last executing test programs:

3m52.048652099s ago: executing program 4 (id=5):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x800714, &(0x7f0000000000), 0xff, 0x4a7, &(0x7f0000000280)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
write(r0, &(0x7f0000000180)="7e7226ce9b4d692092ffa2b579f0ff5793012c9738a9be19ff3e69a683a0a1bbace0dc3853c661a4e1019e7a1f3af60350126cb99c5f3ace6f5616c00e0fb30b2832398fed6233b8632a001dd0a846cbb8a5d77e3208db486b055edb6ae7917f07ccf4b6811be57047aa17799359e733ec395940d1feb7a9ec2ddadb1ff61070c9c00f9db8e47f74a5271fa77b6e692e6ac97aaae883e5522f8e86c2403aec0ff8dee1cba5d40f0969470b9a2a95f6f22f9d4250809400ea8403a6540948", 0xfffffec6)
creat(&(0x7f0000000380)='./bus\x00', 0x0)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
mkdir(&(0x7f0000000080)='./file0\x00', 0x0)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x40, 0x0)
ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x400, 0x0, 0x0, 0x1, 0x0, "ef35af413bb901527fe4d0ce5d29c3ee5e5c3676345a41499db7aac63a01000000000000004faa2ae2c084a0ea0000000000000000000c00002000", "036c47c67808200400000000000000335263bdbcef549ba197fce47ddfdd753abd950100002a00ffffffffffffffff00000000e8f20000000200", "b7326736181c208220000000b9000000000000000000f0fffffffff2ff00", [0x4]})
r2 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
unlinkat(r2, &(0x7f0000000280)='./file0\x00', 0x200)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100000000000000000000000000008500"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)

3m49.059541279s ago: executing program 4 (id=23):
syz_mount_image$erofs(&(0x7f0000000280), &(0x7f0000000140)='./file0\x00', 0x1000801, &(0x7f0000000200)=ANY=[@ANYRES16=0x0, @ANYBLOB="fcdf5883c81a6c1f703ca4d658f2464326cfe486a0970f633f6977"], 0x0, 0x1ca, &(0x7f00000008c0)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x21)
syz_mount_image$fuse(0x0, &(0x7f0000000c40)='./bus\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000005c0)='./bus\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r0, 0x0, 0x0)

3m48.574698532s ago: executing program 4 (id=26):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_PORT_GET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x20, 0x1405, 0x1, 0x70bd29, 0x25dfdbfd, "", [{{0x8, 0x1, 0x2}, {0x8, 0x3, 0x1}}]}, 0x20}, 0x1, 0x0, 0x0, 0x20044000}, 0x800)

3m48.031964346s ago: executing program 32 (id=26):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_PORT_GET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x20, 0x1405, 0x1, 0x70bd29, 0x25dfdbfd, "", [{{0x8, 0x1, 0x2}, {0x8, 0x3, 0x1}}]}, 0x20}, 0x1, 0x0, 0x0, 0x20044000}, 0x800)

1m43.503715163s ago: executing program 5 (id=453):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000900), r0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'bond_slave_1\x00', <r3=>0x0})
sendmsg$ETHTOOL_MSG_LINKINFO_SET(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000b00)={0x34, r1, 0x1, 0x70bd25, 0x25dfdbfc, {}, [@ETHTOOL_A_LINKINFO_HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan0\x00'}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x20009014}, 0x4000080)

1m43.115943595s ago: executing program 5 (id=455):
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000840)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc0ed000e, &(0x7f0000000200)={[{@jqfmt_vfsold}, {@orlov}, {@debug}, {@noload}, {@nombcache}, {@noblock_validity}, {@init_itable_val={'init_itable', 0x3d, 0x601}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x8000}}]}, 0xfa, 0x47c, &(0x7f0000000a80)="$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")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x90)
getdents(r0, 0x0, 0x0)
getdents64(r0, 0x0, 0x0)

1m41.653955475s ago: executing program 5 (id=457):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x3, 0x2000000000000216, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2400000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x45bd}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='mem_disconnect\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f00000004c0)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x0, 0xe, 0x0, &(0x7f00000003c0)="131c8701feaa16bca4ac74ab821d", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x9}, 0x50)

1m40.657902442s ago: executing program 2 (id=460):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r0, &(0x7f00003a1000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000000)="9a01000000f800b8d58800000f23d00f21f8351000000d0f23f864640f79ea66baf80cb8c85f5480ef66bafc0cecc4c2adac17b9550200000f320f2860c7c4e11751df0f2e2d00000080b9800000c00f3235008000000f30", 0x58}], 0x1, 0x4a, 0x0, 0x0)
ioctl$KVM_SET_GUEST_DEBUG_x86(r2, 0x4048ae9b, &(0x7f0000000080)={0x40003, 0x0, {[0xffffffffffffffff, 0x0, 0x8, 0xfffffffdefffff16, 0x3, 0x10, 0x4, 0x4]}})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

1m40.411893413s ago: executing program 5 (id=463):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x800714, &(0x7f0000000000), 0xff, 0x4a7, &(0x7f0000000280)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
write(r0, &(0x7f0000000180)="7e7226ce9b4d692092ffa2b579f0ff5793012c9738a9be19ff3e69a683a0a1bbace0dc3853c661a4e1019e7a1f3af60350126cb99c5f3ace6f5616c00e0fb30b2832398fed6233b8632a001dd0a846cbb8a5d77e3208db486b055edb6ae7917f07ccf4b6811be57047aa17799359e733ec395940d1feb7a9ec2ddadb1ff61070c9c00f9db8e47f74a5271fa77b6e692e6ac97aaae883e5522f8e86c2403aec0ff8dee1cba5d40f0969470b9a2a95f6f22f9d4250809400ea8403a6540948", 0xfffffec6)
creat(&(0x7f0000000380)='./bus\x00', 0x0)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
mkdir(&(0x7f0000000080)='./file0\x00', 0x0)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x40, 0x0)
ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x400, 0x0, 0x0, 0x1, 0x0, "ef35af413bb901527fe4d0ce5d29c3ee5e5c3676345a41499db7aac63a01000000000000004faa2ae2c084a0ea0000000000000000000c00002000", "036c47c67808200400000000000000335263bdbcef549ba197fce47ddfdd753abd950100002a00ffffffffffffffff00000000e8f20000000200", "b7326736181c208220000000b9000000000000000000f0fffffffff2ff00", [0x4]})
r2 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
unlinkat(r2, &(0x7f0000000280)='./file0\x00', 0x200)

1m38.513393526s ago: executing program 2 (id=470):
prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x8, 0xd6c6}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000001a40)=""/102392, 0x18ff8)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000300)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(blowfish)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5", 0x4)
r2 = accept4(r1, 0x0, 0x0, 0x800)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0x4d}, {&(0x7f00000003c0)}], 0x3, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)

1m37.398056033s ago: executing program 5 (id=473):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x3, 0x2000000000000216, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2400000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x45bd}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='mem_disconnect\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f00000004c0)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x0, 0xe, 0x0, &(0x7f00000003c0)="131c8701feaa16bca4ac74ab821d", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x9}, 0x50)

1m36.947918767s ago: executing program 5 (id=475):
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
sendto$inet(r0, 0x0, 0x2d000, 0x41004, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
connect$unix(r2, 0x0, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x10, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff97, 0x10, &(0x7f00000000c0), 0xffffffffffffffc2}, 0x48)

1m36.153654092s ago: executing program 33 (id=475):
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
sendto$inet(r0, 0x0, 0x2d000, 0x41004, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
connect$unix(r2, 0x0, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x10, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff97, 0x10, &(0x7f00000000c0), 0xffffffffffffffc2}, 0x48)

1m35.617821225s ago: executing program 2 (id=480):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r0, &(0x7f00003a1000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000000)="9a01000000f800b8d58800000f23d00f21f8351000000d0f23f864640f79ea66baf80cb8c85f5480ef66bafc0cecc4c2adac17b9550200000f320f2860c7c4e11751df0f2e2d00000080b9800000c00f3235008000000f30", 0x58}], 0x1, 0x4a, 0x0, 0x0)
ioctl$KVM_SET_GUEST_DEBUG_x86(r2, 0x4048ae9b, &(0x7f0000000080)={0x40003, 0x0, {[0xffffffffffffffff, 0x0, 0x8, 0xfffffffdefffff16, 0x3, 0x10, 0x4, 0x4]}})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

1m33.803958967s ago: executing program 2 (id=484):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x800714, &(0x7f0000000000), 0xff, 0x4a7, &(0x7f0000000280)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
write(r0, &(0x7f0000000180)="7e7226ce9b4d692092ffa2b579f0ff5793012c9738a9be19ff3e69a683a0a1bbace0dc3853c661a4e1019e7a1f3af60350126cb99c5f3ace6f5616c00e0fb30b2832398fed6233b8632a001dd0a846cbb8a5d77e3208db486b055edb6ae7917f07ccf4b6811be57047aa17799359e733ec395940d1feb7a9ec2ddadb1ff61070c9c00f9db8e47f74a5271fa77b6e692e6ac97aaae883e5522f8e86c2403aec0ff8dee1cba5d40f0969470b9a2a95f6f22f9d4250809400ea8403a6540948", 0xfffffec6)
creat(&(0x7f0000000380)='./bus\x00', 0x0)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
mkdir(&(0x7f0000000080)='./file0\x00', 0x0)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x40, 0x0)
ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x400, 0x0, 0x0, 0x1, 0x0, "ef35af413bb901527fe4d0ce5d29c3ee5e5c3676345a41499db7aac63a01000000000000004faa2ae2c084a0ea0000000000000000000c00002000", "036c47c67808200400000000000000335263bdbcef549ba197fce47ddfdd753abd950100002a00ffffffffffffffff00000000e8f20000000200", "b7326736181c208220000000b9000000000000000000f0fffffffff2ff00", [0x4]})
r2 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
unlinkat(r2, &(0x7f0000000280)='./file0\x00', 0x200)

1m33.017263503s ago: executing program 0 (id=487):
syz_mount_image$iso9660(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', 0x0, &(0x7f0000000000)=ANY=[@ANYRES64=0x0], 0x0, 0x7bf, &(0x7f0000000c80)="$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")
chdir(&(0x7f0000000040)='./file0\x00')
openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x40000, 0x0)

1m32.779073594s ago: executing program 2 (id=488):
syz_open_dev$usbmon(0x0, 0x0, 0x20000)
syz_mount_image$ext4(&(0x7f0000000380)='ext4\x00', &(0x7f0000000240)='./file1\x00', 0x0, &(0x7f0000002300)={[{@test_dummy_encryption}, {@max_batch_time={'max_batch_time', 0x3d, 0x8}}]}, 0x2, 0xbbf, &(0x7f0000000440)="$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")
syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000100)='./bus\x00', 0xd01ce0, 0x0, 0x82, 0x0, &(0x7f0000000080))
chdir(&(0x7f00000003c0)='./bus\x00')
syz_mount_image$fuse(0x0, &(0x7f0000000580)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000540)='./file7\x00', 0x1c0)
renameat2(0xffffffffffffff9c, &(0x7f0000000780)='./file7\x00', 0xffffffffffffff9c, &(0x7f0000000680)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2)

1m32.615415705s ago: executing program 0 (id=489):
prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x8, 0xd6c6}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000001a40)=""/102392, 0x18ff8)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000300)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(blowfish)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5", 0x4)
r2 = accept4(r1, 0x0, 0x0, 0x800)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0x4d}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443", 0x67}], 0x3, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)

1m32.013384139s ago: executing program 2 (id=491):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000540)={{r0}, &(0x7f0000000300), &(0x7f0000000400)}, 0x20)
r1 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000580)={&(0x7f0000000380)=ANY=[@ANYBLOB="1feb010018000000000000400c00005d9f8df8d0a9118513c650d103d9d9d4000c0000000500000009e9ff"], &(0x7f00000004c0)=""/83, 0x29, 0x53, 0x0, 0xffffffff, 0x10000}, 0x28)
r2 = open(&(0x7f0000000040)='./file0\x00', 0x400, 0x43)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x2, 0xc, &(0x7f0000000880)=ANY=[@ANYRES8=r0, @ANYRES32=r2], 0x0, 0x100, 0x0, 0x0, 0x40f00, 0x10, '\x00', 0x0, @fallback=0x23, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000002c40)={0xb, 0x0, 0x0, &(0x7f0000000000)='syzkaller\x00', 0x3, 0x0, 0x0, 0x0, 0x24, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
capset(&(0x7f0000000440)={0x20071026}, &(0x7f0000000180)={0x7, 0x7, 0x7, 0x0, 0xf, 0x9})
pwritev(0xffffffffffffffff, &(0x7f0000000500)=[{0x0}, {&(0x7f00000002c0)='2', 0x1}], 0x2, 0x0, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r4 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x40302)
sendmsg$AUDIT_SET(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x40880}, 0x40011)
writev(r4, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000003, 0x50032, 0xffffffffffffffff, 0x0)
mlock(&(0x7f00007d8000/0x800000)=nil, 0x800000)
syz_clone(0x100, 0x0, 0x0, 0x0, 0x0, 0x0)
mlock(&(0x7f00007d8000/0x800000)=nil, 0x800000)
r5 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi0\x00', 0x400, 0x0)
ioctl$COMEDI_DEVCONFIG(r5, 0x40946400, &(0x7f00000000c0)={'pcmda12\x00', [0x4f28, 0x5, 0x4, 0x47, 0x2, 0xcc7, 0x71, 0x0, 0x0, 0x3ff, 0x7f, 0x15fe, 0x4, 0x8, 0x4000003, 0xe1cf, 0xff7fffc4, 0x9, 0x20002, 0x3f, 0x80000089, 0xfffffffb, 0x7, 0x7ff, 0x0, 0x3, 0x1003c, 0x5, 0x6, 0x8000000, 0x1ff]})
r6 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$devlink(0x0, 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_SET(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000440)=ANY=[], 0x34}, 0x1, 0x0, 0x0, 0x40000c8}, 0x501)
sendmsg$DEVLINK_CMD_RELOAD(r6, &(0x7f0000000400)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000003c0)={&(0x7f00000005c0)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="000826bd7000ffdbdf2525000000080001007063690011000200303030303a30303a31302e300000000008008a00", @ANYRES32, @ANYBLOB="7f027aec69dd2fb1319739dea4b0ae930c9a4bab83ad7360e2bebf1e20094216bf64cebcd51eff30e0231a79ad2b6441f719fa20d6c678d7e989df94f4f586c5014c4bd89fbd488ca4f3bd44abbf993d70602f5e3f37a34253552416c7a1b5a881e51f58717cd31b7204000000000000003919f7ef11e03b190058658a5e01b9c02d82addc671d6b10ad803dae5562ea2ba3454497eea73d9b789fabe7c0"], 0x38}, 0x1, 0x0, 0x0, 0x10004000}, 0x8)

1m31.179239115s ago: executing program 34 (id=491):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000540)={{r0}, &(0x7f0000000300), &(0x7f0000000400)}, 0x20)
r1 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000580)={&(0x7f0000000380)=ANY=[@ANYBLOB="1feb010018000000000000400c00005d9f8df8d0a9118513c650d103d9d9d4000c0000000500000009e9ff"], &(0x7f00000004c0)=""/83, 0x29, 0x53, 0x0, 0xffffffff, 0x10000}, 0x28)
r2 = open(&(0x7f0000000040)='./file0\x00', 0x400, 0x43)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x2, 0xc, &(0x7f0000000880)=ANY=[@ANYRES8=r0, @ANYRES32=r2], 0x0, 0x100, 0x0, 0x0, 0x40f00, 0x10, '\x00', 0x0, @fallback=0x23, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000002c40)={0xb, 0x0, 0x0, &(0x7f0000000000)='syzkaller\x00', 0x3, 0x0, 0x0, 0x0, 0x24, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
capset(&(0x7f0000000440)={0x20071026}, &(0x7f0000000180)={0x7, 0x7, 0x7, 0x0, 0xf, 0x9})
pwritev(0xffffffffffffffff, &(0x7f0000000500)=[{0x0}, {&(0x7f00000002c0)='2', 0x1}], 0x2, 0x0, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r4 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x40302)
sendmsg$AUDIT_SET(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x40880}, 0x40011)
writev(r4, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000003, 0x50032, 0xffffffffffffffff, 0x0)
mlock(&(0x7f00007d8000/0x800000)=nil, 0x800000)
syz_clone(0x100, 0x0, 0x0, 0x0, 0x0, 0x0)
mlock(&(0x7f00007d8000/0x800000)=nil, 0x800000)
r5 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi0\x00', 0x400, 0x0)
ioctl$COMEDI_DEVCONFIG(r5, 0x40946400, &(0x7f00000000c0)={'pcmda12\x00', [0x4f28, 0x5, 0x4, 0x47, 0x2, 0xcc7, 0x71, 0x0, 0x0, 0x3ff, 0x7f, 0x15fe, 0x4, 0x8, 0x4000003, 0xe1cf, 0xff7fffc4, 0x9, 0x20002, 0x3f, 0x80000089, 0xfffffffb, 0x7, 0x7ff, 0x0, 0x3, 0x1003c, 0x5, 0x6, 0x8000000, 0x1ff]})
r6 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$devlink(0x0, 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_SET(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000440)=ANY=[], 0x34}, 0x1, 0x0, 0x0, 0x40000c8}, 0x501)
sendmsg$DEVLINK_CMD_RELOAD(r6, &(0x7f0000000400)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000003c0)={&(0x7f00000005c0)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="000826bd7000ffdbdf2525000000080001007063690011000200303030303a30303a31302e300000000008008a00", @ANYRES32, @ANYBLOB="7f027aec69dd2fb1319739dea4b0ae930c9a4bab83ad7360e2bebf1e20094216bf64cebcd51eff30e0231a79ad2b6441f719fa20d6c678d7e989df94f4f586c5014c4bd89fbd488ca4f3bd44abbf993d70602f5e3f37a34253552416c7a1b5a881e51f58717cd31b7204000000000000003919f7ef11e03b190058658a5e01b9c02d82addc671d6b10ad803dae5562ea2ba3454497eea73d9b789fabe7c0"], 0x38}, 0x1, 0x0, 0x0, 0x10004000}, 0x8)

1m31.173414065s ago: executing program 0 (id=493):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r0, &(0x7f00003a1000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f0000000000)="9a01000000f800b8d58800000f23d00f21f8351000000d0f23f864640f79ea66baf80cb8c85f5480ef66bafc0cecc4c2adac17b9550200000f320f2860c7c4e11751df0f2e2d00000080b9800000c00f3235008000000f30", 0x58}], 0x1, 0x4a, 0x0, 0x0)
ioctl$KVM_SET_GUEST_DEBUG_x86(r2, 0x4048ae9b, &(0x7f0000000080)={0x40003, 0x0, {[0xffffffffffffffff, 0x0, 0x8, 0xfffffffdefffff16, 0x3, 0x10, 0x4, 0x4]}})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

1m29.871999093s ago: executing program 0 (id=498):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x800714, &(0x7f0000000000), 0xff, 0x4a7, &(0x7f0000000280)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
write(r0, &(0x7f0000000180)="7e7226ce9b4d692092ffa2b579f0ff5793012c9738a9be19ff3e69a683a0a1bbace0dc3853c661a4e1019e7a1f3af60350126cb99c5f3ace6f5616c00e0fb30b2832398fed6233b8632a001dd0a846cbb8a5d77e3208db486b055edb6ae7917f07ccf4b6811be57047aa17799359e733ec395940d1feb7a9ec2ddadb1ff61070c9c00f9db8e47f74a5271fa77b6e692e6ac97aaae883e5522f8e86c2403aec0ff8dee1cba5d40f0969470b9a2a95f6f22f9d4250809400ea8403a6540948", 0xfffffec6)
creat(&(0x7f0000000380)='./bus\x00', 0x0)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
mkdir(&(0x7f0000000080)='./file0\x00', 0x0)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x40, 0x0)
ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x400, 0x0, 0x0, 0x1, 0x0, "ef35af413bb901527fe4d0ce5d29c3ee5e5c3676345a41499db7aac63a01000000000000004faa2ae2c084a0ea0000000000000000000c00002000", "036c47c67808200400000000000000335263bdbcef549ba197fce47ddfdd753abd950100002a00ffffffffffffffff00000000e8f20000000200", "b7326736181c208220000000b9000000000000000000f0fffffffff2ff00", [0x4]})
r2 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
unlinkat(r2, &(0x7f0000000280)='./file0\x00', 0x200)

1m28.775285081s ago: executing program 0 (id=501):
prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x8, 0xd6c6}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000001a40)=""/102392, 0x18ff8)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000300)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(blowfish)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5", 0x4)
r2 = accept4(r1, 0x0, 0x0, 0x800)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0x4d}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443", 0x67}], 0x3, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)

1m27.909188347s ago: executing program 0 (id=504):
syz_open_procfs$pagemap(0x0, &(0x7f00000000c0))
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$netlink(0x10, 0x3, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080), 0x42, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0))
socket(0x10, 0x803, 0x0)
socket(0x10, 0x803, 0x0)
socket(0x1, 0x803, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$inet6_mptcp(0xa, 0x1, 0x106)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
syz_usb_connect$uac1(0x3, 0xdc, &(0x7f00000001c0)=ANY=[@ANYBLOB="12010000000000106b1d01014000010203010902ca0003010070000904000000010100000a24010800000201020d24060000030800000000000000240803960c03112d9cd2ce0c240208000103000000ff000924060506020100000924030003030005490c240206", @ANYRES8=r1, @ANYRES16=r0], 0x0)

1m27.699335738s ago: executing program 35 (id=504):
syz_open_procfs$pagemap(0x0, &(0x7f00000000c0))
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$netlink(0x10, 0x3, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080), 0x42, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0))
socket(0x10, 0x803, 0x0)
socket(0x10, 0x803, 0x0)
socket(0x1, 0x803, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$inet6_mptcp(0xa, 0x1, 0x106)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
syz_usb_connect$uac1(0x3, 0xdc, &(0x7f00000001c0)=ANY=[@ANYBLOB="12010000000000106b1d01014000010203010902ca0003010070000904000000010100000a24010800000201020d24060000030800000000000000240803960c03112d9cd2ce0c240208000103000000ff000924060506020100000924030003030005490c240206", @ANYRES8=r1, @ANYRES16=r0], 0x0)

1m15.644932048s ago: executing program 3 (id=528):
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={0xffffffffffffffff, 0x0, 0x25, 0x2, @val=@uprobe_multi={0x0, 0x0, 0x0, 0x6, 0x0, 0x1}}, 0x40)
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = eventfd(0xffffffff)
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0, 0x4})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0xfffffeac, &(0x7f00000001c0)=""/115}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xe}, 0x94)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20044010}, 0x4040)

1m15.475499579s ago: executing program 3 (id=529):
prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x8, 0xd6c6}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000001a40)=""/102392, 0x18ff8)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000300)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(blowfish)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5", 0x4)
r2 = accept4(r1, 0x0, 0x0, 0x800)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0x4d}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e7", 0x9b}], 0x3, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)

1m13.550886362s ago: executing program 3 (id=533):
r0 = socket$inet_icmp(0x2, 0x2, 0x1)
getsockopt$inet_buf(r0, 0x0, 0x2e, 0x0, 0x0)

1m13.415850263s ago: executing program 3 (id=534):
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000040)='./file1\x00', 0x400, &(0x7f0000000140)=ANY=[], 0x1, 0x68b, &(0x7f0000000a40)="$eJzs3UtsG2kdAPD/OLYTF9RNd9tuQSsRbaUFEdHmoXQJly0IoUis0Go5II5W626tutlV4kVphaC8D1w47J1FIjcuIHEvWs7Aaa85roTEpacCEkbzsGPnaadNnGh/v2o83zffY77vPzMee6wqAXxqrcxG+XEksTL75kaa39pcbG1tLt7vpiNiMiJKEeV8FclqRPJRxM3Il/hcurHoLtlvPx80l9/++MnWJ3muXCxZ/dJB7Xa5Udpj46NiiZmImCjWz2Cgv1s7+quO3F3Sm2EasKvdwMG4VSKiM+D7l7dLDjX8dQucWkl+39x1QU9HnIuIqeJzQH5XzO/ZZ9qjcQ8AAAAATsALv86+wp8f9zgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgLCn+/n9SLKVueiaS7t//rxbbokifaY/HPQAAAAAAAAAAGN23P7tjwxeextPYiPPdfCfJfvN/NctczF4/E+/HejRiLa7FRtSjHe1Yi/mImM7KK9lrdaPebq/ND9Fyodcy+louDDmD2tEnDwAAAAAAAABnRXn0Jj+Nle3f/wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4DRIIibyVbZc7Kano1SOiKmIqKb1HkX8vZs+lX77l/5c57+dzK5qj09yTAAAADAmLzyNp7ER57v5TpJ957+cfe+fivdjNdrRjHa0ohG3s2cB+bf+0tbmYmtrc/F+uuzu9+v/GmkYWY+RP3vYe89Xshq1uBPNbMu1uBXvRituRylrmbrSHc/e4/pJOqbkjcKQI7tdrNOZ/yYqI83qKJKha05nEUlHlEdkrmibRuPCwZEY8eh099SN/XyUek9+Lj7PmG/kq9d/n6/T+fxypJgct52RWOg7+y4fHImIL/75D9+721q9N3lnffb0TGkEk31P0HZGYrEvEi8PG4m7Zy0SpT22zWXbL/XyK/Gt+G7Mxky8FWvRjB9EPdrRiJn4ZtRjIurF+Zy+Th8cqZsDubcOG101Oy6V4l10+DG1ox6vZm3PRzO+E+/G7WjEjezfQszH67EUS7Hcd4QvDXHVl0Z7p736pb6Hyb+KiNpw7U5AOrALvbtT/1k/l10HFwa2bEfpxed/Pyp/vkik+/jZPmfkeOyMxHxfJF46OBK/y95W1lur99bu1t8bcn+vFev0OvrFqbpLpOfLi+nBynKDZ0da9tLOsqk8XtXiF5e8bPCOm5Zd6pUddqVWi89wu3tayMpe3rNsMSu70lc28HnrZv55C4BT79yXz1Vr/6z9rfZh7ee1u7U3p74x+dXJV6pR+Wvla+W5iddKryR/ig/jR9vf/wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgKNbf/DwXr3VaqztSHQ6nR/vU3SMiVpEdLdEHNaqEofXOZ5ENSKyRLmbGK2fyaEqV7ePzht/fJYxV0ZtFfFcAlUuTrIHD+/9u9PpnPhh2iNROeCc3050CruKOkM1H1viP53n1+GY35iAY3e9ff+96+sPHn6leb/+TuOdxury0tLy3PLSjX9cv9NsNeby13GPEjgO2zf9cY8EAAAAAAAAAAAAGNZJ/LeEfXb9vxOeKgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHBGrcxOFqlrc+nr1uZiK1266V7FrFopIpIfRiQfRdyMfInpvu6S/fbzQXP57Y+fbH2S58rFktUvDbSrHGUWj4olZiJiolj3m3qG/m4V6yONLJP0ZpgG7Go3cDBu/w8AAP//tpQRmw==")
truncate(&(0x7f0000000080)='./file1\x00', 0x200000080000000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
readv(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000001300)=""/244, 0xfdef}], 0x1)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = syz_clone(0x20000000, 0x0, 0x0, 0x0, 0x0, 0x0)
tkill(r1, 0x19)
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="04058185c900"], 0x7)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[], 0x50)
pwrite64(0xffffffffffffffff, &(0x7f0000000000)='L', 0x1, 0x7ffffffe)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffff, 0x3}, 0x6)
lseek(0xffffffffffffffff, 0x46f6, 0x4)
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000080)='sysfs\x00', 0x14010, 0x0)
rmdir(&(0x7f00000004c0)='./file0\x00')
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000000), 0xd)
r3 = open(&(0x7f0000002200)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x0)
ioctl$F2FS_IOC_START_VOLATILE_WRITE(r2, 0xf503, 0x0)
r4 = open(&(0x7f0000000040)='.\x00', 0x458881, 0x6)
landlock_restrict_self(r4, 0x0)
r5 = getuid()
quotactl_fd$Q_QUOTAON(r0, 0xffffffff80000201, r5, &(0x7f0000003100)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
symlinkat(&(0x7f0000000400)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00')
preadv2(r3, &(0x7f0000000040)=[{&(0x7f0000001200)=""/4096, 0xfffffdef}], 0x1, 0x0, 0x0, 0x7)

1m13.100441245s ago: executing program 3 (id=535):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000540)={{r0}, &(0x7f0000000300), &(0x7f0000000400)}, 0x20)
r1 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000580)={&(0x7f0000000380)=ANY=[@ANYBLOB], &(0x7f00000004c0)=""/83, 0x29, 0x53, 0x0, 0xffffffff, 0x10000}, 0x28)
open(&(0x7f0000000040)='./file0\x00', 0x400, 0x43)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x2, 0xc, &(0x7f0000000880)=ANY=[@ANYRES8=r0], 0x0, 0x100, 0x0, 0x0, 0x40f00, 0x10, '\x00', 0x0, @fallback=0x23, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000002c40)={0xb, 0x0, 0x0, &(0x7f0000000000)='syzkaller\x00', 0x3, 0x0, 0x0, 0x0, 0x24, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
capset(&(0x7f0000000440)={0x20071026}, &(0x7f0000000180)={0x7, 0x7, 0x7, 0x0, 0xf, 0x9})
pwritev(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x40302)
sendmsg$AUDIT_SET(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x40880}, 0x40011)
writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000003, 0x50032, 0xffffffffffffffff, 0x0)
mlock(&(0x7f00007d8000/0x800000)=nil, 0x800000)
syz_clone(0x100, 0x0, 0x0, 0x0, 0x0, 0x0)
mlock(&(0x7f00007d8000/0x800000)=nil, 0x800000)
r4 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi0\x00', 0x400, 0x0)
ioctl$COMEDI_DEVCONFIG(r4, 0x40946400, &(0x7f00000000c0)={'pcmda12\x00', [0x4f28, 0x5, 0x4, 0x47, 0x2, 0xcc7, 0x71, 0x0, 0x0, 0x3ff, 0x7f, 0x15fe, 0x4, 0x8, 0x4000003, 0xe1cf, 0xff7fffc4, 0x9, 0x20002, 0x3f, 0x80000089, 0xfffffffb, 0x7, 0x7ff, 0x0, 0x3, 0x1003c, 0x5, 0x6, 0x8000000, 0x1ff]})
r5 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$devlink(0x0, 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_SET(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000440)=ANY=[], 0x34}, 0x1, 0x0, 0x0, 0x40000c8}, 0x501)
sendmsg$DEVLINK_CMD_RELOAD(r5, &(0x7f0000000400)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000003c0)={&(0x7f00000005c0)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="000826bd7000ffdbdf2525000000080001007063690011000200303030303a30303a31302e300000000008008a00", @ANYRES32, @ANYBLOB="7f027aec69dd2fb1319739dea4b0ae930c9a4bab83ad7360e2bebf1e20094216bf64cebcd51eff30e0231a79ad2b6441f719fa20d6c678d7e989df94f4f586c5014c4bd89fbd488ca4f3bd44abbf993d70602f5e3f37a34253552416c7a1b5a881e51f58717cd31b7204000000000000003919f7ef11e03b190058658a5e01b9c02d82addc671d6b10ad803dae5562ea2ba3454497eea73d9b789fabe7c0"], 0x38}, 0x1, 0x0, 0x0, 0x10004000}, 0x8)

1m9.441616589s ago: executing program 3 (id=543):
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000c80)='./file1\x00', 0x0, &(0x7f0000000180)=ANY=[], 0x1, 0xc4d, &(0x7f00000027c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x15)
write$FUSE_NOTIFY_RETRIEVE(r0, &(0x7f0000000100)={0x30, 0x5, 0x0, {0x0, 0x2, 0x5}}, 0x30)
pwrite64(r0, &(0x7f00000000c0)="00fc0411", 0x4, 0x6)

1m9.145038561s ago: executing program 36 (id=543):
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000c80)='./file1\x00', 0x0, &(0x7f0000000180)=ANY=[], 0x1, 0xc4d, &(0x7f00000027c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x15)
write$FUSE_NOTIFY_RETRIEVE(r0, &(0x7f0000000100)={0x30, 0x5, 0x0, {0x0, 0x2, 0x5}}, 0x30)
pwrite64(r0, &(0x7f00000000c0)="00fc0411", 0x4, 0x6)

14.279747855s ago: executing program 1 (id=723):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000a00)={0x26, 'hash\x00', 0x0, 0x0, 'sha384-generic\x00'}, 0x58)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x20000400}, 0x4000081)

13.879916969s ago: executing program 1 (id=724):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x80000, 0x0)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f00000035c0)={0x0, 0x0, &(0x7f0000003580)={&(0x7f0000000ac0)=@newsa={0x138, 0x10, 0x1, 0x0, 0x0, {{@in=@initdev={0xac, 0x1e, 0x1, 0x0}, @in=@local, 0x0, 0x0, 0x1fff, 0x0, 0x0, 0x0, 0x0, 0x5c, 0x0, 0xffffffffffffffff}, {@in6=@remote, 0x14, 0x6c}, @in=@empty=0x14, {0x0, 0x800000000, 0x0, 0xfffffff7ffffffff, 0x0, 0x0, 0x1000000000000000}, {0x0, 0x4, 0x1000}, {}, 0x80000000, 0x0, 0x2, 0x1, 0x6, 0x2c}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}]}, 0x138}, 0x1, 0x0, 0x0, 0x4004050}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=ANY=[], 0x48)
close(r3)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
write$cgroup_subtree(0xffffffffffffffff, 0x0, 0xcfa4)
ioctl$SIOCSIFHWADDR(r3, 0x8914, 0x0)
write$cgroup_subtree(r2, 0x0, 0x66)
r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000182000/0x18000)=nil, 0x0, 0x0, 0x43, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f00003e1000/0x18000)=nil, 0x0, 0x0, 0x40, 0x0, 0x0)
ioctl$KVM_GET_CPUID2(r5, 0xc008ae91, &(0x7f0000000080))
ioctl$sock_SIOCGIFVLAN_SET_VLAN_EGRESS_PRIORITY_CMD(0xffffffffffffffff, 0x8982, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x10012, r5, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x515001, 0xc)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

12.779910676s ago: executing program 1 (id=727):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000000c0)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@data_err_ignore}, {@grpquota}, {@abort}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000000a40)="$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")
r0 = open(&(0x7f0000000200)='./file1\x00', 0x4827e, 0xdc)
mmap(&(0x7f00003a3000/0x3000)=nil, 0x3000, 0x0, 0x12, r0, 0x1000)
fallocate(r0, 0x0, 0x0, 0x87ffffc)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x441, 0x0)
fallocate(r1, 0x20, 0x4000, 0x8000)

11.571654454s ago: executing program 1 (id=731):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, 0x0, 0x0)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)={0x34, r1, 0x5, 0x8000000, 0x25dfdbfa, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x14a0}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_SMPS_MODE={0x5}]}, 0x34}}, 0x840)

11.224031466s ago: executing program 1 (id=733):
r0 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
r1 = getpid()
r2 = syz_pidfd_open(r1, 0x0)
setns(r2, 0x24020000)
r3 = syz_clone(0xb21e0000, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = syz_pidfd_open(r3, 0x0)
setns(r4, 0x24020000)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
fsmount(r0, 0x0, 0x0)

10.007838074s ago: executing program 1 (id=736):
prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x8, 0xd6c6}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000001a40)=""/102392, 0x18ff8)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000300)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(blowfish)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5", 0x4)
r2 = accept4(r1, 0x0, 0x0, 0x800)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0x4d}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085", 0xcb}], 0x3, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)

8.380838395s ago: executing program 9 (id=742):
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r0, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
r2 = epoll_create1(0x80000)
r3 = fcntl$dupfd(r1, 0x406, r2)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r3, 0x0)
setsockopt$inet6_udp_encap(r3, 0x11, 0x64, &(0x7f0000000080)=0x2, 0x4)

8.367261755s ago: executing program 7 (id=743):
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000a48500000004000000850000002300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}}, &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

8.184840226s ago: executing program 9 (id=746):
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x80c40a, &(0x7f0000000180)={[{@noblock_validity}, {@dioread_lock}, {@init_itable_val={'init_itable', 0x3d, 0xb8f}}, {@nodiscard}, {@inlinecrypt}, {@usrjquota, 0x2e}, {@sb={'sb', 0x3d, 0x7}}, {@nodiscard}, {@jqfmt_vfsv0}, {@noload}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6}}, {@noload}], [], 0x2c}, 0x81, 0x463, &(0x7f0000000480)="$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")
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
ioctl$TCSETAF(r0, 0x5408, &(0x7f00000000c0)={0xcf47, 0x4cc, 0xffff, 0x9dff, 0x1, "8003e3ffff072000"})
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000100)={0x0, 0x0, 0x3, 0x7fff, 0x16, "b0bf2ebb48c849ac0000000003000018bfff40"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000000)=0xff)

7.879675968s ago: executing program 7 (id=748):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000001680)=ANY=[@ANYBLOB="1800000000030000000000000000000095"], &(0x7f0000001700)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x20}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='mmap_lock_acquire_returned\x00', r0}, 0x18)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
pipe(&(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
splice(r2, 0x0, r4, 0x0, 0x8000f28, 0x0)
splice(r3, 0x0, r2, 0x0, 0x7f, 0xe)
write(r1, 0x0, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x1000002, 0x4012831, 0xffffffffffffffff, 0x0)
r5 = syz_open_procfs(0x0, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
lseek(r5, 0x2004, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x8000001f)

5.420250265s ago: executing program 9 (id=752):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000540)={{r0}, &(0x7f0000000300), &(0x7f0000000400)}, 0x20)
r1 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000580)={&(0x7f0000000380)=ANY=[@ANYBLOB="1feb010018000000000000400c00005d9f8df8d0a9118513c650d103d9d9d4000c"], 0x0, 0x29, 0x0, 0x0, 0xffffffff, 0x10000}, 0x28)
r2 = open(&(0x7f0000000040)='./file0\x00', 0x400, 0x43)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x2, 0xc, &(0x7f0000000880)=ANY=[@ANYRES8=r0, @ANYRES32=r2], 0x0, 0x100, 0x0, 0x0, 0x40f00, 0x10, '\x00', 0x0, @fallback=0x23, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000002c40)={0xb, 0x0, 0x0, &(0x7f0000000000)='syzkaller\x00', 0x3, 0x0, 0x0, 0x0, 0x24, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
capset(&(0x7f0000000440)={0x20071026}, &(0x7f0000000180)={0x7, 0x7, 0x7, 0x0, 0xf, 0x9})
pwritev(0xffffffffffffffff, &(0x7f0000000500)=[{0x0}, {&(0x7f00000002c0)='2', 0x1}], 0x2, 0x0, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r4 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x40302)
sendmsg$AUDIT_SET(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x40880}, 0x40011)
writev(r4, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000003, 0x50032, 0xffffffffffffffff, 0x0)
mlock(&(0x7f00007d8000/0x800000)=nil, 0x800000)
syz_clone(0x100, 0x0, 0x0, 0x0, 0x0, 0x0)
mlock(&(0x7f00007d8000/0x800000)=nil, 0x800000)
r5 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi0\x00', 0x400, 0x0)
ioctl$COMEDI_DEVCONFIG(r5, 0x40946400, &(0x7f00000000c0)={'pcmda12\x00', [0x4f28, 0x5, 0x4, 0x47, 0x2, 0xcc7, 0x71, 0x0, 0x0, 0x3ff, 0x7f, 0x15fe, 0x4, 0x8, 0x4000003, 0xe1cf, 0xff7fffc4, 0x9, 0x20002, 0x3f, 0x80000089, 0xfffffffb, 0x7, 0x7ff, 0x0, 0x3, 0x1003c, 0x5, 0x6, 0x8000000, 0x1ff]})
r6 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$devlink(0x0, 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_SET(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000440)=ANY=[], 0x34}, 0x1, 0x0, 0x0, 0x40000c8}, 0x501)
sendmsg$DEVLINK_CMD_RELOAD(r6, &(0x7f0000000400)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000003c0)={&(0x7f00000005c0)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="000826bd7000ffdbdf2525000000080001007063690011000200303030303a30303a31302e300000000008008a00", @ANYRES32, @ANYBLOB="7f027aec69dd2fb1319739dea4b0ae930c9a4bab83ad7360e2bebf1e20094216bf64cebcd51eff30e0231a79ad2b6441f719fa20d6c678d7e989df94f4f586c5014c4bd89fbd488ca4f3bd44abbf993d70602f5e3f37a34253552416c7a1b5a881e51f58717cd31b7204000000000000003919f7ef11e03b190058658a5e01b9c02d82addc671d6b10ad803dae5562ea2ba3454497eea73d9b789fabe7c0"], 0x38}, 0x1, 0x0, 0x0, 0x10004000}, 0x8)

5.265879075s ago: executing program 7 (id=753):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x3, 0x2000000000000216, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2400000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x45bd}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='mem_disconnect\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f00000004c0)=ANY=[@ANYBLOB="18020000000000000000000000000000850000004100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x0, 0xe, 0x0, &(0x7f00000003c0)="131c8701feaa16bca4ac74ab821d", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x9}, 0x50)

4.873099648s ago: executing program 8 (id=755):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r0, &(0x7f0000000380)={0xa, 0xfffe, 0x4, @remote, 0x9}, 0x1c)
ioctl$sock_SIOCOUTQNSD(r0, 0x894b, &(0x7f00000000c0))

4.329023072s ago: executing program 7 (id=756):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000600)=[@text64={0x40, &(0x7f0000000640)="430fc73f0f2390b9800000c00f3235010000000f300f20d835080000000f22d8c4e18173f53866baf80cb83879e487ef66bafc0cec66b88e008ec02d1aa80000460f1c460041ae", 0x47}], 0x1, 0x74, 0x0, 0x0)
semtimedop(0x0, &(0x7f00000003c0)=[{0x4, 0x4, 0x1800}], 0x1, 0x0)
semop(0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
gettid()

4.132239933s ago: executing program 6 (id=757):
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x1, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000100)={0x1, 0x0, @ioapic={0x8000000, 0x5f9, 0x81, 0x1ff, 0x0, [{0x6d, 0x6, 0x9, '\x00', 0xe}, {0x8, 0xb, 0x72, '\x00', 0x4}, {0x0, 0x7f, 0x9, '\x00', 0x5}, {0x81, 0x0, 0x8, '\x00', 0x5}, {0xf7, 0xf, 0x7f, '\x00', 0x60}, {0x0, 0x0, 0x2}, {0x6, 0x9, 0x6, '\x00', 0xa}, {0xd, 0x7, 0xb, '\x00', 0x4}, {0x1, 0x81, 0x0, '\x00', 0xff}, {0x6, 0x3, 0x0, '\x00', 0x6}, {0x40, 0x4, 0x3, '\x00', 0x1}, {0xd2, 0x7, 0x1c, '\x00', 0x1}, {0x2, 0x86, 0xc, '\x00', 0xf9}, {0x5, 0x4f, 0x2}, {0x4, 0x1, 0x96, '\x00', 0x7}, {0xb, 0x0, 0x7, '\x00', 0x7f}, {0x3, 0x7, 0xd1, '\x00', 0x4}, {0x6c, 0x19, 0x2, '\x00', 0x3}, {0x8, 0x9e, 0xc0}, {0x3e, 0x4c, 0xa, '\x00', 0x3}, {0x7, 0xff, 0x2, '\x00', 0xff}, {0x3, 0x0, 0x6, '\x00', 0x4}, {0x97, 0x9, 0x44, '\x00', 0xe6}, {0x6, 0x8, 0xdf}]}})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000740)={"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"})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000100)={0x2, 0x0, @pic={0x0, 0x0, 0x3, 0x93, 0x0, 0x0, 0x51, 0xbf, 0x2, 0xc0, 0x6d, 0x9, 0x61, 0x7, 0x90, 0xd}})

4.037561233s ago: executing program 9 (id=758):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
ioctl$KVM_SET_SREGS2(r2, 0x4140aecd, &(0x7f0000000140)={{0xffff0060, 0xffff1000, 0x8, 0x9, 0x7f, 0xe3, 0x81, 0xff, 0x7, 0x84, 0x0, 0xb}, {0x4, 0x3000, 0x10, 0xf6, 0x3, 0x7, 0x6, 0x8a, 0x1, 0x2, 0xfa, 0x5}, {0x1000, 0x8000000, 0x4, 0x6, 0x10, 0x81, 0x4, 0x13, 0x5, 0x4, 0x3, 0x84}, {0x10000, 0xeeef0000, 0xe, 0x7, 0x1, 0x40, 0x2, 0xfd, 0xfa, 0x29, 0x9, 0x9}, {0xeeee8000, 0xddcdd005, 0xf, 0x9, 0x5, 0x2, 0xf0, 0x8, 0x0, 0x6e, 0x0, 0x8}, {0x4000, 0x1000, 0xe, 0x2, 0xad, 0x2, 0x5, 0x5, 0x1, 0x2f, 0xf3, 0xa}, {0x10000, 0xeeee8000, 0x8, 0x0, 0xc9, 0x5, 0x5, 0x26, 0x8, 0x6, 0xff, 0x6}, {0xffff1000, 0xeeef0000, 0xa, 0x9, 0x13, 0x42, 0x3, 0x0, 0x7f, 0x1, 0x0, 0xa}, {0x4000, 0x7ff}, {0x6000, 0xff81}, 0x0, 0x0, 0x6000, 0x25047a, 0xc, 0xbc00, 0x0, 0x1, [0x4, 0x2, 0x3, 0x1]})

3.928000344s ago: executing program 7 (id=759):
r0 = syz_usb_connect(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x141, 0x48, 0x13, 0x44, 0x20, 0x424, 0x7500, 0x69ee, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x10, 0x0, [{{0x9, 0x4, 0xb8, 0x7, 0x2, 0x96, 0xd1, 0xca, 0x0, [], [{{0x9, 0x5, 0x6, 0x2, 0x200, 0xd, 0x0, 0x6}}, {{0x9, 0x5, 0x82, 0x2, 0x200, 0x0, 0x1, 0x10}}]}}]}}]}}, 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000900)={0x84, &(0x7f00000003c0)={0x0, 0x17, 0x4, '\x00\x00\x00\x00'}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)

3.907423854s ago: executing program 6 (id=760):
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000040)='./file1\x00', 0x400, &(0x7f0000000140)=ANY=[], 0x1, 0x68b, &(0x7f0000000a40)="$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")
openat$kvm(0xffffffffffffff9c, 0x0, 0x100, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000000), 0x208e24b)

3.627148397s ago: executing program 8 (id=761):
r0 = syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000300)='./file0\x00', 0xa80040, &(0x7f0000000a40)=ANY=[@ANYBLOB="64656275672c757466383d312c757466383d302c757466383d312c73686f72746e616d653d77696e39352c636865636b3d7374726963742c73686f72746e616d653d77696e6e742c73686f72746e616d653d6c6f7765722c002bc08d8cca74e8ecafb48437094fe1a4a2383bd9d85bff651d1101fd722e01b9b5d22f08b5fc0ac7cbf33fb553a90ae4d01d71ddeeb089f517aeaaa271899287d5b8949b22b23c2807b7d81714b89e9682f6c3faa6107733a77a4cf985560ed64ec24e255dee3654aa2ba55be4bf3ae257adba34bb46aa57a75dab0288098e42f886f09bdf63537db28a454b02a4204a7e7dac3c30a6d4b5c814916b0284a6fbf80000", @ANYRESDEC=0x0, @ANYRES32, @ANYRES64], 0x4, 0x24f, &(0x7f0000000b80)="$eJzs2s9rHGUYB/BnYkuTlHQj/qIF8UUP6mVocvZgkBbEgKKNUAXp1EzqknE3ZJbAitie9Oqf4Fk8ehOkRy+5+Bd48JZLjhXEkd2N6bau6CLNVvv5XPZh3/3u+868y8uzMAevfPnx9ladbxW9mMuymItfmuZOFssxF3+4FS+/ePWHZ9+5+t4ba+vrl95O6fLalZXVlNK5575//9Nvnr/dO/vut+e+OxP7yx8cHK7+vP/0/vmD36581K5Tu06dbi8V6Xq32yuuV2XabNfbeUpvVWVRl6ndqcvde8a3qu7OTj8Vnc2lxZ3dsq5T0emn7bKfet3U2+2n4kbR7qQ8z9PSYvBvbHx9p2nisDl9LZqmWfgqzt5ejJ+iFdnjKXvi1eypa9kzt7Lzh03TmvVSeSD+tP+xZP8fIWOH+nxE9cXext7G6HUwOh9rW9GOKsq4GAvxawx+JkdG9eXX1y9dTEPL8Xl18yh/c2/jseH3H+dXohXLk/Mro3y6N38mFsfzq9GKJyfnVyfm5+OlF8byebTixw+jG1VsxiB7N//ZSkqvvbl+X/7C8HMAAP83eTo2sX/L878aH+XH+sPW3/SH9/VXp+LCqdleOxF1/5PtoqrK3cEfvGFx/M4DLm6c4FxTFQvjt+WfFAtH93KauU5PN4ViimIuHopl/MeLGR9MnIi7mz7rlQAAAAAAAAAAADCNk3iccNbXCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPNx+DwAA//8fjM+I")
r1 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = accept$inet(r1, 0x0, 0x0)
socket$inet6(0xa, 0x80002, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = epoll_create(0x3ff)
r7 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0xfffffffe}, 0x50)
open_tree(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x801)
ppoll(&(0x7f00000000c0)=[{r6, 0x6}, {r0, 0x200}, {r7, 0x8001}, {r6, 0x8}, {r2}, {r2, 0x100}, {r0, 0x82}], 0x7, &(0x7f0000000040)={0x0, 0x989680}, &(0x7f00000003c0)={[0x8001]}, 0x8)
r8 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, 0x0)

3.527302497s ago: executing program 9 (id=762):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x6c, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
bpf$BPF_GET_BTF_INFO(0xf, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0xa, 0x4, 0xdd, 0xa}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000940)='percpu_alloc_percpu\x00', r1}, 0x10)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
bpf$BPF_PROG_QUERY(0x10, 0x0, 0x0)
unshare(0x20020480)

3.355974108s ago: executing program 6 (id=763):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xe, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='\t\x00'], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000940)='percpu_alloc_percpu\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x1, 0x100001, 0x5, 0x5, 0x1}, 0x50)

3.18653938s ago: executing program 9 (id=764):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x10)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000000680)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_BMAP(0xffffffffffffffff, &(0x7f00000000c0)={0x18, 0x0, r1, {0x6}}, 0x18)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000008c80)=ANY=[@ANYBLOB="2c00000026000506"], 0x2c}}, 0x800)

2.193482386s ago: executing program 6 (id=765):
r0 = socket$igmp(0x2, 0x3, 0x2)
ioctl$sock_inet_SIOCDELRT(r0, 0x890c, &(0x7f0000000140)={0x0, {0x2, 0x4e20, @private=0xa010100}, {0x2, 0x4e24, @multicast2}, {0x2, 0x4e21, @private=0xa010102}, 0x5, 0x0, 0x0, 0x0, 0x3, 0x0, 0x6, 0x4, 0x1})

2.160681156s ago: executing program 8 (id=766):
fanotify_init(0x0, 0x800)
pipe2(0x0, 0x80000)
write$binfmt_misc(0xffffffffffffffff, 0x0, 0x0)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x5, 0x9)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x2000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x11, 0x0, 0x0)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

1.691768229s ago: executing program 6 (id=767):
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='mnt\x00', 0x4, &(0x7f0000000000), 0x0, 0x236, &(0x7f0000000300)="$eJzs3TFoM2UcBvDnLomf/b4gVRdBUEFEtFDqJrjURaEgpYgIKlREXJRWqC1urZOLg84qnVyKuFkdpUtxUQSnqh3qImhxsDjoELlcK9VGFFNz8t3vB5fcJe97//e4e95kOS5Aa00nmU/SSTKTpJekON/grnqZPt3cntpfTgaDx38shu3q7dpZv2tJtpI8mGSvLPJiN9nYffro54NH731jvXfPe7tPTU30IE8dHx0+dvLu4usfLjyw8fmX3y8WmU//D8d1+YoRn3WL5Jb/otj/RNFtegT8E0uvfvBVlftbk9w9zH8vZeqT9+baDXu93P/OX/V964cvbp/kWIHLNxj0qt/ArQHQOmWSfopyNkm9Xpazs/V/+K87V8uXVtdemXlhdX3l+aZnKuCy9JPDRz6+8tG1P+X/u06df+D6VeX/iaWdb6r1k07TowEmqcr/zLOb90X+oXXkH9pL/qG95B/aS/6hveQf2kv+ob3kH9pL/qG95B/a63z+AYB2GVxp+g5koClNzz8AAAAAAAAAAAAAAAAAAMBF21P7y2fLpGp++nZy/HCS7qj6neHziJMbh69XfyqqZr8r6m5jeebOMXcwpvcbvvv6pm+brf/ZHc3W31xJtl5LMtftXrz+itPr79+7+W++7z03ZoExPfRks/V/3Wm2/sJB8kk1/8yNmn/K3DZ8Hz3/9KvzN2b9l38ZcwcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABMzG8BAAD//8n0bSk=")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000540)='mnt\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x200000000000008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0xce56fe61a68fc369, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r0, 0xc0506617, &(0x7f0000000580)={@id={0x2, 0x0, @a}, 0x40, 0x0, '\x00', @a})
mkdirat(0xffffffffffffff9c, &(0x7f0000000640)='mnt/encrypted_dir\x00', 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000680)='mnt/encrypted_dir\x00', 0x800, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x20002, 0x0, 0x1, 0x0, &(0x7f0000000040))
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY_ALL_USERS(r6, 0xc0406619, &(0x7f0000000080)={@id={0x2, 0x0, @a}})

1.59574051s ago: executing program 8 (id=768):
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, 0x0, 0x0)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000440)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cipher_null\x00'}, 0x58)
r1 = accept$alg(r0, 0x0, 0x0)
r2 = dup(r1)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xb, 0x31, 0xffffffffffffffff, 0x0)
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, 0x0)
write$FUSE_INIT(r2, &(0x7f0000000080)={0x4f}, 0xfffffdef)
read$FUSE(r2, &(0x7f0000002000)={0x2020}, 0xfffffc7c)

394.883228ms ago: executing program 6 (id=769):
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000003100), 0x48040, 0x0)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000003140)={0x36, 0x5, 0x6, 0x8, 0x3, 0x7, 0x0, 0x0, 0x1})

247.871169ms ago: executing program 8 (id=770):
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x1, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000100)={0x1, 0x0, @ioapic={0x8000000, 0x5f9, 0x81, 0x1ff, 0x0, [{0x6d, 0x6, 0x9, '\x00', 0xe}, {0x8, 0xb, 0x72, '\x00', 0x4}, {0x0, 0x7f, 0x9, '\x00', 0x5}, {0x81, 0x0, 0x8, '\x00', 0x5}, {0xf7, 0xf, 0x7f, '\x00', 0x60}, {0x0, 0x0, 0x2}, {0x6, 0x9, 0x6, '\x00', 0xa}, {0xd, 0x7, 0xb, '\x00', 0x4}, {0x1, 0x81, 0x0, '\x00', 0xff}, {0x6, 0x3, 0x0, '\x00', 0x6}, {0x40, 0x4, 0x3, '\x00', 0x1}, {0xd2, 0x7, 0x1c, '\x00', 0x1}, {0x2, 0x86, 0xc, '\x00', 0xf9}, {0x5, 0x4f, 0x2}, {0x4, 0x1, 0x96, '\x00', 0x7}, {0xb, 0x0, 0x7, '\x00', 0x7f}, {0x3, 0x7, 0xd1, '\x00', 0x4}, {0x6c, 0x19, 0x2, '\x00', 0x3}, {0x8, 0x9e, 0xc0}, {0x3e, 0x4c, 0xa, '\x00', 0x3}, {0x7, 0xff, 0x2, '\x00', 0xff}, {0x3, 0x0, 0x6, '\x00', 0x4}, {0x97, 0x9, 0x44, '\x00', 0xe6}, {0x6, 0x8, 0xdf}]}})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000740)={"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"})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000100)={0x2, 0x0, @pic={0x0, 0x0, 0x3, 0x93, 0x0, 0x0, 0x51, 0xbf, 0x2, 0xc0, 0x6d, 0x9, 0x61, 0x7, 0x90, 0xd}})

114.35162ms ago: executing program 8 (id=771):
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x1218000, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], 0x0, 0x306, &(0x7f0000000540)="$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")
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000000)='./file0\x00', 0x2000494, &(0x7f0000000440)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c00484516000000000037c015c57600912233eefc80e89be5a1ef2c27ebf5171169dcfa4805d89c7e1f70d73d649ba4afab8b2194a9e8b537ad2ed68f8319883b84237da3bf9213365872b3f3"], 0x1, 0x2b9, &(0x7f0000000fc0)="$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")
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000001c0)={{0x2000, 0xeeee0000, 0x8, 0x9, 0xfb, 0xe6, 0x40, 0x7, 0x0, 0x2e, 0x19}, {0xeeee0000, 0x8080000, 0xa, 0x0, 0x40, 0x5, 0x7d, 0x7f, 0x5, 0x3, 0x3, 0xfc}, {0xdddd1000, 0x100000, 0xe, 0x5, 0x3, 0x7, 0x0, 0x9, 0x80, 0xa7, 0x5, 0x81}, {0xf000, 0xeeee0000, 0xc, 0x6, 0x4, 0x42, 0x5, 0xff, 0x8, 0x7, 0xe, 0x7}, {0xeeee0000, 0xdddd1000, 0xb, 0x3, 0x9, 0x4, 0xab, 0x7f, 0x7, 0x83, 0xf7, 0x83}, {0xeeee0000, 0x1, 0x10, 0xa0, 0xb1, 0x8, 0x18, 0xa0, 0x80, 0xf, 0x1, 0xfb}, {0xffff1000, 0x2, 0x10, 0x5, 0x7, 0x5, 0x7, 0x3, 0x4, 0x81, 0xff, 0x70}, {0x100000, 0x1000, 0xe, 0x2, 0xf, 0x7, 0x1, 0x34, 0x2, 0xc, 0x8, 0x9}, {0x0, 0x30}, {0x10000, 0x7}, 0x80000031, 0x0, 0x6000, 0x20d4, 0x5, 0x10800, 0x8000c00, [0x6800000000000000, 0x2, 0x5e, 0x3]})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000140)=@arm64={0x10, 0x2, 0xb6, '\x00', 0x2})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

0s ago: executing program 7 (id=772):
syz_mount_image$ext4(&(0x7f00000008c0)='ext4\x00', &(0x7f0000000300)='./file1\x00', 0x48, &(0x7f00000000c0)={[{@test_dummy_encryption}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x6}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x40000}}]}, 0x3, 0x45f, &(0x7f0000000900)="$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")
r0 = open(&(0x7f0000000780)='./bus\x00', 0x14507e, 0x0)
io_setup(0x7d, &(0x7f0000000600)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000001d00)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, r0, &(0x7f0000000000)="96", 0x1, 0x0, 0x0, 0x0, r0}])

kernel console output (not intermixed with test programs):

limit=256
[  173.236051][ T5107] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  173.253235][   T26] audit: type=1800 audit(1761802424.539:2): pid=5538 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.283" name="file0" dev="loop2" ino=1048598 res=0 errno=0
[  173.274579][ T5107] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  173.289322][ T5107] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  173.299467][ T5107] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  173.311526][ T5107] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  173.339827][ T4524] EXT4-fs (loop5): unmounting filesystem.
[  173.352095][ T5107] batman_adv: batadv0: Interface activated: batadv_slave_1
[  173.383299][ T5058] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  173.404319][ T5058] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  173.450580][ T5107] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  173.502643][ T5107] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  173.548134][ T5107] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  173.578393][ T5107] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  174.280089][ T5563] loop2: detected capacity change from 0 to 128
[  174.369923][ T4521] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  174.391779][ T5563] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  174.408042][ T4521] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  174.428447][ T5058] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  174.459010][ T5563] ext4 filesystem being mounted at /81/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  174.563336][ T5058] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  174.608442][ T5058] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  174.664742][ T4362] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  174.794846][ T4273] EXT4-fs (loop2): unmounting filesystem.
[  175.345444][ T5586] loop3: detected capacity change from 0 to 128
[  175.409752][ T5586] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  175.425320][ T5586] ext4 filesystem being mounted at /78/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  176.761229][ T4265] EXT4-fs (loop3): unmounting filesystem.
[  177.123648][ T5603] loop2: detected capacity change from 0 to 256
[  177.193287][ T5603] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  177.416259][ T5603] FAT-fs (loop2): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  177.810068][ T5603] FAT-fs (loop2): Filesystem has been set read-only
[  177.858590][ T5603] FAT-fs (loop2): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  177.893680][ T5603] FAT-fs (loop2): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  177.956073][ T5603] FAT-fs (loop2): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  178.060609][ T5603] FAT-fs (loop2): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  178.120375][ T5603] FAT-fs (loop2): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  178.120445][ T5603] FAT-fs (loop2): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  178.120586][ T5603] FAT-fs (loop2): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  178.120611][ T5603] FAT-fs (loop2): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  178.120638][ T5603] FAT-fs (loop2): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  178.120701][ T5603] FAT-fs (loop2): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  178.120726][ T5603] FAT-fs (loop2): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  178.120751][ T5603] FAT-fs (loop2): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  178.120808][ T5603] FAT-fs (loop2): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  178.120832][ T5603] FAT-fs (loop2): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  178.120857][ T5603] FAT-fs (loop2): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  178.120918][ T5603] FAT-fs (loop2): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  178.120942][ T5603] FAT-fs (loop2): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  178.120967][ T5603] FAT-fs (loop2): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  178.121026][ T5603] FAT-fs (loop2): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  178.121051][ T5603] FAT-fs (loop2): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  178.121077][ T5603] FAT-fs (loop2): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  178.121133][ T5603] FAT-fs (loop2): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  178.121157][ T5603] FAT-fs (loop2): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  178.123327][   T26] audit: type=1800 audit(1761802429.409:3): pid=5603 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.297" name="file1" dev="loop2" ino=1048602 res=0 errno=0
[  178.183800][ T5615] loop1: detected capacity change from 0 to 128
[  178.270042][ T5615] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  178.270406][ T5615] ext4 filesystem being mounted at /3/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  178.294339][ T5618] loop0: detected capacity change from 0 to 1024
[  178.407193][ T5603] syz.2.297 (5603) used greatest stack depth: 20768 bytes left
[  178.560933][ T5107] EXT4-fs (loop1): unmounting filesystem.
[  179.095024][ T5637] loop0: detected capacity change from 0 to 256
[  179.120981][ T5633] loop5: detected capacity change from 0 to 1024
[  179.121838][ T5633] EXT4-fs: Ignoring removed mblk_io_submit option
[  179.152263][ T5637] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  179.152362][ T5637] exFAT-fs (loop0): Medium has reported failures. Some data may be lost.
[  179.181203][ T5637] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000ff98, chksum : 0xc64c1d22, utbl_chksum : 0xe619d30d)
[  179.293126][ T5633] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  179.602320][ T5637] exFAT-fs (loop0): error, found bogus dentry(2) beyond unused empty group(0) (start_clu : 5, cur_clu : 5)
[  179.604608][ T5637] exFAT-fs (loop0): Filesystem has been set read-only
[  180.252859][    T9] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1097: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[  180.316341][    T9] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  180.356050][    T9] EXT4-fs (loop5): This should not happen!! Data will be lost
[  180.356050][    T9] 
[  180.390511][    T9] EXT4-fs (loop5): Total free blocks count 0
[  180.410763][    T9] EXT4-fs (loop5): Free/Dirty block details
[  180.452829][    T9] EXT4-fs (loop5): free_blocks=68451041280
[  180.480274][    T9] EXT4-fs (loop5): dirty_blocks=0
[  180.515219][    T9] EXT4-fs (loop5): Block reservation details
[  180.542609][    T9] EXT4-fs (loop5): i_reserved_data_blocks=0
[  180.584058][ T5663] loop3: detected capacity change from 0 to 128
[  180.613983][ T4524] EXT4-fs (loop5): unmounting filesystem.
[  180.706492][ T5663] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  180.752008][ T5663] ext4 filesystem being mounted at /82/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  181.610399][ T4265] EXT4-fs (loop3): unmounting filesystem.
[  181.900709][ T5683] loop2: detected capacity change from 0 to 128
[  181.944721][ T5683] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  181.956569][ T5683] ext4 filesystem being mounted at /90/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  183.121688][ T4273] EXT4-fs (loop2): unmounting filesystem.
[  183.660659][ T5703] loop2: detected capacity change from 0 to 128
[  184.437022][ T5703] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  184.455732][ T5703] ext4 filesystem being mounted at /91/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  184.582528][ T5713] capability: warning: `syz.1.325' uses 32-bit capabilities (legacy support in use)
[  184.740369][ T4273] EXT4-fs (loop2): unmounting filesystem.
[  185.591113][ T5725] loop5: detected capacity change from 0 to 128
[  185.659807][ T5725] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  185.669903][ T5725] ext4 filesystem being mounted at /54/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  185.931786][ T4524] EXT4-fs (loop5): unmounting filesystem.
[  186.007861][ T5738] loop0: detected capacity change from 0 to 128
[  186.018825][ T5738] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  186.031749][ T5738] ext4 filesystem being mounted at /82/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  187.100011][ T4264] EXT4-fs (loop0): unmounting filesystem.
[  187.289814][ T5747] loop3: detected capacity change from 0 to 4096
[  187.321676][ T5752] netlink: 8 bytes leftover after parsing attributes in process `syz.0.335'.
[  187.367947][ T5747] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  187.383674][ T5757] loop5: detected capacity change from 0 to 512
[  187.433463][ T5747] EXT4-fs (loop3): shut down requested (1)
[  187.443612][ T5747] fs-verity: sha256 using implementation "sha256-avx2"
[  187.518185][ T5757] ext4: Bad value for 'sb'
[  187.551816][ T4265] EXT4-fs (loop3): unmounting filesystem.
[  187.800622][ T5762] loop0: detected capacity change from 0 to 512
[  187.868333][ T5762] EXT4-fs: Ignoring removed nomblk_io_submit option
[  187.930200][ T5762] EXT4-fs: Ignoring removed bh option
[  187.946061][ T5762] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  188.055133][ T5762] EXT4-fs error (device loop0): mb_free_blocks:1810: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt.
[  188.125354][ T5776] loop1: detected capacity change from 0 to 128
[  188.132340][ T5762] EXT4-fs error (device loop0): ext4_do_update_inode:5268: inode #11: comm syz.0.339: corrupted inode contents
[  188.199037][ T5776] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  188.214295][ T5762] EXT4-fs error (device loop0): ext4_dirty_inode:6133: inode #11: comm syz.0.339: mark_inode_dirty error
[  188.216692][ T5776] ext4 filesystem being mounted at /13/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  188.236183][    T7] usb 6-1: new full-speed USB device number 3 using dummy_hcd
[  188.285586][ T5762] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.339: invalid indirect mapped block 1 (level 1)
[  188.360181][ T5762] EXT4-fs error (device loop0): ext4_do_update_inode:5268: inode #11: comm syz.0.339: corrupted inode contents
[  188.401782][ T5762] EXT4-fs error (device loop0) in ext4_orphan_del:301: Corrupt filesystem
[  188.422749][ T5762] EXT4-fs error (device loop0): ext4_do_update_inode:5268: inode #11: comm syz.0.339: corrupted inode contents
[  188.427999][    T7] usb 6-1: config 0 has an invalid interface number: 251 but max is 0
[  188.444296][ T5762] EXT4-fs error (device loop0): ext4_truncate:4318: inode #11: comm syz.0.339: mark_inode_dirty error
[  188.461580][ T5762] EXT4-fs error (device loop0) in ext4_process_orphan:343: Corrupt filesystem
[  188.472764][ T5762] EXT4-fs (loop0): 1 truncate cleaned up
[  188.483804][ T5762] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  188.532046][    T7] usb 6-1: config 0 has no interface number 0
[  188.556156][    T7] usb 6-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4
[  188.580538][ T5762] EXT4-fs error (device loop0): ext4_find_dest_de:2115: inode #2: block 13: comm syz.0.339: bad entry in directory: directory entry too close to block end - offset=76, inode=16, rec_len=940, size=1024 fake=0
[  188.609471][    T7] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  188.642155][    T7] usb 6-1: Product: syz
[  188.659818][    T7] usb 6-1: Manufacturer: syz
[  188.691002][    T7] usb 6-1: SerialNumber: syz
[  188.722184][    T7] usb 6-1: config 0 descriptor??
[  188.740725][ T5107] EXT4-fs (loop1): unmounting filesystem.
[  188.880730][ T4264] EXT4-fs (loop0): unmounting filesystem.
[  189.551805][    T7] asix 6-1:0.251 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[  189.591174][    T7] asix 6-1:0.251 (unnamed net_device) (uninitialized): Error reading PHY_ID register: ffffffb9
[  189.620525][    T7] asix: probe of 6-1:0.251 failed with error -71
[  189.649550][    T7] usb 6-1: USB disconnect, device number 3
[  192.485328][ T5827] loop1: detected capacity change from 0 to 128
[  192.889998][ T5827] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  192.980009][ T5827] ext4 filesystem being mounted at /18/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  193.108828][ T5835] loop0: detected capacity change from 0 to 1024
[  193.656628][ T5827] fscrypt: AES-256-CTS-CBC using implementation "cts-cbc-aes-aesni"
[  193.665828][ T5854] loop3: detected capacity change from 0 to 16
[  193.694241][ T5827] fscrypt: loop1: 1 inode(s) still busy after removing key with identifier 69b2f6edeee720cce0577937eb8a6751, including ino 12
[  193.736768][ T5854] erofs: (device loop3): mounted with root inode @ nid 36.
[  193.748127][ T5858] loop0: detected capacity change from 0 to 512
[  193.773865][ T5854] erofs: (device loop3): z_erofs_readahead: readahead error at page 2 @ nid 89
[  193.848544][ T5854] erofs: (device loop3): z_erofs_readahead: readahead error at page 0 @ nid 89
[  193.886417][ T5858] EXT4-fs (loop0): 1 orphan inode deleted
[  193.889625][ T5854] syz.3.363: attempt to access beyond end of device
[  193.889625][ T5854] loop3: rw=524288, sector=524296, nr_sectors = 8 limit=16
[  193.907660][ T5854] erofs: (device loop3): z_erofs_read_folio: failed to read, err [-117]
[  193.917583][   T26] audit: type=1800 audit(1761802445.209:4): pid=5854 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.363" name="file3" dev="loop3" ino=89 res=0 errno=0
[  193.986813][ T4357] Quota error (device loop0): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  194.032118][ T5858] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  194.047777][ T5858] ext4 filesystem being mounted at /91/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  194.061414][ T4357] EXT4-fs error (device loop0): ext4_release_dquot:6845: comm kworker/u4:6: Failed to release dquot type 1
[  194.107555][ T5107] EXT4-fs (loop1): unmounting filesystem.
[  194.248985][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  194.255385][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  194.947126][ T4264] EXT4-fs (loop0): unmounting filesystem.
[  195.158308][ T5880] loop1: detected capacity change from 0 to 512
[  195.230881][ T5880] EXT4-fs: Ignoring removed nobh option
[  195.260592][ T5880] EXT4-fs: inline encryption not supported
[  195.309565][ T5880] EXT4-fs (loop1): Test dummy encryption mode enabled
[  195.374512][ T5880] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2
[  195.425431][ T5880] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.371: invalid indirect mapped block 2683928664 (level 1)
[  195.448187][ T5880] EXT4-fs (loop1): Remounting filesystem read-only
[  195.498122][ T5880] EXT4-fs (loop1): 1 truncate cleaned up
[  195.596192][ T5880] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  196.024938][   T26] audit: type=1800 audit(1761802447.309:5): pid=5880 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.371" name="file0" dev="loop1" ino=13 res=0 errno=0
[  196.855318][ T5902] loop2: detected capacity change from 0 to 1764
[  197.002144][ T5107] EXT4-fs (loop1): unmounting filesystem.
[  197.307101][ T5914] loop1: detected capacity change from 0 to 512
[  197.434318][ T5914] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[  197.461560][ T5914] System zones: 0-2, 18-18, 34-34
[  197.503145][ T5914] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.377: bg 0: block 248: padding at end of block bitmap is not set
[  197.629945][ T5914] Quota error (device loop1): write_blk: dquota write failed
[  197.676132][ T5914] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  197.695797][ T5914] EXT4-fs error (device loop1): ext4_acquire_dquot:6809: comm syz.1.377: Failed to acquire dquot type 1
[  197.760979][ T5914] EXT4-fs (loop1): 1 truncate cleaned up
[  197.805604][ T5914] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  197.826217][ T5914] ext4 filesystem being mounted at /21/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  198.178868][ T5107] EXT4-fs (loop1): unmounting filesystem.
[  199.335649][ T5948] loop5: detected capacity change from 0 to 512
[  199.401664][ T5947] device bridge_slave_0 left promiscuous mode
[  199.423010][ T5950] loop2: detected capacity change from 0 to 128
[  199.449183][ T5947] bridge0: port 1(bridge_slave_0) entered disabled state
[  199.465748][   T26] audit: type=1326 audit(1761802450.749:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5951 comm="syz.0.389" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f36bb58efc9 code=0x0
[  199.494847][ T5947] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  199.544041][ T5948] EXT4-fs (loop5): 1 orphan inode deleted
[  199.569780][ T4521] Quota error (device loop5): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  199.581135][ T5948] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  199.605879][ T4521] EXT4-fs error (device loop5): ext4_release_dquot:6845: comm kworker/u4:8: Failed to release dquot type 1
[  199.619204][ T5948] ext4 filesystem being mounted at /64/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  199.629964][ T5961] loop1: detected capacity change from 0 to 256
[  199.865693][ T4524] EXT4-fs (loop5): unmounting filesystem.
[  200.004263][ T5961] loop1: detected capacity change from 0 to 8192
[  200.056332][ T5961] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  200.282399][ T5961] syz.1.390 (5961) used greatest stack depth: 20416 bytes left
[  201.446168][   T47] Bluetooth: hci1: command 0x0406 tx timeout
[  201.452255][ T4272] Bluetooth: hci3: command 0x0406 tx timeout
[  201.459079][ T4281] Bluetooth: hci0: command 0x0406 tx timeout
[  202.543501][ T6003] loop5: detected capacity change from 0 to 128
[  202.613188][ T6001] netlink: 8 bytes leftover after parsing attributes in process `syz.0.403'.
[  204.757709][ T6031] loop1: detected capacity change from 0 to 512
[  205.310433][ T6031] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  205.569276][ T6031] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1086: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  205.641201][ T6031] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.412: bg 0: block 248: padding at end of block bitmap is not set
[  205.736187][ T6031] Quota error (device loop1): write_blk: dquota write failed
[  205.781047][ T6031] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  205.821938][ T6031] EXT4-fs error (device loop1): ext4_acquire_dquot:6809: comm syz.1.412: Failed to acquire dquot type 1
[  205.877253][ T6050] loop5: detected capacity change from 0 to 512
[  205.897952][ T6031] EXT4-fs (loop1): 1 truncate cleaned up
[  205.903842][ T6031] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  205.930350][ T6050] ext4: Unknown parameter 'noacl'
[  205.989073][ T6031] EXT4-fs (loop1): unmounting filesystem.
[  207.052540][ T6031] loop1: detected capacity change from 0 to 4096
[  207.889251][ T6031] EXT4-fs (loop1): Test dummy encryption mode enabled
[  207.949103][ T6031] EXT4-fs: failed to create workqueue
[  208.006963][ T6031] EXT4-fs (loop1): mount failed
[  208.202177][ T6084] device bridge1 entered promiscuous mode
[  208.485157][ T6090] loop1: detected capacity change from 0 to 512
[  209.146969][ T6090] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  209.186192][ T6090] ext4 filesystem being mounted at /33/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  209.790690][ T6102] EXT4-fs error (device loop1): ext4_read_inode_bitmap:140: comm syz.1.426: Invalid inode bitmap blk 543549877901192623 in block_group 0
[  209.859724][ T6109] EXT4-fs error (device loop1): ext4_read_inode_bitmap:140: comm syz.1.426: Invalid inode bitmap blk 543549877901192623 in block_group 0
[  210.194969][ T5107] EXT4-fs (loop1): unmounting filesystem.
[  210.216268][ T4324] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  210.248102][ T5107] EXT4-fs error (device loop1): __ext4_get_inode_loc:4513: comm syz-executor: Invalid inode table block 8133527175889148704 in block_group 0
[  210.409461][ T4324] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 16
[  210.426238][ T5107] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5929: Corrupt filesystem
[  210.446344][ T4324] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 64
[  210.460563][ T5107] EXT4-fs error (device loop1): ext4_quota_off:7115: inode #3: comm syz-executor: mark_inode_dirty error
[  210.487740][ T4324] usb 6-1: New USB device found, idVendor=0a46, idProduct=9621, bcdDevice=4f.32
[  210.502789][ T5107] EXT4-fs error (device loop1): __ext4_get_inode_loc:4513: comm syz-executor: Invalid inode table block 8133527175889148704 in block_group 0
[  210.529800][ T4324] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  210.569684][ T4324] usb 6-1: Product: syz
[  210.573906][ T4324] usb 6-1: Manufacturer: syz
[  210.589529][ T5107] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5929: Corrupt filesystem
[  210.609604][ T4324] usb 6-1: SerialNumber: syz
[  210.628707][ T5107] EXT4-fs error (device loop1): ext4_quota_off:7115: inode #4: comm syz-executor: mark_inode_dirty error
[  210.643062][ T4324] usb 6-1: config 0 descriptor??
[  210.654458][ T6112] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  210.663357][ T6112] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  210.818230][ T6122] loop1: detected capacity change from 0 to 512
[  210.860964][ T6122] EXT4-fs: Ignoring removed i_version option
[  210.911745][ T6122] EXT4-fs: Ignoring removed bh option
[  210.929776][ T6112] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  210.946238][ T6112] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  211.018873][ T6122] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  211.069369][ T6122] ext4 filesystem being mounted at /34/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  211.352972][ T5107] EXT4-fs (loop1): unmounting filesystem.
[  211.374211][ T4324] dm9601: No valid MAC address in EEPROM, using 00:00:00:00:00:00
[  211.573637][ T6139] loop3: detected capacity change from 0 to 256
[  211.582852][ T4324] dm9601 6-1:0.0 (unnamed net_device) (uninitialized): Error reading chip ID
[  211.605301][ T4324] usb 6-1: USB disconnect, device number 4
[  213.207631][ T6161] netlink: 4 bytes leftover after parsing attributes in process `syz.5.443'.
[  213.258520][ T6161] device bridge_slave_1 left promiscuous mode
[  213.265038][ T6161] bridge0: port 2(bridge_slave_1) entered disabled state
[  213.516169][ T6161] device bridge_slave_0 left promiscuous mode
[  213.522779][ T6161] bridge0: port 1(bridge_slave_0) entered disabled state
[  214.183120][ T6185] loop0: detected capacity change from 0 to 512
[  214.215418][ T6185] EXT4-fs: Ignoring removed i_version option
[  214.264383][ T6185] EXT4-fs: Ignoring removed bh option
[  214.368614][ T6185] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  214.399385][ T6185] ext4 filesystem being mounted at /112/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  214.756922][ T4264] EXT4-fs (loop0): unmounting filesystem.
[  215.466495][ T6204] loop5: detected capacity change from 0 to 512
[  215.625782][ T6204] EXT4-fs: Ignoring removed orlov option
[  215.741313][ T6204] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[  215.926847][ T6204] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8002c119, mo2=0002]
[  216.020931][ T6204] EXT4-fs error (device loop5): ext4_xattr_ibody_find:2196: inode #15: comm syz.5.455: corrupted in-inode xattr
[  216.129991][ T6204] EXT4-fs error (device loop5): ext4_orphan_get:1405: comm syz.5.455: couldn't read orphan inode 15 (err -117)
[  216.176809][ T6204] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  216.489645][ T4524] EXT4-fs (loop5): unmounting filesystem.
[  216.841343][ T4272] Bluetooth: hci4: command 0x0406 tx timeout
[  217.723756][ T6232] netlink: 4 bytes leftover after parsing attributes in process `syz.3.461'.
[  217.766409][ T6232] device bridge_slave_1 left promiscuous mode
[  217.789404][ T6232] bridge0: port 2(bridge_slave_1) entered disabled state
[  217.845722][ T6235] loop5: detected capacity change from 0 to 512
[  217.918352][ T6235] EXT4-fs error (device loop5): ext4_orphan_get:1400: inode #15: comm syz.5.463: inode has both inline data and extents flags
[  217.973684][ T6235] EXT4-fs error (device loop5): ext4_orphan_get:1405: comm syz.5.463: couldn't read orphan inode 15 (err -117)
[  218.035468][ T6235] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  218.206238][ T6244] loop5: detected capacity change from 512 to 0
[  218.222729][ T4733] lo_write_bvec: 6 callbacks suppressed
[  218.222745][ T4733] loop: Write error at byte offset 9223372036855036927, length 1024.
[  218.254743][    C1] blk_print_req_error: 11 callbacks suppressed
[  218.254760][    C1] I/O error, dev loop5, sector 510 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  218.270764][    C1] buffer_io_error: 3 callbacks suppressed
[  218.270778][    C1] Buffer I/O error on dev loop5, logical block 255, lost sync page write
[  218.285388][ T6235] EXT4-fs error (device loop5): ext4_splice_branch:472: inode #18: block 255: comm syz.5.463: IO error syncing itable block
[  218.316669][ T4733] loop: Write error at byte offset 9223372036854776831, length 1024.
[  218.330911][    C1] I/O error, dev loop5, sector 72 op 0x0:(READ) flags 0x3000 phys_seg 1 prio class 2
[  218.340591][    C1] I/O error, dev loop5, sector 2 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  218.340742][ T6244] EXT4-fs error (device loop5): __ext4_find_entry:1685: inode #2: comm syz.5.463: reading directory lblock 0
[  218.350134][    C1] Buffer I/O error on dev loop5, logical block 1, lost sync page write
[  218.351240][ T6235] EXT4-fs (loop5): I/O error while writing superblock
[  218.440358][ T6235] EXT4-fs error (device loop5): ext4_check_bdev_write_error:218: comm syz.5.463: Error while async write back metadata
[  218.472877][   T11] loop: Write error at byte offset 9223372036854776831, length 1024.
[  218.497320][    C0] I/O error, dev loop5, sector 2 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  218.506975][    C0] Buffer I/O error on dev loop5, logical block 1, lost sync page write
[  218.516945][ T6235] EXT4-fs (loop5): previous I/O error to superblock detected
[  218.536813][   T11] loop: Write error at byte offset 9223372036854776831, length 1024.
[  218.569795][    C0] I/O error, dev loop5, sector 2 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  218.579458][    C0] Buffer I/O error on dev loop5, logical block 1, lost sync page write
[  218.603343][ T6244] EXT4-fs (loop5): I/O error while writing superblock
[  218.716227][ T6235] EXT4-fs (loop5): I/O error while writing superblock
[  218.921461][ T6235] EXT4-fs error (device loop5): ext4_check_bdev_write_error:218: comm syz.5.463: Error while async write back metadata
[  219.207599][   T32] loop: Write error at byte offset 9223372036854776831, length 1024.
[  219.256388][    C0] I/O error, dev loop5, sector 2 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  219.266039][    C0] Buffer I/O error on dev loop5, logical block 1, lost sync page write
[  219.276682][ T6235] EXT4-fs (loop5): I/O error while writing superblock
[  219.365774][ T6235] EXT4-fs error (device loop5): ext4_check_bdev_write_error:218: comm syz.5.463: Error while async write back metadata
[  219.379994][ T4521] loop: Write error at byte offset 9223372036854776831, length 1024.
[  219.446795][    C0] I/O error, dev loop5, sector 2 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  219.456402][    C0] Buffer I/O error on dev loop5, logical block 1, lost sync page write
[  219.464761][ T6235] EXT4-fs (loop5): I/O error while writing superblock
[  219.473846][ T6259] loop3: detected capacity change from 0 to 512
[  219.480846][ T6235] EXT4-fs error (device loop5): mb_free_blocks:1810: group 0, inode 18: block 81:freeing already freed block (bit 80); block bitmap corrupt.
[  219.495416][ T6235] EXT4-fs (loop5): pa ffff88807428c380: logic 32, phys. 65, len 32
[  219.503489][ T6235] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:4876: group 0, free 16, pa_free 15
[  219.532900][ T6259] EXT4-fs: Ignoring removed oldalloc option
[  219.535994][   T11] loop: Write error at byte offset 9223372036854776831, length 1024.
[  219.581218][    C0] I/O error, dev loop5, sector 2 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  219.590803][    C0] Buffer I/O error on dev loop5, logical block 1, lost sync page write
[  219.599156][  T126] EXT4-fs (loop5): I/O error while writing superblock
[  219.645329][ T6259] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  219.662307][ T6235] EXT4-fs error (device loop5): ext4_check_bdev_write_error:218: comm syz.5.463: Error while async write back metadata
[  219.765721][ T6259] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2819: Unable to expand inode 11. Delete some EAs or run e2fsck.
[  220.199672][   T11] loop: Write error at byte offset 9223372036854776831, length 1024.
[  220.222195][    C0] I/O error, dev loop5, sector 2 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  220.232634][    C0] Buffer I/O error on dev loop5, logical block 1, lost sync page write
[  220.236518][ T6259] EXT4-fs (loop3): 1 truncate cleaned up
[  220.241197][ T6235] EXT4-fs (loop5): I/O error while writing superblock
[  220.272558][ T6259] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  220.290694][ T5058] loop: Write error at byte offset 9223372036855036927, length 1024.
[  220.329253][    C0] I/O error, dev loop5, sector 510 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  220.339162][    C0] Buffer I/O error on dev loop5, logical block 255, lost sync page write
[  220.347876][ T6235] EXT4-fs error (device loop5): ext4_free_data:985: inode #18: block 255: comm syz.5.463: IO error syncing itable block
[  220.394312][ T5058] loop: Write error at byte offset 9223372036854776831, length 1024.
[  220.436300][    C0] Buffer I/O error on dev loop5, logical block 1, lost sync page write
[  220.444856][ T6235] EXT4-fs error (device loop5): ext4_check_bdev_write_error:218: comm syz.5.463: Error while async write back metadata
[  220.491765][    C0] EXT4-fs warning (device loop5): ext4_end_bio:347: I/O error 10 writing to inode 18 starting block 65)
[  220.503089][    C0] buffer_io_error: 34 callbacks suppressed
[  220.503103][    C0] Buffer I/O error on device loop5, logical block 65
[  220.515589][    C0] Buffer I/O error on device loop5, logical block 66
[  220.522266][    C0] Buffer I/O error on device loop5, logical block 67
[  220.528939][    C0] Buffer I/O error on device loop5, logical block 68
[  220.535770][    C0] Buffer I/O error on device loop5, logical block 69
[  220.542469][    C0] Buffer I/O error on device loop5, logical block 70
[  220.549148][    C0] Buffer I/O error on device loop5, logical block 71
[  220.555821][    C0] Buffer I/O error on device loop5, logical block 72
[  220.562629][    C0] Buffer I/O error on device loop5, logical block 73
[  220.569758][    C0] Buffer I/O error on device loop5, logical block 74
[  220.576765][    C0] EXT4-fs warning (device loop5): ext4_end_bio:347: I/O error 10 writing to inode 18 starting block 209)
[  220.588470][    C0] EXT4-fs warning (device loop5): ext4_end_bio:347: I/O error 10 writing to inode 18 starting block 37)
[  220.743357][ T4524] EXT4-fs warning (device loop5): htree_dirblock_to_tree:1083: inode #2: lblock 0: comm syz-executor: error -5 reading directory block
[  220.766195][   T41] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[  221.011107][   T41] usb 4-1: Using ep0 maxpacket: 8
[  221.019541][   T41] usb 4-1: config 3 has an invalid interface number: 45 but max is 0
[  221.070194][   T41] usb 4-1: config 3 contains an unexpected descriptor of type 0x1, skipping
[  221.101213][   T41] usb 4-1: config 3 has no interface number 0
[  221.127013][   T41] usb 4-1: config 3 interface 45 altsetting 2 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  221.142108][ T6285] loop1: detected capacity change from 0 to 512
[  221.221900][   T41] usb 4-1: config 3 interface 45 has no altsetting 0
[  221.230950][ T6285] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  221.260168][   T41] usb 4-1: New USB device found, idVendor=0582, idProduct=e6ca, bcdDevice=d3.0b
[  221.266251][ T6285] ext4 filesystem being mounted at /42/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  221.341363][   T41] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  221.363633][   T41] usb 4-1: Product: syz
[  221.384546][ T6285] EXT4-fs (loop1): shut down requested (2)
[  221.402728][   T41] usb 4-1: Manufacturer: syz
[  221.421746][   T41] usb 4-1: SerialNumber: syz
[  221.558890][ T4357] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  221.581780][ T6290] EXT4-fs warning (device loop1): verify_group_input:151: Cannot add at group 1838620 (only 1 groups)
[  221.648091][ T6291] Zero length message leads to an empty skb
[  221.810560][ T4401] udevd[4401]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:3.45/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  221.833992][   T41] usb 4-1: USB disconnect, device number 14
[  221.858121][ T4357] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  221.941060][ T5107] EXT4-fs (loop1): unmounting filesystem.
[  222.052330][ T4357] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  222.210162][ T4357] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  222.289002][ T4265] EXT4-fs (loop3): unmounting filesystem.
[  224.134686][ T6318] loop3: detected capacity change from 0 to 1024
[  224.429574][ T6324] loop2: detected capacity change from 0 to 512
[  224.466358][ T4281] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  224.478697][ T4281] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  224.494584][ T4281] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  224.506964][ T4281] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  224.514585][ T4281] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  224.522646][ T4281] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  224.531368][ T6324] EXT4-fs error (device loop2): ext4_orphan_get:1400: inode #15: comm syz.2.484: inode has both inline data and extents flags
[  224.592213][ T6324] EXT4-fs error (device loop2): ext4_orphan_get:1405: comm syz.2.484: couldn't read orphan inode 15 (err -117)
[  224.646299][ T4795] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  224.654555][ T6324] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  224.877144][ T4795] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  224.956545][ T6324] loop2: detected capacity change from 512 to 0
[  224.963149][ T4795] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  224.976591][ T4795] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  225.008529][    C0] blk_print_req_error: 11 callbacks suppressed
[  225.008541][    C0] I/O error, dev loop2, sector 72 op 0x0:(READ) flags 0x3000 phys_seg 1 prio class 2
[  225.024551][ T6335] EXT4-fs error (device loop2): __ext4_find_entry:1685: inode #2: comm syz.2.484: reading directory lblock 0
[  225.024639][ T4795] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  225.053401][ T4795] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  225.081481][ T4795] usb 2-1: config 0 descriptor??
[  225.093190][    T9] hfsplus: bad catalog file entry
[  225.098840][ T4521] lo_write_bvec: 6 callbacks suppressed
[  225.098855][ T4521] loop: Write error at byte offset 9223372036854776831, length 1024.
[  225.135226][    T9] hfsplus: b-tree write err: -5, ino 3
[  225.163935][    C0] I/O error, dev loop2, sector 2 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  225.173547][    C0] buffer_io_error: 3 callbacks suppressed
[  225.173561][    C0] Buffer I/O error on dev loop2, logical block 1, lost sync page write
[  225.187702][ T6335] EXT4-fs (loop2): I/O error while writing superblock
[  225.197529][ T6339] loop0: detected capacity change from 0 to 764
[  225.240812][ T6339] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  225.362468][    C0] I/O error, dev loop2, sector 72 op 0x0:(READ) flags 0x3000 phys_seg 1 prio class 2
[  225.372164][ T4273] EXT4-fs warning (device loop2): htree_dirblock_to_tree:1083: inode #2: lblock 0: comm syz-executor: error -5 reading directory block
[  225.394559][ T6342] loop3: detected capacity change from 0 to 1024
[  225.503630][ T4795] plantronics 0003:047F:FFFF.0002: No inputs registered, leaving
[  225.552066][    C0] I/O error, dev loop2, sector 12 op 0x0:(READ) flags 0x80700 phys_seg 8 prio class 2
[  225.581192][    C0] I/O error, dev loop2, sector 10 op 0x0:(READ) flags 0x3000 phys_seg 1 prio class 2
[  225.588399][ T4795] plantronics 0003:047F:FFFF.0002: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[  225.603764][ T4521] EXT4-fs error (device loop2): __ext4_get_inode_loc_noinmem:4636: inode #2: block 5: comm kworker/u4:8: unable to read itable block
[  225.636704][ T4733] loop: Write error at byte offset 9223372036854776831, length 1024.
[  225.650190][    C1] I/O error, dev loop2, sector 2 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  225.659801][    C1] Buffer I/O error on dev loop2, logical block 1, lost sync page write
[  225.659989][   T26] audit: type=1800 audit(1761802476.939:7): pid=6342 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.486" name="file1" dev="loop3" ino=20 res=0 errno=0
[  225.708620][ T4521] EXT4-fs (loop2): I/O error while writing superblock
[  225.760476][ T4273] EXT4-fs (loop2): unmounting filesystem.
[  225.782488][ T4521] loop: Write error at byte offset 9223372036854776831, length 1024.
[  225.790872][    C1] I/O error, dev loop2, sector 2 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  225.800440][    C1] Buffer I/O error on dev loop2, logical block 1, lost sync page write
[  225.808900][ T4273] EXT4-fs (loop2): I/O error while writing superblock
[  226.357053][ T4357] device hsr_slave_0 left promiscuous mode
[  226.369487][ T4357] device hsr_slave_1 left promiscuous mode
[  226.396289][ T4373] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[  226.409872][ T4357] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  226.430838][ T4357] batman_adv: batadv0: Removing interface: batadv_slave_0
[  226.469886][ T4357] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  226.485683][ T4357] batman_adv: batadv0: Removing interface: batadv_slave_1
[  226.566350][ T4281] Bluetooth: hci4: command 0x0409 tx timeout
[  226.587742][ T4357] device veth1_macvtap left promiscuous mode
[  226.596207][ T4373] usb 4-1: Using ep0 maxpacket: 16
[  226.604215][ T4373] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  226.634873][ T4357] device veth0_macvtap left promiscuous mode
[  226.673360][ T4373] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  226.688279][ T4357] device veth1_vlan left promiscuous mode
[  226.722959][ T4357] device veth0_vlan left promiscuous mode
[  226.739518][ T4373] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  226.803153][ T4373] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  226.849027][ T4373] usb 4-1: Product: syz
[  226.859089][ T4373] usb 4-1: Manufacturer: syz
[  226.864488][ T4373] usb 4-1: SerialNumber: syz
[  226.912913][   T41] usb 2-1: USB disconnect, device number 2
[  227.101794][ T4373] usb 4-1: 0:2 : does not exist
[  227.138769][ T4373] usb 4-1: 5:0: failed to get current value for ch 0 (-22)
[  227.190738][ T4373] usb 4-1: USB disconnect, device number 15
[  227.449862][ T4401] udevd[4401]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  227.578309][ T4272] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  227.590643][ T4272] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  227.599130][ T4272] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  227.608753][ T4272] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  227.640304][ T4272] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  227.650987][ T4272] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  228.350786][ T6378] loop0: detected capacity change from 0 to 512
[  228.371903][ T6378] EXT4-fs error (device loop0): ext4_orphan_get:1400: inode #15: comm syz.0.498: inode has both inline data and extents flags
[  228.397550][ T6378] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.498: couldn't read orphan inode 15 (err -117)
[  228.416348][ T6378] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  228.639071][ T6384] loop0: detected capacity change from 512 to 0
[  228.646217][ T4281] Bluetooth: hci4: command 0x041b tx timeout
[  228.667128][ T4347] loop: Write error at byte offset 9223372036855036927, length 1024.
[  228.694351][    C1] I/O error, dev loop0, sector 510 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  228.704179][    C1] Buffer I/O error on dev loop0, logical block 255, lost sync page write
[  228.712800][ T6378] EXT4-fs error (device loop0): ext4_splice_branch:472: inode #18: block 255: comm syz.0.498: IO error syncing itable block
[  228.746237][    C1] I/O error, dev loop0, sector 72 op 0x0:(READ) flags 0x3000 phys_seg 1 prio class 2
[  228.760356][ T4357] team0 (unregistering): Port device team_slave_1 removed
[  228.769840][ T6385] EXT4-fs error (device loop0): __ext4_find_entry:1685: inode #2: comm syz.0.498: reading directory lblock 0
[  228.781525][ T4347] loop: Write error at byte offset 9223372036854776831, length 1024.
[  228.796208][    C1] I/O error, dev loop0, sector 2 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  228.805748][    C1] Buffer I/O error on dev loop0, logical block 1, lost sync page write
[  228.814291][ T6378] EXT4-fs (loop0): I/O error while writing superblock
[  228.836115][ T6385] EXT4-fs (loop0): previous I/O error to superblock detected
[  228.854272][ T6378] EXT4-fs error (device loop0): ext4_check_bdev_write_error:218: comm syz.0.498: Error while async write back metadata
[  228.870348][ T4347] loop: Write error at byte offset 9223372036854776831, length 1024.
[  228.891559][ T4357] team0 (unregistering): Port device team_slave_0 removed
[  228.912932][    C1] Buffer I/O error on dev loop0, logical block 1, lost sync page write
[  228.921418][ T6378] EXT4-fs (loop0): previous I/O error to superblock detected
[  228.934871][ T4347] loop: Write error at byte offset 9223372036854776831, length 1024.
[  228.943158][    C1] Buffer I/O error on dev loop0, logical block 1, lost sync page write
[  228.952571][ T6385] EXT4-fs (loop0): I/O error while writing superblock
[  228.959522][ T6378] EXT4-fs (loop0): I/O error while writing superblock
[  228.989463][ T6378] EXT4-fs error (device loop0): ext4_check_bdev_write_error:218: comm syz.0.498: Error while async write back metadata
[  229.008307][ T4347] loop: Write error at byte offset 9223372036854776831, length 1024.
[  229.018314][    C1] Buffer I/O error on dev loop0, logical block 1, lost sync page write
[  229.026797][ T6378] EXT4-fs (loop0): I/O error while writing superblock
[  229.041026][ T6378] EXT4-fs error (device loop0): ext4_check_bdev_write_error:218: comm syz.0.498: Error while async write back metadata
[  229.054856][ T4357] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  229.056603][    T9] loop: Write error at byte offset 9223372036854776831, length 1024.
[  229.076950][    C1] Buffer I/O error on dev loop0, logical block 1, lost sync page write
[  229.085377][ T6378] EXT4-fs (loop0): I/O error while writing superblock
[  229.097107][ T6378] EXT4-fs error (device loop0): mb_free_blocks:1810: group 0, inode 18: block 141:freeing already freed block (bit 140); block bitmap corrupt.
[  229.112076][ T6378] EXT4-fs (loop0): pa ffff8880700342a0: logic 32, phys. 97, len 96
[  229.120078][ T6378] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:4876: group 0, free 84, pa_free 83
[  229.130464][ T4347] loop: Write error at byte offset 9223372036854776831, length 1024.
[  229.138518][ T6378] EXT4-fs error (device loop0): ext4_check_bdev_write_error:218: comm syz.0.498: Error while async write back metadata
[  229.159570][    C1] Buffer I/O error on dev loop0, logical block 1, lost sync page write
[  229.168334][ T4373] EXT4-fs (loop0): I/O error while writing superblock
[  229.181133][ T6378] EXT4-fs error (device loop0): ext4_free_data:985: inode #18: block 255: comm syz.0.498: IO error syncing itable block
[  229.196365][ T6378] EXT4-fs error (device loop0): ext4_check_bdev_write_error:218: comm syz.0.498: Error while async write back metadata
[  229.211533][ T4357] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  229.217540][    C1] EXT4-fs warning (device loop0): ext4_end_bio:347: I/O error 10 writing to inode 18 starting block 129)
[  229.224027][    C0] EXT4-fs warning (device loop0): ext4_end_bio:347: I/O error 10 writing to inode 18 starting block 65)
[  229.231440][    C1] buffer_io_error: 38 callbacks suppressed
[  229.231453][    C1] Buffer I/O error on device loop0, logical block 129
[  229.231467][    C1] Buffer I/O error on device loop0, logical block 130
[  229.231478][    C1] Buffer I/O error on device loop0, logical block 131
[  229.231490][    C1] Buffer I/O error on device loop0, logical block 132
[  229.231517][    C1] Buffer I/O error on device loop0, logical block 133
[  229.242652][    C0] Buffer I/O error on device loop0, logical block 65
[  229.248420][    C1] Buffer I/O error on device loop0, logical block 134
[  229.255182][    C0] Buffer I/O error on device loop0, logical block 66
[  229.261931][    C1] Buffer I/O error on device loop0, logical block 135
[  229.268689][    C0] Buffer I/O error on device loop0, logical block 67
[  229.316059][    C0] EXT4-fs warning (device loop0): ext4_end_bio:347: I/O error 10 writing to inode 18 starting block 209)
[  229.327389][    C0] EXT4-fs warning (device loop0): ext4_end_bio:347: I/O error 10 writing to inode 18 starting block 37)
[  229.378398][ T4264] EXT4-fs warning (device loop0): htree_dirblock_to_tree:1083: inode #2: lblock 0: comm syz-executor: error -5 reading directory block
[  229.690163][ T4281] Bluetooth: hci3: command 0x0409 tx timeout
[  229.909096][ T4357] bond0 (unregistering): Released all slaves
[  229.946284][ T6323] chnl_net:caif_netlink_parms(): no params data found
[  230.433074][ T6323] bridge0: port 1(bridge_slave_0) entered blocking state
[  230.444532][ T6323] bridge0: port 1(bridge_slave_0) entered disabled state
[  230.467950][ T6323] device bridge_slave_0 entered promiscuous mode
[  230.514950][ T6323] bridge0: port 2(bridge_slave_1) entered blocking state
[  230.532030][ T4345] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  230.575550][ T6323] bridge0: port 2(bridge_slave_1) entered disabled state
[  230.604595][ T6323] device bridge_slave_1 entered promiscuous mode
[  230.719801][ T6323] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  230.729526][ T4281] Bluetooth: hci4: command 0x040f tx timeout
[  230.735652][ T4345] usb 2-1: Using ep0 maxpacket: 32
[  230.752060][ T4345] usb 2-1: unable to get BOS descriptor or descriptor too short
[  230.773101][ T4345] usb 2-1: config 7 has an invalid descriptor of length 0, skipping remainder of the config
[  230.796915][ T4345] usb 2-1: New USB device found, idVendor=18d1, idProduct=1eaf, bcdDevice=5a.bb
[  230.818108][ T6323] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  230.830273][ T4345] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  230.847463][ T4345] usb 2-1: Product: syz
[  230.851843][ T4345] usb 2-1: Manufacturer: syz
[  230.861990][ T4345] usb 2-1: SerialNumber: syz
[  230.884353][ T6364] chnl_net:caif_netlink_parms(): no params data found
[  230.995185][ T6323] team0: Port device team_slave_0 added
[  231.059675][ T6323] team0: Port device team_slave_1 added
[  231.079228][ T4272] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  231.093682][ T4272] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  231.099702][ T4345] usb 2-1: Cannot retrieve CPort count: 0
[  231.113969][ T4272] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  231.142340][ T4272] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  231.150278][ T4272] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  231.157889][ T4272] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  231.166707][ T4345] usb 2-1: Cannot retrieve CPort count: -5
[  231.172686][ T4345] es2_ap_driver: probe of 2-1:7.0 failed with error -5
[  231.338014][  T128] usb 2-1: USB disconnect, device number 3
[  231.766114][ T4272] Bluetooth: hci3: command 0x041b tx timeout
[  231.980283][   T32] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  232.119071][ T6323] batman_adv: batadv0: Adding interface: batadv_slave_0
[  232.135422][ T6323] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  232.215516][ T6323] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  232.596036][ T6323] batman_adv: batadv0: Adding interface: batadv_slave_1
[  232.619277][ T6323] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  232.806352][ T4272] Bluetooth: hci4: command 0x0419 tx timeout
[  232.861091][ T6323] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  233.069159][ T6364] bridge0: port 1(bridge_slave_0) entered blocking state
[  233.086181][ T6364] bridge0: port 1(bridge_slave_0) entered disabled state
[  233.106429][ T6364] device bridge_slave_0 entered promiscuous mode
[  233.206039][ T4272] Bluetooth: hci0: command 0x0409 tx timeout
[  233.226812][   T32] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  233.271651][ T6364] bridge0: port 2(bridge_slave_1) entered blocking state
[  233.286628][ T6364] bridge0: port 2(bridge_slave_1) entered disabled state
[  233.313088][ T6364] device bridge_slave_1 entered promiscuous mode
[  233.487806][   T32] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  233.598780][ T6323] device hsr_slave_0 entered promiscuous mode
[  233.622416][ T6323] device hsr_slave_1 entered promiscuous mode
[  233.673357][ T6323] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  233.693372][ T6323] Cannot create hsr debugfs directory
[  233.807849][   T32] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  233.846177][ T4272] Bluetooth: hci3: command 0x040f tx timeout
[  233.861106][ T6364] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  233.955353][ T6364] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  234.161508][ T6364] team0: Port device team_slave_0 added
[  234.231522][ T6364] team0: Port device team_slave_1 added
[  234.410485][ T6364] batman_adv: batadv0: Adding interface: batadv_slave_0
[  234.425642][ T6364] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  234.476320][ T6364] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  234.704935][   T32] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  234.743131][ T6364] batman_adv: batadv0: Adding interface: batadv_slave_1
[  234.756908][ T6364] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  234.830139][ T6364] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  235.142645][ T6466] netlink: 52 bytes leftover after parsing attributes in process `syz.3.513'.
[  235.165815][ T6466] x_tables: ip6_tables: NETMAP.0 target: invalid size 40 (kernel) != (user) 0
[  235.287404][ T4272] Bluetooth: hci0: command 0x041b tx timeout
[  235.477576][   T32] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  235.611453][ T6364] device hsr_slave_0 entered promiscuous mode
[  235.773682][ T6364] device hsr_slave_1 entered promiscuous mode
[  235.793725][ T6364] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  235.820421][ T6364] Cannot create hsr debugfs directory
[  235.830021][ T6417] chnl_net:caif_netlink_parms(): no params data found
[  235.926316][ T4272] Bluetooth: hci3: command 0x0419 tx timeout
[  235.941569][   T32] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  235.951505][ T6471] loop3: detected capacity change from 0 to 512
[  236.039060][ T6471] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  236.072107][   T32] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  237.040030][ T6323] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  237.089579][ T6417] bridge0: port 1(bridge_slave_0) entered blocking state
[  237.117349][ T6417] bridge0: port 1(bridge_slave_0) entered disabled state
[  237.163898][ T4265] EXT4-fs (loop3): unmounting filesystem.
[  237.280819][ T6417] device bridge_slave_0 entered promiscuous mode
[  237.366016][ T4272] Bluetooth: hci0: command 0x040f tx timeout
[  237.755187][ T6323] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  237.866760][ T6417] bridge0: port 2(bridge_slave_1) entered blocking state
[  237.904687][ T6417] bridge0: port 2(bridge_slave_1) entered disabled state
[  237.926439][ T6417] device bridge_slave_1 entered promiscuous mode
[  238.002892][ T6323] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  238.129594][ T6323] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  238.171138][ T6417] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  238.295238][ T6417] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  238.346102][ T4373] usb 4-1: new high-speed USB device number 16 using dummy_hcd
[  238.374733][ T6417] team0: Port device team_slave_0 added
[  238.384654][ T6417] team0: Port device team_slave_1 added
[  238.530442][ T4373] usb 4-1: Using ep0 maxpacket: 32
[  238.540269][ T4373] usb 4-1: unable to get BOS descriptor or descriptor too short
[  238.565628][ T4373] usb 4-1: config 7 has an invalid descriptor of length 0, skipping remainder of the config
[  238.591171][ T4373] usb 4-1: New USB device found, idVendor=18d1, idProduct=1eaf, bcdDevice=5a.bb
[  238.600882][ T4373] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  238.609635][ T4373] usb 4-1: Product: syz
[  238.614049][ T4373] usb 4-1: Manufacturer: syz
[  238.635532][ T4373] usb 4-1: SerialNumber: syz
[  238.670954][ T6417] batman_adv: batadv0: Adding interface: batadv_slave_0
[  238.679522][ T6417] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  238.706422][ T6417] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  238.729963][ T6417] batman_adv: batadv0: Adding interface: batadv_slave_1
[  238.737958][ T6417] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  238.764738][ T6417] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  238.862332][ T4373] usb 4-1: Cannot retrieve CPort count: 0
[  238.868465][ T4373] usb 4-1: Cannot retrieve CPort count: -5
[  238.874330][ T4373] es2_ap_driver: probe of 4-1:7.0 failed with error -5
[  239.072591][ T4383] usb 4-1: USB disconnect, device number 16
[  239.081584][ T6364] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  239.226394][ T6417] device hsr_slave_0 entered promiscuous mode
[  239.235685][ T6417] device hsr_slave_1 entered promiscuous mode
[  239.245471][ T6417] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  239.253656][ T6417] Cannot create hsr debugfs directory
[  239.266571][ T6364] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  239.357054][ T6364] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  239.446117][ T4272] Bluetooth: hci0: command 0x0419 tx timeout
[  239.504509][ T6323] 8021q: adding VLAN 0 to HW filter on device bond0
[  239.517510][ T6364] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  239.645834][ T6323] 8021q: adding VLAN 0 to HW filter on device team0
[  239.742894][ T4357] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  239.767871][ T4357] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  239.870945][ T4357] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  239.881104][ T4357] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  239.899217][ T4357] bridge0: port 1(bridge_slave_0) entered blocking state
[  239.906377][ T4357] bridge0: port 1(bridge_slave_0) entered forwarding state
[  240.090207][ T4357] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  240.108042][ T4357] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  240.143887][ T4357] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  240.178366][ T4357] bridge0: port 2(bridge_slave_1) entered blocking state
[  240.185531][ T4357] bridge0: port 2(bridge_slave_1) entered forwarding state
[  240.216928][ T4357] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  240.455869][ T5058] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  240.465025][ T5058] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  240.493226][ T5058] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  240.510308][ T5058] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  240.572671][ T6323] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  240.626041][ T6323] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  240.664260][ T5058] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  240.674219][ T5058] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  240.684089][ T5058] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  240.693640][ T5058] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  240.707194][ T5058] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  240.730741][ T5058] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  240.898574][ T5058] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  241.142188][ T4373] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  241.216660][ T6364] 8021q: adding VLAN 0 to HW filter on device bond0
[  241.251338][ T6364] 8021q: adding VLAN 0 to HW filter on device team0
[  241.290631][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  241.302347][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  241.326355][ T4373] usb 2-1: Using ep0 maxpacket: 32
[  241.333511][ T4373] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  241.357004][ T4373] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  241.376522][ T4373] usb 2-1: New USB device found, idVendor=046d, idProduct=c29c, bcdDevice= 0.00
[  241.405960][ T4373] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  241.440135][ T4373] usb 2-1: config 0 descriptor??
[  241.459269][   T32] device hsr_slave_0 left promiscuous mode
[  241.487136][   T32] device hsr_slave_1 left promiscuous mode
[  241.550408][   T32] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  241.618702][   T32] batman_adv: batadv0: Removing interface: batadv_slave_0
[  241.717180][   T32] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  241.756992][   T32] batman_adv: batadv0: Removing interface: batadv_slave_1
[  241.953812][   T32] device hsr_slave_0 left promiscuous mode
[  242.038983][   T32] device hsr_slave_1 left promiscuous mode
[  242.181146][   T32] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  242.202280][   T32] batman_adv: batadv0: Removing interface: batadv_slave_0
[  242.296101][   T32] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  242.324712][   T32] batman_adv: batadv0: Removing interface: batadv_slave_1
[  242.332234][ T4373] logitech 0003:046D:C29C.0003: hidraw0: USB HID vb4.30 Device [HID 046d:c29c] on usb-dummy_hcd.1-1/input0
[  242.435624][   T32] device bridge_slave_1 left promiscuous mode
[  242.465320][   T32] bridge0: port 2(bridge_slave_1) entered disabled state
[  242.496541][ T4373] logitech 0003:046D:C29C.0003: no inputs found
[  242.531014][ T4373] usb 2-1: USB disconnect, device number 4
[  242.544281][   T32] device bridge_slave_0 left promiscuous mode
[  242.566218][   T32] bridge0: port 1(bridge_slave_0) entered disabled state
[  242.644890][ T6553] fido_id[6553]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory
[  242.736795][   T32] device veth1_macvtap left promiscuous mode
[  242.743001][   T32] device veth0_macvtap left promiscuous mode
[  242.764492][   T32] device veth1_vlan left promiscuous mode
[  242.776611][   T32] device veth0_vlan left promiscuous mode
[  242.797354][   T32] device veth1_macvtap left promiscuous mode
[  242.803454][   T32] device veth0_macvtap left promiscuous mode
[  242.825129][   T32] device veth1_vlan left promiscuous mode
[  242.832040][   T32] device veth0_vlan left promiscuous mode
[  243.282062][ T6572] loop1: detected capacity change from 0 to 512
[  243.369665][ T6572] Quota error (device loop1): do_check_range: Getting dqdh_next_free 256 out of range 0-7
[  243.396218][ T6572] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  243.414908][ T6572] EXT4-fs error (device loop1): ext4_acquire_dquot:6809: comm syz.1.530: Failed to acquire dquot type 1
[  243.514737][ T6572] EXT4-fs error (device loop1): ext4_do_update_inode:5268: inode #16: comm syz.1.530: corrupted inode contents
[  243.582802][ T6572] EXT4-fs error (device loop1): ext4_dirty_inode:6133: inode #16: comm syz.1.530: mark_inode_dirty error
[  243.608163][ T6572] EXT4-fs error (device loop1): ext4_do_update_inode:5268: inode #16: comm syz.1.530: corrupted inode contents
[  243.657770][ T6572] EXT4-fs error (device loop1): __ext4_ext_dirty:202: inode #16: comm syz.1.530: mark_inode_dirty error
[  243.711632][ T6572] EXT4-fs error (device loop1): ext4_do_update_inode:5268: inode #16: comm syz.1.530: corrupted inode contents
[  243.732264][ T6572] EXT4-fs error (device loop1) in ext4_orphan_del:301: Corrupt filesystem
[  243.749430][ T6572] EXT4-fs error (device loop1): ext4_do_update_inode:5268: inode #16: comm syz.1.530: corrupted inode contents
[  243.765283][ T6572] EXT4-fs error (device loop1): ext4_truncate:4318: inode #16: comm syz.1.530: mark_inode_dirty error
[  243.777907][ T6572] EXT4-fs error (device loop1) in ext4_process_orphan:343: Corrupt filesystem
[  243.803239][ T6572] EXT4-fs (loop1): 1 truncate cleaned up
[  243.809250][ T6572] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  243.820007][ T6572] ext4 filesystem being mounted at /59/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  243.972757][ T5107] EXT4-fs (loop1): unmounting filesystem.
[  244.639183][   T32] team0 (unregistering): Port device team_slave_1 removed
[  244.702634][   T32] team0 (unregistering): Port device team_slave_0 removed
[  244.788520][ T6588] loop3: detected capacity change from 0 to 1024
[  244.826843][   T32] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  244.999869][   T32] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  245.768138][ T6600] loop1: detected capacity change from 0 to 512
[  245.785492][ T6600] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[  245.810928][ T6600] EXT4-fs (loop1): invalid inodes per group: 2
[  245.810928][ T6600] 
[  245.925372][   T32] bond0 (unregistering): Released all slaves
[  246.619254][   T32] team0 (unregistering): Port device team_slave_1 removed
[  246.686552][   T32] team0 (unregistering): Port device team_slave_0 removed
[  246.747756][   T32] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  246.807616][   T32] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  247.503693][   T32] bond0 (unregistering): Released all slaves
[  247.697090][   T51] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  247.714055][   T51] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  247.723947][   T51] bridge0: port 1(bridge_slave_0) entered blocking state
[  247.731163][   T51] bridge0: port 1(bridge_slave_0) entered forwarding state
[  247.748644][   T51] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  247.783261][   T51] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  247.795625][   T51] bridge0: port 2(bridge_slave_1) entered blocking state
[  247.802823][   T51] bridge0: port 2(bridge_slave_1) entered forwarding state
[  247.819030][   T51] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  247.834134][   T51] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  247.844884][   T51] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  248.008541][ T6612] blk_print_req_error: 19 callbacks suppressed
[  248.008580][ T6612] I/O error, dev loop1, sector 64 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[  248.025868][ T6612] I/O error, dev loop1, sector 256 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[  248.035462][ T6612] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  248.048168][ T6612] I/O error, dev loop1, sector 512 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[  248.057752][ T6612] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=512, location=512
[  248.067461][ T6612] UDF-fs: warning (device loop1): udf_load_vrs: No anchor found
[  248.075163][ T6612] UDF-fs: Scanning with blocksize 512 failed
[  248.085612][ T6612] I/O error, dev loop1, sector 64 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[  248.096073][ T6612] I/O error, dev loop1, sector 512 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[  248.105523][ T6612] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  248.116491][ T6612] I/O error, dev loop1, sector 1024 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[  248.126175][ T6612] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=512, location=512
[  248.135822][ T6612] UDF-fs: warning (device loop1): udf_load_vrs: No anchor found
[  248.143594][ T6612] UDF-fs: Scanning with blocksize 1024 failed
[  248.152554][ T6612] I/O error, dev loop1, sector 64 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[  248.163102][ T6612] I/O error, dev loop1, sector 1024 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[  248.172898][ T6612] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  248.183460][ T6612] I/O error, dev loop1, sector 2048 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[  248.193089][ T6612] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=512, location=512
[  248.202772][ T6612] UDF-fs: warning (device loop1): udf_load_vrs: No anchor found
[  248.210529][ T6612] UDF-fs: Scanning with blocksize 2048 failed
[  248.219076][ T6612] I/O error, dev loop1, sector 64 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[  248.229386][ T6612] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  248.239925][ T6612] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=512, location=512
[  248.249802][ T6612] UDF-fs: warning (device loop1): udf_load_vrs: No anchor found
[  248.257628][ T6612] UDF-fs: Scanning with blocksize 4096 failed
[  248.263770][ T6612] UDF-fs: warning (device loop1): udf_fill_super: No partition found (1)
[  248.481877][ T6323] 8021q: adding VLAN 0 to HW filter on device batadv0
[  248.489766][   T51] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  248.577310][   T51] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  248.603307][   T51] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  248.650737][   T51] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  248.676552][   T51] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  248.717930][   T51] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  248.737339][   T51] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  248.766487][   T51] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  248.776548][   T51] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  248.785132][   T51] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  248.795369][   T51] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  248.851389][ T6417] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  248.888377][ T6417] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  248.937442][ T6417] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  248.965530][ T6417] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  249.383708][ T6417] 8021q: adding VLAN 0 to HW filter on device bond0
[  249.457374][ T5058] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  249.465317][ T5058] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  249.513508][ T6417] 8021q: adding VLAN 0 to HW filter on device team0
[  249.553871][ T5220] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  249.580224][ T5220] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  249.614942][ T5220] bridge0: port 1(bridge_slave_0) entered blocking state
[  249.622150][ T5220] bridge0: port 1(bridge_slave_0) entered forwarding state
[  249.658971][ T5220] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  249.700378][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  249.723503][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  249.764853][    T9] bridge0: port 2(bridge_slave_1) entered blocking state
[  249.772080][    T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[  249.826501][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  249.841921][ T4281] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  249.854730][ T4281] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  249.864948][ T4281] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  249.883582][ T4281] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  249.900095][ T4281] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  249.909302][ T4281] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  249.929171][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  249.995344][ T6364] 8021q: adding VLAN 0 to HW filter on device batadv0
[  250.027559][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  250.070152][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  250.091680][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  250.132815][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  250.158474][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  250.168331][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  250.186741][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  250.206268][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  250.261693][ T6323] device veth0_vlan entered promiscuous mode
[  250.291545][ T6417] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  250.308654][ T6417] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  250.341241][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  250.367594][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  250.386513][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  250.407552][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  250.424999][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  250.447531][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  250.460708][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  250.482889][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  250.522055][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  250.533535][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  250.542499][ T6656] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3303861288 (422894244864 ns) > initial count (241705619456 ns). Using initial count to start timer.
[  250.563539][ T6323] device veth1_vlan entered promiscuous mode
[  250.575567][ T6656] Disabled LAPIC found during irq injection
[  250.582120][ T6656] kvm: apic: phys broadcast and lowest prio
[  250.723227][ T5058] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  250.757097][ T5058] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  250.787121][ T5058] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  250.827928][ T5058] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  250.867977][ T6323] device veth0_macvtap entered promiscuous mode
[  250.947279][ T6323] device veth1_macvtap entered promiscuous mode
[  250.956186][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  250.987903][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  251.014527][ T6323] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  251.055523][ T6323] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  251.072591][ T6323] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  251.083734][ T6323] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  251.098863][ T6323] batman_adv: batadv0: Interface activated: batadv_slave_0
[  251.155561][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  251.175000][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  251.227277][ T6323] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  251.259833][ T6323] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  251.283199][ T6323] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  251.294172][ T4281] Bluetooth: hci0: command 0x0405 tx timeout
[  251.301107][ T6323] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  251.312453][ T6323] batman_adv: batadv0: Interface activated: batadv_slave_1
[  251.331907][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  251.355797][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  251.421315][ T6323] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  251.458533][ T6323] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  251.501742][ T6323] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  251.543561][ T6323] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  251.582400][ T6640] chnl_net:caif_netlink_parms(): no params data found
[  251.898729][    T9] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  251.926406][ T4281] Bluetooth: hci1: command 0x0409 tx timeout
[  251.950925][ T4357] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  251.965112][ T4357] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  251.990606][ T6417] 8021q: adding VLAN 0 to HW filter on device batadv0
[  252.081226][    T9] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  252.281224][    T9] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  252.366649][ T4357] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  252.378862][ T5220] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  252.410872][ T4357] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  252.436067][ T5220] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  252.477579][ T5220] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  252.588536][    T9] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  252.630291][ T6640] bridge0: port 1(bridge_slave_0) entered blocking state
[  252.644331][ T6640] bridge0: port 1(bridge_slave_0) entered disabled state
[  252.665434][ T6640] device bridge_slave_0 entered promiscuous mode
[  252.709574][ T4357] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  252.717620][ T5058] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  252.725782][ T5058] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  252.749767][ T4357] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  252.772096][ T4357] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  252.791339][ T6364] device veth0_vlan entered promiscuous mode
[  252.829944][ T6640] bridge0: port 2(bridge_slave_1) entered blocking state
[  252.841752][ T6640] bridge0: port 2(bridge_slave_1) entered disabled state
[  252.879605][ T6640] device bridge_slave_1 entered promiscuous mode
[  252.899418][ T4357] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  252.918348][ T4357] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  253.000545][ T6364] device veth1_vlan entered promiscuous mode
[  253.088800][ T6640] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  253.161758][ T6693] netlink: 4 bytes leftover after parsing attributes in process `syz.6.476'.
[  253.194008][ T6693] device bridge_slave_1 left promiscuous mode
[  253.212026][ T6693] bridge0: port 2(bridge_slave_1) entered disabled state
[  253.253340][ T6693] device bridge_slave_0 left promiscuous mode
[  253.266380][ T6693] bridge0: port 1(bridge_slave_0) entered disabled state
[  253.424023][ T6640] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  253.492474][ T5058] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  253.543923][ T5058] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  254.006146][ T4281] Bluetooth: hci1: command 0x041b tx timeout
[  254.256134][ T4357] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  254.286595][ T4357] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  254.354017][ T6705] loop6: detected capacity change from 0 to 1024
[  254.358163][ T6364] device veth0_macvtap entered promiscuous mode
[  254.377151][ T6705] EXT4-fs: Ignoring removed oldalloc option
[  254.383145][ T6705] EXT4-fs: Ignoring removed bh option
[  254.418953][ T6705] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  254.474891][ T6640] team0: Port device team_slave_0 added
[  254.514589][ T6640] team0: Port device team_slave_1 added
[  254.541073][ T6705] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  254.551850][ T6364] device veth1_macvtap entered promiscuous mode
[  254.587445][ T6711] loop1: detected capacity change from 0 to 512
[  254.627515][   T26] audit: type=1804 audit(1761802505.909:8): pid=6705 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.6.551" name="/newroot/1/file1/bus" dev="loop6" ino=18 res=1 errno=0
[  254.676484][ T4357] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  254.684802][ T4357] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  254.696779][ T6711] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  254.732671][ T6711] ext4 filesystem being mounted at /75/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  254.772454][ T6364] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  254.796722][ T6364] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  254.815995][ T6364] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  254.828291][ T6364] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  254.838691][ T6364] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  254.849586][ T6364] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  254.861512][ T6364] batman_adv: batadv0: Interface activated: batadv_slave_0
[  254.870189][   T26] audit: type=1804 audit(1761802506.159:9): pid=6711 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.552" name="/newroot/75/file2/syzkaller0" dev="loop1" ino=18 res=1 errno=0
[  254.929371][ T5107] EXT4-fs (loop1): unmounting filesystem.
[  255.041175][ T4357] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  255.053402][ T4357] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  255.062858][ T4357] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  255.071938][ T4357] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  255.084056][ T6719] loop1: detected capacity change from 0 to 1024
[  255.092781][ T6364] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  255.109765][ T6364] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  255.120806][ T6364] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  255.134683][ T6364] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  255.146549][ T6364] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  255.161280][ T6364] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  255.178531][ T6364] batman_adv: batadv0: Interface activated: batadv_slave_1
[  255.231062][ T6640] batman_adv: batadv0: Adding interface: batadv_slave_0
[  255.245998][ T6640] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  255.296494][ T6640] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  255.389905][ T4357] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  255.403038][ T4357] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  255.423381][ T6364] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  255.439064][ T6722] loop1: detected capacity change from 0 to 2048
[  255.454829][ T6364] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  255.471552][ T6364] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  255.501522][ T6364] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  255.506278][ T6722] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  255.567464][ T6640] batman_adv: batadv0: Adding interface: batadv_slave_1
[  255.587580][ T6640] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  255.647034][ T6323] EXT4-fs (loop6): unmounting filesystem.
[  255.654102][ T6640] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  255.690647][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  255.690749][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  255.773704][ T4733] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  255.793222][ T4733] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  255.812519][ T4733] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  255.840950][ T4733] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  255.864074][ T6417] device veth0_vlan entered promiscuous mode
[  255.871683][ T6729] loop6: detected capacity change from 0 to 4096
[  255.968856][ T6729] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  256.086180][ T4281] Bluetooth: hci1: command 0x040f tx timeout
[  256.094585][ T6417] device veth1_vlan entered promiscuous mode
[  256.153691][ T6640] device hsr_slave_0 entered promiscuous mode
[  256.173814][ T6640] device hsr_slave_1 entered promiscuous mode
[  256.237812][ T6323] EXT4-fs (loop6): unmounting filesystem.
[  256.439304][ T5058] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  256.507895][ T5058] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  256.554322][ T4521] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  256.580249][ T4521] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  256.609600][ T6417] device veth0_macvtap entered promiscuous mode
[  256.724839][ T4521] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  256.743808][ T4521] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  256.802488][ T6417] device veth1_macvtap entered promiscuous mode
[  257.039316][ T5058] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  257.064755][ T4521] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  257.083660][ T4521] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  257.152869][ T6417] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  257.174160][ T6417] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  257.192428][ T6417] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  257.204713][ T6417] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  257.215435][ T6417] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  257.226418][ T6417] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  257.236771][ T6417] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  257.248534][ T6417] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  257.267121][ T6417] batman_adv: batadv0: Interface activated: batadv_slave_0
[  257.345056][   T32] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  257.359681][   T32] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  257.384414][   T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  257.464792][ T6417] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  257.502563][ T6417] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  257.542897][ T6417] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  257.554030][ T6417] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  257.570170][ T6417] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  257.581561][ T6417] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  257.593231][ T6417] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  257.612816][ T6417] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  257.629615][ T6417] batman_adv: batadv0: Interface activated: batadv_slave_1
[  257.712363][ T5058] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  257.734003][ T5058] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  257.886548][    T9] device hsr_slave_0 left promiscuous mode
[  257.911501][    T9] device hsr_slave_1 left promiscuous mode
[  257.918536][    T9] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  257.931851][    T9] batman_adv: batadv0: Removing interface: batadv_slave_0
[  257.945494][    T9] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  257.953344][    T9] batman_adv: batadv0: Removing interface: batadv_slave_1
[  258.110233][    T9] device veth1_macvtap left promiscuous mode
[  258.116821][    T9] device veth0_macvtap left promiscuous mode
[  258.123660][    T9] device veth1_vlan left promiscuous mode
[  258.129980][    T9] device veth0_vlan left promiscuous mode
[  258.166382][ T4281] Bluetooth: hci1: command 0x0419 tx timeout
[  259.080012][ T6760] loop6: detected capacity change from 0 to 1024
[  259.119884][ T6762] loop1: detected capacity change from 0 to 164
[  259.155559][ T6760] hfsplus: b-tree write err: -5, ino 3
[  259.248236][ T6764] iso9660: Corrupted directory entry in block 2 of inode 1792
[  259.595988][  T126] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  259.721900][    T9] team0 (unregistering): Port device team_slave_1 removed
[  259.766648][    T9] team0 (unregistering): Port device team_slave_0 removed
[  259.800021][  T126] usb 2-1: Using ep0 maxpacket: 32
[  259.808342][  T126] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  259.818692][  T126] usb 2-1: New USB device found, idVendor=04ff, idProduct=0066, bcdDevice=d8.b0
[  259.828336][  T126] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  259.838380][    T9] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  259.849260][  T126] usb 2-1: config 0 descriptor??
[  259.858762][  T126] usb 2-1: bad CDC descriptors
[  259.889674][    T9] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  259.948254][ T4373] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  260.084812][ T4384] usb 2-1: USB disconnect, device number 5
[  260.150689][ T4373] usb 7-1: Using ep0 maxpacket: 32
[  260.192224][ T4373] usb 7-1: config 0 has an invalid interface number: 184 but max is 0
[  260.200966][ T4373] usb 7-1: config 0 has no interface number 0
[  260.207986][ T4373] usb 7-1: config 0 interface 184 has no altsetting 0
[  260.217697][ T4373] usb 7-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  260.227004][ T4373] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  260.235059][ T4373] usb 7-1: Product: syz
[  260.239747][ T4373] usb 7-1: Manufacturer: syz
[  260.244388][ T4373] usb 7-1: SerialNumber: syz
[  260.252071][ T4373] usb 7-1: config 0 descriptor??
[  260.259050][ T4373] smsc75xx v1.0.0
[  260.482398][    T9] bond0 (unregistering): Released all slaves
[  260.532459][ T6417] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  260.541951][ T6417] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  260.562680][ T6417] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  260.571768][ T6417] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  260.604475][ T6640] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  260.809779][ T6640] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  260.886417][ T4373] smsc75xx 7-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000040: -32
[  260.897795][ T4373] smsc75xx 7-1:0.184 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  260.914957][ T6640] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  261.042902][ T6640] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  261.124677][ T4373] smsc75xx 7-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000010: -32
[  261.167327][ T4373] smsc75xx 7-1:0.184 (unnamed net_device) (uninitialized): Failed to read HW_CFG: -32
[  261.215404][ T4373] smsc75xx 7-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -32
[  261.256806][ T4373] smsc75xx: probe of 7-1:0.184 failed with error -32
[  261.283771][ T4373] usb 7-1: USB disconnect, device number 2
[  262.159617][ T6756] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  262.191606][ T6756] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  262.306601][ T4521] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  262.523365][ T4521] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  262.532124][ T4521] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  263.581246][ T4733] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  263.872696][ T6640] 8021q: adding VLAN 0 to HW filter on device bond0
[  264.114984][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  264.141982][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  264.239637][ T6640] 8021q: adding VLAN 0 to HW filter on device team0
[  264.467822][ T5050] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  264.500223][ T5050] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  264.509966][ T5050] bridge0: port 1(bridge_slave_0) entered blocking state
[  264.517206][ T5050] bridge0: port 1(bridge_slave_0) entered forwarding state
[  264.527506][ T5050] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  264.563771][ T5050] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  264.644164][ T5050] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  264.786532][ T5050] bridge0: port 2(bridge_slave_1) entered blocking state
[  264.793755][ T5050] bridge0: port 2(bridge_slave_1) entered forwarding state
[  264.888925][ T5050] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  264.917367][ T5050] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  264.967048][ T5050] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  264.996054][ T5050] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  265.018634][ T5050] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  265.043690][ T5050] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  265.080473][ T5050] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  265.110097][ T5050] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  265.138676][ T5050] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  265.175743][ T6640] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  265.210445][ T6640] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  265.307051][ T6821] A link change request failed with some changes committed already. Interface wlan1 may have been left with an inconsistent configuration, please check.
[  265.440115][ T5050] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  265.454455][ T5050] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  265.519328][ T6828] loop8: detected capacity change from 0 to 512
[  265.557137][ T6828] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  265.617499][ T6828] EXT4-fs error (device loop8): ext4_mb_generate_buddy:1097: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  265.645333][ T6828] EXT4-fs (loop8): 1 truncate cleaned up
[  265.675978][ T6828] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[  265.745755][ T6833] loop6: detected capacity change from 0 to 512
[  265.935854][ T6833] EXT4-fs: Ignoring removed i_version option
[  266.051445][ T6833] EXT4-fs: Ignoring removed bh option
[  266.448848][ T6833] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  266.626410][ T6833] ext4 filesystem being mounted at /16/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  267.604445][ T6323] EXT4-fs (loop6): unmounting filesystem.
[  267.618295][ T6417] EXT4-fs (loop8): unmounting filesystem.
[  268.383053][ T6756] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  268.407666][ T6756] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  268.459336][ T6640] 8021q: adding VLAN 0 to HW filter on device batadv0
[  269.430249][ T6880] loop8: detected capacity change from 0 to 512
[  269.479788][ T6880] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  269.536726][ T6880] EXT4-fs error (device loop8): ext4_orphan_get:1426: comm syz.8.591: bad orphan inode 131083
[  269.550041][ T6881] loop7: detected capacity change from 0 to 1764
[  269.571227][ T6880] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[  269.643849][ T6880] EXT4-fs error (device loop8): ext4_validate_block_bitmap:438: comm syz.8.591: bg 0: block 504: padding at end of block bitmap is not set
[  269.908012][ T6417] EXT4-fs (loop8): unmounting filesystem.
[  270.259272][ T6756] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  270.263198][ T6893] loop8: detected capacity change from 0 to 256
[  270.280454][ T6756] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  270.299621][ T6893] exfat: Unknown parameter '0x00000000000000050xffffffffffffffff˙˙˙˙˙0177777777777777777777701777777777777777777777˙˙'
[  270.347181][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  270.408496][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  270.457316][ T6640] device veth0_vlan entered promiscuous mode
[  270.502389][ T6756] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  270.523596][ T6756] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  270.593372][ T6640] device veth1_vlan entered promiscuous mode
[  270.717428][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  270.738207][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  270.768413][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  270.798918][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  270.829324][ T6640] device veth0_macvtap entered promiscuous mode
[  270.875160][ T6640] device veth1_macvtap entered promiscuous mode
[  270.892818][ T6640] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  270.949419][ T6640] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  270.959646][ T6640] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  271.051796][ T6640] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  271.062909][ T6640] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  271.073815][ T6640] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  271.096546][ T6640] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  271.196243][ T6640] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  271.237559][ T6640] batman_adv: batadv0: Interface activated: batadv_slave_0
[  271.271389][ T5058] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  271.309354][ T5058] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  271.337353][ T5058] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  271.360803][ T5058] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  271.393178][ T6640] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  271.443266][ T6640] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  271.472478][ T6640] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  271.498646][ T6640] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  271.525967][ T6640] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  271.558290][ T6640] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  271.581111][ T6640] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  271.592098][ T6640] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  271.604645][ T6640] batman_adv: batadv0: Interface activated: batadv_slave_1
[  271.666738][ T6640] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  271.709140][ T6640] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  271.718526][ T6640] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  271.727362][ T6640] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  271.760048][ T4521] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  271.796971][ T4521] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  271.880513][ T6921] loop7: detected capacity change from 0 to 8
[  271.927902][ T6921] SQUASHFS error: lzo decompression failed, data probably corrupt
[  271.936098][ T6921] SQUASHFS error: Failed to read block 0x82: -5
[  271.942449][ T6921] SQUASHFS error: Unable to read metadata cache entry [80]
[  271.949801][ T6921] SQUASHFS error: Unable to read inode 0x11f
[  272.588422][ T4715] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  272.624862][ T4357] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  272.665123][ T4715] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  272.676850][ T5050] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  272.700165][ T4357] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  273.146671][ T5050] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  273.553582][ T6932] loop6: detected capacity change from 0 to 512
[  273.618132][ T6932] EXT4-fs: Ignoring removed bh option
[  273.718427][ T6932] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  273.751502][ T6932] ext4 filesystem being mounted at /21/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  274.004040][ T6943] loop1: detected capacity change from 0 to 2048
[  274.075595][ T6943] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  274.175041][   T26] audit: type=1800 audit(1761802525.459:10): pid=6943 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.606" name="file1" dev="loop1" ino=1415 res=0 errno=0
[  274.179821][ T6949] loop9: detected capacity change from 0 to 512
[  274.288242][   T26] audit: type=1800 audit(1761802525.499:11): pid=6943 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.606" name="file1" dev="loop1" ino=1415 res=0 errno=0
[  274.413598][ T6949] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[  274.454648][ T6323] EXT4-fs (loop6): unmounting filesystem.
[  274.464712][ T6956] loop7: detected capacity change from 0 to 256
[  274.504743][ T4488] udevd[4488]: incorrect ext4 checksum on /dev/loop6
[  274.512780][ T6949] ext4 filesystem being mounted at /1/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  274.584076][ T6956] exFAT-fs (loop7): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  274.597589][ T6956] exFAT-fs (loop7): Medium has reported failures. Some data may be lost.
[  274.627088][ T6956] exFAT-fs (loop7): failed to load upcase table (idx : 0x0000ff98, chksum : 0x65b64522, utbl_chksum : 0xe619d30d)
[  274.701468][ T6949] EXT4-fs error (device loop9): ext4_do_update_inode:5268: inode #2: comm syz.9.608: corrupted inode contents
[  274.839576][ T6949] EXT4-fs error (device loop9): ext4_dirty_inode:6133: inode #2: comm syz.9.608: mark_inode_dirty error
[  274.965177][ T6949] EXT4-fs error (device loop9): ext4_do_update_inode:5268: inode #2: comm syz.9.608: corrupted inode contents
[  275.074490][ T6949] EXT4-fs error (device loop9): __ext4_ext_dirty:202: inode #2: comm syz.9.608: mark_inode_dirty error
[  275.127892][ T6968] netlink: 4 bytes leftover after parsing attributes in process `syz.7.612'.
[  275.220111][ T6968] device bridge_slave_1 left promiscuous mode
[  275.261569][ T6968] bridge0: port 2(bridge_slave_1) entered disabled state
[  275.318105][ T6968] device bridge_slave_0 left promiscuous mode
[  275.337132][ T6968] bridge0: port 1(bridge_slave_0) entered disabled state
[  275.356577][ T6640] EXT4-fs (loop9): unmounting filesystem.
[  275.581369][ T6978] loop9: detected capacity change from 0 to 128
[  275.684819][ T6978] UDF-fs: error (device loop9): udf_read_tagged: read failed, block=256, location=256
[  278.601427][ T7003] loop9: detected capacity change from 0 to 256
[  278.679520][ T7003] exFAT-fs (loop9): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x99a53fd9, utbl_chksum : 0xe619d30d)
[  278.866209][ T7003] exFAT-fs (loop9): invalid start cluster (12296)
[  279.428263][ T7015] loop9: detected capacity change from 0 to 2048
[  279.464850][ T7015] EXT4-fs: Ignoring removed bh option
[  279.871834][ T7015] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: none.
[  280.584123][ T6640] EXT4-fs (loop9): unmounting filesystem.
[  282.106650][ T7060] loop1: detected capacity change from 0 to 1024
[  282.113894][ T7060] EXT4-fs: Ignoring removed mblk_io_submit option
[  282.273356][ T7060] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  282.454277][ T7070] loop8: detected capacity change from 0 to 1024
[  282.498674][ T7072] loop7: detected capacity change from 0 to 2048
[  282.536198][ T5050] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1097: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[  282.559260][ T7070] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[  282.586157][ T7070] ext4 filesystem being mounted at /17/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  282.613200][ T7072] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  282.642177][ T5050] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  282.695356][ T5050] EXT4-fs (loop1): This should not happen!! Data will be lost
[  282.695356][ T5050] 
[  282.739243][ T5050] EXT4-fs (loop1): Total free blocks count 0
[  282.745397][ T5050] EXT4-fs (loop1): Free/Dirty block details
[  282.764421][ T5050] EXT4-fs (loop1): free_blocks=68451041280
[  282.784109][ T6417] EXT4-fs (loop8): unmounting filesystem.
[  282.803898][ T5050] EXT4-fs (loop1): dirty_blocks=0
[  282.856591][ T5050] EXT4-fs (loop1): Block reservation details
[  282.862724][ T5050] EXT4-fs (loop1): i_reserved_data_blocks=0
[  282.902319][ T5107] EXT4-fs (loop1): unmounting filesystem.
[  283.386111][   T41] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  283.454309][ T7085] loop8: detected capacity change from 0 to 512
[  283.589968][ T7085] EXT4-fs error (device loop8): ext4_orphan_get:1400: inode #15: comm syz.8.645: inode has both inline data and extents flags
[  283.606098][   T41] usb 2-1: Using ep0 maxpacket: 16
[  283.613477][   T41] usb 2-1: config 0 has no interfaces?
[  283.643205][   T41] usb 2-1: New USB device found, idVendor=0403, idProduct=b8d8, bcdDevice=30.bb
[  283.666900][   T41] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  283.689217][   T41] usb 2-1: Product: syz
[  283.700969][   T41] usb 2-1: Manufacturer: syz
[  283.714918][   T41] usb 2-1: SerialNumber: syz
[  283.739915][   T41] usb 2-1: config 0 descriptor??
[  283.862704][ T7085] EXT4-fs error (device loop8): ext4_orphan_get:1405: comm syz.8.645: couldn't read orphan inode 15 (err -117)
[  283.938764][ T7085] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[  284.237160][ T7079] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  284.278067][ T7079] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  284.353620][  T128] usb 2-1: USB disconnect, device number 6
[  286.227360][ T6417] EXT4-fs (loop8): unmounting filesystem.
[  286.385102][ T7127] loop8: detected capacity change from 0 to 128
[  286.519338][   T26] audit: type=1800 audit(1761802537.809:12): pid=7127 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.653" name="bus" dev="loop8" ino=1048624 res=0 errno=0
[  286.684773][ T7136] syz.8.653: attempt to access beyond end of device
[  286.684773][ T7136] loop8: rw=2049, sector=929, nr_sectors = 112 limit=128
[  286.748164][ T7136] syz.8.653: attempt to access beyond end of device
[  286.748164][ T7136] loop8: rw=2049, sector=921, nr_sectors = 8 limit=128
[  287.929209][ T7147] 9pnet: p9_errstr2errno: server reported unknown error 1844674407
[  288.158226][ T7154] loop6: detected capacity change from 0 to 256
[  288.238251][ T7154] exFAT-fs (loop6): failed to load upcase table (idx : 0x000104d0, chksum : 0xda218cab, utbl_chksum : 0xe619d30d)
[  288.409552][ T7154] exFAT-fs (loop6): error, invalid access to FAT free cluster (entry 0x00000008)
[  288.428477][ T7161] loop7: detected capacity change from 0 to 128
[  288.458809][ T7154] exFAT-fs (loop6): error, failed to bmap (inode : ffff8880703321e0 iblock : 8, err : -5)
[  288.513723][ T7154] exFAT-fs (loop6): error, invalid access to FAT free cluster (entry 0x00000008)
[  289.306431][ T7172] loop7: detected capacity change from 0 to 8192
[  289.319493][ T7176] loop6: detected capacity change from 0 to 128
[  289.426421][ T7176] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=256, location=256
[  289.599057][ T7176] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  289.700743][   T26] audit: type=1800 audit(1761802540.989:13): pid=7176 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.670" name="file1" dev="loop6" ino=104 res=0 errno=0
[  289.815006][ T7183] process 'syz.8.671' launched './file0' with NULL argv: empty string added
[  290.949706][ T7194] loop9: detected capacity change from 0 to 128
[  291.121214][ T7194] syz.9.674: attempt to access beyond end of device
[  291.121214][ T7194] loop9: rw=2049, sector=145, nr_sectors = 95 limit=128
[  291.535238][ T7208] netlink: 'syz.8.678': attribute type 2 has an invalid length.
[  291.575372][ T7208] netlink: 'syz.8.678': attribute type 1 has an invalid length.
[  292.573665][ T7218] loop9: detected capacity change from 0 to 16
[  292.613884][ T7218] erofs: (device loop9): mounted with root inode @ nid 36.
[  292.691686][ T7220] loop8: detected capacity change from 0 to 128
[  292.757406][ T7220] FAT-fs (loop8): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  292.867589][ T7220] FAT-fs (loop8): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  293.313852][ T7230] netlink: 'syz.9.685': attribute type 4 has an invalid length.
[  293.680287][ T7238] loop1: detected capacity change from 0 to 1024
[  294.305764][ T7250] loop6: detected capacity change from 0 to 512
[  294.316311][  T126] usb 10-1: new full-speed USB device number 2 using dummy_hcd
[  294.366791][ T7250] EXT4-fs: Ignoring removed i_version option
[  294.394033][ T7250] EXT4-fs: Ignoring removed bh option
[  294.513407][ T7250] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  294.528370][  T126] usb 10-1: New USB device found, idVendor=046d, idProduct=c70e, bcdDevice= 0.00
[  294.536607][ T7250] ext4 filesystem being mounted at /38/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  294.548434][  T126] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  294.582245][  T126] usb 10-1: config 0 descriptor??
[  294.863859][ T6323] EXT4-fs (loop6): unmounting filesystem.
[  295.005179][  T126] logitech-djreceiver 0003:046D:C70E.0004: unknown main item tag 0x0
[  295.027484][  T126] logitech-djreceiver 0003:046D:C70E.0004: unknown main item tag 0x0
[  295.052564][  T126] logitech-djreceiver 0003:046D:C70E.0004: unknown main item tag 0x0
[  295.081878][  T126] logitech-djreceiver 0003:046D:C70E.0004: unknown main item tag 0x0
[  295.115280][  T126] logitech-djreceiver 0003:046D:C70E.0004: unknown main item tag 0x0
[  295.138871][ T7262] loop6: detected capacity change from 0 to 512
[  295.153692][  T126] logitech-djreceiver 0003:046D:C70E.0004: unknown main item tag 0x0
[  295.157942][ T7262] EXT4-fs: Ignoring removed oldalloc option
[  295.192191][  T126] logitech-djreceiver 0003:046D:C70E.0004: item fetching failed at offset 6/7
[  295.200276][ T7262] EXT4-fs (loop6): Test dummy encryption mode enabled
[  295.225208][ T7262] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  295.244794][  T126] logitech-djreceiver 0003:046D:C70E.0004: logi_dj_probe: parse failed
[  295.280723][ T7262] EXT4-fs error (device loop6): ext4_orphan_get:1400: inode #15: comm syz.6.695: inode has both inline data and extents flags
[  295.307871][  T126] logitech-djreceiver: probe of 0003:046D:C70E.0004 failed with error -22
[  295.320136][  T126] usb 10-1: USB disconnect, device number 2
[  295.329988][ T7262] EXT4-fs error (device loop6): ext4_orphan_get:1405: comm syz.6.695: couldn't read orphan inode 15 (err -117)
[  295.362516][ T7262] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  296.596021][ T4324] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  296.685421][ T6323] EXT4-fs (loop6): unmounting filesystem.
[  296.734474][ T7281] loop8: detected capacity change from 0 to 128
[  296.798053][ T4324] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  296.837972][ T4324] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  296.879094][ T4488] blk_print_req_error: 2 callbacks suppressed
[  296.879112][ T4488] I/O error, dev loop8, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  296.902691][ T4324] usb 2-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  296.945032][ T4324] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=67
[  296.984029][ T4324] usb 2-1: SerialNumber: syz
[  297.065676][ T7281] loop8: detected capacity change from 0 to 512
[  297.080782][ T4488] I/O error, dev loop8, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  297.297867][ T7281] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  297.762601][ T4324] usb 2-1: invalid UAC_HEADER (v1)
[  297.812472][ T7281] EXT4-fs error (device loop8): ext4_free_branches:1030: inode #11: comm syz.8.698: invalid indirect mapped block 4294967295 (level 1)
[  297.873192][ T4324] snd-usb-audio: probe of 2-1:1.0 failed with error -22
[  297.944637][ T4324] usb 2-1: USB disconnect, device number 7
[  297.967207][ T7281] EXT4-fs (loop8): Remounting filesystem read-only
[  297.976175][ T7281] EXT4-fs error (device loop8): ext4_free_branches:1030: inode #11: comm syz.8.698: invalid indirect mapped block 4294967295 (level 1)
[  298.019048][ T7281] EXT4-fs (loop8): Remounting filesystem read-only
[  298.035285][ T7281] EXT4-fs (loop8): 2 truncates cleaned up
[  298.064540][ T7281] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[  298.221335][ T4489] udevd[4489]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  298.323381][   T26] audit: type=1326 audit(1761802549.589:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7280 comm="syz.8.698" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe5f478efc9 code=0x0
[  298.466228][ T7257] EXT4-fs error (device loop8): ext4_validate_block_bitmap:429: comm ext4lazyinit: bg 0: block 5: invalid block bitmap
[  298.590147][ T7257] EXT4-fs (loop8): Remounting filesystem read-only
[  298.764256][ T6417] EXT4-fs (loop8): unmounting filesystem.
[  298.800709][ T7321] loop7: detected capacity change from 0 to 128
[  298.909487][ T7321] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[  298.936122][  T126] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  298.948875][ T7321] ext4 filesystem being mounted at /40/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  299.316029][  T126] usb 2-1: Using ep0 maxpacket: 32
[  299.896309][  T126] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  299.917214][ T6364] EXT4-fs (loop7): unmounting filesystem.
[  299.993440][  T126] usb 2-1: config 0 has no interfaces?
[  300.042563][  T126] usb 2-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  300.236049][  T126] usb 2-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0
[  301.961393][  T126] usb 2-1: Product: syz
[  302.138258][  T126] usb 2-1: Manufacturer: syz
[  302.986603][  T126] usb 2-1: config 0 descriptor??
[  303.007584][  T126] usb 2-1: can't set config #0, error -71
[  303.020649][  T126] usb 2-1: USB disconnect, device number 8
[  303.167324][ T7352] loop1: detected capacity change from 0 to 512
[  303.237069][ T7352] ext4: Unknown parameter 'noacl'
[  303.766163][  T126] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  303.918921][ T7369] loop6: detected capacity change from 0 to 128
[  303.986112][  T126] usb 8-1: Using ep0 maxpacket: 16
[  303.997435][  T126] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  304.018818][ T7369] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  304.039800][  T126] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 3
[  304.056112][ T7369] ext4 filesystem being mounted at /45/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  304.088304][  T126] usb 8-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  304.330651][  T126] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  304.341248][  T126] usb 8-1: Product: syz
[  304.345585][  T126] usb 8-1: Manufacturer: syz
[  304.373335][  T126] usb 8-1: SerialNumber: syz
[  305.033122][ T6323] EXT4-fs (loop6): unmounting filesystem.
[  305.239619][  T126] usb 8-1: 0:2 : does not exist
[  305.260752][  T126] usb 8-1: 5:0: failed to get current value for ch 0 (-22)
[  305.348213][  T126] usb 8-1: USB disconnect, device number 2
[  305.459588][ T7390] loop1: detected capacity change from 0 to 1024
[  305.482492][ T7390] EXT4-fs: Ignoring removed bh option
[  305.526050][ T7390] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  305.714988][ T7390] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  306.377328][ T7390] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:3836: comm syz.1.727: Allocating blocks 385-513 which overlap fs metadata
[  306.462011][ T7390] EXT4-fs (loop1): pa ffff8880700348c0: logic 16, phys. 129, len 24
[  306.470489][ T7390] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:4876: group 0, free 0, pa_free 8
[  306.567676][ T4401] udevd[4401]: error opening ATTR{/sys/devices/platform/dummy_hcd.7/usb8/8-1/8-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  306.590581][ T5107] EXT4-fs (loop1): unmounting filesystem.
[  307.236202][ T7419] xt_hashlimit: overflow, try lower: 18446744073709551615/255
[  308.044133][ T7426] loop6: detected capacity change from 0 to 1024
[  310.050205][ T7460] loop9: detected capacity change from 0 to 512
[  310.099966][ T7460] EXT4-fs: inline encryption not supported
[  310.147366][ T7460] EXT4-fs (loop9): Cannot turn on journaled quota: type 0: error -2
[  310.162387][ T7460] EXT4-fs error (device loop9): ext4_free_branches:1030: inode #13: comm syz.9.746: invalid indirect mapped block 2683928664 (level 1)
[  311.136509][ T7460] EXT4-fs (loop9): 1 truncate cleaned up
[  311.163124][ T7460] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[  311.636097][ T4345] usb 7-1: new full-speed USB device number 3 using dummy_hcd
[  311.832582][ T4345] usb 7-1: New USB device found, idVendor=056e, idProduct=4010, bcdDevice=20.1c
[  311.899748][ T4345] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  312.037463][ T4345] usb 7-1: config 0 descriptor??
[  312.509950][ T7484] bridge0: port 3(wlan1) entered blocking state
[  312.517026][ T7484] bridge0: port 3(wlan1) entered disabled state
[  312.526896][ T7484] device wlan1 entered promiscuous mode
[  312.533367][ T7484] bridge0: port 3(wlan1) entered blocking state
[  312.540009][ T7484] bridge0: port 3(wlan1) entered forwarding state
[  312.739632][ T4733] bridge0: port 3(wlan1) entered disabled state
[  312.837051][ T6640] EXT4-fs (loop9): unmounting filesystem.
[  313.347440][ T4345] pegasus: probe of 7-1:0.0 failed with error -71
[  313.357758][ T4345] usb 7-1: USB disconnect, device number 3
[  314.303665][ T7517] loop6: detected capacity change from 0 to 1024
[  314.429953][ T7517] hfsplus: request for non-existent node 16777216 in B*Tree
[  314.478185][ T7517] hfsplus: request for non-existent node 16777216 in B*Tree
[  314.493000][ T7517] hfsplus: request for non-existent node 16777216 in B*Tree
[  314.538688][ T7517] hfsplus: request for non-existent node 16777216 in B*Tree
[  314.672034][ T7525] loop8: detected capacity change from 0 to 128
[  314.747477][ T4733] hfsplus: request for non-existent node 16777216 in B*Tree
[  314.769502][ T4401] I/O error, dev loop8, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  314.782750][ T4733] hfsplus: request for non-existent node 16777216 in B*Tree
[  315.109417][ T4338] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  316.042204][ T7536] netlink: 8 bytes leftover after parsing attributes in process `syz.9.764'.
[  316.155987][ T4338] usb 8-1: Using ep0 maxpacket: 32
[  316.165473][ T4338] usb 8-1: config 0 has an invalid interface number: 184 but max is 0
[  316.434685][ T4338] usb 8-1: config 0 has no interface number 0
[  316.505662][ T7547] loop6: detected capacity change from 0 to 128
[  316.543080][ T4338] usb 8-1: config 0 interface 184 has no altsetting 0
[  316.600864][ T7547] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  316.633562][ T4338] usb 8-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  316.661512][ T4338] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  316.688888][ T4338] usb 8-1: Product: syz
[  316.699174][ T4338] usb 8-1: Manufacturer: syz
[  316.715738][ T4338] usb 8-1: SerialNumber: syz
[  316.735353][ T4338] usb 8-1: config 0 descriptor??
[  316.755415][ T4338] smsc75xx v1.0.0
[  316.762429][ T7547] ext4 filesystem being mounted at /59/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  317.223810][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  317.241911][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  317.752694][ T6323] EXT4-fs (loop6): unmounting filesystem.
[  317.766347][ T4338] smsc75xx 8-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71
[  317.787050][ T4338] smsc75xx 8-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -71
[  317.879193][ T4338] smsc75xx 8-1:0.184 (unnamed net_device) (uninitialized): device not ready in smsc75xx_bind
[  318.078272][ T7572] loop8: detected capacity change from 0 to 128
[  318.230705][ T7575] loop7: detected capacity change from 0 to 512
[  318.261615][ T7575] EXT4-fs (loop7): Test dummy encryption mode enabled
[  318.279734][ T4338] smsc75xx: probe of 8-1:0.184 failed with error -71
[  318.300186][ T7575] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  318.372804][ T7575] EXT4-fs (loop7): 1 truncate cleaned up
[  318.381497][ T7575] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[  318.417675][ T4401] I/O error, dev loop8, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  318.432088][ T7572] loop8: detected capacity change from 0 to 128
[  318.439876][ T4338] usb 8-1: USB disconnect, device number 3
[  318.446796][ T7572] FAT-fs (loop8): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  318.506464][ T7572] FAT-fs (loop8): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  318.604135][ T7572] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=2099479611 (4198959222 ns) > initial count (1125603166 ns). Using initial count to start timer.
[  318.685044][ T7584] ------------[ cut here ]------------
[  318.691189][ T7584] WARNING: CPU: 0 PID: 7584 at arch/x86/kvm/x86.c:11235 kvm_arch_vcpu_ioctl_run+0x1e9e/0x2390
[  318.701593][ T7584] Modules linked in:
[  318.705510][ T7584] CPU: 0 PID: 7584 Comm: syz.8.771 Not tainted syzkaller #0
[  318.712833][ T7584] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  318.722929][ T7584] RIP: 0010:kvm_arch_vcpu_ioctl_run+0x1e9e/0x2390
[  318.729389][ T7584] Code: e8 c7 3b c1 00 e9 4e ef ff ff 44 89 f9 80 e1 07 38 c1 0f 8c db e5 ff ff 4c 89 ff e8 8c 3b c1 00 e9 ce e5 ff ff e8 b2 0c 71 00 <0f> 0b e9 da fc ff ff 44 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c ae eb
[  318.749073][ T7584] RSP: 0018:ffffc90003557c48 EFLAGS: 00010287
[  318.755163][ T7584] RAX: ffffffff810fc9ae RBX: ffff888051284f80 RCX: 0000000000080000
[  318.763215][ T7584] RDX: ffffc90017872000 RSI: 00000000000003c4 RDI: 00000000000003c5
[  318.771250][ T7584] RBP: ffff8880563e5000 R08: dffffc0000000000 R09: fffffbfff215c471
[  318.779387][ T7584] R10: fffffbfff215c471 R11: 1ffffffff215c470 R12: ffff888051285274
[  318.787431][ T7584] R13: ffff888051285058 R14: dffffc0000000000 R15: 0000000000000000
[  318.795437][ T7584] FS:  00007fe5f55af6c0(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[  318.804416][ T7584] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  318.811468][ T7584] CR2: 00007fe5f55aef98 CR3: 000000005779d000 CR4: 00000000003526f0
[  318.819482][ T7584] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000411
[  318.827490][ T7584] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  318.835482][ T7584] Call Trace:
[  318.838821][ T7584]  <TASK>
[  318.841771][ T7584]  ? mutex_lock_nested+0x10/0x10
[  318.846759][ T7584]  ? kvm_arch_vcpu_ioctl_run+0x139/0x2390
[  318.852498][ T7584]  kvm_vcpu_ioctl+0x887/0xb80
[  318.857247][ T7584]  ? xa_release+0x50/0x50
[  318.861770][ T7584]  ? __fget_files+0x28/0x4d0
[  318.866436][ T7584]  ? bpf_lsm_file_ioctl+0x5/0x10
[  318.871394][ T7584]  ? security_file_ioctl+0x7c/0xa0
[  318.876588][ T7584]  ? xa_release+0x50/0x50
[  318.880978][ T7584]  __se_sys_ioctl+0xfa/0x170
[  318.885583][ T7584]  do_syscall_64+0x4c/0xa0
[  318.890062][ T7584]  ? clear_bhb_loop+0x60/0xb0
[  318.894765][ T7584]  ? clear_bhb_loop+0x60/0xb0
[  318.899515][ T7584]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  318.905419][ T7584] RIP: 0033:0x7fe5f478efc9
[  318.909881][ T7584] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  318.929615][ T7584] RSP: 002b:00007fe5f55af038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  318.938073][ T7584] RAX: ffffffffffffffda RBX: 00007fe5f49e6090 RCX: 00007fe5f478efc9
[  318.946136][ T7584] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  318.954140][ T7584] RBP: 00007fe5f4811f91 R08: 0000000000000000 R09: 0000000000000000
[  318.962177][ T7584] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  318.970205][ T7584] R13: 00007fe5f49e6128 R14: 00007fe5f49e6090 R15: 00007ffdd255e518
[  318.978245][ T7584]  </TASK>
[  318.981297][ T7584] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  318.988590][ T7584] CPU: 0 PID: 7584 Comm: syz.8.771 Not tainted syzkaller #0
[  318.995900][ T7584] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  319.005983][ T7584] Call Trace:
[  319.009267][ T7584]  <TASK>
[  319.012208][ T7584]  dump_stack_lvl+0x168/0x22e
[  319.016900][ T7584]  ? memcpy+0x3c/0x60
[  319.020986][ T7584]  ? show_regs_print_info+0x12/0x12
[  319.026387][ T7584]  ? load_image+0x3b0/0x3b0
[  319.030908][ T7584]  panic+0x2c9/0x710
[  319.034847][ T7584]  ? bpf_jit_dump+0xd0/0xd0
[  319.039370][ T7584]  __warn+0x2f8/0x4f0
[  319.043364][ T7584]  ? kvm_arch_vcpu_ioctl_run+0x1e9e/0x2390
[  319.049281][ T7584]  ? kvm_arch_vcpu_ioctl_run+0x1e9e/0x2390
[  319.055123][ T7584]  report_bug+0x2ba/0x4f0
[  319.059455][ T7584]  ? kvm_arch_vcpu_ioctl_run+0x1e9e/0x2390
[  319.065282][ T7584]  handle_bug+0x3a/0x70
[  319.069451][ T7584]  exc_invalid_op+0x16/0x40
[  319.073985][ T7584]  asm_exc_invalid_op+0x16/0x20
[  319.078846][ T7584] RIP: 0010:kvm_arch_vcpu_ioctl_run+0x1e9e/0x2390
[  319.085314][ T7584] Code: e8 c7 3b c1 00 e9 4e ef ff ff 44 89 f9 80 e1 07 38 c1 0f 8c db e5 ff ff 4c 89 ff e8 8c 3b c1 00 e9 ce e5 ff ff e8 b2 0c 71 00 <0f> 0b e9 da fc ff ff 44 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c ae eb
[  319.104935][ T7584] RSP: 0018:ffffc90003557c48 EFLAGS: 00010287
[  319.111023][ T7584] RAX: ffffffff810fc9ae RBX: ffff888051284f80 RCX: 0000000000080000
[  319.119004][ T7584] RDX: ffffc90017872000 RSI: 00000000000003c4 RDI: 00000000000003c5
[  319.126979][ T7584] RBP: ffff8880563e5000 R08: dffffc0000000000 R09: fffffbfff215c471
[  319.134970][ T7584] R10: fffffbfff215c471 R11: 1ffffffff215c470 R12: ffff888051285274
[  319.142954][ T7584] R13: ffff888051285058 R14: dffffc0000000000 R15: 0000000000000000
[  319.150941][ T7584]  ? kvm_arch_vcpu_ioctl_run+0x1e9e/0x2390
[  319.156764][ T7584]  ? kvm_arch_vcpu_ioctl_run+0x1e9e/0x2390
[  319.162574][ T7584]  ? mutex_lock_nested+0x10/0x10
[  319.167522][ T7584]  ? kvm_arch_vcpu_ioctl_run+0x139/0x2390
[  319.173252][ T7584]  kvm_vcpu_ioctl+0x887/0xb80
[  319.177939][ T7584]  ? xa_release+0x50/0x50
[  319.182282][ T7584]  ? __fget_files+0x28/0x4d0
[  319.186888][ T7584]  ? bpf_lsm_file_ioctl+0x5/0x10
[  319.191833][ T7584]  ? security_file_ioctl+0x7c/0xa0
[  319.196957][ T7584]  ? xa_release+0x50/0x50
[  319.201288][ T7584]  __se_sys_ioctl+0xfa/0x170
[  319.205895][ T7584]  do_syscall_64+0x4c/0xa0
[  319.210332][ T7584]  ? clear_bhb_loop+0x60/0xb0
[  319.215006][ T7584]  ? clear_bhb_loop+0x60/0xb0
[  319.219689][ T7584]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  319.225582][ T7584] RIP: 0033:0x7fe5f478efc9
[  319.230014][ T7584] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  319.249631][ T7584] RSP: 002b:00007fe5f55af038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  319.258094][ T7584] RAX: ffffffffffffffda RBX: 00007fe5f49e6090 RCX: 00007fe5f478efc9
[  319.266069][ T7584] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  319.274042][ T7584] RBP: 00007fe5f4811f91 R08: 0000000000000000 R09: 0000000000000000
[  319.282018][ T7584] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  319.290004][ T7584] R13: 00007fe5f49e6128 R14: 00007fe5f49e6090 R15: 00007ffdd255e518
[  319.297993][ T7584]  </TASK>
[  319.301466][ T7584] Kernel Offset: disabled
[  319.305883][ T7584] Rebooting in 86400 seconds..