last executing test programs:

10m2.763368025s ago: executing program 32 (id=74):
r0 = syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000280)='./file2\x00', 0x2808008, &(0x7f0000001600)={[{@debug}, {@jqfmt_vfsv0}, {@mblk_io_submit}, {@debug}, {@test_dummy_encryption_v1}, {@norecovery}, {@delalloc}, {@nogrpid}, {@minixdf}]}, 0x1, 0xbd9, &(0x7f0000000400)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x1, &(0x7f0000000240)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x4000087, 0x2, 0x0)
openat(r0, &(0x7f00000015c0)='./file0\x00', 0x80600, 0x50)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
socket(0x10, 0x3, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000003c0)={[{@xino_auto}, {@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
clock_gettime(0x6, &(0x7f0000000000)={<r4=>0x0, <r5=>0x0})
clock_settime(0x0, &(0x7f0000000380)={r4, r5+60000000})

9m37.008155525s ago: executing program 5 (id=126):
setsockopt$inet_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000080)=0x1, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(0xffffffffffffffff, 0x6, 0x14, &(0x7f0000000100)=0x2, 0x4)
connect$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x58}}, 0x10)
sendto(0xffffffffffffffff, &(0x7f0000000140)='A', 0xfffff, 0x40008c1, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000000d00)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000001d40)=""/4096, 0x1000}], 0x1}, 0x1}], 0x256, 0x10022, 0x0)

9m35.623809658s ago: executing program 5 (id=129):
r0 = fsopen(&(0x7f0000000040)='fuseblk\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000240)='\xe0\"\xef\xb1\xea\xe6\x9c\xe6\xc8M\xdb\x86\xb3\x8b\xbe\xd5\xbdB\x92\xa0\x19r\xafbB\xe2\xe8\xcd\x1bf\x18\x7f\xf27E#\"\xab\x99\xec\x88\x8d\xd8C\x0f\x95\xff\xfeG\xf9t\xb1 \xcc\xc5\xbb\x88\xb6\xd2\xf2Jwq\xf8oG<v\xb8\x18\x80\xe1Kf\xf8R\xdd\x06\xe8\xf0l\v\xb0\xdd\x05\x05\xd8\xdb\xfd`\xf9\xf8\x915\b\x8c\xad\xc8\x9d=\xfeN\x8b\x1eR\x1e\xf8\x9dn\x19H\xd2aE\xa0\x06\xb0Yv\xf9^\x8c\x8f\xc3\xa5\x985\x85U\x8cZ/\'\xbd\xe2\xdc\xe3\xb9\x8e$Z\xef\xa8\xe5\xd9Mt\xd3\xd9\xf6X\x1a\x9b\t$N\xd0U\xe2z\xeb\x01\x80!0\xe8\xc3\xce\xf8\x03\xde\x92s\xf9', &(0x7f0000000ac0)='fuseblk\xb7\x860z\x1b\x02\xd4\xad\xac!zoNb\xd9\xf6\xd13o\x0f>\x1a\xc0\"\xf7)\x0e\x00\x00\xd9\x9fbJ7\xd1\xad\xe1\xed\x87\xae\x11-s\xb4\x0e\x1e\x9a\xa2\xc1crt\x88%\x92\x8fL\x8d\xb3-\xb60O \xc5\xd1q\xcc\x97\xc5\xe8\xb0\n\v\xa9V\xfa\xeb\x1e|M\x98W\x81\xa2@{j&\x16I\xd9\xfb\xb5\xf2\xfc\xd4\x99Pl\xfa\xe8\x7f\xc9`\xc2\x176\x8az\xdcn\xe7\x00\x00\x00\x00\x00\x00\x00\x00\x00', 0x0)
fsconfig$FSCONFIG_SET_BINARY(r0, 0x2, &(0x7f0000000300)='\xe6u\x88ek\v\xf6u%\x9b\x00\x00\xad\xeb\x00\x00\x00\x00\x01\x80\x00\x00\xcf\x9b\x9f\b\xb6\xfe\xc8\xda~-\xf5S>\xb8\x86\xfc\x9cVR\x82\x9a\xbdp\xbd\x83w\xf9Z\xd2\xcb\xcdF\xd0#N7\x17\xfc\x1e\xf1\x97\xffxi\xe0KE}]\x8e\xca\xe3+\xc8\x98\x03\x91\x88(\bn\x7f\x0e\x85\xa5\xb4\n?_\xc9\xef\xe0Q\xdb\xb6\xa5\x81t\x06\xda\x95\x935\xf1\x18\xac\x00\xf0\xff\xff\xbd\xb5\xa1\x06\xfd\x01\x00\x00\x00\x0f\xf8\xe3\x8a\x1f\x9c\xf3\xc1\x1f\xf9\xbf[\xd13\xb3\xd3j\r6\x7f', &(0x7f00000003c0), 0x0)
close(r0)

9m35.583539159s ago: executing program 5 (id=130):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x138}, 0x1, 0x0, 0x0, 0x8801}, 0x10)
socket$nl_xfrm(0x10, 0x3, 0x6)
fsopen(0x0, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
setsockopt$sock_int(r4, 0x1, 0x2a, &(0x7f0000000000), 0x4)
recvmmsg(r4, &(0x7f0000001140), 0x700, 0x0, 0x0)
r5 = getpid()
ptrace$setregset(0x4205, r5, 0x4, &(0x7f0000000300)={&(0x7f0000000240)="53dc670f49797190990db186bec305718710af7c17402cf1ecd8929f80be953c6dc6962b72f060787cc3349e1ce73a986d2029109a2548193662a36eda7ee383230d59bdd89b6577da1cde184fb1078f957a183dac7bb4576072d8051de7cab31e7bb9107bb8e72b855be1", 0x6b})
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee1, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)

9m34.485644453s ago: executing program 5 (id=132):
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2048c5, &(0x7f00000001c0)={[{@uni_xlateno}, {@shortname_win95}, {@uni_xlate}, {@fat=@dmask={'dmask', 0x3d, 0x7a3b}}, {@uni_xlateno}, {@fat=@nfs_nostale_ro}, {@shortname_lower}, {@rodir}, {@iocharset={'iocharset', 0x3d, 'maccroatian'}}, {@uni_xlateno}, {@fat=@usefree}, {@utf8no}]}, 0x0, 0x2a7, &(0x7f0000000580)="$eJzs3UFr02Acx/Hf2m3tOrf2MAQF8UEveglbfQVFNhALylxFPQiZS7U0tqOplYq43bz6OoZHTwrqG9jFm3fxMgTByw5iZG3jui1gO5yZ5vuBkqfP8/yTJ32S8k+g6datFw+rZc8q200l0kYJaV3bUm6n1DPSWyY65XH1W9fFyW8fz9y4fedqoVicXzRmobB0KW+MmT779vHTl+feNydvvpp+k9Jm7u7W1/ynzZObp7Z+LAVrr0u2Wa7Xm/ay65iVile1jLnuOrbnmErNcxpN09deduurq21j11amMqsNx/OMXWubqtM2zbppNtrGvm9XasayLDOVUdwkh44obSwu2oUjGQyiMBFW2WgU7GRoY2njbwwKAAAcL1Hl/w8qnql4plbfk98fzP8TGiL/l2Kd/w+P/D8OdvL/TO/83Yv8HwAAAAAAAAAAAAAAAAAAAACAf8G272d9388Gy+CVkpSWFLyPepw4Gsx/vPX9cC8tuc9bpVapu+y2F8qqyJWj2THpe+d46OmWF64U52dNR07v3LVe/FqrlFQqiA/kwuPnuvGmP35NY8r0bz+vrGbC4/Mh8a3SuC6c91O9LTuylNWHe6rL1UrnuN6NfzZnzOVrxX3xE51+AAAAAAD8Dyzzy4Hr9067ZYLHhuxr71bu3h9Q9jf3B/ZdX4/q9Gh0+w0AAAAAQJx47SdV23WdRgwKwf8fhPYZ2fb9YVYY/UeXHrTzqKRezetOjRT5XAxSSEg6bHgybJZPDBz+RdKempnIp/tPFD4/6p4Bg3SO8lsJAAAAwFEIkv6RqAcCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAECMDfrwsKD/YZ491re5ZDR7CQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABwPPwMAAP//tLkXpA==")
r0 = syz_open_procfs(0x0, &(0x7f0000000540)='mounts\x00')
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000500)='./file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x1333404, 0x0)
mount$bind(&(0x7f0000000300)='./file0\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x11080, 0x0)
mount$bind(&(0x7f00000000c0)='.\x00', &(0x7f0000000280)='./file0\x00', 0x0, 0x3225808, 0x0)
read$FUSE(r0, &(0x7f0000002c00)={0x2020}, 0x2020)

9m34.109190085s ago: executing program 5 (id=135):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x183341, 0x0)
ioctl$F2FS_IOC_START_ATOMIC_WRITE(r0, 0xf501, 0x0)
write$UHID_CREATE2(r0, &(0x7f0000000300)=ANY=[], 0x18f)
ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(r0, 0xf502, 0x0)

9m33.672739519s ago: executing program 5 (id=137):
r0 = syz_open_dev$loop(&(0x7f00000056c0), 0x5, 0x8000)
ioctl$LOOP_SET_BLOCK_SIZE(r0, 0x4c09, 0x7fff)

9m33.427818706s ago: executing program 33 (id=137):
r0 = syz_open_dev$loop(&(0x7f00000056c0), 0x5, 0x8000)
ioctl$LOOP_SET_BLOCK_SIZE(r0, 0x4c09, 0x7fff)

8m32.825297228s ago: executing program 2 (id=242):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0xa27}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeeb, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = fsopen(&(0x7f0000000180)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
r4 = fsmount(r3, 0x0, 0x80)
r5 = openat$cgroup_procs(r4, &(0x7f00000002c0)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r5, &(0x7f0000001c00), 0x12)
write(0xffffffffffffffff, &(0x7f0000000100), 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, 0x0)
open(&(0x7f0000000040)='./bus\x00', 0x80242, 0x10)
r6 = open(&(0x7f0000000040)='./bus\x00', 0x80202, 0x0)
sendfile(r6, r5, 0x0, 0x2000000000006)

8m31.442007561s ago: executing program 2 (id=246):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000007c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = eventfd(0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0x4008af12, &(0x7f0000000080)={0x1, 0x7f})
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/53, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000800)=""/90})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000d40)={0x3, 0x0, [{0x0, 0x6d, &(0x7f0000000dc0)=""/109}, {0xdddd1000, 0xfc, &(0x7f0000000c00)=""/252}, {0x4, 0x1c, &(0x7f0000000d00)=""/28}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000340)=0x1)
openat(0xffffffffffffff9c, &(0x7f0000000200)='./bus\x00', 0x40942, 0x0)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x181102, 0x0)
ftruncate(r2, 0x2007ffb)
sendfile(r2, r2, 0x0, 0x1000000201005)

8m29.944875977s ago: executing program 2 (id=249):
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000007c0)=@newsa={0x144, 0x10, 0x1, 0xbffffffe, 0x100, {{@in6=@ipv4={'\x00', '\xff\xff', @rand_addr=0x64010100}, @in6=@ipv4={'\x00', '\xff\xff', @remote}, 0x1, 0x394, 0x4e21, 0x5, 0x0, 0x0, 0x0, 0x3a}, {@in6=@mcast2, 0x4d4, 0x6c}, @in=@private=0xa010100, {0x0, 0xa, 0x6, 0xffff, 0x8251b, 0x2, 0xfffffffffffffff8, 0x9}, {0x6, 0x0, 0x1f, 0x1ff}, {0x2, 0xfffffffc}, 0x70bd2a, 0x3504, 0xa, 0x1, 0xfd, 0x20}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}, @mark={0xc, 0x15, {0x35075d, 0x95}}]}, 0x144}, 0x1, 0x0, 0x0, 0x8801}, 0x10)
socket$nl_xfrm(0x10, 0x3, 0x6)
r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000140), 0xa2040, 0x0)
syz_kvm_add_vcpu$x86(0x0, &(0x7f00000000c0)={0x0, 0x0})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0xc45, 0x9, 0x1, 0x4, 0xfffd, 0x3, 0x4002004c2, 0x7fb, 0x9, 0x40000000, 0x400, 0x80, 0x7fffffffffffffff, 0x8, 0x10000, 0x3d8e], 0xeeef0000, 0x240046})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

8m28.482925583s ago: executing program 2 (id=251):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x210000, &(0x7f0000002f40)={[{@nodelalloc}, {@dioread_lock}, {@barrier_val={'barrier', 0x3d, 0x4}}, {@nolazytime}, {@noacl}, {@lazytime}, {@minixdf}, {@stripe={'stripe', 0x3d, 0x5}}, {@bh}, {@init_itable}]}, 0xfc, 0x56f, &(0x7f0000003780)="$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")
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000000)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
syz_mount_image$fuse(&(0x7f0000000140), &(0x7f0000000180)='./file0\x00', 0x8820, &(0x7f0000000240)=ANY=[], 0x1, 0x0, 0x0)
setreuid(0x0, 0xee01)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x189040, 0x2)

8m27.415992146s ago: executing program 2 (id=255):
syz_emit_ethernet(0x0, 0x0, 0x0)
syz_usb_connect$midi(0x0, 0x31, &(0x7f0000000480)=ANY=[@ANYBLOB="1201000300000008e809620040000102030109021f0001011810040904"], &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0})

8m21.891219388s ago: executing program 2 (id=266):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000180)=0x1)
ioctl$TCSETSW2(r0, 0x402c542c, &(0x7f00000000c0)={0xb, 0x2d, 0x1, 0xc4cb, 0x3, "80000200ee4a9e2d7000000000008000", 0x6})
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000080)=0x2)

8m21.518589479s ago: executing program 34 (id=266):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000180)=0x1)
ioctl$TCSETSW2(r0, 0x402c542c, &(0x7f00000000c0)={0xb, 0x2d, 0x1, 0xc4cb, 0x3, "80000200ee4a9e2d7000000000008000", 0x6})
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000080)=0x2)

6m33.921110101s ago: executing program 1 (id=598):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f0000000000)=@framed={{0x18, 0x2, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x1}, [@call={0x85, 0x0, 0x0, 0x7d}]}, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @xdp=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0xe, 0x0, &(0x7f0000000100)="3cd211a55a78529c72481426b639", 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)

6m33.534272963s ago: executing program 1 (id=600):
syz_mount_image$ext4(&(0x7f0000000540)='ext4\x00', &(0x7f0000000580)='./file0\x00', 0x0, &(0x7f0000000080), 0x1, 0x50d, &(0x7f0000000600)="$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")
chdir(&(0x7f0000000240)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x10)
ioctl$FS_IOC_ENABLE_VERITY(r0, 0x40806685, &(0x7f0000000a80)={0x1, 0x2, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0})

6m33.126252916s ago: executing program 1 (id=607):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
getpid()
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f0000000000)='./bus\x00', 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="61636c2c757365725f78617474722c6e6f61636c2c63616368655f73747261746567793d64697361626c65642c6e6f757365725f78617474722c6e6f61636c2c00d4a87b439fa421753f060fe37a330d2dfca47c4e52e78d71fc65b972e2bb306bb4a29b1fe3019842462c5fee84a2e6eb90d57b8725e3a2eff0b0b471dac5c01bee53cd8d"], 0xfe, 0x17d, &(0x7f0000000340)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file2\x00', 0x80000, 0x40)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2, 0x12012, r1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r0, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})

6m31.754629408s ago: executing program 1 (id=610):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x10)
syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000000200)='./bus\x00', 0x1400c, &(0x7f0000000000), 0x3, 0x470, &(0x7f0000000dc0)="$eJzs3M1vG0UbAPBn13H65k0hoZSvlo9AQVQIkqYt0AMHQCBxKBISHOBoJaEqTQtqgkSrSKQcygkhJO6II/8CJ7ggxAmJK9xRpQr1QsvJaL27iZ3YTtPYcYt/P8ntM/vhmce7Y8/u2AlgaE1l/yQReyPi94iYyIutG0zl/12/tjJ349rKXBL1+tt/JY3t/r62MlduWu433lyIJA62qXfpwsUztcXFhfNFeWb57EczSxcuPnf6bO3UwqmFc0dPnDh+bPbFF44+35M8xyMtojfe++rNk1+05L8hjx6Z6rbyqXq9x9UN1l1N8cgA28H2VIrjVW30/4moNB29iXj9s7XCpwNqINA39Xq9Pt559Wod+A9LorWsy8OwKD/oy+vfdtfBL/dt9DF4V1/JL4CyvK8Xj3zNyNodg+qG69temoqId1f/+SZ7RH/uQwAAtPghG/88m412Vuayscf6+CON+5u2u7uYG5qMiHsiYl9E3BvnYn9E3BfR2PaBiHhwm/U3TZI0hpmbxz/plVtO7iZk47+Xirmt1vFfOfqLyUqjdCEvRDV5//TiwpHiNTkc1T1ZebZLHT++9tuXndY1j/+yR1Z/ORYs2nFlZE/rPvO15dqtZ9zq6qWIAyPt8k/WZgKSiHgoIg60e4J06zpOP/Pdw53WbZ1/Fz2YaKp/G/F0fvxXY0P+paT7/OTM/2Jx4chMeVZs9suvl9/qVP+O8u+B7Pj/v+35v5b/ZNI8X7u0/Tou//F5x2uaqWoRbOP8X60t10aTdxrxaLHsk9ry8vnZiNHkZN7o5uVH1/cty+X2Wf6HD7Xv//ti/ZU4GBHZSfxIRDwaEY8Vx+7xiHgiIg51yf/nV5/8YOOysTL/2+D4z2/r+K8Ho9G6JG2zTRZUzvz0fUulk+thkf+N7u9/xxvR4WLJzbz/bW5F+2Cnrx8AAADcCdKI2BtJOr0Wp+n0dP4d/v351Hfm43Pz+W8EJqOalne6Jpruh84Wl/V5+VJE5F8tKNcfi7Rx3/jrylijPD334eL8QDMHxjv0/8yflUG3Dug7P9iC4aX/w/Dq2v+ru9cOYPdt6v9d+/yevrYF2F1tPv/HBtEOYPe1G//7ez8wHDb0f9N+METc/4fhpf/D8NL/YSgtjcXWP5LvGpTPdIu7bxVMROy0hYMJonpbNKNvQaR9r2K0v6dW34LkDmzzpmBw70kAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC99G8AAAD//1KFzjw=")
syz_mount_image$fuse(0x0, 0x0, 0x3000009, 0x0, 0x1, 0x0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
creat(&(0x7f0000000580)='./bus\x00', 0x9e)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1084, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x12)
write(r1, &(0x7f0000000a00)="c7", 0x1)
sendfile(r1, r0, 0x0, 0x3ffff)
mknod$loop(&(0x7f0000000000)='./cgroup\x00', 0x8, 0x0)

6m31.004719251s ago: executing program 1 (id=614):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xf, 0x4, 0x8, 0x1, 0x0, 0xffffffffffffffff, 0x3}, 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x15, 0xe, &(0x7f0000001440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000b50000001800000000000000000000000000000095"], &(0x7f0000000200)='syzkaller\x00', 0x6, 0x1006, &(0x7f0000002080)=""/4102}, 0x94)

6m30.591897664s ago: executing program 1 (id=616):
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
dup(0xffffffffffffffff)
r3 = syz_open_dev$usbfs(&(0x7f0000000480), 0x76, 0x160341)
ioctl$USBDEVFS_IOCTL(r3, 0xc0105512, &(0x7f0000000200))
ioctl$USBDEVFS_IOCTL(r3, 0xc0105512, &(0x7f0000000000)=@usbdevfs_connect)

6m30.457754909s ago: executing program 35 (id=616):
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
dup(0xffffffffffffffff)
r3 = syz_open_dev$usbfs(&(0x7f0000000480), 0x76, 0x160341)
ioctl$USBDEVFS_IOCTL(r3, 0xc0105512, &(0x7f0000000200))
ioctl$USBDEVFS_IOCTL(r3, 0xc0105512, &(0x7f0000000000)=@usbdevfs_connect)

6m20.007550743s ago: executing program 0 (id=645):
write$binfmt_script(0xffffffffffffffff, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0)
r0 = eventfd2(0x0, 0x0)
io_getevents(0x0, 0x2, 0x2, &(0x7f0000000040)=[{}, {}], 0x0)
io_submit(0x0, 0x1, &(0x7f0000000440)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x1fd, r0, 0x0, 0x0, 0x0, 0x0, 0x1, r0}])
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r1=>0x0)
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r1, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)

6m19.856255777s ago: executing program 0 (id=647):
seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x1, &(0x7f0000000340)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff})
shutdown(r0, 0x1)

6m19.655840574s ago: executing program 0 (id=650):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x400000000008d}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x1, &(0x7f0000000240)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
recvmmsg(r1, &(0x7f00000000c0), 0x4000087, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x41, &(0x7f0000000200)=0x474c, 0x4)
bind$inet(r2, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
setsockopt$inet_int(r2, 0x0, 0x7, &(0x7f0000000080)=0xcd, 0x4)
connect$inet(r2, &(0x7f0000000480)={0x2, 0x4e21, @multicast1}, 0x10)
sendmmsg(r2, &(0x7f0000007fc0), 0x800001d, 0x0)
setsockopt$inet_int(r2, 0x0, 0x8, &(0x7f0000000040)=0xfffffffc, 0x4)
recvmmsg(r2, &(0x7f0000000040), 0x291962b, 0x45833af92e4b39ff, 0x0)

6m17.323229456s ago: executing program 0 (id=654):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x100, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x141042, 0x0)
renameat2(0xffffffffffffff9c, &(0x7f00000007c0)='./file1\x00', 0xffffffffffffff9c, &(0x7f00000005c0)='./file3\x00', 0x4)
r1 = inotify_init1(0x0)
inotify_add_watch(r1, &(0x7f0000000100)='./file1\x00', 0xe20000e1)
r2 = inotify_init1(0x80800)
inotify_add_watch(r2, &(0x7f0000000000)='./file3\x00', 0x80000308)
rename(&(0x7f0000000200)='./file3\x00', &(0x7f0000000240)='./file1\x00')
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_mount_image$exfat(&(0x7f00000005c0), &(0x7f0000000140)='./bus\x00', 0x3008014, &(0x7f0000000600)=ANY=[], 0x1, 0x14fe, &(0x7f00000020c0)="$eJzs3Au0ztXWMPA511p/NklPkvuaa/55kssiSXJJSCRJkiS5JSRJkoTEJrckJCH3JPeQ3GIn9/st9yQ5kiQJCUnWN3Q6n/e8nfftnO+c7/V9Z8/fGGvsNff/mfNZa889nv9ljL2/7Ti4av1qlesyM/xT8M9fUgEgBQD6AcA1ABABQKlspbIBDoNMGlP/uTcR/1oPTbvSKxBXkvQ/fZP+p2/S//RN+p++Sf/TN+l/+ib9T9+k/0KkZ1un575WRvod/3PP/0Ge//8/R87//0YOFxvz5fpi13f6B1Kk/+mb9D99k/6nb9L/9E36n75J///NRQCV/pvD0v/0TfovRHp2pZ8/y7iy40r//gkhhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGESB/OhcsMAPxlfqXXJYQQQgghhBBCiH+dkPFKr0AIIYQQQgghhBD/9yEo0GAgggyQEVIgE2SGqyALXA1Z4RpIwLWQDa6D7HA95ICckAtyQx7IC/nAAoEDhhjyQwFIwg1QEG6EQlAYikBR8FAMisNNUAJuhpJwC5SCW6E03AZloCyUg/JwO1SAO6AiVILKcCdUgbugKlSDu6E63AM14F6oCfdBLbgfasMDUAcehLrwENSDh6E+PAIN4FFoCI2gMTSBpv9H+S9CV3gJukF3SIUe0BNehl7QG/pAX+gHr0B/eBUGwGswEAbBYHgdhsAbMBTehGEwHEbAWzASRsFoGANjYRyMh7dhArwDE+FdmASTYQpMhWkwHWbAezATZsFseB/mwAcwF+bBfFgAC+FDWASLIQ0+giXwMSyFZbAcVsBKWAWrYQ2shXWwHjbARtgEm2ELbIVPYBtshx2wE3bBbtgDn8Je+Az2weewH774B/PP/qf8TggIqFChQYMZMAOmYApmxsyYBbNgVsyKCUxgNsyG2TE75sAcmAtzYR7Mg/kwHxISMjLmx/yYxCQWxIJYCAthESyCHj0Wx+JYAm/GklgSS2EpLI2lsQyWxbJYHstjBayAFbEiVsbKWAWrYFWsinfj3XgP1sAaWBNrYi2shbWxNtbBOlgX62I9rIf1sT42wAbYEBtiY2yMTbEpNsNm2BybY0tsia2wFbbG1tgG22BbbIvtsB22x/bYATtgR+yInbAzdsYX8UV8CV/C7lhF9cCe2BN7YS/sg32xL76C/fFVfBVfw4E4CAfj6/g6voFD8QwOw+E4AkdgBTUKR+MYZDUOx+N4nIATcCJOxEk4GSfjVJyG03EGzsCZOAtn4fs4Bz/AD3AezsMFuBAX4iJcjGmYhkvwLC7FZbgcV+BKXIUrcQ2uxTW4HjfgetyEm3ALbsFP8BPcjttxJ+7E3bgbP8VP8TP8DAfiftyPB/AAHsSDeAgP4WE8jEfwCB7Fo3gMj+FxPI4n8CSewpN4Gk/jGTyL5/AcnsfzeAGfz/N1vd2F1w0EdYlRRmVQGVSKSlGZVWaVRWVRWVVWlVAJlU1lU9lVdpVD5VC5VC6VR+VR+VQ+RYoUq1jlV/lVUiVVQVVQFVKFVBFVRHnlVXFVXJVQJVRJVVKVUreq0uo2VUaVVS18eVVeVVAtfUVVSVVWlVUVdZeqqqqpaqq6qq5qqBqqpqqpaqlaqrZ6QNVRPbAPPqQudaa+GoQN1GBsqBqpxqqJegMfU83UUGyuWqiW6gk1HIdha9XMt1FPq7ZqNLZTz6ox+JzqoMZhR/WC6qQ6qy7qRdVVNffdMvz2EaimYi/VW/VRfdVMvEtd6lhV9ZoaqAapwep1tQDfUEPVm2qYGq5GqLfUSDVKjVZj1Fg1To1Xb6sJ6h01Ub2rJqnJaoqaqqap6WqGek/NVLPUbPW+mqM+UHPVPDVfLVAL1YdqkVqs0tRHaon6WC1Vy9RytUKtVKvUarVGrVXr1Hq1QW1Um9RmtUVtVZ+obWq72qF2ql1qt9qjPlV71Wdqn/pc7VdfqAPqT+qg+lIdUl+pw+prdUR9o46qb9Ux9Z06rr5XJ9RJdUr9oE6rH9UZdVadUz+p8+pndUH9oi6qoECjVlproyOdQWfUKTqTzqyv0ln01TqrvkYn9LU6m75OZ9fX6xw6p86lc+s8Oq/Op60m7TTrWOfXBXRS36AL6ht1IV1YF9FFtdfFdHF9ky6hb9Yl9S26lL5Vl9a36TK6rC6ny+vbdQV9h66oK+nK+k5dRd+lq+pq+m5dXd+ja+h7dU19n66l79e19QO6jn5Q19UP6Xr6YV1fP6Ib6Ed1Q91IN9ZNdFP9mG6mH9fNdQvdUj+hW+kndWv9lG6jn9Zt9TO6nX5Wt9fP6Q76ed1Rv6A76c66i/5FX9RBd9PddaruoXvql3Uv3Vv30X11P/2K7q9f1QP0a3qgHqQH69f1EP2GHqrf1MP0cD1Cv6VH6lF6tB6jx+pxerx+W0/Q7+iJ+l09SU/WU/RUPU1P131+qzT778h/52/kD/j13bforfoTvU1v1zv0Tr1L79Z79B69V+/V+/Q+vV/v1wf0AX1QH9SH9CF9WB/WR/QRfVQf1cf0MX1cH9cn9En9k/5Bn9Y/6jP6rD6rf9Ln9Xl94befARg0ymhjTGQymIwmxWQymc1VJou52mQ115iEudZkM9eZ7OZ6k8PkNLlMbpPH5DX5jDVknGETm/ymgEmaG0xBc6MpZAqbIqao8aaYKW5u+qfz/2h9TU1T08w0M81Nc9PStDStTCvT2rQ2bUwb09a0Ne1MO9PetDcdTAfT0XQ0nUwn08V0MV1NV9PNdDOpJtX0NC+bXqa36WP6mn7mFdPf9DcDzAAz0Aw0g81gM8QMMUPNUDPMDDMjzAgz0ow0o81oM9aMNePNeDPBTDATzUQzyUwyU8wUM81MMzPMDDPTzDSzzWwzx8wxc81cM9/MNwvNQrPILDJpJs0sMUvMUrPMLDMrzAqzyqwya8was86sMxvMBrPJbDJLzVaz1Wwz28wOs8PsMrvMHrPH7DV7zT6zz+w3+80Bc8AcNAfNIXPIHDaHzRFzxBw1R80xc8wcN8fNCXPCnDKnzGlz2pwxZ8w5c86cN+fNBXPBXDQXL132RSpSkYlMlCHKEKVEKVHmKHOUJcoSZY2yRokoEWWLskXZo+ujHFHOKFeUO8oT5Y1SwUYUuYijOMofFYiS0Q1RwejGqFBUOCoSFY18VCwqHt0UlYhujkpGt0Sloluj0tFtUZmobFQuKh/dHlWI7ogqRpWiytGdUZXorqhqVC26O6oe3RPViO6Nakb3RbWi+6Pa0QNRnejBqG70UFQvejiqHz0SNYgejRpGjaLGUZOo6b+0fghncj7uu9nuNtX2sD3ty7aX7W372L62n33F9rev2gH2NTvQDrKD7et2iH3DDrVv2mF2uB1h37Ij7Sg72o6xY+04O96+bSfYd+xE+66dZCfbKXaqnWan2xn2PTvTzrKz7ft2jv3AzrXz7Hy7wC60H9pFdrFNsx/ZJfZju9Qus8vtCrvSrrKr7Rq71q6z6+0Gu9FuspvtFrvVfmK32e12h91pd9nddo/91O61n9l99nO7335hD9g/2YP2S3vIfmUP26/tEfuNPWq/tcfsd/a4/d6esCftKfuDPW1/tGfsWXvO/mTP25/tBfuLvWjDpYv7S6d3MmQoA2WgFEqhzJSZslAWykpZKUEJykbZKDtlpxyUg3JRLspDeSgf5aNLmJjyU35KUpIKUkEqRIWoCBUhT56KU3EqQSWoJJWkUlSKSlNpKkNlqByVo9vpdrqD7qBKVInupDvpLrqLqlE1qk7VqQbVoJpUk2pRLapNtakO1aG6VJfqUT2qT/WpATWghtSQGlNjakpNqRk1o+bUnFpSS2pFrag1taY21IbaUltqR+2oPbWnDtSBOlJH6kSdqAt1oa7UlbpRN0qlVOpJPakX9aI+1If6UT/qT/1pAA2ggTSQBtNgGkJDaCgNpWE0nEbQWzSSRtFoGkNjaRyNp/E0gSbQRJpIk2gSTaEpNI2m0QyaQTNpJs2m2TSH5tBcmkvzaT4tpIW0iBZRGqXRElpCS2kpLafltJJW0mpaTWtpLa2n9bSRNtJm2kxbaStto220g3bQLtpFe2gP7aW9tI/20X7aTwfoAB2kg3SIDtFhOkxH6AgdpaN0jI7RcTpOJ+gEnaJTdJpO0xk6Q+foHJ2nn+kC/UIXKVCKU5DZXeWyuKtdVneNS3GZ3KU4AoBLcS6X2+VxeV0+Z10Ol/OvYnLOFXKFXRFX1HlXzBV3N/0uLuPKunKuvLvdVXB3uIq/i6u7e1wNd6+r6e5z1dzdfxXXcve72u4RV8c96uq6Rq6ea+Lqu0dcA/eoa+gaucauiWvlnnSt3VOujXvatXXP/C5e5Ba7tW6dW+82uL3uM3fO/eSOum/defez6+a6u37uFdffveoGuNfcQDfod/EI95Yb6Ua50W6MG+vG/S6e4qa6aW66m+HeczPdrN/FC92Hbo5Lc3PdPDffLfg1vrSmNPeRW+I+dkvdMrfcrXAr3Sq32q3532td4Ta5zW6L2+M+ddvcdrfD7XS73O5f40v72Oc+d/vdF+6I+8YddF+6Q+6YO+y+/jW+tL9j7jt33H3vTriT7pT7wZ12P7oz7uyv+7+09x/cL+6iCw4YWbFmwxFn4Iycwpk4M1/FWfhqzsrXcIKv5Wx8HWfn6zkH5+RcnJvzcF7Ox5aJHTPHnJ8LcJJv4IJ8IxfiwlyEi7LnYlycb+ISfDOX5Fu4FN/Kpfk2LsNluRyX59u5At/BFbkSV+Y7uUoIXJWr8d1cne/hGnwv1+T7uBbfz7X5Aa7DD3Jdfojr8cNcnx/hBvwoN+RG3JibcFN+jJvx49ycW3BLfoJb8ZPcmp/iNvw0t+VnuB0/y+35Oe7Az3NHfoE7cWfuwi9yV36Ju3F3TuUe3JNf5l7cm/twX+7Hr3B/fpUH8Gs8kAfxYH6dh/AbPJTf5GE8nEfwWzySR/FoHsNjeRyP57d5Ar/DE/ldnsSTeQpP5Wk8nWfwezyTZ/Fsfp/n8Ac8l+fxfF7AC/lDXsSLOY0/4iX8MS/lZbycV/BKXsWreQ2v5XW8njfwRt7Em3kLb+VPeBtv5x28k3fxbt7Dn/Je/oz38ee8n7/gA/wnPshf8iH+ig/z13yEv+Gj/C0f4+/4OH/PJ/gkn+If+DT/yGf4LJ/jn/g8/8wX+Be+yIEhxljFOjZxFGeIM8YpcaY4c3xVnCW+Os4aXxMn4mvjbPF1cfb4+jhHnDPOFeeO88R543yxjSl2McdxnD8uECfjG+KC8Y1xobhwXCQuGvu4WFw8vikuEd8cl4xviUvFt8al49viMnHZ+JH7yse3xxXiO+KKcaW4cnxnXCW+K64aV4vvjqvH98Q14nvjmvF9ccn4/rh2/EBcJ34wrhs/FNeLH47rx4/EDeJH44Zxo7hx3CRuGj8WN4sfj5vHLeKW8RNxq/jJuHX8VNwmfjpuGz/zh8dT4x5xz/jl+OU4hHv1/OSC5MLkh8lFycXJtORHySXJj5NLk8uSy5MrkiuTq5Krk2uSa5PrkuuTG5Ibk5uSm5NbkiFUywgevfLaGx/5DD6jT/GZfGZ/lc/ir/ZZ/TU+4a/12fx1Pru/3ufwOX0un9vn8Xl9Pm89eefZxz6/L+CT/gZf0N/oC/nCvogv6r0v5ov7Jr6pb+qb+cd9c9/Ct/RP+Cf8k/5J/5R/yj/t2/pnfDv/rG/vn/Md/PP+ef+C7+Q7+y7+Rd/Vv+S7+e4+1af6nr6n7+V7+T6+j+/n+/n+vr8f4Af4gX6gH+wH+yF+iB/qh/phfpgf4Uf4kX6kH+1H+7F+rB/vx/sJfoKf6Cf6SX6Sn+Kn+Gl+mp/hZ/iZfqaf7Wf7OYXm+Ll+rp/v5/uFfqFf5Bf5NJ/ml/glfqlf6pf75X6lX+lX+9V+rV/r1/v1fqPf6Df7zX6r3+q3+W1+h9/hd/ldfo/f4/f6vX6f3+f3+/3+gD/gD/qD/pD/yh/2X/sj/ht/1H/rj/nv/HH/vT/hT/pT/gd/2v/oz/iz/pz/yZ/3P/sL/hd/0Qc/PvF2YkLincTExLuJSYnJiSmJqYlpiemJGYn3EjMTsxKzE+8n5iQ+SMxNzEvMTyxILEx8mFiUWJxIS3yUWJL4OLE0sSyxPLEisTKxKhFC3m1xyB8KhGS4IRQMN4ZCoXAoEooGH4qF4uGmUCLcHEqGW0KpcGsoHW4LZULZUC48GhqGRqFxaBKahsdCs/B4aB5ahJbhidAqPBlah6dCm/B0aBueCe3Cs6F9eC50CM+HjuGF0Cl0Dl3Ci6FreCl0C91DaugReoaXQ6/QO/QJfUO/8EroH14NA8JrYWAYFAaH18OQ8EYYGt4Mw8LwMCK8FUaGUWF0GBPGhnFhfHg7TAjvhInh3TApTA5TwtQwLUwPM8J7YWaYFWaH98Oc8EGYG+aF+WFBWBg+DIvC4pAWPgpLwsdhaVgWlocVYWVYFVaHNWFtWBfWhw1hY9gUNoctYWv4JGwL28OOsDPsCrvDnvBp2Bs+C/vC52F/+CIcCH8KB8OX4VD4KhwOX4cj4ZtwNHwbjoXvwvHwfTgRToZT4YdwOvwYzoSz4Vz4KZwPP4cL4ZdwUf5mTQghhBDi76L/4HiPv/G9DACgfpv3BICrt+c+/J9rbszx53lvladVAgCe7t7xob+MKlVSU1N/e+1SDVGBeQCQ+Ov6f4mXQUt4EtpACyjxN9fXW3U+z39QP3krQOb/kJMCl+PL9W/+L+o/9sSIRaXjc9n+m/rzAAoVuJyTCS7Hl+uX/C/q52z2B+vP9OV4gOb/IScLXI4v1y8Oj8Mz0OavXimEEEIIIYQQQvxZb1Wu/R/dP1+6P89jLudkhMvxH92fCyGEEEIIIYQQ4sp7rnOXpx5r06ZF+79vgr89F/jHsmQiE5n8fza50p9MQgghhBBCiH+1yxf9V3olQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCFE+vU/8e/ErvQehRBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCiCvtfwUAAP//luw5aQ==")
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/key-users\x00', 0x0, 0x0)
preadv(r4, &(0x7f0000000a00)=[{&(0x7f0000000500)=""/228, 0xe4}], 0x1, 0x9, 0x6)
preadv(r4, &(0x7f0000000940)=[{&(0x7f0000000840)=""/229, 0xe5}], 0x1, 0x80000001, 0x9)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000040), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r5, 0x0)
madvise(&(0x7f00008fd000/0x3000)=nil, 0x3000, 0x1)
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0xc2)
read(r6, &(0x7f0000001400)=""/4096, 0x1000)

6m14.61525825s ago: executing program 0 (id=660):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000240)='./file0\x00', 0x800700, &(0x7f0000000340)={[{@jqfmt_vfsv0}, {@stripe={'stripe', 0x3d, 0x8}}, {@nombcache}, {@noinit_itable}, {@nomblk_io_submit}, {@minixdf}, {@nobarrier}, {@inode_readahead_blks}, {@usrjquota}, {@block_validity}, {@noblock_validity}, {@noquota}]}, 0x3, 0x47b, &(0x7f0000000bc0)="$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")
chdir(0x0)
openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0xa0)
syz_mount_image$vfat(&(0x7f0000000300), &(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, &(0x7f0000000540)=ANY=[], 0x4, 0x1296, &(0x7f0000001b80)="$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")
r0 = openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x82)
ioctl$FITRIM(r0, 0xc0185879, &(0x7f0000000040)={0x8, 0x40000cca8, 0x4010})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x94, 0x7fff0000}]})
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r1, &(0x7f0000000440), 0x10)
listen(r1, 0x0)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r2, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10)
writev(r2, &(0x7f00000002c0)=[{&(0x7f0000000080)='?', 0x20000081}], 0x2)

6m12.280025323s ago: executing program 0 (id=668):
syz_open_dev$evdev(&(0x7f0000000000), 0x1, 0x2002)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x1d, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x4, 0x40, 0x7fff0000}]})
syz_open_dev$vcsa(&(0x7f0000000380), 0x7b95b611, 0x802)
r0 = socket(0x10, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f00000000c0)={'ip6gre0\x00', &(0x7f00000009c0)={'syztnl1\x00', 0x0, 0x29, 0x0, 0x0, 0xfffffffd, 0x30, @mcast1, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, 0x0, 0x9}})
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f0000000080)={'syztnl1\x00', &(0x7f0000000180)={'ip6_vti0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @empty, @empty, 0x0, 0x0, 0x1000002}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
syz_open_procfs$pagemap(r1, &(0x7f00000000c0))
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f066bbeeb, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r4 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000001980), 0x200)
fcntl$setstatus(r4, 0x4, 0x2800)

5m56.842957932s ago: executing program 36 (id=668):
syz_open_dev$evdev(&(0x7f0000000000), 0x1, 0x2002)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x1d, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x4, 0x40, 0x7fff0000}]})
syz_open_dev$vcsa(&(0x7f0000000380), 0x7b95b611, 0x802)
r0 = socket(0x10, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f00000000c0)={'ip6gre0\x00', &(0x7f00000009c0)={'syztnl1\x00', 0x0, 0x29, 0x0, 0x0, 0xfffffffd, 0x30, @mcast1, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, 0x0, 0x9}})
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f0000000080)={'syztnl1\x00', &(0x7f0000000180)={'ip6_vti0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @empty, @empty, 0x0, 0x0, 0x1000002}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
syz_open_procfs$pagemap(r1, &(0x7f00000000c0))
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f066bbeeb, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r4 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000001980), 0x200)
fcntl$setstatus(r4, 0x4, 0x2800)

3m32.492055525s ago: executing program 8 (id=1102):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x40080, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = eventfd(0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40042, 0x1)
fsopen(0x0, 0x1)
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000140)={r2, 0x6, 0x2, r3})

3m31.667623061s ago: executing program 8 (id=1107):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmsg$inet6(r0, &(0x7f0000000000)={&(0x7f00000000c0)={0xa, 0x4e20, 0x4, @mcast1}, 0x1c, 0x0, 0x0, &(0x7f0000000100)=[@dstopts_2292={{0x18, 0x29, 0x4, {0x2}}}, @rthdr_2292={{0x28, 0x29, 0x5, {0x0, 0x2, 0x2, 0x1, 0x0, [@remote]}}}, @pktinfo={{0x24, 0x29, 0x32, {@loopback}}}, @rthdr_2292={{0x18, 0x29, 0x39, {0x87, 0x0, 0x0, 0x9}}}], 0x80}, 0x0)

3m31.592494993s ago: executing program 8 (id=1108):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeeb, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = syz_open_dev$evdev(&(0x7f00000000c0), 0xfffffffffffffffc, 0x822b01)
ioctl$EVIOCGMTSLOTS(r2, 0x8040450a, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000001c80)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x14, 0x14, 0x5, [@enum={0x4, 0x1, 0x0, 0x6, 0x4, [{0x1, 0x1}]}]}, {0x0, [0x5f, 0x2e, 0x5f]}}, &(0x7f0000001e40)=""/194, 0x31, 0xc2, 0x1}, 0x28)
connect$netlink(0xffffffffffffffff, 0x0, 0x0)
getpgid(r0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0xc010}, 0x4044040)

3m30.203081676s ago: executing program 8 (id=1112):
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000006000/0x18000)=nil, &(0x7f0000000980)=[@text16={0x10, &(0x7f0000000ac0)="f00fba760004f3ab0f3036deb9800066b9800000c00f326635000400000f300fbf81c5b0e600f20f017e0064f364f30f20160f01cf", 0x35}], 0x1, 0x1d, 0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x12, 0x4, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000010000000000000000000000711808000000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @cgroup_sock_addr=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
keyctl$restrict_keyring(0x1d, r2, &(0x7f0000000080)='asymmetric\x00', &(0x7f0000000500)='key_or_keyring\x00Z\t\xd1<gQ\xe7A\x06\\jS\x9b\x00\x00\x00\x00\x00\x00\x00\x00\xbb50A\x86\xef\xceq\xd2\x00\xce\x80\xb5\x9d\x9fp\xb4\x0f\x82\xdc8{{p\a\xbe\x01\xe9\xfa%\xb8O\x80[\n+\x9c\xee\xc1\xbc\xad\xd05fYHt\xefo\x91\x17\x9d\x19\x8b\x14\xc2M\b\xfen\xf0\b\x9e6G\\B\xdf\xf6\xbe\x18\xe9B\xafbO\xb4\x95\x01\xb0\xca\x16')
keyctl$search(0xa, r2, &(0x7f0000000100)='.request_key_auth\x00', &(0x7f0000000140)={'syz', 0x1}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f00000000c0)="ea0300e300640f72d5000f0866b80500000066b9e9a094510f01d9660fc5c000b825000f00d8360f0f7a149066360f23c23665f3dce2260f01d6", 0x3a}], 0x1, 0x35, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000007c0)=[@text32={0x20, 0x0}], 0x1, 0x9, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_CAP_VM_MOVE_ENC_CONTEXT_FROM(r3, 0x4068aea3, &(0x7f0000000700)={0xce, 0x0, r1})
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000480)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f0000000300)={[{@acl}, {@norecovery}, {@acl}, {@noload}, {@delalloc}, {@resuid}, {@discard}, {@minixdf}, {@min_batch_time={'min_batch_time', 0x3d, 0x7fffffff}}, {@errors_remount}]}, 0xfa, 0x477, &(0x7f0000000dc0)="$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")
ioctl$EXT4_IOC_GET_ES_CACHE(0xffffffffffffffff, 0xc020660b, &(0x7f0000000040)={0x500, 0x10000002000003, 0x0, 0x0, 0x300})
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x6, 0xc, 0x0, &(0x7f0000000800)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r5, 0x2000002, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
setreuid(0xee00, 0x0)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0x3000010, &(0x7f0000000b80)={[], [{@smackfstransmute={'smackfstransmute', 0x3d, 'syz'}}, {@subj_role={'subj_role', 0x3d, '%'}}, {@smackfstransmute={'smackfstransmute', 0x3d, 'acl'}}, {@permit_directio}, {@subj_type}]}, 0x1, 0x527, &(0x7f0000001240)="$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")
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x4, 0x80)
getdents64(r6, 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f00000008c0)={0xc0})
keyctl$session_to_parent(0x12)

3m24.692111448s ago: executing program 8 (id=1124):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
getsockopt$bt_BT_POWER(r0, 0x112, 0x9, &(0x7f0000000280)=0x8, &(0x7f00000007c0)=0x1)

3m24.147559454s ago: executing program 8 (id=1128):
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x1, &(0x7f0000000240)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x4000087, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f0000000200)=0x474c, 0x4)
bind$inet(r3, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
setsockopt$inet_int(r3, 0x0, 0x7, &(0x7f0000000080)=0xcd, 0x4)
connect$inet(r3, &(0x7f0000000480)={0x2, 0x4e21, @multicast1}, 0x10)
sendmmsg(r3, &(0x7f0000007fc0), 0x800001d, 0x0)
setsockopt$inet_int(r3, 0x0, 0x8, &(0x7f0000000040)=0xfffffffc, 0x4)
recvmmsg(r3, &(0x7f0000000040), 0x291962b, 0x45833af92e4b39ff, 0x0)

3m8.332821556s ago: executing program 37 (id=1128):
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x1, &(0x7f0000000240)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x4000087, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f0000000200)=0x474c, 0x4)
bind$inet(r3, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
setsockopt$inet_int(r3, 0x0, 0x7, &(0x7f0000000080)=0xcd, 0x4)
connect$inet(r3, &(0x7f0000000480)={0x2, 0x4e21, @multicast1}, 0x10)
sendmmsg(r3, &(0x7f0000007fc0), 0x800001d, 0x0)
setsockopt$inet_int(r3, 0x0, 0x8, &(0x7f0000000040)=0xfffffffc, 0x4)
recvmmsg(r3, &(0x7f0000000040), 0x291962b, 0x45833af92e4b39ff, 0x0)

12.849309806s ago: executing program 3 (id=1641):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r2 = fsmount(r1, 0x0, 0x80)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000000c0)={r0, r2, 0x16, 0x0, @void}, 0x10)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
setsockopt$netlink_NETLINK_TX_RING(r3, 0x10e, 0x7, &(0x7f00000001c0)={0x3, 0xc95, 0x82cc, 0xef8}, 0x10)

12.284397724s ago: executing program 3 (id=1646):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0xa27}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeeb, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$DEVLINK_CMD_SB_TC_POOL_BIND_SET(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000001c0)={0xf8, 0x0, 0x1, 0x70bd28, 0x25dfdbf9, {}, [{{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x2}}, {0x8, 0xb, 0x79c}, {0x6, 0x16, 0x8}, {0x2, 0x12, 0x1}, {0x6, 0x11, 0x8}, {0x8, 0xb, 0x40}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0xfffffffd}}, {0x8, 0xb, 0x7}, {0x6, 0x16, 0x5}, {0x5, 0x12, 0x1}, {0x6, 0x11, 0xfffd}, {0x8, 0xb, 0x6}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x1}}, {0x8, 0xb, 0x5}, {0x6, 0x16, 0x7}, {0x5, 0x12, 0x1}, {0x6, 0x11, 0xfffb}, {0x8, 0xb, 0x1}}]}, 0xf8}, 0x1, 0x0, 0x0, 0x8000}, 0x44)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, &(0x7f0000000280)=@arm64={0x5, 0xff, 0x0, '\x00', 0x400})
sendmsg$nl_generic(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB="702300001d"], 0x2370}, 0x1, 0x0, 0x0, 0x8000}, 0x4000)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f0000001300)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0x4, [@func_proto={0x0, 0x0, 0x0, 0x2, 0x3}, @fwd={0x2}, @struct={0x0, 0x0, 0x0, 0x9, 0x0, 0x2}]}, {0x0, [0x0, 0x51]}}, &(0x7f00000005c0)=""/240, 0x40, 0xf0, 0x1}, 0x20)

11.13970484s ago: executing program 3 (id=1647):
syz_mount_image$f2fs(&(0x7f0000000100), &(0x7f00000000c0)='./file1\x00', 0x1004092, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], 0x81, 0x105d7, &(0x7f0000020c40)="$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")
r0 = open(&(0x7f0000000000)='./bus\x00', 0x60142, 0x14)
r1 = open(&(0x7f00000000c0)='./file1\x00', 0x109f7e, 0x6)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0xea100, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2)
fallocate(r1, 0x0, 0x0, 0x1001f0)
r4 = open(&(0x7f00000001c0)='./file1\x00', 0x101000, 0x4)
copy_file_range(r4, 0x0, r0, 0x0, 0x20000000008, 0x0)

7.843844273s ago: executing program 4 (id=1658):
r0 = socket$inet6(0xa, 0x3, 0x8000000003c)
socket$can_bcm(0x1d, 0x2, 0x2)
socket$inet6(0xa, 0x3, 0x8000000003c)
r1 = openat$ttynull(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$KIOCSOUND(r1, 0x4b2f, 0x7)
r2 = socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
r6 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_msfilter(r6, 0x0, 0x29, 0x0, 0x1c)
socket$netlink(0x10, 0x3, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r7, <r8=>0xffffffffffffffff}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0x10, &(0x7f0000000300)=@raw=[@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r8}}, @printk={@d}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r8}}], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x22, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$inet_udp(0x2, 0x2, 0x0)
fsetxattr$trusted_overlay_origin(r2, &(0x7f0000000080), &(0x7f0000000100), 0x2, 0x2)
r9 = io_uring_setup(0x2e71, &(0x7f00000003c0)={0x0, 0x800000, 0x400, 0x3, 0x131})
io_uring_register$IORING_REGISTER_PBUF_RING(r9, 0x16, &(0x7f0000000740)={&(0x7f0000002000)={[{0x0, 0x0, 0x2}, {0x0}, {0x0, 0x0, 0xfffe}, {0x0}]}, 0x4, 0xffff}, 0x1)
ioctl$sock_inet6_SIOCDIFADDR(r0, 0x8936, &(0x7f0000000300)={@loopback, 0x2c})

7.458495795s ago: executing program 6 (id=1660):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
recvfrom(r0, 0x0, 0x0, 0x61, 0x0, 0x0)

7.372857128s ago: executing program 3 (id=1662):
openat$kvm(0xffffffffffffff9c, 0x0, 0x40000, 0x0)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file0\x00', 0x800, &(0x7f0000000000), 0x26, 0x756, &(0x7f00000002c0)="$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")
openat(0xffffffffffffff9c, 0x0, 0x0, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000100)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000400), r3)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r3, 0x89f1, &(0x7f00000000c0)={'ip6tnl0\x00', &(0x7f0000000000)={'syztnl0\x00', <r5=>r4, 0x4, 0x0, 0x0, 0x0, 0x0, @private1, @ipv4={'\x00', '\xff\xff', @remote}, 0x8000, 0x0, 0x1, 0x1}})
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r3, 0x89f3, &(0x7f0000000080)={'syztnl1\x00', &(0x7f0000000180)={'ip6tnl0\x00', r5, 0x0, 0x4, 0x0, 0x4, 0x8, @remote, @dev={0xfe, 0x80, '\x00', 0xe}, 0x0, 0x1, 0xfffffffe, 0x1}})
r6 = socket$inet(0xa, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r6, 0x0, 0x40, &(0x7f00000002c0)=@mangle={'mangle\x00', 0x44, 0x6, 0x410, 0x138, 0x98, 0x138, 0x0, 0x0, 0x378, 0x378, 0x378, 0x378, 0x378, 0x6, 0x0, {[{{@ip={@loopback, @multicast1=0xe0007600, 0x0, 0x0, 'gre0\x00', 'ip6gre0\x00', {}, {}, 0x0, 0x0, 0x11}, 0x7a00, 0x70, 0x98}, @inet=@DSCP={0x28, 'DSCP\x00', 0x0, {0x3}}}, {{@ip={@multicast1, @local, 0x0, 0x0, 'wg1\x00', 'nicvf0\x00', {}, {}, 0x11}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @local}}}, {{@ip={@broadcast, @multicast2, 0x0, 0x0, 'vlan1\x00', 'nr0\x00'}, 0x0, 0xb8, 0x100, 0x0, {}, [@common=@unspec=@limit={{0x48}, {0x0, 0x28, 0x9, 0x0, 0x0, 0x1}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv6=@private2, 'veth0_virt_wifi\x00', {0x7}}}}, {{@ip={@rand_addr, @private, 0xffffffff, 0xff, 'syzkaller0\x00', 'veth1_to_team\x00', {}, {0xff}}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @empty}}}, {{@ip={@empty, @empty, 0xff000000, 0x0, 'lo\x00', 'batadv_slave_1\x00'}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x1fb, 0x0, @loopback}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x470)
r7 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x275a, 0x0)
fcntl$lock(r7, 0x25, &(0x7f0000000000)={0x2, 0x3, 0xd96, 0x0, r0})
socket$inet6(0xa, 0x80002, 0x0)
sendmsg$IEEE802154_ASSOCIATE_RESP(0xffffffffffffffff, 0x0, 0x4004c0d0)
r8 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r8, &(0x7f0000000440), 0x10)
listen(r8, 0x5)
socket$packet(0x11, 0x3, 0x300)

7.31251963s ago: executing program 6 (id=1663):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x84043, 0x0)
keyctl$clear(0x3, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x5, 0x0, 0x0, 0x0, 0x61, 0x10, 0x4}, [@ldst={0x3, 0x0, 0x3, 0x1c10a1, 0x0, 0x2c}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb}, 0x48)
timer_create(0x3, 0x0, 0x0)
syz_clone3(0x0, 0x0)

6.300015382s ago: executing program 4 (id=1664):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeeb, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r1 = socket$inet6(0xa, 0x3, 0xff)
connect$inet6(r1, &(0x7f0000000200)={0xa, 0x0, 0xfffffffd, @empty}, 0x1c)
r2 = dup(r1)
r3 = open(&(0x7f00000000c0)='./file0\x00', 0x1298c2, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x50)
ftruncate(r3, 0x200004)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=ANY=[], 0xb8}}, 0x0)
sendfile(r2, r3, 0x0, 0x80001d00c0d1)

6.136395607s ago: executing program 9 (id=1665):
unshare(0x40400)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
r0 = open(&(0x7f00000003c0)='./file0\x00', 0x48040, 0x0)
truncate(&(0x7f0000000000)='./file0\x00', 0x1)
finit_module(r0, 0x0, 0x7)

6.02429009s ago: executing program 6 (id=1666):
socket(0x10, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x4000)
ioctl$sock_SIOCETHTOOL(r0, 0x89f1, &(0x7f0000000340)={'ip6gre0\x00', &(0x7f0000000f00)=@ethtool_per_queue_op={0x4b, 0xf, [0xf68f, 0x8, 0x9, 0x1ff, 0x0, 0x4, 0xe97, 0x4, 0x6, 0xecbf, 0xff, 0x101, 0x7, 0x200, 0x3d, 0x5e, 0x1000, 0xffff, 0xf557, 0x2, 0x5, 0x7c, 0xce, 0x2, 0xffffff6b, 0xe52c, 0xaa8, 0x7ffffffc, 0xd, 0xe9c4, 0xcd8, 0x6e, 0x200006, 0x7, 0xd, 0x8a, 0x3, 0x6, 0x3, 0x3, 0x3, 0xfffffffc, 0xfd2, 0x6, 0x8, 0x401, 0xeffff801, 0x2b, 0xa, 0x0, 0x7, 0x8, 0x5, 0x3, 0x6, 0x8, 0x23, 0x2, 0x3, 0x10, 0x3, 0xffffffff, 0x6, 0x5fffffd, 0xd1, 0xf, 0x4, 0xa, 0xfffffffe, 0x400, 0x80000000, 0x8000, 0x3, 0x5, 0x2, 0x0, 0x2, 0x1, 0x80, 0x4, 0x2, 0x0, 0xd, 0x2000006, 0x4, 0x8, 0x0, 0x1, 0xfffffffc, 0x0, 0x7ff, 0x7, 0x2, 0xbde, 0x37, 0x3, 0x4, 0x1, 0xa, 0x6, 0x7fff, 0x1, 0x704, 0x33e3, 0x9, 0x6, 0x7fff, 0x6, 0x100, 0x3, 0xfffffffd, 0x2, 0x6, 0x8, 0x6, 0x7, 0x200, 0x9, 0xe, 0x81, 0x0, 0x4, 0x5, 0x5, 0x8, 0x3, 0x1, 0xfffffffa]}})

5.935208003s ago: executing program 4 (id=1667):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000007c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = eventfd(0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0x4008af12, &(0x7f0000000080)={0x1, 0x7f})
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/53, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000800)=""/90})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000d40)={0x3, 0x0, [{0x0, 0x0, 0x0}, {0xdddd1000, 0xfc, &(0x7f0000000c00)=""/252}, {0x4, 0x1c, &(0x7f0000000d00)=""/28}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000340)=0x1)
ioctl$BTRFS_IOC_SCRUB_PROGRESS(r0, 0xc400941d, &(0x7f0000000380)={0x0, 0x2, 0x5, 0x1})
openat(0xffffffffffffff9c, &(0x7f0000000200)='./bus\x00', 0x40942, 0x0)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x181102, 0x0)
ftruncate(r2, 0x2007ffb)
sendfile(r2, r2, 0x0, 0x1000000201005)

5.930152983s ago: executing program 6 (id=1668):
creat(0x0, 0x4)
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x3, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./bus\x00', &(0x7f0000000440), 0x8, &(0x7f0000000040)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r0, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)
syz_usb_connect$hid(0x3, 0x36, 0x0, 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x14b442, 0x82)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x15)

5.871928885s ago: executing program 9 (id=1669):
capset(&(0x7f0000000380)={0x20080522}, &(0x7f0000000040)={0x200000, 0x40200003, 0x0, 0x6, 0x7})
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000001000)=ANY=[@ANYBLOB="61154c00000000006113500000000000bfa00000000000001503000008004e002d3501000000000095004160000000006916360000000000bf67000000000000350605000fff07206706000005000000160302000ee60060bf670000000000000f650000000000006507f9ff0100000007070000cddfffff1e75000000000000bf54000000000000070400000400f9ffbd4301000000000095000000000000001500000000000000950000000000000032ed3c12dc8c27df8ecf264e0f84f9f17d3c30e32f1754558f2278af6d71d79a5e12814cb1d8a5d4601d295c45a6a0b9bdb7dd3997f9c9c4f6f3be4b369289aa6812b8e007e733a9a4f1b0af3dda82ee45a010fb94fe9de57b9d8a814261bdb94a05000000c6c60bf70d742a81762bab8395fa64810b5b40d893ea8fe01c5473d51b546cad3f1d5ab2af27546e7c955ccefa1f6ab689b555202da2e0ec2871b4a7e65836429a527dc47ebe84a423b6c8d345dc8da3085b0ab71ca1b901627b562ed04ae76002d4519af619e3cca4d69e88158f0200000000c8fb730a5c1bf2b2bb71a629361997a75fd552bdc2300000008ac86d8a297dff0445a15f21dce4de9f29eff65aadc841848c9b562a31e56723888fb126a163f16f920ae2fb494059bba8e3b680324a188076ebae3f55c4e9b2ad9bc1172ba7cbebe174aba210d739a018f9bbec63222d20cecac4d03723f1c932c9a6aa57f1ad2e99e0e67ab93716d20000009fbb0f53acbb40b4f8e2738270b31562ed834f2af97787f696649a462e7ee4bcf8b07a10d6735154beb4000000000000000000000000004000bc00f679629709e7e78f4ddc211bc3ebe6bd9d42ca0140a7afaab43176e65ec1118d50d1e827f3472f4445d253880800000000000000690884f800031e03a651bb96589a7e2e509bcc1d161347623cb5e7ac4629c8ab04871bc47287cd31cc43010000207b40407d000000210000000000000000005f37d83f84e98a523d80bd970d703f37ca364a601ae899a56715a0a62a34c6c94cce6994521629ab028acfc1d926a0f6a5489af8dc2f17923f3c40dfd1970a55c22fe3a5ac000000f4000000000000000000000000c1eb2d91fb79ea00000000000000bb0d00000000000000000000e4007be511fe32fbc90e2364a55e9bb66ac64423d2d00fea2594e190deae46e26c596f84eba9000000000000003cc3aa39ee4b1386bab561cda886fa642994cacd473b543ccb5f0d7b63924f17c67b13631d22a11dc3c6939628950000000000000001c7205a6b068fff496d2da7d632bd1f61b007e1ff5f1be1969a1ba791ad46d800000000c7f26a0337302f3b41eae59809fd05d12f6186f117b062df67d3a63f3265dd1410eea68208a3f26b2989b832d8b34a34a4f08b34b30410856e858d27adee7daf32903d3fc78700d429a2d4c8b6d803eb83eecfe4c7ff9e6ab5a52e83d089dad7a8710e0254f1b11cced7bc3c8da0c44d2ebf9f6f3ff3be4d1458077c2253b0c7c7a0a9fdd63bf910dc20e5cb2a88e59febc47f1212a21f631dbaa74f22bad050e9856b48ae3a03a497c37758537650fe6db88aa3c41fdc3d78e046f6160e1741299e8dc29906870e6431ed1eab5d067a183f064b060a8ec12725d42e3a74863d66bee966b1574f8e01b3f34a267ff0afa1e1c758a0079b747067312e9815a21cb3f1f8150d999d788535a4d3114dbc7e2bf2402a75fd7a55733360040855ed5d1c0d634fb9fb38f84d9d87b27f8a5d91217b728f13e3ee20e69e0ffb2780b1a7af137ff7b4ff010404faf0a4da65396174b4563d54b52f06c870edf0c5d744b5272b44c23488b2bdbff947c4dfa108cbb88202ee1192b81f428a5b3c299848649e1a6bff52f657a67463d7dbf85ae9321fc2b517dc4a29b9b5a8ded5de8206c812439ab129ae818837ee1562078fc524b3baf49a0be9bb7d958d5e87c6c09bf71a894bad62934782cc308e936d7637e07c4a2a3bc87b0da23c00d9ef418cf19e7a8c4c328be0ce95798adc2dca871073f6bd61dc18487b6feb89752cd600000000abc86b94f8cbde4d470667bee722a6a2af483ad0d3415ed0f9db059acaba9eaea93f811d434e00000000000000000000d154ba10a8e51489a614e69722bac30000000000000000000000000000c5dfd188ff555285b9743d3aac000583f42d168613151d681a2f71373f20d92c9048407c91fabecfe8b3f2d5454d127edab14ba61ba1cfc4336324c86f3dcb43e9a58208077e90f6ec1c7ac756f61dcc372cdd30b82507489f0bbfbd3c3f21752e81319c0161e154ceb16e00bc7f5a6962dff317f4d014786e432817064874d69a39cb0da31bcc5f81894d8a80756447322207b4007dff12eb95066cc6bc256f0a12282224d718b06ca80b57aa183dd0c3eee45891441f2b89b4c67aa9882281393954972046974f18df232cd7fca610e33f51c2d062020f403d85ff36c26e2f6bd1d82f4d3ceb3472d9a77e0057a3bfe697d9ab7585f4a1b381343d2cf855689232f4fc5135790662dc1419a374be9d7b3e5be2886d23add90d862f1a682ff11c798e338af3e5bb0f9d3952b15bf3e0c618c89d20ca1e18a031397693bf3cfbd8417e5b55e641c898c280356f2da222d5d68919d98158578dcf18efa404e508bcbbb8cfcf70086821ebdf34c9a1dff45af873df904c2bdbef81f246d26f4b40df949e12bdac18533d4e11c608cc31d60cb591c40a7b386fa1c753336d7220a35118d4919b45eff32aab684e62c6691de14e97aa7e9dc8ecf0cd50540246d2b746e41e5b4e2c095039dfe0f71db6265f7580d098be40ef36faee5d1695830d4242a23e541e6ce9fa1998d8961cf4fe3c8e8fbb566f148c8befc229614a4b7f80d237b8abc6fd0407de31d6e5532f360d379f20f054692b47207922fe6c14eba96c9a7ae906abc1ae1ae8c4fae92883cfa1978a04bbff4bbe0000000000000000000000000044585397feaadda3fcc64e7b0c08f7ac5c64cb190f1712a3b10fc34eb758705f1751d8c8b712eb39d2b8ad44f129c2c9aedb15"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffd2}, 0x48)

4.385052322s ago: executing program 9 (id=1671):
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0xa, &(0x7f0000000000)=0x1000, 0x4)
socket$nl_sock_diag(0x10, 0x3, 0x4)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r5, 0x1, 0x1a, &(0x7f0000000000)={0x3, &(0x7f00000000c0)=[{0x20, 0x0, 0x2, 0xfffff00c}, {0x20, 0x0, 0x20, 0xfffff034}, {0x6}]}, 0x10)
sendmmsg(r4, &(0x7f0000000180), 0x4000190, 0x0)

4.297638235s ago: executing program 7 (id=1672):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000140)={0xaa, 0x4a4})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, 0x0)

4.279733686s ago: executing program 4 (id=1673):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000040)={0x1, 0x9006}, 0x4)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r1, 0xffffffffffffffff, 0x0)

3.691972694s ago: executing program 7 (id=1674):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000080)='./bus\x00', 0x80c402, &(0x7f00000009c0)={[{@errors_remount}, {@grpquota}]}, 0x2, 0x517, &(0x7f0000000a00)="$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")
bpf$TOKEN_CREATE(0x24, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0)

3.413032213s ago: executing program 9 (id=1675):
r0 = socket$tipc(0x1e, 0x5, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x400000000008d}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
setrlimit(0x1, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x143042, 0x58)
ptrace$getenv(0x4201, r1, 0x100, &(0x7f00000000c0))
sched_setscheduler(r1, 0x1, &(0x7f0000000240)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x4000087, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$inet(0x2, 0x3, 0x83)
sendmsg$inet(r4, &(0x7f00000000c0)={&(0x7f0000000040)={0x2, 0x0, @broadcast}, 0x10, 0x0, 0x0, &(0x7f0000000540)=[@ip_pktinfo={{0x20, 0x0, 0x8, {0x0, @dev={0xac, 0x14, 0x14, 0x22}, @initdev={0xac, 0x1e, 0x9, 0x0}}}}], 0x20}, 0x10000000)
r5 = signalfd(0xffffffffffffffff, 0x0, 0x0)
close(r5)
r6 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000012c0)=ANY=[@ANYBLOB="020d000014000000000000000000000005000600000000000a00000000000000fc010000000000000000000000000000000000001300000005000500000000000a00000000000000000000000000000000000000000000000000000000000000080012000200020000000000000000001200330002"], 0xa0}}, 0x4048080)
bind$tipc(r0, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x41}}, 0xfffffffffffffd39)
socket$tipc(0x1e, 0x5, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
sendmmsg$unix(r7, 0x0, 0x0, 0x0)

3.16633331s ago: executing program 4 (id=1676):
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000340)='./file0\x00', 0x210000, &(0x7f0000000140), 0x1, 0x584, &(0x7f0000002100)="$eJzs3U1rXFUfAPD/nUzS1+dpCqWoCyl0YaV20iS+VBCsS9FiQbdSh2QaSiadkpmUJhZsF3bjRoogYkH8AO5dFr+An6KghSIl6EKEkTu5k0zTmUySTpip8/vBTc6Ze27O/c+55+SceeEGMLROpD9yES9GxNdJxJGWffnIdp5YK7f6+OZMuiVRr3/8RxJJ9lizfJL9PpRlXoiIX76MOJ17ut7q8sp8sVwuLWb5idrCtYnq8sqZKwvFudJc6erU9PS5N6an3n7rzZ7F+urFv7776P775746ufrtTw+P3k3ifBzO9rXG8QxutWZOFP/JUqNxflPByR5UNkgabZ/v91mwUyNZs41GOgYciRGNCEPji4ioA0Mq0f9hSDXnAc21fY/Wwc+NR++tLYAasY+1xp9fe20k9jfWRgdXkydWRul6d7wH9ad1/Pz7vbvpFlu/DnGgSx5gR27djoiz+fzT43+SjX+7d7bx4vHWNtcxbP9/oJ/up/Of19rN/3Lr859oM/851Kbv7kb3/p972INqOkrnf++0nf+uD13jI1nuf40532hy+Uq5dDYi/h8Rp6KedKvj3OqDeqd9rfO/dEvrb84Fs/N4mN/35DGzxVoxIsZ2GfITHt2OeCnfLv5kvf2TNu2fPh8Xt1nH8dK9lzvt6x7/3qr/GPFK2/bPmrX5LHd+f3KicT1MNK+KTfZH/Hnn+K+d6u93/Gn7H9wq/ojxpPX92urO6/hh/9+lTvt2e/2PJZ800s3muVGs1RYnI8aSDzcez0JYnNo4tlFuaqN8Gv+pk1uPf+2u/3Tx9dk2479z7E7HooPQ/rM7av+dJx588Pn3nerfXvu/3kidyh7Jxr82NobE7Z7gsz5/AAAAAAAAMEhyEXE4klxhPZ3LFQprn+84Fgdz5Uq1dvpyZenqbDS+Kzseo7nmO91HWj4PMZl9HraZn9qUn46IoxHxzciBRr4wUynP9jt4AAAAAAAAAAAAAAAAAAAAGBCHOnz/P/XbSL/PDthzjRsb7Ov3WQD90PWW/7240xMwkLr2f+A/S/+H4aX/w/DS/2F46f8wvPR/GF76Pwwv/R8AAAAAAAAAAAAAAAAAAAAAAAAAAAB66uKFC+lWX318cybNz15fXpqvXD8zW6rOFxaWZgozlcVrhblKZa5cKsxUFrr9vXKlcm1yKpZuTNRK1dpEdXnl0kJl6Wrt0pWF4lzpUmm0pezRT/c0NAAAAAAAAAAAAAAAAAAAAHhuVJdX5ovlcmlRomPi3RiI09jLANfs6vD8oEQh0SFxO2venR21reFjdM8GJgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABo8W8AAAD//9AEMC4=")
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x3, 0x0, 0x0)
mount$overlay(0x0, 0x0, &(0x7f0000000440), 0x8, &(0x7f0000000040)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r0, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)
syz_usb_connect$hid(0x3, 0x36, 0x0, 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x14b442, 0x82)

2.817377141s ago: executing program 6 (id=1677):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeeb, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r1 = socket$inet6(0xa, 0x3, 0xff)
connect$inet6(r1, &(0x7f0000000200)={0xa, 0x0, 0xfffffffd, @empty}, 0x1c)
r2 = dup(r1)
r3 = open(&(0x7f00000000c0)='./file0\x00', 0x1298c2, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x50)
ftruncate(r3, 0x200004)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=ANY=[], 0xb8}}, 0x0)
sendfile(r2, r3, 0x0, 0x80001d00c0d1)

2.152195032s ago: executing program 6 (id=1678):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x0, 0x0)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
bpf$MAP_CREATE(0x100000000000000, 0x0, 0x0)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xc, 0x16, &(0x7f0000000200)=ANY=[@ANYBLOB="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"/420], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4}, 0x48)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r3)

2.143949603s ago: executing program 7 (id=1679):
syz_emit_ethernet(0x42, &(0x7f00000000c0)={@local, @random="5c35fdcaedf2", @void, {@ipv4={0x800, @udp={{0xb, 0x4, 0x0, 0x0, 0x34, 0x0, 0x0, 0xc7, 0x11, 0x0, @empty, @empty, {[@rr={0x7, 0x17, 0xd, [@dev={0xac, 0x14, 0x14, 0x10}, @remote, @local, @dev={0xac, 0x14, 0x14, 0x41}, @dev={0xac, 0x14, 0x14, 0x39}]}]}}, {0x1, 0x4e20, 0xffffffffffffff99}}}}}, 0x0)

1.745733075s ago: executing program 9 (id=1680):
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, 0x0, 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f0000000040)={'fscrypt:', @desc4}, &(0x7f0000000600)={0x0, "de442bfc7910e10ac69ac014b0fa7807b11d2c99ed1f40d47a6edb3367b5cc008e1fd5102ae2d3d05f251f8d49025ceab4152b6e6d87cd6088e97a9d06d29103"}, 0x48, 0xffffffffffffffff)
keyctl$KEYCTL_PKEY_VERIFY(0x1c, &(0x7f0000000340)={r4}, &(0x7f0000000480)={'enc=', 'raw', ' hash=', {'sha224-arm64\x00'}}, 0x0, 0x0)
add_key(&(0x7f0000000000)='asymmetric\x00', 0x0, &(0x7f0000000580)="303e3080020000000900f190c937dc6b14243b0402e8886ff204d830fa5b3ba026b4fb643891162fb3fbf36e7118a3d45a46b678a2e5b247a74fb2c38c802a2a", 0x40, 0x0)

1.400010396s ago: executing program 7 (id=1681):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0xe, 0xf, &(0x7f0000000840)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x25}, 0x94)

665.705859ms ago: executing program 9 (id=1682):
r0 = syz_usb_connect(0x2, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000751c0110e60f00989ad1010203010902240001000000000904290202b48cbb0009050402100000fa000905820240"], 0x0)
dup(0xffffffffffffffff)
syz_usb_control_io$printer(r0, 0x0, 0x0)
syz_usb_control_io$sierra_net(r0, 0x0, 0x0)
sendmsg$IPCTNL_MSG_CT_GET(0xffffffffffffffff, 0x0, 0x10)

586.530801ms ago: executing program 7 (id=1683):
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='blkio.bfq.io_service_bytes\x00', 0x0, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
setitimer(0x1, &(0x7f0000000000)={{0x100, 0x5}, {0xb, 0x4}}, 0x0)

444.075256ms ago: executing program 3 (id=1684):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e0, 0x0)

443.863006ms ago: executing program 7 (id=1685):
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0xa, &(0x7f0000000000)=0x1000, 0x4)
socket$nl_sock_diag(0x10, 0x3, 0x4)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r5, 0x1, 0x1a, &(0x7f0000000000)={0x3, &(0x7f00000000c0)=[{0x20, 0x0, 0x2, 0xfffff00c}, {0x20, 0x0, 0x20, 0xfffff034}, {0x6}]}, 0x10)
sendmmsg(r4, &(0x7f0000000180), 0x4000190, 0x0)

269.711041ms ago: executing program 3 (id=1686):
syz_mount_image$exfat(&(0x7f0000002bc0), &(0x7f0000000240)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x0, &(0x7f00000017c0)={[{@dmask={'dmask', 0x3d, 0xfc}}, {@allow_utime={'allow_utime', 0x3d, 0x101}}, {}, {@iocharset={'iocharset', 0x3d, 'cp932'}}, {@gid}, {@namecase}, {@iocharset={'iocharset', 0x3d, 'iso8859-2'}}, {@gid={'gid', 0x3d, 0xee01}}, {@discard}, {@errors_continue}]}, 0x1, 0x1537, &(0x7f0000000280)="$eJzs3AucjdUaMPDnWWu9Y0jaTXIZ1lrPy04uiyTJJUkuSZIkSW4JSZMcSUgMuSUNSUguQ3IZQnKZmDTu9/slIUmaJAnJLVnfb2I+dep859I5Od/x/H+//Zv1zNrPep93ntl7r/3O5pvOQ2o0qlm1ARHBH4IXviQCQCwADACAawAgAICycWXjMuezS0z8Ywdh/14PpVzuCtjlxP2/snH/r2zc/ysb9//Kxv2/snH/r2zc/ysb95+xK9mmafmv5duVe+Pr/1cyfv3/H5JRcswXa0pe3wUg5h9N4f7//w//QC73/39W8I/cifv/P+Jf3Fdx/69UsZe7APZfgB//V4Jsf3OG+39l4/4zdiX75bXgWLj816P/7BtE/pN/A/E9L/yUL/95/s3zZ4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHG/gSn/SUKALLGl7suxhhjjDHGGGOM/fv4bJe7AsYYY4wxxhhjjP3nIQiQoCCAGMgGsZAdcoAAiMmavxbi4DrIDddDHsgL+SA/xEMBKAgaDFggCKEQFIYo3ABF4EYoCsWgOJQAByWhFNwEpeFmKAO3QFm4FcrBbVAeKkBFqAS3Q2W4A6rAnVAV7oJqUB1qQE24G2rBPVAb7oU6cB/UhfuhHjwA9eFBaAAPQUN4GBrBI9AYHoUm0BSaQXNo8S/lvwDd4UXoAT0hEXpBb3gJ+kBf6Af9YQC8DAPhFRgEr0ISDIYh8BoMhddhGLwBw2EEjIQ3YRS8BaNhDIyFcZAM42ECvA0T4R2YBJNhCkyFFJgG0+FdmAEzYRa8B7PhfZgDc2EezIdU+AAWwEJIgw9hEXwE6bAYlsBSWAbLYQWshFWwGtbAWlgH62EDbIRNsBm2wFbYBtthB3wMO+ET2AW7YQ98Cnvhs38y/9Rf5XdBQECBAhUqjMEYjMVYzIE5MCfmxFyYCyMYwTiMw9yYG/NgHsyH+TAe47EgFkSDBgkJC2EhjGIUi2ARLIpFsTgWR4cOS2EpLI03Yxksg2WxLJbDclgeK2AFrISVsDJWxipYBatiVayG1bAG1sC78W7shbWxNtbBOlgX62ZdnsIG2AAbYkNshI2wMTbGJtgEm2EzbIEtsCW2xFbYCttgG2yLbbEdtsMETMD22B47YAfsiB2xE3bCztgZu2BX7JrxQjbAF/FF7InVRC/sjb2xDyZl64f9sT++jAPxFXwFX8UkHIxD8DV8DV/HYXgSh58fgSNxJFYWb+FoHIMkxmEyJuMEnIATcSJOwsk4GadiCk7D6TgdZ+BMnInv4Wx8H9/HuTgX52MqpuICXIhpmIaL8BSm42JcgktxGS7HZbgSV+FKXINrcQ2ux/W4ETfiZtyMW3Erbsft+DEqAPwEd+NuTMK9uBf34T7cj/vxAB7ADMzAg3gQD+EhPIyH8QgewaN4DI/jMTyBJ/AknsLTeBrP4lk8h8/Ff9Xw42Krk0BkUkKJGBEjYkWsyCFyiJwip8glcomIiIg4ESdyi9wij8gj8ol8Il7Ei4KioDDCCBJh5jOFiIqoKCKKiKKiqCguigsnnCglSonSorQoI8qIsuJWUU7cJsqLCqK1qyQqicqijasi7hRVRVVRTVQXNURNUVPUErVEbVFb1BF1RF1RV9QTD4j6ohf2w4dEZmcaicHYWAzBJqKpkBefoVqKYdhKtBZtxBNiBA7HdqKlSxBPi/ZiNHYQfxFj8FnRSYzDzuJ50UV0Fd3EC6K7aOV6iJ5iEvYSvcVU7CP6in6iv5iB1cV7ODt7DfGqSBKDxRDxmpiPr4th4g0xXIwQI8WbYpR4S4wWY8RYMU4ki/FignhbTBTviElispgipooUMU1MF++KGWKmmCXeE7PF+2KOmCsUAKSKD8QCsVCkiQ/FIvGRSBeLxRKxVCwTy8UKsVKsEqvFGrFWrBPrxQaxUWwSm8UWsVVsE9vFDvGx2Ck+EbvEbrFHfCr2is/EPvG52C++EAfElyJDfCUOiq/FIfGNOCy+FUfEd+KoOCaOi+/FCfGDOClOidPijDgrfhTnxE/ivPACJEohpVQykDEym4yV2WUOeZXMKYOs538ZJ6+TueX1Mo/MK/PJ/DJeFpAFpZZGWkkylIVkYRmVN8gi8kZZVBaTxWUJ6WRJWUreJEvLm2UZeYssK2+V5eRtsrysICvKSvJ2WVneISFy4RjVZHVZQ9aUd8tEuEfWlvfKOvI+WVfeL+vJB2R9+aBsIB+SDeXDspF8RDaWj8omsqlsJpvLFvIx2VI+LlvJ1rKNfEK2lU/KdvIpmSCflu2lv/gr8qzsJJ+TneXzsovsKrvJn+R56WUP2VNCL5C95Uuyj+wr+8n+coB8WQ6Ur8hB8lWZJAfLIfI1OVS+LofJN+RwOUKOlG/KUfItOVqOkWPlOJksx8sJ8m05Ub4jJ8nJcoqcKlPkNNnv4kqzpPy7+W//Tv6gn4++UW6Sm+UWuVVuk9vlDvmx3Cl3yl1yl9wj98i9cq/cJ/fJ/XK/PCAPyAyZIQ/Kg/KQPCQPy8PyiDwij8pj8oz8Xp6QP8iT8pQ8Jc/Is/KsPHfxZwAKlVBSKRWoGJVNxarsKoe6SuVUV6tc6hoVUdeqOHWdyq2uV3lUXpVP5VfxqoAqqLQyyipSoSqkCquougEv/sKo4qqEcqqkKqVu+mfyVRF1oyqqiv0qP6u+xL9RXwvVQrVULVUr1Uq1UW1UW9VWtVPtVIJKUO1Ve9VBdVAdVUfVSXVSnVVn1UV1Ud1UN9VddVc9VA+VqBJVb/WS6qP6qn6qvxqgXhaZ5zBIDVJJKkkNUUPUUDVUDVPD1HA1XI1UI9UoNUqNVqPVWDVWJatkNUFNUBPVRDVJTVJT1BSVolLUdDVdzVAz1Cw1S81Ws9UcNUfNU/NUqkpVC9QClabS1CK1SKWrxWqxWqqWquVquVqpVqrVarVaq9aq9Wq9Sleb1Ca1RW1R29Q2tUPtUDvVTrVL7VJ71B61V+1V+9Q+tV/tVwfUAZWhMtRBdVAdUofUYXVYHVFH1FF1VB1Xx9UJdUKdVCfVaXVanVVn1Tl1Tp1X5zO3fYEIRKACFcQEMUFsEBvkCHIEOYOcQa4gVxAJIkFcEBfkDq4P8gR5g3xB/iA+KBAUDHRgAhuIi02PBjcERYIbg6JBsaB4UCJwQcmgVHBTUDq4OSgT3BKUDW4NygW3BeWDCkHFoFJwe1A5uCOoEtwZVA3uCqoF1YMaQc3g7qBWcE9QO7g3qBPcF9QN7g/qBQ8E9YMHgwbBQ0HD4OGgUfBI0Dh4NGgSNA2aBc2DFv/W9b0/mfdx10P31Im6l+6tX9J9dF/dT/fXA/TLeqB+RQ/Sr+okPVgP0a/pofp1PUy/oYfrEXqkflOP0m/p0XqMHqvH6WQ9Xk/Qb+uJ+h09SU/WU/RUnaKn6en6XT1Dz9Sz9Ht6tn5fz9Fz9Tw9X6fqD/QCvVCn6Q/1Iv2RTteL9RK9VC/Ty/UKvVKv0qv1Gr1Wr9Pr9Qa9UW/Sm/UWvVVv09v1Dv2x3qk/0bv0br1Hf6r36s/0Pv253q+/0Af0lzpDf6UP6q/1If2NPqy/1Uf0d/qoPqbL6O/1Cf2DPqlP6dP6jD6rf9Tn9E/6vPaZm/vMl3ejjDIxJsbEmliTw+QwOU1Ok8vkMhETMXEmzuQ2uU0ek8fkM/lMvIk3BU1Bk4kMmUKmkImaqCliipiipqgpboobZ5wpZUqZ0qa0KWPKmLKmrClnypnyprypaCqa283t5g5zh7nT3GnuMneZ6qa6qWlqmlqmlqltaps6po6pa+qaeqaeqW/qmwamgWloGppGppFpbBqbJqaJaWaamRamhWlpWppWppVpY9qYtqataWfamQSTYNqb9qaD6WA6mo6mk+lkOpvOpovpYrqZbqa76W56mB4m0SSa3qa36WP6mH6mnxlgBpiBZqAZZAaZJJNkhpghZqgZaoaZYWa4GWFGZm5UzVtmtBljxppxJtkkmwlmgploJppJZpKZYqaYFJNippvpZoaZYWaZWWa2mW3mmDlmnplnUk2qWWAWmDSTZhaZRSbdpJslZolZZpaZFWaFWWVWmTVmjVkH68wGs8FsMpvMFrPFbDPbzA6zw+w0O80us8vsMXvMXrPX7DP7zH6z3xwwB0yGyTAHzUFzyBwyh81hc8QcMUfNUXPcHDcnzAlz0pw0p81pc9bkvfh66U2szW5z2KtsTnu1zWWvsX8d57P5bbwtYAtabfPYvL+KjbW2qC1mi9sS1tmStpS96TdxeVvBVrSV7O22sr3DVvlNXMveY2vbe20de5+tae/+VVzX3m/r2UdsfUQA29Q2tM1tI/uIbWwftU1sU9vMNrdt7ZO2nX3KJtinbXv7zG/iBXahXWVX2zV2rd1ld9vT9ow9ZL+xZ+2PtoftaQfYl+1A+4odZF+1SXbwb+KR9k07yr5lR9sxdqwd95t4ip1qU+w0O92+a2fYmb+JU+0HdrZNs3PsXDvPzv85zqwpzX5oF9mPbLoNYIldapfZ5XaFXfl/a11q19sNdqPdaT+xW+xWu81utzuyNsJ2t91jP7V77Wf2oP3a7rdf2AP2sM2wX/0cZ57fYfutPWK/s0ftMXvcfm9P2B9UVnbmuX9vf7LnrbdASECSFAUUQ9kolrJTDrqKctLVlIuuoQhdS3F0HeWm6ykP5aV8lJ/iqQAVJE2GLBGFVIgKU5RuoKzyilMJclSSStFNVJpupjJ0C5WlW6kc3UblqQJVpEp0O1WmO6gK3UlV6S6qRtWpBtWku6kW3UO16V6qQ/dRXbqf6tEDVJ8epAb0EDWkh6kRPUKN6VFqQk2pGTWnFvQYtaTHqRW1pjb0BLWlJ6kdPUUJ9DS1p2eoA/2FOtKz1Imeo870PHWhrtSNXqDu9CL1oJ6USL2oN71Efagv9aP+NIBepoH0Cg2iVymJBtMQeo2G0us0jN6g4TSCRtKbNIreotE0hsbSOEqm8TSB3qaJ9A5Nosk0haZSCk2j6fQuzaCZNIveo9n0Ps2huTSP5lMqfUALaCGl0Ye0iD6idFpMS2gpLaPltIJW0ipaTWtoLa2j9bSBNtIm2kxbaCtto+20gz6mnfQJ7aLdtIc+pb30Ge2jz2k/fUEH6EvKoK/oIH1Nh+gbOkzf+p70HR2lY3ScvqcT9AOdpFN0ms7QWfqRztFPdJ48QYihCGWowiCMCbOFsWH2MEd4VZgzvDrMFV4TRsJrw7jwujB3eH2YJ8wb5gvzh/FhgbBgrA5NaEMKw7BQWDiMhjeERcIbw6JhsbB4WCJ0YcmwVHhTWDq8OSwT3hKWDW8Ny4W3heXDCuEj91UKbw8rh3eEVcI7w6rhXWG1sHpYI6wZ3h3WCu8Ja4f3hnXC+8Iy4f1hvfCBsH74YNggfChsGD4cNgofCRuHj4ZNwqZhs7B52CJ8LGwZPh62CluHbcKrwrbhk2G78KkwIXw6bB8+8/P8/Quz5p/4zXxi2CvsHb4UvhR6f6+cF50fTY1+EF0QXRhNi34YXRT9KJoeXRxdEl0aXRZdHl0RXRldFV0dXRNdG10XXR/dEN0Y9b5mNnDohJNOucDFuGwu1mV3OdxVLqe72uVy17iIu9bFuetcbne9y+Pyunwuv4t3BVxBp51x1pELXSFX2EXdDa6Iu9EVdcVccVfCOVfSlXLNXQvXwrV0j7tWrrVr455wT7gn3ZPuKfeUe9q1d8+4Du4vrqN71nVyz7nn3POui+vqurkXXHc3PteFx2Si6+16uz6uj+vn+rkBboAb6Aa6QW6QS3JJbogb4oa6oW6YG+aGu+FupBvpRrlRbrQb7ca6sS7ZJbsJboKb6Ca6SW6Sm+KmuBSX4qa76W6Gm+Eqz7xwlDlujpvn5rlUl+oWuMw9Y5pb5Ba5dJfulrglbplb5la4FW6VW+XWuDVunVvnNrgNbpPb5La4LW6b2+Z2uB1up9vpdvlrLizq9rp9bp/b7/a7A+5Ll+G+cgfd1+6Q+8Yddt+6I+47d9Qdc8fd9+6E+8GddKfcaXfGnXU/unPuJ3feeZccGR+ZEHk7MjHyTmRSZHJkSmRqJCUyLTI98m5kRmRmZFbkvcjsyPuROZG5kXmR+ZHUyAeRBZGFkbTIh5FFkY8i6ZHFkSWRpZFlkeUR7wtsCX0hX9hH/Q2+iL/RF/XFfHFfwjtf0pfyN/nSF+pO9/5WX87f5sv7Cr6if9Q38U19M9/ct/CP+Zb+cY+A0MY/4dv6J307/5RP8E/79v4Z38H/xXf0z/pO/jnf2T/vu/iuvpt/wXf3L/oevqdP9L18b/+S7+P7+n6+vx/gX/YD/St+kH/VJ/nBfoh/zQ/1r/th/g0/3I/wI2Pe9KOy3iLDOJ/sx/sJ/m0/0b/jJ/nJfoqf6lP8ND/dv+tn+Jl+ln/Pz/bv+zl+rp/n5/tU/4Ff4Bf6NP+hX+Q/8ul+cdZFY7/Cr/Sr/Gq/xq/16/x6v8Fv9Jv8Zr/Fb/Xb/Ha/w3/sd/pP/C6/2+/xn/q9/jO/z3/u9/sv/AH/pc/wX/mD/mt/yH/jD/tv/RH/nT/qj/nj/nt/wv/gT/pT/rQ/48/6H/05/5M/z/9mjTHGGGPsHzL+0lD8eubC5fxev5MjfnHn3gBw9db8Gb+cz9xRrstzYdxXxMdmfn26Z+eHsm7VqiUmJl68b7qEoPBcgKy/BGX6+aMHF+PF0AaehARoDaV/t/6+outZ+jvrR28FyPGLnMyCsuJL638OgIm/s/5jT4xcUC48Hff/WH8uQNHCl3Kyw6V4MbT5+fpKayjzN+rP2/Lv1J/9i2SAVr/IyQmX4kv1l4LH4RlI+NU9GWOMMcYYY4yxC/qKih2z3n9mfeLz996fx6tLOdngUvz33p8zxhhjjDHGGGPs8nu2a7enHktIaN3xnx9U+Zey/uFBY/hPrcyD3x14D5D1HQUAf3BBgMyB/DPPYvOfcqykiw+dv55adsYH8N/RygsD8Uce3QmX+YmJMcYYY4wx9m93adP/6++ry1UQY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDF2Bfoz/jeyy32OjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHG2OX2fwIAAP//aNX2aA==")
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
symlink(0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0)={[0x8aba, 0x20004, 0x4, 0x9, 0x9, 0xa, 0x120002, 0x1, 0x0, 0x8, 0x8000000000000001, 0x1, 0x7fff, 0x101, 0x3, 0x1], 0x6000, 0x141200})
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000140)=@arm64={0x10, 0x2, 0xb6, '\x00', 0x2})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

0s ago: executing program 4 (id=1687):
mprotect(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x8)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r0, 0xc018aa3f, 0x0)

kernel console output (not intermixed with test programs):

s (loop8): Remounting filesystem read-only
[  490.044962][ T9565] EXT4-fs (loop8): mounted filesystem without journal. Opts: acl,norecovery,acl,noload,delalloc,resuid=0x0000000000000000,discard,minixdf,min_batch_time=0x000000007fffffff,errors=remount-ro,. Quota mode: none.
[  492.963160][ T4250] usb 10-1: new high-speed USB device number 5 using dummy_hcd
[  493.263398][ T4250] usb 10-1: Using ep0 maxpacket: 16
[  493.482663][ T4250] usb 10-1: config 1 has an invalid descriptor of length 191, skipping remainder of the config
[  493.567815][ T4250] usb 10-1: config 1 has 1 interface, different from the descriptor's value: 3
[  493.943287][ T4250] usb 10-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  493.953067][ T4250] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  493.961284][ T4250] usb 10-1: Product: syz
[  493.972265][ T9610] loop3: detected capacity change from 0 to 512
[  493.979420][ T4250] usb 10-1: Manufacturer: syz
[  493.984420][ T4250] usb 10-1: SerialNumber: syz
[  494.158959][ T9610] EXT4-fs error (device loop3): ext4_iget_extra_inode:4573: inode #15: comm syz.3.1127: corrupted in-inode xattr
[  494.172056][ T9610] EXT4-fs error (device loop3): ext4_orphan_get:1411: comm syz.3.1127: couldn't read orphan inode 15 (err -117)
[  494.185599][ T9610] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  494.353508][ T4250] usb 10-1: 0:2 : does not exist
[  494.379132][ T4250] usb 10-1: USB disconnect, device number 5
[  494.664716][ T6534] udevd[6534]: error opening ATTR{/sys/devices/platform/dummy_hcd.9/usb10/10-1/10-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  494.850535][ T9621] loop3: detected capacity change from 0 to 1024
[  495.063662][ T9621] EXT4-fs (loop3): couldn't mount as ext2 due to feature incompatibilities
[  495.232461][ T9626] loop9: detected capacity change from 0 to 256
[  495.396353][ T9626] exfat: Deprecated parameter 'utf8'
[  495.444246][ T9626] exFAT-fs (loop9): failed to load upcase table (idx : 0x00010000, chksum : 0xe61df179, utbl_chksum : 0xe619d30d)
[  498.029413][ T9636] loop3: detected capacity change from 0 to 512
[  498.139138][ T9636] EXT4-fs (loop3): bad geometry: first data block is 0 with a 1k block and cluster size
[  498.878688][ T9648] loop6: detected capacity change from 0 to 1024
[  499.146190][ T9648] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (46272!=20869)
[  499.425986][ T9649] loop3: detected capacity change from 0 to 128
[  499.453089][ T9648] EXT4-fs (loop6): corrupt root inode, run e2fsck
[  499.459600][ T9648] EXT4-fs (loop6): mount failed
[  499.774275][ T9660] loop9: detected capacity change from 0 to 512
[  499.834008][ T9661] loop6: detected capacity change from 0 to 1024
[  499.918245][ T9660] EXT4-fs error (device loop9): ext4_iget_extra_inode:4573: inode #15: comm syz.9.1140: corrupted in-inode xattr
[  499.930881][ T9660] EXT4-fs error (device loop9): ext4_orphan_get:1411: comm syz.9.1140: couldn't read orphan inode 15 (err -117)
[  499.944058][ T9660] EXT4-fs (loop9): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  499.982661][ T9661] EXT4-fs (loop6): Ignoring removed orlov option
[  500.051298][ T9661] EXT4-fs (loop6): mounted filesystem without journal. Opts: block_validity,bsddf,sysvgroups,norecovery,debug_want_extra_isize=0x0000000000000080,orlov,nogrpid,noauto_da_alloc,norecovery,,errors=continue. Quota mode: none.
[  500.996971][ T1431] ieee802154 phy0 wpan0: encryption failed: -22
[  501.003592][ T1431] ieee802154 phy1 wpan1: encryption failed: -22
[  504.059145][ T9702] loop9: detected capacity change from 0 to 1024
[  504.224565][ T9702] EXT4-fs (loop9): ext4_check_descriptors: Checksum for group 0 failed (46272!=20869)
[  504.345645][ T9702] EXT4-fs (loop9): corrupt root inode, run e2fsck
[  504.352460][ T9702] EXT4-fs (loop9): mount failed
[  505.011069][ T9718] loop9: detected capacity change from 0 to 256
[  505.039195][ T9719] loop7: detected capacity change from 0 to 512
[  505.192880][ T9718] FAT-fs (loop9): Directory bread(block 64) failed
[  505.199452][ T9718] FAT-fs (loop9): Directory bread(block 65) failed
[  505.235939][ T9719] EXT4-fs error (device loop7): ext4_iget_extra_inode:4573: inode #15: comm syz.7.1158: corrupted in-inode xattr
[  505.251780][ T9719] EXT4-fs error (device loop7): ext4_orphan_get:1411: comm syz.7.1158: couldn't read orphan inode 15 (err -117)
[  505.270105][ T9719] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  505.304763][ T9718] FAT-fs (loop9): Directory bread(block 66) failed
[  505.340655][ T9718] FAT-fs (loop9): Directory bread(block 67) failed
[  505.365612][ T9718] FAT-fs (loop9): Directory bread(block 68) failed
[  505.372185][ T9718] FAT-fs (loop9): Directory bread(block 69) failed
[  505.392469][ T9725] loop3: detected capacity change from 0 to 512
[  505.417868][ T9718] FAT-fs (loop9): Directory bread(block 70) failed
[  505.438173][ T9718] FAT-fs (loop9): Directory bread(block 71) failed
[  505.455494][ T9725] EXT4-fs (loop3): test_dummy_encryption requires encrypt feature
[  505.502995][ T9718] FAT-fs (loop9): Directory bread(block 72) failed
[  505.509572][ T9718] FAT-fs (loop9): Directory bread(block 73) failed
[  506.275537][ T4281] attempt to access beyond end of device
[  506.275537][ T4281] loop9: rw=1048577, want=1832, limit=256
[  506.361536][ T4281] attempt to access beyond end of device
[  506.361536][ T4281] loop9: rw=1, want=2512, limit=256
[  506.579154][ T9748] device syzkaller0 entered promiscuous mode
[  506.601900][ T9748] tipc: Started in network mode
[  506.616625][ T9748] tipc: Node identity 760c7d5081e9, cluster identity 4711
[  506.643447][ T9748] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  506.757507][ T9746] tipc: Resetting bearer <eth:syzkaller0>
[  507.271635][ T9746] tipc: Disabling bearer <eth:syzkaller0>
[  507.344824][ T9759] loop6: detected capacity change from 0 to 1024
[  507.415634][ T9759] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (46272!=20869)
[  507.445588][ T9759] EXT4-fs (loop6): corrupt root inode, run e2fsck
[  507.452100][ T9759] EXT4-fs (loop6): mount failed
[  507.551156][ T9765] loop7: detected capacity change from 0 to 512
[  507.662398][ T9765] EXT4-fs error (device loop7): ext4_orphan_get:1406: inode #15: comm syz.7.1173: iget: bad i_size value: 38620345925642
[  507.683441][ T9765] EXT4-fs error (device loop7): ext4_orphan_get:1411: comm syz.7.1173: couldn't read orphan inode 15 (err -117)
[  507.716387][ T9765] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  507.741960][ T9765] EXT4-fs (loop7): shut down requested (0)
[  508.932094][ T9780] loop7: detected capacity change from 0 to 256
[  509.202424][ T9780] FAT-fs (loop7): Directory bread(block 64) failed
[  509.315798][ T9780] FAT-fs (loop7): Directory bread(block 65) failed
[  509.479181][ T9780] FAT-fs (loop7): Directory bread(block 66) failed
[  509.741861][ T9780] FAT-fs (loop7): Directory bread(block 67) failed
[  509.768224][ T9780] FAT-fs (loop7): Directory bread(block 68) failed
[  509.803187][ T9780] FAT-fs (loop7): Directory bread(block 69) failed
[  509.809832][ T9780] FAT-fs (loop7): Directory bread(block 70) failed
[  509.818497][ T9769] loop9: detected capacity change from 0 to 40427
[  509.833375][ T9780] FAT-fs (loop7): Directory bread(block 71) failed
[  509.859871][ T9769] F2FS-fs (loop9): Invalid SB checksum offset: 0
[  509.874057][ T9780] FAT-fs (loop7): Directory bread(block 72) failed
[  509.888393][ T9769] F2FS-fs (loop9): Can't find valid F2FS filesystem in 2th superblock
[  509.896829][ T9780] FAT-fs (loop7): Directory bread(block 73) failed
[  509.906145][   T26] audit: type=1326 audit(510.291:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9786 comm="syz.3.1179" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ee98a0e59 code=0x7ffc0000
[  509.941580][ T9769] F2FS-fs (loop9): invalid crc value
[  509.947898][   T26] audit: type=1326 audit(510.291:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9786 comm="syz.3.1179" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ee98a0e59 code=0x7ffc0000
[  510.023080][ T9769] F2FS-fs (loop9): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437)
[  510.071508][   T26] audit: type=1326 audit(510.291:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9786 comm="syz.3.1179" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f3ee98a0e59 code=0x7ffc0000
[  510.141887][   T26] audit: type=1326 audit(510.371:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9786 comm="syz.3.1179" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ee98a0e59 code=0x7ffc0000
[  510.364803][ T9795] attempt to access beyond end of device
[  510.364803][ T9795] loop7: rw=524288, want=1164, limit=256
[  510.376316][ T9795] attempt to access beyond end of device
[  510.376316][ T9795] loop7: rw=0, want=1164, limit=256
[  510.403557][ T9795] attempt to access beyond end of device
[  510.403557][ T9795] loop7: rw=0, want=1164, limit=256
[  510.713051][   T26] audit: type=1326 audit(510.371:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9786 comm="syz.3.1179" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ee98a0e59 code=0x7ffc0000
[  510.837298][   T26] audit: type=1326 audit(510.591:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9786 comm="syz.3.1179" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=28 compat=0 ip=0x7f3ee98a0e59 code=0x7ffc0000
[  510.888997][   T26] audit: type=1326 audit(510.591:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9786 comm="syz.3.1179" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ee98a0e59 code=0x7ffc0000
[  511.035061][   T26] audit: type=1326 audit(510.591:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9786 comm="syz.3.1179" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ee98a0e59 code=0x7ffc0000
[  511.148705][   T26] audit: type=1326 audit(510.621:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9786 comm="syz.3.1179" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f3ee98a0e59 code=0x7ffc0000
[  511.315951][ T9807] loop7: detected capacity change from 0 to 512
[  511.414344][ T9798] chnl_net:caif_netlink_parms(): no params data found
[  511.560244][   T26] audit: type=1800 audit(510.781:58): pid=9795 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.7.1177" name="file0" dev="loop7" ino=1049074 res=0 errno=0
[  511.591848][ T9807] EXT4-fs error (device loop7): ext4_iget_extra_inode:4573: inode #15: comm syz.7.1180: corrupted in-inode xattr
[  511.612650][ T9807] EXT4-fs error (device loop7): ext4_orphan_get:1411: comm syz.7.1180: couldn't read orphan inode 15 (err -117)
[  511.630046][ T9807] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  511.655860][ T1344] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[  511.820352][ T4281] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  511.850686][ T9815] loop9: detected capacity change from 0 to 4096
[  511.933039][ T1344] usb 7-1: Using ep0 maxpacket: 16
[  511.989416][ T9815] EXT4-fs (loop9): Quota format mount options ignored when QUOTA feature is enabled
[  512.023148][ T9815] EXT4-fs (loop9): inline encryption not supported
[  512.029758][ T9815] EXT4-fs (loop9): Test dummy encryption mode enabled
[  512.053046][ T1344] usb 7-1: config 1 has an invalid descriptor of length 191, skipping remainder of the config
[  512.121870][ T1344] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 3
[  512.189199][ T4281] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  512.210871][ T9815] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c198, mo2=0003]
[  512.233231][ T9815] System zones: 0-5
[  512.273586][ T9815] EXT4-fs (loop9): mounted filesystem without journal. Opts: debug,jqfmt=vfsv0,inlinecrypt,debug,test_dummy_encryption=v1,norecovery,delalloc,nogrpid,minixdf,,errors=continue. Quota mode: writeback.
[  512.333141][ T1344] usb 7-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  512.352533][ T1344] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  512.360651][ T1344] usb 7-1: Product: syz
[  512.371123][ T1344] usb 7-1: Manufacturer: syz
[  512.383619][ T1344] usb 7-1: SerialNumber: syz
[  513.602091][ T1108] Bluetooth: hci5: command 0x0409 tx timeout
[  513.622665][ T4281] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  513.736685][ T9798] bridge0: port 1(bridge_slave_0) entered blocking state
[  513.744154][ T9798] bridge0: port 1(bridge_slave_0) entered disabled state
[  513.782802][ T9798] device bridge_slave_0 entered promiscuous mode
[  513.829629][ T9798] bridge0: port 2(bridge_slave_1) entered blocking state
[  513.847372][ T9798] bridge0: port 2(bridge_slave_1) entered disabled state
[  513.878812][ T9798] device bridge_slave_1 entered promiscuous mode
[  513.986570][ T9798] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  514.068898][ T9798] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  514.163111][ T1344] usb 7-1: 0:2 : does not exist
[  514.191981][ T1344] usb 7-1: USB disconnect, device number 10
[  514.238515][ T4281] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  514.464928][ T9798] team0: Port device team_slave_0 added
[  514.474702][ T6534] udevd[6534]: error opening ATTR{/sys/devices/platform/dummy_hcd.6/usb7/7-1/7-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  514.636737][ T9798] team0: Port device team_slave_1 added
[  515.481723][ T9798] batman_adv: batadv0: Adding interface: batadv_slave_0
[  515.502162][ T9798] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  515.553029][ T9798] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  515.694871][ T4264] Bluetooth: hci5: command 0x041b tx timeout
[  515.700054][ T9798] batman_adv: batadv0: Adding interface: batadv_slave_1
[  515.735719][ T9798] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  515.880221][ T9859] loop3: detected capacity change from 0 to 1024
[  516.045638][ T9859] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (46272!=20869)
[  516.131337][ T9859] EXT4-fs (loop3): corrupt root inode, run e2fsck
[  516.138203][ T9859] EXT4-fs (loop3): mount failed
[  516.393029][ T9798] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  516.654971][ T9798] device hsr_slave_0 entered promiscuous mode
[  516.678589][ T9798] device hsr_slave_1 entered promiscuous mode
[  516.707384][ T9798] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  516.747366][ T9798] Cannot create hsr debugfs directory
[  516.760286][ T9849] loop9: detected capacity change from 0 to 40427
[  516.972729][ T9849] F2FS-fs (loop9): build fault injection attr: rate: 19, type: 0x1ffff
[  517.749257][ T4264] Bluetooth: hci5: command 0x040f tx timeout
[  517.933150][   T26] audit: type=1326 audit(518.321:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9878 comm="syz.9.1194" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff817cf8e59 code=0x7ffc0000
[  518.602441][   T26] audit: type=1326 audit(518.381:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9878 comm="syz.9.1194" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7ff817cf8e59 code=0x7ffc0000
[  518.625892][   T26] audit: type=1326 audit(518.381:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9878 comm="syz.9.1194" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff817cf8e59 code=0x7ffc0000
[  519.584634][   T26] audit: type=1326 audit(518.381:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9878 comm="syz.9.1194" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=28 compat=0 ip=0x7ff817cf8e59 code=0x7ffc0000
[  519.676187][   T26] audit: type=1326 audit(518.381:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9878 comm="syz.9.1194" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff817cf8e59 code=0x7ffc0000
[  519.685283][ T9886] loop3: detected capacity change from 0 to 1024
[  519.762968][   T26] audit: type=1326 audit(518.381:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9878 comm="syz.9.1194" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7ff817cf8e59 code=0x7ffc0000
[  519.795699][   T23] Bluetooth: hci5: command 0x0419 tx timeout
[  519.849011][ T9886] EXT4-fs (loop3): Unrecognized mount option "uid>00000000000000000000" or missing value
[  519.945127][   T26] audit: type=1326 audit(518.381:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9878 comm="syz.9.1194" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff817cf8e59 code=0x7ffc0000
[  520.024745][ T9889] loop9: detected capacity change from 0 to 4096
[  520.066917][   T26] audit: type=1326 audit(518.381:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9878 comm="syz.9.1194" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7ff817cf8e59 code=0x7ffc0000
[  520.143074][   T26] audit: type=1326 audit(518.381:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9878 comm="syz.9.1194" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff817cf8e59 code=0x7ffc0000
[  520.170149][ T4281] device hsr_slave_0 left promiscuous mode
[  520.190127][ T9889] EXT4-fs (loop9): Quota format mount options ignored when QUOTA feature is enabled
[  520.210402][ T9889] EXT4-fs (loop9): inline encryption not supported
[  520.237893][   T26] audit: type=1326 audit(518.381:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9878 comm="syz.9.1194" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff817cf8e59 code=0x7ffc0000
[  520.267961][ T9889] EXT4-fs (loop9): Test dummy encryption mode enabled
[  520.268161][ T4281] device hsr_slave_1 left promiscuous mode
[  520.291142][ T4281] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  520.310500][ T9889] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c198, mo2=0003]
[  520.347368][ T4281] batman_adv: batadv0: Removing interface: batadv_slave_0
[  520.354903][ T9889] System zones: 0-5
[  520.394083][ T4281] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  520.401527][ T4281] batman_adv: batadv0: Removing interface: batadv_slave_1
[  520.419054][ T9889] EXT4-fs (loop9): mounted filesystem without journal. Opts: debug,jqfmt=vfsv0,inlinecrypt,debug,test_dummy_encryption=v1,norecovery,delalloc,nogrpid,minixdf,,errors=continue. Quota mode: writeback.
[  520.474167][ T4281] device bridge_slave_1 left promiscuous mode
[  520.480590][ T4281] bridge0: port 2(bridge_slave_1) entered disabled state
[  520.493011][   T23] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  520.721535][ T4281] device bridge_slave_0 left promiscuous mode
[  520.775249][ T4281] bridge0: port 1(bridge_slave_0) entered disabled state
[  520.843843][   T23] usb 4-1: Using ep0 maxpacket: 16
[  521.093202][   T23] usb 4-1: config 1 has an invalid descriptor of length 191, skipping remainder of the config
[  521.142929][   T23] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  521.221273][ T4281] device veth1_macvtap left promiscuous mode
[  521.236637][ T4281] device veth0_macvtap left promiscuous mode
[  521.288332][ T4281] device veth1_vlan left promiscuous mode
[  521.313033][ T4281] device veth0_vlan left promiscuous mode
[  521.363268][   T23] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  521.390424][   T23] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  521.439425][   T23] usb 4-1: Product: syz
[  521.472839][   T23] usb 4-1: Manufacturer: syz
[  521.515181][   T23] usb 4-1: SerialNumber: syz
[  521.889534][   T23] usb 4-1: 0:2 : does not exist
[  521.943051][   T23] usb 4-1: USB disconnect, device number 8
[  522.310902][ T4281] team0 (unregistering): Port device team_slave_1 removed
[  522.437408][ T4281] team0 (unregistering): Port device team_slave_0 removed
[  522.663896][ T4281] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  522.686676][ T4281] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  522.814242][ T9920] loop9: detected capacity change from 0 to 1024
[  522.931115][ T9920] EXT4-fs (loop9): ext4_check_descriptors: Checksum for group 0 failed (46272!=20869)
[  523.076580][ T9920] EXT4-fs (loop9): corrupt root inode, run e2fsck
[  523.083456][ T9920] EXT4-fs (loop9): mount failed
[  523.411520][ T9923] loop3: detected capacity change from 0 to 256
[  523.536049][ T9923] FAT-fs (loop3): Directory bread(block 64) failed
[  523.542637][ T9923] FAT-fs (loop3): Directory bread(block 65) failed
[  523.563048][ T9923] FAT-fs (loop3): Directory bread(block 66) failed
[  523.569854][ T9923] FAT-fs (loop3): Directory bread(block 67) failed
[  523.587053][ T9923] FAT-fs (loop3): Directory bread(block 68) failed
[  523.601938][   T26] kauditd_printk_skb: 17 callbacks suppressed
[  523.601951][   T26] audit: type=1326 audit(523.981:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9926 comm="syz.9.1206" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff817cf8e59 code=0x7ffc0000
[  523.659255][ T9923] FAT-fs (loop3): Directory bread(block 69) failed
[  523.670186][ T4281] bond0 (unregistering): Released all slaves
[  523.679011][ T9923] FAT-fs (loop3): Directory bread(block 70) failed
[  523.743488][ T9923] FAT-fs (loop3): Directory bread(block 71) failed
[  524.523185][ T9923] FAT-fs (loop3): Directory bread(block 72) failed
[  524.550760][   T26] audit: type=1326 audit(524.011:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9926 comm="syz.9.1206" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7ff817cf8e59 code=0x7ffc0000
[  524.579592][ T9923] FAT-fs (loop3): Directory bread(block 73) failed
[  524.716404][   T26] audit: type=1326 audit(524.011:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9926 comm="syz.9.1206" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff817cf8e59 code=0x7ffc0000
[  524.786592][   T26] audit: type=1326 audit(524.021:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9926 comm="syz.9.1206" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=28 compat=0 ip=0x7ff817cf8e59 code=0x7ffc0000
[  524.996727][   T26] audit: type=1326 audit(524.021:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9926 comm="syz.9.1206" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff817cf8e59 code=0x7ffc0000
[  525.140929][   T26] audit: type=1326 audit(524.021:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9926 comm="syz.9.1206" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7ff817cf8e59 code=0x7ffc0000
[  525.303033][   T26] audit: type=1326 audit(524.021:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9926 comm="syz.9.1206" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff817cf8e59 code=0x7ffc0000
[  525.389170][   T26] audit: type=1326 audit(524.021:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9926 comm="syz.9.1206" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7ff817cf8e59 code=0x7ffc0000
[  525.776107][   T26] audit: type=1326 audit(524.021:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9926 comm="syz.9.1206" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff817cf8e59 code=0x7ffc0000
[  525.953184][   T26] audit: type=1326 audit(524.021:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9926 comm="syz.9.1206" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff817cf8e59 code=0x7ffc0000
[  526.083585][ T9798] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  526.117339][ T9798] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  526.136344][ T9960] loop9: detected capacity change from 0 to 4096
[  526.180815][ T9798] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  526.193012][ T9960] EXT4-fs (loop9): Quota format mount options ignored when QUOTA feature is enabled
[  526.237022][ T9798] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  526.252019][ T9960] EXT4-fs (loop9): inline encryption not supported
[  526.279761][ T9960] EXT4-fs (loop9): Test dummy encryption mode enabled
[  526.361814][ T9960] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c198, mo2=0003]
[  526.411151][ T9798] 8021q: adding VLAN 0 to HW filter on device bond0
[  526.424739][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  526.432791][ T9960] System zones: 0-5
[  526.434279][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  526.455667][ T9798] 8021q: adding VLAN 0 to HW filter on device team0
[  526.488274][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  526.488821][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  526.489162][  T144] bridge0: port 1(bridge_slave_0) entered blocking state
[  526.489224][  T144] bridge0: port 1(bridge_slave_0) entered forwarding state
[  526.489603][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  526.490098][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  526.490412][  T144] bridge0: port 2(bridge_slave_1) entered blocking state
[  526.490439][  T144] bridge0: port 2(bridge_slave_1) entered forwarding state
[  526.490782][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  526.491502][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  526.495935][ T4569] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  526.499828][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  526.501348][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  526.501835][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  526.525962][ T4569] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  526.526742][ T4569] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  526.528521][ T4211] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  526.529494][ T4211] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  526.530908][ T9960] EXT4-fs (loop9): mounted filesystem without journal. Opts: debug,jqfmt=vfsv0,inlinecrypt,debug,test_dummy_encryption=v1,norecovery,delalloc,nogrpid,minixdf,,errors=continue. Quota mode: writeback.
[  526.546189][ T9798] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  526.546838][ T9798] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  526.548841][ T4211] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  526.549363][ T4211] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  527.675026][ T4569] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  527.682711][ T4569] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  527.748198][ T9798] 8021q: adding VLAN 0 to HW filter on device batadv0
[  527.923081][ T4291] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[  528.173149][ T4291] usb 7-1: Using ep0 maxpacket: 16
[  528.313254][ T4291] usb 7-1: config 1 has an invalid descriptor of length 191, skipping remainder of the config
[  528.350049][ T4291] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 3
[  528.563233][ T4291] usb 7-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  528.572741][ T4291] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  528.574517][ T7149] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  528.609450][ T4291] usb 7-1: Product: syz
[  528.621445][ T7149] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  528.629797][ T4291] usb 7-1: Manufacturer: syz
[  528.640607][ T4317] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  528.654219][ T4291] usb 7-1: SerialNumber: syz
[  528.685135][ T4317] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  528.731546][ T9798] device veth0_vlan entered promiscuous mode
[  528.745947][T10009] loop9: detected capacity change from 0 to 256
[  528.773896][ T4317] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  528.781786][ T4317] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  528.838949][ T9798] device veth1_vlan entered promiscuous mode
[  528.926018][T10009] exFAT-fs (loop9): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  529.059510][T10015] loop7: detected capacity change from 0 to 1024
[  529.273674][   T26] kauditd_printk_skb: 17 callbacks suppressed
[  529.273828][   T26] audit: type=1800 audit(529.611:113): pid=10009 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.1214" name="file2" dev="loop9" ino=1049076 res=0 errno=0
[  529.418089][ T4291] usb 7-1: 0:2 : does not exist
[  529.533530][T10015] EXT4-fs (loop7): ext4_check_descriptors: Checksum for group 0 failed (46272!=20869)
[  529.562952][ T9798] device veth0_macvtap entered promiscuous mode
[  529.570042][ T4317] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  529.579821][T10017] loop3: detected capacity change from 0 to 256
[  529.580334][ T4291] usb 7-1: USB disconnect, device number 11
[  529.592453][T10015] EXT4-fs (loop7): corrupt root inode, run e2fsck
[  529.599029][T10015] EXT4-fs (loop7): mount failed
[  529.610477][ T4317] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  529.683684][ T4317] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  529.713896][T10017] FAT-fs (loop3): Directory bread(block 64) failed
[  529.721307][ T4317] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  529.756268][T10017] FAT-fs (loop3): Directory bread(block 65) failed
[  529.763542][T10017] FAT-fs (loop3): Directory bread(block 66) failed
[  529.766301][ T4317] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  529.825046][T10017] FAT-fs (loop3): Directory bread(block 67) failed
[  529.840177][ T9798] device veth1_macvtap entered promiscuous mode
[  529.848141][ T6534] udevd[6534]: error opening ATTR{/sys/devices/platform/dummy_hcd.6/usb7/7-1/7-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  529.866820][T10017] FAT-fs (loop3): Directory bread(block 68) failed
[  529.903119][T10017] FAT-fs (loop3): Directory bread(block 69) failed
[  529.921794][T10017] FAT-fs (loop3): Directory bread(block 70) failed
[  529.938360][ T9798] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  529.970006][ T9798] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  530.017799][T10017] FAT-fs (loop3): Directory bread(block 71) failed
[  530.053089][T10017] FAT-fs (loop3): Directory bread(block 72) failed
[  530.066918][ T9798] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  530.086726][T10017] FAT-fs (loop3): Directory bread(block 73) failed
[  530.102127][ T9798] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  530.250258][T10033] loop9: detected capacity change from 0 to 1024
[  530.263019][ T9798] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  530.309540][ T9798] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  530.746427][ T9798] batman_adv: batadv0: Interface activated: batadv_slave_0
[  530.760637][ T9798] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  530.779745][ T9798] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  530.812322][T10033] EXT4-fs (loop9): couldn't mount as ext2 due to feature incompatibilities
[  530.827203][ T9798] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  530.902955][T10041] attempt to access beyond end of device
[  530.902955][T10041] loop3: rw=0, want=1164, limit=256
[  531.216787][T10043] loop6: detected capacity change from 0 to 8192
[  531.287267][ T9798] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  531.328043][ T9798] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  531.349233][ T9798] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  531.407203][ T9798] batman_adv: batadv0: Interface activated: batadv_slave_1
[  531.504609][ T7249]  loop6: p1[EZD] p2 p3 p4
[  531.509074][ T7249] loop6: partition table partially beyond EOD, truncated
[  531.544117][ T7249] loop6: p1 size 32768 extends beyond EOD, truncated
[  531.559090][ T4295] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  531.568483][ T4295] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  531.577566][ T4295] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  531.578416][ T7249] loop6: p2 start 930308 is beyond EOD, 
[  531.586981][ T4295] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  531.604639][ T9798] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  531.617278][ T7249] truncated
[  531.620413][ T7249] loop6: p3 start 117772289 is beyond EOD, truncated
[  531.627803][ T7249] loop6: p4 size 262144 extends beyond EOD, truncated
[  531.632819][T10045] loop3: detected capacity change from 0 to 4096
[  531.634844][ T9798] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  531.660466][ T9798] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  531.669381][T10043]  loop6: p1[EZD] p2 p3 p4
[  531.673872][T10043] loop6: partition table partially beyond EOD, truncated
[  531.681059][T10043] loop6: p1 size 32768 extends beyond EOD, truncated
[  531.690237][T10043] loop6: p2 start 930308 is beyond EOD, truncated
[  531.696733][T10043] loop6: p3 start 117772289 is beyond EOD, truncated
[  531.703506][T10043] loop6: p4 size 262144 extends beyond EOD, truncated
[  531.726951][ T9798] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  531.867419][T10045] EXT4-fs (loop3): Quota format mount options ignored when QUOTA feature is enabled
[  531.988668][T10045] EXT4-fs (loop3): inline encryption not supported
[  532.115357][T10045] EXT4-fs (loop3): Test dummy encryption mode enabled
[  532.618187][T10045] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c198, mo2=0003]
[  532.817689][T10045] System zones: 0-5
[  532.873791][T10045] EXT4-fs (loop3): mounted filesystem without journal. Opts: debug,jqfmt=vfsv0,inlinecrypt,debug,test_dummy_encryption=v1,norecovery,delalloc,nogrpid,minixdf,,errors=continue. Quota mode: writeback.
[  532.978769][ T6630] udevd[6630]: inotify_add_watch(7, /dev/loop6p4, 10) failed: No such file or directory
[  533.010521][ T7249] udevd[7249]: inotify_add_watch(7, /dev/loop6p1, 10) failed: No such file or directory
[  534.017048][ T6630] udevd[6630]: inotify_add_watch(7, /dev/loop6p4, 10) failed: No such file or directory
[  534.064656][ T7249] udevd[7249]: inotify_add_watch(7, /dev/loop6p1, 10) failed: No such file or directory
[  534.103336][ T4211] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  534.169897][   T26] audit: type=1326 audit(534.551:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10065 comm="syz.7.1226" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef61effe59 code=0x7ffc0000
[  534.194024][ T4211] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  534.270409][ T4247] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  534.309073][ T4247] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  535.603007][ T4292] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  535.614476][   T26] audit: type=1326 audit(534.631:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10065 comm="syz.7.1226" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fef61effe59 code=0x7ffc0000
[  535.914259][ T4292] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  536.145077][   T26] audit: type=1326 audit(534.631:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10065 comm="syz.7.1226" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef61effe59 code=0x7ffc0000
[  536.192461][T10081] loop3: detected capacity change from 0 to 256
[  536.348344][T10085] loop6: detected capacity change from 0 to 256
[  536.359703][   T26] audit: type=1326 audit(534.631:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10065 comm="syz.7.1226" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef61effe59 code=0x7ffc0000
[  536.641370][T10091] loop7: detected capacity change from 0 to 1024
[  536.884185][T10081] FAT-fs (loop3): Directory bread(block 64) failed
[  537.029420][T10091] EXT4-fs (loop7): ext4_check_descriptors: Checksum for group 0 failed (46272!=20869)
[  537.151675][T10081] FAT-fs (loop3): Directory bread(block 65) failed
[  537.155111][   T26] audit: type=1326 audit(534.631:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10065 comm="syz.7.1226" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=28 compat=0 ip=0x7fef61effe59 code=0x7ffc0000
[  537.168486][T10091] EXT4-fs (loop7): corrupt root inode, run e2fsck
[  537.182406][   T26] audit: type=1326 audit(534.681:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10065 comm="syz.7.1226" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef61effe59 code=0x7ffc0000
[  537.188656][T10091] EXT4-fs (loop7): mount failed
[  537.218040][T10081] FAT-fs (loop3): Directory bread(block 66) failed
[  537.257029][T10081] FAT-fs (loop3): Directory bread(block 67) failed
[  537.268078][T10085] FAT-fs (loop6): Directory bread(block 64) failed
[  537.326716][T10081] FAT-fs (loop3): Directory bread(block 68) failed
[  537.338940][T10085] FAT-fs (loop6): Directory bread(block 65) failed
[  537.342971][T10081] FAT-fs (loop3): Directory bread(block 69) failed
[  537.364136][   T26] audit: type=1326 audit(534.681:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10065 comm="syz.7.1226" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7fef61effe59 code=0x7ffc0000
[  537.393783][T10081] FAT-fs (loop3): Directory bread(block 70) failed
[  537.411266][T10081] FAT-fs (loop3): Directory bread(block 71) failed
[  537.414382][T10085] FAT-fs (loop6): Directory bread(block 66) failed
[  537.451854][T10081] FAT-fs (loop3): Directory bread(block 72) failed
[  537.452494][T10085] FAT-fs (loop6): Directory bread(block 67) failed
[  537.481816][   T26] audit: type=1326 audit(534.681:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10065 comm="syz.7.1226" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef61effe59 code=0x7ffc0000
[  537.529330][T10081] FAT-fs (loop3): Directory bread(block 73) failed
[  537.563358][T10085] FAT-fs (loop6): Directory bread(block 68) failed
[  537.569935][T10085] FAT-fs (loop6): Directory bread(block 69) failed
[  537.592354][T10085] FAT-fs (loop6): Directory bread(block 70) failed
[  537.623012][T10085] FAT-fs (loop6): Directory bread(block 71) failed
[  537.629653][T10085] FAT-fs (loop6): Directory bread(block 72) failed
[  537.654626][T10085] FAT-fs (loop6): Directory bread(block 73) failed
[  537.661297][   T26] audit: type=1326 audit(534.681:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10065 comm="syz.7.1226" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7fef61effe59 code=0x7ffc0000
[  537.833418][   T26] audit: type=1326 audit(534.681:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10065 comm="syz.7.1226" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef61effe59 code=0x7ffc0000
[  537.857266][   T26] audit: type=1326 audit(534.681:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10065 comm="syz.7.1226" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef61effe59 code=0x7ffc0000
[  538.091505][T10110] attempt to access beyond end of device
[  538.091505][T10110] loop3: rw=524288, want=1164, limit=256
[  538.103004][T10110] attempt to access beyond end of device
[  538.103004][T10110] loop3: rw=0, want=1164, limit=256
[  539.128413][T10105] loop4: detected capacity change from 0 to 512
[  539.413999][T10105] EXT4-fs error (device loop4): ext4_iget_extra_inode:4573: inode #15: comm syz.4.1230: corrupted in-inode xattr
[  539.431815][T10125] loop3: detected capacity change from 0 to 1024
[  539.489724][T10105] EXT4-fs (loop4): Remounting filesystem read-only
[  539.517144][T10125] EXT4-fs (loop3): couldn't mount as ext2 due to feature incompatibilities
[  539.551385][T10105] EXT4-fs error (device loop4): ext4_orphan_get:1411: comm syz.4.1230: couldn't read orphan inode 15 (err -117)
[  539.564354][T10128] loop6: detected capacity change from 0 to 1024
[  539.599686][T10128] EXT4-fs (loop6): couldn't mount as ext2 due to feature incompatibilities
[  539.669003][T10105] EXT4-fs (loop4): Remounting filesystem read-only
[  539.717149][T10105] EXT4-fs (loop4): mounted filesystem without journal. Opts: acl,norecovery,acl,noload,delalloc,resuid=0x0000000000000000,discard,minixdf,min_batch_time=0x000000007fffffff,errors=remount-ro,. Quota mode: none.
[  539.971485][T10102] loop7: detected capacity change from 0 to 40427
[  540.078849][T10102] F2FS-fs (loop7): Invalid SB checksum offset: 0
[  540.096662][T10102] F2FS-fs (loop7): Can't find valid F2FS filesystem in 2th superblock
[  540.114838][T10139] loop9: detected capacity change from 0 to 4096
[  540.144558][T10102] F2FS-fs (loop7): invalid crc value
[  540.180847][T10139] EXT4-fs (loop9): Quota format mount options ignored when QUOTA feature is enabled
[  540.228503][T10102] F2FS-fs (loop7): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437)
[  540.246748][T10139] EXT4-fs (loop9): inline encryption not supported
[  540.295046][T10139] EXT4-fs (loop9): Test dummy encryption mode enabled
[  540.361423][T10139] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c198, mo2=0003]
[  540.393702][T10139] System zones: 0-5
[  540.813740][ T5045] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  540.852198][T10139] EXT4-fs (loop9): mounted filesystem without journal. Opts: debug,jqfmt=vfsv0,inlinecrypt,debug,test_dummy_encryption=v1,norecovery,delalloc,nogrpid,minixdf,,errors=continue. Quota mode: writeback.
[  541.328518][T10161] loop3: detected capacity change from 0 to 256
[  541.430988][ T5045] usb 5-1: Using ep0 maxpacket: 16
[  541.605531][T10161] FAT-fs (loop3): Directory bread(block 64) failed
[  541.628151][T10161] FAT-fs (loop3): Directory bread(block 65) failed
[  541.643277][ T5045] usb 5-1: config 1 has an invalid descriptor of length 191, skipping remainder of the config
[  541.650624][T10161] FAT-fs (loop3): Directory bread(block 66) failed
[  541.662581][T10161] FAT-fs (loop3): Directory bread(block 67) failed
[  541.672986][ T5045] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  541.703125][T10161] FAT-fs (loop3): Directory bread(block 68) failed
[  541.709699][T10161] FAT-fs (loop3): Directory bread(block 69) failed
[  541.771277][T10175] loop9: detected capacity change from 0 to 512
[  541.776325][T10161] FAT-fs (loop3): Directory bread(block 70) failed
[  541.817529][T10161] FAT-fs (loop3): Directory bread(block 71) failed
[  541.839692][T10175] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  541.843361][T10161] FAT-fs (loop3): Directory bread(block 72) failed
[  541.892431][T10161] FAT-fs (loop3): Directory bread(block 73) failed
[  541.903169][ T5045] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  541.907230][T10175] EXT4-fs (loop9): 1 truncate cleaned up
[  541.912227][ T5045] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  541.912250][ T5045] usb 5-1: Product: syz
[  541.912264][ T5045] usb 5-1: Manufacturer: syz
[  541.912278][ T5045] usb 5-1: SerialNumber: syz
[  541.926159][T10175] EXT4-fs (loop9): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  541.961314][T10175] EXT4-fs error (device loop9) in ext4_reserve_inode_write:5873: Corrupt filesystem
[  541.992785][T10175] EXT4-fs error (device loop9): __ext4_new_inode:1356: inode #18: comm syz.9.1243: mark_inode_dirty error
[  542.009216][T10175] EXT4-fs error (device loop9) in __ext4_new_inode:1358: Corrupt filesystem
[  542.020897][T10175] EXT4-fs error (device loop9) in ext4_reserve_inode_write:5873: Corrupt filesystem
[  542.032336][T10182] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1244'.
[  542.037798][T10175] EXT4-fs error (device loop9): ext4_evict_inode:284: inode #18: comm syz.9.1243: mark_inode_dirty error
[  542.093416][T10175] EXT4-fs warning (device loop9): ext4_evict_inode:287: couldn't mark inode dirty (err -117)
[  542.343177][T10191] loop6: detected capacity change from 0 to 512
[  542.479410][T10191] EXT4-fs error (device loop6): ext4_iget_extra_inode:4573: inode #15: comm syz.6.1245: corrupted in-inode xattr
[  542.502964][T10191] EXT4-fs error (device loop6): ext4_orphan_get:1411: comm syz.6.1245: couldn't read orphan inode 15 (err -117)
[  542.543797][T10191] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  542.593193][ T5045] usb 5-1: 0:2 : does not exist
[  542.656043][ T5045] usb 5-1: USB disconnect, device number 2
[  542.999385][ T6534] udevd[6534]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  543.200127][T10207] loop9: detected capacity change from 0 to 256
[  543.263680][T10207] FAT-fs (loop9): Directory bread(block 64) failed
[  543.278447][T10207] FAT-fs (loop9): Directory bread(block 65) failed
[  543.287987][T10207] FAT-fs (loop9): Directory bread(block 66) failed
[  543.304697][T10207] FAT-fs (loop9): Directory bread(block 67) failed
[  543.320736][T10207] FAT-fs (loop9): Directory bread(block 68) failed
[  543.353120][T10207] FAT-fs (loop9): Directory bread(block 69) failed
[  543.386351][T10207] FAT-fs (loop9): Directory bread(block 70) failed
[  543.406911][T10216] loop4: detected capacity change from 0 to 1024
[  543.414449][T10207] FAT-fs (loop9): Directory bread(block 71) failed
[  543.441120][T10207] FAT-fs (loop9): Directory bread(block 72) failed
[  543.457686][T10216] EXT4-fs (loop4): couldn't mount as ext2 due to feature incompatibilities
[  543.463021][T10207] FAT-fs (loop9): Directory bread(block 73) failed
[  543.848774][T10226] attempt to access beyond end of device
[  543.848774][T10226] loop9: rw=0, want=1164, limit=256
[  544.819769][T10238] loop9: detected capacity change from 0 to 512
[  545.086460][T10238] EXT4-fs error (device loop9): ext4_iget_extra_inode:4573: inode #15: comm syz.9.1253: corrupted in-inode xattr
[  545.166202][T10244] loop7: detected capacity change from 0 to 4096
[  545.216315][T10244] EXT4-fs (loop7): Quota format mount options ignored when QUOTA feature is enabled
[  545.234847][T10238] EXT4-fs (loop9): Remounting filesystem read-only
[  545.261831][T10244] EXT4-fs (loop7): inline encryption not supported
[  545.282124][T10244] EXT4-fs (loop7): Test dummy encryption mode enabled
[  545.303038][T10238] EXT4-fs error (device loop9): ext4_orphan_get:1411: comm syz.9.1253: couldn't read orphan inode 15 (err -117)
[  545.353463][T10238] EXT4-fs (loop9): Remounting filesystem read-only
[  545.361239][T10244] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c198, mo2=0003]
[  545.433415][T10249] loop4: detected capacity change from 0 to 2048
[  545.453061][T10244] System zones: 0-5
[  545.477381][T10238] EXT4-fs (loop9): mounted filesystem without journal. Opts: acl,norecovery,acl,noload,delalloc,resuid=0x0000000000000000,discard,minixdf,min_batch_time=0x000000007fffffff,errors=remount-ro,. Quota mode: none.
[  545.523608][T10244] EXT4-fs (loop7): mounted filesystem without journal. Opts: debug,jqfmt=vfsv0,inlinecrypt,debug,test_dummy_encryption=v1,norecovery,delalloc,nogrpid,minixdf,,errors=continue. Quota mode: writeback.
[  545.598798][T10249] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  545.838914][T10240] loop6: detected capacity change from 0 to 40427
[  545.941082][T10240] F2FS-fs (loop6): Invalid SB checksum offset: 0
[  546.037298][T10240] F2FS-fs (loop6): Can't find valid F2FS filesystem in 2th superblock
[  546.079950][T10240] F2FS-fs (loop6): invalid crc value
[  546.130831][T10262] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1256'.
[  546.223602][T10240] F2FS-fs (loop6): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437)
[  546.313298][T10278] virtiofs: Unexpected value for 'dax'
[  547.011055][  T144] attempt to access beyond end of device
[  547.011055][  T144] loop3: rw=1, want=1832, limit=256
[  547.085630][  T144] attempt to access beyond end of device
[  547.085630][  T144] loop3: rw=1, want=2512, limit=256
[  547.196860][T10240] F2FS-fs (loop6): Try to recover 2th superblock, ret: 0
[  547.213445][T10240] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  547.315117][T10293] loop3: detected capacity change from 0 to 256
[  547.707814][T10293] FAT-fs (loop3): Directory bread(block 64) failed
[  547.758441][T10293] FAT-fs (loop3): Directory bread(block 65) failed
[  547.831501][T10293] FAT-fs (loop3): Directory bread(block 66) failed
[  547.903432][T10293] FAT-fs (loop3): Directory bread(block 67) failed
[  547.946539][T10293] FAT-fs (loop3): Directory bread(block 68) failed
[  547.953720][T10293] FAT-fs (loop3): Directory bread(block 69) failed
[  547.960980][T10293] FAT-fs (loop3): Directory bread(block 70) failed
[  547.970007][T10293] FAT-fs (loop3): Directory bread(block 71) failed
[  547.994453][T10293] FAT-fs (loop3): Directory bread(block 72) failed
[  548.001022][T10293] FAT-fs (loop3): Directory bread(block 73) failed
[  548.029996][   T26] kauditd_printk_skb: 18 callbacks suppressed
[  548.030010][   T26] audit: type=1326 audit(548.411:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10301 comm="syz.4.1265" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feaf64e1e59 code=0x7ffc0000
[  548.141321][   T26] audit: type=1326 audit(548.411:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10301 comm="syz.4.1265" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7feaf64e1e59 code=0x7ffc0000
[  548.909632][   T26] audit: type=1326 audit(548.411:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10301 comm="syz.4.1265" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feaf64e1e59 code=0x7ffc0000
[  549.042957][   T26] audit: type=1326 audit(548.411:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10301 comm="syz.4.1265" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=28 compat=0 ip=0x7feaf64e1e59 code=0x7ffc0000
[  549.308929][   T26] audit: type=1326 audit(548.411:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10301 comm="syz.4.1265" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feaf64e1e59 code=0x7ffc0000
[  549.332946][   T26] audit: type=1326 audit(548.411:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10301 comm="syz.4.1265" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7feaf64e1e59 code=0x7ffc0000
[  549.359269][T10318] netlink: 8 bytes leftover after parsing attributes in process `syz.9.1267'.
[  549.370740][T10317] attempt to access beyond end of device
[  549.370740][T10317] loop3: rw=524288, want=1164, limit=256
[  549.410232][T10323] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  549.497716][   T26] audit: type=1326 audit(548.411:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10301 comm="syz.4.1265" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feaf64e1e59 code=0x7ffc0000
[  549.527020][T10322] attempt to access beyond end of device
[  549.527020][T10322] loop3: rw=0, want=1164, limit=256
[  549.546187][   T26] audit: type=1326 audit(548.411:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10301 comm="syz.4.1265" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7feaf64e1e59 code=0x7ffc0000
[  549.710796][   T26] audit: type=1326 audit(548.411:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10301 comm="syz.4.1265" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feaf64e1e59 code=0x7ffc0000
[  549.749607][T10337] loop9: detected capacity change from 0 to 256
[  549.768937][   T26] audit: type=1326 audit(548.411:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10301 comm="syz.4.1265" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feaf64e1e59 code=0x7ffc0000
[  549.846247][T10339] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1271'.
[  549.897808][T10337] FAT-fs (loop9): Directory bread(block 64) failed
[  549.917531][T10337] FAT-fs (loop9): Directory bread(block 65) failed
[  549.958189][T10337] FAT-fs (loop9): Directory bread(block 66) failed
[  549.983094][   T13] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  549.998179][T10337] FAT-fs (loop9): Directory bread(block 67) failed
[  550.029850][T10337] FAT-fs (loop9): Directory bread(block 68) failed
[  550.060590][T10337] FAT-fs (loop9): Directory bread(block 69) failed
[  550.090927][T10337] FAT-fs (loop9): Directory bread(block 70) failed
[  550.122254][T10337] FAT-fs (loop9): Directory bread(block 71) failed
[  550.151620][T10337] FAT-fs (loop9): Directory bread(block 72) failed
[  550.173007][T10337] FAT-fs (loop9): Directory bread(block 73) failed
[  550.233015][   T13] usb 5-1: Using ep0 maxpacket: 32
[  550.353268][   T13] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  550.370485][   T13] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  550.380708][T10345] loop6: detected capacity change from 0 to 4096
[  550.419047][T10345] EXT4-fs (loop6): Quota format mount options ignored when QUOTA feature is enabled
[  550.429375][   T13] usb 5-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  550.440815][T10345] EXT4-fs (loop6): inline encryption not supported
[  550.449034][   T13] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  550.459763][T10345] EXT4-fs (loop6): Test dummy encryption mode enabled
[  550.490082][   T13] usb 5-1: config 0 descriptor??
[  550.501812][T10345] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c198, mo2=0003]
[  550.516315][T10345] System zones: 0-5
[  550.536902][T10345] EXT4-fs (loop6): mounted filesystem without journal. Opts: debug,jqfmt=vfsv0,inlinecrypt,debug,test_dummy_encryption=v1,norecovery,delalloc,nogrpid,minixdf,,errors=continue. Quota mode: writeback.
[  550.539221][   T13] hub 5-1:0.0: USB hub found
[  550.748189][   T13] hub 5-1:0.0: 1 port detected
[  551.787871][   T13] hub 5-1:0.0: hub_ext_port_status failed (err = 0)
[  551.792874][ T4211] attempt to access beyond end of device
[  551.792874][ T4211] loop9: rw=1, want=1832, limit=256
[  552.082990][   T23] usb 5-1: USB disconnect, device number 3
[  552.100650][ T4211] attempt to access beyond end of device
[  552.100650][ T4211] loop9: rw=1, want=2512, limit=256
[  553.760536][T10410] loop4: detected capacity change from 0 to 256
[  553.864884][T10407] loop6: detected capacity change from 0 to 2048
[  553.885555][T10410] FAT-fs (loop4): Directory bread(block 64) failed
[  553.892131][T10410] FAT-fs (loop4): Directory bread(block 65) failed
[  553.907475][T10421] loop7: detected capacity change from 0 to 256
[  553.946345][T10410] FAT-fs (loop4): Directory bread(block 66) failed
[  553.955259][T10423] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1285'.
[  554.003146][T10410] FAT-fs (loop4): Directory bread(block 67) failed
[  554.017294][ T7249]  loop6: p2 < > p4
[  554.021388][T10410] FAT-fs (loop4): Directory bread(block 68) failed
[  554.036657][ T7249] loop6: p4 size 262144 extends beyond EOD, truncated
[  554.051768][T10410] FAT-fs (loop4): Directory bread(block 69) failed
[  554.084121][T10410] FAT-fs (loop4): Directory bread(block 70) failed
[  554.173632][T10421] FAT-fs (loop7): Directory bread(block 64) failed
[  554.189275][T10410] FAT-fs (loop4): Directory bread(block 71) failed
[  554.236214][T10421] FAT-fs (loop7): Directory bread(block 65) failed
[  554.259873][T10410] FAT-fs (loop4): Directory bread(block 72) failed
[  554.269563][T10421] FAT-fs (loop7): Directory bread(block 66) failed
[  554.276477][T10421] FAT-fs (loop7): Directory bread(block 67) failed
[  554.279728][T10407]  loop6: p2 < > p4
[  554.283708][T10421] FAT-fs (loop7): Directory bread(block 68) failed
[  554.294199][T10421] FAT-fs (loop7): Directory bread(block 69) failed
[  554.297967][T10407] loop6: p4 size 262144 extends beyond EOD, 
[  554.300792][T10421] FAT-fs (loop7): Directory bread(block 70) failed
[  554.313965][T10407] truncated
[  554.317837][T10410] FAT-fs (loop4): Directory bread(block 73) failed
[  554.333134][T10428] loop9: detected capacity change from 0 to 1024
[  554.351468][T10421] FAT-fs (loop7): Directory bread(block 71) failed
[  554.359720][T10421] FAT-fs (loop7): Directory bread(block 72) failed
[  554.398559][T10428] EXT4-fs (loop9): couldn't mount as ext2 due to feature incompatibilities
[  554.411993][T10421] FAT-fs (loop7): Directory bread(block 73) failed
[  554.666998][T10430] attempt to access beyond end of device
[  554.666998][T10430] loop4: rw=524288, want=1164, limit=256
[  554.678512][T10430] attempt to access beyond end of device
[  554.678512][T10430] loop4: rw=0, want=1164, limit=256
[  554.690415][T10430] attempt to access beyond end of device
[  554.690415][T10430] loop4: rw=0, want=1164, limit=256
[  554.702027][T10430] attempt to access beyond end of device
[  554.702027][T10430] loop4: rw=0, want=1164, limit=256
[  554.712768][T10430] Buffer I/O error on dev loop4, logical block 290, async page read
[  554.728240][   T26] kauditd_printk_skb: 17 callbacks suppressed
[  554.728253][   T26] audit: type=1800 audit(555.071:170): pid=10430 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1283" name="file0" dev="loop4" ino=1049170 res=0 errno=0
[  554.831589][T10436] attempt to access beyond end of device
[  554.831589][T10436] loop7: rw=524288, want=1164, limit=256
[  554.842945][T10436] attempt to access beyond end of device
[  554.842945][T10436] loop7: rw=0, want=1164, limit=256
[  555.049724][   T26] audit: type=1800 audit(555.241:171): pid=10436 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.7.1287" name="file0" dev="loop7" ino=1049171 res=0 errno=0
[  555.168247][ T6534] udevd[6534]: inotify_add_watch(7, /dev/loop6p2, 10) failed: No such file or directory
[  555.191147][ T7249] udevd[7249]: inotify_add_watch(7, /dev/loop6p4, 10) failed: No such file or directory
[  555.324779][ T7249] udevd[7249]: inotify_add_watch(7, /dev/loop6p4, 10) failed: No such file or directory
[  555.348811][ T6534] udevd[6534]: inotify_add_watch(7, /dev/loop6p2, 10) failed: No such file or directory
[  555.862941][ T4291] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  556.143033][ T4291] usb 4-1: Using ep0 maxpacket: 8
[  556.325783][ T4291] usb 4-1: unable to get BOS descriptor or descriptor too short
[  556.583087][ T4291] usb 4-1: config 1 interface 0 altsetting 9 bulk endpoint 0x1 has invalid maxpacket 1024
[  556.598330][ T4291] usb 4-1: config 1 interface 0 has no altsetting 0
[  556.833958][ T4291] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  556.901603][ T4291] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  557.043795][ T4291] usb 4-1: Product: syz
[  557.122045][ T4291] usb 4-1: Manufacturer: syz
[  557.207478][ T4291] usb 4-1: SerialNumber: syz
[  557.307809][T10485] loop9: detected capacity change from 0 to 256
[  557.400405][T10485] exFAT-fs (loop9): failed to load upcase table (idx : 0x00010000, chksum : 0x246f1341, utbl_chksum : 0xe619d30d)
[  557.443229][T10447] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  557.529453][T10485] exFAT-fs (loop9): invalid start cluster (14232327)
[  557.768937][T10495] loop9: detected capacity change from 0 to 128
[  557.784871][ T4291] usb 4-1: USB disconnect, device number 9
[  557.894425][T10495] EXT4-fs (loop9): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  558.638395][T10520] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1301'.
[  559.758232][   T26] audit: type=1326 audit(560.141:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10533 comm="syz.4.1305" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feaf64e1e59 code=0x7ffc0000
[  560.901846][   T26] audit: type=1326 audit(560.181:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10533 comm="syz.4.1305" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7feaf64e1e59 code=0x7ffc0000
[  560.931161][T10543] loop7: detected capacity change from 0 to 512
[  561.097732][T10543] EXT4-fs error (device loop7): ext4_orphan_get:1406: inode #15: comm syz.7.1308: iget: bad i_size value: 38620345925642
[  561.111750][T10508] loop3: detected capacity change from 0 to 40427
[  561.124067][T10543] EXT4-fs error (device loop7): ext4_orphan_get:1411: comm syz.7.1308: couldn't read orphan inode 15 (err -117)
[  561.131680][   T26] audit: type=1326 audit(560.181:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10533 comm="syz.4.1305" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feaf64e1e59 code=0x7ffc0000
[  561.164046][T10543] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  561.180154][T10508] F2FS-fs (loop3): Invalid SB checksum offset: 0
[  561.184895][   T26] audit: type=1326 audit(560.191:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10533 comm="syz.4.1305" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feaf64e1e59 code=0x7ffc0000
[  561.206469][T10508] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock
[  561.211720][   T26] audit: type=1326 audit(560.191:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10533 comm="syz.4.1305" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=28 compat=0 ip=0x7feaf64e1e59 code=0x7ffc0000
[  561.242755][   T26] audit: type=1326 audit(560.191:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10533 comm="syz.4.1305" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feaf64e1e59 code=0x7ffc0000
[  561.267561][   T26] audit: type=1326 audit(560.191:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10533 comm="syz.4.1305" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feaf64e1e59 code=0x7ffc0000
[  561.299674][   T26] audit: type=1326 audit(560.191:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10533 comm="syz.4.1305" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7feaf64e1e59 code=0x7ffc0000
[  561.329988][T10542] EXT4-fs error (device loop7): ext4_validate_block_bitmap:429: comm syz.7.1308: bg 0: block 5: invalid block bitmap
[  561.348529][   T26] audit: type=1326 audit(560.191:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10533 comm="syz.4.1305" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feaf64e1e59 code=0x7ffc0000
[  561.405707][T10508] F2FS-fs (loop3): invalid crc value
[  561.419875][T10508] F2FS-fs (loop3): Failed to start F2FS issue_checkpoint_thread (-12)
[  561.727966][T10543] EXT4-fs (loop7): shut down requested (0)
[  561.889599][   T26] audit: type=1326 audit(560.191:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10533 comm="syz.4.1305" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7feaf64e1e59 code=0x7ffc0000
[  563.333476][ T1431] ieee802154 phy0 wpan0: encryption failed: -22
[  563.339810][ T1431] ieee802154 phy1 wpan1: encryption failed: -22
[  563.420184][ T1108] usb 10-1: new high-speed USB device number 6 using dummy_hcd
[  563.728066][T10587] netlink: 12 bytes leftover after parsing attributes in process `syz.7.1315'.
[  563.873036][ T1108] usb 10-1: Using ep0 maxpacket: 16
[  563.993172][ T1108] usb 10-1: config 1 has an invalid descriptor of length 191, skipping remainder of the config
[  564.026245][ T1108] usb 10-1: config 1 has 1 interface, different from the descriptor's value: 3
[  564.065549][T10556] loop6: detected capacity change from 0 to 40427
[  564.111042][T10556] F2FS-fs (loop6): Small segment_count (9 < 1 * 24)
[  564.142782][T10556] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  564.223119][ T1108] usb 10-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  564.544313][ T1108] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  564.548162][T10556] F2FS-fs (loop6): Failed to start F2FS issue_checkpoint_thread (-12)
[  564.553326][ T1108] usb 10-1: Product: syz
[  564.583512][ T1108] usb 10-1: Manufacturer: syz
[  564.603040][ T1108] usb 10-1: SerialNumber: syz
[  565.543101][ T1108] usb 10-1: can't set config #1, error -71
[  565.579517][ T1108] usb 10-1: USB disconnect, device number 6
[  565.716862][T10608] loop6: detected capacity change from 0 to 512
[  566.103696][T10608] EXT4-fs error (device loop6): ext4_iget_extra_inode:4573: inode #15: comm syz.6.1321: corrupted in-inode xattr
[  566.613122][T10608] EXT4-fs (loop6): Remounting filesystem read-only
[  566.661927][T10608] EXT4-fs error (device loop6): ext4_orphan_get:1411: comm syz.6.1321: couldn't read orphan inode 15 (err -117)
[  566.793358][T10608] EXT4-fs (loop6): Remounting filesystem read-only
[  566.998030][T10608] EXT4-fs (loop6): mounted filesystem without journal. Opts: acl,norecovery,acl,noload,delalloc,resuid=0x0000000000000000,discard,minixdf,min_batch_time=0x000000007fffffff,errors=remount-ro,. Quota mode: none.
[  567.616634][T10632] loop9: detected capacity change from 0 to 1024
[  567.844663][T10632] EXT4-fs (loop9): Ignoring removed orlov option
[  567.875941][T10635] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1329'.
[  568.001515][T10632] EXT4-fs (loop9): mounted filesystem without journal. Opts: block_validity,bsddf,sysvgroups,norecovery,debug_want_extra_isize=0x0000000000000080,orlov,nogrpid,noauto_da_alloc,norecovery,,errors=continue. Quota mode: none.
[  568.130157][T10614] loop4: detected capacity change from 0 to 40427
[  568.141204][T10639] loop7: detected capacity change from 0 to 1024
[  568.178858][T10614] F2FS-fs (loop4): Invalid SB checksum offset: 0
[  568.188531][T10614] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock
[  568.201669][T10639] EXT4-fs (loop7): couldn't mount as ext2 due to feature incompatibilities
[  568.227379][T10614] F2FS-fs (loop4): invalid crc value
[  568.267434][T10614] F2FS-fs (loop4): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437)
[  569.425216][T10665] loop3: detected capacity change from 0 to 1024
[  569.526588][T10665] EXT4-fs (loop3): couldn't mount as ext2 due to feature incompatibilities
[  569.599616][T10647] bridge0: port 2(bridge_slave_1) entered disabled state
[  569.606948][T10647] bridge0: port 1(bridge_slave_0) entered disabled state
[  571.293551][ T1108] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  571.613079][ T1108] usb 5-1: Using ep0 maxpacket: 16
[  571.733514][ T1108] usb 5-1: config 1 has an invalid descriptor of length 191, skipping remainder of the config
[  571.765757][ T1108] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  571.960446][T10647] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  572.143134][ T1108] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  572.157916][ T1108] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  572.194744][ T1108] usb 5-1: Product: syz
[  572.195327][T10647] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  572.215236][ T1108] usb 5-1: Manufacturer: syz
[  572.226117][ T1108] usb 5-1: SerialNumber: syz
[  572.910753][T10717] loop7: detected capacity change from 0 to 256
[  572.982928][T10717] FAT-fs (loop7): Directory bread(block 64) failed
[  573.043119][T10717] FAT-fs (loop7): Directory bread(block 65) failed
[  573.071183][T10717] FAT-fs (loop7): Directory bread(block 66) failed
[  573.188278][T10717] FAT-fs (loop7): Directory bread(block 67) failed
[  573.352490][T10717] FAT-fs (loop7): Directory bread(block 68) failed
[  573.481174][T10717] FAT-fs (loop7): Directory bread(block 69) failed
[  573.647261][T10717] FAT-fs (loop7): Directory bread(block 70) failed
[  573.874914][T10717] FAT-fs (loop7): Directory bread(block 71) failed
[  574.029052][T10717] FAT-fs (loop7): Directory bread(block 72) failed
[  574.190392][T10717] FAT-fs (loop7): Directory bread(block 73) failed
[  574.593195][ T1108] usb 5-1: 0:2 : does not exist
[  574.607314][ T1108] usb 5-1: USB disconnect, device number 4
[  576.936824][T10736] loop4: detected capacity change from 0 to 256
[  577.014262][T10736] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  577.059324][T10736] FAT-fs (loop4): Filesystem has been set read-only
[  577.072916][T10736] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  577.113374][ T6534] udevd[6534]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  577.136748][ T4317] attempt to access beyond end of device
[  577.136748][ T4317] loop7: rw=1, want=1832, limit=256
[  577.161904][ T4317] attempt to access beyond end of device
[  577.161904][ T4317] loop7: rw=1, want=2512, limit=256
[  577.202966][T10736] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  577.232969][   T26] kauditd_printk_skb: 19 callbacks suppressed
[  577.232982][   T26] audit: type=1800 audit(577.611:201): pid=10736 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1346" name="file1" dev="loop4" ino=1049175 res=0 errno=0
[  577.476257][T10647] netdevsim netdevsim6 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  577.500041][T10647] netdevsim netdevsim6 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  577.522696][T10647] netdevsim netdevsim6 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  577.540362][T10647] netdevsim netdevsim6 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  578.740015][T10748] loop6: detected capacity change from 0 to 1024
[  578.791749][T10748] EXT4-fs (loop6): couldn't mount as ext2 due to feature incompatibilities
[  578.834145][T10749] loop4: detected capacity change from 0 to 4096
[  578.868497][T10749] EXT4-fs (loop4): Quota format mount options ignored when QUOTA feature is enabled
[  578.900416][T10749] EXT4-fs (loop4): inline encryption not supported
[  578.970707][T10749] EXT4-fs (loop4): Test dummy encryption mode enabled
[  579.132170][T10749] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c198, mo2=0003]
[  579.146188][T10749] System zones: 0-5
[  579.158458][T10749] EXT4-fs (loop4): mounted filesystem without journal. Opts: debug,jqfmt=vfsv0,inlinecrypt,debug,test_dummy_encryption=v1,norecovery,delalloc,nogrpid,minixdf,,errors=continue. Quota mode: writeback.
[  579.797567][   T26] audit: type=1800 audit(580.181:202): pid=10756 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1348" name="bus" dev="loop4" ino=18 res=0 errno=0
[  581.587992][T10776] loop9: detected capacity change from 0 to 256
[  581.670276][T10776] FAT-fs (loop9): Directory bread(block 64) failed
[  581.720354][T10776] FAT-fs (loop9): Directory bread(block 65) failed
[  581.733074][T10776] FAT-fs (loop9): Directory bread(block 66) failed
[  581.739655][T10776] FAT-fs (loop9): Directory bread(block 67) failed
[  581.853085][ T5045] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  582.005914][T10776] FAT-fs (loop9): Directory bread(block 68) failed
[  582.125589][T10776] FAT-fs (loop9): Directory bread(block 69) failed
[  582.193684][ T5045] usb 5-1: Using ep0 maxpacket: 16
[  582.321454][T10776] FAT-fs (loop9): Directory bread(block 70) failed
[  582.373962][ T5045] usb 5-1: config 1 has an invalid descriptor of length 191, skipping remainder of the config
[  582.383126][T10776] FAT-fs (loop9): Directory bread(block 71) failed
[  582.396977][T10776] FAT-fs (loop9): Directory bread(block 72) failed
[  582.403883][T10776] FAT-fs (loop9): Directory bread(block 73) failed
[  582.415003][ T5045] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  582.643744][ T5045] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  583.190226][T10779] loop3: detected capacity change from 0 to 40427
[  583.248447][ T5045] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  583.256764][ T5045] usb 5-1: Product: syz
[  583.261005][ T5045] usb 5-1: Manufacturer: syz
[  583.266030][ T5045] usb 5-1: SerialNumber: syz
[  583.280341][  T154] attempt to access beyond end of device
[  583.280341][  T154] loop9: rw=1, want=1832, limit=256
[  583.310062][T10779] F2FS-fs (loop3): Invalid SB checksum offset: 0
[  583.331917][  T154] attempt to access beyond end of device
[  583.331917][  T154] loop9: rw=1, want=2512, limit=256
[  583.398060][T10779] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock
[  583.444575][T10779] F2FS-fs (loop3): invalid crc value
[  583.488787][T10779] F2FS-fs (loop3): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437)
[  583.764487][ T5045] usb 5-1: 0:2 : does not exist
[  584.206224][ T5045] usb 5-1: USB disconnect, device number 5
[  584.306301][T10801] loop6: detected capacity change from 0 to 512
[  584.344298][T10779] F2FS-fs (loop3): Try to recover 2th superblock, ret: 0
[  584.351386][T10779] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  584.397039][T10801] EXT4-fs (loop6): orphan cleanup on readonly fs
[  584.414018][T10801] EXT4-fs error (device loop6): ext4_find_extent:893: inode #4: comm syz.6.1359: inode has invalid extent depth: 7
[  584.474454][T10801] Quota error (device loop6): v2_read_header: Failed header read: expected=8 got=-117
[  584.484286][T10801] EXT4-fs warning (device loop6): ext4_enable_quotas:6488: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  584.597765][T10801] EXT4-fs (loop6): Cannot turn on quotas: error -22
[  584.650652][ T7249] udevd[7249]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  584.673779][T10801] EXT4-fs (loop6): mounted filesystem without journal. Opts: block_validity,nojournal_checksum,,errors=continue. Quota mode: writeback.
[  587.621376][T10822] loop9: detected capacity change from 0 to 4096
[  588.015208][T10822] EXT4-fs (loop9): Quota format mount options ignored when QUOTA feature is enabled
[  588.095981][T10822] EXT4-fs (loop9): inline encryption not supported
[  588.146639][T10822] EXT4-fs (loop9): Test dummy encryption mode enabled
[  588.236711][T10822] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c198, mo2=0003]
[  588.288952][T10822] System zones: 0-5
[  588.363785][T10822] EXT4-fs (loop9): mounted filesystem without journal. Opts: debug,jqfmt=vfsv0,inlinecrypt,debug,test_dummy_encryption=v1,norecovery,delalloc,nogrpid,minixdf,,errors=continue. Quota mode: writeback.
[  588.590057][T10835] loop7: detected capacity change from 0 to 1024
[  589.487965][   T26] audit: type=1800 audit(589.871:203): pid=10839 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.1363" name="bus" dev="loop9" ino=18 res=0 errno=0
[  589.568990][T10835] EXT4-fs (loop7): couldn't mount as ext2 due to feature incompatibilities
[  592.374099][T10875] loop9: detected capacity change from 0 to 256
[  593.474688][T10885] loop4: detected capacity change from 0 to 16
[  594.167024][T10889] loop3: detected capacity change from 0 to 512
[  594.221835][T10875] FAT-fs (loop9): Directory bread(block 64) failed
[  594.244228][T10875] FAT-fs (loop9): Directory bread(block 65) failed
[  594.251098][T10875] FAT-fs (loop9): Directory bread(block 66) failed
[  594.342659][T10875] FAT-fs (loop9): Directory bread(block 67) failed
[  594.398472][T10875] FAT-fs (loop9): Directory bread(block 68) failed
[  594.407539][T10889] EXT4-fs (loop3): mounted filesystem without journal. Opts: grpjquota=,max_dir_size_kb=0x0000000000000a32,abort,,errors=continue. Quota mode: writeback.
[  594.483393][T10885] erofs: (device loop4): mounted with root inode @ nid 36.
[  594.530356][T10875] FAT-fs (loop9): Directory bread(block 69) failed
[  594.613523][T10875] FAT-fs (loop9): Directory bread(block 70) failed
[  594.683383][T10875] FAT-fs (loop9): Directory bread(block 71) failed
[  594.690052][T10875] FAT-fs (loop9): Directory bread(block 72) failed
[  594.789776][T10875] FAT-fs (loop9): Directory bread(block 73) failed
[  595.134770][T10873] loop6: detected capacity change from 0 to 40427
[  595.258728][T10873] F2FS-fs (loop6): Invalid SB checksum offset: 0
[  595.321092][T10873] F2FS-fs (loop6): Can't find valid F2FS filesystem in 2th superblock
[  595.481064][T10873] F2FS-fs (loop6): invalid crc value
[  595.523445][T10873] F2FS-fs (loop6): Failed to start F2FS issue_checkpoint_thread (-12)
[  595.588964][T10906] loop7: detected capacity change from 0 to 4096
[  595.896554][T10906] EXT4-fs (loop7): Quota format mount options ignored when QUOTA feature is enabled
[  596.124854][T10906] EXT4-fs (loop7): inline encryption not supported
[  596.318325][T10906] EXT4-fs (loop7): Test dummy encryption mode enabled
[  596.415027][T10906] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c198, mo2=0003]
[  596.440384][T10906] System zones: 0-5
[  596.478231][T10906] EXT4-fs (loop7): mounted filesystem without journal. Opts: debug,jqfmt=vfsv0,inlinecrypt,debug,test_dummy_encryption=v1,norecovery,delalloc,nogrpid,minixdf,,errors=continue. Quota mode: writeback.
[  600.460946][   T26] audit: type=1800 audit(600.841:204): pid=10930 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.1380" name="bus" dev="loop7" ino=18 res=0 errno=0
[  601.879270][T10947] loop7: detected capacity change from 0 to 1024
[  601.979318][T10947] EXT4-fs (loop7): couldn't mount as ext2 due to feature incompatibilities
[  603.820515][T10968] loop4: detected capacity change from 0 to 1024
[  603.919573][T10968] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (46272!=20869)
[  604.063301][T10968] EXT4-fs (loop4): corrupt root inode, run e2fsck
[  604.070033][T10968] EXT4-fs (loop4): mount failed
[  604.362918][   T13] usb 7-1: new high-speed USB device number 12 using dummy_hcd
[  604.472209][T10974] loop7: detected capacity change from 0 to 1024
[  604.706439][T10974] EXT4-fs (loop7): couldn't mount as ext2 due to feature incompatibilities
[  604.803225][   T13] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  604.827660][   T13] usb 7-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  605.335514][   T13] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  605.347420][   T13] usb 7-1: config 0 descriptor??
[  605.504047][ T6649] attempt to access beyond end of device
[  605.504047][ T6649] loop9: rw=1, want=1832, limit=256
[  605.532191][ T6649] attempt to access beyond end of device
[  605.532191][ T6649] loop9: rw=1, want=2512, limit=256
[  605.562271][T10987] loop4: detected capacity change from 0 to 4096
[  605.668775][T10972] loop3: detected capacity change from 0 to 40427
[  605.722986][   T13] usbhid 7-1:0.0: can't add hid device: -71
[  605.729109][   T13] usbhid: probe of 7-1:0.0 failed with error -71
[  605.759340][   T13] usb 7-1: USB disconnect, device number 12
[  605.806269][T10987] EXT4-fs (loop4): Quota format mount options ignored when QUOTA feature is enabled
[  605.877605][T10972] F2FS-fs (loop3): Invalid SB checksum offset: 0
[  605.883031][T10987] EXT4-fs (loop4): inline encryption not supported
[  605.886561][T10972] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock
[  605.890555][T10987] EXT4-fs (loop4): Test dummy encryption mode enabled
[  606.148249][T10972] F2FS-fs (loop3): invalid crc value
[  606.391916][T10972] F2FS-fs (loop3): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437)
[  606.429916][T10987] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c198, mo2=0003]
[  607.063126][T10987] System zones: 0-5
[  607.119753][T10987] EXT4-fs (loop4): mounted filesystem without journal. Opts: debug,jqfmt=vfsv0,inlinecrypt,debug,test_dummy_encryption=v1,norecovery,delalloc,nogrpid,minixdf,,errors=continue. Quota mode: writeback.
[  607.293967][   T26] audit: type=1326 audit(607.681:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11005 comm="syz.6.1397" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e7e6fbe59 code=0x7ffc0000
[  607.603109][   T26] audit: type=1326 audit(607.721:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11005 comm="syz.6.1397" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f6e7e6fbe59 code=0x7ffc0000
[  608.616352][   T26] audit: type=1326 audit(607.721:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11005 comm="syz.6.1397" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e7e6fbe59 code=0x7ffc0000
[  609.965342][   T26] audit: type=1326 audit(607.721:208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11005 comm="syz.6.1397" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e7e6fbe59 code=0x7ffc0000
[  611.342568][   T26] audit: type=1326 audit(607.721:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11005 comm="syz.6.1397" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=28 compat=0 ip=0x7f6e7e6fbe59 code=0x7ffc0000
[  612.611852][   T26] audit: type=1326 audit(607.721:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11005 comm="syz.6.1397" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e7e6fbe59 code=0x7ffc0000
[  612.753314][   T26] audit: type=1326 audit(607.721:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11005 comm="syz.6.1397" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e7e6fbe59 code=0x7ffc0000
[  613.590765][   T26] audit: type=1326 audit(607.731:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11005 comm="syz.6.1397" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7f6e7e6fbe59 code=0x7ffc0000
[  613.626941][   T26] audit: type=1326 audit(607.731:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11005 comm="syz.6.1397" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e7e6fbe59 code=0x7ffc0000
[  613.841488][   T26] audit: type=1326 audit(607.731:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11005 comm="syz.6.1397" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e7e6fbe59 code=0x7ffc0000
[  614.039058][   T26] audit: type=1326 audit(607.731:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11005 comm="syz.6.1397" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7f6e7e6fbe59 code=0x7ffc0000
[  614.845128][T11064] loop3: detected capacity change from 0 to 256
[  614.917191][   T26] audit: type=1326 audit(607.731:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11005 comm="syz.6.1397" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e7e6fbe59 code=0x7ffc0000
[  615.239795][   T26] audit: type=1326 audit(607.731:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11005 comm="syz.6.1397" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e7e6fbe59 code=0x7ffc0000
[  615.629520][   T26] audit: type=1326 audit(607.731:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11005 comm="syz.6.1397" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=203 compat=0 ip=0x7f6e7e6fbe59 code=0x7ffc0000
[  615.981773][   T26] audit: type=1326 audit(607.731:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11005 comm="syz.6.1397" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e7e6fbe59 code=0x7ffc0000
[  619.118420][T11064] FAT-fs (loop3): Directory bread(block 64) failed
[  619.163001][T11064] FAT-fs (loop3): Directory bread(block 65) failed
[  619.193112][T11064] FAT-fs (loop3): Directory bread(block 66) failed
[  619.255923][T11064] FAT-fs (loop3): Directory bread(block 67) failed
[  619.263437][T11064] FAT-fs (loop3): Directory bread(block 68) failed
[  619.269988][T11064] FAT-fs (loop3): Directory bread(block 69) failed
[  619.276780][T11064] FAT-fs (loop3): Directory bread(block 70) failed
[  619.283635][T11064] FAT-fs (loop3): Directory bread(block 71) failed
[  619.290361][T11064] FAT-fs (loop3): Directory bread(block 72) failed
[  619.305376][T11064] FAT-fs (loop3): Directory bread(block 73) failed
[  619.813224][T11089] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[  619.851370][T11089] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[  620.020203][T11108] loop4: detected capacity change from 0 to 256
[  620.400213][T11108] FAT-fs (loop4): Directory bread(block 64) failed
[  620.485648][T11108] FAT-fs (loop4): Directory bread(block 65) failed
[  620.560395][T11108] FAT-fs (loop4): Directory bread(block 66) failed
[  620.645091][T11108] FAT-fs (loop4): Directory bread(block 67) failed
[  620.784201][T11108] FAT-fs (loop4): Directory bread(block 68) failed
[  620.801035][T11108] FAT-fs (loop4): Directory bread(block 69) failed
[  620.818271][T11108] FAT-fs (loop4): Directory bread(block 70) failed
[  620.840887][T11108] FAT-fs (loop4): Directory bread(block 71) failed
[  620.867725][T11108] FAT-fs (loop4): Directory bread(block 72) failed
[  620.931151][T11108] FAT-fs (loop4): Directory bread(block 73) failed
[  621.770566][ T4211] attempt to access beyond end of device
[  621.770566][ T4211] loop4: rw=1, want=1832, limit=256
[  621.797128][ T4211] attempt to access beyond end of device
[  621.797128][ T4211] loop4: rw=1, want=2512, limit=256
[  621.808924][T11101] loop7: detected capacity change from 0 to 40427
[  623.499565][T11142] xt_hashlimit: size too large, truncated to 1048576
[  623.624360][T11147] loop4: detected capacity change from 0 to 512
[  623.988038][ T1431] ieee802154 phy0 wpan0: encryption failed: -22
[  623.994490][ T1431] ieee802154 phy1 wpan1: encryption failed: -22
[  625.554664][T11147] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  625.913867][T11179] loop7: detected capacity change from 0 to 1024
[  625.969301][T11177] xt_hashlimit: size too large, truncated to 1048576
[  626.089491][T11179] EXT4-fs (loop7): ext4_check_descriptors: Checksum for group 0 failed (46272!=20869)
[  626.185798][T11179] EXT4-fs (loop7): corrupt root inode, run e2fsck
[  626.192550][T11179] EXT4-fs (loop7): mount failed
[  626.500205][T11182] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  626.815172][T11182] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  630.103381][T11237] loop7: detected capacity change from 0 to 1024
[  630.187547][T11239] loop9: detected capacity change from 0 to 256
[  630.206992][T11237] EXT4-fs (loop7): couldn't mount as ext2 due to feature incompatibilities
[  630.263191][T11239] FAT-fs (loop9): Directory bread(block 64) failed
[  630.342976][T11239] FAT-fs (loop9): Directory bread(block 65) failed
[  630.349638][T11239] FAT-fs (loop9): Directory bread(block 66) failed
[  630.413067][T11239] FAT-fs (loop9): Directory bread(block 67) failed
[  630.419694][T11239] FAT-fs (loop9): Directory bread(block 68) failed
[  630.472984][T11239] FAT-fs (loop9): Directory bread(block 69) failed
[  630.493075][T11239] FAT-fs (loop9): Directory bread(block 70) failed
[  630.513165][T11239] FAT-fs (loop9): Directory bread(block 71) failed
[  630.519794][T11239] FAT-fs (loop9): Directory bread(block 72) failed
[  630.560477][T11239] FAT-fs (loop9): Directory bread(block 73) failed
[  632.229994][T11284] loop3: detected capacity change from 0 to 256
[  632.536402][T11284] exfat: Deprecated parameter 'utf8'
[  632.542188][T11284] exfat: Unknown parameter 'keep_last_dots'
[  633.112057][T11297] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1451'.
[  633.352129][T11302] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1453'.
[  634.152114][T11324] Invalid ELF header len 1
[  637.002516][   T13] Bluetooth: hci5: command 0x0406 tx timeout
[  637.841164][T11358] loop4: detected capacity change from 0 to 512
[  638.555153][T11356] loop3: detected capacity change from 0 to 256
[  638.823209][T11358] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  639.174512][T11358] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1176: group 0, block bitmap and bg descriptor inconsistent: 48 vs 41 free clusters
[  639.204442][T11356] FAT-fs (loop3): Directory bread(block 64) failed
[  639.259369][T11356] FAT-fs (loop3): Directory bread(block 65) failed
[  639.303163][T11358] __quota_error: 45 callbacks suppressed
[  639.303181][T11358] Quota error (device loop4): write_blk: dquota write failed
[  639.330753][T11356] FAT-fs (loop3): Directory bread(block 66) failed
[  639.352997][T11358] Quota error (device loop4): find_free_dqentry: Can't write quota data block 5
[  639.362224][T11358] Quota error (device loop4): write_blk: dquota write failed
[  639.378758][T11356] FAT-fs (loop3): Directory bread(block 67) failed
[  639.438937][T11358] Quota error (device loop4): qtree_write_dquot: Error -28 occurred while creating quota
[  639.449427][T11356] FAT-fs (loop3): Directory bread(block 68) failed
[  639.456714][T11358] EXT4-fs error (device loop4): ext4_acquire_dquot:6236: comm syz.4.1464: Failed to acquire dquot type 1
[  639.476864][T11356] FAT-fs (loop3): Directory bread(block 69) failed
[  639.485807][T11358] EXT4-fs (loop4): 1 truncate cleaned up
[  639.486230][T11382] loop9: detected capacity change from 0 to 256
[  639.506556][T11358] EXT4-fs (loop4): mounted filesystem without journal. Opts: dioread_nolock,noblock_validity,noquota,resgid=0x0000000000000000,norecovery,abort,minixdf,nouid32,resgid=0x00000000000000002,errors=continue. Quota mode: writeback.
[  639.529467][T11356] FAT-fs (loop3): Directory bread(block 70) failed
[  639.544605][T11356] FAT-fs (loop3): Directory bread(block 71) failed
[  639.566854][T11356] FAT-fs (loop3): Directory bread(block 72) failed
[  639.583461][T11356] FAT-fs (loop3): Directory bread(block 73) failed
[  639.617340][T11382] FAT-fs (loop9): Directory bread(block 64) failed
[  639.653134][T11382] FAT-fs (loop9): Directory bread(block 65) failed
[  639.670329][T11382] FAT-fs (loop9): Directory bread(block 66) failed
[  639.700758][T11382] FAT-fs (loop9): Directory bread(block 67) failed
[  639.760045][T11382] FAT-fs (loop9): Directory bread(block 68) failed
[  639.822557][T11382] FAT-fs (loop9): Directory bread(block 69) failed
[  639.838893][T11382] FAT-fs (loop9): Directory bread(block 70) failed
[  640.354839][T11382] FAT-fs (loop9): Directory bread(block 71) failed
[  640.361873][T11382] FAT-fs (loop9): Directory bread(block 72) failed
[  640.438284][T11382] FAT-fs (loop9): Directory bread(block 73) failed
[  640.569419][T11400] loop7: detected capacity change from 0 to 256
[  640.779941][T11382] attempt to access beyond end of device
[  640.779941][T11382] loop9: rw=524288, want=1164, limit=256
[  640.791359][T11382] attempt to access beyond end of device
[  640.791359][T11382] loop9: rw=0, want=1164, limit=256
[  640.803009][   T26] audit: type=1800 audit(641.181:265): pid=11382 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.9.1470" name="file0" dev="loop9" ino=1049201 res=0 errno=0
[  640.803824][T11382] attempt to access beyond end of device
[  640.803824][T11382] loop9: rw=0, want=1164, limit=256
[  640.839205][T11382] attempt to access beyond end of device
[  640.839205][T11382] loop9: rw=0, want=1164, limit=256
[  640.849964][T11382] Buffer I/O error on dev loop9, logical block 290, async page read
[  641.087886][ T1108] kernel write not supported for file [eventfd] (pid: 1108 comm: kworker/0:2)
[  641.094317][T11400] FAT-fs (loop7): Directory bread(block 64) failed
[  641.147188][T11400] FAT-fs (loop7): Directory bread(block 65) failed
[  641.295894][T11400] FAT-fs (loop7): Directory bread(block 66) failed
[  641.420981][T11400] FAT-fs (loop7): Directory bread(block 67) failed
[  641.433102][T11400] FAT-fs (loop7): Directory bread(block 68) failed
[  641.439677][T11400] FAT-fs (loop7): Directory bread(block 69) failed
[  642.313048][T11400] FAT-fs (loop7): Directory bread(block 70) failed
[  642.502986][T11400] FAT-fs (loop7): Directory bread(block 71) failed
[  642.563020][T11400] FAT-fs (loop7): Directory bread(block 72) failed
[  642.569599][T11400] FAT-fs (loop7): Directory bread(block 73) failed
[  642.708116][T11435] loop9: detected capacity change from 0 to 1024
[  643.387497][T11435] EXT4-fs (loop9): ext4_check_descriptors: Checksum for group 0 failed (46272!=20869)
[  643.429633][T11435] EXT4-fs (loop9): corrupt root inode, run e2fsck
[  643.436382][T11435] EXT4-fs (loop9): mount failed
[  644.758858][T11452] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2142054965 (4284109930 ns) > initial count (2850433972 ns). Using initial count to start timer.
[  645.222899][ T5045] usb 10-1: new high-speed USB device number 7 using dummy_hcd
[  645.663594][ T5045] usb 10-1: config 0 has an invalid descriptor of length 52, skipping remainder of the config
[  645.798792][ T5045] usb 10-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  645.991310][ T5045] usb 10-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 253
[  646.525373][T11474] loop4: detected capacity change from 0 to 512
[  646.666672][T11474] EXT4-fs (loop4): 1 truncate cleaned up
[  646.672448][T11474] EXT4-fs (loop4): mounted filesystem without journal. Opts: noload,stripe=0x000000000000030c,jqfmt=vfsv1,nojournal_checksum,jqfmt=vfsv1,usrjquota=,,errors=continue. Quota mode: none.
[  647.093096][ T5045] usb 10-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  647.102276][ T5045] usb 10-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  649.282933][ T5045] usb 10-1: Manufacturer: syz
[  649.462154][ T5045] usb 10-1: config 0 descriptor??
[  649.583110][ T5045] usb 10-1: can't set config #0, error -71
[  649.603812][ T5045] usb 10-1: USB disconnect, device number 7
[  649.741716][T11492] loop7: detected capacity change from 0 to 512
[  649.772688][T11498] loop4: detected capacity change from 0 to 512
[  649.775414][T11500] loop3: detected capacity change from 0 to 256
[  649.847070][T11498] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  649.880112][T11498] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c018, mo2=0002]
[  649.889033][T11498] System zones: 1-12
[  649.910905][T11498] EXT4-fs (loop4): 1 truncate cleaned up
[  649.922921][T11498] EXT4-fs (loop4): mounted filesystem without journal. Opts: max_batch_time=0x0000000000000004,max_batch_time=0x0000000000000005,debug_want_extra_isize=0x000000000000006a,mb_optimize_scan=0x0000000000000001,debug,data=journal,,errors=continue. Quota mode: none.
[  649.979356][T11498] EXT4-fs warning (device loop4): verify_group_input:147: Cannot add at group 3149642499 (only 1 groups)
[  650.060439][T11509] loop9: detected capacity change from 0 to 256
[  650.094216][T11500] FAT-fs (loop3): Directory bread(block 64) failed
[  650.100791][T11500] FAT-fs (loop3): Directory bread(block 65) failed
[  650.168390][T11492] EXT4-fs (loop7): orphan cleanup on readonly fs
[  650.203008][T11500] FAT-fs (loop3): Directory bread(block 66) failed
[  650.209587][T11500] FAT-fs (loop3): Directory bread(block 67) failed
[  650.246228][T11492] EXT4-fs error (device loop7): ext4_find_extent:893: inode #4: comm syz.7.1491: inode has invalid extent depth: 7
[  650.288271][T11509] FAT-fs (loop9): Directory bread(block 64) failed
[  650.329680][T11509] FAT-fs (loop9): Directory bread(block 65) failed
[  650.352988][T11500] FAT-fs (loop3): Directory bread(block 68) failed
[  650.359561][T11500] FAT-fs (loop3): Directory bread(block 69) failed
[  650.386242][T11509] FAT-fs (loop9): Directory bread(block 66) failed
[  650.423053][T11509] FAT-fs (loop9): Directory bread(block 67) failed
[  650.429705][T11509] FAT-fs (loop9): Directory bread(block 68) failed
[  650.436653][T11492] Quota error (device loop7): v2_read_header: Failed header read: expected=8 got=-117
[  650.436694][T11500] FAT-fs (loop3): Directory bread(block 70) failed
[  650.484616][T11509] FAT-fs (loop9): Directory bread(block 69) failed
[  650.491273][T11509] FAT-fs (loop9): Directory bread(block 70) failed
[  650.503027][T11500] FAT-fs (loop3): Directory bread(block 71) failed
[  650.503332][T11492] EXT4-fs warning (device loop7): ext4_enable_quotas:6488: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  650.509677][T11500] FAT-fs (loop3): Directory bread(block 72) failed
[  650.562896][T11509] FAT-fs (loop9): Directory bread(block 71) failed
[  650.620886][T11500] FAT-fs (loop3): Directory bread(block 73) failed
[  650.644234][T11492] EXT4-fs (loop7): Cannot turn on quotas: error -22
[  650.673024][T11509] FAT-fs (loop9): Directory bread(block 72) failed
[  650.679631][T11509] FAT-fs (loop9): Directory bread(block 73) failed
[  650.778994][T11492] EXT4-fs (loop7): mounted filesystem without journal. Opts: block_validity,nojournal_checksum,,errors=continue. Quota mode: writeback.
[  651.018583][T11492] EXT4-fs error (device loop7): ext4_lookup:1855: inode #2: comm syz.7.1491: 'file0' linked to parent dir
[  651.424759][ T4290] attempt to access beyond end of device
[  651.424759][ T4290] loop3: rw=1, want=1832, limit=256
[  651.490938][ T4290] attempt to access beyond end of device
[  651.490938][ T4290] loop3: rw=1, want=2512, limit=256
[  651.577474][T11531] loop4: detected capacity change from 0 to 512
[  651.741861][T11534] loop7: detected capacity change from 0 to 512
[  651.812464][T11540] loop3: detected capacity change from 0 to 256
[  651.935169][T11544] attempt to access beyond end of device
[  651.935169][T11544] loop9: rw=524288, want=1164, limit=256
[  651.971218][T11540] FAT-fs (loop3): Directory bread(block 64) failed
[  651.981154][T11540] FAT-fs (loop3): Directory bread(block 65) failed
[  652.063118][T11540] FAT-fs (loop3): Directory bread(block 66) failed
[  652.360906][T11540] FAT-fs (loop3): Directory bread(block 67) failed
[  652.466547][T11534] EXT4-fs (loop7): 1 truncate cleaned up
[  652.559439][T11534] EXT4-fs (loop7): mounted filesystem without journal. Opts: noload,stripe=0x000000000000030c,jqfmt=vfsv1,nojournal_checksum,jqfmt=vfsv1,usrjquota=,,errors=continue. Quota mode: none.
[  652.658084][T11540] FAT-fs (loop3): Directory bread(block 68) failed
[  652.688978][T11540] FAT-fs (loop3): Directory bread(block 69) failed
[  652.701667][T11540] FAT-fs (loop3): Directory bread(block 70) failed
[  652.723285][T11540] FAT-fs (loop3): Directory bread(block 71) failed
[  652.760747][T11540] FAT-fs (loop3): Directory bread(block 72) failed
[  652.867946][T11544] attempt to access beyond end of device
[  652.867946][T11544] loop9: rw=0, want=1164, limit=256
[  652.880054][T11540] FAT-fs (loop3): Directory bread(block 73) failed
[  652.886781][   T26] audit: type=1800 audit(653.261:266): pid=11544 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.9.1497" name="file0" dev="loop9" ino=1049203 res=0 errno=0
[  654.017592][T11540] attempt to access beyond end of device
[  654.017592][T11540] loop3: rw=524288, want=1196, limit=256
[  654.033166][T11540] attempt to access beyond end of device
[  654.033166][T11540] loop3: rw=0, want=1196, limit=256
[  655.261270][   T26] audit: type=1800 audit(655.411:267): pid=11540 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1504" name="file1" dev="loop3" ino=1049204 res=0 errno=0
[  655.725401][T11577] loop4: detected capacity change from 0 to 256
[  655.810393][T11577] FAT-fs (loop4): Directory bread(block 64) failed
[  655.823013][T11577] FAT-fs (loop4): Directory bread(block 65) failed
[  655.830955][T11577] FAT-fs (loop4): Directory bread(block 66) failed
[  655.838411][T11577] FAT-fs (loop4): Directory bread(block 67) failed
[  655.845884][T11577] FAT-fs (loop4): Directory bread(block 68) failed
[  655.852543][T11577] FAT-fs (loop4): Directory bread(block 69) failed
[  655.861011][T11577] FAT-fs (loop4): Directory bread(block 70) failed
[  655.868030][T11577] FAT-fs (loop4): Directory bread(block 71) failed
[  655.875045][T11577] FAT-fs (loop4): Directory bread(block 72) failed
[  655.881605][T11577] FAT-fs (loop4): Directory bread(block 73) failed
[  655.956813][T11583] loop9: detected capacity change from 0 to 256
[  656.202154][T11583] FAT-fs (loop9): Directory bread(block 64) failed
[  656.218182][T11583] FAT-fs (loop9): Directory bread(block 65) failed
[  656.225481][T11583] FAT-fs (loop9): Directory bread(block 66) failed
[  656.232193][T11583] FAT-fs (loop9): Directory bread(block 67) failed
[  656.246462][T11583] FAT-fs (loop9): Directory bread(block 68) failed
[  656.257828][T11583] FAT-fs (loop9): Directory bread(block 69) failed
[  656.268492][T11583] FAT-fs (loop9): Directory bread(block 70) failed
[  656.278211][T11583] FAT-fs (loop9): Directory bread(block 71) failed
[  656.296605][T11583] FAT-fs (loop9): Directory bread(block 72) failed
[  656.307475][T11583] FAT-fs (loop9): Directory bread(block 73) failed
[  656.353498][T11583] attempt to access beyond end of device
[  656.353498][T11583] loop9: rw=524288, want=1164, limit=256
[  656.364972][T11583] attempt to access beyond end of device
[  656.364972][T11583] loop9: rw=0, want=1164, limit=256
[  656.376806][T11583] attempt to access beyond end of device
[  656.376806][T11583] loop9: rw=0, want=1164, limit=256
[  656.387889][T11583] attempt to access beyond end of device
[  656.387889][T11583] loop9: rw=0, want=1164, limit=256
[  656.392986][   T26] audit: type=1800 audit(656.761:268): pid=11583 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.9.1514" name="file0" dev="loop9" ino=1049227 res=0 errno=0
[  656.398884][T11583] Buffer I/O error on dev loop9, logical block 290, async page read
[  656.649035][ T4211] attempt to access beyond end of device
[  656.649035][ T4211] loop4: rw=1, want=1832, limit=256
[  656.684270][ T4211] attempt to access beyond end of device
[  656.684270][ T4211] loop4: rw=1, want=2512, limit=256
[  657.033089][ T4291] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  657.443497][ T4291] usb 4-1: config 0 interface 0 altsetting 15 endpoint 0x81 has an invalid bInterval 176, changing to 11
[  657.574633][ T4291] usb 4-1: config 0 interface 0 altsetting 15 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  657.686532][ T4291] usb 4-1: config 0 interface 0 has no altsetting 0
[  657.700041][ T4291] usb 4-1: New USB device found, idVendor=056a, idProduct=00c2, bcdDevice= 0.00
[  657.710033][ T4291] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  657.725134][ T4291] usb 4-1: config 0 descriptor??
[  657.914180][T11592] loop9: detected capacity change from 0 to 40427
[  657.961384][T11607] overlayfs: option "workdir=mnt/encrypted_dir" is useless in a non-upper mount, ignore
[  658.001919][T11589] loop3: detected capacity change from 0 to 512
[  658.020201][T11607] overlayfs: conflicting options: metacopy=on,redirect_dir=nofollow
[  658.101329][T11589] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.1517: invalid indirect mapped block 4294967295 (level 1)
[  658.231349][T11613] loop4: detected capacity change from 0 to 256
[  658.256042][T11589] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.1517: invalid indirect mapped block 4294967295 (level 1)
[  658.285448][T11589] EXT4-fs (loop3): 2 truncates cleaned up
[  658.291222][T11589] EXT4-fs (loop3): mounted filesystem without journal. Opts: noauto_da_alloc,init_itable=0x0000000000004004,barrier=0x0000000000000005,,errors=continue. Quota mode: writeback.
[  658.354659][T11589] EXT4-fs error (device loop3): ext4_validate_block_bitmap:429: comm syz.3.1517: bg 0: block 5: invalid block bitmap
[  658.415817][T11613] FAT-fs (loop4): Directory bread(block 64) failed
[  658.422393][T11613] FAT-fs (loop4): Directory bread(block 65) failed
[  658.443372][T11613] FAT-fs (loop4): Directory bread(block 66) failed
[  658.461521][T11613] FAT-fs (loop4): Directory bread(block 67) failed
[  658.502624][T11613] FAT-fs (loop4): Directory bread(block 68) failed
[  658.521979][T11613] FAT-fs (loop4): Directory bread(block 69) failed
[  658.543430][T11613] FAT-fs (loop4): Directory bread(block 70) failed
[  658.558813][T11613] FAT-fs (loop4): Directory bread(block 71) failed
[  658.574609][T11613] FAT-fs (loop4): Directory bread(block 72) failed
[  658.592226][T11613] FAT-fs (loop4): Directory bread(block 73) failed
[  658.697303][T11589] udc-core: couldn't find an available UDC or it's busy
[  658.717370][T11589] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  658.988765][T11628] tmpfs: Unknown parameter 'release_agent'
[  659.193035][ T4291] usbhid 4-1:0.0: can't add hid device: -71
[  659.199033][ T4291] usbhid: probe of 4-1:0.0 failed with error -71
[  659.229474][ T4291] usb 4-1: USB disconnect, device number 10
[  659.302076][T11638] attempt to access beyond end of device
[  659.302076][T11638] loop4: rw=524288, want=1164, limit=256
[  659.326166][T11638] attempt to access beyond end of device
[  659.326166][T11638] loop4: rw=0, want=1164, limit=256
[  659.349876][   T26] audit: type=1800 audit(659.731:269): pid=11638 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1524" name="file0" dev="loop4" ino=1049228 res=0 errno=0
[  660.074584][T11646] loop9: detected capacity change from 0 to 512
[  660.290990][T11646] EXT4-fs (loop9): mounted filesystem without journal. Opts: grpquota,noquota,quota,,errors=continue. Quota mode: writeback.
[  660.934596][T11671] loop7: detected capacity change from 0 to 512
[  660.988070][T11671] EXT4-fs (loop7): Ignoring removed nomblk_io_submit option
[  661.033137][T11671] EXT4-fs error (device loop7): ext4_xattr_inode_iget:401: comm syz.7.1538: inode #1: comm syz.7.1538: iget: illegal inode #
[  661.162496][T11671] EXT4-fs error (device loop7): ext4_xattr_inode_iget:406: comm syz.7.1538: error while reading EA inode 1 err=-117
[  661.232999][T11655] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1535'.
[  661.261063][T11671] EXT4-fs (loop7): 1 orphan inode deleted
[  661.281186][T11671] EXT4-fs (loop7): mounted filesystem without journal. Opts: jqfmt=vfsv0,stripe=0x0000000000000008,nombcache,noinit_itable,nomblk_io_submit,minixdf,nobarrier,inode_readahead_blks=0x0000000000000000,usrjquota=,block_validity,noblock_validity,noquota,,errors=continue. Quota mode: none.
[  661.667295][T11697] loop4: detected capacity change from 0 to 256
[  661.745400][T11697] exfat: Deprecated parameter 'utf8'
[  661.765551][T11697] exfat: Deprecated parameter 'utf8'
[  661.843180][T11697] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d)
[  662.508967][T11721] loop4: detected capacity change from 0 to 512
[  663.141163][T11745] loop7: detected capacity change from 0 to 256
[  663.180481][T11745] exFAT-fs (loop7): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  663.230796][T11745] exFAT-fs (loop7): Medium has reported failures. Some data may be lost.
[  663.248500][T11745] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  667.873987][T11787] loop4: detected capacity change from 0 to 512
[  669.359283][T11787] EXT4-fs (loop4): mounted filesystem without journal. Opts: noauto_da_alloc,errors=remount-ro,. Quota mode: writeback.
[  670.014016][T11787] EXT4-fs error (device loop4): ext4_xattr_block_get:543: inode #15: comm syz.4.1563: corrupted xattr block 33
[  670.041658][T11787] EXT4-fs (loop4): Remounting filesystem read-only
[  670.092756][T11787] EXT4-fs error (device loop4): ext4_xattr_block_get:543: inode #15: comm syz.4.1563: corrupted xattr block 33
[  670.175070][T11787] EXT4-fs (loop4): Remounting filesystem read-only
[  670.192014][T11787] fscrypt (loop4, inode 15): Error -117 getting encryption context
[  670.281824][T11812] loop3: detected capacity change from 0 to 1024
[  670.467121][T11817] loop7: detected capacity change from 0 to 256
[  670.500820][T11812] EXT4-fs (loop3): Ignoring removed orlov option
[  670.572983][   T26] audit: type=1326 audit(926.923:270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11820 comm="syz.9.1575" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff817cf8e59 code=0x7ffc0000
[  670.679182][T11817] FAT-fs (loop7): Directory bread(block 64) failed
[  670.691787][T11812] EXT4-fs (loop3): mounted filesystem without journal. Opts: block_validity,bsddf,sysvgroups,norecovery,debug_want_extra_isize=0x0000000000000080,orlov,nogrpid,noauto_da_alloc,norecovery,,errors=continue. Quota mode: none.
[  670.751695][T11817] FAT-fs (loop7): Directory bread(block 65) failed
[  670.792347][T11817] FAT-fs (loop7): Directory bread(block 66) failed
[  670.808487][   T26] audit: type=1326 audit(926.933:271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11820 comm="syz.9.1575" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff817cf8e59 code=0x7ffc0000
[  670.869737][T11817] FAT-fs (loop7): Directory bread(block 67) failed
[  670.876503][T11817] FAT-fs (loop7): Directory bread(block 68) failed
[  670.900977][T11817] FAT-fs (loop7): Directory bread(block 69) failed
[  670.921308][T11817] FAT-fs (loop7): Directory bread(block 70) failed
[  670.952950][T11817] FAT-fs (loop7): Directory bread(block 71) failed
[  670.959597][T11817] FAT-fs (loop7): Directory bread(block 72) failed
[  670.985781][   T26] audit: type=1326 audit(926.933:272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11820 comm="syz.9.1575" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff817cf8e59 code=0x7ffc0000
[  671.013554][T11817] FAT-fs (loop7): Directory bread(block 73) failed
[  671.060304][   T26] audit: type=1326 audit(926.933:273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11820 comm="syz.9.1575" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff817cf8e59 code=0x7ffc0000
[  671.135034][   T26] audit: type=1326 audit(926.933:274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11820 comm="syz.9.1575" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff817cf8e59 code=0x7ffc0000
[  671.229875][   T26] audit: type=1326 audit(926.933:275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11820 comm="syz.9.1575" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff817cf8e59 code=0x7ffc0000
[  671.304811][   T26] audit: type=1326 audit(926.933:276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11820 comm="syz.9.1575" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff817cf8e59 code=0x7ffc0000
[  671.512677][   T26] audit: type=1326 audit(926.933:277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11820 comm="syz.9.1575" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ff817cf8e59 code=0x7ffc0000
[  671.593000][   T26] audit: type=1326 audit(926.933:278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11820 comm="syz.9.1575" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff817cf8e59 code=0x7ffc0000
[  672.123089][T11848] attempt to access beyond end of device
[  672.123089][T11848] loop7: rw=524288, want=1164, limit=256
[  672.135003][T11848] attempt to access beyond end of device
[  672.135003][T11848] loop7: rw=0, want=1164, limit=256
[  672.717536][   T26] audit: type=1326 audit(926.933:279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11820 comm="syz.9.1575" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff817cf8e59 code=0x7ffc0000
[  673.233043][T11855] loop9: detected capacity change from 0 to 4096
[  673.328379][T11855] EXT4-fs (loop9): Ignoring removed nomblk_io_submit option
[  673.361353][T11855] EXT4-fs (loop9): Quota format mount options ignored when QUOTA feature is enabled
[  673.451899][T11855] EXT4-fs (loop9): inline encryption not supported
[  673.459164][T11855] EXT4-fs (loop9): Test dummy encryption mode enabled
[  673.592586][T11868] loop7: detected capacity change from 0 to 256
[  673.653311][T11855] EXT4-fs (loop9): mounted filesystem without journal. Opts: nomblk_io_submit,jqfmt=vfsv0,inlinecrypt,errors=remount-ro,test_dummy_encryption=v1,norecovery,delalloc,nogrpid,minixdf,. Quota mode: writeback.
[  673.973205][T11868] FAT-fs (loop7): Directory bread(block 64) failed
[  674.054884][T11868] FAT-fs (loop7): Directory bread(block 65) failed
[  674.145223][T11868] FAT-fs (loop7): Directory bread(block 66) failed
[  674.151794][T11868] FAT-fs (loop7): Directory bread(block 67) failed
[  674.199152][T11876] loop3: detected capacity change from 0 to 512
[  674.230149][T11868] FAT-fs (loop7): Directory bread(block 68) failed
[  674.240097][T11868] FAT-fs (loop7): Directory bread(block 69) failed
[  674.246812][T11868] FAT-fs (loop7): Directory bread(block 70) failed
[  674.253713][T11868] FAT-fs (loop7): Directory bread(block 71) failed
[  674.260309][T11868] FAT-fs (loop7): Directory bread(block 72) failed
[  674.267509][T11868] FAT-fs (loop7): Directory bread(block 73) failed
[  674.558967][T11876] loop3: detected capacity change from 0 to 8192
[  674.573373][T11885] loop9: detected capacity change from 0 to 1024
[  674.620131][T11885] EXT4-fs (loop9): Ignoring removed oldalloc option
[  674.632015][T11885] EXT4-fs (loop9): Ignoring removed orlov option
[  674.701320][T11876]  loop3: p1 p2 p3
[  674.715031][T11885] EXT4-fs (loop9): mounted filesystem without journal. Opts: oldalloc,nojournal_checksum,jqfmt=vfsv0,norecovery,debug_want_extra_isize=0x0000000000000036,orlov,journal_ioprio=0x0000000000000003,noauto_da_alloc,norecovery,,errors=continue. Quota mode: none.
[  674.755733][T11876] loop3: partition table partially beyond EOD, truncated
[  674.838899][T11876] loop3: p1 start 51379968 is beyond EOD, truncated
[  674.923546][T11876] loop3: p3 size 100663552 extends beyond EOD, truncated
[  675.674892][ T7249] udevd[7249]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory
[  675.692615][ T6534] udevd[6534]: inotify_add_watch(7, /dev/loop3p2, 10) failed: No such file or directory
[  675.869577][ T4498] attempt to access beyond end of device
[  675.869577][ T4498] loop7: rw=1, want=1832, limit=256
[  675.923243][ T4498] attempt to access beyond end of device
[  675.923243][ T4498] loop7: rw=1, want=2512, limit=256
[  676.168355][T11931] loop4: detected capacity change from 0 to 512
[  676.337638][T11931] EXT4-fs (loop4): mounted filesystem without journal. Opts: grpjquota=,max_dir_size_kb=0x0000000000000a30,grpquota,,errors=continue. Quota mode: writeback.
[  681.070395][T12047] loop9: detected capacity change from 0 to 512
[  681.143932][T12047] EXT4-fs (loop9): Ignoring removed orlov option
[  681.190996][T12047] EXT4-fs (loop9): mounting ext3 file system using the ext4 subsystem
[  681.271840][T12047] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8002c119, mo2=0002]
[  681.336225][T12052] loop4: detected capacity change from 0 to 256
[  681.359666][T12047] EXT4-fs error (device loop9): ext4_iget_extra_inode:4573: inode #15: comm syz.9.1626: corrupted in-inode xattr
[  681.424592][T12047] EXT4-fs error (device loop9): ext4_orphan_get:1411: comm syz.9.1626: couldn't read orphan inode 15 (err -117)
[  681.470685][T12052] FAT-fs (loop4): Directory bread(block 64) failed
[  681.518765][T12047] EXT4-fs (loop9): mounted filesystem without journal. Opts: jqfmt=vfsold,orlov,debug,noload,nombcache,noblock_validity,init_itable=0x0000000000000603,inode_readahead_blks=0x0000000000008000,errors=continue,,errors=continue. Quota mode: none.
[  681.519042][T12052] FAT-fs (loop4): Directory bread(block 65) failed
[  681.677460][T12056] loop7: detected capacity change from 0 to 1024
[  681.677934][T12052] FAT-fs (loop4): Directory bread(block 66) failed
[  681.730380][T12052] FAT-fs (loop4): Directory bread(block 67) failed
[  681.755184][T12056] EXT4-fs (loop7): Ignoring removed orlov option
[  681.758358][T12052] FAT-fs (loop4): Directory bread(block 68) failed
[  681.837023][T12052] FAT-fs (loop4): Directory bread(block 69) failed
[  681.866188][T12052] FAT-fs (loop4): Directory bread(block 70) failed
[  681.896432][T12052] FAT-fs (loop4): Directory bread(block 71) failed
[  681.906601][T12052] FAT-fs (loop4): Directory bread(block 72) failed
[  681.913531][T12052] FAT-fs (loop4): Directory bread(block 73) failed
[  682.034228][T12056] EXT4-fs (loop7): mounted filesystem without journal. Opts: block_validity,bsddf,sysvgroups,norecovery,debug_want_extra_isize=0x0000000000000080,orlov,nogrpid,noauto_da_alloc,norecovery,,errors=continue. Quota mode: none.
[  683.759429][ T4250] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  684.063170][ T4250] usb 5-1: Using ep0 maxpacket: 16
[  684.303196][ T4250] usb 5-1: config index 0 descriptor too short (expected 51443, got 18)
[  684.483221][ T4250] usb 5-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[  684.502519][ T4250] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  684.545936][ T4250] usb 5-1: Product: syz
[  684.550133][ T4250] usb 5-1: Manufacturer: syz
[  684.592853][ T4250] usb 5-1: SerialNumber: syz
[  684.631607][ T4250] r8152-cfgselector 5-1: config 0 descriptor??
[  685.023088][ T4250] r8152-cfgselector 5-1: Unknown version 0x0000
[  685.063007][ T4250] r8152-cfgselector 5-1: Unknown version 0x0000
[  685.106356][ T4250] r8152-cfgselector 5-1: USB disconnect, device number 6
[  685.315547][ T1431] ieee802154 phy0 wpan0: encryption failed: -22
[  685.321925][ T1431] ieee802154 phy1 wpan1: encryption failed: -22
[  687.138123][T12119] loop9: detected capacity change from 0 to 2048
[  687.295507][T12119] EXT4-fs (loop9): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  687.332373][T12119] EXT4-fs error (device loop9): ext4_mb_generate_buddy:1176: group 0, block bitmap and bg descriptor inconsistent: 25 vs 281 free clusters
[  687.453142][T12119] EXT4-fs (loop9): Delayed block allocation failed for inode 15 at logical offset 65537 with max blocks 1 with error 28
[  687.488747][T12119] EXT4-fs (loop9): This should not happen!! Data will be lost
[  687.488747][T12119] 
[  687.514094][T12119] EXT4-fs (loop9): Total free blocks count 0
[  687.530583][T12119] EXT4-fs (loop9): Free/Dirty block details
[  687.548706][T12119] EXT4-fs (loop9): free_blocks=4096
[  687.568299][T12119] EXT4-fs (loop9): dirty_blocks=32
[  687.573602][T12119] EXT4-fs (loop9): Block reservation details
[  687.600085][T12119] EXT4-fs (loop9): i_reserved_data_blocks=2
[  687.624765][T12118] EXT4-fs (loop9): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  687.665049][T12118] EXT4-fs (loop9): This should not happen!! Data will be lost
[  687.665049][T12118] 
[  688.897133][T12128] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  689.416607][T12137] loop4: detected capacity change from 0 to 256
[  689.503680][T12137] exfat: Unknown parameter 'keep_last_dots'
[  690.370729][T12147] netlink: 12 bytes leftover after parsing attributes in process `syz.7.1657'.
[  690.950107][T12158] loop3: detected capacity change from 0 to 2048
[  691.209958][T12158] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  692.265325][T12179] overlayfs: failed to resolve './file0': -2
[  692.492603][   T26] kauditd_printk_skb: 75 callbacks suppressed
[  692.492618][   T26] audit: type=1326 audit(948.863:355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12189 comm="syz.7.1670" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef61effe59 code=0x7ffc0000
[  692.618421][   T26] audit: type=1326 audit(948.863:356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12189 comm="syz.7.1670" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef61effe59 code=0x7ffc0000
[  693.865652][   T26] audit: type=1326 audit(948.883:357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12189 comm="syz.7.1670" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fef61effe59 code=0x7ffc0000
[  694.349548][   T26] audit: type=1326 audit(948.883:358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12189 comm="syz.7.1670" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef61effe59 code=0x7ffc0000
[  694.673847][   T26] audit: type=1326 audit(948.883:359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12189 comm="syz.7.1670" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef61effe59 code=0x7ffc0000
[  694.698545][   T26] audit: type=1326 audit(948.883:360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12189 comm="syz.7.1670" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=28 compat=0 ip=0x7fef61effe59 code=0x7ffc0000
[  694.748171][   T26] audit: type=1326 audit(948.883:361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12189 comm="syz.7.1670" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef61effe59 code=0x7ffc0000
[  694.792086][T12205] loop7: detected capacity change from 0 to 512
[  694.807779][   T26] audit: type=1326 audit(948.883:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12189 comm="syz.7.1670" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef61effe59 code=0x7ffc0000
[  694.851458][   T26] audit: type=1326 audit(948.883:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12189 comm="syz.7.1670" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7fef61effe59 code=0x7ffc0000
[  694.895278][   T26] audit: type=1326 audit(948.883:364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12189 comm="syz.7.1670" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef61effe59 code=0x7ffc0000
[  694.943210][T12205] EXT4-fs (loop7): feature flags set on rev 0 fs, running e2fsck is recommended
[  695.030362][T12205] EXT4-fs (loop7): warning: maximal mount count reached, running e2fsck is recommended
[  695.130984][T12205] EXT4-fs error (device loop7): ext4_orphan_get:1406: comm syz.7.1674: inode #15: comm syz.7.1674: iget: illegal inode #
[  695.187509][T12211] loop4: detected capacity change from 0 to 1024
[  695.218197][T12205] EXT4-fs (loop7): Remounting filesystem read-only
[  695.266181][T12211] EXT4-fs (loop4): couldn't mount as ext2 due to feature incompatibilities
[  695.288689][T12205] EXT4-fs error (device loop7): ext4_orphan_get:1411: comm syz.7.1674: couldn't read orphan inode 15 (err -117)
[  695.368134][T12205] EXT4-fs (loop7): Remounting filesystem read-only
[  695.404098][T12205] EXT4-fs (loop7): mounted filesystem without journal. Opts: errors=remount-ro,grpquota,. Quota mode: writeback.
[  695.559824][T12205] EXT4-fs error (device loop7): ext4_lookup:1858: comm syz.7.1674: inode #15: comm syz.7.1674: iget: illegal inode #
[  695.664748][T12205] EXT4-fs (loop7): Remounting filesystem read-only
[  697.883169][ T5045] usb 10-1: new full-speed USB device number 8 using dummy_hcd
[  697.977800][T12237] loop3: detected capacity change from 0 to 256
[  698.017463][T12237] exfat: Deprecated parameter 'namecase'
[  698.120504][T12237] exFAT-fs (loop3): failed to load upcase table (idx : 0x0001fe89, chksum : 0xeb34f926, utbl_chksum : 0xe619d30d)
[  698.238335][T12237] ------------[ cut here ]------------
[  698.251016][T12237] WARNING: CPU: 1 PID: 12237 at arch/x86/kvm/x86.c:10384 kvm_arch_vcpu_ioctl_run+0x1bc4/0x1f40
[  698.267897][T12237] Modules linked in:
[  698.271840][T12237] CPU: 1 PID: 12237 Comm: syz.3.1686 Not tainted syzkaller #0
[  698.280192][T12237] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  698.299589][T12237] RIP: 0010:kvm_arch_vcpu_ioctl_run+0x1bc4/0x1f40
[  698.308947][T12237] Code: e8 11 26 af 00 e9 03 e9 ff ff 44 89 f9 80 e1 07 38 c1 0f 8c d5 ed ff ff 4c 89 ff e8 f6 25 af 00 e9 c8 ed ff ff e8 bc 0c 6a 00 <0f> 0b e9 31 fd ff ff 44 89 f9 80 e1 07 38 c1 0f 8c d2 ed ff ff 4c
[  698.333435][ T5045] usb 10-1: config 0 has an invalid interface number: 41 but max is 0
[  698.344468][ T5045] usb 10-1: config 0 has no interface number 0
[  698.350790][ T5045] usb 10-1: config 0 interface 41 has no altsetting 0
[  698.361961][T12237] RSP: 0018:ffffc9000307fc30 EFLAGS: 00010287
[  698.390158][T12237] RAX: ffffffff810f3c34 RBX: ffff88807d1dc000 RCX: 0000000000080000
[  698.399059][T12237] RDX: ffffc9000e31a000 RSI: 000000000000040e RDI: 000000000000040f
[  698.407851][T12237] RBP: 0000000000000000 R08: ffffffff8d8a06ef R09: 1ffffffff1b140dd
[  698.419283][T12237] R10: dffffc0000000000 R11: fffffbfff1b140de R12: ffff888057c1f001
[  698.435398][T12237] R13: 1ffff1100fa3b81e R14: ffff88807d1dc0f0 R15: ffff888057c1f000
[  698.448202][T12237] FS:  00007f3ee7afa6c0(0000) GS:ffff8880b9100000(0000) knlGS:0000000000000000
[  698.458560][T12237] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  698.479900][T12237] CR2: 0000000000000000 CR3: 000000002295c000 CR4: 00000000003526e0
[  698.488543][T12237] DR0: 000000007fffffff DR1: 00000000000001f8 DR2: 0000000000000004
[  698.497419][T12237] DR3: 0000000000000008 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  698.506510][T12237] Call Trace:
[  698.510208][T12237]  <TASK>
[  698.514080][T12237]  ? __lock_acquire+0x7d10/0x7d10
[  698.519414][T12237]  kvm_vcpu_ioctl+0x8f7/0xc10
[  698.524976][ T5045] usb 10-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=d1.9a
[  698.534439][T12237]  ? kvm_clear_stat_per_vcpu+0x1f0/0x1f0
[  698.540341][ T5045] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  698.549219][T12237]  ? bpf_lsm_file_ioctl+0x5/0x10
[  698.554878][T12237]  ? security_file_ioctl+0x7c/0xa0
[  698.560217][ T5045] usb 10-1: Product: syz
[  698.565360][ T5045] usb 10-1: Manufacturer: syz
[  698.570257][T12237]  ? kvm_clear_stat_per_vcpu+0x1f0/0x1f0
[  698.576498][ T5045] usb 10-1: SerialNumber: syz
[  698.581361][T12237]  __se_sys_ioctl+0xfa/0x170
[  698.595951][ T5045] usb 10-1: config 0 descriptor??
[  698.602059][T12237]  do_syscall_64+0x4c/0xa0
[  698.630070][T12237]  ? clear_bhb_loop+0x30/0x80
[  698.648388][T12237]  ? clear_bhb_loop+0x30/0x80
[  698.654202][T12237]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  698.660343][T12237] RIP: 0033:0x7f3ee98a0e59
[  698.665284][T12237] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  698.688102][T12237] RSP: 002b:00007f3ee7afa028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  698.697485][T12237] RAX: ffffffffffffffda RBX: 00007f3ee9b19fa0 RCX: 00007f3ee98a0e59
[  698.705968][T12237] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  698.714407][T12237] RBP: 00007f3ee9936d6f R08: 0000000000000000 R09: 0000000000000000
[  698.722575][T12237] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  698.731159][T12237] R13: 00007f3ee9b1a038 R14: 00007f3ee9b19fa0 R15: 00007ffeeb621288
[  698.739605][T12237]  </TASK>
[  698.743065][T12237] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  698.750377][T12237] CPU: 1 PID: 12237 Comm: syz.3.1686 Not tainted syzkaller #0
[  698.757837][T12237] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  698.767898][T12237] Call Trace:
[  698.771178][T12237]  <TASK>
[  698.774109][T12237]  dump_stack_lvl+0x188/0x250
[  698.778827][T12237]  ? show_regs_print_info+0x20/0x20
[  698.784032][T12237]  ? load_image+0x400/0x400
[  698.788568][T12237]  panic+0x2e5/0x810
[  698.792535][T12237]  ? bpf_jit_dump+0xd0/0xd0
[  698.797055][T12237]  ? kvm_arch_vcpu_ioctl_run+0x1bc4/0x1f40
[  698.802869][T12237]  __warn+0x248/0x2b0
[  698.806856][T12237]  ? kvm_arch_vcpu_ioctl_run+0x1bc4/0x1f40
[  698.812667][T12237]  report_bug+0x1b7/0x2e0
[  698.817080][T12237]  handle_bug+0x3a/0x70
[  698.821243][T12237]  exc_invalid_op+0x16/0x40
[  698.825761][T12237]  asm_exc_invalid_op+0x16/0x20
[  698.830618][T12237] RIP: 0010:kvm_arch_vcpu_ioctl_run+0x1bc4/0x1f40
[  698.837038][T12237] Code: e8 11 26 af 00 e9 03 e9 ff ff 44 89 f9 80 e1 07 38 c1 0f 8c d5 ed ff ff 4c 89 ff e8 f6 25 af 00 e9 c8 ed ff ff e8 bc 0c 6a 00 <0f> 0b e9 31 fd ff ff 44 89 f9 80 e1 07 38 c1 0f 8c d2 ed ff ff 4c
[  698.856654][T12237] RSP: 0018:ffffc9000307fc30 EFLAGS: 00010287
[  698.862742][T12237] RAX: ffffffff810f3c34 RBX: ffff88807d1dc000 RCX: 0000000000080000
[  698.870713][T12237] RDX: ffffc9000e31a000 RSI: 000000000000040e RDI: 000000000000040f
[  698.878696][T12237] RBP: 0000000000000000 R08: ffffffff8d8a06ef R09: 1ffffffff1b140dd
[  698.886684][T12237] R10: dffffc0000000000 R11: fffffbfff1b140de R12: ffff888057c1f001
[  698.894670][T12237] R13: 1ffff1100fa3b81e R14: ffff88807d1dc0f0 R15: ffff888057c1f000
[  698.902662][T12237]  ? kvm_arch_vcpu_ioctl_run+0x1bc4/0x1f40
[  698.908495][T12237]  ? __lock_acquire+0x7d10/0x7d10
[  698.913546][T12237]  kvm_vcpu_ioctl+0x8f7/0xc10
[  698.918233][T12237]  ? kvm_clear_stat_per_vcpu+0x1f0/0x1f0
[  698.923892][T12237]  ? bpf_lsm_file_ioctl+0x5/0x10
[  698.928921][T12237]  ? security_file_ioctl+0x7c/0xa0
[  698.934038][T12237]  ? kvm_clear_stat_per_vcpu+0x1f0/0x1f0
[  698.939687][T12237]  __se_sys_ioctl+0xfa/0x170
[  698.944281][T12237]  do_syscall_64+0x4c/0xa0
[  698.948702][T12237]  ? clear_bhb_loop+0x30/0x80
[  698.953405][T12237]  ? clear_bhb_loop+0x30/0x80
[  698.958088][T12237]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  698.963982][T12237] RIP: 0033:0x7f3ee98a0e59
[  698.968402][T12237] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  698.988013][T12237] RSP: 002b:00007f3ee7afa028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  698.996446][T12237] RAX: ffffffffffffffda RBX: 00007f3ee9b19fa0 RCX: 00007f3ee98a0e59
[  699.004430][T12237] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  699.012406][T12237] RBP: 00007f3ee9936d6f R08: 0000000000000000 R09: 0000000000000000
[  699.020380][T12237] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  699.028363][T12237] R13: 00007f3ee9b1a038 R14: 00007f3ee9b19fa0 R15: 00007ffeeb621288
[  699.036353][T12237]  </TASK>
[  699.039611][T12237] Kernel Offset: disabled
[  699.044241][T12237] Rebooting in 86400 seconds..