last executing test programs:

2m32.338581544s ago: executing program 2 (id=739):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x37, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
ioprio_set$pid(0x2, 0x0, 0x0)

2m28.562331312s ago: executing program 2 (id=747):
socket$nl_xfrm(0x10, 0x3, 0x6)
socket(0xb, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r4, 0x6, 0x13, 0x0, 0x0)
connect$inet6(r4, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c)
sendto$inet6(r4, &(0x7f00000001c0)="a6e2976b5c4383036d", 0x9, 0x840, 0x0, 0x0)
mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r4, 0x604ab000)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r4, 0x6, 0x23, &(0x7f0000000480)={&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0)
ioctl$KDSKBMETA(0xffffffffffffffff, 0x4b63, 0x0)

2m25.095163563s ago: executing program 2 (id=751):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000240), r0)
sendmsg$IEEE802154_LIST_PHY(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000080)={0x14, r1, 0x30b, 0x70bd27, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x851}, 0x20000004)
syz_genetlink_get_family_id$nl802154(0x0, r0)

2m25.02175209s ago: executing program 2 (id=753):
r0 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r0, &(0x7f0000000040)={0x28, 0x0, 0x0, @local}, 0x10)
listen(r0, 0x4)

2m22.784195964s ago: executing program 2 (id=758):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x37, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
ioprio_set$pid(0x2, 0x0, 0x0)

2m18.938645729s ago: executing program 2 (id=763):
socket$nl_xfrm(0x10, 0x3, 0x6)
socket(0xb, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r4, 0x6, 0x13, 0x0, 0x0)
connect$inet6(r4, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c)
sendto$inet6(r4, &(0x7f00000001c0)="a6e2976b5c4383036d", 0x9, 0x840, 0x0, 0x0)
mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r4, 0x604ab000)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r4, 0x6, 0x23, &(0x7f0000000480)={&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0)
ioctl$KDSKBMETA(0xffffffffffffffff, 0x4b63, 0x0)

2m3.295969466s ago: executing program 32 (id=763):
socket$nl_xfrm(0x10, 0x3, 0x6)
socket(0xb, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r4, 0x6, 0x13, 0x0, 0x0)
connect$inet6(r4, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c)
sendto$inet6(r4, &(0x7f00000001c0)="a6e2976b5c4383036d", 0x9, 0x840, 0x0, 0x0)
mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r4, 0x604ab000)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r4, 0x6, 0x23, &(0x7f0000000480)={&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0)
ioctl$KDSKBMETA(0xffffffffffffffff, 0x4b63, 0x0)

1m47.905823386s ago: executing program 5 (id=805):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000040)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x50)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x10, 0x1c, &(0x7f0000000300)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x1019}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9, 0xfe00}, {0x5, 0x0, 0xb, 0x9, 0x0, 0x8}, {0x3, 0x3, 0x3, 0xa, 0xa}, {0x6, 0x1, 0xb, 0x8, 0x9}, {0x4, 0x0, 0x0, 0x8}, {}, {}, {}, {0x18, 0x8, 0x2, 0x0, r0}, {}, {0x46, 0x0, 0x0, 0x76}}], {{}, {0x6, 0x0, 0x7, 0x8, 0x0, 0x0, 0xd0ffffff}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg=0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

1m47.671261256s ago: executing program 5 (id=869):
mkdir(&(0x7f0000001a80)='./file0\x00', 0x18b)
mount$bpf(0x200000000000, &(0x7f0000000000)='./file0/../file0\x00', 0x0, 0x989046, 0x0)
mount$bpf(0x0, &(0x7f00000000c0)='./file0/../file0\x00', 0x0, 0x100000, 0x0)
mount$bpf(0x200000000000, &(0x7f0000000000)='.\x00', 0x0, 0x8b7848, 0x0)
mount$bpf(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x84000, 0x0)
syz_clone(0x21020080, 0x0, 0x0, 0x0, 0x0, 0x0)
mount$bpf(0x200000000000, &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x8b7848, 0x0)

1m45.72664778s ago: executing program 5 (id=874):
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x10000, &(0x7f0000000080)={[{@nobh}, {@auto_da_alloc}, {@data_err_ignore}]}, 0x3, 0x4cd, &(0x7f0000000c80)="$eJzs3M9vFGUfAPDvbHdpgZfXioiCKAU0Nia2UFA4eMHExIMmRjzIsWkrQRYwtAchREpi8Ezi3Xg03jTxqkfjyT8ADx5MDAkxXABPa2Z3pt3ur+7CtqXs55Ns+zwzz8zzPDPzzD77PDsbwMAaS/8kEf+LiFsR8VQtujLBWO3f/btXZx7cvToTi5XKqX+Sarp7aTyTb7c9i4wXIgpfJg07rJm/fOXcdLk8dymLTy6c/2xy/vKV18+enz4zd2buwtSJE8eOHjn+5tQbvVeqRX5pve7t/eLivj3vnr75/kwxXz6S/a+vR1vF3oox1mHdK73t6rG3oy6cNB+na+taGLo2kl3WpbT9Xy0fPL3RBQLWTaVSqQy3X71YaXS9aQmwaSWx0SUANkb+Rp9+/s1f69T1eCzcOVn7AJTW+372qq0pRiFLU2r4fNtPYxHx8eK/36Sv6DQO8ecaFQAAGDi/nMx7go39v0Lsrkv3/2wOZTQino6InRHxTETsiohnI6ppn4uI5xszSCIqHfLf1RBfzv/HbBahcPuRK9lB2v97K5vbWtn/y3t/MTqUxXZE5B3mucPZMRmP0vAnZ8tzR9rsf8sq+df3/9JXmn/eF8zKcbvYMEA3O70w/XC1bXbnesTeYmP9k2J64vJpnCQi9kTE3h72O1oXPvvad/uWIqWV6Vavf1WlxZRez/NxrVS+jXi1dv4XY8X5X84x6Tw/OTkS5bnDk+lVcLhlHr/9fuODdvmvWv+f/mrc5J3jP5961GovSc//trrrP/L52+X6jyYRydJ87XxEZai3PG788VV1v2OHmtc97PW/JfmoGs7b1+fTCwuXjkRsSd5rXj61vG0ez9On9R8/1Lr978y2SY/ECxGRXsQvRsRLEbE/K/uBiDgYES2qtuTXt1/+tN26Lq//NZPWf7bl/W/F+V+er+8ykG+cLhk6d+DWgzY3j+7O/7FqaDxb0vr+l6y4RXRb0kc7egAAALA5FKL63f/CxFK4UJiYqI0B7YpthfLF+YX9EXFhtvaMwGiUCvlIV208uJTk45+jdfGphvjRbNz466Gt1fjEzMXy7EZXHgbc9mqbT5raf+rvHsd5gU2oD/NowCa1WvvffXOdCgKsO+//MLjq2v9imySLvikDTybv/zC4WrX/a/F9x2cX3DNg86toyzDQtH8YXMX4cClcfey55dO2wJPI+z8MpF6f6+8tUBluvWokWvxiwMjaFGNri7w2JJD2rPq4w1JEdJd468NkkXcB2//CQ6G3HQ5H86qh6LRV0sPvOOSB9KismvjM7r5f/PlvovT7svlhuZ2WujzdfQpsyO0IAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACg7/4LAAD///QJ1ng=")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
ioctl$sock_SIOCOUTQNSD(0xffffffffffffffff, 0x894b, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
shmat(0x0, &(0x7f0000ffc000/0x2000)=nil, 0x4000)
mknod$loop(&(0x7f0000000480)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x1, 0x0)
getdents64(0xffffffffffffffff, 0x0, 0x0)
r3 = syz_open_dev$radio(&(0x7f0000000040), 0x2, 0x2)
r4 = socket(0xa, 0x3, 0x3a)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$MRT6_ADD_MFC(r4, 0x29, 0xcc, &(0x7f0000000280)={{0xa, 0x0, 0x0, @loopback}, {0xa, 0x4, 0x0, @mcast2}, 0x0, {[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2]}}, 0x5c)
setsockopt$MRT6_ADD_MFC_PROXY(r4, 0x29, 0xd2, &(0x7f0000000300)={{0xa, 0x0, 0x0, @loopback}, {0xa, 0x0, 0x0, @mcast2}, 0x1}, 0x5c)
socket(0xa, 0x3, 0x3a)
ioctl$VIDIOC_S_HW_FREQ_SEEK(r3, 0x40305652, &(0x7f0000000000)={0xfffffffd, 0x1, 0x40000001, 0x0, 0x6, 0x2})
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x1000040, &(0x7f0000000200)={[{@nouid32}, {@dioread_nolock}, {@noquota}, {@delalloc}, {@journal_dev={'journal_dev', 0x3d, 0x8}}, {@nodioread_nolock}]}, 0x1, 0x5b7, &(0x7f0000001380)="$eJzs3U1oHNcdAPD/zGot2ZYrF1poiw+mLbhgvPqw3bo9yddSg8GHQi+tWK2F0UprtKvWEoLKdxPiQ0iCL84tOeSYkEMOIZccc80lH+eAiUUClg/Jhv2SZXnlrGTtbqz9/WC0783M7v//duY9zQwzbAAD63TtTxrx24i4mkSMbVs2FM2FpxvrbW6s5R9vrOWTqFavfZNEEhGPNtbyrfWT5uvxiFiPiN9ExMfZiLPp1kceaRXKK6vzM8ViYalZH68s3Bwvr6yeu7EwM1eYKyye/8tfL166cHFyanJ7uo+r22vZvbX1zhd3X7nz6d/v333n3VPr+ddmkpiO0eay7e04SI3vJBvTO+Zf6EawPkr6nQD7kmn281pX+nWMRabZ69upbh8chnuSHtBF1eGI6pZtRWAAJC/Q6VuDCPAyah0H1M5/W1Mvjz8eXG6cgNTibm6s5f8frfhDjWsTMVI/Nzn2bfLUmUntfPNkLxPlUFq/HRETQ0PP7v9Jc//bv4mDSJCu+uhyY0M9u/3TrfEn2ow/o61rpy+oNf5tNse/zTbxM7uMf1c7jPH9v756c9f4t4fjd23jJ1vxkzbx04j4T4fx7/3zg0u7Lau+FXEm2sdvSZ5/fXj8+o1iYaLxt22MD8+c+tvu7Y84tkv8xjXbkXoi29t/pJlT2mH73//kvd+vPyf+n/7w/O3f7vs/GhGvdhj/l4/e/sduyx7cTh7WjgL2uv2TyMb9DuP/efr0582iq4YAAAAAAAAAAHCA0vq9bEma2yqnaS7XeIb3V3EsLZbKlbPXS8uLs4173k5GNm3daTXWqCe1+mTzftxWfWpH/XymGTBztF7P5UvF2T63HQAAAAAAAAAAAAAAAAAAAH4uju94/v+7TP35/+mIqRP9zg3ogd1/8hs47PR/GFxP9/+kb3kAvef/Pwysqv4Pg0v/h8Gl/8Pg0v9hcLXt/0d7nwfQe8/0/5H+5AH0nuN/AAAAAAAAAAAAAAAAAAAAAAAAAADoiqtXrtSm6uONtXytPju0sjxf+u+52UJ5PrewnM/lS0s3c3Ol0lyxkMuXFn7q85JS6eZELC7fGq8UypXx8srqvxdKy4ut3xQtZLveIgAAAAAAAAAAAAAAAAAAAHj5jNanJM1FZBv1NM3lIk5ExMkkkus3ioWJiPhFRHyWyQ7X6pP9ThoAAAAAAAAAAAAAAAAAAAAOmfLK6vxMsVhY6l5hqBmqs3d9WelqPkN7WTki1g82jdon7vld2eYXWJ8z0vXtdbgLmQ73w4Ev9HFQAgAAAAAAAAAAAAAAAACAAfXkod9O3/FDdxMCAAAAAAAAAAAAAAAAAACAgZR+nUREbToz9sfRnUuPJJuZ+mtE/O/etddvzVQqS5O1+Q+35lfeaM6f6kf+QKda/TSNiFo/BgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAJ4or6zOzxSLhaV9FoY7WKffbQQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADYjx8DAAD//95Mx5c=")

1m44.532241633s ago: executing program 5 (id=879):
r0 = syz_open_dev$dmmidi(0x0, 0xca64, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102)
fcntl$notify(r0, 0x402, 0x9)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf01b}, {0x0}], 0x2)
syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x201)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r3 = dup(r2)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
write$UHID_INPUT(r3, &(0x7f0000002080)={0x200f, {"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", 0x1000}}, 0x1006)

1m43.616952635s ago: executing program 33 (id=879):
r0 = syz_open_dev$dmmidi(0x0, 0xca64, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102)
fcntl$notify(r0, 0x402, 0x9)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf01b}, {0x0}], 0x2)
syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x201)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r3 = dup(r2)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
write$UHID_INPUT(r3, &(0x7f0000002080)={0x200f, {"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", 0x1000}}, 0x1006)

17.53466204s ago: executing program 4 (id=1165):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0xfffffffffffffffd}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x300000a, 0x8031, 0xffffffffffffffff, 0x0)
ioprio_set$pid(0x0, r0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
syz_emit_ethernet(0x0, 0x0, 0x0)
mremap(&(0x7f00002dc000/0x4000)=nil, 0x4000, 0x2000, 0x6, &(0x7f0000ffe000/0x2000)=nil)
sendmsg$nl_xfrm(r3, &(0x7f00000035c0)={0x0, 0x0, &(0x7f0000003580)={&(0x7f0000000cc0)=@newsa={0x138, 0x10, 0x1, 0x70bd28, 0x25dfdbff, {{@in=@remote, @in=@loopback, 0x4e23, 0x0, 0x2000, 0x8000, 0x0, 0x20, 0x0, 0xc}, {@in=@rand_addr=0x64010101, 0x20, 0x6c}, @in6=@dev={0xfe, 0x80, '\x00', 0x23}, {0xfffffffffffffffc, 0x0, 0x0, 0x800000000000001, 0x10000000002c8, 0x6, 0x4000000000000}, {0x1fffffffffff, 0x8, 0x0, 0x4}, {0x0, 0x8}, 0x0, 0x0, 0xa, 0x1, 0x0, 0x3}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}]}, 0x138}, 0x1, 0x0, 0x0, 0x4075}, 0x4800)

15.980005611s ago: executing program 4 (id=1168):
r0 = syz_usb_connect(0x3, 0x2d, &(0x7f0000000040)=ANY=[@ANYBLOB="120100004898b610c2154100201f0102030109021b0001000500ea09040002018c78fd00090582f3c6"], 0x0)
syz_usb_control_io$cdc_ncm(r0, &(0x7f0000000a80)={0x14, 0x0, &(0x7f0000000a40)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_DEL(r1, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20004044}, 0x40044)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001240)=ANY=[], 0xac}}, 0x20050800)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_connect$uac2(0x5, 0x83, 0x0, 0x0)
syz_usb_ep_write$ath9k_ep1(r0, 0x82, 0x8, &(0x7f0000000000)=ANY=[])

13.798739964s ago: executing program 3 (id=1175):
socket$inet_udp(0x2, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x7, 0x1c, &(0x7f00000003c0)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0xffffffff}, {{0x18, 0x1, 0x1, 0x0, r2}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x1ab92b}, {0x85, 0x0, 0x0, 0x8}, {0x4}}, {{0x5, 0x0, 0x4, 0x9, 0x0, 0x1, 0x2000}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x6, 0x0, 0xb, 0x9, 0x0, 0x0, 0xfffffffc}, {0x3, 0x3, 0x3, 0xa, 0xa}, {0x7, 0x1, 0xb, 0x7, 0x2}, {0x7, 0x0, 0x0, 0x8, 0x0, 0x0, 0xfffffdff}, {}, {}, {0x4, 0x0, 0xc, 0x7}, {0x18, 0x2, 0x2, 0x0, r2}, {}, {0x46, 0x8, 0xffef, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x9}, {0x85, 0x0, 0x0, 0x5}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

13.231089626s ago: executing program 1 (id=1177):
sendmsg$RDMA_NLDEV_CMD_RES_CM_ID_GET(0xffffffffffffffff, &(0x7f0000002140)={0x0, 0x0, &(0x7f0000002100)={0x0, 0x18}, 0x1, 0x0, 0x0, 0x8d0}, 0x4040800)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000f80)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000b40)=ANY=[@ANYBLOB="14000000000000002900000034000000040000000000000014000000000000002900000034000000fdffffff0000000000010000000000002900000004000000041c000000000000fe72f4a4a3142ee1e12b9826287997a6b33d89f3d60da1641d9fe3896c3c1b6c130ef4f01be8f5836d417874540898619050b14420ab124b11de36afb16ef4fc00f3f4e4fa0e647cd1b07b068d3894180b6aa7527a4a8252f6836a0d67a7782c675a838ea989e567e4774de1f52d188e0b0888c5801409e12e5f0b6bdcf72f2ec7008a15fa88b025e0ad0738000000010c7a0180050000000000000009000000000000000400000000000000060000000000000000040000000000000b0000000000000005020a7e00010005020bf4c910fc0200000000000000000000780e000000000000000000140000000000000029000000340000000000000000000000700100000000000029000000360000005e2a000000000000ff4150d650847249ad288702ebd0d654b985e8908defb7ec6c5ff115c58e128b9e3a21c34b45ef9de99984e143ca7c3509a971b2ec429ee1edc0bb903fe94b32c28f70000100000100010800000000000000000708000000030000ff0f07100000000002070600ff7f00000000000008c6c8a110995d439fbfac9716a99c357bcb2d59a850490739734f6b321d19b3754df39cc2dc26cf263cbebbddb9a7f17b6771f74c46623f9e38bd23e6f0a2fd3a9a017f66738394aca44d1a9f0b35d9df0a964360ab0900a5e6fcac1cd41c91c97f6826ff706c41edc4e00205bbb53218ed58a1122d993b55a1b9a870a17e7869e3fc704b388202add651f628963a90fea5d8196d5e0373fd13584ae57b4f1c03d4f67005cdb5938591d5ea712014e358ea0808807873fd7290c6d4f033de64c7e86ab3030700008000000000000001082bdb86d1ce6a20c2000000000020000000000000002900000037000000730000000000000000010000000000001400000000000000290000000b000000000000020000000018000000000000002900000039000000000000000000000038"], 0x340}}, {{&(0x7f0000000300)={0xa, 0x4e20, 0x400, @empty, 0x7}, 0x1c, &(0x7f0000000f00)=[{&(0x7f0000000540)="a22caaffe37d4620d1a9427c00787b63b26c5b83ef8ce8f8fe823d77c642dd73361c1f115fdce55de92bede6e812191b9780a257fa4fb3bba896dc1a01fcc30adb201f2ee3a5c8676d6b812ec2342bd0723b7db488a027513df1870c31", 0x5d}, {&(0x7f0000000600)="58b327f21946add0e0c31b173119ac7b4ceda64bbfbc8159462a8686f4303aeee1d7c9b54c4bd660fe192582950eb09a8bae632fb4e7313e3828773c09fec9b010373ca7be0ccc91233fffcfe03f287a50f2b4a970278097aed06e61a0f2da47b0bd02fcb45bf35e78c15cc4c5d6d163a6eaf921d8afc7d8376e847f403535371a24ce2a19c3898aca95be3176d26e449b7ad2d1c9", 0x95}, {&(0x7f00000006c0)="138b9f129daf1d79da8e", 0xa}, {&(0x7f0000000700)="e59c889c8be9e17c21882a76c6907239d44f6a0efb65359c6a8e5ede789aa995461e91d2", 0x24}], 0x4}}], 0x2, 0x810)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000001c0)={{0xeeee8000, 0x4, 0x3, 0xf1, 0x5, 0xfa, 0xd4, 0xd4, 0x0, 0x4, 0x7, 0x4f}, {0x5000, 0x2, 0xd, 0x9, 0x8, 0x3, 0x6, 0xb, 0x5, 0xf, 0x3, 0xc0}, {0xffff1000, 0xeeef0000, 0xb, 0x1, 0x2, 0x7, 0x4, 0x1, 0x81, 0x0, 0x6, 0x5}, {0x8000000, 0x2000, 0x8, 0xf8, 0x3, 0x46, 0x2, 0xd, 0x6, 0x3, 0x8, 0x1}, {0x100000, 0x4000, 0x9, 0x9, 0x3, 0x9, 0xd, 0x6, 0x5, 0x9, 0xc, 0x4b}, {0x6000, 0x0, 0x4, 0x6, 0x3, 0x7d, 0x1, 0xff, 0x4, 0x90, 0x1, 0xfc}, {0x8000000, 0x4000, 0x0, 0x9d, 0x3, 0x0, 0x0, 0xb, 0x5, 0x7, 0x9, 0xf8}, {0xf7f63004, 0x8000000, 0xf, 0x5, 0x28, 0x3, 0xa, 0x9, 0x54, 0x1, 0x2, 0x7}, {0xdddd1000, 0x5}, {0x4, 0x9}, 0x40030000, 0x0, 0x80a0000, 0x300, 0x1, 0x2000, 0xe6e70c00, [0x3, 0x401, 0x7, 0xc5]})
ioctl$KVM_SET_LAPIC(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000740)={"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"})
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf82}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

11.620362028s ago: executing program 1 (id=1186):
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
symlink(&(0x7f0000001640)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/../file0\x00', &(0x7f0000000e40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
capset(0x0, 0x0)
socket$netlink(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x3, 0x0, 0x0, &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x1e00, 0x0, '\x00', 0x0, @sched_cls=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, 0x0, 0x0)
timerfd_create(0x0, 0x80800)

10.515736747s ago: executing program 4 (id=1187):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
socket$can_raw(0x1d, 0x3, 0x1)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff})
r4 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$SG_IO(r4, 0x2285, 0x0)
r5 = fcntl$dupfd(r4, 0x0, r4)
write$sndseq(r5, 0x0, 0x0)
write$sndseq(r5, 0x0, 0x0)
read$FUSE(r5, 0x0, 0x0)
sendmsg$IPSET_CMD_LIST(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x1c, 0x7, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x1c}}, 0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000080)={'ip6gre0\x00', &(0x7f0000000100)={'syztnl1\x00', 0x0, 0x29, 0x1, 0x3, 0x6, 0x6, @loopback, @local, 0x8, 0x7827, 0x3, 0x3}})
r6 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_int(r6, 0x0, 0x33, &(0x7f0000000000)=0x80020000, 0x4)
openat$random(0xffffffffffffff9c, 0x0, 0x40202, 0x0)
listen(r6, 0x2)
close_range(r3, 0xffffffffffffffff, 0x0)

9.254513539s ago: executing program 1 (id=1190):
io_setup(0x800, 0x0)
io_submit(0x0, 0x0, 0x0)
ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x928, 0x200000000005)
r0 = syz_usb_connect(0x0, 0x4a, &(0x7f0000000040)=ANY=[@ANYBLOB="120100005520f010402038b1420104000001090238000100000000090400000371055900090582eb1000000001020009050276"], 0x0)
syz_usb_ep_write$ath9k_ep1(r0, 0x82, 0x156c, &(0x7f0000006180)=ANY=[@ANYBLOB="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"])
syz_usb_control_io$hid(r0, &(0x7f0000001280)={0x14, 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0003040000000403"], 0x0, 0x0}, 0x0)

8.106648601s ago: executing program 4 (id=1193):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x40, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file1\x00', 0x10, &(0x7f00000004c0)={[{@i_version}, {@nodiscard}, {@min_batch_time={'min_batch_time', 0x3d, 0x3ff}}]}, 0x1, 0x3f7, &(0x7f0000003080)="$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")
r4 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r4, &(0x7f0000000040)={0x28, 0x0, 0x0, @local}, 0x10)
listen(r4, 0x4)
connect$vsock_stream(0xffffffffffffffff, &(0x7f0000000080)={0x28, 0x0, 0x0, @local}, 0x10)
sendmmsg(0xffffffffffffffff, &(0x7f0000000100)=[{{0x0, 0x0, &(0x7f00000000c0)}}], 0x1, 0x1)
socket$unix(0x1, 0x5, 0x0)
ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0xc7)

7.00002894s ago: executing program 3 (id=1196):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$SO_TIMESTAMP(r0, 0x1, 0x40, &(0x7f0000000000)=0x7, 0x4)
bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e21, @multicast1}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r0, &(0x7f0000000900)="2e552f5d9fd8b0d9", 0x8, 0x8012, 0x0, 0x0)
recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0x8, 0x100, 0x0, 0x3e)

6.647512498s ago: executing program 0 (id=1197):
r0 = socket(0x15, 0x5, 0x0)
getsockopt(r0, 0x200000000114, 0x2711, 0x0, &(0x7f0000000040))

6.374636071s ago: executing program 0 (id=1199):
syz_usb_connect$uac2(0x2, 0xa2, &(0x7f0000000300)=ANY=[@ANYBLOB="12011001000000401e04633240000102030109029000030106600b080b01010102200509040000000101200009240106000809000709040100"], 0x0)

5.806416903s ago: executing program 3 (id=1200):
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
symlink(&(0x7f0000001640)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/../file0\x00', &(0x7f0000000e40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
capset(0x0, 0x0)
socket$netlink(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x3, 0x0, 0x0, &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x1e00, 0x0, '\x00', 0x0, @sched_cls=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, 0x0, 0x0)
timerfd_create(0x0, 0x80800)

4.992195502s ago: executing program 4 (id=1202):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x4080)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
fsopen(&(0x7f0000000280)='sysv\x00', 0x1)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
ioprio_set$uid(0x3, 0x0, 0x0)
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x400, &(0x7f0000000100)=ANY=[@ANYBLOB="6d706f6c3d62696e643a30cef496fb75d8197e37225a2c00"])
socket(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x10, 0x803, 0x2)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r4)
getsockname$packet(r4, &(0x7f0000000680)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r5, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000006c0)=@newtfilter={0x34, 0x28, 0x575ac7824d421509, 0x70bd29, 0x4, {0x0, 0x0, 0x0, r5, {0x9}, {0xffff}, {0x10, 0x5}}, [@filter_kind_options=@f_basic={{0xa}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x11}, 0x40)
mount$tmpfs(0x0, 0x0, 0x0, 0x8234b6, &(0x7f0000000340)=ANY=[@ANYBLOB='mpol=interleave=relative,dont_measure,uid>', @ANYRESDEC=0x0, @ANYBLOB="2c646f6e745f615dab"])
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)

4.324742117s ago: executing program 1 (id=1204):
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000740)=[{{0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000b40)=ANY=[@ANYBLOB="14000000000000002900000000000014000000000000002900000034000000fdffffff00000000180000000000000029000000040000000400000000000000d80000000000000029000000360000005e17000000000000000100000100010800000000000000000728000000030800ff0f66090000000000000700000000000000010000000000000001000000000000000864c8a110995d439fbfac9716a99c357bcb2d59a850490739734f6b321d"], 0x188}}], 0x1, 0x810)
bind$alg(0xffffffffffffffff, &(0x7f0000000600)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-aes-neonbs\x00'}, 0x58)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f00000000c0)={0x1, @pix={0x0, 0xcf6, 0x20493859}})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3", 0x5)
r3 = accept4(r2, 0x0, 0x0, 0x800)
pwritev(0xffffffffffffffff, &(0x7f0000000d80)=[{&(0x7f0000000780)="42ebe7f5d8dde5f3e9c5c7e7bc09d8d80f373ae4dc85e6cb597bd322663b986ff272399bec41d811a763bcd2cdc221d2ac6cdeeca815ce250ce959444e7f296cb11433530cfccd0c6f450147b46eb5bbe281810c76577aaf554801815d1ee516cc0752832233d7610ce165a593e43cbaa4f52db28e5aead94767ad0d0ccf1cd422fcfd87e848c94a", 0x88}, {&(0x7f0000000540)="b4e007f06d056aa0367c7356f83c", 0xe}, {&(0x7f0000000580)="1ab9a1fec95331b4b1bb5f840b0a198cb5add980a1e5cd402aaabeb7a27d1418376394238ae0a1ca9cc4187957fdca8dfa1151a311e577e1461a24", 0x3b}, {&(0x7f0000000700)="741f5b18fef5626f948b1919860417488e3e5141e17a3031271340b8ac67e4f5f7a2", 0x22}, {&(0x7f0000000a80)}, {&(0x7f0000000d00)="7cedc13b1cbf2308b2000d3d62b333c7c3b9f321ef7bd8e0e1e323da70d8d595f50539", 0x23}], 0x6, 0x4d9e, 0x8)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xe98}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

3.854706586s ago: executing program 4 (id=1206):
socket$inet_udp(0x2, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x7, 0x1c, &(0x7f00000003c0)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0xffffffff}, {{0x18, 0x1, 0x1, 0x0, r2}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x1ab92b}, {0x85, 0x0, 0x0, 0x8}, {0x4}}, {{0x5, 0x0, 0x4, 0x9, 0x0, 0x1, 0x2000}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x6, 0x0, 0xb, 0x9, 0x0, 0x0, 0xfffffffc}, {0x3, 0x3, 0x3, 0xa, 0xa}, {0x7, 0x1, 0xb, 0x7, 0x2}, {0x7, 0x0, 0x0, 0x8, 0x0, 0x0, 0xfffffdff}, {}, {}, {0x4, 0x0, 0xc, 0x7}, {0x18, 0x2, 0x2, 0x0, r2}, {}, {0x46, 0x8, 0xffef, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x9}, {0x85, 0x0, 0x0, 0x5}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

3.683680726s ago: executing program 0 (id=1208):
socket$pppl2tp(0x18, 0x1, 0x1)
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r0, 0x0, 0x0)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r1, &(0x7f0000000040)=@pppol2tpv3={0x18, 0x1, {0x3, r0, {0x2, 0x4e21, @broadcast}, 0x2, 0x9800, 0xfffffffd}}, 0x2e)
r2 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r2, &(0x7f00000000c0)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x2, 0x3}}, 0x26)
r3 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0)
ioctl$PPPIOCATTCHAN(r3, 0x40047438, &(0x7f0000000500)=0x2)
ioctl$PPPIOCBRIDGECHAN(r3, 0x40047435, &(0x7f0000000200)=0x1)
r4 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0), 0x88001, 0x0)
ioctl$PPPIOCATTCHAN(r4, 0x40047438, &(0x7f0000000500)=0x2)
ioctl$PPPIOCBRIDGECHAN(r4, 0x40047435, &(0x7f0000000200)=0x1)

3.506802546s ago: executing program 6 (id=1209):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x2)
ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000001900)={0x2, {0x2, 0xa00, 0x2000, 0xec41, 0x120, 0x3}})

3.421699811s ago: executing program 0 (id=1210):
r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/comedi4\x00', 0x2, 0x0)
ioctl$COMEDI_INSN(r0, 0x8028640c, &(0x7f0000000000)={0xc000003, 0xfffffffffffffd70, 0x0, 0x40, 0x4800007})

3.36090469s ago: executing program 6 (id=1211):
r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi4\x00', 0x109000, 0x0)
ioctl$COMEDI_CMD(r0, 0x80506409, &(0x7f0000000180)={0x1, 0x80, 0x80, 0xa, 0x10, 0x3e8, 0x2, 0x8, 0x20, 0x20000002, 0x20, 0x0, &(0x7f0000000000)=[0x7], 0x1, 0x0})

3.222691917s ago: executing program 0 (id=1212):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x40, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file1\x00', 0x10, &(0x7f00000004c0)={[{@i_version}, {@nodiscard}, {@min_batch_time={'min_batch_time', 0x3d, 0x3ff}}]}, 0x1, 0x3f7, &(0x7f0000003080)="$eJzs3U1vG0UfAPD/bt7atE+TSs+Bl4sFSERCJE3aApVAIuLCoT3RA0es2C1RnQYlRqJVxItA3EAC8QHgAHwEjnDgO8AZOEClCOVAys1o7V3HxHbapA6ukt9PGnlmZ+2Z9XjW68nsJIBjqxQRL0fESESci4ipfHuah3i/FbL9trc2lv7e2lhKotF47c8kknxb8VpJ/ngqf4GZNCL9KInHe5S7fuv2jXKtVl3L03P1lbfm1m/dfnZ5pXy9er16c+G58xcuXnzh0sLzAzvWzZXkk6e+ufzbZx9XPv/pj++ns/qezvM6j2NQSlFqvye7XRp0YUN2oiOejA6xIgAA7CnNr/1Hm9f/UzESOxdvU/Hpj0OtHAAAADAQjUbxCAAAABxdid/+AAAAcMQV8wC2tzaWijDE6Qj8xzYXI2K61f5389DKGW3f0zu26/7eQSpFxKsnrixkIQ7pPmwAAACA4+yHxdbCf93jf2k80rHfyYiYLNb2G6DSrnT3+E96Z8BF0mFzMeLFiLjbNf6XFrtMj+Sp/zWHCseSa8u16rmIOBMRMzE2kaXn9yjj3SdufNsvr3P878tfX5/Pys8ed/ZI74xO/Ps5lXK9/CDHzI7NDyIeG+3V/kl7zLdzncyDeGN5+6V+eVn7Z+1dhO725zA1vop4umf/31m5NNl7fda55vlgLj8rTHSX8cvprz/sV35n/89CVn7xtwAOX9b/J/du/+Y6ue31etf3X8Z3f135uV/evdu/9/l/PLnarOB4vu2dcr2+Nh8xnlzu3u7T1Fa8H8X7lbX/zJO9v/+L678k/+4/07E+9H688t7Zq/3y9P/hytq/sq/+v//Im5OPzvQr//76/4VmZYoXcf13b/fbQMOuJwAAAAAAAACDkTbn9iXpbDueprOzrXm+/4/JtLa6Xn/m2urbNyutOYDTMZYW8z+nOuaDzrduI2+nF3alz0fE2Yj4YupkMz27tFqrDPvgAQAA4Jg41ef3f+b3g9zsAQAAADycpoddAQAAAODQ+f0PAAAAR9qDrOtfq64V/yLogE8XETlYZCT/4D0s9Tl6kSGelAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACIfwIAAP//keS8Nw==")
r4 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r4, &(0x7f0000000040)={0x28, 0x0, 0x0, @local}, 0x10)
listen(r4, 0x4)
connect$vsock_stream(0xffffffffffffffff, &(0x7f0000000080)={0x28, 0x0, 0x0, @local}, 0x10)
sendmmsg(0xffffffffffffffff, &(0x7f0000000100)=[{{0x0, 0x0, &(0x7f00000000c0)}}], 0x1, 0x1)
socket$unix(0x1, 0x5, 0x0)
ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0xc7)

3.213626075s ago: executing program 6 (id=1213):
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0x8, 0xc}, 0x50)
bpf$MAP_DELETE_BATCH(0x1b, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x1, r0}, 0x38)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg(r1, &(0x7f0000000740)={0x0, 0x0, 0x0, 0x0, &(0x7f0000002400)=[{0x38, 0x108, 0x2, "d1cb48e1ba3f7b288450fd50ef072eb1dd2d3d71fdbd35d588ac369a778a8af9ac"}, {0x10, 0x114, 0x3}], 0x48}, 0x40000)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000dc0)=ANY=[@ANYBLOB="f4060000", @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d50633008000009effffffffffff080211000001"], 0x6f4}}, 0x0)

3.063814199s ago: executing program 3 (id=1214):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f0000000380)={0x0, {0x2, 0x4e23, @empty}, {0x2, 0x0, @remote}, {0x2, 0x4e21, @private=0xa010101}, 0x107, 0x0, 0x0, 0x0, 0xfffc, 0x0, 0x0, 0x2000000000, 0x101})

3.038298855s ago: executing program 1 (id=1215):
r0 = socket$kcm(0x2, 0x5, 0x84)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x56, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f00000003c0)=[{0x0, 0x2}, {0x10000002, 0x0, 0xb, 0xc}]}, 0x94)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
close(r2)
recvmsg$unix(r1, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r3=>0xffffffffffffffff]}}], 0x18}, 0x0)
setsockopt$sock_attach_bpf(r0, 0x84, 0x64, &(0x7f0000000000)=r3, 0x10)
sendmsg$inet(r0, &(0x7f0000000140)={&(0x7f0000000280)={0x2, 0x10, @local}, 0x10, &(0x7f0000000080)=[{&(0x7f0000001940)='{', 0x34000}], 0x1}, 0x80d1)
close(r0)

2.946504259s ago: executing program 6 (id=1216):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x4080)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
fsopen(&(0x7f0000000280)='sysv\x00', 0x1)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
ioprio_set$uid(0x3, 0x0, 0x0)
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x400, &(0x7f0000000100)=ANY=[@ANYBLOB="6d706f6c3d62696e643a30cef496fb75d8197e37225a2c00"])
socket(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x10, 0x803, 0x2)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r4)
getsockname$packet(r4, &(0x7f0000000680)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r5, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000006c0)=@newtfilter={0x34, 0x28, 0x575ac7824d421509, 0x70bd29, 0x4, {0x0, 0x0, 0x0, r5, {0x9}, {0xffff}, {0x10, 0x5}}, [@filter_kind_options=@f_basic={{0xa}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x11}, 0x40)
mount$tmpfs(0x0, 0x0, 0x0, 0x8234b6, &(0x7f0000000340)=ANY=[@ANYBLOB='mpol=interleave=relative,dont_measure,uid>', @ANYRESDEC=0x0, @ANYBLOB="2c646f6e745f615dab"])
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)

2.186901908s ago: executing program 3 (id=1217):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r0, &(0x7f0000000000)=@pppol2tp={0x18, 0x1, {0x0, r1, {0x2, 0x4e24, @broadcast}, 0x2, 0x0, 0x3}}, 0x26)
r2 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r2, &(0x7f0000000040)=@pppol2tpv3={0x18, 0x1, {0x3, r0, {0x2, 0x4e21, @broadcast}, 0x2, 0x9800, 0xfffffffd}}, 0x2e)
r3 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r3, &(0x7f00000000c0)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x2, 0x3}}, 0x26)
r4 = openat$ppp(0xffffffffffffff9c, 0x0, 0x1, 0x0)
ioctl$PPPIOCATTCHAN(r4, 0x40047438, &(0x7f0000000500)=0x2)
ioctl$PPPIOCBRIDGECHAN(r4, 0x40047435, &(0x7f0000000200)=0x1)
r5 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0), 0x88001, 0x0)
ioctl$PPPIOCATTCHAN(r5, 0x40047438, &(0x7f0000000500)=0x2)

1.125353304s ago: executing program 3 (id=1218):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}}, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000040)={'wlan0\x00', <r4=>0x0})
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000b00)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="010000000000000000000800000008000300", @ANYRES32=r4], 0x1c}}, 0x0)

1.124511744s ago: executing program 6 (id=1228):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x4080)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
fsopen(&(0x7f0000000280)='sysv\x00', 0x1)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
ioprio_set$uid(0x3, 0x0, 0x0)
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x400, &(0x7f0000000100)=ANY=[@ANYBLOB="6d706f6c3d62696e643a30cef496fb75d8197e37225a2c00"])
socket(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x10, 0x803, 0x2)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r4)
getsockname$packet(r4, &(0x7f0000000680)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r5, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000006c0)=@newtfilter={0x34, 0x28, 0x575ac7824d421509, 0x70bd29, 0x4, {0x0, 0x0, 0x0, r5, {0x9}, {0xffff}, {0x10, 0x5}}, [@filter_kind_options=@f_basic={{0xa}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x11}, 0x40)
mount$tmpfs(0x0, 0x0, 0x0, 0x8234b6, &(0x7f0000000340)=ANY=[@ANYBLOB='mpol=interleave=relative,dont_measure,uid>', @ANYRESDEC=0x0, @ANYBLOB="2c646f6e745f615dab"])
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)

1.083519807s ago: executing program 1 (id=1219):
syz_usb_connect$uac2(0x2, 0xa2, &(0x7f0000000300)=ANY=[@ANYBLOB="12011001000000401e04633240000102030109029000030106600b080b01010102200509040000000101200009240106000809000709040100"], 0x0)

630.7µs ago: executing program 6 (id=1220):
socket$pppl2tp(0x18, 0x1, 0x1)
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r0, 0x0, 0x0)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r1, &(0x7f0000000040)=@pppol2tpv3={0x18, 0x1, {0x3, r0, {0x2, 0x4e21, @broadcast}, 0x2, 0x9800, 0xfffffffd}}, 0x2e)
r2 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r2, &(0x7f00000000c0)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x2, 0x3}}, 0x26)
r3 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0)
ioctl$PPPIOCATTCHAN(r3, 0x40047438, &(0x7f0000000500)=0x2)
ioctl$PPPIOCBRIDGECHAN(r3, 0x40047435, &(0x7f0000000200)=0x1)
r4 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0), 0x88001, 0x0)
ioctl$PPPIOCATTCHAN(r4, 0x40047438, &(0x7f0000000500)=0x2)
ioctl$PPPIOCBRIDGECHAN(r4, 0x40047435, &(0x7f0000000200)=0x1)

0s ago: executing program 0 (id=1221):
r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/comedi4\x00', 0x2, 0x0)
mmap(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0xc3866000)

kernel console output (not intermixed with test programs):

ts on: batadv_slave_0
[   99.006778][ T4452] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   99.029918][ T4452] batman_adv: batadv0: Interface activated: batadv_slave_0
[   99.040982][ T4784] device syzkaller0 entered promiscuous mode
[   99.102658][  T585] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   99.121436][  T585] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   99.162046][  T585] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   99.198598][  T585] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   99.230582][ T4452] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   99.259460][ T4452] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   99.280391][ T4452] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   99.314664][ T4452] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   99.355776][ T4452] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   99.385677][ T4452] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   99.396789][ T4452] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   99.407639][ T4452] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   99.420384][ T4452] batman_adv: batadv0: Interface activated: batadv_slave_1
[  100.171038][ T4587] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  100.190235][ T4587] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  100.206080][ T4452] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  100.250244][ T4452] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  100.268594][ T4452] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  100.291751][ T4452] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  100.461804][ T4824] loop4: detected capacity change from 0 to 1024
[  100.605677][ T4824] EXT4-fs error (device loop4): ext4_ext_check_inode:501: inode #4: comm syz.4.107: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0)
[  100.639390][ T4338] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  100.681326][ T4338] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  100.703935][ T2857] usb 1-1: new full-speed USB device number 2 using dummy_hcd
[  100.714625][ T4824] EXT4-fs error (device loop4): ext4_quota_enable:6445: comm syz.4.107: Bad quota inode: 4, type: 1
[  100.735980][ T4824] EXT4-fs warning (device loop4): ext4_enable_quotas:6486: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  100.755577][ T4299] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  100.798279][ T4824] EXT4-fs (loop4): mount failed
[  100.826398][  T154] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  100.828924][ T4841] device syzkaller0 entered promiscuous mode
[  100.863504][  T154] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  100.895922][ T4835] device syzkaller0 entered promiscuous mode
[  100.919927][ T4299] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  101.248561][ T2857] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  101.262137][ T2857] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  101.272541][ T2857] usb 1-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00
[  101.283656][ T2857] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  101.287751][ T4850] loop2: detected capacity change from 0 to 256
[  101.304137][ T2857] usb 1-1: config 0 descriptor??
[  102.983115][ T4860] device syzkaller0 entered promiscuous mode
[  103.057086][ T2857] elan 0003:04F3:0755.0001: unknown main item tag 0x0
[  103.091454][ T2857] elan 0003:04F3:0755.0001: unknown main item tag 0x0
[  103.109873][ T2857] elan 0003:04F3:0755.0001: unknown main item tag 0x0
[  103.130255][ T2857] elan 0003:04F3:0755.0001: unknown main item tag 0x0
[  103.158458][ T2857] elan 0003:04F3:0755.0001: unknown main item tag 0x0
[  103.200920][ T2857] elan 0003:04F3:0755.0001: failed to start in urb: -90
[  103.296520][ T2857] elan 0003:04F3:0755.0001: hidraw0: USB HID v1.01 Device [HID 04f3:0755] on usb-dummy_hcd.0-1/input0
[  103.400393][ T2857] usb 1-1: USB disconnect, device number 2
[  103.500457][ T4196] Bluetooth: Wrong link type (-22)
[  104.211261][ T4888] fido_id[4888]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/report_descriptor': No such file or directory
[  104.224081][ T4882] device syzkaller0 entered promiscuous mode
[  104.561971][ T4901] loop0: detected capacity change from 0 to 256
[  104.648153][ T4903] device syzkaller0 entered promiscuous mode
[  104.694240][ T4901] FAT-fs (loop0): Directory bread(block 64) failed
[  104.740497][ T4901] FAT-fs (loop0): Directory bread(block 65) failed
[  104.798423][ T4901] FAT-fs (loop0): Directory bread(block 66) failed
[  104.841726][ T4901] FAT-fs (loop0): Directory bread(block 67) failed
[  104.879820][ T4901] FAT-fs (loop0): Directory bread(block 68) failed
[  104.945706][ T4901] FAT-fs (loop0): Directory bread(block 69) failed
[  104.966653][ T4901] FAT-fs (loop0): Directory bread(block 70) failed
[  105.002670][ T4901] FAT-fs (loop0): Directory bread(block 71) failed
[  105.027039][ T4918] loop1: detected capacity change from 0 to 256
[  105.062895][ T4901] FAT-fs (loop0): Directory bread(block 72) failed
[  105.069607][ T4901] FAT-fs (loop0): Directory bread(block 73) failed
[  105.134021][ T4918] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  105.260046][ T4918] FAT-fs (loop1): Filesystem has been set read-only
[  105.282644][ T4926] device syzkaller0 entered promiscuous mode
[  105.300787][ T4918] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  105.434730][ T4918] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  105.524820][ T4918] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000001)
[  105.622746][   T26] audit: type=1800 audit(1772689415.930:4): pid=4918 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.127" name="file1" dev="loop1" ino=1048594 res=0 errno=0
[  106.269475][ T4228] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[  106.319048][ T4942] device syzkaller0 entered promiscuous mode
[  106.692033][ T4955] device syzkaller0 entered promiscuous mode
[  106.902664][ T4228] usb 3-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00
[  106.932458][ T4228] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  106.940520][ T4228] usb 3-1: Product: syz
[  106.968647][ T4228] usb 3-1: Manufacturer: syz
[  106.982273][ T4228] usb 3-1: SerialNumber: syz
[  107.040419][ T4970] loop4: detected capacity change from 0 to 256
[  107.134606][ T4970] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  107.212407][ T4970] FAT-fs (loop4): Filesystem has been set read-only
[  107.270619][ T4970] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  107.316188][ T4970] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  107.356451][   T26] audit: type=1800 audit(1772689417.760:5): pid=4970 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.144" name="file1" dev="loop4" ino=1048596 res=0 errno=0
[  107.394279][ T4970] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000001)
[  107.508338][ T4228] lan78xx 3-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000098. ret = -32
[  108.631644][ T4983] device syzkaller0 entered promiscuous mode
[  108.674853][ T4968] loop1: detected capacity change from 0 to 40427
[  108.692427][ T4228] lan78xx 3-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000000. ret = -71
[  108.708113][ T4228] lan78xx 3-1:1.0 (unnamed net_device) (uninitialized): Registers INIT FAILED....
[  108.723549][ T4228] lan78xx 3-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED
[  108.744087][ T4968] F2FS-fs (loop1): invalid crc value
[  108.753543][ T4228] lan78xx: probe of 3-1:1.0 failed with error -71
[  108.776346][ T4968] F2FS-fs (loop1): Found nat_bits in checkpoint
[  108.805916][ T4228] usb 3-1: USB disconnect, device number 2
[  108.888849][ T4985] device syzkaller0 entered promiscuous mode
[  108.984428][ T4968] F2FS-fs (loop1): Cannot turn on quotas: -2 on 1
[  109.031773][ T4968] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  109.183372][ T5003] device syzkaller0 entered promiscuous mode
[  109.338046][ T5009] netlink: 'syz.3.156': attribute type 13 has an invalid length.
[  109.389093][ T5009] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  109.441509][ T5009] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  109.481876][ T5009] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  109.615301][ T4999] uffd: Set unprivileged_userfaultfd sysctl knob to 1 if kernel faults must be handled without obtaining CAP_SYS_PTRACE capability
[  111.130751][ T5029] loop2: detected capacity change from 0 to 4096
[  111.447571][ T5036] device syzkaller0 entered promiscuous mode
[  111.562414][ T5029] ntfs3: loop2: Different NTFS' sector size (4096) and media sector size (512)
[  111.720289][ T5029] ntfs3: loop2: Mark volume as dirty due to NTFS errors
[  112.013257][ T5056] device syzkaller0 entered promiscuous mode
[  113.517960][ T5070] loop4: detected capacity change from 0 to 4096
[  113.675542][ T5070] ntfs3: loop4: Different NTFS' sector size (4096) and media sector size (512)
[  113.773805][ T5045] loop3: detected capacity change from 0 to 32768
[  113.777997][ T5070] ntfs3: loop4: ntfs_set_state r=3 failed, -22.
[  113.806370][ T5075] blk_update_request: I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  113.898057][ T5075] hpfs: hpfs_map_sector(): read error
[  113.946754][ T5045] ERROR: (device loop3): diNewExt: no free extents
[  113.946754][ T5045] 
[  114.010038][ T5077] ntfs3: loop4: ino=1e, "file1" encrypted i/o not supported
[  114.028686][ T5045] ERROR: (device loop3): remounting filesystem as read-only
[  114.057353][ T5045] ialloc: diAlloc returned -5!
[  114.067838][   T26] audit: type=1800 audit(1772689424.470:6): pid=5077 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.173" name="file1" dev="loop4" ino=30 res=0 errno=0
[  114.155262][ T4299] ntfs3: loop4: ntfs3_write_inode r=3 failed, -22.
[  114.195244][ T4188] ntfs3: loop4: ntfs_set_state r=3 failed, -22.
[  114.202132][ T4188] ntfs3: loop4: Mark volume as dirty due to NTFS errors
[  114.213809][ T4188] ntfs3: loop4: ntfs_set_state r=3 failed, -22.
[  114.239158][ T4299] ntfs3: loop4: ntfs3_write_inode r=3 failed, -22.
[  114.254821][ T4188] ntfs3: loop4: ntfs_evict_inode r=3 failed, -22.
[  115.580302][ T5095] device syzkaller0 entered promiscuous mode
[  115.598220][ T5092] loop3: detected capacity change from 0 to 4096
[  116.058827][ T5110] netlink: 'syz.3.187': attribute type 13 has an invalid length.
[  116.090638][ T5110] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  116.154765][ T5110] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  116.177782][ T5110] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  116.586231][ T5115] overlayfs: failed to get inode (-116)
[  116.624348][ T5115] overlayfs: failed to get inode (-116)
[  117.699453][ T5126] device syzkaller0 entered promiscuous mode
[  117.839107][ T5107] loop0: detected capacity change from 0 to 40427
[  117.919172][ T5134] device syzkaller0 entered promiscuous mode
[  117.950796][ T5107] F2FS-fs (loop0): invalid crc value
[  118.010594][ T5107] F2FS-fs (loop0): Found nat_bits in checkpoint
[  118.191689][ T5107] F2FS-fs (loop0): Cannot turn on quotas: -2 on 1
[  118.222999][ T5107] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  118.394415][ T5107] attempt to access beyond end of device
[  118.394415][ T5107] loop0: rw=34817, want=77952, limit=40427
[  118.460825][ T5107] attempt to access beyond end of device
[  118.460825][ T5107] loop0: rw=0, want=77832, limit=40427
[  118.554299][ T5131] loop1: detected capacity change from 0 to 64
[  118.607925][ T4185] attempt to access beyond end of device
[  118.607925][ T4185] loop0: rw=2049, want=45104, limit=40427
[  118.678628][ T5131] hfs: unable to parse mount options
[  118.808347][ T5148] loop4: detected capacity change from 0 to 512
[  119.423449][ T5157] syz.2.202 uses obsolete (PF_INET,SOCK_PACKET)
[  120.270855][ T5140] loop3: detected capacity change from 0 to 40427
[  120.284034][ T5161] netlink: 'syz.0.198': attribute type 13 has an invalid length.
[  120.318118][ T5161] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  120.376794][ T5161] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  120.386855][ T5140] F2FS-fs (loop3): invalid crc value
[  120.400776][ T5161] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  120.438912][ T5140] F2FS-fs (loop3): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 10241044815247771109)
[  120.498217][ T5178] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  120.692805][ T5140] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  120.876522][ T5188] device syzkaller0 entered promiscuous mode
[  122.293105][ T5164] loop1: detected capacity change from 0 to 32768
[  122.566789][ T5209] loop2: detected capacity change from 0 to 1024
[  122.677827][ T5209] hfsplus: unable to parse mount options
[  123.121291][ T5217] netlink: 'syz.4.217': attribute type 13 has an invalid length.
[  123.191531][ T5217] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  123.274411][ T5217] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  123.309944][ T5217] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  123.475551][ T5225] tipc: Started in network mode
[  123.492444][ T5225] tipc: Node identity 5ea29d732958, cluster identity 4711
[  123.500563][ T5225] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  123.550772][ T5223] tipc: Resetting bearer <eth:syzkaller0>
[  123.579605][ T5222] tipc: Disabling bearer <eth:syzkaller0>
[  123.616919][ T5227] loop1: detected capacity change from 0 to 256
[  123.623736][ T5206] loop0: detected capacity change from 0 to 32768
[  123.651310][ T5229] team_slave_1: Caught tx_queue_len zero misconfig
[  123.724056][ T5206] blk_update_request: I/O error, dev loop14, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  123.787215][ T5206] lbmIODone: I/O error in JFS log
[  123.816942][ T5206] *** Log Format Error ! ***
[  123.852535][ T5206] lmLogInit: exit(-22)
[  123.856970][ T5206] lmLogOpen: exit(-22)
[  123.960705][ T5233] device syzkaller0 entered promiscuous mode
[  124.319363][ T5214] loop2: detected capacity change from 0 to 40427
[  124.376437][ T5214] F2FS-fs (loop2): Unrecognized mount option "age_extent_cache" or missing value
[  124.874316][ T5269] tipc: Started in network mode
[  124.899841][ T5269] tipc: Node identity 6262e1e60ceb, cluster identity 4711
[  124.938888][ T5269] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  125.015869][ T5269] tipc: Resetting bearer <eth:syzkaller0>
[  125.079954][ T5266] tipc: Disabling bearer <eth:syzkaller0>
[  125.290002][ T5248] loop0: detected capacity change from 0 to 32768
[  125.459828][ T5280] device syzkaller0 entered promiscuous mode
[  125.556268][ T4581] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  125.680977][ T5282] tipc: Started in network mode
[  125.697399][ T5282] tipc: Node identity 625ced72533c, cluster identity 4711
[  125.738101][ T5282] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  125.758874][ T5285] tipc: Resetting bearer <eth:syzkaller0>
[  125.780533][ T5281] tipc: Disabling bearer <eth:syzkaller0>
[  126.112481][ T4581] usb 2-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[  126.131867][ T4581] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  126.154168][ T4581] usb 2-1: Product: syz
[  126.158747][ T4581] usb 2-1: Manufacturer: syz
[  126.165167][ T4581] usb 2-1: SerialNumber: syz
[  126.184915][ T4581] usb 2-1: config 0 descriptor??
[  126.252492][   T23] usb 1-1: new full-speed USB device number 3 using dummy_hcd
[  126.492335][ T4229] Bluetooth: hci2: command 0x2021 tx timeout
[  126.662381][ T4581] usb 2-1: atusb_control_msg: req 0x21 val 0x0 idx 0x1e, error -32
[  126.670584][ T4581] usb 2-1: Firmware version (0.0) predates our first public release.
[  126.692888][ T4581] usb 2-1: Please update to version 0.2 or newer
[  126.714889][ T5302] loop2: detected capacity change from 0 to 32768
[  126.733026][ T4581] usb 2-1: atusb_probe: initialization failed, error = -32
[  126.756005][ T4581] atusb: probe of 2-1:0.0 failed with error -32
[  126.772553][   T23] usb 1-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  126.799557][   T23] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  126.813517][   T23] usb 1-1: Product: syz
[  126.818031][   T23] usb 1-1: Manufacturer: syz
[  126.824432][   T23] usb 1-1: SerialNumber: syz
[  126.833849][   T23] usb 1-1: config 0 descriptor??
[  126.870859][ T5302] XFS (loop2): Mounting V5 Filesystem
[  127.010726][ T5302] XFS (loop2): Ending clean mount
[  127.030028][ T5302] XFS (loop2): Quotacheck needed: Please wait.
[  127.092597][   T23] usb 1-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  127.181070][ T5302] XFS (loop2): Quotacheck: Done.
[  127.218035][ T5316] loop4: detected capacity change from 0 to 2048
[  127.340400][ T5317] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  127.361937][ T4184] XFS (loop2): Unmounting Filesystem
[  127.579805][ T5316] syz.4.245 (5316) used greatest stack depth: 20472 bytes left
[  128.065981][ T5325] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(8)
[  128.073046][ T5325] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  128.083361][ T5325] vhci_hcd vhci_hcd.0: Device attached
[  128.272456][   T23] dvb_usb_rtl28xxu: probe of 1-1:0.0 failed with error -71
[  128.922291][    T7] usb 37-1: new low-speed USB device number 2 using vhci_hcd
[  129.348043][   T23] usb 1-1: USB disconnect, device number 3
[  129.354465][ T1109] usb 2-1: USB disconnect, device number 3
[  129.399837][ T5326] vhci_hcd: connection reset by peer
[  129.443553][    T9] vhci_hcd: stop threads
[  129.449105][    T9] vhci_hcd: release socket
[  129.511978][    T9] vhci_hcd: disconnect device
[  129.675546][ T5320] bridge0: port 2(bridge_slave_1) entered disabled state
[  129.684434][ T5320] bridge0: port 1(bridge_slave_0) entered disabled state
[  130.435991][ T5320] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  130.500624][ T5320] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  131.078591][ T5320] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  131.089657][ T5320] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  131.099885][ T5320] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  131.099955][ T5320] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  131.642365][   T26] audit: type=1326 audit(1772689442.040:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5372 comm="syz.2.260" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fea79270799 code=0x0
[  132.021964][ T5391] device syzkaller0 entered promiscuous mode
[  132.268802][ T5397] device syzkaller0 entered promiscuous mode
[  133.057706][ T1421] ieee802154 phy0 wpan0: encryption failed: -22
[  133.064193][ T1421] ieee802154 phy1 wpan1: encryption failed: -22
[  133.064329][ T5415] loop2: detected capacity change from 0 to 1024
[  133.215722][ T5415] EXT4-fs (loop2): inline encryption not supported
[  133.222597][ T5417] device syzkaller0 entered promiscuous mode
[  133.370986][ T5425] 9pnet: p9_errstr2errno: server reported unknown error Xí®q¸dÀ
[  133.450252][ T5415] EXT4-fs (loop2): mounted filesystem without journal. Opts: barrier,nodioread_nolock,noquota,barrier,auto_da_alloc,inlinecrypt,,errors=continue. Quota mode: none.
[  133.581609][ T5415] ext4 filesystem being mounted at /59/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  133.663803][ T5415] EXT4-fs error (device loop2): ext4_map_blocks:739: inode #15: block 3: comm syz.2.271: lblock 3 mapped to illegal pblock 3 (length 3)
[  133.767385][   T26] audit: type=1800 audit(1772689444.170:8): pid=5435 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.271" name="file1" dev="loop2" ino=15 res=0 errno=0
[  133.800841][ T5415] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117
[  133.842947][ T5415] EXT4-fs (loop2): This should not happen!! Data will be lost
[  133.842947][ T5415] 
[  133.885705][ T5435] EXT4-fs error (device loop2): ext4_map_blocks:739: inode #15: block 8: comm syz.2.271: lblock 8 mapped to illegal pblock 8 (length 8)
[  133.889290][ T5434] device syzkaller0 entered promiscuous mode
[  133.968234][ T5435] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117
[  134.032860][ T5435] EXT4-fs (loop2): This should not happen!! Data will be lost
[  134.032860][ T5435] 
[  134.064396][ T5435] EXT4-fs error (device loop2): ext4_ext_remove_space:2929: inode #15: comm syz.2.271: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 3, max 4(4), depth 0(0)
[  134.108495][    T7] vhci_hcd: vhci_device speed not set
[  134.217509][ T5422] loop1: detected capacity change from 0 to 32768
[  134.247662][ T4339] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm kworker/u4:10: bg 0: block 112: padding at end of block bitmap is not set
[  134.312468][ T4339] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 64 with max blocks 4 with error 117
[  134.360186][ T4339] EXT4-fs (loop2): This should not happen!! Data will be lost
[  134.360186][ T4339] 
[  134.379322][ T5448] mmap: syz.3.282 (5448) uses deprecated remap_file_pages() syscall. See Documentation/vm/remap_file_pages.rst.
[  134.475663][ T5422] JBD2: Ignoring recovery information on journal
[  134.514113][ T4266] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  134.647221][ T5422] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  134.772323][ T4266] usb 1-1: Using ep0 maxpacket: 16
[  134.902577][ T4266] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  134.944820][ T4266] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  134.981601][ T4266] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  135.012505][ T4266] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  135.042238][ T4266] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  135.074395][ T4266] usb 1-1: config 0 descriptor??
[  135.153491][ T4452] ocfs2: Unmounting device (7,1) on (node local)
[  135.525408][ T5476] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  135.540005][ T5476] device syzkaller0 entered promiscuous mode
[  135.567503][ T5476] tipc: Resetting bearer <eth:syzkaller0>
[  135.577802][ T4266] HID 045e:07da: Invalid code 65791 type 1
[  135.600022][ T4266] input: HID 045e:07da as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:045E:07DA.0002/input/input5
[  135.631263][ T5475] tipc: Resetting bearer <eth:syzkaller0>
[  135.663385][ T5475] tipc: Disabling bearer <eth:syzkaller0>
[  135.685178][ T4266] microsoft 0003:045E:07DA.0002: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0
[  135.904448][ T4581] usb 1-1: USB disconnect, device number 4
[  135.969361][ T5479] fido_id[5479]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/1-1/report_descriptor': No such file or directory
[  135.984868][ T5485] netlink: 'syz.4.291': attribute type 3 has an invalid length.
[  136.090220][ T5474] loop3: detected capacity change from 0 to 32768
[  136.199696][ T5488] device syzkaller0 entered promiscuous mode
[  136.221165][ T5474] JBD2: Ignoring recovery information on journal
[  136.381990][ T5474] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  136.567372][ T5500] Cannot find add_set index 1 as target
[  136.744103][ T4186] ocfs2: Unmounting device (7,3) on (node local)
[  137.846087][ T5513] tipc: Started in network mode
[  137.851023][ T5513] tipc: Node identity 9a726bcb68fc, cluster identity 4711
[  137.897538][ T5513] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  137.968955][ T5516] device syzkaller0 entered promiscuous mode
[  138.066216][ T5513] tipc: Resetting bearer <eth:syzkaller0>
[  138.141396][ T5512] tipc: Resetting bearer <eth:syzkaller0>
[  138.149049][ T5524] loop3: detected capacity change from 0 to 512
[  138.158448][ T5512] tipc: Disabling bearer <eth:syzkaller0>
[  138.261264][ T5524] EXT4-fs error (device loop3): ext4_orphan_get:1400: inode #15: comm syz.3.299: inode has both inline data and extents flags
[  138.334376][ T5528] device syzkaller0 entered promiscuous mode
[  138.375351][ T5524] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.299: couldn't read orphan inode 15 (err -117)
[  138.398023][ T5524] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  138.673993][ T5538] loop2: detected capacity change from 0 to 4096
[  138.715586][ T5540] device syzkaller0 entered promiscuous mode
[  138.731448][ T5538] ntfs3: Unknown parameter 'nocase'
[  140.108733][ T5533] loop0: detected capacity change from 0 to 32768
[  141.065169][ T5570] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  141.131145][ T5570] device syzkaller0 entered promiscuous mode
[  141.238350][ T5572] device syzkaller0 entered promiscuous mode
[  141.273326][ T5570] tipc: Resetting bearer <eth:syzkaller0>
[  141.575069][ T5569] tipc: Resetting bearer <eth:syzkaller0>
[  141.707176][ T5578] loop2: detected capacity change from 0 to 128
[  142.547830][ T5569] tipc: Disabling bearer <eth:syzkaller0>
[  142.562558][ T4581] tipc: Node number set to 2012913011
[  143.017847][ T5580] loop0: detected capacity change from 0 to 1024
[  143.069542][ T5580] EXT4-fs (loop0): Ignoring removed bh option
[  143.192331][ T5580] EXT4-fs (loop0): Ignoring removed oldalloc option
[  143.222425][ T5580] EXT4-fs (loop0): Ignoring removed nobh option
[  143.251451][ T5585] device syzkaller0 entered promiscuous mode
[  143.274795][ T5580] EXT4-fs (loop0): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  143.552057][ T5580] EXT4-fs (loop0): mounted filesystem without journal. Opts: delalloc,data_err=abort,barrier=0x0000000000000003,bsddf,bh,oldalloc,data_err=ignore,nouid32,nobh,user_xattr,nouid32,dioread_nolock,,errors=continue. Quota mode: none.
[  143.632398][   T26] audit: type=1326 audit(1772689454.010:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5596 comm="syz.4.328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f398e381799 code=0x7ffc0000
[  143.797007][   T26] audit: type=1326 audit(1772689454.030:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5596 comm="syz.4.328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=326 compat=0 ip=0x7f398e381799 code=0x7ffc0000
[  143.870147][   T26] audit: type=1326 audit(1772689454.030:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5596 comm="syz.4.328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f398e381799 code=0x7ffc0000
[  143.897911][   T26] audit: type=1804 audit(1772689454.260:12): pid=5600 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.323" name="/newroot/73/file1/bus" dev="loop0" ino=18 res=1 errno=0
[  144.235305][ T5613] device syzkaller0 entered promiscuous mode
[  144.396637][ T5618] tipc: Enabling of bearer <eth:syzkaller> rejected, failed to enable media
[  144.587960][ T5626] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  144.597132][ T5626] device syzkaller0 entered promiscuous mode
[  144.644632][ T5626] tipc: Resetting bearer <eth:syzkaller0>
[  144.670801][ T5623] tipc: Resetting bearer <eth:syzkaller0>
[  144.914412][ T5623] tipc: Disabling bearer <eth:syzkaller0>
[  145.234742][ T5635] device syzkaller0 entered promiscuous mode
[  145.271898][ T5637] loop2: detected capacity change from 0 to 4096
[  145.406409][ T5639] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  145.529769][ T5637] overlayfs: upper fs does not support tmpfile.
[  145.561831][ T5637] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  145.642066][ T5637] overlayfs: failed to set xattr on upper
[  145.685855][ T5637] overlayfs: ...falling back to index=off,metacopy=off.
[  145.759209][ T5649] loop3: detected capacity change from 0 to 512
[  145.813056][ T5649] EXT4-fs (loop3): Ignoring removed oldalloc option
[  145.862373][ T5649] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  145.910519][ T5649] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  145.986411][ T5649] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2807: Unable to expand inode 11. Delete some EAs or run e2fsck.
[  146.079172][ T5649] EXT4-fs (loop3): 1 truncate cleaned up
[  146.084990][ T5649] EXT4-fs (loop3): mounted filesystem without journal. Opts: quota,oldalloc,barrier=0x0000000000000003,debug_want_extra_isize=0x0000000000000080,block_validity,jqfmt=vfsv1,,errors=continue. Quota mode: writeback.
[  146.156700][ T4184] NILFS (loop2): DAT doesn't have a block to manage vblocknr = 648518346341351424
[  146.166519][ T4184] NILFS error (device loop2): nilfs_bmap_truncate: broken bmap (inode number=12)
[  146.285553][ T4184] Remounting filesystem read-only
[  146.290743][ T4184] NILFS (loop2): error -5 truncating bmap (ino=12)
[  146.420532][   T26] audit: type=1800 audit(1772689456.820:13): pid=5649 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.344" name="file1" dev="loop3" ino=15 res=0 errno=0
[  147.379006][ T4184] NILFS (loop2): disposed unprocessed dirty file(s) when detaching log writer
[  147.490256][ T5664] device syzkaller0 entered promiscuous mode
[  147.917629][ T5676] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  147.968881][ T5676] device syzkaller0 entered promiscuous mode
[  148.051617][ T5676] tipc: Resetting bearer <eth:syzkaller0>
[  148.113792][ T5675] tipc: Resetting bearer <eth:syzkaller0>
[  148.129326][ T5675] tipc: Disabling bearer <eth:syzkaller0>
[  148.655964][ T5713] device syzkaller0 entered promiscuous mode
[  148.674836][ T5706] loop3: detected capacity change from 0 to 4096
[  148.778465][ T5706] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[  148.829038][ T5706] ntfs3: loop3: Failed to load $Extend.
[  149.460659][ T5704] loop1: detected capacity change from 0 to 32768
[  149.521514][ T5729] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  149.538822][ T5729] device syzkaller0 entered promiscuous mode
[  149.575446][ T5729] tipc: Resetting bearer <eth:syzkaller0>
[  149.600894][   T26] audit: type=1800 audit(1772689460.000:14): pid=5704 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.359" name="file1" dev="loop1" ino=4 res=0 errno=0
[  149.622967][ T5728] tipc: Resetting bearer <eth:syzkaller0>
[  149.673560][ T5704] attempt to access beyond end of device
[  149.673560][ T5704] loop1: rw=34817, want=4680184, limit=32768
[  149.687152][ T5728] tipc: Disabling bearer <eth:syzkaller0>
[  149.736324][  T278] blkno = 8ed30, nblocks = f
[  149.741153][  T278] ERROR: (device loop1): dbFree: block to be freed is outside the map
[  149.741153][  T278] 
[  149.799533][  T278] ERROR: (device loop1): remounting filesystem as read-only
[  149.935562][ T5745] device syzkaller0 entered promiscuous mode
[  150.282303][ T1109] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  150.562624][ T1109] usb 5-1: Using ep0 maxpacket: 8
[  150.683053][ T1109] usb 5-1: config 179 has an invalid interface number: 65 but max is 0
[  150.860566][ T1109] usb 5-1: config 179 has no interface number 0
[  150.990484][ T1109] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  151.035836][ T1109] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[  151.059633][ T1109] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  151.090824][ T1109] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[  151.128834][ T1109] usb 5-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  151.171440][ T1109] usb 5-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  151.188565][ T1109] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  151.262706][ T5755] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  151.439607][ T5773] syz.3.381 (5773): /proc/5772/oom_adj is deprecated, please use /proc/5772/oom_score_adj instead.
[  151.571550][ T1109] input: Generic X-Box pad as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:179.65/input/input6
[  151.713388][ T4231] usb 5-1: USB disconnect, device number 2
[  151.722274][    C0] xpad 5-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[  151.733762][ T4231] xpad 5-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19
[  151.768732][ T5778] loop3: detected capacity change from 0 to 512
[  151.958842][ T5778] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  151.986057][ T5778] ext4 filesystem being mounted at /80/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  152.112920][   T26] audit: type=1800 audit(1772689462.520:15): pid=5778 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.383" name="file2" dev="loop3" ino=16 res=0 errno=0
[  152.195096][ T5789] loop1: detected capacity change from 0 to 128
[  152.263348][ T5789] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  152.378319][ T5791] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  152.443577][ T5791] device syzkaller0 entered promiscuous mode
[  152.451532][ T4887] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  152.466459][ T5793] device syzkaller0 entered promiscuous mode
[  152.496978][ T5791] tipc: Resetting bearer <eth:syzkaller0>
[  152.566004][ T5790] tipc: Resetting bearer <eth:syzkaller0>
[  152.604563][ T5790] tipc: Disabling bearer <eth:syzkaller0>
[  152.920897][ T5803] loop3: detected capacity change from 0 to 512
[  152.996923][ T5803] EXT4-fs (loop3): Ignoring removed nobh option
[  153.047273][ T5803] EXT4-fs error (device loop3): ext4_orphan_get:1400: inode #15: comm syz.3.393: iget: bad i_size value: 38620345925642
[  153.138656][ T5803] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.393: couldn't read orphan inode 15 (err -117)
[  153.188574][ T5795] loop1: detected capacity change from 0 to 32768
[  153.206606][ T5803] EXT4-fs (loop3): mounted filesystem without journal. Opts: nobh,auto_da_alloc,data_err=ignore,,errors=continue. Quota mode: writeback.
[  153.248658][ T5795] ocfs2: Slot 0 on device (7,1) was already allocated to this node!
[  153.426602][ T5795] JBD2: Ignoring recovery information on journal
[  153.506632][ T5795] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  153.521679][ T5809] device syzkaller0 entered promiscuous mode
[  153.648520][ T5812] netlink: 72 bytes leftover after parsing attributes in process `syz.3.393'.
[  154.122345][   T26] audit: type=1800 audit(1772689464.490:16): pid=5795 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.389" name="file1" dev="loop1" ino=17058 res=0 errno=0
[  154.185209][ T5795] (syz.1.389,5795,0):ocfs2_file_write_iter:2449 ERROR: status = -27
[  154.291200][ T4452] ocfs2: Unmounting device (7,1) on (node local)
[  154.884830][ T5828] device syzkaller0 entered promiscuous mode
[  156.260840][ T5855] loop4: detected capacity change from 0 to 256
[  156.319176][ T5861] device syzkaller0 entered promiscuous mode
[  156.326566][ T5855] exfat: Deprecated parameter 'namecase'
[  156.343024][ T5855] exfat: Deprecated parameter 'namecase'
[  156.413410][ T5855] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xfcc0b04e, utbl_chksum : 0xe619d30d)
[  156.494471][ T5855] exFAT-fs (loop4): bogus allocation bitmap size(need : 2, cur : 1)
[  156.508956][ T5855] exFAT-fs (loop4): failed to load alloc-bitmap
[  156.521983][ T5855] exFAT-fs (loop4): failed to recognize exfat type
[  157.446271][ T5875] device syzkaller0 entered promiscuous mode
[  157.970800][ T5884] loop4: detected capacity change from 0 to 1024
[  158.053135][ T5884] EXT4-fs (loop4): Ignoring removed bh option
[  158.059499][ T5884] EXT4-fs (loop4): Ignoring removed oldalloc option
[  158.100366][ T5884] EXT4-fs (loop4): Ignoring removed nobh option
[  158.116395][ T5884] EXT4-fs (loop4): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  158.151597][ T5884] EXT4-fs (loop4): mounted filesystem without journal. Opts: delalloc,data_err=abort,barrier=0x0000000000000003,bsddf,bh,oldalloc,data_err=ignore,nouid32,nobh,user_xattr,nouid32,dioread_nolock,,errors=continue. Quota mode: none.
[  158.220633][   T26] audit: type=1804 audit(1772689468.620:17): pid=5884 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.417" name="/newroot/85/file1/bus" dev="loop4" ino=18 res=1 errno=0
[  158.517417][ T5896] loop2: detected capacity change from 0 to 128
[  158.561608][ T5896] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  158.744371][ T5898] netlink: 20 bytes leftover after parsing attributes in process `syz.0.420'.
[  158.757555][ T5898] device vlan1 entered promiscuous mode
[  158.772747][ T5898] device dummy0 entered promiscuous mode
[  160.042717][ T5866] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  160.272470][ T4233] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  160.340419][ T5916] device syzkaller0 entered promiscuous mode
[  160.667066][ T5922] netlink: 60 bytes leftover after parsing attributes in process `syz.4.429'.
[  160.822682][ T4233] usb 1-1: unable to get BOS descriptor or descriptor too short
[  160.827341][ T5927] netlink: 'syz.3.431': attribute type 4 has an invalid length.
[  160.912500][ T4233] usb 1-1: config 250 has an invalid interface number: 222 but max is 1
[  160.924656][ T4233] usb 1-1: config 250 has an invalid descriptor of length 0, skipping remainder of the config
[  160.947514][ T4233] usb 1-1: config 250 has 1 interface, different from the descriptor's value: 2
[  160.961958][ T4233] usb 1-1: config 250 has no interface number 0
[  161.015176][ T4233] usb 1-1: config 250 interface 222 altsetting 22 has an invalid endpoint with address 0x80, skipping
[  161.068295][ T4233] usb 1-1: config 250 interface 222 altsetting 22 endpoint 0xC has invalid maxpacket 1024, setting to 64
[  161.087432][ T4233] usb 1-1: config 250 interface 222 altsetting 22 endpoint 0x8 has invalid maxpacket 983, setting to 64
[  161.101437][ T4233] usb 1-1: config 250 interface 222 altsetting 22 has an invalid endpoint with address 0x80, skipping
[  161.130473][ T5933] block device autoloading is deprecated and will be removed.
[  161.130610][ T4233] usb 1-1: config 250 interface 222 altsetting 22 has an invalid endpoint with address 0x0, skipping
[  161.171110][ T4233] usb 1-1: config 250 interface 222 altsetting 22 has 5 endpoint descriptors, different from the interface descriptor's value: 6
[  161.195523][ T4233] usb 1-1: config 250 interface 222 has no altsetting 0
[  161.362895][ T4233] usb 1-1: New USB device found, idVendor=0b49, idProduct=064f, bcdDevice=d4.fd
[  161.447282][ T4233] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  161.450106][ T5941] autofs4:pid:5941:autofs_fill_super: called with bogus options
[  161.476169][ T4233] usb 1-1: Product: syz
[  161.536598][ T4233] usb 1-1: Manufacturer: syz
[  161.607519][ T4233] usb 1-1: SerialNumber: syz
[  161.835227][ T5905] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  162.280017][ T4233] usb 1-1: USB disconnect, device number 5
[  162.660239][ T5929] loop4: detected capacity change from 0 to 40427
[  162.740409][ T5929] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  162.762842][ T5929] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  162.796762][ T5929] F2FS-fs (loop4): invalid crc value
[  162.822384][ T5929] F2FS-fs (loop4): Found nat_bits in checkpoint
[  162.952841][ T5966] device syzkaller0 entered promiscuous mode
[  162.958821][ T5929] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  162.973980][ T5929] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  163.206817][ T5929] attempt to access beyond end of device
[  163.206817][ T5929] loop4: rw=2049, want=40968, limit=40427
[  164.710273][ T5986] tun0: tun_chr_ioctl cmd 1074812117
[  165.426666][ T5991] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  165.448462][ T5991] device syzkaller0 entered promiscuous mode
[  165.487940][ T5991] tipc: Resetting bearer <eth:syzkaller0>
[  165.493902][ T5975] loop2: detected capacity change from 0 to 32768
[  165.503195][ T5990] tipc: Resetting bearer <eth:syzkaller0>
[  165.546445][ T5990] tipc: Disabling bearer <eth:syzkaller0>
[  165.734335][ T5999] device syzkaller0 entered promiscuous mode
[  166.134206][ T6015] device syzkaller0 entered promiscuous mode
[  167.141259][ T6028] loop3: detected capacity change from 0 to 2048
[  167.216704][ T6032] loop2: detected capacity change from 0 to 512
[  167.267746][ T6032] EXT4-fs (loop2): Ignoring removed nobh option
[  167.318593][ T6036] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  167.368754][ T6032] EXT4-fs error (device loop2): ext4_orphan_get:1400: inode #15: comm syz.2.462: iget: bad i_size value: 38620345925642
[  167.417674][   T26] audit: type=1800 audit(1772689477.820:18): pid=6028 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.461" name="file1" dev="loop3" ino=15 res=0 errno=0
[  167.425934][ T6041] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  167.454496][ T6041] device syzkaller0 entered promiscuous mode
[  167.474208][ T6041] tipc: Resetting bearer <eth:syzkaller0>
[  167.482665][ T6032] EXT4-fs error (device loop2): ext4_orphan_get:1405: comm syz.2.462: couldn't read orphan inode 15 (err -117)
[  167.502671][ T6040] tipc: Resetting bearer <eth:syzkaller0>
[  167.508615][ T6032] EXT4-fs (loop2): mounted filesystem without journal. Opts: nobh,auto_da_alloc,data_err=ignore,,errors=continue. Quota mode: writeback.
[  167.545241][ T6040] tipc: Disabling bearer <eth:syzkaller0>
[  168.342474][ T6038] EXT4-fs error (device loop2): ext4_validate_block_bitmap:429: comm ext4lazyinit: bg 0: block 5: invalid block bitmap
[  168.513970][ T6052] device syzkaller0 entered promiscuous mode
[  168.807176][ T6057] device syzkaller0 entered promiscuous mode
[  169.715998][ T6073] loop1: detected capacity change from 0 to 64
[  169.835933][ T6075] tipc: Started in network mode
[  169.840876][ T6075] tipc: Node identity 5e0dea006968, cluster identity 4711
[  169.871081][ T6075] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  169.911305][ T6076] device syzkaller0 entered promiscuous mode
[  169.947669][ T6075] tipc: Resetting bearer <eth:syzkaller0>
[  169.975257][ T6074] tipc: Resetting bearer <eth:syzkaller0>
[  169.998355][ T6074] tipc: Disabling bearer <eth:syzkaller0>
[  170.261068][ T6081] loop1: detected capacity change from 0 to 4096
[  170.314367][ T6086] device syzkaller0 entered promiscuous mode
[  170.564834][ T4452] ntfs3: loop1: ntfs_evict_inode r=5 failed, -22.
[  170.571510][ T4452] ntfs3: loop1: Mark volume as dirty due to NTFS errors
[  170.719446][ T6092] device syzkaller0 entered promiscuous mode
[  172.588072][ T6112] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  172.643762][ T6117] device syzkaller0 entered promiscuous mode
[  172.681503][ T6120] netlink: 4 bytes leftover after parsing attributes in process `syz.0.492'.
[  172.760529][ T6112] tipc: Resetting bearer <eth:syzkaller0>
[  172.773487][ T6121] device syzkaller0 entered promiscuous mode
[  172.820771][ T6111] tipc: Resetting bearer <eth:syzkaller0>
[  172.860076][ T6111] tipc: Disabling bearer <eth:syzkaller0>
[  175.555597][ T6164] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  175.573547][ T6164] device syzkaller0 entered promiscuous mode
[  175.633772][ T6164] tipc: Resetting bearer <eth:syzkaller0>
[  175.659199][ T6163] tipc: Resetting bearer <eth:syzkaller0>
[  175.694641][ T6163] tipc: Disabling bearer <eth:syzkaller0>
[  175.710739][ T6171] device syzkaller0 entered promiscuous mode
[  175.810682][ T6174] device syzkaller0 entered promiscuous mode
[  175.934107][ T6179] loop0: detected capacity change from 0 to 8
[  176.085613][    T7] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  176.392346][    T7] usb 5-1: Using ep0 maxpacket: 8
[  176.688090][ T6189] tmpfs: Bad value for 'mpol'
[  176.703881][ T6189] netlink: 12 bytes leftover after parsing attributes in process `syz.1.515'.
[  176.792923][    T7] usb 5-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2e.04
[  176.973737][    T7] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  177.070049][    T7] usb 5-1: Product: syz
[  177.093841][    T7] usb 5-1: Manufacturer: syz
[  177.121485][    T7] usb 5-1: SerialNumber: syz
[  177.440670][    T7] usb 5-1: config 0 descriptor??
[  178.945317][ T6193] loop1: detected capacity change from 0 to 40427
[  179.033031][    T7] dvb_usb_rtl28xxu 5-1:0.0: chip type detection failed -110
[  179.062687][ T6193] F2FS-fs (loop1): invalid crc value
[  179.071726][ T6193] F2FS-fs (loop1): invalid crc value
[  179.077274][ T6193] F2FS-fs (loop1): Failed to get valid F2FS checkpoint
[  179.146349][    T7] dvb_usb_rtl28xxu: probe of 5-1:0.0 failed with error -110
[  180.395719][   T21] usb 5-1: USB disconnect, device number 3
[  180.419744][ T6195] loop3: detected capacity change from 0 to 1024
[  181.425880][ T6202] tipc: Cannot configure node identity twice
[  181.576576][ T6204] loop2: detected capacity change from 0 to 512
[  181.619592][ T4537] hfsplus: b-tree write err: -5, ino 25
[  181.644562][ T4537] hfsplus: b-tree write err: -5, ino 4
[  181.672223][ T4537] hfsplus: b-tree write err: -5, ino 2
[  181.688697][ T4537] hfsplus: b-tree write err: -5, ino 26
[  181.829043][ T6204] EXT4-fs (loop2): mounted filesystem without journal. Opts: noauto_da_alloc,init_itable=0x0000000000000006,barrier=0x000000000000008e,bsddf,errors=remount-ro,init_itable,max_dir_size_kb=0x0000000000000109,quota,. Quota mode: writeback.
[  181.883685][ T6204] ext4 filesystem being mounted at /115/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  182.788559][ T6216] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  182.870155][ T6217] device syzkaller0 entered promiscuous mode
[  183.018814][ T6216] tipc: Resetting bearer <eth:syzkaller0>
[  183.035768][ T6214] tipc: Resetting bearer <eth:syzkaller0>
[  183.050660][ T6214] tipc: Disabling bearer <eth:syzkaller0>
[  183.115915][ T6222] device syzkaller0 entered promiscuous mode
[  183.130325][ T6224] device syzkaller0 entered promiscuous mode
[  183.524865][ T6234] loop4: detected capacity change from 0 to 164
[  183.868288][ T6234] Unsupported NM flag settings (240)
[  183.931931][ T6240] loop2: detected capacity change from 0 to 1024
[  183.982851][ T6244] device syzkaller0 entered promiscuous mode
[  184.079511][ T4338] hfsplus: b-tree write err: -5, ino 25
[  184.213334][ T4338] hfsplus: b-tree write err: -5, ino 4
[  184.292331][ T4338] hfsplus: b-tree write err: -5, ino 2
[  184.298317][ T4338] hfsplus: b-tree write err: -5, ino 26
[  185.192274][ T1109] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  185.392977][ T6255] tmpfs: Bad value for 'mpol'
[  185.400521][ T6255] netlink: 12 bytes leftover after parsing attributes in process `syz.0.535'.
[  185.482252][ T6259] netlink: 8 bytes leftover after parsing attributes in process `syz.4.536'.
[  185.582447][ T1109] usb 4-1: Using ep0 maxpacket: 8
[  185.706652][ T6263] netlink: 24 bytes leftover after parsing attributes in process `syz.2.534'.
[  185.737826][ T6263] batadv_slave_0: Caught tx_queue_len zero misconfig
[  185.849131][ T6265] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  185.867689][ T6265] device syzkaller0 entered promiscuous mode
[  185.898628][ T1109] usb 4-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2e.04
[  185.912310][ T1109] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  185.936783][ T1109] usb 4-1: Product: syz
[  185.951296][ T1109] usb 4-1: Manufacturer: syz
[  185.963891][ T1109] usb 4-1: SerialNumber: syz
[  185.999423][ T1109] usb 4-1: config 0 descriptor??
[  186.014188][ T6266] tipc: Resetting bearer <eth:syzkaller0>
[  186.030492][ T6264] tipc: Resetting bearer <eth:syzkaller0>
[  186.051849][ T6264] tipc: Disabling bearer <eth:syzkaller0>
[  186.287695][ T1109] usb 4-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  186.336909][    T7] Bluetooth: hci1: command 0x0406 tx timeout
[  186.347133][    T7] Bluetooth: hci0: command 0x0406 tx timeout
[  186.371785][    T7] Bluetooth: hci2: command 0x0406 tx timeout
[  186.392371][    T7] Bluetooth: hci4: command 0x0406 tx timeout
[  186.908681][ T6272] loop1: detected capacity change from 0 to 1024
[  187.091299][ T4340] hfsplus: b-tree write err: -5, ino 25
[  187.132733][ T4340] hfsplus: b-tree write err: -5, ino 4
[  187.140130][ T4340] hfsplus: b-tree write err: -5, ino 2
[  187.146279][ T4340] hfsplus: b-tree write err: -5, ino 26
[  187.248296][ T6278] tmpfs: Bad value for 'mpol'
[  187.260938][ T6278] netlink: 12 bytes leftover after parsing attributes in process `syz.0.542'.
[  188.008790][ T6270] loop4: detected capacity change from 0 to 32768
[  188.016055][ T1109] dvb_usb_rtl28xxu: probe of 4-1:0.0 failed with error -71
[  188.036344][ T1109] usb 4-1: USB disconnect, device number 3
[  188.054360][ T6284] loop0: detected capacity change from 0 to 64
[  188.063943][ T6282] device syzkaller0 entered promiscuous mode
[  188.155754][ T6270] ea_get: invalid extended attribute
[  188.173693][ T6270] ffff888060d6a830: 04 00 00 00                                      ....
[  188.378918][ T6288] device vlan2 entered promiscuous mode
[  188.422286][ T6288] device bridge0 entered promiscuous mode
[  188.583571][ T6294] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  188.618582][ T6294] device syzkaller0 entered promiscuous mode
[  188.820762][ T6299] tipc: Resetting bearer <eth:syzkaller0>
[  188.918242][ T6291] tipc: Resetting bearer <eth:syzkaller0>
[  188.989940][ T6291] tipc: Disabling bearer <eth:syzkaller0>
[  189.673058][ T6315] netlink: 12 bytes leftover after parsing attributes in process `syz.1.558'.
[  191.369306][ T6327] device syzkaller0 entered promiscuous mode
[  191.536160][ T6333] loop4: detected capacity change from 0 to 1024
[  191.686076][ T6337] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  191.713130][ T6337] device syzkaller0 entered promiscuous mode
[  191.757832][ T6337] tipc: Resetting bearer <eth:syzkaller0>
[  191.775350][ T4340] hfsplus: b-tree write err: -5, ino 25
[  191.786466][ T6336] tipc: Resetting bearer <eth:syzkaller0>
[  191.792617][ T4340] hfsplus: b-tree write err: -5, ino 4
[  191.845639][ T4340] hfsplus: b-tree write err: -5, ino 2
[  191.879596][ T6336] tipc: Disabling bearer <eth:syzkaller0>
[  191.955713][ T6346] netlink: 12 bytes leftover after parsing attributes in process `syz.4.570'.
[  192.529351][ T6361] loop4: detected capacity change from 0 to 512
[  192.584169][ T6361] EXT4-fs (loop4): Ignoring removed nobh option
[  192.654148][ T6361] EXT4-fs error (device loop4): ext4_orphan_get:1400: inode #15: comm syz.4.576: iget: bad i_size value: 38620345925642
[  192.691776][ T6361] EXT4-fs error (device loop4): ext4_orphan_get:1405: comm syz.4.576: couldn't read orphan inode 15 (err -117)
[  192.752834][ T6361] EXT4-fs (loop4): mounted filesystem without journal. Opts: nobh,auto_da_alloc,data_err=ignore,,errors=continue. Quota mode: writeback.
[  193.736345][ T6373] loop0: detected capacity change from 0 to 2048
[  193.885149][ T6379] netlink: 8 bytes leftover after parsing attributes in process `syz.4.582'.
[  193.890622][ T6373] NILFS (loop0): invalid segment: Magic number mismatch
[  193.932133][ T6373] NILFS (loop0): trying rollback from an earlier position
[  193.965423][ T6373] NILFS (loop0): recovery complete
[  193.981664][ T6381] netlink: 12 bytes leftover after parsing attributes in process `syz.3.583'.
[  194.028676][ T6384] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  194.136166][ T6387] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  194.202924][ T6389] device syzkaller0 entered promiscuous mode
[  194.243527][ T6387] tipc: Resetting bearer <eth:syzkaller0>
[  194.245311][ T6386] tipc: Resetting bearer <eth:syzkaller0>
[  194.264423][ T6386] tipc: Disabling bearer <eth:syzkaller0>
[  194.420828][ T6396] netlink: 28 bytes leftover after parsing attributes in process `syz.2.588'.
[  194.451618][ T6396] netlink: 28 bytes leftover after parsing attributes in process `syz.2.588'.
[  194.477421][ T6396] device syzkaller0 entered promiscuous mode
[  194.498335][ T1421] ieee802154 phy0 wpan0: encryption failed: -22
[  194.512405][ T1421] ieee802154 phy1 wpan1: encryption failed: -22
[  194.648447][ T6375] loop1: detected capacity change from 0 to 40427
[  194.689869][ T6404] loop2: detected capacity change from 0 to 512
[  194.710287][ T6375] F2FS-fs (loop1): build fault injection attr: rate: 19, type: 0x1ffff
[  194.749727][ T6404] EXT4-fs (loop2): Ignoring removed nobh option
[  194.824136][ T6404] EXT4-fs error (device loop2): ext4_orphan_get:1400: inode #15: comm syz.2.591: iget: bad i_size value: 38620345925642
[  194.888512][ T6404] EXT4-fs error (device loop2): ext4_orphan_get:1405: comm syz.2.591: couldn't read orphan inode 15 (err -117)
[  194.952357][ T6404] EXT4-fs (loop2): mounted filesystem without journal. Opts: nobh,auto_da_alloc,data_err=ignore,,errors=continue. Quota mode: writeback.
[  196.310535][ T4196] Bluetooth: Wrong link type (-22)
[  197.140419][ T6429] tmpfs: Bad value for 'mpol'
[  197.932919][ T6432] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  197.951689][ T6432] device syzkaller0 entered promiscuous mode
[  197.998568][ T6432] tipc: Resetting bearer <eth:syzkaller0>
[  198.019031][ T6431] tipc: Resetting bearer <eth:syzkaller0>
[  198.096738][ T6431] tipc: Disabling bearer <eth:syzkaller0>
[  198.253668][ T6439] netlink: 28 bytes leftover after parsing attributes in process `syz.3.601'.
[  198.314487][ T6439] netlink: 28 bytes leftover after parsing attributes in process `syz.3.601'.
[  198.358384][ T6439] device syzkaller0 entered promiscuous mode
[  198.530957][ T6450] loop0: detected capacity change from 0 to 512
[  198.605593][ T6450] EXT4-fs (loop0): Ignoring removed nobh option
[  198.654909][ T6450] EXT4-fs error (device loop0): ext4_orphan_get:1400: inode #15: comm syz.0.604: iget: bad i_size value: 38620345925642
[  198.698505][ T6450] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.604: couldn't read orphan inode 15 (err -117)
[  198.735121][ T6450] EXT4-fs (loop0): mounted filesystem without journal. Opts: nobh,auto_da_alloc,data_err=ignore,,errors=continue. Quota mode: writeback.
[  200.622669][ T6471] tmpfs: Bad value for 'mpol'
[  201.495605][ T6479] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  201.526834][ T6479] device syzkaller0 entered promiscuous mode
[  201.599801][ T6479] tipc: Resetting bearer <eth:syzkaller0>
[  201.643111][ T6478] tipc: Resetting bearer <eth:syzkaller0>
[  201.715501][ T6478] tipc: Disabling bearer <eth:syzkaller0>
[  201.783832][ T6488] device syzkaller0 entered promiscuous mode
[  201.940634][ T6495] loop2: detected capacity change from 0 to 256
[  202.073671][ T6495] FAT-fs (loop2): Directory bread(block 64) failed
[  202.117779][ T6495] FAT-fs (loop2): Directory bread(block 65) failed
[  202.157993][ T6495] FAT-fs (loop2): Directory bread(block 66) failed
[  202.198248][ T6495] FAT-fs (loop2): Directory bread(block 67) failed
[  202.229887][ T6495] FAT-fs (loop2): Directory bread(block 68) failed
[  202.262127][ T6495] FAT-fs (loop2): Directory bread(block 69) failed
[  202.293272][ T6495] FAT-fs (loop2): Directory bread(block 70) failed
[  202.307811][ T6495] FAT-fs (loop2): Directory bread(block 71) failed
[  202.317060][ T6495] FAT-fs (loop2): Directory bread(block 72) failed
[  202.328962][ T6495] FAT-fs (loop2): Directory bread(block 73) failed
[  202.613360][ T6495] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  202.957113][ T6506] loop2: detected capacity change from 0 to 512
[  203.020776][ T6506] EXT4-fs (loop2): Ignoring removed nobh option
[  203.962307][ T6506] EXT4-fs error (device loop2): ext4_orphan_get:1400: inode #15: comm syz.2.621: iget: bad i_size value: 38620345925642
[  203.983089][ T6506] EXT4-fs error (device loop2): ext4_orphan_get:1405: comm syz.2.621: couldn't read orphan inode 15 (err -117)
[  204.008193][ T6506] EXT4-fs (loop2): mounted filesystem without journal. Opts: nobh,auto_da_alloc,data_err=ignore,,errors=continue. Quota mode: writeback.
[  204.052361][ T6513] EXT4-fs error (device loop2): ext4_validate_block_bitmap:429: comm ext4lazyinit: bg 0: block 5: invalid block bitmap
[  205.085979][ T6527] tmpfs: Bad value for 'mpol'
[  206.051653][ T6534] loop3: detected capacity change from 0 to 4096
[  206.086645][ T6531] netlink: 28 bytes leftover after parsing attributes in process `syz.1.630'.
[  206.293346][ T6531] netlink: 28 bytes leftover after parsing attributes in process `syz.1.630'.
[  206.612067][ T6539] device syzkaller0 entered promiscuous mode
[  206.785674][ T6540] device syzkaller0 entered promiscuous mode
[  207.189696][ T4229] Bluetooth: hci3: command 0x0406 tx timeout
[  208.993359][ T6546] tmpfs: Bad value for 'mpol'
[  210.020379][ T6549] loop0: detected capacity change from 0 to 512
[  210.192563][ T6549] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2
[  210.328139][ T6549] EXT4-fs (loop0): 1 truncate cleaned up
[  210.359096][ T4186] ntfs3: loop3: ntfs_evict_inode r=5 failed, -22.
[  210.382310][ T6549] EXT4-fs (loop0): mounted filesystem without journal. Opts: jqfmt=vfsold,usrjquota="errors=continue,noload,data_err=ignore,usrjquota="errors=continue,noinit_itable,noblock_validity,,errors=continue. Quota mode: writeback.
[  210.412376][ T4186] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[  210.439678][ T6546] netlink: 12 bytes leftover after parsing attributes in process `syz.4.632'.
[  210.634248][ T6549] EXT4-fs (loop0): re-mounted. Opts: (null). Quota mode: writeback.
[  211.025888][ T6562] ODEBUG: Out of memory. ODEBUG disabled
[  211.209484][ T6562] loop1: detected capacity change from 0 to 256
[  211.218849][ T6564] loop0: detected capacity change from 0 to 512
[  211.302435][ T6564] EXT4-fs (loop0): Ignoring removed nobh option
[  211.307305][ T6562] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d)
[  211.421570][ T6564] EXT4-fs error (device loop0): ext4_orphan_get:1400: inode #15: comm syz.0.638: iget: bad i_size value: 38620345925642
[  211.473470][ T6564] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.638: couldn't read orphan inode 15 (err -117)
[  211.520449][ T6564] EXT4-fs (loop0): mounted filesystem without journal. Opts: nobh,auto_da_alloc,data_err=ignore,,errors=continue. Quota mode: writeback.
[  211.610705][ T6569] loop4: detected capacity change from 0 to 8
[  213.862311][ T4581] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  214.017012][ T6588] device syzkaller0 entered promiscuous mode
[  214.238710][ T4581] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  214.262270][ T4581] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  214.442603][ T4581] usb 5-1: New USB device found, idVendor=2a39, idProduct=3f8c, bcdDevice=94.24
[  214.467403][ T4581] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=11
[  214.511154][ T6593] tmpfs: Bad value for 'mpol'
[  214.524086][ T6593] netlink: 12 bytes leftover after parsing attributes in process `syz.2.646'.
[  214.607107][ T4581] usb 5-1: Product: syz
[  214.687677][ T4581] usb 5-1: Manufacturer: syz
[  214.713187][ T4581] usb 5-1: SerialNumber: syz
[  214.762095][ T4581] usb 5-1: config 0 descriptor??
[  214.801441][ T6596] netlink: 28 bytes leftover after parsing attributes in process `syz.1.647'.
[  214.851418][ T6596] netlink: 28 bytes leftover after parsing attributes in process `syz.1.647'.
[  214.910546][ T6596] device syzkaller0 entered promiscuous mode
[  215.193728][ T6604] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  215.252654][ T6608] device syzkaller0 entered promiscuous mode
[  215.274555][ T6584] netlink: 4 bytes leftover after parsing attributes in process `syz.4.644'.
[  215.308989][ T6606] team_slave_1: Caught tx_queue_len zero misconfig
[  215.342794][ T6604] tipc: Resetting bearer <eth:syzkaller0>
[  215.393095][ T6603] tipc: Resetting bearer <eth:syzkaller0>
[  215.442481][ T6603] tipc: Disabling bearer <eth:syzkaller0>
[  215.487721][   T23] usb 5-1: USB disconnect, device number 4
[  215.954110][ T6622] device syzkaller0 entered promiscuous mode
[  216.251377][ T6613] loop2: detected capacity change from 0 to 32768
[  216.416963][ T6613] XFS (loop2): Mounting V5 Filesystem
[  216.575733][ T6613] XFS (loop2): Ending clean mount
[  216.790903][ T6613] XFS (loop2): Quotacheck needed: Please wait.
[  217.605680][ T6613] XFS (loop2): Quotacheck: Done.
[  217.799792][ T4184] XFS (loop2): Unmounting Filesystem
[  218.157051][ T6650] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  218.185828][ T6650] device syzkaller0 entered promiscuous mode
[  218.249274][ T6650] tipc: Resetting bearer <eth:syzkaller0>
[  218.280973][ T6649] tipc: Resetting bearer <eth:syzkaller0>
[  218.294196][ T6646] loop4: detected capacity change from 0 to 32768
[  218.303682][ T6649] tipc: Disabling bearer <eth:syzkaller0>
[  218.508568][ T6646] XFS (loop4): Mounting V5 Filesystem
[  218.631160][ T6646] XFS (loop4): Ending clean mount
[  218.670876][ T6646] XFS (loop4): Quotacheck needed: Please wait.
[  218.830649][ T6646] XFS (loop4): Quotacheck: Done.
[  218.940068][ T4188] XFS (loop4): Unmounting Filesystem
[  219.725582][ T6675] device syzkaller0 entered promiscuous mode
[  221.048409][ T6693] loop4: detected capacity change from 0 to 1024
[  221.108592][ T6693] EXT4-fs (loop4): Ignoring removed bh option
[  221.142226][ T6693] EXT4-fs (loop4): Ignoring removed oldalloc option
[  221.161801][ T6693] EXT4-fs (loop4): Ignoring removed nobh option
[  221.179852][ T6693] EXT4-fs (loop4): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  221.181820][ T6695] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  221.278837][ T6696] device syzkaller0 entered promiscuous mode
[  221.289720][ T6693] EXT4-fs (loop4): mounted filesystem without journal. Opts: delalloc,data_err=abort,barrier=0x0000000000000003,bsddf,bh,oldalloc,data_err=ignore,nouid32,nobh,user_xattr,nouid32,dioread_nolock,,errors=continue. Quota mode: none.
[  221.374053][ T6695] tipc: Resetting bearer <eth:syzkaller0>
[  221.426722][   T26] audit: type=1804 audit(1772689531.830:19): pid=6693 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.675" name="/newroot/136/file1/bus" dev="loop4" ino=18 res=1 errno=0
[  221.468831][ T6694] tipc: Resetting bearer <eth:syzkaller0>
[  221.511531][ T6694] tipc: Disabling bearer <eth:syzkaller0>
[  222.713058][ T6710] loop1: detected capacity change from 0 to 256
[  224.076613][ T1109] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  224.487718][ T6727] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[  224.496723][ T1109] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  224.530701][ T1109] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 2
[  224.557413][ T6727] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[  224.574271][ T1109] usb 4-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  224.764694][ T1109] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  224.808410][ T1109] usb 4-1: New USB device strings: Mfr=1, Product=0, SerialNumber=3
[  224.848945][ T1109] usb 4-1: Manufacturer: syz
[  224.875141][ T6733] loop1: detected capacity change from 0 to 128
[  224.881614][ T1109] usb 4-1: SerialNumber: syz
[  225.024946][ T1109] cdc_mbim 4-1:1.0: CDC Union missing and no IAD found
[  225.053503][ T1109] cdc_mbim 4-1:1.0: bind() failure
[  225.220424][ T6738] loop1: detected capacity change from 0 to 8
[  225.260361][ T1109] usb 4-1: USB disconnect, device number 4
[  225.427377][ T6740] overlayfs: upper fs does not support file handles, falling back to index=off.
[  225.477805][ T6731] loop4: detected capacity change from 0 to 32768
[  225.569622][ T6731] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 scanned by syz.4.686 (6731)
[  225.630899][ T6731] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm
[  225.670628][ T6731] BTRFS info (device loop4): using free space tree
[  225.693305][ T6731] BTRFS info (device loop4): has skinny extents
[  225.941767][ T6731] BTRFS info (device loop4): enabling ssd optimizations
[  225.958234][ T6770] device syzkaller0 entered promiscuous mode
[  226.078690][ T6736] loop0: detected capacity change from 0 to 32768
[  226.786921][ T6797] tmpfs: Bad value for 'mpol'
[  228.035025][ T6810] autofs4:pid:6810:autofs_fill_super: called with bogus options
[  230.023379][ T6814] sctp: failed to load transform for md5: -2
[  230.602104][ T6808] bridge0: port 2(bridge_slave_1) entered disabled state
[  230.609912][ T6808] bridge0: port 1(bridge_slave_0) entered disabled state
[  231.379640][ T6808] device bridge_slave_0 left promiscuous mode
[  231.386173][ T6808] bridge0: port 1(bridge_slave_0) entered disabled state
[  231.485317][ T6840] loop1: detected capacity change from 0 to 128
[  232.368592][ T6808] device bridge_slave_1 left promiscuous mode
[  232.378347][ T6808] bridge0: port 2(bridge_slave_1) entered disabled state
[  232.410274][ T6808] bond0: (slave bond_slave_0): Releasing backup interface
[  232.450626][ T6808] bond0: (slave bond_slave_1): Releasing backup interface
[  232.489840][ T6808] team0: Port device team_slave_0 removed
[  232.529174][ T6808] team0: Port device team_slave_1 removed
[  232.536984][ T6808] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  232.551106][ T6808] batman_adv: batadv0: Removing interface: batadv_slave_0
[  232.565956][ T6808] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  232.583263][ T6808] batman_adv: batadv0: Removing interface: batadv_slave_1
[  232.921459][ T6808] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  232.930451][ T6808] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  232.939791][ T6808] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  232.948819][ T6808] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  234.895904][ T6863] autofs4:pid:6863:autofs_fill_super: called with bogus options
[  235.709424][ T6870] loop1: detected capacity change from 0 to 512
[  235.822597][ T6870] EXT4-fs (loop1): mounted filesystem without journal. Opts: lazytime,errors=remount-ro,. Quota mode: writeback.
[  235.822791][ T6870] ext4 filesystem being mounted at /119/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  238.271874][ T6891] netlink: 1752 bytes leftover after parsing attributes in process `syz.3.723'.
[  239.712794][ T6904] netlink: 28 bytes leftover after parsing attributes in process `syz.0.728'.
[  239.795650][ T6904] netlink: 28 bytes leftover after parsing attributes in process `syz.0.728'.
[  241.499302][ T6911] bridge0: port 2(bridge_slave_1) entered disabled state
[  241.506843][ T6911] bridge0: port 1(bridge_slave_0) entered disabled state
[  241.599201][ T6927] loop4: detected capacity change from 0 to 32768
[  241.909842][ T6931] loop0: detected capacity change from 0 to 2048
[  242.773797][ T6939] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  242.909625][ T6911] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  242.942229][   T26] audit: type=1800 audit(1772689553.280:20): pid=6931 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.734" name="file1" dev="loop0" ino=15 res=0 errno=0
[  243.006108][ T6911] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  243.747453][ T6911] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  243.756917][ T6911] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  243.766385][ T6911] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  243.775459][ T6911] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  244.669945][ T6953] loop1: detected capacity change from 0 to 128
[  246.472658][ T6953] attempt to access beyond end of device
[  246.472658][ T6953] loop1: rw=2049, want=250, limit=128
[  251.442232][ T4343] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  253.621165][ T7005] loop1: detected capacity change from 0 to 2048
[  253.820595][ T7006] Cannot find set identified by id 65534 to match
[  256.506882][ T1421] ieee802154 phy0 wpan0: encryption failed: -22
[  256.506950][ T1421] ieee802154 phy1 wpan1: encryption failed: -22
[  256.567281][ T7005] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  259.906625][ T7040] loop1: detected capacity change from 0 to 16
[  260.064555][ T7040] erofs: (device loop1): erofs_read_superblock: blkszbits 9 isn't supported on this platform
[  261.650704][ T7052] loop1: detected capacity change from 0 to 512
[  262.586614][ T7052] EXT4-fs (loop1): mounted filesystem without journal. Opts: i_version,nodiscard,min_batch_time=0x00000000000003ff,,errors=continue. Quota mode: none.
[  264.822309][ T6793] usb 2-1: new full-speed USB device number 4 using dummy_hcd
[  265.282687][ T6793] usb 2-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  265.374044][ T6793] usb 2-1: config 16 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[  265.607100][ T6793] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  265.817518][ T6793] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  265.933515][ T6793] usbtmc 2-1:16.0: bulk endpoints not found
[  266.426482][ T7099] loop4: detected capacity change from 0 to 512
[  266.783961][ T7099] EXT4-fs (loop4): mounted filesystem without journal. Opts: i_version,nodiscard,min_batch_time=0x00000000000003ff,,errors=continue. Quota mode: none.
[  267.074636][ T7102] netlink: 'syz.1.778': attribute type 10 has an invalid length.
[  268.463255][ T7102] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  268.591778][ T4343] usb 2-1: USB disconnect, device number 4
[  269.867970][ T7130] netlink: 4 bytes leftover after parsing attributes in process `syz.0.795'.
[  270.712869][ T7134] netlink: 4595 bytes leftover after parsing attributes in process `syz.3.796'.
[  270.876122][ T7140] loop0: detected capacity change from 0 to 2048
[  271.009816][ T7145] autofs4:pid:7145:autofs_fill_super: called with bogus options
[  271.450802][ T7149] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  271.729545][   T26] audit: type=1800 audit(1772689582.130:21): pid=7140 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.797" name="file1" dev="loop0" ino=15 res=0 errno=0
[  274.300969][ T7180] loop4: detected capacity change from 0 to 40427
[  274.542355][    T7] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  274.792449][    T7] usb 4-1: Using ep0 maxpacket: 32
[  274.972810][    T7] usb 4-1: config 0 has an invalid interface number: 184 but max is 0
[  274.984962][    T7] usb 4-1: config 0 has no interface number 0
[  274.992980][    T7] usb 4-1: config 0 interface 184 has no altsetting 0
[  275.045582][ T7180] F2FS-fs (loop4): invalid crc value
[  275.053808][ T7180] F2FS-fs (loop4): invalid crc value
[  275.059259][ T7180] F2FS-fs (loop4): Failed to get valid F2FS checkpoint
[  275.272622][    T7] usb 4-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  275.899948][    T7] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  276.185879][    T7] usb 4-1: Product: syz
[  276.190283][    T7] usb 4-1: Manufacturer: syz
[  276.204597][    T7] usb 4-1: SerialNumber: syz
[  276.267896][    T7] usb 4-1: config 0 descriptor??
[  276.819154][    T7] usb 4-1: can't set config #0, error -71
[  276.833287][    T7] usb 4-1: USB disconnect, device number 6
[  277.531697][ T7200] loop1: detected capacity change from 0 to 512
[  277.690499][ T4228] Bluetooth: hci5: command 0x0409 tx timeout
[  277.711980][ T7200] EXT4-fs (loop1): Ignoring removed nobh option
[  277.728316][ T7182] chnl_net:caif_netlink_parms(): no params data found
[  277.809438][ T7200] EXT4-fs error (device loop1): ext4_orphan_get:1400: inode #15: comm syz.1.811: iget: bad i_size value: 38620345925642
[  277.851226][ T7200] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.811: couldn't read orphan inode 15 (err -117)
[  277.872316][ T7200] EXT4-fs (loop1): mounted filesystem without journal. Opts: nobh,auto_da_alloc,data_err=ignore,,errors=continue. Quota mode: writeback.
[  277.972352][ T7207] EXT4-fs error (device loop1): ext4_validate_block_bitmap:429: comm ext4lazyinit: bg 0: block 5: invalid block bitmap
[  278.821295][ T7182] bridge0: port 1(bridge_slave_0) entered blocking state
[  278.888242][ T7182] bridge0: port 1(bridge_slave_0) entered disabled state
[  278.897608][ T7182] device bridge_slave_0 entered promiscuous mode
[  278.912047][ T7182] bridge0: port 2(bridge_slave_1) entered blocking state
[  278.919263][ T7182] bridge0: port 2(bridge_slave_1) entered disabled state
[  278.927809][ T7182] device bridge_slave_1 entered promiscuous mode
[  278.960961][ T7182] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  278.973275][ T7182] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  279.166113][ T7182] team0: Port device team_slave_0 added
[  279.940358][ T4266] Bluetooth: hci5: command 0x041b tx timeout
[  279.947730][ T7182] team0: Port device team_slave_1 added
[  280.082732][ T7182] batman_adv: batadv0: Adding interface: batadv_slave_0
[  280.099550][ T7182] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  280.129203][ T7242] netlink: 56 bytes leftover after parsing attributes in process `syz.4.823'.
[  280.188240][ T7182] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  280.220253][ T7182] batman_adv: batadv0: Adding interface: batadv_slave_1
[  280.235842][ T7182] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  280.288732][ T7182] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  280.352387][ T7246] tap0: tun_chr_ioctl cmd 1074025677
[  280.358566][ T7246] tap0: linktype set to 6
[  280.468117][ T7182] device hsr_slave_0 entered promiscuous mode
[  280.485846][ T7182] device hsr_slave_1 entered promiscuous mode
[  280.502991][ T7182] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  280.519722][ T7182] Cannot create hsr debugfs directory
[  280.559488][ T7251] loop3: detected capacity change from 0 to 256
[  280.614463][ T7251] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d)
[  280.653685][ T7254] netlink: 60 bytes leftover after parsing attributes in process `syz.1.826'.
[  280.685421][ T7254] netlink: 60 bytes leftover after parsing attributes in process `syz.1.826'.
[  280.739725][ T7254] netlink: 60 bytes leftover after parsing attributes in process `syz.1.826'.
[  280.801020][ T7254] netlink: 60 bytes leftover after parsing attributes in process `syz.1.826'.
[  280.911195][ T7256] loop1: detected capacity change from 0 to 512
[  280.986955][ T7256] EXT4-fs (loop1): Ignoring removed nobh option
[  281.009306][ T7182] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  281.047035][ T7256] EXT4-fs error (device loop1): ext4_orphan_get:1400: inode #15: comm syz.1.827: iget: bad i_size value: 38620345925642
[  281.085214][ T7182] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  281.102920][ T7256] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.827: couldn't read orphan inode 15 (err -117)
[  281.127918][ T7182] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  281.135394][ T7256] EXT4-fs (loop1): mounted filesystem without journal. Opts: nobh,auto_da_alloc,data_err=ignore,,errors=continue. Quota mode: writeback.
[  281.152818][ T7182] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  281.302900][ T7258] EXT4-fs error (device loop1): ext4_validate_block_bitmap:429: comm ext4lazyinit: bg 0: block 5: invalid block bitmap
[  281.326319][ T7182] 8021q: adding VLAN 0 to HW filter on device bond0
[  281.434654][ T7182] 8021q: adding VLAN 0 to HW filter on device team0
[  281.544777][ T4537] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  281.600992][ T4537] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  281.656805][ T4537] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  281.696543][ T4537] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  281.729807][ T4537] bridge0: port 1(bridge_slave_0) entered blocking state
[  281.737070][ T4537] bridge0: port 1(bridge_slave_0) entered forwarding state
[  281.772313][ T4537] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  281.836718][ T4537] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  281.873976][ T4537] bridge0: port 2(bridge_slave_1) entered blocking state
[  281.881150][ T4537] bridge0: port 2(bridge_slave_1) entered forwarding state
[  281.926716][ T4537] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  281.958996][ T4339] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  282.033062][ T4228] Bluetooth: hci5: command 0x040f tx timeout
[  282.076517][ T4339] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  282.110720][ T4339] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  282.150738][ T4339] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  282.174433][ T4339] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  282.185367][ T4339] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  282.199236][ T4339] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  282.244402][ T4339] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  282.260955][ T4339] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  282.292260][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  282.316054][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  282.330542][ T7279] netlink: 4595 bytes leftover after parsing attributes in process `syz.1.834'.
[  282.361807][ T7182] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  282.394684][ T7279] netlink: 4595 bytes leftover after parsing attributes in process `syz.1.834'.
[  282.462780][ T7276] netlink: 4595 bytes leftover after parsing attributes in process `syz.1.834'.
[  282.509388][ T7280] netlink: 4595 bytes leftover after parsing attributes in process `syz.1.834'.
[  282.853288][ T7182] 8021q: adding VLAN 0 to HW filter on device batadv0
[  282.861094][ T4339] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  282.869863][ T4339] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  282.874145][ T7299] loop3: detected capacity change from 0 to 512
[  283.107718][ T7299] EXT4-fs (loop3): Ignoring removed nobh option
[  283.450018][ T7299] EXT4-fs error (device loop3): ext4_orphan_get:1400: inode #15: comm syz.3.840: iget: bad i_size value: 38620345925642
[  283.652854][ T7299] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.840: couldn't read orphan inode 15 (err -117)
[  283.716289][ T7299] EXT4-fs (loop3): mounted filesystem without journal. Opts: nobh,auto_da_alloc,data_err=ignore,,errors=continue. Quota mode: writeback.
[  283.846594][ T7308] netlink: 32 bytes leftover after parsing attributes in process `syz.4.841'.
[  284.252607][ T7304] EXT4-fs error (device loop3): ext4_validate_block_bitmap:429: comm ext4lazyinit: bg 0: block 5: invalid block bitmap
[  284.479369][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  284.501555][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  284.549204][ T4266] Bluetooth: hci5: command 0x0419 tx timeout
[  284.641297][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  284.656875][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  284.666661][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  284.711818][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  284.744296][ T7182] device veth0_vlan entered promiscuous mode
[  284.776201][ T7182] device veth1_vlan entered promiscuous mode
[  284.853915][ T4537] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  284.871497][ T4537] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  284.880781][ T4537] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  284.899669][ T4537] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  284.957564][ T7182] device veth0_macvtap entered promiscuous mode
[  285.006696][ T7182] device veth1_macvtap entered promiscuous mode
[  285.504636][ T4299] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  285.737887][ T4299] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  285.805943][ T7182] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  285.862166][ T7182] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  285.952274][ T7182] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  285.984865][ T7182] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  286.003065][ T7353] __nla_validate_parse: 1 callbacks suppressed
[  286.003092][ T7353] netlink: 28 bytes leftover after parsing attributes in process `syz.4.857'.
[  286.020339][ T7182] batman_adv: batadv0: Interface activated: batadv_slave_0
[  286.034741][ T7349] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.856'.
[  286.067054][ T4339] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  286.091675][ T4339] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  286.148871][ T7182] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  286.179233][ T7182] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  286.206984][ T7362] loop0: detected capacity change from 0 to 512
[  286.209635][ T7182] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  286.258562][ T7182] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  286.262519][ T7362] EXT4-fs (loop0): Ignoring removed nobh option
[  286.283125][ T7182] batman_adv: batadv0: Interface activated: batadv_slave_1
[  286.334002][ T7362] EXT4-fs error (device loop0): ext4_orphan_get:1400: inode #15: comm syz.0.860: iget: bad i_size value: 38620345925642
[  286.356022][ T7182] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  286.368050][ T7362] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.860: couldn't read orphan inode 15 (err -117)
[  286.394769][ T7362] EXT4-fs (loop0): mounted filesystem without journal. Opts: nobh,auto_da_alloc,data_err=ignore,,errors=continue. Quota mode: writeback.
[  286.400621][ T7182] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  286.467862][ T7182] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  286.476887][ T7182] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  286.582654][ T4339] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  286.609342][ T4339] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  287.086252][ T4306] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  287.180811][ T4306] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  287.686966][ T4306] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  287.740818][ T4587] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  287.801629][ T4587] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  288.021517][ T4299] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  288.130238][ T7426] netlink: 28 bytes leftover after parsing attributes in process `syz.1.866'.
[  288.485215][ T7426] netlink: 28 bytes leftover after parsing attributes in process `syz.1.866'.
[  288.536300][ T7426] device syzkaller0 entered promiscuous mode
[  291.962049][ T7409] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  292.314824][ T7409] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  292.708446][ T7479] netlink: 28 bytes leftover after parsing attributes in process `syz.4.880'.
[  292.791084][ T7475] autofs4:pid:7475:autofs_fill_super: called with bogus options
[  292.798960][ T7479] netlink: 28 bytes leftover after parsing attributes in process `syz.4.880'.
[  292.827893][ T7409] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  292.872716][ T7479] device syzkaller0 entered promiscuous mode
[  292.920894][ T7409] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  292.981030][ T7488] netlink: 1624 bytes leftover after parsing attributes in process `syz.0.883'.
[  293.306390][ T7502] loop3: detected capacity change from 0 to 512
[  293.336048][ T7499] device syzkaller0 entered promiscuous mode
[  293.774862][ T7510] netlink: 12 bytes leftover after parsing attributes in process `syz.1.890'.
[  294.321461][ T7502] EXT4-fs (loop3): Ignoring removed nobh option
[  294.462005][ T7502] EXT4-fs error (device loop3): ext4_orphan_get:1400: inode #15: comm syz.3.889: iget: bad i_size value: 38620345925642
[  294.526650][ T7502] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.889: couldn't read orphan inode 15 (err -117)
[  294.640109][ T7502] EXT4-fs (loop3): mounted filesystem without journal. Opts: nobh,auto_da_alloc,data_err=ignore,,errors=continue. Quota mode: writeback.
[  295.717816][ T4228] Bluetooth: hci1: command 0x0409 tx timeout
[  295.806085][ T7495] chnl_net:caif_netlink_parms(): no params data found
[  296.521625][ T7539] autofs4:pid:7539:autofs_fill_super: called with bogus options
[  296.910291][ T7546] netlink: 1624 bytes leftover after parsing attributes in process `syz.0.896'.
[  296.915493][ T7548] netlink: 28 bytes leftover after parsing attributes in process `syz.4.897'.
[  296.929128][ T7548] netlink: 28 bytes leftover after parsing attributes in process `syz.4.897'.
[  296.942739][ T7495] bridge0: port 1(bridge_slave_0) entered blocking state
[  296.942779][ T7495] bridge0: port 1(bridge_slave_0) entered disabled state
[  296.983386][ T7495] device bridge_slave_0 entered promiscuous mode
[  297.032422][ T7556] device syzkaller0 entered promiscuous mode
[  297.088305][ T7495] bridge0: port 2(bridge_slave_1) entered blocking state
[  297.120447][ T7495] bridge0: port 2(bridge_slave_1) entered disabled state
[  297.147309][ T7495] device bridge_slave_1 entered promiscuous mode
[  298.088801][ T4266] Bluetooth: hci1: command 0x041b tx timeout
[  298.179293][ T7495] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  298.246691][ T7495] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  298.268290][ T7574] loop4: detected capacity change from 0 to 512
[  298.309369][ T7575] device syzkaller0 entered promiscuous mode
[  298.346713][ T7574] EXT4-fs (loop4): Ignoring removed nobh option
[  298.573825][ T7574] EXT4-fs error (device loop4): ext4_orphan_get:1400: inode #15: comm syz.4.903: iget: bad i_size value: 38620345925642
[  298.591755][ T7574] EXT4-fs error (device loop4): ext4_orphan_get:1405: comm syz.4.903: couldn't read orphan inode 15 (err -117)
[  299.254497][ T7574] EXT4-fs (loop4): mounted filesystem without journal. Opts: nobh,auto_da_alloc,data_err=ignore,,errors=continue. Quota mode: writeback.
[  300.018023][ T7495] team0: Port device team_slave_0 added
[  300.029714][ T7495] team0: Port device team_slave_1 added
[  300.053323][ T7495] batman_adv: batadv0: Adding interface: batadv_slave_0
[  300.060517][ T7495] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  300.097284][ T7495] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  300.316039][ T7495] batman_adv: batadv0: Adding interface: batadv_slave_1
[  300.346054][ T7495] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  300.533192][ T7495] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  300.575104][ T4343] Bluetooth: hci1: command 0x040f tx timeout
[  300.786380][ T7598] autofs4:pid:7598:autofs_fill_super: called with bogus options
[  301.463670][ T7602] netlink: 1624 bytes leftover after parsing attributes in process `syz.3.909'.
[  301.633483][ T7495] device hsr_slave_0 entered promiscuous mode
[  301.677964][ T7495] device hsr_slave_1 entered promiscuous mode
[  301.763262][ T7621] netlink: 12 bytes leftover after parsing attributes in process `syz.1.913'.
[  302.178241][ T7495] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  302.309490][ T7495] Cannot create hsr debugfs directory
[  302.516578][ T7624] loop3: detected capacity change from 0 to 512
[  302.660016][ T4343] Bluetooth: hci1: command 0x0419 tx timeout
[  302.731228][ T7626] device syzkaller0 entered promiscuous mode
[  302.804594][ T7624] EXT4-fs (loop3): Ignoring removed nobh option
[  302.866098][ T7624] EXT4-fs error (device loop3): ext4_orphan_get:1400: inode #15: comm syz.3.914: iget: bad i_size value: 38620345925642
[  302.922552][ T7624] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.914: couldn't read orphan inode 15 (err -117)
[  303.042909][ T7624] EXT4-fs (loop3): mounted filesystem without journal. Opts: nobh,auto_da_alloc,data_err=ignore,,errors=continue. Quota mode: writeback.
[  306.836155][ T7409] device hsr_slave_0 left promiscuous mode
[  306.911689][ T7679] autofs4:pid:7679:autofs_fill_super: called with bogus options
[  306.939766][ T7409] device hsr_slave_1 left promiscuous mode
[  307.016309][ T7409] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  307.114598][ T7409] batman_adv: batadv0: Removing interface: batadv_slave_0
[  307.197654][ T7409] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  307.217227][ T7409] batman_adv: batadv0: Removing interface: batadv_slave_1
[  307.228062][ T7409] device bridge_slave_1 left promiscuous mode
[  307.240778][ T7409] bridge0: port 2(bridge_slave_1) entered disabled state
[  307.259663][ T7409] device bridge_slave_0 left promiscuous mode
[  307.269823][ T7409] bridge0: port 1(bridge_slave_0) entered disabled state
[  307.286101][ T7409] device veth1_macvtap left promiscuous mode
[  307.292503][ T7409] device veth0_macvtap left promiscuous mode
[  307.298600][ T7409] device veth1_vlan left promiscuous mode
[  307.358766][ T7409] device veth0_vlan left promiscuous mode
[  308.717810][ T7409] team0 (unregistering): Port device team_slave_1 removed
[  308.737610][ T7409] team0 (unregistering): Port device team_slave_0 removed
[  308.749538][ T7409] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  308.764643][ T7409] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  309.433333][ T7409] bond0 (unregistering): Released all slaves
[  309.669673][ T7495] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  309.716819][ T7495] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  309.734419][ T7716] loop4: detected capacity change from 0 to 512
[  309.744611][ T7718] netlink: 8 bytes leftover after parsing attributes in process `syz.1.931'.
[  309.747517][ T7495] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  309.770634][ T7700] device syzkaller0 entered promiscuous mode
[  309.798101][ T7495] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  309.828911][ T7716] EXT4-fs (loop4): Ignoring removed nobh option
[  309.971192][ T7716] EXT4-fs error (device loop4): ext4_orphan_get:1400: inode #15: comm syz.4.930: iget: bad i_size value: 38620345925642
[  310.012865][ T7716] EXT4-fs error (device loop4): ext4_orphan_get:1405: comm syz.4.930: couldn't read orphan inode 15 (err -117)
[  310.045641][ T7716] EXT4-fs (loop4): mounted filesystem without journal. Opts: nobh,auto_da_alloc,data_err=ignore,,errors=continue. Quota mode: writeback.
[  310.343804][ T7728] netlink: 12 bytes leftover after parsing attributes in process `syz.1.932'.
[  311.829661][ T7495] 8021q: adding VLAN 0 to HW filter on device bond0
[  312.186012][ T7495] 8021q: adding VLAN 0 to HW filter on device team0
[  312.900438][ T7418] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  312.928308][ T7418] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  312.966139][ T7418] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  313.011282][ T7418] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  313.125025][ T7418] bridge0: port 1(bridge_slave_0) entered blocking state
[  313.132358][ T7418] bridge0: port 1(bridge_slave_0) entered forwarding state
[  313.196091][ T7418] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  313.205879][ T7418] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  313.214538][ T7418] bridge0: port 2(bridge_slave_1) entered blocking state
[  313.221639][ T7418] bridge0: port 2(bridge_slave_1) entered forwarding state
[  313.242567][ T7418] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  313.432682][ T7418] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  313.502934][ T7418] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  313.723900][ T7779] netlink: 12 bytes leftover after parsing attributes in process `syz.1.944'.
[  313.745149][ T7774] device syzkaller0 entered promiscuous mode
[  313.851557][ T7407] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  313.895430][ T7407] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  313.906890][ T7789] loop1: detected capacity change from 0 to 512
[  313.914328][ T7407] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  313.936640][ T7789] EXT4-fs (loop1): Ignoring removed nobh option
[  313.969430][ T7789] EXT4-fs error (device loop1): ext4_orphan_get:1400: inode #15: comm syz.1.945: iget: bad i_size value: 38620345925642
[  313.983164][ T7789] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.945: couldn't read orphan inode 15 (err -117)
[  314.004018][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  314.012705][ T7789] EXT4-fs (loop1): mounted filesystem without journal. Opts: nobh,auto_da_alloc,data_err=ignore,,errors=continue. Quota mode: writeback.
[  314.028091][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  314.213648][ T7495] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  314.272026][ T7495] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  314.646725][ T7418] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  314.713320][ T7418] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  314.807859][ T7418] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  314.859741][ T7418] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  314.945696][ T7418] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  317.375883][ T1421] ieee802154 phy0 wpan0: encryption failed: -22
[  317.382282][ T1421] ieee802154 phy1 wpan1: encryption failed: -22
[  317.384925][ T7418] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  317.424354][ T7418] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  317.460249][ T7836] loop3: detected capacity change from 0 to 512
[  317.475242][ T7495] 8021q: adding VLAN 0 to HW filter on device batadv0
[  317.510295][ T7834] device syzkaller0 entered promiscuous mode
[  317.579411][ T7836] EXT4-fs (loop3): Ignoring removed nobh option
[  317.672462][ T7836] EXT4-fs error (device loop3): ext4_orphan_get:1400: inode #15: comm syz.3.958: iget: bad i_size value: 38620345925642
[  317.724295][ T7836] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.958: couldn't read orphan inode 15 (err -117)
[  317.738167][ T7836] EXT4-fs (loop3): mounted filesystem without journal. Opts: nobh,auto_da_alloc,data_err=ignore,,errors=continue. Quota mode: writeback.
[  319.686147][ T7867] netlink: 60 bytes leftover after parsing attributes in process `syz.4.965'.
[  319.792956][ T7867] netlink: 60 bytes leftover after parsing attributes in process `syz.4.965'.
[  319.811650][ T7868] netlink: 60 bytes leftover after parsing attributes in process `syz.4.965'.
[  319.821735][ T7872] netlink: 60 bytes leftover after parsing attributes in process `syz.4.965'.
[  320.922993][ T7407] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  320.932709][ T7407] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  321.027141][ T4299] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  321.036707][ T4299] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  321.114953][ T4299] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  321.163396][ T4299] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  321.225619][ T7495] device veth0_vlan entered promiscuous mode
[  321.258058][ T7896] device syzkaller0 entered promiscuous mode
[  321.395270][ T7495] device veth1_vlan entered promiscuous mode
[  321.696154][ T7905] loop4: detected capacity change from 0 to 512
[  321.744614][ T7902] netlink: 12 bytes leftover after parsing attributes in process `syz.3.972'.
[  321.759608][ T7418] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  321.770012][ T7418] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  321.811148][ T7905] EXT4-fs (loop4): Ignoring removed nobh option
[  321.859084][ T7495] device veth0_macvtap entered promiscuous mode
[  321.907524][ T7418] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  322.024626][ T7418] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  322.033486][ T7418] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  322.046358][ T7495] device veth1_macvtap entered promiscuous mode
[  322.095386][ T7905] EXT4-fs error (device loop4): ext4_orphan_get:1400: inode #15: comm syz.4.974: iget: bad i_size value: 38620345925642
[  322.108634][ T7905] EXT4-fs error (device loop4): ext4_orphan_get:1405: comm syz.4.974: couldn't read orphan inode 15 (err -117)
[  322.121482][ T7905] EXT4-fs (loop4): mounted filesystem without journal. Opts: nobh,auto_da_alloc,data_err=ignore,,errors=continue. Quota mode: writeback.
[  322.361748][ T7495] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  322.554429][ T7910] EXT4-fs error (device loop4): ext4_validate_block_bitmap:429: comm ext4lazyinit: bg 0: block 5: invalid block bitmap
[  322.775249][ T7495] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  322.991580][ T7495] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  323.033743][ T7495] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  323.083630][ T7495] batman_adv: batadv0: Interface activated: batadv_slave_0
[  323.122677][ T7407] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  323.130835][ T7407] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  324.044819][ T7407] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  324.096399][ T7495] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  324.158756][ T7495] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  324.212033][ T7495] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  324.262280][ T7495] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  324.419728][ T7495] batman_adv: batadv0: Interface activated: batadv_slave_1
[  324.461133][ T7495] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  324.470130][ T7495] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  324.482062][ T7495] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  324.491324][ T7495] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  324.502302][ T7407] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  324.571047][ T7407] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  324.857495][ T7418] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  324.897463][ T7418] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  325.251496][ T7955] netlink: 12 bytes leftover after parsing attributes in process `syz.4.985'.
[  325.267028][ T7946] device syzkaller0 entered promiscuous mode
[  325.283551][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  325.577901][ T7964] loop4: detected capacity change from 0 to 512
[  325.838194][ T7964] EXT4-fs (loop4): Ignoring removed nobh option
[  326.101891][ T7964] EXT4-fs error (device loop4): ext4_orphan_get:1400: inode #15: comm syz.4.988: iget: bad i_size value: 38620345925642
[  326.246766][ T7964] EXT4-fs error (device loop4): ext4_orphan_get:1405: comm syz.4.988: couldn't read orphan inode 15 (err -117)
[  326.297976][ T7964] EXT4-fs (loop4): mounted filesystem without journal. Opts: nobh,auto_da_alloc,data_err=ignore,,errors=continue. Quota mode: writeback.
[  326.429248][  T144] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  326.537910][  T144] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  326.582633][ T7418] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  327.702831][ T7969] EXT4-fs error (device loop4): ext4_validate_block_bitmap:429: comm ext4lazyinit: bg 0: block 5: invalid block bitmap
[  329.823876][ T8013] device syzkaller0 entered promiscuous mode
[  329.880121][ T8019] loop3: detected capacity change from 0 to 512
[  329.991287][ T8019] EXT4-fs (loop3): Ignoring removed nobh option
[  330.046165][ T8019] EXT4-fs error (device loop3): ext4_orphan_get:1400: inode #15: comm syz.3.1001: iget: bad i_size value: 38620345925642
[  330.231831][ T8034] loop4: detected capacity change from 0 to 128
[  330.577837][ T8019] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.1001: couldn't read orphan inode 15 (err -117)
[  330.811079][ T8019] EXT4-fs (loop3): mounted filesystem without journal. Opts: nobh,auto_da_alloc,data_err=ignore,,errors=continue. Quota mode: writeback.
[  333.865088][ T8082] device syzkaller0 entered promiscuous mode
[  333.973405][ T8087] loop6: detected capacity change from 0 to 128
[  334.869711][ T8095] loop6: detected capacity change from 0 to 512
[  335.101683][ T8095] EXT4-fs (loop6): Ignoring removed nobh option
[  335.492008][ T8095] EXT4-fs error (device loop6): ext4_orphan_get:1400: inode #15: comm syz.6.1021: iget: bad i_size value: 38620345925642
[  335.792915][ T8095] EXT4-fs error (device loop6): ext4_orphan_get:1405: comm syz.6.1021: couldn't read orphan inode 15 (err -117)
[  335.804090][ T8103] netlink: 60 bytes leftover after parsing attributes in process `syz.4.1023'.
[  335.851068][ T8095] EXT4-fs (loop6): mounted filesystem without journal. Opts: nobh,auto_da_alloc,data_err=ignore,,errors=continue. Quota mode: writeback.
[  335.851905][ T8103] netlink: 60 bytes leftover after parsing attributes in process `syz.4.1023'.
[  337.413845][ T8103] netlink: 60 bytes leftover after parsing attributes in process `syz.4.1023'.
[  337.506023][ T8116] netlink: 60 bytes leftover after parsing attributes in process `syz.4.1023'.
[  339.014427][ T8142] loop3: detected capacity change from 0 to 128
[  339.543512][ T8146] device syzkaller0 entered promiscuous mode
[  340.243731][ T8156] loop6: detected capacity change from 0 to 512
[  340.431581][ T8156] EXT4-fs (loop6): Ignoring removed nobh option
[  341.519779][ T8156] EXT4-fs error (device loop6): ext4_orphan_get:1400: inode #15: comm syz.6.1036: iget: bad i_size value: 38620345925642
[  341.537260][ T8156] EXT4-fs error (device loop6): ext4_orphan_get:1405: comm syz.6.1036: couldn't read orphan inode 15 (err -117)
[  341.538775][ T8178] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1043'.
[  341.549989][ T8156] EXT4-fs (loop6): mounted filesystem without journal. Opts: nobh,auto_da_alloc,data_err=ignore,,errors=continue. Quota mode: writeback.
[  341.569414][ T8180] netlink: 1041 bytes leftover after parsing attributes in process `syz.0.1042'.
[  341.753107][ T8178] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1043'.
[  341.785335][ T8185] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1043'.
[  342.468696][ T8194] autofs4:pid:8194:autofs_fill_super: called with bogus options
[  343.979501][ T8208] loop3: detected capacity change from 0 to 40427
[  345.070166][ T8208] F2FS-fs (loop3): invalid crc value
[  345.076046][ T8208] F2FS-fs (loop3): invalid crc value
[  345.081469][ T8208] F2FS-fs (loop3): Failed to get valid F2FS checkpoint
[  347.029046][ T8228] device syzkaller0 entered promiscuous mode
[  347.246942][ T8238] netlink: 9 bytes leftover after parsing attributes in process `syz.4.1056'.
[  349.174998][ T8263] autofs4:pid:8263:autofs_fill_super: called with bogus options
[  349.593946][ T8276] ieee802154 phy0 wpan0: encryption failed: -22
[  349.726726][ T8284] device syzkaller0 entered promiscuous mode
[  350.713058][ T8306] loop4: detected capacity change from 0 to 128
[  351.946458][ T8314] loop0: detected capacity change from 0 to 40427
[  352.063232][ T8314] F2FS-fs (loop0): invalid crc value
[  352.071727][ T8314] F2FS-fs (loop0): invalid crc value
[  352.077252][ T8314] F2FS-fs (loop0): Failed to get valid F2FS checkpoint
[  354.237966][ T8334] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  354.245905][ T8334] IPv6: NLM_F_CREATE should be set when creating new route
[  354.253231][ T8334] IPv6: NLM_F_CREATE should be set when creating new route
[  354.260457][ T8334] IPv6: NLM_F_CREATE should be set when creating new route
[  354.298901][ T8335] loop5: detected capacity change from 0 to 4096
[  354.402580][    C0] blk_update_request: I/O error, dev loop5, sector 3968 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  354.455169][    C0] blk_update_request: I/O error, dev loop5, sector 3968 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  354.466420][    C0] Buffer I/O error on dev loop5, logical block 496, async page read
[  354.601081][ T8340] device syzkaller0 entered promiscuous mode
[  354.983541][    T7] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  355.332611][ T8365] loop3: detected capacity change from 0 to 128
[  355.512209][    T7] usb 2-1: Using ep0 maxpacket: 16
[  355.764076][    T7] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  355.867040][    T7] usb 2-1: config 0 interface 0 has no altsetting 0
[  356.136577][ T8383] binder: 8382:8383 unknown command 1074553619
[  356.167965][ T8383] binder: 8382:8383 ioctl c0306201 200000000540 returned -22
[  356.177489][ T8381] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1091'.
[  356.216689][ T8388] binder: 8382:8388 unknown command 1074553620
[  356.251430][ T8388] binder: 8382:8388 ioctl c0306201 200000000640 returned -22
[  356.282465][    T7] usb 2-1: New USB device found, idVendor=15c2, idProduct=0041, bcdDevice=1f.20
[  356.301996][    T7] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  357.262211][    T7] usb 2-1: Product: syz
[  357.266585][    T7] usb 2-1: Manufacturer: syz
[  357.271314][    T7] usb 2-1: SerialNumber: syz
[  357.296872][ T8399] device syzkaller0 entered promiscuous mode
[  357.333241][    T7] usb 2-1: config 0 descriptor??
[  359.708903][    T7] input: iMON Panel, Knob and Mouse(15c2:0041) as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/input/input7
[  359.732149][    C0] imon 2-1:0.0: imon usb_rx_callback_intf0: status(-71)
[  360.345950][ T8426] loop0: detected capacity change from 0 to 128
[  361.343306][    T7] imon:send_packet: packet tx failed (-71)
[  361.538281][    T7] imon 2-1:0.0: panel buttons/knobs setup failed
[  361.654357][ T8443] tmpfs: Bad value for 'mpol'
[  361.666456][ T8443] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1106'.
[  362.392299][    T7] rc_core: IR keymap rc-imon-pad not found
[  362.399678][    T7] Registered IR keymap rc-empty
[  362.406927][    T7] imon 2-1:0.0: Looks like you're trying to use an IR protocol this device does not support
[  362.421708][    T7] imon 2-1:0.0: Unsupported IR protocol specified, overriding to iMON IR protocol
[  362.462955][    T7] imon:send_packet: packet tx failed (-71)
[  362.482254][    T7] imon 2-1:0.0: remote input dev register failed
[  362.488969][    T7] imon 2-1:0.0: imon_init_intf0: rc device setup failed
[  362.560127][ T8456] device syzkaller0 entered promiscuous mode
[  363.566757][    T7] imon 2-1:0.0: unable to initialize intf0, err 0
[  363.604905][    T7] imon:imon_probe: failed to initialize context!
[  363.635542][    T7] imon 2-1:0.0: unable to register, err -19
[  363.677910][    T7] usb 2-1: USB disconnect, device number 5
[  364.483219][ T4228] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  364.902555][ T4228] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b
[  364.932228][ T4228] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  364.996813][ T4228] usb 1-1: config 0 descriptor??
[  365.580033][ T8519] loop1: detected capacity change from 0 to 512
[  366.662560][ T4228] ath6kl: Failed to submit usb control message: -110
[  366.685341][ T4228] ath6kl: unable to send the bmi data to the device: -110
[  366.710272][ T4228] ath6kl: Unable to send get target info: -110
[  366.985454][ T4228] ath6kl: Failed to init ath6kl core: -110
[  367.039228][ T8519] EXT4-fs (loop1): mounted filesystem without journal. Opts: i_version,nodiscard,min_batch_time=0x00000000000003ff,,errors=continue. Quota mode: none.
[  368.022559][ T4228] ath6kl_usb: probe of 1-1:0.0 failed with error -110
[  368.666990][ T4228] usb 1-1: USB disconnect, device number 6
[  369.033250][ T8540] ieee802154 phy0 wpan0: encryption failed: -22
[  370.002155][ T4232] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  370.238228][ T8570] netlink: 'syz.0.1136': attribute type 72 has an invalid length.
[  370.362501][ T4232] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  370.392280][    T7] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  370.392300][ T4232] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  370.458519][ T4232] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  370.491986][ T4232] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  370.517515][ T4232] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  370.550516][ T4232] usb 5-1: config 0 descriptor??
[  370.652275][    T7] usb 2-1: Using ep0 maxpacket: 32
[  371.079740][ T4232] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[  371.175898][ T4232] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[  371.328479][ T4232] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[  371.542309][ T4232] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[  371.562272][ T4232] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[  371.582704][ T4232] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[  371.582869][    T7] usb 2-1: config 0 has an invalid interface number: 51 but max is 0
[  371.596671][ T4232] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[  371.611780][    T7] usb 2-1: config 0 has no interface number 0
[  371.624819][ T4232] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[  371.802584][    T7] usb 2-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  371.822517][    T7] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  371.830564][    T7] usb 2-1: Product: syz
[  371.885905][    T7] usb 2-1: Manufacturer: syz
[  371.890570][    T7] usb 2-1: SerialNumber: syz
[  371.939485][    T7] usb 2-1: config 0 descriptor??
[  372.052200][    T7] quatech2 2-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  372.146450][ T4232] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[  372.154408][ T4232] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[  372.166398][ T4232] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[  372.174387][ T4232] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[  372.181866][ T4232] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[  372.190458][ T4232] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[  372.197964][ T4232] plantronics 0003:047F:FFFF.0003: unknown main item tag 0x0
[  372.217204][ T4232] plantronics 0003:047F:FFFF.0003: No inputs registered, leaving
[  372.259930][    T7] usb 2-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  372.282533][ T4232] plantronics 0003:047F:FFFF.0003: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[  372.345057][    T7] usb 2-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  372.550723][ T4232] usb 5-1: USB disconnect, device number 5
[  373.364599][    C0] quatech-serial ttyUSB0: qt2_process_read_urb - port change to invalid port: 252
[  373.528929][ T8614] fido_id[8614]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.4/usb5/report_descriptor': No such file or directory
[  373.623887][    T7] usb 2-1: USB disconnect, device number 6
[  373.642202][    C0] usb 2-1: qt2_read_bulk_callback - non-zero urb status: -108
[  374.005983][    T7] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  374.660204][    T7] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  374.675907][    T7] quatech2 2-1:0.51: device disconnected
[  374.706826][ T8633] netlink: 'syz.3.1147': attribute type 72 has an invalid length.
[  376.180454][ T6794] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  376.462258][ T6794] usb 4-1: Using ep0 maxpacket: 16
[  376.583244][ T6794] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  376.768527][ T6794] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  376.795069][ T6794] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  376.836124][ T6794] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[  376.865972][ T6794] usb 4-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  377.125341][ T6794] usb 4-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  377.862174][ T8682] device syzkaller0 entered promiscuous mode
[  377.938970][ T6794] usb 4-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  377.947539][ T6794] usb 4-1: Manufacturer: syz
[  377.958086][ T6794] usb 4-1: config 0 descriptor??
[  378.850138][ T1421] ieee802154 phy0 wpan0: encryption failed: -22
[  378.856558][ T1421] ieee802154 phy1 wpan1: encryption failed: -22
[  378.926716][ T8708] netlink: 1752 bytes leftover after parsing attributes in process `syz.1.1164'.
[  379.092251][ T6794] rc_core: IR keymap rc-hauppauge not found
[  379.098217][ T6794] Registered IR keymap rc-empty
[  379.119362][ T6794] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  380.456265][ T6794] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  380.768826][ T6794] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX (2040:b138) as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0
[  380.879369][ T6794] input: Conexant Hybrid TV (cx231xx) MCE IR no TX (2040:b138) as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0/input9
[  381.611178][ T4232] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  381.627150][ T6794] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  382.144033][ T6794] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  382.284997][ T6794] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  382.362230][ T6794] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  382.383289][ T4232] usb 5-1: Using ep0 maxpacket: 16
[  382.402408][ T6794] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  382.492465][ T6794] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  382.502410][ T4232] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  382.544219][ T4232] usb 5-1: config 0 interface 0 has no altsetting 0
[  382.552529][ T6794] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  382.632814][ T6794] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  382.702529][ T6794] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  382.923977][ T4232] usb 5-1: New USB device found, idVendor=15c2, idProduct=0041, bcdDevice=1f.20
[  382.933461][ T6794] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  382.973951][ T4232] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  383.026681][ T6794] mceusb 4-1:0.0: Registered  with mce emulator interface version 1
[  383.043002][ T4232] usb 5-1: Product: syz
[  383.052555][ T6794] mceusb 4-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[  383.064667][ T4232] usb 5-1: Manufacturer: syz
[  383.109276][ T4232] usb 5-1: SerialNumber: syz
[  383.147869][ T6794] usb 4-1: USB disconnect, device number 7
[  383.207927][ T4232] usb 5-1: config 0 descriptor??
[  383.250159][ T8760] netlink: 1752 bytes leftover after parsing attributes in process `syz.0.1176'.
[  383.495330][ T4232] input: iMON Panel, Knob and Mouse(15c2:0041) as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/input/input10
[  384.721541][ T8794] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3)
[  384.728700][ T8794] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  384.755376][ T8794] vhci_hcd vhci_hcd.0: Device attached
[  384.782598][ T4232] rc_core: IR keymap rc-imon-pad not found
[  384.788743][ T4232] Registered IR keymap rc-empty
[  384.825153][ T4232] imon 5-1:0.0: Looks like you're trying to use an IR protocol this device does not support
[  384.871465][ T4232] imon 5-1:0.0: Unsupported IR protocol specified, overriding to iMON IR protocol
[  384.952692][ T4232] rc rc0: iMON Remote (15c2:0041) as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/rc/rc0
[  384.988448][ T4232] input: iMON Remote (15c2:0041) as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/rc/rc0/input11
[  385.173660][ T6794] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  385.262159][    C1] imon 5-1:0.0: imon usb_rx_callback_intf0: status(-71)
[  385.542768][ T6794] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  385.613768][ T4232] imon 5-1:0.0: iMON device (15c2:0041, intf0) on usb<5:6> initialized
[  385.648218][ T6794] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  385.744655][ T4232] usb 5-1: USB disconnect, device number 6
[  385.832027][ T4236] usb 33-1: new low-speed USB device number 2 using vhci_hcd
[  386.281340][ T6794] usb 1-1: New USB device found, idVendor=2040, idProduct=2000, bcdDevice=65.72
[  386.293609][ T6794] usb 1-1: New USB device strings: Mfr=151, Product=0, SerialNumber=0
[  386.306304][ T6794] usb 1-1: Manufacturer: syz
[  386.326987][ T6794] usb 1-1: config 0 descriptor??
[  386.390396][ T6794] smsusb:smsusb_probe: board id=9, interface number 0
[  386.444662][ T6794] smsusb:smsusb_probe: Device initialized with return code -19
[  386.712605][ T8795] usb 33-1: recv xbuf, 0
[  386.742761][ T7413] vhci_hcd: stop threads
[  386.747328][ T7413] vhci_hcd: release socket
[  386.788366][ T7413] vhci_hcd: disconnect device
[  387.001425][ T6794] usb 1-1: USB disconnect, device number 7
[  387.153529][ T8834] netlink: 1752 bytes leftover after parsing attributes in process `syz.6.1189'.
[  388.238069][ T8843] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  388.352150][ T6786] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  388.680464][ T4236] vhci_hcd: vhci_device speed not set
[  388.841529][ T8850] loop4: detected capacity change from 0 to 512
[  388.892237][ T6786] usb 2-1: Using ep0 maxpacket: 16
[  389.012446][ T6786] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  389.075425][ T6786] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  389.201591][ T6786] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  389.335292][ T6786] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[  389.473588][ T6786] usb 2-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  389.753037][ T6786] usb 2-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  389.819467][ T6786] usb 2-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  389.894780][ T6786] usb 2-1: Manufacturer: syz
[  389.937377][ T6786] usb 2-1: config 0 descriptor??
[  390.320126][ T8850] EXT4-fs (loop4): mounted filesystem without journal. Opts: i_version,nodiscard,min_batch_time=0x00000000000003ff,,errors=continue. Quota mode: none.
[  390.992176][ T6786] rc_core: IR keymap rc-hauppauge not found
[  390.998336][ T6786] Registered IR keymap rc-empty
[  391.003892][ T6786] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  391.032306][ T6786] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  391.063288][ T6786] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX (2040:b138) as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0
[  391.076342][ T6785] usb 1-1: new full-speed USB device number 8 using dummy_hcd
[  391.100212][ T6786] input: Conexant Hybrid TV (cx231xx) MCE IR no TX (2040:b138) as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0/input12
[  391.173687][ T6786] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  391.222376][ T6786] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  391.262355][ T6786] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  391.312398][ T6786] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  391.352713][ T6786] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  391.402306][ T6786] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  391.442391][ T6786] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  391.452611][ T6785] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  391.466354][ T6785] usb 1-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  391.492445][ T6786] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  391.532317][ T6786] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  391.571333][ T6786] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  391.623921][ T6786] mceusb 2-1:0.0: Registered  with mce emulator interface version 1
[  391.640595][ T6786] mceusb 2-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[  391.652705][ T6785] usb 1-1: New USB device found, idVendor=041e, idProduct=3263, bcdDevice= 0.40
[  391.680165][ T6785] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  391.697934][ T6785] usb 1-1: Product: syz
[  391.708259][ T6785] usb 1-1: Manufacturer: syz
[  391.719952][ T6785] usb 1-1: SerialNumber: syz
[  391.918673][ T8882] tmpfs: Bad value for 'mpol'
[  392.114063][ T4232] usb 2-1: USB disconnect, device number 7
[  392.200515][ T6785] usb 1-1: USB disconnect, device number 8
[  392.433729][ T8882] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1202'.
[  392.631009][ T8473] udevd[8473]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  393.587180][ T8913] loop0: detected capacity change from 0 to 512
[  393.907900][ T8913] EXT4-fs (loop0): mounted filesystem without journal. Opts: i_version,nodiscard,min_batch_time=0x00000000000003ff,,errors=continue. Quota mode: none.
[  394.529614][ T8920] tmpfs: Bad value for 'mpol'
[  394.542751][ T8920] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1216'.
[  395.658434][ T8928] tmpfs: Bad value for 'mpol'
[  395.671826][ T8928] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1228'.
[  396.014935][ T8927] ------------[ cut here ]------------
[  396.020798][ T8927] wlan0: Failed check-sdata-in-driver check, flags: 0x4
[  396.411789][ T8927] WARNING: CPU: 1 PID: 8927 at net/mac80211/driver-ops.h:172 ieee80211_bss_info_change_notify+0x37b/0x550
[  396.452399][ T8927] Modules linked in:
[  396.456374][ T8927] CPU: 0 PID: 8927 Comm: syz.3.1218 Not tainted syzkaller #0
[  396.470871][ T8927] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  396.490833][ T8927] RIP: 0010:ieee80211_bss_info_change_notify+0x37b/0x550
[  396.504826][ T8927] Code: 39 7e f8 49 8b 84 24 00 06 00 00 49 81 c4 20 06 00 00 48 85 c0 4c 0f 45 e0 48 c7 c7 20 20 39 8b 4c 89 e6 89 ea e8 05 86 71 00 <0f> 0b e9 07 fd ff ff e8 a9 2d 39 f8 0f 0b e9 b1 fe ff ff e8 9d 2d
[  396.536898][ T8927] RSP: 0018:ffffc90003a2f248 EFLAGS: 00010246
[  396.559066][ T8927] RAX: 231db71eaa635000 RBX: 0000000000400000 RCX: 0000000000080000
[  396.577458][ T8927] RDX: ffffc9000e45a000 RSI: 0000000000004c0a RDI: 0000000000004c0b
[  396.607770][ T8927] RBP: 0000000000000004 R08: ffff8880b9133d7f R09: 1ffff110172267af
[  396.636396][ T8927] R10: dffffc0000000000 R11: ffffed10172267b0 R12: ffff88806063c000
[  396.657371][ T8927] R13: ffff88806063d290 R14: ffff888025b90e40 R15: ffff88806063e268
[  396.669527][ T8927] FS:  00007f080586d6c0(0000) GS:ffff8880b9100000(0000) knlGS:0000000000000000
[  396.686832][ T8927] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  396.697498][ T8927] CR2: 0000001b32819ff8 CR3: 0000000054bf5000 CR4: 00000000003506e0
[  396.711120][ T4231] usb 2-1: new full-speed USB device number 8 using dummy_hcd
[  396.721606][ T8927] Call Trace:
[  396.730016][ T8927]  <TASK>
[  396.736410][ T8927]  ? netif_carrier_off+0x31/0xc0
[  396.741410][ T8927]  ieee80211_ocb_leave+0x26f/0x320
[  396.751764][ T8927]  __cfg80211_leave_ocb+0x219/0x3f0
[  396.760135][ T8927]  cfg80211_leave_ocb+0x53/0x70
[  396.770142][ T8927]  cfg80211_change_iface+0x4f1/0xeb0
[  396.778190][ T8927]  nl80211_set_interface+0x5a7/0x7e0
[  396.788831][ T8927]  ? nl80211_dump_interface+0x5c0/0x5c0
[  396.797850][ T8927]  ? mutex_lock_nested+0x17/0x20
[  396.809796][ T8927]  genl_rcv_msg+0xcea/0xf90
[  396.817121][ T8927]  ? genl_bind+0x380/0x380
[  396.821773][ T8927]  ? verify_lock_unused+0x140/0x140
[  396.835385][ T8927]  ? verify_lock_unused+0x140/0x140
[  396.840687][ T8927]  ? nl80211_dump_interface+0x5c0/0x5c0
[  396.850270][ T8927]  netlink_rcv_skb+0x1f5/0x440
[  396.858903][ T8927]  ? genl_bind+0x380/0x380
[  396.867174][ T8927]  ? netlink_ack+0xb50/0xb50
[  396.875902][ T8927]  ? __lock_acquire+0x7d10/0x7d10
[  396.881002][ T8927]  ? down_read+0x1aa/0x2e0
[  396.889290][ T8927]  genl_rcv+0x24/0x40
[  396.897378][ T8927]  netlink_unicast+0x774/0x920
[  396.907671][ T8927]  netlink_sendmsg+0x8ba/0xbe0
[  396.917780][ T8927]  ? netlink_getsockopt+0x570/0x570
[  396.927012][ T8927]  ? aa_sock_msg_perm+0x94/0x150
[  396.935857][ T8927]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  396.941292][ T8927]  ? security_socket_sendmsg+0x7c/0xa0
[  396.950669][ T8927]  ? netlink_getsockopt+0x570/0x570
[  396.959903][ T8927]  ____sys_sendmsg+0x5b7/0x8f0
[  396.968576][ T8927]  ? __sys_sendmsg_sock+0x30/0x30
[  396.981468][ T8927]  ? import_iovec+0x6f/0xa0
[  396.989846][ T8927]  ___sys_sendmsg+0x236/0x2e0
[  396.998642][ T8927]  ? __sys_sendmsg+0x2a0/0x2a0
[  397.007291][ T8927]  __se_sys_sendmsg+0x1af/0x290
[  397.014291][ T8927]  ? __x64_sys_sendmsg+0x80/0x80
[  397.019547][ T8927]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[  397.028136][ T8927]  ? lockdep_hardirqs_on+0x94/0x140
[  397.033817][ T8927]  do_syscall_64+0x4c/0xa0
[  397.038361][ T8927]  ? clear_bhb_loop+0x30/0x80
[  397.044234][ T8927]  ? clear_bhb_loop+0x30/0x80
[  397.048952][ T8927]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  397.061623][ T8927] RIP: 0033:0x7f0807613799
[  397.066181][ T8927] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  397.072392][ T4231] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  397.086217][ T8927] RSP: 002b:00007f080586d028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  397.103270][ T4231] usb 2-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  397.106444][ T8927] RAX: ffffffffffffffda RBX: 00007f080788cfa0 RCX: 00007f0807613799
[  397.123342][ T8927] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000003
[  397.131359][ T8927] RBP: 00007f08076a9bd9 R08: 0000000000000000 R09: 0000000000000000
[  397.139620][ T8927] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  397.147687][ T8927] R13: 00007f080788d038 R14: 00007f080788cfa0 R15: 00007ffd204a34c8
[  397.155918][ T8927]  </TASK>
[  397.158964][ T8927] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  397.166320][ T8927] CPU: 0 PID: 8927 Comm: syz.3.1218 Not tainted syzkaller #0
[  397.173688][ T8927] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  397.183856][ T8927] Call Trace:
[  397.187150][ T8927]  <TASK>
[  397.190075][ T8927]  dump_stack_lvl+0x188/0x250
[  397.194853][ T8927]  ? show_regs_print_info+0x20/0x20
[  397.200090][ T8927]  ? load_image+0x400/0x400
[  397.204601][ T8927]  panic+0x2e5/0x810
[  397.208502][ T8927]  ? bpf_jit_dump+0xd0/0xd0
[  397.213024][ T8927]  ? ieee80211_bss_info_change_notify+0x37b/0x550
[  397.219477][ T8927]  __warn+0x248/0x2b0
[  397.223484][ T8927]  ? ieee80211_bss_info_change_notify+0x37b/0x550
[  397.230013][ T8927]  report_bug+0x1b7/0x2e0
[  397.234882][ T8927]  handle_bug+0x3a/0x70
[  397.239157][ T8927]  exc_invalid_op+0x16/0x40
[  397.243665][ T8927]  asm_exc_invalid_op+0x16/0x20
[  397.248556][ T8927] RIP: 0010:ieee80211_bss_info_change_notify+0x37b/0x550
[  397.255616][ T8927] Code: 39 7e f8 49 8b 84 24 00 06 00 00 49 81 c4 20 06 00 00 48 85 c0 4c 0f 45 e0 48 c7 c7 20 20 39 8b 4c 89 e6 89 ea e8 05 86 71 00 <0f> 0b e9 07 fd ff ff e8 a9 2d 39 f8 0f 0b e9 b1 fe ff ff e8 9d 2d
[  397.272387][ T4231] usb 2-1: New USB device found, idVendor=041e, idProduct=3263, bcdDevice= 0.40
[  397.275677][ T8927] RSP: 0018:ffffc90003a2f248 EFLAGS: 00010246
[  397.275704][ T8927] RAX: 231db71eaa635000 RBX: 0000000000400000 RCX: 0000000000080000
[  397.291451][ T4231] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  397.298949][ T8927] RDX: ffffc9000e45a000 RSI: 0000000000004c0a RDI: 0000000000004c0b
[  397.298971][ T8927] RBP: 0000000000000004 R08: ffff8880b9133d7f R09: 1ffff110172267af
[  397.298985][ T8927] R10: dffffc0000000000 R11: ffffed10172267b0 R12: ffff88806063c000
[  397.298999][ T8927] R13: ffff88806063d290 R14: ffff888025b90e40 R15: ffff88806063e268
[  397.299033][ T8927]  ? ieee80211_bss_info_change_notify+0x37b/0x550
[  397.299061][ T8927]  ? netif_carrier_off+0x31/0xc0
[  397.317290][ T4231] usb 2-1: Product: syz
[  397.323392][ T8927]  ieee80211_ocb_leave+0x26f/0x320
[  397.323435][ T8927]  __cfg80211_leave_ocb+0x219/0x3f0
[  397.323464][ T8927]  cfg80211_leave_ocb+0x53/0x70
[  397.323494][ T8927]  cfg80211_change_iface+0x4f1/0xeb0
[  397.323528][ T8927]  nl80211_set_interface+0x5a7/0x7e0
[  397.323561][ T8927]  ? nl80211_dump_interface+0x5c0/0x5c0
[  397.338420][ T4231] usb 2-1: Manufacturer: syz
[  397.339619][ T8927]  ? mutex_lock_nested+0x17/0x20
[  397.346449][ T4231] usb 2-1: SerialNumber: syz
[  397.350965][ T8927]  genl_rcv_msg+0xcea/0xf90
[  397.351012][ T8927]  ? genl_bind+0x380/0x380
[  397.410097][ T8927]  ? verify_lock_unused+0x140/0x140
[  397.415319][ T8927]  ? verify_lock_unused+0x140/0x140
[  397.420563][ T8927]  ? nl80211_dump_interface+0x5c0/0x5c0
[  397.426211][ T8927]  netlink_rcv_skb+0x1f5/0x440
[  397.430978][ T8927]  ? genl_bind+0x380/0x380
[  397.435395][ T8927]  ? netlink_ack+0xb50/0xb50
[  397.440001][ T8927]  ? __lock_acquire+0x7d10/0x7d10
[  397.445127][ T8927]  ? down_read+0x1aa/0x2e0
[  397.449579][ T8927]  genl_rcv+0x24/0x40
[  397.453576][ T8927]  netlink_unicast+0x774/0x920
[  397.458476][ T8927]  netlink_sendmsg+0x8ba/0xbe0
[  397.463258][ T8927]  ? netlink_getsockopt+0x570/0x570
[  397.468699][ T8927]  ? aa_sock_msg_perm+0x94/0x150
[  397.473671][ T8927]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  397.479092][ T8927]  ? security_socket_sendmsg+0x7c/0xa0
[  397.484573][ T8927]  ? netlink_getsockopt+0x570/0x570
[  397.489777][ T8927]  ____sys_sendmsg+0x5b7/0x8f0
[  397.494568][ T8927]  ? __sys_sendmsg_sock+0x30/0x30
[  397.499624][ T8927]  ? import_iovec+0x6f/0xa0
[  397.504145][ T8927]  ___sys_sendmsg+0x236/0x2e0
[  397.508823][ T8927]  ? __sys_sendmsg+0x2a0/0x2a0
[  397.513730][ T8927]  __se_sys_sendmsg+0x1af/0x290
[  397.518601][ T8927]  ? __x64_sys_sendmsg+0x80/0x80
[  397.523562][ T8927]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[  397.529588][ T8927]  ? lockdep_hardirqs_on+0x94/0x140
[  397.534954][ T8927]  do_syscall_64+0x4c/0xa0
[  397.539416][ T8927]  ? clear_bhb_loop+0x30/0x80
[  397.544153][ T8927]  ? clear_bhb_loop+0x30/0x80
[  397.548944][ T8927]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  397.554850][ T8927] RIP: 0033:0x7f0807613799
[  397.559289][ T8927] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  397.579506][ T8927] RSP: 002b:00007f080586d028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  397.587948][ T8927] RAX: ffffffffffffffda RBX: 00007f080788cfa0 RCX: 00007f0807613799
[  397.596047][ T8927] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000003
[  397.604131][ T8927] RBP: 00007f08076a9bd9 R08: 0000000000000000 R09: 0000000000000000
[  397.612120][ T8927] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  397.620119][ T8927] R13: 00007f080788d038 R14: 00007f080788cfa0 R15: 00007ffd204a34c8
[  397.628153][ T8927]  </TASK>
[  397.631298][ T8927] Kernel Offset: disabled
[  397.636040][ T8927] Rebooting in 86400 seconds..