last executing test programs:

4m31.296093257s ago: executing program 0 (id=1300):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000000)={0x0, 0x3, &(0x7f0000000080)={0x0}}, 0x0)

4m31.178275649s ago: executing program 0 (id=1291):
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_subtree(r0, &(0x7f0000000200), 0x2, 0x0)
sendfile(r1, r1, 0x0, 0x7ffff000)
r2 = syz_io_uring_setup(0x239, &(0x7f0000000200)={0x0, 0x0, 0x10100}, &(0x7f0000000180)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x4})
io_uring_enter(r2, 0x2def, 0xf510, 0x8, 0x0, 0x0)

4m30.627165362s ago: executing program 0 (id=1292):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000540)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='sched_switch\x00', r0, 0x0, 0xfff7fffffffffff5}, 0x18)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, 0x0, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r3 = syz_io_uring_setup(0x4f6, &(0x7f0000000380)={0x0, 0x80fd, 0x10, 0x4, 0x2cf}, &(0x7f0000000300)=<r4=>0x0, &(0x7f00000002c0)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
r6 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r4, r5, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r6, 0x80, &(0x7f00000000c0)=@pppol2tp={0x18, 0x1, {0x0, r6, {0x2, 0x4e23, @remote}, 0x2, 0x1, 0x3, 0x4}}, 0x0, 0x0, 0x1})
io_uring_enter(r3, 0x47bc, 0xf5, 0x0, 0x0, 0x0)

4m27.934121733s ago: executing program 0 (id=1298):
openat$vicodec1(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
writev(0xffffffffffffffff, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x410c84, &(0x7f0000000340), 0x1, 0x775, &(0x7f0000001180)="$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")
open(0x0, 0x64842, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='proc\x00', 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
syz_mount_image$msdos(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x80cc86, &(0x7f0000000500)=ANY=[], 0x3, 0x2bc, &(0x7f0000000180)="$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")
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
lseek(r0, 0x100, 0x0)
getdents64(r0, &(0x7f0000000600)=""/253, 0xfd)

4m26.789055961s ago: executing program 0 (id=1304):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
shutdown(r0, 0x0)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0026}]})
fsopen(0x0, 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)
getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(0xffffffffffffffff, 0x84, 0xa, 0x0, 0x0)

4m24.389835846s ago: executing program 0 (id=1312):
r0 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r0, 0x8917, &(0x7f0000000140)={'ipvlan0\x00', @random="0200ff7fffff"})

4m23.573017908s ago: executing program 32 (id=1312):
r0 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r0, 0x8917, &(0x7f0000000140)={'ipvlan0\x00', @random="0200ff7fffff"})

38.843147848s ago: executing program 2 (id=2068):
r0 = openat$nci(0xffffff9c, &(0x7f0000000080), 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x8031, 0xffffffffffffffff, 0x0)
write$nci(r0, &(0x7f0000000580)=@NCI_OP_CORE_SET_CONFIG_RSP, 0x5)

37.403026895s ago: executing program 2 (id=2071):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
syz_open_procfs(0x0, 0x0)
socket(0x2, 0x80805, 0x0)
r1 = syz_open_dev$video(&(0x7f0000000180), 0x3ff, 0x2000)
ioctl$vim2m_VIDIOC_ENUM_FMT(0xffffffffffffffff, 0xc0405602, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
read$msr(0xffffffffffffffff, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_io_uring_setup(0x4d7, &(0x7f0000000200)={0x0, 0x7a7b, 0x10000, 0x3, 0x8f}, 0x0, 0x0)
ioctl$VIDIOC_STREAMOFF(r1, 0x40045613, &(0x7f0000000200)=0x1)

37.231933872s ago: executing program 2 (id=2073):
unshare(0x2040400)
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
setsockopt$IP6T_SO_SET_ADD_COUNTERS(r0, 0x29, 0x41, 0x0, 0x0)

37.030120198s ago: executing program 2 (id=2076):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x2008800, &(0x7f0000000ac0)=ANY=[@ANYBLOB="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"], 0x4, 0x1534, &(0x7f0000001f80)="$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")
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000002280)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}}, 0x0, 0x0, 0x0)
read$FUSE(r0, &(0x7f00000047c0)={0x2020, 0x0, <r1=>0x0, <r2=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000002140)={0x50, 0x0, r1, {0x7, 0x27, 0x0, 0x1dd8a0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0xfffffb96}}, 0x50)
read$FUSE(r0, &(0x7f0000000100)={0x2020, 0x0, 0x0, 0x0, <r3=>0x0}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f0000008680)="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", 0x2000, &(0x7f0000006f00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000002740)={0x78, 0x0, 0x40000000000000, {0x400, 0x8, 0x0, {0x0, 0xffffffffffffff31, 0x80000000, 0x8e1, 0x5, 0xffffffffffffffff, 0x1, 0x4, 0xfffffc01, 0x1000, 0xffffffff, r2, r3, 0xfffffffb, 0x5}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
fchownat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0xee00, r3, 0x1000)

35.844955054s ago: executing program 2 (id=2080):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f05ebbeea, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000000c0)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_io_uring_setup(0x49a, &(0x7f0000000400)={0x0, 0x79af, 0x3180, 0x8000, 0x40024e}, &(0x7f0000000340)=<r4=>0x0, &(0x7f0000000040)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000000)=0xffb, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_MSG_RING={0x28, 0x40, 0x0, r3, 0x0, 0x0, 0x0, 0x2})
io_uring_enter(r3, 0x627, 0x4c1, 0x9, 0x0, 0x0)

34.489040915s ago: executing program 2 (id=2088):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000000)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x1a00c86, &(0x7f0000000080)=ANY=[], 0x21, 0x286, &(0x7f0000000200)="$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")
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x3)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0xf, &(0x7f0000000040)=0xf3f, 0xa)
sendto$packet(0xffffffffffffffff, &(0x7f0000000180)="3f031c000300140006001e0089e9aaa911d7c2290f0086dd1327c9167c64114a1b6800000cc9", 0x26, 0x24000094, &(0x7f0000000540)={0xc9, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, 0x14)
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000008c0)={0x0, &(0x7f0000000500)=""/95, 0x0, 0x5f, 0x0, 0x0, 0x10000, @value}, 0x28)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a80)={0x6, 0x27, &(0x7f00000005c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x5}, {{0x18, 0x1, 0x1, 0x0, 0x1}}, {}, [@jmp={0x5, 0x0, 0x312e9d5bd6b072c1, 0x3, 0x3, 0x30, 0x1}, @generic={0x5, 0x5, 0x8, 0x3, 0x6}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffff9}}, @generic={0x1, 0x1, 0xe, 0x1, 0x6}, @printk={@li, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x1}}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f00000004c0)='syzkaller\x00', 0xf2a00000, 0x0, 0x0, 0x41000, 0x40, '\x00', 0x0, 0x25, r0, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000940)={0x5, 0xd, 0x84e, 0x1}, 0x10, 0x0, 0x0, 0x9, &(0x7f0000000980)=[0xffffffffffffffff], &(0x7f00000009c0)=[{0x5, 0x3, 0x6, 0xb}, {0x1, 0x4, 0x8, 0xc}, {0x5, 0x3, 0x1, 0x1}, {0x2, 0x1, 0x7, 0x3}, {0x2, 0x4, 0x1, 0x2}, {0x0, 0x5, 0x5, 0x9}, {0x1, 0x2, 0x5, 0xa}, {0x3, 0x4, 0xd, 0xb}, {0x1, 0x3, 0x5, 0x3}], 0x10, 0x3a, @void, @value}, 0x94)
r1 = syz_open_dev$video(0x0, 0x7, 0x0)
ioctl$VIDIOC_TRY_EXT_CTRLS(r1, 0xc0205647, 0x0)
ioctl$USBDEVFS_SETINTERFACE(0xffffffffffffffff, 0x80085504, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="54000000020601020000000000000000000000000c00078008001240f405000010000300686173683a69702c6d616300050005000a00000005000400000000000900020073797a3100000000"], 0x54}, 0x1, 0x0, 0x0, 0x40041}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
read$msr(0xffffffffffffffff, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_KICK(0xffffffffffffffff, 0x4008af20, 0x0)
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000240)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x2b21445, 0x0, 0xfc, 0x0, &(0x7f0000000100))
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r4, 0x10f, 0x87, &(0x7f0000000140)=@req3={0x7813, 0x3, 0x0, 0x81, 0x1fd, 0x1, 0x1}, 0x1c)
recvmmsg$unix(r4, &(0x7f0000003100)=[{{0x0, 0x0, &(0x7f0000000040), 0x54}}], 0x1, 0x2000, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c00028005000100000000000800074000000001"], 0x64}}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)

30.939517639s ago: executing program 33 (id=2088):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000000)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x1a00c86, &(0x7f0000000080)=ANY=[], 0x21, 0x286, &(0x7f0000000200)="$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")
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x3)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0xf, &(0x7f0000000040)=0xf3f, 0xa)
sendto$packet(0xffffffffffffffff, &(0x7f0000000180)="3f031c000300140006001e0089e9aaa911d7c2290f0086dd1327c9167c64114a1b6800000cc9", 0x26, 0x24000094, &(0x7f0000000540)={0xc9, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, 0x14)
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000008c0)={0x0, &(0x7f0000000500)=""/95, 0x0, 0x5f, 0x0, 0x0, 0x10000, @value}, 0x28)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a80)={0x6, 0x27, &(0x7f00000005c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x5}, {{0x18, 0x1, 0x1, 0x0, 0x1}}, {}, [@jmp={0x5, 0x0, 0x312e9d5bd6b072c1, 0x3, 0x3, 0x30, 0x1}, @generic={0x5, 0x5, 0x8, 0x3, 0x6}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffff9}}, @generic={0x1, 0x1, 0xe, 0x1, 0x6}, @printk={@li, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x1}}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f00000004c0)='syzkaller\x00', 0xf2a00000, 0x0, 0x0, 0x41000, 0x40, '\x00', 0x0, 0x25, r0, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000940)={0x5, 0xd, 0x84e, 0x1}, 0x10, 0x0, 0x0, 0x9, &(0x7f0000000980)=[0xffffffffffffffff], &(0x7f00000009c0)=[{0x5, 0x3, 0x6, 0xb}, {0x1, 0x4, 0x8, 0xc}, {0x5, 0x3, 0x1, 0x1}, {0x2, 0x1, 0x7, 0x3}, {0x2, 0x4, 0x1, 0x2}, {0x0, 0x5, 0x5, 0x9}, {0x1, 0x2, 0x5, 0xa}, {0x3, 0x4, 0xd, 0xb}, {0x1, 0x3, 0x5, 0x3}], 0x10, 0x3a, @void, @value}, 0x94)
r1 = syz_open_dev$video(0x0, 0x7, 0x0)
ioctl$VIDIOC_TRY_EXT_CTRLS(r1, 0xc0205647, 0x0)
ioctl$USBDEVFS_SETINTERFACE(0xffffffffffffffff, 0x80085504, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="54000000020601020000000000000000000000000c00078008001240f405000010000300686173683a69702c6d616300050005000a00000005000400000000000900020073797a3100000000"], 0x54}, 0x1, 0x0, 0x0, 0x40041}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
read$msr(0xffffffffffffffff, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_KICK(0xffffffffffffffff, 0x4008af20, 0x0)
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000240)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x2b21445, 0x0, 0xfc, 0x0, &(0x7f0000000100))
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r4, 0x10f, 0x87, &(0x7f0000000140)=@req3={0x7813, 0x3, 0x0, 0x81, 0x1fd, 0x1, 0x1}, 0x1c)
recvmmsg$unix(r4, &(0x7f0000003100)=[{{0x0, 0x0, &(0x7f0000000040), 0x54}}], 0x1, 0x2000, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c00028005000100000000000800074000000001"], 0x64}}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)

10.442128989s ago: executing program 4 (id=2161):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000240)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0)

9.285759916s ago: executing program 4 (id=2163):
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
unshare(0x62040200)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r1}, 0x10)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(0xffffffffffffffff, 0xc0a85320, &(0x7f0000000480)={{0x80, 0x3}, 'port1\x00', 0x85, 0x0, 0x0, 0x67, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc})
socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$IPT_SO_GET_INFO(r0, 0x0, 0x40, &(0x7f0000000140)={'nat\x00', 0x7003, [0x10000, 0x3ff, 0xc, 0x8]}, &(0x7f0000000000)=0x54)
r2 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r2, 0xc004500a, &(0x7f0000000080)=0x80000003)
r3 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_rx_ring(r3, 0x107, 0x5, &(0x7f0000000040)=@req3={0xffe, 0x0, 0x1000, 0x3a}, 0x1c)
r4 = dup2(r2, r2)
read$FUSE(r4, &(0x7f00000063c0)={0x2020}, 0x2020)
syz_fuse_handle_req(r4, &(0x7f0000000280)="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", 0x2000, &(0x7f0000002cc0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_connect(0x1, 0x2d, 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000380)='clear_refs\x00')
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, &(0x7f0000000440)='\x05\x00#\x00\xd0\x00 \x00\x00qS\x00\x00\x00\x00\x00\x00\x00\x00$\xf6_\xbdI\x1c\xf2\xa9]\xcc\xe0*\xef\x01\x8d\x15\xd2h\x93\xc9\xb57\xc3\xea\\Eb\xf8\xe6,\xdf\xd4\xfae\x84\xcc\xd5\"d\xf0D-\x98\x9f\x81{\xfc$\xc4\xbcF\xf8\xc8\x8d\xcb\xb8\xf2\x1e\xe4\'U\xb3\xb8\xd3\xe6\xd7\x80Y\xc2\xeb\n\xb8_\xe8\x96YY\xe3\xc7\xe6\xf28\x19\xa6\xa7\xfa\xdb\x1ce\xc1\x03\x86J\xb2fh\x19\xee#\xcc\x0f\xed\xfea\xdc\x88\xcb%bW\xd35\xda=\xac\x1d\xae\x93\xfd\'T6\x94\n\xa4\x9cU\xc4\fA~[\xbf\x8b\x90\xfe\x04\xe7U\xf3h\x81\x14l7u\x95\x96t\\\x0f\xef;\x03\xa4C\xbc(Vc!a\xc1\xe39\xc6b\x905\xf8\xc9@h\x01\xf5\xcb\x88\xdf9\xaf5\xc8a:z\xe4\xcbag&67\x814\xf6}\xe10v6l\xd6,\x1e\xa0\xcc\xbf\xfdkm\b?\x839\x85N\x1c\xc1\xcb\xfc\x85\xd2\n\x02\"\xf2\x81g\x90\x01n%\x7f_\xe1.f>>\xa5\xfb\"\xab\xdb\x06\x12e\x14\x11~\x9a\bR-\x85\xc3\xa9\xe6\xf6R\x11\"\xc3\xc9\xfc\x14s X\xec\xdd\xc2qB\x85\xf0\xd7\x04\xdd<\x9a\x84\'\xa3\xf1\xd9<\xb9k', 0x0)

9.097010038s ago: executing program 5 (id=2164):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)=ANY=[@ANYBLOB="6800000010003b1500"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000480012800b000100697036746e6c00003800028014000300fc0100000000000000000000000000000400130014000200fc0100"/69, @ANYBLOB], 0x68}, 0x1, 0x0, 0x0, 0x80010}, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, 0x0)

8.967581317s ago: executing program 5 (id=2165):
r0 = signalfd(0xffffffffffffffff, &(0x7f00000001c0), 0x8)
close(r0)
socket$inet_sctp(0x2, 0x5, 0x84)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x1c, &(0x7f0000000000)=[@in6={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x9}]}, &(0x7f00000002c0)=0x10)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r1, 0x84, 0x83, &(0x7f0000000000)=@assoc_value, &(0x7f0000000300)=0x8)
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, 0x0, &(0x7f0000000080))

8.508954878s ago: executing program 1 (id=2167):
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
socket$kcm(0xa, 0x922000000003, 0x11)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
write$RDMA_USER_CM_CMD_BIND_IP(0xffffffffffffffff, 0x0, 0x0)
ioctl$SYNC_IOC_MERGE(0xffffffffffffffff, 0xc0303e03, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000840)=@updpolicy={0xfc, 0x19, 0x1, 0x0, 0x25dfdbfc, {{@in, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x4, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x200000000000}, 0x0, 0x0, 0x1}, [@tmpl={0x44, 0x5, [{{@in6=@empty, 0x2, 0x2b}, 0xa, @in6=@local, 0x0, 0x4}]}]}, 0xfc}, 0x1, 0x0, 0x0, 0x20008000}, 0x0)
bind$inet(r3, &(0x7f0000000100)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x17}}, 0x10)
setsockopt$sock_int(r3, 0x1, 0x6, &(0x7f0000000000)=0x4, 0x4)
connect$inet(r3, &(0x7f0000000280)={0x2, 0x0, @broadcast}, 0x10)
sendmmsg$inet(r3, &(0x7f0000004d00), 0x7fffffffffffd33, 0x20000890)

7.941042614s ago: executing program 5 (id=2170):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
mount(0x0, 0x0, 0x0, 0x1000, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/bus/input/handlers\x00', 0x0, 0x0)
read$FUSE(r4, &(0x7f0000000480)={0x2020}, 0x2020)

7.475459188s ago: executing program 1 (id=2172):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000240)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0)

6.323062972s ago: executing program 1 (id=2176):
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
unshare(0x62040200)
syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
r1 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r1, 0xc004500a, &(0x7f0000000080)=0x80000003)
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_rx_ring(r2, 0x107, 0x5, &(0x7f0000000040)=@req3={0xffe, 0x0, 0x1000, 0x3a}, 0x1c)
r3 = dup2(r1, r1)
read$FUSE(r3, &(0x7f00000063c0)={0x2020}, 0x2020)

6.142951024s ago: executing program 4 (id=2177):
socket$l2tp6(0xa, 0x2, 0x73)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x5)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000380), 0x42, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0)
mount$fuse(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r1, &(0x7f00000021c0)={0x2020, 0x0, <r2=>0x0}, 0x2020)
syz_fuse_handle_req(r1, &(0x7f0000004300)="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", 0x2000, &(0x7f00000011c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000900)={0x90, 0x0, 0x0, {0x3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r1, &(0x7f0000006300)="c4acef607b9ddcfd235a03c6db2c1419c3332fd94e60bb741ab4a8750cdb46d41965ca8c176409eae88e4d142adc35d20aeb6cee87b470c46a623ffd2c7b92b7b2026c8a2d3a08f7c376bba66ea2fd6bd26a5903aab1fd5f08c5c80a017bd0a1f16e11ed288e1f71fd8f904cd60c2bad8ba59003a9216f171640535484f6706eda84c4a11c63565004ac33cb6040901b5f14b2406a1ddc7ca78fa91f3d575ec92c1c73d56c7d02de887a84a9b88c9b70f0bf2141e1f624e8222a9a63ba199362c8bff33780e6c79435460ada699e037ee7894aeecf7d3b089fa428a18edfe239134a244f69ecda10834e06e1466d95effc76211b61514522c429e80691780744f5e470e417559879fd7c7cdbde84361bb2491dc53a481b3bb5c071926f0c57af8745b52e6b07b053daad9e52a29869f3bee8c9ff43b2e9c20a26035ac89169b7058ee967b44365648f510555c701188079c745776f55748c32867df6e4e78890a32f126197f55113ce4e8c5397224ab6fb9124bdb0050fdb92a42237292668a7aa615216e39f78210b2774f0849a79fd446bdf2ec38d7c61e5384ca5ca6c040522d42102515d86c7743a8f384bf18efffb69d0ad0abb7c48fc8f770152226d05363ea26a7aabb3450905bf28dbc5fadbebe2ea45a4d82e2bcc574bcfd3e3164ee9ce2eb86cf356bd2822699a21dde91d2117e3647d926db9c7bece2484bd81a972c293226a1cbe15f233822fdfd042d6b6515b49f9f1d585b1f0fb596e50eea60ea3f4cc8808b576a1de2c7111df3cef7b090e5b5db7f616d5bc83428b4f55f97e87e43b3360c5099455193584fd94568890e87224bfc9b117d0172d85a176dd2c6828c0144b5398e7354d5923f8014bc3d30860c153696cc776c3982fdef7641bc61d3b21baf0f76adfb94d135ff87393174fd9ca5363e2834a24a06c16522bffb0f60d69cc8440d8a0dfbb47c7d8d6707cd7cbb34fbc8f8d3c4490b31b92806e0d56f83b2a2c7ad88ddb4d0e7dcff8aac6414b8be9c2c9855d5a441f4b34d55fb08306a8fa2832d70023ab0f63ff75629c0e98d64870fd4cd242a6f27fa6163994ec50e18071f5344c6786b01f2d7268930375188e04e0408c973d4872330b96aa88db2fc1860accbccb65f771ced5305891c44ac410541ac980ba50f419503aa058774737c77965db9ec9af213e516fa0a2468d788289337c5babad8c418a3af875ffc8bc39c62e94acf6b1bcbd28274a2e62092f87095958c8bc657ba788907902746872a6441966c9663198d1b54ce5c660ed0b7cfa1d6d3a81de7d16fd017d7f041c30b7f334889feca18596cbf344286563dd59b7c65697c4a3cf587c0682de6fc105628bdd1990dcb3fed18e1192ca07fe4a05be1efbc4057476257a59fcdd24eb040acef0f94ededf984978413ede4793255c0e6b24a5ee1713692149849e60f65c10e437db0a8e97807ea27f0a42f60b5ec86e85ab4eb9a81e2463b00afe7d20cbd30ee600b57202434e1fed80ef2cb45eec5362178b9e490dc0b8a45e10feb8a08138778364a2983a113b671e04d60ab4f18f383300228631cab01302c20c624c8e74bdb6ac3a7cf062f8db96416ff19e42ebb72aed1b46a063cbcb1b16b76abfa628e885cad99ca26b23929ed4602b5e897b019da855b58691503d3021f9c1b314105037a2be7e73d49f8ee9f0a3c3e6e2cec44cb6258d1862c3341b053db1b67640ec14afbbbca41b1b500ee3a0c22a712a02a1b2bfbaaa62ed542fceecc1ee426f9ed748d8656ceab891a9d5a8784ee78e18159abaf531c44829374b4814176534af4adfedb5efead99e214f52b0b2eb9e217c6bbda92a01edb0d5037e2038d8a0fb61f95c377817cf2af1568a66e395596c4045d4be3619adcf70879827dd90c45386c39b0248832254b2f7e646289ecd0aba2a56213e504bcf536ee6567baa25db9fbab142b4a333441778db9b672ccf0154f3f5adaffbf9a36472713077a90fa7828fe58c157593235de0617b7a13c0f269401bceb6f3a5c3eb151c97f3d8ef579f665777f4d801f0df77ae72433c488dabe2504ac0fd0e9703e9b960fcac1063704268e24a40890d627e0f6c38c0cf99b4d11436642dab9452834b13686e8b90cc07e4588c60aed21b90bcf73de85fddd85926557c6aec3510adf2d82f411b16b8013c408cfcb88d519daf256dce2c8a460e82bd0e6bf05c7d901157123dc9b8b1581fbb7bb8127f7adc01c926f6f79bbf666dd35df271cb0816418e71b18653bb1f246d07af5becaeb81abd83ebfce8f874daaf6b6acca7f313ed43570dd6a81548c2d7a0e1cf56124a7a441fe92fd12a5963cf6718543d429499a76f7613cfb7c7f638fbcee879929126cf1cca0c263320d8f34dcd1af2345b9801fcb38b44570bd855dff15ac3c7c11fd18982102258c1ec8941a4eb04b2ecdafa01b8f9fe39e65e40adb8d9a5d972da57a3e7643a518b890845160ca42419e8ce1261a855638e6db7a188c04a68b2afaa9de470283922bd6beadc9ddff314516f0c4e39977f97d79a291bf9d626b471d8bbfe0668cdde8f54a24f31d3928e4e659caebb403902cb27d829bbff401e533bc93d406b6a7113c91d680d424d679df00b9694cfe497cbdabd16841aa1b08e9076ffca9bed761455324fd89338f6cc3223b79a46c8e52aca9a4408edf745c3a02ff52e5314d2f2ecd88d91a45a906bb21dbfe490ca8691dce636424694cdfb7c3cc9e354148b852c52a99d59012bb80360e11d92e9ce2220776f21cce91ba2c1a0c9bd456fad2c17a62bc1ae32ae189b7baf5eafdd0903a02d74e8027c8e884127d0b94ef12e940e3ca65b3d174ba25201b28fe6ca36189e7ed93a6985859463e2d35411957e5c24aa474bac60844aa2828c3c0f8e9199b143ebcd7d56a28794ab54dce479cfe2989838b3fcbfdf146e85cc6176ab35c0da942b5d9351a2fb87266b4870124e38305583bd0e838b31bcaa54ce0c724fc99f2acc3b28d2095fdbd96b736d290bed4745a94b94c89489bed29116839d2ab6a152eadd2a30e71c3a014f41e1554ba238358ba1867e089dd6def8aee0ac338e6da5eb0d0c815c5991a9155ba3f73859eecf57024b5dd65c6d2ec31c9e7339f98ddbad954b121be83cef5cca1606c47e8e8a431615e0d75eface7772d28e3185cdf87581d3f8adf33784aa80880940d86ab881b22b971535f7b83a9f7015e86790dc2520eecf3d1abf1c0dd8c207a22a656b98cb6ec51d8791166d18ab1d6ed43c16050b136d7f55d42492af94d07b1adb562ef07f6a309d884ca55316cbd810905171dd8c6f9a36b855e907b302343d06f0a0d081ad3a710ee9cfc1abfe8005dab815cd26c13236cfa01a7c072e30bab37cc7ab2f3d23796c2a1202f30500a516633e8072483a6d44bdd8fae4622c7e58f083bd70b97f4dbb4fbd907be321737b61f18ae1a4d14366131e641851bffdabd5b22e5b731f4c65283ee5403bc31317045372a4fbec67d26df95e0a14888f2bdcb440cd42de4e0bf389a393fc318e18d393310d5aa3778df0fdca87a5801e5e5b891adb64646011f7693b4b0e9b1cbfa1fbc847f9939271c19b8fb4fc9b15b9397a7e221987417ba13a9fc2902ac3a1d58d65b58968df285ad3b3875949857a67d7b33dc1861bd18383428c9ed41c474f3f316c0df272c55806f4454460e64c37adaff5d712ec376ae5d0d1e91bd3bbdf2a0a5507429d53e13de0562a5ba4b02103c12dab0bd4b85bdd290b98c7e1fd9f494501d2c4b824c007f67bc2e8993d4f163b40515da8f2111f4fa519230713844d170f12b4077324312da2ca1c51c8fe1fff0d6dd68eeebae22ad6681a5f277711db0064d3fa25d09cac0e4b280b58c150e73b3885ab3964837cfc34cb29e215bade71b45e19505b356bf8de9f69c4a3741ab016f77a55869edd76bb33edc34a68959c37bdf60926530d3284688aeb17a347251d5501c034dd3902eef528f167cfc5913d02c430d76b50a6860eb84ee5eca2458ce862ad9fcda642b8df177defe8abacebb4bda07c040b4ccd773fd5c9026ac98243ea2a00f8760a2dacf1c371589b7e32f2d2094543a7d87414813f54ab98cf738ed3b3c1f9e9fdc4fe97bab52d172fad00dff94b0b72fa87b2a3372c8fc9af326f4d05ca131dc254d378eaaf2da3aada8815fedc18d252d95629f7b455cfc54983c2f042e5dd2c22d0f70addcc45c03fa3a52e0937e9590722cedcef23401824dd3f2537d28fb10ff13f6e9641c23075a5ca68125e67df28b3231a65d32a97f00117020debb14e19511acbb52e56be81595d8e74eab72e36b8dfc37678c309bb84221e480c9348f6977f8e3f8a47421184276eba93e84e8b7e2105a5a89c08708c0eb8ba7bfe4dd715278be217fafde8047652ab69544bc2d63d72060ac40f104bc5b509b7501ae7ea36e0d19149645d15b5abc68fad73a542662b3df07ab506746d7343e405370238b657cdb960223752b62e86758143474a78ff92696ad8b5c9d2637c8d9810cfa4faf2765efcd7a1a435a60bbf5962223b1fb0975e227abdc7bf80e3adeabc6ead120922beabd707e6d7a42e233c0788c680190e9ffaf0cc145c010c33438121e8206e25342413dddd02ff2c2e4e5299a82e8e85d181148e1e98db886103810230c6a8687de33c4cf7753c333b8d7b6b6b1a18eab53cc395104818709fc11f4995e057d4517828dcb5a9f3baf41ade7101ef40df27c680c8bcbe8bf2368f1d19b46036bf8419516789dc69ee2573ddec41d9ca00fcc710f5635afcf088e0107fb09a87db9ca6fccd0655ec0816ead48371d64e8318b767b95ed6ea89ff919c68cd33cdfa0381b8b7caa545de948b8c46bb879c4470feed0a990056fb2db739225fc768e83d15568d73694e6888da65870e79c4f5e1287f1a8cce359f82c9860e13ff900833dc556d8fd005c38a855ed1efec66b4ba8d1e65db9a999e172101062081354625cea8f1ac0da70d7f2dca34c4204dfdefe456822ae2cd1349f1a2251292ddbb287c5b9ca41c75f45bb4ddd82c277afd37422cc00fe8b7221168b04b6275f8e530757c673b3f515059f8c8421872d07a156a9d061bdbe0c549a52acfb0708682a2573c259225d0e95a16b8d13dcec60ae91c09537e8bea549f748d2e060d8e3ad49ec9ec1ff3a4e7a7b716c95e7310ff9fa56180f0259df99b5fe06c030015d9cb5bc9ece0cd907d724e1d1a89d3d875970bf144c58260c0dde163a26d4769b33f6de7f181ecabc050797a105fd1ce73ac4d26a153297305b8a3c150beee4b563f468694cf3895c44df56fc8753e3c8182e8e3c9da0314eac9c288978847b92015ddc5711c09210e1f5a684b7f1f149fb0fe8471c30f8a35a58ffc6e2fb797acf9c686fbb8d1ee8d6dac14de44c22a3cdda239235c24ff23de17228aeb354939a80e4a1397b316da5e18f077cc7b8497df214290c33c4b8593db1ab1638698059f29477a091b070f139b3fd2fe3ff55803b6e65abe6dae32eddb18e898e63743ed256801c8bbbf26e21bdff9491ef743341a5159b36b616ea9c700aca9b6486278c7811729e3df91147ad0e25c44e03c9f4b2385aa6cbfc70d8f68d17ac0925d8fe8737b212f708633bacda57b3848667a4f624a4c7edd33a060f82aabe6ac6a19a81a2cf6403189f08d2632260d72630da6ffe46ab9c19456e95e3cfc423940023ba0ad6f1fe2a8755509441e248b291e02e85f7173054ec6597cc712e80751b4078bf8db1177130f0b170be8f3ac79d579e012caed707156f3ba28ddd5ca5d18320fc9f361e88aa93de9127752ea04c7c77425ad30522dfb5f1f10f802c1a9668812ee9e6b4acab25e10dfd2b18387e9f6ac725cd72f5100b6c15265dcfa1dd45f538b76346209e6cab4441013e36e861ae677e980ddd08e9366426f410428b9b0828c9805bcbb667209191e79305ecc15ce9cf30aa829373e4a8152e2c68294dc71b6ab7b551addc661a5a040ca7b79993cf1060c8410fac1e9d3b209319f22c4bab53b1a6585ebb72a579dbce64b107b280b529439cde9d1fa29333ce63dbfd693e0b2fb3633e37304e70fd5b8d04bf47f6630cfdfbf8ad9f7778c88d7ca9705f4694b1d3355c8406adc99e15bb39fdaa8df214e1730b6d05bd5f93349ecbf5b0db04a5fb1bd66c5bc30671a564d46fbfceacc074bb14c31d471593172ffe28c39912ece3f718864ab9e300ca172a7ebfad6fe28a0ef5aafcd3f966a5d7d4d6ff164434b649cfe149505159018d8c00e82afaf7657402109549f7a5a4c8c7dd02d7d2b005a3be97f0a32bdf3d8e449fb4146c9e38a509781246d9fb67ed087148fd8b8fa1abcc5771148c0483aca397b36302459ae43f6f5aff98bd784b8a1e19a05acc632672bdabb32f2aa4d66ba731d6e219d880f4ceb63d30ee61e5e13919352ee32254d48bab3566e13788689e35c3e4c71c244c34b457fa8a23248b9be6fa195a055137a587e73afd4ee521af95040e72851d3b6c06a15c3464c755cba079f1f53d807bedd0382e36c975793bf3f78690cf408a7c502b872a05a5988e6a96b0aaeb0c0075576f295e55a9002caecab04331d06cb042cbe87375e557933e3d5e8763baffb71bab63343e432f62e82bc51b4bcbb8fb93c72dbe0ee310bd0d776109700007d0a1bcbf1655e1354f2f5dbae7d2d569b099003347f9c3f6c5ceadfb113ae3daea860f61e233e68c63386ecafe74c1a7386c97725bb650f298c06ad648662940daa3abf0c6f460bd2875984858a97c1fa921d2a73f6d207163cffb573dd59ef815605824d3e44eb74e22e865c975b5d8b923b063934960d62fa9907baa28c9f0a24f1e5bf731eabe1f6b076ae19b150d5632b307de0741116d5af8c5b4dae3c8ae01808d1a9925cf185c55a335820c1d8b80736bec9a9562d269ff273a040d77babad128d2b71a64d084dd93be96e3b99ffcc037a6db0f296f63438c83789e54635e0c69fe3ebfd3022130523ffa6f2805747b4e97c2fa38e04decd1b037123814be9a38d322d342d07baa37d5b484c32517b74fc636441a08d8424aaeeefb6bb47a8c010d6f1442a6632e808520308ec7ce7f7607ba18cd8b897ca3814834b2f088cde073d93261dac3bb624bcc6839d6249b51a58fcc4db00058484e0c5814004c5da1d4cda1c025883c999fd2ef171a5c3a438cc0fccff03bae681775421d49ddbfb4f74ffcf88992abd6168e58295b91e7cbd442bbf8d7cfb5d3ce080dc2b90961edbca462e843343d129e45cfa28eeb426eeef08a5ee84d7b48c59a6687b8c0f7549375033398a65eb6336e40423c12a55b5bf732a65bcaae27a91fde89318727cd769c0cbece6371b611a0b40a6b14aa40ceb5848b738c13258fb0765cf83d92a2081d3c363cd7d48da0f0b19e884045c44e78bb61bd673c4522e1c50a2a944115a57f4670b8c388858c7f4babae8052ff86f2b6b780e3b1b5e4302fe7aa7321b3a45ae98ba5a74e87ef4cf13046c7b67bff56f9ff6f4224c4d24bd438eb92e3a1a786c50b6d1dbb302b237618ad008fa5aba8c4778ec3735dc483adc99d19ce1c87634d5ff86f06acece91c7a79e1400b6b483285c8e478f43c3fdf22ccf792aec034ffd47e60080e7d4a27b6e48bb0a15aed15d6b84e9b6af83d4de502d70026533db7c881d0b344ce7b732fbb69348aadf44b22dd3921f8eefd5ef2914a7eac8d36b5420163258fc2be1d34bbf49ef5c4c7ad6a09c7292690f569621bfba1c4d9e484acd7d92f58b79bde01dd6ba98f4cad801e902bff0e81ae787c595969187b58ed9bf68b0aeaec069b64f6facbf7f0a4a8a5d3fc401c0e1ac3bef9bafa512e36d5c8d8b135f1a05368255c15b1c976ae93c9c99288fecf018505eed0f089aec2a9ca7b198a0a89671f095092d2a9e7fb90dde3bf586a2f168f2a8329118d04bffb6adabd53f87df50275981c9fd5d69020c8e9750287e5119c1cf347d1c3e4adba1d598446b4c0a479a5475859383e8c82bfe4c6b8560ad55e27f3323d857efcad4b5ee4d83b4dd74458414d2a9ce74ffda8042038caba0098bcfd6b2e2bda9afcc4c5890f38773726aa94791642ff492f8d11c736f397c080d63e2dd24baa37aff0ae46d9c77c5097f84d6e5a90c554436cfa5311e4f31e2386c2c4b04cf44fd118b4eee2326cd1f0a48efeb4c51fbe0f395694b2b40aca9fccfc1eb84283fd53671955b251bcc2253ed3a3fbb906b2b25944fbe6c5b226b05052fec7c9e6b2d4c0a1ae1029ff70900d4634954f025a345731a76ebcfc4e61499d91b888292e6c59a16c34e4d96ac23dbad628988fcb777c4e9c6348389decbce8c9c03420c01bd670280ce1d4d641d2d4b9c3c11ade9d196f8e49290094ed55382b09f0cf0397ffcd9006e38980ee0b3882e7d93e33643c1ed2429cbefba0e1720f69a20024aff6070acd25a3d68b129e3d7699641d20c5b93e8d4b784669e3a22727d687ff1dadfd19c5b44dcf776561eecf2d28c01e683f49b1c204ba45aadf5d84bdde7d2cd53dad97d060664ddefff75f5e413f72be41d6e7c13fcbc481eefdab31fbc500109c8c24756227ff5bb18b148d0a31576d2e427c43472624312a7568d5ad9b5f9a2274549e5180288dbc0c7e046766c174fca0aca1d867fce966bf4d1097efe62ae23c925ac387b368345999a92cd1d44055e178430fad19cbf8b53756df5584503d848e13ab90c338c2aa8346e2b499e5790926cbe359dc30a3d5336293c4990832e998c2901fae3df81ad4f1ec6fd17baf25fa25fa08bb71345a1fec99299e4ee962dab091c16138fe01d5403230fd896b0992a2474fe38e5a7ff15b372e2a7a4a0ff34defe1fba14bfb6f56630aaef274b57fd0999bf77aa79f743e29c60b7d5d1774ffa9591286f809ea6c0dcc1520f5766851e0f9233b4a2e1329e93e043837510f5ef85676590b0540aa7b2b5211d7d38fbc45e2fe3d7993c6bec4ba2205a40819f8a3ef2e71af85162e39f0f859ed446947bc8516eb527c496244488f8663dee31973d91c7be81b746cde97294cbf94e09d155354af76ecac1d968038ed961843350524dbfd6ff46e4e0991aed94c144a403a5be126279a6469f9b7854b839933163c83672275491445ccc81bcabf91a6851101593bdfa0930e1058c972e7e41ad390cc4666575ce29fa80095eceb4cbb035e7e7e5a02be4606004e176db167fb67889912b8381e311c39d4378a088328f3e2cd4733dc55fc2e5a0afa7c928b98f95187a7200d8f78a2619df22a4f9fb433fb4a3a848651abfa90adc22c3bc29c1c386c0bc168c0c7873719f3cd76c49c77a5624a288022ebc89998c94f3bad87cd8bcd58502c38b0ff7ed312614f65ca1ea2f999fdcf2432e49b56c635f78514d9be0a5416e2b1ca8aa1b6f6c15d4ba022e5486afb79935d7021eea7b5d8e41a52b514af162a8b79a65efded6720126b9a5b3965f672d8da1bd9692bc14da0b29bc052e9ad22a59edbd0cb3c71fc304b0b8e296cdde1b259ac35a2e30e0741ec6a1cc4699d956959cfdfe4a91f6460271a70ba883f1b8eb3c1f52c60c361696056a411b74104960528caaa338066d823eec164c9c69d7b80c4d0c2ec7a739155c913810b3f5eb147e89e3b8699a29ca192f20cf8db8a1d7c01cbffdceb9d1a5045f55c8328966b91ee2b8e373d35ce74d35c1bea66316a2c0ea561844dcd6a027c6991038623ef894ed3489b4e04ab7e116973380fff9066eac58a406f78c4656367b57081f7b99030b0b087cbac6fd705d2d135ae4505ebb3c8b5ff3e226c9aa8896ba16600ba3dc89b73f07f9968a05045b34218a9f14a3e507103916f3a0b1f8989ab057b8907041cc1c31905b6e87f10e74e4c196c17e31450419040df59bee49aa554f9661f38435effa292f7ef01cd6173e08a3186f04018c23f37b7953c3f5ca7f83389ccbd539405ace7abb99aa29537eedb79000ee04fe5b72999ee606238874f0fa1b14d8cfc9d9c0c1a1666ca7ccceaefe1cf583157ae6e7dbd70425f487340386cbd141261ecc838482daec473b685e6ec71a23c42fbe89521360d6c6ed42284627655d2eceb9cd0f65df549b0c4efec101dd359ddb53dc99d94df991093459f7842c878b7b49fff2cf850bd924a06d3a3a420ee82dcb39e487c0f61de92ae6f0c8d12cdcc7365f2bee4300ac3842188ec82c76164c33c1d11362c1d9e136e516ae0b91172e252f73958be0913777a29be7da26ae2f7ba9e2a80a67974fe30fde3f6b9aa0b21aedbe0f23f074f962ee846d64116eb14d886ad4aa4166c779e6bf3e7d5ee3d7ff2519351f07595531ac10da596268f65434d9a4779fd8c326a847a44d0ca1cb1d1e764a56c99df167901695de6f07ffa94edf874233b340a524449b19f4cda7712cea4c7e0fcd7879edeec3ea24073354e31989ed1c08bb4bb1bec053c4c6fd352b0c91007623635619e05375728bf575f2e26bf617644f0239123f8ac1ed06767ca7b3096ec91ec1d530b7a0ec855a341ba4f72fdbd40cae0727581dfaf25b00282131bc82b5c44d4089b0b3274520a40c0053b5dd10e59a811023b660ffcb2d7e79b32af9f55ae030eb845a64361d25b175cacb07389957f23c9ff3e52e2bea41a75305377af233336d9a7bf7f9939441b76898b9aa8a596e9261f71c5176aae31270d80576885119fa6324856f1ceef3c6cb2db8a10aadea3c801c267e9987afa360958514bc85bc69c6d59211bbcf2b1312399f74f340fdf10a19145f0129d9cccfa4194bf148493db3a01b81f19aeca63e1074d94cfbb289ba9823646201ce9eb234167086a90241bfaf57c3216fcfcaf39824ff97545135f42c443b65b6369349d89d06000000000000003cd3ee5253abd8fef6fe2248a002f9c70a51ddb89e7fe476163c6b1cce417be229b0e5533b81088370f7ec9468ee0de1f6feedb371dfa850ea5fe35c83ee58533c52a7c758c7adbb0329b3d7b4180be6df7f1d1881fad5a52cd807922d7eaddb13fa65cec8684a2321a4d923fc3fc657bf2ff3c02ffa6845f2eda3e736bed70e6984387cf77531b2e6ac6d67c706f43bb3944b618851abbff019ad48d116a7ca56fa436a58adc82dd5f8cc63fcd56076442ca88e3b3702ad99d6e2c46a561b87c5ac8a94ad77100be0c5d80887ba1283f38017b421c6456ac90bf90c8ce31d011ab997db7215520dda972ff1a78fcc5122e140e51a20bd361566276ae614643344e5b395bed67d8bde8957429c6ffb9147ad00d99ed2baa6766feb100c8b2601fa5f34f6428b9cec3262ee29dd220642df5fdcf2e43cf72ce7c710cce7de6099d76bf0d01f68f60d9fec99f69c0db0465ab3cf4e7a623676dac5fee48f55059140139bc210b1d5a9b2dae02eea4b799f36142286ff85ebffe76ee562d3af670c78633cf314e4d8792a8c6eb40bed1fd7d99603b22f216e260cc7dd59eb226b2a59d946c02b5458e358470be9e8c4fcd5f6403bebbd5de5421f082b39fd77cd590ad96d5ff7d3f1ac38f244742662726cfe70909d04867c869332ded36bac3f819fe173dd7f", 0x2000, &(0x7f0000000d40)={&(0x7f0000000080)={0x50, 0x0, 0x0, {0x7, 0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r1, &(0x7f0000000e00)={0x50, 0x0, r2, {0x7, 0x27, 0x0, 0x23571d, 0x0, 0x0, 0x0, 0x795, 0x0, 0x0, 0x64, 0x5}}, 0x50)
setxattr$trusted_overlay_redirect(&(0x7f0000000200)='./file0/file0\x00', &(0x7f0000000240), 0x0, 0x0, 0x0)
shutdown(0xffffffffffffffff, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000000)={0x0, &(0x7f0000000100)})
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
pselect6(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = syz_usb_connect(0x5, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="12010000f1d566201e043c40d7cc00"], 0x0)
syz_usb_control_io(r3, 0x0, 0x0)

6.052698461s ago: executing program 3 (id=2178):
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ptrace(0x4207, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r1, 0x3b81, &(0x7f00000003c0)={0xc, 0x0, <r2=>0x0})
ioctl$IOMMU_IOAS_MAP$PAGES(r1, 0x3b85, 0x0)
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r1, 0x3ba0, &(0x7f0000000340)={0x48, 0x5, r2, 0x0, <r3=>0xffffffffffffffff, 0x1})
r4 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x40000, 0x0)
ioctl$IOMMU_TEST_OP_ACCESS_PAGES$syz(r4, 0x3ba0, &(0x7f0000000400)={0x48, 0x7, r3, 0x0, 0x10000, 0x0, 0x4000002, 0x258bd4, 0x2e7883})
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r5}, 0x10)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
syz_mount_image$udf(&(0x7f00000004c0), &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000200)={[{@shortad}, {@partition={'partition', 0x3d, 0x5}}, {@noadinicb}, {@iocharset={'iocharset', 0x3d, 'iso8859-7'}}, {@gid}, {@volume={'volume', 0x3d, 0x5}}]}, 0x1, 0x489, &(0x7f0000000580)="$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")
symlink(&(0x7f0000000100)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00', &(0x7f00000002c0)='.\x02\x00')
ioctl$TUNSETIFF(r6, 0x400454ca, 0x0)
ioctl$TUNSETQUEUE(r6, 0x400454d9, &(0x7f0000000100)={'veth1_macvtap\x00'})
ioctl$IOMMU_TEST_OP_ACCESS_PAGES$syz(r1, 0x3ba0, &(0x7f00000008c0)={0x48, 0x7, r3, 0x0, 0x10000, 0x0, 0x8, 0x0, 0x334e8b})

3.18094405s ago: executing program 1 (id=2179):
r0 = signalfd(0xffffffffffffffff, &(0x7f00000001c0), 0x8)
close(r0)
socket$inet_sctp(0x2, 0x5, 0x84)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x1c, &(0x7f0000000000)=[@in6={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x9}]}, &(0x7f00000002c0)=0x10)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r1, 0x84, 0x83, &(0x7f0000000000)=@assoc_value, &(0x7f0000000300)=0x8)
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, 0x0, &(0x7f0000000080))

3.122175582s ago: executing program 3 (id=2181):
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
r2 = syz_open_dev$dri(0x0, 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r2, 0xc02064b2, &(0x7f0000000100)={0x6, 0x1f, 0x6})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f00000000c0)={0xdb, 0x1ff, 0xb})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r2, 0xc02064b2, &(0x7f0000000000)={0x7fff, 0x8, 0x100})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000080)={0x2, 0x5, 0x3})
r3 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
r4 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r4, 0xc02064b2, &(0x7f0000000340)={0x8, 0x8169, 0x6})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r3, 0xc02064b2, &(0x7f00000000c0)={0xdb, 0x1ff, 0xb})
r5 = syz_open_dev$dri(&(0x7f0000000100), 0x1f, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r5, 0xc02064b2, &(0x7f0000000000)={0x8, 0x2, 0x7})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000040)={0x49, 0x7fff, 0x4})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r2, 0xc02064b2, &(0x7f0000000140)={0x86, 0xfff, 0x800})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000380)={0xff, 0x3, 0xd83f})
dup(r2)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f00000002c0)={0x8, 0xd7, 0x8})
close_range(r0, 0xffffffffffffffff, 0x0)

2.884838639s ago: executing program 3 (id=2182):
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
socket$kcm(0xa, 0x922000000003, 0x11)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
write$RDMA_USER_CM_CMD_BIND_IP(0xffffffffffffffff, 0x0, 0x0)
ioctl$SYNC_IOC_MERGE(0xffffffffffffffff, 0xc0303e03, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000840)=@updpolicy={0xfc, 0x19, 0x1, 0x0, 0x25dfdbfc, {{@in, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x4, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x200000000000}, 0x0, 0x0, 0x1}, [@tmpl={0x44, 0x5, [{{@in6=@empty, 0x2, 0x2b}, 0xa, @in6=@local, 0x0, 0x4}]}]}, 0xfc}, 0x1, 0x0, 0x0, 0x20008000}, 0x0)
bind$inet(r3, &(0x7f0000000100)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x17}}, 0x10)
setsockopt$sock_int(r3, 0x1, 0x6, &(0x7f0000000000)=0x4, 0x4)
connect$inet(r3, &(0x7f0000000280)={0x2, 0x0, @broadcast}, 0x10)
sendmmsg$inet(r3, &(0x7f0000004d00), 0x7fffffffffffd33, 0x20000890)

2.5723825s ago: executing program 5 (id=2184):
socket$netlink(0x10, 0x3, 0x0)
r0 = dup(0xffffffffffffffff)
getsockname$packet(r0, 0x0, &(0x7f0000000140))
tee(0xffffffffffffffff, 0xffffffffffffffff, 0x8, 0xb)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000240)='kfree_skb\x00', r1, 0x0, 0x8}, 0x18)
r2 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
connect$netrom(r2, &(0x7f0000000300)={{0x6, @rose, 0xffffffff}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @default, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}]}, 0x48)

2.309083006s ago: executing program 4 (id=2186):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000240)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={0x0, 0x64}}, 0x0)

2.163263535s ago: executing program 6 (id=2187):
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000740)='./file0\x00', 0x10040, &(0x7f0000000380)={[{@journal_ioprio}, {@nouid32}]}, 0xfd, 0x269, &(0x7f0000000780)="$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")
r0 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0)
pread64(r0, 0x0, 0x0, 0x9)

2.134565915s ago: executing program 1 (id=2188):
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
unshare(0x62040200)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r1}, 0x10)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(0xffffffffffffffff, 0xc0a85320, &(0x7f0000000480)={{0x80, 0x3}, 'port1\x00', 0x85, 0x0, 0x0, 0x67, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc})
socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$IPT_SO_GET_INFO(r0, 0x0, 0x40, &(0x7f0000000140)={'nat\x00', 0x7003, [0x10000, 0x3ff, 0xc, 0x8]}, &(0x7f0000000000)=0x54)
r2 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r2, 0xc004500a, &(0x7f0000000080)=0x80000003)
r3 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_rx_ring(r3, 0x107, 0x5, &(0x7f0000000040)=@req3={0xffe, 0x0, 0x1000, 0x3a}, 0x1c)
r4 = dup2(r2, r2)
read$FUSE(r4, &(0x7f00000063c0)={0x2020}, 0x2020)

1.769852132s ago: executing program 5 (id=2189):
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
unshare(0x62040200)
syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
r1 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r1, 0xc004500a, &(0x7f0000000080)=0x80000003)
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_rx_ring(r2, 0x107, 0x5, &(0x7f0000000040)=@req3={0xffe, 0x0, 0x1000, 0x3a}, 0x1c)
r3 = dup2(r1, r1)
read$FUSE(r3, &(0x7f00000063c0)={0x2020}, 0x2020)

1.721141756s ago: executing program 3 (id=2190):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f00000000c0)='bbr\x00', 0x4)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x3, 0x4, @loopback}, 0x1c)

1.20651238s ago: executing program 4 (id=2191):
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ptrace(0x4207, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r1, 0x3b81, &(0x7f00000003c0)={0xc, 0x0, <r2=>0x0})
ioctl$IOMMU_IOAS_MAP$PAGES(r1, 0x3b85, 0x0)
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r1, 0x3ba0, &(0x7f0000000340)={0x48, 0x5, r2, 0x0, <r3=>0xffffffffffffffff, 0x1})
r4 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x40000, 0x0)
ioctl$IOMMU_TEST_OP_ACCESS_PAGES$syz(r4, 0x3ba0, &(0x7f0000000400)={0x48, 0x7, r3, 0x0, 0x10000, 0x0, 0x4000002, 0x258bd4, 0x2e7883})
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r5}, 0x10)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
syz_mount_image$udf(&(0x7f00000004c0), &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000200)={[{@shortad}, {@partition={'partition', 0x3d, 0x5}}, {@noadinicb}, {@iocharset={'iocharset', 0x3d, 'iso8859-7'}}, {@gid}, {@volume={'volume', 0x3d, 0x5}}]}, 0x1, 0x489, &(0x7f0000000580)="$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")
symlink(&(0x7f0000000100)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//file0\x00', &(0x7f00000002c0)='.\x02\x00')
ioctl$TUNSETIFF(r6, 0x400454ca, 0x0)
ioctl$TUNSETQUEUE(r6, 0x400454d9, &(0x7f0000000100)={'veth1_macvtap\x00'})
ioctl$IOMMU_TEST_OP_ACCESS_PAGES$syz(r1, 0x3ba0, &(0x7f00000008c0)={0x48, 0x7, r3, 0x0, 0x10000, 0x0, 0x8, 0x0, 0x334e8b})

1.190746382s ago: executing program 6 (id=2192):
r0 = syz_open_dev$dri(&(0x7f0000000200), 0x0, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})

948.957197ms ago: executing program 6 (id=2193):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x32, 0x0, 0x3}, 0x9c)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000400)=0x6)
sched_setaffinity(0x0, 0x0, 0x0)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0xd, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000240)="af", 0x34000}], 0x1}}], 0x1, 0x0)

939.1914ms ago: executing program 4 (id=2194):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
mount(0x0, 0x0, 0x0, 0x1000, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/bus/input/handlers\x00', 0x0, 0x0)
read$FUSE(r4, &(0x7f0000000480)={0x2020}, 0x2020)

912.033831ms ago: executing program 1 (id=2195):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, 0x0, &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000340)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setownex(r2, 0xf, &(0x7f0000000140)={0x2})
pipe(&(0x7f0000000440)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
vmsplice(r4, &(0x7f00000000c0)=[{&(0x7f0000000180)="77690addcfbe1fbb66ec", 0xff3b}], 0x1, 0x1)
r5 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
splice(r3, 0x0, r5, 0x0, 0x25a5, 0xa)

601.010608ms ago: executing program 6 (id=2196):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
socket$nl_route(0x10, 0x3, 0x0)
write$binfmt_misc(r1, &(0x7f0000000000), 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x4ffe6, 0x0)

315.349192ms ago: executing program 6 (id=2197):
syz_mount_image$erofs(&(0x7f00000012c0), &(0x7f0000000240)='./file0\x00', 0x200000, &(0x7f0000000000)=ANY=[], 0x0, 0x234, &(0x7f0000000500)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x92)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000f00)={[{@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
creat(&(0x7f00000001c0)='./file1\x00', 0x186)

282.675862ms ago: executing program 3 (id=2198):
r0 = syz_open_procfs(0x0, &(0x7f00000002c0)='fdinfo\x00')
getdents64(r0, &(0x7f0000000840)=""/4053, 0xfd5)

187.527018ms ago: executing program 5 (id=2199):
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, 0x0)
lseek(0xffffffffffffffff, 0x3, 0x1)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
syz_open_dev$sndmidi(0x0, 0x2, 0x141102)
write$dsp(0xffffffffffffffff, 0x0, 0x0)
write$cgroup_pressure(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x11, 0x80a, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000300)={'bond0\x00', <r3=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=@newlink={0x44, 0x10, 0x401, 0x70bd2c, 0x0, {0x0, 0x0, 0x0, r3}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bond={{0x9}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BOND_MIIMON={0x8, 0x3, 0x4}, @IFLA_BOND_USE_CARRIER={0x5}]}}}]}, 0x44}}, 0x0)
sendmsg$kcm(r0, &(0x7f0000000600)={0x0, 0xfffffffe, &(0x7f0000000080)=[{&(0x7f0000000000)="2e00000010008188040f80ec59acbc0413a1f8480d0000005e140604000000000e000a000f00000002800000121f", 0x2e}], 0x1}, 0x0)

8.884379ms ago: executing program 3 (id=2200):
ioctl$BTRFS_IOC_BALANCE_V2(0xffffffffffffffff, 0xc4009420, &(0x7f0000000340)={0xe, 0x3, {0x7, @struct={0x1, 0xd}, 0x0, 0x7db, 0x7, 0x4, 0x2, 0x9, 0x50, @struct={0x8761, 0x5}, 0x9, 0x49, [0x4, 0x0, 0x4, 0x2, 0x602, 0x8]}, {0x401, @struct={0x7ff, 0x7f}, 0x0, 0x5e, 0x2, 0x5, 0x8, 0x100000000, 0x6c, @struct={0x2, 0x9}, 0x7, 0x4, [0x4165, 0xd, 0x0, 0x6, 0xffffffffffffff19, 0x8]}, {0x1, @struct={0x2, 0x1}, 0x0, 0x8, 0x101, 0x0, 0x9, 0x7, 0x0, @struct={0x6, 0x9}, 0x0, 0x200, [0xe, 0x5, 0x200000000000000, 0x7, 0xffffffffffffffff, 0x55]}, {0x2, 0x0, 0x57fe}})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20181, 0x0)
syz_usb_connect$uac1(0x0, 0xa3, &(0x7f0000000800)=ANY=[@ANYBLOB="12010003000000406b1d01014000010203010902910003011010060904000000010100000a2401018000020102072408040100050c240703000000d8857005850904010000010200000904010101010200000924020102030301620905010910001404cc072501017f0400090402000001020000090402010101020000072401010502100f240202966802000078f4cd9535ca09058209080007040307250102f40000a4bbcc942ecfab6286017e74"], 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_VM_COPY_ENC_CONTEXT_FROM(r1, 0x4068aea3, &(0x7f0000000080)={0xc5, 0x0, r1})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe6000/0x18000)=nil, 0x0, 0x0, 0x48, 0x0, 0x0)
sendmsg$IPSET_CMD_SWAP(0xffffffffffffffff, &(0x7f0000000740)={&(0x7f0000000000), 0xc, &(0x7f0000000300)={0x0, 0x64}, 0x1, 0x0, 0x0, 0x4048011}, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000640)=0x4)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x280, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000140)=@arm64={0xf9, 0x3, 0x3, '\x00', 0x8})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="140000144200010a00000007000000"], 0x14}}, 0x0)
ioctl$sock_inet_SIOCSARP(0xffffffffffffffff, 0x8953, &(0x7f0000000200)={{0x2, 0x0, @rand_addr=0x640100ff}, {0x0, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x13}}, 0x0, {0x2, 0x0, @multicast1=0xe000cc02}})
r3 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x161281, 0x0)
write$binfmt_aout(r3, 0x0, 0xff2e)
ioctl$TCSETS(r3, 0x40045431, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, "0040001e1d113c812e5d6000"})
r4 = syz_open_pts(r3, 0x0)
syz_io_uring_setup(0x2f90, &(0x7f0000000180)={0x0, 0xc383, 0x3010, 0x2, 0x200004}, 0x0, 0x0)
epoll_create(0xaf2)
creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
inotify_init()
pselect6(0x40, &(0x7f0000000200)={0x3, 0x0, 0x3, 0xfffffffffffffffd, 0x6, 0x0, 0x1}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0xff, 0xa533, 0x0, 0x0, 0xc8}, 0x0, 0x0)
ioctl$TCXONC(r4, 0x540a, 0x2)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)

0s ago: executing program 6 (id=2201):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f0000000340)='syzkaller\x00', 0x3, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r0}, 0x10)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
r1 = io_uring_setup(0x3454, &(0x7f0000000080)={0x0, 0xffffafff, 0x1000, 0x2, 0x33d})
io_uring_register$IORING_REGISTER_BUFFERS(r1, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
r2 = userfaultfd(0x80801)
ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x100})
ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000ffa000/0x3000)=nil, 0x3000}, 0x1})

kernel console output (not intermixed with test programs):

eed not set
[  434.089150][ T9678] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  435.865223][ T9692] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  436.437501][ T9697] loop2: detected capacity change from 0 to 32768
[  436.553236][ T9697] (syz.2.1007,9697,0):ocfs2_load_local_alloc:339 ERROR: inconsistent detected, clean journal with unrecovered local alloc, please run fsck.ocfs2!
[  436.553236][ T9697] found = 0, set = 0, taken = 0, off = 16777216
[  436.574261][ T9697] (syz.2.1007,9697,0):ocfs2_load_local_alloc:356 ERROR: status = -22
[  436.582505][ T9697] (syz.2.1007,9697,0):ocfs2_check_volume:2404 ERROR: status = -22
[  436.590341][ T9697] (syz.2.1007,9697,0):ocfs2_check_volume:2432 ERROR: status = -22
[  436.598230][ T9697] (syz.2.1007,9697,0):ocfs2_mount_volume:1764 ERROR: status = -22
[  436.618936][ T9697] (syz.2.1007,9697,0):ocfs2_fill_super:1177 ERROR: status = -22
[  437.413137][ T9715] loop0: detected capacity change from 0 to 64
[  438.887489][ T9694] loop4: detected capacity change from 0 to 32768
[  438.956324][ T9694] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.1005 (9694)
[  439.594381][ T9730] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1015'.
[  439.659335][ T9723] loop2: detected capacity change from 0 to 8192
[  440.025445][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  440.031928][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  440.136582][ T9743] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  441.577667][ T9762] vlan2: entered promiscuous mode
[  441.583866][ T9762] bond0: entered promiscuous mode
[  441.589029][ T9762] bond_slave_0: entered promiscuous mode
[  441.610328][ T9762] bond_slave_1: entered promiscuous mode
[  441.630891][ T9762] vlan2: entered allmulticast mode
[  441.645046][ T9762] bond0: entered allmulticast mode
[  441.660450][ T9762] bond_slave_0: entered allmulticast mode
[  441.678603][ T9762] bond_slave_1: entered allmulticast mode
[  441.781596][  T978] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  441.890861][ T9774] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  441.952973][  T978] usb 1-1: Using ep0 maxpacket: 8
[  441.957335][ T9776] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1035'.
[  441.967104][ T9776] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1035'.
[  441.976071][ T9776] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1035'.
[  442.028536][  T978] usb 1-1: config 0 has an invalid interface number: 55 but max is 0
[  442.054251][  T978] usb 1-1: config 0 has no interface number 0
[  442.083662][  T978] usb 1-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  442.244962][  T978] usb 1-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  442.271116][  T978] usb 1-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  443.104688][  T978] usb 1-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  443.131696][  T978] usb 1-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  443.160182][  T978] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  443.203571][  T978] usb 1-1: config 0 descriptor??
[  443.243834][  T978] ldusb 1-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  443.388290][ T9767] loop2: detected capacity change from 0 to 32768
[  443.438720][ T5893] usb 1-1: USB disconnect, device number 15
[  443.447909][ T5893] ldusb 1-1:0.55: LD USB Device #0 now disconnected
[  444.491900][ T9812] Cannot find add_set index 0 as target
[  445.005394][ T9813] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[  445.368978][   T13] Bluetooth: hci5: Frame reassembly failed (-84)
[  446.606194][ T9824] netlink: 72 bytes leftover after parsing attributes in process `syz.3.1051'.
[  447.157372][ T9815] loop4: detected capacity change from 0 to 32768
[  447.184702][ T9815] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  447.270345][ T9815] XFS (loop4): Ending clean mount
[  447.295058][ T9815] XFS (loop4): Quotacheck needed: Please wait.
[  447.296857][ T9829] loop0: detected capacity change from 0 to 32768
[  447.319581][ T9849] 9pnet_fd: Insufficient options for proto=fd
[  447.357202][ T9815] XFS (loop4): Quotacheck: Done.
[  447.391217][ T5846] Bluetooth: hci5: command 0x1003 tx timeout
[  447.398316][ T5840] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  447.671536][ T5837] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  447.989570][ T9860] loop2: detected capacity change from 0 to 2048
[  448.331850][ T9869] random: crng reseeded on system resumption
[  448.672927][ T9860] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  449.167457][ T9873] EXT4-fs error (device loop2): ext4_find_inline_data_nolock:169: inode #12: comm syz.2.1066: inline data xattr refers to an external xattr inode
[  449.190304][ T9873] EXT4-fs (loop2): Remounting filesystem read-only
[  449.579119][ T5834] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  449.815190][ T9894] loop0: detected capacity change from 0 to 4096
[  449.884476][ T9901] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1079'.
[  449.891260][ T9904] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  450.059755][ T9908] netlink: 88 bytes leftover after parsing attributes in process `syz.2.1082'.
[  450.256985][ T9915] loop2: detected capacity change from 0 to 64
[  458.976470][ T9981] loop2: detected capacity change from 0 to 32768
[  458.989416][ T9981] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.1113 (9981)
[  459.033743][ T9981] BTRFS info (device loop2): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  459.044053][ T9981] BTRFS info (device loop2): using sha256 (sha256-x86_64) checksum algorithm
[  459.052979][ T9981] BTRFS info (device loop2): using free-space-tree
[  459.229507][ T9994] sctp: [Deprecated]: syz.3.1116 (pid 9994) Use of struct sctp_assoc_value in delayed_ack socket option.
[  459.229507][ T9994] Use struct sctp_sack_info instead
[  460.095912][T10009] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  460.601070][ T5893] usb 2-1: new high-speed USB device number 19 using dummy_hcd
[  460.796679][ T5893] usb 2-1: config 0 interface 0 altsetting 251 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  460.816464][ T5893] usb 2-1: config 0 interface 0 has no altsetting 0
[  460.833792][ T5893] usb 2-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  460.851796][ T5893] usb 2-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  460.878319][ T5893] usb 2-1: Product: syz
[  460.886834][ T5893] usb 2-1: Manufacturer: syz
[  460.900830][ T5893] usb 2-1: SerialNumber: syz
[  460.918748][ T5893] usb 2-1: config 0 descriptor??
[  461.066574][ T5893] snd-usb-audio 2-1:0.0: probe with driver snd-usb-audio failed with error -22
[  461.530174][ T5834] BTRFS info (device loop2): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  461.671499][T10019] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1122'.
[  462.635777][T10043] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1127'.
[  463.632412][T10058] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  464.055707][T10070] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1139'.
[  464.088070][T10070] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1139'.
[  466.121092][   T10] usb 2-1: USB disconnect, device number 19
[  466.895785][T10062] loop0: detected capacity change from 0 to 32768
[  466.949115][T10088] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  467.355236][T10075] loop2: detected capacity change from 0 to 32768
[  467.368578][T10102] loop4: detected capacity change from 0 to 16
[  467.393875][T10075] BTRFS: device fsid 16bad5ef-498e-43ba-8a30-25ddcaa179c7 devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.1140 (10075)
[  467.417540][T10102] erofs (device loop4): mounted with root inode @ nid 36.
[  467.509058][T10075] BTRFS info (device loop2): first mount of filesystem 16bad5ef-498e-43ba-8a30-25ddcaa179c7
[  467.571224][T10075] BTRFS info (device loop2): using sha256 (sha256-x86_64) checksum algorithm
[  467.596565][T10075] BTRFS info (device loop2): using free-space-tree
[  467.653654][ T5925] usb 1-1: new full-speed USB device number 16 using dummy_hcd
[  467.872252][ T5834] BTRFS info (device loop2): last unmount of filesystem 16bad5ef-498e-43ba-8a30-25ddcaa179c7
[  468.038780][ T5925] usb 1-1: unable to get BOS descriptor or descriptor too short
[  468.714392][ T5925] usb 1-1: no configurations
[  468.719057][ T5925] usb 1-1: can't read configurations, error -22
[  469.097578][T10136] loop4: detected capacity change from 0 to 1024
[  469.110549][T10136] EXT4-fs: Ignoring removed orlov option
[  469.116436][T10136] EXT4-fs: Ignoring removed nomblk_io_submit option
[  469.140701][T10136] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  469.737984][ T5841] usb 3-1: new high-speed USB device number 16 using dummy_hcd
[  470.061134][T10152] nvme_fabrics: missing parameter 'transport=%s'
[  470.067858][T10152] nvme_fabrics: missing parameter 'nqn=%s'
[  470.282714][ T5837] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  470.358358][ T5841] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  470.525256][ T5841] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  470.546883][ T5841] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  470.556712][ T5841] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  470.574575][ T5841] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  471.000955][ T5841] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  471.029261][ T5841] usb 3-1: config 0 descriptor??
[  471.119668][T10162] loop4: detected capacity change from 0 to 1764
[  471.485681][ T5841] plantronics 0003:047F:FFFF.0006: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  472.255869][T10189] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1176'.
[  472.334368][  T978] usb 3-1: USB disconnect, device number 16
[  472.383908][T10193] random: crng reseeded on system resumption
[  472.703073][  T978] Process accounting resumed
[  472.712853][T10211] loop0: detected capacity change from 0 to 65
[  472.794744][T10211] BFS-fs: bfs_fill_super(): NOTE: filesystem loop0 was created with 512 inodes, the real maximum is 511, mounting anyway
[  473.348606][T10217] loop4: detected capacity change from 0 to 128
[  473.546120][T10217] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[  473.634705][T10217] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  473.658225][T10224] loop2: detected capacity change from 0 to 65
[  473.785443][T10224] BFS-fs: bfs_fill_super(): NOTE: filesystem loop2 was created with 512 inodes, the real maximum is 511, mounting anyway
[  473.874276][ T5841] usb 2-1: new high-speed USB device number 20 using dummy_hcd
[  474.069573][T10230] loop0: detected capacity change from 0 to 2048
[  474.662204][T10230] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  474.773556][ T5841] usb 2-1: Using ep0 maxpacket: 8
[  474.788395][ T5841] usb 2-1: unable to get BOS descriptor or descriptor too short
[  474.897687][ T5841] usb 2-1: config 4 interface 0 has no altsetting 0
[  475.128940][ T5841] usb 2-1: string descriptor 0 read error: -22
[  475.144201][ T5841] usb 2-1: New USB device found, idVendor=058f, idProduct=6610, bcdDevice=48.05
[  475.188314][ T5841] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  475.265889][ T5841] usb 2-1: dvb_usb_v2: found a 'Sigmatek DVB-110' in warm state
[  475.687190][T10219] netlink: 'syz.1.1190': attribute type 10 has an invalid length.
[  475.698930][ T5841] usb 2-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  475.716114][ T5841] dvbdev: DVB: registering new adapter (Sigmatek DVB-110)
[  475.727716][ T5841] usb 2-1: media controller created
[  475.733535][T10219] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1190'.
[  475.775331][T10245] loop2: detected capacity change from 0 to 1024
[  475.788013][ T5841] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  475.797177][T10219] batman_adv: batadv0: Adding interface: vlan1
[  475.811267][T10219] batman_adv: batadv0: The MTU of interface vlan1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  475.837589][T10249] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1199'.
[  475.852821][T10219] batman_adv: batadv0: Interface activated: vlan1
[  476.474106][T10219] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  476.498835][T10219] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  477.565185][ T5841] zl10353_read_register: readreg error (reg=127, ret==0)
[  477.572792][T10219] usb 2-1: dvb_usb_au6610: wlen=0, aborting
[  478.228951][ T5841] usb 2-1: USB disconnect, device number 20
[  478.250980][  T978] usb 1-1: new high-speed USB device number 18 using dummy_hcd
[  478.454669][  T978] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  478.488571][  T978] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  478.527823][  T978] usb 1-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  478.551198][  T978] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  479.143958][  T978] usb 1-1: SerialNumber: syz
[  479.322919][T10278] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  479.368314][  T978] usb 1-1: 0:2 : does not exist
[  479.382931][  T978] usb 1-1: unit 5: unexpected type 0x0a
[  479.437938][  T978] usb 1-1: USB disconnect, device number 18
[  480.701259][T10293] netlink: 80 bytes leftover after parsing attributes in process `syz.1.1214'.
[  480.705186][T10274] loop4: detected capacity change from 0 to 32768
[  481.204358][T10274] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  481.854775][T10274] workqueue: Failed to create a rescuer kthread for wq "xfs-log/loop4": -EINTR
[  481.859909][T10274] XFS (loop4): log mount failed
[  482.859650][T10320] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  483.081095][ T5841] usb 1-1: new high-speed USB device number 19 using dummy_hcd
[  483.261096][ T5841] usb 1-1: Using ep0 maxpacket: 32
[  483.341864][ T5841] usb 1-1: New USB device found, idVendor=0b89, idProduct=0007, bcdDevice=ef.64
[  483.438679][ T5841] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  483.615616][ T5841] usb 1-1: config 0 descriptor??
[  483.713947][ T5841] as10x_usb: device has been detected
[  483.720133][ T5841] dvbdev: DVB: registering new adapter (nBox DVB-T Dongle)
[  483.772672][ T5841] usb 1-1: DVB: registering adapter 1 frontend 0 (nBox DVB-T Dongle)...
[  483.829515][T10316] loop2: detected capacity change from 0 to 32768
[  483.842520][ T5841] as10x_usb: error during firmware upload part1
[  483.855811][T10316] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.1220 (10316)
[  483.871834][ T5841] Registered device nBox DVB-T Dongle
[  483.876475][ T5841] usb 1-1: USB disconnect, device number 19
[  483.896031][T10316] BTRFS info (device loop2): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  483.920305][ T5841] Unregistered device nBox DVB-T Dongle
[  483.920450][T10316] BTRFS info (device loop2): using sha256 (sha256-x86_64) checksum algorithm
[  483.938446][ T5841] as10x_usb: device has been disconnected
[  483.986061][T10316] BTRFS info (device loop2): using free-space-tree
[  484.096599][T10316] BTRFS info (device loop2): checking UUID tree
[  484.262692][T10316] BTRFS info (device loop2): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  487.381336][T10395] loop2: detected capacity change from 0 to 8
[  489.426010][T10423] netlink: 104 bytes leftover after parsing attributes in process `syz.0.1254'.
[  490.164948][T10409] loop4: detected capacity change from 0 to 40427
[  490.205058][T10409] F2FS-fs (loop4): Invalid segment/section count (24 != 1 * 1)
[  490.231789][T10409] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  490.263424][T10434] rdma_op ffff888021fe31f0 conn xmit_rdma 0000000000000000
[  490.279017][T10409] F2FS-fs (loop4): invalid crc value
[  490.507328][T10409] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  490.530525][T10409] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  490.703197][ T5837] syz-executor: attempt to access beyond end of device
[  490.703197][ T5837] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  490.763670][ T5837] CPU: 1 UID: 0 PID: 5837 Comm: syz-executor Not tainted 6.16.0-rc1-next-20250613-syzkaller #0 PREEMPT(full) 
[  490.763700][ T5837] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  490.763717][ T5837] Call Trace:
[  490.763725][ T5837]  <TASK>
[  490.763735][ T5837]  dump_stack_lvl+0x189/0x250
[  490.763775][ T5837]  ? __pfx_dump_stack_lvl+0x10/0x10
[  490.763803][ T5837]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  490.763828][ T5837]  ? __pfx_queue_work_on+0x10/0x10
[  490.763848][ T5837]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  490.763872][ T5837]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  490.763898][ T5837]  ? f2fs_hw_is_readonly+0x39b/0x470
[  490.763927][ T5837]  f2fs_handle_critical_error+0x37c/0x540
[  490.763957][ T5837]  f2fs_write_end_io+0x495/0x810
[  490.763983][ T5837]  ? blkg_put+0x22/0x240
[  490.764030][ T5837]  __submit_merged_bio+0x27a/0x6a0
[  490.764058][ T5837]  __submit_merged_write_cond+0x255/0x530
[  490.764086][ T5837]  f2fs_write_data_pages+0x261d/0x3000
[  490.764155][ T5837]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  490.764221][ T5837]  ? __mod_zone_page_state+0xd7/0x140
[  490.764248][ T5837]  ? folios_put_refs+0x560/0x640
[  490.764285][ T5837]  ? __lock_acquire+0xab9/0xd20
[  490.764317][ T5837]  ? do_raw_spin_lock+0x121/0x290
[  490.764350][ T5837]  ? do_raw_spin_unlock+0x122/0x240
[  490.764371][ T5837]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  490.764396][ T5837]  do_writepages+0x32b/0x550
[  490.764424][ T5837]  ? do_raw_spin_unlock+0x122/0x240
[  490.764450][ T5837]  filemap_fdatawrite+0x199/0x240
[  490.764469][ T5837]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  490.764532][ T5837]  ? do_raw_spin_unlock+0x122/0x240
[  490.764557][ T5837]  f2fs_sync_dirty_inodes+0x31f/0x830
[  490.764598][ T5837]  f2fs_write_checkpoint+0x95a/0x1df0
[  490.764646][ T5837]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  490.764709][ T5837]  ? try_to_wake_up+0x7e5/0x1290
[  490.764736][ T5837]  ? kill_f2fs_super+0x298/0x6c0
[  490.764766][ T5837]  kill_f2fs_super+0x2c3/0x6c0
[  490.764798][ T5837]  ? __pfx_kill_f2fs_super+0x10/0x10
[  490.764822][ T5837]  ? radix_tree_delete_item+0x2b6/0x400
[  490.764853][ T5837]  ? shrinker_free+0x2ce/0x3e0
[  490.764880][ T5837]  deactivate_locked_super+0xb9/0x130
[  490.764907][ T5837]  cleanup_mnt+0x425/0x4c0
[  490.764932][ T5837]  ? lockdep_hardirqs_on+0x9c/0x150
[  490.764959][ T5837]  task_work_run+0x1d4/0x260
[  490.764991][ T5837]  ? __pfx_task_work_run+0x10/0x10
[  490.765011][ T5837]  ? __x64_sys_umount+0x122/0x160
[  490.765033][ T5837]  ? exit_to_user_mode_loop+0x40/0x110
[  490.765063][ T5837]  exit_to_user_mode_loop+0xec/0x110
[  490.765089][ T5837]  do_syscall_64+0x2bd/0x3b0
[  490.765114][ T5837]  ? lockdep_hardirqs_on+0x9c/0x150
[  490.765149][ T5837]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  490.765168][ T5837]  ? clear_bhb_loop+0x60/0xb0
[  490.765190][ T5837]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  490.765212][ T5837] RIP: 0033:0x7f99c078fc57
[  490.765229][ T5837] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  490.765244][ T5837] RSP: 002b:00007ffe560c83e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  490.765264][ T5837] RAX: 0000000000000000 RBX: 00007f99c0810925 RCX: 00007f99c078fc57
[  490.765277][ T5837] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe560c84a0
[  490.765289][ T5837] RBP: 00007ffe560c84a0 R08: 0000000000000000 R09: 0000000000000000
[  490.765300][ T5837] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe560c9530
[  490.765313][ T5837] R13: 00007f99c0810925 R14: 0000000000077c61 R15: 00007ffe560c9570
[  490.765343][ T5837]  </TASK>
[  490.765351][ T5837] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  491.420265][T10427] loop2: detected capacity change from 0 to 40427
[  491.489957][T10453] IPv6: Can't replace route, no match found
[  491.496531][T10427] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  491.537825][T10427] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  492.604172][T10427] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  492.621023][T10427] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  492.777340][T10468] loop0: detected capacity change from 0 to 4096
[  492.888620][T10468] ntfs3(loop0): Failed to initialize $Extend/$ObjId.
[  494.160406][ T5834] F2FS-fs (loop2): invalid namelen(0), ino:0, run fsck to fix.
[  494.261207][ T5834] F2FS-fs (loop2): invalid namelen(0), ino:0, run fsck to fix.
[  494.301441][T10483] ntfs3(loop0): failed to convert "0000" to maccroatian
[  494.308540][ T5834] F2FS-fs (loop2): invalid namelen(0), ino:0, run fsck to fix.
[  494.355778][ T5834] F2FS-fs (loop2): invalid namelen(0), ino:0, run fsck to fix.
[  494.425077][ T5834] F2FS-fs (loop2): invalid namelen(0), ino:0, run fsck to fix.
[  494.432771][ T5834] F2FS-fs (loop2): invalid namelen(0), ino:0, run fsck to fix.
[  494.440367][ T5834] F2FS-fs (loop2): invalid namelen(0), ino:0, run fsck to fix.
[  497.242998][ T5841] usb 1-1: new high-speed USB device number 20 using dummy_hcd
[  497.442568][ T5841] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  497.508880][ T5841] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  497.572324][ T5841] usb 1-1: New USB device found, idVendor=0853, idProduct=0146, bcdDevice= 0.00
[  497.608961][ T5841] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  497.635271][T10503] loop4: detected capacity change from 0 to 2048
[  497.638430][ T5841] usb 1-1: config 0 descriptor??
[  497.665354][T10503] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  498.947837][ T5925] usb 3-1: new high-speed USB device number 17 using dummy_hcd
[  498.999536][T10495] tipc: Started in network mode
[  499.301398][T10495] tipc: Node identity , cluster identity 4711
[  499.562894][ T5841] usbhid 1-1:0.0: can't add hid device: -71
[  499.568943][ T5841] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[  499.579296][ T5841] usb 1-1: USB disconnect, device number 20
[  499.663299][ T5925] usb 3-1: Using ep0 maxpacket: 16
[  499.703311][ T5925] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  499.752749][ T5925] usb 3-1: New USB device found, idVendor=0458, idProduct=5016, bcdDevice= 0.00
[  499.785722][ T5925] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  499.808543][ T5925] usb 3-1: config 0 descriptor??
[  500.019928][T10530] loop4: detected capacity change from 0 to 256
[  500.056379][T10530] FAT-fs (loop4): Directory bread(block 64) failed
[  500.066615][T10530] FAT-fs (loop4): Directory bread(block 65) failed
[  500.073384][T10530] FAT-fs (loop4): Directory bread(block 66) failed
[  500.080368][T10530] FAT-fs (loop4): Directory bread(block 67) failed
[  500.088231][T10530] FAT-fs (loop4): Directory bread(block 68) failed
[  500.095087][T10530] FAT-fs (loop4): Directory bread(block 69) failed
[  500.102121][T10530] FAT-fs (loop4): Directory bread(block 70) failed
[  500.109466][T10530] FAT-fs (loop4): Directory bread(block 71) failed
[  500.116722][T10530] FAT-fs (loop4): Directory bread(block 72) failed
[  500.123796][T10530] FAT-fs (loop4): Directory bread(block 73) failed
[  500.251917][ T5925] kye 0003:0458:5016.0007: control desc unexpectedly large
[  500.277757][ T5925] input: HID 0458:5016 as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:0458:5016.0007/input/input27
[  500.989460][ T5925] input: HID 0458:5016 as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:0458:5016.0007/input/input28
[  501.069131][ T5925] kye 0003:0458:5016.0007: input,hiddev0,hidraw0: USB HID v0.09 Device [HID 0458:5016] on usb-dummy_hcd.2-1/input0
[  501.256292][ T5925] usb 3-1: USB disconnect, device number 17
[  502.019951][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  502.036429][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  503.709536][T10565] loop0: detected capacity change from 0 to 2048
[  503.913948][T10565] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  505.878188][ T5959] usb 2-1: new high-speed USB device number 21 using dummy_hcd
[  506.053756][ T5959] usb 2-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  506.258641][ T5959] usb 2-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  506.291284][ T5832] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  507.138153][ T5959] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 66
[  507.154543][ T5959] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  507.165699][ T5959] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  507.181385][ T5959] usb 2-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  507.190690][ T5959] usb 2-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  507.198805][ T5959] usb 2-1: Product: syz
[  507.205238][ T5959] usb 2-1: Manufacturer: syz
[  507.278675][ T5959] cdc_wdm 2-1:1.0: skipping garbage
[  507.284037][ T5959] cdc_wdm 2-1:1.0: skipping garbage
[  507.352752][ T5959] cdc_wdm 2-1:1.0: cdc-wdm0: USB WDM device
[  507.394638][ T5959] cdc_wdm 2-1:1.0: Unknown control protocol
[  507.513228][   T72] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  507.776227][   T72] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  508.042703][   T72] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  508.250023][   T72] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  508.329905][T10613] loop2: detected capacity change from 0 to 512
[  508.356810][T10613] fscrypt (loop2, inode 2): Error -61 getting encryption context
[  508.380828][T10613] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -61
[  508.390980][T10613] EXT4-fs error (device loop2): ext4_orphan_get:1393: inode #13: comm syz.2.1318: iget: bad i_size value: 12154757448730
[  508.503962][T10613] EXT4-fs error (device loop2): ext4_orphan_get:1398: comm syz.2.1318: couldn't read orphan inode 13 (err -117)
[  508.547571][   T72] bridge_slave_1: left allmulticast mode
[  508.568566][T10613] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  508.592438][   T72] bridge_slave_1: left promiscuous mode
[  508.615050][   T72] bridge0: port 2(bridge_slave_1) entered disabled state
[  508.662167][   T72] bridge_slave_0: left allmulticast mode
[  508.679342][   T72] bridge_slave_0: left promiscuous mode
[  508.679903][ T5846] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  508.685574][   T72] bridge0: port 1(bridge_slave_0) entered disabled state
[  508.898596][ T5846] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  508.909781][ T5846] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  508.925374][ T5846] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  508.937292][ T5846] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  509.079892][ T5840] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  509.094047][ T5840] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  509.106422][ T5840] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  509.129830][ T5840] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  509.158330][ T5840] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  509.271976][  T978] usb 2-1: USB disconnect, device number 21
[  509.625666][T10636] loop4: detected capacity change from 0 to 47
[  509.675561][T10636] MINIX-fs: bad superblock or unable to read bitmaps
[  510.723010][T10615] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters
[  511.484377][ T5840] Bluetooth: hci0: command tx timeout
[  511.704182][   T72] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  511.754656][   T72] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  511.803513][   T72] bond0 (unregistering): Released all slaves
[  513.187926][T10613] bridge0: port 2(bridge_slave_1) entered disabled state
[  513.197031][T10613] bridge0: port 1(bridge_slave_0) entered disabled state
[  513.404680][T10613] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  513.418537][T10668] netlink: 256 bytes leftover after parsing attributes in process `syz.4.1335'.
[  513.424217][T10613] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  513.437318][T10613] batadv_slave_1: left promiscuous mode
[  513.722165][ T5840] Bluetooth: hci0: command tx timeout
[  514.241219][T10613] veth0_vlan: left allmulticast mode
[  514.335390][T10613] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  514.351799][T10613] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  514.381446][T10613] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  514.391233][T10613] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  514.455413][T10613] bridge1: left promiscuous mode
[  514.469771][T10613] bridge1: left allmulticast mode
[  514.485105][T10613] erspan0: left allmulticast mode
[  514.490739][T10613] macvtap1: left promiscuous mode
[  514.497724][T10613] macvtap1: left allmulticast mode
[  514.562071][ T5834] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  515.633521][   T30] kauditd_printk_skb: 61 callbacks suppressed
[  515.633543][   T30] audit: type=1800 audit(1749986010.945:1883): pid=10681 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1340" name="bus" dev="overlay" ino=1256 res=0 errno=0
[  515.976593][ T5840] Bluetooth: hci0: command tx timeout
[  517.039202][T10697] Bluetooth: received HCILL_WAKE_UP_IND in state 2
[  517.157970][ T1338] Bluetooth: hci5: Frame reassembly failed (-84)
[  518.230410][ T5846] Bluetooth: hci0: command tx timeout
[  518.422374][T10619] chnl_net:caif_netlink_parms(): no params data found
[  518.422961][T10707] overlayfs: failed to clone upperpath
[  518.574716][   T72] hsr_slave_0: left promiscuous mode
[  518.582790][   T72] hsr_slave_1: left promiscuous mode
[  518.588960][   T72] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  518.607576][   T72] batman_adv: batadv0: Removing interface: batadv_slave_0
[  518.617585][   T72] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  518.626358][   T72] batman_adv: batadv0: Removing interface: batadv_slave_1
[  518.703033][   T72] veth1_macvtap: left promiscuous mode
[  518.710730][   T72] veth0_macvtap: left promiscuous mode
[  518.731016][   T72] veth1_vlan: left promiscuous mode
[  518.736552][   T72] veth0_vlan: left promiscuous mode
[  519.356201][ T5840] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  520.772483][T10729] loop4: detected capacity change from 0 to 64
[  521.798230][T10735] overlayfs: failed to clone upperpath
[  521.862043][T10738] loop2: detected capacity change from 0 to 1024
[  521.958246][T10741] hfsplus: extend alloc file! (8192,512,17039360)
[  522.443090][T10743] loop4: detected capacity change from 0 to 2048
[  522.495166][T10743] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  524.390469][   T72] team0 (unregistering): Port device team_slave_1 removed
[  524.494499][   T72] team0 (unregistering): Port device team_slave_0 removed
[  524.681334][T10773] netlink: 'syz.3.1371': attribute type 4 has an invalid length.
[  527.357163][ T5837] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  528.706710][T10619] bridge0: port 1(bridge_slave_0) entered blocking state
[  528.728469][T10619] bridge0: port 1(bridge_slave_0) entered disabled state
[  528.746714][T10619] bridge_slave_0: entered allmulticast mode
[  528.768596][T10619] bridge_slave_0: entered promiscuous mode
[  529.419610][T10807] netlink: 'syz.4.1382': attribute type 1 has an invalid length.
[  529.439091][T10619] bridge0: port 2(bridge_slave_1) entered blocking state
[  529.740383][T10619] bridge0: port 2(bridge_slave_1) entered disabled state
[  529.767732][T10619] bridge_slave_1: entered allmulticast mode
[  529.794082][T10619] bridge_slave_1: entered promiscuous mode
[  530.044546][T10815] loop2: detected capacity change from 0 to 4096
[  530.072741][T10815] ntfs3(loop2): Different NTFS sector size (1024) and media sector size (512).
[  530.091282][T10619] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  530.148922][T10619] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  530.202292][T10819] loop4: detected capacity change from 0 to 2048
[  530.275188][T10619] team0: Port device team_slave_0 added
[  530.286948][T10819] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  530.349739][T10619] team0: Port device team_slave_1 added
[  531.222879][T10619] batman_adv: batadv0: Adding interface: batadv_slave_0
[  531.229860][T10619] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  531.483352][T10822] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  531.846256][T10619] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  531.859485][T10619] batman_adv: batadv0: Adding interface: batadv_slave_1
[  531.866456][T10619] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  531.904607][T10619] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  531.947816][T10822] EXT4-fs (loop4): Remounting filesystem read-only
[  531.960956][   T72] IPVS: stop unused estimator thread 0...
[  532.026831][ T5837] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  532.072665][T10834] loop2: detected capacity change from 0 to 1024
[  532.087111][T10834] EXT4-fs: Ignoring removed orlov option
[  532.191538][T10619] hsr_slave_0: entered promiscuous mode
[  532.255989][T10619] hsr_slave_1: entered promiscuous mode
[  532.279533][T10834] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  532.685119][T10834] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  534.402526][T10862] loop2: detected capacity change from 0 to 2048
[  534.954048][T10862] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  535.584458][T10619] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  535.841345][T10619] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  536.274158][T10619] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  536.367335][T10619] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  536.405829][T10875] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1401'.
[  537.927293][T10619] 8021q: adding VLAN 0 to HW filter on device bond0
[  537.952756][T10619] 8021q: adding VLAN 0 to HW filter on device team0
[  537.980564][T10891] loop4: detected capacity change from 0 to 1024
[  538.041444][ T1144] bridge0: port 1(bridge_slave_0) entered blocking state
[  538.048620][ T1144] bridge0: port 1(bridge_slave_0) entered forwarding state
[  538.162092][ T1144] bridge0: port 2(bridge_slave_1) entered blocking state
[  538.169353][ T1144] bridge0: port 2(bridge_slave_1) entered forwarding state
[  538.430277][ T1338] hfsplus: b-tree write err: -5, ino 4
[  539.723543][T10619] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  540.751474][T10908] Bluetooth: MGMT ver 1.23
[  541.014422][T10619] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  541.558187][T10914] loop2: detected capacity change from 0 to 32768
[  541.706761][T10914] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.1410 (10914)
[  541.749645][T10914] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  541.760011][T10914] BTRFS info (device loop2): using crc32c (crc32c-x86_64) checksum algorithm
[  541.768944][T10914] BTRFS info (device loop2): using free-space-tree
[  542.949865][   T30] audit: type=1326 audit(1749986036.152:1884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10912 comm="syz.2.1410" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fcf30f8e929 code=0x0
[  544.452073][T10619] 8021q: adding VLAN 0 to HW filter on device batadv0
[  544.556038][ T5834] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  544.578569][T10956] bridge0: port 3(netdevsim2) entered blocking state
[  544.585384][T10956] bridge0: port 3(netdevsim2) entered disabled state
[  544.592324][T10956] netdevsim netdevsim3 netdevsim2: entered allmulticast mode
[  544.601309][T10956] netdevsim netdevsim3 netdevsim2: entered promiscuous mode
[  544.609078][T10956] bridge0: port 3(netdevsim2) entered blocking state
[  544.615856][T10956] bridge0: port 3(netdevsim2) entered forwarding state
[  544.628560][T10956] 9pnet_fd: Insufficient options for proto=fd
[  547.132934][T10619] veth0_vlan: entered promiscuous mode
[  547.160681][T10619] veth1_vlan: entered promiscuous mode
[  547.219066][T10619] veth0_macvtap: entered promiscuous mode
[  547.258046][T10619] veth1_macvtap: entered promiscuous mode
[  547.306516][T10992] loop4: detected capacity change from 0 to 512
[  547.327624][T10619] batman_adv: batadv0: Interface activated: batadv_slave_0
[  547.357397][T10619] batman_adv: batadv0: Interface activated: batadv_slave_1
[  547.409732][T10992] UDF-fs: warning (device loop4): udf_load_vrs: No VRS found
[  547.432081][T10992] UDF-fs: Scanning with blocksize 512 failed
[  547.472836][T10992] UDF-fs: warning (device loop4): udf_load_vrs: No VRS found
[  547.480268][T10992] UDF-fs: Scanning with blocksize 1024 failed
[  547.605790][T10992] UDF-fs: warning (device loop4): udf_load_vrs: No VRS found
[  547.617110][T10992] UDF-fs: Scanning with blocksize 2048 failed
[  547.624198][T10992] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[  547.637064][T10992] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  547.649703][T10619] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  547.663598][T10619] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  548.143212][T10619] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  548.166994][T10619] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  548.834550][T11009] IPv6: Can't replace route, no match found
[  548.925474][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  548.947781][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  549.008759][T11012] loop2: detected capacity change from 0 to 2048
[  549.028340][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  549.058141][T11018] loop4: detected capacity change from 0 to 2048
[  549.060573][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  549.094811][T11012] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024)
[  549.108255][T11018] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  549.138963][T11019] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  552.220678][T11050] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  552.233446][T11050] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  552.448243][T11051] IPv6: Can't replace route, no match found
[  555.841284][T11084] IPv6: Can't replace route, no match found
[  555.975767][T11086] overlayfs: failed to resolve './file0': -2
[  560.344121][T11122] IPv6: Can't replace route, no match found
[  561.560565][T11132] loop4: detected capacity change from 0 to 256
[  562.001104][T11131] FAT-fs (loop4): error, corrupted directory (invalid entries)
[  562.008997][T11131] FAT-fs (loop4): Filesystem has been set read-only
[  562.144148][T11137] loop5: detected capacity change from 0 to 2048
[  562.208587][T11138] sd 0:0:1:0: device reset
[  562.226089][T11137] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  563.986864][ T5959] IPVS: starting estimator thread 0...
[  564.090620][T11154] IPVS: using max 40 ests per chain, 96000 per kthread
[  564.233533][T10619] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  565.247362][T11162] overlayfs: failed to resolve './file0': -2
[  565.282801][T11165] loop5: detected capacity change from 0 to 65
[  565.315514][T11165] BFS-fs: bfs_fill_super(): NOTE: filesystem loop5 was created with 512 inodes, the real maximum is 511, mounting anyway
[  566.346523][T11179] loop5: detected capacity change from 0 to 256
[  566.353880][T11179] exfat: Deprecated parameter 'namecase'
[  566.381281][T11181] syz.2.1493: attempt to access beyond end of device
[  566.381281][T11181] loop2: rw=6144, sector=128, nr_sectors = 8 limit=0
[  566.409453][T11181] gfs2: error -5 reading superblock
[  566.438309][T11179] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x36bd6320, utbl_chksum : 0xe619d30d)
[  566.944899][T11155] loop4: detected capacity change from 0 to 40427
[  567.693012][T11189] loop5: detected capacity change from 0 to 2048
[  567.730800][T11189] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  567.985433][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  567.992023][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  568.392910][T11192] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  568.637669][T11192] EXT4-fs (loop5): Remounting filesystem read-only
[  568.914218][T10619] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  569.396812][T11202] loop5: detected capacity change from 0 to 128
[  569.411904][T11187] loop2: detected capacity change from 0 to 32768
[  569.419083][T11187] XFS: attr2 mount option is deprecated.
[  570.112472][T11202] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  570.145309][T11213] overlayfs: failed to resolve './file0': -2
[  570.152564][T11187] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  570.163780][T11202] ext4 filesystem being mounted at /12/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  570.666074][T11187] XFS (loop2): Ending clean mount
[  570.684401][   T30] audit: type=1326 audit(1749986061.748:1885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11201 comm="syz.5.1499" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f6b8eb8e929 code=0x0
[  570.759756][T11187] XFS (loop2): Quotacheck needed: Please wait.
[  570.912102][T11187] XFS (loop2): Quotacheck: Done.
[  571.018610][T10619] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  571.042819][ T5834] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  572.498006][T11238] loop5: detected capacity change from 0 to 32768
[  572.796832][T11238] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.1506 (11238)
[  572.837161][T11238] BTRFS info (device loop5): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  572.850948][T11238] BTRFS info (device loop5): using crc32c (crc32c-x86_64) checksum algorithm
[  572.860639][T11238] BTRFS info (device loop5): using free-space-tree
[  572.968697][T11245] overlayfs: failed to resolve './file0': -2
[  573.040889][T11254] loop2: detected capacity change from 0 to 1024
[  573.098342][T11254] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  573.138029][T11266] loop4: detected capacity change from 0 to 256
[  573.366284][   T30] audit: type=1326 audit(1749986064.230:1886): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11237 comm="syz.5.1506" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6b8eb8e929 code=0x0
[  574.199903][   T30] audit: type=1800 audit(1749986064.230:1887): pid=11266 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1512" name="file1" dev="loop4" ino=1048640 res=0 errno=0
[  574.736946][ T5834] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  574.779134][T10619] BTRFS info (device loop5): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  575.098854][T11286] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1520'.
[  575.308421][T11289] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1522'.
[  575.368273][T11295] loop4: detected capacity change from 0 to 16
[  575.377441][T11295] erofs (device loop4): mounted with root inode @ nid 36.
[  575.511052][T11302] loop2: detected capacity change from 0 to 65
[  575.550988][T11302] BFS-fs: bfs_fill_super(): NOTE: filesystem loop2 was created with 512 inodes, the real maximum is 511, mounting anyway
[  575.597934][T11298] vlan2: entered allmulticast mode
[  575.603135][T11298] bond3: entered allmulticast mode
[  575.728052][T11308] loop5: detected capacity change from 0 to 1024
[  576.107589][T11311] loop4: detected capacity change from 0 to 32768
[  576.118231][T11311] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.1529 (11311)
[  576.222067][T11311] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  576.232528][T11311] BTRFS info (device loop4): using crc32c (crc32c-x86_64) checksum algorithm
[  576.241486][T11311] BTRFS info (device loop4): using free-space-tree
[  576.267011][T11308] hfsplus: extend alloc file! (8192,512,17039360)
[  577.383487][   T30] audit: type=1326 audit(1749986067.932:1888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11310 comm="syz.4.1529" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f99c078e929 code=0x0
[  577.443071][T11335] loop5: detected capacity change from 0 to 4096
[  577.450811][T11335] ntfs3(loop5): Different NTFS sector size (2048) and media sector size (512).
[  577.474549][T11335] ntfs3(loop5): Failed to initialize $Extend/$ObjId.
[  578.549428][ T5837] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  578.931352][T11352] loop2: detected capacity change from 0 to 1024
[  579.204594][T11352] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  579.624079][T11359] netlink: 80 bytes leftover after parsing attributes in process `syz.2.1537'.
[  580.139757][ T5834] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  580.155857][T11363] loop4: detected capacity change from 0 to 16
[  580.222915][T11363] erofs (device loop4): mounted with root inode @ nid 36.
[  581.056610][T11369] loop2: detected capacity change from 0 to 32768
[  581.104567][T11369] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  581.112792][T11369] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  581.173393][T11369] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms
[  581.188920][ T5841] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  581.196139][ T5841] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  581.239343][T11376] loop5: detected capacity change from 0 to 1024
[  581.372818][T11376] hfsplus: extend alloc file! (8192,512,17039360)
[  581.423589][T11380] cgroup2: Unknown parameter 'memor'
[  581.435465][ T5841] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 220ms
[  581.479574][ T5841] gfs2: fsid=syz:syz.0: jid=0: Done
[  581.501352][T11369] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  581.803743][T11369] gfs2: fsid=syz:syz.0: found 1 quota changes
[  583.854104][T11414] cgroup2: Unknown parameter 'memor'
[  586.037494][T11405] loop5: detected capacity change from 0 to 32768
[  586.178605][T11405] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  586.223075][T11426] syz.1.1561 (11426): drop_caches: 2
[  586.242791][T11405] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  586.520676][T11405] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 21 (type: exp=5, found=32), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 499
[  586.604286][T11405] gfs2: fsid=syz:syz.0: about to withdraw this file system
[  586.657126][T11405] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount.
[  586.875015][T11405] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0
[  586.884595][T11405] gfs2: fsid=syz:syz.0: File system withdrawn
[  587.650838][T11405] CPU: 1 UID: 0 PID: 11405 Comm: syz.5.1554 Not tainted 6.16.0-rc1-next-20250613-syzkaller #0 PREEMPT(full) 
[  587.650879][T11405] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  587.650894][T11405] Call Trace:
[  587.650904][T11405]  <TASK>
[  587.650914][T11405]  dump_stack_lvl+0x189/0x250
[  587.650960][T11405]  ? __pfx_dump_stack_lvl+0x10/0x10
[  587.650994][T11405]  ? __pfx__printk+0x10/0x10
[  587.651018][T11405]  ? kobject_uevent_env+0x36b/0x8c0
[  587.651052][T11405]  gfs2_withdraw+0x111e/0x14f0
[  587.651098][T11405]  ? __pfx_gfs2_withdraw+0x10/0x10
[  587.651123][T11405]  ? __pfx_gfs2_lm+0x10/0x10
[  587.651148][T11405]  ? gfs2_meta_read+0x838/0x980
[  587.651192][T11405]  ? __pfx_gfs2_meta_read+0x10/0x10
[  587.651222][T11405]  ? gfs2_meta_read+0x78a/0x980
[  587.651258][T11405]  gfs2_metatype_check_ii+0x78/0x90
[  587.651289][T11405]  gfs2_meta_buffer+0x25e/0x300
[  587.651331][T11405]  __fillup_metapath+0x153/0x350
[  587.651362][T11405]  __gfs2_iomap_get+0x70f/0x13d0
[  587.651405][T11405]  ? __pfx___gfs2_iomap_get+0x10/0x10
[  587.651428][T11405]  ? rcu_is_watching+0x15/0xb0
[  587.651468][T11405]  gfs2_block_map+0x22c/0x670
[  587.651506][T11405]  ? __pfx_gfs2_block_map+0x10/0x10
[  587.651528][T11405]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[  587.651562][T11405]  ? __pfx_wake_bit_function+0x10/0x10
[  587.651621][T11405]  gfs2_write_alloc_required+0x369/0x620
[  587.651645][T11405]  ? __pfx_inode_set_ctime_to_ts+0x10/0x10
[  587.651680][T11405]  ? __pfx_gfs2_write_alloc_required+0x10/0x10
[  587.651724][T11405]  ? __pfx_wake_up_bit+0x10/0x10
[  587.651754][T11405]  ? gfs2_glock_nq+0x10bb/0x1900
[  587.651791][T11405]  gfs2_jdesc_check+0x21a/0x2f0
[  587.651826][T11405]  init_journal+0xca7/0x2260
[  587.651866][T11405]  ? init_inodes+0xdb/0x320
[  587.651896][T11405]  ? __pfx_init_journal+0x10/0x10
[  587.651922][T11405]  ? vsnprintf+0xe11/0xf00
[  587.651976][T11405]  ? snprintf+0xda/0x120
[  587.652004][T11405]  ? init_inodes+0xdb/0x320
[  587.652029][T11405]  ? __pfx_snprintf+0x10/0x10
[  587.652055][T11405]  ? gfs2_glock_nq_num+0x13d/0x170
[  587.652087][T11405]  init_inodes+0xdb/0x320
[  587.652115][T11405]  gfs2_fill_super+0x1939/0x20e0
[  587.652160][T11405]  ? __pfx_gfs2_fill_super+0x10/0x10
[  587.652196][T11405]  ? init_locking+0xb8/0x210
[  587.652219][T11405]  ? sb_set_blocksize+0x104/0x180
[  587.652245][T11405]  ? setup_bdev_super+0x4c1/0x5b0
[  587.652271][T11405]  get_tree_bdev_flags+0x40b/0x4d0
[  587.652293][T11405]  ? __pfx_gfs2_fill_super+0x10/0x10
[  587.652318][T11405]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  587.652341][T11405]  ? rcu_is_watching+0x15/0xb0
[  587.652380][T11405]  gfs2_get_tree+0x51/0x1e0
[  587.652409][T11405]  vfs_get_tree+0x92/0x2b0
[  587.652434][T11405]  do_new_mount+0x24a/0xa40
[  587.652466][T11405]  __se_sys_mount+0x317/0x410
[  587.652497][T11405]  ? __pfx___se_sys_mount+0x10/0x10
[  587.652528][T11405]  ? do_syscall_64+0xbe/0x3b0
[  587.652557][T11405]  ? __x64_sys_mount+0x20/0xc0
[  587.652584][T11405]  do_syscall_64+0xfa/0x3b0
[  587.652613][T11405]  ? lockdep_hardirqs_on+0x9c/0x150
[  587.652641][T11405]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  587.652664][T11405]  ? clear_bhb_loop+0x60/0xb0
[  587.652690][T11405]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  587.652711][T11405] RIP: 0033:0x7f6b8eb900ca
[  587.652732][T11405] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  587.652751][T11405] RSP: 002b:00007f6b8fa65e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  587.652775][T11405] RAX: ffffffffffffffda RBX: 00007f6b8fa65ef0 RCX: 00007f6b8eb900ca
[  587.652792][T11405] RDX: 0000200000000000 RSI: 0000200000000100 RDI: 00007f6b8fa65eb0
[  587.652807][T11405] RBP: 0000200000000000 R08: 00007f6b8fa65ef0 R09: 0000000000208c1b
[  587.652823][T11405] R10: 0000000000208c1b R11: 0000000000000246 R12: 0000200000000100
[  587.652837][T11405] R13: 00007f6b8fa65eb0 R14: 0000000000012754 R15: 00002000000129c0
[  587.652871][T11405]  </TASK>
[  587.652892][T11405] gfs2: fsid=syz:syz.0: G:  s:SH n:2/13 f:aqob t:SH d:EX/0 a:0 v:0 r:2 m:20 p:3
[  590.049357][T11405] gfs2: fsid=syz:syz.0:  H: s:SH f:eEcH e:0 p:0 [(none)] init_inodes+0xdb/0x320
[  590.059294][T11405] gfs2: fsid=syz:syz.0:  I: n:1/19 t:8 f:0x00 d:0x00000200 s:8388608 p:0
[  590.321653][T11405] gfs2: fsid=syz:syz.0: my journal (0) is bad: -5
[  590.766494][T11444] loop4: detected capacity change from 0 to 16
[  590.775095][T11444] erofs (device loop4): mounted with root inode @ nid 36.
[  591.028990][ T5893] usb 3-1: new high-speed USB device number 18 using dummy_hcd
[  591.390414][T11449] loop4: detected capacity change from 0 to 512
[  591.397320][T11449] EXT4-fs: Ignoring removed mblk_io_submit option
[  591.405783][T11449] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  591.430822][T11449] EXT4-fs error (device loop4): ext4_orphan_get:1393: inode #15: comm syz.4.1567: iget: bad extended attribute block 1
[  591.444692][T11449] EXT4-fs error (device loop4): ext4_orphan_get:1398: comm syz.4.1567: couldn't read orphan inode 15 (err -117)
[  591.494778][T11449] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  591.625632][T11454] EXT4-fs error (device loop4): ext4_lookup:1787: inode #15: comm syz.4.1567: iget: bad extended attribute block 1
[  592.180594][ T5837] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  592.212310][T11456] loop2: detected capacity change from 0 to 1024
[  592.325677][T11458] hfsplus: extend alloc file! (8192,512,17039360)
[  593.454725][T11465] syz.4.1570: attempt to access beyond end of device
[  593.454725][T11465] loop4: rw=6144, sector=128, nr_sectors = 8 limit=0
[  593.468451][T11465] gfs2: error -5 reading superblock
[  594.609036][T11473] loop4: detected capacity change from 0 to 64
[  594.637333][T11473] BFS-fs: bfs_fill_super(): loop4 is unclean, continuing
[  594.861559][T11477] cgroup2: Unknown parameter 'memor'
[  597.156747][ T5959] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  597.362743][ T5959] usb 5-1: Using ep0 maxpacket: 32
[  597.420391][ T5959] usb 5-1: no configurations
[  597.467633][ T5959] usb 5-1: can't read configurations, error -22
[  597.666050][ T5959] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  597.914933][ T5959] usb 5-1: Using ep0 maxpacket: 32
[  597.971594][ T5959] usb 5-1: no configurations
[  598.029336][ T5959] usb 5-1: can't read configurations, error -22
[  598.114631][ T5959] usb usb5-port1: attempt power cycle
[  598.609902][ T5959] usb 5-1: new high-speed USB device number 14 using dummy_hcd
[  598.944201][ T5959] usb 5-1: device not accepting address 14, error -71
[  598.997099][T11505] syz.4.1585: attempt to access beyond end of device
[  598.997099][T11505] loop4: rw=6144, sector=128, nr_sectors = 8 limit=0
[  599.010382][T11505] gfs2: error -5 reading superblock
[  600.738297][T11528] loop4: detected capacity change from 0 to 512
[  601.185647][T11528] EXT4-fs (loop4): 1 orphan inode deleted
[  601.200983][   T13] Quota error (device loop4): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  601.242535][T11528] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  601.262873][   T13] EXT4-fs error (device loop4): ext4_release_dquot:6969: comm kworker/u8:1: Failed to release dquot type 1
[  601.273310][T11528] ext4 filesystem being mounted at /328/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  601.821297][T11528] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  602.068998][ T5837] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  602.841183][T11552] syz.2.1600: attempt to access beyond end of device
[  602.841183][T11552] loop2: rw=6144, sector=128, nr_sectors = 8 limit=0
[  602.854540][T11552] gfs2: error -5 reading superblock
[  604.987805][T11582] netlink: 'syz.1.1610': attribute type 10 has an invalid length.
[  605.006983][T11582] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets).
[  605.944289][T11593] overlayfs: failed to clone upperpath
[  606.623024][T11605] loop5: detected capacity change from 0 to 64
[  606.900809][T11605] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1621'.
[  608.504404][T11629] cgroup2: Unknown parameter 'memory_recursivepr'
[  608.628345][T11634] loop5: detected capacity change from 0 to 65
[  608.650539][T11634] BFS-fs: bfs_fill_super(): NOTE: filesystem loop5 was created with 512 inodes, the real maximum is 511, mounting anyway
[  608.680524][T11636] loop4: detected capacity change from 0 to 256
[  608.687735][T11636] exfat: Unknown parameter ''
[  609.953923][T11649] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1638'.
[  611.228509][T11644] loop4: detected capacity change from 0 to 164
[  611.555779][T11663] cgroup2: Unknown parameter 'memory_recursivepr'
[  611.617282][T11665] loop2: detected capacity change from 0 to 65
[  611.630067][T11665] BFS-fs: bfs_fill_super(): NOTE: filesystem loop2 was created with 512 inodes, the real maximum is 511, mounting anyway
[  614.919237][T11694] loop2: detected capacity change from 0 to 64
[  614.971274][ T5841] IPVS: starting estimator thread 0...
[  614.995174][T11694] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1651'.
[  615.205441][T11702] IPVS: using max 28 ests per chain, 67200 per kthread
[  616.077918][T11706] cgroup2: Unknown parameter 'nsde'
[  616.526893][T11708] loop5: detected capacity change from 0 to 65
[  617.030842][T11708] BFS-fs: bfs_fill_super(): NOTE: filesystem loop5 was created with 512 inodes, the real maximum is 511, mounting anyway
[  618.500109][ T5841] usb 2-1: new high-speed USB device number 22 using dummy_hcd
[  618.509985][T11726] overlayfs: failed to resolve './file0': -2
[  618.749876][ T5841] usb 2-1: Using ep0 maxpacket: 32
[  618.821589][ T5841] usb 2-1: no configurations
[  618.883319][ T5841] usb 2-1: can't read configurations, error -22
[  619.118204][ T5841] usb 2-1: new high-speed USB device number 23 using dummy_hcd
[  619.378792][ T5841] usb 2-1: Using ep0 maxpacket: 32
[  619.433498][ T5841] usb 2-1: no configurations
[  619.499844][ T5841] usb 2-1: can't read configurations, error -22
[  619.582994][ T5841] usb usb2-port1: attempt power cycle
[  620.061606][ T5841] usb 2-1: new high-speed USB device number 24 using dummy_hcd
[  620.193841][ T5841] usb 2-1: Using ep0 maxpacket: 32
[  620.274961][ T5841] usb 2-1: no configurations
[  620.341154][ T5841] usb 2-1: can't read configurations, error -22
[  620.580753][ T5841] usb 2-1: new high-speed USB device number 25 using dummy_hcd
[  620.700096][ T5841] usb 2-1: Using ep0 maxpacket: 32
[  621.136720][ T5841] usb 2-1: device descriptor read/all, error -71
[  621.181573][ T5841] usb usb2-port1: unable to enumerate USB device
[  621.270181][T11741] cgroup2: Unknown parameter 'nsde'
[  621.326569][T11743] loop2: detected capacity change from 0 to 64
[  621.342931][T11743] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1670'.
[  621.743414][T11748] loop5: detected capacity change from 0 to 65
[  621.965374][T11748] BFS-fs: bfs_fill_super(): NOTE: filesystem loop5 was created with 512 inodes, the real maximum is 511, mounting anyway
[  622.235356][T11754] overlayfs: failed to resolve './file0': -2
[  622.257060][T11755] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1673'.
[  622.267854][T11755] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1673'.
[  622.694161][T11765] loop2: detected capacity change from 0 to 64
[  622.718672][   T30] audit: type=1800 audit(1749986109.771:1889): pid=11765 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1678" name="bus" dev="loop2" ino=21 res=0 errno=0
[  623.558527][T11758] loop5: detected capacity change from 0 to 32768
[  623.578414][ T5893] IPVS: starting estimator thread 0...
[  623.606611][T11758] XFS (loop5): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  623.698327][T11758] XFS (loop5): Ending clean mount
[  623.702184][T11774] IPVS: using max 28 ests per chain, 67200 per kthread
[  623.734897][T11758] XFS (loop5): Quotacheck needed: Please wait.
[  623.777025][T11785] cgroup2: Unknown parameter 'nsde'
[  623.808254][T11758] XFS (loop5): Quotacheck: Done.
[  623.979307][T11789] overlayfs: failed to resolve './file1': -2
[  624.018466][T10619] XFS (loop5): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  624.505611][T11799] overlayfs: failed to resolve './file0': -2
[  624.877139][T11795] loop2: detected capacity change from 0 to 32768
[  624.914538][T11795] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  624.922725][T11795] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  624.941397][T11795] gfs2: fsid=syz:syz.0: fatal: invalid metadata block - bh = 21 (type: exp=5, found=32), function = gfs2_meta_buffer, file = fs/gfs2/meta_io.c, line = 499
[  624.957143][T11795] gfs2: fsid=syz:syz.0: about to withdraw this file system
[  624.964526][T11795] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount.
[  624.973327][T11795] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0
[  624.979876][T11795] gfs2: fsid=syz:syz.0: File system withdrawn
[  624.985940][T11795] CPU: 0 UID: 0 PID: 11795 Comm: syz.2.1689 Not tainted 6.16.0-rc1-next-20250613-syzkaller #0 PREEMPT(full) 
[  624.985961][T11795] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  624.985971][T11795] Call Trace:
[  624.985977][T11795]  <TASK>
[  624.985984][T11795]  dump_stack_lvl+0x189/0x250
[  624.986016][T11795]  ? __pfx_dump_stack_lvl+0x10/0x10
[  624.986041][T11795]  ? __pfx__printk+0x10/0x10
[  624.986058][T11795]  ? kobject_uevent_env+0x36b/0x8c0
[  624.986082][T11795]  gfs2_withdraw+0x111e/0x14f0
[  624.986113][T11795]  ? __pfx_gfs2_withdraw+0x10/0x10
[  624.986131][T11795]  ? __pfx_gfs2_lm+0x10/0x10
[  624.986148][T11795]  ? gfs2_meta_read+0x838/0x980
[  624.986176][T11795]  ? __pfx_gfs2_meta_read+0x10/0x10
[  624.986196][T11795]  ? gfs2_meta_read+0x78a/0x980
[  624.986222][T11795]  gfs2_metatype_check_ii+0x78/0x90
[  624.986243][T11795]  gfs2_meta_buffer+0x25e/0x300
[  624.986272][T11795]  __fillup_metapath+0x153/0x350
[  624.986294][T11795]  __gfs2_iomap_get+0x70f/0x13d0
[  624.986324][T11795]  ? __pfx___gfs2_iomap_get+0x10/0x10
[  624.986341][T11795]  ? rcu_is_watching+0x15/0xb0
[  624.986370][T11795]  gfs2_block_map+0x22c/0x670
[  624.986396][T11795]  ? __pfx_gfs2_block_map+0x10/0x10
[  624.986411][T11795]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[  624.986436][T11795]  ? __pfx_wake_bit_function+0x10/0x10
[  624.986476][T11795]  gfs2_write_alloc_required+0x369/0x620
[  624.986492][T11795]  ? __pfx_inode_set_ctime_to_ts+0x10/0x10
[  624.986518][T11795]  ? __pfx_gfs2_write_alloc_required+0x10/0x10
[  624.986548][T11795]  ? __pfx_wake_up_bit+0x10/0x10
[  624.986569][T11795]  ? gfs2_glock_nq+0x10bb/0x1900
[  624.986595][T11795]  gfs2_jdesc_check+0x21a/0x2f0
[  624.986620][T11795]  init_journal+0xca7/0x2260
[  624.986647][T11795]  ? init_inodes+0xdb/0x320
[  624.986669][T11795]  ? __pfx_init_journal+0x10/0x10
[  624.986686][T11795]  ? vsnprintf+0xe11/0xf00
[  624.986712][T11795]  ? snprintf+0xda/0x120
[  624.986731][T11795]  ? init_inodes+0xdb/0x320
[  624.986748][T11795]  ? __pfx_snprintf+0x10/0x10
[  624.986766][T11795]  ? gfs2_glock_nq_num+0x13d/0x170
[  624.986789][T11795]  init_inodes+0xdb/0x320
[  624.986814][T11795]  gfs2_fill_super+0x1939/0x20e0
[  624.986844][T11795]  ? __pfx_gfs2_fill_super+0x10/0x10
[  624.986864][T11795]  ? init_locking+0xb8/0x210
[  624.986881][T11795]  ? sb_set_blocksize+0x104/0x180
[  624.986899][T11795]  ? setup_bdev_super+0x4c1/0x5b0
[  624.986917][T11795]  get_tree_bdev_flags+0x40b/0x4d0
[  624.986932][T11795]  ? __pfx_gfs2_fill_super+0x10/0x10
[  624.986951][T11795]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  624.986966][T11795]  ? rcu_is_watching+0x15/0xb0
[  624.986995][T11795]  gfs2_get_tree+0x51/0x1e0
[  624.987015][T11795]  vfs_get_tree+0x92/0x2b0
[  624.987032][T11795]  do_new_mount+0x24a/0xa40
[  624.987055][T11795]  __se_sys_mount+0x317/0x410
[  624.987078][T11795]  ? __pfx___se_sys_mount+0x10/0x10
[  624.987100][T11795]  ? do_syscall_64+0xbe/0x3b0
[  624.987121][T11795]  ? __x64_sys_mount+0x20/0xc0
[  624.987140][T11795]  do_syscall_64+0xfa/0x3b0
[  624.987161][T11795]  ? lockdep_hardirqs_on+0x9c/0x150
[  624.987182][T11795]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  624.987197][T11795]  ? clear_bhb_loop+0x60/0xb0
[  624.987216][T11795]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  624.987232][T11795] RIP: 0033:0x7fcf30f900ca
[  624.987247][T11795] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  624.987260][T11795] RSP: 002b:00007fcf31e7ee68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  624.987277][T11795] RAX: ffffffffffffffda RBX: 00007fcf31e7eef0 RCX: 00007fcf30f900ca
[  624.987288][T11795] RDX: 0000200000000000 RSI: 0000200000000100 RDI: 00007fcf31e7eeb0
[  624.987300][T11795] RBP: 0000200000000000 R08: 00007fcf31e7eef0 R09: 0000000000208c1b
[  624.987311][T11795] R10: 0000000000208c1b R11: 0000000000000246 R12: 0000200000000100
[  624.987321][T11795] R13: 00007fcf31e7eeb0 R14: 0000000000012754 R15: 00002000000129c0
[  624.987345][T11795]  </TASK>
[  624.987360][T11795] gfs2: fsid=syz:syz.0: G:  s:SH n:2/13 f:aqob t:SH d:EX/0 a:0 v:0 r:2 m:20 p:3
[  625.381758][T11795] gfs2: fsid=syz:syz.0:  H: s:SH f:eEcH e:0 p:0 [(none)] init_inodes+0xdb/0x320
[  625.390842][T11795] gfs2: fsid=syz:syz.0:  I: n:1/19 t:8 f:0x00 d:0x00000200 s:8388608 p:0
[  625.399266][T11795] gfs2: fsid=syz:syz.0: my journal (0) is bad: -5
[  626.177854][T11810] cgroup2: Unknown parameter 'nsdeleg'
[  626.254084][T11812] loop2: detected capacity change from 0 to 512
[  626.344920][T11812] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  626.391143][T11820] overlayfs: failed to resolve './file1': -2
[  626.415665][T11812] ext4 filesystem being mounted at /326/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  626.488973][T11812] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #2: comm syz.2.1695: corrupted inode contents
[  626.533158][T11812] EXT4-fs error (device loop2): ext4_dirty_inode:6459: inode #2: comm syz.2.1695: mark_inode_dirty error
[  626.606195][T11812] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #2: comm syz.2.1695: corrupted inode contents
[  626.700838][T11812] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #2: comm syz.2.1695: mark_inode_dirty error
[  626.943948][ T5834] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  626.966864][T11833] overlayfs: failed to resolve './file0': -2
[  627.017384][T11801] loop4: detected capacity change from 0 to 32768
[  627.032563][T11801] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  627.041801][T11801] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  627.067227][T11801] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms
[  627.088442][ T5841] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  627.099191][ T5841] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  627.224906][   T10] IPVS: starting estimator thread 0...
[  627.302710][ T5841] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 187ms
[  627.319435][ T5841] gfs2: fsid=syz:syz.0: jid=0: Done
[  627.329927][T11843] IPVS: using max 28 ests per chain, 67200 per kthread
[  627.338163][T11801] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  627.978634][T11854] cgroup2: Unknown parameter 'nsdeleg'
[  628.129705][T11801] gfs2: fsid=syz:syz.0: found 1 quota changes
[  628.216356][T11861] syz.5.1711: attempt to access beyond end of device
[  628.216356][T11861] loop5: rw=6144, sector=128, nr_sectors = 8 limit=0
[  628.233349][T11861] gfs2: error -5 reading superblock
[  628.473013][T11864] loop2: detected capacity change from 0 to 16
[  628.538309][T11864] erofs (device loop2): mounted with root inode @ nid 36.
[  628.587768][T11864] overlayfs: failed to resolve './file1': -2
[  628.943897][T11877] xt_hashlimit: size too large, truncated to 1048576
[  628.950992][T11877] xt_hashlimit: max too large, truncated to 1048576
[  629.589890][T11886] loop4: detected capacity change from 0 to 65
[  629.617888][T11887] cgroup2: Unknown parameter 'nsdeleg'
[  629.623486][T11886] BFS-fs: bfs_fill_super(): NOTE: filesystem loop4 was created with 512 inodes, the real maximum is 511, mounting anyway
[  631.160658][T11901] syz.4.1726: attempt to access beyond end of device
[  631.160658][T11901] loop4: rw=6144, sector=128, nr_sectors = 8 limit=0
[  631.248820][T11901] gfs2: error -5 reading superblock
[  631.914333][T11904] loop4: detected capacity change from 0 to 16
[  631.935064][T11904] erofs (device loop4): mounted with root inode @ nid 36.
[  631.970909][T11904] overlayfs: failed to resolve './file1': -2
[  633.849279][T11924] loop5: detected capacity change from 0 to 4096
[  634.195272][T11922] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(7)
[  634.201838][T11922] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  634.209780][T11922] vhci_hcd vhci_hcd.0: Device attached
[  634.242943][T11924] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512).
[  634.671656][T11924] ntfs3(loop5): Mark volume as dirty due to NTFS errors
[  634.678950][ T5841] usb 43-1: new low-speed USB device number 2 using vhci_hcd
[  634.700420][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  634.708101][T11924] ntfs3(loop5): Failed to initialize $Extend/$Reparse.
[  634.717329][T11927] loop4: detected capacity change from 0 to 65
[  634.723865][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  634.886799][T11927] BFS-fs: bfs_fill_super(): NOTE: filesystem loop4 was created with 512 inodes, the real maximum is 511, mounting anyway
[  634.956460][T11923] vhci_hcd: connection reset by peer
[  634.983158][T10903] vhci_hcd: stop threads
[  634.988025][T10903] vhci_hcd: release socket
[  635.058907][T10903] vhci_hcd: disconnect device
[  637.753923][ T5959] IPVS: starting estimator thread 0...
[  637.876834][T11957] IPVS: using max 26 ests per chain, 62400 per kthread
[  637.960942][T11961] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1747'.
[  638.039898][T11963] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1748'.
[  638.981626][T11977] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(7)
[  638.988193][T11977] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  638.999233][T11977] vhci_hcd vhci_hcd.0: Device attached
[  639.248117][T11977] loop5: detected capacity change from 0 to 4096
[  639.361617][T11977] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512).
[  639.947072][T11977] ntfs3(loop5): Mark volume as dirty due to NTFS errors
[  640.002011][T11977] ntfs3(loop5): Failed to initialize $Extend/$Reparse.
[  640.443058][T11979] vhci_hcd: sendmsg failed!, ret=-32 for 48
[  640.487662][T11978] vhci_hcd: connection closed
[  640.774811][ T1338] vhci_hcd: stop threads
[  640.821169][ T1338] vhci_hcd: release socket
[  640.832060][ T1338] vhci_hcd: disconnect device
[  640.894336][ T5841] vhci_hcd: vhci_device speed not set
[  641.022727][T11984] Bluetooth: MGMT ver 1.23
[  641.238922][T11989] IPVS: dh: UDP 224.0.0.2:20004 - no destination available
[  641.568803][T11997] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1760'.
[  642.423168][ T5840] Bluetooth: hci0: command 0x0406 tx timeout
[  642.717510][T12012] loop2: detected capacity change from 0 to 32768
[  642.957177][T12012] ocfs2: Mounting device (7,2) on (node local, slot 0) with writeback data mode.
[  644.051363][T12024] loop4: detected capacity change from 0 to 4096
[  645.694609][T12024] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512).
[  645.729410][T12022] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(7)
[  645.735963][T12022] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  645.755213][T12022] vhci_hcd vhci_hcd.0: Device attached
[  646.110820][   T30] audit: type=1326 audit(1749986131.369:1890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12025 comm="syz.1.1767" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7feb0218e929 code=0x0
[  646.147198][T12024] ntfs3(loop4): Mark volume as dirty due to NTFS errors
[  646.172334][T12024] ntfs3(loop4): Failed to initialize $Extend/$Reparse.
[  646.214597][ T5959] usb 41-1: new low-speed USB device number 2 using vhci_hcd
[  646.244731][T12023] vhci_hcd: connection reset by peer
[  646.260397][   T12] vhci_hcd: stop threads
[  646.266395][   T12] vhci_hcd: release socket
[  646.284497][   T12] vhci_hcd: disconnect device
[  646.428966][ T5834] (syz-executor,5834,1):ocfs2_inode_is_valid_to_delete:886 ERROR: Skipping delete of system file 76
[  646.633328][ T5834] ocfs2: Unmounting device (7,2) on (node local)
[  647.724368][T12046] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1774'.
[  648.714814][T12058] IPVS: dh: UDP 224.0.0.2:20004 - no destination available
[  651.300111][T12084] loop2: detected capacity change from 0 to 32768
[  651.332280][T12084] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.1784 (12084)
[  651.349701][T12084] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  651.359885][T12084] BTRFS info (device loop2): using crc32c (crc32c-x86_64) checksum algorithm
[  651.368780][T12084] BTRFS info (device loop2): using free-space-tree
[  651.910291][T12108] loop4: detected capacity change from 0 to 2048
[  653.105174][ T5959] vhci_hcd: vhci_device speed not set
[  653.422306][   T30] audit: type=1326 audit(1749986138.126:1891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12082 comm="syz.2.1784" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fcf30f8e929 code=0x0
[  653.576710][T12116] loop5: detected capacity change from 0 to 64
[  653.642044][T12117] loop4: detected capacity change from 0 to 65
[  654.442814][T12116] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1789'.
[  654.588843][T12117] BFS-fs: bfs_fill_super(): NOTE: filesystem loop4 was created with 512 inodes, the real maximum is 511, mounting anyway
[  655.013057][ T5834] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  655.128358][T12125] loop5: detected capacity change from 0 to 64
[  655.166302][T12125] hfs: unable to locate alternate MDB
[  655.177451][T12125] hfs: continuing without an alternate MDB
[  655.369264][T12129] xt_hashlimit: size too large, truncated to 1048576
[  655.376128][T12129] xt_hashlimit: max too large, truncated to 1048576
[  656.067726][T12137] IPVS: dh: UDP 224.0.0.2:20004 - no destination available
[  656.216960][T12140] loop5: detected capacity change from 0 to 1024
[  656.224386][T12140] EXT4-fs: Ignoring removed orlov option
[  656.294064][T12140] EXT4-fs: Ignoring removed nomblk_io_submit option
[  657.325313][T12140] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  657.522261][T12159] loop4: detected capacity change from 0 to 64
[  657.615858][T12159] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1805'.
[  658.120455][T12163] loop2: detected capacity change from 0 to 65
[  658.157151][T12163] BFS-fs: bfs_fill_super(): NOTE: filesystem loop2 was created with 512 inodes, the real maximum is 511, mounting anyway
[  658.768978][T12170] loop2: detected capacity change from 0 to 128
[  658.820417][T12170] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  658.926647][T12170] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  659.564394][T10619] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  659.610906][T12179] xt_hashlimit: size too large, truncated to 1048576
[  659.644001][T12179] xt_hashlimit: max too large, truncated to 1048576
[  659.703775][T12181] @: renamed from vlan0 (while UP)
[  661.397325][T12195] loop4: detected capacity change from 0 to 64
[  661.629582][T12203] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1822'.
[  661.767783][T12210] loop4: detected capacity change from 0 to 128
[  661.791074][T12210] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[  661.849662][T12210] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  662.711894][T12213] xt_hashlimit: size too large, truncated to 1048576
[  662.736810][T12213] xt_hashlimit: max too large, truncated to 1048576
[  664.020806][T12197] loop5: detected capacity change from 0 to 32768
[  664.056066][T12197] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  664.077377][T12230] loop2: detected capacity change from 0 to 512
[  664.083197][T12197] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  664.102151][T12230] EXT4-fs: Ignoring removed nobh option
[  664.111522][T12232] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1830'.
[  664.119188][T12197] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms
[  664.135783][T10467] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  664.143579][T12230] EXT4-fs error (device loop2): ext4_orphan_get:1393: inode #15: comm syz.2.1831: iget: bad i_size value: 38620345925642
[  664.144352][T10467] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  664.169046][T12230] EXT4-fs error (device loop2): ext4_orphan_get:1398: comm syz.2.1831: couldn't read orphan inode 15 (err -117)
[  664.194382][T12230] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  664.358762][T12237] EXT4-fs error (device loop2): ext4_validate_block_bitmap:432: comm syz.2.1831: bg 0: block 5: invalid block bitmap
[  664.458869][T12237] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1348 with error 28
[  664.518921][T10467] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 345ms
[  664.534582][T12237] EXT4-fs (loop2): This should not happen!! Data will be lost
[  664.534582][T12237] 
[  664.551703][T10467] gfs2: fsid=syz:syz.0: jid=0: Done
[  664.557238][T12197] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  664.565649][T12237] EXT4-fs (loop2): Total free blocks count 0
[  664.576853][T12237] EXT4-fs (loop2): Free/Dirty block details
[  664.586647][T12237] EXT4-fs (loop2): free_blocks=0
[  664.593034][T12237] EXT4-fs (loop2): dirty_blocks=1348
[  664.598689][T12237] EXT4-fs (loop2): Block reservation details
[  664.604994][T12237] EXT4-fs (loop2): i_reserved_data_blocks=1348
[  664.690991][T12251] loop4: detected capacity change from 0 to 128
[  665.510159][T12251] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[  665.590426][T12251] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  665.880265][T12253] xt_hashlimit: size too large, truncated to 1048576
[  665.887497][T12253] xt_hashlimit: max too large, truncated to 1048576
[  665.945522][ T5834] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  666.043768][T12257] loop4: detected capacity change from 0 to 256
[  666.065601][T12197] gfs2: fsid=syz:syz.0: found 1 quota changes
[  666.190860][T12262] overlayfs: missing 'lowerdir'
[  667.253798][T12272] loop4: detected capacity change from 0 to 64
[  668.355205][T12283] loop2: detected capacity change from 0 to 128
[  669.204942][T12283] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  669.242426][T12283] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  669.811335][ T5935] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  669.831338][T12293] overlayfs: missing 'lowerdir'
[  670.131065][ T5935] usb 6-1: New USB device found, idVendor=046d, idProduct=0870, bcdDevice=61.47
[  670.140315][ T5935] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  670.156030][ T5935] usb 6-1: config 0 descriptor??
[  670.165039][ T5935] gspca_main: STV06xx-2.14.0 probing 046d:0870
[  670.330062][T12305] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(7)
[  670.336659][T12305] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  670.345355][T12305] vhci_hcd vhci_hcd.0: Device attached
[  670.771825][T12308] loop4: detected capacity change from 0 to 4096
[  670.805581][T12308] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512).
[  674.296775][ T5841] usb 41-1: new low-speed USB device number 3 using vhci_hcd
[  674.522107][ T5935] usb 6-1: USB disconnect, device number 2
[  674.703031][T12308] ntfs3(loop4): Mark volume as dirty due to NTFS errors
[  674.744472][T12308] ntfs3(loop4): Failed to initialize $Extend/$Reparse.
[  674.775156][T12306] vhci_hcd: connection reset by peer
[  674.781107][   T49] vhci_hcd: stop threads
[  674.786826][   T49] vhci_hcd: release socket
[  674.797057][   T49] vhci_hcd: disconnect device
[  675.572596][T12328] loop4: detected capacity change from 0 to 65
[  675.607617][T12328] BFS-fs: bfs_fill_super(): NOTE: filesystem loop4 was created with 512 inodes, the real maximum is 511, mounting anyway
[  676.177132][T12341] loop4: detected capacity change from 0 to 16
[  676.260974][T12341] erofs (device loop4): mounted with root inode @ nid 36.
[  678.817465][T12360] kernel read not supported for file /!selinu˙ (pid: 12360 comm: syz.4.1878)
[  678.848616][   T30] audit: type=1800 audit(1749986161.589:1892): pid=12360 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1878" name=2173656C696E75FF7F dev="mqueue" ino=30114 res=0 errno=0
[  679.054888][   T30] audit: type=1326 audit(1749986161.589:1893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12359 comm="syz.4.1878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f99c078e929 code=0x7ffc0000
[  679.365635][   T30] audit: type=1326 audit(1749986161.589:1894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12359 comm="syz.4.1878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f99c078e929 code=0x7ffc0000
[  679.649507][T12358] loop2: detected capacity change from 0 to 8192
[  679.669888][   T30] audit: type=1326 audit(1749986161.607:1895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12359 comm="syz.4.1878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=291 compat=0 ip=0x7f99c078e929 code=0x7ffc0000
[  679.832850][   T30] audit: type=1326 audit(1749986161.607:1896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12359 comm="syz.4.1878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f99c078e929 code=0x7ffc0000
[  679.871650][   T30] audit: type=1326 audit(1749986161.607:1897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12359 comm="syz.4.1878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=233 compat=0 ip=0x7f99c078e929 code=0x7ffc0000
[  679.894630][ T5841] vhci_hcd: vhci_device speed not set
[  679.901552][   T30] audit: type=1326 audit(1749986161.607:1898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12359 comm="syz.4.1878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f99c078e929 code=0x7ffc0000
[  679.924595][   T30] audit: type=1326 audit(1749986161.607:1899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12359 comm="syz.4.1878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=233 compat=0 ip=0x7f99c078e929 code=0x7ffc0000
[  679.951252][T12367] loop4: detected capacity change from 0 to 65
[  679.958939][   T30] audit: type=1326 audit(1749986161.625:1900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12359 comm="syz.4.1878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f99c078e929 code=0x7ffc0000
[  679.996757][T12367] BFS-fs: bfs_fill_super(): NOTE: filesystem loop4 was created with 512 inodes, the real maximum is 511, mounting anyway
[  680.017037][   T30] audit: type=1326 audit(1749986161.625:1901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12359 comm="syz.4.1878" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f99c078e929 code=0x7ffc0000
[  680.046671][T12370] loop5: detected capacity change from 0 to 65
[  680.189985][T12370] BFS-fs: bfs_fill_super(): NOTE: filesystem loop5 was created with 512 inodes, the real maximum is 511, mounting anyway
[  681.328341][T12387] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(7)
[  681.334920][T12387] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  681.342784][T12387] vhci_hcd vhci_hcd.0: Device attached
[  681.528441][T12387] loop2: detected capacity change from 0 to 4096
[  681.756951][T12391] macvlan2: entered promiscuous mode
[  681.782751][T12391] macvlan2: entered allmulticast mode
[  681.849218][T12391] batadv0: entered promiscuous mode
[  681.928603][T12391] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  682.047648][   T10] usb 37-1: new low-speed USB device number 3 using vhci_hcd
[  682.111114][T12391] bond0: (slave macvlan2): Enslaving as an active interface with an up link
[  682.290295][T12387] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512).
[  682.299645][ T5959] usb 2-1: new high-speed USB device number 26 using dummy_hcd
[  682.492224][ T5959] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  682.503611][ T5959] usb 2-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  683.464649][T12387] ntfs3(loop2): Mark volume as dirty due to NTFS errors
[  683.487823][ T5959] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  683.502145][T12387] ntfs3(loop2): Failed to initialize $Extend/$Reparse.
[  683.533228][ T5959] usb 2-1: config 0 descriptor??
[  683.553679][ T5959] pwc: Askey VC010 type 2 USB webcam detected.
[  683.612121][T12388] vhci_hcd: connection reset by peer
[  683.631933][   T49] vhci_hcd: stop threads
[  683.644736][   T49] vhci_hcd: release socket
[  683.665908][   T49] vhci_hcd: disconnect device
[  684.112200][ T5959] pwc: recv_control_msg error -32 req 02 val 2b00
[  684.158847][ T5959] pwc: recv_control_msg error -32 req 02 val 2700
[  684.416159][ T5959] pwc: recv_control_msg error -32 req 02 val 2c00
[  684.513110][ T5959] pwc: recv_control_msg error -32 req 04 val 1000
[  684.521205][ T5959] pwc: recv_control_msg error -32 req 04 val 1300
[  684.599626][ T5959] pwc: recv_control_msg error -32 req 04 val 1400
[  684.608706][ T5959] pwc: recv_control_msg error -32 req 02 val 2000
[  684.631322][ T5959] pwc: recv_control_msg error -32 req 02 val 2100
[  684.642638][ T5959] pwc: recv_control_msg error -32 req 04 val 1500
[  684.662308][ T5959] pwc: recv_control_msg error -32 req 02 val 2500
[  684.676463][ T5959] pwc: recv_control_msg error -32 req 02 val 2400
[  684.714697][T12406] loop2: detected capacity change from 0 to 65
[  684.731025][T12406] BFS-fs: bfs_fill_super(): NOTE: filesystem loop2 was created with 512 inodes, the real maximum is 511, mounting anyway
[  684.901834][ T5959] pwc: recv_control_msg error -71 req 02 val 2900
[  684.923138][ T5959] pwc: recv_control_msg error -71 req 02 val 2800
[  684.943163][ T5959] pwc: recv_control_msg error -71 req 04 val 1100
[  684.959515][ T5959] pwc: recv_control_msg error -71 req 04 val 1200
[  684.982111][ T5959] pwc: Registered as video103.
[  684.989121][ T5959] input: PWC snapshot button as /devices/platform/dummy_hcd.1/usb2/2-1/input/input29
[  685.048145][ T5959] usb 2-1: USB disconnect, device number 26
[  686.480760][T12429] loop5: detected capacity change from 0 to 65
[  686.498881][T12431] loop4: detected capacity change from 0 to 64
[  686.530468][T12429] BFS-fs: bfs_fill_super(): NOTE: filesystem loop5 was created with 512 inodes, the real maximum is 511, mounting anyway
[  686.886688][T12434] xt_hashlimit: size too large, truncated to 1048576
[  686.893730][T12434] xt_hashlimit: max too large, truncated to 1048576
[  687.654337][T12444] overlayfs: missing 'workdir'
[  687.665776][   T10] vhci_hcd: vhci_device speed not set
[  689.451916][T12438] loop4: detected capacity change from 0 to 32768
[  689.608689][T12438] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  689.612573][T12474] loop5: detected capacity change from 0 to 65
[  689.648695][T12474] BFS-fs: bfs_fill_super(): NOTE: filesystem loop5 was created with 512 inodes, the real maximum is 511, mounting anyway
[  689.648740][T12438] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  689.902953][T12438] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms
[  690.011491][ T5959] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  690.031531][ T5959] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  690.603081][ T5959] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 527ms
[  690.610814][ T5959] gfs2: fsid=syz:syz.0: jid=0: Done
[  690.616425][T12438] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  690.639796][T12438] gfs2: fsid=syz:syz.0: can't create logd thread: -4
[  691.461037][T12500] xt_hashlimit: size too large, truncated to 1048576
[  691.468089][T12500] xt_hashlimit: max too large, truncated to 1048576
[  692.993355][T12489] loop5: detected capacity change from 0 to 32768
[  693.019621][T12489] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.1926 (12489)
[  693.425385][T12489] BTRFS info (device loop5): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  693.674388][T12489] BTRFS info (device loop5): using crc32c (crc32c-x86_64) checksum algorithm
[  693.691861][T12522] loop2: detected capacity change from 0 to 4096
[  693.702763][T12520] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(7)
[  693.709303][T12520] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  693.717578][T12520] vhci_hcd vhci_hcd.0: Device attached
[  693.798980][T12522] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512).
[  694.030480][T12489] BTRFS info (device loop5): using free-space-tree
[  694.096392][T12489] workqueue: Failed to create a rescuer kthread for wq "btrfs-delalloc": -EINTR
[  694.096797][T12489] workqueue: Failed to create a rescuer kthread for wq "btrfs-flush_delalloc": -EINTR
[  694.125734][T12489] workqueue: Failed to create a rescuer kthread for wq "btrfs-cache": -EINTR
[  694.237822][T12489] workqueue: Failed to create a rescuer kthread for wq "btrfs-fixup": -EINTR
[  694.321488][ T5839] usb 37-1: new low-speed USB device number 4 using vhci_hcd
[  694.372587][T12489] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio": -EINTR
[  694.375215][T12489] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-meta": -EINTR
[  694.497450][T12489] workqueue: Failed to create a rescuer kthread for wq "btrfs-compressed-write": -EINTR
[  694.521159][T12522] ntfs3(loop2): Mark volume as dirty due to NTFS errors
[  694.562763][T12522] ntfs3(loop2): Failed to initialize $Extend/$Reparse.
[  694.572269][T12489] workqueue: Failed to create a rescuer kthread for wq "btrfs-qgroup-rescan": -EINTR
[  694.721585][T12521] vhci_hcd: connection reset by peer
[  694.743251][T10903] vhci_hcd: stop threads
[  694.747580][T10903] vhci_hcd: release socket
[  694.753089][T10903] vhci_hcd: disconnect device
[  694.807498][T12489] BTRFS error (device loop5): open_ctree failed: -12
[  697.100553][T12564] xt_hashlimit: size too large, truncated to 1048576
[  697.108909][T12564] xt_hashlimit: max too large, truncated to 1048576
[  698.499947][T12585] loop4: detected capacity change from 0 to 4096
[  700.146746][T12585] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512).
[  700.200693][ T5839] vhci_hcd: vhci_device speed not set
[  700.397399][T12583] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(7)
[  700.403949][T12583] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  700.455092][T12583] vhci_hcd vhci_hcd.0: Device attached
[  700.566813][T12585] ntfs3(loop4): Mark volume as dirty due to NTFS errors
[  700.605515][T12585] ntfs3(loop4): Failed to initialize $Extend/$Reparse.
[  700.731717][   T10] usb 41-1: new low-speed USB device number 4 using vhci_hcd
[  700.994320][T12584] vhci_hcd: connection reset by peer
[  701.011321][T10845] vhci_hcd: stop threads
[  701.016262][T10845] vhci_hcd: release socket
[  701.021718][T10845] vhci_hcd: disconnect device
[  701.241920][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  701.248541][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  702.564638][T12608] xt_hashlimit: size too large, truncated to 1048576
[  702.571352][T12608] xt_hashlimit: max too large, truncated to 1048576
[  703.130467][T12626] overlayfs: missing 'lowerdir'
[  703.155479][T12628] syz.5.1969: attempt to access beyond end of device
[  703.155479][T12628] loop5: rw=6144, sector=128, nr_sectors = 8 limit=0
[  703.168953][T12628] gfs2: error -5 reading superblock
[  704.457382][T12639] xt_hashlimit: size too large, truncated to 1048576
[  704.464488][T12639] xt_hashlimit: max too large, truncated to 1048576
[  705.137765][T12646] loop5: detected capacity change from 0 to 512
[  705.166858][T12646] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  705.181152][T12644] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  705.257711][T12646] EXT4-fs (loop5): 1 truncate cleaned up
[  705.277902][T12646] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  706.878713][   T10] vhci_hcd: vhci_device speed not set
[  706.900451][T10619] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  707.282530][T12672] loop4: detected capacity change from 0 to 32768
[  707.312035][T12672] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.1987 (12672)
[  707.327023][T12672] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  707.337184][T12672] BTRFS info (device loop4): using crc32c (crc32c-x86_64) checksum algorithm
[  707.345991][T12672] BTRFS info (device loop4): using free-space-tree
[  708.108558][   T30] kauditd_printk_skb: 3 callbacks suppressed
[  708.108578][   T30] audit: type=1326 audit(1749986188.595:1905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12671 comm="syz.4.1987" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f99c078e929 code=0x0
[  708.116973][T12699] 9pnet_fd: Insufficient options for proto=fd
[  709.197182][T12710] loop2: detected capacity change from 0 to 65
[  709.401119][T12710] BFS-fs: bfs_fill_super(): NOTE: filesystem loop2 was created with 512 inodes, the real maximum is 511, mounting anyway
[  709.557064][ T5837] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  713.754798][T12754] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2008'.
[  714.020190][T12761] loop2: detected capacity change from 0 to 256
[  714.085233][T12761] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  714.160977][T12761] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  715.729521][T12772] loop2: detected capacity change from 0 to 64
[  716.327799][T12784] netlink: 44 bytes leftover after parsing attributes in process `syz.1.2018'.
[  716.528480][T12780] netlink: 44 bytes leftover after parsing attributes in process `syz.1.2018'.
[  716.570705][T12783] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(7)
[  716.577250][T12783] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  716.584869][T12783] vhci_hcd vhci_hcd.0: Device attached
[  716.626533][T12783] loop4: detected capacity change from 0 to 4096
[  716.634399][T12783] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512).
[  716.657509][T12783] ntfs3(loop4): Mark volume as dirty due to NTFS errors
[  716.665680][T12783] ntfs3(loop4): Failed to initialize $Extend/$Reparse.
[  716.675041][T12785] vhci_hcd: connection closed
[  716.675392][   T13] vhci_hcd: stop threads
[  716.706645][   T13] vhci_hcd: release socket
[  716.715025][   T13] vhci_hcd: disconnect device
[  716.777470][T10467] vhci_hcd: vhci_device speed not set
[  716.797349][T12788] xt_hashlimit: size too large, truncated to 1048576
[  716.867858][T12793] loop5: detected capacity change from 0 to 65
[  716.905610][T12793] BFS-fs: bfs_fill_super(): NOTE: filesystem loop5 was created with 512 inodes, the real maximum is 511, mounting anyway
[  716.934435][T12790] loop2: detected capacity change from 0 to 2048
[  717.065334][T12790]  loop2: p1 < > p3
[  717.077083][T12800] overlayfs: failed to clone upperpath
[  717.097207][T12790] loop2: p3 size 134217728 extends beyond EOD, truncated
[  717.223932][T12790] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2020'.
[  719.678877][T12831] overlayfs: failed to clone upperpath
[  721.399520][T12847] syz.2.2040 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  723.440683][T12866] loop2: detected capacity change from 0 to 65
[  723.451472][T12866] BFS-fs: bfs_fill_super(): NOTE: filesystem loop2 was created with 512 inodes, the real maximum is 511, mounting anyway
[  724.079888][ T5935] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[  725.218174][ T5935] usb 5-1: Using ep0 maxpacket: 32
[  725.319649][ T5935] usb 5-1: no configurations
[  725.324487][ T5935] usb 5-1: can't read configurations, error -22
[  725.554021][ T5935] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[  726.549789][ T5935] usb 5-1: Using ep0 maxpacket: 32
[  727.844866][ T5935] usb 5-1: device descriptor read/all, error -71
[  727.851688][ T5935] usb usb5-port1: attempt power cycle
[  728.014737][T12891] warn_alloc: 3 callbacks suppressed
[  728.014756][T12891] syz.3.2056: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  728.106890][T12891] CPU: 0 UID: 0 PID: 12891 Comm: syz.3.2056 Not tainted 6.16.0-rc1-next-20250613-syzkaller #0 PREEMPT(full) 
[  728.106921][T12891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  728.106935][T12891] Call Trace:
[  728.106945][T12891]  <TASK>
[  728.106955][T12891]  dump_stack_lvl+0x189/0x250
[  728.107001][T12891]  ? __pfx_dump_stack_lvl+0x10/0x10
[  728.107035][T12891]  ? __pfx__printk+0x10/0x10
[  728.107069][T12891]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  728.107095][T12891]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  728.107121][T12891]  ? cpuset_print_current_mems_allowed+0x2ee/0x360
[  728.107149][T12891]  warn_alloc+0x214/0x310
[  728.107175][T12891]  ? stack_depot_save_flags+0x40/0x900
[  728.107213][T12891]  ? __pfx_warn_alloc+0x10/0x10
[  728.107242][T12891]  ? kasan_save_track+0x4f/0x80
[  728.107275][T12891]  ? xskq_create+0x56/0x170
[  728.107304][T12891]  ? xsk_init_queue+0xb0/0x110
[  728.107329][T12891]  ? xsk_setsockopt+0x43f/0x710
[  728.107353][T12891]  ? do_sock_setsockopt+0x257/0x3e0
[  728.107375][T12891]  ? __x64_sys_setsockopt+0x18b/0x220
[  728.107396][T12891]  ? do_syscall_64+0xfa/0x3b0
[  728.107426][T12891]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  728.107457][T12891]  __vmalloc_node_range_noprof+0x125/0x12f0
[  728.107516][T12891]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  728.107548][T12891]  ? __kasan_kmalloc+0x93/0xb0
[  728.107573][T12891]  vmalloc_user_noprof+0xad/0xf0
[  728.107597][T12891]  ? xskq_create+0xbf/0x170
[  728.107626][T12891]  xskq_create+0xbf/0x170
[  728.107659][T12891]  xsk_init_queue+0xb0/0x110
[  728.107690][T12891]  xsk_setsockopt+0x43f/0x710
[  728.107720][T12891]  ? __pfx_xsk_setsockopt+0x10/0x10
[  728.107745][T12891]  ? __lock_acquire+0xab9/0xd20
[  728.107779][T12891]  ? aa_sock_opt_perm+0xff/0x1b0
[  728.107815][T12891]  ? bpf_lsm_socket_setsockopt+0x9/0x20
[  728.107844][T12891]  ? __pfx_xsk_setsockopt+0x10/0x10
[  728.107872][T12891]  do_sock_setsockopt+0x257/0x3e0
[  728.107900][T12891]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  728.107930][T12891]  ? __fget_files+0x2a/0x420
[  728.107965][T12891]  __x64_sys_setsockopt+0x18b/0x220
[  728.107997][T12891]  do_syscall_64+0xfa/0x3b0
[  728.108026][T12891]  ? lockdep_hardirqs_on+0x9c/0x150
[  728.108063][T12891]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  728.108084][T12891]  ? clear_bhb_loop+0x60/0xb0
[  728.108112][T12891]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  728.108134][T12891] RIP: 0033:0x7fb80eb8e929
[  728.108153][T12891] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  728.108173][T12891] RSP: 002b:00007fb80fa72038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  728.108196][T12891] RAX: ffffffffffffffda RBX: 00007fb80edb5fa0 RCX: 00007fb80eb8e929
[  728.108212][T12891] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000003
[  728.108226][T12891] RBP: 00007fb80ec10b39 R08: 0000000000000004 R09: 0000000000000000
[  728.108240][T12891] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[  728.108254][T12891] R13: 0000000000000000 R14: 00007fb80edb5fa0 R15: 00007ffe245366c8
[  728.108290][T12891]  </TASK>
[  728.108309][T12891] Mem-Info:
[  728.749632][T12891] active_anon:52951 inactive_anon:0 isolated_anon:0
[  728.749632][T12891]  active_file:18576 inactive_file:41890 isolated_file:0
[  728.749632][T12891]  unevictable:19985 dirty:184 writeback:0
[  728.749632][T12891]  slab_reclaimable:7944 slab_unreclaimable:102410
[  728.749632][T12891]  mapped:32538 shmem:49177 pagetables:1526
[  728.749632][T12891]  sec_pagetables:0 bounce:0
[  728.749632][T12891]  kernel_misc_reclaimable:0
[  728.749632][T12891]  free:1250441 free_pcp:8964 free_cma:0
[  728.795358][    C1] vkms_vblank_simulate: vblank timer overrun
[  728.944494][T12891] Node 0 active_anon:221504kB inactive_anon:0kB active_file:74304kB inactive_file:167360kB unevictable:78404kB isolated(anon):0kB isolated(file):0kB mapped:139852kB dirty:736kB writeback:0kB shmem:204972kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12188kB pagetables:6060kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  729.009191][T12891] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:144kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  729.535969][T12891] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  729.646419][T12891] lowmem_reserve[]: 0 2500 2502 2502 2502
[  729.724440][T12891] Node 0 DMA32 free:1057756kB boost:0kB min:34264kB low:42828kB high:51392kB reserved_highatomic:0KB free_highatomic:0KB active_anon:214516kB inactive_anon:0kB active_file:74304kB inactive_file:165528kB unevictable:78404kB writepending:736kB present:3129332kB managed:2560848kB mlocked:0kB bounce:0kB free_pcp:40272kB local_pcp:13376kB free_cma:0kB
[  729.951804][T12891] lowmem_reserve[]: 0 0 1 1 1
[  729.957418][T12891] Node 0 Normal free:16kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB free_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:0kB inactive_file:1832kB unevictable:0kB writepending:0kB present:1048580kB managed:1900kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB
[  730.019056][T12891] lowmem_reserve[]: 0 0 0 0 0
[  730.024038][T12891] Node 1 Normal free:3910480kB boost:0kB min:55612kB low:69512kB high:83412kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:10348kB local_pcp:7688kB free_cma:0kB
[  730.056317][T12891] lowmem_reserve[]: 0 0 0 0 0
[  730.068335][T12891] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  730.107496][T12891] Node 0 DMA32: 58*4kB (E) 87*8kB (ME) 32*16kB (UME) 190*32kB (UE) 129*64kB (UME) 101*128kB (UME) 47*256kB (UME) 46*512kB (UME) 30*1024kB (UME) 4*2048kB (UM) 233*4096kB (UM) = 1057568kB
[  730.134335][T12891] Node 0 Normal: 0*4kB 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 16kB
[  730.157269][T12891] Node 1 Normal: 172*4kB (UME) 56*8kB (UME) 44*16kB (UME) 235*32kB (UME) 71*64kB (UME) 14*128kB (UME) 4*256kB (UM) 5*512kB (UME) 2*1024kB (ME) 1*2048kB (E) 949*4096kB (M) = 3910480kB
[  730.182207][T12891] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  730.192885][T12891] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  730.205699][T12891] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  730.216501][T12891] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  730.230409][T12891] 130004 total pagecache pages
[  730.236344][T12891] 0 pages in swap cache
[  730.240612][T12891] Free swap  = 124996kB
[  730.253770][T12891] Total swap = 124996kB
[  730.284120][T12891] 2097051 pages RAM
[  730.289058][ T5839] usb 5-1: new high-speed USB device number 19 using dummy_hcd
[  730.301690][T12891] 0 pages HighMem/MovableOnly
[  730.307429][T12891] 424733 pages reserved
[  730.312823][T12891] 0 pages cma reserved
[  730.612798][ T5839] usb 5-1: Using ep0 maxpacket: 8
[  730.620638][ T5839] usb 5-1: config 0 has an invalid interface number: 150 but max is 0
[  730.642496][ T5839] usb 5-1: config 0 has an invalid interface number: 112 but max is 0
[  730.661712][ T5839] usb 5-1: config 0 has an invalid interface number: 3 but max is 0
[  731.533719][ T5839] usb 5-1: config 0 has 3 interfaces, different from the descriptor's value: 1
[  731.645443][ T5839] usb 5-1: config 0 has no interface number 0
[  731.679332][ T5839] usb 5-1: config 0 has no interface number 1
[  731.707989][ T5839] usb 5-1: config 0 has no interface number 2
[  731.742375][ T5839] usb 5-1: config 0 interface 150 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  731.768918][ T5839] usb 5-1: too many endpoints for config 0 interface 112 altsetting 233: 104, using maximum allowed: 30
[  731.817565][ T5839] usb 5-1: config 0 interface 112 altsetting 233 has 1 endpoint descriptor, different from the interface descriptor's value: 104
[  731.864460][ T5839] usb 5-1: config 0 interface 150 has no altsetting 0
[  731.884568][ T5839] usb 5-1: config 0 interface 112 has no altsetting 0
[  731.908560][ T5839] usb 5-1: New USB device found, idVendor=1395, idProduct=0300, bcdDevice=81.75
[  731.938121][ T5839] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  731.984860][ T5839] usb 5-1: config 0 descriptor??
[  732.247228][ T5839] usb 5-1: string descriptor 0 read error: -71
[  732.321186][ T5839] usb 5-1: USB disconnect, device number 19
[  732.807635][T12929] loop5: detected capacity change from 0 to 32768
[  732.817968][T12929] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.2067 (12929)
[  732.834086][T12929] BTRFS info (device loop5): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  732.844542][T12929] BTRFS info (device loop5): using crc32c (crc32c-x86_64) checksum algorithm
[  732.853535][T12929] BTRFS info (device loop5): using free-space-tree
[  733.814734][   T30] audit: type=1326 audit(1749986212.326:1906): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12928 comm="syz.5.2067" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6b8eb8e929 code=0x0
[  734.326748][T12964] netlink: 664 bytes leftover after parsing attributes in process `syz.4.2072'.
[  734.563535][T12972] loop2: detected capacity change from 0 to 256
[  734.581263][T12972] exfat: Deprecated parameter 'utf8'
[  734.591780][T12972] exfat: Deprecated parameter 'utf8'
[  734.627856][T12972] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x23a77120, utbl_chksum : 0xe619d30d)
[  734.736561][T12975] loop4: detected capacity change from 0 to 512
[  734.770540][T12975] EXT4-fs: Ignoring removed bh option
[  734.817713][T12975] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  734.845309][T12975] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  734.912928][T12975] EXT4-fs (loop4): warning: mounting unchecked fs, running e2fsck is recommended
[  734.956300][T12975] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006]
[  735.019457][T12975] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  735.104953][T12975] EXT4-fs error (device loop4): ext4_empty_dir:3116: inode #12: block 32: comm syz.4.2077: bad entry in directory: directory entry overrun - offset=24, inode=13, rec_len=2320, size=2048 fake=0
[  736.112345][ T5837] EXT4-fs error (device loop4): ext4_readdir:264: inode #2: block 3: comm syz-executor: path /427/file0: bad entry in directory: inode out of bounds - offset=24, inode=134217739, rec_len=20, size=2048 fake=0
[  736.465865][ T5837] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  736.752751][T10619] BTRFS info (device loop5): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  737.773987][   T48] usb 5-1: new high-speed USB device number 20 using dummy_hcd
[  739.474988][   T48] usb 5-1: Using ep0 maxpacket: 32
[  740.445567][   T48] usb 5-1: no configurations
[  740.450336][   T48] usb 5-1: can't read configurations, error -22
[  741.355349][   T13] bridge_slave_1: left allmulticast mode
[  741.379123][   T13] bridge_slave_1: left promiscuous mode
[  741.402584][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[  741.403396][   T30] audit: type=1326 audit(1749986219.313:1907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13020 comm="syz.3.2095" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fb80eb8e929 code=0x0
[  741.476350][   T13] bridge_slave_0: left allmulticast mode
[  741.490589][T13030] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2097'.
[  741.499738][   T13] bridge_slave_0: left promiscuous mode
[  741.507166][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[  742.805964][ T5840] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  742.813438][T13045] netlink: 'syz.4.2100': attribute type 4 has an invalid length.
[  742.827946][ T5840] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  742.863434][ T5840] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  742.871588][ T5840] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  742.880402][ T5840] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  743.526360][   T48] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  743.826197][   T48] usb 6-1: Using ep0 maxpacket: 32
[  743.867318][   T48] usb 6-1: no configurations
[  743.907812][   T48] usb 6-1: can't read configurations, error -22
[  744.134514][   T48] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  744.536951][   T48] usb 6-1: Using ep0 maxpacket: 32
[  744.585052][   T48] usb 6-1: no configurations
[  744.620886][   T48] usb 6-1: can't read configurations, error -22
[  744.682687][   T48] usb usb6-port1: attempt power cycle
[  745.131008][   T48] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  745.152152][ T5840] Bluetooth: hci3: command tx timeout
[  745.273521][   T48] usb 6-1: Using ep0 maxpacket: 32
[  745.317618][   T48] usb 6-1: no configurations
[  745.356422][   T48] usb 6-1: can't read configurations, error -22
[  745.596435][   T48] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  745.695815][   T48] usb 6-1: Using ep0 maxpacket: 32
[  745.765755][   T48] usb 6-1: no configurations
[  745.799251][   T48] usb 6-1: can't read configurations, error -22
[  745.862498][   T48] usb usb6-port1: unable to enumerate USB device
[  747.018533][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  747.074786][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  747.099261][   T13] bond0 (unregistering): Released all slaves
[  747.396942][ T5840] Bluetooth: hci3: command tx timeout
[  747.702649][T13084] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2115'.
[  747.713715][T13084] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2115'.
[  748.280690][T13095] binder: 13093:13095 ioctl c0306201 0 returned -14
[  748.294922][   T13] hsr_slave_0: left promiscuous mode
[  748.311393][T13095] binder: 13093:13095 ioctl c018620c 2000000001c0 returned -1
[  748.322765][   T13] hsr_slave_1: left promiscuous mode
[  748.335802][   T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[  748.336251][T13096] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6)
[  748.349459][T13096] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  748.357353][T13096] vhci_hcd vhci_hcd.0: Device attached
[  748.426868][T13099] vhci_hcd: connection closed
[  748.427142][   T72] vhci_hcd: stop threads
[  748.446395][   T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[  748.454434][   T72] vhci_hcd: release socket
[  748.460380][   T72] vhci_hcd: disconnect device
[  749.674338][ T5840] Bluetooth: hci3: command tx timeout
[  751.283183][T13128] loop5: detected capacity change from 0 to 32768
[  751.308939][T13128] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.2131 (13128)
[  751.335337][T13128] BTRFS info (device loop5): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  751.345697][T13128] BTRFS info (device loop5): using crc32c (crc32c-x86_64) checksum algorithm
[  751.354557][T13128] BTRFS info (device loop5): using free-space-tree
[  751.364462][   T13] team0 (unregistering): Port device team_slave_1 removed
[  751.489560][   T30] audit: type=1326 audit(1749986228.635:1908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13127 comm="syz.5.2131" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6b8eb8e929 code=0x0
[  751.542252][   T13] team0 (unregistering): Port device team_slave_0 removed
[  751.912912][ T5846] Bluetooth: hci3: command tx timeout
[  752.168425][T13157] loop4: detected capacity change from 0 to 128
[  752.176930][T13157] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[  752.189440][T13157] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  752.238096][T13155] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6)
[  752.244663][T13155] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  752.252429][T13155] vhci_hcd vhci_hcd.0: Device attached
[  752.658390][T13158] vhci_hcd: connection closed
[  752.662028][   T72] vhci_hcd: stop threads
[  752.698255][   T72] vhci_hcd: release socket
[  752.707395][   T72] vhci_hcd: disconnect device
[  752.714924][T10467] vhci_hcd: vhci_device speed not set
[  752.810417][T10619] BTRFS info (device loop5): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  753.244867][ T5846] Bluetooth: hci0: unexpected event for opcode 0x0c1a
[  754.523734][   T48] usb 2-1: new high-speed USB device number 27 using dummy_hcd
[  756.268132][   T48] usb 2-1: Using ep0 maxpacket: 32
[  756.336137][   T48] usb 2-1: no configurations
[  756.340852][   T48] usb 2-1: can't read configurations, error -22
[  756.766637][   T48] usb 2-1: new high-speed USB device number 28 using dummy_hcd
[  757.112749][T13201] smc: net device bond0 applied user defined pnetid SYZ2
[  757.141740][T13201] smc: net device bond0 erased user defined pnetid SYZ2
[  757.232558][T13199] loop4: detected capacity change from 0 to 32768
[  757.246131][T13199] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.2148 (13199)
[  757.269527][T13199] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  757.279915][T13199] BTRFS info (device loop4): using crc32c (crc32c-x86_64) checksum algorithm
[  757.288809][T13199] BTRFS info (device loop4): using free-space-tree
[  757.318059][T13037] chnl_net:caif_netlink_parms(): no params data found
[  757.325065][   T48] usb 2-1: Using ep0 maxpacket: 32
[  757.332861][   T48] usb 2-1: device descriptor read/all, error -71
[  757.351970][   T48] usb usb2-port1: attempt power cycle
[  757.515303][T13211] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6)
[  757.521870][T13211] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  757.529498][T13211] vhci_hcd vhci_hcd.0: Device attached
[  757.636350][T13219] vhci_hcd: connection closed
[  757.636603][ T1144] vhci_hcd: stop threads
[  757.654507][   T30] audit: type=1326 audit(1749986234.321:1909): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13198 comm="syz.4.2148" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f99c078e929 code=0x0
[  757.659953][ T1144] vhci_hcd: release socket
[  757.795096][ T1144] vhci_hcd: disconnect device
[  757.849921][T10467] usb 35-1: new low-speed USB device number 3 using vhci_hcd
[  757.857531][T10467] usb 35-1: enqueue for inactive port 0
[  758.141850][T10467] vhci_hcd: vhci_device speed not set
[  758.219796][T13037] bridge0: port 1(bridge_slave_0) entered blocking state
[  758.238252][T13037] bridge0: port 1(bridge_slave_0) entered disabled state
[  758.258831][T13037] bridge_slave_0: entered allmulticast mode
[  758.502154][T13037] bridge_slave_0: entered promiscuous mode
[  758.565958][   T13] IPVS: stop unused estimator thread 0...
[  758.572946][T13037] bridge0: port 2(bridge_slave_1) entered blocking state
[  758.692475][ T5837] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  758.699917][T13037] bridge0: port 2(bridge_slave_1) entered disabled state
[  758.719947][T13037] bridge_slave_1: entered allmulticast mode
[  758.771108][T13037] bridge_slave_1: entered promiscuous mode
[  759.028999][T13037] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  759.080887][T13037] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  759.265162][T13037] team0: Port device team_slave_0 added
[  759.275841][T13037] team0: Port device team_slave_1 added
[  759.376673][T13037] batman_adv: batadv0: Adding interface: batadv_slave_0
[  759.402005][T13037] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  759.473200][T13037] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  759.560441][T13037] batman_adv: batadv0: Adding interface: batadv_slave_1
[  759.567672][T13037] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  759.608102][T13037] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  759.869261][T13037] hsr_slave_0: entered promiscuous mode
[  759.876284][T13037] hsr_slave_1: entered promiscuous mode
[  759.882884][T13037] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  759.892523][T13037] Cannot create hsr debugfs directory
[  760.311539][T13037] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  760.326836][T13037] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  760.344013][T13037] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  760.360937][T13037] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  760.535859][T13037] 8021q: adding VLAN 0 to HW filter on device bond0
[  760.573226][T13037] 8021q: adding VLAN 0 to HW filter on device team0
[  760.603926][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  760.611962][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  760.630284][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  760.637549][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  761.070728][T13037] 8021q: adding VLAN 0 to HW filter on device batadv0
[  762.415024][T13285] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2164'.
[  762.608180][T13037] veth0_vlan: entered promiscuous mode
[  762.627213][T13037] veth1_vlan: entered promiscuous mode
[  762.662981][T13037] veth0_macvtap: entered promiscuous mode
[  762.675676][T13037] veth1_macvtap: entered promiscuous mode
[  762.696879][T13037] batman_adv: batadv0: Interface activated: batadv_slave_0
[  762.713714][T13037] batman_adv: batadv0: Interface activated: batadv_slave_1
[  762.727820][T13037] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  762.738138][T13037] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  762.747303][T13037] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  762.756055][T13037] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  763.277976][ T1144] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  763.300235][ T1144] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  763.392993][T10903] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  763.402036][T10903] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  764.903587][T10467] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  765.307701][T10467] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  765.343601][T10467] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  765.368843][T10467] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  765.395100][T10467] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  765.409283][T10467] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  765.425492][T10467] usb 7-1: config 0 descriptor??
[  767.681385][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  768.168714][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  768.324379][T10467] usbhid 7-1:0.0: can't add hid device: -71
[  768.350530][T10467] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[  768.420456][T13334] loop6: detected capacity change from 0 to 64
[  768.423545][T10467] usb 7-1: USB disconnect, device number 2
[  768.470147][T13334] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2180'.
[  768.479437][ T5959] usb 5-1: new high-speed USB device number 22 using dummy_hcd
[  768.662466][ T5959] usb 5-1: Using ep0 maxpacket: 32
[  769.092286][ T5959] usb 5-1: device descriptor read/all, error -71
[  769.401217][T13351] loop6: detected capacity change from 0 to 128
[  769.425385][T13351] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  769.755055][T13351] ext4 filesystem being mounted at /6/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  770.284241][T13037] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  770.411659][T13364] loop4: detected capacity change from 0 to 128
[  770.420760][T13364] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[  770.439062][T13364] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  771.289183][T13382] loop6: detected capacity change from 0 to 16
[  771.330965][T13382] erofs (device loop6): mounted with root inode @ nid 36.
[  771.373780][T13382] overlayfs: missing 'workdir'
[  771.461542][ T1338] ------------[ cut here ]------------
[  771.461679][T13386] netlink: 'syz.5.2199': attribute type 10 has an invalid length.
[  771.467577][ T1338] RTNL: assertion failed at ./include/net/netdev_lock.h (72)
[  771.522704][T13386] bridge0: port 2(bridge_slave_1) entered disabled state
[  771.532373][T13386] bridge0: port 1(bridge_slave_0) entered disabled state
[  771.555537][ T1338] WARNING: CPU: 1 PID: 1338 at ./include/net/netdev_lock.h:72 __linkwatch_sync_dev+0x303/0x350
[  771.565999][ T1338] Modules linked in:
[  771.570188][ T1338] CPU: 1 UID: 0 PID: 1338 Comm: kworker/u8:7 Not tainted 6.16.0-rc1-next-20250613-syzkaller #0 PREEMPT(full) 
[  771.582034][ T1338] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  771.592279][ T1338] Workqueue: bond0 bond_mii_monitor
[  771.597500][ T1338] RIP: 0010:__linkwatch_sync_dev+0x303/0x350
[  771.603510][ T1338] Code: 7c fe ff ff e8 0e 43 67 f8 c6 05 31 37 32 06 01 90 48 c7 c7 60 25 93 8c 48 c7 c6 4e 33 9d 8d ba 48 00 00 00 e8 6e e2 2a f8 90 <0f> 0b 90 90 e9 4d fe ff ff 44 89 f1 80 e1 07 38 c1 0f 8c 22 fd ff
[  771.623167][ T1338] RSP: 0018:ffffc9000442f670 EFLAGS: 00010246
[  771.629244][ T1338] RAX: 4683fea98227dd00 RBX: ffff88802a24c000 RCX: ffff888027cc8000
[  771.637365][ T1338] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000002
[  771.645576][ T1338] RBP: 0000000000000000 R08: 0000000000000003 R09: 0000000000000004
[  771.653634][ T1338] R10: dffffc0000000000 R11: fffffbfff1bfaa14 R12: 1ffff1100544985d
[  771.661612][ T1338] R13: dffffc0000000000 R14: ffffffff8c1c8ea8 R15: 0000000000000000
[  771.670275][ T1338] FS:  0000000000000000(0000) GS:ffff888125d41000(0000) knlGS:0000000000000000
[  771.679246][ T1338] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  771.685863][ T1338] CR2: 00007fd9b9bfe254 CR3: 0000000076c0e000 CR4: 00000000003526f0
[  771.693839][ T1338] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  771.701836][ T1338] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  771.709838][ T1338] Call Trace:
[  771.713120][ T1338]  <TASK>
[  771.716051][ T1338]  ? ethtool_op_get_link+0xd/0x70
[  771.721105][ T1338]  ethtool_op_get_link+0x15/0x70
[  771.726047][ T1338]  bond_check_dev_link+0x447/0x6c0
[  771.731186][ T1338]  ? __pfx_bond_check_dev_link+0x10/0x10
[  771.736828][ T1338]  ? netdev_lower_get_next_private_rcu+0x9f/0x100
[  771.743283][ T1338]  bond_mii_monitor+0x428/0x2e00
[  771.748231][ T1338]  ? bond_mii_monitor+0x153/0x2e00
[  771.753496][ T1338]  ? __pfx_preempt_schedule_irq+0x10/0x10
[  771.759232][ T1338]  ? __pfx_bond_mii_monitor+0x10/0x10
[  771.764640][ T1338]  ? irqentry_exit+0x74/0x90
[  771.769236][ T1338]  ? lockdep_hardirqs_on+0x9c/0x150
[  771.774464][ T1338]  ? process_scheduled_works+0x9ef/0x17b0
[  771.780205][ T1338]  ? lock_acquire+0x175/0x360
[  771.784932][ T1338]  ? _raw_spin_unlock_irq+0x23/0x50
[  771.790138][ T1338]  ? process_scheduled_works+0x9ef/0x17b0
[  771.795892][ T1338]  ? process_scheduled_works+0x9ef/0x17b0
[  771.801620][ T1338]  process_scheduled_works+0xade/0x17b0
[  771.807214][ T1338]  ? __pfx_process_scheduled_works+0x10/0x10
[  771.813216][ T1338]  worker_thread+0x8a0/0xda0
[  771.817833][ T1338]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  771.824175][ T1338]  ? __kthread_parkme+0x7b/0x200
[  771.829253][ T1338]  kthread+0x711/0x8a0
[  771.833341][ T1338]  ? __pfx_worker_thread+0x10/0x10
[  771.838560][ T1338]  ? __pfx_kthread+0x10/0x10
[  771.843159][ T1338]  ? _raw_spin_unlock_irq+0x23/0x50
[  771.848396][ T1338]  ? lockdep_hardirqs_on+0x9c/0x150
[  771.853608][ T1338]  ? __pfx_kthread+0x10/0x10
[  771.858214][ T1338]  ret_from_fork+0x3f9/0x770
[  771.862854][ T1338]  ? __pfx_ret_from_fork+0x10/0x10
[  771.867985][ T1338]  ? __switch_to_asm+0x39/0x70
[  771.872770][ T1338]  ? __switch_to_asm+0x33/0x70
[  771.877535][ T1338]  ? __pfx_kthread+0x10/0x10
[  771.882154][ T1338]  ret_from_fork_asm+0x1a/0x30
[  771.886934][ T1338]  </TASK>
[  771.889972][ T1338] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  771.897265][ T1338] CPU: 1 UID: 0 PID: 1338 Comm: kworker/u8:7 Not tainted 6.16.0-rc1-next-20250613-syzkaller #0 PREEMPT(full) 
[  771.908892][ T1338] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  771.918952][ T1338] Workqueue: bond0 bond_mii_monitor
[  771.924159][ T1338] Call Trace:
[  771.927439][ T1338]  <TASK>
[  771.930378][ T1338]  dump_stack_lvl+0x99/0x250
[  771.934993][ T1338]  ? __asan_memcpy+0x40/0x70
[  771.939594][ T1338]  ? __pfx_dump_stack_lvl+0x10/0x10
[  771.944802][ T1338]  ? __pfx__printk+0x10/0x10
[  771.949408][ T1338]  panic+0x2db/0x790
[  771.953317][ T1338]  ? __pfx_panic+0x10/0x10
[  771.957756][ T1338]  ? ret_from_fork_asm+0x1a/0x30
[  771.962704][ T1338]  __warn+0x31b/0x4b0
[  771.966693][ T1338]  ? __linkwatch_sync_dev+0x303/0x350
[  771.972085][ T1338]  ? __linkwatch_sync_dev+0x303/0x350
[  771.977462][ T1338]  report_bug+0x2be/0x4f0
[  771.981812][ T1338]  ? __linkwatch_sync_dev+0x303/0x350
[  771.987192][ T1338]  ? __linkwatch_sync_dev+0x303/0x350
[  771.992575][ T1338]  ? __linkwatch_sync_dev+0x305/0x350
[  771.997952][ T1338]  handle_bug+0x84/0x160
[  772.002199][ T1338]  exc_invalid_op+0x1a/0x50
[  772.006712][ T1338]  asm_exc_invalid_op+0x1a/0x20
[  772.011570][ T1338] RIP: 0010:__linkwatch_sync_dev+0x303/0x350
[  772.017587][ T1338] Code: 7c fe ff ff e8 0e 43 67 f8 c6 05 31 37 32 06 01 90 48 c7 c7 60 25 93 8c 48 c7 c6 4e 33 9d 8d ba 48 00 00 00 e8 6e e2 2a f8 90 <0f> 0b 90 90 e9 4d fe ff ff 44 89 f1 80 e1 07 38 c1 0f 8c 22 fd ff
[  772.037211][ T1338] RSP: 0018:ffffc9000442f670 EFLAGS: 00010246
[  772.043283][ T1338] RAX: 4683fea98227dd00 RBX: ffff88802a24c000 RCX: ffff888027cc8000
[  772.051262][ T1338] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000002
[  772.059237][ T1338] RBP: 0000000000000000 R08: 0000000000000003 R09: 0000000000000004
[  772.067206][ T1338] R10: dffffc0000000000 R11: fffffbfff1bfaa14 R12: 1ffff1100544985d
[  772.075184][ T1338] R13: dffffc0000000000 R14: ffffffff8c1c8ea8 R15: 0000000000000000
[  772.083188][ T1338]  ? ethtool_op_get_link+0xd/0x70
[  772.088221][ T1338]  ethtool_op_get_link+0x15/0x70
[  772.093165][ T1338]  bond_check_dev_link+0x447/0x6c0
[  772.098299][ T1338]  ? __pfx_bond_check_dev_link+0x10/0x10
[  772.103941][ T1338]  ? netdev_lower_get_next_private_rcu+0x9f/0x100
[  772.110367][ T1338]  bond_mii_monitor+0x428/0x2e00
[  772.115324][ T1338]  ? bond_mii_monitor+0x153/0x2e00
[  772.120457][ T1338]  ? __pfx_preempt_schedule_irq+0x10/0x10
[  772.126197][ T1338]  ? __pfx_bond_mii_monitor+0x10/0x10
[  772.131587][ T1338]  ? irqentry_exit+0x74/0x90
[  772.136193][ T1338]  ? lockdep_hardirqs_on+0x9c/0x150
[  772.141409][ T1338]  ? process_scheduled_works+0x9ef/0x17b0
[  772.147144][ T1338]  ? lock_acquire+0x175/0x360
[  772.151837][ T1338]  ? _raw_spin_unlock_irq+0x23/0x50
[  772.157038][ T1338]  ? process_scheduled_works+0x9ef/0x17b0
[  772.162766][ T1338]  ? process_scheduled_works+0x9ef/0x17b0
[  772.168497][ T1338]  process_scheduled_works+0xade/0x17b0
[  772.174071][ T1338]  ? __pfx_process_scheduled_works+0x10/0x10
[  772.180071][ T1338]  worker_thread+0x8a0/0xda0
[  772.184665][ T1338]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  772.191002][ T1338]  ? __kthread_parkme+0x7b/0x200
[  772.195943][ T1338]  kthread+0x711/0x8a0
[  772.200014][ T1338]  ? __pfx_worker_thread+0x10/0x10
[  772.205147][ T1338]  ? __pfx_kthread+0x10/0x10
[  772.209757][ T1338]  ? _raw_spin_unlock_irq+0x23/0x50
[  772.214955][ T1338]  ? lockdep_hardirqs_on+0x9c/0x150
[  772.220154][ T1338]  ? __pfx_kthread+0x10/0x10
[  772.224750][ T1338]  ret_from_fork+0x3f9/0x770
[  772.229350][ T1338]  ? __pfx_ret_from_fork+0x10/0x10
[  772.234478][ T1338]  ? __switch_to_asm+0x39/0x70
[  772.239239][ T1338]  ? __switch_to_asm+0x33/0x70
[  772.244005][ T1338]  ? __pfx_kthread+0x10/0x10
[  772.248599][ T1338]  ret_from_fork_asm+0x1a/0x30
[  772.253382][ T1338]  </TASK>
[  772.256776][ T1338] Kernel Offset: disabled
[  772.261132][ T1338] Rebooting in 86400 seconds..