last executing test programs:

12m7.715625616s ago: executing program 32 (id=917):
rt_sigprocmask(0x0, &(0x7f0000000100)={[0xfffffffffffe]}, 0x0, 0x8)
r0 = gettid()
rt_sigtimedwait(&(0x7f0000000240)={[0xffffffffffffffff]}, 0x0, 0x0, 0x8)
tkill(r0, 0x12)

10m33.299577239s ago: executing program 33 (id=1282):
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000100)=0x80000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000140)={@local})
ioctl$IOCTL_VMCI_DATAGRAM_SEND(r0, 0x7ab, &(0x7f0000000040)={&(0x7f0000000280)={{}, {@my=0x0}, 0x400, "787c2ce2fba15d4e9f8e96bc11e2ca247a20c3e26661b174fef725253be9e8480cb4f3524932f59ba189c1429727ef39b4164f93bb821987b3b7f73495bc8e745304668e0e46798c7f5917ea8428d41cab5612336fcfe86c481c8935a48e9c1c86a394feb64fb06f77dadbcb20fc62741432b7dca37007d68e98fe46135d6a1c5ed42102f58daa5211319db84aa9abac734be47c908dc3ffa3aa7b61ec16d3d1209fc618f6c4532ea582628502ac46d167db6d53d8f3184df68414e6b6ec0109664c570e155654e03d58dadd0e5a7bab42bbb4a9afdefc115eb1609e7b50dbd94b94ba8cd86587ad33743b1c9e4a41d3e16af21d6c897a1121bc14de16e78d6d7f2ae79db44e302539fd926e0b91e0fc589e2fa19b218d0508b5ce3ad40d03936693ca5aa41ddc07cf492874569ab037e0530e38245b98131ae0c9afd871df5f51331938764f5a7dd96890edd467b2fbc335ed08174bb5ea722a98b34d38ac6de995de4ee263c81b2567b3f87e2bcaab9d3c530897857edd5d7f97d61fc69788eab4846010d4828cc879f95cddb69ff6438f2a109285c46d8224c36069d30c3c9cf4a6800ae224111136bd9c1e06c4bfc4685d7bb6a7232dbb0d6de9bf105490743dc4b700f24ce6b250b95e6c383fe44967a55d140baf0ec339e3815b29a2245f46c953048c43f961d7fbd734c60a9695f567aa710ce9d3327568895d99dde0266485bbd9d0caecf00e9501a4433b54930cba54e06607ada2f5d818e4804294fcf53058e58e0d33d4aa6dc943811056908fe9116e65cdddac1d2fb24d1eacee389af38b7e5a7056d0de50c6b49fb38388cf28c2d6dd3dbbab84ffbef4b0c02a77f018e8a9749a557909e6aa96185d268dad7744b094d8c6134b8defe26674d65f908f9c3a8c201f661fc22efe0eff248d3a473fe32a5b3643bfad8f186c2af3fbaa1d38560c1244c79a0e48893eefb792af281650f34f6c2d9a6c622aba234b63586713cb66179a0897d98ee5228569c32c1a682807c8db7eb197ccbbd6549db86a6a9aebbf5dc14060f22e2b07d6166f43c25ae0c88be7a4dc38e7ed08972a355b0e5d6fc43b8e5594fa6b36a36a44bb94b75eaff11dc17105f54beda54da2a1ea1acfab354745057dd2e7725f2c8450b19fdf37e19f6ce43449e9191f5a5beb4a1bc176f6130052e83acefd8ff18d592bb75f15f86c9113e4bd67ad420c33ae706cdc10060277b83ef30a50d4ac19c9a791b309377aa20a4743bbb799abc3ba58071b628c9ba8103bbfe389939e55296ec9b4f8d3a03aff30ce9aa0dd6e5158a672be8f3da8349ed4ad82f6ca67ee29e8b234840cf7846e604e5b8135abd94d71fe0a79180e75d4e193ea8df466c087b660fe984943751a9f6df8545699701d478c2b3daa949155770e74835bcd972de27afd20b02ce0e504c15b02374372"}, 0x418})

10m13.550825137s ago: executing program 34 (id=1384):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001100050000000000000000000700d1d1", @ANYRES32=r2, @ANYBLOB="00000000000000001c001a8018000580140007800800010000000000080002"], 0x3c}}, 0x0)

7m51.577864232s ago: executing program 35 (id=2043):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={0x30, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @NL80211_ATTR_AUTH_TYPE={0x8, 0x35, 0x6}]}, 0x30}}, 0x0)

7m2.652377725s ago: executing program 36 (id=2294):
io_setup(0x23, &(0x7f0000000280)=<r0=>0x0)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder1\x00', 0x0, 0x0)
io_submit(r0, 0x1, &(0x7f0000000700)=[&(0x7f00000002c0)={0x0, 0x0, 0x0, 0x5, 0x0, r1, 0x0}])
ioctl$BINDER_WRITE_READ(r1, 0x40046208, 0x0)

6m28.541857546s ago: executing program 7 (id=2454):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'wp384-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r1)

6m26.028298298s ago: executing program 7 (id=2473):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'geneve0\x00', <r1=>0x0})
sendto$packet(r0, &(0x7f0000000180)="0b032200e0ff25000200475400f6a13bb1000000080086dd4803", 0x10000, 0x0, &(0x7f0000000140)={0x11, 0x0, r1}, 0x14)

6m23.608404476s ago: executing program 7 (id=2489):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x15)
ioctl$KDFONTOP_GET(0xffffffffffffffff, 0x560f, &(0x7f0000000000)={0x1, 0x1, 0x1e, 0x1e, 0x2, 0x0})
ioctl$TCFLSH(r0, 0x40384708, 0x20000000)

6m22.567396501s ago: executing program 7 (id=2496):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000040000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000180)='sys_enter\x00', r0}, 0x10)
io_cancel(0x0, 0x0, 0x0)

6m20.528122111s ago: executing program 7 (id=2507):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x400e, &(0x7f00000001c0)={[{@i_version}, {@nombcache}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@lazytime}, {@block_validity}, {@quota}]}, 0x1, 0x43a, &(0x7f0000000a40)="$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")
mount$overlay(0x0, &(0x7f0000001340)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
getdents(r0, &(0x7f00000001c0)=""/4089, 0xff9)

6m17.722271402s ago: executing program 2 (id=2519):
r0 = memfd_create(&(0x7f0000000340)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xe7a\x9b\x11x\x0e\xa1\xcf\x1a\x98S7\xc9\x00\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x04\x879\xa24\xa9am\xde\xb2\xd3\xcbZJoa\xc4\x1acB\xaa\xc1\xfb Q\xd4\xf4\x01\xa52\xe2DG\xd4\xbd{\x9f\xa9\x97\x9b@\xdb\x00b\xe1br\xb6\x008\xe3\x10\xff\xc2\x9d\r2\x9e\x8e\x04sW\x1b\xb7\xb3\xa2\xc9&@\xca\xda\xdc\xe2/\x97X\xac\b\xb0\xc2<\x80E\x1a\xbc\xc7W\xda9VsA\xaf\xc6\xcf\xe1\xa1\xb5M\xa2\x85\xa6y\xc4J\xf1\xf7\xfcD\x95\xe3\xeb\xc7\xbc\x91\xb0\xa8\x9eo\xebF(\x9dL\x01vRk\xaacB\x04\xa7I\v\x86EZ\x96\xd5\x14OD\\\xe8R\xe4\xcd\xec\xcc\xd1\x0fre\xe86\xcd\xeb\xc4$\x98\x06J\xd6dD\x8d_U`ji{\xab\x97\xaf;l\x1f\xaf\xb38U\xcb\xfa\xb3j\x92\f\x81\xa0\xa2-g\b\x99\x0e\x8d\x8d\x16\xd9w\\\xf8\xce\xb0j\x9d\'\x93\xef\x1d\xa0H\xd9\xbd\xd9\xaf\x12$\x8d\x16%\x8b\x00', 0x3)
ftruncate(r0, 0xffff)
fcntl$addseals(r0, 0x409, 0x17)
fallocate(r0, 0x1, 0x0, 0x85c)

6m16.817357853s ago: executing program 7 (id=2524):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x21, &(0x7f0000000100)=0x1, 0x4)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e22, 0x5, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x32}}, 0x4}, 0x1c)
getsockopt$sock_buf(r0, 0x1, 0x1c, 0x0, &(0x7f0000000140))

6m5.71755686s ago: executing program 2 (id=2548):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_X86_SETUP_MCE(r2, 0x4008ae9c, 0x0)

6m4.431066476s ago: executing program 37 (id=2548):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_X86_SETUP_MCE(r2, 0x4008ae9c, 0x0)

6m1.028041454s ago: executing program 38 (id=2524):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x21, &(0x7f0000000100)=0x1, 0x4)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e22, 0x5, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x32}}, 0x4}, 0x1c)
getsockopt$sock_buf(r0, 0x1, 0x1c, 0x0, &(0x7f0000000140))

5m6.02105733s ago: executing program 8 (id=2776):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008d}, 0x0)
r0 = add_key$user(&(0x7f0000000200), &(0x7f0000000300)={'syz', 0x1}, &(0x7f0000000240)="01", 0x1, 0xfffffffffffffffe)
r1 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000000)={r0, r1, r1}, &(0x7f0000000480)=""/231, 0xe7, &(0x7f00000000c0)={&(0x7f0000000040)={'crc32c-generic\x00'}, 0x0, 0x32})

5m5.146102226s ago: executing program 8 (id=2782):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
futex(&(0x7f000000cffc)=0x4, 0x80000000000b, 0x4, &(0x7f000000b000)={0x77359400}, &(0x7f0000048000), 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)

5m3.377857431s ago: executing program 8 (id=2789):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x11, 0x80a, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000300)={'bond0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=@newlink={0x44, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, r2}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bond={{0x9}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BOND_MIIMON={0x8, 0x3, 0x4}, @IFLA_BOND_ARP_INTERVAL={0x8, 0x7, 0x1}]}}}]}, 0x44}}, 0x0)

5m2.769401633s ago: executing program 8 (id=2792):
syz_mount_image$hfsplus(&(0x7f0000000100), &(0x7f0000000080)='./file1\x00', 0x80, &(0x7f0000000480)={[{@uid}, {@barrier}, {}, {@type={'type', 0x3d, "3d21b0c7"}}, {@nobarrier}, {@uid}, {@nls={'nls', 0x3d, 'iso8859-7'}}]}, 0x44, 0x6ff, &(0x7f0000000500)="$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")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x1c)
getdents(r0, &(0x7f0000001fc0)=""/184, 0xb8)

5m1.585817659s ago: executing program 8 (id=2797):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000ffffffff3b00000008000300", @ANYRES32=r2, @ANYBLOB="2c00330000b0fb0008027a000001080211000000951933b91cb2f7f000008ac1000205000006010101010101040087"], 0x4c}}, 0x0)

5m0.587500754s ago: executing program 8 (id=2801):
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000000)='./file0\x00', 0x1218088, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x6, 0x2c2, &(0x7f00000008c0)="$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")
ioctl$HIDIOCGREPORTINFO(0xffffffffffffffff, 0xc00c4809, &(0x7f0000000100)={0xfffffffe, 0x100, 0x2})
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
creat(&(0x7f0000000100)='./bus\x00', 0x0)

4m58.8516924s ago: executing program 39 (id=2801):
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000000)='./file0\x00', 0x1218088, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x6, 0x2c2, &(0x7f00000008c0)="$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")
ioctl$HIDIOCGREPORTINFO(0xffffffffffffffff, 0xc00c4809, &(0x7f0000000100)={0xfffffffe, 0x100, 0x2})
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
creat(&(0x7f0000000100)='./bus\x00', 0x0)

2m16.4705255s ago: executing program 1 (id=3627):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000180)={'wpan1\x00', <r2=>0x0})
sendmsg$NL802154_CMD_SET_SEC_PARAMS(r0, &(0x7f0000000f80)={0x0, 0x0, &(0x7f0000000f40)={&(0x7f0000000e40)={0x30, r1, 0x187, 0x70bd2d, 0x25dfdbfc, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r2}, @NL802154_ATTR_SEC_OUT_KEY_ID={0x14, 0x2b, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x1}, @NL802154_KEY_ID_ATTR_INDEX={0x5}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x20000004}, 0x40000)

2m15.865091248s ago: executing program 1 (id=3631):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffa702000008000000b70300000000ecb2850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000004c0)='ext4_error\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f0000000140)={[{@noload}, {@resuid={'resuid', 0x3d, 0xee01}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@lazytime}, {@quota}, {@quota}]}, 0x3, 0x443, &(0x7f0000000940)="$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")

2m14.34563265s ago: executing program 1 (id=3636):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="1801000000000000000000006dfeff00850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r0}, 0x10)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
mlock2(&(0x7f0000018000/0x2000)=nil, 0x2000, 0x0)

2m13.185017775s ago: executing program 1 (id=3642):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000b80)={[{@nombcache}, {@abort}, {@dioread_lock}, {@norecovery}, {@discard}, {@lazytime}, {@noload}, {@usrquota}, {@noauto_da_alloc}]}, 0xfe, 0x558, &(0x7f0000000c00)="$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")
mount$overlay(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000380), 0x0, &(0x7f00000002c0)={[{@workdir={'workdir', 0x3d, './file1'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}], [], 0x2c})
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000340), 0x0, &(0x7f0000000140)={[{@index_off}, {@lowerdir={'lowerdir', 0x3d, './file1'}}, {@workdir={'workdir', 0x3d, './file1'}}, {@upperdir={'upperdir', 0x3d, './bus'}}]})

2m11.62716106s ago: executing program 1 (id=3649):
r0 = syz_io_uring_setup(0x4e, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0xfffffffd}, &(0x7f0000000040)=<r1=>0x0, &(0x7f0000000080)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f0000000280)=@IORING_OP_FILES_UPDATE={0x14, 0x1, 0x0, 0x0, 0xf7e, 0x0})
io_uring_enter(r0, 0x4184, 0x0, 0x1, 0x0, 0x0)

2m9.932331966s ago: executing program 1 (id=3658):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TUNSETOFFLOAD(r0, 0xc004743e, 0x20001439)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000300), 0x20022, 0x0)
ioctl$PPPIOCATTACH(r1, 0x4004743d, &(0x7f0000000240)=0x1)

2m9.125265398s ago: executing program 40 (id=3658):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TUNSETOFFLOAD(r0, 0xc004743e, 0x20001439)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000300), 0x20022, 0x0)
ioctl$PPPIOCATTACH(r1, 0x4004743d, &(0x7f0000000240)=0x1)

1m24.927437669s ago: executing program 9 (id=3862):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x2000c10, &(0x7f0000000040)={[{@nobh}, {@abort}]}, 0xff, 0x23f, &(0x7f0000000540)="$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")
syz_mount_image$ext4(0x0, &(0x7f0000000080)='./file0\x00', 0x18808, 0x0, 0xf7, 0x0, 0x0)
r0 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', &(0x7f0000000080), 0x18)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r0, 0x800c6613, &(0x7f00000003c0)=@v1={0x2, @aes128, 0x0, @auto='\t\x00'})

1m23.872793401s ago: executing program 9 (id=3868):
syz_mount_image$hfsplus(&(0x7f00000000c0), &(0x7f0000000980)='./bus\x00', 0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="666f7263652c6e6f626172726965722c63726561746f723dbd3c66f52c6e6c733d6d6163696e7569742c666f7263652c666f7263652c00e4fc379f5d3b737931087563d08075a28550d98b7ceb93413b717546de81c69d046a7c7de8b7877acbd69ee6be03a2ee9a6f18a95984da551773b44694170cc523576b447ba266b98f316ea57b543f70ba341c31a3ebdda905e7fe6b43c2a3df705330ee5e204149ac4976e64dd1fadd4aa5366c443b6b98d34c"], 0x3, 0x6af, &(0x7f0000002200)="$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")
setxattr$security_ima(&(0x7f0000000100)='./file1\x00', &(0x7f0000000140), &(0x7f0000000340)=ANY=[], 0x700, 0x0)
setxattr$trusted_overlay_upper(&(0x7f0000000240)='./file1\x00', &(0x7f0000000280), &(0x7f0000002640)=ANY=[], 0x859, 0x0)
listxattr(&(0x7f0000000a00)='./file1\x00', 0x0, 0x3b)

1m22.875418005s ago: executing program 9 (id=3877):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000040)={0x1f, 0x0, @any, 0x0, 0x2}, 0xe)
setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0xf, &(0x7f0000000000)=0x4, 0x4)
recvmsg(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x40002141)

1m22.25090957s ago: executing program 9 (id=3883):
syz_mount_image$squashfs(&(0x7f00000006c0), &(0x7f0000000000)='./file0\x00', 0x804c5a, &(0x7f0000000240)=ANY=[@ANYRES16=0x0, @ANYRESDEC, @ANYRESHEX, @ANYRESDEC, @ANYRES8=0x0, @ANYRES8, @ANYBLOB="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", @ANYRESDEC, @ANYRES32=0x0], 0x3, 0x1f4, &(0x7f0000000f40)="$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")
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='sysfs\x00', 0x0, 0x0)
setxattr$security_capability(0x0, &(0x7f0000000280), 0x0, 0x0, 0x0)
lgetxattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000280)=ANY=[], 0x0, 0x631)

1m21.973917329s ago: executing program 9 (id=3884):
r0 = syz_open_dev$vim2m(&(0x7f0000000680), 0x1f, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f0000000040)={0x1, 0x1, 0x1})
ioctl$vim2m_VIDIOC_STREAMOFF(r0, 0x40045612, &(0x7f0000000000)=0x1)
ppoll(&(0x7f0000000080)=[{r0, 0x24c0}], 0x1, &(0x7f0000000100), 0x0, 0x0)

1m21.044713213s ago: executing program 9 (id=3893):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f00000004c0)={0xf, {{0x2, 0x20, @multicast2}}}, 0x88)
r1 = openat$mice(0xffffffffffffff9c, &(0x7f0000000180), 0x1)
dup3(r1, r0, 0x0)

1m19.754969034s ago: executing program 41 (id=3893):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f00000004c0)={0xf, {{0x2, 0x20, @multicast2}}}, 0x88)
r1 = openat$mice(0xffffffffffffff9c, &(0x7f0000000180), 0x1)
dup3(r1, r0, 0x0)

28.860267824s ago: executing program 6 (id=4209):
syz_mount_image$udf(&(0x7f0000000f00), &(0x7f00000000c0)='./file1\x00', 0x210008, &(0x7f0000001040)=ANY=[@ANYBLOB='uid=', @ANYRESDEC=0x0, @ANYBLOB="2c756e64656c6574652c6e6f7672732c6164696e6963622c766f6c756d653d30303030303030303030303030303030303030322c7569643d666f726765742c6769643d666f726765742c6e6f7374726963742c6e6f7672732c0085f95733019d784ca386da1fd41ffabd4b47acca2b8d488be702157dd8711c31732d"], 0xff, 0xc2d, &(0x7f0000002540)="$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")
ioprio_set$pid(0x2, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000540)='./file1\x00', 0x46842, 0x0)
sendfile(r0, r0, 0x0, 0x7a680000)

27.848184608s ago: executing program 6 (id=4214):
r0 = socket$kcm(0x2, 0x200000000000001, 0x106)
sendmsg$inet(r0, &(0x7f0000000080)={&(0x7f0000000000)={0x2, 0x4001, @local}, 0x10, 0x0}, 0x30004001)
sendmsg(r0, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000840)=[{&(0x7f0000000780)="a9", 0xfffffdef}], 0x1}, 0x0)
ioctl$sock_TIOCOUTQ(r0, 0x5411, &(0x7f0000000000))

26.875696602s ago: executing program 6 (id=4219):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)=@newqdisc={0x44, 0x24, 0x3fe3aa0262d8c583, 0x70bd27, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}, {0xfff1}}, [@qdisc_kind_options=@q_fq_pie={{0xb}, {0x14, 0x8002, [@TCA_FQ_PIE_MEMORY_LIMIT={0x8, 0x8, 0x1}, @TCA_FQ_PIE_QUANTUM={0x8, 0x7, 0xb0b1}]}}]}, 0x44}}, 0x400c4)

26.267770701s ago: executing program 6 (id=4222):
syz_mount_image$exfat(0x0, &(0x7f0000000400)='./file0\x00', 0x4800, 0x0, 0x0, 0x0, &(0x7f0000000400))
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(&(0x7f0000000040)='./file0/file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x81105a, 0x0)
mount$bind(&(0x7f0000000dc0)='./file0/../file0\x00', &(0x7f0000000440)='./file0/file0\x00', 0x0, 0x202000, 0x0)

25.054220308s ago: executing program 6 (id=4225):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r0, &(0x7f0000000200)={0x2, 0x4e24, @multicast2}, 0x10)
sendmmsg(r0, &(0x7f0000003a80)=[{{&(0x7f00000000c0)=@in={0x2, 0x4e24, @loopback}, 0x80, 0x0}}], 0x1, 0x20000020)
setsockopt$inet_tcp_TLS_TX(r0, 0x6, 0xc, &(0x7f0000000180)=@ccm_128={{0x304}, "9f0f75e993b8d9cb", "f483a506e878296bf8956b7fd10e01d9", "55ceb57a", "25a33938110bdc2a"}, 0x28)

24.576696177s ago: executing program 6 (id=4227):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x9, 0x9, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x3000003, 0x4031, 0xffffffffffffffff, 0x0)

23.497711507s ago: executing program 42 (id=4227):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x9, 0x9, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x3000003, 0x4031, 0xffffffffffffffff, 0x0)

14.747648884s ago: executing program 5 (id=4267):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000056, &(0x7f0000000540)={[{@nogrpid}, {@data_err_abort}, {@noload}, {@dioread_lock}, {@jqfmt_vfsv0}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b3}}, {@noload}, {@i_version}, {@noinit_itable}, {@user_xattr}, {@bh}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@noload}]}, 0x1, 0x54f, &(0x7f0000000b00)="$eJzs3d9rW1UcAPDvTdv91nUwhopIYQ9O5tK19ccEH+aj6HCg7zO0d2U0WUaTjrUO3B7ciy8yBBEH4ru++zj8B/wrBjoYMoo++BK56U2XrUmbZdnamc8HbnvOvTc995t7v6fn5iQkgKE1kf0oRLwcEd8kEQfbto1GvnFibb/V+1dnsyWJRuPTv5JI8nWt/ZP89/688lJE/PZVxPHCxnZryysLpXI5Xczrk/XKpcna8sqJC5XSfDqfXpyemTn19sz0e+++M7BY3zj7z/ef3P7w1NdHV7/75e6hm0mcjgP5tvY4nsC19spETOTPyVicfmTHqQE0tpMk230A9GUkz/OxyPqAgzGSZz3w//dlRDSAIZXIfxhSrXFA695+QPfBz417H6zdAG2Mf3TttZHY07w32reaPHRnlN3vjg+g/ayNX/+8dTNbYnCvQwBs6dr1iDg5Orqx/0vy/q9/J3vY59E29H/w7NzOxj9vdhr/FNbHP9Fh/LO/Q+72Y+v8L9wdQDNdZeO/9zuOf9cnrcZH8toLzTHfWHL+QjnN+rYXI+JYjO3O6pvN55xavdPotq19/JctWfutsWB+HHdHdz/8mLlSvfQkMbe7dz3ilY7j32T9/Ccdzn/2fJztsY0j6a3Xum3bOv6nq/FTxOsdz/+DGa1k8/nJyeb1MNm6Kjb6+8aR37u1v93xZ+d/3+bxjyft87W1x2/jxz3/pt229Xv970o+a5Z35euulOr1xamIXcnHG9dPP3hsq97aP4v/2NHN+79O1//eiPi8x/hvHP751f7jf7qy+Oce6/w/fuHOR1/80K393s7/W83SsXxNL/1frwf4JM8dAAAAAAAA7DSFiDgQSaG4Xi4UisW193ccjn2FcrVWP36+unRxLpqflR2PsUJrpvtg2/shpvL3w7bq04/UZyLiUER8O7K3WS/OVstz2x08AAAAAAAAAAAAAAAAAAAA7BD7u3z+P/PHyHYfHfDU+cpvGF5b5v8gvukJ2JH8/4fhJf9heMl/GF7yH4aX/IfhJf9heMl/GF7yHwAAAAAAAAAAAAAAAAAAAAAAAAAAAAbq7Jkz2dJYvX91NqvPXV5eWqhePjGX1haKlaXZ4mx18VJxvlqdL6fF2Wplq79XrlYvTU3H0pXJelqrT9aWV85VqksX6+cuVErz6bl07JlEBQAAAAAAAAAAAAAAAAAAAM+X2vLKQqlcThcVFPoqjO6Mw1AYcGG7eyYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAeOC/AAAA///ktDiZ")
syz_mount_image$msdos(&(0x7f0000000180), &(0x7f0000000100)='.\x00', 0xe1, &(0x7f0000000840)=ANY=[], 0x1, 0x0, &(0x7f0000000000))
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000280)='./file0\x00', 0x88a, &(0x7f00000001c0)={[{@usrquota}, {@usrjquota, 0x22}, {@errors_continue}, {@noload}, {@data_err_ignore}, {@grpjquota, 0x22}, {@grpquota}, {@jqfmt_vfsold}, {@noblock_validity}]}, 0xfe, 0x44e, &(0x7f0000000900)="$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")
syz_mount_image$msdos(&(0x7f0000000180), &(0x7f0000000100)='.\x00', 0x64, &(0x7f00000001c0)=ANY=[], 0x1, 0x0, &(0x7f0000000000))

13.179446311s ago: executing program 5 (id=4272):
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000})
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000380)={[{@grpquota}, {@nobarrier}, {@noauto_da_alloc}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$eJzs3c9vG1kdAPCvnThx0uwmu+wBEOyW3YWCqjqJuxut9gDLCSFUCdEjSG1I3CiKHUexU5rQQ3rmikQlTnDkD+DcE3cuCG5cygGJHxGoQeLg1YwnqZvaTdQkdhR/PtJo3ps39fe9pvNe/U3iF8DQuhoRuxExFhF3I2I6u57LjvisfST3Pdt7uLS/93ApF63W7X/l0vbkWnT8mcSV7DWLEfGj70X8NPdy3Mb2ztpitVrZzOqzzdrGbGN758ZqbXGlslJZL5cX5hfmPrn5cfnMxvpebSwrffXpH3e/9fOkW1PZlc5xnKX20AuHcRKjEfGD8wg2ACPZeMYG3RFeSz4i3o6I99PnfzpG0q8mAHCZtVrT0ZrurAMAl10+zYHl8qUsFzAV+Xyp1M7hvROT+Wq90bx+r761vtzOlc1EIX9vtVqZy3KFM1HIJfX5tPy8Xj5SvxkRb0XEL8cn0nppqV5dHuR/fABgiF05sv7/d7y9/gMAl1xx0B0AAPrO+g8Aw8f6DwDDx/oPAMOnvf5PDLobAEAfef8PAMPH+g8AQ+WHt24lR2s/+/zr5fvbW2v1+zeWK421Um1rqbRU39wordTrK+ln9tSOe71qvb4x/1FsPZj59kajOdvY3rlTq2+tN++kn+t9p1JI79rtw8gAgF7eeu/JX3LJivzpRHpEx14OhYH2DDhv+UF3ABiYkUF3ABgYu33B8DrFe3zpAbgkumzR+4Jit18QarVarfPrEnDOrn1J/h+GVUf+308Bw5CR/4fhJf8Pw6vVyp10z/846Y0AwMUmxw/0+P7/29n5d9k3B36yfPSOx+fZKwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALjYDvb/LWV7gU9FPl8qRbwRETNRyN1brVbmIuLNiPjzeGE8qc8PuM8AwGnl/57L9v+6Nv3h1AtN7145LI5FxM9+fftXDxabzc0/RYzl/j1+cL35OLte7n/vAYDjHazT6bnjjfyzvYdLB0c/+/OP70ZEsR1/f28s9g/jj8Zoei5GISIm/5PL6m25jtzFaew+iogvdht/LqbSHEh759Oj8ZPYb/Q1fv6F+Pm0rX1O/i6+cAZ9gWHzJJl/Puv2/OXjanru/vwX0xnq9LL5L3mppf10Dnwe/2D+G+kx/109aYyP/vD9dmni5bZHEV8ejTiIvd8x/xzEz/WI/+EJ4//1K+++36ut9ZuIa9E9fmes2WZtY7axvXNjtba4UlmprJfLC/MLc5/c/Lg8m+aoZ3uvBv/89PqbvdqS8U/2iF88ZvxfP+H4f/v/uz/+2ivif/ODbvHz8c4r4idr4jdOGH9x8vfFXm1J/OUe4z/u63/9hPGf/m3npW3DAYDBaWzvrC1Wq5VNBYWLX0j+yV6AbnQtfKdfscaie9MvPmg/00eaWq3XitVrxjiLrBtwERw+9BHxv0F3BgAAAAAAAAAAAAAA6Kofv7E06DECAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABweX0eAAD//19xzyM=")
setxattr$trusted_overlay_upper(&(0x7f0000000300)='./file1\x00', &(0x7f0000000240), &(0x7f00000003c0)=ANY=[], 0xff68, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_serviced\x00', 0x26e1, 0x0)

11.871505454s ago: executing program 5 (id=4277):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r0}, 0x10)
symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
listxattr(&(0x7f0000000280)='./file0\x00', 0x0, 0x0)

11.279961163s ago: executing program 5 (id=4289):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000640)='./file2\x00', 0x10050, &(0x7f00000000c0)={[{@errors_remount}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x7}}]}, 0x3, 0x51e, &(0x7f0000000680)="$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")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x1204001, &(0x7f00000011c0)={[{@lowerdir={'lowerdir', 0x3d, '.'}, 0x3a}], [], 0x2f})
chdir(&(0x7f00000001c0)='./file0\x00')
lstat(&(0x7f0000000140)='./file2\x00', 0x0)

10.087144858s ago: executing program 5 (id=4284):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'sha512\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
writev(r1, &(0x7f00000002c0)=[{&(0x7f0000000240)="fb30e2ca99a6b27d95f044c7492a4aa232b74c3051339b10565492e97e564dc11b8cf2870881f6c1066a1b2f1d87907f5df3963e0752fe01d841588c7a3249b29ec8657ac5437ea72a573063b94a1445022df3507c2f", 0x56}, {&(0x7f00000001c0)="7c017f96e6b8d41e3d32a8b7405e3eb9602282200fea802e7c0888bba2dc9101ab86d616f88db19df7cbf7", 0x2b}], 0x2)

8.820988612s ago: executing program 5 (id=4287):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
unshare(0x22020400)

5.904641341s ago: executing program 43 (id=4287):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
unshare(0x22020400)

4.03959428s ago: executing program 0 (id=4297):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={<r1=>0x0, 0x1c, &(0x7f0000000040)=[@in6={0xa, 0x4e20, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}]}, &(0x7f0000000180)=0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(r0, 0x84, 0x70, &(0x7f0000000240)={r1, @in6={{0xa, 0x4e22, 0x7, @mcast1, 0x1004}}, [0x6, 0x4, 0xab, 0x100000000, 0x801, 0x7c, 0xd, 0x4, 0x9, 0x7, 0x3364452d, 0x7, 0x7fff, 0x6dc0, 0x6]}, &(0x7f00000000c0)=0x100)

3.83132063s ago: executing program 3 (id=4298):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x20, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB="4400000010000304000000000000000000007400", @ANYRES32=r2, @ANYBLOB="0000000000000000240012800b00010062726964676500001400028006002700000ffe0005002d"], 0x44}}, 0x0)

3.508712915s ago: executing program 0 (id=4300):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000400), 0xffffffffffffffff)
recvmmsg(r0, &(0x7f00000015c0)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000009c0)=""/151, 0x97}, {&(0x7f0000000c40)=""/183, 0xb7}, {&(0x7f0000000dc0)=""/143, 0x8f}, {&(0x7f0000000a80)=""/179, 0xb3}, {&(0x7f0000001640)=""/4080, 0xff0}], 0x5}}], 0x1, 0x0, 0x0)
sendmsg$ETHTOOL_MSG_STRSET_GET(r0, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000080)=ANY=[@ANYBLOB="18000000", @ANYRES16=r1, @ANYBLOB="030704707900000000000100040004000180"], 0x18}}, 0x0)

3.230341793s ago: executing program 3 (id=4301):
syz_emit_ethernet(0x8e, &(0x7f0000000100)=ANY=[@ANYBLOB="aaaaaaaaaaaa1acd1f78800d86dd608a37f200587300fe8002000000000000000000000000bbfe"], 0x0)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x42002)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x0, 0x0, 'queue1\x00'})
write$sndseq(r0, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32}], 0xffc8)

3.008020545s ago: executing program 4 (id=4302):
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, 0x0, &(0x7f0000000180))

2.846290152s ago: executing program 0 (id=4303):
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x10, &(0x7f0000000380)={[{@nfs_export_on}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}, {@verity_require}, {@workdir={'workdir', 0x3d, './file0'}}]})

2.669408281s ago: executing program 3 (id=4304):
r0 = socket$inet6(0xa, 0x40000080806, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x80, 0x0, @mcast1, 0x8}, 0x1c)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @dev}, 0x1c)
close(r0)

2.503126126s ago: executing program 4 (id=4305):
openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
r0 = syz_io_uring_setup(0x239, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000000)=<r1=>0x0, &(0x7f00000001c0)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000380)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r0, 0x6256, 0x0, 0x0, 0x0, 0x0)

2.361659938s ago: executing program 2 (id=4229):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000100)='./binderfs/binder0\x00', 0x800, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0)
r1 = dup2(r0, r0)
ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0)

2.168765604s ago: executing program 0 (id=4306):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000800)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a2c000000060a0b040000000000000000020000000900010073797a30000000000900020073797a320000000014000000110001"], 0x54}, 0x1, 0x0, 0x0, 0x2408c004}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a38000000080a4fdd99a98e6dfb2d0000020000000900020073797a32000000000900010073797a30000000000c0003400000000000000002"], 0x60}}, 0x0)

2.099996148s ago: executing program 3 (id=4307):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000b00), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000b40)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_STATION(r0, &(0x7f0000000c40)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x30, r1, 0x1, 0x70bd27, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_STA_FLAGS={0x8, 0x11, 0x0, 0x1, [@NL80211_STA_FLAG_SHORT_PREAMBLE={0x4}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x81}, 0x8004)

1.930308058s ago: executing program 2 (id=4308):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000340)={0x400000100002f})
ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3)
write$uinput_user_dev(r0, &(0x7f0000000800)={'syz1\x00', {0x1, 0x4, 0x8b6, 0xe03}, 0x12, [0x2, 0x10001, 0x905a, 0x8, 0x7, 0x212, 0xca, 0x6, 0x1, 0xd, 0x7, 0x6, 0x7fffffff, 0x3ff, 0x6, 0x1, 0x9, 0x5221, 0x6, 0x4, 0x2, 0x7, 0x8001, 0xfffff801, 0x3308, 0x1, 0x9, 0x4, 0x3800000, 0xc, 0x7, 0x80000001, 0x5, 0x7f, 0x7c, 0x8, 0x3, 0x9, 0x8, 0x800, 0x7ff, 0x3, 0x1, 0x8, 0x1, 0x4, 0x8000, 0x3ff, 0x7ff, 0x1, 0x81, 0x7, 0x1, 0x81, 0x0, 0xfffffffa, 0xb5e, 0x6, 0xe, 0x21, 0x0, 0x9, 0x0, 0x1], [0x1, 0x9, 0xe, 0x2, 0x86f2, 0x7, 0xf3a, 0x4, 0x6, 0x8000, 0x9, 0x2, 0x3, 0x5, 0x4, 0x0, 0x0, 0x6, 0x10000, 0x100, 0x7, 0x4, 0x6, 0xb7c, 0x1, 0x9, 0x2, 0xd6, 0x8, 0x8, 0x6, 0x1, 0x6, 0x4, 0x6, 0xaaa8, 0x8, 0x80, 0x3, 0x800, 0x6, 0x8000, 0x7f, 0xcb, 0xfffffffd, 0x90, 0x8, 0x6, 0x8, 0x8, 0x6, 0x1, 0x7, 0x4, 0x7, 0x8, 0x9, 0x4, 0x9, 0xcc03, 0x7fffffff, 0x5, 0x3, 0x8], [0x10000, 0x2, 0x1, 0x1ff, 0x3, 0xfffffffd, 0x6, 0x3, 0x9, 0x92c6, 0xe, 0x3, 0xfffffffc, 0x6, 0x0, 0xffff, 0x3, 0x7, 0x970, 0x4, 0x9, 0x200, 0xfffffff8, 0x4, 0x3c, 0x5, 0x94b, 0x5, 0x0, 0xa, 0xe12e, 0xa100, 0x200, 0x5, 0x7, 0xf, 0x7fffffff, 0xb, 0x8, 0x35f, 0xfffffd7f, 0xffffffff, 0x80000000, 0x6, 0x7ff, 0x1, 0x9, 0x9, 0x6, 0x9, 0x9, 0x3, 0x0, 0xe, 0x3ff, 0xffffffff, 0x8001, 0x8, 0xfff, 0x8, 0x9, 0x3, 0x4, 0x2], [0x5, 0xdf, 0x4, 0x7a, 0x8, 0x0, 0xc, 0x9, 0x1, 0x400, 0xc, 0x689b, 0x4, 0x9, 0x6, 0x9, 0x8, 0x8, 0x6, 0xfffffffa, 0x800, 0xb71, 0x0, 0x7, 0x8, 0x81, 0x9, 0xff0, 0x2, 0x4, 0x8, 0x0, 0x2, 0x67, 0x2, 0x70634a70, 0x1, 0x9, 0x4, 0x8, 0x1f, 0xfffffffd, 0x1000, 0x8001, 0x9, 0x245e, 0xc, 0x100, 0xa1c, 0x0, 0x4ac, 0x39, 0x2, 0x3, 0x3, 0x3, 0xfffffffc, 0x293, 0x4, 0x3, 0x8, 0x0, 0xfffffffc, 0x3]}, 0x45c)

1.877959409s ago: executing program 4 (id=4309):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r0}, 0x10)
r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/sys/net/ipv4/vs/lblcr_expiration\x00', 0x2, 0x0)
preadv(r1, &(0x7f0000002fc0)=[{&(0x7f0000000e80)=""/4096, 0x1000}, {&(0x7f0000001e80)=""/4096, 0x1000}], 0x2, 0x7, 0x7ff)

1.44377946s ago: executing program 0 (id=4310):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000000000000000000000100000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000240)='netlink_extack\x00', r0}, 0x10)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x0, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@private1}, {@in6=@remote, 0x0, 0x32}, @in6=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha1\x00'}, 0x0, 0x2}}]}, 0x13c}}, 0x0)

1.443383689s ago: executing program 4 (id=4311):
r0 = add_key$keyring(&(0x7f0000000280), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe)
r1 = add_key$keyring(&(0x7f0000000200), &(0x7f0000000240)={'syz', 0x3}, 0x0, 0x0, r0)
add_key$keyring(&(0x7f0000000440), &(0x7f0000000480)={'syz', 0x3}, 0x0, 0x0, r1)
keyctl$KEYCTL_MOVE(0x1e, r1, r1, r0, 0x0)

1.400780761s ago: executing program 3 (id=4312):
open(&(0x7f0000000080)='./bus\x00', 0x143862, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000a70000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
mount(&(0x7f0000000100), &(0x7f0000000280)='./bus\x00', &(0x7f00000002c0)='9p\x00', 0x0, &(0x7f0000000300)='trans=rdma,')

1.355903746s ago: executing program 2 (id=4313):
r0 = socket$kcm(0x2b, 0x1, 0x0)
sendmsg$inet(r0, &(0x7f0000001700)={0x0, 0x0, 0x0}, 0x20000010)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x0, 0x0, 0x2, 0x0, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0xfffffffe, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
ioctl$sock_kcm_SIOCKCMATTACH(r0, 0x890c, &(0x7f0000000100))

935.886929ms ago: executing program 4 (id=4314):
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bind$llc(r0, &(0x7f0000000040)={0x1a, 0x0, 0x0, 0x54}, 0x10)
listen(r0, 0x8)
listen(r0, 0xf)

842.434286ms ago: executing program 0 (id=4315):
creat(&(0x7f0000000100)='./file0\x00', 0xd931d3864d39dcca)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
syz_mount_image$jfs(&(0x7f0000000080), &(0x7f0000000000)='./file0\x00', 0x2010880, &(0x7f00000002c0)={[{@gid}, {@discard_size={'discard', 0x3d, 0x9}}, {@gid}, {}, {@errors_continue}, {@discard}, {@nointegrity, 0x0}, {@iocharset={'iocharset', 0x3d, 'iso8859-1'}}, {@grpquota}, {@usrquota}, {@uid}, {@quota}, {@gid}, {@noquota}, {@errors_remount}, {@gid}, {@noquota}], [{@subj_type={'subj_type', 0x3d, '+-]{.&Q.'}}, {@fowner_eq}, {@measure}]}, 0x5, 0x60ea, &(0x7f000000c4c0)="$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")

747.594911ms ago: executing program 3 (id=4316):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/timer_list\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000500)=0x15)
sendfile(r0, r1, 0x0, 0x20000023896)

747.225568ms ago: executing program 2 (id=4317):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000dfff75390000000000000000850000007d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='io_uring_register\x00', r0}, 0x10)
r1 = io_uring_setup(0x5bec, &(0x7f0000000040))
io_uring_register$IORING_REGISTER_FILES(r1, 0x2, &(0x7f0000000140), 0x4000000000000138)

0s ago: executing program 4 (id=4318):
prlimit64(0x0, 0xe, 0x0, 0x0)
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={&(0x7f0000000400)=@acquire={0x128, 0x17, 0x1, 0x70bd2d, 0x0, {{@in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, @in=@dev, {@in=@broadcast, @in6=@mcast1, 0x0, 0xfffc}, {{@in=@remote, @in=@broadcast, 0x0, 0x3, 0x0, 0x0, 0x2, 0x0, 0x0, 0x2b}, {}, {0x0, 0x0, 0x0, 0x133}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}}}, 0x128}}, 0x0)
sendmsg$netlink(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)=ANY=[@ANYBLOB="140100002b0001000000000000000000040191800c0017"], 0x114}], 0x1, 0x0, 0x0, 0xc010}, 0x20000080)

kernel console output (not intermixed with test programs):

cryption failed: -22
[  956.437741][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  956.654706][T15492] loop3: detected capacity change from 0 to 4096
[  956.854784][T15508] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3356'.
[  957.599592][T15517] loop9: detected capacity change from 0 to 256
[  957.619198][T15521] loop4: detected capacity change from 0 to 512
[  957.967634][T15521] UDF-fs: warning (device loop4): udf_load_vrs: No VRS found
[  957.975740][T15521] UDF-fs: Scanning with blocksize 512 failed
[  958.026804][T15521] UDF-fs: warning (device loop4): udf_load_vrs: No VRS found
[  958.034776][T15521] UDF-fs: Scanning with blocksize 1024 failed
[  958.090328][T15521] UDF-fs: warning (device loop4): udf_load_vrs: No VRS found
[  958.098282][T15521] UDF-fs: Scanning with blocksize 2048 failed
[  958.211898][T15521] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[  958.409245][T15521] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  958.767976][T15538] loop0: detected capacity change from 0 to 256
[  958.813519][   T10] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  959.123003][   T10] usb 2-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  959.132377][   T10] usb 2-1: config 1 has an invalid descriptor of length 52, skipping remainder of the config
[  959.143442][   T10] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 66
[  959.152711][   T10] usb 2-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  959.210953][T15538] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x1aabf3fb, utbl_chksum : 0xe619d30d)
[  959.397155][   T10] usb 2-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  959.407293][   T10] usb 2-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  959.416830][   T10] usb 2-1: Product: syz
[  959.421236][   T10] usb 2-1: Manufacturer: syz
[  959.730307][   T10] cdc_wdm 2-1:1.0: skipping garbage
[  959.738498][   T10] cdc_wdm 2-1:1.0: skipping garbage
[  959.744068][   T10] cdc_wdm 2-1:1.0: probe with driver cdc_wdm failed with error -22
[  959.846711][T15550] loop3: detected capacity change from 0 to 512
[  959.892570][T15550] EXT4-fs (loop3): couldn't mount as ext2 due to feature incompatibilities
[  960.143893][T13135] usb 2-1: USB disconnect, device number 9
[  960.362287][T15560] netlink: 16 bytes leftover after parsing attributes in process `syz.9.3374'.
[  960.410118][T15563] loop3: detected capacity change from 0 to 64
[  960.679770][   T29] kauditd_printk_skb: 566 callbacks suppressed
[  960.679848][   T29] audit: type=1800 audit(1734325163.900:752): pid=15563 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.3373" name="file1" dev="loop3" ino=18 res=0 errno=0
[  962.250733][T15591] syz.4.3383: attempt to access beyond end of device
[  962.250733][T15591] nbd4: rw=4096, sector=2, nr_sectors = 2 limit=0
[  962.264518][T15591] EXT4-fs (nbd4): unable to read superblock
[  962.292894][   T29] audit: type=1326 audit(1734325165.510:753): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15594 comm="syz.3.3385" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdaf5985d19 code=0x7ffc0000
[  962.321419][   T29] audit: type=1326 audit(1734325165.510:754): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15594 comm="syz.3.3385" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdaf5985d19 code=0x7ffc0000
[  962.352868][   T29] audit: type=1326 audit(1734325165.520:755): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15594 comm="syz.3.3385" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdaf5985d19 code=0x7ffc0000
[  962.382371][   T29] audit: type=1326 audit(1734325165.520:756): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15594 comm="syz.3.3385" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdaf5985d19 code=0x7ffc0000
[  962.410504][   T29] audit: type=1326 audit(1734325165.540:757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15594 comm="syz.3.3385" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7fdaf5985d19 code=0x7ffc0000
[  962.438742][   T29] audit: type=1326 audit(1734325165.540:758): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15594 comm="syz.3.3385" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdaf5985d19 code=0x7ffc0000
[  962.464649][   T29] audit: type=1326 audit(1734325165.540:759): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15594 comm="syz.3.3385" exe="/root/syz-executor" sig=0 arch=c000003e syscall=246 compat=0 ip=0x7fdaf5985d19 code=0x7ffc0000
[  962.494032][   T29] audit: type=1326 audit(1734325165.540:760): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15594 comm="syz.3.3385" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdaf5985d19 code=0x7ffc0000
[  962.673632][T13135] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  963.004436][T13135] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 121, changing to 10
[  963.016155][T13135] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 25772, setting to 1024
[  963.033459][T13135] usb 2-1: New USB device found, idVendor=05ac, idProduct=022a, bcdDevice= 0.00
[  963.043549][T13135] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  963.065772][T15604] loop3: detected capacity change from 0 to 64
[  963.073695][   T10] usb 1-1: new high-speed USB device number 21 using dummy_hcd
[  963.074852][T13135] usb 2-1: config 0 descriptor??
[  963.095193][T15596] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  963.300940][   T10] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  963.313184][   T10] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  963.323703][   T10] usb 1-1: New USB device found, idVendor=1e7d, idProduct=319c, bcdDevice= 0.00
[  963.333058][   T10] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  963.465676][   T10] usb 1-1: config 0 descriptor??
[  963.629104][T13135] appletouch 2-1:0.0: Geyser mode initialized.
[  963.637899][T13135] input: appletouch as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/input/input30
[  963.972748][   T10] isku 0003:1E7D:319C.0016: hidraw0: USB HID v0.00 Device [HID 1e7d:319c] on usb-dummy_hcd.0-1/input0
[  964.293635][T13135] usb 2-1: USB disconnect, device number 10
[  964.489504][T13135] appletouch 2-1:0.0: input: appletouch disconnected
[  964.784180][ T5858] usb 1-1: USB disconnect, device number 21
[  964.787440][T15631] netlink: 'syz.3.3395': attribute type 1 has an invalid length.
[  965.249427][T15636] loop1: detected capacity change from 0 to 512
[  965.295615][T15636] EXT4-fs: Ignoring removed mblk_io_submit option
[  965.363774][T15636] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  965.546782][T15636] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b042c118, mo2=0002]
[  965.555898][T15636] System zones: 1-12
[  965.568040][T15636] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.3397: corrupted in-inode xattr: e_value size too large
[  965.582494][T15645] netlink: 'syz.4.3400': attribute type 29 has an invalid length.
[  965.609682][T15636] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.3397: couldn't read orphan inode 15 (err -117)
[  965.640036][T15648] netlink: 'syz.4.3400': attribute type 29 has an invalid length.
[  965.645544][T15636] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  965.725503][T15645] netlink: 'syz.4.3400': attribute type 29 has an invalid length.
[  966.228975][T12926] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  967.356214][T15677] loop3: detected capacity change from 0 to 256
[  967.410380][T15677] vfat: Unknown parameter './file1'
[  967.990891][T15687] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3415'.
[  969.224799][T15711] netlink: 8 bytes leftover after parsing attributes in process `syz.9.3423'.
[  970.129385][T15730] loop0: detected capacity change from 0 to 512
[  970.139742][T15730] EXT4-fs: Ignoring removed oldalloc option
[  970.248425][T15730] EXT4-fs (loop0): 1 truncate cleaned up
[  970.256344][T15730] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  970.727015][   T29] audit: type=1326 audit(1734325173.940:761): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15742 comm="syz.1.3433" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6141f85d19 code=0x7ffc0000
[  970.882413][   T29] audit: type=1326 audit(1734325174.000:762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15742 comm="syz.1.3433" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6141f85d19 code=0x7ffc0000
[  970.911300][   T29] audit: type=1326 audit(1734325174.050:763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15742 comm="syz.1.3433" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7f6141f85d19 code=0x7ffc0000
[  970.951058][   T29] audit: type=1326 audit(1734325174.050:764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15742 comm="syz.1.3433" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6141f85d19 code=0x7ffc0000
[  970.979952][   T29] audit: type=1326 audit(1734325174.050:765): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15742 comm="syz.1.3433" exe="/root/syz-executor" sig=0 arch=c000003e syscall=242 compat=0 ip=0x7f6141f85d19 code=0x7ffc0000
[  971.010121][   T29] audit: type=1326 audit(1734325174.050:766): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15742 comm="syz.1.3433" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6141f85d19 code=0x7ffc0000
[  971.033043][   T29] audit: type=1326 audit(1734325174.060:767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15742 comm="syz.1.3433" exe="/root/syz-executor" sig=0 arch=c000003e syscall=243 compat=0 ip=0x7f6141f85d19 code=0x7ffc0000
[  971.064125][   T29] audit: type=1326 audit(1734325174.060:768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15742 comm="syz.1.3433" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6141f85d19 code=0x7ffc0000
[  971.093414][   T29] audit: type=1326 audit(1734325174.060:769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15742 comm="syz.1.3433" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6141f85d19 code=0x7ffc0000
[  971.165818][ T5773] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  971.620703][T15758] loop3: detected capacity change from 0 to 256
[  972.848543][T15778] loop1: detected capacity change from 0 to 16
[  973.184341][T15784] loop4: detected capacity change from 0 to 256
[  973.954110][ T5786] Bluetooth: hci3: command 0x0406 tx timeout
[  974.542406][T15789] loop0: detected capacity change from 0 to 32768
[  976.787316][T15837] input: syz1 as /devices/virtual/input/input31
[  978.754675][T15871] loop1: detected capacity change from 0 to 256
[  978.961360][T15871] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d)
[  979.195108][T15871] syz.1.3480: attempt to access beyond end of device
[  979.195108][T15871] loop1: rw=524288, sector=280, nr_sectors = 128 limit=256
[  979.417206][T15883] (unnamed net_device) (uninitialized): option fail_over_mac: invalid value (253)
[  979.436348][T15871] syz.1.3480: attempt to access beyond end of device
[  979.436348][T15871] loop1: rw=524288, sector=408, nr_sectors = 256 limit=256
[  979.454890][T15871] syz.1.3480: attempt to access beyond end of device
[  979.454890][T15871] loop1: rw=0, sector=280, nr_sectors = 8 limit=256
[  979.498200][   T29] audit: type=1800 audit(1734325182.700:770): pid=15871 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.3480" name="file1" dev="loop1" ino=1048807 res=0 errno=0
[  979.775213][T15891] loop0: detected capacity change from 0 to 256
[  979.991025][T15893] loop4: detected capacity change from 0 to 128
[  980.299929][T15893] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  980.324934][T15893] ext4 filesystem being mounted at /173/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  980.611790][T12960] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  980.620468][T15891] exFAT-fs (loop0): failed to load upcase table (idx : 0x00011f41, chksum : 0xf6e84b2e, utbl_chksum : 0xe619d30d)
[  981.266868][T11611] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[  981.529992][   T29] audit: type=1326 audit(1734325184.750:771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15917 comm="syz.9.3494" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2548185d19 code=0x0
[  981.809111][   T29] audit: type=1326 audit(1734325184.940:772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15917 comm="syz.9.3494" exe="/root/syz-executor" sig=31 arch=c000003e syscall=436 compat=0 ip=0x7f2548185d19 code=0x0
[  982.006176][T11611] usb 4-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  982.041650][T11611] usb 4-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  982.058230][T11611] usb 4-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  982.072760][T11611] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  982.255213][T15911] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  982.309817][T11611] usb 4-1: Quirk or no altset; falling back to MIDI 1.0
[  982.565957][T11611] usb 4-1: USB disconnect, device number 14
[  983.171450][T15937] netlink: 'syz.4.3500': attribute type 1 has an invalid length.
[  983.184902][T15937] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3500'.
[  983.859236][T15941] netlink: 32 bytes leftover after parsing attributes in process `syz.1.3502'.
[  983.869383][T15941] netem: unknown loss type 13
[  983.874511][T15941] netem: change failed
[  984.611354][T15947] loop3: detected capacity change from 0 to 256
[  985.057739][T15947] FAT-fs (loop3): Directory bread(block 64) failed
[  985.067380][T15947] FAT-fs (loop3): Directory bread(block 65) failed
[  985.077559][T15947] FAT-fs (loop3): Directory bread(block 66) failed
[  985.088279][T15947] FAT-fs (loop3): Directory bread(block 67) failed
[  985.098180][T15947] FAT-fs (loop3): Directory bread(block 68) failed
[  985.105217][T15947] FAT-fs (loop3): Directory bread(block 69) failed
[  985.112133][T15947] FAT-fs (loop3): Directory bread(block 70) failed
[  985.121990][T15947] FAT-fs (loop3): Directory bread(block 71) failed
[  985.131876][T15947] FAT-fs (loop3): Directory bread(block 72) failed
[  985.138944][T15947] FAT-fs (loop3): Directory bread(block 73) failed
[  985.358785][T15945] loop0: detected capacity change from 0 to 4096
[  985.423334][T15945] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512).
[  985.441737][T15947] syz.3.3504: attempt to access beyond end of device
[  985.441737][T15947] loop3: rw=524288, sector=1736, nr_sectors = 32 limit=256
[  985.456738][T15947] syz.3.3504: attempt to access beyond end of device
[  985.456738][T15947] loop3: rw=0, sector=1736, nr_sectors = 8 limit=256
[  985.788101][T15945] ntfs3(loop0): Failed to initialize $Extend/$Reparse.
[  986.783780][T11611] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[  986.883517][T15971] netem: incorrect gi model size
[  986.888860][T15971] netem: change failed
[  987.062148][T11611] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 16
[  987.072449][T11611] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 64
[  987.209507][T11611] usb 4-1: New USB device found, idVendor=0a46, idProduct=9621, bcdDevice=4f.32
[  987.219962][T11611] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  987.230594][T11611] usb 4-1: Product: syz
[  987.241555][T11611] usb 4-1: Manufacturer: syz
[  987.246655][T11611] usb 4-1: SerialNumber: syz
[  987.344941][T11611] usb 4-1: config 0 descriptor??
[  987.363411][T15965] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  987.372983][T15965] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  987.460831][T15978] loop9: detected capacity change from 0 to 256
[  987.576320][   T29] audit: type=1800 audit(1734325190.800:773): pid=15978 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.3516" name="bus" dev="loop9" ino=1048810 res=0 errno=0
[  987.674275][T15965] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  987.704665][T15965] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  987.823689][ T5858] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  988.012412][T15979] loop4: detected capacity change from 0 to 4096
[  988.134174][T15986] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  988.439494][T11611] dm9601: No valid MAC address in EEPROM, using 00:00:00:00:00:00
[  988.459179][ T5858] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  988.468777][ T5858] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  988.468819][T15979] NILFS error (device loop4): nilfs_dotdot: directory #12 missing '.'
[  988.477280][ T5858] usb 2-1: Product: syz
[  988.477397][ T5858] usb 2-1: Manufacturer: syz
[  988.477506][ T5858] usb 2-1: SerialNumber: syz
[  988.490978][ T5858] usb 2-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  988.690009][T11611] dm9601 4-1:0.0 (unnamed net_device) (uninitialized): Error reading chip ID
[  988.711582][T11611] usb 4-1: USB disconnect, device number 15
[  988.721429][T15979] Remounting filesystem read-only
[  989.058893][T12960] NILFS (loop4): disposed unprocessed dirty file(s) when detaching log writer
[  989.278622][   T10] usb 2-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  989.764211][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  989.773549][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  989.782619][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  990.419024][   T10] ath9k_htc 2-1:1.0: ath9k_htc: Target is unresponsive
[  990.429224][   T10] ath9k_htc: Failed to initialize the device
[  991.050495][   T10] usb 2-1: ath9k_htc: USB layer deinitialized
[  991.267272][T11611] usb 2-1: USB disconnect, device number 11
[  991.303671][T16016] loop3: detected capacity change from 0 to 256
[  991.459343][T16019] loop0: detected capacity change from 0 to 512
[  991.535852][T16019] EXT4-fs: Ignoring removed oldalloc option
[  991.588527][T16016] FAT-fs (loop3): Directory bread(block 64) failed
[  991.595730][T16016] FAT-fs (loop3): Directory bread(block 65) failed
[  991.602705][T16016] FAT-fs (loop3): Directory bread(block 66) failed
[  991.609687][T16016] FAT-fs (loop3): Directory bread(block 67) failed
[  991.616854][T16016] FAT-fs (loop3): Directory bread(block 68) failed
[  991.623758][T16016] FAT-fs (loop3): Directory bread(block 69) failed
[  991.636568][T16016] FAT-fs (loop3): Directory bread(block 70) failed
[  991.644973][T16016] FAT-fs (loop3): Directory bread(block 71) failed
[  991.651929][T16016] FAT-fs (loop3): Directory bread(block 72) failed
[  991.659057][T16016] FAT-fs (loop3): Directory bread(block 73) failed
[  991.686594][T16019] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  991.814693][T16019] EXT4-fs (loop0): 1 truncate cleaned up
[  991.822341][T16019] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  991.890852][T16026] loop4: detected capacity change from 0 to 256
[  991.968611][T16026] exfat: Deprecated parameter 'namecase'
[  991.975261][T16026] exfat: Deprecated parameter 'namecase'
[  992.012952][T16019] netlink: 204 bytes leftover after parsing attributes in process `syz.0.3530'.
[  992.177553][T16026] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xdf1ac56c, utbl_chksum : 0xe619d30d)
[  992.423552][ T5773] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  993.537354][T16049] loop3: detected capacity change from 0 to 64
[  994.236530][T16063] loop0: detected capacity change from 0 to 1024
[  994.298437][T16063] EXT4-fs (loop0): Test dummy encryption mode enabled
[  994.535293][T16063] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  995.152456][ T5773] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  995.372798][T16084] loop1: detected capacity change from 0 to 2048
[  995.606793][T16084] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  995.713573][T16084] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  995.841773][T16084] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 31 with max blocks 1 with error 28
[  995.857343][T16084] EXT4-fs (loop1): This should not happen!! Data will be lost
[  995.857343][T16084] 
[  995.870039][T16084] EXT4-fs (loop1): Total free blocks count 0
[  995.876689][T16084] EXT4-fs (loop1): Free/Dirty block details
[  995.882836][T16084] EXT4-fs (loop1): free_blocks=2415919104
[  995.891870][T16084] EXT4-fs (loop1): dirty_blocks=32
[  995.900016][T16084] EXT4-fs (loop1): Block reservation details
[  995.906402][T16084] EXT4-fs (loop1): i_reserved_data_blocks=2
[  996.237751][T16101] loop4: detected capacity change from 0 to 128
[  996.554455][ T1297] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  997.219099][   T29] audit: type=1800 audit(1734325200.390:774): pid=16116 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.3565" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[  998.961467][T16146] loop1: detected capacity change from 0 to 128
[  999.041043][ T5786] Bluetooth: hci5: unknown advertising packet type: 0x65
[  999.041213][ T5786] Bluetooth: hci5: unknown advertising packet type: 0x09
[  999.051654][ T5786] Bluetooth: hci5: unknown advertising packet type: 0x05
[  999.059224][ T5786] Bluetooth: hci5: Malformed LE Event: 0x02
[  999.092038][T16146] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  999.199391][T16146] ext4 filesystem being mounted at /195/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1000.255148][T16171] loop4: detected capacity change from 0 to 128
[ 1000.346417][T16169] loop9: detected capacity change from 0 to 16
[ 1000.367107][T16169] erofs (device loop9): mounted with root inode @ nid 36.
[ 1000.499640][T16171] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1000.548342][T16178] netlink: 428 bytes leftover after parsing attributes in process `syz.0.3586'.
[ 1000.558951][T16178] netlink: 56 bytes leftover after parsing attributes in process `syz.0.3586'.
[ 1000.570160][T16171] ext4 filesystem being mounted at /194/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1000.570701][T12926] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1001.290859][T16189] input: syz0 as /devices/virtual/input/input32
[ 1001.344939][T12960] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1002.901108][T16224] loop4: detected capacity change from 0 to 128
[ 1002.999960][T16224] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1003.019082][T16224] ext4 filesystem being mounted at /199/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 1003.187402][T16218] loop3: detected capacity change from 0 to 4096
[ 1003.282413][T16218] ntfs3(loop3): Different NTFS sector size (1024) and media sector size (512).
[ 1003.479172][T16232] loop1: detected capacity change from 0 to 24
[ 1003.570996][T16232] romfs: Mounting image 'rom 637cf1fa' through the block layer
[ 1003.662553][T12960] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1004.338626][   T29] audit: type=1800 audit(1734325207.560:775): pid=16218 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.3600" name="file1" dev="loop3" ino=30 res=0 errno=0
[ 1004.955621][T16250] loop4: detected capacity change from 0 to 128
[ 1005.091851][T16253] sctp: [Deprecated]: syz.1.3611 (pid 16253) Use of struct sctp_assoc_value in delayed_ack socket option.
[ 1005.091851][T16253] Use struct sctp_sack_info instead
[ 1005.850652][T16263] lo: entered promiscuous mode
[ 1005.855990][T16263] lo: entered allmulticast mode
[ 1005.873346][T16263] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[ 1006.404285][T16269] loop0: detected capacity change from 0 to 512
[ 1006.624336][T16269] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1006.750422][T16278] loop1: detected capacity change from 0 to 16
[ 1006.768929][T16278] erofs (device loop1): mounted with root inode @ nid 36.
[ 1007.126948][T16281] loop9: detected capacity change from 0 to 512
[ 1007.263746][ T5773] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1007.329308][T16281] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[ 1007.342973][T16281] ext4 filesystem being mounted at /279/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1007.676414][T16283] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3621'.
[ 1007.805077][T12263] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[ 1007.839273][T16293] loop0: detected capacity change from 0 to 47
[ 1008.693825][   T10] usb 10-1: new high-speed USB device number 5 using dummy_hcd
[ 1008.883426][   T10] usb 10-1: Using ep0 maxpacket: 16
[ 1008.941791][   T10] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1008.953755][   T10] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1008.964111][   T10] usb 10-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[ 1008.977467][   T10] usb 10-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[ 1008.987159][   T10] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1009.088500][   T10] usb 10-1: config 0 descriptor??
[ 1009.161060][T16315] sch_tbf: burst 3631 is lower than device lo mtu (65550) !
[ 1009.439723][T16318] loop1: detected capacity change from 0 to 512
[ 1009.520484][T16318] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[ 1009.579443][   T10] shield 0003:0955:7214.0017: unknown main item tag 0x0
[ 1009.587503][   T10] shield 0003:0955:7214.0017: unknown main item tag 0x0
[ 1009.595006][   T10] shield 0003:0955:7214.0017: unknown main item tag 0x0
[ 1009.602331][   T10] shield 0003:0955:7214.0017: unknown main item tag 0x0
[ 1009.609946][   T10] shield 0003:0955:7214.0017: unknown main item tag 0x0
[ 1009.618779][T16318] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.3631: bg 0: block 127: padding at end of block bitmap is not set
[ 1009.691255][T16318] EXT4-fs (loop1): 1 truncate cleaned up
[ 1009.701550][T16318] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1009.749322][T16302] random: crng reseeded on system resumption
[ 1009.919506][   T10] input: HID 0955:7214 Haptics as /devices/virtual/input/input33
[ 1009.978987][   T10] shield 0003:0955:7214.0017: Registered Thunderstrike controller
[ 1009.988096][   T10] shield 0003:0955:7214.0017: : USB HID v0.00 Device [HID 0955:7214] on usb-dummy_hcd.9-1/input0
[ 1010.423523][T11611] usb 1-1: new high-speed USB device number 22 using dummy_hcd
[ 1010.900158][T12926] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1011.042359][ T5830] shield 0003:0955:7214.0017: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO
[ 1011.054860][ T5830] shield 0003:0955:7214.0017: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO
[ 1011.066974][ T5830] shield 0003:0955:7214.0017: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO
[ 1011.079861][ T5830] shield 0003:0955:7214.0017: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO
[ 1011.350106][T11611] usb 1-1: Using ep0 maxpacket: 16
[ 1011.393692][T11611] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1011.409762][T11611] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 1011.421300][T11611] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[ 1011.431458][T11611] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[ 1011.447212][T11611] usb 1-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1011.501904][T11611] usb 1-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[ 1011.517113][T11611] usb 1-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[ 1011.525565][T11611] usb 1-1: Manufacturer: syz
[ 1011.581686][T11611] usb 1-1: config 0 descriptor??
[ 1011.988521][T13135] usb 10-1: USB disconnect, device number 5
[ 1012.126237][T16351] loop1: detected capacity change from 0 to 1024
[ 1012.242389][T11611] rc_core: IR keymap rc-hauppauge not found
[ 1012.254127][T11611] Registered IR keymap rc-empty
[ 1012.259801][T11611] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[ 1012.337080][T11611] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[ 1012.369325][T11611] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/rc/rc0
[ 1012.386479][T11611] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/rc/rc0/input34
[ 1012.508566][T11611] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[ 1012.535027][T16351] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1012.631194][T11611] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[ 1012.656360][T11611] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[ 1012.686604][T11611] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[ 1012.717065][T11611] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[ 1012.766683][T11611] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[ 1012.817399][T16366] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior.
[ 1012.836579][T11611] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[ 1012.860405][T11611] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[ 1012.891314][T11611] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[ 1012.920860][T16366] overlayfs: conflicting lowerdir path
[ 1012.947564][T11611] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[ 1013.007782][T11611] mceusb 1-1:0.0: Error: mce write submit urb error = -90
[ 1013.058308][T11611] mceusb 1-1:0.0: Registered 424242424242 with mce emulator interface version 1
[ 1013.068275][T11611] mceusb 1-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[ 1013.161830][T11611] usb 1-1: USB disconnect, device number 22
acpid: input device has been disconnected, fd 10
[ 1013.494054][T12926] EXT4-fs error (device loop1): ext4_lookup:1817: inode #2: comm syz-executor: deleted inode referenced: 11
[ 1013.583427][T12926] EXT4-fs error (device loop1): ext4_lookup:1817: inode #2: comm syz-executor: deleted inode referenced: 11
[ 1013.591223][T16378] loop3: detected capacity change from 0 to 16
[ 1013.771743][T16378] erofs (device loop3): mounted with root inode @ nid 36.
[ 1013.805441][T16378] erofs (device loop3): inconsistent algorithmtype 0 for nid 36
[ 1013.817873][T16378] erofs (device loop3): read error -117 @ 144 of nid 36
[ 1013.828873][T16378] erofs (device loop3): fail to readdir of logical block 144 of nid 36
[ 1013.887876][T16382] @: renamed from vlan0 (while UP)
[ 1014.501675][T16389] loop3: detected capacity change from 0 to 512
[ 1014.566975][T16389] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[ 1014.622496][ T1825] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1014.642757][T16389] EXT4-fs (loop3): 1 truncate cleaned up
[ 1014.650828][T16389] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1014.669461][T12926] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1014.774444][T16396] loop0: detected capacity change from 0 to 64
[ 1015.140800][ T1825] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1015.166150][T13769] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1015.369634][ T1825] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1015.582913][ T1825] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1016.319122][ T1825] bridge_slave_1: left allmulticast mode
[ 1016.325128][ T1825] bridge_slave_1: left promiscuous mode
[ 1016.331745][ T1825] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1016.385230][   T51] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1016.440781][   T51] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1016.467041][   T51] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1016.636982][ T1825] bridge_slave_0: left allmulticast mode
[ 1016.642923][ T1825] bridge_slave_0: left promiscuous mode
[ 1016.649730][ T1825] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1016.663983][ T5775] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1016.747171][ T5775] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[ 1016.867808][T16422] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3664'.
[ 1016.907251][ T5775] Bluetooth: hci3: unexpected event for opcode 0x0000
[ 1016.936964][ T5775] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1017.370909][ T1825] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1017.477973][ T1825] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1017.502495][ T1825] bond0 (unregistering): Released all slaves
[ 1017.569251][T16424] netlink: 32 bytes leftover after parsing attributes in process `syz.4.3665'.
[ 1017.902360][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[ 1017.909196][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[ 1018.248703][T16436] loop3: detected capacity change from 0 to 164
[ 1018.715085][T16443] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3670'.
[ 1018.725523][T16443] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3670'.
[ 1019.013456][ T1825] hsr_slave_0: left promiscuous mode
[ 1019.114170][ T1825] hsr_slave_1: left promiscuous mode
[ 1019.141940][ T5786] Bluetooth: hci1: command tx timeout
[ 1019.233730][ T1825] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1019.241528][ T1825] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1019.302863][ T1825] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1019.316401][ T1825] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1019.382948][ T1825] veth1_macvtap: left promiscuous mode
[ 1019.388950][ T1825] veth0_macvtap: left promiscuous mode
[ 1019.397476][ T1825] veth1_vlan: left promiscuous mode
[ 1019.403057][ T1825] veth0_vlan: left promiscuous mode
[ 1020.497968][ T1825] team0 (unregistering): Port device team_slave_1 removed
[ 1020.570275][ T1825] team0 (unregistering): Port device team_slave_0 removed
[ 1020.980289][ T5786] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[ 1020.989182][ T5786] Bluetooth: hci3: Injecting HCI hardware error event
[ 1020.996982][ T5786] Bluetooth: hci3: hardware error 0x00
[ 1021.090545][T16412] chnl_net:caif_netlink_parms(): no params data found
[ 1021.204160][ T5775] Bluetooth: hci1: command tx timeout
[ 1022.147897][T16492] devtmpfs: Too few inodes for current use
[ 1022.341362][T16497] mac80211_hwsim hwsim26 wlan0: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[ 1022.414864][T16498] loop9: detected capacity change from 0 to 16
[ 1022.494228][T16498] erofs (device loop9): mounted with root inode @ nid 36.
[ 1022.831737][T16412] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1022.839861][T16412] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1022.850497][T16412] bridge_slave_0: entered allmulticast mode
[ 1022.863241][T16412] bridge_slave_0: entered promiscuous mode
[ 1022.921833][T16412] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1022.929795][T16412] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1022.940294][T16412] bridge_slave_1: entered allmulticast mode
[ 1022.949535][T16412] bridge_slave_1: entered promiscuous mode
[ 1023.132613][T16412] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1023.190506][T16412] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1023.206351][ T5786] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[ 1023.297915][ T5786] Bluetooth: hci1: command tx timeout
[ 1023.495783][T16412] team0: Port device team_slave_0 added
[ 1023.573533][T16412] team0: Port device team_slave_1 added
[ 1023.952933][T16412] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1023.960475][T16412] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1023.990242][T16412] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1024.160879][T16412] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1024.168964][T16412] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1024.198836][T16412] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1024.780290][T16412] hsr_slave_0: entered promiscuous mode
[ 1024.859208][T16412] hsr_slave_1: entered promiscuous mode
[ 1024.887593][T16412] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1024.895823][T16412] Cannot create hsr debugfs directory
[ 1024.960878][T16545] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3704'.
[ 1025.124167][ T1297] wlan0: Trigger new scan to find an IBSS to join
[ 1025.251292][T16544] loop0: detected capacity change from 0 to 2048
[ 1025.363473][ T5786] Bluetooth: hci1: command tx timeout
[ 1025.447904][T16552] loop4: detected capacity change from 0 to 512
[ 1025.461951][T16552] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1025.510220][T16544] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1025.598418][T16550] netlink: 44 bytes leftover after parsing attributes in process `syz.9.3706'.
[ 1025.651117][T16552] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1025.665835][T16552] ext4 filesystem being mounted at /227/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1026.281832][T16565] loop9: detected capacity change from 0 to 2048
[ 1026.344725][T12960] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1026.436087][T16565] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1026.472336][T16412] netdevsim netdevsim6 netdevsim0: renamed from eth0
[ 1026.570895][T16412] netdevsim netdevsim6 netdevsim1: renamed from eth1
[ 1026.657674][T16412] netdevsim netdevsim6 netdevsim2: renamed from eth2
[ 1026.734694][T16412] netdevsim netdevsim6 netdevsim3: renamed from eth3
[ 1027.524083][T16582] loop9: detected capacity change from 0 to 512
[ 1027.645236][T16582] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[ 1027.741590][T16588] loop0: detected capacity change from 0 to 512
[ 1027.941914][T16412] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1028.036814][T16412] 8021q: adding VLAN 0 to HW filter on device team0
[ 1028.061399][ T4904] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1028.069214][ T4904] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1028.092862][T16588] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.3719: corrupted in-inode xattr: invalid ea_ino
[ 1028.159180][T16588] EXT4-fs error (device loop0): ext4_orphan_get:1394: comm syz.0.3719: couldn't read orphan inode 15 (err -117)
[ 1028.215231][T16588] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1028.237715][T12263] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1028.311401][ T9672] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1028.319188][ T9672] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1028.790767][T16412] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1028.803552][T16412] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1028.990293][ T5773] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1029.934286][T16620] netlink: 40 bytes leftover after parsing attributes in process `syz.9.3727'.
[ 1030.102834][T10489] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[ 1030.172621][ T1825] wlan0: Trigger new scan to find an IBSS to join
[ 1030.323544][T10489] usb 5-1: Using ep0 maxpacket: 32
[ 1030.384710][T10489] usb 5-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1030.396288][T10489] usb 5-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1030.406612][T10489] usb 5-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[ 1030.416094][T10489] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1030.604014][T10489] hub 5-1:4.0: USB hub found
[ 1030.864390][T10489] hub 5-1:4.0: 10 ports detected
[ 1030.914411][T10489] hub 5-1:4.0: insufficient power available to use all downstream ports
[ 1030.942238][T16412] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1031.024981][T16637] loop9: detected capacity change from 0 to 256
[ 1031.191831][T16637] exFAT-fs (loop9): failed to load upcase table (idx : 0x00011a39, chksum : 0xd7c18d7b, utbl_chksum : 0xe619d30d)
[ 1031.264933][T10489] hub 5-1:4.0: set hub depth failed
[ 1031.328767][ T4904] wlan0: Creating new IBSS network, BSSID a2:6c:a0:a5:ed:7c
[ 1031.335171][T10489] usb 5-1: USB disconnect, device number 8
[ 1032.228325][T16653] loop3: detected capacity change from 0 to 16
[ 1032.239534][T16653] erofs (device loop3): mounted with root inode @ nid 36.
[ 1032.294600][   T29] audit: type=1800 audit(1734325235.510:776): pid=16653 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.3737" name="file1" dev="loop3" ino=86 res=0 errno=0
[ 1032.952859][T16672] loop0: detected capacity change from 0 to 64
[ 1033.087225][T16673] rose0: tun_chr_ioctl cmd 62721
[ 1033.745192][T16412] veth0_vlan: entered promiscuous mode
[ 1033.884193][T16412] veth1_vlan: entered promiscuous mode
[ 1034.302758][T16412] veth0_macvtap: entered promiscuous mode
[ 1034.364759][T16412] veth1_macvtap: entered promiscuous mode
[ 1034.496338][T16412] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1034.509934][T16412] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1034.521030][T16412] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1034.535242][T16412] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1034.548828][T16412] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1034.570831][T16412] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1034.583701][T16412] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1034.594611][T16412] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1034.604814][T16412] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1034.618146][T16412] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1034.633665][T16412] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1034.666675][T16412] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1034.680174][T16412] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1034.691744][T16412] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1034.702706][T16412] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1034.715605][T16412] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1034.726843][T16412] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1034.739838][T16412] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1034.751555][T16412] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1034.764575][T16412] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1034.775394][T16412] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1034.792637][T16412] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1034.864762][T16412] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1034.876494][T16412] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1034.886946][T16412] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1034.896202][T16412] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1035.817561][T16693] loop3: detected capacity change from 0 to 4096
[ 1036.465645][T16693] ntfs3(loop3): failed to convert "0080" to cp775
[ 1038.627124][T16749] netlink: 'syz.3.3763': attribute type 10 has an invalid length.
[ 1038.642804][T16749] lo: entered promiscuous mode
[ 1038.659013][T16749] bond0: (slave lo): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[ 1039.449629][T16760] loop9: detected capacity change from 0 to 1024
[ 1039.685172][T16760] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1040.074659][T12263] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1040.417421][T16777] loop0: detected capacity change from 0 to 1024
[ 1040.538893][   T29] audit: type=1326 audit(1734325243.720:777): auid=4294967295 uid=101 gid=102 ses=4294967295 subj=unconfined pid=10528 comm="dhcpcd" exe="/sbin/dhcpcd" sig=31 arch=c000003e syscall=41 compat=0 ip=0x7fb664395bd7 code=0x0
[ 1041.235648][ T9672] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1041.235745][ T9672] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1041.554617][ T4904] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1041.554713][ T4904] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1042.818967][   T10] usb 10-1: new high-speed USB device number 6 using dummy_hcd
[ 1043.047912][   T10] usb 10-1: Using ep0 maxpacket: 8
[ 1043.061917][   T10] usb 10-1: config index 0 descriptor too short (expected 6427, got 27)
[ 1043.062071][   T10] usb 10-1: config 0 has an invalid interface number: 21 but max is 0
[ 1043.062204][   T10] usb 10-1: config 0 has no interface number 0
[ 1043.062333][   T10] usb 10-1: config 0 interface 21 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[ 1043.062500][   T10] usb 10-1: config 0 interface 21 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[ 1043.062682][   T10] usb 10-1: config 0 interface 21 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[ 1043.077559][   T10] usb 10-1: New USB device found, idVendor=06cd, idProduct=0202, bcdDevice=92.d4
[ 1043.077737][   T10] usb 10-1: New USB device strings: Mfr=0, Product=1, SerialNumber=0
[ 1043.077873][   T10] usb 10-1: Product: syz
[ 1043.082799][   T10] usb 10-1: config 0 descriptor??
[ 1043.095821][T16808] raw-gadget.0 gadget.9: fail, usb_ep_enable returned -22
[ 1043.913937][   T10] input: syz as /devices/platform/dummy_hcd.9/usb10/10-1/10-1:0.21/input/input35
[ 1044.287785][    C0] keyspan_remote 10-1:0.21: keyspan_irq_recv - usb_submit_urb failed with result: -19
[ 1044.297775][   T10] usb 10-1: USB disconnect, device number 6
[ 1044.360096][T16819] pimreg3: entered allmulticast mode
acpid: input device has been disconnected, fd 3
[ 1044.436505][T16818] pimreg3: left allmulticast mode
[ 1045.495114][T16822] loop3: detected capacity change from 0 to 32768
[ 1045.785142][T16837] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3787'.
[ 1045.794719][T16837] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3787'.
[ 1045.895790][T16822] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[ 1046.568676][T16855] netlink: 20 bytes leftover after parsing attributes in process `syz.4.3795'.
[ 1046.856988][T13769] ocfs2: Unmounting device (7,3) on (node local)
[ 1047.190688][T16865] loop4: detected capacity change from 0 to 2048
[ 1047.366765][T16865] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1047.754313][T12960] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1047.789446][T16876] netlink: 'syz.3.3793': attribute type 9 has an invalid length.
[ 1048.414952][T16881] ALSA: seq fatal error: cannot create timer (-19)
[ 1048.574819][T16892] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3805'.
[ 1049.001720][T16896] netlink: 56 bytes leftover after parsing attributes in process `syz.9.3807'.
[ 1049.011971][T16896] netlink: 8 bytes leftover after parsing attributes in process `syz.9.3807'.
[ 1049.871951][ T5786] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[ 1049.880780][ T5786] Bluetooth: hci1: Injecting HCI hardware error event
[ 1049.899745][ T5786] Bluetooth: hci1: hardware error 0x00
[ 1050.572910][T16927] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3818'.
[ 1051.721875][T16947] loop4: detected capacity change from 0 to 1024
[ 1051.923405][ T5786] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[ 1052.082659][T16947] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1052.449739][T16947] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[ 1052.484330][T16947] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[ 1052.497177][T16947] EXT4-fs (loop4): This should not happen!! Data will be lost
[ 1052.497177][T16947] 
[ 1052.507255][T16947] EXT4-fs (loop4): Total free blocks count 0
[ 1052.513591][T16947] EXT4-fs (loop4): Free/Dirty block details
[ 1052.519722][T16947] EXT4-fs (loop4): free_blocks=68451041280
[ 1052.526010][T16947] EXT4-fs (loop4): dirty_blocks=16
[ 1052.531389][T16947] EXT4-fs (loop4): Block reservation details
[ 1052.537745][T16947] EXT4-fs (loop4): i_reserved_data_blocks=1
[ 1052.883585][T12960] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1053.876184][   T10] usb 4-1: new high-speed USB device number 16 using dummy_hcd
[ 1054.225226][T16988] loop0: detected capacity change from 0 to 128
[ 1054.277874][T16988] sysv_free_block: trying to free block not in datazone
[ 1054.300800][T16988] sysv_free_inode: inode 0,1,2 or nonexistent inode
[ 1054.433700][ T5827] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[ 1054.596333][ T5827] usb 5-1: Using ep0 maxpacket: 32
[ 1054.626546][ T5827] usb 5-1: config 0 has an invalid interface number: 89 but max is 0
[ 1054.636626][ T5827] usb 5-1: config 0 has no interface number 0
[ 1054.736646][ T5827] usb 5-1: New USB device found, idVendor=12d1, idProduct=7ef3, bcdDevice=54.68
[ 1054.749046][ T5827] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1054.757927][ T5827] usb 5-1: Product: syz
[ 1054.762347][ T5827] usb 5-1: Manufacturer: syz
[ 1054.767487][ T5827] usb 5-1: SerialNumber: syz
[ 1054.988113][ T5827] usb 5-1: config 0 descriptor??
[ 1055.022427][ T5827] hub 5-1:0.89: bad descriptor, ignoring hub
[ 1055.029044][ T5827] hub 5-1:0.89: probe with driver hub failed with error -5
[ 1055.041685][ T5827] option 5-1:0.89: GSM modem (1-port) converter detected
[ 1055.242414][ T5827] usb 5-1: GSM modem (1-port) converter now attached to ttyUSB0
[ 1055.259790][   T10] usb 4-1: New USB device found, idVendor=054c, idProduct=0df2, bcdDevice= 0.00
[ 1055.269330][   T10] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1055.282233][   T10] usb 4-1: config 0 descriptor??
[ 1055.348120][ T5827] usb 5-1: USB disconnect, device number 9
[ 1055.431823][ T5827] option1 ttyUSB0: GSM modem (1-port) converter now disconnected from ttyUSB0
[ 1055.445942][ T5827] option 5-1:0.89: device disconnected
[ 1055.880400][T16990] loop6: detected capacity change from 0 to 65536
[ 1055.917023][   T10] playstation 0003:054C:0DF2.0018: hidraw0: USB HID v1.01 Device [HID 054c:0df2] on usb-dummy_hcd.3-1/input0
[ 1055.971859][T16990] XFS (loop6): Mounting V5 Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2
[ 1056.106777][   T10] playstation 0003:054C:0DF2.0018: Invalid byte count transferred, expected 20 got 0
[ 1056.116980][   T10] playstation 0003:054C:0DF2.0018: Failed to retrieve DualSense pairing info: -22
[ 1056.127096][   T10] playstation 0003:054C:0DF2.0018: Failed to get MAC address from DualSense
[ 1056.136408][   T10] playstation 0003:054C:0DF2.0018: Failed to create dualsense.
[ 1056.155534][   T10] playstation 0003:054C:0DF2.0018: probe with driver playstation failed with error -22
[ 1056.182567][T16990] XFS (loop6): Ending clean mount
[ 1056.312052][ T5827] usb 4-1: USB disconnect, device number 16
[ 1056.352579][T16412] XFS (loop6): Unmounting Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2
[ 1056.760221][   T10] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[ 1056.932855][   T10] usb 5-1: Using ep0 maxpacket: 8
[ 1056.971792][   T10] usb 5-1: config 179 has an invalid interface number: 65 but max is 0
[ 1056.980640][   T10] usb 5-1: config 179 has no interface number 0
[ 1056.987510][   T10] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[ 1056.999161][   T10] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[ 1057.011124][   T10] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[ 1057.022722][   T10] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[ 1057.034667][   T10] usb 5-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[ 1057.048486][   T10] usb 5-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[ 1057.057963][   T10] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1057.139164][T17008] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[ 1057.721522][T17012] loop0: detected capacity change from 0 to 256
[ 1058.105678][T17012] exFAT-fs (loop0): failed to load upcase table (idx : 0x00017f3e, chksum : 0x0b83170a, utbl_chksum : 0xe619d30d)
[ 1058.683321][   T10] usb 5-1: USB disconnect, device number 10
[ 1058.689894][    C0] xpad 5-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[ 1058.690155][    C0] xpad 5-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[ 1058.750602][T16996] loop9: detected capacity change from 0 to 32768
[ 1058.856585][T16996] read_mapping_page failed!
[ 1058.861507][T16996] jfs_mount: diMount(ipaimap2) failed, rc = -5
[ 1058.874657][T16996] Mount JFS Failure: -5
[ 1058.879158][T16996] jfs_mount failed w/return code = -5
[ 1060.167070][T17036] loop0: detected capacity change from 0 to 2048
[ 1060.275324][T17036] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1060.290657][T17036] ext4 filesystem being mounted at /820/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1060.398941][T17046] loop9: detected capacity change from 0 to 128
[ 1060.491489][T17046] EXT4-fs: Ignoring removed nobh option
[ 1060.681377][T17046] EXT4-fs (loop9): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1060.711745][T17046] ext4 filesystem being mounted at /332/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1060.768484][T17057] loop4: detected capacity change from 0 to 128
[ 1061.113492][ T5773] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1061.120035][T12263] EXT4-fs (loop9): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1061.372063][ T1825] wlan0: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 1061.449905][T17068] loop6: detected capacity change from 0 to 128
[ 1061.519176][T17068] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1)
[ 1061.725592][T17071] loop9: detected capacity change from 0 to 1024
[ 1061.971608][T17075] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1062.030271][T17075] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1062.049161][T17075] bond0 (unregistering): Released all slaves
[ 1062.128768][   T58] hfsplus: b-tree write err: -5, ino 4
[ 1062.760344][T17094] loop9: detected capacity change from 0 to 8
[ 1062.869365][T12263] SQUASHFS error: Unable to read directory block [631:72]
[ 1062.961666][T12263] SQUASHFS error: Unable to read inode 0xe3
[ 1062.970555][T12263] SQUASHFS error: Unable to read inode 0xe3
[ 1063.907653][ T1865] netdevsim netdevsim9 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1064.158829][ T1865] netdevsim netdevsim9 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1064.281090][ T1865] netdevsim netdevsim9 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1064.401386][ T1865] netdevsim netdevsim9 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1064.643935][ T1865] bridge_slave_1: left allmulticast mode
[ 1064.650047][ T1865] bridge_slave_1: left promiscuous mode
[ 1064.659665][ T1865] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1064.673901][ T1865] bridge_slave_0: left allmulticast mode
[ 1064.679855][ T1865] bridge_slave_0: left promiscuous mode
[ 1064.686665][ T1865] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1065.170331][ T1865] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1065.218319][ T1865] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1065.251039][T17119] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3895'.
[ 1065.315122][ T1865] bond0 (unregistering): Released all slaves
[ 1065.406186][T17121] loop0: detected capacity change from 0 to 64
[ 1065.659330][ T1865] IPVS: stopping backup sync thread 14735 ...
[ 1065.706841][ T5775] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1065.716357][ T5775] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1065.745263][ T5775] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1065.891300][ T5775] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1065.909787][ T5775] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[ 1065.921655][ T5775] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1065.967027][ T5773] hfs: node 4:3 still has 1 user(s)!
[ 1066.558986][ T1865] hsr_slave_0: left promiscuous mode
[ 1066.574776][T17141] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3903'.
[ 1066.590342][ T1865] hsr_slave_1: left promiscuous mode
[ 1066.625689][ T1865] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1066.636603][ T1865] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1066.674745][ T1865] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1066.682582][ T1865] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1066.719345][ T1865] veth1_macvtap: left promiscuous mode
[ 1066.729029][ T1865] veth0_macvtap: left promiscuous mode
[ 1066.735264][ T1865] veth1_vlan: left promiscuous mode
[ 1066.740841][ T1865] veth0_vlan: left promiscuous mode
[ 1067.439541][ T1865] team0 (unregistering): Port device team_slave_1 removed
[ 1067.468792][ T1865] team0 (unregistering): Port device team_slave_0 removed
[ 1068.015996][ T5775] Bluetooth: hci2: command tx timeout
[ 1068.397384][T17160] netlink: 72 bytes leftover after parsing attributes in process `syz.0.3910'.
[ 1068.406827][T17160] netlink: 72 bytes leftover after parsing attributes in process `syz.0.3910'.
[ 1068.424065][ T5827] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[ 1068.590192][ T5827] usb 7-1: Using ep0 maxpacket: 32
[ 1068.683036][ T5827] usb 7-1: config index 0 descriptor too short (expected 164, got 36)
[ 1068.694483][ T5827] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1068.706011][ T5827] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1068.718972][ T5827] usb 7-1: New USB device found, idVendor=046d, idProduct=c29c, bcdDevice= 0.00
[ 1068.728584][ T5827] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1068.848037][ T5827] usb 7-1: config 0 descriptor??
[ 1069.334475][T17128] chnl_net:caif_netlink_parms(): no params data found
[ 1069.365821][   T10] usb 4-1: new high-speed USB device number 17 using dummy_hcd
[ 1069.462955][ T5827] logitech 0003:046D:C29C.0019: unknown main item tag 0x0
[ 1069.473492][ T5827] logitech 0003:046D:C29C.0019: unknown main item tag 0x0
[ 1069.480975][ T5827] logitech 0003:046D:C29C.0019: unknown main item tag 0x0
[ 1069.488739][ T5827] logitech 0003:046D:C29C.0019: unknown main item tag 0x0
[ 1069.498864][ T5827] logitech 0003:046D:C29C.0019: unknown main item tag 0x0
[ 1069.515764][ T5827] logitech 0003:046D:C29C.0019: hidraw0: USB HID v0.00 Device [HID 046d:c29c] on usb-dummy_hcd.6-1/input0
[ 1069.567698][   T10] usb 4-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[ 1069.578062][   T10] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1069.597016][   T10] usb 4-1: config 0 descriptor??
[ 1069.622137][T17174] xt_NFQUEUE: number of total queues is 0
[ 1069.635062][   T10] cp210x 4-1:0.0: cp210x converter detected
[ 1069.823045][ T5827] logitech 0003:046D:C29C.0019: no inputs found
[ 1069.847904][ T5827] usb 7-1: USB disconnect, device number 5
[ 1070.048050][   T10] cp210x 4-1:0.0: failed to get vendor val 0x0010 size 3: -32
[ 1070.085124][ T5775] Bluetooth: hci2: command tx timeout
[ 1070.098273][   T10] cp210x 4-1:0.0: GPIO initialisation failed: -524
[ 1070.116107][   T10] usb 4-1: cp210x converter now attached to ttyUSB0
[ 1070.268416][T17128] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1070.284572][T17128] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1070.292603][T17128] bridge_slave_0: entered allmulticast mode
[ 1070.301937][T17128] bridge_slave_0: entered promiscuous mode
[ 1070.311889][   T10] kernel write not supported for file /amidi2 (pid: 10 comm: kworker/0:1)
[ 1070.319058][T17128] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1070.328450][T17128] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1070.339171][T17128] bridge_slave_1: entered allmulticast mode
[ 1070.342076][   T10] usb 4-1: USB disconnect, device number 17
[ 1070.348529][T17128] bridge_slave_1: entered promiscuous mode
[ 1070.416423][   T10] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[ 1070.426982][   T10] cp210x 4-1:0.0: device disconnected
[ 1070.467535][T17128] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1070.643849][T17186] loop6: detected capacity change from 0 to 128
[ 1070.644496][T17128] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1070.703888][T17186] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1)
[ 1070.822592][T17186] syz.6.3920: attempt to access beyond end of device
[ 1070.822592][T17186] loop6: rw=3, sector=6950, nr_sectors = 2 limit=128
[ 1070.839080][T17186] syz.6.3920: attempt to access beyond end of device
[ 1070.839080][T17186] loop6: rw=2051, sector=6952, nr_sectors = 942 limit=128
[ 1070.900751][T17128] team0: Port device team_slave_0 added
[ 1070.972618][T17128] team0: Port device team_slave_1 added
[ 1071.184173][T17128] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1071.195555][T17128] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1071.223380][T17128] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1071.348185][T17128] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1071.355598][T17128] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1071.382204][T17128] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1071.654875][T17198] loop6: detected capacity change from 0 to 256
[ 1071.864211][T17128] hsr_slave_0: entered promiscuous mode
[ 1071.918350][T17128] hsr_slave_1: entered promiscuous mode
[ 1071.964259][T17128] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1071.972093][T17128] Cannot create hsr debugfs directory
[ 1072.164313][ T5775] Bluetooth: hci2: command tx timeout
[ 1072.593453][T17211] loop6: detected capacity change from 0 to 512
[ 1072.697883][T17211] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[ 1072.803716][T17211] EXT4-fs (loop6): 1 truncate cleaned up
[ 1072.811316][T17211] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1072.859222][T17128] batman_adv: batadv0: Removing interface: netdevsim3
[ 1072.876021][T17128] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1072.909675][T17211] fscrypt (loop6, inode 18): Direct key flag not allowed with different contents and filenames modes
[ 1072.924421][T17219] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3935'.
[ 1072.938471][T17219] netlink: 'syz.3.3935': attribute type 6 has an invalid length.
[ 1072.984675][T17128] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1073.150234][T17128] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1073.284407][T16412] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1073.329764][T17128] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1073.348816][T17223] netlink: 332 bytes leftover after parsing attributes in process `syz.4.3936'.
[ 1073.358470][T17223] netlink: 'syz.4.3936': attribute type 9 has an invalid length.
[ 1073.366652][T17223] netlink: 108 bytes leftover after parsing attributes in process `syz.4.3936'.
[ 1073.376213][T17223] netlink: 32 bytes leftover after parsing attributes in process `syz.4.3936'.
[ 1073.743743][T17128] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1073.774322][T17128] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1073.845818][T17128] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1073.891234][T17225] loop3: detected capacity change from 0 to 4096
[ 1073.903566][T17128] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1073.986357][T17225] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1074.024514][T17232] netlink: 48 bytes leftover after parsing attributes in process `syz.4.3941'.
[ 1074.036893][T17232] netlink: 1 bytes leftover after parsing attributes in process `syz.4.3941'.
[ 1074.246348][ T5775] Bluetooth: hci2: command tx timeout
[ 1074.711090][T13769] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1074.730108][T17239] loop4: detected capacity change from 0 to 128
[ 1074.752328][T17128] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1074.805959][T17239] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1)
[ 1074.974581][T17128] 8021q: adding VLAN 0 to HW filter on device team0
[ 1075.049227][   T58] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1075.056987][   T58] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1075.096774][T17239] FAT-fs (loop4): FAT read failed (blocknr 128)
[ 1075.153856][   T58] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1075.161550][   T58] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1075.225655][T17243] loop0: detected capacity change from 0 to 1024
[ 1075.437115][T17243] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1075.540689][   T58] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1)
[ 1075.955369][ T5773] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1076.445673][T17128] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1076.694453][ T5827] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[ 1076.874853][ T5827] usb 5-1: Using ep0 maxpacket: 32
[ 1076.886130][T17270] loop6: detected capacity change from 0 to 524287999
[ 1076.908813][ T5827] usb 5-1: New USB device found, idVendor=174f, idProduct=6a31, bcdDevice=26.3f
[ 1076.921178][ T5827] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1076.932862][ T5827] usb 5-1: Product: syz
[ 1076.938544][ T5827] usb 5-1: Manufacturer: syz
[ 1076.946076][ T5827] usb 5-1: SerialNumber: syz
[ 1076.962099][    C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1076.971927][    C1] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1077.005133][ T5827] gspca_main: stk1135-2.14.0 probing 174f:6a31
[ 1077.159384][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1077.169304][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1077.179260][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1077.189071][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1077.205233][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1077.214966][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1077.244693][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1077.254537][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1077.261775][ T5827] gspca_stk1135: reg_w 0x2 err -71
[ 1077.270778][ T5827] gspca_stk1135: serial bus timeout: status=0x00
[ 1077.278597][ T5827] gspca_stk1135: Sensor write failed
[ 1077.285118][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1077.285374][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1077.289278][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1077.296388][ T5827] gspca_stk1135: serial bus timeout: status=0x00
[ 1077.296453][ T5827] gspca_stk1135: Sensor write failed
[ 1077.296557][ T5827] gspca_stk1135: serial bus timeout: status=0x00
[ 1077.304662][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1077.309363][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1077.316740][ T5827] gspca_stk1135: Sensor read failed
[ 1077.320751][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1077.326113][ T5827] gspca_stk1135: serial bus timeout: status=0x00
[ 1077.339151][T17270] ldm_validate_partition_table(): Disk read failed.
[ 1077.345564][ T5827] gspca_stk1135: Sensor read failed
[ 1077.357609][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1077.357771][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1077.363000][    C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1077.366707][ T5827] gspca_stk1135: Detected sensor type unknown (0x0)
[ 1077.373057][    C0] Buffer I/O error on dev loop6, logical block 0, async page read
[ 1077.379817][ T5827] gspca_stk1135: serial bus timeout: status=0x00
[ 1077.444824][ T5827] gspca_stk1135: Sensor read failed
[ 1077.448197][T17270] Dev loop6: unable to read RDB block 0
[ 1077.450201][ T5827] gspca_stk1135: serial bus timeout: status=0x00
[ 1077.450265][ T5827] gspca_stk1135: Sensor read failed
[ 1077.450372][ T5827] gspca_stk1135: serial bus timeout: status=0x00
[ 1077.478717][ T5827] gspca_stk1135: Sensor write failed
[ 1077.486945][ T5827] gspca_stk1135: serial bus timeout: status=0x00
[ 1077.493650][ T5827] gspca_stk1135: Sensor write failed
[ 1077.499470][ T5827] stk1135 5-1:64.0: probe with driver stk1135 failed with error -71
[ 1077.499922][T17270]  loop6: unable to read partition table
[ 1077.517311][ T5827] usb 5-1: USB disconnect, device number 11
[ 1077.597772][T17270] loop_reread_partitions: partition scan of loop6 (3Ÿ¾x³˜CÖ

) failed (rc=-5)
[ 1077.721868][T17271] ldm_validate_partition_table(): Disk read failed.
[ 1077.771024][T17271] Dev loop6: unable to read RDB block 0
[ 1077.799914][T17271]  loop6: unable to read partition table
[ 1077.807087][T17271] loop_reread_partitions: partition scan of loop6 (3Ÿ¾x³˜CÖ

) failed (rc=-5)
[ 1078.181415][T17128] veth0_vlan: entered promiscuous mode
[ 1078.310094][T17128] veth1_vlan: entered promiscuous mode
[ 1078.497366][T17285] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3957'.
[ 1078.597577][T17128] veth0_macvtap: entered promiscuous mode
[ 1078.657586][T17128] veth1_macvtap: entered promiscuous mode
[ 1078.826574][T17128] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1078.838631][T17128] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1078.848852][T17128] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1078.859732][T17128] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1078.869891][T17128] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1078.885016][T17128] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1078.897301][T17128] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1078.908064][T17128] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1078.918263][T17128] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1078.929029][T17128] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1078.943863][T17128] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1079.002151][T17128] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1079.014034][T17128] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1079.024523][T17128] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1079.034367][T17287] loop6: detected capacity change from 0 to 1024
[ 1079.035186][T17128] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1079.051776][T17128] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1079.062808][T17128] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1079.073193][T17128] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1079.088320][T17128] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1079.099583][T17128] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1079.110395][T17128] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1079.125569][ T5786] Bluetooth: hci2: command 0x0405 tx timeout
[ 1079.125952][T17128] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1079.259779][T17128] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1079.269193][T17128] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1079.278364][T17128] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1079.321250][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[ 1079.321506][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[ 1079.348215][T17128] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1079.364764][T17287] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1079.377707][T17287] ext4 filesystem being mounted at /44/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1079.917408][T16412] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1080.667690][ T5861] libceph: connect (1)[c::]:6789 error -101
[ 1080.674259][ T5861] libceph: mon0 (1)[c::]:6789 connect error
[ 1080.831157][T17321] loop0: detected capacity change from 0 to 1024
[ 1080.866467][T17321] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[ 1080.944653][ T5861] libceph: connect (1)[c::]:6789 error -101
[ 1080.948197][T17321] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm syz.0.3969: Invalid block bitmap block 0 in block_group 0
[ 1080.951101][ T5861] libceph: mon0 (1)[c::]:6789 connect error
[ 1081.052833][T17321] Quota error (device loop0): write_blk: dquota write failed
[ 1081.061425][T17321] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[ 1081.071921][T17321] EXT4-fs error (device loop0): ext4_acquire_dquot:6938: comm syz.0.3969: Failed to acquire dquot type 0
[ 1081.180956][T17321] EXT4-fs error (device loop0): ext4_free_blocks:6589: comm syz.0.3969: Freeing blocks not in datazone - block = 0, count = 4096
[ 1081.305311][T17321] EXT4-fs error (device loop0): ext4_read_inode_bitmap:139: comm syz.0.3969: Invalid inode bitmap blk 0 in block_group 0
[ 1081.334063][ T1865] Quota error (device loop0): do_check_range: Getting block 0 out of range 1-8
[ 1081.343938][ T1865] EXT4-fs error (device loop0): ext4_release_dquot:6961: comm kworker/u8:9: Failed to release dquot type 0
[ 1081.386148][T17321] EXT4-fs error (device loop0) in ext4_free_inode:361: Corrupt filesystem
[ 1081.436825][T17321] EXT4-fs (loop0): 1 orphan inode deleted
[ 1081.447318][T17321] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1081.471585][T17312] ceph: No mds server is up or the cluster is laggy
[ 1081.562112][T17321] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[ 1081.673563][T17321] EXT4-fs error (device loop0): ext4_search_dir:1505: inode #2: block 16: comm syz.0.3969: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0
[ 1081.852232][T17336] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3974'.
[ 1082.005226][ T5773] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1082.205987][T17343] loop0: detected capacity change from 0 to 64
[ 1082.753017][T17350] loop4: detected capacity change from 0 to 1024
[ 1082.864061][T17355] loop6: detected capacity change from 0 to 2048
[ 1083.214301][T17357] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1083.312792][T17350] hfsplus: catalog searching failed
[ 1083.495877][T17366] loop3: detected capacity change from 0 to 2048
[ 1083.551414][T17362] loop0: detected capacity change from 0 to 2048
[ 1083.566383][T17366] UDF-fs: error (device loop3): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[ 1083.637211][T17150] hfsplus: bad catalog file entry
[ 1083.642601][T17150] hfsplus: b-tree write err: -5, ino 3
[ 1083.653921][T17366] UDF-fs: error (device loop3): udf_read_tagged: tag checksum failed, block 160: 0xd2 != 0xd4
[ 1083.696333][T17357] NILFS (loop6): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3)
[ 1083.710181][T17357] NILFS error (device loop6): nilfs_bmap_propagate: broken bmap (inode number=4)
[ 1083.740739][T17366] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1083.806170][T17368] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1083.821990][T17357] Remounting filesystem read-only
[ 1083.838439][T16412] NILFS (loop6): disposed unprocessed dirty file(s) when stopping log writer
[ 1083.887343][T17362] NILFS error (device loop0): nilfs_check_folio: size of directory #2 is not a multiple of chunk size
[ 1084.014380][T17362] Remounting filesystem read-only
[ 1084.547018][T17150] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1084.556104][T17150] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1084.770683][T17150] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1084.779019][T17150] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1085.102469][T17381] loop6: detected capacity change from 0 to 4096
[ 1085.305759][T17389] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3992'.
[ 1085.480070][T17381] ntfs3(loop6): ino=1c, "file0" failed to parse mft record
[ 1085.488093][T17381] ntfs3(loop6): Mark volume as dirty due to NTFS errors
[ 1085.554258][T17381] ntfs3(loop6): ino=1c, "file0" attr_set_size
[ 1086.957321][T17418] loop6: detected capacity change from 0 to 8
[ 1087.247893][T17422] loop3: detected capacity change from 0 to 1024
[ 1087.279557][T17416] loop0: detected capacity change from 0 to 2048
[ 1087.330639][T17416] EXT4-fs: Ignoring removed nobh option
[ 1087.366966][T17422] hfsplus: bad catalog entry type
[ 1087.454603][T17416] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1087.471470][T17416] ext4 filesystem being mounted at /851/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1087.936462][ T1865] hfsplus: b-tree write err: -5, ino 4
[ 1087.994830][ T5773] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1089.044564][T17450] loop0: detected capacity change from 0 to 1024
[ 1089.206688][T17450] hfsplus: bad catalog entry type
[ 1089.449593][   T78] hfsplus: b-tree write err: -5, ino 4
[ 1090.093535][ T5827] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[ 1090.281399][ T5827] usb 6-1: Using ep0 maxpacket: 32
[ 1090.390242][T17470] loop6: detected capacity change from 0 to 512
[ 1090.477360][ T5827] usb 6-1: New USB device found, idVendor=1d50, idProduct=60a1, bcdDevice=a1.4f
[ 1090.488471][ T5827] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1090.497840][ T5827] usb 6-1: Product: syz
[ 1090.502264][ T5827] usb 6-1: Manufacturer: syz
[ 1090.509901][ T5827] usb 6-1: SerialNumber: syz
[ 1090.514030][T17470] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1090.528427][T17470] ext4 filesystem being mounted at /57/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1090.544866][ T5827] usb 6-1: config 0 descriptor??
[ 1091.006029][ T5827] airspy 6-1:0.0: Board ID: 00
[ 1091.011329][ T5827] airspy 6-1:0.0: Firmware version: 
[ 1091.049244][T16412] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1091.245364][T17477] loop4: detected capacity change from 0 to 64
[ 1091.316703][T17477] hfs: filesystem is marked locked, mounting read-only.
[ 1091.431963][ T5827] airspy 6-1:0.0: usb_control_msg() failed -71 request 0e
[ 1091.456442][ T5827] airspy 6-1:0.0: Registered as swradio24
[ 1091.462467][ T5827] airspy 6-1:0.0: SDR API is still slightly experimental and functionality changes may follow
[ 1091.555849][T17481] loop6: detected capacity change from 0 to 1024
[ 1091.605576][ T5827] usb 6-1: USB disconnect, device number 8
[ 1091.653644][T17481] hfsplus: request for non-existent node 3 in B*Tree
[ 1091.660566][T17481] hfsplus: request for non-existent node 3 in B*Tree
[ 1091.765494][T17481] hfsplus: walked past end of dir
[ 1092.398452][T17150] wlan0: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 1092.457564][T17487] input input36: cannot allocate more than FF_MAX_EFFECTS effects
[ 1092.616114][T17496] bpf: Bad value for 'uid'
[ 1092.683541][ T5827] usb 4-1: new high-speed USB device number 18 using dummy_hcd
[ 1092.843446][ T5827] usb 4-1: Using ep0 maxpacket: 16
[ 1092.916160][ T5827] usb 4-1: New USB device found, idVendor=0b57, idProduct=2bbd, bcdDevice=e7.cc
[ 1092.925766][ T5827] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1092.934208][ T5827] usb 4-1: Product: syz
[ 1092.941247][ T5827] usb 4-1: Manufacturer: syz
[ 1092.948759][ T5827] usb 4-1: SerialNumber: syz
[ 1093.037745][ T5827] usb 4-1: config 0 descriptor??
[ 1093.162093][ T5827] usbhid 4-1:0.0: couldn't find an input interrupt endpoint
[ 1093.402746][T17502] loop6: detected capacity change from 0 to 2048
[ 1093.419595][ T5827] usb 4-1: USB disconnect, device number 18
[ 1093.691026][T17502] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1093.704210][T17502] ext4 filesystem being mounted at /60/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1093.860074][T17513] loop0: detected capacity change from 0 to 2048
[ 1093.975122][T17513] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found
[ 1093.983680][T17513] UDF-fs: Scanning with blocksize 512 failed
[ 1094.153826][T17513] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1094.227621][T16412] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1094.255502][   T29] audit: type=1800 audit(1734325297.480:778): pid=17513 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.4041" name="file1" dev="loop0" ino=818 res=0 errno=0
[ 1094.664863][T17527] loop6: detected capacity change from 0 to 1024
[ 1094.730220][T17527] syz.6.4048: attempt to access beyond end of device
[ 1094.730220][T17527] loop6: rw=0, sector=201326592, nr_sectors = 2 limit=1024
[ 1094.753397][T17527] buffer_io_error: 24 callbacks suppressed
[ 1094.753468][T17527] Buffer I/O error on dev loop6, logical block 100663296, async page read
[ 1094.778630][T17527] hfsplus: unable to mark blocks free: error -5
[ 1094.785339][T17527] hfsplus: can't free extent
[ 1095.003560][T17533] loop4: detected capacity change from 0 to 512
[ 1095.012806][T17533] EXT4-fs: Ignoring removed oldalloc option
[ 1095.064376][T17533] EXT4-fs error (device loop4): ext4_xattr_inode_iget:436: comm syz.4.4053: Parent and EA inode have the same ino 15
[ 1095.124358][T17533] EXT4-fs error (device loop4): ext4_xattr_inode_iget:436: comm syz.4.4053: Parent and EA inode have the same ino 15
[ 1095.274282][T17533] EXT4-fs (loop4): 1 orphan inode deleted
[ 1095.281902][T17533] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1095.333569][   T29] audit: type=1326 audit(1734325298.540:779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17537 comm="syz.3.4054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdaf5985d19 code=0x7ffc0000
[ 1095.359525][   T29] audit: type=1326 audit(1734325298.540:780): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17537 comm="syz.3.4054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdaf5985d19 code=0x7ffc0000
[ 1095.884543][T17547] loop3: detected capacity change from 0 to 512
[ 1095.918525][T17547] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[ 1095.952717][T12960] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1096.142424][T17547] EXT4-fs (loop3): 1 truncate cleaned up
[ 1096.159794][T17547] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1096.419716][T17559] netlink: 76 bytes leftover after parsing attributes in process `syz.5.4062'.
[ 1096.676807][T13769] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1097.175773][T17576] loop0: detected capacity change from 0 to 256
[ 1097.396120][T17576] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xb5fb52fc, utbl_chksum : 0xe619d30d)
[ 1098.276980][T17582] loop4: detected capacity change from 0 to 32768
[ 1098.299980][T17582] (syz.4.4071,17582,0):ocfs2_read_blocks_sync:112 ERROR: status = -12
[ 1098.308820][T17582] (syz.4.4071,17582,0):ocfs2_read_locked_inode:521 ERROR: status = -12
[ 1098.317561][T17582] (syz.4.4071,17582,0):ocfs2_init_global_system_inodes:448 ERROR: status = -12
[ 1098.327046][T17582] (syz.4.4071,17582,0):ocfs2_init_global_system_inodes:472 ERROR: status = -12
[ 1098.341388][T17582] (syz.4.4071,17582,0):ocfs2_initialize_super:2250 ERROR: status = -12
[ 1098.351749][T17582] (syz.4.4071,17582,0):ocfs2_fill_super:1178 ERROR: status = -12
[ 1099.398788][T17602] netlink: 104 bytes leftover after parsing attributes in process `syz.3.4079'.
[ 1099.633861][   T10] IPVS: starting estimator thread 0...
[ 1100.023872][T17607] IPVS: using max 240 ests per chain, 12000 per kthread
[ 1100.148236][   T10] usb 1-1: new high-speed USB device number 23 using dummy_hcd
[ 1100.528166][T17623] batman_adv: batadv0: Adding interface: virt_wifi0
[ 1100.535223][T17623] batman_adv: batadv0: The MTU of interface virt_wifi0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1100.561351][T17623] batman_adv: batadv0: Not using interface virt_wifi0 (retrying later): interface not active
[ 1100.593550][   T10] usb 1-1: Using ep0 maxpacket: 32
[ 1100.612536][   T10] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1100.624742][   T10] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1100.635185][   T10] usb 1-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[ 1100.645658][   T10] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1100.709706][   T10] usb 1-1: config 0 descriptor??
[ 1101.057818][T17631] TCP: request_sock_TCPv6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[ 1101.158379][   T10] savu 0003:1E7D:2D5A.001A: unbalanced collection at end of report description
[ 1101.192376][   T10] savu 0003:1E7D:2D5A.001A: parse failed
[ 1101.206805][   T10] savu 0003:1E7D:2D5A.001A: probe with driver savu failed with error -22
[ 1101.345004][   T10] usb 1-1: USB disconnect, device number 23
[ 1101.563945][T17641] loop5: detected capacity change from 0 to 64
[ 1101.836998][T17645] loop6: detected capacity change from 0 to 256
[ 1101.977127][T17645] exFAT-fs (loop6): failed to load upcase table (idx : 0x00011bf5, chksum : 0xcea91b8a, utbl_chksum : 0xe619d30d)
[ 1101.990811][T17645] exFAT-fs (loop6): bogus allocation bitmap size(need : 2, cur : 17179869186)
[ 1102.993052][T17666] loop4: detected capacity change from 0 to 1024
[ 1103.094267][   T10] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[ 1103.124208][   T29] audit: type=1804 audit(1734325306.340:781): pid=17666 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.4110" name=2F6E6577726F6F742F3332312F66696C65302FF560F7DA5F2C8E5541BC4BF055C87531357CA2267E9CBE1D3E92567C30313737373737373737373737373737373737373737373030303030303030303030303030303030303030 dev="loop4" ino=26 res=1 errno=0
[ 1103.293437][   T10] usb 6-1: Using ep0 maxpacket: 16
[ 1103.309395][   T10] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1103.321041][   T10] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1103.331207][   T10] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[ 1103.350242][   T10] usb 6-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[ 1103.360954][   T10] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1103.466891][   T58] hfsplus: b-tree write err: -5, ino 4
[ 1103.470086][   T10] usb 6-1: config 0 descriptor??
[ 1103.810189][T17678] loop4: detected capacity change from 0 to 512
[ 1103.855489][T17678] EXT4-fs: Ignoring removed mblk_io_submit option
[ 1103.935700][   T10] microsoft 0003:045E:07DA.001B: unknown main item tag 0x0
[ 1103.943532][   T10] microsoft 0003:045E:07DA.001B: ignoring exceeding usage max
[ 1104.007103][   T10] microsoft 0003:045E:07DA.001B: No inputs registered, leaving
[ 1104.041963][   T10] microsoft 0003:045E:07DA.001B: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.5-1/input0
[ 1104.054011][   T10] microsoft 0003:045E:07DA.001B: no inputs found
[ 1104.060605][   T10] microsoft 0003:045E:07DA.001B: could not initialize ff, continuing anyway
[ 1104.086944][T17678] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1104.152563][T17676] 9pnet_fd: Insufficient options for proto=fd
[ 1104.222729][ T5861] usb 6-1: USB disconnect, device number 9
[ 1104.280779][T12960] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1104.509507][T17690] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4122'.
[ 1104.518982][T17690] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4122'.
[ 1105.165923][ T5827] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[ 1105.333587][ T5827] usb 7-1: Using ep0 maxpacket: 16
[ 1105.397940][ T5827] usb 7-1: New USB device found, idVendor=054c, idProduct=0038, bcdDevice=16.f5
[ 1105.410118][ T5827] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1105.418594][ T5827] usb 7-1: Product: syz
[ 1105.423012][ T5827] usb 7-1: Manufacturer: syz
[ 1105.428016][ T5827] usb 7-1: SerialNumber: syz
[ 1105.517693][ T5827] usb 7-1: config 0 descriptor??
[ 1105.557264][ T5827] visor 7-1:0.0: Sony Clie 3.5 converter detected
[ 1105.797038][ T5827] usb 7-1: clie_3_5_startup: get config number failed: -71
[ 1105.811050][ T5827] visor 7-1:0.0: probe with driver visor failed with error -71
[ 1105.858756][ T5827] usb 7-1: USB disconnect, device number 6
[ 1106.962845][T17736] loop3: detected capacity change from 0 to 512
[ 1106.992731][T17736] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[ 1107.108826][T17736] EXT4-fs (loop3): 1 truncate cleaned up
[ 1107.116559][T17736] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1107.540650][T13769] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1107.685934][T17747] loop4: detected capacity change from 0 to 4096
[ 1108.046097][T17747] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1108.149320][T17761] loop6: detected capacity change from 0 to 256
[ 1108.284359][T17764] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[ 1108.415449][T12960] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1108.463494][ T5827] usb 1-1: new high-speed USB device number 24 using dummy_hcd
[ 1108.667407][ T5827] usb 1-1: Using ep0 maxpacket: 32
[ 1108.691592][ T5827] usb 1-1: config 248 has an invalid interface number: 94 but max is 0
[ 1108.703458][ T5827] usb 1-1: config 248 has no interface number 0
[ 1108.710032][ T5827] usb 1-1: config 248 interface 94 has no altsetting 0
[ 1108.869451][ T5827] usb 1-1: New USB device found, idVendor=04cb, idProduct=013d, bcdDevice=31.30
[ 1108.885567][ T5827] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1108.895392][ T5827] usb 1-1: Product: syz
[ 1108.899943][ T5827] usb 1-1: Manufacturer: syz
[ 1108.907447][ T5827] usb 1-1: SerialNumber: syz
[ 1109.202524][ T5827] gspca_main: finepix-2.14.0 probing 04cb:013d
[ 1109.250455][ T5827] usb 1-1: USB disconnect, device number 24
[ 1109.626564][T17781] loop4: detected capacity change from 0 to 256
[ 1109.813635][   T29] audit: type=1800 audit(1734325313.000:782): pid=17781 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.4158" name="bus" dev="loop4" ino=1048858 res=0 errno=0
[ 1110.342254][T17796] loop4: detected capacity change from 0 to 16
[ 1110.379470][T17796] erofs (device loop4): mounted with root inode @ nid 36.
[ 1110.462166][ T5775] erofs (device loop4): failed to decompress 6887 in[4096, 0] out[9000]
[ 1110.520013][T17796] erofs (device loop4): failed to decompress 6887 in[4096, 0] out[8192]
[ 1110.529486][T17796] erofs (device loop4): read error -117 @ 0 of nid 89
[ 1110.551273][   T29] audit: type=1800 audit(1734325313.760:783): pid=17796 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.4164" name="file3" dev="loop4" ino=89 res=0 errno=0
[ 1111.214927][T17811] loop4: detected capacity change from 0 to 512
[ 1111.259575][T17811] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[ 1111.267431][T17813] loop0: detected capacity change from 0 to 256
[ 1111.338749][T17811] EXT4-fs error (device loop4): ext4_orphan_get:1415: comm syz.4.4171: bad orphan inode 131083
[ 1111.398130][T17811] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1111.497653][   T29] audit: type=1800 audit(1734325314.700:784): pid=17811 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.4171" name="file1" dev="loop4" ino=15 res=0 errno=0
[ 1112.104835][T12960] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1112.435336][T17831] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4179'.
[ 1112.480392][T17832] loop0: detected capacity change from 0 to 128
[ 1113.826385][T17847] loop3: detected capacity change from 0 to 4096
[ 1113.859945][T17847] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512).
[ 1114.216869][T17847] ntfs3(loop3): Mark volume as dirty due to NTFS errors
[ 1114.233802][T17847] ntfs3(loop3): Failed to load $Extend (-2).
[ 1114.240322][T17847] ntfs3(loop3): Failed to initialize $Extend.
[ 1114.805814][T17873] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(3)
[ 1114.812657][T17873] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[ 1114.824997][T17873] vhci_hcd vhci_hcd.0: Device attached
[ 1115.036474][   T10] vhci_hcd: vhci_device speed not set
[ 1115.103454][   T10] usb 41-1: new full-speed USB device number 2 using vhci_hcd
[ 1115.144269][ T5827] usb 5-1: new low-speed USB device number 12 using dummy_hcd
[ 1115.376662][ T5861] usb 1-1: new high-speed USB device number 25 using dummy_hcd
[ 1115.418660][ T5827] usb 5-1: config 0 has no interfaces?
[ 1115.424945][ T5827] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[ 1115.440784][ T5827] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1115.491095][ T5827] usb 5-1: config 0 descriptor??
[ 1115.541213][ T5861] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1115.552817][ T5861] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1115.565975][ T5861] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1115.579323][ T5861] usb 1-1: New USB device found, idVendor=054c, idProduct=0ba0, bcdDevice= 0.00
[ 1115.594460][ T5861] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1115.644508][ T5861] usb 1-1: config 0 descriptor??
[ 1115.728747][T10489] usb 5-1: USB disconnect, device number 12
[ 1115.754824][T17874] usb 41-1: recv xbuf, -104
[ 1115.765834][   T58] vhci_hcd: stop threads
[ 1115.770328][   T58] vhci_hcd: release socket
[ 1115.775431][   T58] vhci_hcd: disconnect device
[ 1115.827953][   T10] vhci_hcd: vhci_device speed not set
[ 1116.109683][ T5861] playstation 0003:054C:0BA0.001C: hidraw0: USB HID v0.00 Device [HID 054c:0ba0] on usb-dummy_hcd.0-1/input0
[ 1116.307195][ T5861] playstation 0003:054C:0BA0.001C: Invalid reportID received, expected 18 got 56
[ 1116.317012][ T5861] playstation 0003:054C:0BA0.001C: Failed to retrieve DualShock4 pairing info: -22
[ 1116.326886][ T5861] playstation 0003:054C:0BA0.001C: Failed to get MAC address from DualShock4
[ 1116.338776][ T5861] playstation 0003:054C:0BA0.001C: Failed to create dualshock4.
[ 1116.366522][ T5861] playstation 0003:054C:0BA0.001C: probe with driver playstation failed with error -22
[ 1116.448055][T17898] loop6: detected capacity change from 0 to 2048
[ 1116.521872][T10489] usb 1-1: USB disconnect, device number 25
[ 1116.645307][T17898] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1116.796489][   T29] audit: type=1800 audit(1734325319.990:785): pid=17898 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.4209" name="file1" dev="loop6" ino=1346 res=0 errno=0
[ 1116.821761][T17904] netlink: 20 bytes leftover after parsing attributes in process `syz.4.4212'.
[ 1117.055047][T17907] sch_tbf: burst 19869 is lower than device lo mtu (65550) !
[ 1118.142549][T17913] sctp: failed to load transform for md5: -2
[ 1121.797584][T17953] loop3: detected capacity change from 0 to 2048
[ 1121.862239][T17953] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1121.885043][T10489] usb 5-1: new full-speed USB device number 13 using dummy_hcd
[ 1122.081678][T10489] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1122.096991][T10489] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1122.140249][T17957] EXT4-fs: Ignoring removed bh option
[ 1122.160981][T10489] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1122.172048][T10489] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1122.180549][T10489] usb 5-1: Product: syz
[ 1122.185070][T10489] usb 5-1: Manufacturer: syz
[ 1122.194245][T10489] usb 5-1: SerialNumber: syz
[ 1122.205957][T17957] EXT4-fs (loop3): can't disable delalloc during remount
[ 1122.406726][ T5786] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1122.431728][ T5786] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1122.449761][ T5786] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1122.453781][T13769] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4128793 free clusters
[ 1122.491201][ T5786] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1122.515071][ T5786] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[ 1122.526396][ T5786] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1122.526738][T10489] usb 5-1: 0:2 : does not exist
[ 1122.642184][T13769] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1122.839244][T10489] usb 5-1: 5:0: failed to get current value for ch 0 (-22)
[ 1122.953003][T17967] loop0: detected capacity change from 0 to 16
[ 1122.974593][T17967] erofs (device loop0): mounted with root inode @ nid 36.
[ 1123.305046][T10489] usb 5-1: USB disconnect, device number 13
[ 1123.425130][T17973] netlink: 132 bytes leftover after parsing attributes in process `syz.0.4238'.
[ 1123.711389][T17958] chnl_net:caif_netlink_parms(): no params data found
[ 1123.946793][ T1297] wlan0: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 1124.590456][T17958] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1124.598611][T17958] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1124.607116][T17958] bridge_slave_0: entered allmulticast mode
[ 1124.616478][T17958] bridge_slave_0: entered promiscuous mode
[ 1124.643380][T17991] nicvf0: tun_chr_ioctl cmd 1074025677
[ 1124.653860][T17991] nicvf0: linktype set to 270
[ 1124.690149][ T5775] Bluetooth: hci1: command tx timeout
[ 1124.716126][T17958] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1124.726641][T17958] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1124.734924][T17958] bridge_slave_1: entered allmulticast mode
[ 1124.756138][T17958] bridge_slave_1: entered promiscuous mode
[ 1125.045614][T17958] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1125.113936][T17958] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1125.387054][T17958] team0: Port device team_slave_0 added
[ 1125.446971][T17958] team0: Port device team_slave_1 added
[ 1125.840838][T17958] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1125.849510][T17958] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1125.880424][T17958] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1125.932627][T18004] loop4: detected capacity change from 0 to 512
[ 1125.987575][T10489] usb 4-1: new high-speed USB device number 19 using dummy_hcd
[ 1126.000327][T18004] EXT4-fs: Invalid commit interval 1836789753, must be smaller than 21474836
[ 1126.016918][T17958] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1126.024322][T17958] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1126.051141][T17958] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1126.173409][T10489] usb 4-1: Using ep0 maxpacket: 32
[ 1126.198189][T10489] usb 4-1: config index 0 descriptor too short (expected 35577, got 27)
[ 1126.207019][T10489] usb 4-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[ 1126.216050][T10489] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 92
[ 1126.225608][T10489] usb 4-1: config 1 has no interface number 0
[ 1126.231988][T10489] usb 4-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 1126.243506][T10489] usb 4-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[ 1126.249274][T18006] netlink: 'syz.0.4251': attribute type 9 has an invalid length.
[ 1126.256909][T10489] usb 4-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[ 1126.274215][T10489] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1126.381684][T18004] loop4: detected capacity change from 0 to 1024
[ 1126.431403][T10489] snd_usb_pod 4-1:1.1: Line 6 Pocket POD found
[ 1126.518030][T17958] hsr_slave_0: entered promiscuous mode
[ 1126.548384][T17958] hsr_slave_1: entered promiscuous mode
[ 1126.570592][T17958] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1126.578866][T17958] Cannot create hsr debugfs directory
[ 1126.760827][ T5775] Bluetooth: hci1: command tx timeout
[ 1126.936253][T17150] hfsplus: b-tree write err: -5, ino 4
[ 1126.996125][T10489] snd_usb_pod 4-1:1.1: Line 6 Pocket POD now attached
[ 1127.059989][T18012] loop5: detected capacity change from 0 to 2048
[ 1127.091660][T18013] netlink: 104 bytes leftover after parsing attributes in process `syz.0.4253'.
[ 1127.439165][T18015] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4254'.
[ 1127.603377][T18016] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1127.749747][   T29] audit: type=1800 audit(1734325330.970:786): pid=18012 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.4255" name="file1" dev="loop5" ino=15 res=0 errno=0
[ 1127.766358][   T10] usb 4-1: USB disconnect, device number 19
[ 1127.778293][   T10] snd_usb_pod 4-1:1.1: Line 6 Pocket POD now disconnected
[ 1127.860176][T18012] NILFS (loop5): error -2 truncating bmap (ino=16)
[ 1128.004620][T18016] NILFS (loop5): vblocknr = 15 has abnormal lifetime: start cno (= 4128770) > current cno (= 3)
[ 1128.020991][T18016] NILFS error (device loop5): nilfs_bmap_propagate: broken bmap (inode number=16)
[ 1128.059147][T18016] Remounting filesystem read-only
[ 1128.101343][T17128] NILFS (loop5): disposed unprocessed dirty file(s) when stopping log writer
[ 1128.700055][T17958] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 1128.780740][T17958] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 1128.806635][ T5775] Bluetooth: hci1: command tx timeout
[ 1128.828362][T17958] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 1128.864712][T17958] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 1128.885265][ T5861] usb 5-1: new high-speed USB device number 14 using dummy_hcd
[ 1129.060171][ T5861] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1129.072104][ T5861] usb 5-1: New USB device found, idVendor=046d, idProduct=08c1, bcdDevice=ee.8d
[ 1129.087977][ T5861] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1129.170990][ T5861] usb 5-1: config 0 descriptor??
[ 1129.217928][ T5861] usb 5-1: Found UVC 0.00 device <unnamed> (046d:08c1)
[ 1129.225624][ T5861] usb 5-1: No valid video chain found.
[ 1129.404981][ T5861] usb 5-1: USB disconnect, device number 14
[ 1129.423009][T17958] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1129.478895][T17958] 8021q: adding VLAN 0 to HW filter on device team0
[ 1129.526854][ T1865] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1129.534656][ T1865] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1129.668677][T17150] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1129.676485][T17150] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1130.343893][T18052] netlink: 39 bytes leftover after parsing attributes in process `syz.3.4266'.
[ 1130.372338][T18053] loop5: detected capacity change from 0 to 1024
[ 1130.439924][T18053] EXT4-fs: Ignoring removed i_version option
[ 1130.447276][T18053] EXT4-fs: Ignoring removed bh option
[ 1130.674264][T18053] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1130.783695][T10489] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[ 1130.838971][T18053] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: none.
[ 1130.885983][ T5775] Bluetooth: hci1: command tx timeout
[ 1130.980068][T10489] usb 5-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[ 1130.989724][T10489] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1131.037065][T10489] usb 5-1: config 0 descriptor??
[ 1131.049912][T10489] cp210x 5-1:0.0: cp210x converter detected
[ 1131.305914][T18053] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[ 1131.452901][T17958] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1131.629836][T10489] cp210x 5-1:0.0: failed to get vendor val 0x000e size 3: -32
[ 1131.717269][T17958] veth0_vlan: entered promiscuous mode
[ 1131.782377][T10489] usb 5-1: cp210x converter now attached to ttyUSB0
[ 1131.817490][T17128] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1131.859126][T17958] veth1_vlan: entered promiscuous mode
[ 1131.878245][ T5861] usb 5-1: USB disconnect, device number 15
[ 1131.925249][ T5861] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[ 1132.054163][ T5861] cp210x 5-1:0.0: device disconnected
[ 1132.282747][T17958] veth0_macvtap: entered promiscuous mode
[ 1132.364800][T18076] loop5: detected capacity change from 0 to 512
[ 1132.379482][T17958] veth1_macvtap: entered promiscuous mode
[ 1132.454809][T18076] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1132.468187][T18076] ext4 filesystem being mounted at /54/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1132.589434][T17958] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1132.600264][T17958] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1132.610819][T17958] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1132.621646][T17958] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1132.636906][T17958] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1132.649208][T17958] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1132.659379][T17958] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1132.670173][T17958] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1132.680348][T17958] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1132.691177][T17958] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1132.701488][T17958] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1132.712796][T17958] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1132.727930][T17958] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1132.752978][T17958] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1132.765439][T17958] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1132.775779][T17958] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1132.786625][T17958] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1132.797187][T17958] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1132.808215][T17958] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1132.818412][T17958] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1132.829265][T17958] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1132.844114][T17958] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1132.856323][T17958] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1132.866763][T17958] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1132.877640][T17958] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1132.892679][T17958] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1132.973758][T17958] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1132.982843][T17958] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1132.992027][T17958] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1133.001176][T17958] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1133.158430][T17128] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1133.725372][   T29] audit: type=1326 audit(1734325336.950:787): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18090 comm="syz.4.4279" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f97eff85d19 code=0x0
[ 1133.786890][T18094] loop5: detected capacity change from 0 to 512
[ 1133.844583][T18094] EXT4-fs (loop5): revision level too high, forcing read-only mode
[ 1133.853910][T18094] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e028, mo2=0002]
[ 1133.914442][T18094] System zones: 0-1, 15-15, 18-18, 34-34
[ 1133.919210][T18100] loop3: detected capacity change from 0 to 64
[ 1133.921453][T18094] EXT4-fs (loop5): orphan cleanup on readonly fs
[ 1133.935538][T18094] Quota error (device loop5): v2_read_header: Failed header read: expected=8 got=0
[ 1133.945573][T18094] EXT4-fs warning (device loop5): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[ 1133.960601][T18094] EXT4-fs (loop5): Cannot turn on quotas: error -22
[ 1134.048337][T18094] EXT4-fs error (device loop5): ext4_orphan_get:1415: comm syz.5.4289: bad orphan inode 16
[ 1134.081551][T18094] EXT4-fs (loop5): Remounting filesystem read-only
[ 1134.091250][T18094] ext4_test_bit(bit=15, block=18) = 1
[ 1134.098246][T18094] is_bad_inode(inode)=0
[ 1134.102763][T18094] NEXT_ORPHAN(inode)=0
[ 1134.107443][T18094] max_ino=32
[ 1134.110845][T18094] i_nlink=2
[ 1134.115895][T18094] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1134.290583][T18094] fscrypt (loop5, inode 16): Error -5 getting encryption context
[ 1135.673580][T18111] loop3: detected capacity change from 0 to 32768
[ 1135.685914][T18111] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.4282 (18111)
[ 1135.688181][T17128] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1135.767586][T18111] BTRFS info (device loop3): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[ 1135.775533][T17150] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1135.778239][T18111] BTRFS info (device loop3): using blake2b (blake2b-256-generic) checksum algorithm
[ 1135.798861][T18111] BTRFS error (device loop3): ignorebadroots must be used with ro mount option
[ 1135.812713][T18111] BTRFS info (device loop3): using free-space-tree
[ 1135.821956][T18111] BTRFS error (device loop3): open_ctree failed
[ 1135.999694][T17150] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1136.331363][T17150] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1136.532875][T17150] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1136.779486][T18119] ax25_connect(): syz.3.4288 uses autobind, please contact jreuter@yaina.de
[ 1136.942928][T17150] bridge_slave_1: left allmulticast mode
[ 1136.951704][T17150] bridge_slave_1: left promiscuous mode
[ 1136.961156][T17150] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1136.994652][T17150] bridge_slave_0: left allmulticast mode
[ 1137.000575][T17150] bridge_slave_0: left promiscuous mode
[ 1137.009928][T17150] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1137.567050][T17150] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1137.596864][T17150] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1137.656404][T17150] bond0 (unregistering): Released all slaves
[ 1138.185921][T17150] hsr_slave_0: left promiscuous mode
[ 1138.228861][T17150] hsr_slave_1: left promiscuous mode
[ 1138.274408][T17150] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1138.282327][T17150] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1138.327064][T17150] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1138.334976][T17150] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1138.385119][T17150] veth1_macvtap: left promiscuous mode
[ 1138.390915][T17150] veth0_macvtap: left promiscuous mode
[ 1138.397171][T17150] veth1_vlan: left promiscuous mode
[ 1138.402748][T17150] veth0_vlan: left promiscuous mode
[ 1139.475656][T17150] team0 (unregistering): Port device team_slave_1 removed
[ 1139.627043][T18129] loop0: detected capacity change from 0 to 64
[ 1139.639013][T17150] team0 (unregistering): Port device team_slave_0 removed
[ 1139.889476][ T5786] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1140.124290][   T29] audit: type=1326 audit(1734325343.270:788): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18128 comm="syz.3.4292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fdaf597cce7 code=0x7ffc0000
[ 1140.147408][   T29] audit: type=1326 audit(1734325343.270:789): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18128 comm="syz.3.4292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fdaf5921f29 code=0x7ffc0000
[ 1140.171354][   T29] audit: type=1326 audit(1734325343.270:790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18128 comm="syz.3.4292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fdaf597cce7 code=0x7ffc0000
[ 1140.194386][   T29] audit: type=1326 audit(1734325343.270:791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18128 comm="syz.3.4292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fdaf5921f29 code=0x7ffc0000
[ 1140.221011][   T29] audit: type=1326 audit(1734325343.270:792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18128 comm="syz.3.4292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fdaf597cce7 code=0x7ffc0000
[ 1140.244926][   T29] audit: type=1326 audit(1734325343.270:793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18128 comm="syz.3.4292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fdaf5921f29 code=0x7ffc0000
[ 1140.267922][   T29] audit: type=1326 audit(1734325343.300:794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18128 comm="syz.3.4292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdaf5985d19 code=0x7ffc0000
[ 1140.290975][   T29] audit: type=1326 audit(1734325343.320:795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18128 comm="syz.3.4292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fdaf597cce7 code=0x7ffc0000
[ 1140.318055][   T29] audit: type=1326 audit(1734325343.320:796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18128 comm="syz.3.4292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fdaf5921f29 code=0x7ffc0000
[ 1140.344242][ T5786] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1140.344359][   T29] audit: type=1326 audit(1734325343.330:797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18128 comm="syz.3.4292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=64 compat=0 ip=0x7fdaf5985d19 code=0x7ffc0000
[ 1140.401892][ T5786] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1140.554808][ T5786] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1140.584555][ T5786] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[ 1140.598559][ T5786] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1140.739836][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[ 1140.747121][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[ 1141.736920][T18132] chnl_net:caif_netlink_parms(): no params data found
[ 1141.783530][   T78] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1141.791623][   T78] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1142.116365][ T1825] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1142.127507][ T1825] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1142.188032][T18163] overlayfs: disabling nfs_export due to verity=require
[ 1142.650817][ T5786] Bluetooth: hci2: command tx timeout
[ 1142.839061][T18172] binder: BINDER_SET_CONTEXT_MGR already set
[ 1142.846008][T18172] binder: 18169:18172 ioctl 40046207 0 returned -16
[ 1143.175876][T18132] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1143.191036][T18132] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1143.199115][T18132] bridge_slave_0: entered allmulticast mode
[ 1143.208344][T18132] bridge_slave_0: entered promiscuous mode
[ 1143.335771][T18132] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1143.343828][T18132] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1143.351804][T18132] bridge_slave_1: entered allmulticast mode
[ 1143.361142][T18132] bridge_slave_1: entered promiscuous mode
[ 1143.732536][T18132] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1143.813876][T18132] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1144.191604][T18132] team0: Port device team_slave_0 added
[ 1144.225891][T18132] team0: Port device team_slave_1 added
[ 1144.735137][ T5786] Bluetooth: hci2: command tx timeout
[ 1144.770791][T18132] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1144.781122][T18132] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1144.812871][T18132] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1145.025866][T17150] =====================================================
[ 1145.034535][T17150] BUG: KMSAN: uninit-value in gsmld_receive_buf+0x5dc/0x640
[ 1145.042048][T17150]  gsmld_receive_buf+0x5dc/0x640
[ 1145.052540][T17150]  tty_ldisc_receive_buf+0x202/0x290
[ 1145.058266][T17150]  tty_port_default_receive_buf+0xdf/0x190
[ 1145.063902][T18191] loop0: detected capacity change from 0 to 32768
[ 1145.064542][T17150]  flush_to_ldisc+0x473/0xdb0
[ 1145.081011][T17150]  process_scheduled_works+0xae0/0x1c40
[ 1145.085142][T18132] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1145.087017][T17150]  worker_thread+0xea7/0x14f0
[ 1145.087241][T17150]  kthread+0x3e2/0x540
[ 1145.094863][T18132] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1145.099526][T17150]  ret_from_fork+0x6d/0x90
[ 1145.099647][T17150]  ret_from_fork_asm+0x1a/0x30
[ 1145.099787][T17150] 
[ 1145.099808][T17150] Uninit was created at:
[ 1145.099993][T17150]  __kmalloc_noprof+0x923/0x1230
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 1145.104774][T18132] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1145.184956][T17150]  __tty_buffer_request_room+0x36e/0x6d0
[ 1145.190838][T17150]  __tty_insert_flip_string_flags+0x140/0x570
[ 1145.202621][T17150]  uart_insert_char+0x39e/0xa10
[ 1145.209683][T17150]  serial8250_read_char+0x1a7/0x5d0
[ 1145.216761][T17150]  serial8250_handle_irq+0x970/0x1130
[ 1145.222350][T17150]  serial8250_default_handle_irq+0x120/0x2b0
[ 1145.237327][T17150]  serial8250_interrupt+0xc5/0x360
[ 1145.242639][T17150]  __handle_irq_event_percpu+0x118/0xca0
[ 1145.249750][T17150]  handle_irq_event+0xef/0x2c0
[ 1145.257404][T17150]  handle_edge_irq+0x340/0xfb0
[ 1145.262384][T17150]  __common_interrupt+0x97/0x1f0
[ 1145.270224][T17150]  common_interrupt+0x92/0xb0
[ 1145.275263][T17150]  asm_common_interrupt+0x2b/0x40
[ 1145.280510][T17150] 
[ 1145.282949][T17150] CPU: 1 UID: 0 PID: 17150 Comm: kworker/u8:1 Tainted: G        W          6.13.0-rc3-syzkaller #0
[ 1145.299758][T17150] Tainted: [W]=WARN
[ 1145.303817][T17150] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1145.316731][T17150] Workqueue: events_unbound flush_to_ldisc
[ 1145.322774][T17150] =====================================================
[ 1145.335911][T17150] Disabling lock debugging due to kernel taint
[ 1145.342323][T17150] Kernel panic - not syncing: kmsan.panic set ...
[ 1145.348913][T17150] CPU: 1 UID: 0 PID: 17150 Comm: kworker/u8:1 Tainted: G    B   W          6.13.0-rc3-syzkaller #0
[ 1145.359848][T17150] Tainted: [B]=BAD_PAGE, [W]=WARN
[ 1145.364984][T17150] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[ 1145.375196][T17150] Workqueue: events_unbound flush_to_ldisc
[ 1145.381220][T17150] Call Trace:
[ 1145.384693][T17150]  <TASK>
[ 1145.387723][T17150]  dump_stack_lvl+0x216/0x2d0
[ 1145.392594][T17150]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[ 1145.398589][T17150]  dump_stack+0x1e/0x24
[ 1145.402923][T17150]  panic+0x4e2/0xcf0
[ 1145.407002][T17150]  ? kmsan_get_metadata+0xf1/0x1c0
[ 1145.412296][T17150]  kmsan_report+0x2c7/0x2d0
[ 1145.416965][T17150]  ? __msan_warning+0x95/0x120
[ 1145.421933][T17150]  ? gsmld_receive_buf+0x5dc/0x640
[ 1145.427241][T17150]  ? tty_ldisc_receive_buf+0x202/0x290
[ 1145.432906][T17150]  ? tty_port_default_receive_buf+0xdf/0x190
[ 1145.439112][T17150]  ? flush_to_ldisc+0x473/0xdb0
[ 1145.444168][T17150]  ? process_scheduled_works+0xae0/0x1c40
[ 1145.450296][T17150]  ? worker_thread+0xea7/0x14f0
[ 1145.455349][T17150]  ? kthread+0x3e2/0x540
[ 1145.459746][T17150]  ? ret_from_fork+0x6d/0x90
[ 1145.464507][T17150]  ? ret_from_fork_asm+0x1a/0x30
[ 1145.469658][T17150]  ? kmsan_get_metadata+0x13e/0x1c0
[ 1145.475033][T17150]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[ 1145.481008][T17150]  ? kmsan_get_metadata+0x13e/0x1c0
[ 1145.486375][T17150]  ? kmsan_get_metadata+0x13e/0x1c0
[ 1145.491744][T17150]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[ 1145.497715][T17150]  ? __pfx_gsm1_receive+0x10/0x10
[ 1145.502938][T17150]  ? gsm1_receive+0x38e/0x1170
[ 1145.507893][T17150]  ? kmsan_get_metadata+0x13e/0x1c0
[ 1145.513264][T17150]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[ 1145.519236][T17150]  ? kmsan_get_metadata+0x13e/0x1c0
[ 1145.524593][T17150]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[ 1145.530572][T17150]  ? __pfx_gsm1_receive+0x10/0x10
[ 1145.535788][T17150]  __msan_warning+0x95/0x120
[ 1145.540582][T17150]  gsmld_receive_buf+0x5dc/0x640
[ 1145.545729][T17150]  ? __pfx_gsmld_receive_buf+0x10/0x10
[ 1145.551406][T17150]  tty_ldisc_receive_buf+0x202/0x290
[ 1145.556912][T17150]  tty_port_default_receive_buf+0xdf/0x190
[ 1145.562948][T17150]  flush_to_ldisc+0x473/0xdb0
[ 1145.567831][T17150]  ? __pfx_tty_port_default_receive_buf+0x10/0x10
[ 1145.574470][T17150]  ? __pfx_flush_to_ldisc+0x10/0x10
[ 1145.579865][T17150]  process_scheduled_works+0xae0/0x1c40
[ 1145.585841][T17150]  worker_thread+0xea7/0x14f0
[ 1145.590744][T17150]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[ 1145.596762][T17150]  kthread+0x3e2/0x540
[ 1145.601007][T17150]  ? __pfx_worker_thread+0x10/0x10
[ 1145.606361][T17150]  ? __pfx_kthread+0x10/0x10
[ 1145.611119][T17150]  ret_from_fork+0x6d/0x90
[ 1145.615720][T17150]  ? __pfx_kthread+0x10/0x10
[ 1145.620474][T17150]  ret_from_fork_asm+0x1a/0x30
[ 1145.625452][T17150]  </TASK>
[ 1145.628862][T17150] Kernel Offset: disabled
[ 1145.633338][T17150] Rebooting in 86400 seconds..