last executing test programs:

8.788608337s ago: executing program 2 (id=705):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0xffffffff, 0x1, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r1, 0xf, 0x0, 0xfffffebe, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

7.531695281s ago: executing program 2 (id=711):
set_mempolicy(0x4005, &(0x7f0000000040), 0x4)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000080)='tasks\x00', 0x2, 0x0)
write$cgroup_pid(r1, &(0x7f0000000880), 0x12)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)

7.257034233s ago: executing program 2 (id=715):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000900)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7b5, 0x312, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f00000003c0)={0x2c, &(0x7f0000000040)={0x0, 0x0, 0x5, {0x5, 0x0, "a7ea31"}}, 0x0, 0x0, 0x0, 0x0}, 0x0)

6.227650598s ago: executing program 4 (id=720):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x5, 0x2, 0x7}, 0x48)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
close(r0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x12, 0x6, 0x4, 0x6}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0x10, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000b98cad95850000000300000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x10, &(0x7f0000000180)=ANY=[], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, &(0x7f00000000c0)=r2, 0x4)
sendmsg$unix(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, 0x0}, 0x0)

4.211653964s ago: executing program 4 (id=725):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_PORT_GET(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="600000000514010028bd7000fedbdf250800010001000000080003"], 0x60}}, 0x0)

3.963342214s ago: executing program 4 (id=727):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f00000016c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x1000806, &(0x7f0000001c40)={[{@gid}, {}, {@gid={'gid', 0x3d, 0xee01}}, {@allow_utime={'allow_utime', 0x3d, 0x10000}}, {@gid}, {@dmask={'dmask', 0x3d, 0x7}}, {@umask={'umask', 0x3d, 0x7}}, {@errors_remount}, {@errors_remount}, {@errors_remount}, {}, {@errors_remount}, {@fmask={'fmask', 0x3d, 0x8000}}], [{@audit}, {@subj_role={'subj_role', 0x3d, '\'\\$\xfb\x18\x00\x00![:,@}[Y'}}, {@fowner_lt}, {@fsname={'fsname', 0x3d, 'part'}}]}, 0x1, 0x1505, &(0x7f0000000180)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0)
syz_mount_image$reiserfs(&(0x7f0000000100), &(0x7f0000006000)='./file0\x00', 0xa04001, &(0x7f00000003c0)={[{@errors_ro_remount}, {@user_xattr}, {@conv}, {@jdev={'jdev', 0x3d, '\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/'}}, {@tails_off}, {@balloc_noborder}, {@commit={'commit', 0x3d, 0x7}}, {@barrier_none}, {@balloc_border}, {@usrjquota_file}, {}, {@grpquota}, {@resize_auto}, {@resize={'resize', 0x3d, 0x2}}, {@grpjquota}, {@balloc_test4}], [{@uid_lt={'uid<', 0xffffffffffffffff}}, {@defcontext={'defcontext', 0x3d, 'sysadm_u'}}]}, 0xfd, 0x1121, &(0x7f0000001540)="$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")
write$binfmt_script(r0, 0x0, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x10012, r0, 0x0)
mount$bind(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0)

3.908976009s ago: executing program 3 (id=728):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=@newlink={0xe8, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0xc8, 0x12, 0x0, 0x1, @vlan={{0x9}, {0xb8, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_PROTOCOL={0x6}, @IFLA_VLAN_ID={0x6}, @IFLA_VLAN_ID={0x6}, @IFLA_VLAN_EGRESS_QOS={0x10, 0x3, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}]}, @IFLA_VLAN_EGRESS_QOS={0x64, 0x3, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_PROTOCOL={0x6, 0x5, 0x8100}]}}}]}, 0xe8}}, 0x0)

3.671162868s ago: executing program 3 (id=729):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
munmap(&(0x7f0000f2a000/0x2000)=nil, 0x2000)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
mmap$KVM_VCPU(&(0x7f0000f2a000/0x3000)=nil, 0x930, 0x0, 0x10, r2, 0x0)
openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
munmap(&(0x7f0000f2a000/0x2000)=nil, 0x2000)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_DEVICE(0xffffffffffffffff, 0xc00caee0, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
munmap(&(0x7f0000470000/0x400000)=nil, 0xe06500)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000200)={0x7, <r3=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r3, 0x4018aee1, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0})
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
eventfd2(0x0, 0x0)
ioctl$KVM_INTERRUPT(r2, 0x4004ae86, 0x0)

3.257651472s ago: executing program 3 (id=731):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, 0x0, 0x0, 0x0, 0x0)

3.257035782s ago: executing program 4 (id=732):
r0 = syz_usb_connect$hid(0x0, 0x0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f00000003c0)={0x2c, &(0x7f0000000040)={0x0, 0x0, 0x7, {0x7, 0x0, "a7ea3163fd"}}, 0x0, 0x0, 0x0, 0x0}, 0x0)

2.43658402s ago: executing program 1 (id=733):
set_mempolicy(0x4005, &(0x7f0000000040), 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000080)='tasks\x00', 0x2, 0x0)
write$cgroup_pid(r1, &(0x7f0000000880), 0x12)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)

2.403574742s ago: executing program 0 (id=734):
r0 = syz_open_dev$evdev(&(0x7f00000013c0), 0x0, 0x0)
ioctl$EVIOCSCLOCKID(r0, 0x400445a0, &(0x7f0000001400)=0x8000000)

2.378343555s ago: executing program 3 (id=735):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x5, 0x2, 0x7}, 0x48)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
close(r0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x12, 0x6, 0x4, 0x6}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0x10, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000b98cad95850000000300000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x10, &(0x7f0000000180)=ANY=[], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, &(0x7f00000000c0)=r2, 0x4)
sendmsg$unix(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, 0x0}, 0x0)

2.345519398s ago: executing program 2 (id=736):
r0 = socket(0x0, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'syz_tun\x00', <r1=>0x0})
bind$packet(r0, &(0x7f0000000140)={0x11, 0x15, r1, 0x1, 0x0, 0x6, @broadcast}, 0x14)
bind$packet(r0, &(0x7f0000000080)={0x11, 0x800, r1, 0x1, 0x0, 0x6, @multicast}, 0x14)

2.147740804s ago: executing program 0 (id=737):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000180), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r0, 0x40a85323, 0x0)

2.093415068s ago: executing program 3 (id=738):
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x201c448, &(0x7f0000000240)=ANY=[@ANYRES64=0x0, @ANYRES16, @ANYBLOB="2c6769643cfdcf0b77ac6521230a8e69bd954673aa802f1833d29130aeed4c22f81044f553f456f9bfb5098b2a9e93a548712e8ab98eb09e6416868eb529124b101953e0856f719f3a5ef09399b0", @ANYRESDEC=0xee00, @ANYBLOB="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"], 0x0, 0xa78, &(0x7f0000000540)="$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")
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000c00), 0xffffffffffffffff)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="14000000680001"], 0x1c}}, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000340)=ANY=[], 0x0, 0x56}, 0x20)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000000c0)={0x0, 0x48}}, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0)
setresuid(0x0, 0xee01, 0xffffffffffffffff)
open(0x0, 0x0, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x21081e, &(0x7f0000000dc0), 0x1, 0x4fe, &(0x7f0000000080)="$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")
socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_inet6_SIOCADDRT(0xffffffffffffffff, 0x890b, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r2, 0x1, 0xf, &(0x7f0000000180)=0x800001, 0x4)
bind$inet6(r2, &(0x7f0000000140)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
listen(r2, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000480)={@local, @random="1a0e2c5ffd4d", @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @empty, @broadcast}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x11}}}}}}, 0x0)

2.07516138s ago: executing program 1 (id=739):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=@newlink={0xe8, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0xc8, 0x12, 0x0, 0x1, @vlan={{0x9}, {0xb8, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_PROTOCOL={0x6}, @IFLA_VLAN_ID={0x6}, @IFLA_VLAN_ID={0x6}, @IFLA_VLAN_EGRESS_QOS={0x10, 0x3, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}]}, @IFLA_VLAN_EGRESS_QOS={0x64, 0x3, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_PROTOCOL={0x6, 0x5, 0x8100}]}}}]}, 0xe8}}, 0x0)

2.000266356s ago: executing program 0 (id=740):
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl(r1, 0x8b32, &(0x7f0000000040))

1.857485668s ago: executing program 1 (id=741):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0xffffffff, 0x1, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r1, 0xf, 0x0, 0xfffffebe, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

1.791155333s ago: executing program 2 (id=742):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, 0x0)
read$FUSE(r0, &(0x7f0000006840)={0x2020, 0x0, 0x0, <r1=>0x0, <r2=>0x0, <r3=>0x0}, 0x2020)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006780)={0x90}, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006780)={0x90, 0x0, 0x0, {0x5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x10b}}}, 0x0, 0x0, 0x0, 0x0})
connect$inet6(0xffffffffffffffff, &(0x7f0000001bc0)={0xa, 0x0, 0x0, @local, 0x5}, 0x1c)
sendto$inet6(0xffffffffffffffff, &(0x7f00000000c0)="800037e9220ca1ce", 0x8, 0x0, &(0x7f0000000040)={0xa, 0x0, 0x0, @local, 0x7f}, 0x1c)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
umount2(&(0x7f00000001c0)='./file0/file0\x00', 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r4, 0x541b, &(0x7f0000000240)={<r6=>0xffffffffffffffff})
r7 = getpid()
sched_setscheduler(r7, 0x2, &(0x7f0000000200)=0x6)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x0, 0x0, 0x4, 0x0, 0x0, 0x1}, 0x48)
ioctl$sock_SIOCGPGRP(r5, 0x8904, 0x0)
r8 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r8, 0x29, 0x20, &(0x7f0000000080)={@private0, 0x8000000, 0x0, 0xff, 0x1}, 0x20)
sendmsg$netlink(r6, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000bc0)=[{&(0x7f0000000300)={0x1c0, 0x1f, 0x100, 0x70bd2b, 0x25dfdbfc, "", [@generic="ff43e92296249702784d0657a0af27f71f347bfeee1a36c3d38e47dc984b24eac626770789c1e1f0b1b45386f05408d8fc23864cc300d1836e6d89d9a108ccdf218fc22114d93b244dde8a0c8be0abbe9c48a2056a9373326736b1d1905c6860a664742617d1e55c4ff3d74a416c656b61e04fcd23a8454470caa2ec4480a57e9377e52bdf711dfae5f88c05eb28980af4f8950b2da739fc4c513afc7aaa48dbf3b85f31168244c5474f10a5c82c72", @nested={0xff, 0x141, 0x0, 0x1, [@typed={0xc, 0x99, 0x0, 0x0, @u64=0x6}, @generic="b0ccc56b93b975cfa38b5bb40a6cf3611caa32fa39381735e0338f4e0c5c4748f0af3941ef42eab9b7ca0fc0868780bc785a70e5ac9581094f4eb08fb26f851e3096851c7545e81c459f9042f9c61b0f66745b38e8984b1d21302f4c8d20c4a2012b802e6223090a4a070ad142b77bc1d768bada499681f9aed09da054e756b5b34a434d86a6ddd8a86f5e21b10c28986f6a6f8cbf5e64a9a24aeaf6ce8bff0b05ae7b8d87d01fdab9e69c9f4412daa86a35f1e82bdc49614d674df883c82e1a2d5a76270ab594e8675d28d9f31aa6d5c381c1ff1ee7456931a16e7ff19de19ee45152980047c6", @typed={0x8, 0x22, 0x0, 0x0, @pid=r7}]}]}, 0x1c0}, {&(0x7f0000000000)={0x34, 0x29, 0x8, 0x70bd28, 0x25dfdbfe, "", [@generic="4d6ee87301f4f4db52dcfa970c2937e9340806da9f624762c7c798ec596c1f8df5222b"]}, 0x34}, {&(0x7f00000004c0)={0x84, 0x3c, 0x2, 0x70bd27, 0x25dfdbfb, "", [@nested={0xc, 0xee, 0x0, 0x1, [@typed={0x8, 0x124, 0x0, 0x0, @pid=r3}]}, @typed={0x8, 0x45, 0x0, 0x0, @pid=r3}, @generic="87610b6278b53b99a1cd32d880d45ac52dda4a7a36fa7307db26d62efadd3340ca34b4c48ec17926c0f9d773d664ef06742c998230880da8d4962ed3c9dee0300c603330b33320bdba0c2d400532f901bd8126ea205888e4a4c3dde7a2aa31"]}, 0x84}, {&(0x7f00000005c0)={0x10, 0x12, 0x10, 0x70bd29, 0x25dfdbfb}, 0x10}, {0x0}, {&(0x7f0000000880)={0x6c, 0x2c, 0x200, 0x70bd29, 0x0, "", [@generic="b0b71943b70b62b031e1e198c72b1b7f1e103808a1b25e8ed180af862952ce18012b1c1395bb24ac16c0fd29637f0ab07ec32ca28d30e8f6eb1f5dbeadc44f90c23b74c724907670730c4aa62eeb7e", @typed={0xc, 0xd0, 0x0, 0x0, @u64=0x6}]}, 0x6c}, {&(0x7f0000000900)={0x13c, 0x1b, 0x100, 0x70bd28, 0x25dfdbfc, "", [@typed={0x8, 0xbf, 0x0, 0x0, @u32=0x7}, @nested={0x5c, 0x107, 0x0, 0x1, [@typed={0x8, 0x9a, 0x0, 0x0, @pid}, @generic="f1fb2e4fe218e4f87c34d61e69e4fcfbd42517b439e0c4a754180eff5b417a18e85c9b6e20f1827df04ed02382c839c279a069e110b44bc9a2999812537ad83a6d80d3fbf6f385897f9f3d8931705548"]}, @nested={0xbe, 0x131, 0x0, 0x1, [@generic, @generic="c5370f381fe360cce673f305a17d1e65def363cfaa2eab0e6aa6b23cd7ad98b195bfdad25db9a47d173871bb0fe27df553ae7ec85d7558b8c91cb0c2122eb0b7b854f917be07c2be63a3054594ad4b9b2dbc12ada4e6b7e2f44ddb86d7aa8fa054de22e3253b0176a2a5408467e1a558c41f659c8728452b6ad53f97e13dc5dec58e7b6b0eb94b11d49e31c2297221f7b2621c011f546f679780c448e55672b7bdbc3d767ddbf527bdc9f9aa6638", @typed={0xc, 0x66, 0x0, 0x0, @u64=0x9}]}, @typed={0x8, 0x0, 0x0, 0x0, @uid=r1}]}, 0x13c}, {&(0x7f0000000280)={0x18, 0x3c, 0x10, 0x70bd2d, 0x25dfdbfd, "", [@typed={0x6, 0x8b, 0x0, 0x0, @str='fd'}]}, 0x18}], 0x8, &(0x7f0000000d40)=[@cred={{0x1c, 0x1, 0x2, {r3, r1, r2}}}, @cred={{0x1c, 0x1, 0x2, {r3, r1}}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r8, r6]}}, @rights={{0x20, 0x1, 0x1, [r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {r3, r1, r2}}}, @cred={{0x1c, 0x1, 0x2, {r3, r1, r2}}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0xd8, 0x20008844}, 0x20000000)
close_range(r6, 0xffffffffffffffff, 0x0)

1.777607314s ago: executing program 4 (id=743):
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x12, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x0, 0x0, 0x0, 0x700}]}, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x14, 0xffffffffffffffff, 0xf00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x80)

1.642374615s ago: executing program 3 (id=744):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x9)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000000)={'wlan1\x00'})
sendmsg$NL80211_CMD_START_AP(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000040)={&(0x7f0000001500)={0xc0, r1, 0x100, 0x0, 0x0, {{}, {@void, @val={0xc}}}, [@NL80211_ATTR_P2P_CTWINDOW={0x5, 0xa2, 0x3}, @NL80211_ATTR_HIDDEN_SSID={0x8, 0x7e, 0x1}, @NL80211_ATTR_HE_BSS_COLOR={0x10, 0x11b, 0x0, 0x1, [@NL80211_HE_BSS_COLOR_ATTR_PARTIAL={0x4}, @NL80211_HE_BSS_COLOR_ATTR_COLOR={0x5, 0x1, 0x20}]}, @NL80211_ATTR_HE_OBSS_PD={0x64, 0x117, 0x0, 0x1, [@NL80211_HE_OBSS_PD_ATTR_NON_SRG_MAX_OFFSET={0x5, 0x3, 0x10}, @NL80211_HE_OBSS_PD_ATTR_NON_SRG_MAX_OFFSET={0x5, 0x3, 0x11}, @NL80211_HE_OBSS_PD_ATTR_BSS_COLOR_BITMAP={0xc, 0x4, "dbc664a68095ac70"}, @NL80211_HE_OBSS_PD_ATTR_SR_CTRL={0x5, 0x6, 0x9}, @NL80211_HE_OBSS_PD_ATTR_SR_CTRL={0x5, 0x6, 0x7}, @NL80211_HE_OBSS_PD_ATTR_MAX_OFFSET={0x5, 0x2, 0x14}, @NL80211_HE_OBSS_PD_ATTR_NON_SRG_MAX_OFFSET={0x5, 0x3, 0xf}, @NL80211_HE_OBSS_PD_ATTR_NON_SRG_MAX_OFFSET={0x5, 0x3, 0x12}]}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ibss_ssid}, @NL80211_ATTR_P2P_CTWINDOW={0x5, 0xa2, 0x4}, @NL80211_ATTR_HIDDEN_SSID={0x8, 0x7e, 0x1}]}, 0xc0}, 0x1, 0x0, 0x0, 0x24008851}, 0x20044001)
socket$inet(0x2, 0x4000000000000001, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f00000014c0), 0xffffffffffffffff)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f0000000080)={'wlan1\x00', <r8=>0x0})
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000002c0)={0x2c, r6, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r8}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x98f}], @NL80211_ATTR_CH_SWITCH_COUNT={0x8}]}, 0x2c}}, 0x0)
sendmsg$NL80211_CMD_GET_STATION(r3, &(0x7f0000000100)={&(0x7f0000000000), 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x30, r6, 0x100, 0x70bd2d, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_STA_FLAGS2={0xc, 0x43, {0x4, 0x4}}, @NL80211_ATTR_STA_AID={0x6, 0x10, 0x43e}, @NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x9}]}, 0x30}, 0x1, 0x0, 0x0, 0x20040000}, 0x40000)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r4, 0x8933, &(0x7f0000000180)={'batadv0\x00', <r9=>0x0})
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f0000000200)={'batadv_slave_0\x00', <r10=>0x0})
r11 = syz_genetlink_get_family_id$batadv(&(0x7f00000000c0), r3)
sendmsg$BATADV_CMD_SET_HARDIF(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000e00)={0x2c, r11, 0x18fe2a01ed25d92f, 0x0, 0x0, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r9}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r10}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8}]}, 0x2c}}, 0x0)
r12 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$UI_BEGIN_FF_ERASE(r12, 0x4004556b, &(0x7f0000000000))
syz_usbip_server_init(0x5)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000340)={'wlan1\x00'})
connect$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10)

1.564183152s ago: executing program 1 (id=745):
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x420000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[], 0x0, 0x37, 0x0, 0x1}, 0x20)
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f00000001c0)={{{@in=@rand_addr=0x64010102, @in6=@local, 0x4e22, 0x7, 0x4e21, 0x8, 0xa}, {0x40f, 0x4, 0x8, 0x0, 0x8, 0x0, 0x0, 0x5}, {0x0, 0x3cb, 0x7f}, 0x0, 0x6e6bbc, 0x2, 0x0, 0x3}, {{@in=@multicast2, 0x4d2, 0x33}, 0x4, @in, 0x0, 0x0, 0x1, 0x4, 0x2, 0x1000}}, 0xe8)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
syz_open_dev$sndpcmp(&(0x7f0000000040), 0x0, 0x0)
r4 = syz_open_dev$admmidi(&(0x7f0000000140), 0x20, 0x0)
keyctl$chown(0x6, 0x0, 0x0, 0x0)
ioctl$SNDRV_RAWMIDI_IOCTL_PARAMS(r4, 0xc0305710, &(0x7f0000000040)={0x1, 0x0, 0x1f})

1.503511537s ago: executing program 4 (id=746):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
syz_mount_image$iso9660(&(0x7f0000000140), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000180)=ANY=[@ANYRES8=r2], 0x13, 0xa10, &(0x7f00000001c0)="$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")
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x2000040, &(0x7f0000000d80)={[{@resgid={'resgid', 0x3d, 0xee00}}, {@grpquota}, {@noblock_validity}, {@init_itable}, {@stripe={'stripe', 0x3d, 0x2e}}, {@resgid}, {@sysvgroups}, {@norecovery}, {@jqfmt_vfsv0}]}, 0x1, 0x4d2, &(0x7f00000002c0)="$eJzs3c9rHG8ZAPBnJtlvf+VrUvVQC7bFVtKi3U0a2wYPtYLYU8Fa7zUmmxCyyYbspm1CkRTvCiIqePLkRfAPEKR/gggFvUsVRbTVgwd1ZWdnaxt3m0i3OzX5fGA67zvv7j7P27Az88687ARwaJ2LiJsRMRIRlyJiPN+e5sutdvudzutePH80316SaLXu/jmJJN/W/awkX5+IiJ2IOBoRX70V8Y3kv+M2trZX5mq16kZerzRX1yuNre3Ly6tzS9Wl6trMzPS12euzV2enBtLPiYi48aXff/87P/nyjV989sFv7/3x4jfbaY3l7a/2Y5A6XS9l/xddoxGx8S6CFWAkX5f6tH97ZIjJAACwp/Y5/kcj4lPZ+f94jGRnpwAAAMBB0vrCWPwjiWgBAAAAB1aazYFN0nI+F2As0rRc7szh/XgcT2v1RvMzi/XNtYXOXNmJKKWLy7XqVD5XeCJKSbs+nc+x7dav7KrPRMTJiPje+LGsXp6v1xaKvvgBAAAAh8SJXeP/v41n4/8jRecFAAAADNhE0QkAAAAA75zxPwAAABx8xv8AAABwoH3l9u320uo+/3rh/tbmSv3+5YVqY6W8ujlfnq9vrJeX6vWl7Df7Vvf6vFq9vv65WNt8WGlWG81KY2v73mp9c615b/m1R2ADAAAAQ3Ty7JPfJBGx8/lj2dL2QdFJAUOR7NGePSTkWV753RASAoZmpOgEgMKMFp0AUJhS0QkAhdvrOkDfyTu/HHwuAADAuzH5if73/10bgIMtLToBAGDo3P+Hw6v0+gzAq8VlAhTlI3u0v/39/1brf0oIAAAYuLFsSdJyfi9wLNK0XI74MHssQClZXK5Vp/Lxwa/HS0fa9ensncmec4YBAAAAAAAAAAAAAAAAAAAAAAAAgI5WK4kWAAAAcKBFpH9Isl/zj5gcvzC2+/rAB8nfx7N1RDz40d0fPJxrNjem29v/8nJ784f59itFXMEAAAAAduuO07vjeAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYpBfPH813l2HG/dMXI2KiZ/yzR7PV0ShFxPG/JjH6yvuSiBgZQPydxxFxqlf8pJ1WTEQni17xjxUYP42IEwOID4fZk/b+52av718a57J17+/faL68rf77vzS6+7+RPvufD/cZ4/TTn1X6xn8ccXq09/6nGz/pE//8PuN//Wvb2/3aWj+OmOx5/Elei1Vprq5XGlvbl5dX55aqS9W1mZnpa7PXZ6/OTlUWl2vV/N+eMb77yZ//6039P94n/sQe/b+wz/7/8+nD5x/rFEu94l883/v4e6pP/DQ/9n06L7fbJ7vlnU75VWd++qszb+r/Qp/+v/z79zjQtmNe3Gf/L9351rN9vhQAGILG1vbKXK1W3fh/LKTxXqShMJDCkfcjDYVOoeg9EwAAMGj/OekvOhMAAAAAAAAAAAAAAAAAAAA4vIbxc2K7Y+4U01UAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgDf6dwAAAP//sf7Zeg==")
ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000140))
ioctl$KVM_RUN(r3, 0xae80, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)

1.499159627s ago: executing program 0 (id=747):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x1, &(0x7f00000005c0), 0x4)

535.406116ms ago: executing program 1 (id=748):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x5, 0x2, 0x7}, 0x48)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
close(r0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x12, 0x6, 0x4, 0x6}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0x10, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000b98cad95850000000300000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x10, &(0x7f0000000180)=ANY=[], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, &(0x7f00000000c0)=r2, 0x4)
sendmsg$unix(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, 0x0}, 0x0)

435.630685ms ago: executing program 2 (id=749):
set_mempolicy(0x4005, &(0x7f0000000040), 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000080)='tasks\x00', 0x2, 0x0)
write$cgroup_pid(r1, &(0x7f0000000880), 0x12)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)

351.211532ms ago: executing program 0 (id=750):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000180), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r0, 0x40a85323, 0x0)

131.26135ms ago: executing program 1 (id=751):
openat$autofs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$AUTOFS_IOC_EXPIRE_MULTI(0xffffffffffffffff, 0x40049366, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x420000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$mptcp(&(0x7f0000002f40), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r3, &(0x7f0000003080)={0x0, 0x0, &(0x7f0000003040)={&(0x7f0000002f80)={0x1c, r4, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_SUBFLOWS={0x8}]}, 0x1c}}, 0x0)

0s ago: executing program 0 (id=752):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=@newlink={0xe4, 0x10, 0xffffff1f, 0x0, 0x0, {}, [@IFLA_LINKINFO={0xc4, 0x12, 0x0, 0x1, @vlan={{0x9}, {0xb4, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_PROTOCOL={0x6}, @IFLA_VLAN_ID={0x6}, @IFLA_VLAN_ID={0x6}, @IFLA_VLAN_EGRESS_QOS={0x10, 0x3, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}]}, @IFLA_VLAN_EGRESS_QOS={0x64, 0x3, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}, @IFLA_VLAN_QOS_MAPPING={0xc}]}, @IFLA_VLAN_PROTOCOL={0x6}, @IFLA_VLAN_FLAGS={0xc}, @IFLA_VLAN_PROTOCOL={0x6, 0x5, 0x8100}]}}}]}, 0xe4}}, 0x0)

kernel console output (not intermixed with test programs):

864] EXT4-fs (loop0): 1 truncate cleaned up
[  175.984270][ T4864] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  175.995088][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  176.017906][ T4864] ext4 filesystem being mounted at /9/file0 supports timestamps until 2038 (0x7fffffff)
[  176.128968][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  176.139028][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  176.156282][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  176.180868][ T4874] loop1: detected capacity change from 0 to 128
[  176.195620][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  176.213514][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  176.268869][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  176.289224][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  176.444158][ T4880] loop3: detected capacity change from 0 to 65
[  176.480005][ T4880] BFS-fs: bfs_fill_super(): Superblock is corrupted on loop3
[  177.311688][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  177.415133][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  177.446010][ T4871] netlink: 'syz.4.235': attribute type 5 has an invalid length.
[  177.479351][ T4766] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  177.536643][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  177.602717][ T4428] EXT4-fs (loop0): unmounting filesystem.
[  177.808960][ T4893] FAULT_INJECTION: forcing a failure.
[  177.808960][ T4893] name failslab, interval 1, probability 0, space 0, times 0
[  177.831466][ T4887] loop1: detected capacity change from 0 to 2048
[  177.851769][ T4887] UDF-fs: bad mount option "euid<18446744073709551615" or missing value
[  177.867155][ T4893] CPU: 1 PID: 4893 Comm: syz.4.240 Not tainted 6.1.102-syzkaller #0
[  177.875292][ T4893] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  177.885382][ T4893] Call Trace:
[  177.888692][ T4893]  <TASK>
[  177.891649][ T4893]  dump_stack_lvl+0x1e3/0x2cb
[  177.896368][ T4893]  ? nf_tcp_handle_invalid+0x642/0x642
[  177.901872][ T4893]  ? panic+0x764/0x764
[  177.905986][ T4893]  should_fail_ex+0x3a6/0x4d0
[  177.910701][ T4893]  should_failslab+0x5/0x20
[  177.915240][ T4893]  slab_pre_alloc_hook+0x59/0x300
[  177.920310][ T4893]  kmem_cache_alloc+0x4e/0x2d0
[  177.925113][ T4893]  ? __nf_conntrack_alloc+0x8f/0x380
[  177.930447][ T4893]  __nf_conntrack_alloc+0x8f/0x380
[  177.935614][ T4893]  init_conntrack+0x3f6/0x14e0
[  177.940422][ T4893]  ? __nf_conntrack_find_get+0x607/0x760
[  177.946118][ T4893]  ? early_drop+0x940/0x940
[  177.950642][ T4893]  ? nf_conntrack_find_get+0x7a0/0x7a0
[  177.956120][ T4893]  ? nf_conntrack_in+0x754/0x1d10
[  177.961163][ T4893]  nf_conntrack_in+0xf4c/0x1d10
[  177.966055][ T4893]  ? nf_ct_pernet+0x270/0x270
[  177.970783][ T4893]  ? ipt_do_table+0x2ff/0x17c0
[  177.975589][ T4893]  ? ipt_alloc_initial_table+0x570/0x570
[  177.981241][ T4893]  ? ipv4_conntrack_defrag+0x2a1/0x5e0
[  177.986705][ T4893]  ? ipv4_conntrack_local+0x11c/0x200
[  177.992109][ T4893]  ? ipv4_conntrack_in+0x20/0x20
[  177.997055][ T4893]  nf_hook_slow+0xae/0x1e0
[  178.001499][ T4893]  ? nf_hook+0x450/0x450
[  178.005753][ T4893]  nf_hook+0x2c0/0x450
[  178.009853][ T4893]  ? dst_release+0x51/0xe0
[  178.014278][ T4893]  ? nf_hook+0x9a/0x450
[  178.018441][ T4893]  ? __ip_local_out+0x4a0/0x4a0
[  178.023305][ T4893]  ? nf_hook+0x450/0x450
[  178.027564][ T4893]  ? ip_setup_cork+0x4a2/0x860
[  178.032341][ T4893]  ? ip_fast_csum+0x1ec/0x2a0
[  178.037036][ T4893]  __ip_local_out+0x38b/0x4a0
[  178.041724][ T4893]  ? nf_hook+0x450/0x450
[  178.045997][ T4893]  ip_send_skb+0x49/0x1a0
[  178.050337][ T4893]  udp_send_skb+0xa33/0x1420
[  178.054956][ T4893]  udp_sendmsg+0x1d10/0x2ad0
[  178.059577][ T4893]  ? ip_skb_dst_mtu+0x9d0/0x9d0
[  178.064435][ T4893]  ? udp_cmsg_send+0x340/0x340
[  178.069211][ T4893]  ? __lock_acquire+0x125b/0x1f80
[  178.074251][ T4893]  ? mark_lock+0x9a/0x340
[  178.078604][ T4893]  ? __lock_acquire+0x125b/0x1f80
[  178.083650][ T4893]  ? __lock_acquire+0x125b/0x1f80
[  178.088716][ T4893]  udpv6_sendmsg+0xd24/0x30e0
[  178.093419][ T4893]  ? udp_v6_early_demux+0xfe0/0xfe0
[  178.098629][ T4893]  ? print_irqtrace_events+0x210/0x210
[  178.104111][ T4893]  ? _local_bh_enable+0xa0/0xa0
[  178.108976][ T4893]  ? inet_send_prepare+0x1ad/0x250
[  178.114098][ T4893]  ? do_raw_spin_unlock+0x137/0x8a0
[  178.119308][ T4893]  ? inet_send_prepare+0x1ad/0x250
[  178.124435][ T4893]  ? inet6_compat_ioctl+0x550/0x550
[  178.129662][ T4893]  ____sys_sendmsg+0x5a5/0x8f0
[  178.134450][ T4893]  ? __sys_sendmsg_sock+0x30/0x30
[  178.139499][ T4893]  __sys_sendmmsg+0x3ab/0x730
[  178.144215][ T4893]  ? __ia32_sys_sendmsg+0x90/0x90
[  178.149282][ T4893]  ? ksys_write+0x23a/0x2c0
[  178.153795][ T4893]  ? proc_fail_nth_read+0x210/0x210
[  178.159102][ T4893]  ? __lock_acquire+0x1f80/0x1f80
[  178.164160][ T4893]  ? vfs_write+0x6cf/0xbc0
[  178.168856][ T4893]  ? __mutex_unlock_slowpath+0x218/0x750
[  178.174511][ T4893]  ? file_end_write+0x250/0x250
[  178.179388][ T4893]  ? print_irqtrace_events+0x210/0x210
[  178.184864][ T4893]  ? syscall_enter_from_user_mode+0x2e/0x230
[  178.190855][ T4893]  __x64_sys_sendmmsg+0x9c/0xb0
[  178.195737][ T4893]  do_syscall_64+0x3b/0xb0
[  178.200162][ T4893]  ? clear_bhb_loop+0x45/0xa0
[  178.204852][ T4893]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  178.211715][ T4893] RIP: 0033:0x7f2384777299
[  178.216162][ T4893] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  178.235796][ T4893] RSP: 002b:00007f2385517048 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  178.244234][ T4893] RAX: ffffffffffffffda RBX: 00007f2384905f80 RCX: 00007f2384777299
[  178.252212][ T4893] RDX: 0000000000000002 RSI: 0000000020000080 RDI: 0000000000000003
[  178.260187][ T4893] RBP: 00007f23855170a0 R08: 0000000000000000 R09: 0000000000000000
[  178.268163][ T4893] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  178.276136][ T4893] R13: 000000000000000b R14: 00007f2384905f80 R15: 00007ffe4ff0e708
[  178.284146][ T4893]  </TASK>
[  178.450829][ T3689] usb 1-1: new low-speed USB device number 3 using dummy_hcd
[  178.584876][ T3685] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  178.608274][ T3685] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  178.643043][ T4766] 8021q: adding VLAN 0 to HW filter on device batadv0
[  178.717927][ T3689] usb 1-1: Invalid ep0 maxpacket: 64
[  178.718530][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  178.748699][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  178.809340][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  178.818888][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  178.840130][ T4766] device veth0_vlan entered promiscuous mode
[  178.860937][ T4888] loop3: detected capacity change from 0 to 32768
[  178.865194][ T3681] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  178.887949][ T3689] usb 1-1: new low-speed USB device number 4 using dummy_hcd
[  178.903807][ T3681] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  178.928461][ T4766] device veth1_vlan entered promiscuous mode
[  178.936953][ T4888] XFS (loop3): Mounting V5 Filesystem
[  178.956798][ T3681] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  178.966845][ T3681] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  178.975427][ T3681] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  178.984996][ T3681] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  178.996567][ T4766] device veth0_macvtap entered promiscuous mode
[  178.997896][ T3685] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  179.020847][ T4766] device veth1_macvtap entered promiscuous mode
[  179.051346][ T4766] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  179.062068][ T4766] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  179.086355][ T4766] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  179.097624][ T4766] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  179.101271][ T4888] XFS (loop3): Ending clean mount
[  179.115191][ T4766] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  179.126159][ T4766] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  179.145581][ T4766] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  179.162615][ T4888] XFS (loop3): Quotacheck needed: Please wait.
[  179.164793][ T4766] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  179.178072][ T3689] usb 1-1: Invalid ep0 maxpacket: 64
[  179.191724][ T3689] usb usb1-port1: attempt power cycle
[  179.212541][ T4766] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  179.260847][ T4766] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  179.280412][ T4888] XFS (loop3): Quotacheck: Done.
[  179.334757][ T4766] batman_adv: batadv0: Interface activated: batadv_slave_0
[  179.355166][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  179.364572][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  179.384345][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  179.397566][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  179.409234][ T4766] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  179.423995][ T4766] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  179.435073][ T4766] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  179.444896][ T3685] usb 2-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  179.446390][ T4766] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  179.475404][ T3685] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  179.483909][ T4766] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  179.510782][ T3685] usb 2-1: config 0 descriptor??
[  179.516955][ T4766] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  179.549430][ T3685] cp210x 2-1:0.0: cp210x converter detected
[  179.558267][ T4766] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  179.586388][ T4766] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  179.617801][ T4766] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  179.626881][ T3689] usb 1-1: new low-speed USB device number 5 using dummy_hcd
[  179.645333][ T4766] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  179.670818][ T4766] batman_adv: batadv0: Interface activated: batadv_slave_1
[  179.704374][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  179.715191][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  179.728450][ T3689] usb 1-1: Invalid ep0 maxpacket: 64
[  179.733309][ T4888] XFS (loop3): Unmounting Filesystem
[  179.749174][ T4766] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  179.770757][ T4766] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  179.789465][ T4766] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  179.806354][ T4766] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  179.913933][ T3689] usb 1-1: new low-speed USB device number 6 using dummy_hcd
[  180.036215][   T56] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  180.049326][ T3689] usb 1-1: Invalid ep0 maxpacket: 64
[  180.058360][   T56] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  180.062561][ T3689] usb usb1-port1: unable to enumerate USB device
[  180.121966][ T3688] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  180.153721][ T3939] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  180.178002][ T3939] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  180.226754][ T3689] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  180.428522][ T3685] cp210x 2-1:0.0: failed to get vendor val 0x370b size 1: -71
[  180.456539][ T3685] cp210x 2-1:0.0: querying part number failed
[  180.508543][ T3685] usb 2-1: cp210x converter now attached to ttyUSB0
[  180.530850][ T3685] usb 2-1: USB disconnect, device number 8
[  180.568245][ T3685] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  180.586524][ T4929] loop4: detected capacity change from 0 to 128
[  180.587114][ T3685] cp210x 2-1:0.0: device disconnected
[  180.611146][ T4925] loop3: detected capacity change from 0 to 4096
[  180.631550][ T4925] ntfs3: loop3: Different NTFS' sector size (4096) and media sector size (512)
[  180.653044][ T4925] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[  180.668124][ T4925] ntfs3: loop3: Failed to load $BadClus.
[  180.908311][ T4753] I/O error, dev loop3, sector 3968 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  181.786815][ T4937] loop0: detected capacity change from 0 to 65
[  181.885093][ T4937] BFS-fs: bfs_fill_super(): Superblock is corrupted on loop0
[  182.274419][ T4946] loop0: detected capacity change from 0 to 128
[  182.393328][ T4948] loop1: detected capacity change from 0 to 128
[  182.400697][ T4948] gfs2: gfs2 mount does not exist
[  182.418995][ T4806] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  182.676108][ T4957] netlink: 'syz.0.258': attribute type 1 has an invalid length.
[  182.715030][ T4957] netlink: 'syz.0.258': attribute type 4 has an invalid length.
[  182.739559][ T4957] netlink: 15334 bytes leftover after parsing attributes in process `syz.0.258'.
[  182.770239][ T4954] loop1: detected capacity change from 0 to 4096
[  182.853179][ T4966] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  183.074428][ T4939] loop4: detected capacity change from 0 to 32768
[  183.185663][ T4939] XFS (loop4): Mounting V5 Filesystem
[  183.284688][ T4979] loop1: detected capacity change from 0 to 128
[  183.311931][ T4939] XFS (loop4): Ending clean mount
[  183.370726][   T27] audit: type=1800 audit(1722105471.843:31): pid=4939 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.251" name="bus" dev="loop4" ino=1289 res=0 errno=0
[  183.410304][   T27] audit: type=1804 audit(1722105471.873:32): pid=4980 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.251" name="/newroot/20/file0/bus" dev="loop4" ino=1289 res=1 errno=0
[  183.548132][ T3688] usb 3-1: new low-speed USB device number 4 using dummy_hcd
[  183.630231][   T27] audit: type=1804 audit(1722105471.983:33): pid=4939 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.251" name="/newroot/20/file0/bus" dev="loop4" ino=1289 res=1 errno=0
[  183.659210][   T27] audit: type=1804 audit(1722105472.003:34): pid=4939 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.251" name="/newroot/20/file0/bus" dev="loop4" ino=1289 res=1 errno=0
[  183.695381][   T27] audit: type=1804 audit(1722105472.103:35): pid=4939 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.251" name="/newroot/20/file0/bus" dev="loop4" ino=1289 res=1 errno=0
[  184.856619][ T4988] loop0: detected capacity change from 0 to 512
[  184.893567][ T4990] loop3: detected capacity change from 0 to 65
[  184.927649][ T4988] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  184.961733][ T4990] BFS-fs: bfs_fill_super(): Superblock is corrupted on loop3
[  185.037247][ T4939] syz.4.251 (4939) used greatest stack depth: 18424 bytes left
[  185.052721][ T4988] EXT4-fs (loop0): 1 truncate cleaned up
[  185.068388][ T4988] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  185.096973][ T4806] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  185.133990][ T4994] FAULT_INJECTION: forcing a failure.
[  185.133990][ T4994] name failslab, interval 1, probability 0, space 0, times 0
[  185.146885][ T4994] CPU: 1 PID: 4994 Comm: syz.1.266 Not tainted 6.1.102-syzkaller #0
[  185.154905][ T4994] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  185.165001][ T4994] Call Trace:
[  185.167968][ T3688] usb 3-1: Invalid ep0 maxpacket: 64
[  185.168293][ T4994]  <TASK>
[  185.168306][ T4994]  dump_stack_lvl+0x1e3/0x2cb
[  185.181232][ T4994]  ? nf_tcp_handle_invalid+0x642/0x642
[  185.186743][ T4994]  ? panic+0x764/0x764
[  185.190853][ T4994]  ? __might_sleep+0xb0/0xb0
[  185.195489][ T4994]  should_fail_ex+0x3a6/0x4d0
[  185.200213][ T4994]  should_failslab+0x5/0x20
[  185.204755][ T4994]  slab_pre_alloc_hook+0x59/0x300
[  185.209820][ T4994]  ? __lock_acquire+0x1f80/0x1f80
[  185.214888][ T4994]  kmem_cache_alloc+0x4e/0x2d0
[  185.219689][ T4994]  ? mas_alloc_nodes+0x276/0x800
[  185.224669][ T4994]  mas_alloc_nodes+0x276/0x800
[  185.229472][ T4994]  ? kmem_cache_alloc+0x13a/0x2d0
[  185.234524][ T4994]  ? vm_area_alloc+0x20/0xe0
[  185.239159][ T4994]  mas_preallocate+0x12d/0x350
[  185.244010][ T4994]  mmap_region+0x1439/0x1fa0
[  185.248659][ T4994]  ? file_mmap_ok+0x150/0x150
[  185.253379][ T4994]  ? cap_mmap_addr+0x15e/0x2d0
[  185.258209][ T4994]  do_mmap+0x8c5/0xf60
[  185.262345][ T4994]  ? mlock_future_check+0x100/0x100
[  185.267601][ T4994]  ? ima_file_mmap+0x12f/0x1c0
[  185.272411][ T4994]  ? ima_file_free+0x3c0/0x3c0
[  185.277226][ T4994]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[  185.283356][ T4994]  vm_mmap_pgoff+0x1ca/0x2d0
[  185.288010][ T4994]  ? account_locked_vm+0xe0/0xe0
[  185.292990][ T4994]  ? syscall_enter_from_user_mode+0x2e/0x230
[  185.299014][ T4994]  ? ksys_mmap_pgoff+0xd8/0x6d0
[  185.303921][ T4994]  do_syscall_64+0x3b/0xb0
[  185.308383][ T4994]  ? clear_bhb_loop+0x45/0xa0
[  185.313100][ T4994]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  185.317880][ T3688] usb 3-1: new low-speed USB device number 5 using dummy_hcd
[  185.319006][ T4994] RIP: 0033:0x7fe300d772d3
[  185.319030][ T4994] Code: f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 41 89 ca 41 f7 c1 ff 0f 00 00 75 14 b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 25 c3 0f 1f 40 00 48 c7 c0 a8 ff ff ff 64 c7
[  185.350515][ T4994] RSP: 002b:00007fe301b6de28 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  185.358975][ T4994] RAX: ffffffffffffffda RBX: 00000000000002d6 RCX: 00007fe300d772d3
[  185.366989][ T4994] RDX: 0000000000000003 RSI: 0000000008400000 RDI: 0000000000000000
[  185.375881][ T4994] RBP: 00000000200003c2 R08: 00000000ffffffff R09: 0000000000000000
[  185.383887][ T4994] R10: 0000000000000022 R11: 0000000000000246 R12: 0000000000000004
[  185.391894][ T4994] R13: 00007fe301b6df00 R14: 00007fe301b6dec0 R15: 0000000020000380
[  185.399919][ T4994]  </TASK>
[  185.412609][ T4352] XFS (loop4): Unmounting Filesystem
[  185.475020][ T4428] EXT4-fs (loop0): unmounting filesystem.
[  185.581554][ T4997] loop0: detected capacity change from 0 to 512
[  185.607928][ T3688] usb 3-1: Invalid ep0 maxpacket: 64
[  185.613550][ T3688] usb usb3-port1: attempt power cycle
[  185.720258][ T4997] Quota error (device loop0): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5
[  185.739757][ T4997] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  185.768083][ T4997] EXT4-fs error (device loop0): ext4_acquire_dquot:6777: comm syz.0.268: Failed to acquire dquot type 1
[  185.830339][ T4997] EXT4-fs (loop0): 1 truncate cleaned up
[  185.867909][ T4997] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  185.888076][ T4997] ext4 filesystem being mounted at /15/file0 supports timestamps until 2038 (0x7fffffff)
[  186.057950][ T3688] usb 3-1: new low-speed USB device number 6 using dummy_hcd
[  186.158440][ T3688] usb 3-1: device descriptor read/8, error -71
[  186.339424][ T4990] loop3: detected capacity change from 0 to 40427
[  186.386520][ T4990] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  186.416147][ T4990] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  186.437730][ T5009] bridge0: port 1(bridge_slave_0) entered disabled state
[  186.453570][ T4990] F2FS-fs (loop3): invalid crc value
[  186.492534][ T4990] F2FS-fs (loop3): SIT is corrupted node# 5 vs 7
[  186.506149][ T4428] EXT4-fs (loop0): unmounting filesystem.
[  186.570051][ T4990] F2FS-fs (loop3): Failed to initialize F2FS segment manager (-117)
[  186.663276][ T5018] netlink: 'syz.1.274': attribute type 1 has an invalid length.
[  186.688211][ T5018] netlink: 'syz.1.274': attribute type 4 has an invalid length.
[  186.719613][ T5018] netlink: 15334 bytes leftover after parsing attributes in process `syz.1.274'.
[  186.836071][ T5026] FAULT_INJECTION: forcing a failure.
[  186.836071][ T5026] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  186.866182][ T5026] CPU: 1 PID: 5026 Comm: syz.4.275 Not tainted 6.1.102-syzkaller #0
[  186.874331][ T5026] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  186.884422][ T5026] Call Trace:
[  186.887725][ T5026]  <TASK>
[  186.890696][ T5026]  dump_stack_lvl+0x1e3/0x2cb
[  186.895414][ T5026]  ? nf_tcp_handle_invalid+0x642/0x642
[  186.900918][ T5026]  ? panic+0x764/0x764
[  186.905033][ T5026]  ? __might_fault+0xa1/0x110
[  186.909758][ T5026]  should_fail_ex+0x3a6/0x4d0
[  186.914455][ T5026]  _copy_from_user+0x2b/0x170
[  186.919142][ T5026]  move_addr_to_kernel+0x7e/0x140
[  186.924225][ T5026]  copy_msghdr_from_user+0x436/0x670
[  186.929539][ T5026]  ? sendmsg_copy_msghdr+0x70/0x70
[  186.934673][ T5026]  ? __might_fault+0xa1/0x110
[  186.939364][ T5026]  __sys_sendmmsg+0x36d/0x730
[  186.944063][ T5026]  ? __ia32_sys_sendmsg+0x90/0x90
[  186.949129][ T5026]  ? ksys_write+0x23a/0x2c0
[  186.953659][ T5026]  ? proc_fail_nth_read+0x210/0x210
[  186.958872][ T5026]  ? __lock_acquire+0x1f80/0x1f80
[  186.963916][ T5026]  ? vfs_write+0x6cf/0xbc0
[  186.968345][ T5026]  ? __mutex_unlock_slowpath+0x218/0x750
[  186.973993][ T5026]  ? file_end_write+0x250/0x250
[  186.978873][ T5026]  ? print_irqtrace_events+0x210/0x210
[  186.984349][ T5026]  ? syscall_enter_from_user_mode+0x2e/0x230
[  186.990337][ T5026]  __x64_sys_sendmmsg+0x9c/0xb0
[  186.995222][ T5026]  do_syscall_64+0x3b/0xb0
[  186.999649][ T5026]  ? clear_bhb_loop+0x45/0xa0
[  187.004342][ T5026]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  187.010254][ T5026] RIP: 0033:0x7f2384777299
[  187.014698][ T5026] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  187.034332][ T5026] RSP: 002b:00007f2385517048 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  187.042779][ T5026] RAX: ffffffffffffffda RBX: 00007f2384905f80 RCX: 00007f2384777299
[  187.050760][ T5026] RDX: 0000000000000002 RSI: 0000000020000080 RDI: 0000000000000003
[  187.058739][ T5026] RBP: 00007f23855170a0 R08: 0000000000000000 R09: 0000000000000000
[  187.066714][ T5026] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  187.074687][ T5026] R13: 000000000000000b R14: 00007f2384905f80 R15: 00007ffe4ff0e708
[  187.082704][ T5026]  </TASK>
[  188.722066][ T5039] FAULT_INJECTION: forcing a failure.
[  188.722066][ T5039] name failslab, interval 1, probability 0, space 0, times 0
[  188.761057][ T5039] CPU: 1 PID: 5039 Comm: syz.0.279 Not tainted 6.1.102-syzkaller #0
[  188.769121][ T5039] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  188.779215][ T5039] Call Trace:
[  188.782516][ T5039]  <TASK>
[  188.785466][ T5039]  dump_stack_lvl+0x1e3/0x2cb
[  188.790189][ T5039]  ? nf_tcp_handle_invalid+0x642/0x642
[  188.795696][ T5039]  ? panic+0x764/0x764
[  188.799796][ T5039]  ? __might_sleep+0xb0/0xb0
[  188.804422][ T5039]  should_fail_ex+0x3a6/0x4d0
[  188.809141][ T5039]  should_failslab+0x5/0x20
[  188.813681][ T5039]  slab_pre_alloc_hook+0x59/0x300
[  188.818744][ T5039]  kmem_cache_alloc+0x4e/0x2d0
[  188.823521][ T5039]  ? __alloc_file+0x26/0x230
[  188.828121][ T5039]  __alloc_file+0x26/0x230
[  188.832545][ T5039]  alloc_empty_file+0x92/0x180
[  188.837320][ T5039]  alloc_file+0x5c/0x5e0
[  188.841672][ T5039]  alloc_file_pseudo+0x259/0x2f0
[  188.846626][ T5039]  ? alloc_empty_file_noaccount+0x80/0x80
[  188.852358][ T5039]  ? shmem_get_inode+0x999/0xbd0
[  188.857314][ T5039]  __shmem_file_setup+0x1ca/0x290
[  188.862351][ T5039]  ? shmem_file_setup+0x13/0x30
[  188.867223][ T5039]  __se_sys_memfd_create+0x1d6/0x440
[  188.873563][ T5039]  do_syscall_64+0x3b/0xb0
[  188.877991][ T5039]  ? clear_bhb_loop+0x45/0xa0
[  188.882680][ T5039]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  188.888581][ T5039] RIP: 0033:0x7f548dd77299
[  188.893003][ T5039] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  188.912637][ T5039] RSP: 002b:00007f548ead4e28 EFLAGS: 00000206 ORIG_RAX: 000000000000013f
[  188.921064][ T5039] RAX: ffffffffffffffda RBX: 0000000000000c24 RCX: 00007f548dd77299
[  188.929058][ T5039] RDX: 00007f548ead4f00 RSI: 0000000000000000 RDI: 00007f548dde5094
[  188.937033][ T5039] RBP: 0000000020000d00 R08: 00007f548ead4bc7 R09: 00007f548ead4e50
[  188.945005][ T5039] R10: 000000000000000a R11: 0000000000000206 R12: 0000000020000c80
[  188.952976][ T5039] R13: 00007f548ead4f00 R14: 00007f548ead4ec0 R15: 0000000020000cc0
[  188.960965][ T5039]  </TASK>
[  189.069389][ T5032] loop4: detected capacity change from 0 to 512
[  189.077133][ T5032] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  189.135039][ T5032] EXT4-fs (loop4): orphan cleanup on readonly fs
[  189.145373][ T5032] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:3845: comm syz.4.277: Allocating blocks 41-42 which overlap fs metadata
[  189.189010][ T5032] EXT4-fs (loop4): Remounting filesystem read-only
[  189.195998][ T5032] Quota error (device loop4): write_blk: dquota write failed
[  189.203943][ T5032] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  189.213910][ T5032] EXT4-fs error (device loop4): ext4_acquire_dquot:6777: comm syz.4.277: Failed to acquire dquot type 0
[  189.287436][ T5032] EXT4-fs (loop4): 1 truncate cleaned up
[  189.295746][ T5032] EXT4-fs (loop4): pa ffff88805eb29540: logic 1, phys. 41, len 23
[  189.303899][ T5032] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:4885: group 0, free 22, pa_free 23
[  189.315210][ T5032] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  189.471773][ T4352] EXT4-fs (loop4): unmounting filesystem.
[  189.613844][ T5052] loop4: detected capacity change from 0 to 256
[  190.961108][ T5059] FAULT_INJECTION: forcing a failure.
[  190.961108][ T5059] name failslab, interval 1, probability 0, space 0, times 0
[  191.007840][ T5059] CPU: 1 PID: 5059 Comm: syz.0.285 Not tainted 6.1.102-syzkaller #0
[  191.015900][ T5059] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  191.025998][ T5059] Call Trace:
[  191.029302][ T5059]  <TASK>
[  191.032254][ T5059]  dump_stack_lvl+0x1e3/0x2cb
[  191.036979][ T5059]  ? nf_tcp_handle_invalid+0x642/0x642
[  191.042492][ T5059]  ? panic+0x764/0x764
[  191.046605][ T5059]  should_fail_ex+0x3a6/0x4d0
[  191.051328][ T5059]  should_failslab+0x5/0x20
[  191.055865][ T5059]  slab_pre_alloc_hook+0x59/0x300
[  191.060937][ T5059]  kmem_cache_alloc+0x4e/0x2d0
[  191.066427][ T5059]  ? security_file_alloc+0x24/0x120
[  191.071660][ T5059]  security_file_alloc+0x24/0x120
[  191.076717][ T5059]  __alloc_file+0xc3/0x230
[  191.081172][ T5059]  alloc_empty_file+0x92/0x180
[  191.085989][ T5059]  alloc_file+0x5c/0x5e0
[  191.090285][ T5059]  alloc_file_pseudo+0x259/0x2f0
[  191.095273][ T5059]  ? alloc_empty_file_noaccount+0x80/0x80
[  191.101119][ T5059]  ? shmem_get_inode+0x999/0xbd0
[  191.106192][ T5059]  __shmem_file_setup+0x1ca/0x290
[  191.111258][ T5059]  ? shmem_file_setup+0x13/0x30
[  191.116332][ T5059]  __se_sys_memfd_create+0x1d6/0x440
[  191.122002][ T5059]  do_syscall_64+0x3b/0xb0
[  191.123527][ T5046] loop3: detected capacity change from 0 to 65536
[  191.126435][ T5059]  ? clear_bhb_loop+0x45/0xa0
[  191.137659][ T5059]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  191.143593][ T5059] RIP: 0033:0x7f548dd77299
[  191.148047][ T5059] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  191.167692][ T5059] RSP: 002b:00007f548ead4e28 EFLAGS: 00000206 ORIG_RAX: 000000000000013f
[  191.176157][ T5059] RAX: ffffffffffffffda RBX: 0000000000009dc3 RCX: 00007f548dd77299
[  191.184160][ T5059] RDX: 00007f548ead4f00 RSI: 0000000000000000 RDI: 00007f548dde5094
[  191.192170][ T5059] RBP: 0000000020009ec0 R08: 00007f548ead4bc7 R09: 00007f548ead4e50
[  191.200176][ T5059] R10: 000000000000000a R11: 0000000000000206 R12: 0000000020009e40
[  191.208359][ T5059] R13: 00007f548ead4f00 R14: 00007f548ead4ec0 R15: 0000000020009e80
[  191.216383][ T5059]  </TASK>
[  191.253525][ T5046] XFS (loop3): Deprecated V4 format (crc=0) not supported by kernel.
[  191.278877][ T5043] loop1: detected capacity change from 0 to 65536
[  191.393452][ T5043] XFS (loop1): Deprecated V4 format (crc=0) not supported by kernel.
[  191.598754][ T5056] loop4: detected capacity change from 0 to 65536
[  191.689557][ T5071] loop0: detected capacity change from 0 to 65
[  191.780401][ T5056] XFS (loop4): Deprecated V4 format (crc=0) not supported by kernel.
[  192.196899][ T5080] loop3: detected capacity change from 0 to 128
[  192.280890][ T4806] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  193.400037][ T5089] netlink: 'syz.0.291': attribute type 1 has an invalid length.
[  193.407906][ T5089] netlink: 'syz.0.291': attribute type 4 has an invalid length.
[  193.449725][ T5089] netlink: 15334 bytes leftover after parsing attributes in process `syz.0.291'.
[  194.182453][ T5096] loop3: detected capacity change from 0 to 512
[  194.239687][ T1271] ieee802154 phy0 wpan0: encryption failed: -22
[  194.246102][ T1271] ieee802154 phy1 wpan1: encryption failed: -22
[  194.263921][ T5096] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  194.349360][ T5096] EXT4-fs (loop3): orphan cleanup on readonly fs
[  194.389819][ T5096] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:3845: comm syz.3.293: Allocating blocks 41-42 which overlap fs metadata
[  194.504552][ T5096] EXT4-fs (loop3): Remounting filesystem read-only
[  194.511835][ T5096] Quota error (device loop3): write_blk: dquota write failed
[  194.560504][ T5096] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  194.607963][ T5096] EXT4-fs error (device loop3): ext4_acquire_dquot:6777: comm syz.3.293: Failed to acquire dquot type 0
[  194.620333][ T5114] netlink: 28 bytes leftover after parsing attributes in process `syz.0.299'.
[  194.648012][ T5114] netlink: 28 bytes leftover after parsing attributes in process `syz.0.299'.
[  194.675308][ T5096] EXT4-fs (loop3): 1 truncate cleaned up
[  194.696961][ T5116] loop0: detected capacity change from 0 to 128
[  194.703711][ T5096] EXT4-fs (loop3): pa ffff88805eb29620: logic 1, phys. 41, len 23
[  194.711765][ T5096] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:4885: group 0, free 22, pa_free 23
[  194.733402][ T5116] gfs2: gfs2 mount does not exist
[  194.783942][ T5096] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  195.039947][ T5120] FAULT_INJECTION: forcing a failure.
[  195.039947][ T5120] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  195.076716][ T3811] EXT4-fs (loop3): unmounting filesystem.
[  195.094607][ T5120] CPU: 1 PID: 5120 Comm: syz.0.301 Not tainted 6.1.102-syzkaller #0
[  195.102669][ T5120] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  195.112761][ T5120] Call Trace:
[  195.116072][ T5120]  <TASK>
[  195.119019][ T5120]  dump_stack_lvl+0x1e3/0x2cb
[  195.123730][ T5120]  ? nf_tcp_handle_invalid+0x642/0x642
[  195.129233][ T5120]  ? panic+0x764/0x764
[  195.133310][ T5120]  ? __lock_acquire+0x1f80/0x1f80
[  195.138354][ T5120]  should_fail_ex+0x3a6/0x4d0
[  195.143042][ T5120]  _copy_from_user+0x2b/0x170
[  195.147726][ T5120]  copy_msghdr_from_user+0xaa/0x670
[  195.152962][ T5120]  ? __might_fault+0xa1/0x110
[  195.157650][ T5120]  ? sendmsg_copy_msghdr+0x70/0x70
[  195.162778][ T5120]  ? __might_fault+0xa1/0x110
[  195.167499][ T5120]  __sys_sendmmsg+0x36d/0x730
[  195.172201][ T5120]  ? __ia32_sys_sendmsg+0x90/0x90
[  195.177264][ T5120]  ? ksys_write+0x23a/0x2c0
[  195.181774][ T5120]  ? proc_fail_nth_read+0x210/0x210
[  195.187071][ T5120]  ? __lock_acquire+0x1f80/0x1f80
[  195.192130][ T5120]  ? vfs_write+0x6cf/0xbc0
[  195.196555][ T5120]  ? __mutex_unlock_slowpath+0x218/0x750
[  195.202204][ T5120]  ? file_end_write+0x250/0x250
[  195.207098][ T5120]  ? print_irqtrace_events+0x210/0x210
[  195.212579][ T5120]  ? syscall_enter_from_user_mode+0x2e/0x230
[  195.218588][ T5120]  __x64_sys_sendmmsg+0x9c/0xb0
[  195.223453][ T5120]  do_syscall_64+0x3b/0xb0
[  195.227878][ T5120]  ? clear_bhb_loop+0x45/0xa0
[  195.232567][ T5120]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  195.238467][ T5120] RIP: 0033:0x7f548dd77299
[  195.242910][ T5120] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  195.262538][ T5120] RSP: 002b:00007f548ead5048 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  195.270963][ T5120] RAX: ffffffffffffffda RBX: 00007f548df05f80 RCX: 00007f548dd77299
[  195.278973][ T5120] RDX: 0000000000000002 RSI: 0000000020000080 RDI: 0000000000000003
[  195.286948][ T5120] RBP: 00007f548ead50a0 R08: 0000000000000000 R09: 0000000000000000
[  195.294944][ T5120] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  195.302918][ T5120] R13: 000000000000000b R14: 00007f548df05f80 R15: 00007ffe602cc4f8
[  195.310922][ T5120]  </TASK>
[  196.871065][ T5131] loop4: detected capacity change from 0 to 128
[  197.016465][ T4806] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  197.174184][ T5104] loop1: detected capacity change from 0 to 32768
[  197.190626][ T5138] netlink: 'syz.4.308': attribute type 1 has an invalid length.
[  197.239152][ T5138] netlink: 'syz.4.308': attribute type 4 has an invalid length.
[  197.257277][ T5138] netlink: 15334 bytes leftover after parsing attributes in process `syz.4.308'.
[  197.272394][ T5136] loop0: detected capacity change from 0 to 4096
[  197.421608][ T4806] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop1 scanned by udevd (4806)
[  197.511820][ T5122] loop3: detected capacity change from 0 to 32768
[  197.598632][ T5146] loop0: detected capacity change from 0 to 65
[  197.720469][ T5142] netlink: 'syz.2.309': attribute type 1 has an invalid length.
[  197.732716][ T5122] XFS (loop3): Mounting V5 Filesystem
[  197.804980][ T5122] XFS (loop3): Ending clean mount
[  197.827348][   T27] audit: type=1800 audit(1722105486.293:36): pid=5122 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.302" name="bus" dev="loop3" ino=1289 res=0 errno=0
[  197.860607][ T5142] netlink: 'syz.2.309': attribute type 4 has an invalid length.
[  197.918432][   T27] audit: type=1804 audit(1722105486.303:37): pid=5122 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.302" name="/newroot/50/file0/bus" dev="loop3" ino=1289 res=1 errno=0
[  197.956934][ T5142] netlink: 15334 bytes leftover after parsing attributes in process `syz.2.309'.
[  198.012246][ T5158] FAULT_INJECTION: forcing a failure.
[  198.012246][ T5158] name failslab, interval 1, probability 0, space 0, times 0
[  198.035841][   T27] audit: type=1804 audit(1722105486.303:38): pid=5122 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.302" name="/newroot/50/file0/bus" dev="loop3" ino=1289 res=1 errno=0
[  198.118922][ T5158] CPU: 0 PID: 5158 Comm: syz.1.310 Not tainted 6.1.102-syzkaller #0
[  198.127053][ T5158] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  198.137237][ T5158] Call Trace:
[  198.140564][ T5158]  <TASK>
[  198.143533][ T5158]  dump_stack_lvl+0x1e3/0x2cb
[  198.148253][ T5158]  ? nf_tcp_handle_invalid+0x642/0x642
[  198.153752][ T5158]  ? panic+0x764/0x764
[  198.157875][ T5158]  should_fail_ex+0x3a6/0x4d0
[  198.162720][ T5158]  should_failslab+0x5/0x20
[  198.165579][   T27] audit: type=1804 audit(1722105486.303:39): pid=5122 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.302" name="/newroot/50/file0/bus" dev="loop3" ino=1289 res=1 errno=0
[  198.167250][ T5158]  slab_pre_alloc_hook+0x59/0x300
[  198.167289][ T5158]  kmem_cache_alloc+0x4e/0x2d0
[  198.197996][ T5158]  ? vm_area_alloc+0x20/0xe0
[  198.202635][ T5158]  vm_area_alloc+0x20/0xe0
[  198.207098][ T5158]  mmap_region+0xcbb/0x1fa0
[  198.211673][ T5158]  ? file_mmap_ok+0x150/0x150
[  198.216408][ T5158]  ? cap_mmap_addr+0x15e/0x2d0
[  198.221232][ T5158]  do_mmap+0x8c5/0xf60
[  198.225360][ T5158]  ? mlock_future_check+0x100/0x100
[  198.230604][ T5158]  ? ima_file_mmap+0x12f/0x1c0
[  198.235099][   T27] audit: type=1804 audit(1722105486.363:40): pid=5122 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.302" name="/newroot/50/file0/bus" dev="loop3" ino=1289 res=1 errno=0
[  198.235387][ T5158]  ? ima_file_free+0x3c0/0x3c0
[  198.261913][ T5158]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[  198.268392][ T5158]  vm_mmap_pgoff+0x1ca/0x2d0
[  198.273034][ T5158]  ? account_locked_vm+0xe0/0xe0
[  198.278009][ T5158]  ? syscall_enter_from_user_mode+0x2e/0x230
[  198.279158][ T5161] loop4: detected capacity change from 0 to 256
[  198.284006][ T5158]  ? ksys_mmap_pgoff+0xd8/0x6d0
[  198.295134][ T5158]  do_syscall_64+0x3b/0xb0
[  198.299591][ T5158]  ? clear_bhb_loop+0x45/0xa0
[  198.304479][ T5158]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  198.310411][ T5158] RIP: 0033:0x7fe300d772d3
[  198.314870][ T5158] Code: f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 41 89 ca 41 f7 c1 ff 0f 00 00 75 14 b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 25 c3 0f 1f 40 00 48 c7 c0 a8 ff ff ff 64 c7
[  198.337474][ T5158] RSP: 002b:00007fe301b6de28 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  198.345949][ T5158] RAX: ffffffffffffffda RBX: 0000000000009dc1 RCX: 00007fe300d772d3
[  198.353968][ T5158] RDX: 0000000000000003 RSI: 0000000008400000 RDI: 0000000000000000
[  198.361979][ T5158] RBP: 0000000020009ec2 R08: 00000000ffffffff R09: 0000000000000000
[  198.369990][ T5158] R10: 0000000000000022 R11: 0000000000000246 R12: 0000000000000004
[  198.377997][ T5158] R13: 00007fe301b6df00 R14: 00007fe301b6dec0 R15: 0000000020009e80
[  198.386112][ T5158]  </TASK>
[  198.536299][ T3811] XFS (loop3): Unmounting Filesystem
[  198.740474][ T5163] netlink: 32 bytes leftover after parsing attributes in process `syz.2.315'.
[  198.819967][ T5165] loop4: detected capacity change from 0 to 256
[  198.878802][ T5165] FAT-fs (loop4): Unrecognized mount option "chec’°normal" or missing value
[  199.145998][ T5174] loop3: detected capacity change from 0 to 128
[  199.194072][ T5174] gfs2: gfs2 mount does not exist
[  199.371390][ T5163] syz.2.315 (5163) used greatest stack depth: 18200 bytes left
[  199.437894][ T3689] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  200.552072][ T3689] usb 2-1: device descriptor read/64, error -71
[  200.562919][ T5191] FAULT_INJECTION: forcing a failure.
[  200.562919][ T5191] name failslab, interval 1, probability 0, space 0, times 0
[  200.576514][ T5191] CPU: 1 PID: 5191 Comm: syz.2.323 Not tainted 6.1.102-syzkaller #0
[  200.584019][ T5156] loop0: detected capacity change from 0 to 65536
[  200.584523][ T5191] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  200.601034][ T5191] Call Trace:
[  200.604352][ T5191]  <TASK>
[  200.607369][ T5191]  dump_stack_lvl+0x1e3/0x2cb
[  200.612111][ T5191]  ? nf_tcp_handle_invalid+0x642/0x642
[  200.617626][ T5191]  ? panic+0x764/0x764
[  200.621753][ T5191]  should_fail_ex+0x3a6/0x4d0
[  200.626479][ T5191]  should_failslab+0x5/0x20
[  200.631015][ T5191]  slab_pre_alloc_hook+0x59/0x300
[  200.636062][ T5191]  ? slab_post_alloc_hook+0x71/0x3a0
[  200.641368][ T5191]  kmem_cache_alloc_bulk+0x42/0x4d0
[  200.646581][ T5191]  ? kmem_cache_alloc+0x13a/0x2d0
[  200.651664][ T5191]  ? mas_alloc_nodes+0x276/0x800
[  200.656621][ T5191]  mas_alloc_nodes+0x3df/0x800
[  200.661398][ T5191]  mas_preallocate+0x12d/0x350
[  200.666173][ T5191]  mmap_region+0x1439/0x1fa0
[  200.670792][ T5191]  ? file_mmap_ok+0x150/0x150
[  200.675491][ T5191]  ? cap_mmap_addr+0x15e/0x2d0
[  200.680280][ T5191]  do_mmap+0x8c5/0xf60
[  200.684374][ T5191]  ? mlock_future_check+0x100/0x100
[  200.689586][ T5191]  ? ima_file_mmap+0x12f/0x1c0
[  200.694359][ T5191]  ? ima_file_free+0x3c0/0x3c0
[  200.699135][ T5191]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[  200.705158][ T5191]  vm_mmap_pgoff+0x1ca/0x2d0
[  200.709783][ T5191]  ? account_locked_vm+0xe0/0xe0
[  200.714750][ T5191]  ? syscall_enter_from_user_mode+0x2e/0x230
[  200.720744][ T5191]  ? ksys_mmap_pgoff+0xd8/0x6d0
[  200.725619][ T5191]  do_syscall_64+0x3b/0xb0
[  200.730051][ T5191]  ? clear_bhb_loop+0x45/0xa0
[  200.734739][ T5191]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  200.740642][ T5191] RIP: 0033:0x7fe9aab772d3
[  200.745101][ T5191] Code: f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 41 89 ca 41 f7 c1 ff 0f 00 00 75 14 b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 25 c3 0f 1f 40 00 48 c7 c0 a8 ff ff ff 64 c7
[  200.764775][ T5191] RSP: 002b:00007fe9ab8dee28 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  200.773218][ T5191] RAX: ffffffffffffffda RBX: 0000000000000087 RCX: 00007fe9aab772d3
[  200.781252][ T5191] RDX: 0000000000000003 RSI: 0000000008400000 RDI: 0000000000000000
[  200.789240][ T5191] RBP: 0000000020000182 R08: 00000000ffffffff R09: 0000000000000000
[  200.797218][ T5191] R10: 0000000000000022 R11: 0000000000000246 R12: 0000000000000004
[  200.805279][ T5191] R13: 00007fe9ab8def00 R14: 00007fe9ab8deec0 R15: 0000000020000140
[  200.813276][ T5191]  </TASK>
[  200.816420][    C1] vkms_vblank_simulate: vblank timer overrun
[  200.825554][ T5193] FAULT_INJECTION: forcing a failure.
[  200.825554][ T5193] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  200.848314][ T5193] CPU: 0 PID: 5193 Comm: syz.4.324 Not tainted 6.1.102-syzkaller #0
[  200.856382][ T5193] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  200.866480][ T5193] Call Trace:
[  200.869789][ T5193]  <TASK>
[  200.872755][ T5193]  dump_stack_lvl+0x1e3/0x2cb
[  200.877484][ T5193]  ? nf_tcp_handle_invalid+0x642/0x642
[  200.883034][ T5193]  ? panic+0x764/0x764
[  200.887232][ T5193]  should_fail_ex+0x3a6/0x4d0
[  200.891950][ T5193]  prepare_alloc_pages+0x1d9/0x5b0
[  200.897101][ T5193]  __alloc_pages+0x16a/0x770
[  200.901718][ T5193]  ? zone_statistics+0x160/0x160
[  200.906685][ T5193]  ? count_memcg_event_mm+0x90/0x410
[  200.912009][ T5193]  ? alloc_pages+0x50c/0x770
[  200.916648][ T5193]  __pmd_alloc+0xb8/0x850
[  200.921013][ T5193]  ? __pud_alloc+0x220/0x220
[  200.925640][ T5193]  ? count_memcg_event_mm+0x90/0x410
[  200.930972][ T5193]  ? count_memcg_event_mm+0x3be/0x410
[  200.936384][ T5193]  ? count_memcg_event_mm+0x90/0x410
[  200.941709][ T5193]  ? put_page+0x250/0x250
[  200.946067][ T5193]  ? __lock_acquire+0x1f80/0x1f80
[  200.951125][ T5193]  ? mtree_range_walk+0x673/0x7c0
[  200.956192][ T5193]  handle_mm_fault+0xd9d/0x5340
[  200.961079][ T5193]  ? mt_find+0x29a/0xc60
[  200.965357][ T5193]  ? mt_find+0x29a/0xc60
[  200.969675][ T5193]  ? numa_migrate_prep+0x250/0x250
[  200.974862][ T5193]  ? lock_mm_and_find_vma+0xae/0x2e0
[  200.980196][ T5193]  exc_page_fault+0x26f/0x620
[  200.984916][ T5193]  asm_exc_page_fault+0x22/0x30
[  200.989797][ T5193] RIP: 0033:0x7f238463bc06
[  200.994240][ T5193] Code: f0 72 6e 48 63 cd 48 01 c1 49 39 4f 08 72 4c 8d 4d ff 85 ed 74 33 66 0f 1f 44 00 00 48 39 f0 72 1b 4d 8b 07 49 89 c1 49 29 f1 <47> 0f b6 0c 08 45 84 c9 74 08 45 88 0c 00 49 8b 47 10 48 83 c0 01
[  201.013886][ T5193] RSP: 002b:00007f23855164b0 EFLAGS: 00010246
[  201.020074][ T5193] RAX: 0000000000000001 RBX: 00007f2385516550 RCX: 0000000000000101
[  201.028083][ T5193] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 00007f23855165f0
[  201.036084][ T5193] RBP: 0000000000000102 R08: 00007f237a5f7000 R09: 0000000000000000
[  201.044085][ T5193] R10: 0000000000000000 R11: 00007f2385516560 R12: 0000000000000001
[  201.052182][ T5193] R13: 00007f23847f7440 R14: 0000000000000000 R15: 00007f23855165f0
[  201.058095][ T3689] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  201.060184][ T5193]  </TASK>
[  201.076996][ T5193] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  201.088688][ T5193] loop4: detected capacity change from 0 to 128
[  201.101812][ T4806] I/O error, dev loop0, sector 65408 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  201.214578][ T4753] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  201.288068][ T3689] usb 2-1: device descriptor read/64, error -71
[  201.355698][ T5200] loop4: detected capacity change from 0 to 256
[  201.359964][ T5197] netlink: 'syz.2.326': attribute type 1 has an invalid length.
[  201.407705][ T5197] netlink: 'syz.2.326': attribute type 4 has an invalid length.
[  201.408418][ T3689] usb usb2-port1: attempt power cycle
[  201.454815][ T5197] netlink: 15334 bytes leftover after parsing attributes in process `syz.2.326'.
[  201.614436][ T5195] loop3: detected capacity change from 0 to 32768
[  201.757468][ T5210] netlink: 'syz.4.330': attribute type 4 has an invalid length.
[  201.780074][ T5195] XFS (loop3): Mounting V5 Filesystem
[  201.817860][ T3689] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  201.884625][ T5214] loop0: detected capacity change from 0 to 128
[  201.918950][ T3689] usb 2-1: device descriptor read/8, error -71
[  201.954431][ T5195] XFS (loop3): Ending clean mount
[  202.042348][   T27] audit: type=1800 audit(1722105490.523:41): pid=5195 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.325" name="bus" dev="loop3" ino=1289 res=0 errno=0
[  202.062631][    C1] vkms_vblank_simulate: vblank timer overrun
[  202.182189][   T27] audit: type=1804 audit(1722105490.563:42): pid=5220 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.325" name="/newroot/54/file0/bus" dev="loop3" ino=1289 res=1 errno=0
[  202.224888][ T5223] afs: Unexpected value for 'dyn'
[  202.247877][ T3689] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  202.287116][ T5223] loop0: detected capacity change from 0 to 65
[  202.329050][ T5223] BFS-fs: bfs_fill_super(): Superblock is corrupted on loop0
[  202.342424][   T27] audit: type=1804 audit(1722105490.573:43): pid=5195 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.325" name="/newroot/54/file0/bus" dev="loop3" ino=1289 res=1 errno=0
[  202.384760][ T5227] FAULT_INJECTION: forcing a failure.
[  202.384760][ T5227] name failslab, interval 1, probability 0, space 0, times 0
[  202.424424][   T27] audit: type=1804 audit(1722105490.583:44): pid=5195 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.325" name="/newroot/54/file0/bus" dev="loop3" ino=1289 res=1 errno=0
[  202.460283][ T5221] loop4: detected capacity change from 0 to 4096
[  202.468653][ T5227] CPU: 0 PID: 5227 Comm: syz.2.333 Not tainted 6.1.102-syzkaller #0
[  202.476691][ T5227] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  202.486783][ T5227] Call Trace:
[  202.490099][ T5227]  <TASK>
[  202.493061][ T5227]  dump_stack_lvl+0x1e3/0x2cb
[  202.497787][ T5227]  ? nf_tcp_handle_invalid+0x642/0x642
[  202.503301][ T5227]  ? panic+0x764/0x764
[  202.507399][ T5221] ntfs: (device loop4): parse_ntfs_boot_sector(): Sector size (256) is smaller than the device block size (512).  This is not supported.  Sorry.
[  202.507412][ T5227]  should_fail_ex+0x3a6/0x4d0
[  202.526794][ T5227]  should_failslab+0x5/0x20
[  202.531343][ T5227]  slab_pre_alloc_hook+0x59/0x300
[  202.533693][ T5221] ntfs: (device loop4): ntfs_fill_super(): Unsupported NTFS filesystem.
[  202.536398][ T5227]  kmem_cache_alloc+0x4e/0x2d0
[  202.549490][ T5227]  ? vm_area_alloc+0x20/0xe0
[  202.554338][ T5227]  vm_area_alloc+0x20/0xe0
[  202.558769][ T5227]  mmap_region+0xcbb/0x1fa0
[  202.563326][ T5227]  ? file_mmap_ok+0x150/0x150
[  202.568021][ T5227]  ? cap_mmap_addr+0x15e/0x2d0
[  202.572810][ T5227]  do_mmap+0x8c5/0xf60
[  202.576903][ T5227]  ? mlock_future_check+0x100/0x100
[  202.582133][ T5227]  ? ima_file_mmap+0x12f/0x1c0
[  202.586904][ T5227]  ? ima_file_free+0x3c0/0x3c0
[  202.591674][ T5227]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[  202.597675][ T5227]  vm_mmap_pgoff+0x1ca/0x2d0
[  202.602281][ T5227]  ? account_locked_vm+0xe0/0xe0
[  202.607226][ T5227]  ? syscall_enter_from_user_mode+0x2e/0x230
[  202.613214][ T5227]  ? ksys_mmap_pgoff+0xd8/0x6d0
[  202.618085][ T5227]  do_syscall_64+0x3b/0xb0
[  202.622533][ T5227]  ? clear_bhb_loop+0x45/0xa0
[  202.627219][ T5227]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  202.633150][ T5227] RIP: 0033:0x7fe9aab772d3
[  202.637585][ T5227] Code: f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 41 89 ca 41 f7 c1 ff 0f 00 00 75 14 b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 25 c3 0f 1f 40 00 48 c7 c0 a8 ff ff ff 64 c7
[  202.657219][ T5227] RSP: 002b:00007fe9ab8dee28 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  202.665640][ T5227] RAX: ffffffffffffffda RBX: 0000000000000c22 RCX: 00007fe9aab772d3
[  202.673616][ T5227] RDX: 0000000000000003 RSI: 0000000008400000 RDI: 0000000000000000
[  202.681601][ T5227] RBP: 0000000020000d02 R08: 00000000ffffffff R09: 0000000000000000
[  202.689572][ T5227] R10: 0000000000000022 R11: 0000000000000246 R12: 0000000000000004
[  202.697546][ T5227] R13: 00007fe9ab8def00 R14: 00007fe9ab8deec0 R15: 0000000020000cc0
[  202.705535][ T5227]  </TASK>
[  202.708600][ T3689] usb 2-1: device not accepting address 12, error -71
[  202.738431][ T3689] usb usb2-port1: unable to enumerate USB device
[  202.755101][   T27] audit: type=1804 audit(1722105490.683:45): pid=5195 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.325" name="/newroot/54/file0/bus" dev="loop3" ino=1289 res=1 errno=0
[  202.944340][ T3811] XFS (loop3): Unmounting Filesystem
[  203.242896][ T5238] loop1: detected capacity change from 0 to 512
[  203.318532][ T5238] ext4: Unknown parameter 'permit_directio'
[  203.967662][ T5263] loop4: detected capacity change from 0 to 512
[  204.108068][ T5263] EXT4-fs error (device loop4): ext4_orphan_get:1396: inode #15: comm syz.4.351: casefold flag without casefold feature
[  204.188896][ T5263] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: inode #12: comm syz.4.351: missing EA_INODE flag
[  204.237614][ T5272] loop0: detected capacity change from 0 to 512
[  204.258255][ T5263] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.351: error while reading EA inode 12 err=-117
[  204.317242][ T5263] EXT4-fs (loop4): 1 orphan inode deleted
[  204.326976][ T5263] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  204.396315][ T4806] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  204.570448][ T4352] EXT4-fs (loop4): unmounting filesystem.
[  204.740491][ T5270] loop0: detected capacity change from 0 to 8192
[  205.812556][ T5298] loop1: detected capacity change from 0 to 1024
[  206.315671][ T5299] loop0: detected capacity change from 0 to 256
[  206.415156][   T56] hfsplus: b-tree write err: -5, ino 4
[  206.531140][ T5303] loop4: detected capacity change from 0 to 512
[  206.559210][ T5303] EXT4-fs: journaled quota format not specified
[  206.678533][ T4806] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  206.724757][ T5306] input: syz0 as /devices/virtual/input/input11
[  206.779678][ T5309] loop3: detected capacity change from 0 to 1024
[  206.846782][ T3685] kernel read not supported for file /uinput (pid: 3685 comm: kworker/1:5)
[  206.876566][ T5309] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  206.961500][ T5320] netlink: 12 bytes leftover after parsing attributes in process `syz.0.373'.
[  206.962008][ T5309] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  207.327831][ T3685] usb 1-1: new full-speed USB device number 7 using dummy_hcd
[  207.489248][ T5330] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.376'.
[  207.511722][ T5334] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.376'.
[  207.655450][ T3811] EXT4-fs (loop3): unmounting filesystem.
[  207.815945][ T5339] loop1: detected capacity change from 0 to 1024
[  208.008352][ T3685] usb 1-1: New USB device found, idVendor=056e, idProduct=4010, bcdDevice=20.1c
[  208.117397][ T3685] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  208.381353][ T3685] usb 1-1: config 0 descriptor??
[  208.526134][ T3939] hfsplus: b-tree write err: -5, ino 4
[  208.887837][ T3689] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  209.082726][ T3685] pegasus: probe of 1-1:0.0 failed with error -71
[  209.107107][ T3685] usb 1-1: USB disconnect, device number 7
[  209.137981][ T3689] usb 4-1: Using ep0 maxpacket: 16
[  209.268228][ T3689] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  209.286749][ T3689] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  209.298417][ T3689] usb 4-1: New USB device found, idVendor=07b5, idProduct=0312, bcdDevice= 0.00
[  209.315518][ T3689] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  209.344763][ T3689] usb 4-1: config 0 descriptor??
[  209.819263][ T5347] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  209.829533][ T5347] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  209.938797][ T3689] megaworld 0003:07B5:0312.0002: hidraw0: USB HID v0.00 Device [HID 07b5:0312] on usb-dummy_hcd.3-1/input0
[  210.057207][ T5380] loop4: detected capacity change from 0 to 1024
[  210.083883][ T3689] megaworld 0003:07B5:0312.0002: no inputs found
[  210.097259][ T5347] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  210.605839][ T5347] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  210.616715][ T5347] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  210.683785][ T5347] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  210.716278][ T3939] hfsplus: b-tree write err: -5, ino 4
[  210.732577][ T3689] usb 4-1: USB disconnect, device number 4
[  211.321355][ T5407] loop0: detected capacity change from 0 to 128
[  211.478689][ T5406] fuse: Bad value for 'fd'
[  211.592738][   T27] audit: type=1800 audit(1722105500.063:46): pid=5407 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.405" name="bus" dev="loop0" ino=1048627 res=0 errno=0
[  212.465996][ T5427] bridge0: port 2(bridge_slave_1) entered disabled state
[  212.475774][ T5427] bridge0: port 1(bridge_slave_0) entered disabled state
[  212.569096][ T5428] Bluetooth: MGMT ver 1.22
[  212.756286][ T5433] Bluetooth: MGMT ver 1.22
[  212.909973][ T5440] netlink: 60 bytes leftover after parsing attributes in process `syz.4.418'.
[  213.067864][ T3687] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[  213.086598][   T27] audit: type=1326 audit(1722105501.553:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5445 comm="syz.3.422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd27b777299 code=0x7ffc0000
[  213.164136][   T27] audit: type=1326 audit(1722105501.553:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5445 comm="syz.3.422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd27b777299 code=0x7ffc0000
[  213.197415][ T5452] netlink: 8 bytes leftover after parsing attributes in process `syz.2.421'.
[  213.206887][   T27] audit: type=1326 audit(1722105501.623:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5445 comm="syz.3.422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=248 compat=0 ip=0x7fd27b777299 code=0x7ffc0000
[  213.238221][ T5452] netlink: 12 bytes leftover after parsing attributes in process `syz.2.421'.
[  213.271262][   T27] audit: type=1326 audit(1722105501.623:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5445 comm="syz.3.422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd27b777299 code=0x7ffc0000
[  213.327843][ T3687] usb 2-1: Using ep0 maxpacket: 16
[  213.337048][   T27] audit: type=1326 audit(1722105501.623:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5445 comm="syz.3.422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd27b777299 code=0x7ffc0000
[  213.448232][ T3687] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  213.466660][ T3687] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  213.484921][ T3687] usb 2-1: New USB device found, idVendor=07b5, idProduct=0312, bcdDevice= 0.00
[  213.495531][ T3687] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  213.504341][ T5461] netlink: 8 bytes leftover after parsing attributes in process `syz.3.426'.
[  213.527868][ T3728] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  213.529871][ T3687] usb 2-1: config 0 descriptor??
[  213.688227][ T5465] bridge0: port 2(bridge_slave_1) entered disabled state
[  213.695832][ T5465] bridge0: port 1(bridge_slave_0) entered disabled state
[  213.767818][ T3728] usb 3-1: Using ep0 maxpacket: 8
[  213.888205][ T3728] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  213.913133][ T3728] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  213.935433][ T3728] usb 3-1: New USB device found, idVendor=04d8, idProduct=f372, bcdDevice= 0.00
[  213.954472][ T3728] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  213.981013][ T3728] usb 3-1: config 0 descriptor??
[  214.009255][ T5437] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  214.036230][ T5437] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  214.113820][ T3687] megaworld 0003:07B5:0312.0003: hidraw0: USB HID v0.00 Device [HID 07b5:0312] on usb-dummy_hcd.1-1/input0
[  214.142908][ T3687] megaworld 0003:07B5:0312.0003: no inputs found
[  214.200204][ T5474] loop3: detected capacity change from 0 to 512
[  214.241378][ T5471] loop0: detected capacity change from 0 to 2048
[  214.280427][ T5474] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  214.296135][ T5437] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  214.307119][ T5437] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  214.316127][ T5471] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  214.327767][ T5437] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  214.328239][ T5471] ext4 filesystem being mounted at /51/file0 supports timestamps until 2038 (0x7fffffff)
[  214.336916][ T5437] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  214.361670][ T3687] usb 2-1: USB disconnect, device number 13
[  214.406132][ T5474] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2810: Unable to expand inode 17. Delete some EAs or run e2fsck.
[  214.466318][ T5474] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #16: comm syz.3.433: invalid indirect mapped block 4294967295 (level 0)
[  214.473377][ T3728] hid-led 0003:04D8:F372.0004: hidraw0: USB HID v0.00 Device [HID 04d8:f372] on usb-dummy_hcd.2-1/input0
[  214.519051][ T5485] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.434'.
[  214.525056][ T3728] hid-led 0003:04D8:F372.0004: Greynut Luxafor initialized
[  214.565716][ T5484] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.434'.
[  214.595529][ T5474] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #16: comm syz.3.433: invalid indirect mapped block 4294967295 (level 1)
[  214.662076][ T5474] EXT4-fs (loop3): 1 orphan inode deleted
[  214.681675][ T5474] EXT4-fs (loop3): 1 truncate cleaned up
[  214.706961][  T154] usb 3-1: USB disconnect, device number 8
[  214.713997][ T5474] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  214.731095][ T4428] EXT4-fs (loop0): unmounting filesystem.
[  214.740954][ T3687] leds luxafor0:blue:led5: Setting an LED's brightness failed (-38)
[  214.772522][ T3687] leds luxafor0:green:led5: Setting an LED's brightness failed (-38)
[  214.787518][ T3687] leds luxafor0:red:led5: Setting an LED's brightness failed (-38)
[  214.789560][ T5474] EXT4-fs error (device loop3): ext4_find_dest_de:2112: inode #2: block 13: comm syz.3.433: bad entry in directory: rec_len is too small for name_len - offset=12, inode=2, rec_len=12, size=1024 fake=0
[  214.805772][ T3687] leds luxafor0:blue:led4: Setting an LED's brightness failed (-38)
[  214.835628][ T3687] leds luxafor0:green:led4: Setting an LED's brightness failed (-38)
[  214.863198][ T3687] leds luxafor0:red:led4: Setting an LED's brightness failed (-38)
[  214.885630][ T3687] leds luxafor0:blue:led3: Setting an LED's brightness failed (-38)
[  214.921688][ T3687] leds luxafor0:green:led3: Setting an LED's brightness failed (-38)
[  214.984151][ T3687] leds luxafor0:red:led3: Setting an LED's brightness failed (-38)
[  215.041464][ T3688] leds luxafor0:blue:led2: Setting an LED's brightness failed (-38)
[  215.052038][ T3687] leds luxafor0:green:led2: Setting an LED's brightness failed (-38)
[  215.068397][ T3687] leds luxafor0:red:led2: Setting an LED's brightness failed (-38)
[  215.077565][ T3687] leds luxafor0:blue:led1: Setting an LED's brightness failed (-38)
[  215.095592][ T3687] leds luxafor0:green:led1: Setting an LED's brightness failed (-38)
[  215.125416][ T3688] leds luxafor0:red:led1: Setting an LED's brightness failed (-38)
[  215.137892][ T3688] leds luxafor0:blue:led0: Setting an LED's brightness failed (-38)
[  215.163042][ T3688] leds luxafor0:green:led0: Setting an LED's brightness failed (-38)
[  215.200599][ T3688] leds luxafor0:red:led0: Setting an LED's brightness failed (-38)
[  215.208097][ T5496] kvm: emulating exchange as write
[  215.467782][ T5509] bridge0: port 2(bridge_slave_1) entered disabled state
[  215.476435][ T5509] bridge0: port 1(bridge_slave_0) entered disabled state
[  215.610118][ T3811] EXT4-fs error (device loop3): htree_dirblock_to_tree:1111: inode #2: block 13: comm syz-executor: bad entry in directory: rec_len is too small for name_len - offset=12, inode=2, rec_len=12, size=1024 fake=0
[  215.753192][ T3811] EXT4-fs (loop3): unmounting filesystem.
[  215.779844][ T5520] netlink: 36 bytes leftover after parsing attributes in process `syz.0.444'.
[  216.106104][ T5525] loop0: detected capacity change from 0 to 512
[  216.153218][ T3783] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  216.183034][ T5525] EXT4-fs error (device loop0): ext4_orphan_get:1396: inode #15: comm syz.0.448: casefold flag without casefold feature
[  216.343446][ T5525] EXT4-fs error (device loop0): __ext4_iget:5044: inode #12: block 2: comm syz.0.448: invalid block
[  216.412447][ T5525] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.448: error while reading EA inode 12 err=-117
[  216.482583][ T5525] EXT4-fs (loop0): 1 orphan inode deleted
[  216.505466][ T5525] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  216.545876][ T5534] netlink: 16 bytes leftover after parsing attributes in process `syz.4.450'.
[  216.604521][ T5525] syz.0.448 (pid 5525) is setting deprecated v1 encryption policy; recommend upgrading to v2.
[  216.649047][ T3783] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  216.732166][ T4428] EXT4-fs (loop0): unmounting filesystem.
[  216.983859][ T3783] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  217.155544][ T3783] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  217.170315][ T3655] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  217.213040][ T3655] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  217.222750][ T3655] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  217.234998][ T3655] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  217.243237][ T3655] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  217.252550][ T3655] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  217.279004][ T3652] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  217.287670][ T3652] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  217.295643][ T3652] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  217.309291][ T3652] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  217.329209][ T3652] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  217.339192][ T3652] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  217.742558][ T5544] chnl_net:caif_netlink_parms(): no params data found
[  217.791351][ T3783] tipc: Left network mode
[  218.260347][ T5544] bridge0: port 1(bridge_slave_0) entered blocking state
[  218.293538][ T5544] bridge0: port 1(bridge_slave_0) entered disabled state
[  218.333831][ T5544] device bridge_slave_0 entered promiscuous mode
[  218.434684][ T5544] bridge0: port 2(bridge_slave_1) entered blocking state
[  218.448328][ T5544] bridge0: port 2(bridge_slave_1) entered disabled state
[  218.475548][ T5544] device bridge_slave_1 entered promiscuous mode
[  218.715933][ T5544] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  218.810986][ T5544] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  218.944963][ T5586] loop1: detected capacity change from 0 to 512
[  219.019570][ T5586] ext4: Unknown parameter 'fowner<00000000000000000000'
[  219.036144][ T5544] team0: Port device team_slave_0 added
[  219.189802][ T5544] team0: Port device team_slave_1 added
[  219.324929][ T5544] batman_adv: batadv0: Adding interface: batadv_slave_0
[  219.358026][ T3655] Bluetooth: hci1: command tx timeout
[  219.367826][ T5544] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  219.413510][ T5593] loop4: detected capacity change from 0 to 256
[  219.478574][ T5544] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  219.539211][ T5593] exFAT-fs (loop4): failed to load upcase table (idx : 0x00017f3e, chksum : 0x0b83170a, utbl_chksum : 0xe619d30d)
[  219.598230][ T5544] batman_adv: batadv0: Adding interface: batadv_slave_1
[  219.616970][ T5544] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  219.718519][ T5544] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  219.909573][ T3783] bond0: (slave wlan1): Releasing backup interface
[  220.086527][ T5544] device hsr_slave_0 entered promiscuous mode
[  220.118974][ T5544] device hsr_slave_1 entered promiscuous mode
[  220.132475][ T5544] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  220.182036][ T5544] Cannot create hsr debugfs directory
[  220.318870][ T5599] loop4: detected capacity change from 0 to 1024
[  220.463499][ T5597] netlink: 8 bytes leftover after parsing attributes in process `syz.0.462'.
[  220.612157][ T5602] loop4: detected capacity change from 0 to 16
[  220.655952][ T5602] erofs: (device loop4): mounted with root inode @ nid 36.
[  220.739758][ T3783] device hsr_slave_0 left promiscuous mode
[  220.755069][ T3783] device hsr_slave_1 left promiscuous mode
[  220.778084][ T3783] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  220.816314][ T3783] batman_adv: batadv0: Removing interface: batadv_slave_0
[  220.898632][ T3783] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  220.924168][ T3783] batman_adv: batadv0: Removing interface: batadv_slave_1
[  220.969585][ T3783] device bridge_slave_1 left promiscuous mode
[  220.982888][ T5608] loop4: detected capacity change from 0 to 512
[  220.998475][ T3783] bridge0: port 2(bridge_slave_1) entered disabled state
[  221.026993][ T3783] device bridge_slave_0 left promiscuous mode
[  221.039753][ T3783] bridge0: port 1(bridge_slave_0) entered disabled state
[  221.180064][ T3783] device veth1_macvtap left promiscuous mode
[  221.186613][ T3783] device veth0_macvtap left promiscuous mode
[  221.206158][ T5608] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  221.237998][ T5608] ext4 filesystem being mounted at /72/file0 supports timestamps until 2038 (0x7fffffff)
[  221.289482][ T3783] device veth1_vlan left promiscuous mode
[  221.295369][ T3783] device veth0_vlan left promiscuous mode
[  221.411349][ T5620] loop1: detected capacity change from 0 to 128
[  221.439105][ T3652] Bluetooth: hci1: command tx timeout
[  221.449018][ T5620] EXT4-fs: Ignoring removed mblk_io_submit option
[  221.455515][ T5620] EXT4-fs: Ignoring removed nomblk_io_submit option
[  221.514463][ T4352] EXT4-fs (loop4): unmounting filesystem.
[  221.517145][ T5620] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  221.540667][ T5620] EXT4-fs (loop1): can't mount with journal_async_commit, fs mounted w/o journal
[  221.966191][ T5626] loop1: detected capacity change from 0 to 8
[  221.996058][ T5626] SQUASHFS error: zlib decompression failed, data probably corrupt
[  222.004751][ T5626] SQUASHFS error: Failed to read block 0x9b: -5
[  222.011102][ T5626] SQUASHFS error: Unable to read metadata cache entry [99]
[  222.018491][ T5626] SQUASHFS error: Unable to read inode 0x127
[  222.697903][ T3688] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  222.938016][ T3688] usb 5-1: Using ep0 maxpacket: 16
[  223.032974][ T3685] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[  223.138176][ T3688] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  223.176318][ T3688] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  223.195577][ T3688] usb 5-1: New USB device found, idVendor=07b5, idProduct=0312, bcdDevice= 0.00
[  223.211048][ T3688] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  223.234041][ T3688] usb 5-1: config 0 descriptor??
[  223.357008][ T5639] netlink: 16 bytes leftover after parsing attributes in process `syz.2.472'.
[  223.427950][ T3685] usb 2-1: config index 0 descriptor too short (expected 106, got 36)
[  223.436566][ T3685] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  223.448380][ T3685] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  223.458954][ T3685] usb 2-1: New USB device found, idVendor=1b1c, idProduct=1b3e, bcdDevice= 0.00
[  223.468695][ T3685] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  223.495847][ T3685] usb 2-1: config 0 descriptor??
[  223.518073][ T3652] Bluetooth: hci1: command tx timeout
[  223.838263][ T3688] usbhid 5-1:0.0: can't add hid device: -71
[  223.844279][ T3688] usbhid: probe of 5-1:0.0 failed with error -71
[  223.865999][ T3688] usb 5-1: USB disconnect, device number 2
[  224.020766][ T3685] corsair 0003:1B1C:1B3E.0005: failed to start in urb: -90
[  224.053782][ T3685] corsair 0003:1B1C:1B3E.0005: hidraw0: USB HID v0.00 Device [HID 1b1c:1b3e] on usb-dummy_hcd.1-1/input0
[  224.225484][ T3685] usb 2-1: USB disconnect, device number 14
[  224.236380][ T3783] team0 (unregistering): Port device team_slave_1 removed
[  224.470615][ T3783] team0 (unregistering): Port device team_slave_0 removed
[  224.532838][ T5642] loop4: detected capacity change from 0 to 256
[  224.589012][ T3783] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  224.659720][ T5642] exFAT-fs (loop4): failed to load upcase table (idx : 0x00017f3e, chksum : 0x0b83170a, utbl_chksum : 0xe619d30d)
[  224.796894][ T3783] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  224.885324][ T5647] loop1: detected capacity change from 0 to 16
[  224.933469][ T5647] erofs: (device loop1): mounted with root inode @ nid 36.
[  225.564535][ T5657] netlink: 8 bytes leftover after parsing attributes in process `syz.4.479'.
[  225.599212][ T3652] Bluetooth: hci1: command tx timeout
[  225.604450][ T5656] loop1: detected capacity change from 0 to 128
[  225.753421][ T5656] EXT4-fs: Ignoring removed mblk_io_submit option
[  225.877877][ T5657] mmap: syz.4.479 (5657) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  225.882224][ T5656] EXT4-fs: Ignoring removed nomblk_io_submit option
[  225.996115][ T5656] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  226.138146][ T5656] EXT4-fs (loop1): can't mount with journal_async_commit, fs mounted w/o journal
[  226.506464][ T5659] loop1: detected capacity change from 0 to 8
[  226.727168][ T5659] SQUASHFS error: zlib decompression failed, data probably corrupt
[  226.735443][ T5659] SQUASHFS error: Failed to read block 0x9b: -5
[  226.741958][ T5659] SQUASHFS error: Unable to read metadata cache entry [99]
[  226.749315][ T5659] SQUASHFS error: Unable to read inode 0x127
[  227.266049][ T5491] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  227.385990][ T3783] bond0 (unregistering): Released all slaves
[  228.213669][ T3728] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[  228.328819][ T5683] fuse: Bad value for 'fd'
[  228.478122][ T3728] usb 2-1: Using ep0 maxpacket: 16
[  228.555138][ T5687] loop0: detected capacity change from 0 to 1024
[  228.638195][ T3728] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  228.672522][ T5697] MPTCP: kernel_bind error, err=-99
[  228.684401][ T3728] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  228.708073][ T3728] usb 2-1: New USB device found, idVendor=07b5, idProduct=0312, bcdDevice= 0.00
[  228.717314][ T3728] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  228.727889][ T3728] usb 2-1: config 0 descriptor??
[  228.767381][ T5687] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  229.025393][ T5687] EXT4-fs (loop0): re-mounted. Quota mode: none.
[  229.200362][ T5670] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  229.220021][ T5670] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  229.265430][ T3728] megaworld 0003:07B5:0312.0006: hidraw0: USB HID v0.00 Device [HID 07b5:0312] on usb-dummy_hcd.1-1/input0
[  229.308857][ T3728] megaworld 0003:07B5:0312.0006: no inputs found
[  229.444859][ T4428] EXT4-fs (loop0): unmounting filesystem.
[  229.482256][ T3728] usb 2-1: USB disconnect, device number 15
[  229.593838][ T5544] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  229.695121][ T5544] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  229.699843][ T5544] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  229.709966][ T5544] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  229.926827][ T5544] 8021q: adding VLAN 0 to HW filter on device bond0
[  229.960621][ T3688] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  229.979425][ T3688] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  229.991675][ T5544] 8021q: adding VLAN 0 to HW filter on device team0
[  230.050812][ T3688] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  230.095121][ T3688] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  230.149302][ T3688] bridge0: port 1(bridge_slave_0) entered blocking state
[  230.156464][ T3688] bridge0: port 1(bridge_slave_0) entered forwarding state
[  230.253992][   T14] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  230.264647][   T14] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  230.265250][   T14] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  230.265717][   T14] bridge0: port 2(bridge_slave_1) entered blocking state
[  230.265784][   T14] bridge0: port 2(bridge_slave_1) entered forwarding state
[  230.266255][   T14] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  230.267200][   T14] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  230.316325][ T3687] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  230.318386][ T3687] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  230.319250][ T3687] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  230.486770][ T3687] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  230.508542][ T3687] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  230.555568][ T3687] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  230.584021][ T5544] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  230.627962][ T5544] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  230.675660][ T3688] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  230.694301][ T3688] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  230.738104][ T3688] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  231.107364][ T5710] loop0: detected capacity change from 0 to 40427
[  231.157622][ T5710] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  231.202774][ T5710] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  231.473593][ T5710] F2FS-fs (loop0): Found nat_bits in checkpoint
[  231.526626][ T5735] netlink: 44 bytes leftover after parsing attributes in process `syz.2.499'.
[  231.943210][ T5710] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  231.968012][ T5710] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  232.098704][ T3725] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  232.106396][ T3725] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  232.174144][ T5544] 8021q: adding VLAN 0 to HW filter on device batadv0
[  232.675076][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  232.771860][ T5757] netlink: 8 bytes leftover after parsing attributes in process `syz.1.500'.
[  232.782631][ T5755] syz.0.491: attempt to access beyond end of device
[  232.782631][ T5755] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  232.795266][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  232.947133][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  233.008782][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  233.028583][ T5544] device veth0_vlan entered promiscuous mode
[  233.082099][ T5544] device veth1_vlan entered promiscuous mode
[  233.116622][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  233.135222][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  233.160606][ T4428] syz-executor: attempt to access beyond end of device
[  233.160606][ T4428] loop0: rw=2049, sector=40960, nr_sectors = 8 limit=40427
[  233.186785][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  233.226203][ T5766] netlink: 4 bytes leftover after parsing attributes in process `syz.1.501'.
[  233.583311][ T5766] 8021q: adding VLAN 0 to HW filter on device team1
[  233.612082][ T5767] netlink: 8 bytes leftover after parsing attributes in process `syz.1.501'.
[  233.708131][  T154] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  233.724017][ T5544] device veth0_macvtap entered promiscuous mode
[  233.855173][ T3687] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  233.871689][ T3687] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  233.903716][ T3687] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  233.938257][ T5544] device veth1_macvtap entered promiscuous mode
[  233.968058][  T154] usb 3-1: Using ep0 maxpacket: 16
[  233.991901][   T14] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  234.041128][ T5544] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  234.080254][ T5544] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  234.090699][  T154] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  234.122191][  T154] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  234.139170][ T5544] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  234.166474][  T154] usb 3-1: New USB device found, idVendor=07b5, idProduct=0312, bcdDevice= 0.00
[  234.196557][ T5544] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  234.224367][  T154] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  234.237835][ T5544] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  234.286266][  T154] usb 3-1: config 0 descriptor??
[  234.297059][ T5544] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  234.324089][ T5544] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  234.357471][ T5544] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  234.396116][ T5544] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  234.419218][ T5544] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  234.457288][ T5544] batman_adv: batadv0: Interface activated: batadv_slave_0
[  234.486727][ T5544] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  234.512086][ T5544] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  234.529084][ T5544] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  234.558422][ T5544] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  234.585756][ T5544] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  234.623575][ T5544] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  234.653729][ T5544] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  234.696516][ T5544] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  234.730725][ T5544] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  234.762765][ T5544] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  234.774027][ T5771] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  234.809672][ T5771] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  234.813878][ T5544] batman_adv: batadv0: Interface activated: batadv_slave_1
[  234.847691][ T5781] netlink: 'syz.0.502': attribute type 10 has an invalid length.
[  234.898388][ T5781] team0: Port device wlan1 added
[  234.916742][ T3688] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  234.940334][ T3688] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  234.948711][  T154] usbhid 3-1:0.0: can't add hid device: -71
[  234.954824][  T154] usbhid: probe of 3-1:0.0 failed with error -71
[  234.979010][ T3688] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  235.006046][  T154] usb 3-1: USB disconnect, device number 9
[  235.028923][ T3688] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  235.072232][ T5544] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  235.081075][ T5791] loop4: detected capacity change from 0 to 128
[  235.081809][ T5791] EXT4-fs: Ignoring removed mblk_io_submit option
[  235.136546][ T5544] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  235.154598][ T5791] EXT4-fs: Ignoring removed nomblk_io_submit option
[  235.177506][ T5544] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  235.194183][ T5791] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  235.217954][ T5544] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  235.268996][ T5791] EXT4-fs (loop4): can't mount with journal_async_commit, fs mounted w/o journal
[  235.884634][ T5783] loop1: detected capacity change from 0 to 32768
[  236.022409][ T5783] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 scanned by syz.1.505 (5783)
[  236.106021][ T5802] loop4: detected capacity change from 0 to 8
[  237.056802][ T5783] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  237.067427][ T5783] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm
[  237.080198][ T5802] SQUASHFS error: zlib decompression failed, data probably corrupt
[  237.088229][ T5802] SQUASHFS error: Failed to read block 0x9b: -5
[  237.094534][ T5802] SQUASHFS error: Unable to read metadata cache entry [99]
[  237.101838][ T5802] SQUASHFS error: Unable to read inode 0x127
[  237.118769][ T5783] BTRFS info (device loop1): setting nodatacow, compression disabled
[  237.124402][ T5795] loop0: detected capacity change from 0 to 128
[  237.137586][ T5783] BTRFS info (device loop1): setting incompat feature flag for COMPRESS_LZO (0x8)
[  237.148127][ T5783] BTRFS info (device loop1): force lzo compression, level 0
[  237.156151][ T5783] BTRFS info (device loop1): metadata ratio 8
[  237.162485][ T5783] BTRFS info (device loop1): doing ref verification
[  237.182281][ T5783] BTRFS info (device loop1): metadata ratio 32769
[  237.208275][ T5783] BTRFS info (device loop1): turning off barriers
[  237.235407][ T3939] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  237.257991][ T3939] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  237.265524][ T5795] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[  237.279488][ T5783] BTRFS info (device loop1): enabling ssd optimizations
[  237.286590][ T5783] BTRFS info (device loop1): using spread ssd allocation scheme
[  237.331627][ T3728] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  237.384234][ T5783] BTRFS info (device loop1): turning on barriers
[  237.392012][ T5783] BTRFS info (device loop1): using free space tree
[  237.537543][   T56] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  237.622863][   T56] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  237.686718][ T5821] netlink: 60 bytes leftover after parsing attributes in process `syz.4.509'.
[  237.712933][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  237.730677][ T5783] BTRFS error (device loop1): open_ctree failed
[  238.117211][ T5843] netlink: 8 bytes leftover after parsing attributes in process `syz.3.451'.
[  238.149347][ T3696] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  238.157988][ T5843] netlink: 12 bytes leftover after parsing attributes in process `syz.3.451'.
[  238.168772][ T5842] netlink: 4 bytes leftover after parsing attributes in process `syz.4.513'.
[  238.245900][ T5838] loop0: detected capacity change from 0 to 4096
[  238.296409][ T5838] ntfs3: loop0: Different NTFS' sector size (2048) and media sector size (512)
[  238.312979][ T5842] 8021q: adding VLAN 0 to HW filter on device team1
[  238.358480][ T5845] netlink: 8 bytes leftover after parsing attributes in process `syz.4.513'.
[  238.467875][   T14] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  238.477870][   T27] audit: type=1800 audit(1722105526.943:52): pid=5838 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.510" name="bus" dev="loop0" ino=33 res=0 errno=0
[  238.629245][ T3696] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  238.667189][ T3696] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[  238.701276][ T3696] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  238.727905][   T14] usb 4-1: Using ep0 maxpacket: 8
[  238.760625][ T3696] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  238.806160][ T3696] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  238.833446][ T3696] usb 3-1: config 0 descriptor??
[  238.839900][ T5861] loop0: detected capacity change from 0 to 128
[  238.849196][   T14] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  238.868196][ T5831] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  238.876214][ T5861] EXT4-fs: Ignoring removed mblk_io_submit option
[  238.883067][   T14] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  238.889787][ T5861] EXT4-fs: Ignoring removed nomblk_io_submit option
[  238.918569][   T14] usb 4-1: New USB device found, idVendor=04d8, idProduct=f372, bcdDevice= 0.00
[  238.935855][ T5861] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  238.949321][ T5861] EXT4-fs (loop0): can't mount with journal_async_commit, fs mounted w/o journal
[  238.978090][   T14] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  239.022563][   T14] usb 4-1: config 0 descriptor??
[  239.085234][ T5865] loop4: detected capacity change from 0 to 2048
[  239.191289][ T5870] fuse: Bad value for 'fd'
[  239.238789][ T5865] UDF-fs: error (device loop4): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  239.315726][ T5865] UDF-fs: error (device loop4): udf_read_tagged: tag checksum failed, block 160: 0xd2 != 0xd4
[  239.330526][ T5865] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  239.433812][ T5874] loop0: detected capacity change from 0 to 8
[  240.272978][   T14] hid-led 0003:04D8:F372.0007: hidraw0: USB HID v0.00 Device [HID 04d8:f372] on usb-dummy_hcd.3-1/input0
[  240.290325][ T5874] SQUASHFS error: zlib decompression failed, data probably corrupt
[  240.298304][ T5874] SQUASHFS error: Failed to read block 0x9b: -5
[  240.304544][ T5874] SQUASHFS error: Unable to read metadata cache entry [99]
[  240.311810][ T5874] SQUASHFS error: Unable to read inode 0x127
[  240.331093][ T3696] plantronics 0003:047F:FFFF.0008: unknown main item tag 0xd
[  240.339867][   T14] hid-led 0003:04D8:F372.0007: Greynut Luxafor initialized
[  240.352457][ T5875] loop1: detected capacity change from 0 to 1024
[  240.352687][   T14] usb 4-1: USB disconnect, device number 5
[  240.406618][ T3696] plantronics 0003:047F:FFFF.0008: No inputs registered, leaving
[  240.409927][ T3688] leds luxafor0:blue:led5: Setting an LED's brightness failed (-38)
[  240.459215][ T3687] leds luxafor0:green:led5: Setting an LED's brightness failed (-38)
[  240.475921][ T3696] plantronics 0003:047F:FFFF.0008: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  240.488718][ T3687] leds luxafor0:red:led5: Setting an LED's brightness failed (-38)
[  240.611502][ T5875] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  240.644226][ T3688] leds luxafor0:blue:led4: Setting an LED's brightness failed (-38)
[  240.689108][ T3688] leds luxafor0:green:led4: Setting an LED's brightness failed (-38)
[  241.075179][ T5884] EXT4-fs (loop1): re-mounted. Quota mode: none.
[  241.227700][ T3688] leds luxafor0:red:led4: Setting an LED's brightness failed (-38)
[  241.403526][ T5882] loop0: detected capacity change from 0 to 128
[  241.412755][ T3688] leds luxafor0:blue:led3: Setting an LED's brightness failed (-38)
[  241.460521][ T5882] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[  241.496369][  T154] leds luxafor0:green:led3: Setting an LED's brightness failed (-38)
[  241.594659][ T3688] leds luxafor0:red:led3: Setting an LED's brightness failed (-38)
[  241.629160][ T3687] leds luxafor0:blue:led2: Setting an LED's brightness failed (-38)
[  241.659283][ T3687] leds luxafor0:green:led2: Setting an LED's brightness failed (-38)
[  241.740566][ T3687] leds luxafor0:red:led2: Setting an LED's brightness failed (-38)
[  241.767858][ T3688] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  241.786619][ T3687] leds luxafor0:blue:led1: Setting an LED's brightness failed (-38)
[  241.813003][ T3687] leds luxafor0:green:led1: Setting an LED's brightness failed (-38)
[  241.867187][ T3687] leds luxafor0:red:led1: Setting an LED's brightness failed (-38)
[  241.908665][  T154] leds luxafor0:blue:led0: Setting an LED's brightness failed (-38)
[  241.929854][ T4496] EXT4-fs (loop1): unmounting filesystem.
[  241.935810][  T154] leds luxafor0:green:led0: Setting an LED's brightness failed (-38)
[  242.013666][ T3687] leds luxafor0:red:led0: Setting an LED's brightness failed (-38)
[  242.021903][ T3688] usb 5-1: Using ep0 maxpacket: 8
[  242.138027][ T3688] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[  242.146120][ T3688] usb 5-1: config 0 has no interface number 0
[  242.171005][ T5914] loop0: detected capacity change from 0 to 64
[  242.225123][ T3688] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 101, changing to 10
[  242.263125][ T5914] hfs: unable to parse mount options
[  242.303122][ T3688] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 59093, setting to 1024
[  242.377004][ T5914] loop0: detected capacity change from 0 to 8
[  242.385162][ T3688] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  242.417869][ T3688] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  242.576741][ T3688] usb 5-1: config 0 descriptor??
[  242.662953][ T5894] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  243.710049][ T3688] iowarrior 5-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior1
[  243.954132][ T3688] usb 5-1: USB disconnect, device number 3
[  243.979452][ T3688] iowarrior 5-1:0.1: I/O-Warror #1 now disconnected
[  244.123695][   T14] usb 3-1: USB disconnect, device number 10
[  244.526297][ T5932] loop1: detected capacity change from 0 to 2048
[  244.631926][ T5932] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024)
[  244.671030][ T5932] NILFS (loop1): invalid segment: Checksum error in segment payload
[  244.707220][ T5932] NILFS (loop1): unable to fall back to spare super block
[  244.751535][ T5932] NILFS (loop1): error -22 while searching super root
[  244.842372][ T5939] netlink: 8 bytes leftover after parsing attributes in process `syz.4.531'.
[  244.888439][ T5939] netlink: 12 bytes leftover after parsing attributes in process `syz.4.531'.
[  245.187899][ T5828] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  245.385386][ T5953] loop1: detected capacity change from 0 to 256
[  245.488120][ T5828] usb 5-1: Using ep0 maxpacket: 8
[  245.608251][ T5828] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  245.661285][ T5828] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  245.701739][ T5828] usb 5-1: New USB device found, idVendor=04d8, idProduct=f372, bcdDevice= 0.00
[  245.726729][ T5828] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  245.765409][ T5828] usb 5-1: config 0 descriptor??
[  245.787516][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  245.979543][ T5971] loop1: detected capacity change from 0 to 64
[  246.013802][ T5971] hfs: unable to parse mount options
[  246.273349][ T5828] hid-led 0003:04D8:F372.0009: hidraw0: USB HID v0.00 Device [HID 04d8:f372] on usb-dummy_hcd.4-1/input0
[  247.350104][ T5976] loop0: detected capacity change from 0 to 4096
[  247.359257][ T5982] loop1: detected capacity change from 0 to 40427
[  247.370594][ T5982] F2FS-fs (loop1): Unrecognized mount option "acqive_logs=4" or missing value
[  247.382749][ T5828] hid-led 0003:04D8:F372.0009: Greynut Luxafor initialized
[  247.394297][ T5828] usb 5-1: USB disconnect, device number 4
[  247.397860][ T3688] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  247.404078][ T3696] leds luxafor0:blue:led5: Setting an LED's brightness failed (-38)
[  247.418929][ T5827] leds luxafor0:green:led5: Setting an LED's brightness failed (-38)
[  247.429529][ T5976] ntfs3: loop0: Different NTFS' sector size (2048) and media sector size (512)
[  247.447839][ T3728] leds luxafor0:red:led5: Setting an LED's brightness failed (-38)
[  247.596803][ T5827] leds luxafor0:blue:led4: Setting an LED's brightness failed (-38)
[  247.606556][ T5827] leds luxafor0:green:led4: Setting an LED's brightness failed (-38)
[  247.629876][ T5827] leds luxafor0:red:led4: Setting an LED's brightness failed (-38)
[  247.648734][ T5827] leds luxafor0:blue:led3: Setting an LED's brightness failed (-38)
[  247.664892][ T5827] leds luxafor0:green:led3: Setting an LED's brightness failed (-38)
[  247.687847][ T5827] leds luxafor0:red:led3: Setting an LED's brightness failed (-38)
[  247.724549][ T5827] leds luxafor0:blue:led2: Setting an LED's brightness failed (-38)
[  247.744124][ T5827] leds luxafor0:green:led2: Setting an LED's brightness failed (-38)
[  247.754235][ T5827] leds luxafor0:red:led2: Setting an LED's brightness failed (-38)
[  247.768793][ T5976] loop0: detected capacity change from 4096 to 0
[  247.793641][ T5827] leds luxafor0:blue:led1: Setting an LED's brightness failed (-38)
[  247.862968][ T5986] ntfs3: loop0: ino=5, "/" directory corrupted
[  247.865269][ T5827] leds luxafor0:green:led1: Setting an LED's brightness failed (-38)
[  247.901645][ T3688] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  247.912275][ T5827] leds luxafor0:red:led1: Setting an LED's brightness failed (-38)
[  247.932902][ T5827] leds luxafor0:blue:led0: Setting an LED's brightness failed (-38)
[  247.993393][ T3688] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[  248.036466][ T5990] loop3: detected capacity change from 0 to 256
[  248.068866][ T5827] leds luxafor0:green:led0: Setting an LED's brightness failed (-38)
[  248.141732][ T5990] exfat: Deprecated parameter 'utf8'
[  248.162222][ T5827] leds luxafor0:red:led0: Setting an LED's brightness failed (-38)
[  248.213183][ T5990] exfat: Deprecated parameter 'namecase'
[  248.719252][ T5990] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  248.737778][ T3688] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  248.799912][ T4428] ntfs3: loop0: ino=5, "/" directory corrupted
[  248.806901][ T4428] ntfs3: loop0: ino=5, "/" directory corrupted
[  248.847946][ T3688] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  248.858989][ T3688] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  248.920042][ T3688] usb 3-1: config 0 descriptor??
[  248.963145][ T5979] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  249.080593][    T9] ntfs3: loop0: ino=5, directory corrupted
[  249.105148][    T9] ntfs3: loop0: ino=5, directory corrupted
[  250.088038][ T3688] usbhid 3-1:0.0: can't add hid device: -71
[  250.102969][ T3688] usbhid: probe of 3-1:0.0 failed with error -71
[  250.151042][ T3688] usb 3-1: USB disconnect, device number 11
[  250.296064][    T9] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  250.469189][ T5999] loop4: detected capacity change from 0 to 2048
[  250.487559][    T9] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  250.548753][ T5999] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024)
[  250.621325][ T5999] NILFS (loop4): invalid segment: Checksum error in segment payload
[  250.632704][ T5999] NILFS (loop4): unable to fall back to spare super block
[  250.642217][ T5999] NILFS (loop4): error -22 while searching super root
[  250.706710][    T9] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  251.876801][ T6020] loop3: detected capacity change from 0 to 65
[  251.922842][ T6020] BFS-fs: bfs_fill_super(): NOTE: filesystem loop3 was created with 512 inodes, the real maximum is 511, mounting anyway
[  251.943756][ T6020] BFS-fs: bfs_fill_super(): Last block not available on loop3: 262208
[  252.664974][    T9] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  253.070172][ T6027] loop3: detected capacity change from 0 to 512
[  253.479478][ T6027] loop3: detected capacity change from 0 to 1024
[  253.572624][ T5491] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  254.777796][ T3655] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  254.791120][ T3655] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  254.796719][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  254.811029][ T3654] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  254.828750][ T3654] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  254.836356][ T3654] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  254.845502][ T3654] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  255.680580][ T1271] ieee802154 phy0 wpan0: encryption failed: -22
[  255.686978][ T1271] ieee802154 phy1 wpan1: encryption failed: -22
[  255.884355][    T9] team0: Port device wlan1 removed
[  256.071972][ T6086] loop3: detected capacity change from 0 to 2048
[  256.293270][ T6097] Bluetooth: MGMT ver 1.22
[  256.303638][ T6046] chnl_net:caif_netlink_parms(): no params data found
[  256.321849][ T6086] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024)
[  256.430156][ T6086] NILFS (loop3): invalid segment: Checksum error in segment payload
[  256.449575][ T6086] NILFS (loop3): unable to fall back to spare super block
[  256.462417][ T6086] NILFS (loop3): error -22 while searching super root
[  256.550461][    T9] device hsr_slave_0 left promiscuous mode
[  256.569424][    T9] device hsr_slave_1 left promiscuous mode
[  256.593000][    T9] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  256.600821][    T9] batman_adv: batadv0: Removing interface: batadv_slave_0
[  256.610528][    T9] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  256.621924][    T9] batman_adv: batadv0: Removing interface: batadv_slave_1
[  256.632934][    T9] device bridge_slave_1 left promiscuous mode
[  256.647089][    T9] bridge0: port 2(bridge_slave_1) entered disabled state
[  256.705470][    T9] device bridge_slave_0 left promiscuous mode
[  256.749304][    T9] bridge0: port 1(bridge_slave_0) entered disabled state
[  256.840155][    T9] device veth1_macvtap left promiscuous mode
[  256.856601][    T9] device veth0_macvtap left promiscuous mode
[  256.864062][    T9] device veth1_vlan left promiscuous mode
[  256.878017][ T3655] Bluetooth: hci0: command tx timeout
[  256.886124][    T9] device veth0_vlan left promiscuous mode
[  256.922547][   T27] audit: type=1326 audit(1722105545.393:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6083 comm="syz.3.570" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7feede577299 code=0x0
[  258.396887][    T9] team0 (unregistering): Port device team_slave_1 removed
[  258.495573][    T9] team0 (unregistering): Port device team_slave_0 removed
[  258.563155][    T9] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  258.912480][    T9] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  258.957998][ T3655] Bluetooth: hci0: command tx timeout
[  259.653741][ T6126] loop3: detected capacity change from 0 to 256
[  259.700435][ T6126] exFAT-fs (loop3): failed to load upcase table (idx : 0x00017f3e, chksum : 0x0b83170a, utbl_chksum : 0xe619d30d)
[  260.641321][    T9] bond0 (unregistering): Released all slaves
[  260.802933][ T6106] netlink: 4 bytes leftover after parsing attributes in process `syz.4.576'.
[  260.949338][ T6139] loop3: detected capacity change from 0 to 32768
[  260.977360][ T6139] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop3 scanned by syz.3.590 (6139)
[  261.037967][ T3655] Bluetooth: hci0: command tx timeout
[  261.139195][ T6046] bridge0: port 1(bridge_slave_0) entered blocking state
[  261.166635][ T6046] bridge0: port 1(bridge_slave_0) entered disabled state
[  261.181431][ T6139] BTRFS info (device loop3): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  261.217966][ T6046] device bridge_slave_0 entered promiscuous mode
[  261.245440][ T6139] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[  261.250801][ T6046] bridge0: port 2(bridge_slave_1) entered blocking state
[  261.311180][ T6139] BTRFS info (device loop3): using free space tree
[  261.312796][ T6046] bridge0: port 2(bridge_slave_1) entered disabled state
[  261.363388][ T6046] device bridge_slave_1 entered promiscuous mode
[  262.038213][    C1] vcan0: j1939_tp_rxtimer: 0xffff8880592bbc00: rx timeout, send abort
[  262.048839][    C1] vcan0: j1939_tp_rxtimer: 0xffff888059b35800: rx timeout, send abort
[  262.312628][ T6148] netlink: 4 bytes leftover after parsing attributes in process `syz.4.592'.
[  262.497936][ T3687] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[  262.527426][ T6139] BTRFS info (device loop3): enabling ssd optimizations
[  262.619174][ T6046] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  262.677417][ T6046] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  262.748123][ T3687] usb 2-1: Using ep0 maxpacket: 16
[  262.868364][ T3687] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  262.881154][ T3687] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  262.912903][ T3687] usb 2-1: New USB device found, idVendor=07b5, idProduct=0312, bcdDevice= 0.00
[  262.948795][ T3687] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  262.999909][ T3687] usb 2-1: config 0 descriptor??
[  263.016106][ T6046] team0: Port device team_slave_0 added
[  263.056209][ T6046] team0: Port device team_slave_1 added
[  263.088466][ T6139] BTRFS info (device loop3): balance: start -d -m
[  263.118012][ T3655] Bluetooth: hci0: command tx timeout
[  263.191695][ T6139] BTRFS info (device loop3): relocating block group 6881280 flags data|metadata
[  263.238268][ T6046] batman_adv: batadv0: Adding interface: batadv_slave_0
[  263.300180][ T6046] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  263.391735][ T6046] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  263.450679][ T6046] batman_adv: batadv0: Adding interface: batadv_slave_1
[  263.457679][ T6046] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  263.488979][ T6161] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  263.509011][ T6161] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  263.543385][ T6139] BTRFS info (device loop3): relocating block group 5242880 flags data|metadata
[  263.592356][ T3687] megaworld 0003:07B5:0312.000A: hidraw0: USB HID v0.00 Device [HID 07b5:0312] on usb-dummy_hcd.1-1/input0
[  263.606758][ T6046] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  263.633841][ T3687] megaworld 0003:07B5:0312.000A: no inputs found
[  263.720014][ T6139] BTRFS info (device loop3): balance: canceled
[  263.795019][ T3687] usb 2-1: USB disconnect, device number 16
[  264.025618][ T6046] device hsr_slave_0 entered promiscuous mode
[  264.136510][ T6046] device hsr_slave_1 entered promiscuous mode
[  264.612557][ T5544] BTRFS info (device loop3): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  265.847883][   T14] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  266.047863][   T14] usb 4-1: device descriptor read/64, error -71
[  266.317842][   T14] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  266.367163][ T6214] loop1: detected capacity change from 0 to 32768
[  266.418730][ T6214] XFS: ikeep mount option is deprecated.
[  266.424455][ T6214] XFS: ikeep mount option is deprecated.
[  266.518250][   T14] usb 4-1: device descriptor read/64, error -71
[  266.525584][ T6247] loop4: detected capacity change from 0 to 256
[  266.536014][ T6247] exfat: Deprecated parameter 'utf8'
[  266.541743][ T6247] exfat: Deprecated parameter 'namecase'
[  266.590506][ T6247] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  266.668050][   T14] usb usb4-port1: attempt power cycle
[  266.797446][ T6046] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  266.918883][ T6214] XFS (loop1): Mounting V5 Filesystem
[  267.217905][   T14] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  267.478965][ T6046] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  267.625608][ T6046] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  267.628325][   T14] usb 4-1: device descriptor read/8, error -71
[  267.709698][ T6046] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  267.739500][ T6214] XFS (loop1): Ending clean mount
[  267.852907][ T4496] XFS (loop1): Unmounting Filesystem
[  267.918021][   T14] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  268.027963][   T14] usb 4-1: device descriptor read/8, error -71
[  268.148213][   T14] usb usb4-port1: unable to enumerate USB device
[  268.392112][ T6046] 8021q: adding VLAN 0 to HW filter on device bond0
[  268.469588][ T3681] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  268.479059][ T3681] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  268.502385][ T6046] 8021q: adding VLAN 0 to HW filter on device team0
[  268.556921][ T3681] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  268.581846][ T3681] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  268.648342][ T3681] bridge0: port 1(bridge_slave_0) entered blocking state
[  268.655519][ T3681] bridge0: port 1(bridge_slave_0) entered forwarding state
[  268.721591][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  268.748979][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  268.798282][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  268.827333][  T154] bridge0: port 2(bridge_slave_1) entered blocking state
[  268.834594][  T154] bridge0: port 2(bridge_slave_1) entered forwarding state
[  268.938410][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  268.971393][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  269.024250][ T6285] syzkaller0: tun_chr_ioctl cmd 1074812118
[  269.098658][ T3688] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  269.138257][ T3688] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  269.165595][ T3688] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  269.193169][ T3688] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  269.245313][ T3681] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  269.279095][ T5827] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  269.310282][ T5827] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  269.349657][ T6046] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  269.425560][ T6046] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  269.455129][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  269.481198][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  269.769972][ T6302] netlink: 4 bytes leftover after parsing attributes in process `syz.3.624'.
[  269.860087][ T6302] netlink: 8 bytes leftover after parsing attributes in process `syz.3.624'.
[  270.171482][ T6314] netlink: 8 bytes leftover after parsing attributes in process `syz.3.626'.
[  270.245125][ T6314] netlink: 12 bytes leftover after parsing attributes in process `syz.3.626'.
[  270.486305][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  270.494946][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  270.520721][ T6046] 8021q: adding VLAN 0 to HW filter on device batadv0
[  270.557815][   T22] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  270.612850][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  270.628992][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  270.683882][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  270.699760][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  270.748755][ T6046] device veth0_vlan entered promiscuous mode
[  270.756758][ T5825] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  270.781115][ T5825] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  270.806201][ T6046] device veth1_vlan entered promiscuous mode
[  270.835498][ T6297] loop1: detected capacity change from 0 to 32768
[  270.848037][   T22] usb 4-1: Using ep0 maxpacket: 8
[  270.894134][ T6297] XFS: ikeep mount option is deprecated.
[  270.913605][ T6297] XFS: ikeep mount option is deprecated.
[  270.938866][ T5825] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  270.961981][ T5825] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  270.974581][   T22] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  271.006722][   T22] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  271.048635][ T5825] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  271.063306][   T22] usb 4-1: New USB device found, idVendor=04d8, idProduct=f372, bcdDevice= 0.00
[  271.077670][ T5825] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  271.086354][   T22] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  271.099135][   T22] usb 4-1: config 0 descriptor??
[  271.109119][ T6297] XFS (loop1): Mounting V5 Filesystem
[  271.171024][ T6046] device veth0_macvtap entered promiscuous mode
[  271.192027][ T6046] device veth1_macvtap entered promiscuous mode
[  271.251936][ T6046] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  271.269142][ T6297] XFS (loop1): Ending clean mount
[  271.270239][ T6046] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  271.353257][ T6046] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  271.400560][    C1] vcan0: j1939_tp_txtimer: 0xffff888059691c00: tx aborted with unknown reason: -2
[  271.410196][ T6046] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  271.426372][ T6046] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  271.437157][ T6046] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  271.451787][ T6046] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  271.484291][ T6046] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  271.515781][ T6046] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  271.544747][ T6046] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  271.567369][ T4496] XFS (loop1): Unmounting Filesystem
[  271.594749][   T22] hid-led 0003:04D8:F372.000B: hidraw0: USB HID v0.00 Device [HID 04d8:f372] on usb-dummy_hcd.3-1/input0
[  271.613743][ T6046] batman_adv: batadv0: Interface activated: batadv_slave_0
[  271.654579][ T6339] syzkaller0: tun_chr_ioctl cmd 1074812118
[  271.704454][   T22] hid-led 0003:04D8:F372.000B: Greynut Luxafor initialized
[  271.798110][   T22] usb 4-1: USB disconnect, device number 10
[  271.822505][ T5827] leds luxafor0:blue:led5: Setting an LED's brightness failed (-38)
[  271.836555][ T6347] netlink: 4 bytes leftover after parsing attributes in process `syz.2.631'.
[  271.849894][ T5827] leds luxafor0:green:led5: Setting an LED's brightness failed (-38)
[  271.869255][ T5827] leds luxafor0:red:led5: Setting an LED's brightness failed (-38)
[  271.887371][ T5827] leds luxafor0:blue:led4: Setting an LED's brightness failed (-38)
[  271.896948][ T5827] leds luxafor0:green:led4: Setting an LED's brightness failed (-38)
[  271.909926][    C1] vcan0: j1939_tp_rxtimer: 0xffff888059691c00: abort rx timeout. Force session deactivation
[  271.936572][   T26] leds luxafor0:red:led4: Setting an LED's brightness failed (-38)
[  271.952724][ T6217] leds luxafor0:blue:led3: Setting an LED's brightness failed (-38)
[  271.973574][ T6217] leds luxafor0:green:led3: Setting an LED's brightness failed (-38)
[  271.991708][ T6217] leds luxafor0:red:led3: Setting an LED's brightness failed (-38)
[  272.013739][   T26] leds luxafor0:blue:led2: Setting an LED's brightness failed (-38)
[  272.024680][   T26] leds luxafor0:green:led2: Setting an LED's brightness failed (-38)
[  272.048922][ T6217] leds luxafor0:red:led2: Setting an LED's brightness failed (-38)
[  272.058134][ T6217] leds luxafor0:blue:led1: Setting an LED's brightness failed (-38)
[  272.084113][ T6217] leds luxafor0:green:led1: Setting an LED's brightness failed (-38)
[  272.102042][   T26] leds luxafor0:red:led1: Setting an LED's brightness failed (-38)
[  272.132486][   T26] leds luxafor0:blue:led0: Setting an LED's brightness failed (-38)
[  272.169262][ T6217] leds luxafor0:green:led0: Setting an LED's brightness failed (-38)
[  272.181147][ T3684] leds luxafor0:red:led0: Setting an LED's brightness failed (-38)
[  272.257971][ T5825] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  272.268790][ T5825] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  272.293743][ T5825] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  272.338418][ T5825] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  272.446958][ T6046] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  272.481606][ T6046] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  272.523951][ T6046] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  272.545172][ T6046] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  272.567071][ T6046] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  272.619431][ T6046] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  272.641143][ T6046] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  272.667399][ T6046] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  272.699558][ T6046] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  272.725277][ T6046] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  272.746821][ T6046] batman_adv: batadv0: Interface activated: batadv_slave_1
[  272.789071][ T3681] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  272.809290][ T3681] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  272.831518][ T6046] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  272.850668][ T6046] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  272.910700][ T6046] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  272.963678][ T6046] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  273.026611][ T6371] netlink: 4 bytes leftover after parsing attributes in process `syz.3.636'.
[  273.138916][ T6366] netlink: 8 bytes leftover after parsing attributes in process `syz.3.636'.
[  273.428203][ T3783] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  273.436589][ T3783] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  273.524720][ T3939] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  273.545479][ T3681] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  273.563158][ T3939] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  274.170161][ T3681] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  275.245418][ T6418] netlink: 40 bytes leftover after parsing attributes in process `syz.2.649'.
[  278.215019][ T6474] netlink: 40 bytes leftover after parsing attributes in process `syz.3.667'.
[  278.229118][ T6472] loop1: detected capacity change from 0 to 2048
[  278.296404][ T6472] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024)
[  278.383062][ T6472] NILFS (loop1): invalid segment: Checksum error in segment payload
[  278.448116][ T6472] NILFS (loop1): unable to fall back to spare super block
[  278.535728][ T6472] NILFS (loop1): error -22 while searching super root
[  278.828717][ T6471] loop1: detected capacity change from 0 to 256
[  279.487562][ T6499] loop0: detected capacity change from 0 to 2048
[  279.575008][ T6499] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024)
[  279.595915][ T6499] NILFS (loop0): invalid segment: Checksum error in segment payload
[  279.604705][ T6499] NILFS (loop0): unable to fall back to spare super block
[  279.612410][ T6499] NILFS (loop0): error -22 while searching super root
[  280.578384][ T6514] netlink: 60 bytes leftover after parsing attributes in process `syz.1.680'.
[  284.569501][ T6587] loop3: detected capacity change from 0 to 256
[  284.615795][ T6587] exFAT-fs (loop3): failed to load upcase table (idx : 0x00017f3e, chksum : 0x0b83170a, utbl_chksum : 0xe619d30d)
[  284.760400][ T6548] loop4: detected capacity change from 0 to 32768
[  284.767637][ T6548] XFS: ikeep mount option is deprecated.
[  284.844751][ T6548] XFS: ikeep mount option is deprecated.
[  284.955710][ T6548] XFS (loop4): Mounting V5 Filesystem
[  285.189251][ T6548] XFS (loop4): Ending clean mount
[  286.115854][ T4352] XFS (loop4): Unmounting Filesystem
[  286.128693][ T6618] netlink: 8 bytes leftover after parsing attributes in process `syz.3.717'.
[  286.390884][ T6217] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  286.707904][ T6217] usb 3-1: Using ep0 maxpacket: 16
[  286.848239][ T6217] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  287.001030][ T6217] usb 3-1: New USB device found, idVendor=07b5, idProduct=0312, bcdDevice= 0.00
[  287.059850][ T6217] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  287.183984][ T6217] usb 3-1: config 0 descriptor??
[  287.201362][ T6626] loop0: detected capacity change from 0 to 2048
[  287.258478][ T6626] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024)
[  287.272341][ T6217] usbhid 3-1:0.0: couldn't find an input interrupt endpoint
[  287.317858][ T6626] NILFS (loop0): invalid segment: Checksum error in segment payload
[  287.327308][ T6632] loop1: detected capacity change from 0 to 512
[  287.336552][ T6626] NILFS (loop0): unable to fall back to spare super block
[  287.355941][ T6626] NILFS (loop0): error -22 while searching super root
[  287.485267][ T6632] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  287.515108][ T6632] ext4 filesystem being mounted at /120/file0 supports timestamps until 2038 (0x7fffffff)
[  287.626532][ T6623] loop0: detected capacity change from 0 to 256
[  288.246886][ T6648] netlink: 64 bytes leftover after parsing attributes in process `syz.4.725'.
[  288.457015][ T6654] loop4: detected capacity change from 0 to 256
[  288.506966][ T6654] exFAT-fs (loop4): failed to load upcase table (idx : 0x00017f3e, chksum : 0x0b83170a, utbl_chksum : 0xe619d30d)
[  289.916163][   T14] usb 3-1: USB disconnect, device number 12
[  289.985554][ T4496] EXT4-fs (loop1): unmounting filesystem.
[  290.458248][ T6686] loop3: detected capacity change from 0 to 1764
[  291.792726][ T6707] loop4: detected capacity change from 0 to 1764
[  291.968284][ T6705] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(12)
[  291.975559][ T6705] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  292.008353][ T6705] vhci_hcd vhci_hcd.0: Device attached
[  292.071604][ T6703] loop4: detected capacity change from 0 to 512
[  292.118679][ T6715] vhci_hcd: connection closed
[  292.124010][ T3887] vhci_hcd: stop threads
[  292.141991][ T3887] vhci_hcd: release socket
[  292.155491][ T6703] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  292.193493][ T3887] vhci_hcd: disconnect device
[  292.332931][ T6703] EXT4-fs (loop4): 1 orphan inode deleted
[  292.339435][ T6703] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  292.376179][ T6703] ext4 filesystem being mounted at /139/file1 supports timestamps until 2038 (0x7fffffff)
[  292.445850][ T6703] ------------[ cut here ]------------
[  292.451719][ T6703] WARNING: CPU: 1 PID: 6703 at arch/x86/kvm/x86.c:11207 kvm_arch_vcpu_ioctl_run+0x22b1/0x2470
[  292.462298][ T6703] Modules linked in:
[  292.466241][ T6703] CPU: 1 PID: 6703 Comm: syz.4.746 Not tainted 6.1.102-syzkaller #0
[  292.474407][ T6703] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  292.484612][ T6703] RIP: 0010:kvm_arch_vcpu_ioctl_run+0x22b1/0x2470
[  292.491087][ T6703] Code: e8 34 83 d1 00 e9 62 eb ff ff 44 89 f9 80 e1 07 38 c1 0f 8c 6a eb ff ff 4c 89 ff e8 19 83 d1 00 e9 5d eb ff ff e8 ff fa 79 00 <0f> 0b e9 07 fa ff ff 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c 05 f9 ff
[  292.510785][ T6703] RSP: 0018:ffffc90012f5fc68 EFLAGS: 00010287
[  292.516883][ T6703] RAX: ffffffff8110a091 RBX: 0000000000000000 RCX: 0000000000040000
[  292.524922][ T6703] RDX: ffffc9000e2a6000 RSI: 00000000000003d6 RDI: 00000000000003d7
[  292.532949][ T6703] RBP: ffff8880777082ec R08: ffffffff8117fa21 R09: fffffbfff20e7265
[  292.540994][ T6703] R10: 0000000000000000 R11: dffffc0000000001 R12: ffff888067bc0000
[  292.549009][ T6703] R13: ffff888077708000 R14: ffff88807d4b6000 R15: dffffc0000000000
[  292.556990][ T6703] FS:  00007f23855176c0(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000
[  292.565952][ T6703] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  292.572575][ T6703] CR2: 000000110c289478 CR3: 000000001abee000 CR4: 00000000003526e0
[  292.580609][ T6703] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  292.588668][ T6703] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  292.596673][ T6703] Call Trace:
[  292.600041][ T6703]  <TASK>
[  292.603018][ T6703]  ? __warn+0x15a/0x520
[  292.607205][ T6703]  ? kvm_arch_vcpu_ioctl_run+0x22b1/0x2470
[  292.613107][ T6703]  ? report_bug+0x2af/0x500
[  292.617656][ T6703]  ? kvm_arch_vcpu_ioctl_run+0x22b1/0x2470
[  292.623571][ T6703]  ? handle_bug+0x3d/0x70
[  292.628018][ T6703]  ? exc_invalid_op+0x16/0x40
[  292.632748][ T6703]  ? asm_exc_invalid_op+0x16/0x20
[  292.637868][ T6703]  ? kvm_lapic_hv_timer_in_use+0x61/0xc0
[  292.643523][ T6703]  ? kvm_arch_vcpu_ioctl_run+0x22b1/0x2470
[  292.649389][ T6703]  ? kvm_arch_vcpu_ioctl_run+0x22b1/0x2470
[  292.655330][ T6703]  ? kvm_arch_vcpu_ioctl_run+0x22b1/0x2470
[  292.661211][ T6703]  ? kvm_arch_vcpu_ioctl_run+0x13e/0x2470
[  292.666993][ T6703]  ? get_task_pid+0x1f/0x300
[  292.671688][ T6703]  kvm_vcpu_ioctl+0x7f0/0xcf0
[  292.676383][ T6703]  ? __fget_files+0x28/0x4a0
[  292.681068][ T6703]  ? xa_release+0x50/0x50
[  292.685418][ T6703]  ? __fget_files+0x28/0x4a0
[  292.690048][ T6703]  ? __fget_files+0x435/0x4a0
[  292.694738][ T6703]  ? __fget_files+0x28/0x4a0
[  292.699368][ T6703]  ? bpf_lsm_file_ioctl+0x5/0x10
[  292.704405][ T6703]  ? security_file_ioctl+0x7d/0xa0
[  292.709585][ T6703]  ? xa_release+0x50/0x50
[  292.713927][ T6703]  __se_sys_ioctl+0xf1/0x160
[  292.718596][ T6703]  do_syscall_64+0x3b/0xb0
[  292.723232][ T6703]  ? clear_bhb_loop+0x45/0xa0
[  292.727967][ T6703]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  292.733894][ T6703] RIP: 0033:0x7f2384777299
[  292.738380][ T6703] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  292.758114][ T6703] RSP: 002b:00007f2385517048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  292.766552][ T6703] RAX: ffffffffffffffda RBX: 00007f2384905f80 RCX: 00007f2384777299
[  292.774598][ T6703] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  292.782633][ T6703] RBP: 00007f23847e48e6 R08: 0000000000000000 R09: 0000000000000000
[  292.790642][ T6703] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  292.798701][ T6703] R13: 000000000000000b R14: 00007f2384905f80 R15: 00007ffe4ff0e708
[  292.806732][ T6703]  </TASK>
[  292.809786][ T6703] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  292.817067][ T6703] CPU: 1 PID: 6703 Comm: syz.4.746 Not tainted 6.1.102-syzkaller #0
[  292.825051][ T6703] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  292.835231][ T6703] Call Trace:
[  292.838512][ T6703]  <TASK>
[  292.841445][ T6703]  dump_stack_lvl+0x1e3/0x2cb
[  292.846138][ T6703]  ? nf_tcp_handle_invalid+0x642/0x642
[  292.851612][ T6703]  ? panic+0x764/0x764
[  292.855688][ T6703]  ? 0xffffffffa0003b40
[  292.860281][ T6703]  ? vscnprintf+0x59/0x80
[  292.864618][ T6703]  panic+0x318/0x764
[  292.868633][ T6703]  ? __warn+0x169/0x520
[  292.872914][ T6703]  ? memcpy_page_flushcache+0xfc/0xfc
[  292.878305][ T6703]  __warn+0x348/0x520
[  292.882385][ T6703]  ? kvm_arch_vcpu_ioctl_run+0x22b1/0x2470
[  292.888291][ T6703]  report_bug+0x2af/0x500
[  292.892647][ T6703]  ? kvm_arch_vcpu_ioctl_run+0x22b1/0x2470
[  292.898480][ T6703]  handle_bug+0x3d/0x70
[  292.902648][ T6703]  exc_invalid_op+0x16/0x40
[  292.907161][ T6703]  asm_exc_invalid_op+0x16/0x20
[  292.912023][ T6703] RIP: 0010:kvm_arch_vcpu_ioctl_run+0x22b1/0x2470
[  292.918445][ T6703] Code: e8 34 83 d1 00 e9 62 eb ff ff 44 89 f9 80 e1 07 38 c1 0f 8c 6a eb ff ff 4c 89 ff e8 19 83 d1 00 e9 5d eb ff ff e8 ff fa 79 00 <0f> 0b e9 07 fa ff ff 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c 05 f9 ff
[  292.938059][ T6703] RSP: 0018:ffffc90012f5fc68 EFLAGS: 00010287
[  292.944137][ T6703] RAX: ffffffff8110a091 RBX: 0000000000000000 RCX: 0000000000040000
[  292.952116][ T6703] RDX: ffffc9000e2a6000 RSI: 00000000000003d6 RDI: 00000000000003d7
[  292.960096][ T6703] RBP: ffff8880777082ec R08: ffffffff8117fa21 R09: fffffbfff20e7265
[  292.968159][ T6703] R10: 0000000000000000 R11: dffffc0000000001 R12: ffff888067bc0000
[  292.976136][ T6703] R13: ffff888077708000 R14: ffff88807d4b6000 R15: dffffc0000000000
[  292.984183][ T6703]  ? kvm_lapic_hv_timer_in_use+0x61/0xc0
[  292.989832][ T6703]  ? kvm_arch_vcpu_ioctl_run+0x22b1/0x2470
[  292.995674][ T6703]  ? kvm_arch_vcpu_ioctl_run+0x22b1/0x2470
[  293.001495][ T6703]  ? kvm_arch_vcpu_ioctl_run+0x13e/0x2470
[  293.007235][ T6703]  ? get_task_pid+0x1f/0x300
[  293.011864][ T6703]  kvm_vcpu_ioctl+0x7f0/0xcf0
[  293.016646][ T6703]  ? __fget_files+0x28/0x4a0
[  293.021283][ T6703]  ? xa_release+0x50/0x50
[  293.025630][ T6703]  ? __fget_files+0x28/0x4a0
[  293.030227][ T6703]  ? __fget_files+0x435/0x4a0
[  293.034912][ T6703]  ? __fget_files+0x28/0x4a0
[  293.039620][ T6703]  ? bpf_lsm_file_ioctl+0x5/0x10
[  293.044565][ T6703]  ? security_file_ioctl+0x7d/0xa0
[  293.049681][ T6703]  ? xa_release+0x50/0x50
[  293.054051][ T6703]  __se_sys_ioctl+0xf1/0x160
[  293.058684][ T6703]  do_syscall_64+0x3b/0xb0
[  293.063165][ T6703]  ? clear_bhb_loop+0x45/0xa0
[  293.067892][ T6703]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  293.073843][ T6703] RIP: 0033:0x7f2384777299
[  293.078266][ T6703] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  293.097892][ T6703] RSP: 002b:00007f2385517048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  293.106349][ T6703] RAX: ffffffffffffffda RBX: 00007f2384905f80 RCX: 00007f2384777299
[  293.114352][ T6703] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  293.122807][ T6703] RBP: 00007f23847e48e6 R08: 0000000000000000 R09: 0000000000000000
[  293.130885][ T6703] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  293.138915][ T6703] R13: 000000000000000b R14: 00007f2384905f80 R15: 00007ffe4ff0e708
[  293.146913][ T6703]  </TASK>
[  293.150356][ T6703] Kernel Offset: disabled
[  293.155033][ T6703] Rebooting in 86400 seconds..