18 res=1 errno=0
[  766.471529][T19244] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  766.718192][T20040] netlink: 184 bytes leftover after parsing attributes in process `syz.0.4552'.
[  766.787442][T20040] netlink: 13 bytes leftover after parsing attributes in process `syz.0.4552'.
[  767.009828][T20049] loop2: detected capacity change from 0 to 4096
[  767.028108][T20049] EXT4-fs: inline encryption not supported
[  767.043360][T20049] ext4: Unknown parameter 'nouser_xattr'
[  767.151821][T20053] loop6: detected capacity change from 0 to 1024
[  767.200713][T20053] EXT4-fs: Ignoring removed orlov option
[  767.259005][T20053] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  767.562161][T19244] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  767.891616][T20069] loop6: detected capacity change from 0 to 256
[  768.032733][T20071] loop5: detected capacity change from 0 to 2048
[  768.042973][T20071] EXT4-fs: Ignoring removed i_version option
[  768.268981][T20071] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  768.308619][T20071] ext4 filesystem being mounted at /456/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  768.344967][T20079] netlink: 184 bytes leftover after parsing attributes in process `syz.0.4563'.
[  768.354228][T20079] netlink: 13 bytes leftover after parsing attributes in process `syz.0.4563'.
[  769.336619][T20088] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4565'.
[  769.641567][T20091] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4565'.
[  770.334096][T20091] team0: Port device team_slave_0 removed
[  770.903113][T20109] loop2: detected capacity change from 0 to 1024
[  770.948859][T20109] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  771.209303][T13683] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  771.420547][T20121] loop6: detected capacity change from 0 to 128
[  772.812469][T19677] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  774.373104][T20158] loop2: detected capacity change from 0 to 1024
[  774.404956][T20158] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  774.488285][   T43] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  774.681250][T19677] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  774.737426][   T43] usb 7-1: Using ep0 maxpacket: 32
[  774.749971][   T43] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0xD has an invalid bInterval 0, changing to 7
[  774.807412][   T43] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0xD has invalid wMaxPacketSize 0
[  774.858259][   T43] usb 7-1: New USB device found, idVendor=084e, idProduct=1001, bcdDevice=bf.99
[  774.879213][   T43] usb 7-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3
[  774.916316][   T43] usb 7-1: Product: syz
[  774.921452][   T43] usb 7-1: SerialNumber: syz
[  774.949025][   T43] usb 7-1: config 0 descriptor??
[  775.167001][   T43] usb 7-1: USB disconnect, device number 2
[  776.201665][T20183] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4583'.
[  776.233852][T20183] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4583'.
[  777.957119][T20194] loop2: detected capacity change from 0 to 256
[  778.148805][T20194] FAT-fs (loop2): Directory bread(block 64) failed
[  778.192198][T20194] FAT-fs (loop2): Directory bread(block 65) failed
[  778.219122][T20194] FAT-fs (loop2): Directory bread(block 66) failed
[  778.225751][T20194] FAT-fs (loop2): Directory bread(block 67) failed
[  778.234134][T20194] FAT-fs (loop2): Directory bread(block 68) failed
[  778.247478][T20194] FAT-fs (loop2): Directory bread(block 69) failed
[  778.451428][T20194] FAT-fs (loop2): Directory bread(block 70) failed
[  778.599343][T20194] FAT-fs (loop2): Directory bread(block 71) failed
[  778.762659][T20194] FAT-fs (loop2): Directory bread(block 72) failed
[  778.869806][T20194] FAT-fs (loop2): Directory bread(block 73) failed
[  779.150661][T20216] loop6: detected capacity change from 0 to 128
[  779.418256][T20216] netlink: 24 bytes leftover after parsing attributes in process `syz.6.4591'.
[  780.253437][T20229] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4593'.
[  780.415749][T20234] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4593'.
[  780.429958][T20234] veth1_macvtap: left promiscuous mode
[  780.504322][T20236] loop6: detected capacity change from 0 to 2048
[  780.553290][T20236] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  781.260670][T20252] loop2: detected capacity change from 0 to 128
[  783.327523][ T5803] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  783.533918][ T5803] usb 1-1: Using ep0 maxpacket: 8
[  783.553248][T20303] loop6: detected capacity change from 0 to 128
[  783.568180][ T5803] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1023
[  783.591086][ T5803] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 32
[  783.635697][ T5803] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  783.659599][ T5803] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  783.692550][ T5803] usb 1-1: Product: syz
[  783.700345][ T5803] usb 1-1: Manufacturer: syz
[  783.709821][ T5803] usb 1-1: SerialNumber: syz
[  784.036900][ T5803] cdc_ncm 1-1:1.0: bind() failure
[  784.480363][ T5803] cdc_ncm 1-1:1.1: CDC Union missing and no IAD found
[  784.606028][ T5803] cdc_ncm 1-1:1.1: bind() failure
[  784.635015][T20314] loop6: detected capacity change from 0 to 2048
[  784.667686][ T5803] usb 1-1: USB disconnect, device number 5
[  784.695440][T20314] EXT4-fs: Ignoring removed i_version option
[  784.779889][T19247] Bluetooth: hci2: Malformed HCI Event
[  784.865176][T20314] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  784.920039][T20314] ext4 filesystem being mounted at /37/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  785.485486][ T5803] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  785.947493][ T5803] usb 6-1: Using ep0 maxpacket: 16
[  785.974412][T19244] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  786.008390][ T5803] usb 6-1: config 0 interface 0 altsetting 16 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  786.041790][ T5803] usb 6-1: config 0 interface 0 altsetting 16 endpoint 0x81 has invalid wMaxPacketSize 0
[  786.067717][ T5803] usb 6-1: config 0 interface 0 altsetting 16 has 1 endpoint descriptor, different from the interface descriptor's value: 28
[  786.122833][ T5803] usb 6-1: config 0 interface 0 has no altsetting 0
[  786.161605][ T5803] usb 6-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  786.217523][ T5803] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  786.240883][ T5803] usb 6-1: config 0 descriptor??
[  786.404595][T20354] loop6: detected capacity change from 0 to 256
[  786.479624][T20354] exFAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  786.519266][T20354] exFAT-fs (loop6): Medium has reported failures. Some data may be lost.
[  786.629129][T20354] exFAT-fs (loop6): failed to load upcase table (idx : 0x0000ff98, chksum : 0xc64c91aa, utbl_chksum : 0xe619d30d)
[  786.742424][ T5803] hid (null): global environment stack underflow
[  786.759474][ T5803] hid (null): global environment stack underflow
[  786.776259][ T5803] hid (null): report_id 0 is invalid
[  786.782761][ T5803] hid (null): global environment stack underflow
[  786.789715][ T5803] hid (null): report_id 0 is invalid
[  786.795186][ T5803] hid (null): report_id 0 is invalid
[  786.805731][ T5803] hid (null): global environment stack underflow
[  786.963630][T17403] usb 6-1: USB disconnect, device number 7
[  788.073465][T20384] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4625'.
[  788.204855][T20387] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4625'.
[  788.726213][T20400] loop6: detected capacity change from 0 to 512
[  788.797735][T20400] EXT4-fs (loop6): 1 truncate cleaned up
[  788.835897][T20400] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  788.980502][T20412] loop5: detected capacity change from 0 to 164
[  789.011264][T20400] EXT4-fs (loop6): re-mounted 00000000-0000-0000-0000-000000000000.
[  789.049290][   T28] audit: type=1800 audit(1773228444.033:441): pid=20400 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.4628" name="file1" dev="loop6" ino=13 res=0 errno=0
[  789.073046][T20400] EXT4-fs error (device loop6): ext4_map_blocks:608: inode #2: block 13: comm syz.6.4628: lblock 0 mapped to illegal pblock 13 (length 1)
[  789.767427][T20404] EXT4-fs error (device loop6): ext4_read_block_bitmap_nowait:478: comm ext4lazyinit: Invalid block bitmap block 3 in block_group 0
[  790.730214][T20423] EXT4-fs error (device loop6): ext4_map_blocks:608: inode #13: block 25: comm syz.6.4628: lblock 0 mapped to illegal pblock 25 (length 2)
[  790.939972][T20422] Unsupported NM flag settings (240)
[  790.967689][T20404] EXT4-fs error (device loop6): ext4_read_block_bitmap_nowait:478: comm ext4lazyinit: Invalid block bitmap block 3 in block_group 0
[  791.101741][T19244] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  792.066171][T20427] loop2: detected capacity change from 0 to 8192
[  792.129162][T20439] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4637'.
[  792.151838][T20439] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4637'.
[  793.228754][   T28] audit: type=1326 audit(1773228448.223:442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20447 comm="syz.5.4640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c1439c799 code=0x7ffc0000
[  793.289414][   T28] audit: type=1326 audit(1773228448.223:443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20447 comm="syz.5.4640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f6c1439c799 code=0x7ffc0000
[  793.311702][    C0] vkms_vblank_simulate: vblank timer overrun
[  793.319519][   T28] audit: type=1326 audit(1773228448.223:444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20447 comm="syz.5.4640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c1439c799 code=0x7ffc0000
[  793.538544][   T28] audit: type=1326 audit(1773228448.253:445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20447 comm="syz.5.4640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f6c1439c799 code=0x7ffc0000
[  793.994450][   T28] audit: type=1326 audit(1773228448.253:446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20447 comm="syz.5.4640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c1439c799 code=0x7ffc0000
[  794.023124][   T28] audit: type=1326 audit(1773228448.253:447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20447 comm="syz.5.4640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f6c1439c799 code=0x7ffc0000
[  794.045566][    C0] vkms_vblank_simulate: vblank timer overrun
[  794.125367][   T28] audit: type=1326 audit(1773228448.453:448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20447 comm="syz.5.4640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c1439c799 code=0x7ffc0000
[  794.147744][    C0] vkms_vblank_simulate: vblank timer overrun
[  794.154061][   T28] audit: type=1326 audit(1773228448.463:449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20447 comm="syz.5.4640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c1439c799 code=0x7ffc0000
[  794.187510][   T28] audit: type=1326 audit(1773228448.633:450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20447 comm="syz.5.4640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f6c1439c799 code=0x7ffc0000
[  794.247431][   T28] audit: type=1326 audit(1773228448.663:451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20447 comm="syz.5.4640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c1439c799 code=0x7ffc0000
[  794.296986][   T28] audit: type=1326 audit(1773228448.683:452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20447 comm="syz.5.4640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c1439c799 code=0x7ffc0000
[  794.323097][T20473] loop6: detected capacity change from 0 to 164
[  794.374539][   T28] audit: type=1326 audit(1773228448.713:453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20447 comm="syz.5.4640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f6c1439c799 code=0x7ffc0000
[  794.396801][    C0] vkms_vblank_simulate: vblank timer overrun
[  794.412102][   T28] audit: type=1326 audit(1773228448.743:454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20447 comm="syz.5.4640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c1439c799 code=0x7ffc0000
[  794.436304][T20473] Unsupported NM flag settings (240)
[  794.529514][   T28] audit: type=1326 audit(1773228448.763:455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20447 comm="syz.5.4640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c1439c799 code=0x7ffc0000
[  794.591834][   T28] audit: type=1326 audit(1773228448.783:456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20447 comm="syz.5.4640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f6c1439c799 code=0x7ffc0000
[  794.614136][    C0] vkms_vblank_simulate: vblank timer overrun
[  794.717683][   T28] audit: type=1326 audit(1773228448.823:457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20447 comm="syz.5.4640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c1439c799 code=0x7ffc0000
[  795.639203][T19677] FAT-fs (loop2): error, invalid access to FAT (entry 0x0000e1b1)
[  795.667480][T19677] FAT-fs (loop2): Filesystem has been set read-only
[  795.962194][T20492] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4648'.
[  796.062341][T20497] loop5: detected capacity change from 0 to 164
[  796.108165][T20496] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4648'.
[  796.278118][T20497] Unsupported NM flag settings (240)
[  796.352931][T20501] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  798.499341][T20520] loop5: detected capacity change from 0 to 2048
[  798.523108][T20520] EXT4-fs: Ignoring removed i_version option
[  798.598266][T20520] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  798.657586][T20520] ext4 filesystem being mounted at /477/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  799.653227][T13683] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  801.212596][T20557] loop5: detected capacity change from 0 to 512
[  801.213081][ T5803] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  801.269701][T20557] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  801.654184][T20557] ext4 filesystem being mounted at /480/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  801.924222][T20557] EXT4-fs error (device loop5): ext4_ext_check_inode:520: inode #2: comm syz.5.4669: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  801.967527][ T5803] usb 3-1: Using ep0 maxpacket: 16
[  801.981386][ T5803] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 64, changing to 7
[  802.011979][ T5803] usb 3-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 250, changing to 7
[  802.065837][ T5803] usb 3-1: New USB device found, idVendor=0bda, idProduct=4014, bcdDevice= 0.40
[  802.085569][ T5803] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  802.093831][ T5803] usb 3-1: Product: syz
[  802.099146][ T5803] usb 3-1: Manufacturer: syz
[  802.107821][T13683] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  802.122281][ T5803] usb 3-1: SerialNumber: syz
[  802.363862][ T5803] usb 3-1: 1:1 : UAC_AS_GENERAL descriptor not found
[  802.565672][T20572] loop5: detected capacity change from 0 to 512
[  802.578227][T20572] FAT-fs (loop5): Unrecognized mount option "" or missing value
[  804.155010][ T5803] usb 3-1: USB disconnect, device number 6
[  804.349588][T18995] udevd[18995]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  804.670774][ T5803] hid-generic 0003:0003:0000.0007: unknown main item tag 0x0
[  804.682089][ T5803] hid-generic 0003:0003:0000.0007: unknown main item tag 0x0
[  804.690011][ T5803] hid-generic 0003:0003:0000.0007: unknown main item tag 0x0
[  804.718988][ T5803] hid-generic 0003:0003:0000.0007: unknown main item tag 0x0
[  804.727126][ T5803] hid-generic 0003:0003:0000.0007: unknown main item tag 0x0
[  804.767580][ T5803] hid-generic 0003:0003:0000.0007: unknown main item tag 0x0
[  804.775134][ T5803] hid-generic 0003:0003:0000.0007: unknown main item tag 0x0
[  804.988928][ T5803] hid-generic 0003:0003:0000.0007: unknown main item tag 0x0
[  804.997958][ T5803] hid-generic 0003:0003:0000.0007: unknown main item tag 0x0
[  805.005492][ T5803] hid-generic 0003:0003:0000.0007: unknown main item tag 0x0
[  805.013631][ T5803] hid-generic 0003:0003:0000.0007: unknown main item tag 0x0
[  805.021105][ T5803] hid-generic 0003:0003:0000.0007: unknown main item tag 0x0
[  805.028569][ T5803] hid-generic 0003:0003:0000.0007: unknown main item tag 0x0
[  805.036686][ T5803] hid-generic 0003:0003:0000.0007: unknown main item tag 0x0
[  805.044714][ T5803] hid-generic 0003:0003:0000.0007: unknown main item tag 0x0
[  805.052248][ T5803] hid-generic 0003:0003:0000.0007: unknown main item tag 0x0
[  805.735985][ T5803] hid-generic 0003:0003:0000.0007: unknown main item tag 0x0
[  805.744173][ T5803] hid-generic 0003:0003:0000.0007: unknown main item tag 0x0
[  805.760558][ T5803] hid-generic 0003:0003:0000.0007: hidraw0: USB HID v0.00 Device [syz0] on syz1
[  807.160974][T20614] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4685'.
[  807.477392][ T5803] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  807.683912][ T5803] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  807.704358][ T5803] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  807.731359][ T5803] usb 1-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  807.757788][ T5803] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  807.765860][ T5803] usb 1-1: SerialNumber: syz
[  807.916402][T20617] loop5: detected capacity change from 0 to 40427
[  807.940092][T20617] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12
[  807.961174][T20617] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  807.981494][T20617] F2FS-fs (loop5): invalid crc value
[  807.998321][T20617] F2FS-fs (loop5): Found nat_bits in checkpoint
[  808.019239][T20614] fuse: Unknown parameter '0xffffffffffffffff'
[  808.071427][ T5803] usb 1-1: 0:2 : does not exist
[  808.136680][T20617] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  808.154454][T20617] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  808.165594][ T5803] usb 1-1: USB disconnect, device number 6
[  808.279516][T18995] udevd[18995]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  809.050715][T18641] F2FS-fs (loop5): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  809.065659][T18641] F2FS-fs (loop5): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  809.214351][ T1289] ieee802154 phy0 wpan0: encryption failed: -22
[  809.220996][ T1289] ieee802154 phy1 wpan1: encryption failed: -22
[  809.955928][T20641] loop5: detected capacity change from 0 to 1024
[  810.017757][T20641] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  811.069762][T13683] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  811.206459][T20658] loop6: detected capacity change from 0 to 512
[  811.217739][T20658] FAT-fs (loop6): Unrecognized mount option "" or missing value
[  812.543516][T20670] overlayfs: failed to resolve './file0': -2
[  815.870087][T20682] syzkaller0: entered promiscuous mode
[  815.875618][T20682] syzkaller0: entered allmulticast mode
[  815.950068][T20686] loop6: detected capacity change from 0 to 1024
[  816.020679][T20686] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  816.375580][   T28] kauditd_printk_skb: 4 callbacks suppressed
[  816.375616][   T28] audit: type=1804 audit(1773228471.363:462): pid=20695 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.6.4704" name="/newroot/70/file2/bus" dev="loop6" ino=18 res=1 errno=0
[  816.961267][T19244] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  817.122510][   T43] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  817.178644][T20703] loop2: detected capacity change from 0 to 512
[  817.201359][T20703] FAT-fs (loop2): Unrecognized mount option "" or missing value
[  818.628783][   T43] usb 6-1: Using ep0 maxpacket: 32
[  818.638677][   T43] usb 6-1: config 0 has an invalid interface number: 184 but max is 0
[  818.657355][   T43] usb 6-1: config 0 has no interface number 0
[  818.663983][   T43] usb 6-1: config 0 interface 184 has no altsetting 0
[  818.678667][   T43] usb 6-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  818.777587][T17403] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  818.785884][   T43] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  818.797804][   T43] usb 6-1: Product: syz
[  818.802012][   T43] usb 6-1: Manufacturer: syz
[  818.806624][   T43] usb 6-1: SerialNumber: syz
[  818.835774][   T43] usb 6-1: config 0 descriptor??
[  818.857193][   T43] smsc75xx v1.0.0
[  818.960684][T20709] loop6: detected capacity change from 0 to 40427
[  818.998230][T20709] F2FS-fs (loop6): invalid crc value
[  819.010107][T17403] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  819.031846][T20709] F2FS-fs (loop6): Found nat_bits in checkpoint
[  819.044836][T17403] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  819.071357][T17403] usb 1-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  819.097418][T17403] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  819.126209][T17403] usb 1-1: SerialNumber: syz
[  819.193751][T20709] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  819.385407][T17403] usb 1-1: 0:2 : does not exist
[  819.439404][T17403] usb 1-1: USB disconnect, device number 7
[  819.485104][   T43] smsc75xx 6-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000040: -32
[  819.496441][   T43] smsc75xx 6-1:0.184 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  819.550170][T18995] udevd[18995]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  820.294808][T19244] syz-executor: attempt to access beyond end of device
[  820.294808][T19244] loop6: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  820.367552][T19244] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[  820.518973][   T43] smsc75xx 6-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000010: -71
[  820.570941][   T43] smsc75xx 6-1:0.184 (unnamed net_device) (uninitialized): Failed to read HW_CFG: -71
[  820.635487][   T43] smsc75xx 6-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -71
[  820.687253][   T43] smsc75xx: probe of 6-1:0.184 failed with error -71
[  820.763649][   T43] usb 6-1: USB disconnect, device number 8
[  821.522557][ T5776] Bluetooth: hci4: command 0x0406 tx timeout
[  821.872798][T20750] loop5: detected capacity change from 0 to 2048
[  821.964145][T20750] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  822.026277][T20750] ext4 filesystem being mounted at /490/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  823.284711][T13683] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  823.447217][T20760] loop2: detected capacity change from 0 to 512
[  823.491265][T20760] EXT4-fs: Ignoring removed mblk_io_submit option
[  823.529741][T20764] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4721'.
[  823.545370][T20760] EXT4-fs (loop2): Test dummy encryption mode enabled
[  823.564345][T20764] netlink: 20 bytes leftover after parsing attributes in process `syz.5.4721'.
[  823.572694][T20766] loop6: detected capacity change from 0 to 1024
[  823.592514][T20760] EXT4-fs warning (device loop2): dx_probe:893: inode #2: comm syz.2.4720: dx entry: limit 0 != root limit 125
[  823.632598][T20766] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  823.645101][T20760] EXT4-fs warning (device loop2): dx_probe:966: inode #2: comm syz.2.4720: Corrupt directory, running e2fsck is recommended
[  823.646364][T20760] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -117
[  823.727424][T19929] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  823.735838][T20760] EXT4-fs error (device loop2): ext4_iget_extra_inode:4732: inode #15: comm syz.2.4720: corrupted in-inode xattr: invalid ea_ino
[  823.801185][T20760] EXT4-fs error (device loop2): ext4_orphan_get:1403: comm syz.2.4720: couldn't read orphan inode 15 (err -117)
[  823.857983][T20760] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  824.537655][   T28] audit: type=1804 audit(1773228479.179:463): pid=20776 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.6.4716" name="/newroot/73/file2/bus" dev="loop6" ino=18 res=1 errno=0
[  824.753405][T19244] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  825.187853][T20760] EXT4-fs warning (device loop2): dx_probe:893: inode #2: comm syz.2.4720: dx entry: limit 0 != root limit 125
[  825.235047][T20760] EXT4-fs warning (device loop2): dx_probe:966: inode #2: comm syz.2.4720: Corrupt directory, running e2fsck is recommended
[  825.337398][T19929] usb 1-1: Using ep0 maxpacket: 8
[  825.345668][T19929] usb 1-1: unable to get BOS descriptor or descriptor too short
[  825.357203][T19929] usb 1-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 186, changing to 7
[  825.381176][T19929] usb 1-1: New USB device found, idVendor=046d, idProduct=08f6, bcdDevice= 0.40
[  825.394272][T19929] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  825.401551][T19677] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  825.416021][T19929] usb 1-1: Product: syz
[  825.425074][T19929] usb 1-1: Manufacturer: syz
[  825.431883][T19929] usb 1-1: SerialNumber: syz
[  825.687174][T19929] gspca_main: STV06xx-2.14.0 probing 046d:08f6
[  825.704525][T19929] gspca_stv06xx: st6422 sensor detected
[  826.631881][T19929] STV06xx: probe of 1-1:1.0 failed with error -71
[  826.641724][T19929] usb 1-1: unit 255 not found!
[  826.694539][T19929] usb 1-1: USB disconnect, device number 8
[  826.904477][T20799] netlink: 'syz.0.4728': attribute type 1 has an invalid length.
[  827.036636][T18995] udevd[18995]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  827.128078][T20808] loop2: detected capacity change from 0 to 4096
[  827.199329][T20808] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  827.268746][T20806] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4728'.
[  827.324905][T20806] bond1 (unregistering): Released all slaves
[  827.438806][T19677] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  827.486210][T20813] syzkaller0: entered promiscuous mode
[  827.503880][T20813] syzkaller0: entered allmulticast mode
[  830.854418][T20833] loop2: detected capacity change from 0 to 40427
[  830.924751][T20833] F2FS-fs (loop2): Invalid SB checksum offset: 0
[  830.934746][T20833] F2FS-fs (loop2): Can't find valid F2FS filesystem in 2th superblock
[  831.007013][T20833] F2FS-fs (loop2): invalid crc value
[  831.216887][T20833] F2FS-fs (loop2): Try to recover 2th superblock, ret: 0
[  831.227023][T20833] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  836.237041][T20870] loop5: detected capacity change from 0 to 1024
[  836.318465][T20870] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  836.684989][   T28] audit: type=1804 audit(1773228491.669:464): pid=20877 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.5.4744" name="/newroot/500/file2/bus" dev="loop5" ino=18 res=1 errno=0
[  837.292389][T20881] loop2: detected capacity change from 0 to 256
[  837.294393][T13683] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  837.314754][T20881] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  837.337351][T20881] exFAT-fs (loop2): Medium has reported failures. Some data may be lost.
[  837.428145][T20881] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xd916ed68, utbl_chksum : 0xe619d30d)
[  837.605306][T20886] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4747'.
[  837.616691][T20886] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4747'.
[  837.825206][T20866] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  837.856300][T20866] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2587167807 (82789369824 ns) > initial count (42935321408 ns). Using initial count to start timer.
[  838.092608][T20879] loop6: detected capacity change from 0 to 40427
[  838.102317][T20879] F2FS-fs (loop6): build fault injection attr: rate: 771, type: 0x7ffff
[  838.116333][T20879] F2FS-fs (loop6): invalid crc value
[  839.836270][T20879] F2FS-fs (loop6): Failed to initialize F2FS segment manager (-4)
[  840.118429][T20901] syzkaller0: entered promiscuous mode
[  840.123952][T20901] syzkaller0: entered allmulticast mode
[  841.092597][T20915] loop5: detected capacity change from 0 to 512
[  841.276922][T20915] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  841.318651][T20922] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4756'.
[  841.456914][   T28] audit: type=1804 audit(1773228496.439:465): pid=20915 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.5.4754" name="/newroot/505/file0/file1" dev="loop5" ino=15 res=1 errno=0
[  841.813889][T13683] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  842.107035][T20935] netlink: 28 bytes leftover after parsing attributes in process `syz.5.4761'.
[  842.142352][T20935] netlink: 28 bytes leftover after parsing attributes in process `syz.5.4761'.
[  842.207074][ T5805] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  844.668903][ T5805] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  844.729624][ T5805] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  844.761271][ T5805] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  844.831122][ T5805] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  844.861781][T20949] syzkaller0: entered promiscuous mode
[  844.897538][ T5805] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  844.918222][T20949] syzkaller0: entered allmulticast mode
[  844.987942][ T5805] usb 3-1: config 0 descriptor??
[  845.016715][ T5805] usb 3-1: can't set config #0, error -71
[  845.060622][ T5805] usb 3-1: USB disconnect, device number 7
[  845.864819][T20956] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4766'.
[  847.362048][T20973] loop5: detected capacity change from 0 to 8192
[  848.690721][   T28] audit: type=1326 audit(1773228503.569:466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20971 comm="syz.0.4773" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f932ff9c799 code=0x7ffc0000
[  848.887028][   T28] audit: type=1326 audit(1773228503.569:467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20971 comm="syz.0.4773" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f932ff9c799 code=0x7ffc0000
[  849.058766][   T28] audit: type=1326 audit(1773228503.569:468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20971 comm="syz.0.4773" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f932ff9c799 code=0x7ffc0000
[  849.186222][   T28] audit: type=1326 audit(1773228503.579:469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20971 comm="syz.0.4773" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f932ff9c799 code=0x7ffc0000
[  849.260677][T13683] FAT-fs (loop5): error, invalid access to FAT (entry 0x0000e1b1)
[  849.297414][T13683] FAT-fs (loop5): Filesystem has been set read-only
[  849.310614][   T28] audit: type=1326 audit(1773228503.579:470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20971 comm="syz.0.4773" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f932ff9c799 code=0x7ffc0000
[  849.381982][   T28] audit: type=1326 audit(1773228503.579:471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20971 comm="syz.0.4773" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f932ff9c799 code=0x7ffc0000
[  849.430831][   T28] audit: type=1326 audit(1773228503.579:472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20971 comm="syz.0.4773" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f932ff9c799 code=0x7ffc0000
[  849.477414][   T28] audit: type=1326 audit(1773228503.579:473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20971 comm="syz.0.4773" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f932ff9c799 code=0x7ffc0000
[  849.537352][   T28] audit: type=1326 audit(1773228503.579:474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20971 comm="syz.0.4773" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f932ff9c799 code=0x7ffc0000
[  850.450306][T20996] loop5: detected capacity change from 0 to 40427
[  850.594776][T20996] F2FS-fs (loop5): Invalid SB checksum offset: 0
[  850.602774][T20996] F2FS-fs (loop5): Can't find valid F2FS filesystem in 2th superblock
[  850.757595][T20996] F2FS-fs (loop5): invalid crc value
[  850.862271][T21004] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4779'.
[  850.955796][T20996] F2FS-fs (loop5): Try to recover 2th superblock, ret: 0
[  850.978511][T20996] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  853.198784][T21019] loop2: detected capacity change from 0 to 8192
[  854.934483][   T28] audit: type=1326 audit(1773228509.849:475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21026 comm="syz.6.4786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9861d9c799 code=0x7ffc0000
[  855.094938][   T28] audit: type=1326 audit(1773228509.849:476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21026 comm="syz.6.4786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9861d9c799 code=0x7ffc0000
[  855.128452][T21035] workqueue: Failed to create a rescuer kthread for wq "xfs-inodegc/nullb0": -EINTR
[  855.202096][   T28] audit: type=1326 audit(1773228509.849:477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21026 comm="syz.6.4786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f9861d9c799 code=0x7ffc0000
[  855.287437][   T28] audit: type=1326 audit(1773228509.849:478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21026 comm="syz.6.4786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9861d9c799 code=0x7ffc0000
[  855.339481][   T28] audit: type=1326 audit(1773228509.849:479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21026 comm="syz.6.4786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9861d9c799 code=0x7ffc0000
[  855.423292][T21045] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4788'.
[  855.433552][   T28] audit: type=1326 audit(1773228509.849:480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21026 comm="syz.6.4786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f9861d9c799 code=0x7ffc0000
[  855.510211][   T28] audit: type=1326 audit(1773228509.989:481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21026 comm="syz.6.4786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9861d9c799 code=0x7ffc0000
[  855.567455][   T28] audit: type=1326 audit(1773228509.989:482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21026 comm="syz.6.4786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9861d9c799 code=0x7ffc0000
[  855.744394][T19677] FAT-fs (loop2): error, invalid access to FAT (entry 0x0000e1b1)
[  855.756559][T19677] FAT-fs (loop2): Filesystem has been set read-only
[  857.532116][T21070] loop2: detected capacity change from 0 to 512
[  857.762572][T21070] EXT4-fs error (device loop2): ext4_validate_block_bitmap:439: comm syz.2.4796: bg 0: block 473: padding at end of block bitmap is not set
[  857.913281][T21070] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6651: Corrupt filesystem
[  857.977061][T21070] EXT4-fs (loop2): 1 orphan inode deleted
[  857.996102][T18624] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  858.032229][T21070] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  858.058153][T18624] EXT4-fs error (device loop2): ext4_release_dquot:6985: comm kworker/u4:13: Failed to release dquot type 1
[  858.096416][T21070] ext4 filesystem being mounted at /74/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  858.207779][T21070] EXT4-fs error (device loop2): ext4_lookup:1850: inode #2: comm syz.2.4796: bad inode number: 7
[  858.508805][T19677] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  858.540112][T21079] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4797'.
[  859.739931][T21100] loop6: detected capacity change from 0 to 8
[  859.766252][T18995] Dev loop6: unable to read RDB block 8
[  859.773157][T18995]  loop6: unable to read partition table
[  859.779821][T18995] loop6: partition table beyond EOD, truncated
[  859.800878][T21099] syzkaller0: entered promiscuous mode
[  859.806909][T21099] syzkaller0: entered allmulticast mode
[  860.278279][T21100] Dev loop6: unable to read RDB block 8
[  860.439907][T21100]  loop6: unable to read partition table
[  860.611701][T21100] loop6: partition table beyond EOD, truncated
[  860.637494][T21100] loop_reread_partitions: partition scan of loop6 (ÄNùh*h‘…ÿìžÝ×pਸ਼ "ýo§æ?<í¯ÊºöÙXDˆÚ
bÔÌp0ìO{š¸›>.) failed (rc=-5)
[  861.173405][T21117] loop5: detected capacity change from 0 to 2048
[  861.193722][T21117] EXT4-fs: Ignoring removed i_version option
[  861.224261][T21117] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  861.353709][T21123] loop2: detected capacity change from 0 to 512
[  861.369911][T21123] FAT-fs (loop2): Unrecognized mount option "" or missing value
[  862.074714][T21117] ext4 filesystem being mounted at /519/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  862.108176][T21117] EXT4-fs (loop5): shut down requested (0)
[  862.257545][ T5140] Dev loop6: unable to read RDB block 8
[  862.271829][ T5140]  loop6: unable to read partition table
[  862.302654][ T5140] loop6: partition table beyond EOD, truncated
[  862.509254][T13683] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  863.676719][T21137] loop5: detected capacity change from 0 to 2048
[  863.848317][T21137] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  865.765822][T21161] netlink: 'syz.0.4821': attribute type 1 has an invalid length.
[  865.880982][T21164] netlink: 76 bytes leftover after parsing attributes in process `syz.0.4821'.
[  865.955959][T21161] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4821'.
[  866.094433][T21161] bond1 (unregistering): Released all slaves
[  867.610750][T20748] Bluetooth: hci2: command 0x0406 tx timeout
[  867.728132][T20748] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  867.740770][T20748] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  867.749401][T20748] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  867.760042][T20748] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  867.809704][T20748] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  867.817226][T20748] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  868.048958][T21190] loop5: detected capacity change from 0 to 2048
[  868.473119][T21190] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  868.624994][T21195] loop2: detected capacity change from 0 to 512
[  869.864979][T18378] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  870.041544][T21212] loop6: detected capacity change from 0 to 256
[  870.054461][T18378] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  870.077529][ T5085] Bluetooth: hci0: command tx timeout
[  870.104014][T21185] chnl_net:caif_netlink_parms(): no params data found
[  870.113260][T21212] FAT-fs (loop6): Directory bread(block 64) failed
[  870.137496][ T5804] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  870.164333][T21212] FAT-fs (loop6): Directory bread(block 65) failed
[  870.184937][T21212] FAT-fs (loop6): Directory bread(block 66) failed
[  870.222266][T21212] FAT-fs (loop6): Directory bread(block 67) failed
[  870.242112][T21212] FAT-fs (loop6): Directory bread(block 68) failed
[  870.263975][T21212] FAT-fs (loop6): Directory bread(block 69) failed
[  870.270973][T21212] FAT-fs (loop6): Directory bread(block 70) failed
[  870.278823][T21212] FAT-fs (loop6): Directory bread(block 71) failed
[  870.285641][T21212] FAT-fs (loop6): Directory bread(block 72) failed
[  870.293862][T21212] FAT-fs (loop6): Directory bread(block 73) failed
[  870.332307][ T5804] usb 6-1: Using ep0 maxpacket: 32
[  870.358226][ T5804] usb 6-1: unable to get BOS descriptor or descriptor too short
[  870.381123][T18378] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  870.398517][ T5804] usb 6-1: config 6 has an invalid interface number: 36 but max is 0
[  870.427791][ T5804] usb 6-1: config 6 has no interface number 0
[  870.433969][ T5804] usb 6-1: config 6 interface 36 has no altsetting 0
[  870.457564][ T5804] usb 6-1: New USB device found, idVendor=07fd, idProduct=0004, bcdDevice=98.46
[  870.511232][ T5804] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  870.557418][ T5804] usb 6-1: Product: syz
[  870.561681][ T5804] usb 6-1: Manufacturer: syz
[  870.566330][ T5804] usb 6-1: SerialNumber: syz
[  870.649086][ T1289] ieee802154 phy0 wpan0: encryption failed: -22
[  870.655441][ T1289] ieee802154 phy1 wpan1: encryption failed: -22
[  870.687119][T18378] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  870.734535][T21185] bridge0: port 1(bridge_slave_0) entered blocking state
[  870.742006][T21185] bridge0: port 1(bridge_slave_0) entered disabled state
[  870.749651][T21185] bridge_slave_0: entered allmulticast mode
[  870.757118][T21185] bridge_slave_0: entered promiscuous mode
[  870.768637][T21185] bridge0: port 2(bridge_slave_1) entered blocking state
[  870.776578][T21185] bridge0: port 2(bridge_slave_1) entered disabled state
[  870.794057][T21185] bridge_slave_1: entered allmulticast mode
[  870.804955][T21185] bridge_slave_1: entered promiscuous mode
[  870.872172][ T5804] usb 6-1: USB disconnect, device number 9
[  870.919576][T18995] udevd[18995]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:6.36/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  870.927635][T21185] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  871.056756][T21185] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  871.190541][T21185] team0: Port device team_slave_0 added
[  871.208988][T21185] team0: Port device team_slave_1 added
[  871.475735][T21185] batman_adv: batadv0: Adding interface: batadv_slave_0
[  871.495143][T21185] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  871.535575][T21185] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  871.950343][T21185] batman_adv: batadv0: Adding interface: batadv_slave_1
[  872.060450][T21185] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  872.168834][ T5085] Bluetooth: hci0: command tx timeout
[  872.311137][T21185] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  872.414301][T21185] hsr_slave_0: entered promiscuous mode
[  872.421447][T21185] hsr_slave_1: entered promiscuous mode
[  872.428405][T21185] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  872.436129][T21185] Cannot create hsr debugfs directory
[  874.247772][ T5085] Bluetooth: hci0: command tx timeout
[  874.309355][T18378] hsr_slave_0: left promiscuous mode
[  874.342207][T18378] hsr_slave_1: left promiscuous mode
[  874.360200][T18378] batman_adv: batadv0: Removing interface: batadv_slave_0
[  874.378368][T18378] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  874.417720][T18378] batman_adv: batadv0: Removing interface: batadv_slave_1
[  874.425830][T18378] bridge_slave_1: left allmulticast mode
[  874.445277][T18378] bridge_slave_1: left promiscuous mode
[  874.456764][T18378] bridge0: port 2(bridge_slave_1) entered disabled state
[  874.479537][T18378] bridge_slave_0: left allmulticast mode
[  874.491979][T18378] bridge_slave_0: left promiscuous mode
[  874.509890][T18378] bridge0: port 1(bridge_slave_0) entered disabled state
[  874.604775][T18378] veth1_macvtap: left promiscuous mode
[  874.618328][T18378] veth0_macvtap: left promiscuous mode
[  874.647510][T18378] veth1_vlan: left promiscuous mode
[  874.652884][T18378] veth0_vlan: left promiscuous mode
[  876.327607][ T5085] Bluetooth: hci0: command tx timeout
[  877.487188][T18378] team0 (unregistering): Port device team_slave_1 removed
[  877.570877][T18378] team0 (unregistering): Port device C removed
[  877.646612][T18378] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  877.724453][T18378] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  877.797150][T21262] loop6: detected capacity change from 0 to 40427
[  877.829194][T21262] F2FS-fs (loop6): Found nat_bits in checkpoint
[  878.003769][T21262] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  878.107155][T21263] f2fs_ckpt-7:6: attempt to access beyond end of device
[  878.107155][T21263] loop6: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[  878.171251][T21263] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[  878.183055][T21263] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[  878.542958][T18378] bond0 (unregistering): Released all slaves
[  879.256521][T21185] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  879.325950][T21185] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  879.392125][T21185] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  879.424382][T21185] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  880.657526][T21185] 8021q: adding VLAN 0 to HW filter on device bond0
[  880.735653][T21185] 8021q: adding VLAN 0 to HW filter on device team0
[  881.096965][T18378] bridge0: port 1(bridge_slave_0) entered blocking state
[  881.104216][T18378] bridge0: port 1(bridge_slave_0) entered forwarding state
[  881.497226][T18378] bridge0: port 2(bridge_slave_1) entered blocking state
[  881.504504][T18378] bridge0: port 2(bridge_slave_1) entered forwarding state
[  882.187516][T17403] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  882.467587][T17403] usb 3-1: Using ep0 maxpacket: 32
[  882.561556][T17403] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  882.599300][T17403] usb 3-1: New USB device found, idVendor=084e, idProduct=1001, bcdDevice=bf.99
[  882.615232][T17403] usb 3-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3
[  882.618087][T21185] 8021q: adding VLAN 0 to HW filter on device batadv0
[  882.641386][T17403] usb 3-1: Product: syz
[  882.645425][T21325] loop6: detected capacity change from 0 to 16
[  882.645582][T17403] usb 3-1: SerialNumber: syz
[  882.683053][T21325] erofs: (device loop6): mounted with root inode @ nid 36.
[  882.738256][T17403] usb 3-1: config 0 descriptor??
[  882.804139][T21185] veth0_vlan: entered promiscuous mode
[  882.819142][T21185] veth1_vlan: entered promiscuous mode
[  882.863095][T21185] veth0_macvtap: entered promiscuous mode
[  882.927045][T21185] veth1_macvtap: entered promiscuous mode
[  882.984584][ T5805] usb 3-1: USB disconnect, device number 8
[  882.993861][T21185] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  883.039401][T21185] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  883.049713][T21185] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  883.067300][T21185] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  883.078835][T21185] batman_adv: batadv0: Interface activated: batadv_slave_0
[  883.117806][T21185] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  883.137316][T21185] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  883.146129][T21328] loop6: detected capacity change from 0 to 4096
[  883.158367][T21185] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  883.182578][T21185] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  883.193795][T21185] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  883.205302][T21185] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  883.217201][T21185] batman_adv: batadv0: Interface activated: batadv_slave_1
[  883.241741][T21328] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  883.281808][T21185] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  883.317724][T21185] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  883.326504][T21185] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  883.335806][T21185] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  883.472442][T16880] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  883.521082][T16880] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  883.619671][T16879] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  883.661801][T16879] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  883.690859][T21335] loop2: detected capacity change from 0 to 16
[  883.750987][T21335] erofs: (device loop2): mounted with root inode @ nid 36.
[  883.818488][T21335] erofs: (device loop2): z_erofs_do_map_blocks: invalid logical cluster 0 at nid 36
[  883.858365][T21335] syz.2.4860: attempt to access beyond end of device
[  883.858365][T21335] loop2: rw=0, sector=296, nr_sectors = 8 limit=16
[  883.898169][T21335] erofs: (device loop2): z_erofs_read_folio: read error -117 @ 0 of nid 36
[  883.906923][T21335] erofs: (device loop2): erofs_readdir: fail to readdir of logical block 0 of nid 36
[  884.043245][T19244] EXT4-fs warning (device loop6): ext4_empty_dir:3139: inode #11: lblock 0: comm syz-executor: error -12 reading directory block
[  884.043867][T19244] EXT4-fs warning (device loop6): ext4_empty_dir:3139: inode #11: lblock 0: comm syz-executor: error -12 reading directory block
[  884.045098][T19244] EXT4-fs warning (device loop6): ext4_empty_dir:3139: inode #11: lblock 0: comm syz-executor: error -12 reading directory block
[  884.045565][T19244] EXT4-fs warning (device loop6): ext4_empty_dir:3139: inode #11: lblock 0: comm syz-executor: error -12 reading directory block
[  884.045972][T19244] EXT4-fs warning (device loop6): ext4_empty_dir:3139: inode #11: lblock 0: comm syz-executor: error -12 reading directory block
[  884.046442][T19244] EXT4-fs warning (device loop6): ext4_empty_dir:3139: inode #11: lblock 0: comm syz-executor: error -12 reading directory block
[  884.046875][T19244] EXT4-fs warning (device loop6): ext4_empty_dir:3139: inode #11: lblock 0: comm syz-executor: error -12 reading directory block
[  884.068627][T19244] EXT4-fs warning (device loop6): ext4_empty_dir:3139: inode #11: lblock 0: comm syz-executor: error -12 reading directory block
[  884.069167][T19244] EXT4-fs warning (device loop6): ext4_empty_dir:3139: inode #11: lblock 0: comm syz-executor: error -12 reading directory block
[  884.069623][T19244] EXT4-fs warning (device loop6): ext4_empty_dir:3139: inode #11: lblock 0: comm syz-executor: error -12 reading directory block
[  884.507381][ T5805] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  884.805409][T18647] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  884.880981][ T5805] usb 3-1: Using ep0 maxpacket: 32
[  885.055148][ T5805] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  885.325257][ T5805] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  885.415846][T19244] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  885.446201][ T5805] usb 3-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  885.470144][ T5805] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  885.557680][ T5805] usb 3-1: config 0 descriptor??
[  885.573090][ T5805] hub 3-1:0.0: USB hub found
[  885.662107][T18647] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  886.001185][ T5805] hub 3-1:0.0: 1 port detected
[  886.445397][T18647] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  886.623793][T18647] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  886.759754][ T5804] hub 3-1:0.0: hub_ext_port_status failed (err = -71)
[  886.781762][ T5804] usb 3-1: USB disconnect, device number 9
[  886.968027][ T5805] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  887.174031][ T5805] usb 1-1: Using ep0 maxpacket: 32
[  887.190497][ T5805] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  887.227367][ T5805] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  887.272611][ T5805] usb 1-1: New USB device found, idVendor=084e, idProduct=1001, bcdDevice=bf.99
[  887.292159][ T5805] usb 1-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3
[  887.308215][ T5805] usb 1-1: Product: syz
[  887.322748][ T5805] usb 1-1: SerialNumber: syz
[  887.343822][ T5805] usb 1-1: config 0 descriptor??
[  887.460103][T20748] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  887.502612][T20748] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  887.529159][T21367] loop2: detected capacity change from 0 to 256
[  887.533169][T20748] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  887.579000][T20748] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  887.590204][T21367] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  887.590716][ T5805] usb 1-1: USB disconnect, device number 9
[  887.608489][T20748] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  887.627938][T20748] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  887.651219][T21367] exFAT-fs (loop2): Medium has reported failures. Some data may be lost.
[  887.765504][T21367] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  889.544290][T21368] chnl_net:caif_netlink_parms(): no params data found
[  889.679346][T20748] Bluetooth: hci1: command tx timeout
[  889.693727][T21402] loop2: detected capacity change from 0 to 512
[  889.699463][T21400] syzkaller0: entered promiscuous mode
[  889.706699][T21400] syzkaller0: entered allmulticast mode
[  889.727042][T21407] loop5: detected capacity change from 0 to 512
[  889.738631][T21402] ext3: Unknown parameter 'context'
[  889.798730][T18995] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  889.818889][T21407] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[  889.925679][T21407] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1229: group 0, block bitmap and bg descriptor inconsistent: 48 vs 41 free clusters
[  889.983779][T21407] Quota error (device loop5): write_blk: dquota write failed
[  890.014949][T21407] Quota error (device loop5): find_free_dqentry: Can't write quota data block 5
[  890.044711][T21407] Quota error (device loop5): write_blk: dquota write failed
[  890.075474][T21407] Quota error (device loop5): qtree_write_dquot: Error -28 occurred while creating quota
[  890.090446][T21407] EXT4-fs error (device loop5): ext4_acquire_dquot:6949: comm syz.5.4876: Failed to acquire dquot type 1
[  890.116619][T21368] bridge0: port 1(bridge_slave_0) entered blocking state
[  890.135608][T21368] bridge0: port 1(bridge_slave_0) entered disabled state
[  890.143280][   T43] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  890.152872][T21407] EXT4-fs (loop5): 1 truncate cleaned up
[  890.172806][T21368] bridge_slave_0: entered allmulticast mode
[  890.179228][T21407] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  890.184084][T21368] bridge_slave_0: entered promiscuous mode
[  890.234139][T21407] Quota error (device loop5): write_blk: dquota write failed
[  890.244237][T21407] Quota error (device loop5): qtree_write_dquot: Error -28 occurred while creating quota
[  890.270566][T21407] EXT4-fs error (device loop5): ext4_acquire_dquot:6949: comm syz.5.4876: Failed to acquire dquot type 1
[  890.310979][T21422] overlayfs: failed to resolve './bus': -2
[  890.347473][   T43] usb 3-1: Using ep0 maxpacket: 16
[  890.364824][   T43] usb 3-1: config 1 has an invalid descriptor of length 220, skipping remainder of the config
[  890.378243][   T43] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  890.380824][T13683] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  890.389497][   T43] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  890.410638][T18647] hsr_slave_0: left promiscuous mode
[  890.413930][   T43] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  890.424490][T18647] hsr_slave_1: left promiscuous mode
[  890.428001][   T43] usb 3-1: Product: syz
[  890.435082][T18647] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  890.435905][   T43] usb 3-1: Manufacturer: syz
[  890.444871][T18647] batman_adv: batadv0: Removing interface: batadv_slave_0
[  890.460475][T18647] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  890.460942][   T43] usb 3-1: SerialNumber: syz
[  890.492748][T18647] batman_adv: batadv0: Removing interface: batadv_slave_1
[  890.547018][T18647] bridge_slave_1: left allmulticast mode
[  890.565371][T18647] bridge_slave_1: left promiscuous mode
[  890.574809][T18647] bridge0: port 2(bridge_slave_1) entered disabled state
[  890.595584][T18647] bridge_slave_0: left allmulticast mode
[  890.602665][T18647] bridge_slave_0: left promiscuous mode
[  890.608975][T18647] bridge0: port 1(bridge_slave_0) entered disabled state
[  890.664977][T18647] veth1_macvtap: left promiscuous mode
[  890.670837][T18647] veth0_macvtap: left promiscuous mode
[  890.676576][T18647] veth1_vlan: left promiscuous mode
[  890.684222][T18647] veth0_vlan: left promiscuous mode
[  890.824218][   T43] usb 3-1: 0:2 : does not exist
[  890.839788][   T43] usb 3-1: 5:0: failed to get current value for ch 0 (-22)
[  891.539490][   T43] usb 3-1: USB disconnect, device number 10
[  891.786494][T20748] Bluetooth: hci1: command tx timeout
[  893.839792][T20748] Bluetooth: hci1: command tx timeout
[  894.164751][T18647] team0 (unregistering): Port device team_slave_1 removed
[  894.229929][T18647] team0 (unregistering): Port device team_slave_0 removed
[  894.295845][T18647] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  894.368116][T18647] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  894.870701][T18647] bond0 (unregistering): Released all slaves
[  894.984348][T21368] bridge0: port 2(bridge_slave_1) entered blocking state
[  894.991766][T21368] bridge0: port 2(bridge_slave_1) entered disabled state
[  895.001237][T21368] bridge_slave_1: entered allmulticast mode
[  895.008669][T21368] bridge_slave_1: entered promiscuous mode
[  895.056485][T21457] netlink: 'syz.0.4885': attribute type 1 has an invalid length.
[  895.087894][T21459] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4885'.
[  895.096813][T21459] netlink: 32 bytes leftover after parsing attributes in process `syz.0.4885'.
[  895.142874][T21460] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4885'.
[  895.370391][T21460] team0: Port device team_slave_1 removed
[  895.405464][T21368] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  895.418951][T21368] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  895.460030][T21368] team0: Port device team_slave_0 added
[  895.471830][T21368] team0: Port device team_slave_1 added
[  895.595603][   T43] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  895.870201][   T43] usb 6-1: Using ep0 maxpacket: 32
[  895.914385][T21368] batman_adv: batadv0: Adding interface: batadv_slave_0
[  895.924317][T20748] Bluetooth: hci1: command tx timeout
[  896.003816][   T43] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  896.046864][T21368] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  896.087607][   T43] usb 6-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  896.106201][T21368] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  896.119708][   T43] usb 6-1: New USB device found, idVendor=084e, idProduct=1001, bcdDevice=bf.99
[  896.136690][T21368] batman_adv: batadv0: Adding interface: batadv_slave_1
[  896.144405][   T43] usb 6-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3
[  896.160577][T21368] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  896.193191][T21368] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  896.211321][   T43] usb 6-1: Product: syz
[  896.215543][   T43] usb 6-1: SerialNumber: syz
[  896.273456][   T43] usb 6-1: config 0 descriptor??
[  896.427190][T21368] hsr_slave_0: entered promiscuous mode
[  896.451190][T21368] hsr_slave_1: entered promiscuous mode
[  896.466931][T21368] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  896.497512][T21368] Cannot create hsr debugfs directory
[  896.535059][T19929] usb 6-1: USB disconnect, device number 10
[  896.921623][T21368] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  896.940489][T21368] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  896.966855][T21368] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  896.985675][T21368] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  897.182877][T21368] 8021q: adding VLAN 0 to HW filter on device bond0
[  897.464458][T21368] 8021q: adding VLAN 0 to HW filter on device team0
[  897.544140][T18378] bridge0: port 1(bridge_slave_0) entered blocking state
[  897.551384][T18378] bridge0: port 1(bridge_slave_0) entered forwarding state
[  897.648476][T21498] syzkaller0: entered promiscuous mode
[  897.654146][T21498] syzkaller0: entered allmulticast mode
[  897.682877][T18378] bridge0: port 2(bridge_slave_1) entered blocking state
[  897.690109][T18378] bridge0: port 2(bridge_slave_1) entered forwarding state
[  902.344606][T21514] netlink: 'syz.0.4896': attribute type 1 has an invalid length.
[  902.354263][T21515] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4896'.
[  902.365197][T21515] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4896'.
[  902.383912][T21516] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4896'.
[  902.819609][T21537] loop2: detected capacity change from 0 to 2048
[  902.937513][T21537] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  903.098007][T21368] 8021q: adding VLAN 0 to HW filter on device batadv0
[  903.792519][T21368] veth0_vlan: entered promiscuous mode
[  903.866798][T21368] veth1_vlan: entered promiscuous mode
[  903.964775][T21368] veth0_macvtap: entered promiscuous mode
[  904.051338][T21575] loop5: detected capacity change from 0 to 2048
[  904.055357][T21368] veth1_macvtap: entered promiscuous mode
[  904.059141][T21575] EXT4-fs: Ignoring removed i_version option
[  904.681983][T21575] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  904.737220][T21368] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  904.766391][T21575] ext4 filesystem being mounted at /542/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  904.822390][T21368] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  904.862088][T21368] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  904.907398][T21368] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  904.934129][T21582] loop2: detected capacity change from 0 to 256
[  904.955597][T21368] batman_adv: batadv0: Interface activated: batadv_slave_0
[  904.977511][T21582] exfat: Bad value for 'umask'
[  904.981685][T21368] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  904.994311][T21368] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  905.004303][T21368] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  905.026843][T21368] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  905.036795][T21368] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  905.047502][T21368] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  905.286299][T21368] batman_adv: batadv0: Interface activated: batadv_slave_1
[  905.498680][T21586] overlayfs: workdir and upperdir must be separate subtrees
[  906.164124][T21368] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  906.203921][T21368] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  906.246762][T21368] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  906.284008][T21368] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  906.789802][T13683] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  906.989178][T18626] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  907.042911][T18626] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  907.205585][T18641] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  907.243645][T18641] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  907.977036][T21611] netlink: 'syz.2.4910': attribute type 1 has an invalid length.
[  908.097919][T21614] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4910'.
[  908.106848][T21614] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4910'.
[  908.204731][T21611] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4910'.
[  908.223900][T21611] bond1 (unregistering): Released all slaves
[  908.482981][T21601] loop5: detected capacity change from 0 to 40427
[  908.539863][T21601] F2FS-fs (loop5): Image doesn't support compression
[  908.546620][T21601] F2FS-fs (loop5): Unrecognized mount option "whint_mode=fs-based" or missing value
[  911.513612][T21644] loop2: detected capacity change from 0 to 2048
[  911.555437][T21644] EXT4-fs: Ignoring removed i_version option
[  911.632269][T21644] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  911.688875][T21644] ext4 filesystem being mounted at /111/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  911.777406][   T27] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  911.967392][   T27] usb 6-1: Using ep0 maxpacket: 32
[  912.029119][   T27] usb 6-1: config 9 has an invalid interface number: 221 but max is 1
[  912.067303][   T27] usb 6-1: config 9 has an invalid interface number: 221 but max is 1
[  912.085835][   T27] usb 6-1: config 9 has 1 interface, different from the descriptor's value: 2
[  912.114379][   T27] usb 6-1: config 9 has no interface number 0
[  912.151653][   T27] usb 6-1: config 9 interface 221 altsetting 64 endpoint 0xA has an invalid bInterval 0, changing to 7
[  912.215973][   T27] usb 6-1: config 9 interface 221 altsetting 64 endpoint 0xA has invalid wMaxPacketSize 0
[  912.290125][   T27] usb 6-1: config 9 interface 221 has no altsetting 0
[  912.339265][   T27] usb 6-1: New USB device found, idVendor=0582, idProduct=74ce, bcdDevice=ba.38
[  912.384938][   T27] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  912.417313][   T27] usb 6-1: Product: syz
[  912.434344][   T27] usb 6-1: Manufacturer: syz
[  912.476587][   T27] usb 6-1: SerialNumber: syz
[  912.488006][T19677] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  912.753142][T21646] loop5: detected capacity change from 0 to 1024
[  912.796935][T21646] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[  912.842538][T21646] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  912.898391][T21646] jbd2_journal_init_inode: Cannot locate journal superblock
[  912.925469][T21646] EXT4-fs (loop5): Could not load journal inode
[  912.978686][T18958] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  913.021296][T21677] netlink: 'syz.2.4920': attribute type 1 has an invalid length.
[  913.319990][T21678] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4920'.
[  913.339865][   T27] usb 6-1: USB disconnect, device number 11
[  913.386525][T21678] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4920'.
[  913.428375][T18995] udevd[18995]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:9.221/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  913.461689][T21680] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4920'.
[  913.531207][T21680] bond1 (unregistering): Released all slaves
[  915.403644][T21704] loop5: detected capacity change from 0 to 512
[  915.469910][T21704] EXT4-fs: Ignoring removed nobh option
[  915.564216][T21704] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  915.621777][T21704] ext4 filesystem being mounted at /547/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  915.852727][T13683] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  917.516540][T21730] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4926'.
[  917.527404][T21730] bridge_slave_1: left allmulticast mode
[  917.533150][T21730] bridge_slave_1: left promiscuous mode
[  917.540170][T21730] bridge0: port 2(bridge_slave_1) entered disabled state
[  917.707579][T21730] bridge_slave_0: left allmulticast mode
[  917.713386][T21730] bridge_slave_0: left promiscuous mode
[  917.720050][T21730] bridge0: port 1(bridge_slave_0) entered disabled state
[  918.544399][T21736] loop7: detected capacity change from 0 to 256
[  918.558448][T21736] exfat: Bad value for 'umask'
[  918.625916][T18995] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  918.654623][   T28] audit: type=1326 audit(1773228573.639:483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21724 comm="syz.2.4927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefb7b9c799 code=0x7ffc0000
[  918.720345][   T28] audit: type=1326 audit(1773228573.639:484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21724 comm="syz.2.4927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefb7b9c799 code=0x7ffc0000
[  918.785119][   T28] audit: type=1326 audit(1773228573.639:485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21724 comm="syz.2.4927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fefb7b9c799 code=0x7ffc0000
[  918.907425][   T28] audit: type=1326 audit(1773228573.639:486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21724 comm="syz.2.4927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefb7b9c799 code=0x7ffc0000
[  918.930914][   T28] audit: type=1326 audit(1773228573.639:487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21724 comm="syz.2.4927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefb7b9c799 code=0x7ffc0000
[  919.062450][T21749] loop7: detected capacity change from 0 to 128
[  919.144542][T21749] EXT4-fs (loop7): Test dummy encryption mode enabled
[  919.342967][T21749] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  919.364584][T21749] ext4 filesystem being mounted at /4/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  920.051545][   T28] audit: type=1326 audit(1773228573.639:488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21724 comm="syz.2.4927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fefb7b9c799 code=0x7ffc0000
[  920.223290][   T28] audit: type=1326 audit(1773228573.669:489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21724 comm="syz.2.4927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefb7b9c799 code=0x7ffc0000
[  920.437281][   T28] audit: type=1326 audit(1773228573.669:490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21724 comm="syz.2.4927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefb7b9c799 code=0x7ffc0000
[  920.660814][   T28] audit: type=1326 audit(1773228573.669:491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21724 comm="syz.2.4927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7fefb7b9c799 code=0x7ffc0000
[  921.073181][T21368] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  921.401417][T21759] netlink: 'syz.5.4931': attribute type 1 has an invalid length.
[  921.488927][T21762] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4931'.
[  921.563115][T21759] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4931'.
[  921.625001][T21759] bond3 (unregistering): Released all slaves
[  924.598007][T21804] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  927.082303][   T28] audit: type=1326 audit(1773228581.609:492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21810 comm="syz.7.4941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f105399c799 code=0x7ffc0000
[  927.207038][T21828] workqueue: Failed to create a rescuer kthread for wq "xfs-inodegc/nullb0": -EINTR
[  927.267574][   T28] audit: type=1326 audit(1773228581.609:493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21810 comm="syz.7.4941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f105399c799 code=0x7ffc0000
[  927.304817][   T28] audit: type=1326 audit(1773228581.609:494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21810 comm="syz.7.4941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f105399c799 code=0x7ffc0000
[  927.334148][   T28] audit: type=1326 audit(1773228581.609:495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21810 comm="syz.7.4941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f105399c799 code=0x7ffc0000
[  927.559299][   T28] audit: type=1326 audit(1773228581.609:496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21810 comm="syz.7.4941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f105399c799 code=0x7ffc0000
[  927.704963][   T28] audit: type=1326 audit(1773228581.609:497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21810 comm="syz.7.4941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f105399c799 code=0x7ffc0000
[  928.969578][T21853] xt_TPROXY: Can be used only with -p tcp or -p udp
[  931.387860][    T8] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  931.437041][T21870] loop2: detected capacity change from 0 to 128
[  931.468645][T21870] EXT4-fs (loop2): Test dummy encryption mode enabled
[  931.532546][T21870] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  931.577443][    T8] usb 1-1: Using ep0 maxpacket: 32
[  931.584898][    T8] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0xD has invalid wMaxPacketSize 0
[  931.594875][T21870] ext4 filesystem being mounted at /122/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  931.609168][    T8] usb 1-1: New USB device found, idVendor=084e, idProduct=1001, bcdDevice=bf.99
[  931.627645][    T8] usb 1-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3
[  931.635801][    T8] usb 1-1: Product: syz
[  931.640151][    T8] usb 1-1: SerialNumber: syz
[  931.662167][    T8] usb 1-1: config 0 descriptor??
[  931.862994][T21870] fscrypt: AES-256-XTS using implementation "xts-aes-aesni"
[  931.900286][ T1527] usb 1-1: USB disconnect, device number 10
[  931.921609][   T28] audit: type=1800 audit(1773228586.909:498): pid=21870 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.4953" name="file1" dev="loop2" ino=12 res=0 errno=0
[  932.020887][T19677] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  932.088054][ T1289] ieee802154 phy0 wpan0: encryption failed: -22
[  932.097775][ T1289] ieee802154 phy1 wpan1: encryption failed: -22
[  933.391927][T21905] loop2: detected capacity change from 0 to 2048
[  933.498632][T21905] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  933.574445][T21905] ext4 filesystem being mounted at /124/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  934.411373][T19677] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  938.820287][T21988] loop5: detected capacity change from 0 to 256
[  938.879516][T21970] loop2: detected capacity change from 0 to 40427
[  938.910408][T21988] exFAT-fs (loop5): failed to load upcase table (idx : 0x00011f1c, chksum : 0x850fc7e5, utbl_chksum : 0xe619d30d)
[  938.937829][T21970] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  938.945612][T21970] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  939.061070][T21988] exFAT-fs (loop5): error, exfat_zeroed_cluster: out of range(sect:224 len:8)
[  939.078955][T21970] F2FS-fs (loop2): Found nat_bits in checkpoint
[  939.137005][T21988] exFAT-fs (loop5): Filesystem has been set read-only
[  939.350551][T21970] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  939.387561][T21970] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  943.684734][T22042] loop7: detected capacity change from 0 to 8192
[  944.014720][T22030] loop5: detected capacity change from 0 to 40427
[  944.104154][T22030] F2FS-fs (loop5): Found nat_bits in checkpoint
[  944.260315][T22030] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  944.330002][T22030] F2FS-fs (loop5): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  944.373005][T22030] F2FS-fs (loop5): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  944.691497][T22030] F2FS-fs (loop5): f2fs_new_node_page: inconsistent nat entry, ino:5, nid:5, blkaddr:4608, ver:0, flag:0
[  945.573345][T22087] netlink: 'syz.2.4987': attribute type 1 has an invalid length.
[  945.583878][T21368] FAT-fs (loop7): error, invalid access to FAT (entry 0x0000e1b1)
[  945.597848][T21368] FAT-fs (loop7): Filesystem has been set read-only
[  945.633369][T22087] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4987'.
[  945.643662][T22087] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4987'.
[  945.655732][T22087] bond1 (unregistering): Released all slaves
[  945.817702][   T27] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[  946.087514][   T27] usb 6-1: Using ep0 maxpacket: 32
[  946.353846][   T27] usb 6-1: config 0 has an invalid interface number: 67 but max is 0
[  946.483733][   T27] usb 6-1: config 0 has no interface number 0
[  946.661419][   T27] usb 6-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[  946.691013][   T27] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  946.725699][T22102] syz.7.4986 (22102) used greatest stack depth: 17448 bytes left
[  946.785852][   T27] usb 6-1: Product: syz
[  946.799176][   T27] usb 6-1: Manufacturer: syz
[  947.007325][   T27] usb 6-1: SerialNumber: syz
[  947.014882][   T27] usb 6-1: config 0 descriptor??
[  947.029651][   T27] smsc95xx v2.0.0
[  948.886352][   T27] smsc95xx 6-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -71
[  948.909478][   T27] smsc95xx 6-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  948.932921][   T27] smsc95xx 6-1:0.67 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000014: -71
[  948.967733][   T27] smsc95xx: probe of 6-1:0.67 failed with error -71
[  949.003186][   T27] usb 6-1: USB disconnect, device number 12
[  949.324162][T22136] loop7: detected capacity change from 0 to 8192
[  949.732729][T22146] loop5: detected capacity change from 0 to 256
[  949.760366][T22146] exfat: Bad value for 'umask'
[  949.869882][T18958] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  950.234056][T22152] loop5: detected capacity change from 0 to 128
[  950.363906][T22152] EXT4-fs (loop5): Test dummy encryption mode enabled
[  950.484965][T22152] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  950.499104][T22152] ext4 filesystem being mounted at /562/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  950.833592][T22152] fscrypt: AES-256-CTS-CBC using implementation "cts-cbc-aes-aesni"
[  952.349376][T13683] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  952.669859][T21368] FAT-fs (loop7): error, invalid access to FAT (entry 0x0000e1b1)
[  952.717323][T21368] FAT-fs (loop7): Filesystem has been set read-only
[  953.623534][T22172] loop5: detected capacity change from 0 to 40427
[  953.635061][T22172] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12
[  953.643944][T22172] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  953.656905][T22172] F2FS-fs (loop5): invalid crc value
[  953.676828][T22172] F2FS-fs (loop5): Found nat_bits in checkpoint
[  953.852332][T22172] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  953.867298][T22172] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  954.118923][T22193] loop7: detected capacity change from 0 to 4096
[  954.126265][T22193] EXT4-fs: inline encryption not supported
[  954.132959][T22193] ext4: Unknown parameter 'nouser_xattr'
[  955.964193][T22193] loop7: detected capacity change from 0 to 256
[  955.971961][T22193] exfat: Deprecated parameter 'utf8'
[  955.977508][T22193] exfat: Deprecated parameter 'utf8'
[  956.324458][T22193] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0x71b7c27b, utbl_chksum : 0xe619d30d)
[  960.144061][T22225] loop7: detected capacity change from 0 to 256
[  960.205803][T22227] loop5: detected capacity change from 0 to 512
[  960.252208][T22225] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d)
[  960.296516][T22227] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  960.434023][T22227] ext4 filesystem being mounted at /565/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  960.590248][T13683] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  960.606652][T22235] loop2: detected capacity change from 0 to 2048
[  960.638461][T22237] loop7: detected capacity change from 0 to 256
[  960.652783][T22237] exfat: Bad value for 'umask'
[  960.658231][T22235] EXT4-fs: Ignoring removed i_version option
[  960.864771][T22235] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  960.953145][T22235] ext4 filesystem being mounted at /137/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  961.098653][T22237] loop7: detected capacity change from 0 to 128
[  961.136049][T22237] EXT4-fs (loop7): Test dummy encryption mode enabled
[  961.158843][T22237] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  961.174447][T22237] ext4 filesystem being mounted at /29/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  962.425143][T21368] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  963.302318][T19677] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  964.526970][T22266] loop2: detected capacity change from 0 to 2048
[  964.586976][T22266] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  964.716768][T22264] loop5: detected capacity change from 0 to 8192
[  967.312958][T22284] loop7: detected capacity change from 0 to 256
[  967.323641][T22284] exfat: Deprecated parameter 'namecase'
[  967.398411][T22284] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0x36bd6320, utbl_chksum : 0xe619d30d)
[  967.525177][T13683] FAT-fs (loop5): error, invalid access to FAT (entry 0x0000e1b1)
[  967.571453][T13683] FAT-fs (loop5): Filesystem has been set read-only
[  971.974073][T22321] overlay: Bad value for 'redirect_dir'
[  972.103470][T22299] loop5: detected capacity change from 0 to 40427
[  972.124559][T22299] F2FS-fs (loop5): Wrong CP boundary, start(512) end(1536) blocks(263168)
[  972.143030][T22299] F2FS-fs (loop5): Can't find valid F2FS filesystem in 2th superblock
[  972.189397][T22299] F2FS-fs (loop5): invalid crc value
[  972.238505][T22299] F2FS-fs (loop5): Found nat_bits in checkpoint
[  972.309096][T22324] loop7: detected capacity change from 0 to 8192
[  972.416932][T22299] F2FS-fs (loop5): Start checkpoint disabled!
[  972.429772][T22330] loop2: detected capacity change from 0 to 4096
[  972.449317][T22330] EXT4-fs: inline encryption not supported
[  972.471881][T22299] F2FS-fs (loop5): Try to recover 2th superblock, ret: 0
[  972.516382][T22299] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6
[  972.527835][T22330] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[  972.536092][T22330] System zones: 0-5
[  972.586669][T22330] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  972.728682][   T28] audit: type=1800 audit(1773228627.709:499): pid=22330 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.5037" name="file1" dev="loop2" ino=15 res=0 errno=0
[  972.829646][ T4119] kworker/u4:9: attempt to access beyond end of device
[  972.829646][ T4119] loop5: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  972.885021][ T4119] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  972.920469][ T4119] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  972.953036][T19677] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  973.437585][T19931] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  973.493209][T22341] syzkaller0: entered promiscuous mode
[  973.500800][T22341] syzkaller0: entered allmulticast mode
[  973.563551][T21368] FAT-fs (loop7): error, invalid access to FAT (entry 0x0000e1b1)
[  973.584900][T21368] FAT-fs (loop7): Filesystem has been set read-only
[  973.627719][T19931] usb 3-1: Using ep0 maxpacket: 16
[  973.652068][T19931] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  973.692209][T19931] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  973.746283][T19931] usb 3-1: New USB device found, idVendor=1b96, idProduct=0008, bcdDevice= 0.00
[  973.759131][T22346] loop7: detected capacity change from 0 to 256
[  973.766462][T22346] exfat: Bad value for 'umask'
[  975.211611][T22353] netlink: 40 bytes leftover after parsing attributes in process `syz.0.5043'.
[  975.254894][T22353] binder: Unknown parameter 'rnotcontotcontext'
[  975.511011][T19931] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  975.521568][T19931] usb 3-1: config 0 descriptor??
[  975.615185][T22355] mmap: syz.0.5043 (22355): VmData 164380672 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data.
[  976.740098][T19931] usbhid 3-1:0.0: can't add hid device: -71
[  976.761626][T19931] usbhid: probe of 3-1:0.0 failed with error -71
[  976.829771][T19931] usb 3-1: USB disconnect, device number 11
[  977.193065][T22365] loop2: detected capacity change from 0 to 8192
[  979.432910][T19677] FAT-fs (loop2): error, invalid access to FAT (entry 0x0000e1b1)
[  979.445112][T19677] FAT-fs (loop2): Filesystem has been set read-only
[  979.719807][T22399] loop5: detected capacity change from 0 to 256
[  979.734484][T22399] exfat: Bad value for 'umask'
[  980.815861][T22405] loop5: detected capacity change from 0 to 128
[  980.824063][T22405] EXT4-fs (loop5): Test dummy encryption mode enabled
[  980.870137][T22405] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  980.885616][T22405] ext4 filesystem being mounted at /573/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  981.983851][    T8] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  982.227620][    T8] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 16
[  982.247508][    T8] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 64
[  982.330875][T22419] netlink: 68 bytes leftover after parsing attributes in process `syz.2.5062'.
[  982.924802][    T8] usb 1-1: New USB device found, idVendor=0a46, idProduct=9621, bcdDevice=4f.32
[  982.937360][    T8] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  982.945404][    T8] usb 1-1: Product: syz
[  982.988965][T22417] loop7: detected capacity change from 0 to 8192
[  983.077374][    T8] usb 1-1: Manufacturer: syz
[  983.082043][    T8] usb 1-1: SerialNumber: syz
[  983.101145][    T8] usb 1-1: config 0 descriptor??
[  983.111131][T22407] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  983.150906][T22407] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  983.417514][T19931] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  983.474250][    T8] dm9601: probe of 1-1:0.0 failed with error -71
[  983.496334][    T8] usb 1-1: USB disconnect, device number 11
[  983.623440][T19931] usb 3-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  983.655320][T19931] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  983.676617][T19931] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  983.697258][T19931] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  983.723281][T19931] usb 3-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  983.737538][T19931] usb 3-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  983.756656][T19931] usb 3-1: Manufacturer: syz
[  983.778310][T19931] usb 3-1: config 0 descriptor??
[  983.905536][T21368] FAT-fs (loop7): error, invalid access to FAT (entry 0x0000e1b1)
[  983.913718][T21368] FAT-fs (loop7): Filesystem has been set read-only
[  984.105900][T22428] loop7: detected capacity change from 0 to 512
[  984.133467][T22428] EXT4-fs: Ignoring removed orlov option
[  984.185665][T22428] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  984.229515][T19931] appleir 0003:05AC:8243.0008: unknown main item tag 0x0
[  984.286847][T19931] appleir 0003:05AC:8243.0008: No inputs registered, leaving
[  984.319255][T22428] ext4 filesystem being mounted at /42/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  984.354055][T19931] appleir 0003:05AC:8243.0008: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.2-1/input0
[  984.529893][   T27] usb 3-1: USB disconnect, device number 12
[  984.962450][T13683] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  985.762595][T22443] loop5: detected capacity change from 0 to 256
[  985.801457][T22443] exfat: Bad value for 'umask'
[  986.326493][T22452] loop5: detected capacity change from 0 to 128
[  986.431792][T22452] EXT4-fs (loop5): Test dummy encryption mode enabled
[  986.676220][T22452] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  986.702334][T22452] ext4 filesystem being mounted at /574/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  987.251479][T21368] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  987.976606][T13683] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  988.127103][T22458] loop7: detected capacity change from 0 to 2048
[  988.151645][T22458] EXT4-fs: Ignoring removed i_version option
[  988.263926][T22458] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  988.290196][T22465] loop5: detected capacity change from 0 to 256
[  988.302431][T22458] ext4 filesystem being mounted at /43/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  988.408874][T22465] exFAT-fs (loop5): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x32e3664b, utbl_chksum : 0xe619d30d)
[  989.200465][T21368] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  989.398599][T22474] loop7: detected capacity change from 0 to 512
[  989.420217][T22474] EXT4-fs: Ignoring removed nobh option
[  989.573088][T22474] ------------[ cut here ]------------
[  989.579721][T22474] EA inode 11 i_nlink=1026
[  989.614808][T22474] WARNING: CPU: 0 PID: 22474 at fs/ext4/xattr.c:1059 ext4_xattr_inode_update_ref+0x53c/0x590
[  989.630963][T22474] Modules linked in:
[  989.634902][T22474] CPU: 0 PID: 22474 Comm: syz.7.5077 Not tainted syzkaller #0
[  989.642862][T22474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  989.653556][T22474] RIP: 0010:ext4_xattr_inode_update_ref+0x53c/0x590
[  989.661900][T22474] Code: 8d 7e 50 4c 89 f8 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 ff e8 05 ec 98 ff 49 8b 37 48 c7 c7 60 d5 de 8a 89 da e8 44 77 0a ff <0f> 0b 4c 8b 74 24 08 4c 8b 7c 24 10 e9 ab fe ff ff e8 ce b3 3e 08
[  989.682352][T22474] RSP: 0018:ffffc9000439f1a0 EFLAGS: 00010246
[  989.688979][T22474] RAX: e8d9d03042ae6c00 RBX: 0000000000000402 RCX: 0000000000080000
[  989.697000][T22474] RDX: ffffc9000f769000 RSI: 000000000004156f RDI: 0000000000041570
[  989.705403][T22474] RBP: ffffc9000439f298 R08: ffff8880b8e28c13 R09: 1ffff110171c5182
[  989.713778][T22474] R10: dffffc0000000000 R11: ffffed10171c5183 R12: dffffc0000000000
[  989.722192][T22474] R13: ffff88805c0d54a8 R14: ffff88805c0d52b0 R15: ffff88805c0d5300
[  989.730756][T22474] FS:  00007f10548666c0(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[  989.740359][T22474] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  989.746991][T22474] CR2: 00007f1ea5c55000 CR3: 000000007c3f1000 CR4: 00000000003506f0
[  989.755425][T22474] Call Trace:
[  989.759050][T22474]  <TASK>
[  989.763014][T22474]  ? ext4_xattr_list_entries+0x3d0/0x3d0
[  989.769403][T22474]  ? ext4_xattr_inode_iget+0x3df/0x600
[  989.774901][T22474]  ext4_xattr_set_entry+0xcda/0x1e90
[  989.780596][T22474]  ext4_xattr_ibody_set+0x254/0x6a0
[  989.785866][T22474]  ext4_expand_extra_isize_ea+0x1398/0x1e80
[  989.792259][T22474]  __ext4_expand_extra_isize+0x306/0x400
[  989.798130][T22474]  __ext4_mark_inode_dirty+0x45d/0x6e0
[  989.803650][T22474]  ext4_evict_inode+0x7f3/0xea0
[  989.808664][T22474]  ? _raw_spin_unlock+0x28/0x40
[  989.813569][T22474]  ? ext4_inode_is_fast_symlink+0x390/0x390
[  989.819588][T22474]  ? do_raw_spin_unlock+0x121/0x230
[  989.824837][T22474]  ? ext4_inode_is_fast_symlink+0x390/0x390
[  989.830858][T22474]  evict+0x4ca/0x8d0
[  989.834892][T22474]  ? proc_nr_inodes+0x230/0x230
[  989.839816][T22474]  ? do_raw_spin_unlock+0x121/0x230
[  989.845055][T22474]  ? _raw_spin_unlock+0x28/0x40
[  989.850043][T22474]  ? iput+0x706/0x920
[  989.854076][T22474]  ext4_orphan_cleanup+0xbec/0x1420
[  989.859574][T22474]  ? ext4_orphan_del+0xbf0/0xbf0
[  989.865556][T22474]  ? ext4_register_li_request+0x183/0x940
[  989.871575][T22474]  ? errseq_check_and_advance+0x66/0x120
[  989.877333][T22474]  ext4_fill_super+0x5ed0/0x6790
[  989.882341][T22474]  ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[  989.888695][T22474]  ? __might_sleep+0xe0/0xe0
[  989.893327][T22474]  ? read_lock_is_recursive+0x20/0x20
[  989.898832][T22474]  ? snprintf+0xe9/0x140
[  989.903139][T22474]  ? down_read_killable+0x340/0x340
[  989.908460][T22474]  ? setup_bdev_super+0x56b/0x660
[  989.913534][T22474]  get_tree_bdev+0x3f3/0x520
[  989.918278][T22474]  ? vfs_parse_fs_string+0x170/0x170
[  989.923604][T22474]  ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[  989.929946][T22474]  ? setup_bdev_super+0x660/0x660
[  989.935042][T22474]  ? apparmor_capable+0x137/0x1a0
[  989.940262][T22474]  ? bpf_lsm_capable+0x9/0x10
[  989.944995][T22474]  ? security_capable+0x89/0xb0
[  989.949956][T22474]  vfs_get_tree+0x8c/0x280
[  989.954419][T22474]  do_new_mount+0x24b/0xa40
[  989.959049][T22474]  __se_sys_mount+0x2e7/0x3d0
[  989.963777][T22474]  ? __x64_sys_mount+0xc0/0xc0
[  989.969601][T22474]  ? lockdep_hardirqs_on+0x98/0x150
[  989.974842][T22474]  ? __x64_sys_mount+0x20/0xc0
[  989.979937][T22474]  do_syscall_64+0x55/0xa0
[  989.984439][T22474]  ? clear_bhb_loop+0x40/0x90
[  989.989258][T22474]  ? clear_bhb_loop+0x40/0x90
[  989.994003][T22474]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  990.000007][T22474] RIP: 0033:0x7f105399da0a
[  990.004454][T22474] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  990.024180][T22474] RSP: 002b:00007f1054865e58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  990.032732][T22474] RAX: ffffffffffffffda RBX: 00007f1054865ee0 RCX: 00007f105399da0a
[  990.040824][T22474] RDX: 0000200000000180 RSI: 0000200000000140 RDI: 00007f1054865ea0
[  990.048912][T22474] RBP: 0000200000000180 R08: 00007f1054865ee0 R09: 0000000000800718
[  990.056918][T22474] R10: 0000000000800718 R11: 0000000000000246 R12: 0000200000000140
[  990.065131][T22474] R13: 00007f1054865ea0 R14: 00000000000004a3 R15: 00002000000003c0
[  990.074227][T22474]  </TASK>
[  990.077519][T22474] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  990.084814][T22474] CPU: 0 PID: 22474 Comm: syz.7.5077 Not tainted syzkaller #0
[  990.092292][T22474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  990.102375][T22474] Call Trace:
[  990.105672][T22474]  <TASK>
[  990.108615][T22474]  dump_stack_lvl+0x18c/0x250
[  990.113326][T22474]  ? show_regs_print_info+0x20/0x20
[  990.118553][T22474]  ? load_image+0x400/0x400
[  990.123091][T22474]  panic+0x2dc/0x730
[  990.127012][T22474]  ? bpf_jit_dump+0xd0/0xd0
[  990.131558][T22474]  __warn+0x2e0/0x470
[  990.135587][T22474]  ? ext4_xattr_inode_update_ref+0x53c/0x590
[  990.141608][T22474]  ? ext4_xattr_inode_update_ref+0x53c/0x590
[  990.147620][T22474]  report_bug+0x2be/0x4f0
[  990.151975][T22474]  ? ext4_xattr_inode_update_ref+0x53c/0x590
[  990.157987][T22474]  ? ext4_xattr_inode_update_ref+0x53c/0x590
[  990.164000][T22474]  ? ext4_xattr_inode_update_ref+0x53e/0x590
[  990.170016][T22474]  handle_bug+0xcf/0x120
[  990.174303][T22474]  exc_invalid_op+0x1a/0x50
[  990.178854][T22474]  asm_exc_invalid_op+0x1a/0x20
[  990.183820][T22474] RIP: 0010:ext4_xattr_inode_update_ref+0x53c/0x590
[  990.190452][T22474] Code: 8d 7e 50 4c 89 f8 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 ff e8 05 ec 98 ff 49 8b 37 48 c7 c7 60 d5 de 8a 89 da e8 44 77 0a ff <0f> 0b 4c 8b 74 24 08 4c 8b 7c 24 10 e9 ab fe ff ff e8 ce b3 3e 08
[  990.210087][T22474] RSP: 0018:ffffc9000439f1a0 EFLAGS: 00010246
[  990.216183][T22474] RAX: e8d9d03042ae6c00 RBX: 0000000000000402 RCX: 0000000000080000
[  990.224178][T22474] RDX: ffffc9000f769000 RSI: 000000000004156f RDI: 0000000000041570
[  990.232172][T22474] RBP: ffffc9000439f298 R08: ffff8880b8e28c13 R09: 1ffff110171c5182
[  990.240168][T22474] R10: dffffc0000000000 R11: ffffed10171c5183 R12: dffffc0000000000
[  990.248163][T22474] R13: ffff88805c0d54a8 R14: ffff88805c0d52b0 R15: ffff88805c0d5300
[  990.256183][T22474]  ? ext4_xattr_list_entries+0x3d0/0x3d0
[  990.261862][T22474]  ? ext4_xattr_inode_iget+0x3df/0x600
[  990.267372][T22474]  ext4_xattr_set_entry+0xcda/0x1e90
[  990.272713][T22474]  ext4_xattr_ibody_set+0x254/0x6a0
[  990.277960][T22474]  ext4_expand_extra_isize_ea+0x1398/0x1e80
[  990.283928][T22474]  __ext4_expand_extra_isize+0x306/0x400
[  990.289606][T22474]  __ext4_mark_inode_dirty+0x45d/0x6e0
[  990.295215][T22474]  ext4_evict_inode+0x7f3/0xea0
[  990.300101][T22474]  ? _raw_spin_unlock+0x28/0x40
[  990.304996][T22474]  ? ext4_inode_is_fast_symlink+0x390/0x390
[  990.310921][T22474]  ? do_raw_spin_unlock+0x121/0x230
[  990.316148][T22474]  ? ext4_inode_is_fast_symlink+0x390/0x390
[  990.322083][T22474]  evict+0x4ca/0x8d0
[  990.326016][T22474]  ? proc_nr_inodes+0x230/0x230
[  990.330888][T22474]  ? do_raw_spin_unlock+0x121/0x230
[  990.336108][T22474]  ? _raw_spin_unlock+0x28/0x40
[  990.340976][T22474]  ? iput+0x706/0x920
[  990.344962][T22474]  ext4_orphan_cleanup+0xbec/0x1420
[  990.350183][T22474]  ? ext4_orphan_del+0xbf0/0xbf0
[  990.355119][T22474]  ? ext4_register_li_request+0x183/0x940
[  990.360877][T22474]  ? errseq_check_and_advance+0x66/0x120
[  990.366525][T22474]  ext4_fill_super+0x5ed0/0x6790
[  990.371484][T22474]  ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[  990.377754][T22474]  ? __might_sleep+0xe0/0xe0
[  990.382372][T22474]  ? read_lock_is_recursive+0x20/0x20
[  990.387750][T22474]  ? snprintf+0xe9/0x140
[  990.392003][T22474]  ? down_read_killable+0x340/0x340
[  990.397203][T22474]  ? setup_bdev_super+0x56b/0x660
[  990.402236][T22474]  get_tree_bdev+0x3f3/0x520
[  990.406823][T22474]  ? vfs_parse_fs_string+0x170/0x170
[  990.412130][T22474]  ? ext4_parse_test_dummy_encryption+0xb0/0xb0
[  990.418371][T22474]  ? setup_bdev_super+0x660/0x660
[  990.423386][T22474]  ? apparmor_capable+0x137/0x1a0
[  990.428409][T22474]  ? bpf_lsm_capable+0x9/0x10
[  990.433081][T22474]  ? security_capable+0x89/0xb0
[  990.437932][T22474]  vfs_get_tree+0x8c/0x280
[  990.442350][T22474]  do_new_mount+0x24b/0xa40
[  990.446853][T22474]  __se_sys_mount+0x2e7/0x3d0
[  990.451528][T22474]  ? __x64_sys_mount+0xc0/0xc0
[  990.456291][T22474]  ? lockdep_hardirqs_on+0x98/0x150
[  990.461482][T22474]  ? __x64_sys_mount+0x20/0xc0
[  990.466246][T22474]  do_syscall_64+0x55/0xa0
[  990.470658][T22474]  ? clear_bhb_loop+0x40/0x90
[  990.475330][T22474]  ? clear_bhb_loop+0x40/0x90
[  990.480008][T22474]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  990.485896][T22474] RIP: 0033:0x7f105399da0a
[  990.490310][T22474] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  990.510060][T22474] RSP: 002b:00007f1054865e58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  990.518476][T22474] RAX: ffffffffffffffda RBX: 00007f1054865ee0 RCX: 00007f105399da0a
[  990.526446][T22474] RDX: 0000200000000180 RSI: 0000200000000140 RDI: 00007f1054865ea0
[  990.534413][T22474] RBP: 0000200000000180 R08: 00007f1054865ee0 R09: 0000000000800718
[  990.542379][T22474] R10: 0000000000800718 R11: 0000000000000246 R12: 0000200000000140
[  990.550368][T22474] R13: 00007f1054865ea0 R14: 00000000000004a3 R15: 00002000000003c0
[  990.558365][T22474]  </TASK>
[  990.561719][T22474] Kernel Offset: disabled
[  990.566220][T22474] Rebooting in 86400 seconds..