last executing test programs:

35.55565321s ago: executing program 3 (id=455):
syz_mount_image$jfs(&(0x7f0000000200), &(0x7f00000000c0)='./file1\x00', 0x0, &(0x7f0000000240)={[{@discard}, {@quota}, {@errors_remount}, {@iocharset={'iocharset', 0x3d, 'macturkish'}}, {@errors_remount}, {@quota}, {@iocharset={'iocharset', 0x3d, 'maccroatian'}, 0x0}, {@errors_remount}, {@usrquota}, {@quota}, {@resize_size={'resize', 0x3d, 0xfffffffffffffffe}}, {@errors_continue}, {@resize}, {@discard}], [{@appraise}, {@subj_user={'subj_user', 0x3d, '!\x95'}}, {@subj_role={'subj_role', 0x3d, 'resize'}}]}, 0x1, 0x61ae, &(0x7f0000007640)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000340)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpu.stat\x00', 0x275a, 0x0)
creat(&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1)
creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000005c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
rename(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000f40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='freezer.state\x00', 0x275a, 0x0)
mkdir(&(0x7f0000002bc0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.numa_stat\x00', 0x26e1, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.controllers\x00', 0x275a, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)

35.368835565s ago: executing program 2 (id=456):
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
r2 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r2, 0xc02064b2, &(0x7f0000000100)={0x6, 0x1f, 0x6})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f00000000c0)={0xdb, 0x1ff, 0xb})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000000)={0x9, 0x4, 0x200})
r3 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
r4 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r4, 0xc02064b2, &(0x7f0000000140)={0x5, 0x5, 0x80})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000040)={0x49, 0x7fff, 0x4})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r2, 0xc02064b2, &(0x7f0000000200)={0x10001, 0x401f, 0x3})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000380)={0xff, 0x3, 0xd83f})
close_range(r3, 0xffffffffffffffff, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r2, 0xc02064b2, &(0x7f0000000240)={0x6, 0x12f, 0x2})
close_range(r0, 0xffffffffffffffff, 0x0)

34.274323329s ago: executing program 3 (id=459):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000200)=@framed, &(0x7f0000000180)='GPL\x00'}, 0x90)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, 0x0)
ioctl$vim2m_VIDIOC_REQBUFS(0xffffffffffffffff, 0xc0145608, &(0x7f0000000340))
openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
semop(0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x0, 0x0, 0xffffffff, 0x1, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB], 0x7c}}, 0x0)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(0xffffffffffffffff, 0x4040534e, 0x0)
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0xfffffffffffffd51, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup_int(r1, &(0x7f0000000040)='cpu.max\x00', 0x2, 0x0)
write$cgroup_subtree(r2, &(0x7f0000000080)=ANY=[@ANYRESOCT], 0x8)

22.831822433s ago: executing program 4 (id=485):
r0 = mq_open(&(0x7f0000000080)=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x41, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x2, 0x4, 0x6, 0x505}, 0x48)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000), &(0x7f0000000200), 0xa7c, r1}, 0x38)
r2 = socket$packet(0x11, 0x3, 0x300)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000080)=0x19)
io_setup(0x3, &(0x7f0000000180)=<r4=>0x0)
r5 = syz_open_procfs(0x0, &(0x7f00000001c0)='fd/3\x00')
io_submit(r4, 0x1, &(0x7f0000000800)=[&(0x7f0000000040)={0x0, 0x0, 0x0, 0x5, 0x0, r5, 0x0}])
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000640), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r8=>0x0})
bind$alg(0xffffffffffffffff, &(0x7f0000000200)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_ctr_aes128\x00'}, 0x58)
sendmsg$NL80211_CMD_FRAME(r6, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000100)=ANY=[@ANYBLOB="98030000", @ANYRES16=r7, @ANYBLOB="010028057000fcdbdf253b00000008000300", @ANYRES32=r8, @ANYBLOB="04008e00080057001b0a000004006c000500190107000000080026006c0900005603330080b0c000ffffffffffff080211000001"], 0x398}}, 0x0)
ppoll(&(0x7f0000000040)=[{r0, 0x100}, {r0}], 0x2, 0x0, 0x0, 0x0)

22.383530442s ago: executing program 4 (id=487):
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'sit0\x00', &(0x7f00000002c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x26, 0x4, 0x0, 0x0, 0x98, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast, @remote, {[@timestamp={0x44, 0x1c, 0x0, 0x0, 0x0, [0x401, 0x1000, 0x5, 0x0, 0x0, 0x0]}, @timestamp_prespec={0x44, 0x34, 0xc0, 0x3, 0x0, [{@multicast1}, {@dev, 0x657}, {@broadcast, 0x8000}, {@empty}, {@multicast1, 0xffd200}, {@private, 0x7}]}, @timestamp_prespec={0x44, 0x24, 0x0, 0x3, 0x0, [{@multicast2}, {@private=0xa010101}, {}, {@broadcast}]}, @noop, @noop, @lsrr={0x83, 0xb, 0x0, [@private=0x1000000, @rand_addr]}]}}}}})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
bind$alg(0xffffffffffffffff, &(0x7f00000000c0)={0x26, 'hash\x00', 0x0, 0x0, 'hmac(sha256-neon)\x00'}, 0x58)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000})
ioctl$KVM_NMI(r4, 0xae9a)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

21.318996153s ago: executing program 4 (id=488):
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
sendmsg$802154_raw(r0, 0x0, 0x0)
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0586d, 0x0)
getsockopt$bt_l2cap_L2CAP_CONNINFO(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0)
ioctl$TIOCL_PASTESEL(0xffffffffffffffff, 0x541c, &(0x7f00000003c0))
r1 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, 0x0, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write(r1, &(0x7f00000001c0), 0x0)
r2 = gettid()
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
read(r3, &(0x7f0000000440)=""/247, 0x26)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r3, 0x4040534e, &(0x7f0000000040)={0x1, @time})
tkill(r2, 0x7)
ioctl$SNDRV_SEQ_IOCTL_QUERY_SUBS(r3, 0xc058534f, &(0x7f0000000100))

20.874866111s ago: executing program 4 (id=489):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000900)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd12000000000000850000007d000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f13905ea23c22624c9f87f9793f50bb546000677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64f751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07a72c234664c0af9360a1f7a5e6b607130c89f18c0c1089d8b853289d01aa27ae8b09e00e79ab20b0b8e1148f49faf2ad0000000000000006f23cdcedb5e0125ebbc08dee510cb2364149215108333719acd97cfa107d40224edc5467a932b77e74e802a0d42bc6099ad238af770b5ed8925161729298700000080006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f4ab87b1bfeda7be586602d985430cea0162ab3fcf4591c926abfb076719237c8d0e60b0eea24492a660583eecdbf5bcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c95c25a573dc2edcaea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142ba11de6c5d50b83bae613402216b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0eb97fca585ec6bf58351d564beb6d952aab9c70764b0a8a7583c90b3433b809b5b9fbd48bc873495cbff8a326eea31ae4e0f7505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57000000009700cf0b4b8bc2294133000000000000000000030000000000000000000000000010008bc0d9559711e6e8861c46495ba585a4b2d02edc3e28dd271c896249ed85b980680b00002b435ac15fc0288d9b2a169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffff7f0000100000000000007d5ad897ef3b7cda42013d53046da21b40216e14ba2d6ad5656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff729433282830689da6b53b263339863297771429d120000003341bf4abacac94500fca0493cf29b33dcc9ffffffffffffffd39f6ce0c6ff01589646efd1cf870cd7bb2366fdf870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d10a64c1083d5e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78100788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4ce0232fcea69c271d7fa29822aea68a660e717a04becff0f719197724f4fce1293b62d7e8c7123d8ec571be54c72d978cf906df0042e36acd37d7f9e119f2c06f81531ff0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c7df8be5876050c91301fb897316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c4d75cf2458e3542c9062ece84c99a861887a20639b41c8c12ee06c50804042b3eac1f879b136345cf67ca3fb5aac518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc74aaaf1e3e483b4ad05573af40326993947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457acf37331766e472391e358c3b377327ac9ecc34f24c9ae153ec60ac0694dc55bff9f5f4df90400000000000000d6b2c5ea139376f24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e66964ae09bb6d163118e4cbe024fd4500f8ff0700000000cc9d8046c216c1f895778cb25122a2a998de0842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99b355b72d538ba2f58ea8e4aa37094191e10096e7e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df986741517abf11389b751f4e109b60000000000000000d6d5210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137abf9a404abde7750898b1bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e7a45319f18101288d139bd3da230ed05a8fe64680b0a3fc22dd704e4214de5946912d6c98cd1a9fbe1e7d58c08acaf30235b918a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff854356cb4900000000000000000000000000c1fee30a3f7a85d1b29e58c776f4b4ce07e1c6fa66fcfc7a228805f76785efc0ceb1c8e5729c66418d169fc03aa18854693ad2a182068e1e3a0e2505bc7f41019645466ac96e0d4b3bc19faa5449209b083dbd334b47f067bbab40743b2a428f1da1f68df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c3431ee97471c7868dcda7e478950aa69eb7f7f80572fdd11bb1d0d1280fbc22bf73468788df51710d7d31c632fc5ed1762eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331945e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba891cea599b079b4b4ba686fcdf240430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71f96756ea5cce7daac4be290159f6bcd75f0dda9de5532e71ae9e48b0ed1254a83100000000f6fbb869604d51a36a54c832e45b2569dc0d90b075225fde44c4e0973171ad47d6b70ebc660309e1e245b0fdf9743af932cd6db49a47613808bad959719c0000000000378ac2e24c7e800003c9e8095e02985f28e678f66422436f949e2ab8f162d7e3f855e378f4a1f40b0c6fb2d4b205a800b6d713acebc5b014e61a543a5a194f9ac18d76b5440e3b1a569e7397f6cafa86966d7ba19e720413267a6ccea9c439671d2c680f2753ca184eeeb843450368acb4383a01d25eb3d1e23e0f2645d1cdfa9fa410632f95a5f622f851c66ee7e3030100000000000000c4f93c0984b5c2d4523497e4d64f95f08493564a1df87111c9bffef97dcecc467ace456597685c5870d05f88a0f463db88d377442e1349acaf766218b54a9d624778e1c4cba6e6390a9f302c6eb2df7766411bef0ebb5000000000006065d6735eb7a00e127c0000000000000000000000bfb0bba79344643b1d8daa9f38e4b62c1e2af28c6f5054b078acd74b4a9c944e4505da485a3a4154387a0a88370d9ed9467b09c5888a06431df3f68abf0b366c4d5f8bea7b29c257ed756dff7a21c6b661cbdd43de65afd7f661d5c84f915c90e3d6ea012b68b787eb01d8320000000000000060176dacba0ec503a37fae6b472ec369c79ee6a420c0fd8d8d82fe136d5af6c30bfeb0a7275babfdb96a127aa9386e0671c6454245a18c1c8c49552cff5d27b547cdc34c0858c77a47a98d86ee9fbd9ceda428716a4218821176d8067997527230fa67d26950d3e4f2750fa7c872874ad3a2d11f9f6eb08e6d7b6fa257b04d8ce36360f524e3dfd2211641f3d2637d86b80681eca50ce0eecafdd22d41fa515c15591e70ded4b70efac3cb42fb352d82e8f7573e8ed8248da356fa91a252916d3a4d8c1843a8292f63ffc583f0c597514b89ef9914893553abb76da552fb"], &(0x7f0000000100)='GPL\x00'}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f00000001c0)='kfree\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000c80)='./file1\x00', 0x218050, &(0x7f0000000780), 0xfc, 0x572, &(0x7f0000003780)="$eJzs3d9rW1UcAPDvTdPup66DMdQHGezByVy6tv6YIDgfRYcDfZ+hvSuj6TKadKx14PbgXnyRIYg4EP8A330c/gP+FQMdDBlFH0So3PSmy9qkv5aZbPl84Lbn5N7bc78593t7Tm5CAhhYx7IfhYiXI+KbJOJQy7pi5CuPrW63/PD6VLYksbLy6Z9JJPljze2T/PeBvPJSRPz6VcTJwsZ2a4tLs+VKJZ3P62P1uStjtcWlU5fmyjPpTHp5YnLyzFuTE+++83bXYn39/N/ff3L3wzNfH1/+7uf7h28ncTYO5uta43gCN1orx8r/5qXhOLtuw/EuNNZPkl4fALsylOf5cGTXgEMxlGc98Pz7MiJWgAGVyH8YUM1xQHNu36V58DPjwQerE6BG7COt8RdXXxuJvY250f7l5LGZUTbfHe1C+1kbv/xx53a2xOavQ+zbog6wIzduRsTpYnHj9T/Jr3+7d7rx4vHm1rcxaP9/oJfuZuOfN9qN/wpr459oM/450CZ3d2Pr/C/c70IzHWXjv/fajn/XLl2jQ3nthcaYbzi5eKmSno6IFyPiRAzvyeqb3c85s3xvpdO61vFftmTtN8eC+XHcL+55fJ/pcr0cESNPEnfTg5sRrxTbxZ+s9X/Spv+z5+P8Nts4mt55tdO6reN/ulZ+initbf8/uqOVbH5/cqxxPow1z4qN/rp19LdO7fc6/qz/928e/2jSer+2tvM2ftz7T9pp3W7P/5Hks0a5mQTXyvX6/HjESPLxxscnHu3brDe3z+I/cXzz61+78z+bfH2+zfhvHbnVcdN+6P/pHfX/zgv3Pvrih07tb6//32yUTuSP5Ne/9vJzZbsH+KTPHwAAAAAAAPSTQkQcjKRQWisXCqXS6vs7jsT+QqVaq5+8WF24PB2Nz8qOxnCheaf7UMv7Icbz98M26xPr6pMRcTgivh3a16iXpqqV6V4HDwAAAAAAAAAAAAAAAAAAAH3iQIfP/2d+H+r10QFPXeOLDfb0+iiAXtjyK/+78U1PQF/aMv+B55b8h8El/2FwyX8YXPIfBpf8h8El/2FwyX8AAAAAAAAAAAAAAAAAAAAAAAAAAADoqvPnzmXLyvLD61NZffrq4sJs9eqp6bQ2W5pbmCpNVeevlGaq1ZlKWpqqzm319yrV6pXxiVi4NlZPa/Wx2uLShbnqwuX6hUtz5Zn0Qjr8v0QFAAAAAAAAAAAAAAAAAAAAz5ba4tJsuVJJ5xU6Ft6PvjiMpxngql3tXuyXKBQ6FG7m3buzvXp4UQIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAdf4LAAD//++4Mnc=")
munmap(&(0x7f0000002000/0x1000)=nil, 0x1000)
open(&(0x7f00000000c0)='./file0\x00', 0x81ff, 0x0)
r1 = open(&(0x7f0000000300)='.\x00', 0x0, 0x2)
mkdirat(r1, &(0x7f0000000340)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
mkdirat(r1, &(0x7f0000000440)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00', 0x0)
open(&(0x7f0000000080)='./bus\x00', 0x400141042, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r2 = open(&(0x7f0000000000)='./bus\x00', 0x14113e, 0x0)
write$binfmt_script(r2, &(0x7f0000000080), 0x208e24b)
r3 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
r4 = open(&(0x7f00000003c0)='.\x00', 0x0, 0x0)
renameat2(r3, &(0x7f0000000000)='./file0\x00', r4, &(0x7f00000004c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00', 0x2)

20.612458114s ago: executing program 4 (id=491):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000200)={0x3, &(0x7f0000000000)=[{0x2d}, {0x15}, {0x6}]})
r0 = socket$inet6(0xa, 0x4, 0x80)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20}, 0x1c)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000340)=[@in6={0xa, 0x4e24, 0x6, @loopback, 0x3}, @in={0x2, 0x4e22, @multicast1}, @in={0x2, 0x4e21, @multicast1}, @in={0x2, 0x4e23, @empty}], 0x4c)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x4c, &(0x7f00000002c0)=[@in6={0xa, 0x4e20, 0xffffff9b, @local}, @in={0x2, 0x4e23, @loopback}, @in={0x2, 0x4e24, @multicast1}, @in={0x2, 0x4e23, @private=0xa010100}]}, &(0x7f0000000240)=0x10)
bind$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @local}, 0x1c)
r3 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r3, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={<r4=>0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r1, 0x84, 0x7c, &(0x7f0000000100)={r4}, &(0x7f0000000140)=0x8)
listen(r0, 0x80080400)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.2MB.rsvd.usage_in_bytes\x00', 0x275a, 0x0)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="043e0d05"], 0x10)

19.03093434s ago: executing program 4 (id=495):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
sendmsg$DEVLINK_CMD_GET(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000080), 0xc, 0x0}, 0x0)
setsockopt$inet_mreqsrc(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000040)={@local, @dev={0xac, 0x14, 0x14, 0xb}, @local}, 0x9)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$binfmt_misc(r2, &(0x7f0000000200)=ANY=[@ANYBLOB="4f00030007"], 0xd)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000300)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7ffffdc0}]})
faccessat2(0xffffffffffffffff, 0x0, 0x0, 0x0)
bind$bt_hci(r2, &(0x7f00000000c0)={0x1f, 0xffffffffffffffff, 0x4}, 0x6)
write$binfmt_misc(0xffffffffffffffff, 0x0, 0x4)
socket$nl_xfrm(0x10, 0x3, 0x6)
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000040)='./file0\x00', 0x300001a, &(0x7f0000000b80)=ANY=[@ANYBLOB="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", @ANYRES32=0x0], 0xfc, 0x2b5, &(0x7f00000001c0)="$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")
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
msgsnd(0x0, &(0x7f0000000f40)=ANY=[@ANYRESOCT=r1, @ANYRESOCT=0x0, @ANYRESDEC, @ANYRES64, @ANYRES16, @ANYRESOCT=0x0, @ANYRESHEX, @ANYRESDEC, @ANYRESHEX, @ANYRES64], 0x401, 0x800)

14.596589721s ago: executing program 0 (id=505):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000327000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f326635004000000f300f20e06635800000000f22e0f30fa6c8", 0x50}], 0x1, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f00000005c0)={0x1, 0x0, [{0x80000008, 0x0, 0x5, 0x0, 0x101}]})
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x28, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8, 0x6, 0x0, 0x0, 0x9}]}]}, 0x28}}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
syz_fuse_handle_req(0xffffffffffffffff, &(0x7f00000021c0)="d56cea33946c0eae3241d3604bfce89adddb2eb96960338db7572fa254eb7c69dc0cb526989630e26224c258c8d70ccacc5564d67723f4756c0399174c5460c4995942d24092c36dc820e97344798b5bb45423f853bf50e374323abacf0388cd091016b7a3d7843f4d3ae1658bd34d967e3323a64908442788dbc99c1f4248da53fb5be2c8001236b994ca594e3b3c588beaf3cb1c32c072d768b9e665e7d87044fdfc1fd6452593e6793963153f3850bf85042a5c139799ba8f6cb8d877fc436c4f1601270d6e29d60a4c80d6315e46f4219494ce897127d0b76f5d681e90f4e9282468ef7993cd92076aed266c1db8b81b93adc4969c9b89b32b8768c9f39f2d148e933dbb651746a9364f49986ef73b4c29f647b82b83216bb8179fe5346fdacdc5fda4bd48875cd2f1d657a0c9a91e059446bac310a6d68948675c35a8e442168fd84d78d9800e5b05bdbce3a6eac65bee7279a3628f2a08931d3d52ce490652c20f8ae529eaf24bf421dad976c68b234ee6f6210c9f9aac3a55c6939d6aa3805b95619546264ff3ff82d0dc690e8ead61b6ed528c3c117cd771a3b7feb214ce8d720640d97f14b399b7f46dc4aad83117e8e642ccb117d13f345536fc3801c124cfaf8aa7aafff6c8df3fdd4469c077eccbd8ddacad80d9113dfde26ae67b226185743b2d53667fb3016fe114f87484ab614ddf0887c4b2c85351ab21a0ece6c066a154b38b4d7c1792d2db2cc5f8ceb42078187949d354b7a08d1529f3d10814757179c860db031dad4a3dc13ca01d1013238ed5f7a9674fcc77f0d34e2118fb851c970d86ecf9de1cfdb8d3ab197480e263c3207c3d7ebe17f9547c7c56b08e83de875294d0fd68df1926ecac24350b2c70bd73e14122ed480c564353d34049e67c26036fc35d04022cd35d6ac00756d3b8550bb22ae80a4bd630a00268d07fa249b0bf545dfbf01bea2f12b30738c6e13156244eb24e6d69ba7c3acdbbefe8bbc06b821aebf836ca07a3cc7b6b24686ed8f3b23085c893e72188b797651c5ab5cceb1465414a325f793a3af6d06eed7eb734ad05bc1f6619e8485259f570a482a67273ee01fe15dd938afce026f1111c7a38ed6d1aba34f009ce1e99140fd0db2de74150541fd48dd2ec5b1d15669de2ffe3a198184b6186ccda31aa64c585ff8cb65b67fe1455753895a88b6ab4c6bf1bb8329739178147e6f15801bfa707bd9ec9da662573ce07af684bb7c880a7d63b0a0a7300881408c44e95c679ea32b0eab845d0b333f245e8d6006258678704aa8cccdaf80cc46138d5b7a0804fdfa34c91d61a0d2fa6c62e7d1a675e5743f845ab40ea5df0182d6eb9781905c94751c75a411699a76f48433142c5f109d5dfddcc0b1dc6254efd5ea50d6ffbc7b9ca031e1a0123844b63c48b964645c6d24707582825e219bcd61677ed4fc45ee1f4be91b4c1b856d65a86acf22b8b0d588bc473248ac040326b1490c2fea24bc0c0a721e2ed63e39973cd4d38df1001dba9b9d995c229655dd26f3cd3d64077ec111e2c370717cb4cd068e0d3a52f1027d3df953e1f1ac768a7215a3695722b1b6714ce43801451a9532212b651d073c780d61712aebadd145c1cd95c1dc0dcf51850046ae5771e365f45858a36e48afe563ec0afee3803ff6a35bc25217b53eda39bb813b8d3d728c21a0b80d014003143666c0d1398cc46a01aaaf97117edda217f984010e7c5cf32535a669d4f11f6b70e3a3b823987ef7c9f878415063bf05205e13bcf7acb287bd0bb0fce77529a711f0ed145ea2ecf2194658dff17c5681cf8c7ad8521d235a705292af4878b3f124be2df661026c091d6c07aae1a74c919f7478d1083f70b3a0fe00c2e220ab998b4595268b6f7cabbfc85e59dfb6ab7a794cd3fd70d5cc4d70ca933a4452df5a345cb31f3267de53519ba39c915d492cd4652843f1d30a5fb311e3b5d868347969f013c5e3b4841b22240abcb61a14ff567186766ce8f6ae64877f672835dbff4fcf19c8230d8a402397630effb698a8b0c9a28ae028d7938ffde488fd64113085bce504cd0551e0eb3730c3f781cbecf0c41d2338766d3f6096661c1f1bec3162b8a0c4099fccd9480e821df8782c2e070530befb62bccd8539fe9dc7d8d3f9bded1bb34db3f2d6050885c8f1d57f5e603f629de7491f5fd9fafcceb565abeaec838b10a763a00a4607d4330bdcedc066d8cf9790d806e03c219866bb8f053a6e602645436d1f469df1d5008f5dcd4bdb7ce5b76ec015a8f4693cb2a63ceb2be00bcf221f0ca32db4efaf8f7022622b335fa8dea4afdd86be10be6c4d66e5f57416add4480509cb98cf31cdda84644eeb782eea041d4bc0e005a20bccc3c4a08cefcdb91cc2c61d9231c4e36e96f6edd2133f9b34e7da90ce20d1c60ff223c6a204bb942766a359b923573bbbaf2a827d79e4f649e79a840216ac4ddb3409c94e71ff08d109bc3f0cf6583219de7d7131a956f835ecf5c131a0b1e056a86d800a0204243f3b695029578c064306a31db53f28a8f0c0302486cd05970904e9b5c53100ac1aabb3110a89820e4d8307c3d46084999d0456c53fec61a9242b486eb41a90f3300fdfd0d8a472e8da7a842588721d1df1f5e4cc425efebc75a904ef4cc881346a4bc23eef4d492e3efccebab86ae4213f42671370579ee7f8341396e9515619e100a8fae2c5cba0139a088579ece7a603c8b8bab9998223fe862dff8480aeaa5970c90b894e5f71c2784e4dfd50ed3e9ed91036e8356c09464de13b4a95227203133b2c2c71cd6323492f083bda58ad7721b6666b9cd93f93f0288482813fd8aade02cca81cd35257e023504ac4f86be1c7a810b67c6d7077f5cdbd305b618a05c03d196894bfb1a6ff511e59ac8ce45d16cee95e1de0797a543728caaa43e5ae42a12b6bb7910d18d4e1ea89d264491287eb23a76095a12a39c46a7c85349e2969edaed3c1fa6a2150494f63f4c98c65fcdd650ac7424ac1ae64421294356ac1e4dbf9d4c817f081f4f7751ebf56788d799bac29dc0bfe83ead7ab3e338b8b84df4cad2b549aaac4e6048a6fa8f8f6f1f7e0e51c8b3c872f18c466e590222b03230f46bc8e9a0171bbd2096c7a480d6a6f29bd74b60105bebda42e59cc830c4b31f6c52687b4ec2ba869149ae363d711d099f94ceade1ada193e931ed9aea0a280ed5f25ad5ab3b4083f140ca17b43e5f6aef2c24a28a0262c80a040187e052ea7d54a528b6fcc176ed3afc07fe6a661d050fb4a3a6abfa3dac5f3230540b45af060781cb5499c2894d6a4a2bf908ddd48d6b34207f56c31229e206c88db3552ceb6e82a0fa2bf7f97baf603d37d6a8b1f2b1f5f95b251129ed05351681908b7cf5cf6cc86dd854174cc19713b4d262b021952b6da5f20f57bbacca62f5b7124409aa625bbea59819baebc1bc2dd188feba48c998d0dbed60d44b8a4f0ac28f6c1c8c9998f7406f1a34e4ce902be2420f7ff51a5ab3b1faa86ab2ec1edbea2493cae090abde43ff27d685c993dedb24eb255772cc56fbd104f4f5275f10d54d7cacb8cbf188ae1a4d29ea880068fb2696b3ba6e8a7c15939e1f7c394ab4bd4c4bef2383121cbeb18646a8e013d570cee3eeecd7fbe84a619f8aa2e34f2e1e9b99d0c7d7d179d9df8d2e2f1cd7ba2c7e60166dc14e5e4ed9c41195935e2884b5bd0057ed0155a5d4c6482e8f554e4cd0d0aef7d6487801ab54d54eb41755d833ab83883b40f47595063ad2a0fee5c661f86b8ab04ad0047d988ad86b3c520eb78dc3d750a57e777f5d766349f1a687e090f744206cb5d048346061b414060f6826d8a884e93f73f1f1f4cb8bd6e8d1215d436d390dbda35b555f550e11e6d8008fce1c429bd9bbd04a1fbb9de28663c1be4d8d7e506bc681ada28a69014b972919b5f70cbb770349324c9af0b7ee7ff4cc8bfe807fb9faa0a69498448b22192d578a1e82582b943051beb543ddca8b643ee6c76ee32278aa8bc92b44a8439a24ed5040545349ab05e831d4511a8da03ca539659585b2267a73775f1cb7c2c5548d3508c896f99a8e5cb55160ab1267e320ac2d7c8f8b57079dd14d301636a1374e24541f8d453978998ed256b381bcf638bb372ce1ebefb341656c02f4092a7667ffec5505e4938dcb03d404654430e244f9f7f7d0fb4189a93f7c2bd7a4fcb3ccff79e41a98adcac3e4c19eebebaec15bd8cea1df0e509cdef62ae10c66734d162caf35a6e511baa717f769c2e449892224fa8ae78de9138cf6ea1df604e03b99634796d3d495e4617f8fdd9764631e7ed6eafa797deb1159259777bf2915d48b63286f6d6528ad4ca5783609263d9a03aad41ec8ef1e2e1e77734d27229f801192be238468854945c20dab4e1baff9dd593361efda1de95e04561d33cd73a45dff5f85b2e85b0747a49345ac8d38add8ef9c14685eb3d3432f3f994e3ddd4e45b16005870485253afc4f08d8a6d8023b722284d11d56c6ff9209a5bacb7ce1708244bd21878b8cd5c13ab453bd589f6196322de9faede39ce6f94c75d008d2d7ced27a2375cc62c3d5c15c1c4301a01299d8f4c41e5a44e4130e9555a356d6b19728c7d3c86cb9a1ddf906ab63a9447f8233bcd09bd74cf9749f085f0c4689ef40dbc41a7a299f0f891d9d0d3e39409d4d774da53bfb6e8ce668ce50885558e909add2cb9bda2f7e9232541b1a7f742a99740f486ef4f7c98e4052f2da705c56a18d5a8289ae6cbb9dc7de13a8cf420b7a930abaae813b40517d84ae984dfc94cd1021e0e4a7a9e7de841018d474083ca28a829ee03fe625cafcbedadcdef6621ccd679fcd9c9a9ab2136211f8c9a679895aa39facf2d6668e5098b3dd8e0ad78d8caf250dc38f2c9518bccb353ef3418d3906827514c1959d58344ee11a0ef1c1424495cc1a9910187685a47d6dd91f07e5081c5ac3f1b6e363069694dd9072684c5ab0ba56157c10f5fa8409e5bc43b38b31306ca5f7e3de9a392eac1984e877ecb3dfd044f1449b4ae9b586051b1780c0ce462919f4a4b54ad8011d013c3962fc6697d33c2dc6771fec664c82cb16144619b207deb4391866d6c1976b945c5959d19018f15376ce3b05666747743527f22b54171da4dabee2f4e469a5521067de4f92e2bad02e15e812b6cbd27ec88a9eccf600ce7f5643392da9ff6b6412f8e7c68d8c8b9e0006e41777e2a1363a9556befbbb110dff3a84b179da3838acde0b25f53798733a9fb463d76b630aef7c8a43f6219482b34b893fd99cf3a013ecefde7c5c6528e304c1868ff3fd8dd5aba348a05dc950b1c4c281cbb28b800d6d0da180fdee06ec3bad6f97180295ed1d77078156a885b5b0c501ea563e8871adb97dd6052de0ab369bf2d98f434bb2d172d9967bb73d3eba6b52bb8d55d8963bf58d310afedb51c0f94c7814b6da30fd8056ab7be74ac31b1b75c217e3ab93eadcb2d253e5d8bbe47c0f1a411a9e502cf4301d898d905cd5db828e56a722394fa11cca64a03a42e7fc1b3481b71ca0b6a3d9bd1fc8229f7f9d3e6aa0d48051942579fb759201d4715db9a2d399e0745a66dbbd571accf1f2e15573ce832e91bd1f042ab758d9ec13e354f38454cc42668c8d60358916f7e937015f6c38732bcf6131ecde001892cb20fe47153e7e23b1cd2fc4a22662e7bde09f7df10fcbf475783fe23a0fdcb2c3bd8b28453ce523ac19ff77e68c3e9fa0193b796ea68f44132b3a96adebc04181e503f52be4778ef422ce3e6ca38514fa18b500ca518590479e8c73a7942dc2e237d82cda953ae1b296b97ee8ed62e2e755d6ddea7c0334e1b8d76c278bdc454724003106cb6fdc85340d1e784ac8b6551eaabc33c502163ce0d401627bd22ba6be90089372bfa3f91ee745e45844ef8dc0fe3936bef07f9c1d3aadfa4c8e99be6b038bed6beb9597add881da2acc1a3a471f500d68f639cd2bf6f4afab919a2cf747bcbb42b95684e8741b485c3297cf07c7bd98d6653421b61f701a06b82be0fbeecd32eb00feca9c5732bb5e565bccf8c9feb27a50760a785bbb50402768cbd458811e284a604b3374faf3480e1736743665617de9c32fd10e37105ac6dd5303f1a6dc78950bce56215c2a2f9e0ccbc0bf9fe8ccf7647ed29e2aa4948689d681a7a9fe582631338f3eea3df846f28564038ab75aa2a8ee5416b66ceeda9d8f56ecefe07f6a21ace83a2e15ad408d0a480f56708e3d1c96020b124c58f6ff5247f73aff7f77d389167650b8a0b98c97f87a1e5d6c08fa99874ff144bfa905e9da3812f010eeee00f3c9b594450faab5342e1b6e98fed5714a802b67b3e5b1964a62606aacb8222efd4980823f076675ae859e64de7b08f7a0b3d8bc829e1a93eb3b4975b4761cd7fa743e393da537c91f658ea2b23c94244498cdc4bc32c8b9859b9d9792eeabdce635b2d61c311949204826054dba0880505e2b53cc3521fa8b68bbba2ec05050bd3244c02752af1555625ddf50a3656c0043005c43c26a2dc907d5dd67efa831ad974151067b436a75fe99b8c94c9ca9737279fa1aaa09b0108c48c79c7e4ec1eeccfd43aa8e7ab6cacf5a956fc47d4ce77fe719d6eec1730d3e3b3be71d313f644177b6d16df0180848c28b850fbf71168a1ee4e5639bc46f2555b3984dbb91520538dfa6a1905abfb7238ff344d0a7d760f040718a57cfb56634e7de7584097f69f87630693bcf410796266cc3f50302feacfb556bad2506b7191023817527dfe5973101712bda922472076633133a11a76e8bc7d763a2cdaa53fa8d47d442fcc572f791d66d10d8d6a9058ecbbcd6d3dbe45d67b75e1091dd0368bea33ef0f56ba68885630429c24800922062e1066f2d4c4b795332ab03239548df4e6e01c432fe5eb29e8e63f6c7ba4f2edefa208c69e781786e4717c2f71dc2032a98cf1e6d66c10831e17ee776edc6b060ae20d025dc570a88e17da771acd32b7b93d46e43a917b8e2ba8232ad2707324b9b04dd8ee50c3c5a4372c0b1461ab2b7424faf00c7162bd8e8ffc7fadcb055403b0fa7087226ba4330e746af97a3f915f0b9e105759e81fe94a0df0cd6c324fb0b871491b5516c2fbc82c77b07159e3f4c0b7952b74cb4e203a69f241485191e1afc76d12a56db065b0513a41582f655340603c73cb39b728c97d1e919ecf963b91ec2282d25dc426db873394055beb0f9ba20545e2465ce2d0d962f42e1e4c79bdea4cd2829269ff7ef650bbeb5083d39dc7aad668af0b01c521192c548857473b29991f7bb917b5814fe945f4c3ed9bbe0563f4004b391b76860e9fd6b7c0baae82e4ac033f62a2c6ce6a2311b8700b06b5215e604a9b99d37e00450fc7790e893176e9fecda220f838a078a8ef7da7d499b1fe0eb8780c4b9705a6a10674e61b5c228fae1c13488f98c10c1792fa40229dba44b1cb534f9fab6a14407687761d738c91f4b8d4371a1de1a47bde0563a6fc88c4886be5d48c4cb89078c255eb1639598379daf50a672cbf4d8add2d4af6c02aeb1d0f86b611abd363409c7c7fc0b66f307ad3df24241fe06d0f7617d6c3987bb9e5d8f1712aebf095fad19b3b4fcb9cc4fb39012f333c4b040666259ee7bc43cff299a527a8914d71324e91c774b84e9392e615453e9fc648c539059b66f780c888892fe8b30eba799ed18fab08ebc3b9da8bc12a249456351bc0ebafc9f54d5d24697fb53eeb5e734527d690620989f605f57dc65a15a754d304be592acc616cd528b6986064b4457b96cf1fb0ab383a0585acf9887b18e1d6d3aff1e7f2328ea0313a2b36f6f79d671d9ddc4d34fb8fb55a596b2a16c63757083fb4bd01be2e1d82e47c5a44e052279097c5a18feae9884e102cf087611a3b94467ad61635dae6275974f6e6ca7a42ded0ee4577574d56b142853a8c955d92d1eb780de11dc9289acd193214ed4c9f5f26d0481cb3c0c0b8d4c9ad929c61ffeed66bf2e4f7018049593b99358d93559847d55654cee93da30f6578d2e295909791d227a12c09cd4a0edec25d3155086b64a787997a53265cbffb7fe6a2bfd589e12b4d0e21a600276e920397888443584aa99a06d7cfef8e68eeab8fa739c3d8fb74581ceff295110742e763320bed3a4be982b3ebed15ecde37e849aaa91959327d25149f38854ea1137f870aff99979e5e74cc9e45be12e3f0f9912a0955e718a4917e835bca50f43ce92a6bc60ed006b8f623fbacebbfb3dcb4fabd9941a5487c6f637de9a2005a6bc4062e1210a08a51d6f8a5e3f6f97fe90dc7e2e21d4d2f038c0fbc1918aa00e230a4a0e5c41a4808fb9a731271fcc1e73713c9592aa4b2ddccd0d13c3cb68d51166623153445c9ec955c6870dc8543c0684883186082e34ea5714febf8b46921015c3623220d17529896e1a6edac6e32fea2ba30db203238300353602c17dddad7608cad8170b520f6d9d32cdf0156a1de4e9b9eea78f73255ddc6da6994a6018ff900d9886590602ca6a072d8aa5645e2adac0744e2d5b2e1038c746635d5814692c3498aa9043b68f8ce79c44678c5a7d5bc26c085475853b229b2af3dc822ec58047f313c778aae2b64995148174e42908f3ecacd3921855790c0c5a25814416930293010b4f917979d837f4ef9d2d6dce804f5c0926244097746252124a6e0055559ffab197c38778f717362152af8f6dbf7ee03df050ab9b8909556691c2c2775f0f9c26a545db7ba698a4ce37de877705ea97ac0a002db274ea8360a4aa732c2d5e7417138c60cbea69d3b4993ada6a9d8f51d851543a6500a31bac5a057dbef498001f08a44e3c4141900e18b6d73c28c8c67dca805edeb5376384cefe75be1f127225e4d9724b7047d68fa2ed4629e91711a37c80158a07dbce78918931402b472a98a5d5c6b66a2d116314577e94298c37bc441499a9ecea132d87c5d305a0f8f0b3ed16f3b820941082c73b28391d8482ca0cfa78e1e09aa588b0eb1849c6c7916a6bbe56134a6bd93ea306dec125982628dea1db6d022d210627959e1dc819c841f173ed25f356909222e481a1ebb31185fbaeacbd359d2779efe4554ccdac7f4bcc528f656a45049331e16e9c0c796423ec9c7cba15c69d4a8a7741699910f33cc9798a8bf1e48182f08029a14d0131654fd388225d7509e1d7a484e9c7df34d1680bfc6b8d1f6f3920cc4113509fe42dfbd6b261000da9651f7e18088f6c2564472046e5eb7e8c9f8b5286a7452741a7103ced710bfb8e699fb8b1a85c0ae887cc06ef2ff9e2a2b1a77bb4d44ddd4a4e1ba60afcb92baaef108b6048cc77ddff7e4b6caf8cf3488764d84bf3605eb9df709ac6cb36d1a3de89cdd6657f0e6b4009e6dac5d9be14f4ed997cf61e5aaec932520c321359cf286adf6e2dc3094794ae61a4f16089d06e3dc62c958950e73213c1e865c894fe7b8a30de65f5534a1e9c5d19ed49397980126322cb9c72c46a86d7487571300d85b3b5661555f20ab63a78f846c1b8f51a19610a11ffee44f7ccf0f1d67f4148b2c828d74c7f3993965c9067114467a71d242113a68574e28601fce343a023ecc68a72d75259f9a5dce144a7f61ef327192f6474d2bbd06fde3049fe7fb306ba3f54337008d7dbdeaf28a37a224e38ade23adb076cefd3148efcb62539a96d4dfc53f369e34c3d493ac3a5e8c8881133be630a2a906703da62ce7cc02ace9f666d6c3d4b9763a83548825ee1efb54ee3475b09e2616c5bdde3d193181bf020e8ac9ac25f32604b6c11de8ad1a15b9f908c6d7e79181aad1d741b7434aa92597a835c53b9e4b61d6069fa4ee921824d17c98784a8c04590f8d2cf877662b410cae4ebd1ba3616074c020d8cb6099a095735635490d318821310ddd016150edb80370b8d4e2f05557fd619b17192c13353cdae76d495821c610c8641e5b3dff1e7f2ea77b17810ca7975b8e36b7f501a8710b326ef92672096ef66598510902fe663e2a9ef00c3a052f1cfb1739fccb4371f8f28bb92654de5bf87cc2863e92e6d7e4b45d773f90f434eafc8f8398a48527af829a6cae359e7af5941bef158f53798058351107ce58f79ed21036770f6e10e7da92bbca25f369ee83a0f894bbf366a1361f8125b4ffd8e8b4d47ec68cd6b37c840cc5beb8cf65b2269ea1a0e9c371a571f30458ff8ad9bbf8723c19ddae1de5ca7461a436ffcd103c01a20f3252ba0965ee928cfb0d002b9aa4d4f20c805b77e67c8d991c4d07e5419bec9626a32c115d28253dd5f16c17182c1779edf49bdfe3823d87fec88929801163a27bfaeddfd8cdccae8cc3bfd6a9f2e2fec5971fa560c434debd434ff4d0058dcb05d9f3ac5193c458472d6d1685f9f46c8864900c5edbaeeee08971ee1c087f2e11467ff4766743bccf9e3414feedd6dcb904b92a05eec5de8db95444b920c995c770edcedcf7bffc48836c8f30037dde47f0e66fd79550de0ebc3c0c3eba0b66e2a353542eeb20397800e5f41635c5ec2f9a271461bcee8e570ddf945b186f15ab5cabe2a3123189935c6b9010b31732c425a9b2582b097486a5a7b1880b2f161044807c4c25c6efc428a7e30e4b0cf6ed66c87a979c05683ac94a295d1c53e6f0975a079dd9a2825fdd6ae0926ba1a69f3f69f408eea9d00fbd43235a52c53d11963a611b81dd9f5e05582e1822398873e883662a64c225be19e0b85e102e23fb73d5dcb11435a5437d7418b0409f2e60793038f55ed54c79882b3a17e74ae2148bd558d131dbf446edeb0d05353492534e216761cfcf6582d066a8235a2bd5eb383350a52d7fc2761514e27b6125cb3e387c103dd62e31f5b789c217811c80ccbe3f10fec7a19ad32dc9271368b6d6ba549c45dfd8018507c40962b6ac6468c3078edb71d8ec7f728be8cc23dea1139ac30c2e8d0fc077280e420fbbffc896863db5f1e76922d7dd8e4479c1be822e74212c6f74765e108f916a1b83f6efc8ea54080e9a28b1ba5813a1fefddbe2d0cda413ee1463985b51b59f818f440c9b6a10e4ebf71d37995ae9694ba5867ca2eb2f7bf4e58d26149f2b25943fba216beb3de1f954bcf1bd32ce358b5d23023ab456ebbc493ead41e25b62b5b4ace6c5c18c9a8d512a9cbb4dd59f33663f6138d6b06bc8eb1ec9caccc0077b2e68e7a09d412dfa352e7e5c3942b710ab1648e16d0adda424d9fc2d15c619f4e8093c2b9521e4cdb3f22e655f52ce0fcc1bfd94e56cba8decadb68214451be53f9286c82d2a4912bd2394d1133be908409d791d6d8c2194ca37a76a38d6d0a1fced6478848891d9264cfc08fa849d720339ce00977cad8d9738372184098a7333dd1564d1d7754b4aa4afd6217585804159d31f53017869cb78b718c837b7fd176ce19e3d6996b6f055ed3ba7cd55b0349676c0c113c33d070081ce4ef29af156c4ac8ce760013688d0295d90271e23ef3ca10ec2b3b889855a153c867ce79297a10a02d21e5e8995fbc10d2f4d4bf521565376053b80937bfafaac688108f9962b7c72cf0111874ac8ae27d024ee2f9d57f15b9910a7486ef7542c6629fb0520c93a445542d00", 0x2000, 0x0)

13.485924187s ago: executing program 1 (id=507):
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="0000000000000000b702000014000000b7030000010100008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b702000000000000850000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = eventfd(0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0x4008af12, &(0x7f0000000080)={0x1, 0x7b})
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/53, 0x0, 0x4})
syz_usb_connect$hid(0x0, 0x0, 0x0, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f00000001c0)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000280)=""/74})
ioctl$VHOST_SET_VRING_ERR(r0, 0x4008af22, &(0x7f0000000480)={0x1, r1})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f00000007c0)={0x4, 0x0, [{0xd000, 0x1000, &(0x7f0000001e00)=""/4096}, {0xf000, 0x7f, &(0x7f00000004c0)=""/127}, {0x2, 0x56, &(0x7f0000000600)=""/86}, {0x10000, 0x29, &(0x7f0000000200)=""/41}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)

13.309652402s ago: executing program 0 (id=508):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000300)=[{{0x0, 0x0, &(0x7f0000001340)=[{&(0x7f0000000000)="82", 0x1}], 0x1}}], 0x1, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000327000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f0000000280)="2e260f009d040000000f3266ba4100ec36650fc75d85b9800000c00f3235000800000f30b805000000b9060000000f01c10f1bde652e0f309a004800006700c4e29d026a05", 0x45}], 0x1, 0x0, 0x0, 0x0)
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000000000406a05dd00000000000001090224000100000000090400000203"], 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

12.737192774s ago: executing program 1 (id=509):
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000040))
getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, &(0x7f0000000180))
ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, &(0x7f0000000600)={'wg0\x00'})
sendmsg$ETHTOOL_MSG_COALESCE_GET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x20}}, 0x0)
pipe(0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000940), 0x0, 0x0)
ioctl$sock_inet_sctp_SIOCINQ(0xffffffffffffffff, 0x541b, 0x0)
fanotify_mark(0xffffffffffffffff, 0x20, 0x28, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0, 0x50032, 0xffffffffffffffff, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0, 0x401d031, 0xffffffffffffffff, 0x0)

10.79710432s ago: executing program 1 (id=510):
syz_mount_image$ext4(&(0x7f0000000880)='ext4\x00', &(0x7f0000000040)='.\x02\x00', 0x21000e, &(0x7f0000001340)={[{@resuid}]}, 0x1, 0x538, &(0x7f0000001900)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000980)=ANY=[@ANYBLOB="660a000000000000611160000000000018000000000000000000000000000000950000000000000056c8c7d4097f6060c6f8f6f32865cb15f70e9f48f98e9da40d6b82a5c9102e9db2aa28645a9b1c3644b4e01536e899abaeb1de7621d908b93a1761dccdaff3be812d94f69351d9ba0a3af95ebd05df9c0900d2144c9212723947703ee9be7f9eb14a04cfb58e19a00d0fa43694a875636ed740c1a5b68adfa4cc4a4c536b824f"], &(0x7f0000000000)='GPL\x00'}, 0x80)
r4 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r4}, &(0x7f00000001c0), &(0x7f0000000280)=r3}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0xe, 0x8, &(0x7f0000000940)=@framed={{0x18, 0x7}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r4}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x100000}, {0x85, 0x0, 0x0, 0x2b}}]}, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

10.796349679s ago: executing program 0 (id=517):
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setscheduler(0x0, 0x0, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r0, &(0x7f0000000440), 0x10)
listen(r0, 0x0)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
accept4$vsock_stream(r0, &(0x7f0000000040)={0x28, 0x0, 0x0, @my=0x1}, 0x10, 0x0)
connect$vsock_stream(r1, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10)
shutdown(r1, 0x1)
ppoll(&(0x7f00000002c0)=[{r1}], 0x1, 0x0, 0x0, 0xfffffffffffffd4c)

6.530877277s ago: executing program 3 (id=460):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)={{0x14}, [@NFT_MSG_NEWSET={0x28, 0x9, 0xa, 0x0, 0x0, 0x0, {}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x10}}, 0x50}}, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'gre0\x00', &(0x7f00000002c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x32, 0x4, 0x0, 0x0, 0xc8, 0x67, 0x0, 0x0, 0x0, 0x0, @broadcast, @remote, {[@timestamp={0x44, 0x18, 0x0, 0x0, 0x9, [0x401, 0x5, 0x0, 0x0, 0x0]}, @timestamp_prespec={0x44, 0x44, 0xc0, 0x3, 0x1, [{@private=0xa010102}, {@multicast1}, {@remote, 0x8000}, {@dev={0xac, 0x14, 0x14, 0x35}, 0x65c}, {@broadcast}, {@empty}, {@multicast1, 0xffd200}, {@private=0xa010100, 0x7}]}, @timestamp_prespec={0x44, 0x3c, 0x0, 0x3, 0x8, [{@dev={0xac, 0x14, 0x14, 0xf}}, {@remote}, {@multicast2}, {@private=0xa010100}, {@rand_addr=0x64010101}, {@broadcast, 0x52b1}, {@multicast2}]}, @noop, @noop, @noop, @end, @rr={0x7, 0x17, 0x0, [@dev, @remote, @multicast1, @private=0xa010102, @remote]}]}}}}})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000})
ioctl$KVM_NMI(r4, 0xae9a)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

6.529955717s ago: executing program 1 (id=519):
r0 = openat$capi20(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$EXT4_IOC_SETFSUUID(0xffffffffffffffff, 0x4008662c, &(0x7f0000000280)={0x10, 0x300, "03617d4a941f39cc3a844a85d006d7e0"})
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x420000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r4}, 0x10)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
ioctl$CAPI_MANUFACTURER_CMD(r0, 0xc0104320, &(0x7f0000001040)={0x0, 0x0})

6.529336587s ago: executing program 0 (id=520):
sendmsg$ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000300)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRESHEX, @ANYBLOB="010000000000000000000c"], 0x40}}, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000400)=[{0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)}], 0x1, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000080), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0xffffffffffffff3a)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000001200)=[@text64={0x40, &(0x7f0000000200)="f7790066baa00066b86b4266ef66ba420066b8e20066ef0f29902cbb0000c4e2b1ba8c88d9000000666666440f38826b410f7842280f07b8010000000f01d9c4033921820f47a753fd", 0x49}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f000049c000/0x18000)=nil, &(0x7f0000000400)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000640)=0x1)
ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000140))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

6.454153454s ago: executing program 2 (id=457):
r0 = socket$inet6_dccp(0xa, 0x6, 0x0)
setsockopt$inet6_dccp_buf(r0, 0x21, 0x80, &(0x7f0000000840)="aa9198ae7d08612cb75cfb43b289fbc01cab33e718e2722a4e6d6f7b0bf720f0f56e8fa715517040ad21297e87e32650db827d33eca56299292663e9405b7b0bf09c131c2252de4860e680c431d89332f28f8926d8a39d4278049ea4792fafebfc6e7e3d37d40e1012ee9f2f02dd5b5b82275257a62cf9261039babcb410f04d65258ef377dd7e348cba6c67a5170090b29620ad1e757b06c4", 0x99)
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f00000000c0)='./bus\x00', 0x0, &(0x7f0000000780)={[{@shortname_win95}, {@shortname_win95}, {@fat=@codepage={'codepage', 0x3d, '866'}}, {@fat=@check_strict}, {@shortname_lower}, {@numtail}, {@utf8no}, {@shortname_mixed}, {@shortname_win95}, {@iocharset={'iocharset', 0x3d, 'cp949'}}]}, 0x1, 0x217, &(0x7f00000004c0)="$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")
syz_mount_image$vfat(&(0x7f0000000440), &(0x7f0000000000)='./file1\x00', 0x0, &(0x7f0000000640)=ANY=[], 0x5, 0x329, &(0x7f00000000c0)="$eJzs3E1rK1UYwPEnL02TXG4mC1EUpAfdqIuhja7lBmlBDFjaRmwFYdpONGRMSiZUImLryq34Ddy4KF12V1C/QDfudONGV90ILixSPJJ5aSftJNak6cvt/wdlTs9znuk5TBqeEzJz/P7XnzRqrlmzOpLMKkmIiJyIFCUpoURwTHrtjETtyquP/vz5xeXVtXfKlcr8klIL5ZXXS0qpwsz3n36eC4YdTstR8cPjP0q/HT179PzxPysf111Vd1Wz1VGWWm/92rHWHVtt1t2GqdSiY1uurepN12778ZYfrzmtra2uspqbj/Nbbdt1ldXsqobdVZ2W6rS7yvrIqjeVaZrqcV7iZGJ7H6rq3tKSVR4xeeOaJ4NR/a21HhLWibKVEpHcpUh1b6LzAgAAd9LF+j/ZK+lHqv+l4NX/vcHn9f/+Sz92Hr13UAjq/8NMXP3/xi/+ufrq/6yITKD+73e5Irr3dv7P4LHqf9wNM5f3tIm+39rtspUP/n89X36wP+s1qP8BAAAAAAAAAAAAAAAAAAAAALgPTrQ2tNZGeAx+Xjsf4fcNSN+9qXliMgZcf2NaRLK9q6+HXn/cc8ura5L1btxLF0Scr7ar21X/6Md/Dx8tMCuGnHqvh0CvHd55pHqK8oOzE+TvbFdTXqRck7o4YsucGFK8mK/1wtuV+Tnl68+fknw0vySGPBOfX4rNz8grL0fyTTHkpw1piSObvdf1qT7L/2JOqbferVzIz3njAAAAAAB4GpjqTOz+3TQHxf38s/11/+cDIpH9+Wzs/jxtvJC+3bUDAAAAAPBQuN3PGpbj2O34RkI7djsnQ8eM2UiPlj41bEwqssKrnjDjfd9FZHIrHdIIv0jRyERCWfk26B7lzOH6JzPnpIySNSN62p/VOH89/Nho0BhZnPT1Sg8IPffNd39Fep5c/cyJ4Km90dCbB9n/WOnEGlNXevPQqTHffQAAAADcpLDoz7lhz5PbnRAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/QkMeApa/rcWK3vUYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgrvg3AAD//3xXBXQ=")
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000100), 0xb)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$sock_x25_SIOCDELRT(r2, 0x541b, &(0x7f0000000740)={@null, 0x0, 'batadv0\x00'})
r3 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCL_GETMOUSEREPORTING(r3, 0x5412, &(0x7f00000000c0)=0x13)
r4 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r4, 0x4008af60, &(0x7f0000000040)={@my=0x1})
r5 = socket(0x28, 0x5, 0x0)
connect$vsock_stream(r5, &(0x7f0000000200)={0x28, 0x0, 0x0, @my=0x1}, 0x10)

5.486837996s ago: executing program 2 (id=511):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000400)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="640000000206010200000000000000000000000015000300686173683a69702c706f72742c6e6574000000000900020073797a32000000000500040000000000140007800800124000000000050015002200000005000500020000000500010006"], 0x64}}, 0x0)
sendmsg$IPSET_CMD_LIST(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="1c00000007060103000000000000200000000000050001000e000000a5"], 0x1c}}, 0x0)
sendmsg$NFT_MSG_GETCHAIN(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000040a0102"], 0x14}}, 0x0)

5.486617726s ago: executing program 1 (id=512):
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x7, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'pcbc(fcrypt)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000412ff8)="3665a1ab415b7ac7", 0x8)
r4 = accept(r3, 0x0, 0x0)
sendmmsg$alg(r4, &(0x7f0000000740)=[{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f00000001c0)="564004c6852da7a299e4c397614090d1a6e12edf1767f157", 0xfcdc}], 0x1, &(0x7f0000000480)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x0)
recvmsg(r4, &(0x7f000000b680)={0x0, 0x10400004, &(0x7f000000b600)=[{&(0x7f000000b4c0)=""/5, 0x4}, {&(0x7f000000b500)=""/153, 0xfb59}], 0x2}, 0x0)

5.486237076s ago: executing program 3 (id=513):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x2000040, &(0x7f0000000880)={[{@errors_remount}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0xfffffffffffff27c}}, {@journal_path={'journal_path', 0x3d, './file1'}}, {@init_itable}, {@stripe={'stripe', 0x3d, 0x77}}, {@resgid={'resgid', 0x3d, 0xee01}}, {@sysvgroups}, {@norecovery}, {@data_journal}]}, 0x14, 0x4e8, &(0x7f0000001100)="$eJzs3c9vFFEdAPDvTLv8LLaoByQRiGAKUXZbKtB4QEyMnEhEvGNtt03TbbfpboE2xJR418QYNfHkyYuJf4CJ4U8wJiR6N2g0RkEPHtQ1OzuLpezSKstubT+fZJj3Zrb9ft/SfTtv5mUmgEPrQkTcjoihiLgSEaP59jRf7jT332u97tXLJ7PNJYlG4/6fk0jybe3fleTrkxGxFRHHIuKrdyK+kbwdt7axuTRTqZTX8nqpvrxaqm1sXl1cnlkoL5RXpqYmb0zfnL4+PdGTdo5FxK0v/f773/nJl2/94rOPfvvgj5e/2UxrJN+/vR291Gp6IXsv2oYjYu1DBBuAoXxd6LL/20N9TAYAgF01j/E/GhGfyo7/R2MoOzoFAAAADpLGF0biH0lEAwAAADiw0mwObJIW87kAI5GmxWJrDu/H40Raqdbqn5mvrq/MtebKjkUhnV+slCfyucJjUUia9cl8jm27fm1HfSoiTkfE90aPZ/XibLUyN+iTHwAAAHBInNwx/v/baDb+PzrovAAAAIAeG9tRd88mAAAAOHh2jv8BAACAg8f4HwAAAA60r9y921wa7edfzz3cWF+qPrw6V64tFZfXZ4uz1bXV4kK1upDds295t99XqVZXPxcr649L9XKtXqptbD5Yrq6v1B8svvEIbAAAAKCPTp9/9pskIrY+fzxbmo4MOimgL5Jd9mcPCXmRV37Xh4SAvnGrHzi8hgedADAwhUEnAAzcbucBuk7e+WXvcwEAAD6M8U90v/7v3AAcbOmgEwAA+s71fzi8Cm/OALw+uEyAQfnILvvf//p/o/FfJQQAAPTcSLYkaTG/FjgSaVosRpzKHgtQSOYXK+WJfHzw69HC0WZ9MvvJZNc5wwAAAAAAAAAAAAAAAAAAAAAAAABAS6ORRAMAAAA40CLSPyTZ3fwjxkcvjew8P3Ak+ftoto6IRz+6/4PHM/X62mRz+19eb6//MN9+bRBnMAAAAICd2uP09jgeAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHrp1csns+1lDy8/0qu4f/piRIx1jH/+WLY6FoWIOPHXJIa3/VwSEUM9iL/1NCLOdIqfNNOKsWhl0Sn+8X7H3/aupxFxsgfx4TB71ux/bnf6/KVxIVt3/vwP58v76t7/pdFoNBqR93Od+p9Te4xx9vnPSl3jP404O9y5/2n3v0mX+Bf3GP/rX9vcfHtrqzNr/DhivOP3T/JGrFJ9ebVU29i8urg8s1BeKK9MTU3emL45fX16ojS/WCnn/3aM/91P/vxf72r/iS7xx3Zp/6U9tv+fzx+//FirWOgU//LFzt+/Z7rET/O/iU/n5eb+8XZ5q1Xe7txPf3XuXe2f69L+1///Hb5omzEv77H9V+5968UeXwoA9EFtY3NpplIpr/0/FtLYF2nsj0LziGwfpPG/F47ujzQUWoVB90wAAECv/eegf9CZAAAAAAAAAAAAAAAAAAAAwOHVj9uJ7Yy5NZimAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC8078DAAD//6U726Q=")
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
r0 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c)
listen(r0, 0x101)
r1 = socket$inet_dccp(0x2, 0x6, 0x0)
setsockopt(r1, 0x10d, 0x800000000d, &(0x7f00001c9fff)="03", 0x1)
connect$inet(r1, &(0x7f0000e5c000)={0x2, 0x4e20, @dev}, 0x3a)
r2 = accept4(r0, 0x0, 0x0, 0x0)
r3 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r3, 0x0, 0x2400c000)
sendmsg$IPCTNL_MSG_EXP_GET(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)=ANY=[], 0x3c}}, 0x0)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x82, &(0x7f0000000100)={[{@auto_da_alloc}, {@nolazytime}]}, 0x9, 0x626, &(0x7f0000000d40)="$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")
sendmsg$nl_route(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000200)=ANY=[@ANYBLOB], 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x90)

4.152735054s ago: executing program 1 (id=514):
syz_mount_image$udf(&(0x7f0000000f00), &(0x7f00000000c0)='./file1\x00', 0x210008, &(0x7f0000001040)=ANY=[@ANYBLOB='uid=', @ANYRESDEC=0x0, @ANYBLOB="2c756e64656c6574652c6e6f7672732c6164696e6963622c766f6c756d653d30303030303030303030303030303030303030322c7569643d666f726765742c6769643d666f726765742c6e6f7374726963742c6e6f7672732c0085f95733019d784ca386da1fd41ffabd4b47acca2b8d488be702157dd8711c31732d"], 0xff, 0xc43, &(0x7f00000011c0)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='blkio.throttle.io_serviced\x00', 0x275a, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuacct.usage_percpu\x00', 0x26e1, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.controllers\x00', 0x275a, 0x0)
creat(&(0x7f0000000d00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
rename(&(0x7f0000000140)='./file0\x00', &(0x7f0000001080)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
pwritev2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305839, 0x0)
creat(&(0x7f0000000040)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000100)='./bus\x00', 0x14113e, 0x0)
write$binfmt_script(r0, &(0x7f0000000080), 0x208e24b)
rename(&(0x7f0000000040)='./file0\x00', &(0x7f0000000300)='./file0\x00')

4.152153744s ago: executing program 2 (id=515):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xf, 0x4, 0x4, 0x4}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0xb3, 0x7f}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=@framed={{0x18, 0x8}, [@func={0x85, 0x0, 0x1, 0x0, 0x6}, @map_fd={0x18, 0x2, 0x1, 0x0, r3}, @generic={0x66}, @initr0, @exit, @alu={0x6, 0x0, 0xa, 0xa}, @printk={@x={0x18, 0x0}, {0x3, 0x3, 0x3, 0xa, 0x0}, {}, {0x7, 0x0, 0x0, 0x1, 0x0, 0x0, 0xfffffe00}, {}, {}, {0x85, 0x0, 0x0, 0x2d}}]}, &(0x7f0000000000)='GPL\x00', 0x2, 0xde, &(0x7f0000000340)=""/222}, 0x25)

3.903763928s ago: executing program 0 (id=516):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f00000001c0)='GPL\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000240)='./file0\x00', 0x804, &(0x7f0000000440)={[{@shortname_win95}, {@shortname_lower}, {@utf8}, {@shortname_win95}, {@shortname_mixed}, {@utf8no}, {@rodir}, {@utf8no}, {@fat=@nocase}, {@fat=@codepage={'codepage', 0x3d, '775'}}, {@fat=@check_strict}, {@utf8no}, {@shortname_winnt}, {@iocharset={'iocharset', 0x3d, 'iso8859-6'}}, {@shortname_win95}, {@shortname_winnt}]}, 0x1, 0x27b, &(0x7f0000000640)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
socket(0x10, 0x803, 0x0)

3.092367655s ago: executing program 2 (id=518):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000000800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
syz_mount_image$erofs(&(0x7f0000000200), &(0x7f0000000100)='./file1\x00', 0x810801, &(0x7f0000000140)=ANY=[], 0x4, 0x208, &(0x7f0000000640)="$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")
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fadvise64(r4, 0x0, 0xff39, 0x3)

3.04180446s ago: executing program 3 (id=521):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
setrlimit(0xb, &(0x7f0000000240)={0x3, 0x6})
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
unshare(0x2040400)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r3, &(0x7f0000000000)={0x1f, 0x0, @fixed, 0x0, 0x1}, 0xd)
setsockopt$bt_BT_DEFER_SETUP(r3, 0x112, 0xd, 0x0, 0x0)

1.196087776s ago: executing program 0 (id=522):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd600a847500140600fe8000"/35, @ANYRES32=0x41424344], 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000327000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f326635004000000f300f20e06635800000000f22e0f30fa6c8", 0x50}], 0x1, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10)
ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000140)=ANY=[@ANYBLOB="0100000000000000070000001d0000000000000000000000a208000000000000000000fc000000000000000000000000bd"])
ioctl$KVM_RUN(r3, 0xae80, 0x0)

493.27µs ago: executing program 2 (id=523):
mkdir(&(0x7f0000000180)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="1500000065ffff"], 0x15)
r2 = dup(r1)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000240), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="b0"], 0xb0)
mount$9p_fd(0x0, &(0x7f0000000400)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000180)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})
chdir(&(0x7f0000000000)='./file0\x00')
r3 = socket$unix(0x1, 0x5, 0x0)
bind$unix(r3, 0x0, 0x0)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r4, 0x1, 0x11, 0x0, 0x0)
setuid(0x0)
lstat(&(0x7f0000002600)='./file0\x00', 0x0)

0s ago: executing program 3 (id=524):
syz_mount_image$fuse(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = open$dir(&(0x7f0000000240)='.\x00', 0x0, 0x0)
renameat(r0, &(0x7f0000000400)='./file0\x00', r0, &(0x7f0000000440)='./file1\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000900)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
r1 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
mknodat$loop(r1, &(0x7f0000001600)='./file1\x00', 0x0, 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')
pivot_root(&(0x7f0000000280)='./file1\x00', 0x0)
linkat(r1, &(0x7f0000000100)='./file1\x00', r1, &(0x7f0000000240)='./file0\x00', 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0, 0x0)
unlink(&(0x7f0000000040)='./file0\x00')
open(&(0x7f0000000200)='./bus\x00', 0x161b42, 0x0)
rename(&(0x7f0000000000)='./bus\x00', &(0x7f0000000180)='./file1\x00')

kernel console output (not intermixed with test programs):

n inode deleted
[  121.098411][ T4490] EXT4-fs (loop0): 1 truncate cleaned up
[  121.105230][ T4490] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  124.043469][ T3637] EXT4-fs (loop4): unmounting filesystem.
[  124.069780][ T4143] EXT4-fs (loop0): unmounting filesystem.
[  124.206463][ T4511] loop2: detected capacity change from 0 to 1024
[  124.422089][ T4511] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  124.724218][ T4520] loop0: detected capacity change from 0 to 16
[  125.386914][ T4520] erofs: (device loop0): mounted with root inode @ nid 36.
[  125.422142][ T4520] erofs: (device loop0): z_erofs_readahead: readahead error at page 12 @ nid 36
[  125.432088][ T4520] erofs: (device loop0): z_erofs_readahead: readahead error at page 10 @ nid 36
[  125.442892][ T4520] erofs: (device loop0): z_erofs_readahead: readahead error at page 6 @ nid 36
[  125.452012][ T4520] erofs: (device loop0): z_erofs_readahead: readahead error at page 4 @ nid 36
[  125.462462][ T4520] erofs: (device loop0): z_erofs_do_map_blocks: invalid logical cluster 0 at nid 36
[  125.471932][ T4520] erofs: (device loop0): z_erofs_readahead: readahead error at page 0 @ nid 36
[  125.482276][ T4520] syz.0.160: attempt to access beyond end of device
[  125.482276][ T4520] loop0: rw=524288, sector=296, nr_sectors = 16 limit=16
[  125.496123][ T4520] syz.0.160: attempt to access beyond end of device
[  125.496123][ T4520] loop0: rw=524288, sector=1049264, nr_sectors = 16 limit=16
[  125.510423][ T4520] syz.0.160: attempt to access beyond end of device
[  125.510423][ T4520] loop0: rw=524288, sector=6520, nr_sectors = 16 limit=16
[  125.524473][ T4520] syz.0.160: attempt to access beyond end of device
[  125.524473][ T4520] loop0: rw=524288, sector=34359736328, nr_sectors = 16 limit=16
[  125.538989][ T4520] syz.0.160: attempt to access beyond end of device
[  125.538989][ T4520] loop0: rw=524288, sector=8, nr_sectors = 16 limit=16
[  125.552808][ T4520] syz.0.160: attempt to access beyond end of device
[  125.552808][ T4520] loop0: rw=524288, sector=720, nr_sectors = 16 limit=16
[  125.566946][ T4520] syz.0.160: attempt to access beyond end of device
[  125.566946][ T4520] loop0: rw=524288, sector=536576856, nr_sectors = 16 limit=16
[  125.780780][ T4511] EXT4-fs error (device loop2): ext4_expand_extra_isize_ea:2746: inode #2: comm syz.2.159: corrupted in-inode xattr
[  125.844448][ T4511] EXT4-fs (loop2): Remounting filesystem read-only
[  126.247532][ T3639] EXT4-fs (loop2): unmounting filesystem.
[  128.285215][ T4536] netlink: 56 bytes leftover after parsing attributes in process `syz.4.165'.
[  129.290343][ T4552] loop4: detected capacity change from 0 to 1024
[  129.567978][ T4556] loop2: detected capacity change from 0 to 128
[  129.601137][ T4556] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  129.610189][ T4556] ext4 filesystem being mounted at /36/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038 (0x7fffffff)
[  129.694169][ T3777] hfsplus: b-tree write err: -5, ino 4
[  129.841325][ T4561] loop4: detected capacity change from 0 to 512
[  129.860109][ T4561] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  129.885402][ T4561] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #16: comm syz.4.170: invalid indirect mapped block 83886080 (level 1)
[  130.415124][ T3649] Bluetooth: hci5: command 0x1003 tx timeout
[  131.616706][ T3651] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  131.663817][ T4561] EXT4-fs (loop4): 1 orphan inode deleted
[  131.714982][ T4561] EXT4-fs (loop4): 1 truncate cleaned up
[  131.751155][ T4561] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  131.905077][ T3639] EXT4-fs (loop2): unmounting filesystem.
[  132.039178][ T4573] loop1: detected capacity change from 0 to 512
[  132.079739][ T4561] EXT4-fs error (device loop4): __ext4_get_inode_loc:4506: comm syz.4.170: Invalid inode table block 5 in block_group 0
[  132.392501][ T4573] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  133.136125][ T4580] loop2: detected capacity change from 0 to 16
[  133.201204][ T4580] erofs: (device loop2): mounted with root inode @ nid 36.
[  133.229407][ T4580] erofs: (device loop2): z_erofs_readahead: readahead error at page 12 @ nid 36
[  133.238848][ T4580] erofs: (device loop2): z_erofs_readahead: readahead error at page 10 @ nid 36
[  133.248426][ T4580] erofs: (device loop2): z_erofs_readahead: readahead error at page 6 @ nid 36
[  133.257560][ T4580] erofs: (device loop2): z_erofs_readahead: readahead error at page 4 @ nid 36
[  133.267150][ T4580] erofs: (device loop2): z_erofs_do_map_blocks: invalid logical cluster 0 at nid 36
[  133.277210][ T4580] erofs: (device loop2): z_erofs_readahead: readahead error at page 0 @ nid 36
[  133.286660][ T4580] syz.2.174: attempt to access beyond end of device
[  133.286660][ T4580] loop2: rw=524288, sector=296, nr_sectors = 16 limit=16
[  133.300534][ T4580] syz.2.174: attempt to access beyond end of device
[  133.300534][ T4580] loop2: rw=524288, sector=1049264, nr_sectors = 16 limit=16
[  133.314959][ T4580] syz.2.174: attempt to access beyond end of device
[  133.314959][ T4580] loop2: rw=524288, sector=6520, nr_sectors = 16 limit=16
[  133.328993][ T4580] syz.2.174: attempt to access beyond end of device
[  133.328993][ T4580] loop2: rw=524288, sector=34359736328, nr_sectors = 16 limit=16
[  133.343871][ T4580] syz.2.174: attempt to access beyond end of device
[  133.343871][ T4580] loop2: rw=524288, sector=8, nr_sectors = 16 limit=16
[  133.357720][ T4580] syz.2.174: attempt to access beyond end of device
[  133.357720][ T4580] loop2: rw=524288, sector=720, nr_sectors = 16 limit=16
[  133.371838][ T4580] syz.2.174: attempt to access beyond end of device
[  133.371838][ T4580] loop2: rw=524288, sector=536576856, nr_sectors = 16 limit=16
[  133.681119][ T1267] ieee802154 phy0 wpan0: encryption failed: -22
[  133.687506][ T1267] ieee802154 phy1 wpan1: encryption failed: -22
[  133.752861][ T4558] EXT4-fs error (device loop4): ext4_validate_block_bitmap:420: comm ext4lazyinit: bg 0: bad block bitmap checksum
[  133.790787][ T4573] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  133.813760][ T3637] EXT4-fs error (device loop4): htree_dirblock_to_tree:1112: inode #2: block 13: comm syz-executor: bad entry in directory: rec_len is too small for name_len - offset=12, inode=2, rec_len=12, size=1024 fake=0
[  133.873302][ T4573] ext4 filesystem being mounted at /33/file1 supports timestamps until 2038 (0x7fffffff)
[  134.002131][ T3637] EXT4-fs (loop4): unmounting filesystem.
[  134.498012][ T3634] EXT4-fs (loop1): unmounting filesystem.
[  135.588403][ T4601] loop1: detected capacity change from 0 to 512
[  135.597889][ T4603] loop3: detected capacity change from 0 to 128
[  135.649840][ T4603] ext4: Unknown parameter 'subj_user'
[  135.655839][ T3805] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  135.812263][ T4601] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  135.835920][ T4601] ext4 filesystem being mounted at /34/file0 supports timestamps until 2038 (0x7fffffff)
[  135.929902][ T3805] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  136.090372][ T4610] Cannot find set identified by id 0 to match
[  136.095264][ T3805] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  136.286913][ T3805] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  136.900571][ T3634] EXT4-fs (loop1): unmounting filesystem.
[  137.139780][ T3651] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  137.172834][ T3651] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  137.188813][ T3651] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  137.200808][ T3651] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  137.209622][ T3651] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  137.218545][ T3651] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  137.684798][ T4616] chnl_net:caif_netlink_parms(): no params data found
[  137.829523][ T4616] bridge0: port 1(bridge_slave_0) entered blocking state
[  137.837994][ T4616] bridge0: port 1(bridge_slave_0) entered disabled state
[  137.847281][ T4616] device bridge_slave_0 entered promiscuous mode
[  137.875290][ T4616] bridge0: port 2(bridge_slave_1) entered blocking state
[  137.882497][ T4616] bridge0: port 2(bridge_slave_1) entered disabled state
[  137.891223][ T4616] device bridge_slave_1 entered promiscuous mode
[  137.932458][ T4616] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  137.944623][ T4616] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  137.986294][ T4616] team0: Port device team_slave_0 added
[  138.019916][ T4616] team0: Port device team_slave_1 added
[  138.048876][ T4616] batman_adv: batadv0: Adding interface: batadv_slave_0
[  138.056751][ T4616] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  138.083294][ T4616] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  138.127169][ T4616] batman_adv: batadv0: Adding interface: batadv_slave_1
[  138.134371][ T4616] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  138.160529][ T4616] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  138.201702][ T3805] device hsr_slave_0 left promiscuous mode
[  138.209710][ T3805] device hsr_slave_1 left promiscuous mode
[  138.217093][ T3805] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  138.226017][ T3805] batman_adv: batadv0: Removing interface: batadv_slave_0
[  138.234331][ T3805] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  138.241772][ T3805] batman_adv: batadv0: Removing interface: batadv_slave_1
[  138.251411][ T3805] device bridge_slave_1 left promiscuous mode
[  138.259401][ T3805] bridge0: port 2(bridge_slave_1) entered disabled state
[  138.268876][ T3805] device bridge_slave_0 left promiscuous mode
[  138.277115][ T3805] bridge0: port 1(bridge_slave_0) entered disabled state
[  138.316877][ T3805] device veth1_macvtap left promiscuous mode
[  138.323039][ T3805] device veth0_macvtap left promiscuous mode
[  138.329475][ T3805] device veth1_vlan left promiscuous mode
[  138.337531][ T3805] device veth0_vlan left promiscuous mode
[  138.765592][ T3805] team0 (unregistering): Port device team_slave_1 removed
[  138.794944][ T3805] team0 (unregistering): Port device team_slave_0 removed
[  138.822713][ T3805] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  138.854450][ T3805] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  139.121499][ T3805] bond0 (unregistering): Released all slaves
[  139.206914][ T4616] device hsr_slave_0 entered promiscuous mode
[  139.215145][ T4616] device hsr_slave_1 entered promiscuous mode
[  139.272919][ T3649] Bluetooth: hci2: command tx timeout
[  139.970380][ T4616] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  139.999041][ T4616] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  140.026074][ T4616] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  140.058174][ T4616] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  140.241710][ T4616] 8021q: adding VLAN 0 to HW filter on device bond0
[  140.267175][ T3697] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  140.280285][ T3697] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  140.296821][ T4616] 8021q: adding VLAN 0 to HW filter on device team0
[  140.309215][ T3697] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  140.334563][ T3697] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  140.348035][ T3697] bridge0: port 1(bridge_slave_0) entered blocking state
[  140.355212][ T3697] bridge0: port 1(bridge_slave_0) entered forwarding state
[  140.376018][ T3697] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  140.384665][ T3697] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  140.400228][ T3697] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  140.411334][ T3697] bridge0: port 2(bridge_slave_1) entered blocking state
[  140.418507][ T3697] bridge0: port 2(bridge_slave_1) entered forwarding state
[  140.432571][ T3697] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  140.443491][ T3697] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  140.467726][ T3697] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  140.480043][ T3697] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  140.489106][ T3697] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  140.514395][ T3697] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  140.533198][ T3697] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  140.552969][ T3697] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  140.567635][ T4616] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  140.587181][ T4616] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  140.603978][ T3697] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  140.616477][ T3697] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  140.627327][ T3697] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  140.956853][ T3898] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  140.966633][ T3898] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  140.986488][ T4616] 8021q: adding VLAN 0 to HW filter on device batadv0
[  141.352890][ T3649] Bluetooth: hci2: command tx timeout
[  141.431451][ T3898] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  141.453373][ T3898] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  141.479198][ T3898] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  141.488267][ T3898] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  141.499678][ T4616] device veth0_vlan entered promiscuous mode
[  141.508208][ T3898] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  141.517639][ T3898] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  141.531904][ T4616] device veth1_vlan entered promiscuous mode
[  141.561801][ T3805] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  141.572033][ T3805] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  141.580678][ T3805] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  141.589682][ T3805] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  141.602520][ T4616] device veth0_macvtap entered promiscuous mode
[  141.611977][ T4616] device veth1_macvtap entered promiscuous mode
[  141.627189][ T4616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  141.637962][ T4616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  141.648020][ T4616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  141.658519][ T4616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  141.668392][ T4616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  141.679327][ T4616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  141.693205][ T4616] batman_adv: batadv0: Interface activated: batadv_slave_0
[  141.700545][ T4505] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  141.709633][ T4505] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  141.717748][ T4505] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  141.726412][ T4505] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  141.738399][ T4616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  141.749399][ T4616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  141.759390][ T4616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  141.769910][ T4616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  141.780077][ T4616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  141.790577][ T4616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  141.803611][ T4616] batman_adv: batadv0: Interface activated: batadv_slave_1
[  141.811838][ T3805] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  141.820635][ T3805] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  141.836723][ T4616] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  141.846096][ T4616] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  141.855173][ T4616] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  141.864316][ T4616] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  141.916585][ T4505] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  141.930800][ T4505] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  141.949674][ T3898] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  141.959102][ T3824] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  141.967502][ T3824] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  141.978028][ T3824] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  142.064988][ T4719] loop4: detected capacity change from 0 to 64
[  142.079034][ T4726] loop2: detected capacity change from 0 to 256
[  142.115163][   T26] kauditd_printk_skb: 10 callbacks suppressed
[  142.115178][   T26] audit: type=1326 audit(1724958234.213:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4723 comm="syz.3.200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d30f79ef9 code=0x7ffc0000
[  142.161142][ T4724] loop3: detected capacity change from 0 to 256
[  142.333337][   T26] audit: type=1326 audit(1724958234.243:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4723 comm="syz.3.200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d30f79ef9 code=0x7ffc0000
[  144.143945][ T3649] Bluetooth: hci2: command tx timeout
[  145.112268][   T26] audit: type=1326 audit(1724958234.243:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4723 comm="syz.3.200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=94 compat=0 ip=0x7f8d30f79ef9 code=0x7ffc0000
[  145.152986][   T26] audit: type=1326 audit(1724958234.243:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4723 comm="syz.3.200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d30f79ef9 code=0x7ffc0000
[  145.232433][ T4736] loop2: detected capacity change from 0 to 512
[  145.253555][   T26] audit: type=1326 audit(1724958234.243:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4723 comm="syz.3.200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d30f79ef9 code=0x7ffc0000
[  145.343183][ T4736] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  145.377343][ T4736] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #16: comm syz.2.189: invalid indirect mapped block 83886080 (level 1)
[  145.394281][   T26] audit: type=1326 audit(1724958234.243:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4723 comm="syz.3.200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=118 compat=0 ip=0x7f8d30f79ef9 code=0x7ffc0000
[  145.471188][ T4745] loop4: detected capacity change from 0 to 16
[  145.486183][ T4745] erofs: (device loop4): mounted with root inode @ nid 36.
[  145.515525][ T4745] erofs: (device loop4): z_erofs_readahead: readahead error at page 12 @ nid 36
[  145.524991][ T4745] erofs: (device loop4): z_erofs_readahead: readahead error at page 10 @ nid 36
[  145.534605][ T4745] erofs: (device loop4): z_erofs_readahead: readahead error at page 6 @ nid 36
[  145.543840][ T4745] erofs: (device loop4): z_erofs_readahead: readahead error at page 4 @ nid 36
[  145.553296][ T4745] erofs: (device loop4): z_erofs_do_map_blocks: invalid logical cluster 0 at nid 36
[  145.562759][ T4745] erofs: (device loop4): z_erofs_readahead: readahead error at page 0 @ nid 36
[  145.572219][ T4745] syz.4.188: attempt to access beyond end of device
[  145.572219][ T4745] loop4: rw=524288, sector=296, nr_sectors = 16 limit=16
[  145.586110][ T4745] syz.4.188: attempt to access beyond end of device
[  145.586110][ T4745] loop4: rw=524288, sector=1049264, nr_sectors = 16 limit=16
[  145.600480][ T4745] syz.4.188: attempt to access beyond end of device
[  145.600480][ T4745] loop4: rw=524288, sector=6520, nr_sectors = 16 limit=16
[  145.614645][ T4745] syz.4.188: attempt to access beyond end of device
[  145.614645][ T4745] loop4: rw=524288, sector=34359736328, nr_sectors = 16 limit=16
[  145.629279][ T4745] syz.4.188: attempt to access beyond end of device
[  145.629279][ T4745] loop4: rw=524288, sector=8, nr_sectors = 16 limit=16
[  145.643088][ T4745] syz.4.188: attempt to access beyond end of device
[  145.643088][ T4745] loop4: rw=524288, sector=720, nr_sectors = 16 limit=16
[  145.657234][ T4745] syz.4.188: attempt to access beyond end of device
[  145.657234][ T4745] loop4: rw=524288, sector=536576856, nr_sectors = 16 limit=16
[  145.842938][ T4736] EXT4-fs (loop2): 1 orphan inode deleted
[  145.873138][ T4736] EXT4-fs (loop2): 1 truncate cleaned up
[  145.878838][ T4736] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  146.000846][   T26] audit: type=1326 audit(1724958234.243:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4723 comm="syz.3.200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d30f79ef9 code=0x7ffc0000
[  146.093617][   T26] audit: type=1326 audit(1724958234.243:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4723 comm="syz.3.200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d30f79ef9 code=0x7ffc0000
[  146.116640][ T4247] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  146.151782][ T4736] EXT4-fs error (device loop2): __ext4_get_inode_loc:4506: comm syz.2.189: Invalid inode table block 5 in block_group 0
[  146.165848][   T48] Bluetooth: hci2: command tx timeout
[  146.176299][ T4752] loop4: detected capacity change from 0 to 512
[  146.181044][ T4736] EXT4-fs error (device loop2): ext4_read_inode_bitmap:140: comm syz.2.189: Invalid inode bitmap blk 4 in block_group 0
[  146.195095][   T26] audit: type=1326 audit(1724958234.243:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4723 comm="syz.3.200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8d30f79ef9 code=0x7ffc0000
[  146.267467][ T4752] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  146.301249][   T26] audit: type=1326 audit(1724958234.243:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4723 comm="syz.3.200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d30f79ef9 code=0x7ffc0000
[  146.347909][ T3639] EXT4-fs error (device loop2): htree_dirblock_to_tree:1112: inode #2: block 13: comm syz-executor: bad entry in directory: rec_len is too small for name_len - offset=12, inode=2, rec_len=12, size=1024 fake=0
[  146.361820][ T4752] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  146.393329][ T4752] ext4 filesystem being mounted at /2/file1 supports timestamps until 2038 (0x7fffffff)
[  146.398162][ T4247] usb 2-1: Using ep0 maxpacket: 8
[  146.465040][ T3639] EXT4-fs (loop2): unmounting filesystem.
[  146.533559][ T4247] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  146.546753][ T3639] device syz_tun left promiscuous mode
[  146.561101][ T4247] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  146.563524][ T4740] loop0: detected capacity change from 0 to 32768
[  146.626220][ T4247] usb 2-1: New USB device found, idVendor=04e7, idProduct=0009, bcdDevice= 0.00
[  146.636145][ T4247] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  146.661701][ T4247] usb 2-1: config 0 descriptor??
[  146.670891][ T4740] XFS (loop0): Mounting V5 Filesystem
[  146.740163][ T4740] XFS (loop0): Ending clean mount
[  146.851961][ T3779] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.999323][ T3779] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  147.042033][ T4616] EXT4-fs (loop4): unmounting filesystem.
[  147.184854][ T4247] elo 0003:04E7:0009.0002: unknown main item tag 0x0
[  147.195070][ T3779] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  147.207872][ T4247] elo 0003:04E7:0009.0002: unknown main item tag 0x0
[  147.216658][ T4247] elo 0003:04E7:0009.0002: item fetching failed at offset 2/7
[  147.229663][ T4143] XFS (loop0): Unmounting Filesystem
[  147.254414][ T4772] loop3: detected capacity change from 0 to 2048
[  147.256990][ T4247] elo 0003:04E7:0009.0002: parse failed
[  147.261707][ T4772] UDF-fs: bad mount option "adincb" or missing value
[  147.373625][ T3779] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  148.173442][ T4247] elo: probe of 0003:04E7:0009.0002 failed with error -22
[  148.183257][ T4247] usb 2-1: USB disconnect, device number 3
[  148.216803][ T4747] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  148.885476][ T4780] infiniband syz2: set active
[  148.890572][ T4780] infiniband syz2: added team_slave_1
[  149.077610][ T4780] RDS/IB: syz2: added
[  149.084466][ T4780] smc: adding ib device syz2 with port count 1
[  149.091050][ T4780] smc:    ib device syz2 port 1 has pnetid 
[  149.229239][   T48] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  149.249096][   T48] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  149.263455][   T48] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  149.273871][   T48] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  149.282259][   T48] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  149.289930][   T48] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  149.467303][ T4787] loop0: detected capacity change from 0 to 64
[  149.621684][ T4790] devpts: called with bogus options
[  150.124043][ T4804] loop3: detected capacity change from 0 to 16
[  150.176874][ T4804] erofs: (device loop3): mounted with root inode @ nid 36.
[  150.203408][ T4804] erofs: (device loop3): z_erofs_readahead: readahead error at page 12 @ nid 36
[  150.213462][ T4804] erofs: (device loop3): z_erofs_readahead: readahead error at page 10 @ nid 36
[  150.223250][ T4804] erofs: (device loop3): z_erofs_readahead: readahead error at page 6 @ nid 36
[  150.232374][ T4804] erofs: (device loop3): z_erofs_readahead: readahead error at page 4 @ nid 36
[  150.241859][ T4804] erofs: (device loop3): z_erofs_do_map_blocks: invalid logical cluster 0 at nid 36
[  150.251316][ T4804] erofs: (device loop3): z_erofs_readahead: readahead error at page 0 @ nid 36
[  150.260760][ T4804] syz.3.208: attempt to access beyond end of device
[  150.260760][ T4804] loop3: rw=524288, sector=296, nr_sectors = 16 limit=16
[  150.274594][ T4804] syz.3.208: attempt to access beyond end of device
[  150.274594][ T4804] loop3: rw=524288, sector=1049264, nr_sectors = 16 limit=16
[  150.288901][ T4804] syz.3.208: attempt to access beyond end of device
[  150.288901][ T4804] loop3: rw=524288, sector=6520, nr_sectors = 16 limit=16
[  150.763406][    C1] eth0: bad gso: type: 1, size: 1408
[  151.102345][ T4821] loop1: detected capacity change from 0 to 512
[  151.113754][ T4821] journal_path: Lookup failure for './bus'
[  151.135139][ T4821] EXT4-fs: error: could not find journal device path
[  151.202792][ T4247] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  151.354005][ T3649] Bluetooth: hci1: command tx timeout
[  151.475601][ T4784] chnl_net:caif_netlink_parms(): no params data found
[  151.562906][ T4247] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  151.584156][ T4247] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  151.595697][ T4247] usb 5-1: New USB device found, idVendor=056a, idProduct=0016, bcdDevice= 0.00
[  151.605677][ T4247] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  151.620180][ T4247] usb 5-1: config 0 descriptor??
[  151.737597][ T4784] bridge0: port 1(bridge_slave_0) entered blocking state
[  152.002072][ T4784] bridge0: port 1(bridge_slave_0) entered disabled state
[  152.010869][ T4784] device bridge_slave_0 entered promiscuous mode
[  153.266375][ T4784] bridge0: port 2(bridge_slave_1) entered blocking state
[  153.301020][ T4784] bridge0: port 2(bridge_slave_1) entered disabled state
[  153.335516][ T4784] device bridge_slave_1 entered promiscuous mode
[  153.396981][ T4815] netlink: 8 bytes leftover after parsing attributes in process `syz.4.210'.
[  153.432830][ T3649] Bluetooth: hci1: command tx timeout
[  153.452331][ T4845] loop4: detected capacity change from 0 to 256
[  153.881291][ T4247] wacom 0003:056A:0016.0003: Unknown device_type for 'HID 056a:0016'. Assuming pen.
[  154.022784][ T4247] wacom 0003:056A:0016.0003: hidraw0: USB HID v0.00 Device [HID 056a:0016] on usb-dummy_hcd.4-1/input0
[  154.108947][ T4247] input: Wacom Graphire4 6x8 Pen as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/0003:056A:0016.0003/input/input6
[  154.290919][ T3779] device batadv_slave_0 left promiscuous mode
[  154.331837][ T4247] usb 5-1: USB disconnect, device number 3
[  154.374929][ T3779] device hsr_slave_0 left promiscuous mode
[  154.385143][ T3779] device hsr_slave_1 left promiscuous mode
[  154.457811][ T3779] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  154.482711][ T3779] batman_adv: batadv0: Removing interface: batadv_slave_0
[  154.517150][ T3779] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  154.562799][ T3779] batman_adv: batadv0: Removing interface: batadv_slave_1
[  154.573538][ T3779] device bridge_slave_1 left promiscuous mode
[  154.579825][ T3779] bridge0: port 2(bridge_slave_1) entered disabled state
[  154.634973][ T3779] device bridge_slave_0 left promiscuous mode
[  154.641331][ T3779] bridge0: port 1(bridge_slave_0) entered disabled state
[  154.662498][ T4865] loop3: detected capacity change from 0 to 8192
[  154.739865][ T3779] device veth1_macvtap left promiscuous mode
[  154.751232][ T3779] device veth0_macvtap left promiscuous mode
[  154.768246][ T3779] device veth1_vlan left promiscuous mode
[  154.779299][   T26] kauditd_printk_skb: 23 callbacks suppressed
[  154.779315][   T26] audit: type=1800 audit(1724958246.873:86): pid=4865 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.220" name="bus" dev="loop3" ino=1048604 res=0 errno=0
[  154.806318][ T3779] device veth0_vlan left promiscuous mode
[  154.972088][ T4848] loop1: detected capacity change from 0 to 32768
[  155.562622][ T3649] Bluetooth: hci1: command tx timeout
[  155.651569][ T4848] XFS (loop1): Mounting V5 Filesystem
[  155.704382][ T4848] XFS (loop1): Ending clean mount
[  156.597385][ T3634] XFS (loop1): Unmounting Filesystem
[  156.664762][ T4899] loop4: detected capacity change from 0 to 1024
[  156.757895][ T4747] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  157.061806][ T3779] team0 (unregistering): Port device team_slave_1 removed
[  157.225249][ T3779] team0 (unregistering): Port device team_slave_0 removed
[  157.505275][ T3779] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  157.652729][ T3649] Bluetooth: hci1: command tx timeout
[  157.719652][ T3779] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  158.181865][ T3779] bond0 (unregistering): Released all slaves
[  158.396293][ T3649] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[  158.405330][ T3649] Bluetooth: hci3: Injecting HCI hardware error event
[  158.417056][ T3651] Bluetooth: hci3: hardware error 0x00
[  158.572243][ T4784] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  158.599101][ T4784] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  158.718634][ T4784] team0: Port device team_slave_0 added
[  158.744920][ T4784] team0: Port device team_slave_1 added
[  158.833418][ T4784] batman_adv: batadv0: Adding interface: batadv_slave_0
[  158.840754][ T4784] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  158.868303][ T4784] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  158.911323][ T4784] batman_adv: batadv0: Adding interface: batadv_slave_1
[  158.929108][ T4784] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  158.978609][ T4784] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  159.032782][ T4246] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  159.087939][ T4784] device hsr_slave_0 entered promiscuous mode
[  159.100292][ T4784] device hsr_slave_1 entered promiscuous mode
[  159.108704][ T4784] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  159.117986][ T4784] Cannot create hsr debugfs directory
[  159.282775][ T4246] usb 4-1: Using ep0 maxpacket: 32
[  159.403684][ T4246] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  159.421239][ T4246] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  159.431558][ T4246] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x2 has an invalid bInterval 0, changing to 7
[  159.447656][ T4246] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  159.457918][ T4246] usb 4-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 5
[  159.475516][ T4246] usb 4-1: New USB device found, idVendor=1b96, idProduct=000a, bcdDevice= 0.00
[  159.489626][ T4246] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  159.529811][ T4246] usb 4-1: config 0 descriptor??
[  160.305070][ T4246] ntrig 0003:1B96:000A.0004: unknown main item tag 0x0
[  160.472988][ T3651] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  160.495433][ T4246] ntrig 0003:1B96:000A.0004: unknown main item tag 0x0
[  160.678973][ T4246] ntrig 0003:1B96:000A.0004: unknown main item tag 0x0
[  160.689223][ T4246] ntrig 0003:1B96:000A.0004: unknown main item tag 0x0
[  160.718535][ T4246] ntrig 0003:1B96:000A.0004: unknown main item tag 0x0
[  160.787413][ T4246] ntrig 0003:1B96:000A.0004: hidraw0: USB HID v0.00 Device [HID 1b96:000a] on usb-dummy_hcd.3-1/input0
[  161.176968][ T4957] loop1: detected capacity change from 0 to 16
[  161.191472][ T4957] erofs: (device loop1): mounted with root inode @ nid 36.
[  161.202462][ T4957] erofs: (device loop1): z_erofs_readahead: readahead error at page 12 @ nid 36
[  161.211754][ T4957] erofs: (device loop1): z_erofs_readahead: readahead error at page 10 @ nid 36
[  161.221105][ T4957] erofs: (device loop1): z_erofs_readahead: readahead error at page 6 @ nid 36
[  161.230178][ T4957] erofs: (device loop1): z_erofs_readahead: readahead error at page 4 @ nid 36
[  161.239313][ T4957] erofs: (device loop1): z_erofs_do_map_blocks: invalid logical cluster 0 at nid 36
[  161.248825][ T4957] erofs: (device loop1): z_erofs_readahead: readahead error at page 0 @ nid 36
[  161.249548][ T4246] usb 4-1: USB disconnect, device number 2
[  161.257939][ T4957] bio_check_eod: 4 callbacks suppressed
[  161.257959][ T4957] syz.1.234: attempt to access beyond end of device
[  161.257959][ T4957] loop1: rw=524288, sector=296, nr_sectors = 16 limit=16
[  161.284447][ T4957] syz.1.234: attempt to access beyond end of device
[  161.284447][ T4957] loop1: rw=524288, sector=1049264, nr_sectors = 16 limit=16
[  161.298464][ T4957] syz.1.234: attempt to access beyond end of device
[  161.298464][ T4957] loop1: rw=524288, sector=6520, nr_sectors = 16 limit=16
[  161.312294][ T4957] syz.1.234: attempt to access beyond end of device
[  161.312294][ T4957] loop1: rw=524288, sector=34359736328, nr_sectors = 16 limit=16
[  161.326757][ T4957] syz.1.234: attempt to access beyond end of device
[  161.326757][ T4957] loop1: rw=524288, sector=8, nr_sectors = 16 limit=16
[  161.340238][ T4957] syz.1.234: attempt to access beyond end of device
[  161.340238][ T4957] loop1: rw=524288, sector=720, nr_sectors = 16 limit=16
[  161.354003][ T4957] syz.1.234: attempt to access beyond end of device
[  161.354003][ T4957] loop1: rw=524288, sector=536576856, nr_sectors = 16 limit=16
[  161.684793][ T4963] device syzkaller1 entered promiscuous mode
[  162.006151][ T4784] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  162.034071][ T4784] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  162.063727][ T4784] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  162.115103][ T4784] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  162.285859][ T4980] loop1: detected capacity change from 0 to 512
[  162.350467][ T4980] EXT4-fs (loop1): Unsupported encryption level 9
[  162.392697][ T4246] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  162.412551][ T4980] loop1: detected capacity change from 0 to 512
[  162.413371][ T4784] 8021q: adding VLAN 0 to HW filter on device bond0
[  162.437519][ T4980] EXT4-fs: Ignoring removed nomblk_io_submit option
[  162.486257][ T3898] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  162.497885][ T4980] EXT4-fs (loop1): orphan cleanup on readonly fs
[  162.507142][ T3898] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  162.515662][ T4980] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2
[  162.556293][ T4980] EXT4-fs (loop1): 1 truncate cleaned up
[  162.566934][ T4784] 8021q: adding VLAN 0 to HW filter on device team0
[  162.581798][ T4980] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  162.632912][ T4246] usb 4-1: Using ep0 maxpacket: 32
[  162.687944][ T3697] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  162.745368][ T3697] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  162.766624][ T4246] usb 4-1: config 0 has an invalid interface number: 103 but max is 1
[  162.786340][ T4246] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  162.807689][ T3697] bridge0: port 1(bridge_slave_0) entered blocking state
[  162.816115][ T3697] bridge0: port 1(bridge_slave_0) entered forwarding state
[  162.832800][ T4246] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 2
[  162.852089][ T4246] usb 4-1: config 0 has no interface number 0
[  162.858740][ T3697] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  162.872651][ T4246] usb 4-1: config 0 interface 103 has no altsetting 0
[  162.880309][ T3697] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  162.900901][ T3697] bridge0: port 2(bridge_slave_1) entered blocking state
[  162.908101][ T3697] bridge0: port 2(bridge_slave_1) entered forwarding state
[  162.953336][ T3697] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  162.992029][ T3697] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  163.009293][ T4965] loop4: detected capacity change from 0 to 32768
[  163.027720][ T3697] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  163.081896][ T3697] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  163.109736][ T3697] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  163.132981][ T4246] usb 4-1: string descriptor 0 read error: -22
[  163.138962][ T4965] 
[  163.138962][ T4965]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  163.138962][ T4965] 
[  163.139373][ T4246] usb 4-1: New USB device found, idVendor=04e8, idProduct=689a, bcdDevice=44.10
[  163.160492][ T3697] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  163.188451][ T4246] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  163.205871][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  163.225501][ T4246] usb 4-1: config 0 descriptor??
[  163.232535][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  163.261766][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  163.324687][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  163.335991][ T4965] find_entry called with index = 0
[  163.336183][ T4965] find_entry called with index = 0
[  163.336934][ T4965] read_mapping_page failed!
[  163.337230][ T4965] ERROR: (device loop4): txCommit: 
[  163.337230][ T4965] 
[  163.344513][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  163.344950][ T4965] ERROR: (device loop4): remounting filesystem as read-only
[  163.346078][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  163.349445][ T4784] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  163.555722][ T3634] EXT4-fs (loop1): unmounting filesystem.
[  163.560929][ T4246] usb 4-1: USB disconnect, device number 3
[  163.858808][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  163.885777][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  163.917848][ T4784] 8021q: adding VLAN 0 to HW filter on device batadv0
[  163.972896][ T3680] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  163.975982][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  164.007357][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  164.096661][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  164.166292][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  164.190922][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  164.269044][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  164.286726][ T4784] device veth0_vlan entered promiscuous mode
[  164.326820][ T4784] device veth1_vlan entered promiscuous mode
[  164.473895][ T3680] usb 2-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  164.568310][ T3680] usb 2-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  164.782164][ T3680] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 66
[  165.043702][ T3680] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  165.088497][ T3680] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  165.178192][ T3898] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  165.194915][ T3898] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  165.217689][ T4784] device veth0_macvtap entered promiscuous mode
[  165.237802][ T4784] device veth1_macvtap entered promiscuous mode
[  165.252124][ T3680] usb 2-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  165.291738][ T3680] usb 2-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  165.301754][ T3680] usb 2-1: Product: syz
[  165.310702][ T4784] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  165.316041][ T3680] usb 2-1: Manufacturer: syz
[  165.341855][ T4784] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  165.362268][ T4784] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  165.389469][ T4784] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  165.407294][ T4784] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  165.429078][ T4784] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  165.458800][ T4784] batman_adv: batadv0: Interface activated: batadv_slave_0
[  165.488994][ T5030] device pim6reg1 entered promiscuous mode
[  165.519270][ T3680] cdc_wdm 2-1:1.0: skipping garbage
[  165.525100][ T3680] cdc_wdm 2-1:1.0: skipping garbage
[  165.549794][ T3680] cdc_wdm 2-1:1.0: cdc-wdm0: USB WDM device
[  165.556282][ T3680] cdc_wdm 2-1:1.0: Unknown control protocol
[  165.588056][ T3898] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  165.605533][ T3898] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  165.632400][ T4784] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  165.671053][ T4784] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  165.707376][ T4784] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  165.739015][ T4784] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  165.760114][ T4784] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  165.782945][ T4784] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  165.805138][ T4784] batman_adv: batadv0: Interface activated: batadv_slave_1
[  165.814984][ T3697] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  165.827205][ T3697] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  165.850633][ T4784] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  165.862859][    C0] cdc_wdm 2-1:1.0: nonzero urb status received: -71
[  165.870201][    C0] cdc_wdm 2-1:1.0: wdm_int_callback - 0 bytes
[  165.882177][ T3052] usb 2-1: USB disconnect, device number 4
[  165.888095][    C0] cdc_wdm 2-1:1.0: nonzero urb status received: -71
[  165.888154][    C0] cdc_wdm 2-1:1.0: wdm_int_callback - 0 bytes
[  165.888170][    C0] cdc_wdm 2-1:1.0: wdm_int_callback - usb_submit_urb failed with result -19
[  165.922479][ T4784] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  165.973539][ T4784] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  165.982483][ T4784] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  166.283869][ T3898] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  166.324370][ T3898] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  166.366742][ T4505] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  166.368899][ T3697] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  166.385939][ T4505] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  166.426800][ T3697] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  166.689268][ T5063] loop2: detected capacity change from 0 to 4096
[  166.726747][ T5063] ntfs: (device loop2): parse_options(): Unrecognized mount option disablÄsparse.
[  166.808039][ T5067] loop1: detected capacity change from 0 to 164
[  167.572489][ T5063] loop2: detected capacity change from 0 to 64
[  168.769093][ T5073] IPv6: ADDRCONF(NETDEV_CHANGE): syzkaller0: link becomes ready
[  169.615595][    C1] eth0: bad gso: type: 1, size: 1408
[  170.270574][ T5097] kvm [5096]: vcpu0, guest rIP: 0x1b4 disabled perfctr wrmsr: 0x187 data 0x1ffffffc18
[  170.529338][   T26] audit: type=1326 audit(1724958262.623:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5112 comm="syz.0.256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1e9f79ef9 code=0x7ffc0000
[  170.565803][   T26] audit: type=1326 audit(1724958262.663:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5112 comm="syz.0.256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7ff1e9f79ef9 code=0x7ffc0000
[  170.597054][   T26] audit: type=1326 audit(1724958262.663:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5112 comm="syz.0.256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1e9f79ef9 code=0x7ffc0000
[  170.619905][   T26] audit: type=1326 audit(1724958262.663:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5112 comm="syz.0.256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=40 compat=0 ip=0x7ff1e9f79ef9 code=0x7ffc0000
[  170.650058][   T26] audit: type=1326 audit(1724958262.663:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5112 comm="syz.0.256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1e9f79ef9 code=0x7ffc0000
[  170.700884][   T26] audit: type=1326 audit(1724958262.663:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5112 comm="syz.0.256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=141 compat=0 ip=0x7ff1e9f79ef9 code=0x7ffc0000
[  170.787020][   T26] audit: type=1326 audit(1724958262.663:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5112 comm="syz.0.256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1e9f79ef9 code=0x7ffc0000
[  170.873251][   T26] audit: type=1326 audit(1724958262.663:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5112 comm="syz.0.256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff1e9f79ef9 code=0x7ffc0000
[  170.931391][ T5116] netlink: 40 bytes leftover after parsing attributes in process `syz.4.258'.
[  171.099870][ T5118] netlink: 36 bytes leftover after parsing attributes in process `syz.3.257'.
[  171.161659][ T5121] loop4: detected capacity change from 0 to 512
[  171.233419][ T5121] EXT4-fs: Ignoring removed orlov option
[  171.246463][ T5121] EXT4-fs: Ignoring removed i_version option
[  171.319276][ T5121] EXT4-fs (loop4): 1 truncate cleaned up
[  171.325463][ T5121] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  171.456838][ T5127] loop2: detected capacity change from 0 to 1024
[  171.477563][ T5126] loop1: detected capacity change from 0 to 2048
[  171.513205][ T5126] UDF-fs: warning (device loop1): udf_load_vrs: No anchor found
[  171.521340][ T5126] UDF-fs: Scanning with blocksize 512 failed
[  171.567465][ T5126] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  171.635925][ T5127] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  171.788741][ T5127] ext4 filesystem being mounted at /3/file1 supports timestamps until 2038 (0x7fffffff)
[  172.571213][ T4784] EXT4-fs (loop2): unmounting filesystem.
[  172.703909][ T4616] EXT4-fs (loop4): unmounting filesystem.
[  173.056430][ T5150] loop4: detected capacity change from 0 to 512
[  173.072769][ T5150] UDF-fs: warning (device loop4): udf_load_vrs: No VRS found
[  173.080217][ T5150] UDF-fs: Scanning with blocksize 512 failed
[  173.086925][ T5150] UDF-fs: warning (device loop4): udf_load_vrs: No VRS found
[  173.094518][ T5150] UDF-fs: Scanning with blocksize 1024 failed
[  173.102303][ T5150] UDF-fs: warning (device loop4): udf_load_vrs: No VRS found
[  173.109777][ T5150] UDF-fs: Scanning with blocksize 2048 failed
[  173.117665][ T5150] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[  173.128513][ T5150] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  173.150747][   T26] audit: type=1800 audit(1724958265.243:95): pid=5150 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.265" name="file1" dev="loop4" ino=26 res=0 errno=0
[  175.019725][ T5168] loop1: detected capacity change from 0 to 40427
[  175.131601][ T5168] F2FS-fs (loop1): invalid crc value
[  175.416785][ T5168] F2FS-fs (loop1): Found nat_bits in checkpoint
[  175.475731][ T5168] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e4
[  175.682935][ T5147] loop2: detected capacity change from 0 to 32768
[  175.700063][ T5147] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 scanned by syz.2.264 (5147)
[  176.309595][ T5147] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  176.420052][ T5147] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm
[  176.475402][ T5147] BTRFS info (device loop2): use zlib compression, level 3
[  176.502056][ T5147] BTRFS info (device loop2): using free space tree
[  176.747130][ T5147] BTRFS error (device loop2): open_ctree failed
[  177.030944][ T5181] dccp_close: ABORT with 32 bytes unread
[  177.069549][ T3634] syz-executor: attempt to access beyond end of device
[  177.069549][ T3634] loop1: rw=2051, sector=36912, nr_sectors = 8152 limit=40427
[  177.120581][ T3634] syz-executor: attempt to access beyond end of device
[  177.120581][ T3634] loop1: rw=2051, sector=45096, nr_sectors = 85976 limit=40427
[  177.247208][ T5208] loop4: detected capacity change from 0 to 512
[  177.284033][ T3634] F2FS-fs (loop1): Issue discard(4614, 4614, 1019) failed, ret: -5
[  177.284086][ T3634] F2FS-fs (loop1): Issue discard(5637, 5637, 10747) failed, ret: -5
[  177.564741][ T5222] loop1: detected capacity change from 0 to 47
[  177.657305][ T5208] EXT4-fs error (device loop4): ext4_do_update_inode:5221: inode #16: comm syz.4.275: corrupted inode contents
[  177.690352][ T5208] EXT4-fs error (device loop4): ext4_dirty_inode:6083: inode #16: comm syz.4.275: mark_inode_dirty error
[  177.722846][ T5208] EXT4-fs error (device loop4): ext4_do_update_inode:5221: inode #16: comm syz.4.275: corrupted inode contents
[  177.763165][ T5208] EXT4-fs error (device loop4): __ext4_ext_dirty:202: inode #16: comm syz.4.275: mark_inode_dirty error
[  177.820915][ T5208] EXT4-fs error (device loop4): ext4_do_update_inode:5221: inode #16: comm syz.4.275: corrupted inode contents
[  177.862700][ T5208] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem
[  177.882907][ T5208] EXT4-fs error (device loop4): ext4_do_update_inode:5221: inode #16: comm syz.4.275: corrupted inode contents
[  177.905513][ T5208] EXT4-fs error (device loop4): ext4_truncate:4311: inode #16: comm syz.4.275: mark_inode_dirty error
[  177.931287][ T5208] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem
[  177.956777][ T5208] EXT4-fs (loop4): 1 truncate cleaned up
[  177.976578][ T5208] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  177.979591][ T3697] Quota error (device loop4): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  177.996173][ T5208] ext4 filesystem being mounted at /19/file1 supports timestamps until 2038 (0x7fffffff)
[  178.007605][ T3697] EXT4-fs error (device loop4): ext4_release_dquot:6800: comm kworker/u4:6: Failed to release dquot type 1
[  178.139970][   T26] audit: type=1800 audit(1724958270.203:96): pid=5208 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.275" name="bus" dev="loop4" ino=18 res=0 errno=0
[  178.755093][ T4616] EXT4-fs error (device loop4): ext4_map_blocks:634: inode #2: block 3: comm syz-executor: lblock 0 mapped to illegal pblock 3 (length 1)
[  179.305572][ T4616] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5879: Corrupt filesystem
[  179.325743][ T4616] EXT4-fs error (device loop4): ext4_dirty_inode:6083: inode #2: comm syz-executor: mark_inode_dirty error
[  179.357299][ T4616] EXT4-fs (loop4): unmounting filesystem.
[  179.377056][ T4616] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5879: Corrupt filesystem
[  180.215265][ T4616] EXT4-fs error (device loop4): ext4_quota_off:7066: inode #3: comm syz-executor: mark_inode_dirty error
[  180.353264][ T4616] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5879: Corrupt filesystem
[  180.407165][ T4616] EXT4-fs error (device loop4): ext4_quota_off:7066: inode #4: comm syz-executor: mark_inode_dirty error
[  181.235798][ T5252] netlink: 20 bytes leftover after parsing attributes in process `syz.2.287'.
[  181.376748][ T5259] netlink: 'syz.2.289': attribute type 7 has an invalid length.
[  181.392412][ T5259] netlink: 'syz.2.289': attribute type 39 has an invalid length.
[  181.465359][ T3694] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  181.613557][ T5262] netlink: 'syz.2.289': attribute type 7 has an invalid length.
[  181.621821][ T5262] netlink: 'syz.2.289': attribute type 39 has an invalid length.
[  181.851689][ T3694] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  182.358506][ T5268] sg_write: data in/out 624/1 bytes for SCSI command 0xcb-- guessing data in;
[  182.358506][ T5268]    program syz.3.292 not setting count and/or reply_len properly
[  182.657346][   T48] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  182.668776][   T48] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  182.682110][   T48] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  182.691149][   T48] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  182.699067][   T48] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  182.706449][   T48] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  182.726180][ T3694] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  184.814528][   T48] Bluetooth: hci2: command tx timeout
[  185.962295][ T3694] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  186.213173][ T5287] netlink: 164 bytes leftover after parsing attributes in process `syz.0.296'.
[  186.302461][ T5286] loop2: detected capacity change from 0 to 1024
[  186.923576][ T5294] loop1: detected capacity change from 0 to 2048
[  187.079713][ T5294] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  187.125694][   T26] audit: type=1800 audit(1724958279.213:97): pid=5294 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.298" name="bus" dev="loop1" ino=1367 res=0 errno=0
[  187.535775][   T48] Bluetooth: hci2: command tx timeout
[  187.576114][ T5269] chnl_net:caif_netlink_parms(): no params data found
[  187.618155][ T5286] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  187.890653][   T26] audit: type=1326 audit(1724958279.983:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5301 comm="syz.1.299" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f811e979ef9 code=0x0
[  188.512658][ T4272] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  188.533228][ T4784] EXT4-fs (loop2): unmounting filesystem.
[  188.542952][ T5269] bridge0: port 1(bridge_slave_0) entered blocking state
[  188.557891][ T5269] bridge0: port 1(bridge_slave_0) entered disabled state
[  188.572150][ T5269] device bridge_slave_0 entered promiscuous mode
[  188.852740][ T5269] bridge0: port 2(bridge_slave_1) entered blocking state
[  189.457277][ T5269] bridge0: port 2(bridge_slave_1) entered disabled state
[  189.468800][ T5269] device bridge_slave_1 entered promiscuous mode
[  189.496021][ T4272] usb 2-1: Using ep0 maxpacket: 8
[  189.613428][   T48] Bluetooth: hci2: command tx timeout
[  189.651102][ T5269] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  189.682762][ T4272] usb 2-1: config index 0 descriptor too short (expected 5924, got 36)
[  189.691069][ T4272] usb 2-1: config 250 has an invalid interface number: 228 but max is -1
[  189.712161][ T5269] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  189.722817][ T4247] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[  189.731275][ T4272] usb 2-1: config 250 has 1 interface, different from the descriptor's value: 0
[  189.749946][ T4272] usb 2-1: config 250 has no interface number 0
[  189.765432][ T4272] usb 2-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024
[  189.797684][ T4272] usb 2-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024
[  189.822095][ T4272] usb 2-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 26
[  189.846875][ T4272] usb 2-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17
[  189.866508][ T4272] usb 2-1: config 250 interface 228 has no altsetting 0
[  189.965207][ T5269] team0: Port device team_slave_0 added
[  189.985077][ T5269] team0: Port device team_slave_1 added
[  190.003004][ T4272] usb 2-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07
[  190.012275][ T4272] usb 2-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59
[  190.021371][ T4272] usb 2-1: Product: syz
[  190.031354][ T4272] usb 2-1: SerialNumber: syz
[  190.082903][ T4247] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  190.095526][ T5269] batman_adv: batadv0: Adding interface: batadv_slave_0
[  190.102489][ T5269] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  190.130688][ T4247] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  190.134233][ T4272] hub 2-1:250.228: bad descriptor, ignoring hub
[  190.153432][ T4272] hub: probe of 2-1:250.228 failed with error -5
[  190.161798][ T4247] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  190.175810][ T4247] usb 3-1: New USB device found, idVendor=041e, idProduct=2801, bcdDevice= 0.10
[  190.190635][ T5269] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  190.201455][ T4247] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  190.220515][ T4247] usb 3-1: config 0 descriptor??
[  190.233129][ T5269] batman_adv: batadv0: Adding interface: batadv_slave_1
[  190.240191][ T5269] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  190.266831][ T5269] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  191.018571][ T5340] loop2: detected capacity change from 0 to 512
[  191.026128][ T4272] usblp 2-1:250.228: usblp0: USB Bidirectional printer dev 5 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292
[  191.108335][ T5340] EXT4-fs (loop2): orphan cleanup on readonly fs
[  191.144351][ T4272] usb 2-1: USB disconnect, device number 5
[  191.159572][ T5340] EXT4-fs error (device loop2): ext4_quota_enable:6964: comm syz.2.301: Bad quota inum: 11, type: 1
[  191.181844][ T4272] usblp0: removed
[  191.188311][ T5340] EXT4-fs warning (device loop2): ext4_enable_quotas:7012: Failed to enable quota tracking (type=1, err=-117, ino=11). Please run e2fsck to fix.
[  191.269172][ T5340] EXT4-fs (loop2): Cannot turn on quotas: error -117
[  191.305344][ T5340] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  191.320862][ T5269] device hsr_slave_0 entered promiscuous mode
[  191.340654][ T5269] device hsr_slave_1 entered promiscuous mode
[  191.377726][ T5269] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  191.389115][ T5269] Cannot create hsr debugfs directory
[  191.395259][ T5322] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[  191.431846][ T5347] loop0: detected capacity change from 0 to 512
[  191.495153][ T5347] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  191.545267][ T5322] EXT4-fs error (device loop2): ext4_quota_enable:6964: comm syz.2.301: Bad quota inum: 11, type: 1
[  191.569838][ T5347] EXT4-fs (loop0): 1 truncate cleaned up
[  191.579224][ T5322] EXT4-fs warning (device loop2): ext4_enable_quotas:7012: Failed to enable quota tracking (type=1, err=-117, ino=11). Please run e2fsck to fix.
[  191.612492][ T5347] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  191.672844][   T48] Bluetooth: hci2: command tx timeout
[  191.781227][ T4143] EXT4-fs (loop0): unmounting filesystem.
[  191.846517][ T3694] device hsr_slave_0 left promiscuous mode
[  191.854146][ T3694] device hsr_slave_1 left promiscuous mode
[  191.869703][ T3694] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  191.889301][ T3694] batman_adv: batadv0: Removing interface: batadv_slave_0
[  191.916715][ T3694] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  191.938413][ T3694] batman_adv: batadv0: Removing interface: batadv_slave_1
[  191.946385][ T3694] device bridge_slave_1 left promiscuous mode
[  191.973374][ T3694] bridge0: port 2(bridge_slave_1) entered disabled state
[  191.995291][ T3694] device bridge_slave_0 left promiscuous mode
[  192.001599][ T3694] bridge0: port 1(bridge_slave_0) entered disabled state
[  192.079907][ T3694] device veth1_macvtap left promiscuous mode
[  192.098877][ T3694] device veth0_macvtap left promiscuous mode
[  192.119902][ T3694] device veth1_vlan left promiscuous mode
[  192.143986][ T3694] device veth0_vlan left promiscuous mode
[  192.517909][ T4784] EXT4-fs (loop2): unmounting filesystem.
[  192.822796][ T4247] usbhid 3-1:0.0: can't add hid device: -71
[  192.828843][ T4247] usbhid: probe of 3-1:0.0 failed with error -71
[  192.906691][ T4247] usb 3-1: USB disconnect, device number 2
[  193.024486][ T5381] loop3: detected capacity change from 0 to 512
[  193.024866][ T3694] infiniband syz2: set down
[  193.057225][ T5381] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  193.097604][ T5381] ext4 filesystem being mounted at /72/wÅü5ÔTÕÔ)­`)Y�Fæ¾nA­½@T<Ÿ3»Ú‚$¢ó×rçcnH³<¿pƒrèñ¹“>ÅwC¾" žð-ùËòöè€Ó8 supports timestamps until 2038 (0x7fffffff)
[  193.202845][ T5381] EXT4-fs error (device loop3): ext4_readdir:260: inode #2: block 3: comm syz.3.311: path (unknown): bad entry in directory: rec_len is smaller than minimal - offset=12, inode=514, rec_len=0, size=2048 fake=0
[  193.341578][ T3643] EXT4-fs (loop3): unmounting filesystem.
[  193.603647][ T4250] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  194.253365][ T1267] ieee802154 phy0 wpan0: encryption failed: -22
[  194.652806][ T4250] usb 2-1: config index 0 descriptor too short (expected 23569, got 27)
[  194.662974][ T4250] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  194.841463][ T4250] usb 2-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  194.851257][ T4250] usb 2-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  194.859717][ T4250] usb 2-1: Manufacturer: syz
[  194.866366][ T4250] usb 2-1: config 0 descriptor??
[  195.517551][ T5389] netlink: 20 bytes leftover after parsing attributes in process `syz.1.313'.
[  195.934970][ T5426] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  195.992116][ T5428] loop3: detected capacity change from 0 to 16
[  196.025630][ T5428] erofs: (device loop3): mounted with root inode @ nid 36.
[  196.118496][ T5428] erofs: (device loop3): erofs_map_blocks_flatmode: inline data cross block boundary @ nid 36
[  196.146274][ T5428] syz.3.322: attempt to access beyond end of device
[  196.146274][ T5428] loop3: rw=524288, sector=34359738360, nr_sectors = 1976 limit=16
[  196.190046][ T5429] syz.3.322: attempt to access beyond end of device
[  196.190046][ T5429] loop3: rw=0, sector=34359739344, nr_sectors = 8 limit=16
[  196.772928][ T4250] rc_core: IR keymap rc-hauppauge not found
[  196.778965][ T4250] Registered IR keymap rc-empty
[  196.789017][ T4250] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0
[  196.800307][ T4250] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0/input9
[  196.859598][ T4250] usb 2-1: USB disconnect, device number 6
[  197.811293][    C1] eth0: bad gso: type: 1, size: 1408
[  197.829720][    C1] eth0: bad gso: type: 1, size: 1408
[  197.915155][ T5446] loop2: detected capacity change from 0 to 64
[  198.490980][ T5451] hfs: request for non-existent node 1280 in B*Tree
[  198.498081][ T5451] hfs: request for non-existent node 1280 in B*Tree
[  198.840250][ T5458] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[  198.840250][ T5458] The task syz.1.329 (5458) triggered the difference, watch for misbehavior.
[  198.897639][ T3694] team0 (unregistering): Port device team_slave_1 removed
[  198.914179][    T9] smc: removing ib device syz2
[  198.987655][ T3694] team0 (unregistering): Port device team_slave_0 removed
[  199.130403][ T5466] mmap: syz.0.332 (5466) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  199.191567][ T5466] binder_alloc: binder_alloc_mmap_handler: 5463 20ffc000-20ffd000 already mapped failed -16
[  200.805418][ T3694] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  201.868327][ T3694] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  201.907408][ T5476] loop0: detected capacity change from 0 to 1024
[  201.927928][ T5476] EXT4-fs: Ignoring removed orlov option
[  201.929881][ T5480] loop1: detected capacity change from 0 to 128
[  201.935667][ T5476] EXT4-fs: Ignoring removed nomblk_io_submit option
[  201.962071][ T5480] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  201.997890][ T5476] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=8803c118, mo2=0002]
[  202.025361][ T5476] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  202.110401][ T5480] overlayfs: './file1' not a directory
[  202.478075][ T4143] EXT4-fs (loop0): unmounting filesystem.
[  202.617855][ T5488] loop0: detected capacity change from 0 to 1024
[  203.032798][   T26] audit: type=1800 audit(1724958295.013:99): pid=5493 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.338" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[  203.629067][ T4505] hfsplus: b-tree write err: -5, ino 4
[  203.637845][ T3694] bond0 (unregistering): Released all slaves
[  203.832950][ T5486] netlink: 8 bytes leftover after parsing attributes in process `syz.2.331'.
[  204.647650][ T5515] loop2: detected capacity change from 0 to 16
[  204.689887][ T5515] erofs: (device loop2): mounted with root inode @ nid 36.
[  204.977560][ T5269] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  205.303212][ T5269] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  205.333625][ T5269] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  205.477407][ T5269] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  205.501983][ T5521] support for the xor transformation has been removed.
[  205.567788][ T5524] netlink: 16 bytes leftover after parsing attributes in process `syz.2.347'.
[  205.983119][    T7] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  206.284487][    T7] usb 2-1: Using ep0 maxpacket: 32
[  206.623060][    T7] usb 2-1: New USB device found, idVendor=05a9, idProduct=1550, bcdDevice=e4.bb
[  206.643174][    T7] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  206.665120][ T5269] 8021q: adding VLAN 0 to HW filter on device bond0
[  206.686536][    T7] usb 2-1: Product: syz
[  206.690740][    T7] usb 2-1: Manufacturer: syz
[  206.719053][ T5542] loop2: detected capacity change from 0 to 1024
[  206.739875][   T40] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  206.752421][    T7] usb 2-1: SerialNumber: syz
[  206.761436][   T40] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  206.818933][ T5269] 8021q: adding VLAN 0 to HW filter on device team0
[  206.825965][    T7] usb 2-1: config 0 descriptor??
[  206.851113][   T40] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  206.874669][    T7] gspca_main: ov534_9-2.14.0 probing 05a9:1550
[  206.914707][   T40] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  206.928793][   T40] bridge0: port 1(bridge_slave_0) entered blocking state
[  206.935992][   T40] bridge0: port 1(bridge_slave_0) entered forwarding state
[  206.978983][   T40] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  206.993381][   T40] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  207.018055][   T40] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  207.041894][   T40] bridge0: port 2(bridge_slave_1) entered blocking state
[  207.049145][   T40] bridge0: port 2(bridge_slave_1) entered forwarding state
[  207.088851][ T5528] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  207.129351][   T40] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  207.179297][ T5528] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  207.248076][   T40] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  207.277707][   T40] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  207.300473][   T40] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  207.319796][   T40] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  207.351441][   T40] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  207.386286][   T40] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  207.398733][    T7] gspca_ov534_9: reg_w failed -110
[  207.413791][ T5553] loop2: detected capacity change from 0 to 1024
[  207.440414][ T5528] device dummy0 entered promiscuous mode
[  207.510932][ T5528] device dummy0 left promiscuous mode
[  207.567261][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  207.587520][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  207.623703][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  207.639390][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  207.679605][ T5269] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  207.913568][    T7] gspca_ov534_9: Unknown sensor 0000
[  207.913639][    T7] ov534_9: probe of 2-1:0.0 failed with error -22
[  207.961272][    T7] usb 2-1: USB disconnect, device number 7
[  208.394379][ T3779] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  208.405479][ T3779] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  208.449831][ T5269] 8021q: adding VLAN 0 to HW filter on device batadv0
[  209.494380][ T5568] loop3: detected capacity change from 0 to 32768
[  210.171879][ T5568] XFS (loop3): Mounting V5 Filesystem
[  210.482202][ T5568] XFS (loop3): Ending clean mount
[  211.194503][ T5568] XFS (loop3): Quotacheck needed: Please wait.
[  211.497555][ T5568] XFS (loop3): Quotacheck: Done.
[  211.735377][ T3643] XFS (loop3): Unmounting Filesystem
[  212.391910][   T26] audit: type=1326 audit(1724958304.483:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5644 comm="syz.1.368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f811e979ef9 code=0x7ffc0000
[  212.420599][ T3898] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  212.434091][ T3898] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  212.489445][ T3898] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  212.497205][   T26] audit: type=1326 audit(1724958304.483:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5644 comm="syz.1.368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f811e979ef9 code=0x7ffc0000
[  212.497246][   T26] audit: type=1326 audit(1724958304.483:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5644 comm="syz.1.368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=297 compat=0 ip=0x7f811e979ef9 code=0x7ffc0000
[  212.497459][   T26] audit: type=1326 audit(1724958304.483:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5644 comm="syz.1.368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f811e979ef9 code=0x7ffc0000
[  212.497749][   T26] audit: type=1326 audit(1724958304.483:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5644 comm="syz.1.368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f811e979ef9 code=0x7ffc0000
[  212.497924][   T26] audit: type=1326 audit(1724958304.483:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5644 comm="syz.1.368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f811e979ef9 code=0x7ffc0000
[  212.626079][ T3898] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  212.649748][ T5269] device veth0_vlan entered promiscuous mode
[  212.660607][ T3898] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  212.709696][ T3898] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  212.751339][ T5269] device veth1_vlan entered promiscuous mode
[  212.999365][ T3898] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  213.018281][ T5651] loop3: detected capacity change from 0 to 512
[  213.030181][   T26] audit: type=1326 audit(1724958304.483:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5644 comm="syz.1.368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f811e979ef9 code=0x7ffc0000
[  213.060455][   T26] audit: type=1326 audit(1724958304.483:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5644 comm="syz.1.368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f811e979ef9 code=0x7ffc0000
[  213.069736][ T3898] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  213.120747][ T5651] EXT4-fs error (device loop3): ext4_expand_extra_isize_ea:2766: inode #12: comm syz.3.367: corrupted xattr block 142
[  213.125754][ T3898] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  213.143868][ T3898] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  213.157922][   T26] audit: type=1326 audit(1724958304.483:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5644 comm="syz.1.368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f811e979ef9 code=0x7ffc0000
[  213.161211][ T5269] device veth0_macvtap entered promiscuous mode
[  213.180874][   T26] audit: type=1326 audit(1724958304.483:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5644 comm="syz.1.368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f811e979ef9 code=0x7ffc0000
[  213.214934][ T5651] EXT4-fs (loop3): Remounting filesystem read-only
[  213.221670][ T5651] EXT4-fs (loop3): 1 truncate cleaned up
[  213.230465][ T5651] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  213.244640][ T5269] device veth1_macvtap entered promiscuous mode
[  213.260984][ T5269] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  213.272960][ T5269] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  213.284213][ T5651] syz.3.367[5651] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  213.284328][ T5651] syz.3.367[5651] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  213.296075][ T5269] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  213.337325][ T5269] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  213.355454][ T5269] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  213.366695][ T5269] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  213.386967][ T5269] batman_adv: batadv0: Interface activated: batadv_slave_0
[  213.426721][ T3898] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  213.442141][ T3898] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  213.470256][ T3898] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  213.482937][ T3643] EXT4-fs (loop3): unmounting filesystem.
[  213.489789][ T3898] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  213.504350][ T5269] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  213.555557][ T5269] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  213.576065][ T5269] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  213.640964][ T5660] loop1: detected capacity change from 0 to 1024
[  213.654603][ T5269] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  213.684311][ T5269] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  213.697711][ T5660] EXT4-fs: Invalid want_extra_isize 137
[  213.715804][ T5269] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  213.741795][ T5269] batman_adv: batadv0: Interface activated: batadv_slave_1
[  213.769662][ T4747] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  213.801885][ T3777] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  213.827849][ T3777] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  213.879315][ T5269] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  213.940876][ T5269] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  213.991485][ T5269] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  214.015194][ T5269] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  214.066905][ T5666] netpci0: tun_chr_ioctl cmd 1074025677
[  214.091133][ T5666] netpci0: linktype set to 805
[  214.264206][ T3777] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  214.296607][ T3777] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  214.402387][ T3805] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  214.438482][ T3805] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  214.475803][ T3805] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  214.524373][ T5677] loop1: detected capacity change from 0 to 1024
[  214.538885][ T3777] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  215.722018][ T3778] hfsplus: b-tree write err: -5, ino 3
[  215.873555][ T5707] pci 0000:00:05.0: vgaarb: changed VGA decodes: olddecodes=io+mem,decodes=none:owns=io+mem
[  217.144822][ T5718] netlink: 'syz.1.385': attribute type 2 has an invalid length.
[  218.151358][ T5713] loop2: detected capacity change from 0 to 32768
[  218.231822][ T5713] XFS (loop2): Mounting V5 Filesystem
[  218.291603][ T5713] XFS (loop2): Torn write (CRC failure) detected at log block 0x10. Truncating head block from 0x30.
[  218.358981][ T5713] XFS (loop2): Corruption warning: Metadata has LSN (1:48) ahead of current LSN (1:16). Please unmount and run xfs_repair (>= v4.3) to resolve.
[  218.380103][ T5713] XFS (loop2): log mount/recovery failed: error -22
[  218.429430][ T5713] XFS (loop2): log mount failed
[  220.052731][ T4252] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  220.402705][ T4252] usb 1-1: Using ep0 maxpacket: 32
[  220.561250][ T4252] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  221.284115][ T4252] usb 1-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  221.344659][ T4252] usb 1-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  221.382476][ T4252] usb 1-1: Product: syz
[  221.391102][ T4252] usb 1-1: Manufacturer: syz
[  221.816937][ T4252] usb 1-1: SerialNumber: syz
[  221.832810][ T3651] Bluetooth: hci4: command 0x0406 tx timeout
[  221.833230][ T4252] usb 1-1: config 0 descriptor??
[  221.913056][ T5761] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  222.101558][ T4252] usb 1-1: USB disconnect, device number 2
[  222.862534][    C1] eth0: bad gso: type: 1, size: 1408
[  223.186606][ T5796] block device autoloading is deprecated and will be removed.
[  223.828226][ T5804] loop3: detected capacity change from 0 to 512
[  223.856500][ T5805] netlink: 320 bytes leftover after parsing attributes in process `syz.0.406'.
[  224.405759][ T5817] netlink: 96 bytes leftover after parsing attributes in process `syz.1.409'.
[  225.176967][ T5804] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  225.196754][ T5804] ext4 filesystem being mounted at /94/file0 supports timestamps until 2038 (0x7fffffff)
[  225.216914][ T5805] infiniband syz0: set active
[  225.268151][ T5805] infiniband syz0: added veth0_vlan
[  225.290467][ T5805] rdma_rxe: unable to create cq
[  225.301879][ T5804] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  225.328872][ T5805] infiniband syz0: Couldn't create ib_mad CQ
[  225.335922][ T5805] infiniband syz0: Couldn't open port 1
[  225.403988][ T5805] RDS/IB: syz0: added
[  225.408833][ T5805] smc: adding ib device syz0 with port count 1
[  225.421037][ T5805] smc:    ib device syz0 port 1 has pnetid 
[  225.437088][    C1] eth0: bad gso: type: 1, size: 1408
[  225.585519][ T5822] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 23 with error 28
[  225.598541][ T5822] EXT4-fs (loop3): This should not happen!! Data will be lost
[  225.598541][ T5822] 
[  225.608347][ T5822] EXT4-fs (loop3): Total free blocks count 0
[  225.614450][ T5822] EXT4-fs (loop3): Free/Dirty block details
[  225.620501][ T5822] EXT4-fs (loop3): free_blocks=65281
[  225.626029][ T5822] EXT4-fs (loop3): dirty_blocks=23
[  225.631160][ T5822] EXT4-fs (loop3): Block reservation details
[  225.637490][ T5822] EXT4-fs (loop3): i_reserved_data_blocks=23
[  226.380257][ T3643] EXT4-fs (loop3): unmounting filesystem.
[  226.546186][ T5835] loop3: detected capacity change from 0 to 256
[  226.673726][ T5835] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0xff6f124c, utbl_chksum : 0xe619d30d)
[  226.834106][ T5838] loop1: detected capacity change from 0 to 256
[  226.846005][ T5838] FAT-fs (loop1): Unrecognized mount option "00000000000000000004" or missing value
[  226.932703][ T4252] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  227.353247][ T4252] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  227.383061][ T4252] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  227.432066][ T4252] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  227.466934][ T4252] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  227.536663][ T4252] usb 5-1: config 0 descriptor??
[  228.059151][ T4252] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  228.163346][ T4252] plantronics 0003:047F:FFFF.0005: No inputs registered, leaving
[  228.172759][ T4746] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  228.411069][ T4252] plantronics 0003:047F:FFFF.0005: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[  229.142505][ T5847] loop3: detected capacity change from 0 to 1024
[  229.150989][ T5847] hfsplus: invalid attributes max_key_len 0
[  229.159292][ T5847] hfsplus: failed to load attributes file
[  229.940485][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  230.486229][ T3052] usb 5-1: USB disconnect, device number 4
[  230.552396][ T5865] loop4: detected capacity change from 0 to 512
[  230.565182][ T5865] EXT4-fs: Value of option "test_dummy_encryption" is unrecognized
[  230.605669][ T4746] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  230.613916][ T3679] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  230.821034][ T5869] binder: 5868:5869 ioctl c018620b 20000380 returned -14
[  231.643163][ T3679] usb 2-1: Using ep0 maxpacket: 16
[  231.777343][ T5871] loop4: detected capacity change from 0 to 40427
[  231.789428][ T3679] usb 2-1: config 0 has an invalid descriptor of length 169, skipping remainder of the config
[  231.816929][ T5871] F2FS-fs (loop4): Unrecognized mount option "errore" or missing value
[  231.863461][ T3679] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  231.873154][ T3679] usb 2-1: New USB device found, idVendor=1e7d, idProduct=31ce, bcdDevice= 0.00
[  231.883418][ T3679] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  231.907074][ T3679] usb 2-1: config 0 descriptor??
[  232.164246][ T5858] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  232.189840][ T5879] Driver unsupported XDP return value 0 on prog  (id 112) dev N/A, expect packet loss!
[  232.239239][ T5858] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  232.332854][ T3679] usb 2-1: string descriptor 0 read error: -71
[  232.340846][ T3679] usb 2-1: USB disconnect, device number 8
[  232.857772][ T5882] loop3: detected capacity change from 0 to 8192
[  233.008054][ T5882] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  233.595891][ T5901] netlink: 36 bytes leftover after parsing attributes in process `syz.4.433'.
[  235.961075][ T5937] loop1: detected capacity change from 0 to 256
[  236.820450][    C1] eth0: bad gso: type: 1, size: 1408
[  236.873513][ T4272] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  237.102481][ T5953] loop2: detected capacity change from 0 to 2048
[  237.126245][ T5953] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  237.282905][ T4272] usb 1-1: New USB device found, idVendor=0403, idProduct=6010, bcdDevice=c6.98
[  237.297553][ T4272] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  237.339971][ T4272] usb 1-1: config 0 descriptor??
[  237.414013][ T4272] ftdi_sio 1-1:0.0: FTDI USB Serial Device converter detected
[  237.441637][ T4272] ftdi_sio ttyUSB0: unknown device type: 0xc698
[  237.759398][ T5963] loop1: detected capacity change from 0 to 256
[  237.763111][ T5962] loop3: detected capacity change from 0 to 1024
[  237.907349][ T5962] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  238.031227][ T5962] EXT4-fs error (device loop3): __ext4_get_inode_loc:4506: comm syz.3.451: Invalid inode table block 0 in block_group 0
[  238.220693][ T3643] EXT4-fs error (device loop3): __ext4_get_inode_loc:4506: comm syz-executor: Invalid inode table block 0 in block_group 0
[  238.252737][ T3643] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5879: Corrupt filesystem
[  238.280329][ T3643] EXT4-fs error (device loop3): ext4_dirty_inode:6083: inode #2: comm syz-executor: mark_inode_dirty error
[  238.294343][ T3643] EXT4-fs error (device loop3): __ext4_get_inode_loc:4506: comm syz-executor: Invalid inode table block 0 in block_group 0
[  238.316745][ T3643] EXT4-fs error (device loop3): __ext4_get_inode_loc:4506: comm syz-executor: Invalid inode table block 0 in block_group 0
[  238.438049][   T40] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  238.629706][   T40] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  238.715929][ T3694] EXT4-fs error (device loop3): __ext4_get_inode_loc:4506: comm kworker/u4:5: Invalid inode table block 0 in block_group 0
[  238.794613][   T40] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  238.797987][ T3643] EXT4-fs (loop3): unmounting filesystem.
[  239.483612][ T3643] syz-executor (3643) used greatest stack depth: 18160 bytes left
[  239.522426][   T40] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  239.663323][ T4247] usb 1-1: USB disconnect, device number 3
[  239.677965][ T4247] ftdi_sio 1-1:0.0: device disconnected
[  240.394255][ T3651] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  240.421630][ T3651] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  240.442789][ T3649] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  240.452361][ T3651] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  240.482317][ T3651] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  240.493228][ T3651] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  240.528549][ T5987] team0: Device geneve2 is up. Set it down before adding it as a team port
[  241.461548][ T3651] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  241.472018][ T3651] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  241.481431][ T3651] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  241.495599][ T3651] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  241.517289][ T3651] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  241.524626][ T3651] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  242.953555][ T3651] Bluetooth: hci1: command tx timeout
[  243.258201][ T5984] chnl_net:caif_netlink_parms(): no params data found
[  243.406278][ T4252] libceph: connect (1)[c::]:6789 error -101
[  243.423231][ T4252] libceph: mon0 (1)[c::]:6789 connect error
[  243.449813][ T6036] ceph: No mds server is up or the cluster is laggy
[  243.483088][ T4252] libceph: connect (1)[c::]:6789 error -101
[  243.489834][ T4252] libceph: mon0 (1)[c::]:6789 connect error
[  243.592679][   T48] Bluetooth: hci3: command tx timeout
[  243.824776][ T6001] chnl_net:caif_netlink_parms(): no params data found
[  243.957104][ T5984] bridge0: port 1(bridge_slave_0) entered blocking state
[  244.018601][ T5984] bridge0: port 1(bridge_slave_0) entered disabled state
[  244.739194][ T5984] device bridge_slave_0 entered promiscuous mode
[  244.827727][ T5984] bridge0: port 2(bridge_slave_1) entered blocking state
[  244.844445][ T5984] bridge0: port 2(bridge_slave_1) entered disabled state
[  244.863144][ T5984] device bridge_slave_1 entered promiscuous mode
[  244.937875][   T40] device hsr_slave_0 left promiscuous mode
[  244.951524][   T40] device hsr_slave_1 left promiscuous mode
[  244.978035][   T40] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  244.998243][   T40] batman_adv: batadv0: Removing interface: batadv_slave_0
[  245.032067][   T40] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  245.033135][   T48] Bluetooth: hci1: command tx timeout
[  245.121539][   T40] batman_adv: batadv0: Removing interface: batadv_slave_1
[  245.183121][   T40] device bridge_slave_1 left promiscuous mode
[  245.212991][   T40] bridge0: port 2(bridge_slave_1) entered disabled state
[  245.242851][   T40] device bridge_slave_0 left promiscuous mode
[  245.273459][   T40] bridge0: port 1(bridge_slave_0) entered disabled state
[  245.786172][   T48] Bluetooth: hci3: command tx timeout
[  245.854002][ T6074] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[  245.891208][   T40] device veth1_macvtap left promiscuous mode
[  245.906272][   T40] device veth0_macvtap left promiscuous mode
[  245.915817][   T40] device veth1_vlan left promiscuous mode
[  245.928044][   T40] device veth0_vlan left promiscuous mode
[  246.583006][   T40] team0 (unregistering): Port device team_slave_1 removed
[  246.624353][   T40] team0 (unregistering): Port device team_slave_0 removed
[  246.663341][   T40] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  246.733616][   T40] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  247.114076][   T48] Bluetooth: hci1: command tx timeout
[  247.844813][ T3651] Bluetooth: hci3: command tx timeout
[  248.677484][   T40] bond0 (unregistering): Released all slaves
[  248.829384][ T5984] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  249.192686][   T48] Bluetooth: hci1: command tx timeout
[  249.240567][ T5984] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  249.310766][ T6103] loop1: detected capacity change from 0 to 1024
[  249.342478][ T6103] EXT4-fs: Ignoring removed orlov option
[  249.395117][ T6103] ext4: Unknown parameter 'dont_hash'
[  249.419744][ T5984] team0: Port device team_slave_0 added
[  249.445523][ T6001] bridge0: port 1(bridge_slave_0) entered blocking state
[  249.481782][ T6001] bridge0: port 1(bridge_slave_0) entered disabled state
[  249.506902][ T6001] device bridge_slave_0 entered promiscuous mode
[  249.928617][ T3651] Bluetooth: hci3: command tx timeout
[  250.345089][ T5984] team0: Port device team_slave_1 added
[  250.359469][ T6001] bridge0: port 2(bridge_slave_1) entered blocking state
[  250.380635][ T6001] bridge0: port 2(bridge_slave_1) entered disabled state
[  250.451668][ T6001] device bridge_slave_1 entered promiscuous mode
[  250.551156][ T5984] batman_adv: batadv0: Adding interface: batadv_slave_0
[  250.568540][ T5984] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  250.596440][ T5984] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  250.616669][ T6120] netlink: 5 bytes leftover after parsing attributes in process `syz.1.483'.
[  250.638087][ T5984] batman_adv: batadv0: Adding interface: batadv_slave_1
[  250.646049][ T5984] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  250.660748][ T6120] loop1: detected capacity change from 0 to 1024
[  250.688384][ T6120] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  250.704739][ T5984] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  250.734291][ T6001] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  250.752627][   T22] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  250.766143][ T6001] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  250.890058][ T6001] team0: Port device team_slave_0 added
[  250.985019][ T6001] team0: Port device team_slave_1 added
[  251.019946][ T5984] device hsr_slave_0 entered promiscuous mode
[  251.091643][ T5984] device hsr_slave_1 entered promiscuous mode
[  251.121017][ T6132] kernel read not supported for file / 
 (pid: 6132 comm: syz.4.485)
[  251.146785][   T26] kauditd_printk_skb: 12 callbacks suppressed
[  251.146801][   T26] audit: type=1800 audit(1724958343.243:122): pid=6132 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.485" name=2001 dev="mqueue" ino=46149 res=0 errno=0
[  251.162828][   T22] usb 1-1: New USB device found, idVendor=093a, idProduct=2626, bcdDevice= d.b4
[  251.185316][ T6132] netlink: 4 bytes leftover after parsing attributes in process `syz.4.485'.
[  251.195700][   T22] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  251.213454][   T22] usb 1-1: config 0 descriptor??
[  251.223303][ T6001] batman_adv: batadv0: Adding interface: batadv_slave_0
[  251.231960][ T6001] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  251.260948][ T6001] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  251.276470][   T22] gspca_main: gspca_pac7302-2.14.0 probing 093a:2626
[  251.322180][ T6001] batman_adv: batadv0: Adding interface: batadv_slave_1
[  251.340826][ T6001] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  251.374893][ T3679] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  251.423266][ T6001] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  251.657397][ T6001] device hsr_slave_0 entered promiscuous mode
[  251.678672][ T6001] device hsr_slave_1 entered promiscuous mode
[  251.697568][ T6001] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  251.707591][ T6001] Cannot create hsr debugfs directory
[  251.742954][ T3679] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  251.764771][ T3679] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  251.808230][ T3679] usb 2-1: New USB device found, idVendor=056a, idProduct=0315, bcdDevice= 0.00
[  251.827838][ T3679] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  251.848713][ T3679] usb 2-1: config 0 descriptor??
[  252.198058][   T22] input: gspca_pac7302 as /devices/platform/dummy_hcd.0/usb1/1-1/input/input10
[  252.326736][ T3679] wacom 0003:056A:0315.0006: Unknown device_type for 'HID 056a:0315'. Assuming pen.
[  252.346000][ T3679] wacom 0003:056A:0315.0006: hidraw0: USB HID v8.00 Device [HID 056a:0315] on usb-dummy_hcd.1-1/input0
[  252.388938][ T3679] input: Wacom Intuos Pro M Pen as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:056A:0315.0006/input/input11
[  252.504619][   T22] usb 1-1: USB disconnect, device number 4
[  252.566563][ T3052] usb 2-1: USB disconnect, device number 9
[  252.820155][ T6001] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  252.924065][ T6164] loop4: detected capacity change from 0 to 1024
[  252.988167][ T6164] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  253.006794][ T6001] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  253.051219][ T6164] EXT4-fs error (device loop4): __ext4_get_inode_loc:4506: comm syz.4.489: Invalid inode table block 0 in block_group 0
[  253.124932][ T6001] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  253.153256][ T5269] EXT4-fs error (device loop4): __ext4_get_inode_loc:4506: comm syz-executor: Invalid inode table block 0 in block_group 0
[  253.189019][ T5269] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5879: Corrupt filesystem
[  253.199069][ T5269] EXT4-fs error (device loop4): ext4_dirty_inode:6083: inode #2: comm syz-executor: mark_inode_dirty error
[  253.241806][ T5269] EXT4-fs error (device loop4): __ext4_get_inode_loc:4506: comm syz-executor: Invalid inode table block 0 in block_group 0
[  253.279147][ T5269] EXT4-fs error (device loop4): __ext4_get_inode_loc:4506: comm syz-executor: Invalid inode table block 0 in block_group 0
[  253.426324][ T6001] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  254.556047][  T102] EXT4-fs error (device loop4): __ext4_get_inode_loc:4506: comm kworker/u4:4: Invalid inode table block 0 in block_group 0
[  254.587958][ T5269] EXT4-fs (loop4): unmounting filesystem.
[  254.669268][ T5984] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  254.759948][ T5984] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  254.924697][   T40] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  254.989784][ T5984] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  255.093781][   T40] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  255.158114][ T5984] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  255.289953][   T40] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  255.346989][ T6001] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  255.471348][ T6001] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  255.547775][   T40] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  255.578532][ T6001] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  255.601049][ T1267] ieee802154 phy0 wpan0: encryption failed: -22
[  255.650397][ T6001] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  255.931904][ T5984] 8021q: adding VLAN 0 to HW filter on device bond0
[  256.035697][  T102] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  256.093355][  T102] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  256.146087][ T5984] 8021q: adding VLAN 0 to HW filter on device team0
[  256.158835][   T48] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  256.170490][   T48] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  256.180094][   T48] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  256.183676][ T6213] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[  256.199084][   T48] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  256.207366][   T48] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  256.218630][   T48] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  256.240870][ T6001] 8021q: adding VLAN 0 to HW filter on device bond0
[  256.959408][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  257.003703][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  257.059847][    T9] bridge0: port 1(bridge_slave_0) entered blocking state
[  257.067050][    T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[  257.108362][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  257.134041][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  257.193181][    T9] bridge0: port 2(bridge_slave_1) entered blocking state
[  257.200324][    T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[  257.238088][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  257.269761][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  257.304640][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  257.337815][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  257.357768][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  257.368578][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  257.767527][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  257.821474][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  258.074212][ T6001] 8021q: adding VLAN 0 to HW filter on device team0
[  258.232866][   T48] Bluetooth: hci2: command tx timeout
[  258.289407][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  258.299424][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  258.307989][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  258.316080][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  258.386595][ T5984] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  258.465134][ T6237] dccp_close: ABORT with 80 bytes unread
[  259.413568][ T4505] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  259.427287][ T4505] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  259.438103][ T4505] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  259.493382][ T4505] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  259.507577][ T4505] bridge0: port 1(bridge_slave_0) entered blocking state
[  259.514759][ T4505] bridge0: port 1(bridge_slave_0) entered forwarding state
[  259.527245][ T4505] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  259.578516][ T4505] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  259.668121][ T4505] bridge0: port 2(bridge_slave_1) entered blocking state
[  259.675342][ T4505] bridge0: port 2(bridge_slave_1) entered forwarding state
[  259.916077][ T4505] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  260.040598][ T4505] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  260.313268][ T3898] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  260.313314][ T3651] Bluetooth: hci2: command tx timeout
[  260.384843][ T3898] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  260.430837][ T3898] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  260.479001][ T3898] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  260.518368][ T3898] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  260.533352][ T3898] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  260.569066][ T3898] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  260.591681][ T3898] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  260.613432][ T3898] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  260.707462][ T6001] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  260.737430][ T3898] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  261.087998][   T22] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  261.142836][ T5984] 8021q: adding VLAN 0 to HW filter on device batadv0
[  261.180744][ T3805] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  261.190799][ T3805] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  261.338050][ T3898] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  261.352239][ T3898] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  261.372511][ T6001] 8021q: adding VLAN 0 to HW filter on device batadv0
[  261.482934][   T22] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  261.493825][ T6207] chnl_net:caif_netlink_parms(): no params data found
[  261.507513][   T22] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  261.528159][   T22] usb 1-1: New USB device found, idVendor=056a, idProduct=00dd, bcdDevice= 0.00
[  261.537428][   T22] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  261.549427][ T3805] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  261.565616][ T3805] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  261.568567][   T22] usb 1-1: config 0 descriptor??
[  261.634893][   T22] usbhid 1-1:0.0: couldn't find an input interrupt endpoint
[  261.691088][ T3805] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  261.705945][ T3805] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  261.736335][ T3805] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  261.768341][ T3805] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  261.778495][ T3805] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  261.798957][ T3805] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  261.833468][ T5984] device veth0_vlan entered promiscuous mode
[  262.002399][ T4249] usb 1-1: USB disconnect, device number 5
[  262.093204][ T5984] device veth1_vlan entered promiscuous mode
[  262.130975][ T6001] device veth0_vlan entered promiscuous mode
[  262.230306][ T4521] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  262.242772][ T4521] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  262.298279][ T6001] device veth1_vlan entered promiscuous mode
[  262.310273][ T4521] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  262.319470][ T4521] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  262.328705][ T4521] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  262.392792][ T3651] Bluetooth: hci2: command tx timeout
[  262.530190][ T6207] bridge0: port 1(bridge_slave_0) entered blocking state
[  262.537807][ T6207] bridge0: port 1(bridge_slave_0) entered disabled state
[  262.555208][ T6207] device bridge_slave_0 entered promiscuous mode
[  262.569964][ T6207] bridge0: port 2(bridge_slave_1) entered blocking state
[  262.597051][ T6207] bridge0: port 2(bridge_slave_1) entered disabled state
[  262.633236][ T6207] device bridge_slave_1 entered promiscuous mode
[  262.676645][ T3805] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  262.696101][ T3805] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  262.715109][ T3805] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  262.742120][ T6001] device veth0_macvtap entered promiscuous mode
[  262.826774][ T5984] device veth0_macvtap entered promiscuous mode
[  262.849370][ T6001] device veth1_macvtap entered promiscuous mode
[  262.878998][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  262.906121][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  262.938284][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  263.009637][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  263.031349][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  263.057693][ T6207] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  263.091040][ T6207] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  263.102853][ T6324] loop1: detected capacity change from 0 to 512
[  263.130695][ T6324] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  263.197494][ T5984] device veth1_macvtap entered promiscuous mode
[  263.211866][ T6324] EXT4-fs (loop1): warning: checktime reached, running e2fsck is recommended
[  263.247314][ T6001] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  263.264836][ T6324] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c01c, mo2=0002]
[  263.272633][ T6001] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  263.283383][ T6001] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  263.294056][ T6001] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  263.304165][ T6001] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  263.314717][ T6001] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  263.326338][ T6001] batman_adv: batadv0: Interface activated: batadv_slave_0
[  263.337045][ T6324] System zones: 0-2, 18-18, 34-34
[  263.342903][   T40] device hsr_slave_0 left promiscuous mode
[  263.350135][   T40] device hsr_slave_1 left promiscuous mode
[  263.358116][   T40] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  263.364518][ T6324] EXT4-fs error (device loop1): ext4_orphan_get:1422: comm syz.1.510: bad orphan inode 15
[  263.365957][   T40] batman_adv: batadv0: Removing interface: batadv_slave_0
[  263.390460][ T6324] ext4_test_bit(bit=14, block=18) = 1
[  263.396084][   T40] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  263.401223][ T6324] is_bad_inode(inode)=0
[  263.403896][   T40] batman_adv: batadv0: Removing interface: batadv_slave_1
[  263.409180][ T6324] NEXT_ORPHAN(inode)=2264924160
[  263.420566][   T40] device bridge_slave_1 left promiscuous mode
[  263.425985][ T6324] max_ino=32
[  263.427097][   T40] bridge0: port 2(bridge_slave_1) entered disabled state
[  263.429916][ T6324] i_nlink=0
[  263.429983][ T6324] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1085: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  263.459826][ T6324] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.510: bg 0: block 80: padding at end of block bitmap is not set
[  263.474704][   T40] device bridge_slave_0 left promiscuous mode
[  263.475599][ T6324] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6172: Corrupt filesystem
[  263.480913][   T40] bridge0: port 1(bridge_slave_0) entered disabled state
[  263.491455][ T6324] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  263.631165][   T40] device hsr_slave_0 left promiscuous mode
[  263.643698][   T40] device hsr_slave_1 left promiscuous mode
[  263.650395][   T40] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  263.658684][   T40] batman_adv: batadv0: Removing interface: batadv_slave_0
[  263.666807][   T40] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  263.674897][   T40] batman_adv: batadv0: Removing interface: batadv_slave_1
[  263.683512][   T40] device bridge_slave_1 left promiscuous mode
[  263.689694][   T40] bridge0: port 2(bridge_slave_1) entered disabled state
[  263.700026][   T40] device bridge_slave_0 left promiscuous mode
[  263.706624][   T40] bridge0: port 1(bridge_slave_0) entered disabled state
[  263.865222][   T40] device veth1_macvtap left promiscuous mode
[  264.033964][   T40] device veth0_macvtap left promiscuous mode
[  264.040080][   T40] device veth1_vlan left promiscuous mode
[  264.051237][   T40] device veth0_vlan left promiscuous mode
[  264.060433][   T40] device veth1_macvtap left promiscuous mode
[  264.072468][   T40] device veth0_macvtap left promiscuous mode
[  264.080055][   T40] device veth1_vlan left promiscuous mode
[  264.095167][   T40] device veth0_vlan left promiscuous mode
[  264.256905][ T3634] EXT4-fs (loop1): unmounting filesystem.
[  264.475054][ T3651] Bluetooth: hci2: command tx timeout
[  264.691471][   T40] team0 (unregistering): Port device team_slave_1 removed
[  264.728266][   T40] team0 (unregistering): Port device team_slave_0 removed
[  264.762318][   T40] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  264.798161][   T40] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  265.168422][   T40] bond0 (unregistering): Released all slaves
[  265.531839][   T40] team0 (unregistering): Port device team_slave_1 removed
[  265.568966][   T40] team0 (unregistering): Port device team_slave_0 removed
[  265.602944][   T40] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  265.640840][   T40] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  266.001248][   T40] bond0 (unregistering): Released all slaves
[  266.088980][ T6207] team0: Port device team_slave_0 added
[  266.098611][ T4521] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  266.107835][ T4521] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  266.121125][ T6001] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  266.132264][ T6001] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  266.144199][ T6001] batman_adv: batadv0: Interface activated: batadv_slave_1
[  266.181138][ T6207] team0: Port device team_slave_1 added
[  266.195485][ T4521] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  266.205223][ T4521] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  266.223743][ T6001] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  266.232483][ T6001] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  266.242225][ T6001] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  266.251236][ T6001] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  266.263231][ T5984] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  266.274710][ T5984] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  266.284810][ T5984] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  266.295535][ T5984] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  266.307140][ T5984] batman_adv: batadv0: Interface activated: batadv_slave_0
[  266.326306][ T6207] batman_adv: batadv0: Adding interface: batadv_slave_0
[  266.336697][ T6207] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  266.363666][ T6207] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  266.376094][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  266.384928][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  266.401947][ T5984] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  266.413801][ T5984] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  266.424241][ T5984] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  266.435016][ T5984] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  266.454676][ T5984] batman_adv: batadv0: Interface activated: batadv_slave_1
[  266.471697][ T6207] batman_adv: batadv0: Adding interface: batadv_slave_1
[  266.479712][ T6207] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  266.506285][ T6207] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  266.519131][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  266.533975][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  266.552225][ T5984] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  266.568482][ T5984] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  266.577710][ T5984] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  266.587162][ T5984] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  266.662475][ T6207] device hsr_slave_0 entered promiscuous mode
[  266.694558][ T6207] device hsr_slave_1 entered promiscuous mode
[  266.701422][ T6207] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  266.712979][ T6207] Cannot create hsr debugfs directory
[  266.861215][ T3805] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  266.883114][ T3694] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  266.891462][ T3694] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  266.904821][ T3805] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  266.997221][ T3805] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  267.005884][ T3805] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  267.034762][ T4505] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  267.048252][ T4505] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  267.099115][ T3805] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  267.109015][ T3805] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  267.140234][ T3694] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  267.167227][ T3694] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  267.408909][ T6355] kcapi: manufacturer command 0 unknown.
[  268.030531][ T6359] loop2: detected capacity change from 0 to 256
[  268.281143][    C1] eth0: bad gso: type: 1, size: 1408
[  269.409513][ T6366] loop3: detected capacity change from 0 to 512
[  269.471503][ T6366] ext4: Bad value for 'auto_da_alloc'
[  269.628012][ T4747] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  269.805493][ T6366] loop3: detected capacity change from 0 to 1024
[  269.873462][ T6207] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  269.885451][ T6207] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  269.893111][ T6366] JBD2: no valid journal superblock found
[  269.898873][ T6366] EXT4-fs (loop3): error loading journal
[  269.906328][ T6376] loop1: detected capacity change from 0 to 2048
[  269.916306][ T6207] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  270.077755][ T6207] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  270.169264][ T6376] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  270.206412][ T6363] dccp_close: ABORT with 80 bytes unread
[  272.024594][ T6392] loop2: detected capacity change from 0 to 16
[  272.535394][ T6392] erofs: (device loop2): mounted with root inode @ nid 36.
[  272.559694][ T6390] erofs: (device loop2): z_erofs_readahead: readahead error at page 12 @ nid 36
[  272.570451][ T6390] erofs: (device loop2): z_erofs_readahead: readahead error at page 10 @ nid 36
[  272.580305][ T6390] erofs: (device loop2): z_erofs_readahead: readahead error at page 6 @ nid 36
[  272.589787][ T6390] erofs: (device loop2): z_erofs_readahead: readahead error at page 4 @ nid 36
[  272.599078][ T6390] erofs: (device loop2): z_erofs_do_map_blocks: invalid logical cluster 0 at nid 36
[  272.608604][ T6390] erofs: (device loop2): z_erofs_readahead: readahead error at page 0 @ nid 36
[  272.617664][ T6390] syz.2.518: attempt to access beyond end of device
[  272.617664][ T6390] loop2: rw=524288, sector=296, nr_sectors = 16 limit=16
[  272.631345][ T6390] syz.2.518: attempt to access beyond end of device
[  272.631345][ T6390] loop2: rw=524288, sector=1049264, nr_sectors = 16 limit=16
[  272.645444][ T6390] syz.2.518: attempt to access beyond end of device
[  272.645444][ T6390] loop2: rw=524288, sector=6520, nr_sectors = 16 limit=16
[  272.659103][ T6390] syz.2.518: attempt to access beyond end of device
[  272.659103][ T6390] loop2: rw=524288, sector=34359736328, nr_sectors = 16 limit=16
[  272.673366][ T6390] syz.2.518: attempt to access beyond end of device
[  272.673366][ T6390] loop2: rw=524288, sector=8, nr_sectors = 16 limit=16
[  272.686770][ T6390] syz.2.518: attempt to access beyond end of device
[  272.686770][ T6390] loop2: rw=524288, sector=720, nr_sectors = 16 limit=16
[  272.700430][ T6390] syz.2.518: attempt to access beyond end of device
[  272.700430][ T6390] loop2: rw=524288, sector=536576856, nr_sectors = 16 limit=16
[  273.923170][ T6207] 8021q: adding VLAN 0 to HW filter on device bond0
[  273.998341][ T4505] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  274.019361][ T4505] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  274.048625][ T6207] 8021q: adding VLAN 0 to HW filter on device team0
[  274.065256][ T3634] ==================================================================
[  274.073449][ T3634] BUG: KASAN: slab-out-of-bounds in udf_readdir+0xc5f/0x2240
[  274.080837][ T3634] Write of size 73 at addr ffff8880778b5eb6 by task syz-executor/3634
[  274.089092][ T3634] 
[  274.091449][ T3634] CPU: 0 PID: 3634 Comm: syz-executor Not tainted 6.1.106-syzkaller #0
[  274.099698][ T3634] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  274.109762][ T3634] Call Trace:
[  274.113052][ T3634]  <TASK>
[  274.115986][ T3634]  dump_stack_lvl+0x1e3/0x2cb
[  274.120760][ T3634]  ? nf_tcp_handle_invalid+0x642/0x642
[  274.126231][ T3634]  ? panic+0x764/0x764
[  274.130311][ T3634]  ? _printk+0xd1/0x111
[  274.134560][ T3634]  ? __virt_addr_valid+0x17f/0x530
[  274.139684][ T3634]  ? __virt_addr_valid+0x17f/0x530
[  274.144812][ T3634]  print_report+0x15f/0x4f0
[  274.149326][ T3634]  ? __virt_addr_valid+0x17f/0x530
[  274.154451][ T3634]  ? __virt_addr_valid+0x17f/0x530
[  274.159573][ T3634]  ? __virt_addr_valid+0x45b/0x530
[  274.164697][ T3634]  ? __phys_addr+0xb6/0x170
[  274.169210][ T3634]  ? udf_readdir+0xc5f/0x2240
[  274.173902][ T3634]  kasan_report+0x136/0x160
[  274.178410][ T3634]  ? udf_readdir+0xc5f/0x2240
[  274.183096][ T3634]  kasan_check_range+0x27f/0x290
[  274.188036][ T3634]  ? udf_readdir+0xc5f/0x2240
[  274.192729][ T3634]  memcpy+0x3c/0x60
[  274.196561][ T3634]  udf_readdir+0xc5f/0x2240
[  274.201087][ T3634]  ? load_block_bitmap+0x520/0x520
[  274.206212][ T3634]  ? __might_sleep+0xb0/0xb0
[  274.210851][ T3634]  ? aa_file_perm+0x3e3/0xf60
[  274.215550][ T3634]  ? trace_raw_output_contention_end+0xd0/0xd0
[  274.221760][ T3634]  ? load_block_bitmap+0x520/0x520
[  274.226898][ T3634]  ? __fdget_pos+0x2ba/0x360
[  274.231495][ T3634]  ? end_current_label_crit_section+0x147/0x170
[  274.237760][ T3634]  ? common_file_perm+0x17d/0x1d0
[  274.242795][ T3634]  ? fsnotify_perm+0x439/0x590
[  274.247569][ T3634]  iterate_dir+0x224/0x560
[  274.252011][ T3634]  ? load_block_bitmap+0x520/0x520
[  274.257132][ T3634]  __se_sys_getdents64+0x209/0x4f0
[  274.262339][ T3634]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[  274.268334][ T3634]  ? __x64_sys_getdents64+0x80/0x80
[  274.273551][ T3634]  ? filldir+0x6f0/0x6f0
[  274.277822][ T3634]  ? syscall_enter_from_user_mode+0x2e/0x230
[  274.283817][ T3634]  ? lockdep_hardirqs_on+0x94/0x130
[  274.289023][ T3634]  ? syscall_enter_from_user_mode+0x2e/0x230
[  274.295005][ T3634]  do_syscall_64+0x3b/0xb0
[  274.299429][ T3634]  ? clear_bhb_loop+0x45/0xa0
[  274.304109][ T3634]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  274.310009][ T3634] RIP: 0033:0x7f811e9ac093
[  274.314437][ T3634] Code: c1 66 0f 1f 44 00 00 48 83 c4 08 48 89 ef 5b 5d e9 32 43 f8 ff 66 90 b8 ff ff ff 7f 48 39 c2 48 0f 47 d0 b8 d9 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 05 c3 0f 1f 40 00 48 c7 c2 a8 ff ff ff f7 d8
[  274.334582][ T3634] RSP: 002b:00007ffc0806d1c8 EFLAGS: 00000293 ORIG_RAX: 00000000000000d9
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  274.343012][ T3634] RAX: ffffffffffffffda RBX: 0000555556b08600 RCX: 00007f811e9ac093
[  274.350981][ T3634] RDX: 0000000000008000 RSI: 0000555556b08600 RDI: 0000000000000005
[  274.358955][ T3634] RBP: 0000555556b085d4 R08: 0000000000000000 R09: 0000000000000000
[  274.366934][ T3634] R10: 0000000000001000 R11: 0000000000000293 R12: ffffffffffffffa8
[  274.374926][ T3634] R13: 0000000000000010 R14: 0000555556b085d0 R15: 00007ffc0806f470
[  274.382920][ T3634]  </TASK>
[  274.385951][ T3634] 
[  274.388264][ T3634] Allocated by task 3634:
[  274.392578][ T3634]  kasan_set_track+0x4b/0x70
[  274.397176][ T3634]  __kasan_kmalloc+0x97/0xb0
[  274.401863][ T3634]  udf_readdir+0xb78/0x2240
[  274.406374][ T3634]  iterate_dir+0x224/0x560
[  274.410789][ T3634]  __se_sys_getdents64+0x209/0x4f0
[  274.415994][ T3634]  do_syscall_64+0x3b/0xb0
[  274.420422][ T3634]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  274.426319][ T3634] 
[  274.428636][ T3634] Last potentially related work creation:
[  274.434343][ T3634]  kasan_save_stack+0x3b/0x60
[  274.439038][ T3634]  __kasan_record_aux_stack+0xb0/0xc0
[  274.444417][ T3634]  kvfree_call_rcu+0x116/0x8c0
[  274.449185][ T3634]  drop_sysctl_table+0x317/0x460
[  274.454132][ T3634]  drop_sysctl_table+0x329/0x460
[  274.459086][ T3634]  unregister_sysctl_table+0x86/0x130
[  274.464465][ T3634]  neigh_sysctl_unregister+0x74/0x90
[  274.469749][ T3634]  addrconf_notify+0x82b/0xf60
[  274.474511][ T3634]  raw_notifier_call_chain+0xd0/0x170
[  274.479877][ T3634]  dev_change_name+0x70b/0x9a0
[  274.484637][ T3634]  do_setlink+0xa72/0x3de0
[  274.489051][ T3634]  rtnl_newlink+0x172c/0x2050
[  274.493723][ T3634]  rtnetlink_rcv_msg+0x818/0xff0
[  274.498691][ T3634]  netlink_rcv_skb+0x1cd/0x410
[  274.503455][ T3634]  netlink_unicast+0x7d8/0x970
[  274.508217][ T3634]  netlink_sendmsg+0xa26/0xd60
[  274.512979][ T3634]  __sys_sendto+0x480/0x600
[  274.513048][ T4505] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  274.517466][ T3634]  __x64_sys_sendto+0xda/0xf0
[  274.517485][ T3634]  do_syscall_64+0x3b/0xb0
[  274.517504][ T3634]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  274.517522][ T3634] 
[  274.517526][ T3634] Second to last potentially related work creation:
[  274.517532][ T3634]  kasan_save_stack+0x3b/0x60
[  274.517551][ T3634]  __kasan_record_aux_stack+0xb0/0xc0
[  274.517566][ T3634]  call_rcu+0x163/0xa10
[  274.517579][ T3634]  fib_release_info+0x61c/0x6e0
[  274.517595][ T3634]  fib_table_flush+0xcfe/0x13d0
[  274.517611][ T3634]  fib_netdev_event+0x3c2/0x730
[  274.517626][ T3634]  raw_notifier_call_chain+0xd0/0x170
[  274.517644][ T3634]  dev_close_many+0x37c/0x530
[  274.517657][ T3634]  unregister_netdevice_many+0x4f7/0x17a0
[  274.517676][ T3634]  sit_exit_batch_net+0x43c/0x480
[  274.517690][ T3634]  cleanup_net+0x763/0xb60
[  274.517707][ T3634]  process_one_work+0x8a9/0x11d0
[  274.517724][ T3634]  worker_thread+0xa47/0x1200
[  274.517739][ T3634]  kthread+0x28d/0x320
[  274.517757][ T3634]  ret_from_fork+0x1f/0x30
[  274.517773][ T3634] 
[  274.517776][ T3634] The buggy address belongs to the object at ffff8880778b5e00
[  274.517776][ T3634]  which belongs to the cache kmalloc-256 of size 256
[  274.517789][ T3634] The buggy address is located 182 bytes inside of
[  274.517789][ T3634]  256-byte region [ffff8880778b5e00, ffff8880778b5f00)
[  274.517805][ T3634] 
[  274.517809][ T3634] The buggy address belongs to the physical page:
[  274.517829][ T3634] page:ffffea0001de2d00 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x778b4
[  274.517847][ T3634] head:ffffea0001de2d00 order:1 compound_mapcount:0 compound_pincount:0
[  274.517861][ T3634] flags: 0xfff00000010200(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[  274.517888][ T3634] raw: 00fff00000010200 dead000000000100 dead000000000122 ffff888012841b40
[  274.517902][ T3634] raw: 0000000000000000 0000000080100010 00000001ffffffff 0000000000000000
[  274.517910][ T3634] page dumped because: kasan: bad access detected
[  274.517922][ T3634] page_owner tracks the page as allocated
[  274.543294][ T4505] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  274.549743][ T3634] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 3645, tgid 3645 (syz-executor), ts 56908843926, free_ts 56811792856
[  274.577585][ T4505] bridge0: port 1(bridge_slave_0) entered blocking state
[  274.578744][ T3634]  post_alloc_hook+0x18d/0x1b0
[  274.584192][ T4505] bridge0: port 1(bridge_slave_0) entered forwarding state
[  274.588741][ T3634]  get_page_from_freelist+0x322e/0x33b0
[  274.613024][ T4505] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  274.613393][ T3634]  __alloc_pages+0x28d/0x770
[  274.618110][ T4505] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  274.621830][ T3634]  alloc_slab_page+0x6a/0x150
[  274.621854][ T3634]  new_slab+0x84/0x2d0
[  274.621870][ T3634]  ___slab_alloc+0xc20/0x1270
[  274.621885][ T3634]  __kmem_cache_alloc_node+0x19f/0x260
[  274.621901][ T3634]  kmalloc_trace+0x26/0xe0
[  274.621916][ T3634]  ____ip_mc_inc_group+0x319/0xbf0
[  274.621942][ T3634]  ip_mc_up+0x11b/0x2f0
[  274.621959][ T3634]  inetdev_event+0xf24/0x1490
[  274.621978][ T3634]  raw_notifier_call_chain+0xd0/0x170
[  274.621995][ T3634]  __dev_notify_flags+0x304/0x610
[  274.622014][ T3634]  dev_change_flags+0xe7/0x190
[  274.622031][ T3634]  do_setlink+0xcf4/0x3de0
[  274.622050][ T3634]  rtnl_newlink+0x172c/0x2050
[  274.622068][ T3634] page last free stack trace:
[  274.622074][ T3634]  free_unref_page_prepare+0xf63/0x1120
[  274.622089][ T3634]  free_unref_page+0x33/0x3e0
[  274.622102][ T3634]  qlist_free_all+0x76/0xe0
[  274.622118][ T3634]  kasan_quarantine_reduce+0x156/0x170
[  274.622134][ T3634]  __kasan_slab_alloc+0x1f/0x70
[  274.622147][ T3634]  slab_post_alloc_hook+0x52/0x3a0
[  274.622164][ T3634]  kmem_cache_alloc_lru+0x10c/0x2d0
[  274.622180][ T3634]  sock_alloc_inode+0x24/0xc0
[  274.622192][ T3634]  new_inode_pseudo+0x61/0x1d0
[  274.622208][ T3634]  __sock_create+0x11f/0x910
[  274.622226][ T3634]  __sys_socket+0x136/0x3a0
[  274.622243][ T3634]  __x64_sys_socket+0x76/0x80
[  274.622259][ T3634]  do_syscall_64+0x3b/0xb0
[  274.643082][ T4505] bridge0: port 2(bridge_slave_1) entered blocking state
[  274.651844][ T3634]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  274.654259][ T4505] bridge0: port 2(bridge_slave_1) entered forwarding state
[  274.660535][ T3634] 
[  274.660540][ T3634] Memory state around the buggy address:
[  274.702870][ T4505] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  274.704038][ T3634]  ffff8880778b5d80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  274.711329][ T4505] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  274.716113][ T3634]  ffff8880778b5e00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  274.716124][ T3634] >ffff8880778b5e80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 06
[  274.716130][ T3634]                                                                 ^
[  274.716139][ T3634]  ffff8880778b5f00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  274.716148][ T3634]  ffff8880778b5f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  274.716154][ T3634] ==================================================================
[  274.735362][ T3634] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  274.735376][ T3634] CPU: 0 PID: 3634 Comm: syz-executor Not tainted 6.1.106-syzkaller #0
[  274.735395][ T3634] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  274.735404][ T3634] Call Trace:
[  274.735409][ T3634]  <TASK>
[  274.735414][ T3634]  dump_stack_lvl+0x1e3/0x2cb
[  274.735442][ T3634]  ? nf_tcp_handle_invalid+0x642/0x642
[  274.735462][ T3634]  ? panic+0x764/0x764
[  274.735476][ T3634]  ? preempt_schedule_common+0xa6/0xd0
[  274.735498][ T3634]  ? vscnprintf+0x59/0x80
[  274.735515][ T3634]  panic+0x318/0x764
[  274.735530][ T3634]  ? check_panic_on_warn+0x1d/0xa0
[  274.735547][ T3634]  ? memcpy_page_flushcache+0xfc/0xfc
[  274.735564][ T3634]  ? _raw_spin_unlock_irqrestore+0x128/0x130
[  274.735581][ T3634]  ? _raw_spin_unlock+0x40/0x40
[  274.735599][ T3634]  check_panic_on_warn+0x7e/0xa0
[  274.735615][ T3634]  ? udf_readdir+0xc5f/0x2240
[  274.735633][ T3634]  end_report+0x66/0x110
[  274.735647][ T3634]  kasan_report+0x143/0x160
[  274.735661][ T3634]  ? udf_readdir+0xc5f/0x2240
[  274.735680][ T3634]  kasan_check_range+0x27f/0x290
[  274.735694][ T3634]  ? udf_readdir+0xc5f/0x2240
[  274.735712][ T3634]  memcpy+0x3c/0x60
[  274.735728][ T3634]  udf_readdir+0xc5f/0x2240
[  274.735753][ T3634]  ? load_block_bitmap+0x520/0x520
[  274.735771][ T3634]  ? __might_sleep+0xb0/0xb0
[  274.735786][ T3634]  ? aa_file_perm+0x3e3/0xf60
[  274.735807][ T3634]  ? trace_raw_output_contention_end+0xd0/0xd0
[  274.735826][ T3634]  ? load_block_bitmap+0x520/0x520
[  274.735851][ T3634]  ? __fdget_pos+0x2ba/0x360
[  274.735867][ T3634]  ? end_current_label_crit_section+0x147/0x170
[  274.735887][ T3634]  ? common_file_perm+0x17d/0x1d0
[  274.735905][ T3634]  ? fsnotify_perm+0x439/0x590
[  274.735927][ T3634]  iterate_dir+0x224/0x560
[  274.735941][ T3634]  ? load_block_bitmap+0x520/0x520
[  274.735960][ T3634]  __se_sys_getdents64+0x209/0x4f0
[  274.735976][ T3634]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[  274.735997][ T3634]  ? __x64_sys_getdents64+0x80/0x80
[  274.736010][ T3634]  ? filldir+0x6f0/0x6f0
[  274.736026][ T3634]  ? syscall_enter_from_user_mode+0x2e/0x230
[  274.736042][ T3634]  ? lockdep_hardirqs_on+0x94/0x130
[  274.736057][ T3634]  ? syscall_enter_from_user_mode+0x2e/0x230
[  274.736074][ T3634]  do_syscall_64+0x3b/0xb0
[  274.736092][ T3634]  ? clear_bhb_loop+0x45/0xa0
[  274.736110][ T3634]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  274.736127][ T3634] RIP: 0033:0x7f811e9ac093
[  274.736141][ T3634] Code: c1 66 0f 1f 44 00 00 48 83 c4 08 48 89 ef 5b 5d e9 32 43 f8 ff 66 90 b8 ff ff ff 7f 48 39 c2 48 0f 47 d0 b8 d9 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 05 c3 0f 1f 40 00 48 c7 c2 a8 ff ff ff f7 d8
[  274.736155][ T3634] RSP: 002b:00007ffc0806d1c8 EFLAGS: 00000293 ORIG_RAX: 00000000000000d9
[  274.736173][ T3634] RAX: ffffffffffffffda RBX: 0000555556b08600 RCX: 00007f811e9ac093
[  274.736184][ T3634] RDX: 0000000000008000 RSI: 0000555556b08600 RDI: 0000000000000005
[  274.736194][ T3634] RBP: 0000555556b085d4 R08: 0000000000000000 R09: 0000000000000000
[  274.736204][ T3634] R10: 0000000000001000 R11: 0000000000000293 R12: ffffffffffffffa8
[  274.736215][ T3634] R13: 0000000000000010 R14: 0000555556b085d0 R15: 00007ffc0806f470
[  274.736232][ T3634]  </TASK>
[  274.746410][ T3634] Kernel Offset: disabled
[  275.329236][ T3634] Rebooting in 86400 seconds..