last executing test programs:

5m30.160877951s ago: executing program 3 (id=288):
socket$nl_route(0x10, 0x3, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x8040, 0x20)
ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r1, 0x40081271, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
r4 = gettid()
r5 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$inet6_int(r1, 0x29, 0x18, &(0x7f0000000100)=0x3, 0x4)
sendmsg$nl_route(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000800)=@can_newroute={0x14, 0x18, 0x1, 0x70bd29, 0x25dfdbfd, {0x1d, 0x1, 0x4}}, 0x14}}, 0x4c0c8)
tkill(r4, 0xb)
r6 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000000), 0x600, 0x0)
r7 = epoll_create(0x2)
epoll_ctl$EPOLL_CTL_ADD(r7, 0x1, r6, &(0x7f0000009b80)={0x40000012})
read$FUSE(r6, &(0x7f0000000500)={0x2020}, 0x2020)

5m29.147583293s ago: executing program 3 (id=293):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000000)=ANY=[@ANYBLOB="b8000000190001030000000000000000fc0100000000000000000000000100003ed300000000000000000000000000000000000000000000020010"], 0xb8}}, 0x0)

5m29.028814036s ago: executing program 3 (id=295):
socketpair$unix(0x1, 0x2, 0x0, 0x0)
r0 = accept$unix(0xffffffffffffffff, &(0x7f0000000340)=@abs, 0x0)
connect$unix(r0, 0x0, 0x0)
fcntl$lock(0xffffffffffffffff, 0x7, 0x0)
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000600)='./file1\x00', 0xd84db, 0x0, 0x0, 0x0, &(0x7f0000000100))
setfsgid(0xee00)
setfsgid(0xee00)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0xd40, 0xd2)
accept4$unix(r1, &(0x7f0000000100)=@abs, &(0x7f0000000300)=0x6e, 0x800)
close(r1)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$inet6(r1, &(0x7f0000000180)={0xa, 0x3, 0x3, @private0, 0x9}, 0x1c)
setsockopt$TIPC_MCAST_REPLICAST(r2, 0x10f, 0x86)
sendmsg$TIPC_NL_NODE_GET(0xffffffffffffffff, &(0x7f0000002900)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48c0}, 0xc0c4)
r3 = syz_open_dev$usbmon(&(0x7f0000000080), 0x0, 0x0)
r4 = syz_open_dev$usbfs(&(0x7f0000000040), 0x20000007d, 0x0)
ioctl$MON_IOCX_GET(r3, 0x40189206, &(0x7f0000000280)={&(0x7f00000002c0), 0x0})
r5 = dup3(r3, r4, 0x0)
ioctl$MON_IOCX_GETX(r5, 0x4018920a, &(0x7f00000001c0)={&(0x7f00000012c0), &(0x7f0000002940)=""/4083, 0xff3})

5m29.001508217s ago: executing program 3 (id=296):
r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000280)='ns/pid_for_children\x00')
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000300)={[{@noauto_da_alloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1}}, {@dioread_lock}, {@norecovery}, {@discard}, {@lazytime}, {@noload}, {@usrquota}, {@noauto_da_alloc}]}, 0xfe, 0x54d, &(0x7f0000000400)="$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")
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0)
mkdir(&(0x7f0000000000)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000000c0)='./bus\x00')
mount$overlay(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000001c0)={[{@redirect_dir_nofollow}, {@nfs_export_on}, {@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2241, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000380)={'pimreg\x00', 0x5005})
ioctl$TUNSETLINK(r1, 0x400454cd, 0x20)
r2 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$FIDEDUPERANGE(r1, 0xc0189436, &(0x7f0000000040)={0x2bf7fb4, 0x7, 0x8, 0x0, 0x0, [{{r0}, 0x8000000000000000}, {{r0}, 0x2}, {{r0}, 0x3}, {{r0}, 0xffffffff}, {{r0}, 0x2}, {{r0}, 0xf4}, {{r0}, 0x8}, {{r2}, 0x3}]})
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCPKT(r3, 0x5420, &(0x7f0000000340)=0x8)
readv(r3, &(0x7f0000000280)=[{&(0x7f0000001000)=""/145, 0x91}], 0x1)
ioctl$TCSETS(r3, 0x5402, &(0x7f0000000000)={0x340000, 0x4d2, 0xde, 0x84, 0x16, "bc113800000000000000000600"})
syz_open_procfs$namespace(0x0, &(0x7f00000002c0)='ns/pid\x00')

5m28.523722903s ago: executing program 3 (id=298):
r0 = socket$nl_route(0x10, 0x3, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000180)=ANY=[@ANYBLOB="aaaaaaaaaaaa00000000000286dd6018232500088800fe8000000000000000000000000000bbfe8000000000000000000000000000aa0000010100000008"], 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000140)={'vcan0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000340)=ANY=[@ANYBLOB="240000001800010000000000010000001d01000008000900", @ANYRES32=r1, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r1], 0x24}}, 0x2000c034)
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000300)='./file2\x00', 0x8c80, &(0x7f00000006c0)=ANY=[@ANYBLOB='fmask=00000000000000000000001,umask=00000000000020000000002,utf8,keep_last_dots,allow_utime=00000000000000000004001,errors=continue,discard,uid=', @ANYRESHEX=0x0, @ANYBLOB="2c696f636861727365743d63703835302c696f636861727365743d69736f383835392d312c006b95def57e2522c1bea829c23d304a63a4dbc03e4e15b41ada21c9a1dd3aad8a353a45e2fb41ed411833b1789f3d88f528c72dcbb5e1aea5dab11e69a77f2b692198fa6cd5c07eae4e91f2350fa2e360df77ba73081b1114f7c77978a4e105bf40f0bfca515e2bbb2552ca497c842e3ebb25e85344d0e964a97a3875dd9cc56d8fda567e4c9f0589ef0b"], 0x1, 0x1510, &(0x7f0000003640)="$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")
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000080)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x399446c, 0x0, 0x1, 0x0, &(0x7f0000000080))
socket$inet_udp(0x2, 0x2, 0x0)
creat(&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x8)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r2 = socket(0xa, 0x1, 0x0)
setsockopt$inet6_group_source_req(r2, 0x29, 0x2a, &(0x7f00000001c0)={0x3, {{0xa, 0x4e24, 0x2, @mcast1, 0xfffffffe}}, {{0xa, 0x4e08, 0x4a3, @private2, 0x4f0}}}, 0x108)

5m26.641370632s ago: executing program 3 (id=307):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r0, 0x220c)
r1 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$DCCPDIAG_GETSOCK(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[@ANYBLOB="4c00000012000301000000000000000000009db700ef00000000010004000000000000000000000000000000000000000000000000000000691d0f76e77044d1eb94"], 0x4c}, 0x1, 0x0, 0x0, 0x20000000}, 0x800)

5m26.452602398s ago: executing program 32 (id=307):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r0, 0x220c)
r1 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$DCCPDIAG_GETSOCK(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[@ANYBLOB="4c00000012000301000000000000000000009db700ef00000000010004000000000000000000000000000000000000000000000000000000691d0f76e77044d1eb94"], 0x4c}, 0x1, 0x0, 0x0, 0x20000000}, 0x800)

19.544458682s ago: executing program 1 (id=1291):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000040)=0x7)
r1 = eventfd2(0x8, 0x0)
ppoll(&(0x7f0000000500)=[{r1, 0x8000}], 0x1, 0x0, 0x0, 0x0)
write$eventfd(r1, &(0x7f0000000140)=0xfffffffffffffffc, 0x8)
read(r1, &(0x7f0000000480)=""/82, 0x52)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0x10, &(0x7f0000000000)={[{@min_batch_time={'min_batch_time', 0x3d, 0x1cc4}}]}, 0x5, 0x7eb, &(0x7f00000004c0)="$eJzs3c9rXFsdAPDvnUx+mLYmgmDrKiBooGRiamwVXFRciGChoGvbYTINNZNMyUxKEwK1iOBG0OJC0E3XVevOrT+2+i/oRkRaqqbltbzFI487P5KZZCad9E1m3ms+H7jJOffHnPO9P849yT3cCeDUmkl/ZCIuRMTPk4ipxvwkIkZrqWzE1fp6r3a2C+mUxO7u9/6X1NZ5ubNdiJZtYnIyzjQy5yPiLz+JuJg5XG5lc2slXyoV1xv5+erqnfnK5tbc7dX8cnG5uHZ5YXHx0pWvXhnvX6zv/X3r7LNffPtLv7/6/o8/9+Rnf03iapxtLGuNo19mYqa+T2I03YVtvtXvwoYsGXYFeCvppTlSv8rjQkxlY6z3bbMnWTEA4MTcj4hdAOCUSdz/AeCUaf4f4OXOdiGddu8P9/8Rg/b8mxExUY+/+XyzviTbeGY3UXsOOvkyaXvekUTEdB/Kn4mI3/zxB79Npzih55AAnfzoQUTcnJ5ptv/77U9yaMxCXe8DMr7cTBwxOGDmQF77B4Pzp7T/87X9/t/+9ZfZ6/9Eh/7PeIdr923MRPuIk8PXf+ZpH4rpKu3/fWN0f2zbq5b4G6ZHGrlztT7faHLrdqmYtm2fjojZGB1P8wudP742vGz2xQcv2ua2RNza//v/wx8+TstPf++vkXmaPdDkLuWr+X7Ennr+IOLz2U7xJ3vHP+nS/73eYxnf+fpPf91tWRp/Gm9zao//5EeV7T6K+GJ0jr8paYxPbB6GtvGJl+drp8N886To4A//+tVkt/Jbj386peXX/xY4199Au0iP/+TR8U8nreM1K8cv42+Ppv4ce+NJ23WPv6nz+T+WfL+Wbl5K9/LV6vpCxFjy3cPzL+1v28w310/jn/1C5+v/qPM/jeVmj/Fnn/33d92W7cXfnHEo/oaJHgs7pjT+pWMd/46J9E/hLovypSevVka6ld/b8V9MEyOzjTm9tH9da5ovlcZa1nnrHQcAAAAAAAAAAAAAAAAAAAAAAAAAx5CpvaQ0yeT20plMLhe17/D+bExmSuVK9eKt8sbaUv1lptMxOh4RtVddTrW8D3Wh8T78Zv7SgfxXIuIzEfHL8U/V8rlCubQ07OABAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoOFMl+//T/1nvP779VBrCACciIk3rvGiOJCKAAAD8+b7f0SMn3w9AIDB6en+DwC8U9z/AeD0mcgMuwYAwKBNRGSHXQcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADeadevXUun3dc724U0v3R3c2OlfHduqVhZya1uFHKF8vqd3HK5vFwq5grl1ZZN/9Hp80rl8p3FWNu4N18tVqrzlc2tG6vljbXqjdur+eXijeLowCIDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgN5VNrdW8qVScb2ReDwZ0T5nQImRRoX6+clzZwcdxSASu1P1PfVxqU/fExMH5/x77p/nj9rq4aHTWOIjJ4bZKgEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB8cnwYAAD//0ldFl4=")
ioctl$sock_ipv6_tunnel_SIOCGETPRL(0xffffffffffffffff, 0x89f4, &(0x7f0000019380)={'sit0\x00', &(0x7f0000019340)={@multicast2, 0x0, 0x0, 0x30, 0x0, [{@local}, {@multicast1}, {@private}]}})
r2 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000000), 0x103902, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x46342, 0x1af)
sendfile(r3, r2, 0x0, 0xfffa83)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
syz_kvm_setup_syzos_vm$x86(0xffffffffffffffff, &(0x7f00001e0000/0x400000)=nil)
r4 = userfaultfd(0x80001)
ioctl$UFFDIO_REGISTER(r4, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2})
ioctl$XFS_IOC_PATH_TO_HANDLE(r3, 0xc0385869, &(0x7f0000019280)={<r5=>r3, &(0x7f0000000140)='/dev/urandom\x00', 0x1, &(0x7f00000001c0)={@align=0x4, {0x8, 0xc, 0x9, 0xfffffffffffffff8}}, 0x7, &(0x7f0000019200)={@_ha_fsid}, &(0x7f0000019240)=0xfc})
ioctl$SNDRV_TIMER_IOCTL_SELECT(r5, 0x40345410, &(0x7f00000192c0)={{0x0, 0x3, 0xffffffff, 0x2, 0x9}})
ioctl$UFFDIO_COPY(r4, 0xc028aa05, &(0x7f0000000180)={&(0x7f00002b9000/0x400000)=nil, &(0x7f00003ab000/0x2000)=nil, 0x400000, 0x2, 0x2})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x4008032, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
r6 = getpgrp(0xffffffffffffffff)
capset(&(0x7f0000000040)={0x20071026, r6}, &(0x7f0000000080)={0x401, 0x6, 0x2, 0x84, 0xffffffdf, 0x40})
r7 = socket$unix(0x1, 0x0, 0x0)
fcntl$F_GET_FILE_RW_HINT(r7, 0x40d, &(0x7f0000019300))
pread64(0xffffffffffffffff, &(0x7f0000000200)=""/102400, 0x19000, 0x1000000000)

18.301399812s ago: executing program 1 (id=1298):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000240)=0x9, 0x4)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
ioctl$EXT4_IOC_GETSTATE(r0, 0x40046629, &(0x7f0000000000))
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000001080)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000040)=ANY=[@ANYBLOB="240000001200010000020000000000001000000023cc"], 0x24}], 0x1}, 0x4000800)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000000180)=[{&(0x7f00000001c0)="580000001400add427323b472545b4560a117fffffff81000e220e227f000008925aa80013007b00090080007f000001e809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee000000deff00000002000000", 0x57}], 0x1)

18.210514285s ago: executing program 1 (id=1300):
syz_mount_image$ext4(&(0x7f0000000bc0)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x8000, &(0x7f00000000c0), 0x2, 0xbd1, &(0x7f0000001340)="$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")
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6d71b000)
unshare(0x62020600)
fsconfig$FSCONFIG_SET_BINARY(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
add_key$keyring(&(0x7f0000000100), 0x0, 0x0, 0x0, 0xfffffffffffffffe)
syz_mount_image$vfat(&(0x7f0000000b00), &(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x191f4c2, 0x0, 0x42, 0x0, &(0x7f0000000140))
r0 = open(&(0x7f0000000100)='./file1\x00', 0x147842, 0x88)
preadv2(r0, &(0x7f0000000040)=[{0x0}], 0x1, 0x0, 0x0, 0x7)

17.783865718s ago: executing program 5 (id=1303):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0x10, &(0x7f0000000000)={[{@min_batch_time={'min_batch_time', 0x3d, 0x1cc4}}]}, 0x5, 0x7eb, &(0x7f00000004c0)="$eJzs3c9rXFsdAPDvnUx+mLYmgmDrKiBooGRiamwVXFRciGChoGvbYTINNZNMyUxKEwK1iOBG0OJC0E3XVevOrT+2+i/oRkRaqqbltbzFI487P5KZZCad9E1m3ms+H7jJOffHnPO9P849yT3cCeDUmkl/ZCIuRMTPk4ipxvwkIkZrqWzE1fp6r3a2C+mUxO7u9/6X1NZ5ubNdiJZtYnIyzjQy5yPiLz+JuJg5XG5lc2slXyoV1xv5+erqnfnK5tbc7dX8cnG5uHZ5YXHx0pWvXhnvX6zv/X3r7LNffPtLv7/6/o8/9+Rnf03iapxtLGuNo19mYqa+T2I03YVtvtXvwoYsGXYFeCvppTlSv8rjQkxlY6z3bbMnWTEA4MTcj4hdAOCUSdz/AeCUaf4f4OXOdiGddu8P9/8Rg/b8mxExUY+/+XyzviTbeGY3UXsOOvkyaXvekUTEdB/Kn4mI3/zxB79Npzih55AAnfzoQUTcnJ5ptv/77U9yaMxCXe8DMr7cTBwxOGDmQF77B4Pzp7T/87X9/t/+9ZfZ6/9Eh/7PeIdr923MRPuIk8PXf+ZpH4rpKu3/fWN0f2zbq5b4G6ZHGrlztT7faHLrdqmYtm2fjojZGB1P8wudP742vGz2xQcv2ua2RNza//v/wx8+TstPf++vkXmaPdDkLuWr+X7Ennr+IOLz2U7xJ3vHP+nS/73eYxnf+fpPf91tWRp/Gm9zao//5EeV7T6K+GJ0jr8paYxPbB6GtvGJl+drp8N886To4A//+tVkt/Jbj386peXX/xY4199Au0iP/+TR8U8nreM1K8cv42+Ppv4ce+NJ23WPv6nz+T+WfL+Wbl5K9/LV6vpCxFjy3cPzL+1v28w310/jn/1C5+v/qPM/jeVmj/Fnn/33d92W7cXfnHEo/oaJHgs7pjT+pWMd/46J9E/hLovypSevVka6ld/b8V9MEyOzjTm9tH9da5ovlcZa1nnrHQcAAAAAAAAAAAAAAAAAAAAAAAAAx5CpvaQ0yeT20plMLhe17/D+bExmSuVK9eKt8sbaUv1lptMxOh4RtVddTrW8D3Wh8T78Zv7SgfxXIuIzEfHL8U/V8rlCubQ07OABAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoOFMl+//T/1nvP779VBrCACciIk3rvGiOJCKAAAD8+b7f0SMn3w9AIDB6en+DwC8U9z/AeD0mcgMuwYAwKBNRGSHXQcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADeadevXUun3dc724U0v3R3c2OlfHduqVhZya1uFHKF8vqd3HK5vFwq5grl1ZZN/9Hp80rl8p3FWNu4N18tVqrzlc2tG6vljbXqjdur+eXijeLowCIDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgN5VNrdW8qVScb2ReDwZ0T5nQImRRoX6+clzZwcdxSASu1P1PfVxqU/fExMH5/x77p/nj9rq4aHTWOIjJ4bZKgEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB8cnwYAAD//0ldFl4=")
syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
mkdir(0x0, 0x8)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f0000000300)={0x0, {0x2, 0x0, @dev}, {0x2, 0x4e24, @remote}, {0x2, 0x0, @multicast1}, 0xaf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x200})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000002340)=ANY=[@ANYBLOB="44000000100001002abd7000fcdbdf2500000000", @ANYRES32=0x0, @ANYBLOB="8111000000000000140003006272696467655f736c6176655f30000008000400d400"], 0x44}}, 0x0)
r4 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000000), 0x103902, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x46342, 0x1af)
sendfile(r5, r4, 0x0, 0xfffa83)

14.856238351s ago: executing program 1 (id=1307):
socket$nl_sock_diag(0x10, 0x3, 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_procfs(0x0, &(0x7f0000000300)='task\x00')
getdents(r1, 0xffffffffffffffff, 0x5a)
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(r2, &(0x7f0000000040), 0x0, 0x40010202, 0x0)
r3 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_group_source_req(r3, 0x29, 0x2e, &(0x7f0000000200)={0x1, {{0xa, 0x0, 0x8e3, @mcast1={0xff, 0x7}}}, {{0xa, 0x1, 0x4, @ipv4={'\x00', '\xff\xff', @empty}, 0x3}}}, 0x108)
r4 = syz_open_procfs(0x0, &(0x7f00000003c0)='net/mcfilter6\x00')
preadv(r4, &(0x7f00000000c0)=[{&(0x7f0000000600)=""/128, 0x80}], 0x1, 0x113, 0x2)

14.55216151s ago: executing program 4 (id=1309):
openat$ptp0(0xffffffffffffff9c, &(0x7f00000003c0), 0x40001, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = getpid()
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000240)={'\x00', 0x71, 0x6, 0x400, 0x1, 0x7, r1})
sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000000900)={'bridge0\x00', @remote})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000180)={0xffffffffffffffff, &(0x7f0000001380), 0x0, 0x2}, 0x20)
ioctl$SIOCSIFHWADDR(r5, 0x89a1, &(0x7f0000000900)={'bridge0\x00', @broadcast})
sendmsg$nl_route(r0, 0x0, 0x4004000)
r6 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000180), 0x2982, 0x0)
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/timer_list\x00', 0x0, 0x0)
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r8, 0x29, 0x40, &(0x7f00000002c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x360, 0x128, 0x1170, 0x1170, 0x128, 0x1170, 0x290, 0x1398, 0x1398, 0x290, 0x1398, 0x3, 0x0, {[{{@ipv6={@ipv4={'\x00', '\xff\xff', @multicast2}, @private2={0xfc, 0x2, '\x00', 0x1}, [0xffffffff, 0xff000000], [0x0, 0x0, 0x0, 0xffffff00], 'veth0_vlan\x00', 'veth0_to_hsr\x00', {}, {}, 0x2e, 0x0, 0x0, 0x46}, 0x0, 0x108, 0x128, 0x0, {}, [@common=@inet=@socket2={{0x28}, 0x1}, @common=@unspec=@quota={{0x38}, {0x1, 0x0, 0x80000000, {0x5}}}]}, @unspec=@NOTRACK={0x20}}, {{@ipv6={@local, @private0, [0xff, 0xff000000, 0xffffff00, 0xffffff00], [0xff000000, 0xff, 0xff, 0xff000000], 'dvmrp0\x00', 'macsec0\x00', {0xff}, {}, 0x33, 0x9, 0x4, 0x56}, 0x0, 0x100, 0x168, 0x0, {}, [@inet=@rpfilter={{0x28}, {0x6}}, @common=@ah={{0x30}, {[0x4d6, 0x4d3], 0x9, 0xb}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x2, 0x9, 0xf, 0xd18, 'syz0\x00', 'syz0\x00', {0x7}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x3c0)
sendfile(r6, r7, 0x0, 0x20000023896)
ioctl$TCSETSF(r6, 0x5404, &(0x7f0000000000)={0xf, 0x3e, 0x6, 0x3, 0x2, "a0e1c601283700"})

14.538863321s ago: executing program 1 (id=1310):
syz_mount_image$ext4(&(0x7f0000000bc0)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x8000, &(0x7f00000000c0), 0x2, 0xbd1, &(0x7f0000001340)="$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")
ioctl$XFS_IOC_ATTRLIST_BY_HANDLE(0xffffffffffffffff, 0x4058587a, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x400000000008d}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6d71b000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs={0x0, 0x0, 0x4e23}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x4000087, 0x2, 0x0)
ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000075c0)={@local, @initdev={0xfe, 0x88, '\x00', 0x8, 0x0}, @private2={0xfc, 0x2, '\x00', 0x1}, 0xd432, 0x40, 0x409, 0x0, 0xa, 0x1})
unshare(0x62020600)
fsconfig$FSCONFIG_SET_BINARY(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
symlinkat(&(0x7f0000003040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, 0x0)
add_key$keyring(&(0x7f0000000100), &(0x7f0000000140)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe)
syz_mount_image$ext4(&(0x7f0000000500)='ext4\x00', &(0x7f00000006c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x10040, &(0x7f0000000100)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x4}}, {@quota}]}, 0xfd, 0x269, &(0x7f0000000a00)="$eJzs3U9oHFUcB/Df7B/jJotEvQjiHxARDYR4E7zEi0JAQhARVIiIeJJEiAnesp68eNCzSkDwEkpvTXssvYReWgo9pW0O6aXQhh4aemgPW3Znt2ySDW33b9n5fGCYmbz35r0J832zLMxsAJk1GRGzEZGPiKmIKEZE0lrh7XSZbOxulLYXI6rVL+4m9XrpfqrZbiIiKhHxUUShWba29c3e/Z3P3vtjtfju/1tflwZ1fq3293Y/P/h3/vczcx+uXb56ez6J2Sg3ylrPo5eSNn8rJBGv9KOz50RSGPYIeBoLv56+Vsv9qxHxTj3/xcg1IvvnygsXivHBPye1/evOldcHOVag96rVYu0eWKkCmZOLiHIkuemISLdzuenp9DP89fx47qfllV+mflxeXfph2DMV0CvlSHY/PTd2duJI/m/l0/wDo6scsfvlwuaN2vZBftijAfqm9dv2N9JVLf9T362/H/IPmSP/kF3yD9kl/zACOsyu/EN2dZP/F/s0JmAw3P9hhBWbG5W2xfIP2SX/MKL+a/fU6WHyD9nVmn8AIFuqY8N+AhkYlmHPPwAAAAAAAAAAAAAAAAAAwHEbpe3F5jKoPi/+HbH/SUQU2vWfr/8ecfNt4+P3klq1x5K0WVe+favLA3TpVM+evi511Oqlm73qvzOX3uzPcX87vHviP2d9KaJSqzxTKBy//pLG9de5l59QXvy+yw6e0dG3An781WD7P+rh5nD7n9uJOF+bf2bazT+5eK2+bj//lFtfsdyhnx90eQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAG5lEAAAD//4oibec=")
syz_mount_image$vfat(&(0x7f0000000b00), &(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x191f4c2, 0x0, 0x42, 0x0, &(0x7f0000000140))
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000d00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2c60a, 0x0, 0x1, 0x0, &(0x7f00000000c0))
r2 = open(&(0x7f0000000100)='./file1\x00', 0x147842, 0x88)
preadv2(r2, &(0x7f0000000040)=[{&(0x7f0000001200)=""/4096, 0xfffffdef}], 0x1, 0x0, 0x0, 0x7)

14.538356571s ago: executing program 2 (id=1311):
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x8000000)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0xffffffffffffff3c, &(0x7f0000000100)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f066bbeeb, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(0xffffffffffffffff, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
syz_open_dev$evdev(0x0, 0x0, 0x0)
r1 = socket$igmp(0x2, 0x3, 0x2)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000180)={'bond0\x00'})
socket$inet6_tcp(0xa, 0x1, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x19)

14.191092492s ago: executing program 2 (id=1312):
r0 = eventfd2(0x8, 0x0)
ppoll(&(0x7f0000000500)=[{r0, 0x8000}], 0x1, 0x0, 0x0, 0x0)
write$eventfd(r0, &(0x7f0000000140)=0xfffffffffffffffc, 0x8) (fail_nth: 1)
read(r0, &(0x7f0000000480)=""/82, 0x52)

14.147737833s ago: executing program 5 (id=1313):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x74, 0x0, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, 0x0}, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x2000c12, &(0x7f0000000400), 0xff, 0x23f, &(0x7f0000000540)="$eJzs3T1oLFUYBuB3Zne95t5FrtoI4g+IiAbCtRNsYqMQkBBEBBUiIjZKIsQEu8TKxkJrlVQ2QeyMlpIm2CiCVdQUsRE0WBgstFiZnURisuLPxh1xngdmZ2b3nPnOMPOe3WbYAK11Nclskk6S6SS9JMXpBnfWy9Xj3c2p3cVkMHjsh2LYrt6vnfS7kmQjyQNJdsoiL3STte2nDn7ae+Se11d7d7+7/eTURE/y2OHB/qNH78y/9sHc/WufffHdfJHZ9H93XhevGPFet0hu+jeK/UcU3aZHwF+x8Mr7X1a5vznJXcP891KmvnhvrFy308t9b/9R3ze///zWSY4VuHiDQa/6DtwYAK1TJumnKGeS1NtlOTNT/4b/qnO5fHF55eXp55dXl55reqYCLko/2X/4o0sfXjmT/287df6B/68q/48vbH1dbR91mh4NMBG31asq/9PPrN8b+YfWkX9oL/mH9pJ/aC/5h/aSf2gv+Yf2kn9oL/mH9pJ/aK/T+QcA2mVwqeknkIGmND3/AAAAAAAAAAAAAAAAAAAA521O7S6eLJOq+clbyeFDSbqj6neG/0ecXD98vfxjUTX7TVF3G8vTd4x5gDG91/DT1zd802z9T29vtv76UrLxapJr3e75+684vv/+uRv/5PPes2MW+JuKM/sPPjHZ+mf9stVs/bm95ONq/rk2av4pc8twPXr+6VfXb8z6L/085gEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACYmF8DAAD//xFQbUc=")
setxattr$system_posix_acl(&(0x7f0000002a00)='.\x00', &(0x7f0000002a40)='system.posix_acl_default\x00', &(0x7f0000002b40), 0x24, 0x0)
open(&(0x7f0000000340)='./bus\x00', 0x143142, 0x0)
lsetxattr$system_posix_acl(&(0x7f0000000040)='./bus\x00', &(0x7f00000000c0)='system.posix_acl_access\x00', &(0x7f0000000300)=ANY=[@ANYBLOB="020000020100020000000000040000000000808bb5000010000200000000002000000000"], 0x24, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x275a, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r3 = add_key$keyring(&(0x7f0000000380), &(0x7f0000000000)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe)
getgroups(0x2, &(0x7f0000001080)=[0xee01, 0xffffffffffffffff])
keyctl$setperm(0x5, r3, 0x10162c31)
r4 = syz_io_uring_setup(0x32ec, &(0x7f0000000000)={0x0, 0xa3a2, 0x2, 0x2, 0x1f8}, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000100))
syz_clone(0x80842111, 0x0, 0x0, 0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000100)={0x1, &(0x7f0000000240)=[{0x6, 0x0, 0x0, 0x7fff0001}]})
io_uring_enter(r4, 0x4b08, 0x7a9c, 0x3, &(0x7f0000000140)={[0x180000000000000]}, 0x8)
syz_usb_connect$uac2(0x0, 0x92, &(0x7f0000000180)={{0x12, 0x1, 0x200, 0x0, 0x0, 0x0, 0x10, 0xb05, 0x1743, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x80, 0x3, 0x1, 0x5, 0x0, 0x69, {0x8, 0xb, 0x1, 0x1, 0x1, 0x3, 0x20, 0x94}, {{{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x20, 0x0, {{0x9, 0x24, 0x1, 0x2, 0x5, 0x20, 0x5}, [@output_terminal={0xc, 0x24, 0x3, 0x6, 0x403, 0x9, 0x2, 0x1, 0x7d9, 0x1}, @feature_unit={0xb, 0x24, 0x6, 0x2, 0x1, [0xb, 0xa, 0x6]}]}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x20, 0x0, {}, {{0x9, 0x5, 0x1, 0x9, 0x40, 0x1, 0x3, 0xa, {0x8, 0x25, 0x1, 0x0, 0x3f, 0xff, 0x9d21}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x20, 0x0, {}, {{0x9, 0x5, 0x82, 0x9, 0x8, 0x3, 0x0, 0x9, {0x8, 0x25, 0x1, 0x80, 0xc, 0x5, 0x41}}}}}}}}]}}, 0x0)

14.017970697s ago: executing program 0 (id=1314):
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x8000000)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0xffffffffffffff3c, &(0x7f0000000100)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f066bbeeb, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
syz_open_dev$evdev(0x0, 0x0, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$igmp(0x2, 0x3, 0x2)
socket$inet6_tcp(0xa, 0x1, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x19)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000000), 0xd)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x8031, 0xffffffffffffffff, 0x0)

13.687771178s ago: executing program 4 (id=1315):
syz_mount_image$ext4(&(0x7f0000000bc0)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x8000, &(0x7f00000000c0), 0x2, 0xbd1, &(0x7f0000001340)="$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")
ioctl$XFS_IOC_ATTRLIST_BY_HANDLE(0xffffffffffffffff, 0x4058587a, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x400000000008d}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000240)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6d71b000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs={0x0, 0x0, 0x4e23}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x4000087, 0x2, 0x0)
ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000075c0)={@local, @initdev={0xfe, 0x88, '\x00', 0x8, 0x0}, @private2={0xfc, 0x2, '\x00', 0x1}, 0xd432, 0x40, 0x409, 0x0, 0xa, 0x1})
unshare(0x62020600)
fsconfig$FSCONFIG_SET_BINARY(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
symlinkat(&(0x7f0000003040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, 0x0)
add_key$keyring(&(0x7f0000000100), &(0x7f0000000140)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe)
syz_mount_image$ext4(&(0x7f0000000500)='ext4\x00', &(0x7f00000006c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x10040, &(0x7f0000000100)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x4}}, {@quota}]}, 0xfd, 0x269, &(0x7f0000000a00)="$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")
syz_mount_image$vfat(&(0x7f0000000b00), &(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x191f4c2, 0x0, 0x42, 0x0, &(0x7f0000000140))
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000d00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2c60a, 0x0, 0x1, 0x0, &(0x7f00000000c0))
r3 = open(&(0x7f0000000100)='./file1\x00', 0x147842, 0x88)
preadv2(r3, &(0x7f0000000040)=[{&(0x7f0000001200)=""/4096, 0xfffffdef}], 0x1, 0x0, 0x0, 0x7)

13.115898926s ago: executing program 2 (id=1316):
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
syz_mount_image$vfat(&(0x7f0000000100), &(0x7f0000000000)='./file0\x00', 0x492, &(0x7f0000000140)=ANY=[@ANYBLOB="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", @ANYRES64], 0x46, 0x2d1, &(0x7f0000000740)="$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")
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x842, 0x22)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, r1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f0000000580)={'batadv_slave_0\x00'})
socket$inet6_tcp(0xa, 0x1, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
syz_genetlink_get_family_id$tipc2(0xfffffffffffffffe, r1)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0xa, 0x0, 0x0)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
keyctl$KEYCTL_PKEY_QUERY(0x18, 0x0, 0x0, &(0x7f0000000080)=' hash=', 0x0)
r5 = syz_open_dev$usbfs(&(0x7f0000000480), 0x76, 0x160341)
ioctl$USBDEVFS_IOCTL(r5, 0xc0105512, &(0x7f0000000200))
ioctl$USBDEVFS_IOCTL(r5, 0xc0105512, &(0x7f00000000c0)=@usbdevfs_disconnect={0x5})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x800448d4, &(0x7f0000000140))

5.356833181s ago: executing program 2 (id=1317):
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x8000000)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0xffffffffffffff3c, &(0x7f0000000100)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f066bbeeb, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
syz_open_dev$evdev(0x0, 0x0, 0x0)
syz_open_dev$vcsa(&(0x7f0000000040), 0xbf31, 0x101100)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'bond0\x00'})
sendmsg$nl_xfrm(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000680)=@newsa={0x148, 0x10, 0x713, 0x0, 0x25dfdbfc, {{@in=@rand_addr=0x64010101, @in6=@mcast2, 0x4, 0x0, 0x4e21, 0x2, 0x0, 0x0, 0xa0, 0x21, 0x0, 0xee00}, {@in6=@private1, 0x4d6, 0x32}, @in=@multicast2, {0x0, 0xe839, 0x0, 0x9, 0xffffffff00000001, 0x0, 0x80000001, 0x543}, {0x4, 0x7fffffffffffffff, 0x0, 0x1}, {}, 0x70bd2c, 0x3500, 0x2, 0x0, 0x0, 0x70}, [@algo_aead={0x4c, 0x12, {{'rfc4106(gcm(aes))\x00'}, 0x0, 0x60}}, @offload={0xc, 0x1c, {0x0, 0x2}}]}, 0x148}, 0x1, 0x0, 0x0, 0x880}, 0x2014)
sendmsg$can_bcm(0xffffffffffffffff, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x19)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000000), 0xd)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x8031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000182000/0x4000)=nil, 0x4000, 0x0, 0x6, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socket$inet_udp(0x2, 0x2, 0x0)
openat$pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x202043, 0x0)

5.355769011s ago: executing program 0 (id=1318):
socket(0x10, 0x803, 0x0)
socket$inet6(0xa, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000880)=@base={0xa, 0x4, 0xfff, 0x7, 0x88, 0xffffffffffffffff, 0x1}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000004000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb70300000e41621eb70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000010c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240))
socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180))
openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x1f, 0x10, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000005000000000000008000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000000000000850000008600000018010000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000050000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000200000085000000a60000"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x11}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)

5.311418202s ago: executing program 4 (id=1319):
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x69, 0x11, 0xb6}, [@ldst={0x6, 0x2}], {0x95, 0x0, 0x74}}, &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sock_ops}, 0x48)
socket$inet6(0xa, 0x3, 0x8000000003c)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300))
fcntl$lock(0xffffffffffffffff, 0x7, &(0x7f0000000040)={0x0, 0x0, 0x8000, 0x3ff})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(0x0, 0x1, 0x0, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
pipe(&(0x7f0000000200)={<r0=>0xffffffffffffffff})
sigaltstack(&(0x7f0000000040)={0x0, 0x0, 0xfffffffffffffed8}, 0x0)
r1 = memfd_create(&(0x7f0000000180)='<Z2>J=\t\xeb\xf8\xa7\x04\x9f\xe1hO\x8e\xd7\xb5\x93}\x8d\xed\x01L`\x93\xcd\x9b`;\x1c\xfc\xaf9\x98\x91\xe7\x00'/52, 0x0)
splice(r0, 0x0, r1, 0x0, 0x400c5, 0x5)

5.251721345s ago: executing program 0 (id=1320):
socket$nl_sock_diag(0x10, 0x3, 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_procfs(0x0, &(0x7f0000000300)='task\x00')
getdents(r1, 0xffffffffffffffff, 0x5a)
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(r2, &(0x7f0000000040), 0x0, 0x40010202, 0x0)
r3 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_group_source_req(r3, 0x29, 0x2e, &(0x7f0000000200)={0x1, {{0xa, 0x0, 0x8e3, @mcast1={0xff, 0x7}}}, {{0xa, 0x1, 0x4, @ipv4={'\x00', '\xff\xff', @empty}, 0x3}}}, 0x108)
r4 = syz_open_procfs(0x0, &(0x7f00000003c0)='net/mcfilter6\x00')
preadv(r4, &(0x7f00000000c0)=[{&(0x7f0000000600)=""/128, 0x80}], 0x1, 0x113, 0x2)

4.550017856s ago: executing program 0 (id=1321):
syz_mount_image$ext4(&(0x7f0000000080)='ext2\x00', &(0x7f0000000280)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x10, &(0x7f0000000040), 0x8, 0xbbf, &(0x7f0000000680)="$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")
add_key$keyring(&(0x7f0000000100), 0x0, 0x0, 0x0, 0xfffffffffffffffe) (async)
mount$incfs(&(0x7f0000000040)='./file0\x00', &(0x7f0000000140)='./file0\x00', &(0x7f0000000000), 0x80, 0x0) (async)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x25})
syz_clone3(&(0x7f0000000080)={0x20901400, &(0x7f0000000040), 0x0, 0x0, {0xa}, 0x0, 0x0, 0x0, 0x0}, 0x58)
bpf$MAP_CREATE(0x0, &(0x7f0000001240)=ANY=[@ANYBLOB="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", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48) (async)
r0 = syz_io_uring_setup(0x141c, &(0x7f0000000080)={0x0, 0x91c1, 0x491, 0x1, 0x3}, &(0x7f0000000440)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0, &(0x7f0000000180)=<r3=>0x0) (async)
pselect6(0x7e, &(0x7f0000000100)={0x0, 0x0, 0x1000000000000}, 0x0, &(0x7f0000000240)={0x1f, 0x0, 0x0, 0x3, 0x0, 0x5}, 0x0, 0x0)
syz_io_uring_submit$UBLK(r1, r2, r3, &(0x7f00000001c0)=@ublk_io_cmd_sqes={0x2e, 0x22, 0x0, 0xffffffffffffffff, 0xc0107522, 0x0, 0x0, 0x0, 0x1, 0x61f, 0x0, 0x0, '\x00', @fetch_req_cmd={0x2, 0x27b, 0x0, 0x0}}) (async)
io_uring_enter(r0, 0x20, 0xd9db, 0x8, 0x0, 0x0)
r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x31b800, 0x111)
r5 = openat$incfs(r4, &(0x7f00000001c0)='.pending_reads\x00', 0x80000, 0x19)
ioctl$TIOCL_GETKMSGREDIRECT(r5, 0xc058671e, &(0x7f0000000180))

4.004224964s ago: executing program 4 (id=1322):
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
syz_mount_image$vfat(&(0x7f0000000100), &(0x7f0000000000)='./file0\x00', 0x492, &(0x7f0000000140)=ANY=[@ANYBLOB="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", @ANYRES64], 0x46, 0x2d1, &(0x7f0000000740)="$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")
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x842, 0x22)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, r1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f0000000580)={'batadv_slave_0\x00'})
socket$inet6_tcp(0xa, 0x1, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
syz_genetlink_get_family_id$tipc2(0xfffffffffffffffe, r1)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0xa, 0x0, 0x0)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
keyctl$KEYCTL_PKEY_QUERY(0x18, 0x0, 0x0, &(0x7f0000000080)=' hash=', 0x0)
r3 = syz_open_dev$usbfs(&(0x7f0000000480), 0x76, 0x160341)
ioctl$USBDEVFS_IOCTL(r3, 0xc0105512, &(0x7f0000000200))
ioctl$USBDEVFS_IOCTL(r3, 0xc0105512, &(0x7f00000000c0)=@usbdevfs_disconnect={0x5})
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r4, 0x800448d4, &(0x7f0000000140))

3.794996171s ago: executing program 5 (id=1323):
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x8000000)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0xffffffffffffff3c, &(0x7f0000000100)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
syz_open_dev$evdev(0x0, 0x0, 0x0)
r3 = socket$igmp(0x2, 0x3, 0x2)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000180)={'bond0\x00'})
socket$inet6_tcp(0xa, 0x1, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x19)

3.79060496s ago: executing program 2 (id=1324):
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000140)=@req3={0x1000, 0x10001, 0x1000, 0x3a, 0x7ff, 0x7ff, 0xaa}, 0x1c)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_LINK_PRI(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010029bd09000000df25010000000000000008410000004c001800cc721da832195ec8d85a310e0a97fb5690a0654959b2c964ad314416e0183ccb2c4a7d0bf5193edb68b542fc890b99f35848ab50522ca89face3fdc6d40317318c62f53e146675"], 0x68}, 0x1, 0x0, 0x0, 0x44804}, 0x20000800)
r2 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$sock_linger(r2, 0x1, 0x3c, &(0x7f0000000340)={0x1, 0x4}, 0x8)
setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x41, &(0x7f00000003c0)=0xb02, 0x4)
sendmmsg$inet6(r2, &(0x7f00000002c0)=[{{&(0x7f0000000040)={0xa, 0x4e22, 0x300, @local, 0x8}, 0x1c, 0x0}}], 0x1, 0x4004884)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x85, 0x7, 0x7ffc0001}]})
syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000040)='./file0\x00', 0x10000, &(0x7f0000002380)=ANY=[@ANYBLOB='nodots,showexec,dots,uid=', @ANYRESHEX=0xee00, @ANYBLOB=',check=normal,fmask=00000000000000000000002,sys_immutable,nodots,dots,nodots,nodots,nodots,fmask=00000000000000000177777,dots,quiet,nodots,nodots,check=relaxed,nodots,umask=00000000000000000076645,nodots,nodots,nfs=stale_rw,nodots,smackfsfloor=fmask,defcontext=unconfined_u,permit_directio,permit_directio,fscontext=staff_u,seclabel,euid>', @ANYRESDEC, @ANYRES64], 0xf7, 0x204, &(0x7f0000000300)="$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")
r3 = inotify_init()
getpid()
inotify_add_watch(r3, &(0x7f0000000080)='./file0\x00', 0x481)
r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x131)
ioctl$FAT_IOCTL_GET_ATTRIBUTES(r4, 0x40047211, &(0x7f00000000c0))
open(&(0x7f0000000200)='./file1\x00', 0x4a07e, 0xdc)
rename(&(0x7f0000006200)='./file1\x00', &(0x7f0000000400)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@newtaction={0x14, 0x30, 0x727, 0x70bd26, 0x1fc}, 0x14}, 0x1, 0x0, 0x0, 0x40815}, 0x8094)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r6, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
listen(r7, 0xf2)
listen(r6, 0x0)
setsockopt$sock_int(r6, 0x1, 0xf, &(0x7f00000002c0)=0xb, 0x4)
r8 = socket$netlink(0x10, 0x3, 0x4)
writev(r8, &(0x7f00000000c0)=[{&(0x7f0000000180)="580000001500add427323b470c45b4560a067fffffff81004e22030d00ff0028925aa8002000eaa57b00090080020efffeffe809020000ff0004f03a98000000ffffffffffffffffffffffe7ee0000000000000000020000", 0x58}], 0x1)

3.443879392s ago: executing program 0 (id=1325):
openat$ptp0(0xffffffffffffff9c, &(0x7f00000003c0), 0x40001, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = getpid()
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000240)={'\x00', 0x71, 0x6, 0x400, 0x1, 0x7, r1})
sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000000900)={'bridge0\x00', @remote})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000180)={0xffffffffffffffff, &(0x7f0000001380), 0x0, 0x2}, 0x20)
ioctl$SIOCSIFHWADDR(r5, 0x89a1, &(0x7f0000000900)={'bridge0\x00', @broadcast})
sendmsg$nl_route(r0, 0x0, 0x4004000)
r6 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000180), 0x2982, 0x0)
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/timer_list\x00', 0x0, 0x0)
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r8, 0x29, 0x40, &(0x7f00000002c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x360, 0x128, 0x1170, 0x1170, 0x128, 0x1170, 0x290, 0x1398, 0x1398, 0x290, 0x1398, 0x3, 0x0, {[{{@ipv6={@ipv4={'\x00', '\xff\xff', @multicast2}, @private2={0xfc, 0x2, '\x00', 0x1}, [0xffffffff, 0xff000000], [0x0, 0x0, 0x0, 0xffffff00], 'veth0_vlan\x00', 'veth0_to_hsr\x00', {}, {}, 0x2e, 0x0, 0x0, 0x46}, 0x0, 0x108, 0x128, 0x0, {}, [@common=@inet=@socket2={{0x28}, 0x1}, @common=@unspec=@quota={{0x38}, {0x1, 0x0, 0x80000000, {0x5}}}]}, @unspec=@NOTRACK={0x20}}, {{@ipv6={@local, @private0, [0xff, 0xff000000, 0xffffff00, 0xffffff00], [0xff000000, 0xff, 0xff, 0xff000000], 'dvmrp0\x00', 'macsec0\x00', {0xff}, {}, 0x33, 0x9, 0x4, 0x56}, 0x0, 0x100, 0x168, 0x0, {}, [@inet=@rpfilter={{0x28}, {0x6}}, @common=@ah={{0x30}, {[0x4d6, 0x4d3], 0x9, 0xb}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x2, 0x9, 0xf, 0xd18, 'syz0\x00', 'syz0\x00', {0x7}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x3c0)
sendfile(r6, r7, 0x0, 0x20000023896)
ioctl$TCSETSF(r6, 0x5404, &(0x7f0000000000)={0xf, 0x3e, 0x6, 0x3, 0x2, "a0e1c601283700"})

3.437427872s ago: executing program 4 (id=1326):
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x8000000)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0xffffffffffffff3c, &(0x7f0000000100)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f066bbeeb, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
syz_open_dev$evdev(0x0, 0x0, 0x0)
syz_open_dev$vcsa(&(0x7f0000000040), 0xbf31, 0x101100)
socket$nl_xfrm(0x10, 0x3, 0x6)
r3 = socket$igmp(0x2, 0x3, 0x2)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000180)={'bond0\x00'})
sendmsg$can_bcm(0xffffffffffffffff, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x19)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000000), 0xd)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x8031, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000182000/0x4000)=nil, 0x4000, 0x0, 0x6, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$IPT_SO_GET_INFO(r4, 0x0, 0x40, &(0x7f00000000c0)={'nat\x00', 0x0, [0xbc84cc59, 0x6, 0x10001, 0x5, 0x10001]}, &(0x7f0000000140)=0x54)
openat$pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x202043, 0x0)

3.430870462s ago: executing program 5 (id=1327):
setsockopt$packet_rx_ring(0xffffffffffffffff, 0x107, 0x5, &(0x7f0000000140)=@req3={0x1000, 0x10001, 0x1000, 0x3a, 0x7ff, 0x7ff, 0xaa}, 0x1c)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_LINK_PRI(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010029bd09000000df25010000000000000008410000004c001800cc721da832195ec8d85a310e0a97fb5690a0654959b2c964ad314416e0183ccb2c4a7d0bf5193edb68b542fc890b99f35848ab50522ca89face3fdc6d40317318c62f53e146675"], 0x68}, 0x1, 0x0, 0x0, 0x44804}, 0x20000800)
r2 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$sock_linger(r2, 0x1, 0x3c, &(0x7f0000000340)={0x1, 0x4}, 0x8)
setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x41, &(0x7f00000003c0)=0xb02, 0x4)
sendmmsg$inet6(r2, &(0x7f00000002c0)=[{{&(0x7f0000000040)={0xa, 0x4e22, 0x300, @local, 0x8}, 0x1c, 0x0}}], 0x1, 0x4004884)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x85, 0x7, 0x7ffc0001}]})
syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000040)='./file0\x00', 0x10000, &(0x7f0000002380)=ANY=[@ANYBLOB='nodots,showexec,dots,uid=', @ANYRESHEX=0xee00, @ANYBLOB=',check=normal,fmask=00000000000000000000002,sys_immutable,nodots,dots,nodots,nodots,nodots,fmask=00000000000000000177777,dots,quiet,nodots,nodots,check=relaxed,nodots,umask=00000000000000000076645,nodots,nodots,nfs=stale_rw,nodots,smackfsfloor=fmask,defcontext=unconfined_u,permit_directio,permit_directio,fscontext=staff_u,seclabel,euid>', @ANYRESDEC, @ANYRES64], 0xf7, 0x204, &(0x7f0000000300)="$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")
r3 = inotify_init()
getpid()
inotify_add_watch(r3, &(0x7f0000000080)='./file0\x00', 0x481)
r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x131)
ioctl$FAT_IOCTL_GET_ATTRIBUTES(r4, 0x40047211, &(0x7f00000000c0))
open(&(0x7f0000000200)='./file1\x00', 0x4a07e, 0xdc)
rename(&(0x7f0000006200)='./file1\x00', &(0x7f0000000400)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@newtaction={0x14, 0x30, 0x727, 0x70bd26, 0x1fc}, 0x14}, 0x1, 0x0, 0x0, 0x40815}, 0x8094)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r6, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
listen(r7, 0xf2)
listen(r6, 0x0)
setsockopt$sock_int(r6, 0x1, 0xf, &(0x7f00000002c0)=0xb, 0x4)
r8 = socket$netlink(0x10, 0x3, 0x4)
writev(r8, &(0x7f00000000c0)=[{&(0x7f0000000180)="580000001500add427323b470c45b4560a067fffffff81004e22030d00ff0028925aa8002000eaa57b00090080020efffeffe809020000ff0004f03a98000000ffffffffffffffffffffffe7ee0000000000000000020000", 0x58}], 0x1)

583.566522ms ago: executing program 0 (id=1328):
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
syz_mount_image$vfat(&(0x7f0000000100), &(0x7f0000000000)='./file0\x00', 0x492, &(0x7f0000000140)=ANY=[@ANYBLOB="73686f72746e616d653d77696e6e742c756e695f786c6174653d312c757466383d312c6e6f6e756d7461696c3d302c756e695f786c6174653d312c756e695f786c6174653d302c757466383d312c696f636861727365743d69736f383835392d31332c636865636b3d7374726963742c726f6469722c757466383d302c756e695f786c6174653d312c636f6465706167653d3836362c73686f72746e616d653d6c6f7765722c73686f72746e616d653d6c6f7765722c646d61736b3d30303030303030303030303030303030303030303030312c646d61736b3d30303030303030303030303030303030303030303030362c756e695f786c6174653d302c696f636861727365743d63703835352c73686f72746e616d653d77696e39352c726f6469722c6e6e6f6e756d7461696c3d312c73686f72746e616d653d6d697865642c73686f72746e616d653d6d697865642c757466383d312c757466383d302c756e695f786c6174653d302c0500695f786c6174653d312c696f636861727365743d6370313235352c757466383d302c646566636f6e7465010000006e636f6e66696e65645f752c00", @ANYRES64], 0x46, 0x2d1, &(0x7f0000000740)="$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")
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x842, 0x22)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, r1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f0000000580)={'batadv_slave_0\x00'})
socket$inet6_tcp(0xa, 0x1, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
syz_genetlink_get_family_id$tipc2(0xfffffffffffffffe, r1)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0xa, 0x0, 0x0)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
keyctl$KEYCTL_PKEY_QUERY(0x18, 0x0, 0x0, &(0x7f0000000080)=' hash=', 0x0)
r5 = syz_open_dev$usbfs(&(0x7f0000000480), 0x76, 0x160341)
ioctl$USBDEVFS_IOCTL(r5, 0xc0105512, &(0x7f0000000200))
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r6, 0x800448d4, &(0x7f0000000140))

532.385043ms ago: executing program 4 (id=1329):
syz_mount_image$ext4(&(0x7f0000000bc0)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x8000, &(0x7f00000000c0), 0x2, 0xbd1, &(0x7f0000001340)="$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")
ioctl$XFS_IOC_ATTRLIST_BY_HANDLE(0xffffffffffffffff, 0x4058587a, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x400000000008d}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000240)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6d71b000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs={0x0, 0x0, 0x4e23}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x4000087, 0x2, 0x0)
ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000075c0)={@local, @initdev={0xfe, 0x88, '\x00', 0x8, 0x0}, @private2={0xfc, 0x2, '\x00', 0x1}, 0xd432, 0x40, 0x409, 0x0, 0xa, 0x1})
unshare(0x62020600)
fsconfig$FSCONFIG_SET_BINARY(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
symlinkat(&(0x7f0000003040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, 0x0)
add_key$keyring(&(0x7f0000000100), &(0x7f0000000140)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe)
syz_mount_image$ext4(&(0x7f0000000500)='ext4\x00', &(0x7f00000006c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x10040, &(0x7f0000000100)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x4}}, {@quota}]}, 0xfd, 0x269, &(0x7f0000000a00)="$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")
syz_mount_image$vfat(&(0x7f0000000b00), &(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x191f4c2, 0x0, 0x42, 0x0, &(0x7f0000000140))
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000d00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2c60a, 0x0, 0x1, 0x0, &(0x7f00000000c0))
r3 = open(&(0x7f0000000100)='./file1\x00', 0x147842, 0x88)
preadv2(r3, &(0x7f0000000040)=[{&(0x7f0000001200)=""/4096, 0xfffffdef}], 0x1, 0x0, 0x0, 0x7)

531.456283ms ago: executing program 2 (id=1330):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r0, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r1, {0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xb}}, 0x2}}, 0x2e)
getsockopt(r0, 0x111, 0x1, 0x0, &(0x7f0000000040))
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$SIOCSIFMTU(r0, 0x8922, &(0x7f0000000200)={'bond_slave_1\x00', 0x100})
setsockopt$inet_mreqn(r2, 0x0, 0x27, &(0x7f0000000000)={@multicast1, @local}, 0xc)
r3 = socket$tipc(0x1e, 0x2, 0x0)
r4 = syz_usb_connect$cdc_ncm(0x2, 0x76, &(0x7f0000000280)=ANY=[@ANYBLOB="0b51195bde140e2a81b306785a325bf5bab2b261fbe0f6c0b7fe0f2a422526254835a3ae2f85703d44e80f64a6f247e4d172c1bb9e5eb88da51f8ffcf1944932d7eac902abc18c25a495c2322f7fa4607341e733dc100727bf957001c659accf4ce91a91d172893a2965ffc5a66780de1f2a4a59e5fe03e3744fd2ca6e85e70052f05930", @ANYRES16=r3], 0x0)
syz_usb_control_io$cdc_ncm(r4, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x1008490, &(0x7f0000000a40)={[{@grpid}, {@grpquota}]}, 0x4, 0x4eb, &(0x7f0000000a80)="$eJzs3c9vVFsdAPDvnXZoKQMFZaFGBRFFQ5j+ABqCC2GjMYTESFy5gNoOTdMZpum0SCuLsnRvIokr/RPcuTBh5cKdO925wYUJKnkv9CVvMS/3zqUd2g7te7Qd6Hw+ye2955xhvufMcM6Ze2B6AuhZZyNiNSKORMS9iBjO85P8iButI33cq5ePp9ZePp5Kotm8878kK0/zou3PpI7lzzkYET/7ccQvk61xG8src5PVamUhT48s1uZHGssrl2YLec74xNjE6LXLV8f3rK1nan968aPZWz//y5+/8fzvq9//dVqt0m+OZ2Xt7dhLraYXo9SW1x8Rt/YjWJf0539/+PCkve1LEXEu6//D0Ze9mwDAYdZsDkdzuD0NABx26f1/KZJCOV8LKEWhUC631vBOx1ChWm8sXhyuLz2YjmwN62QUC/dnq5XRfK3wZBSTND2WXW+kxzelL0fEqYj47cDRLF2eqlenu/nBBwB62LFN8//HA635HwA45Aa7XQEA4MCZ/wGg95j/AaD3fI7537cDAeCQcP8PAL3H/A8AvWfH+f/JwdQDADgQP719Oz2aa/nvv55+uLz0g9LDS9OVxly5tjRVnqovzJdn6vWZaqU81Wzu9HzVen1+7Mp6srG8crdWX3qweHe2NjlTuVsp7nN7AICdnTrz7J9JRKxeP5od0baXg7kaDrdCtysAdE1ftysAdI3v80Dv2sU9vmUAOOS22aL3DR3/i9BTm7/Ch+rCV63/Q6+y/g+964ut//9wz+sBHDzr/9C7ms3Env8A0GOs8QPv9O//AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA0KNK2ZEUytle4Kvpz0K5HHE8Ik5GMbk/W62MRsSJiPjHQHEgTY91u9IAwDsq/CfJ9/+6MHy+tLn0SPLJQHaOiF/9/s7vHk0uLi6Mpfn/X89ffJrnjx/pRgMAgHY3tma15un83HYj/+rl46nXx0FW8cXN1uaiady1/GiV9Ed/dh6MYkQMfZTk6Zb080rfHsRffRIRX9lo/6O2CKVsDaS18+nm+Gns4/sQf+P13xy/8Eb8QlaWnovZa/HlPagL9JpnN1vjZN730i6W979CnM3O2/f/wWyEenevx7+1LeNfYX3869sSP8n6/Nn19Ntr8uLKX3+yJbM53Cp7EvG1/u3iJ+vxkw7j7/ldtvFfX//muU5lzT9EXIjt47fUsmF2ZLE2P9JYXrk0W5ucqcxUHoyPT4xNjF67fHV8JFujbv3823Yx/nv94olO8dP2D3WIP7hD+7+zy/b/8dN7v/jWW+J/79vbv/+n3xI/nRO/u8v4k0M3Om7fncaf7tD+nd7/i7uM//zfK9O7fCgAcAAayytzk9VqZWGHi/Sz5k6PcfFhXsRqxHtQDRfv1UW3RyZgv210+m7XBAAAAAAAAAAAAAAA6KSxvDI3EPv7daJutxEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIDD67MAAAD//w/PzvM=")
r5 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42042, 0x1cb)
fallocate(r5, 0x10, 0x800, 0x8000)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x20842, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, r6, 0x0)
syz_usb_connect$uac3(0x0, 0x80, 0x0, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x0, 0x0}]})
syz_clone3(&(0x7f0000000140)={0x21000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000000040), 0x2}, 0xa0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x42, 0x0)
fadvise64(r7, 0x7f, 0xf502, 0x4)
setsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, &(0x7f0000000180)={0x42}, 0x10)
r8 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r8, 0x10f, 0x87, &(0x7f0000000040)={0x80042, 0x1}, 0x10)
r9 = syz_clone(0x0, 0x0, 0x9, 0x0, 0x0, 0x0)
wait4(r9, 0x0, 0x80000000, 0x0)
syz_open_procfs(0x0, 0x0)
r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r10, &(0x7f0000000100), 0x208e24b)
preadv(r10, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r10, &(0x7f0000499000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

496.555165ms ago: executing program 5 (id=1331):
socket$nl_sock_diag(0x10, 0x3, 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_procfs(0x0, &(0x7f0000000300)='task\x00')
getdents(r1, 0xffffffffffffffff, 0x5a)
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(r2, &(0x7f0000000040), 0x0, 0x40010202, 0x0)
r3 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_group_source_req(r3, 0x29, 0x2e, &(0x7f0000000200)={0x1, {{0xa, 0x0, 0x8e3, @mcast1={0xff, 0x7}}}, {{0xa, 0x1, 0x4, @ipv4={'\x00', '\xff\xff', @empty}, 0x3}}}, 0x108)
r4 = syz_open_procfs(0x0, &(0x7f00000003c0)='net/mcfilter6\x00')
preadv(r4, &(0x7f00000000c0)=[{&(0x7f0000000600)=""/128, 0x80}], 0x1, 0x113, 0x2)

25.25919ms ago: executing program 5 (id=1332):
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x69, 0x11, 0xb6}, [@ldst={0x6, 0x2}], {0x95, 0x0, 0x74}}, &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sock_ops}, 0x48)
socket$inet6(0xa, 0x3, 0x8000000003c)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300))
fcntl$lock(0xffffffffffffffff, 0x7, &(0x7f0000000040)={0x0, 0x0, 0x8000, 0x3ff})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(0x0, 0x1, 0x0, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
pipe(&(0x7f0000000200)={<r0=>0xffffffffffffffff})
sigaltstack(&(0x7f0000000040)={0x0, 0x0, 0xfffffffffffffed8}, 0x0)
r1 = memfd_create(&(0x7f0000000180)='<Z2>J=\t\xeb\xf8\xa7\x04\x9f\xe1hO\x8e\xd7\xb5\x93}\x8d\xed\x01L`\x93\xcd\x9b`;\x1c\xfc\xaf9\x98\x91\xe7\x00'/52, 0x0)
splice(r0, 0x0, r1, 0x0, 0x400c5, 0x5)

0s ago: executing program 1 (id=1333):
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
syz_mount_image$vfat(&(0x7f0000000100), &(0x7f0000000000)='./file0\x00', 0x492, &(0x7f0000000140)=ANY=[@ANYBLOB="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", @ANYRES64=r1], 0x46, 0x2d1, &(0x7f0000000740)="$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")
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x842, 0x22)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, r2, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f0000000580)={'batadv_slave_0\x00'})
socket$inet6_tcp(0xa, 0x1, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
syz_genetlink_get_family_id$tipc2(0xfffffffffffffffe, r2)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0xa, 0x0, 0x0)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
keyctl$KEYCTL_PKEY_QUERY(0x18, 0x0, 0x0, &(0x7f0000000080)=' hash=', 0x0)
r6 = syz_open_dev$usbfs(&(0x7f0000000480), 0x76, 0x160341)
ioctl$USBDEVFS_IOCTL(r6, 0xc0105512, &(0x7f0000000200))
ioctl$USBDEVFS_IOCTL(r6, 0xc0105512, &(0x7f00000000c0)=@usbdevfs_disconnect={0x5})
r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r7, 0x800448d4, &(0x7f0000000140))

kernel console output (not intermixed with test programs):

i_pos 196, start 00000001)
[  207.084924][ T3136] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  207.095092][ T3136] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  207.105247][ T3136] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  207.115438][ T3136] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  207.125715][ T3136] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  207.135957][ T3136] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  207.146164][ T3136] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  207.156367][ T3136] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  207.240370][ T2753] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[  207.266246][ T3141] loop5: detected capacity change from 0 to 2048
[  207.291913][ T3141] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  207.420235][ T2753] usb 2-1: Using ep0 maxpacket: 16
[  207.427897][ T2753] usb 2-1: New USB device found, idVendor=0b05, idProduct=1743, bcdDevice= 0.40
[  207.437294][ T2753] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  207.445538][ T2753] usb 2-1: Product: syz
[  207.448683][ T3146] netlink: 8 bytes leftover after parsing attributes in process `syz.5.791'.
[  207.449816][ T2753] usb 2-1: Manufacturer: syz
[  207.463585][ T2753] usb 2-1: SerialNumber: syz
[  207.565857][ T3150] loop4: detected capacity change from 0 to 2048
[  207.582000][ T3150] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  207.776984][ T3160] netlink: 8 bytes leftover after parsing attributes in process `syz.4.794'.
[  207.871753][ T2753] usb 2-1: 1:1 : UAC_AS_GENERAL descriptor not found
[  207.882912][ T2753] usb 2-1: unit 1 not found!
[  207.917270][ T3154] loop2: detected capacity change from 0 to 4096
[  208.014554][ T2753] usb 2-1: USB disconnect, device number 16
[  208.029162][ T3154] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  208.120716][ T1458] EXT4-fs (loop5): unmounting filesystem.
[  208.136439][ T3163] loop5: detected capacity change from 0 to 512
[  209.329943][  T290] EXT4-fs (loop4): unmounting filesystem.
[  209.366350][  T505] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  209.385329][ T3163] xt_TCPMSS: Only works on TCP SYN packets
[  209.443968][ T3171] loop1: detected capacity change from 0 to 2048
[  209.509153][ T3173] device bridge0 left promiscuous mode
[  209.543225][ T3173] loop4: detected capacity change from 0 to 8192
[  212.233188][ T3176] bridge0: port 3(vlan2) entered disabled state
[  212.243611][ T3176] bridge0: port 2(bridge_slave_1) entered disabled state
[  212.252958][ T3176] bridge0: port 1(bridge_slave_0) entered disabled state
[  212.311580][  T289] EXT4-fs (loop2): unmounting filesystem.
[  212.466938][ T3171] EXT4-fs: failed to create workqueue
[  212.480479][ T3171] EXT4-fs (loop1): mount failed
[  214.128947][ T3207] loop5: detected capacity change from 0 to 4096
[  214.138922][ T3205] xt_hashlimit: size too large, truncated to 1048576
[  214.207246][ T3207] EXT4-fs (loop5): Test dummy encryption mode enabled
[  215.006722][ T3207] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  216.782014][ T1458] EXT4-fs (loop5): unmounting filesystem.
[  218.267988][   T28] kauditd_printk_skb: 263 callbacks suppressed
[  218.268005][   T28] audit: type=1326 audit(218.251:1001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3232 comm="syz.4.815" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff053f9ce59 code=0x7ffc0000
[  218.316500][ T3234] loop4: detected capacity change from 0 to 256
[  218.362970][   T28] audit: type=1326 audit(218.301:1002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3232 comm="syz.4.815" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff053f9ce59 code=0x7ffc0000
[  218.391783][   T28] audit: type=1326 audit(218.301:1003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3232 comm="syz.4.815" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff053f9ce59 code=0x7ffc0000
[  218.416641][   T28] audit: type=1326 audit(218.301:1004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3232 comm="syz.4.815" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff053f9ce59 code=0x7ffc0000
[  218.442076][   T28] audit: type=1326 audit(218.301:1005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3232 comm="syz.4.815" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7ff053f9ce59 code=0x7ffc0000
[  218.472638][   T28] audit: type=1326 audit(218.301:1006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3232 comm="syz.4.815" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7ff053f9cbc2 code=0x7ffc0000
[  218.498960][   T28] audit: type=1326 audit(218.301:1007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3232 comm="syz.4.815" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7ff053f5d68e code=0x7ffc0000
[  218.523120][   T28] audit: type=1326 audit(218.301:1008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3232 comm="syz.4.815" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7ff053f9cc87 code=0x7ffc0000
[  218.547319][   T28] audit: type=1326 audit(218.301:1009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3232 comm="syz.4.815" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ff053f5d68e code=0x7ffc0000
[  218.578388][   T28] audit: type=1326 audit(218.301:1010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3232 comm="syz.4.815" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff053f9caeb code=0x7ffc0000
[  218.659311][ T3250] loop5: detected capacity change from 0 to 8192
[  218.835466][ T3252] loop4: detected capacity change from 0 to 256
[  218.862567][ T3252] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  218.872924][ T3252] FAT-fs (loop4): Filesystem has been set read-only
[  218.879541][ T3252] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  218.889750][ T3252] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  218.899990][ T3252] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  218.910139][ T3252] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  218.920481][ T3252] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  218.930744][ T3252] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  218.940899][ T3252] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  218.951130][ T3252] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  218.961248][ T3251] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  220.023855][ T3264] loop2: detected capacity change from 0 to 4096
[  220.049290][ T3264] EXT4-fs (loop2): Test dummy encryption mode enabled
[  220.061896][ T3264] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  224.216423][  T289] EXT4-fs (loop2): unmounting filesystem.
[  224.845331][ T3290] loop1: detected capacity change from 0 to 4096
[  224.868700][ T3290] EXT4-fs (loop1): Test dummy encryption mode enabled
[  225.543800][ T3294] loop5: detected capacity change from 0 to 8192
[  225.653057][ T3290] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=8842c018, mo2=0003]
[  225.710994][ T3290] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  225.773144][  T287] EXT4-fs (loop1): unmounting filesystem.
[  228.588180][ T3321] loop4: detected capacity change from 0 to 512
[  229.086770][ T3324] loop1: detected capacity change from 0 to 4096
[  229.086775][ T3321] xt_TCPMSS: Only works on TCP SYN packets
[  229.087530][ T3324] EXT4-fs (loop1): Test dummy encryption mode enabled
[  229.211273][ T3324] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  229.936917][  T287] EXT4-fs (loop1): unmounting filesystem.
[  231.555815][ T3346] device bridge0 left promiscuous mode
[  231.609591][ T3346] loop1: detected capacity change from 0 to 8192
[  231.714540][ T3346] bridge0: port 3(vlan2) entered disabled state
[  231.732079][ T3346] bridge0: port 2(bridge_slave_1) entered disabled state
[  231.752580][ T3346] bridge0: port 1(bridge_slave_0) entered disabled state
[  232.216937][ T3355] loop2: detected capacity change from 0 to 8192
[  232.488892][ T3351] loop5: detected capacity change from 0 to 4096
[  232.501207][ T3351] EXT4-fs (loop5): Test dummy encryption mode enabled
[  232.516742][ T3351] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=8842c018, mo2=0003]
[  232.547356][ T3361] loop1: detected capacity change from 0 to 2048
[  232.550772][ T3359] xt_hashlimit: size too large, truncated to 1048576
[  232.567378][ T3351] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  232.607199][ T3361] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  232.626324][ T1458] EXT4-fs (loop5): unmounting filesystem.
[  232.799938][ T3371] netlink: 8 bytes leftover after parsing attributes in process `syz.1.847'.
[  232.839299][ T3370] loop2: detected capacity change from 0 to 4096
[  232.887516][ T3370] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  234.695099][  T287] EXT4-fs (loop1): unmounting filesystem.
[  234.789403][ T3387] loop4: detected capacity change from 0 to 512
[  234.850649][  T289] EXT4-fs (loop2): unmounting filesystem.
[  235.132695][ T3391] loop5: detected capacity change from 0 to 8192
[  235.348978][ T2503] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  235.360864][ T3395] loop1: detected capacity change from 0 to 4096
[  235.387019][ T3387] xt_TCPMSS: Only works on TCP SYN packets
[  235.414089][ T3395] EXT4-fs (loop1): Test dummy encryption mode enabled
[  235.438034][ T3399] loop2: detected capacity change from 0 to 4096
[  235.449612][ T3401] loop4: detected capacity change from 0 to 2048
[  235.461360][ T3399] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  235.500280][ T3395] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=8842c018, mo2=0003]
[  235.940865][ T3395] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  235.999414][ T3401] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  236.009746][  T287] EXT4-fs (loop1): unmounting filesystem.
[  237.778479][ T3413] netlink: 8 bytes leftover after parsing attributes in process `syz.4.861'.
[  238.262925][  T289] EXT4-fs (loop2): unmounting filesystem.
[  238.272368][ T3409] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  238.307656][  T290] EXT4-fs (loop4): unmounting filesystem.
[  238.372094][ T3421] xt_hashlimit: size too large, truncated to 1048576
[  238.403090][ T3423] netlink: 8 bytes leftover after parsing attributes in process `syz.5.862'.
[  238.465743][ T3429] set_capacity_and_notify: 1 callbacks suppressed
[  238.465763][ T3429] loop4: detected capacity change from 0 to 4096
[  238.589807][ T1458] EXT4-fs (loop5): unmounting filesystem.
[  238.665368][ T3429] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  240.214644][  T290] EXT4-fs (loop4): unmounting filesystem.
[  240.554164][ T3441] loop5: detected capacity change from 0 to 4096
[  240.666946][ T3441] EXT4-fs (loop5): Test dummy encryption mode enabled
[  240.721416][ T3452] loop1: detected capacity change from 0 to 4096
[  240.739402][ T3452] EXT4-fs (loop1): Test dummy encryption mode enabled
[  240.752888][ T3441] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  240.812117][ T3452] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=8842c018, mo2=0003]
[  240.822461][ T3452] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  240.875358][  T287] EXT4-fs (loop1): unmounting filesystem.
[  244.834023][ T1458] EXT4-fs (loop5): unmounting filesystem.
[  246.361004][ T3470] loop5: detected capacity change from 0 to 2048
[  246.454868][ T3470] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  246.511109][ T3475] loop1: detected capacity change from 0 to 2048
[  246.540032][ T3475] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  247.351689][ T3487] netlink: 8 bytes leftover after parsing attributes in process `syz.5.877'.
[  247.424041][ T3488] netlink: 8 bytes leftover after parsing attributes in process `syz.1.878'.
[  247.650681][ T1458] EXT4-fs (loop5): unmounting filesystem.
[  247.657047][  T287] EXT4-fs (loop1): unmounting filesystem.
[  247.662862][   T28] kauditd_printk_skb: 87 callbacks suppressed
[  247.662875][   T28] audit: type=1326 audit(247.651:1098): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3491 comm="syz.2.881" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7dc59ce59 code=0x7ffc0000
[  247.664076][ T3492] loop2: detected capacity change from 0 to 256
[  247.669048][   T28] audit: type=1326 audit(247.651:1099): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3491 comm="syz.2.881" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7dc59ce59 code=0x7ffc0000
[  247.711123][ T3494] xt_hashlimit: size too large, truncated to 1048576
[  247.730355][   T28] audit: type=1326 audit(247.651:1100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3491 comm="syz.2.881" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7dc59ce59 code=0x7ffc0000
[  247.768764][   T28] audit: type=1326 audit(247.651:1101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3491 comm="syz.2.881" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7dc59ce59 code=0x7ffc0000
[  247.799958][   T28] audit: type=1326 audit(247.651:1102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3491 comm="syz.2.881" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7ff7dc59ce59 code=0x7ffc0000
[  247.863317][ T3501] loop1: detected capacity change from 0 to 256
[  247.868008][   T28] audit: type=1326 audit(247.651:1103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3491 comm="syz.2.881" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7ff7dc59cbc2 code=0x7ffc0000
[  247.895382][   T28] audit: type=1326 audit(247.651:1104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3491 comm="syz.2.881" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7ff7dc55d68e code=0x7ffc0000
[  247.918090][ T3500] xt_TCPMSS: Only works on TCP SYN packets
[  247.930419][ T3501] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  247.941254][ T3501] FAT-fs (loop1): Filesystem has been set read-only
[  247.948056][ T3501] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  247.959203][ T3501] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  247.960238][   T28] audit: type=1326 audit(247.651:1105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3491 comm="syz.2.881" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7ff7dc59cc87 code=0x7ffc0000
[  247.969502][ T3501] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  248.054291][   T28] audit: type=1326 audit(247.651:1106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3491 comm="syz.2.881" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ff7dc55d68e code=0x7ffc0000
[  248.084639][   T28] audit: type=1326 audit(247.651:1107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3491 comm="syz.2.881" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff7dc59caeb code=0x7ffc0000
[  248.133902][ T3507] loop5: detected capacity change from 0 to 8192
[  251.863369][ T3534] loop2: detected capacity change from 0 to 2048
[  251.900967][ T3539] loop1: detected capacity change from 0 to 2048
[  251.936633][ T3539] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  252.008265][ T3534] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  252.069002][ T3549] netlink: 8 bytes leftover after parsing attributes in process `syz.0.894'.
[  252.162848][ T3551] netlink: 8 bytes leftover after parsing attributes in process `syz.2.893'.
[  252.421917][ T3553] netlink: 8 bytes leftover after parsing attributes in process `syz.1.895'.
[  252.651935][ T3556] loop4: detected capacity change from 0 to 2048
[  252.683012][ T3556] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  252.728702][  T289] EXT4-fs (loop2): unmounting filesystem.
[  252.997995][  T287] EXT4-fs (loop1): unmounting filesystem.
[  255.473123][  T290] EXT4-fs (loop4): unmounting filesystem.
[  255.740435][ T3580] loop1: detected capacity change from 0 to 8192
[  255.869466][ T3588] loop4: detected capacity change from 0 to 4096
[  255.885279][ T3588] EXT4-fs (loop4): Test dummy encryption mode enabled
[  255.905251][ T3588] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  256.528740][  T290] EXT4-fs (loop4): unmounting filesystem.
[  256.597297][ T2418] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  257.295946][ T3601] loop2: detected capacity change from 0 to 256
[  257.306747][ T3601] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  257.317024][ T3601] FAT-fs (loop2): Filesystem has been set read-only
[  257.323717][ T3601] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  257.333852][ T3601] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  257.342892][ T3603] loop1: detected capacity change from 0 to 4096
[  257.343995][ T3601] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  257.360424][ T3601] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  257.371518][ T3601] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  257.382024][ T3601] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  257.392174][ T3601] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  257.402325][ T3601] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  257.412464][ T3601] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  257.427108][ T3603] EXT4-fs (loop1): Test dummy encryption mode enabled
[  257.460346][ T2418] usb 1-1: Using ep0 maxpacket: 16
[  257.468806][ T2418] usb 1-1: New USB device found, idVendor=0b05, idProduct=1743, bcdDevice= 0.40
[  257.488587][ T3603] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  257.507028][ T2418] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  257.515414][ T2418] usb 1-1: Product: syz
[  257.519585][ T2418] usb 1-1: Manufacturer: syz
[  257.524709][ T2418] usb 1-1: SerialNumber: syz
[  258.141652][ T3620] loop2: detected capacity change from 0 to 2048
[  258.249676][ T3620] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  258.534582][ T2418] usb 1-1: 1:1 : UAC_AS_GENERAL descriptor not found
[  258.542732][  T287] EXT4-fs (loop1): unmounting filesystem.
[  258.553919][ T2418] usb 1-1: unit 1 not found!
[  258.566350][ T3627] loop4: detected capacity change from 0 to 4096
[  258.591372][ T2418] usb 1-1: USB disconnect, device number 12
[  258.615338][ T3627] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  260.368373][   T28] kauditd_printk_skb: 82 callbacks suppressed
[  260.368389][   T28] audit: type=1326 audit(260.351:1190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3637 comm="syz.0.920" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e9ab9ce59 code=0x7ffc0000
[  260.470270][   T28] audit: type=1326 audit(260.351:1191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3637 comm="syz.0.920" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e9ab9ce59 code=0x7ffc0000
[  260.495941][  T289] EXT4-fs (loop2): unmounting filesystem.
[  260.502573][   T28] audit: type=1326 audit(260.351:1192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3637 comm="syz.0.920" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e9ab9ce59 code=0x7ffc0000
[  260.741554][   T28] audit: type=1326 audit(260.351:1193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3637 comm="syz.0.920" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f4e9ab9ce59 code=0x7ffc0000
[  261.398149][  T290] EXT4-fs (loop4): unmounting filesystem.
[  261.417615][   T28] audit: type=1326 audit(260.351:1194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3637 comm="syz.0.920" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f4e9ab9cbc2 code=0x7ffc0000
[  261.443059][   T28] audit: type=1326 audit(260.351:1195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3637 comm="syz.0.920" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f4e9ab5d68e code=0x7ffc0000
[  261.470070][   T28] audit: type=1326 audit(260.351:1196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3637 comm="syz.0.920" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f4e9ab9cc87 code=0x7ffc0000
[  261.480270][ T3647] loop5: detected capacity change from 0 to 256
[  261.500960][   T28] audit: type=1326 audit(260.351:1197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3637 comm="syz.0.920" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4e9ab5d68e code=0x7ffc0000
[  261.517568][ T3649] loop2: detected capacity change from 0 to 4096
[  261.533223][   T28] audit: type=1326 audit(260.351:1198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3637 comm="syz.0.920" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f4e9ab5d68e code=0x7ffc0000
[  261.557696][   T28] audit: type=1326 audit(260.361:1199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3637 comm="syz.0.920" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e9ab9ce59 code=0x7ffc0000
[  261.577067][ T3649] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  261.599443][ T3647] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  261.609596][ T3647] FAT-fs (loop5): Filesystem has been set read-only
[  261.617115][ T3647] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  261.627351][ T3647] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  261.637542][ T3647] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  261.647682][ T3647] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  261.657830][ T3647] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  261.668605][ T3647] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  261.679123][ T3647] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  261.689355][ T3647] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  261.699493][ T3647] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  261.720297][ T2753] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  264.370277][ T2753] usb 5-1: Using ep0 maxpacket: 16
[  264.377976][ T2753] usb 5-1: New USB device found, idVendor=0b05, idProduct=1743, bcdDevice= 0.40
[  264.387092][ T2753] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  264.629687][ T2753] usb 5-1: Product: syz
[  264.642806][ T2753] usb 5-1: Manufacturer: syz
[  264.655807][ T2753] usb 5-1: SerialNumber: syz
[  265.517660][  T289] EXT4-fs (loop2): unmounting filesystem.
[  265.697981][ T3664] loop4: detected capacity change from 0 to 4096
[  265.710126][ T3672] loop2: detected capacity change from 0 to 256
[  265.719838][ T3668] loop5: detected capacity change from 0 to 256
[  265.729902][ T2753] usb 5-1: can't set config #1, error -71
[  265.741206][ T2753] usb 5-1: USB disconnect, device number 6
[  265.757099][ T3672] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  265.767276][ T3672] FAT-fs (loop2): Filesystem has been set read-only
[  265.773926][ T3672] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  265.784117][ T3672] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  265.794261][ T3672] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  265.804383][ T3672] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  265.814507][ T3672] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  265.824676][ T3672] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  265.834815][ T3672] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  265.844955][ T3672] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  265.855119][ T3672] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  265.888190][ T3664] EXT4-fs (loop4): Test dummy encryption mode enabled
[  265.915092][ T3664] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  266.000293][ T2418] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[  266.190223][ T2418] usb 2-1: Using ep0 maxpacket: 16
[  266.198106][ T2418] usb 2-1: New USB device found, idVendor=0b05, idProduct=1743, bcdDevice= 0.40
[  266.208022][ T2418] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  266.216233][ T2418] usb 2-1: Product: syz
[  266.220639][ T2418] usb 2-1: Manufacturer: syz
[  266.225270][ T2418] usb 2-1: SerialNumber: syz
[  266.534725][ T3668] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  266.545354][ T3668] FAT-fs (loop5): Filesystem has been set read-only
[  266.552240][ T3668] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  266.561738][ T2418] usb 2-1: 1:1 : UAC_AS_GENERAL descriptor not found
[  266.562626][ T3668] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  266.569541][ T2418] usb 2-1: unit 1 not found!
[  266.602390][ T2418] usb 2-1: USB disconnect, device number 17
[  267.343753][  T290] EXT4-fs (loop4): unmounting filesystem.
[  267.736552][ T3692] loop2: detected capacity change from 0 to 4096
[  267.786258][ T3692] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  268.172191][ T3703] loop1: detected capacity change from 0 to 2048
[  268.199759][ T3703] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  268.325323][  T289] EXT4-fs (loop2): unmounting filesystem.
[  269.322312][ T3713] loop2: detected capacity change from 0 to 256
[  269.360638][  T287] EXT4-fs (loop1): unmounting filesystem.
[  269.391392][ T3713] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  269.401569][ T3713] FAT-fs (loop2): Filesystem has been set read-only
[  269.408190][ T3713] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  269.418319][ T3713] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  269.428473][ T3713] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  269.438597][ T3713] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  269.448816][ T3713] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  269.459029][ T3713] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  269.469157][ T3713] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  269.479319][ T3713] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  269.489462][ T3713] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  273.474635][ T3722] loop5: detected capacity change from 0 to 4096
[  273.552374][ T3722] EXT4-fs (loop5): Test dummy encryption mode enabled
[  274.129997][ T3732] loop4: detected capacity change from 0 to 8192
[  274.213499][ T3722] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  274.260247][   T28] kauditd_printk_skb: 67 callbacks suppressed
[  274.260268][   T28] audit: type=1326 audit(274.191:1267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3734 comm="syz.1.948" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc56d59ce59 code=0x7ffc0000
[  274.536000][   T28] audit: type=1326 audit(274.191:1268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3734 comm="syz.1.948" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc56d59ce59 code=0x7ffc0000
[  274.580409][   T28] audit: type=1326 audit(274.191:1269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3734 comm="syz.1.948" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc56d59ce59 code=0x7ffc0000
[  274.739245][   T28] audit: type=1326 audit(274.191:1270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3734 comm="syz.1.948" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc56d59ce59 code=0x7ffc0000
[  274.800279][ T2753] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  274.903551][   T28] audit: type=1326 audit(274.191:1271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3734 comm="syz.1.948" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=253 compat=0 ip=0x7fc56d59ce59 code=0x7ffc0000
[  274.944109][   T28] audit: type=1326 audit(274.191:1272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3734 comm="syz.1.948" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc56d59ce59 code=0x7ffc0000
[  274.974365][ T3745] loop2: detected capacity change from 0 to 4096
[  274.981328][   T28] audit: type=1326 audit(274.191:1274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3734 comm="syz.1.948" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc56d59ce59 code=0x7ffc0000
[  275.005635][   T28] audit: type=1326 audit(274.191:1275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3734 comm="syz.1.948" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc56d59ce59 code=0x7ffc0000
[  275.029842][   T28] audit: type=1326 audit(274.191:1273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3734 comm="syz.1.948" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc56d59ce59 code=0x7ffc0000
[  275.054038][   T28] audit: type=1326 audit(274.201:1276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3734 comm="syz.1.948" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fc56d59ce59 code=0x7ffc0000
[  275.054949][ T3745] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  275.110264][ T2753] usb 1-1: Using ep0 maxpacket: 16
[  275.120296][ T2753] usb 1-1: New USB device found, idVendor=0b05, idProduct=1743, bcdDevice= 0.40
[  275.140411][ T2753] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  275.158328][ T2753] usb 1-1: Product: syz
[  275.166918][ T2753] usb 1-1: Manufacturer: syz
[  275.175912][ T2753] usb 1-1: SerialNumber: syz
[  275.242259][ T3751] loop1: detected capacity change from 0 to 2048
[  275.277866][  T289] EXT4-fs (loop2): unmounting filesystem.
[  275.285010][ T3751] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  275.393827][ T2753] usb 1-1: 1:1 : UAC_AS_GENERAL descriptor not found
[  275.402181][ T2753] usb 1-1: unit 1 not found!
[  275.412873][ T2753] usb 1-1: USB disconnect, device number 13
[  275.654896][ T2503] udevd[2503]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory
[  275.743911][ T3761] loop4: detected capacity change from 0 to 256
[  275.755242][ T1458] EXT4-fs (loop5): unmounting filesystem.
[  275.762515][ T3761] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  275.772644][ T3761] FAT-fs (loop4): Filesystem has been set read-only
[  275.779273][ T3761] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  275.789657][ T3761] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  275.799903][ T3761] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  275.810059][ T3761] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  275.820212][ T3761] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  275.830350][ T3761] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  275.985621][  T287] EXT4-fs (loop1): unmounting filesystem.
[  282.353933][ T3791] loop4: detected capacity change from 0 to 4096
[  282.381727][ T3791] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  283.110435][ T3806] loop1: detected capacity change from 0 to 8192
[  283.432649][ T3809] loop5: detected capacity change from 0 to 256
[  284.511197][ T3809] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  284.535545][ T3809] FAT-fs (loop5): Filesystem has been set read-only
[  284.542361][ T3809] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  284.552510][ T3809] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  284.562744][ T3809] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  284.635697][  T290] EXT4-fs (loop4): unmounting filesystem.
[  284.670070][ T3822] loop4: detected capacity change from 0 to 4096
[  284.765967][ T3822] EXT4-fs (loop4): Test dummy encryption mode enabled
[  284.773177][   T24] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  284.913331][ T3822] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  284.913899][ T3827] loop5: detected capacity change from 0 to 4096
[  284.939674][ T3827] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  285.060209][   T24] usb 1-1: Using ep0 maxpacket: 16
[  285.067680][   T24] usb 1-1: New USB device found, idVendor=0b05, idProduct=1743, bcdDevice= 0.40
[  285.076842][   T24] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  285.085274][   T24] usb 1-1: Product: syz
[  285.089799][   T24] usb 1-1: Manufacturer: syz
[  285.094583][   T24] usb 1-1: SerialNumber: syz
[  286.237652][  T290] EXT4-fs (loop4): unmounting filesystem.
[  286.772076][   T24] usb 1-1: 1:1 : UAC_AS_GENERAL descriptor not found
[  286.790131][   T24] usb 1-1: unit 1 not found!
[  286.867956][ T1458] EXT4-fs (loop5): unmounting filesystem.
[  288.060441][   T24] usb 1-1: USB disconnect, device number 14
[  288.162097][ T2503] udevd[2503]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory
[  290.810720][ T3846] loop4: detected capacity change from 0 to 8192
[  293.846227][ T3869] loop2: detected capacity change from 0 to 8192
[  294.097316][ T3880] loop1: detected capacity change from 0 to 4096
[  294.124126][ T3880] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  294.489634][ T3887] loop4: detected capacity change from 0 to 8192
[  294.646012][ T3889] xt_TCPMSS: Only works on TCP SYN packets
[  296.537698][ T3898] loop4: detected capacity change from 0 to 4096
[  296.553158][  T287] EXT4-fs (loop1): unmounting filesystem.
[  296.578353][ T3900] loop5: detected capacity change from 0 to 2048
[  296.604401][ T3898] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  296.612321][ T3900] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  299.652388][  T290] EXT4-fs (loop4): unmounting filesystem.
[  299.896262][ T3929] loop4: detected capacity change from 0 to 2048
[  299.939335][ T3929] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  300.003159][ T1458] EXT4-fs (loop5): unmounting filesystem.
[  300.074604][ T3934] loop2: detected capacity change from 0 to 256
[  300.528297][ T3953] loop1: detected capacity change from 0 to 4096
[  300.546434][ T3953] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  301.598358][  T287] EXT4-fs (loop1): unmounting filesystem.
[  301.604022][ T3960] xt_TCPMSS: Only works on TCP SYN packets
[  304.387779][  T290] EXT4-fs (loop4): unmounting filesystem.
[  304.403914][ T3972] loop2: detected capacity change from 0 to 128
[  304.419156][ T3972] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  304.425766][ T3980] loop4: detected capacity change from 0 to 256
[  304.427825][   T28] kauditd_printk_skb: 84 callbacks suppressed
[  304.427837][   T28] audit: type=1326 audit(304.411:1361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3979 comm="syz.4.1009" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff053f9ce59 code=0x7ffc0000
[  304.490291][   T28] audit: type=1326 audit(304.411:1362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3979 comm="syz.4.1009" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff053f9ce59 code=0x7ffc0000
[  304.781860][   T28] audit: type=1326 audit(304.411:1363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3979 comm="syz.4.1009" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff053f9ce59 code=0x7ffc0000
[  304.793718][ T3982] loop5: detected capacity change from 0 to 8192
[  304.812782][   T28] audit: type=1326 audit(304.411:1364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3979 comm="syz.4.1009" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7ff053f9ce59 code=0x7ffc0000
[  304.869014][   T28] audit: type=1326 audit(304.411:1365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3979 comm="syz.4.1009" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7ff053f9cbc2 code=0x7ffc0000
[  305.045519][   T28] audit: type=1326 audit(304.411:1366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3979 comm="syz.4.1009" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7ff053f5d68e code=0x7ffc0000
[  305.133093][   T28] audit: type=1326 audit(304.411:1367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3979 comm="syz.4.1009" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7ff053f9cc87 code=0x7ffc0000
[  305.190889][   T28] audit: type=1326 audit(304.411:1368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3979 comm="syz.4.1009" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ff053f5d68e code=0x7ffc0000
[  305.226433][   T28] audit: type=1326 audit(304.411:1369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3979 comm="syz.4.1009" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff053f9caeb code=0x7ffc0000
[  305.301861][   T28] audit: type=1326 audit(304.431:1370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3979 comm="syz.4.1009" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7ff053f5d68e code=0x7ffc0000
[  305.327475][ T3992] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1011'.
[  305.365462][ T3994] loop1: detected capacity change from 0 to 4096
[  305.393758][ T3994] EXT4-fs (loop1): Test dummy encryption mode enabled
[  305.410264][ T2418] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  305.450983][ T3994] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  305.912318][ T4005] loop5: detected capacity change from 0 to 2048
[  305.939468][ T4005] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  305.951699][ T2418] usb 3-1: Using ep0 maxpacket: 16
[  305.969270][ T2418] usb 3-1: New USB device found, idVendor=0b05, idProduct=1743, bcdDevice= 0.40
[  305.981814][ T2418] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  305.991364][ T2418] usb 3-1: Product: syz
[  305.995605][ T2418] usb 3-1: Manufacturer: syz
[  306.001310][ T2418] usb 3-1: SerialNumber: syz
[  307.061232][ T1458] EXT4-fs (loop5): unmounting filesystem.
[  309.244744][ T2418] usb 3-1: 1:1 : UAC_AS_GENERAL descriptor not found
[  309.600251][ T2418] usb 3-1: unit 1 not found!
[  309.609475][ T2418] usb 3-1: USB disconnect, device number 7
[  309.618049][ T4025] loop5: detected capacity change from 0 to 4096
[  309.634768][ T4025] EXT4-fs (loop5): Test dummy encryption mode enabled
[  310.438996][  T289] EXT4-fs (loop2): unmounting filesystem.
[  310.457844][ T4025] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  311.985175][ T1458] EXT4-fs (loop5): unmounting filesystem.
[  314.010221][   T24] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  315.810224][   T24] usb 1-1: Using ep0 maxpacket: 16
[  315.818083][   T24] usb 1-1: New USB device found, idVendor=0b05, idProduct=1743, bcdDevice= 0.40
[  315.831154][ T4064] loop5: detected capacity change from 0 to 256
[  315.840193][   T24] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  315.848355][   T24] usb 1-1: Product: syz
[  315.860190][   T24] usb 1-1: Manufacturer: syz
[  315.863099][ T4064] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  315.864819][   T24] usb 1-1: SerialNumber: syz
[  315.876426][ T4064] FAT-fs (loop5): Filesystem has been set read-only
[  315.886365][ T4064] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  315.906906][ T4064] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  315.927733][ T4064] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  315.955608][  T287] EXT4-fs (loop1): unmounting filesystem.
[  316.087620][ T4073] loop4: detected capacity change from 0 to 512
[  316.112149][   T24] usb 1-1: 1:1 : UAC_AS_GENERAL descriptor not found
[  316.131126][   T24] usb 1-1: unit 1 not found!
[  316.251387][ T4075] loop1: detected capacity change from 0 to 8192
[  316.267153][ T4073] xt_TCPMSS: Only works on TCP SYN packets
[  316.349316][   T24] usb 1-1: USB disconnect, device number 15
[  316.606010][ T4077] loop5: detected capacity change from 0 to 2048
[  316.614527][ T2503] udevd[2503]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory
[  316.657203][ T4077] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  316.859467][ T4084] loop2: detected capacity change from 0 to 4096
[  318.062867][ T4084] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  318.323749][ T4093] loop1: detected capacity change from 0 to 4096
[  318.372937][ T4093] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  318.497799][  T289] EXT4-fs (loop2): unmounting filesystem.
[  318.676803][   T28] kauditd_printk_skb: 97 callbacks suppressed
[  318.676818][   T28] audit: type=1326 audit(318.661:1468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4101 comm="syz.4.1039" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff053f9ce59 code=0x7ffc0000
[  322.126026][   T28] audit: type=1326 audit(321.981:1469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4101 comm="syz.4.1039" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff053f9ce59 code=0x7ffc0000
[  322.151627][ T4102] loop4: detected capacity change from 0 to 256
[  322.185153][  T287] EXT4-fs (loop1): unmounting filesystem.
[  322.191540][   T28] audit: type=1326 audit(321.981:1470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4101 comm="syz.4.1039" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff053f9ce59 code=0x7ffc0000
[  322.239819][ T1458] EXT4-fs (loop5): unmounting filesystem.
[  322.262348][   T28] audit: type=1326 audit(321.981:1471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4101 comm="syz.4.1039" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff053f9ce59 code=0x7ffc0000
[  322.308552][   T28] audit: type=1326 audit(321.981:1472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4101 comm="syz.4.1039" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7ff053f9ce59 code=0x7ffc0000
[  322.380194][   T28] audit: type=1326 audit(321.981:1473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4101 comm="syz.4.1039" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7ff053f9cbc2 code=0x7ffc0000
[  322.390331][ T4114] loop5: detected capacity change from 0 to 256
[  322.425720][ T4116] loop2: detected capacity change from 0 to 4096
[  322.433224][ T4116] EXT4-fs (loop2): Test dummy encryption mode enabled
[  322.441743][   T28] audit: type=1326 audit(322.141:1474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4101 comm="syz.4.1039" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7ff053f5d68e code=0x7ffc0000
[  322.563707][   T28] audit: type=1326 audit(322.141:1475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4101 comm="syz.4.1039" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7ff053f9cc87 code=0x7ffc0000
[  322.580782][ T4116] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  322.609150][ T4114] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  322.679156][ T4114] FAT-fs (loop5): Filesystem has been set read-only
[  322.703359][   T28] audit: type=1326 audit(322.141:1476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4101 comm="syz.4.1039" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ff053f5d68e code=0x7ffc0000
[  322.717756][ T4114] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  322.754677][ T4113] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  322.754859][   T28] audit: type=1326 audit(322.141:1477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4101 comm="syz.4.1039" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff053f9caeb code=0x7ffc0000
[  322.764906][ T4113] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  322.764943][ T4113] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  322.809182][ T4114] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  322.828555][ T4122] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  322.838740][ T4114] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  322.910221][ T4122] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  322.920652][ T4122] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  323.612357][ T4130] loop1: detected capacity change from 0 to 4096
[  323.658493][ T4130] EXT4-fs (loop1): Test dummy encryption mode enabled
[  323.659727][  T289] EXT4-fs (loop2): unmounting filesystem.
[  323.677448][ T4130] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  323.782008][ T4136] loop4: detected capacity change from 0 to 4096
[  323.828938][ T4136] EXT4-fs (loop4): Test dummy encryption mode enabled
[  323.865995][ T4136] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  324.772588][ T4145] loop2: detected capacity change from 0 to 256
[  324.786705][ T4145] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  324.797060][ T4145] FAT-fs (loop2): Filesystem has been set read-only
[  324.803735][ T4145] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  324.813878][ T4145] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  324.824170][ T4145] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  324.834741][ T4145] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  324.844905][ T4145] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  324.855057][ T4145] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  324.865201][ T4145] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  324.875349][ T4144] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  324.885816][ T4145] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  324.886902][  T287] EXT4-fs (loop1): unmounting filesystem.
[  325.006898][ T4152] loop1: detected capacity change from 0 to 256
[  325.018437][ T4152] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  325.029730][ T4152] FAT-fs (loop1): Filesystem has been set read-only
[  325.036390][ T4152] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  325.046719][ T4152] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  325.056986][ T4152] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  325.067238][ T4152] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  325.077399][ T4152] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  325.087626][ T4152] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  325.097763][ T4152] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  325.107921][ T4152] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  325.118060][ T4152] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  325.646439][   T28] kauditd_printk_skb: 92 callbacks suppressed
[  325.646454][   T28] audit: type=1326 audit(325.631:1570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4157 comm="syz.2.1052" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7dc59ce59 code=0x7ffc0000
[  325.648282][ T4158] loop2: detected capacity change from 0 to 256
[  325.660178][   T28] audit: type=1326 audit(325.631:1571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4157 comm="syz.2.1052" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7dc59ce59 code=0x7ffc0000
[  325.710049][ T4160] loop5: detected capacity change from 0 to 4096
[  325.748228][   T28] audit: type=1326 audit(325.631:1572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4157 comm="syz.2.1052" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7dc59ce59 code=0x7ffc0000
[  325.814990][ T4160] EXT4-fs (loop5): Test dummy encryption mode enabled
[  325.827192][   T28] audit: type=1326 audit(325.631:1573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4157 comm="syz.2.1052" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7dc59ce59 code=0x7ffc0000
[  325.851989][   T28] audit: type=1326 audit(325.631:1574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4157 comm="syz.2.1052" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7ff7dc59ce59 code=0x7ffc0000
[  325.892447][ T4160] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  326.077947][   T28] audit: type=1326 audit(325.631:1575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4157 comm="syz.2.1052" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7ff7dc59cbc2 code=0x7ffc0000
[  326.109137][ T4165] loop1: detected capacity change from 0 to 2048
[  326.118632][   T28] audit: type=1326 audit(325.631:1576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4157 comm="syz.2.1052" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7ff7dc55d68e code=0x7ffc0000
[  326.174330][   T28] audit: type=1326 audit(325.631:1577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4157 comm="syz.2.1052" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7ff7dc59cc87 code=0x7ffc0000
[  326.231682][   T28] audit: type=1326 audit(325.631:1578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4157 comm="syz.2.1052" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ff7dc55d68e code=0x7ffc0000
[  326.256454][   T28] audit: type=1326 audit(325.631:1579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4157 comm="syz.2.1052" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff7dc59caeb code=0x7ffc0000
[  327.019739][ T4165] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  327.134192][ T1458] EXT4-fs (loop5): unmounting filesystem.
[  327.157880][ T4173] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1054'.
[  327.218922][ T4175] loop2: detected capacity change from 0 to 4096
[  327.249484][ T4175] EXT4-fs (loop2): Test dummy encryption mode enabled
[  327.544659][ T4181] loop5: detected capacity change from 0 to 8192
[  327.808921][  T287] EXT4-fs (loop1): unmounting filesystem.
[  327.846021][ T4175] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  328.127435][ T4189] loop1: detected capacity change from 0 to 256
[  328.141772][  T290] EXT4-fs (loop4): unmounting filesystem.
[  328.217991][ T4197] loop4: detected capacity change from 0 to 256
[  328.227653][ T4189] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  328.297237][ T4189] FAT-fs (loop1): Filesystem has been set read-only
[  328.306822][ T4195] loop5: detected capacity change from 0 to 4096
[  328.320589][ T4189] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  328.334329][ T4195] EXT4-fs (loop5): Test dummy encryption mode enabled
[  328.340227][ T4188] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  328.358338][ T4189] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  328.415598][ T4188] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  328.531379][ T4188] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  328.560415][ T4198] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  328.562907][ T4195] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  328.571054][ T4198] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  328.605048][ T4198] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  328.631373][ T4198] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  329.142519][ T4209] loop4: detected capacity change from 0 to 256
[  329.156085][ T4209] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  329.166270][ T4209] FAT-fs (loop4): Filesystem has been set read-only
[  329.172972][ T4209] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  329.183084][ T4209] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  329.193319][ T4209] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  329.203456][ T4209] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  329.213580][ T4208] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  329.224388][ T4209] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  329.234765][ T4208] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  329.244980][ T4209] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  329.255239][ T4208] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  331.439361][  T289] EXT4-fs (loop2): unmounting filesystem.
[  331.545453][ T4225] loop2: detected capacity change from 0 to 2048
[  332.650818][ T4225] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  332.665307][ T4231] loop1: detected capacity change from 0 to 128
[  332.815389][ T4242] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1068'.
[  332.821379][ T4241] loop4: detected capacity change from 0 to 8192
[  332.983957][ T4231] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  333.022341][  T289] EXT4-fs (loop2): unmounting filesystem.
[  333.397992][ T1458] EXT4-fs (loop5): unmounting filesystem.
[  333.440223][ T2753] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  333.484175][ T2418] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[  333.610562][ T4257] loop4: detected capacity change from 0 to 2048
[  333.630239][ T2753] usb 3-1: Using ep0 maxpacket: 16
[  333.668154][ T2753] usb 3-1: New USB device found, idVendor=0b05, idProduct=1743, bcdDevice= 0.40
[  333.680234][ T2418] usb 2-1: Using ep0 maxpacket: 16
[  333.688672][ T4257] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  333.690749][ T2753] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  333.706486][ T2753] usb 3-1: Product: syz
[  333.708156][ T2418] usb 2-1: New USB device found, idVendor=0b05, idProduct=1743, bcdDevice= 0.40
[  333.720202][ T2753] usb 3-1: Manufacturer: syz
[  333.724891][ T2753] usb 3-1: SerialNumber: syz
[  333.899901][ T2418] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  333.908889][ T2418] usb 2-1: Product: syz
[  333.913769][ T2418] usb 2-1: Manufacturer: syz
[  333.918432][ T2418] usb 2-1: SerialNumber: syz
[  335.122998][ T2753] usb 3-1: 1:1 : UAC_AS_GENERAL descriptor not found
[  335.216460][ T2753] usb 3-1: unit 1 not found!
[  335.225446][ T2753] usb 3-1: USB disconnect, device number 8
[  335.231647][ T2418] usb 2-1: 1:1 : UAC_AS_GENERAL descriptor not found
[  335.239558][  T290] EXT4-fs (loop4): unmounting filesystem.
[  335.247354][ T2418] usb 2-1: unit 1 not found!
[  335.282044][ T4266] loop4: detected capacity change from 0 to 2048
[  335.551480][ T2418] usb 2-1: USB disconnect, device number 18
[  335.551624][ T4266] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  335.863342][  T505] udevd[505]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory
[  335.950284][  T287] EXT4-fs (loop1): unmounting filesystem.
[  335.996857][ T4274] loop2: detected capacity change from 0 to 4096
[  336.003687][ T2503] udevd[2503]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card1/controlC1/../uevent} for writing: No such file or directory
[  336.050515][ T4274] EXT4-fs (loop2): Test dummy encryption mode enabled
[  336.078057][ T4280] loop1: detected capacity change from 0 to 4096
[  336.086661][ T4280] EXT4-fs (loop1): Test dummy encryption mode enabled
[  336.136816][  T290] EXT4-fs (loop4): unmounting filesystem.
[  336.149047][ T4274] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  336.162062][ T4280] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  339.027269][  T287] EXT4-fs (loop1): unmounting filesystem.
[  340.194889][ T4302] loop4: detected capacity change from 0 to 2048
[  340.251043][ T4304] loop5: detected capacity change from 0 to 128
[  340.270922][ T4302] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  340.787179][ T4304] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  342.536564][ T4320] loop1: detected capacity change from 0 to 4096
[  342.570529][ T4324] xt_TCPMSS: Only works on TCP SYN packets
[  342.591498][ T4320] EXT4-fs (loop1): Test dummy encryption mode enabled
[  342.621345][ T4320] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  342.758685][ T4332] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1088'.
[  342.900236][ T2418] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  343.100181][ T2418] usb 6-1: Using ep0 maxpacket: 16
[  343.106365][ T2418] usb 6-1: device descriptor read/all, error -61
[  343.160529][  T290] EXT4-fs (loop4): unmounting filesystem.
[  343.270192][ T2418] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  344.390175][ T2418] usb 6-1: device descriptor read/64, error -71
[  344.711725][   T28] kauditd_printk_skb: 144 callbacks suppressed
[  344.711741][   T28] audit: type=1326 audit(344.701:1724): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4344 comm="syz.4.1097" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff053f9ce59 code=0x7ffc0000
[  344.713497][ T4345] loop4: detected capacity change from 0 to 256
[  344.717943][   T28] audit: type=1326 audit(344.701:1725): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4344 comm="syz.4.1097" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff053f9ce59 code=0x7ffc0000
[  344.717969][   T28] audit: type=1326 audit(344.701:1726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4344 comm="syz.4.1097" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff053f9ce59 code=0x7ffc0000
[  344.808727][   T28] audit: type=1326 audit(344.701:1727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4344 comm="syz.4.1097" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff053f9ce59 code=0x7ffc0000
[  344.834699][   T28] audit: type=1326 audit(344.701:1728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4344 comm="syz.4.1097" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7ff053f9ce59 code=0x7ffc0000
[  344.834951][  T289] EXT4-fs (loop2): unmounting filesystem.
[  344.859162][   T28] audit: type=1326 audit(344.701:1729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4344 comm="syz.4.1097" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7ff053f9cbc2 code=0x7ffc0000
[  344.920218][   T28] audit: type=1326 audit(344.701:1730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4344 comm="syz.4.1097" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7ff053f5d68e code=0x7ffc0000
[  344.946235][ T1458] EXT4-fs (loop5): unmounting filesystem.
[  344.951537][ T4347] loop2: detected capacity change from 0 to 2048
[  345.039940][   T28] audit: type=1326 audit(344.701:1731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4344 comm="syz.4.1097" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7ff053f9cc87 code=0x7ffc0000
[  345.070585][ T4347] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  345.230466][   T28] audit: type=1326 audit(344.701:1732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4344 comm="syz.4.1097" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ff053f5d68e code=0x7ffc0000
[  345.290375][   T28] audit: type=1326 audit(344.701:1733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4344 comm="syz.4.1097" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff053f9caeb code=0x7ffc0000
[  345.407256][ T4359] loop4: detected capacity change from 0 to 2048
[  345.414211][ T4360] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1098'.
[  345.461582][ T4359] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  345.471497][  T287] EXT4-fs (loop1): unmounting filesystem.
[  346.251030][  T290] EXT4-fs (loop4): unmounting filesystem.
[  346.315599][ T4379] loop4: detected capacity change from 0 to 256
[  346.328472][ T4379] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  346.338655][ T4379] FAT-fs (loop4): Filesystem has been set read-only
[  346.345302][ T4379] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  346.355418][ T4379] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  346.365572][ T4379] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  346.375712][ T4379] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  346.385854][ T4378] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  346.396099][ T4379] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  346.406791][ T4378] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  346.408427][  T289] EXT4-fs (loop2): unmounting filesystem.
[  346.417562][ T4378] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  346.434071][ T4379] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  347.484638][ T4399] loop4: detected capacity change from 0 to 4096
[  347.501015][ T4399] EXT4-fs (loop4): Test dummy encryption mode enabled
[  347.515694][ T4399] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  348.318944][ T4415] loop5: detected capacity change from 0 to 2048
[  348.371681][ T4415] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  348.398685][  T290] EXT4-fs (loop4): unmounting filesystem.
[  348.856098][ T4429] xt_TCPMSS: Only works on TCP SYN packets
[  348.895290][ T4431] loop2: detected capacity change from 0 to 256
[  348.906136][ T4431] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  348.916606][ T4431] FAT-fs (loop2): Filesystem has been set read-only
[  348.923278][ T4431] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  348.933379][ T4431] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  348.943593][ T4431] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  348.953718][ T4431] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  348.963839][ T4430] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  349.128490][ T4431] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  349.138722][ T4430] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  349.148933][ T4431] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  349.159145][ T4430] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  350.437168][ T1458] EXT4-fs (loop5): unmounting filesystem.
[  350.452930][ T4440] loop1: detected capacity change from 0 to 4096
[  351.828799][ T4440] EXT4-fs (loop1): Test dummy encryption mode enabled
[  351.895019][ T4440] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  352.251885][ T4461] loop2: detected capacity change from 0 to 8192
[  352.560601][   T24] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[  352.796535][ T4466] loop5: detected capacity change from 0 to 4096
[  352.818152][ T4466] EXT4-fs (loop5): Test dummy encryption mode enabled
[  352.829064][   T28] kauditd_printk_skb: 82 callbacks suppressed
[  352.829078][   T28] audit: type=1326 audit(352.811:1816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4468 comm="syz.4.1131" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff053f9ce59 code=0x7ffc0000
[  352.850180][   T24] usb 1-1: Using ep0 maxpacket: 16
[  352.862044][ T4469] loop4: detected capacity change from 0 to 256
[  352.885862][ T4466] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  352.904289][   T24] usb 1-1: New USB device found, idVendor=0b05, idProduct=1743, bcdDevice= 0.40
[  352.910847][   T28] audit: type=1326 audit(352.841:1817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4468 comm="syz.4.1131" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff053f9ce59 code=0x7ffc0000
[  352.952587][   T28] audit: type=1326 audit(352.841:1818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4468 comm="syz.4.1131" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff053f9ce59 code=0x7ffc0000
[  352.953838][   T24] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  352.977358][   T28] audit: type=1326 audit(352.841:1819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4468 comm="syz.4.1131" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff053f9ce59 code=0x7ffc0000
[  353.010553][   T28] audit: type=1326 audit(352.841:1820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4468 comm="syz.4.1131" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7ff053f9ce59 code=0x7ffc0000
[  353.020172][   T24] usb 1-1: Product: syz
[  353.034896][   T28] audit: type=1326 audit(352.841:1821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4468 comm="syz.4.1131" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7ff053f9cbc2 code=0x7ffc0000
[  353.063009][   T28] audit: type=1326 audit(352.841:1822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4468 comm="syz.4.1131" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7ff053f5d68e code=0x7ffc0000
[  353.107200][   T28] audit: type=1326 audit(352.841:1823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4468 comm="syz.4.1131" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7ff053f9cc87 code=0x7ffc0000
[  353.107360][   T24] usb 1-1: Manufacturer: syz
[  353.139065][   T24] usb 1-1: SerialNumber: syz
[  353.151606][   T28] audit: type=1326 audit(352.841:1824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4468 comm="syz.4.1131" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ff053f5d68e code=0x7ffc0000
[  353.176121][   T28] audit: type=1326 audit(352.841:1825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4468 comm="syz.4.1131" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff053f9caeb code=0x7ffc0000
[  353.365037][   T24] usb 1-1: 1:1 : UAC_AS_GENERAL descriptor not found
[  353.379015][   T24] usb 1-1: unit 1 not found!
[  353.439816][   T24] usb 1-1: USB disconnect, device number 16
[  353.791757][ T1458] EXT4-fs (loop5): unmounting filesystem.
[  353.926577][ T4484] loop5: detected capacity change from 0 to 2048
[  353.968276][ T4484] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  354.136432][ T4489] loop2: detected capacity change from 0 to 256
[  354.148139][ T4489] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  354.158581][ T4489] FAT-fs (loop2): Filesystem has been set read-only
[  354.165241][ T4489] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  354.175372][ T4489] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  354.185511][ T4489] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  354.195672][ T4489] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  354.205838][ T4489] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  354.215977][ T4489] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  354.226149][ T4489] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  354.236311][ T4489] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  354.246489][ T4489] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  354.333451][  T287] EXT4-fs (loop1): unmounting filesystem.
[  354.650175][   T24] usb 2-1: new high-speed USB device number 19 using dummy_hcd
[  354.662878][ T4497] xt_TCPMSS: Only works on TCP SYN packets
[  354.784378][ T1458] EXT4-fs (loop5): unmounting filesystem.
[  354.854156][ T4505] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1139'.
[  355.642327][ T4516] loop2: detected capacity change from 0 to 4096
[  355.659389][   T24] usb 2-1: Using ep0 maxpacket: 16
[  355.667996][   T24] usb 2-1: New USB device found, idVendor=0b05, idProduct=1743, bcdDevice= 0.40
[  355.678623][   T24] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  355.686722][   T24] usb 2-1: Product: syz
[  355.691018][   T24] usb 2-1: Manufacturer: syz
[  355.695968][ T4516] EXT4-fs (loop2): Test dummy encryption mode enabled
[  355.704728][ T4516] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  355.728717][   T24] usb 2-1: SerialNumber: syz
[  355.913683][ T4525] loop4: detected capacity change from 0 to 128
[  355.950415][   T24] usb 2-1: 1:1 : UAC_AS_GENERAL descriptor not found
[  356.013742][ T4525] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  356.022846][   T24] usb 2-1: unit 1 not found!
[  356.106755][   T24] usb 2-1: USB disconnect, device number 19
[  356.619720][ T2418] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  357.063313][ T4536] loop1: detected capacity change from 0 to 4096
[  357.129093][ T4536] EXT4-fs (loop1): Test dummy encryption mode enabled
[  357.150355][ T2418] usb 6-1: Using ep0 maxpacket: 16
[  357.162801][ T2418] usb 6-1: New USB device found, idVendor=0b05, idProduct=1743, bcdDevice= 0.40
[  357.303802][ T4536] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  357.918677][ T2418] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  357.926751][ T2418] usb 6-1: Product: syz
[  357.930935][ T2418] usb 6-1: Manufacturer: syz
[  357.935629][ T2418] usb 6-1: SerialNumber: syz
[  357.949940][ T2418] usb 6-1: can't set config #1, error -71
[  357.958567][  T290] EXT4-fs (loop4): unmounting filesystem.
[  357.965437][ T2418] usb 6-1: USB disconnect, device number 9
[  358.590479][ T4547] loop4: detected capacity change from 0 to 512
[  358.642096][ T4547] xt_TCPMSS: Only works on TCP SYN packets
[  358.648319][ T2503] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  358.859133][ T4556] loop4: detected capacity change from 0 to 8192
[  359.003618][ T4559] loop5: detected capacity change from 0 to 256
[  359.014251][ T4559] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  359.026488][ T4559] FAT-fs (loop5): Filesystem has been set read-only
[  359.033907][ T4559] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  359.044075][ T4559] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  359.054236][ T4559] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  359.064383][ T4559] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  359.074525][ T4559] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  359.084694][ T4559] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  359.094924][ T4559] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  359.105118][ T4559] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  359.115290][ T4559] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  359.582952][  T289] EXT4-fs (loop2): unmounting filesystem.
[  359.673426][ T4566] loop4: detected capacity change from 0 to 2048
[  359.703548][ T4566] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  359.895585][ T4576] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1153'.
[  360.755277][ T4573] loop2: detected capacity change from 0 to 8192
[  361.230982][ T4582] loop5: detected capacity change from 0 to 256
[  361.242613][ T4582] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  361.252748][ T4582] FAT-fs (loop5): Filesystem has been set read-only
[  361.259356][ T4582] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  361.269469][ T4582] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  361.279610][ T4582] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  361.289747][ T4582] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  361.299877][ T4582] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  361.310033][ T4582] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  361.320207][ T4582] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  361.330443][ T4582] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  361.340570][ T4582] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  361.425137][  T290] EXT4-fs (loop4): unmounting filesystem.
[  361.921845][ T4589] loop2: detected capacity change from 0 to 8192
[  366.236177][ T4617] loop4: detected capacity change from 0 to 512
[  366.321875][  T287] EXT4-fs (loop1): unmounting filesystem.
[  366.510303][ T2503] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  366.678051][ T4617] xt_TCPMSS: Only works on TCP SYN packets
[  366.688537][ T4625] loop5: detected capacity change from 0 to 2048
[  366.689638][ T4621] loop1: detected capacity change from 0 to 128
[  366.708774][ T4621] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  366.723924][ T4625] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  366.951464][ T4633] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1170'.
[  367.272668][ T4641] loop2: detected capacity change from 0 to 4096
[  367.323886][ T4641] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  367.546186][ T1458] EXT4-fs (loop5): unmounting filesystem.
[  367.580215][   T19] usb 2-1: new high-speed USB device number 20 using dummy_hcd
[  367.790186][   T19] usb 2-1: Using ep0 maxpacket: 16
[  368.302069][  T289] EXT4-fs (loop2): unmounting filesystem.
[  368.309667][   T19] usb 2-1: device descriptor read/all, error -61
[  368.483769][ T4663] loop2: detected capacity change from 0 to 2048
[  368.580191][   T19] usb 2-1: new high-speed USB device number 21 using dummy_hcd
[  368.608848][ T4666] loop5: detected capacity change from 0 to 4096
[  368.628000][ T4663] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  368.700967][ T4666] EXT4-fs (loop5): Test dummy encryption mode enabled
[  368.718511][ T4666] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  368.733792][ T4672] loop4: detected capacity change from 0 to 4096
[  368.999974][   T19] usb 2-1: device descriptor read/64, error -71
[  369.022931][ T4672] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  369.340591][   T19] usb 2-1: device descriptor read/64, error -71
[  369.378177][  T289] EXT4-fs (loop2): unmounting filesystem.
[  369.500307][   T19] usb usb2-port1: attempt power cycle
[  369.676290][  T290] EXT4-fs (loop4): unmounting filesystem.
[  369.732700][  T287] EXT4-fs (loop1): unmounting filesystem.
[  369.774063][ T4685] loop2: detected capacity change from 0 to 2048
[  369.786496][ T4689] loop4: detected capacity change from 0 to 256
[  369.800532][   T28] kauditd_printk_skb: 97 callbacks suppressed
[  369.800547][   T28] audit: type=1326 audit(369.771:1923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4688 comm="syz.4.1184" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff053f9ce59 code=0x7ffc0000
[  369.881155][ T4685] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  370.177528][   T28] audit: type=1326 audit(369.771:1924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4688 comm="syz.4.1184" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff053f9ce59 code=0x7ffc0000
[  370.208699][   T28] audit: type=1326 audit(369.771:1925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4688 comm="syz.4.1184" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff053f9ce59 code=0x7ffc0000
[  370.248115][   T28] audit: type=1326 audit(369.771:1926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4688 comm="syz.4.1184" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff053f9ce59 code=0x7ffc0000
[  370.285814][   T28] audit: type=1326 audit(369.771:1927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4688 comm="syz.4.1184" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7ff053f9ce59 code=0x7ffc0000
[  370.315860][ T4697] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1183'.
[  370.350466][   T28] audit: type=1326 audit(369.771:1928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4688 comm="syz.4.1184" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7ff053f9cbc2 code=0x7ffc0000
[  370.375568][   T28] audit: type=1326 audit(369.771:1929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4688 comm="syz.4.1184" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7ff053f5d68e code=0x7ffc0000
[  370.401692][   T28] audit: type=1326 audit(369.771:1930): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4688 comm="syz.4.1184" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7ff053f9cc87 code=0x7ffc0000
[  370.429969][   T28] audit: type=1326 audit(369.771:1931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4688 comm="syz.4.1184" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ff053f5d68e code=0x7ffc0000
[  370.457282][   T28] audit: type=1326 audit(369.771:1932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4688 comm="syz.4.1184" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff053f9caeb code=0x7ffc0000
[  370.565872][  T289] EXT4-fs (loop2): unmounting filesystem.
[  371.025340][ T4714] loop1: detected capacity change from 0 to 2048
[  371.300361][ T4714] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  371.610983][ T4719] loop4: detected capacity change from 0 to 512
[  371.931896][ T4722] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1192'.
[  372.430610][ T2503] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  372.471907][ T4719] xt_TCPMSS: Only works on TCP SYN packets
[  372.486876][ T4724] loop2: detected capacity change from 0 to 2048
[  372.494778][  T287] EXT4-fs (loop1): unmounting filesystem.
[  372.575589][ T4733] loop1: detected capacity change from 0 to 128
[  372.621085][ T4733] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  372.630315][ T4724] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  373.126047][ T1458] EXT4-fs (loop5): unmounting filesystem.
[  373.475004][  T289] EXT4-fs (loop2): unmounting filesystem.
[  373.505863][ T4753] loop2: detected capacity change from 0 to 2048
[  373.525986][ T4753] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  373.590201][   T19] usb 2-1: new high-speed USB device number 23 using dummy_hcd
[  373.597965][ T2418] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  373.720159][  T654] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  373.780170][   T19] usb 2-1: Using ep0 maxpacket: 16
[  373.785371][ T2418] usb 6-1: Using ep0 maxpacket: 16
[  373.793112][   T19] usb 2-1: New USB device found, idVendor=0b05, idProduct=1743, bcdDevice= 0.40
[  373.802564][ T2418] usb 6-1: New USB device found, idVendor=0b05, idProduct=1743, bcdDevice= 0.40
[  373.820153][   T19] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  373.828227][ T2418] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  373.836467][   T19] usb 2-1: Product: syz
[  373.843175][ T2418] usb 6-1: Product: syz
[  373.847361][ T2418] usb 6-1: Manufacturer: syz
[  373.852169][   T19] usb 2-1: Manufacturer: syz
[  373.856762][   T19] usb 2-1: SerialNumber: syz
[  373.861528][ T2418] usb 6-1: SerialNumber: syz
[  373.920262][  T654] usb 5-1: Using ep0 maxpacket: 16
[  373.928675][  T654] usb 5-1: New USB device found, idVendor=0b05, idProduct=1743, bcdDevice= 0.40
[  373.938007][  T654] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  373.946385][  T654] usb 5-1: Product: syz
[  373.950752][  T654] usb 5-1: Manufacturer: syz
[  373.955363][  T654] usb 5-1: SerialNumber: syz
[  374.075450][   T19] usb 2-1: 1:1 : UAC_AS_GENERAL descriptor not found
[  374.082934][   T19] usb 2-1: unit 1 not found!
[  374.089633][ T2418] usb 6-1: 1:1 : UAC_AS_GENERAL descriptor not found
[  374.097828][   T19] usb 2-1: USB disconnect, device number 23
[  374.103859][ T2418] usb 6-1: unit 1 not found!
[  374.120277][ T2418] usb 6-1: USB disconnect, device number 10
[  374.168217][  T654] usb 5-1: 1:1 : UAC_AS_GENERAL descriptor not found
[  374.175384][  T654] usb 5-1: unit 1 not found!
[  374.183262][  T654] usb 5-1: USB disconnect, device number 7
[  374.192580][ T2503] udevd[2503]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory
[  374.353439][  T289] EXT4-fs (loop2): unmounting filesystem.
[  374.370662][ T4764] loop2: detected capacity change from 0 to 512
[  374.435399][ T2503] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  374.437357][ T4764] xt_TCPMSS: Only works on TCP SYN packets
[  374.635188][  T287] EXT4-fs (loop1): unmounting filesystem.
[  374.673726][ T4773] loop1: detected capacity change from 0 to 128
[  374.856534][ T4773] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  374.866659][ T4778] loop4: detected capacity change from 0 to 2048
[  374.891866][ T4778] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  375.266027][   T24] usb 2-1: new high-speed USB device number 24 using dummy_hcd
[  376.210265][ T4798] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1212'.
[  376.542440][  T290] EXT4-fs (loop4): unmounting filesystem.
[  376.570480][   T24] usb 2-1: Using ep0 maxpacket: 16
[  376.631254][   T24] usb 2-1: New USB device found, idVendor=0b05, idProduct=1743, bcdDevice= 0.40
[  376.718231][   T24] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  376.776112][   T24] usb 2-1: Product: syz
[  376.781228][   T24] usb 2-1: Manufacturer: syz
[  376.785860][   T24] usb 2-1: SerialNumber: syz
[  376.832644][ T4814] loop2: detected capacity change from 0 to 128
[  376.854383][ T4814] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  377.137793][   T24] usb 2-1: 1:1 : UAC_AS_GENERAL descriptor not found
[  377.207381][   T24] usb 2-1: unit 1 not found!
[  377.310819][   T24] usb 2-1: USB disconnect, device number 24
[  377.597820][ T2503] udevd[2503]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory
[  377.636385][ T4832] loop4: detected capacity change from 0 to 512
[  377.642858][  T654] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  377.749990][ T4832] xt_TCPMSS: Only works on TCP SYN packets
[  378.077230][  T287] EXT4-fs (loop1): unmounting filesystem.
[  378.804024][   T28] kauditd_printk_skb: 92 callbacks suppressed
[  378.804039][   T28] audit: type=1400 audit(378.791:2025): avc:  denied  { write } for  pid=4845 comm="syz.0.1226" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  378.805809][ T4844] loop4: detected capacity change from 0 to 2048
[  378.842389][ T4844] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  378.900329][ T4850] netlink: 80 bytes leftover after parsing attributes in process `syz.0.1226'.
[  378.947836][ T4853] loop5: detected capacity change from 0 to 2048
[  378.972670][ T4853] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  379.014918][ T4857] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1225'.
[  379.979502][  T290] EXT4-fs (loop4): unmounting filesystem.
[  380.022701][  T289] EXT4-fs (loop2): unmounting filesystem.
[  380.040566][ T4869] loop2: detected capacity change from 0 to 512
[  380.233427][ T4872] loop4: detected capacity change from 0 to 8192
[  380.363481][ T4869] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  380.912258][  T289] EXT4-fs (loop2): unmounting filesystem.
[  380.971669][ T1458] EXT4-fs (loop5): unmounting filesystem.
[  380.994716][ T4885] loop5: detected capacity change from 0 to 512
[  381.037750][ T2503] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  381.045508][ T4885] xt_TCPMSS: Only works on TCP SYN packets
[  381.060962][ T4888] loop2: detected capacity change from 0 to 256
[  381.091432][ T4888] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  381.101629][ T4888] FAT-fs (loop2): Filesystem has been set read-only
[  381.108303][ T4888] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  381.118492][ T4888] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  381.128758][ T4888] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  381.138958][ T4888] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  381.149165][ T4888] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  381.159417][ T4888] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  381.169743][ T4888] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  381.179972][ T4888] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  381.190220][ T4888] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  384.095422][ T4896] loop2: detected capacity change from 0 to 2048
[  384.171060][ T4900] loop5: detected capacity change from 0 to 128
[  384.204606][ T4896] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  384.249616][ T4900] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  384.462836][ T4914] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1239'.
[  385.024411][  T289] EXT4-fs (loop2): unmounting filesystem.
[  385.130533][  T654] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  385.340214][  T654] usb 6-1: Using ep0 maxpacket: 16
[  385.357111][  T654] usb 6-1: New USB device found, idVendor=0b05, idProduct=1743, bcdDevice= 0.40
[  385.408427][ T4926] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  385.417223][  T654] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  385.426390][  T654] usb 6-1: Product: syz
[  385.433700][  T654] usb 6-1: Manufacturer: syz
[  385.441431][  T654] usb 6-1: SerialNumber: syz
[  385.446562][ T4926] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  385.613970][ T4928] loop2: detected capacity change from 0 to 8192
[  385.747361][ T4933] loop4: detected capacity change from 0 to 512
[  385.776117][ T4933] EXT4-fs: Ignoring removed nomblk_io_submit option
[  385.838856][ T4933] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  385.882785][ T1457] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  385.892823][ T1457] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  385.914651][ T4933] EXT4-fs (loop4): 1 truncate cleaned up
[  385.933560][ T1457] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  385.942520][ T4933] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  385.963309][ T1457] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  386.021289][ T1457] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  386.030530][ T1457] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  386.046654][ T1457] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_0: link becomes ready
[  386.047984][ T4939] loop1: detected capacity change from 0 to 512
[  386.062806][ T1457] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  386.072501][ T1457] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_1: link becomes ready
[  386.081443][ T1457] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  386.114130][ T4939] xt_TCPMSS: Only works on TCP SYN packets
[  386.115571][ T1457] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  386.135713][ T1457] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  386.164305][ T1457] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  386.185199][   T28] audit: type=1400 audit(386.171:2026): avc:  denied  { append } for  pid=4925 comm="syz.4.1245" name=".log" dev="incremental-fs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  386.185943][ T1457] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  386.219924][ T1457] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  386.230928][ T1457] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  386.231693][  T654] usb 6-1: 1:1 : UAC_AS_GENERAL descriptor not found
[  386.262325][ T1457] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  386.266420][  T654] usb 6-1: unit 1 not found!
[  386.286592][ T1457] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  386.297170][ T1457] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  386.307128][ T1457] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  386.314949][  T654] usb 6-1: USB disconnect, device number 11
[  386.329551][ T1457] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  386.339063][ T1457] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  386.375037][ T1457] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  386.381010][ T4944] loop2: detected capacity change from 0 to 256
[  386.400690][ T4944] exfat: Deprecated parameter 'utf8'
[  386.405924][ T1457] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  386.408400][ T4944] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xffade8b4, utbl_chksum : 0xe619d30d)
[  386.432195][ T4944] FAULT_INJECTION: forcing a failure.
[  386.432195][ T4944] name failslab, interval 1, probability 0, space 0, times 0
[  386.432816][ T1457] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  386.456513][ T4944] CPU: 1 PID: 4944 Comm: syz.2.1249 Tainted: G        W          syzkaller #0
[  386.460779][ T1457] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  386.465388][ T4944] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  386.465416][ T4944] Call Trace:
[  386.473490][ T1457] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  386.483053][ T4944]  <TASK>
[  386.483063][ T4944]  __dump_stack+0x21/0x24
[  386.486892][ T1457] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  386.493562][ T4944]  dump_stack_lvl+0x110/0x170
[  386.493590][ T4944]  ? __cfi_dump_stack_lvl+0x8/0x8
[  386.496866][ T1457] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  386.500836][ T4944]  dump_stack+0x15/0x24
[  386.500857][ T4944]  should_fail_ex+0x3bf/0x510
[  386.508607][ T1457] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  386.512708][ T4944]  ? getname_flags+0xba/0x510
[  386.518476][ T1457] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  386.525656][ T4944]  __should_failslab+0xac/0xf0
[  386.559127][ T4944]  should_failslab+0x9/0x20
[  386.563687][ T4944]  kmem_cache_alloc+0x3b/0x320
[  386.568513][ T4944]  getname_flags+0xba/0x510
[  386.573026][ T4944]  getname+0x19/0x20
[  386.576906][ T4944]  do_sys_openat2+0xeb/0x820
[  386.581563][ T4944]  ? __kasan_check_write+0x14/0x20
[  386.586659][ T4944]  ? do_sys_open+0xe0/0xe0
[  386.591060][ T4944]  ? ksys_write+0x1fa/0x260
[  386.595546][ T4944]  __x64_sys_openat+0x136/0x160
[  386.600401][ T4944]  x64_sys_call+0x783/0x9a0
[  386.604904][ T4944]  do_syscall_64+0x4c/0xa0
[  386.609310][ T4944]  ? clear_bhb_loop+0x30/0x80
[  386.614034][ T4944]  ? clear_bhb_loop+0x30/0x80
[  386.618689][ T4944]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  386.624620][ T4944] RIP: 0033:0x7ff7dc59ce59
[  386.629021][ T4944] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  386.648608][ T4944] RSP: 002b:00007ff7dd3fb028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  386.657102][ T4944] RAX: ffffffffffffffda RBX: 00007ff7dc815fa0 RCX: 00007ff7dc59ce59
[  386.665057][ T4944] RDX: 0000000000000000 RSI: 0000200000000200 RDI: ffffffffffffff9c
[  386.673039][ T4944] RBP: 00007ff7dd3fb090 R08: 0000000000000000 R09: 0000000000000000
[  386.681003][ T4944] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  386.688982][ T4944] R13: 00007ff7dc816038 R14: 00007ff7dc815fa0 R15: 00007ffdd55cde68
[  386.696956][ T4944]  </TASK>
[  386.773108][ T4946] loop2: detected capacity change from 0 to 512
[  386.782148][ T4946] xt_TCPMSS: Only works on TCP SYN packets
[  386.854569][  T290] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz-executor: invalid indirect mapped block 4294901760 (level 0)
[  386.869120][  T290] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz-executor: invalid indirect mapped block 4294967295 (level 1)
[  386.884478][  T290] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz-executor: invalid indirect mapped block 65535 (level 2)
[  386.934664][  T290] EXT4-fs (loop4): unmounting filesystem.
[  386.970532][ T4957] loop4: detected capacity change from 0 to 128
[  386.982359][ T4957] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  387.258503][ T1458] EXT4-fs (loop5): unmounting filesystem.
[  387.609574][ T2418] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  387.761709][ T4976] loop2: detected capacity change from 0 to 8192
[  388.046071][   T28] audit: type=1400 audit(388.031:2027): avc:  denied  { bind } for  pid=4977 comm="syz.1.1259" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  388.125771][   T28] audit: type=1400 audit(388.051:2028): avc:  denied  { listen } for  pid=4977 comm="syz.1.1259" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  388.310873][ T4986] loop1: detected capacity change from 0 to 512
[  388.432255][ T4995] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  388.508475][ T5006] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  388.519210][ T5006] FAT-fs (loop1): Filesystem has been set read-only
[  388.526044][ T5006] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  388.536161][ T5006] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  388.546340][ T5006] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  388.556480][ T5006] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  388.566618][ T5004] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  388.576828][ T5006] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  388.587354][ T5004] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  388.597551][ T5006] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  388.607831][ T5004] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  388.830200][   T24] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[  389.010219][  T654] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  389.020149][   T24] usb 6-1: Using ep0 maxpacket: 16
[  389.028521][   T24] usb 6-1: New USB device found, idVendor=0b05, idProduct=1743, bcdDevice= 0.40
[  389.046754][   T24] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  389.064616][   T24] usb 6-1: Product: syz
[  389.073997][   T24] usb 6-1: Manufacturer: syz
[  389.087341][   T24] usb 6-1: SerialNumber: syz
[  389.200264][  T654] usb 3-1: Using ep0 maxpacket: 16
[  389.209901][  T654] usb 3-1: New USB device found, idVendor=0b05, idProduct=1743, bcdDevice= 0.40
[  389.238020][  T654] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  389.247717][  T654] usb 3-1: Product: syz
[  389.252759][  T654] usb 3-1: Manufacturer: syz
[  389.275781][  T654] usb 3-1: SerialNumber: syz
[  389.450869][   T24] usb 6-1: 1:1 : UAC_AS_GENERAL descriptor not found
[  389.460363][   T24] usb 6-1: unit 1 not found!
[  389.488724][   T24] usb 6-1: USB disconnect, device number 12
[  389.607666][  T654] usb 3-1: 1:1 : UAC_AS_GENERAL descriptor not found
[  389.619427][  T654] usb 3-1: unit 1 not found!
[  389.633747][  T654] usb 3-1: USB disconnect, device number 10
[  389.649550][ T5020] set_capacity_and_notify: 2 callbacks suppressed
[  389.649561][ T5020] loop1: detected capacity change from 0 to 40427
[  389.663099][ T5020] F2FS-fs (loop1): Small segment_count (9 < 1 * 24)
[  389.669822][ T5020] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  389.680071][ T5020] F2FS-fs (loop1): Found nat_bits in checkpoint
[  389.708164][ T5020] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  389.715422][ T5020] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  389.751742][ T5021] f2fs_ckpt-7:1: attempt to access beyond end of device
[  389.751742][ T5021] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  389.860552][  T325] udevd[325]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory
[  389.936861][ T5025] loop1: detected capacity change from 0 to 2048
[  389.951553][ T5025] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  390.046577][  T290] EXT4-fs (loop4): unmounting filesystem.
[  390.060033][ T1458] EXT4-fs (loop5): unmounting filesystem.
[  390.517834][ T5051] loop2: detected capacity change from 0 to 256
[  390.532403][ T5051] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  390.542602][ T5051] FAT-fs (loop2): Filesystem has been set read-only
[  390.549220][ T5051] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  390.559401][ T5051] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  390.569628][ T5051] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  390.579832][ T5051] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  390.589959][ T5050] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  390.600380][ T5050] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  390.610728][ T5051] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  390.620921][ T5050] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  390.631159][ T5051] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  390.708732][  T287] EXT4-fs (loop1): unmounting filesystem.
[  390.727035][ T5054] loop1: detected capacity change from 0 to 256
[  390.737352][ T5054] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  390.747514][ T5054] FAT-fs (loop1): Filesystem has been set read-only
[  390.754390][ T5054] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  390.764788][ T5054] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  390.775030][ T5054] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  390.785173][ T5054] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  390.795400][ T5054] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  390.805543][ T5054] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  390.815774][ T5054] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  390.825937][ T5054] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  390.836172][ T5054] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  391.646660][ T5061] loop5: detected capacity change from 0 to 512
[  391.781608][ T2503] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  391.811034][ T5061] xt_TCPMSS: Only works on TCP SYN packets
[  392.846846][   T28] audit: type=1400 audit(392.831:2029): avc:  denied  { create } for  pid=5071 comm="syz.4.1289" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  392.949076][ T5082] loop1: detected capacity change from 0 to 2048
[  393.085173][   T28] audit: type=1400 audit(392.861:2030): avc:  denied  { map } for  pid=5071 comm="syz.4.1289" path="/proc/892/task/893/status" dev="proc" ino=31898 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=file permissive=1
[  393.112424][   T28] audit: type=1400 audit(392.861:2031): avc:  denied  { connect } for  pid=5071 comm="syz.4.1289" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  393.159776][ T5082] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  393.189254][ T5088] loop4: detected capacity change from 0 to 2048
[  393.794011][ T5088] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  393.915661][ T5108] loop2: detected capacity change from 0 to 256
[  393.926065][  T287] EXT4-fs (loop1): unmounting filesystem.
[  393.939810][ T5108] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  393.950129][ T5108] FAT-fs (loop2): Filesystem has been set read-only
[  393.956773][ T5108] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  393.966905][ T5108] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  393.977124][ T5108] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  393.987322][ T5108] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  393.997515][ T5108] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  394.007704][ T5108] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  394.018010][ T5108] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  394.038913][ T5108] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  394.049121][ T5108] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  394.377655][  T290] EXT4-fs (loop4): unmounting filesystem.
[  394.463795][ T5117] loop1: detected capacity change from 0 to 4096
[  394.498307][ T5123] loop4: detected capacity change from 0 to 4096
[  394.517180][ T5117] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  394.529052][ T5123] EXT4-fs (loop4): Test dummy encryption mode enabled
[  394.604217][ T5123] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  394.676731][ T5127] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  397.417558][  T290] EXT4-fs (loop4): unmounting filesystem.
[  397.436162][   T28] audit: type=1400 audit(397.421:2032): avc:  denied  { mount } for  pid=5134 comm="syz.2.1304" name="/" dev="configfs" ino=14766 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[  397.488635][  T287] EXT4-fs (loop1): unmounting filesystem.
[  397.544930][   T28] audit: type=1400 audit(397.461:2033): avc:  denied  { search } for  pid=5134 comm="syz.2.1304" name="/" dev="configfs" ino=14766 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  397.579584][ T5135] set_capacity_and_notify: 1 callbacks suppressed
[  397.579604][ T5135] loop2: detected capacity change from 0 to 256
[  397.598517][ T5141] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=8212 sclass=netlink_route_socket pid=5141 comm=syz.4.1308
[  397.598753][   T28] audit: type=1400 audit(397.461:2034): avc:  denied  { setattr } for  pid=5134 comm="syz.2.1304" name="/" dev="configfs" ino=14766 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  397.622728][ T5135] exfat: Deprecated parameter 'utf8'
[  397.643348][ T5135] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xffade8b4, utbl_chksum : 0xe619d30d)
[  397.854454][ T5154] loop1: detected capacity change from 0 to 4096
[  398.008490][ T5154] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  398.225229][ T1458] EXT4-fs (loop5): unmounting filesystem.
[  398.249286][ T5161] FAULT_INJECTION: forcing a failure.
[  398.249286][ T5161] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  398.357095][ T5161] CPU: 1 PID: 5161 Comm: syz.2.1312 Tainted: G        W          syzkaller #0
[  398.365988][ T5161] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  398.376057][ T5161] Call Trace:
[  398.379347][ T5161]  <TASK>
[  398.382289][ T5161]  __dump_stack+0x21/0x24
[  398.386641][ T5161]  dump_stack_lvl+0x110/0x170
[  398.391338][ T5161]  ? __cfi_dump_stack_lvl+0x8/0x8
[  398.396381][ T5161]  ? sysvec_reschedule_ipi+0x78/0x80
[  398.401687][ T5161]  dump_stack+0x15/0x24
[  398.405845][ T5161]  should_fail_ex+0x3bf/0x510
[  398.410513][ T5161]  should_fail+0xb/0x10
[  398.414661][ T5161]  should_fail_usercopy+0x1a/0x20
[  398.419676][ T5161]  _copy_from_user+0x1e/0xc0
[  398.424363][ T5161]  eventfd_write+0x165/0x780
[  398.429010][ T5161]  ? __cfi_eventfd_write+0x10/0x10
[  398.434110][ T5161]  ? __cfi_default_wake_function+0x10/0x10
[  398.439934][ T5161]  ? fsnotify_perm+0x67/0x5b0
[  398.444690][ T5161]  ? security_file_permission+0x8a/0xb0
[  398.450229][ T5161]  ? security_file_permission+0x94/0xb0
[  398.455803][ T5161]  ? __cfi_eventfd_write+0x10/0x10
[  398.460906][ T5161]  vfs_write+0x3fb/0xd00
[  398.465140][ T5161]  ? __cfi___switch_to+0x10/0x10
[  398.470077][ T5161]  ? __cfi_vfs_write+0x10/0x10
[  398.474852][ T5161]  ? __fget_files+0x2d1/0x330
[  398.479581][ T5161]  ? __fdget_pos+0x1f2/0x380
[  398.484164][ T5161]  ? ksys_write+0x70/0x260
[  398.488572][ T5161]  ksys_write+0x14a/0x260
[  398.492892][ T5161]  ? __cfi_ksys_write+0x10/0x10
[  398.497752][ T5161]  ? fpregs_restore_userregs+0x128/0x260
[  398.503374][ T5161]  __x64_sys_write+0x7b/0x90
[  398.507946][ T5161]  x64_sys_call+0x27b/0x9a0
[  398.512434][ T5161]  do_syscall_64+0x4c/0xa0
[  398.516843][ T5161]  ? clear_bhb_loop+0x30/0x80
[  398.521517][ T5161]  ? clear_bhb_loop+0x30/0x80
[  398.526182][ T5161]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  398.532075][ T5161] RIP: 0033:0x7ff7dc59ce59
[  398.536479][ T5161] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  398.556078][ T5161] RSP: 002b:00007ff7dd3da028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  398.564479][ T5161] RAX: ffffffffffffffda RBX: 00007ff7dc816090 RCX: 00007ff7dc59ce59
[  398.572439][ T5161] RDX: 0000000000000008 RSI: 0000200000000140 RDI: 0000000000000003
[  398.580400][ T5161] RBP: 00007ff7dd3da090 R08: 0000000000000000 R09: 0000000000000000
[  398.588362][ T5161] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  398.596328][ T5161] R13: 00007ff7dc816128 R14: 00007ff7dc816090 R15: 00007ffdd55cde68
[  398.604293][ T5161]  </TASK>
[  398.644611][ T5167] loop5: detected capacity change from 0 to 128
[  398.718792][ T5171] loop4: detected capacity change from 0 to 4096
[  398.729306][ T5167] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  398.895351][ T5171] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  399.053755][ T5182] loop2: detected capacity change from 0 to 256
[  399.068867][ T5182] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  399.079042][ T5182] FAT-fs (loop2): Filesystem has been set read-only
[  399.085700][ T5182] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  399.095852][ T5182] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  399.106100][ T5182] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  399.116339][ T5182] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  399.126549][ T5182] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  399.136761][ T5182] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  399.147117][ T5182] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  399.157354][ T5182] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  399.167561][ T5182] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  404.070153][ T5182] fat_get_cluster: 176863 callbacks suppressed
[  404.070174][ T5182] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  404.086636][ T5182] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  404.096847][ T5182] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  404.107099][ T5182] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  404.117349][ T5182] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  404.127620][ T5182] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  404.137856][ T5182] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  404.148070][ T5182] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  404.158276][ T5182] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  404.168506][ T5182] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  407.054673][  T290] EXT4-fs (loop4): unmounting filesystem.
[  407.217828][   T24] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[  408.553988][ T5202] loop4: detected capacity change from 0 to 256
[  408.566609][ T1458] EXT4-fs (loop5): unmounting filesystem.
[  408.579120][ T5202] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  408.589479][ T5202] FAT-fs (loop4): Filesystem has been set read-only
[  408.596131][ T5202] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  408.606245][ T5202] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  408.609955][ T5204] loop2: detected capacity change from 0 to 256
[  408.616388][ T5202] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  408.622905][   T28] audit: type=1326 audit(408.581:2035): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5203 comm="syz.2.1324" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7dc59ce59 code=0x7ffc0000
[  408.632828][ T5202] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  408.667034][ T5201] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  408.670473][   T28] audit: type=1326 audit(408.581:2036): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5203 comm="syz.2.1324" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7dc59ce59 code=0x7ffc0000
[  408.677697][ T5201] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  408.701606][   T28] audit: type=1326 audit(408.581:2037): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5203 comm="syz.2.1324" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7dc59ce59 code=0x7ffc0000
[  408.711486][ T5201] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  408.735663][   T28] audit: type=1326 audit(408.591:2038): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5203 comm="syz.2.1324" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7dc59ce59 code=0x7ffc0000
[  408.745761][ T5205] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  408.780086][ T5202] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  408.785637][   T28] audit: type=1326 audit(408.591:2039): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5203 comm="syz.2.1324" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7ff7dc59ce59 code=0x7ffc0000
[  408.838834][   T28] audit: type=1326 audit(408.591:2040): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5203 comm="syz.2.1324" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7ff7dc59cbc2 code=0x7ffc0000
[  408.926099][   T28] audit: type=1326 audit(408.601:2041): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5203 comm="syz.2.1324" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7ff7dc55d68e code=0x7ffc0000
[  408.950969][   T28] audit: type=1326 audit(408.601:2042): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5203 comm="syz.2.1324" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7ff7dc59cc87 code=0x7ffc0000
[  408.975186][   T28] audit: type=1326 audit(408.601:2043): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5203 comm="syz.2.1324" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ff7dc55d68e code=0x7ffc0000
[  409.041412][   T28] audit: type=1326 audit(408.601:2044): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5203 comm="syz.2.1324" exe="/root/ci2-android-6-1/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff7dc59caeb code=0x7ffc0000
[  410.795540][ T5218] loop5: detected capacity change from 0 to 256
[  411.827075][ T5223] loop4: detected capacity change from 0 to 4096
[  412.259756][ T5223] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  412.364911][  T287] EXT4-fs (loop1): unmounting filesystem.
[  412.390192][  T654] usb 3-1: new full-speed USB device number 11 using dummy_hcd
[  412.394446][ T5235] loop1: detected capacity change from 0 to 256
[  412.427538][ T5235] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  412.437737][ T5235] FAT-fs (loop1): Filesystem has been set read-only
[  412.444478][ T5235] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  412.454643][ T5235] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  412.464893][ T5235] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  412.475134][ T5235] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  412.485349][ T5235] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  412.495545][ T5235] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  412.506524][ T5235] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  412.516751][ T5235] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  412.527079][ T5235] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  417.430132][ T5235] fat_get_cluster: 169513 callbacks suppressed
[  417.430164][ T5235] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  417.446577][ T5235] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  417.456847][ T5235] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  417.467078][ T5235] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  417.477287][ T5235] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  417.487480][ T5235] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  417.497665][ T5235] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  417.507854][ T5235] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  417.518054][ T5235] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  417.528229][ T5235] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  419.985097][  T290] EXT4-fs (loop4): unmounting filesystem.
[  420.000202][  T654] usb 3-1: device descriptor read/64, error -71
[  420.009869][ T5224] ==================================================================
[  420.017946][ T5224] BUG: KASAN: use-after-free in pppol2tp_sock_to_session+0x1a0/0x1b0
[  420.026138][ T5224] Read of size 4 at addr ffff888130cd3c00 by task syz.2.1330/5224
SYZFAIL: failed to send rpc
fd=3 want=1968 sent=0 n=-1 (errno 32: Broken pipe)
[  420.033941][ T5224] 
[  420.036403][ T5224] CPU: 0 PID: 5224 Comm: syz.2.1330 Tainted: G        W          syzkaller #0
[  420.045249][ T5224] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  420.055310][ T5224] Call Trace:
[  420.058598][ T5224]  <TASK>
[  420.061531][ T5224]  __dump_stack+0x21/0x24
[  420.065865][ T5224]  dump_stack_lvl+0x110/0x170
[  420.070548][ T5224]  ? __cfi_dump_stack_lvl+0x8/0x8
[  420.075578][ T5224]  ? _raw_spin_lock_bh+0x94/0xf0
[  420.080522][ T5224]  ? pppol2tp_sock_to_session+0x1a0/0x1b0
[  420.086244][ T5224]  print_address_description+0x71/0x200
[  420.091889][ T5224]  print_report+0x4a/0x60
[  420.096222][ T5224]  kasan_report+0x122/0x150
[  420.100725][ T5224]  ? pppol2tp_sock_to_session+0x1a0/0x1b0
[  420.106445][ T5224]  __asan_report_load4_noabort+0x14/0x20
[  420.112065][ T5224]  pppol2tp_sock_to_session+0x1a0/0x1b0
[  420.117597][ T5224]  pppol2tp_release+0x150/0x2b0
[  420.122432][ T5224]  sock_close+0xc9/0x220
[  420.126759][ T5224]  ? __cfi_sock_close+0x10/0x10
[  420.131595][ T5224]  __fput+0x1fd/0x8f0
[  420.135565][ T5224]  ____fput+0x15/0x20
[  420.139533][ T5224]  task_work_run+0x1e1/0x250
[  420.144106][ T5224]  ? __cfi_task_work_run+0x10/0x10
[  420.149204][ T5224]  ? __kasan_check_write+0x14/0x20
[  420.154299][ T5224]  do_exit+0xa7c/0x27c0
[  420.158455][ T5224]  ? _raw_spin_lock+0x94/0xf0
[  420.163134][ T5224]  ? __cfi_do_exit+0x10/0x10
[  420.167726][ T5224]  ? hrtimer_try_to_cancel+0x1ef/0x330
[  420.173183][ T5224]  ? __kasan_check_write+0x14/0x20
[  420.178281][ T5224]  ? _raw_spin_lock_irq+0x95/0xf0
[  420.183300][ T5224]  do_group_exit+0x21b/0x2e0
[  420.187883][ T5224]  ? __kasan_check_write+0x14/0x20
[  420.192979][ T5224]  ? recalc_sigpending+0x180/0x1c0
[  420.198084][ T5224]  get_signal+0x1382/0x14f0
[  420.202594][ T5224]  arch_do_signal_or_restart+0xd1/0x11c0
[  420.208218][ T5224]  ? do_futex+0x2e2/0x430
[  420.212617][ T5224]  ? _copy_from_user+0x8f/0xc0
[  420.217387][ T5224]  ? __cfi_do_futex+0x10/0x10
[  420.222055][ T5224]  ? __cfi_arch_do_signal_or_restart+0x10/0x10
[  420.228200][ T5224]  ? __se_sys_futex+0x136/0x310
[  420.233041][ T5224]  exit_to_user_mode_loop+0x7a/0xb0
[  420.238320][ T5224]  exit_to_user_mode_prepare+0x87/0xd0
[  420.243770][ T5224]  syscall_exit_to_user_mode+0x1a/0x30
[  420.249216][ T5224]  do_syscall_64+0x58/0xa0
[  420.253627][ T5224]  ? clear_bhb_loop+0x30/0x80
[  420.258287][ T5224]  ? clear_bhb_loop+0x30/0x80
[  420.262948][ T5224]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  420.268839][ T5224] RIP: 0033:0x7ff7dc59ce59
[  420.273242][ T5224] Code: Unable to access opcode bytes at 0x7ff7dc59ce2f.
[  420.280268][ T5224] RSP: 002b:00007ffdd55cdfc8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  420.288673][ T5224] RAX: ffffffffffffff92 RBX: 00000000000648ba RCX: 00007ff7dc59ce59
[  420.296634][ T5224] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007ff7dc815fac
[  420.304590][ T5224] RBP: 0000000000000bea R08: 0030fcef2e924b14 R09: 0000000000000000
[  420.312548][ T5224] R10: 00007ffdd55ce0d0 R11: 0000000000000246 R12: 00007ffdd55ce0f0
[  420.320505][ T5224] R13: 00007ff7dc815fac R14: 00000000000654a4 R15: 00007ffdd55ce0d0
[  420.328729][ T5224]  </TASK>
[  420.331737][ T5224] 
[  420.334045][ T5224] Allocated by task 5225:
[  420.338451][ T5224]  kasan_set_track+0x4b/0x70
[  420.343046][ T5224]  kasan_save_alloc_info+0x1f/0x30
[  420.348143][ T5224]  __kasan_kmalloc+0x95/0xb0
[  420.352730][ T5224]  __kmalloc+0xb4/0x1e0
[  420.356887][ T5224]  l2tp_session_create+0x38/0xbd0
[  420.361897][ T5224]  pppol2tp_connect+0xbf5/0x1640
[  420.366822][ T5224]  __sys_connect+0x3da/0x460
[  420.371404][ T5224]  __x64_sys_connect+0x7a/0x90
[  420.376151][ T5224]  x64_sys_call+0x88d/0x9a0
[  420.380645][ T5224]  do_syscall_64+0x4c/0xa0
[  420.385046][ T5224]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  420.390931][ T5224] 
[  420.393238][ T5224] Freed by task 8:
[  420.396937][ T5224]  kasan_set_track+0x4b/0x70
[  420.401516][ T5224]  kasan_save_free_info+0x2b/0x40
[  420.406538][ T5224]  ____kasan_slab_free+0x132/0x180
[  420.411640][ T5224]  __kasan_slab_free+0x11/0x20
[  420.416397][ T5224]  slab_free_freelist_hook+0xc2/0x190
[  420.421755][ T5224]  __kmem_cache_free+0xb7/0x1b0
[  420.426596][ T5224]  kfree+0x6f/0xf0
[  420.430302][ T5224]  l2tp_session_put+0xaf/0x1a0
[  420.435312][ T5224]  l2tp_session_delete+0x3df/0x4d0
[  420.440406][ T5224]  l2tp_tunnel_del_work+0x199/0x410
[  420.445590][ T5224]  process_one_work+0x717/0xc30
[  420.450423][ T5224]  worker_thread+0xa4d/0x11d0
[  420.455084][ T5224]  kthread+0x281/0x320
[  420.459136][ T5224]  ret_from_fork+0x1f/0x30
[  420.463544][ T5224] 
[  420.465858][ T5224] Last potentially related work creation:
[  420.471591][ T5224]  kasan_save_stack+0x3a/0x60
[  420.476263][ T5224]  __kasan_record_aux_stack+0xb6/0xc0
[  420.481622][ T5224]  kasan_record_aux_stack_noalloc+0xb/0x10
[  420.487587][ T5224]  call_rcu+0xcf/0xf50
[  420.491723][ T5224]  ip6_route_info_create+0xaa8/0x14d0
[  420.497138][ T5224]  ip6_route_add+0x27/0x130
[  420.501627][ T5224]  addrconf_prefix_route+0x233/0x310
[  420.506955][ T5224]  inet6_addr_add+0x527/0x9c0
[  420.511617][ T5224]  inet6_rtm_newaddr+0x74a/0xa10
[  420.516563][ T5224]  rtnetlink_rcv_msg+0xb28/0xde0
[  420.521551][ T5224]  netlink_rcv_skb+0x200/0x450
[  420.526362][ T5224]  rtnetlink_rcv+0x1c/0x20
[  420.530777][ T5224]  netlink_unicast+0x8c1/0xa60
[  420.535580][ T5224]  netlink_sendmsg+0x8b9/0xbd0
[  420.540324][ T5224]  __sys_sendto+0x4ac/0x660
[  420.544818][ T5224]  __x64_sys_sendto+0xe5/0x100
[  420.549565][ T5224]  x64_sys_call+0x83/0x9a0
[  420.553968][ T5224]  do_syscall_64+0x4c/0xa0
[  420.558375][ T5224]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  420.564259][ T5224] 
[  420.566565][ T5224] The buggy address belongs to the object at ffff888130cd3c00
[  420.566565][ T5224]  which belongs to the cache kmalloc-512 of size 512
[  420.580597][ T5224] The buggy address is located 0 bytes inside of
[  420.580597][ T5224]  512-byte region [ffff888130cd3c00, ffff888130cd3e00)
[  420.593719][ T5224] 
[  420.596028][ T5224] The buggy address belongs to the physical page:
[  420.602553][ T5224] page:ffffea0004c33400 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x130cd0
[  420.612772][ T5224] head:ffffea0004c33400 order:2 compound_mapcount:0 compound_pincount:0
[  420.621077][ T5224] flags: 0x4000000000010200(slab|head|zone=1)
[  420.627151][ T5224] raw: 4000000000010200 0000000000000000 dead000000000001 ffff888100042f00
[  420.635716][ T5224] raw: 0000000000000000 0000000000100010 00000001ffffffff 0000000000000000
[  420.644280][ T5224] page dumped because: kasan: bad access detected
[  420.650676][ T5224] page_owner tracks the page as allocated
[  420.656381][ T5224] page last allocated via order 2, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 286, tgid 286 (syz-executor), ts 23472489387, free_ts 0
[  420.676711][ T5224]  post_alloc_hook+0x1f5/0x210
[  420.681569][ T5224]  prep_new_page+0x1c/0x110
[  420.686061][ T5224]  get_page_from_freelist+0x2ca9/0x2d20
[  420.691636][ T5224]  __alloc_pages+0x1fa/0x610
[  420.696219][ T5224]  alloc_slab_page+0x6e/0xf0
[  420.700805][ T5224]  new_slab+0x98/0x3e0
[  420.704863][ T5224]  ___slab_alloc+0x70f/0xb70
[  420.709444][ T5224]  __slab_alloc+0x5e/0xa0
[  420.713764][ T5224]  __kmem_cache_alloc_node+0x204/0x2d0
[  420.719213][ T5224]  __kmalloc+0xa4/0x1e0
[  420.723360][ T5224]  fib6_info_alloc+0x34/0xe0
[  420.728149][ T5224]  ip6_route_info_create+0x51b/0x14d0
[  420.733516][ T5224]  addrconf_f6i_alloc+0x19c/0x3f0
[  420.738534][ T5224]  ipv6_add_addr+0x447/0xe80
[  420.743111][ T5224]  inet6_addr_add+0x45d/0x9c0
[  420.747776][ T5224]  inet6_rtm_newaddr+0x74a/0xa10
[  420.752700][ T5224] page_owner free stack trace missing
[  420.758046][ T5224] 
[  420.760358][ T5224] Memory state around the buggy address:
[  420.765998][ T5224]  ffff888130cd3b00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  420.774038][ T5224]  ffff888130cd3b80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  420.782148][ T5224] >ffff888130cd3c00: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  420.790197][ T5224]                    ^
[  420.794257][ T5224]  ffff888130cd3c80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  420.802301][ T5224]  ffff888130cd3d00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  420.810349][ T5224] ==================================================================
[  420.818787][   T28] kauditd_printk_skb: 158 callbacks suppressed
[  420.819613][   T28] audit: type=1400 audit(420.041:2203): avc:  denied  { write } for  pid=278 comm="syz-executor" path="pipe:[15158]" dev="pipefs" ino=15158 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[  420.890311][   T28] audit: type=1400 audit(420.841:2204): avc:  denied  { read } for  pid=84 comm="syslogd" name="log" dev="sda1" ino=2010 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[  420.911619][   T28] audit: type=1400 audit(420.841:2205): avc:  denied  { search } for  pid=84 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  420.950151][   T28] audit: type=1400 audit(420.841:2206): avc:  denied  { write } for  pid=84 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  421.000047][ T5224] Disabling lock debugging due to kernel taint
[  421.006331][   T28] audit: type=1400 audit(420.841:2207): avc:  denied  { add_name } for  pid=84 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  421.006451][ T5224] ------------[ cut here ]------------
[  421.031357][   T28] audit: type=1400 audit(420.841:2208): avc:  denied  { create } for  pid=84 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  421.031867][ T5224] WARNING: CPU: 0 PID: 5224 at net/l2tp/l2tp_ppp.c:156 pppol2tp_sock_to_session+0x167/0x1b0
[  421.051740][   T28] audit: type=1400 audit(420.841:2209): avc:  denied  { append open } for  pid=84 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=5 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  421.061822][ T5224] Modules linked in:
[  421.061834][ T5224] CPU: 0 PID: 5224 Comm: syz.2.1330 Tainted: G    B   W          syzkaller #0
[  421.085414][   T28] audit: type=1400 audit(420.841:2210): avc:  denied  { getattr } for  pid=84 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=5 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[  421.088015][ T5224] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  421.128888][ T5224] RIP: 0010:pppol2tp_sock_to_session+0x167/0x1b0
[  421.135250][ T5224] Code: 5d c3 e8 3c c2 d5 fc be 02 00 00 00 eb 0a e8 30 c2 d5 fc be 01 00 00 00 4c 89 f7 e8 03 21 cd fd e9 0f ff ff ff e8 19 c2 d5 fc <0f> 0b 48 89 df e8 ff 00 00 00 eb bd e8 08 c2 d5 fc 4c 89 f7 be 03
[  421.154867][ T5224] RSP: 0018:ffffc9000673f7f0 EFLAGS: 00010293
[  421.160937][ T5224] RAX: ffffffff849b9307 RBX: ffff88813746d000 RCX: ffff8881169f0000
[  421.168901][ T5224] RDX: 0000000000000000 RSI: 000000003770c400 RDI: 000000000c04eb7d
[  421.176896][ T5224] RBP: ffffc9000673f810 R08: ffffffff87b747e7 R09: 1ffffffff0f6e8fc
[  421.184901][ T5224] R10: dffffc0000000000 R11: fffffbfff0f6e8fd R12: dffffc0000000000
[  421.192880][ T5224] R13: dffffc0000000000 R14: 000000003770c400 R15: ffff888130cd3c00
[  421.200857][ T5224] FS:  0000000000000000(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[  421.209781][ T5224] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  421.216391][ T5224] CR2: 0000564f5f72a1f0 CR3: 000000010ffc1000 CR4: 00000000003506b0
[  421.224401][ T5224] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  421.232445][ T5224] DR3: 0000000000009000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[  421.240445][ T5224] Call Trace:
[  421.243723][ T5224]  <TASK>
[  421.246639][ T5224]  pppol2tp_release+0x150/0x2b0
[  421.251513][ T5224]  sock_close+0xc9/0x220
[  421.255758][ T5224]  ? __cfi_sock_close+0x10/0x10
[  421.260643][ T5224]  __fput+0x1fd/0x8f0
[  421.264622][ T5224]  ____fput+0x15/0x20
[  421.268584][ T5224]  task_work_run+0x1e1/0x250
[  421.273188][ T5224]  ? __cfi_task_work_run+0x10/0x10
[  421.278670][ T5224]  ? __kasan_check_write+0x14/0x20
[  421.284401][ T5224]  do_exit+0xa7c/0x27c0
[  421.288590][ T5224]  ? _raw_spin_lock+0x94/0xf0
[  421.293297][ T5224]  ? __cfi_do_exit+0x10/0x10
[  421.297889][ T5224]  ? hrtimer_try_to_cancel+0x1ef/0x330
[  421.303374][ T5224]  ? __kasan_check_write+0x14/0x20
[  421.308500][ T5224]  ? _raw_spin_lock_irq+0x95/0xf0
[  421.313557][ T5224]  do_group_exit+0x21b/0x2e0
[  421.318150][ T5224]  ? __kasan_check_write+0x14/0x20
[  421.323290][ T5224]  ? recalc_sigpending+0x180/0x1c0
[  421.328408][ T5224]  get_signal+0x1382/0x14f0
[  421.333103][ T5224]  arch_do_signal_or_restart+0xd1/0x11c0
[  421.338737][ T5224]  ? do_futex+0x2e2/0x430
[  421.343096][ T5224]  ? _copy_from_user+0x8f/0xc0
[  421.347860][ T5224]  ? __cfi_do_futex+0x10/0x10
[  421.352544][ T5224]  ? __cfi_arch_do_signal_or_restart+0x10/0x10
[  421.358695][ T5224]  ? __se_sys_futex+0x136/0x310
[  421.363656][ T5224]  exit_to_user_mode_loop+0x7a/0xb0
[  421.368865][ T5224]  exit_to_user_mode_prepare+0x87/0xd0
[  421.374348][ T5224]  syscall_exit_to_user_mode+0x1a/0x30
[  421.379808][ T5224]  do_syscall_64+0x58/0xa0
[  421.384255][ T5224]  ? clear_bhb_loop+0x30/0x80
[  421.388925][ T5224]  ? clear_bhb_loop+0x30/0x80
[  421.393644][ T5224]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  421.399554][ T5224] RIP: 0033:0x7ff7dc59ce59
[  421.403983][ T5224] Code: Unable to access opcode bytes at 0x7ff7dc59ce2f.
[  421.411020][ T5224] RSP: 002b:00007ffdd55cdfc8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  421.419491][ T5224] RAX: ffffffffffffff92 RBX: 00000000000648ba RCX: 00007ff7dc59ce59
[  421.427483][ T5224] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007ff7dc815fac
[  421.435469][ T5224] RBP: 0000000000000bea R08: 0030fcef2e924b14 R09: 0000000000000000
[  421.443446][ T5224] R10: 00007ffdd55ce0d0 R11: 0000000000000246 R12: 00007ffdd55ce0f0
[  421.451425][ T5224] R13: 00007ff7dc815fac R14: 00000000000654a4 R15: 00007ffdd55ce0d0
[  421.459406][ T5224]  </TASK>
[  421.462495][ T5224] ---[ end trace 0000000000000000 ]---