last executing test programs:

5m26.352435905s ago: executing program 2 (id=578):
openat$incfs(0xffffffffffffff9c, 0x0, 0x424400, 0x12)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x1000040, &(0x7f00000002c0)={[{@barrier}, {@nodioread_nolock}, {@noquota}, {@barrier}, {@auto_da_alloc}, {@nodioread_nolock}]}, 0x1, 0x59c, &(0x7f0000001840)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x105042, 0x1c3)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, r0, 0x0)
write$P9_RREADLINK(r0, &(0x7f0000000000)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x32, 0xffffffffffffffff, 0x0)

5m25.932852452s ago: executing program 2 (id=583):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$unix(0x1, 0x2, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000440)=@newqdisc={0x78, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0x0, {0x0, 0x0, 0x0, r5, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x48, 0x2, {{0x3, 0x9, 0x6361, 0x5, 0xffffffff, 0x6}, [@TCA_NETEM_SLOT={0x2c, 0xc, {0xa, 0x8, 0x14, 0x9, 0x7f, 0x7f}}]}}}]}, 0x78}, 0x1, 0x0, 0x0, 0x240080c1}, 0x0)
syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r2)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0)
r7 = socket$unix(0x1, 0x1, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r9=>0x0})
sendmsg$nl_route_sched(r8, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70bd2c, 0x80000, {0x0, 0x0, 0x0, r9, {0x0, 0x11}, {0xffe6, 0xb}, {0xfff2, 0xc}}, [@qdisc_kind_options=@q_gred={{0x9}, {0x14, 0x2, [@TCA_GRED_DPS={0x10, 0x3, {0x10, 0x7, 0x1, 0x7}}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x2000c0e1}, 0x4000804)
close(r6)
socket$unix(0x1, 0x1, 0x0)
ioctl$SIOCSIFHWADDR(r6, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"})

5m23.620441905s ago: executing program 2 (id=589):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'aead\x00', 0x0, 0x0, 'gcm(anubis)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r1 = accept4(r0, 0x0, 0x0, 0x80800)
sendmmsg$alg(r1, &(0x7f0000000380)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}], 0x1, &(0x7f00000003c0)=[@assoc={0x18, 0x117, 0x4, 0x8}], 0x18, 0x28044854}], 0x1, 0x40800)
recvmsg(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x51}], 0x1}, 0x0)

5m23.44043393s ago: executing program 2 (id=592):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000200)='./file0\x00', 0x2048c5, &(0x7f0000000340), 0x0, 0x2d0, &(0x7f0000000c80)="$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")
r0 = syz_open_procfs(0x0, &(0x7f0000000540)='mounts\x00')
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x1333c06, 0x0)
mount$bind(&(0x7f0000000300)='./file0\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x11080, 0x0)
mount$bind(&(0x7f0000000240)='.\x00', &(0x7f0000000280)='./file0\x00', 0x0, 0x310f848, 0x0)
syz_emit_ethernet(0x68, &(0x7f0000000380)=ANY=[], 0x0)
read$FUSE(r0, &(0x7f0000003180)={0x2020}, 0x2020)

5m23.276321915s ago: executing program 2 (id=594):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$unix(0x1, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000980)={&(0x7f0000000380)=@newqdisc={0x3c, 0x24, 0x4ee4e6a52ff56541, 0x5, 0x25dfdbfd, {0x0, 0x0, 0x0, r4, {0x0, 0xb}, {0xffff, 0xffff}, {0x3}}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_MEMORY={0x8, 0xa, 0x5}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40088c1}, 0x0)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r5)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x40004)

5m22.510972601s ago: executing program 2 (id=600):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$unix(0x1, 0x1, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000026c0)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2, 0xffff}}, [@qdisc_kind_options=@q_cbs={{0x8}, {0x1c, 0x2, @TCA_CBS_PARMS={0x18, 0x1, {0x0, '\x00', 0x1, 0x7, 0x100, 0x8}}}}]}, 0x48}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000600)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56441, 0x70b928, 0x80000, {0x0, 0x0, 0x0, r3, {0x0, 0xfff2}, {0x2, 0xb}, {0x9, 0xb}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x7, 0x0, 0x46f, 0xfff, 0x5, 0x200}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x2000c061}, 0x8000)
r4 = socket$kcm(0x11, 0x3, 0x0)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r5)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r6 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, 0x0)
sendmsg$kcm(r4, &(0x7f00000000c0)={&(0x7f0000000580)=@xdp={0x2c, 0x300, 0x0, 0x3e}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000180)='\'', 0x1}], 0x1}, 0x0)

5m22.240145345s ago: executing program 32 (id=600):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$unix(0x1, 0x1, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000026c0)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2, 0xffff}}, [@qdisc_kind_options=@q_cbs={{0x8}, {0x1c, 0x2, @TCA_CBS_PARMS={0x18, 0x1, {0x0, '\x00', 0x1, 0x7, 0x100, 0x8}}}}]}, 0x48}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000600)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56441, 0x70b928, 0x80000, {0x0, 0x0, 0x0, r3, {0x0, 0xfff2}, {0x2, 0xb}, {0x9, 0xb}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x7, 0x0, 0x46f, 0xfff, 0x5, 0x200}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x2000c061}, 0x8000)
r4 = socket$kcm(0x11, 0x3, 0x0)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r5)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r6 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, 0x0)
sendmsg$kcm(r4, &(0x7f00000000c0)={&(0x7f0000000580)=@xdp={0x2c, 0x300, 0x0, 0x3e}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000180)='\'', 0x1}], 0x1}, 0x0)

5m20.554478172s ago: executing program 3 (id=612):
chdir(&(0x7f0000000000)='./file0\x00')
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x101100, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000003c0)={0xffffffffffffffff, 0x0, 0x5, 0x0, &(0x7f0000000000)="c1dfb061cd", 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000016000/0x18000)=nil, &(0x7f0000000100)=[@textreal={0x8, 0x0}], 0x1, 0x4e, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000180)={0x0, 0xd000})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

5m20.197975004s ago: executing program 3 (id=614):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$MAP_LOOKUP_ELEM(0x1, 0x0, 0x0)
sendmsg(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="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"], 0x208}, 0x0)
r2 = memfd_create(&(0x7f0000000380)='\x103q}2\x9a\xce\xaf\x03\xdfyR8\xf4\x1c\bi\xe4^\xd5\xfd\xa9\r\xac7R\x94\xaf\xbb\xdcM\x90k\xd6\x05\r\x84\x87\x1e?\x10\x95SWFO{\x1f\x1b!\xd5\x991D\x1c\b\x8c`\xeaSA\x90m\xb6&\xd0\xf1\xb3\xed:\x82\xbd\xe3i|BL\x1f\x9d\x00\x00\xc5\xb8$\f\xd4s\xb2\x99/\xc0\x9a\xf2O\xdb\x00\x00\x00\x00\r\xd6h\x80\x8fQ|\xf5d\x10\x10\xd7\t\x00\x00\x00\x00\x00\x00\x00<\xfeeS\xb2l\x16}\xa0I\x7f\xb5)l\xbb\x02\xfa\xb7\xb6\xa0]\xda8\xe0~\x1c \x91\t\x8b\xbd\x1f\xb3834d1i\x9b\x94\xa6\\\x0e\xe2\xfaa\xd3\xf1\xfc\xce\xba\xe2\x9f\x05xgL5\x14Y+\xb3\x1axi)<\xf7~x\xb8vo\xe6\x15@\xc9\"CY\x11\xb9u\x98\xc1\xba\xf4|\xe7|\xc4\xd7\x03\x00\x00\x00\x04D4E^7%8\x94y\x90\xf0l\xa0\'L%\xd4\xda\xee\x81\x98\xcc\xfd\xa2\x89$\x9by\xf1\xbb\x01\xb7\xcd\xbf\x99\x1f\x90@b\x03\xb3\xe0CfU\x16{\xbey\xa1cs\x96U\x11\xdb*\xdf\xcdG\xc7z\x85\x8aE\xf7\xd5\x9dAj\xe3\xfb\xc4\xa0\x14\x87\x19\x17\xed\xd1\x185%Q%\x81\xfaK\x82\xec=\xa3\xb8~\xb6O\xbd\x19*\xdb\x1c\x10\xa4\x8dIl\xc1\xceG\xd0h\xa1\xab:dP\xb6\xa0BR\xbe\x03\xac\xd9\x87\x00@\x80\x94\xd88\xc9\x03\x97\x17r\x85#\x7f\x8cu\x8f\xcc\x7fF\xb5\xea\xa6\xc1\x9d\xac\x89\xc9\xa1tuJw\xee\x1a\xe73\xa8\xadS\xd1\x11#d\xc2\xcfdj\x9ec\x93\xd5K\x90*_3\x89\v\xab\x04ih\x12\x93\xc5m\x8f~{\xe5\x85\xa5g\x00\x00\x00\xe45Q\xab%\xa8[\xf3\x17\x94\xf8\xdfq\xff\xd2?\xafW\xde\x1bW]\x1f\aaV\xc5\xc82*\xc7\xc5\"C}L\x10e\xc6\x90\xc0\xf9z\xb6+/d\x86\xf2\xbe\xc9:u\t\\e\x05)\xe4\xd2\xc4\x1a\xc9\xac\xdb\x925\x02\x94@\xa2\xe1\xee\x16\xb4\x98\xff\x0f\xbb\xb2\x81\xcf\x13g6l\xcc\xc8\x02\v\xa2\xb2\xf6\xbf@d\xcecC\x9fVz\xf4\x14\xa5\x8b|\xe1\xc0\xfa3X\xf4\xd9L\xe6\x8f\x9dy\x0fX.\xc5EQ\xd1/\xa1\xd0\x03>\xf0\x90\x13B\xe2\x97\x8b!\xf7\"\xecX\x92\xab\xbc^\xb2\x80@\xcc+\xbbp\xdc|N\xd3[=G\xb2\xe1\x9c\xc5\x81y\x84\xef\xacQ\x01\xdd\xe7<\xb8\xf1Hn\x86\xa6\xe3\x18N\x19\"[-\xdb\xef\xc3\xe0\xa8}', 0x0)
ftruncate(r2, 0x7d)
r3 = fanotify_init(0x8, 0x80000)
r4 = dup(r2)
fanotify_mark(r3, 0x1, 0x40001012, r4, 0x0)
r5 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r5, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r5, 0x4008af03, &(0x7f0000000940)={0x3, 0x0, [{0x0, 0x0, 0x0}, {0x4000, 0x62, &(0x7f0000000600)=""/98}, {0x30000, 0x36, &(0x7f0000000780)=""/54}]})
r6 = dup2(r5, r5)
close_range(r6, 0xffffffffffffffff, 0x0)

5m19.425926831s ago: executing program 3 (id=616):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, 0x0)
r5 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=@newqdisc={0x88, 0x24, 0xf0b, 0x70bd26, 0x0, {0x0, 0x0, 0x0, 0x0, {0x0, 0xffff}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_mqprio={{0xb}, {0x58, 0x2, {{0x1, [], 0x0, [0x1, 0x2, 0xfffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c4, 0x8000, 0x0, 0x0, 0x3dc], [0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000]}}}}]}, 0x88}}, 0x20000000)
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000580)=@newqdisc={0x24, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r3, {0xffff}, {0xffff, 0xffff}, {0x2, 0x1}}}, 0x24}, 0x1, 0x0, 0x0, 0x400dc}, 0x20004000)

5m17.998644106s ago: executing program 3 (id=618):
syz_mount_image$udf(&(0x7f0000000080), &(0x7f00000000c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x4040, &(0x7f00000015c0)=ANY=[], 0x2, 0xc2d, &(0x7f00000001c0)="$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")
creat(&(0x7f0000000100)='./bus\x00', 0x44)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x301400, 0x0)
r0 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x49)
pwritev2(r0, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x78c00}], 0x1, 0x7a00, 0x0, 0x3)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004280)='.\x00', 0x0, 0x0)
getdents64(r1, &(0x7f0000000180)=""/53, 0x35)

5m17.423230536s ago: executing program 3 (id=619):
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000540)={0x4, 0x8000}, 0x4)
openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x48241, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000540)='mounts\x00')
r1 = epoll_create1(0x80000)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000040)={0xc0002009})
ioctl$XFS_IOC_ERROR_CLEARALL(r0, 0x40085875)
syz_mount_image$erofs(&(0x7f0000000900), &(0x7f0000000300)='./file0\x00', 0x0, &(0x7f0000000200)=ANY=[], 0xfe, 0x177, &(0x7f0000000680)="$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")
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file2\x00', 0x80000, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x10012, r2, 0x0)
syz_open_procfs(0x0, &(0x7f00000002c0)='net/mcfilter6\x00')
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000080)='./file1\x00', 0x4810, &(0x7f0000000040)=ANY=[], 0x11, 0x6ba, &(0x7f00000001c0)="$eJzs3c1vHVfdB/DvXF+/3FRy3TZN8zyqhGmkghqR2LFSCJsEhFCQKlSFBWurcRorTlocF6VdYBeQ2LLgDyiLsIEVCCEhIUUqa9hV7CxWlZDYdJV2waCZO9e+du71S1LbSfl8ornnnDkzZ37zm5f7ElkT4H/W5dNp30snl0+/dqdqr9+dW1q/O3ezV08ynqSVtLtFiltJ8WFyKd0p/1fNbIYrhm3nV4sXrnz0yfrH3VY7m+NVL53hAbb3shdrzZTpJCNN+Qi2jPfGw403vlktNjJTJexUL3Fw1EaTlFv86MRmzyDlSF9j6PUOPDmK7vtmn+71P5UcSzLRe0Nb63a2Dj/CXe3rXrR2cHEAAADAodntC/rT91eTO5k8pHAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgC6F5/n/RTK1efTpF7/n/Y33P2B874nCH2zmyiV7l3m4PSAQAAAAAAACAJ8CX7ue3V8pystcui/r//F+qG8fr16fyTm5nIcs5kzuZz0pWspzZJFN9A43dmV9ZWZ7trflZWZZD1jw3cM1zewy483nsNQAAAAAAAAB8YVxsyp/mciaPOBYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANiiSEa6RT0d79Wn0monmUgyVi23lvy9V3+S3TvqAAAAAOAQPH0/93Mnk712WdTf+U/U3/sn8k5uZSWLWclSFnK1/i2g+62/tX53bmn97tzNanpw3G/9e7P+h8ldw6hHTPe3h8FbPlkv0cm1LNZzzuSNvJWlXE2rXrNyshfP4Ljer2IqLnaV5d4SdLUpqz3/ZVMepGLPW5iqMzK6kZGZZs0qG8/snIn+o/MQW5pNa+OXn+P7yPnFHbdS/Kd3TI715iRPfW/3nI/ua2ceyfZMnOs7+05sy8QDUX/lj7/74fWlWzeuF2unD/o0OhDj/9y8arZnYq4vEy/sfE70ZeLa7SczE9u18vxG/XK+mx/kdKbzepazmB9nPitZyHS+U9fmm/O5ep3aOVOXtrRe3y2Ksea4jGyL6ctPd8udYnqpWrcsy9V6yatZyKv1v3OZzddzPudzoe8IP7+Hq7414Kr/0/DgT321qXSS/KIpHw9VXp/py2v/PXeq7uuf00o53l3v2f3eG3e/Ftr/31SqI/Gzpnw8bGRiIhvvEr3onutlYHRgJn5d31ZuL926sXx9/u1t4xZrg7f3crbu/r5uJCP7WXi/qvPl2epg1a2tZ0fV99zAvtm67/hGX2t73286G31Tmcxivp+3hlypY81nuAdHOlf3vTCwb67uO9nXt/l567OyLLuftwB47B175dhY51+dv3U+6Py8c73z2sS3x78x/uJYRv86+s32zMjLrReL3+eD/CS7f0MHAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB2dfvd927MLy0tLG+rlGW5OqTrQCppJ1vm/OXPfcskqR8GtPcBq6UvtZJ6TjtNZX+BrT7c7rz/sEn4R3NMDiXhn0tlYuj5s73yaVmWj0fMe6mUjQPaRHWQj3pPXynLcsdljvKuBByGsys33z57+933vrZ4c/7NhTcXbl04f/7CzIXzr86dvba4tDDTfT3qKIGD0PcJHAAAAAAAAAAAAHhC7O2Pc4pH+9seAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgEdw+XTa91JkdubMTNVevzu3VE29+uaSnyZpJSmmk+LD5FK6U6b6hiuGbWctufLRJ+sfd1vtZqqXb+203t6sNVOmk4w05QATg2aWq8PGK+pxyrJcHTLeNsP2otjoqxJ2qpc4OGr/DQAA///ZJR9e")

5m15.672747669s ago: executing program 3 (id=628):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000003005740ed0b0011c3ec000000010902120001000000000904"], 0x0)
syz_usb_control_io$cdc_ecm(r0, &(0x7f0000000140)={0x14, 0x0, &(0x7f0000000000)={0x0, 0x3, 0x1a, {0x1a}}}, &(0x7f00000002c0)={0x1c, &(0x7f0000000180)={0x20, 0x3, 0xa, "02d6c2488dcd8c8b028b"}, 0x0, 0x0})

5m15.280705953s ago: executing program 33 (id=628):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000003005740ed0b0011c3ec000000010902120001000000000904"], 0x0)
syz_usb_control_io$cdc_ecm(r0, &(0x7f0000000140)={0x14, 0x0, &(0x7f0000000000)={0x0, 0x3, 0x1a, {0x1a}}}, &(0x7f00000002c0)={0x1c, &(0x7f0000000180)={0x20, 0x3, 0xa, "02d6c2488dcd8c8b028b"}, 0x0, 0x0})

2m45.797186269s ago: executing program 4 (id=1404):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000002340), 0x40800)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
fsync(0xffffffffffffffff)
r2 = getpid()
openat$sysfs(0xffffffffffffff9c, 0x0, 0xa0042, 0x0)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r3=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
fchdir(0xffffffffffffffff)
getsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x2, 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_QUERY_SUBS(r1, 0xc058534f, &(0x7f0000002380)={{0x0, 0x1}, 0x0, 0xfffffffe, 0x3, {0x4, 0x21}, 0x14, 0x1})
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f0000000000)=[{0x80, 0x0, 0x0, 0xfffff010}, {0x6}]}, 0x10)

2m44.744506761s ago: executing program 4 (id=1407):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
io_setup(0x8, &(0x7f00000000c0)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f00000006c0)=[&(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x40, r0, 0x0, 0x0, 0x3}])
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1000001, 0x32, 0xffffffffffffffff, 0x0)
io_pgetevents(r1, 0x1, 0x1, &(0x7f00000003c0)=[{}], &(0x7f0000000140), 0x0)

2m44.4028018s ago: executing program 4 (id=1410):
syz_mount_image$exfat(&(0x7f00000005c0), &(0x7f0000000240)='./file1\x00', 0x3000050, &(0x7f0000000600)=ANY=[], 0x1, 0x14fe, &(0x7f00000020c0)="$eJzs3Au0ztXWMPA511p/NklPkvuaa/55kssiSXJJSCRJkiS5JSRJkoTEJrckJCH3JPeQ3GIn9/st9yQ5kiQJCUnWN3Q6n/e8nfftnO+c7/V9Z8/fGGvsNff/mfNZa889nv9ljL2/7Ti4av1qlesyM/xT8M9fUgEgBQD6AcA1ABABQKlspbIBDoNMGlP/uTcR/1oPTbvSKxBXkvQ/fZP+p2/S//RN+p++Sf/TN+l/+ib9T9+k/0KkZ1un575WRvod/3PP/0Ge//8/R87//0YOFxvz5fpi13f6B1Kk/+mb9D99k/6nb9L/9E36n75J///NRQCV/pvD0v/0TfovRHp2pZ8/y7iy40r//gkhhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGESB/OhcsMAPxlfqXXJYQQQgghhBBCiH+dkPFKr0AIIYQQQgghhBD/9yEo0GAgggyQEVIgE2SGqyALXA1Z4RpIwLWQDa6D7HA95ICckAtyQx7IC/nAAoEDhhjyQwFIwg1QEG6EQlAYikBR8FAMisNNUAJuhpJwC5SCW6E03AZloCyUg/JwO1SAO6AiVILKcCdUgbugKlSDu6E63AM14F6oCfdBLbgfasMDUAcehLrwENSDh6E+PAIN4FFoCI2gMTSBpv9H+S9CV3gJukF3SIUe0BNehl7QG/pAX+gHr0B/eBUGwGswEAbBYHgdhsAbMBTehGEwHEbAWzASRsFoGANjYRyMh7dhArwDE+FdmASTYQpMhWkwHWbAezATZsFseB/mwAcwF+bBfFgAC+FDWASLIQ0+giXwMSyFZbAcVsBKWAWrYQ2shXWwHjbARtgEm2ELbIVPYBtshx2wE3bBbtgDn8Je+Az2weewH774B/PP/qf8TggIqFChQYMZMAOmYApmxsyYBbNgVsyKCUxgNsyG2TE75sAcmAtzYR7Mg/kwHxISMjLmx/yYxCQWxIJYCAthESyCHj0Wx+JYAm/GklgSS2EpLI2lsQyWxbJYHstjBayAFbEiVsbKWAWrYFWsinfj3XgP1sAaWBNrYi2shbWxNtbBOlgX62I9rIf1sT42wAbYEBtiY2yMTbEpNsNm2BybY0tsia2wFbbG1tgG22BbbIvtsB22x/bYATtgR+yInbAzdsYX8UV8CV/C7lhF9cCe2BN7YS/sg32xL76C/fFVfBVfw4E4CAfj6/g6voFD8QwOw+E4AkdgBTUKR+MYZDUOx+N4nIATcCJOxEk4GSfjVJyG03EGzsCZOAtn4fs4Bz/AD3AezsMFuBAX4iJcjGmYhkvwLC7FZbgcV+BKXIUrcQ2uxTW4HjfgetyEm3ALbsFP8BPcjttxJ+7E3bgbP8VP8TP8DAfiftyPB/AAHsSDeAgP4WE8jEfwCB7Fo3gMj+FxPI4n8CSewpN4Gk/jGTyL5/AcnsfzeAGfz/N1vd2F1w0EdYlRRmVQGVSKSlGZVWaVRWVRWVVWlVAJlU1lU9lVdpVD5VC5VC6VR+VR+VQ+RYoUq1jlV/lVUiVVQVVQFVKFVBFVRHnlVXFVXJVQJVRJVVKVUreq0uo2VUaVVS18eVVeVVAtfUVVSVVWlVUVdZeqqqqpaqq6qq5qqBqqpqqpaqlaqrZ6QNVRPbAPPqQudaa+GoQN1GBsqBqpxqqJegMfU83UUGyuWqiW6gk1HIdha9XMt1FPq7ZqNLZTz6ox+JzqoMZhR/WC6qQ6qy7qRdVVNffdMvz2EaimYi/VW/VRfdVMvEtd6lhV9ZoaqAapwep1tQDfUEPVm2qYGq5GqLfUSDVKjVZj1Fg1To1Xb6sJ6h01Ub2rJqnJaoqaqqap6WqGek/NVLPUbPW+mqM+UHPVPDVfLVAL1YdqkVqs0tRHaon6WC1Vy9RytUKtVKvUarVGrVXr1Hq1QW1Um9RmtUVtVZ+obWq72qF2ql1qt9qjPlV71Wdqn/pc7VdfqAPqT+qg+lIdUl+pw+prdUR9o46qb9Ux9Z06rr5XJ9RJdUr9oE6rH9UZdVadUz+p8+pndUH9oi6qoECjVlproyOdQWfUKTqTzqyv0ln01TqrvkYn9LU6m75OZ9fX6xw6p86lc+s8Oq/Op60m7TTrWOfXBXRS36AL6ht1IV1YF9FFtdfFdHF9ky6hb9Yl9S26lL5Vl9a36TK6rC6ny+vbdQV9h66oK+nK+k5dRd+lq+pq+m5dXd+ja+h7dU19n66l79e19QO6jn5Q19UP6Xr6YV1fP6Ib6Ed1Q91IN9ZNdFP9mG6mH9fNdQvdUj+hW+kndWv9lG6jn9Zt9TO6nX5Wt9fP6Q76ed1Rv6A76c66i/5FX9RBd9PddaruoXvql3Uv3Vv30X11P/2K7q9f1QP0a3qgHqQH69f1EP2GHqrf1MP0cD1Cv6VH6lF6tB6jx+pxerx+W0/Q7+iJ+l09SU/WU/RUPU1P131+qzT778h/52/kD/j13bforfoTvU1v1zv0Tr1L79Z79B69V+/V+/Q+vV/v1wf0AX1QH9SH9CF9WB/WR/QRfVQf1cf0MX1cH9cn9En9k/5Bn9Y/6jP6rD6rf9Ln9Xl94befARg0ymhjTGQymIwmxWQymc1VJou52mQ115iEudZkM9eZ7OZ6k8PkNLlMbpPH5DX5jDVknGETm/ymgEmaG0xBc6MpZAqbIqao8aaYKW5u+qfz/2h9TU1T08w0M81Nc9PStDStTCvT2rQ2bUwb09a0Ne1MO9PetDcdTAfT0XQ0nUwn08V0MV1NV9PNdDOpJtX0NC+bXqa36WP6mn7mFdPf9DcDzAAz0Aw0g81gM8QMMUPNUDPMDDMjzAgz0ow0o81oM9aMNePNeDPBTDATzUQzyUwyU8wUM81MMzPMDDPTzDSzzWwzx8wxc81cM9/MNwvNQrPILDJpJs0sMUvMUrPMLDMrzAqzyqwya8was86sMxvMBrPJbDJLzVaz1Wwz28wOs8PsMrvMHrPH7DV7zT6zz+w3+80Bc8AcNAfNIXPIHDaHzRFzxBw1R80xc8wcN8fNCXPCnDKnzGlz2pwxZ8w5c86cN+fNBXPBXDQXL132RSpSkYlMlCHKEKVEKVHmKHOUJcoSZY2yRokoEWWLskXZo+ujHFHOKFeUO8oT5Y1SwUYUuYijOMofFYiS0Q1RwejGqFBUOCoSFY18VCwqHt0UlYhujkpGt0Sloluj0tFtUZmobFQuKh/dHlWI7ogqRpWiytGdUZXorqhqVC26O6oe3RPViO6Nakb3RbWi+6Pa0QNRnejBqG70UFQvejiqHz0SNYgejRpGjaLGUZOo6b+0fghncj7uu9nuNtX2sD3ty7aX7W372L62n33F9rev2gH2NTvQDrKD7et2iH3DDrVv2mF2uB1h37Ij7Sg72o6xY+04O96+bSfYd+xE+66dZCfbKXaqnWan2xn2PTvTzrKz7ft2jv3AzrXz7Hy7wC60H9pFdrFNsx/ZJfZju9Qus8vtCrvSrrKr7Rq71q6z6+0Gu9FuspvtFrvVfmK32e12h91pd9nddo/91O61n9l99nO7335hD9g/2YP2S3vIfmUP26/tEfuNPWq/tcfsd/a4/d6esCftKfuDPW1/tGfsWXvO/mTP25/tBfuLvWjDpYv7S6d3MmQoA2WgFEqhzJSZslAWykpZKUEJykbZKDtlpxyUg3JRLspDeSgf5aNLmJjyU35KUpIKUkEqRIWoCBUhT56KU3EqQSWoJJWkUlSKSlNpKkNlqByVo9vpdrqD7qBKVInupDvpLrqLqlE1qk7VqQbVoJpUk2pRLapNtakO1aG6VJfqUT2qT/WpATWghtSQGlNjakpNqRk1o+bUnFpSS2pFrag1taY21IbaUltqR+2oPbWnDtSBOlJH6kSdqAt1oa7UlbpRN0qlVOpJPakX9aI+1If6UT/qT/1pAA2ggTSQBtNgGkJDaCgNpWE0nEbQWzSSRtFoGkNjaRyNp/E0gSbQRJpIk2gSTaEpNI2m0QyaQTNpJs2m2TSH5tBcmkvzaT4tpIW0iBZRGqXRElpCS2kpLafltJJW0mpaTWtpLa2n9bSRNtJm2kxbaStto220g3bQLtpFe2gP7aW9tI/20X7aTwfoAB2kg3SIDtFhOkxH6AgdpaN0jI7RcTpOJ+gEnaJTdJpO0xk6Q+foHJ2nn+kC/UIXKVCKU5DZXeWyuKtdVneNS3GZ3KU4AoBLcS6X2+VxeV0+Z10Ol/OvYnLOFXKFXRFX1HlXzBV3N/0uLuPKunKuvLvdVXB3uIq/i6u7e1wNd6+r6e5z1dzdfxXXcve72u4RV8c96uq6Rq6ea+Lqu0dcA/eoa+gaucauiWvlnnSt3VOujXvatXXP/C5e5Ba7tW6dW+82uL3uM3fO/eSOum/defez6+a6u37uFdffveoGuNfcQDfod/EI95Yb6Ua50W6MG+vG/S6e4qa6aW66m+HeczPdrN/FC92Hbo5Lc3PdPDffLfg1vrSmNPeRW+I+dkvdMrfcrXAr3Sq32q3532td4Ta5zW6L2+M+ddvcdrfD7XS73O5f40v72Oc+d/vdF+6I+8YddF+6Q+6YO+y+/jW+tL9j7jt33H3vTriT7pT7wZ12P7oz7uyv+7+09x/cL+6iCw4YWbFmwxFn4Iycwpk4M1/FWfhqzsrXcIKv5Wx8HWfn6zkH5+RcnJvzcF7Ox5aJHTPHnJ8LcJJv4IJ8IxfiwlyEi7LnYlycb+ISfDOX5Fu4FN/Kpfk2LsNluRyX59u5At/BFbkSV+Y7uUoIXJWr8d1cne/hGnwv1+T7uBbfz7X5Aa7DD3Jdfojr8cNcnx/hBvwoN+RG3JibcFN+jJvx49ycW3BLfoJb8ZPcmp/iNvw0t+VnuB0/y+35Oe7Az3NHfoE7cWfuwi9yV36Ju3F3TuUe3JNf5l7cm/twX+7Hr3B/fpUH8Gs8kAfxYH6dh/AbPJTf5GE8nEfwWzySR/FoHsNjeRyP57d5Ar/DE/ldnsSTeQpP5Wk8nWfwezyTZ/Fsfp/n8Ac8l+fxfF7AC/lDXsSLOY0/4iX8MS/lZbycV/BKXsWreQ2v5XW8njfwRt7Em3kLb+VPeBtv5x28k3fxbt7Dn/Je/oz38ee8n7/gA/wnPshf8iH+ig/z13yEv+Gj/C0f4+/4OH/PJ/gkn+If+DT/yGf4LJ/jn/g8/8wX+Be+yIEhxljFOjZxFGeIM8YpcaY4c3xVnCW+Os4aXxMn4mvjbPF1cfb4+jhHnDPOFeeO88R543yxjSl2McdxnD8uECfjG+KC8Y1xobhwXCQuGvu4WFw8vikuEd8cl4xviUvFt8al49viMnHZ+JH7yse3xxXiO+KKcaW4cnxnXCW+K64aV4vvjqvH98Q14nvjmvF9ccn4/rh2/EBcJ34wrhs/FNeLH47rx4/EDeJH44Zxo7hx3CRuGj8WN4sfj5vHLeKW8RNxq/jJuHX8VNwmfjpuGz/zh8dT4x5xz/jl+OU4hHv1/OSC5MLkh8lFycXJtORHySXJj5NLk8uSy5MrkiuTq5Krk2uSa5PrkuuTG5Ibk5uSm5NbkiFUywgevfLaGx/5DD6jT/GZfGZ/lc/ir/ZZ/TU+4a/12fx1Pru/3ufwOX0un9vn8Xl9Pm89eefZxz6/L+CT/gZf0N/oC/nCvogv6r0v5ov7Jr6pb+qb+cd9c9/Ct/RP+Cf8k/5J/5R/yj/t2/pnfDv/rG/vn/Md/PP+ef+C7+Q7+y7+Rd/Vv+S7+e4+1af6nr6n7+V7+T6+j+/n+/n+vr8f4Af4gX6gH+wH+yF+iB/qh/phfpgf4Uf4kX6kH+1H+7F+rB/vx/sJfoKf6Cf6SX6Sn+Kn+Gl+mp/hZ/iZfqaf7Wf7OYXm+Ll+rp/v5/uFfqFf5Bf5NJ/ml/glfqlf6pf75X6lX+lX+9V+rV/r1/v1fqPf6Df7zX6r3+q3+W1+h9/hd/ldfo/f4/f6vX6f3+f3+/3+gD/gD/qD/pD/yh/2X/sj/ht/1H/rj/nv/HH/vT/hT/pT/gd/2v/oz/iz/pz/yZ/3P/sL/hd/0Qc/PvF2YkLincTExLuJSYnJiSmJqYlpiemJGYn3EjMTsxKzE+8n5iQ+SMxNzEvMTyxILEx8mFiUWJxIS3yUWJL4OLE0sSyxPLEisTKxKhFC3m1xyB8KhGS4IRQMN4ZCoXAoEooGH4qF4uGmUCLcHEqGW0KpcGsoHW4LZULZUC48GhqGRqFxaBKahsdCs/B4aB5ahJbhidAqPBlah6dCm/B0aBueCe3Cs6F9eC50CM+HjuGF0Cl0Dl3Ci6FreCl0C91DaugReoaXQ6/QO/QJfUO/8EroH14NA8JrYWAYFAaH18OQ8EYYGt4Mw8LwMCK8FUaGUWF0GBPGhnFhfHg7TAjvhInh3TApTA5TwtQwLUwPM8J7YWaYFWaH98Oc8EGYG+aF+WFBWBg+DIvC4pAWPgpLwsdhaVgWlocVYWVYFVaHNWFtWBfWhw1hY9gUNoctYWv4JGwL28OOsDPsCrvDnvBp2Bs+C/vC52F/+CIcCH8KB8OX4VD4KhwOX4cj4ZtwNHwbjoXvwvHwfTgRToZT4YdwOvwYzoSz4Vz4KZwPP4cL4ZdwUf5mTQghhBDi76L/4HiPv/G9DACgfpv3BICrt+c+/J9rbszx53lvladVAgCe7t7xob+MKlVSU1N/e+1SDVGBeQCQ+Ov6f4mXQUt4EtpACyjxN9fXW3U+z39QP3krQOb/kJMCl+PL9W/+L+o/9sSIRaXjc9n+m/rzAAoVuJyTCS7Hl+uX/C/q52z2B+vP9OV4gOb/IScLXI4v1y8Oj8Mz0OavXimEEEIIIYQQQvxZb1Wu/R/dP1+6P89jLudkhMvxH92fCyGEEEIIIYQQ4sp7rnOXpx5r06ZF+79vgr89F/jHsmQiE5n8fza50p9MQgghhBBCiH+1yxf9V3olQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCFE+vU/8e/ErvQehRBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCiCvtfwUAAP//luw5aQ==")
syz_mount_image$exfat(&(0x7f0000000200), &(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x804, &(0x7f0000000000)=ANY=[@ANYBLOB='iocharset=macinuit,umask=00000000000000000000011,errors=continue,namecase=1,allow_utime=00000000000000000051165,errors=remount-ro,fmask=00000000000000000000004,allow_utime=00000000000000000000011,namecase=1,fmask=000000000000000000001,\x00\x00\x00'], 0x3, 0x1513, &(0x7f00000006c0)="$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")
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000080)='./file0\x00', 0x894414, &(0x7f0000000000)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f6368617273de93c1985efc9e67bb241d06b365743d757466382c73681a773f7e69899d166d697865642c757466"], 0x1, 0x2ca, &(0x7f0000000a00)="$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")
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
mount$cgroup(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0)

2m44.052500971s ago: executing program 4 (id=1414):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x801e, &(0x7f00000000c0)={[{@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x8}}, {@stripe={'stripe', 0x3d, 0x7}}, {@errors_continue}, {@lazytime}, {@nombcache}, {@noload}, {@noquota}]}, 0x3, 0x440, &(0x7f0000000280)="$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")
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffd000)
syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
r0 = creat(&(0x7f0000000240)='./file1\x00', 0x0)
io_setup(0x200, &(0x7f0000000140)=<r1=>0x0)
io_submit(r1, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0x0, 0x2, 0x1, 0x0, r0, &(0x7f0000000000), 0x4000}])

2m42.149027098s ago: executing program 4 (id=1428):
syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000000)='./bus\x00', 0x280008a, &(0x7f0000000240)=ANY=[@ANYBLOB='shortname=lower,shortname=win95,rodir,iocharset=default,uni_xlate=0,nonumtail=1,utf8=0,flush,rodir,shortname=win95,shortname=winnt,shortname=win95,showexec,uni_xlate=0,utf8=0,utf8=0,uni_xlate=0,shortname=mixed,\x00'], 0x97, 0x2ad, &(0x7f00000007c0)="$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")
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='\x00', 0x89901)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x3000003, 0x4031, 0xffffffffffffffff, 0x0)
r1 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000000c0)=0x3)
ioctl$TIOCSSOFTCAR(r1, 0x5412, 0x0)
syz_open_procfs(0x0, &(0x7f0000000540)='mounts\x00')
r2 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000100)=0x3)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff}, 0x94)
r3 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x1a01, 0x0)
ioctl$EVIOCGPROP(r3, 0x40047438, &(0x7f0000000180)=""/246)
writev(r3, &(0x7f0000000440)=[{&(0x7f0000000280)="c021", 0x1700}], 0x1)
ioctl$TCGETS(r0, 0x5401, &(0x7f0000000140))
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='mnt\x00', 0x4, &(0x7f0000000000), 0x0, 0x24d, &(0x7f00000009c0)="$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")
creat(&(0x7f0000000200)='./bus\x00', 0x268)
preadv2(0xffffffffffffffff, &(0x7f00000000c0)=[{&(0x7f0000001200)=""/4096, 0x1000}], 0x2, 0x0, 0x0, 0x0)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0)
tee(r0, 0xffffffffffffffff, 0x1, 0x0)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000180)='./file1\x00', 0x2004de, &(0x7f0000000580)={[{@jqfmt_vfsv1}, {@acl}, {@nouser_xattr}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x6}}, {@data_writeback}, {@jqfmt_vfsv0}, {@block_validity}, {@init_itable_val={'init_itable', 0x3d, 0xe13}}]}, 0x3, 0x45c, &(0x7f0000002200)="$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")
creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x14a)
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2, 0x1)

2m38.310034613s ago: executing program 4 (id=1444):
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000400)='./file1\x00', 0x0, &(0x7f00000000c0)=ANY=[@ANYRES32=0x0, @ANYRESHEX=0x0], 0xfe, 0x698, &(0x7f0000003680)="$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")
mknodat(0xffffffffffffff9c, &(0x7f0000000400)='./file7\x00', 0x21c0, 0x103)

2m37.908674578s ago: executing program 34 (id=1444):
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000400)='./file1\x00', 0x0, &(0x7f00000000c0)=ANY=[@ANYRES32=0x0, @ANYRESHEX=0x0], 0xfe, 0x698, &(0x7f0000003680)="$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")
mknodat(0xffffffffffffff9c, &(0x7f0000000400)='./file7\x00', 0x21c0, 0x103)

6.903991467s ago: executing program 5 (id=2128):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c0000002500010125bd7000fdffffff550000000800030047"], 0x1c}, 0x1, 0x0, 0x0, 0x20004840}, 0x28000)
recvmmsg(0xffffffffffffffff, &(0x7f0000000b00)=[{{&(0x7f00000000c0)=@un=@abs, 0x80, &(0x7f0000000640)=[{0x0}, {&(0x7f0000000240)=""/7, 0x7}, {&(0x7f0000000340)=""/27, 0x1b}, {&(0x7f0000000380)=""/70, 0x46}, {0x0}, {&(0x7f0000000440)=""/67, 0x43}, {&(0x7f0000000540)=""/11, 0xb}, {&(0x7f0000000600)=""/6, 0x6}], 0x8, &(0x7f00000006c0)=""/111, 0x6f}, 0x1}, {{&(0x7f0000000740)=@l2, 0x80, &(0x7f0000000900)=[{&(0x7f00000007c0)=""/184, 0xb8}, {&(0x7f0000000880)=""/67, 0x43}], 0x2, &(0x7f0000000940)=""/20, 0x14}, 0x1}, {{&(0x7f0000000980)=@alg, 0x80, &(0x7f0000000a40)=[{&(0x7f0000000a00)=""/43, 0x2b}], 0x1, &(0x7f0000000a80)=""/86, 0x56}, 0x8}], 0x3, 0x2103, &(0x7f0000000bc0)={0x0, 0x989680})
sendmsg$NFNL_MSG_ACCT_NEW(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000500)=ANY=[@ANYBLOB="340000000007010100000000000400001e0000080c000640001fffe000000000080005"], 0x34}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
sendmsg$NL802154_CMD_SET_TX_POWER(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000004c0)=ANY=[@ANYBLOB='`\x00\x00\x00', @ANYRES16=<r1=>0x0, @ANYBLOB="01002abd7400ffdbdf250c00000008000b00030000000c000600010000000100000008000300", @ANYRES32=0x0, @ANYBLOB="08000300", @ANYRES32=0x0, @ANYBLOB="0c000600020000000000000008000b00c20d00000c00060000000000000000000800"], 0x60}, 0x1, 0x0, 0x0, 0x2001}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000009b00)={0x0}, 0x1, 0x0, 0x0, 0x4000850}, 0x4048010)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r3 = socket$kcm(0x2, 0xa, 0x2)
ioctl$TUNSETVNETBE(r2, 0x400454de, &(0x7f0000000600)=0x1)
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-aesni\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)={0x14, 0x37, 0xa01, 0x0, 0x0, {0x80}}, 0x14}}, 0x8054)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31"], 0x7c}, 0x1, 0x0, 0x0, 0x20004001}, 0x4000018)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000c40)=ANY=[@ANYRES64, @ANYRES8=r1, @ANYRESOCT=r0, @ANYRES64=r3], 0x64}, 0x1, 0x0, 0x0, 0x480d4}, 0x24000000)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000002c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x28}, 0x1, 0x0, 0x0, 0x4044050}, 0x4000000)
ioctl$sock_inet_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000680)={0x0, {0x2, 0x4e23, @local}, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x2b}}, {0x2, 0x4e24, @rand_addr=0x64010100}, 0x80, 0x0, 0x0, 0x0, 0xf34, &(0x7f0000000640)='ipvlan1\x00', 0xbdbd, 0x1, 0x2})
r5 = accept4(r4, 0x0, 0x0, 0x800)
sendmmsg$alg(r5, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r5, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
write$tun(r2, &(0x7f0000000280)={@val={0x6f01, 0x800}, @val={0x1, 0x0, 0x27, 0x0, 0x27}, @mpls={[], @ipv4=@tcp={{0x6, 0x4, 0x0, 0x0, 0xfd5e, 0x0, 0x0, 0x0, 0x84, 0x0, @empty=0x3fffff20, @local}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x5, 0xb, 0x0, 0x700, 0x0, 0x18, {[@window={0x9, 0xfffffffffffffec4}, @timestamp={0x5, 0x2, 0xffffff07}, @generic={0x0, 0x2, "d588380003c1"}]}}}}}}, 0xfd6c)

6.660343108s ago: executing program 5 (id=2130):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x22d00, 0x0)
ioctl$TUNSETOFFLOAD(r0, 0xc004743e, 0x110e22fff6)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
ioctl$TUNSETOFFLOAD(r1, 0x4004743d, 0x110e22fff6)
close(r0)
r2 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f00000001c0)={0x10000000})
epoll_pwait(r2, &(0x7f0000000440)=[{}, {}, {}, {}], 0x4, 0x3d, 0x0, 0x0)

6.436367298s ago: executing program 5 (id=2131):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0)
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000000)='./file0\x00', 0x402, &(0x7f0000000340)={[{@fat=@dmask}, {@uni_xlate}, {@numtail}, {@rodir}, {@fat=@fmask={'fmask', 0x3d, 0x6}}, {@numtail}, {@uni_xlate}, {@numtail}, {@uni_xlateno}, {@utf8}, {@uni_xlateno}, {@shortname_win95}, {@uni_xlate}, {@numtail}, {@shortname_mixed}, {@rodir}, {@uni_xlate}, {@fat=@quiet}]}, 0xf5, 0x2f0, &(0x7f0000000f80)="$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")
syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x20, &(0x7f0000000180)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x8000000, 0x0, 0x2, 0x1, 0x0, 0x8}, 0x20)
mprotect(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
exit(0xffff)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x20, &(0x7f0000000180)={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x8000000, 0x0, 0x2, 0x5, 0x0, 0x5}, 0x20)

5.100300834s ago: executing program 6 (id=2136):
msgctl$IPC_RMID(0x0, 0x0)
msgctl$MSG_STAT(0x0, 0xb, 0x0)
r0 = openat$yama_ptrace_scope(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
lseek(r0, 0x20000000000003, 0x0)
close_range(r0, r0, 0x2)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r1=>0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x7, 0x4, &(0x7f0000000280)=ANY=[@ANYRESDEC=r0], &(0x7f0000003ff6)='GPL\x00', 0x6, 0xbd, &(0x7f000000cf3d)=""/189, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x8, &(0x7f0000000200), 0x8, 0x10, &(0x7f0000000080)={0x0, 0x0, 0x1}, 0x10}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x3, &(0x7f0000000400)=ANY=[@ANYBLOB], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket$nl_route(0x10, 0x3, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r3, 0xc0502100, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r3, 0xc0502100, &(0x7f0000000380)={<r4=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r3, 0x40182103, &(0x7f0000000240)={r4, 0x1, r3, 0x6})
ioctl$BLKROSET(0xffffffffffffffff, 0x125d, 0x0)
syz_genetlink_get_family_id$mptcp(0x0, 0xffffffffffffffff)
open(0x0, 0x226240, 0xb1)
r5 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
madvise(&(0x7f0000007000/0x4000)=nil, 0x4000, 0xf)
setsockopt$sock_int(r5, 0x1, 0x12, &(0x7f0000000000)=0xfffffff6, 0x4)
fallocate(r5, 0x1, 0x80, 0x8)
pwritev2(r2, 0x0, 0x0, 0x9bfd, 0x1, 0x16)
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r1, 0x1, &(0x7f0000000040)={{}, {0x77359400}}, 0x0)

3.20286977s ago: executing program 6 (id=2138):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c0000002500010125bd7000fdffffff550000000800030047"], 0x1c}, 0x1, 0x0, 0x0, 0x20004840}, 0x28000)
recvmmsg(0xffffffffffffffff, &(0x7f0000000b00)=[{{&(0x7f00000000c0)=@un=@abs, 0x80, &(0x7f0000000640)=[{0x0}, {&(0x7f0000000240)=""/7, 0x7}, {&(0x7f0000000340)=""/27, 0x1b}, {&(0x7f0000000380)=""/70, 0x46}, {0x0}, {&(0x7f0000000440)=""/67, 0x43}, {&(0x7f0000000540)=""/11, 0xb}, {&(0x7f0000000600)=""/6, 0x6}], 0x8, &(0x7f00000006c0)=""/111, 0x6f}, 0x1}, {{&(0x7f0000000740)=@l2, 0x80, &(0x7f0000000900)=[{&(0x7f00000007c0)=""/184, 0xb8}, {&(0x7f0000000880)=""/67, 0x43}], 0x2, &(0x7f0000000940)=""/20, 0x14}, 0x1}, {{&(0x7f0000000980)=@alg, 0x80, &(0x7f0000000a40)=[{&(0x7f0000000a00)=""/43, 0x2b}], 0x1, &(0x7f0000000a80)=""/86, 0x56}, 0x8}], 0x3, 0x2103, &(0x7f0000000bc0)={0x0, 0x989680})
sendmsg$NFNL_MSG_ACCT_NEW(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000500)=ANY=[@ANYBLOB="340000000007010100000000000400001e0000080c000640001fffe000000000080005"], 0x34}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
sendmsg$NL802154_CMD_SET_TX_POWER(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000004c0)=ANY=[@ANYBLOB='`\x00\x00\x00', @ANYRES16=<r1=>0x0, @ANYBLOB="01002abd7400ffdbdf250c00000008000b00030000000c000600010000000100000008000300", @ANYRES32=0x0, @ANYBLOB="08000300", @ANYRES32=0x0, @ANYBLOB="0c000600020000000000000008000b00c20d00000c00060000000000000000000800"], 0x60}, 0x1, 0x0, 0x0, 0x2001}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000009b00)={0x0}, 0x1, 0x0, 0x0, 0x4000850}, 0x4048010)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r3 = socket$kcm(0x2, 0xa, 0x2)
ioctl$TUNSETVNETBE(r2, 0x400454de, &(0x7f0000000600)=0x1)
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-aesni\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)={0x14, 0x37, 0xa01, 0x0, 0x0, {0x80}}, 0x14}}, 0x8054)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31"], 0x7c}, 0x1, 0x0, 0x0, 0x20004001}, 0x4000018)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000c40)=ANY=[@ANYRES64, @ANYRES8=r1, @ANYRESOCT=r0, @ANYRES64=r3], 0x64}, 0x1, 0x0, 0x0, 0x480d4}, 0x24000000)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000002c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x28}, 0x1, 0x0, 0x0, 0x4044050}, 0x4000000)
ioctl$sock_inet_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000680)={0x0, {0x2, 0x4e23, @local}, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x2b}}, {0x2, 0x4e24, @rand_addr=0x64010100}, 0x80, 0x0, 0x0, 0x0, 0xf34, &(0x7f0000000640)='ipvlan1\x00', 0xbdbd, 0x1, 0x2})
r5 = accept4(r4, 0x0, 0x0, 0x800)
sendmmsg$alg(r5, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r5, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
write$tun(r2, &(0x7f0000000280)={@val={0x6f01, 0x800}, @val={0x1, 0x0, 0x27, 0x0, 0x27}, @mpls={[], @ipv4=@tcp={{0x6, 0x4, 0x0, 0x0, 0xfd5e, 0x0, 0x0, 0x0, 0x84, 0x0, @empty=0x3fffff20, @local}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x5, 0xb, 0x0, 0x700, 0x0, 0x18, {[@window={0x9, 0xfffffffffffffec4}, @timestamp={0x5, 0x2, 0xffffff07}, @generic={0x0, 0x2, "d588380003c1"}]}}}}}}, 0xfd6c)

3.202646171s ago: executing program 5 (id=2139):
unshare(0x62040200)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0xa2f01, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = dup(r1)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}})
write$tun(r0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0a000010ffffffffffffcf3f53f449aa86dd69"], 0x42)

3.200295231s ago: executing program 0 (id=2145):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000400)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f00090581", @ANYRES8], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000840)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="00000f00000009003d14"], 0x0, 0x0, 0x0, 0x0}, 0x0)
r1 = syz_open_dev$hiddev(&(0x7f0000000080), 0x0, 0x0)
ioctl$HIDIOCGUSAGE(r1, 0xc018480b, 0x0)

2.911087796s ago: executing program 6 (id=2141):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(ecb-aes-aesni)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000140)="10797fcdc7e94907f095438c4bd6e43be17110dab4dc00"/33, 0x21)

2.63657267s ago: executing program 5 (id=2144):
syz_mount_image$hfsplus(&(0x7f0000000600), &(0x7f0000000200)='./file0\x00', 0xa00010, &(0x7f0000000840)=ANY=[@ANYBLOB='nodecompose,decompose,nobarrier,gid=', @ANYRESHEX=0xee01, @ANYBLOB="2c6e6c733d69736f383835392d310000000072726965722c00bcd0f0b5c4e2957974ff5d7ea3c3dcee087e4983684e8a4c4e4e87b134e30ce77162b12885b964b3506ff3eae0f3599447b17861d19be78079e5dd7bdc7f1eb36e31ac14de48349767164f5f6431bbdeaef96a4f2bce64b5cfa76ce3a2c4302374bc5535d7e2eb8dfb2e5d58a37b7e37836597c21f51bcdf6df4cad825cfd9ef5ee9e89e04b15cd3cea9e152d67b9a7eedc5dfe6d85a3ce7c342da8cc969b552197cb8bcc4a1009f38f4a85b7c742101ba5bc03115feca2b994c699812"], 0x6, 0x635, &(0x7f0000000c80)="$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")
mount$bind(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x21, 0x0)

2.335804976s ago: executing program 6 (id=2147):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0)
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000000)='./file0\x00', 0x402, &(0x7f0000000340)={[{@fat=@dmask}, {@uni_xlate}, {@numtail}, {@rodir}, {@fat=@fmask={'fmask', 0x3d, 0x6}}, {@numtail}, {@uni_xlate}, {@numtail}, {@uni_xlateno}, {@utf8}, {@uni_xlateno}, {@shortname_win95}, {@uni_xlate}, {@numtail}, {@shortname_mixed}, {@rodir}, {@uni_xlate}, {@fat=@quiet}]}, 0xf5, 0x2f0, &(0x7f0000000f80)="$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")
syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x20, &(0x7f0000000180)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x8000000, 0x0, 0x2, 0x1, 0x0, 0x8}, 0x20)
mprotect(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
exit(0xffff)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x20, &(0x7f0000000180)={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x8000000, 0x0, 0x2, 0x5, 0x0, 0x5}, 0x20)

1.462619602s ago: executing program 5 (id=2148):
syz_usb_connect(0x3, 0x3f, &(0x7f0000000100)={{0x12, 0x1, 0x200, 0x11, 0x6f, 0x3a, 0x40, 0x58f, 0x3820, 0xbba0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x8, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x52, 0x0, 0x0, 0xe, 0x1, 0x0, 0x0, [@cdc_ecm={{0x5}, {0x5, 0x24, 0x0, 0x1}, {0xd, 0x24, 0xf, 0x1, 0x0, 0x0, 0x8, 0x8}, [@acm={0x4, 0x24, 0x2, 0x4}]}]}}]}}]}}, 0x0)

1.431268065s ago: executing program 1 (id=2149):
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000180)='./file1\x00', 0x4810, &(0x7f00000001c0)=ANY=[], 0x11, 0x693, &(0x7f0000000880)="$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")
lsetxattr$trusted_overlay_opaque(0x0, 0x0, 0x0, 0x0, 0x1)
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, 0x0)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, 0x0, 0x0)
r1 = creat(0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$binfmt_script(r2, 0x0, 0x0)
copy_file_range(r2, 0x0, r1, 0x0, 0x8, 0x0)
r3 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r4 = open(&(0x7f0000000340)='./file1\x00', 0x86442, 0x10)
dup3(r4, r3, 0x0)
io_setup(0x2, &(0x7f0000000400)=<r5=>0x0)
io_submit(r5, 0x1, &(0x7f0000000540)=[&(0x7f00000000c0)={0xf04aef, 0x3d8, 0x4, 0x0, 0x0, r3, &(0x7f0000002140)="63f1c1a3db", 0x5, 0x10000000000000}])
llistxattr(0x0, 0x0, 0x0)

1.097726784s ago: executing program 0 (id=2150):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000001c0), 0x680)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r0, 0x404c534a, &(0x7f0000000200)={0x7, 0x8, 0x3})

990.774274ms ago: executing program 1 (id=2151):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c0000002500010125bd7000fdffffff550000000800030047"], 0x1c}, 0x1, 0x0, 0x0, 0x20004840}, 0x28000)
recvmmsg(0xffffffffffffffff, &(0x7f0000000b00)=[{{&(0x7f00000000c0)=@un=@abs, 0x80, &(0x7f0000000640)=[{0x0}, {&(0x7f0000000240)=""/7, 0x7}, {&(0x7f0000000340)=""/27, 0x1b}, {&(0x7f0000000380)=""/70, 0x46}, {0x0}, {&(0x7f0000000440)=""/67, 0x43}, {&(0x7f0000000540)=""/11, 0xb}, {&(0x7f0000000600)=""/6, 0x6}], 0x8, &(0x7f00000006c0)=""/111, 0x6f}, 0x1}, {{&(0x7f0000000740)=@l2, 0x80, &(0x7f0000000900)=[{&(0x7f00000007c0)=""/184, 0xb8}, {&(0x7f0000000880)=""/67, 0x43}], 0x2, &(0x7f0000000940)=""/20, 0x14}, 0x1}, {{&(0x7f0000000980)=@alg, 0x80, &(0x7f0000000a40)=[{&(0x7f0000000a00)=""/43, 0x2b}], 0x1, &(0x7f0000000a80)=""/86, 0x56}, 0x8}], 0x3, 0x2103, &(0x7f0000000bc0)={0x0, 0x989680})
sendmsg$NFNL_MSG_ACCT_NEW(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000500)=ANY=[@ANYBLOB="340000000007010100000000000400001e0000080c000640001fffe000000000080005"], 0x34}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
sendmsg$NL802154_CMD_SET_TX_POWER(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000004c0)=ANY=[@ANYBLOB='`\x00\x00\x00', @ANYRES16=<r1=>0x0, @ANYBLOB="01002abd7400ffdbdf250c00000008000b00030000000c000600010000000100000008000300", @ANYRES32=0x0, @ANYBLOB="08000300", @ANYRES32=0x0, @ANYBLOB="0c000600020000000000000008000b00c20d00000c00060000000000000000000800"], 0x60}, 0x1, 0x0, 0x0, 0x2001}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000009b00)={0x0}, 0x1, 0x0, 0x0, 0x4000850}, 0x4048010)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r3 = socket$kcm(0x2, 0xa, 0x2)
ioctl$TUNSETVNETBE(r2, 0x400454de, &(0x7f0000000600)=0x1)
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-aesni\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)={0x14, 0x37, 0xa01, 0x0, 0x0, {0x80}}, 0x14}}, 0x8054)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31"], 0x7c}, 0x1, 0x0, 0x0, 0x20004001}, 0x4000018)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000c40)=ANY=[@ANYRES64, @ANYRES8=r1, @ANYRESOCT=r0, @ANYRES64=r3], 0x64}, 0x1, 0x0, 0x0, 0x480d4}, 0x24000000)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000002c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x28}, 0x1, 0x0, 0x0, 0x4044050}, 0x4000000)
ioctl$sock_inet_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000680)={0x0, {0x2, 0x4e23, @local}, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x2b}}, {0x2, 0x4e24, @rand_addr=0x64010100}, 0x80, 0x0, 0x0, 0x0, 0xf34, &(0x7f0000000640)='ipvlan1\x00', 0xbdbd, 0x1, 0x2})
r5 = accept4(r4, 0x0, 0x0, 0x800)
sendmmsg$alg(r5, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r5, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
write$tun(r2, &(0x7f0000000280)={@val={0x6f01, 0x800}, @val={0x1, 0x0, 0x27, 0x0, 0x27}, @mpls={[], @ipv4=@tcp={{0x6, 0x4, 0x0, 0x0, 0xfd5e, 0x0, 0x0, 0x0, 0x84, 0x0, @empty=0x3fffff20, @local}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x5, 0xb, 0x0, 0x700, 0x0, 0x18, {[@window={0x9, 0xfffffffffffffec4}, @timestamp={0x5, 0x2, 0xffffff07}, @generic={0x0, 0x2, "d588380003c1"}]}}}}}}, 0xfd6c)

990.364784ms ago: executing program 6 (id=2152):
r0 = fsopen(&(0x7f00000001c0)='bpf\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c00000003000000010000000000000e0200000000000000000000000000000504000000002e"], 0x0, 0x37}, 0x20)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000004440)=ANY=[@ANYBLOB="0900000004000000040000000700000000000000", @ANYRES32, @ANYBLOB='\x00'/15, @ANYRES32=0x0, @ANYRES32=r1, @ANYBLOB="0200000001"], 0x48)
r3 = fsmount(r0, 0x1, 0x0)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000180)={{r2}, &(0x7f0000000100), &(0x7f0000000140)='%pK    \x00'}, 0x20)
fchdir(r3)
bpf$OBJ_PIN_MAP(0x6, &(0x7f00000000c0)=@generic={&(0x7f0000000000)='./file0\x00', r2}, 0x18)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/crypto\x00', 0x0, 0x0)
read$FUSE(r4, &(0x7f0000007f00)={0x2020}, 0x4b)
read$FUSE(r4, &(0x7f0000009f40)={0x2020}, 0x2020)

968.408706ms ago: executing program 0 (id=2153):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000000e000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f00000000c0)="440f78bdb20000003e64460f78b49d0060000065400f841b000000650fc77674dd0166baf80cb85cb2f38cefb800000000efc442a3f5f0c44105d3a100400000b9800000c00f3235000100000f3066baf80cb84a88638aef66bafc0cb017ee", 0x5f}], 0x1, 0x30, 0x0, 0x0)
ioctl$KVM_SET_NESTED_STATE(r2, 0x4080aebf, &(0x7f0000005700)=@vmx={0x0, 0x0, 0x2080, {0xb000, 0x200000}, {"00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000169500", "000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a5f2000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fe00"}})
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x40000}, 0x1)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

632.456175ms ago: executing program 6 (id=2154):
syz_mount_image$udf(&(0x7f0000000600), &(0x7f0000000640)='./file0\x00', 0x0, &(0x7f0000000080)={[{@dmode={'dmode', 0x3d, 0x10001}}, {@gid_ignore}]}, 0x1, 0x5c1, &(0x7f00000006c0)="$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")
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
write$FUSE_NOTIFY_STORE(r0, &(0x7f0000000240)=ANY=[], 0x28)
io_setup(0x202, &(0x7f0000000200)=<r1=>0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x15)
pwrite64(r2, &(0x7f0000000140)='2', 0xfdef, 0xc00)
io_submit(r1, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x4000, 0xa00}])

623.287316ms ago: executing program 0 (id=2155):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000080)={[{@i_version}, {@nogrpid}, {@bh}]}, 0x1, 0x51d, &(0x7f0000000200)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
getdents64(r0, 0x0, 0x22)

547.677092ms ago: executing program 1 (id=2156):
socket(0x10, 0x3, 0x0)
syz_mount_image$udf(&(0x7f0000000080), &(0x7f0000000480)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x18410, &(0x7f0000000180)=ANY=[], 0xfe, 0x4b1, &(0x7f0000001d00)="$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")
setresgid(0xee01, 0xffffffffffffffff, 0x0)
ioprio_set$pid(0x1, 0x0, 0x6000)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0xe9)
getdents(r0, &(0x7f0000000000)=""/56, 0x38)
getdents(r0, 0xfffffffffffffffd, 0xbb)

401.692955ms ago: executing program 0 (id=2157):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x2840, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000000)={0x1, 0x0, [{0xa, 0x9, 0x2, 0x0, 0xa, 0x0, 0x6}]})

400.827955ms ago: executing program 1 (id=2158):
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(0xffffffffffffffff, 0x6, 0x14, 0x0, 0x0)
syz_mount_image$hfsplus(&(0x7f0000000100), &(0x7f0000000280)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2000010, &(0x7f0000000000)=ANY=[], 0x1, 0x6eb, &(0x7f0000001240)="$eJzs3c1vHGcdB/DvrNeON1Sp0yY0QkGYRCpIEYkTK4VwwSCEcqhQVQ49W4nTWNkkVeKitELgAoITEof+AQXJNw4IiXtQuHApt159rITEJeIQ9bJoZmft3fX6LfFLAp9PNJ5n5nnmmd/+5pkZ7zqrCfB/6+q5NB+myNVzbz4ol1dXZturK7NH6up2krLcSJrdWYo7SfEomSvri74pffMNPl688vZnj1c/7y4166lqP7bVdiOMaLtcT5mu+5seueX4TnexXIeXl5Jcq+eDJnba10DDMmln6zkcus6gRjrLu9l8N+ct8Jzp3Z2K7n1zg6nkaJLJ+veA1FeHxsFFuKe+3ivs6ioHAAAAL6hP7x52BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPDiqZ7/31pbbHRXJdMpes//n+itq8vPobkdt3y4r3EAAAAAAAAAwMH42pM8yYMcK8vjSTpF9Tf/M1XliXzRSb6U93M/C7mX83mQ+SxlKfdyMclUX0cTD+aXlu5dXNuyNHrLSyO3vHSQrxoAAAAAAAAA/uf8Mq3u3/8BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOB5USRj3Vk1najnmUqjmfW6LCf/TDJx2PHuQjFq5cODjwMAAACeyeRTbPPykzzJgxzrLXeK6j3/l6v3y5N5P3eylMUspZ2FXK/fQ5fv+hurK7Pt1ZXZ2+VULg/2+/1/7yqMibqHsWpp1J5PVS1auZHFas35XKuCuZ5Gd99nk1O9ePri6vNRGVPxvdoOI2vWaS139vvNPkXYE4MfRTS2aNlaDy5Zy8hMHVu55fFuBorqg5pkOBPDR2fDzpoDS1NVk/G1PV1MY+2TnxP7kPOj9bx8Pb/Z15zvRH8u1jLRSJWJS73RV54zW2ci+cZf//TOzfadWzdv3D93uC9pF8Y2WT88Jmb7MvHaC52J5i7bz1SZOLm2fDU/yk9yLtN5K/eymJ9mPktZSKeun6/Hc/lzautMzQ0svbVdJBP1cekes53ENJ0fVqX5nKm2PZbFFLmb61nIG9W/S7mYb+dyLudK3xE+uWnc1WurzvrG8FnfO9J/Gxn82W/WhfLq9tv1q9zcVq94s9G5V7rX/jKvx/vy2h31j9daHe87D2b6svRKLzvjIzt/mmtj8yt1odzHr7a5TxysqToT5QnUu0v0onu1m4lmdS/aOM7/0Cm3S/tOp3Nz/r1N+l8eWn69npfDauWr27XuGX0o9lY5Xl7JZH0lGRwdZd2ra1eZvrrO+lju1g3eccvtTlZ1RdE7U3+cu9UA2HimTtS/w23s6VJV99pQ3en6Gl7WneqrG/h9K3fTzvUDyB8AT+Mf76wVp3J0ovWv1qetT1q/bt1svTn5gyPfOXJ6IuN/H/9uc2bs9cbp4i/5JD9ff/8PAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8vfsffHhrvt1euDe60Ni8aqDQyvCa7XoeKhT1A31GtblVP6VgVx0ecmEyycCa6jlHBx5GaziMDYXOL5IDz0/vIYKj2/yuLDR3dLjnBtb8eWOHH20fz1iGxuEOzot9LDSyLz13Xt5kJIxl9AA4rCsScFAuLN1+78L9Dz781uLt+XcX3l24M3758pWZK5ffmL1wY7G9MNP9edhRAvth/aZ/2JEAAAAAAAAAAAAAOzXqqwJnXtruSyMbCo0kw9/x8D8LAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgD1x9VyaD1Pk4sz5mXJ5dWW2XU698nrLZpJGIyl+lhSPkrl0p0z1dVfkj4/SGbGfjxevvP3Z49XP1/tqdtsnjXq+ua1rkyzXU6aTjNXzZzDQ37Vn7q/4T+81lAn7otPpzD1bfLA3/hsAAP//ShfsxA==")
mkdir(&(0x7f0000000100)='./file1\x00', 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000006c0)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.stat\x00', 0x275a, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[], 0x32600)
write$FUSE_NOTIFY_INVAL_ENTRY(r0, &(0x7f0000000380)=ANY=[], 0x29)

148.403697ms ago: executing program 1 (id=2159):
syz_mount_image$ext4(&(0x7f00000008c0)='ext4\x00', &(0x7f0000000300)='./file1\x00', 0x800080, &(0x7f00000000c0)={[{@test_dummy_encryption}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x6}}, {@acl}]}, 0x1, 0x45f, &(0x7f0000000340)="$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")
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_LOOKUP_ELEM(0x5, &(0x7f00000000c0)={0xffffffffffffffff, 0x0, &(0x7f0000000380)=""/76}, 0x20)

101.791991ms ago: executing program 0 (id=2160):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=@ipv6_newrule={0x6c, 0x20, 0x701, 0x70bd2c, 0x25dfdbfd, {0xa, 0x10, 0x80, 0x1e, 0x6, 0x0, 0x0, 0x1}, [@FIB_RULE_POLICY=@FRA_OIFNAME={0x14, 0x11, 'bond_slave_1\x00'}, @FRA_SRC={0x14, 0x2, @mcast2}, @FRA_DST={0x14, 0x1, @loopback}, @FIB_RULE_POLICY=@FRA_IIFNAME={0x14, 0x3, 'veth1\x00'}]}, 0x6c}}, 0x4)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000cc0)={'syz0\x00', {0x101, 0x8000, 0x248, 0x9b99}, 0x2d, [0xfffffff6, 0x8, 0x6, 0x9, 0x8, 0x155f, 0x6, 0x4, 0x25cd, 0x1, 0xb4, 0xb, 0xa2b9, 0x6, 0x7, 0xe4, 0x6, 0xfc000000, 0x3, 0xbbf, 0x4a732f64, 0x1, 0x8, 0xd, 0x4, 0x12a3, 0x6, 0x1, 0x2, 0x6, 0x8007, 0x81, 0x8a, 0x79, 0x2, 0x10000, 0x0, 0x91, 0x2, 0x2000001, 0x16, 0x2, 0x5, 0x3fe, 0xfffffff7, 0x405, 0xa7, 0x81, 0x9, 0x4f9a2, 0x80000001, 0xff, 0x0, 0x7f, 0x2, 0x2, 0x7, 0x1, 0x7ff, 0x4, 0x4007f, 0xffffffff, 0x9, 0x6], [0x9, 0x8, 0x6, 0x9, 0x4, 0xc66, 0xa8a9, 0x20000073, 0x8e, 0xd50, 0x7, 0x5, 0x2, 0x809, 0x4, 0x6, 0x1000, 0x100000, 0x200b398, 0x400000, 0x0, 0x204, 0x1c, 0x4, 0x1, 0x9, 0x3, 0x8, 0xffffff7f, 0x400, 0x6, 0x4c2336d3, 0x4, 0x0, 0xfffffff8, 0x401, 0x46, 0xf1, 0x0, 0xab00060, 0x6, 0x6, 0x2, 0x5, 0x3ff, 0x1ff, 0x1, 0x7fff, 0x0, 0x1cb, 0x1, 0x80000004, 0x3, 0x438, 0xfffffffe, 0x9, 0x95, 0x7fffffff, 0x4, 0xfffffff9, 0x1, 0x1000, 0xfffff801, 0x5], [0x1, 0xfffffffe, 0xffff, 0xc, 0x2, 0x2e6bf783, 0x80000001, 0x5, 0x4, 0x491, 0x8d3, 0x200006, 0x8, 0x400, 0x2, 0x400, 0x41, 0x6, 0xee4b, 0x2000007, 0x1, 0x9000003, 0x5, 0x9, 0x3, 0x3, 0x9, 0x3, 0xc7, 0xfff, 0x10000a, 0x8000, 0x400, 0x3e55, 0x5, 0xd3, 0x8, 0x3437, 0x3, 0x4000000d, 0x7, 0x601, 0x101, 0xdd80, 0x60a0, 0x7b, 0x9d26, 0x10000, 0xfffffffe, 0x5, 0x2, 0x6, 0x8000, 0xf65, 0x3, 0x4, 0x8, 0xe7d2, 0xa28, 0x6, 0xfffc, 0xfffffffd, 0x8, 0x1], [0xa772, 0x6, 0x5, 0x1afa, 0xbfc, 0x8, 0x5, 0x7f, 0x55, 0x40, 0xff, 0x1005, 0x0, 0x7, 0x1e, 0xc, 0x81, 0x3, 0x9d86, 0xd, 0xf7, 0x8, 0x140f2, 0x3, 0x3, 0x6, 0x80008001, 0x7777, 0x1, 0x2, 0x100, 0xd8ce, 0x7fffffff, 0x7, 0xfffffffa, 0x32d, 0x200003, 0x1ff, 0x2000803, 0xffffffff, 0x10000, 0x0, 0x3, 0x7fff, 0x3, 0x6, 0xf, 0xe, 0x5337, 0x8000, 0x4, 0xfffffffd, 0x4, 0xfffffff9, 0x9, 0x4, 0x463f, 0x4, 0xdab, 0x80000001, 0x8, 0x14000, 0x1, 0x101]}, 0x45c)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000000)={[0x35, 0xfff, 0x0, 0x40000000000180, 0x2, 0x80000000, 0xf2, 0xd, 0x7fffffffffffe, 0x7, 0x5, 0x7, 0x0, 0x5, 0x4, 0x8], 0x25000, 0x304})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x488100, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f00000000c0)="c20000361e0f01c3660fd2eff30f10f1b961020000b80e000000ba000000000f30b98d0200000f320b99f3530000660f6af7c4e2f91d20", 0x37}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

0s ago: executing program 1 (id=2161):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x20, &(0x7f0000000180)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x8000000, 0x0, 0x2, 0x1, 0x0, 0x8}, 0x20)
mprotect(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
exit(0xffff)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x20, &(0x7f0000000180)={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x8000000, 0x0, 0x2, 0x5, 0x0, 0x5}, 0x20)

kernel console output (not intermixed with test programs):

ize 37632 extends beyond EOD, truncated
[  271.366181][T10182] loop4: p247 size 37632 extends beyond EOD, truncated
[  271.384113][T10182] loop4: p248 size 37632 extends beyond EOD, truncated
[  271.424384][T10182] loop4: p249 size 37632 extends beyond EOD, truncated
[  271.445167][T10182] loop4: p250 size 37632 extends beyond EOD, truncated
[  271.464574][T10182] loop4: p251 size 37632 extends beyond EOD, truncated
[  271.479082][T10182] loop4: p252 size 37632 extends beyond EOD, truncated
[  271.500004][T10182] loop4: p253 size 37632 extends beyond EOD, truncated
[  271.517479][T10182] loop4: p254 size 37632 extends beyond EOD, truncated
[  271.544230][T10182] loop4: p255 size 37632 extends beyond EOD, truncated
[  271.936447][ T5825] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  272.211096][ T5825] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  272.270736][ T5825] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  272.363835][ T5825] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  272.495017][ T5825] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  272.548646][ T5825] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  272.614944][ T5825] usb 6-1: config 0 descriptor??
[  273.075767][ T5825] plantronics 0003:047F:FFFF.000E: unknown main item tag 0x0
[  273.085985][ T5825] plantronics 0003:047F:FFFF.000E: unknown main item tag 0x0
[  273.116072][ T5825] plantronics 0003:047F:FFFF.000E: unknown main item tag 0x0
[  273.131027][ T5825] plantronics 0003:047F:FFFF.000E: unknown main item tag 0x0
[  273.151934][ T5825] plantronics 0003:047F:FFFF.000E: unknown main item tag 0x0
[  273.169673][ T5825] plantronics 0003:047F:FFFF.000E: unknown main item tag 0x0
[  273.197022][ T5825] plantronics 0003:047F:FFFF.000E: No inputs registered, leaving
[  273.236006][ T5825] plantronics 0003:047F:FFFF.000E: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.5-1/input0
[  273.362121][ T5825] usb 6-1: USB disconnect, device number 8
[  273.475429][T10341] fido_id[10341]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/report_descriptor': No such file or directory
[  274.424924][T10327] loop4: detected capacity change from 0 to 736
[  274.498091][ T5781] udevd[5781]: inotify_add_watch(7, /dev/loop4p6, 10) failed: No such file or directory
[  274.498271][ T8953] udevd[8953]: inotify_add_watch(7, /dev/loop4p7, 10) failed: No such file or directory
[  274.517048][ T7462] udevd[7462]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[  274.522290][ T8731] udevd[8731]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory
[  274.546016][ T5774] udevd[5774]: inotify_add_watch(7, /dev/loop4p9, 10) failed: No such file or directory
[  274.549689][ T5784] udevd[5784]: inotify_add_watch(7, /dev/loop4p5, 10) failed: No such file or directory
[  274.559050][ T5779] udevd[5779]: inotify_add_watch(7, /dev/loop4p8, 10) failed: No such file or directory
[  274.631994][T10327] rock: directory entry would overflow storage
[  274.642624][ T5813] usb 6-1: new full-speed USB device number 9 using dummy_hcd
[  274.672487][T10327] rock: sig=0x3b10, size=4, remaining=3
[  274.748503][ T7462] udevd[7462]: inotify_add_watch(7, /dev/loop4p15, 10) failed: No such file or directory
[  274.765211][ T5774] udevd[5774]: inotify_add_watch(7, /dev/loop4p21, 10) failed: No such file or directory
[  274.788314][T10346] udevd[10346]: inotify_add_watch(7, /dev/loop4p10, 10) failed: No such file or directory
[  274.849632][ T5813] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  274.892136][ T5813] usb 6-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid maxpacket 512, setting to 64
[  274.965632][ T5813] usb 6-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 512, setting to 64
[  275.032913][ T5813] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  275.042408][ T5813] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  275.087854][ T5813] usb 6-1: Product: syz
[  275.102498][ T5813] usb 6-1: Manufacturer: syz
[  275.109994][ T5813] usb 6-1: SerialNumber: syz
[  275.150425][T10355] syzkaller0: entered promiscuous mode
[  275.180263][T10355] syzkaller0: entered allmulticast mode
[  275.390186][T10345] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  275.398080][T10345] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  276.013846][T10345] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  276.204159][T10345] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  276.366723][ T5813] cdc_ncm 6-1:1.0: MAC-Address: 42:42:42:42:42:42
[  276.402418][ T5813] cdc_ncm 6-1:1.0: dwNtbInMaxSize=16 is too small. Using 2048
[  276.440278][ T5813] cdc_ncm 6-1:1.0: setting rx_max = 2048
[  276.599941][ T5813] cdc_ncm 6-1:1.0: setting tx_max = 88
[  276.901597][ T5813] cdc_ncm 6-1:1.0 usb0: register 'cdc_ncm' at usb-dummy_hcd.5-1, CDC NCM (NO ZLP), 42:42:42:42:42:42
[  276.937718][ T5813] usb 6-1: USB disconnect, device number 9
[  276.965563][ T5813] cdc_ncm 6-1:1.0 usb0: unregister 'cdc_ncm' usb-dummy_hcd.5-1, CDC NCM (NO ZLP)
[  277.491538][T10382] loop5: detected capacity change from 0 to 512
[  277.584043][T10382] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  277.784395][T10382] ext4 filesystem being mounted at /123/file7 supports timestamps until 2038-01-19 (0x7fffffff)
[  278.391426][T10395] syzkaller0: entered promiscuous mode
[  278.397090][T10395] syzkaller0: entered allmulticast mode
[  278.434904][T10382] EXT4-fs error (device loop5): ext4_ext_check_inode:520: inode #2: comm syz.5.1212: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  279.440748][ T8130] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  279.999481][T10411] loop5: detected capacity change from 0 to 2048
[  280.024093][T10411] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=3932051, location=3932051
[  280.061564][T10411] UDF-fs: error (device loop5): udf_process_sequence: Primary Volume Descriptor not found!
[  280.097648][T10411] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  280.155364][T10411] UDF-fs: error (device loop5): udf_verify_fi: directory (ino 1376) has entry at pos 100 with incorrect tag 9
[  280.197817][T10417] UDF-fs: error (device loop5): udf_verify_fi: directory (ino 1376) has entry at pos 100 with incorrect tag 9
[  280.390866][T10425] loop4: detected capacity change from 0 to 8192
[  280.417092][T10419] syz.4.1221: attempt to access beyond end of device
[  280.417092][T10419] loop4: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  280.434285][T10419] Buffer I/O error on dev loop4, logical block 57847, async page read
[  280.449519][T10419] syz.4.1221: attempt to access beyond end of device
[  280.449519][T10419] loop4: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  280.465204][T10419] Buffer I/O error on dev loop4, logical block 57847, async page read
[  280.481752][   T27] audit: type=1800 audit(1771767705.809:30): pid=10419 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1221" name="file2" dev="loop4" ino=1048884 res=0 errno=0
[  280.606006][    T8] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  281.638618][    T8] usb 1-1: config 127 has an invalid interface number: 195 but max is 0
[  281.672671][    T8] usb 1-1: config 127 has no interface number 0
[  281.679005][    T8] usb 1-1: config 127 interface 195 has no altsetting 0
[  281.722171][    T8] usb 1-1: New USB device found, idVendor=0403, idProduct=f850, bcdDevice=f5.6e
[  281.743081][    T8] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  281.761723][T10435] syzkaller0: entered promiscuous mode
[  281.767492][    T8] usb 1-1: Product: syz
[  281.771747][    T8] usb 1-1: Manufacturer: syz
[  281.779091][T10435] syzkaller0: entered allmulticast mode
[  281.786334][    T8] usb 1-1: SerialNumber: syz
[  281.834426][    T8] ftdi_sio 1-1:127.195: FTDI USB Serial Device converter detected
[  281.845494][    T8] ftdi_sio ttyUSB0: unknown device type: 0xf56e
[  283.505305][ T5780] Bluetooth: hci2: command 0x0406 tx timeout
[  283.642405][T10456] loop4: detected capacity change from 0 to 1024
[  283.663660][T10456] EXT4-fs: Ignoring removed orlov option
[  284.098841][T10456] EXT4-fs (loop4): can't mount with data_err=abort, fs mounted w/o journal
[  284.334121][   T23] usb 1-1: USB disconnect, device number 14
[  284.341676][   T23] ftdi_sio 1-1:127.195: device disconnected
[  286.372337][T10515] loop4: detected capacity change from 0 to 2048
[  286.552686][    T8] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  286.586025][T10515] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  287.401100][T10527] syzkaller0: entered promiscuous mode
[  287.406800][T10527] syzkaller0: entered allmulticast mode
[  287.492500][    T8] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  287.512622][    T8] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  287.542745][    T8] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  287.566422][    T8] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  287.643417][    T8] usb 1-1: config 0 descriptor??
[  287.667973][    T8] usbhid 1-1:0.0: couldn't find an input interrupt endpoint
[  288.366085][ T7992] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  288.752941][    T8] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  289.538863][    T8] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  289.570560][    T8] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  289.589484][    T8] usb 6-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 8
[  289.614503][    T8] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  289.624786][    T8] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  289.633309][    T8] usb 6-1: Product: syz
[  289.637680][    T8] usb 6-1: Manufacturer: syz
[  289.642299][    T8] usb 6-1: SerialNumber: syz
[  290.390780][   T23] usb 1-1: USB disconnect, device number 15
[  290.412076][T10534] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22
[  290.652610][ T5825] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  290.999133][T10534] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22
[  291.599963][    T8] cdc_ncm 6-1:1.0: bind() failure
[  291.611179][    T8] cdc_ncm: probe of 6-1:1.1 failed with error -71
[  291.619028][ T5825] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  291.630716][ T5825] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  291.641797][    T8] cdc_mbim: probe of 6-1:1.1 failed with error -71
[  291.648769][ T5825] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  291.669480][ T5825] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  291.678747][    T8] usbtest: probe of 6-1:1.1 failed with error -71
[  291.692607][ T5825] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  291.703334][    T8] usb 6-1: USB disconnect, device number 10
[  291.715471][ T5825] usb 5-1: config 0 descriptor??
[  291.789734][T10577] syzkaller0: entered promiscuous mode
[  291.804183][T10577] syzkaller0: entered allmulticast mode
[  292.147211][ T5825] plantronics 0003:047F:FFFF.000F: No inputs registered, leaving
[  292.171921][ T5825] plantronics 0003:047F:FFFF.000F: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[  292.424736][ T5825] usb 5-1: USB disconnect, device number 7
[  292.462689][    T8] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[  293.365323][    T8] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  293.383462][    T8] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  293.406746][    T8] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  293.421036][    T8] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  293.434752][    T8] usb 1-1: config 0 descriptor??
[  293.438169][T10594] loop5: detected capacity change from 0 to 1024
[  293.457887][    T8] usbhid 1-1:0.0: couldn't find an input interrupt endpoint
[  293.461643][T10594] ext4: Unknown parameter 'nouser_xattr'
[  293.504508][T10596] syzkaller0: entered promiscuous mode
[  293.512505][T10596] syzkaller0: entered allmulticast mode
[  293.731719][T10600] warning: `syz.5.1277' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  294.597173][T10606] loop4: detected capacity change from 0 to 1024
[  294.625663][T10606] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  294.644934][T10606] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  294.667936][T10606] JBD2: no valid journal superblock found
[  294.705077][T10606] EXT4-fs (loop4): Could not load journal inode
[  295.887790][   T23] usb 1-1: USB disconnect, device number 16
[  296.442837][T10656] netlink: 'syz.1.1295': attribute type 32 has an invalid length.
[  297.938381][T10685] loop4: detected capacity change from 0 to 2048
[  297.995860][T10685] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  298.222778][ T5813] usb 1-1: new high-speed USB device number 17 using dummy_hcd
[  298.316304][T10701] proc: Unknown parameter 'g'
[  298.422650][ T5813] usb 1-1: Using ep0 maxpacket: 16
[  298.431640][ T5813] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  298.438907][T10698] loop4: detected capacity change from 0 to 8192
[  298.446160][ T5813] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  298.463949][ T5813] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  298.502470][T10698] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  298.513052][ T5813] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  298.513080][ T5813] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  298.515521][ T5813] usb 1-1: config 0 descriptor??
[  298.765832][T10709] loop5: detected capacity change from 0 to 8192
[  298.776381][T10711] loop4: detected capacity change from 0 to 512
[  298.827088][T10709] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  298.837026][T10711] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  298.853177][ T5780] Bluetooth: hci0: command 0x0406 tx timeout
[  298.880380][T10711] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  298.911591][T10711] EXT4-fs (loop4): warning: mounting unchecked fs, running e2fsck is recommended
[  298.963310][T10711] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  298.987250][ T5813] microsoft 0003:045E:07DA.0010: unknown main item tag 0x0
[  299.017634][T10711] System zones: 0-2, 18-18, 34-35
[  299.054265][ T5813] microsoft 0003:045E:07DA.0010: unknown main item tag 0x0
[  299.068039][T10711] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  299.108465][ T5813] microsoft 0003:045E:07DA.0010: unknown main item tag 0x0
[  299.134519][ T5813] microsoft 0003:045E:07DA.0010: unbalanced collection at end of report description
[  299.266085][ T5813] microsoft 0003:045E:07DA.0010: parse failed
[  299.317564][ T5813] microsoft: probe of 0003:045E:07DA.0010 failed with error -22
[  299.342186][ T7992] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  299.349141][ T5813] usb 1-1: USB disconnect, device number 17
[  299.749929][T10727] loop5: detected capacity change from 0 to 2048
[  299.812440][T10727] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  300.502728][   T28] usb 1-1: new high-speed USB device number 18 using dummy_hcd
[  300.790534][T10736] loop4: detected capacity change from 0 to 8192
[  300.909766][T10736] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  300.928511][   T28] usb 1-1: config 0 has no interfaces?
[  300.983161][   T28] usb 1-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  300.988812][T10746] loop5: detected capacity change from 0 to 8192
[  301.013506][   T28] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  301.022427][   T28] usb 1-1: Product: syz
[  301.034173][T10746] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  301.065889][   T28] usb 1-1: Manufacturer: syz
[  301.075808][   T28] usb 1-1: SerialNumber: syz
[  301.095461][   T28] usb 1-1: config 0 descriptor??
[  302.599823][    T9] usb 1-1: USB disconnect, device number 18
[  303.930267][T10773] bridge0: port 2(bridge_slave_1) entered blocking state
[  303.937523][T10773] bridge0: port 2(bridge_slave_1) entered forwarding state
[  303.945177][T10773] bridge0: port 1(bridge_slave_0) entered blocking state
[  303.952360][T10773] bridge0: port 1(bridge_slave_0) entered forwarding state
[  304.003329][T10773] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  304.060760][T10785] loop5: detected capacity change from 0 to 8192
[  304.101088][T10785] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  305.260109][T10815] loop5: detected capacity change from 0 to 8192
[  305.289788][T10815] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  306.488616][T10854] loop5: detected capacity change from 0 to 128
[  306.523122][T10855] ip6t_rpfilter: unknown options
[  307.419663][T10874] loop5: detected capacity change from 0 to 8192
[  307.446011][T10884] loop4: detected capacity change from 0 to 128
[  307.464598][T10884] FAT-fs (loop4): bogus number of reserved sectors
[  307.478046][T10874] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  307.485131][T10884] FAT-fs (loop4): Can't find a valid FAT filesystem
[  307.566225][T10887] syzkaller0: entered promiscuous mode
[  307.571737][T10887] syzkaller0: entered allmulticast mode
[  307.708058][T10889] bridge0: port 3(veth0_to_bond) entered blocking state
[  307.716742][T10889] bridge0: port 3(veth0_to_bond) entered disabled state
[  307.728413][T10889] veth0_to_bond: entered allmulticast mode
[  307.745256][T10889] veth0_to_bond: entered promiscuous mode
[  307.754057][T10889] bridge0: port 3(veth0_to_bond) entered blocking state
[  307.761382][T10889] bridge0: port 3(veth0_to_bond) entered forwarding state
[  308.283352][   T28] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  308.988718][   T28] usb 5-1: config 127 has an invalid interface number: 252 but max is 0
[  309.009709][   T28] usb 5-1: config 127 has an invalid descriptor of length 26, skipping remainder of the config
[  309.038242][   T28] usb 5-1: config 127 has no interface number 0
[  309.046796][   T28] usb 5-1: New USB device found, idVendor=103d, idProduct=0101, bcdDevice=ed.84
[  309.059770][   T28] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  309.458859][   T28] usb 5-1: string descriptor 0 read error: -71
[  309.537689][   T28] usb 5-1: unknown interface protocol 0x9, assuming v1
[  309.555639][   T28] usb 5-1: cannot find UAC_HEADER
[  309.654795][   T28] snd-usb-audio: probe of 5-1:127.252 failed with error -22
[  309.695998][   T28] usb 5-1: USB disconnect, device number 8
[  310.067587][T10917] syzkaller0: entered promiscuous mode
[  310.086418][T10917] syzkaller0: entered allmulticast mode
[  311.877194][T10944] syzkaller0: entered promiscuous mode
[  311.892696][T10944] syzkaller0: entered allmulticast mode
[  311.994710][T10955] loop5: detected capacity change from 0 to 128
[  312.005688][T10955] FAT-fs (loop5): bogus number of reserved sectors
[  312.018829][T10955] FAT-fs (loop5): Can't find a valid FAT filesystem
[  312.073189][ T7462] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  312.209582][T10961] bridge0: port 3(veth0_to_bond) entered blocking state
[  312.218387][T10961] bridge0: port 3(veth0_to_bond) entered disabled state
[  312.226811][T10961] veth0_to_bond: entered allmulticast mode
[  312.241871][T10961] veth0_to_bond: entered promiscuous mode
[  312.712764][ T5812] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  312.945835][ T5812] usb 6-1: config 127 has an invalid interface number: 252 but max is 0
[  313.185478][ T5812] usb 6-1: config 127 has an invalid descriptor of length 26, skipping remainder of the config
[  313.219805][T10969] loop4: detected capacity change from 0 to 512
[  313.229031][T10969] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  313.238873][T10969] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  313.264542][T10969] EXT4-fs (loop4): warning: mounting unchecked fs, running e2fsck is recommended
[  313.279637][T10969] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01d, mo2=0006]
[  313.301379][T10969] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  313.317163][T10969] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  313.346779][ T5812] usb 6-1: config 127 has no interface number 0
[  313.379502][ T5812] usb 6-1: New USB device found, idVendor=103d, idProduct=0101, bcdDevice=ed.84
[  313.415161][ T5812] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  313.824660][ T5812] usb 6-1: string descriptor 0 read error: -71
[  313.845665][ T5812] usb 6-1: unknown interface protocol 0x9, assuming v1
[  313.853248][ T5812] usb 6-1: cannot find UAC_HEADER
[  313.879854][ T5812] snd-usb-audio: probe of 6-1:127.252 failed with error -22
[  314.228552][ T5812] usb 6-1: USB disconnect, device number 11
[  314.400274][ T7462] udevd[7462]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:127.252/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  316.029521][T11000] loop4: detected capacity change from 0 to 256
[  316.060575][T11000] exFAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  316.082220][T11000] exFAT-fs (loop4): Medium has reported failures. Some data may be lost.
[  316.118109][T11000] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  316.389075][T11010] loop4: detected capacity change from 0 to 512
[  316.431780][T11010] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  316.531358][T11010] EXT4-fs (loop4): 1 truncate cleaned up
[  316.552160][T11010] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  316.586738][T11015] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1415'.
[  316.746611][T11015] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1415'.
[  317.271529][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[  317.282578][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  317.480378][T11023] loop5: detected capacity change from 0 to 256
[  317.944561][T11043] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1425'.
[  317.966208][T11043] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1425'.
[  318.185982][ T7992] EXT4-fs error (device loop4): ext4_readdir:263: inode #11: block 54: comm syz-executor: path /175/bus/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  318.257332][T11049] loop5: detected capacity change from 0 to 1024
[  318.278574][ T7992] EXT4-fs error (device loop4): ext4_empty_dir:3177: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[  318.323895][T11049] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  318.333866][ T7992] EXT4-fs error (device loop4): ext4_readdir:263: inode #11: block 54: comm syz-executor: path /175/bus/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  318.349139][T11049] Quota error (device loop5): v2_read_file_info: Block with free entry 1 out of range (1, 6).
[  318.383665][T11049] EXT4-fs warning (device loop5): ext4_enable_quotas:7184: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  318.702137][T11049] EXT4-fs (loop5): mount failed
[  318.743845][ T7992] EXT4-fs error (device loop4): ext4_empty_dir:3177: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[  319.004122][ T7992] EXT4-fs error (device loop4): ext4_readdir:263: inode #11: block 54: comm syz-executor: path /175/bus/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  319.073450][ T7992] EXT4-fs error (device loop4): ext4_empty_dir:3177: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[  319.109130][ T7462] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  319.204109][ T7992] EXT4-fs error (device loop4): ext4_readdir:263: inode #11: block 54: comm syz-executor: path /175/bus/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  319.231086][T11049] loop5: detected capacity change from 0 to 4096
[  319.278260][T11049] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  319.304718][ T7992] EXT4-fs error (device loop4): ext4_empty_dir:3177: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[  319.397501][ T8130] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  319.417517][ T7992] EXT4-fs error (device loop4): ext4_readdir:263: inode #11: block 54: comm syz-executor: path /175/bus/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  319.484690][ T7992] EXT4-fs error (device loop4): ext4_empty_dir:3177: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[  320.519461][   T27] audit: type=1326 audit(1771767745.159:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11068 comm="syz.0.1433" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6ba559c629 code=0x0
[  320.539286][T11077] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1435'.
[  320.567661][T11077] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1435'.
[  321.841700][ T7992] syz_tun (unregistering): left allmulticast mode
[  321.953870][T11098] loop5: detected capacity change from 0 to 1024
[  321.961221][T11098] EXT4-fs: Ignoring removed nobh option
[  321.971667][T11098] EXT4-fs: Ignoring removed nomblk_io_submit option
[  322.006020][ T7992] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  322.011616][T11098] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  322.082312][   T27] audit: type=1800 audit(1771767747.409:32): pid=11098 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1443" name="file1" dev="loop5" ino=15 res=0 errno=0
[  322.103986][T11098] EXT4-fs (loop5): shut down requested (2)
[  322.134703][  T143] netdevsim netdevsim4 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  322.138674][ T8130] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  322.145781][  T143] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  322.305065][  T143] netdevsim netdevsim4 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  322.338207][  T143] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  322.538375][  T143] netdevsim netdevsim4 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  322.560831][  T143] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  322.826626][  T143] netdevsim netdevsim4 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  322.841344][  T143] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  323.236791][ T5780] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  323.247541][ T5780] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  323.259930][ T5780] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  323.272000][ T5780] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  323.283125][ T5780] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  323.293227][ T5780] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  323.401623][  T143] tipc: Left network mode
[  323.461686][T11119] loop5: detected capacity change from 0 to 256
[  324.107865][T11116] chnl_net:caif_netlink_parms(): no params data found
[  324.981651][T11116] bridge0: port 1(bridge_slave_0) entered blocking state
[  324.988974][T11116] bridge0: port 1(bridge_slave_0) entered disabled state
[  325.003079][T11116] bridge_slave_0: entered allmulticast mode
[  325.011497][T11116] bridge_slave_0: entered promiscuous mode
[  325.075456][T11116] bridge0: port 2(bridge_slave_1) entered blocking state
[  325.100369][T11116] bridge0: port 2(bridge_slave_1) entered disabled state
[  325.138373][T11116] bridge_slave_1: entered allmulticast mode
[  325.172077][T11116] bridge_slave_1: entered promiscuous mode
[  325.322435][T11116] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  325.357066][ T5780] Bluetooth: hci2: command tx timeout
[  325.475736][T11116] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  325.729018][T11116] team0: Port device team_slave_0 added
[  325.937676][T11116] team0: Port device team_slave_1 added
[  326.025521][T11116] batman_adv: batadv0: Adding interface: batadv_slave_0
[  326.053640][T11116] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  326.116575][T11116] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  326.266049][T11116] batman_adv: batadv0: Adding interface: batadv_slave_1
[  326.278572][T11116] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  326.357409][T11116] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  326.471712][  T143] hsr_slave_0: left promiscuous mode
[  326.493059][  T143] hsr_slave_1: left promiscuous mode
[  326.499387][  T143] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  326.518078][  T143] batman_adv: batadv0: Removing interface: batadv_slave_0
[  326.543442][  T143] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  326.562681][  T143] batman_adv: batadv0: Removing interface: batadv_slave_1
[  326.592272][  T143] veth0_to_bond: left allmulticast mode
[  326.611826][  T143] veth0_to_bond: left promiscuous mode
[  326.622128][  T143] bridge0: port 3(veth0_to_bond) entered disabled state
[  326.645405][  T143] bridge_slave_1: left allmulticast mode
[  326.651098][  T143] bridge_slave_1: left promiscuous mode
[  326.667437][  T143] bridge0: port 2(bridge_slave_1) entered disabled state
[  326.684683][  T143] bridge_slave_0: left allmulticast mode
[  326.700696][  T143] bridge_slave_0: left promiscuous mode
[  326.711004][  T143] bridge0: port 1(bridge_slave_0) entered disabled state
[  326.794394][  T143] veth1_macvtap: left promiscuous mode
[  326.802998][  T143] veth0_macvtap: left promiscuous mode
[  326.833640][  T143] veth1_vlan: left promiscuous mode
[  326.839005][  T143] veth0_vlan: left promiscuous mode
[  327.424320][ T5780] Bluetooth: hci2: command tx timeout
[  328.692673][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  328.701172][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  329.528647][ T5780] Bluetooth: hci2: command tx timeout
[  329.706437][T11221] xt_CHECKSUM: unsupported CHECKSUM operation 68
[  330.073534][    T9] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[  330.292798][    T9] usb 6-1: Using ep0 maxpacket: 8
[  330.329193][    T9] usb 6-1: config 128 has an invalid interface number: 40 but max is 0
[  330.353065][    T9] usb 6-1: config 128 has no interface number 0
[  330.359412][    T9] usb 6-1: config 128 interface 40 has no altsetting 0
[  330.371668][    T9] usb 6-1: New USB device found, idVendor=2dc8, idProduct=e745, bcdDevice=89.14
[  330.381075][    T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  330.814824][  T143] team0 (unregistering): Port device team_slave_1 removed
[  330.988819][  T143] team0 (unregistering): Port device team_slave_0 removed
[  331.111106][  T143] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  331.211458][  T143] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  331.573154][ T5780] Bluetooth: hci2: command tx timeout
[  331.864898][  T143] bond0 (unregistering): Released all slaves
[  332.030435][T11116] hsr_slave_0: entered promiscuous mode
[  332.040976][T11116] hsr_slave_1: entered promiscuous mode
[  332.518041][    T9] usb 6-1: string descriptor 0 read error: -71
[  332.559529][    T9] usb 6-1: USB disconnect, device number 12
[  332.992063][T11116] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  333.046623][T11116] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  333.099837][T11116] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  333.251624][T11116] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  333.488752][T11116] 8021q: adding VLAN 0 to HW filter on device bond0
[  333.538334][T11257] loop5: detected capacity change from 0 to 1024
[  333.559679][T11116] 8021q: adding VLAN 0 to HW filter on device team0
[  333.585611][T11257] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e000c01c, mo2=0002]
[  333.604807][T11257] System zones: 0-1, 3-36
[  333.643129][ T6717] bridge0: port 1(bridge_slave_0) entered blocking state
[  333.650314][ T6717] bridge0: port 1(bridge_slave_0) entered forwarding state
[  333.657965][ T5812] usb 1-1: new high-speed USB device number 19 using dummy_hcd
[  333.690915][T11257] EXT4-fs error (device loop5): ext4_orphan_get:1424: comm syz.5.1489: bad orphan inode 134217728
[  333.726460][ T6717] bridge0: port 2(bridge_slave_1) entered blocking state
[  333.733660][ T6717] bridge0: port 2(bridge_slave_1) entered forwarding state
[  333.753785][T11257] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  333.892732][ T5812] usb 1-1: Using ep0 maxpacket: 16
[  333.902065][ T5812] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 125, changing to 10
[  333.921145][ T5812] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 34112, setting to 1024
[  333.938312][ T8130] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  333.958178][ T5812] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  333.983973][ T5812] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  334.012638][ T5812] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  334.053558][ T5812] usb 1-1: config 0 descriptor??
[  334.073688][T11251] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  334.478404][T11116] 8021q: adding VLAN 0 to HW filter on device batadv0
[  334.491927][T11283] loop5: detected capacity change from 0 to 1024
[  334.513155][ T5812] microsoft 0003:045E:07DA.0011: unknown main item tag 0x0
[  334.553663][ T5812] microsoft 0003:045E:07DA.0011: ignoring exceeding usage max
[  334.635799][ T5812] input: HID 045e:07da as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:045E:07DA.0011/input/input7
[  334.781386][T11283] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  334.818992][ T5812] microsoft 0003:045E:07DA.0011: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0
[  334.950150][ T5812] usb 1-1: USB disconnect, device number 19
[  334.991018][T11300] fido_id[11300]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/1-1/report_descriptor': No such file or directory
[  335.136579][ T8130] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  335.324368][T11116] veth0_vlan: entered promiscuous mode
[  335.353933][T11116] veth1_vlan: entered promiscuous mode
[  335.549728][T11317] loop5: detected capacity change from 0 to 512
[  335.561582][T11116] veth0_macvtap: entered promiscuous mode
[  335.618563][T11116] veth1_macvtap: entered promiscuous mode
[  335.661485][T11317] UDF-fs: warning (device loop5): udf_load_vrs: No VRS found
[  335.697065][T11317] UDF-fs: Scanning with blocksize 512 failed
[  335.718217][T11116] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  335.729972][T11116] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  335.745348][T11116] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  335.752904][T11317] UDF-fs: warning (device loop5): udf_load_vrs: No VRS found
[  335.758813][T11116] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  335.777429][T11116] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  335.788105][T11317] UDF-fs: Scanning with blocksize 1024 failed
[  335.799655][T11317] UDF-fs: warning (device loop5): udf_load_vrs: No VRS found
[  335.810011][T11116] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  335.827809][T11317] UDF-fs: Scanning with blocksize 2048 failed
[  335.836735][T11116] batman_adv: batadv0: Interface activated: batadv_slave_0
[  335.853850][T11317] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256
[  335.873696][T11116] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  335.895125][T11317] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  335.904557][T11116] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  335.943387][T11116] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  335.962600][T11116] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  335.979651][T11116] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  336.002597][T11116] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  336.045115][T11116] batman_adv: batadv0: Interface activated: batadv_slave_1
[  336.090558][T11116] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  336.111354][T11116] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  336.130245][T11116] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  336.140316][T11116] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  336.315995][ T6717] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  336.364139][ T6717] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  336.442958][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  336.451497][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  336.460093][    T0] NOHZ tick-stop error: local softirq work is pending, handler #208!!!
[  337.396710][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  337.396855][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  338.073066][ T6717] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  338.080933][ T6717] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  338.106625][T11344] loop5: detected capacity change from 0 to 256
[  338.176225][T11344] exFAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  338.222603][T11344] exFAT-fs (loop5): Medium has reported failures. Some data may be lost.
[  338.253216][T11344] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  338.450883][T11351] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1446'.
[  338.487236][T11351] netdevsim netdevsim6 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  338.496383][T11351] netdevsim netdevsim6 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  338.505475][T11351] netdevsim netdevsim6 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  338.514451][T11351] netdevsim netdevsim6 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  338.554748][T11351] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1446'.
[  338.659262][T11356] wireguard: wg1: Could not create IPv4 socket
[  339.492239][T11385] loop5: detected capacity change from 0 to 256
[  339.580161][T11385] exfat: Deprecated parameter 'namecase'
[  339.628513][T11388] loop6: detected capacity change from 0 to 1024
[  339.638430][T11385] exfat: Deprecated parameter 'namecase'
[  339.645753][T11388] hfsplus: write access to a journaled filesystem is not supported, use the force option at your own risk, mounting read-only.
[  339.680200][T11385] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xfcc0b04e, utbl_chksum : 0xe619d30d)
[  340.105881][T11402] loop5: detected capacity change from 0 to 1024
[  340.321432][T11402] hfsplus: keylen 65060 too large
[  340.327420][T11402] hfsplus: xattr search failed
[  340.382709][ T5770] usb 1-1: new high-speed USB device number 20 using dummy_hcd
[  340.730173][T11423] loop5: detected capacity change from 0 to 512
[  340.773369][T11423] UDF-fs: warning (device loop5): udf_load_vrs: No VRS found
[  341.053247][T11423] UDF-fs: Scanning with blocksize 512 failed
[  341.228454][T11423] UDF-fs: warning (device loop5): udf_load_vrs: No VRS found
[  341.417953][T11423] UDF-fs: Scanning with blocksize 1024 failed
[  341.645072][T11423] UDF-fs: warning (device loop5): udf_load_vrs: No VRS found
[  341.687993][T11423] UDF-fs: Scanning with blocksize 2048 failed
[  341.697108][T11423] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256
[  341.714659][ T5770] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  341.731134][T11423] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  341.737151][ T5770] usb 1-1: New USB device found, idVendor=13e5, idProduct=0001, bcdDevice=4e.53
[  341.785147][ T5770] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  341.815786][ T5770] usb 1-1: config 0 descriptor??
[  341.842318][T11434] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1531'.
[  341.864270][T11434] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1531'.
[  341.982396][T11438] loop6: detected capacity change from 0 to 256
[  342.038624][T11438] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0x204dac4c, utbl_chksum : 0xe619d30d)
[  342.274784][ T5770] usb 1-1: USB disconnect, device number 20
[  342.732456][T11460] loop6: detected capacity change from 0 to 2048
[  342.764088][T11460] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  343.396948][T11488] tmpfs: Unknown parameter 'si'
[  343.419008][T11484] loop5: detected capacity change from 0 to 512
[  343.458262][T11484] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  343.512795][T11484] EXT4-fs (loop5): orphan cleanup on readonly fs
[  343.549920][T11484] EXT4-fs error (device loop5): ext4_validate_block_bitmap:439: comm syz.5.1543: bg 0: block 248: padding at end of block bitmap is not set
[  343.588383][T11484] Quota error (device loop5): write_blk: dquota write failed
[  343.604813][T11484] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota
[  343.638981][T11484] EXT4-fs error (device loop5): ext4_acquire_dquot:6949: comm syz.5.1543: Failed to acquire dquot type 1
[  343.673099][ T5770] usb 1-1: new high-speed USB device number 21 using dummy_hcd
[  343.678635][T11484] EXT4-fs (loop5): 1 truncate cleaned up
[  343.698161][T11484] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  343.790933][ T8130] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  343.874361][ T5770] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  343.893328][ T5770] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21
[  343.908025][ T5770] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  343.918431][ T5770] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  343.934489][ T5770] usb 1-1: config 0 descriptor??
[  343.949955][ T5770] usbhid 1-1:0.0: couldn't find an input interrupt endpoint
[  346.397699][ T5812] usb 1-1: USB disconnect, device number 21
[  346.455629][T11527] loop5: detected capacity change from 0 to 512
[  346.480742][T11527] EXT4-fs: quotafile must be on filesystem root
[  347.177773][T11548] sit0: entered promiscuous mode
[  347.201054][T11548] netlink: 'syz.1.1555': attribute type 1 has an invalid length.
[  347.236139][T11548] netlink: 1 bytes leftover after parsing attributes in process `syz.1.1555'.
[  347.432623][ T5812] usb 1-1: new high-speed USB device number 22 using dummy_hcd
[  347.905926][ T5812] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  348.023063][ T5812] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21
[  348.047263][ T5812] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  348.253000][ T5812] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  348.352542][ T5812] usb 1-1: config 0 descriptor??
[  348.401555][ T5812] usbhid 1-1:0.0: couldn't find an input interrupt endpoint
[  349.454903][T11593] loop5: detected capacity change from 0 to 1024
[  349.463360][T11593] EXT4-fs: Ignoring removed mblk_io_submit option
[  349.565773][T11593] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  349.627544][T11593] sit0: entered promiscuous mode
[  349.641189][T11593] netlink: 'syz.5.1568': attribute type 1 has an invalid length.
[  349.670216][T11593] netlink: 1 bytes leftover after parsing attributes in process `syz.5.1568'.
[  350.417423][ T5770] usb 1-1: USB disconnect, device number 22
[  350.541576][ T8130] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  350.714790][T11610] loop5: detected capacity change from 0 to 1024
[  350.831315][T11610] hfsplus: keylen 65060 too large
[  350.850922][T11610] hfsplus: xattr searching failed
[  350.910893][T11610] hfsplus: keylen 65060 too large
[  350.923477][T11610] hfsplus: xattr searching failed
[  351.080650][T11626] loop6: detected capacity change from 0 to 2048
[  351.150770][T11626] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  351.187593][T11631] xt_hashlimit: size too large, truncated to 1048576
[  351.353569][ T7467] usb 1-1: new high-speed USB device number 23 using dummy_hcd
[  351.472664][    T9] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[  351.554209][ T7467] usb 1-1: Using ep0 maxpacket: 16
[  351.563503][ T7467] usb 1-1: config index 0 descriptor too short (expected 64919, got 151)
[  351.582703][ T7467] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  351.619837][ T7467] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  351.641791][T11641] loop6: detected capacity change from 0 to 1024
[  351.645099][ T7467] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  351.657350][ T7467] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  351.662806][T11641] EXT4-fs: Ignoring removed mblk_io_submit option
[  351.665615][ T7467] usb 1-1: Product: syz
[  351.676008][ T7467] usb 1-1: Manufacturer: syz
[  351.680621][ T7467] usb 1-1: SerialNumber: syz
[  351.686893][    T9] usb 6-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config
[  351.722390][    T9] usb 6-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21
[  351.760166][    T9] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  351.790407][T11641] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  351.816171][    T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  351.850969][    T9] usb 6-1: config 0 descriptor??
[  351.884785][    T9] usbhid 6-1:0.0: couldn't find an input interrupt endpoint
[  351.911387][ T7467] usb 1-1: 0:2 : does not exist
[  351.931008][T11641] sit0: entered promiscuous mode
[  351.943710][ T7467] usb 1-1: USB disconnect, device number 23
[  351.989066][T11641] netlink: 'syz.6.1581': attribute type 1 has an invalid length.
[  352.007936][ T7462] udevd[7462]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  352.042688][T11641] netlink: 1 bytes leftover after parsing attributes in process `syz.6.1581'.
[  352.111927][T11116] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  353.419595][T11661] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1586'.
[  353.441100][T11661] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1586'.
[  354.286925][ T5813] usb 6-1: USB disconnect, device number 13
[  355.579997][T11686] loop6: detected capacity change from 0 to 1024
[  355.623403][T11686] hfsplus: request for non-existent node 3 in B*Tree
[  355.672068][T11686] hfsplus: request for non-existent node 3 in B*Tree
[  355.713815][T11687] sit0: entered promiscuous mode
[  355.748621][T11687] netlink: 'syz.0.1591': attribute type 1 has an invalid length.
[  355.763698][T11687] netlink: 1 bytes leftover after parsing attributes in process `syz.0.1591'.
[  356.054628][T11710] loop5: detected capacity change from 0 to 512
[  356.069641][T11710] EXT4-fs: Ignoring removed oldalloc option
[  356.126471][T11710] EXT4-fs error (device loop5): ext4_xattr_inode_iget:437: comm syz.5.1599: Parent and EA inode have the same ino 15
[  356.246089][T11710] EXT4-fs (loop5): Remounting filesystem read-only
[  356.261308][T11710] EXT4-fs warning (device loop5): ext4_evict_inode:272: xattr delete (err -5)
[  356.285082][T11710] EXT4-fs (loop5): 1 orphan inode deleted
[  356.304099][T11710] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  356.316430][ T5813] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  356.455136][ T8130] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  356.543751][ T5813] usb 7-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config
[  356.583367][ T5813] usb 7-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21
[  356.641335][ T5813] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  356.677627][ T5813] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  356.699388][ T5813] usb 7-1: config 0 descriptor??
[  356.704697][T11731] loop5: detected capacity change from 0 to 512
[  356.740218][ T5813] usbhid 7-1:0.0: couldn't find an input interrupt endpoint
[  356.796260][T11731] EXT4-fs error (device loop5): __ext4_fill_super:5513: inode #2: comm syz.5.1602: inode has both inline data and extents flags
[  356.847605][T11731] EXT4-fs (loop5): get root inode failed
[  356.866763][T11731] EXT4-fs (loop5): mount failed
[  359.043463][ T5770] usb 7-1: USB disconnect, device number 2
[  360.789808][T11867] loop5: detected capacity change from 0 to 512
[  360.863833][  T970] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  360.874347][T11867] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  360.888235][T11867] ext4 filesystem being mounted at /227/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  361.006672][T11875] Bluetooth: hci0: unsupported parameter 255
[  361.024609][T11875] Bluetooth: hci0: unsupported parameter 255
[  361.085430][  T970] usb 7-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config
[  361.115955][  T970] usb 7-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21
[  361.169042][  T970] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  361.193456][  T970] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  361.223897][  T970] usb 7-1: config 0 descriptor??
[  361.241270][ T8130] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  361.247053][  T970] usbhid 7-1:0.0: couldn't find an input interrupt endpoint
[  362.463895][ T5813] usb 1-1: new full-speed USB device number 24 using dummy_hcd
[  363.289380][ T5813] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  363.317661][ T5813] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  363.350916][ T5813] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a5, bcdDevice= 0.40
[  363.381716][ T5813] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  363.404716][ T5813] usb 1-1: SerialNumber: syz
[  363.453393][ T5813] cdc_ether: probe of 1-1:1.0 failed with error -22
[  363.471669][ T5813] usb-storage 1-1:1.0: USB Mass Storage device detected
[  363.561242][ T5813] usb-storage 1-1:1.0: Quirks match for vid 0525 pid a4a5: 10000
[  363.614651][ T5813] scsi host1: usb-storage 1-1:1.0
[  363.707982][ T5813] usb 7-1: USB disconnect, device number 3
[  363.861058][ T5812] usb 1-1: USB disconnect, device number 24
[  364.134242][T11937] loop5: detected capacity change from 0 to 1024
[  364.165109][T11937] hfsplus: request for non-existent node 3 in B*Tree
[  364.196345][T11937] hfsplus: request for non-existent node 3 in B*Tree
[  364.352593][ T5813] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  364.572684][ T5813] usb 7-1: Using ep0 maxpacket: 16
[  364.624644][ T5813] usb 7-1: too many endpoints for config 0 interface 0 altsetting 255: 254, using maximum allowed: 30
[  364.666269][ T5813] usb 7-1: config 0 interface 0 altsetting 255 has 1 endpoint descriptor, different from the interface descriptor's value: 254
[  364.853169][T11944] loop5: detected capacity change from 0 to 1024
[  364.885327][ T5813] usb 7-1: config 0 interface 0 has no altsetting 0
[  364.893229][ T5813] usb 7-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.00
[  364.902369][ T5813] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  364.921827][ T5813] usb 7-1: config 0 descriptor??
[  365.666115][    C1] raw-gadget.0 gadget.6: ignoring, device is not running
[  365.673870][    C1] raw-gadget.0 gadget.6: ignoring, device is not running
[  365.681411][ T5813] usbhid 7-1:0.0: can't add hid device: -71
[  365.687449][ T5813] usbhid: probe of 7-1:0.0 failed with error -71
[  365.697213][ T5813] usb 7-1: USB disconnect, device number 4
[  367.083058][T11972] loop6: detected capacity change from 0 to 128
[  367.212819][ T5770] usb 6-1: new high-speed USB device number 14 using dummy_hcd
[  369.463171][ T5770] usb 6-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0xFF, skipping
[  369.514520][ T5770] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  369.572645][ T5770] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  369.586507][ T5770] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  369.610942][ T5770] usb 6-1: config 0 descriptor??
[  369.639284][ T5770] usbhid 6-1:0.0: couldn't find an input interrupt endpoint
[  369.665749][T11989] loop6: detected capacity change from 0 to 1024
[  370.565138][ T5812] usb 6-1: USB disconnect, device number 14
[  371.612602][ T5812] usb 6-1: new high-speed USB device number 15 using dummy_hcd
[  371.792635][ T5813] usb 1-1: new high-speed USB device number 25 using dummy_hcd
[  371.816539][ T5812] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  371.827672][ T5812] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  371.837642][ T5812] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  371.850659][ T5812] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  371.859735][ T5812] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  371.870279][ T5812] usb 6-1: config 0 descriptor??
[  371.982625][ T5813] usb 1-1: Using ep0 maxpacket: 32
[  371.989787][ T5813] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 32
[  372.003990][ T5813] usb 1-1: New USB device found, idVendor=0499, idProduct=1010, bcdDevice= a.f5
[  372.013441][ T5813] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  372.021469][ T5813] usb 1-1: Product: syz
[  372.025733][ T5813] usb 1-1: Manufacturer: syz
[  372.030372][ T5813] usb 1-1: SerialNumber: syz
[  372.037203][ T5813] usb 1-1: config 0 descriptor??
[  372.043022][T12008] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  372.057826][ T5813] usb 1-1: Quirk or no altest; falling back to MIDI 1.0
[  372.267343][ T5770] usb 1-1: USB disconnect, device number 25
[  372.297066][ T5812] plantronics 0003:047F:FFFF.0012: unknown main item tag 0x6
[  372.327912][ T5812] plantronics 0003:047F:FFFF.0012: No inputs registered, leaving
[  372.346822][ T5812] plantronics 0003:047F:FFFF.0012: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.5-1/input0
[  372.402282][T12015] loop6: detected capacity change from 0 to 256
[  372.510538][  T970] usb 6-1: USB disconnect, device number 15
[  372.581279][T12015] exFAT-fs (loop6): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x32e3664b, utbl_chksum : 0xe619d30d)
[  372.651784][   T27] audit: type=1800 audit(1771767797.979:33): pid=12015 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.1661" name="file2" dev="loop6" ino=1048896 res=0 errno=0
[  373.529752][T12024] loop5: detected capacity change from 0 to 512
[  373.587925][T12024] EXT4-fs error (device loop5): ext4_orphan_get:1398: inode #15: comm syz.5.1665: iget: bad i_size value: 38620345925642
[  373.608288][T12024] EXT4-fs error (device loop5): ext4_orphan_get:1403: comm syz.5.1665: couldn't read orphan inode 15 (err -117)
[  373.763254][T12032] mmap: syz.0.1663 (12032) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  373.852729][ T5812] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  373.965779][T12024] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  374.109539][ T5812] usb 7-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0xFF, skipping
[  374.265928][ T5812] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  374.365348][ T5812] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  374.394830][ T8130] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  374.402914][ T5812] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  374.484303][ T5812] usb 7-1: config 0 descriptor??
[  374.517543][ T5812] usbhid 7-1:0.0: couldn't find an input interrupt endpoint
[  376.577717][   T23] usb 7-1: USB disconnect, device number 5
[  376.851600][T12069] loop6: detected capacity change from 0 to 1024
[  376.964262][T12069] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  377.799910][ T5770] kernel read not supported for file /slabinfo (pid: 5770 comm: kworker/0:4)
[  377.815173][T12076] EXT4-fs error (device loop6): ext4_find_dest_de:2115: inode #2: block 16: comm syz.6.1677: bad entry in directory: inode out of bounds - offset=76, inode=589840, rec_len=16, size=1024 fake=0
[  378.003342][T11116] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  378.129882][T12081] loop5: detected capacity change from 0 to 512
[  378.333356][T12081] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  378.355429][T12081] ext4 filesystem being mounted at /242/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  378.382288][T12081] EXT4-fs error (device loop5): ext4_do_update_inode:5248: inode #2: comm syz.5.1681: corrupted inode contents
[  378.397025][T12081] EXT4-fs error (device loop5): ext4_dirty_inode:6124: inode #2: comm syz.5.1681: mark_inode_dirty error
[  378.408880][T12081] EXT4-fs error (device loop5): ext4_do_update_inode:5248: inode #2: comm syz.5.1681: corrupted inode contents
[  378.568803][T12081] EXT4-fs error (device loop5): __ext4_ext_dirty:202: inode #2: comm syz.5.1681: mark_inode_dirty error
[  378.699575][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[  378.706169][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  379.196926][ T8130] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  379.332686][T12095] netlink: 48 bytes leftover after parsing attributes in process `syz.5.1686'.
[  379.341942][T12095] netlink: 48 bytes leftover after parsing attributes in process `syz.5.1686'.
[  379.490753][T12103] loop5: detected capacity change from 0 to 2048
[  379.632689][ T5770] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  380.496314][T12110] loop5: detected capacity change from 0 to 512
[  380.517999][ T5770] usb 7-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0xFF, skipping
[  380.542560][ T5770] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  380.562558][T12110] FAT-fs (loop5): bogus number of FAT sectors
[  380.568666][T12110] FAT-fs (loop5): Can't find a valid FAT filesystem
[  380.582473][ T5770] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  380.591617][ T5770] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  380.611401][ T5770] usb 7-1: config 0 descriptor??
[  380.635111][ T5770] usbhid 7-1:0.0: couldn't find an input interrupt endpoint
[  380.978519][T12118] loop5: detected capacity change from 0 to 128
[  381.151382][T12125] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1696'.
[  381.165720][T12125] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1696'.
[  382.654133][   T23] usb 7-1: USB disconnect, device number 6
[  383.613261][T12158] netlink: 48 bytes leftover after parsing attributes in process `syz.5.1705'.
[  383.644147][T12158] netlink: 48 bytes leftover after parsing attributes in process `syz.5.1705'.
[  383.937855][T12169] loop5: detected capacity change from 0 to 512
[  384.275703][T12169] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  384.741717][ T5825] usb 1-1: new high-speed USB device number 26 using dummy_hcd
[  384.955641][ T5825] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  384.973699][ T5825] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  385.016535][ T8130] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  385.025782][ T5825] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  385.059246][ T5825] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  385.102244][ T5825] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  385.125880][ T5825] usb 1-1: config 0 descriptor??
[  385.335862][T12191] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1717'.
[  385.347897][T12191] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1717'.
[  385.569214][    C0] raw-gadget.0 gadget.0: ignoring, device is not running
[  385.576846][    C0] raw-gadget.0 gadget.0: ignoring, device is not running
[  385.584711][    C0] raw-gadget.0 gadget.0: ignoring, device is not running
[  385.592240][ T5825] usbhid 1-1:0.0: can't add hid device: -32
[  385.598671][ T5825] usbhid: probe of 1-1:0.0 failed with error -32
[  385.611407][ T5825] usb 1-1: USB disconnect, device number 26
[  386.785165][T12209] loop5: detected capacity change from 0 to 128
[  386.868148][T12209] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  386.905149][T12209] ext4 filesystem being mounted at /255/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  386.937090][T12214] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1726'.
[  386.957186][T12214] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1726'.
[  387.022348][   T27] audit: type=1800 audit(1771767812.349:34): pid=12209 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1724" name="file1" dev="loop5" ino=12 res=0 errno=0
[  387.071792][ T8130] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  387.734337][T12239] loop5: detected capacity change from 0 to 4096
[  387.965152][T12239] EXT4-fs (loop5): Test dummy encryption mode enabled
[  388.201532][T12239] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  388.266151][T12246] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1737'.
[  388.281029][T12239] mmap: syz.5.1735 (12239): VmData 175874048 exceed data ulimit 9. Update limits or use boot option ignore_rlimit_data.
[  388.308538][T12246] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1737'.
[  388.401226][ T8130] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  388.502639][ T5825] usb 1-1: new high-speed USB device number 27 using dummy_hcd
[  388.694702][ T5825] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  388.706370][ T5825] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  388.742629][ T5825] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  388.792817][ T5825] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  388.827373][ T5825] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  388.870373][ T5825] usb 1-1: config 0 descriptor??
[  389.690716][ T5825] usbhid 1-1:0.0: can't add hid device: -71
[  389.697315][ T5825] usbhid: probe of 1-1:0.0 failed with error -71
[  389.706532][ T5825] usb 1-1: USB disconnect, device number 27
[  389.818617][T12275] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1749'.
[  389.834706][T12275] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1749'.
[  389.959066][T12279] loop6: detected capacity change from 0 to 128
[  390.008733][T12279] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  390.029027][T12279] ext4 filesystem being mounted at /55/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  390.099421][   T27] audit: type=1800 audit(1771767815.429:35): pid=12279 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.1751" name="file1" dev="loop6" ino=12 res=0 errno=0
[  390.148933][T11116] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  391.347048][T12298] loop5: detected capacity change from 0 to 512
[  391.397157][T12298] EXT4-fs: Ignoring removed orlov option
[  391.431421][T12298] EXT4-fs: Ignoring removed mblk_io_submit option
[  391.490147][T12300] lo: entered allmulticast mode
[  391.507148][T12303] loop6: detected capacity change from 0 to 1024
[  391.516616][T12300] tunl0: entered allmulticast mode
[  391.527262][T12300] gre0: entered allmulticast mode
[  391.534762][T12300] gretap0: entered allmulticast mode
[  391.541714][T12300] ip_vti0: entered allmulticast mode
[  391.548749][T12300] ip6_vti0: entered allmulticast mode
[  391.556123][T12300] sit0: left promiscuous mode
[  391.560902][T12300] sit0: entered allmulticast mode
[  391.562074][T12298] EXT4-fs error (device loop5): ext4_iget_extra_inode:4732: inode #15: comm syz.5.1757: corrupted in-inode xattr: e_value size too large
[  391.611245][T12300] ip6tnl0: entered allmulticast mode
[  391.617692][T12300] ip6gre0: entered allmulticast mode
[  391.624444][T12300] syz_tun: entered allmulticast mode
[  391.630645][T12300] ip6gretap0: entered allmulticast mode
[  391.638169][T12300] bridge0: entered allmulticast mode
[  391.644511][T12300] vcan0: entered allmulticast mode
[  391.650181][T12300] bond0: entered allmulticast mode
[  391.655990][T12300] bond_slave_0: entered allmulticast mode
[  391.657537][T12298] EXT4-fs error (device loop5): ext4_orphan_get:1403: comm syz.5.1757: couldn't read orphan inode 15 (err -117)
[  391.661718][T12300] bond_slave_1: entered allmulticast mode
[  391.662730][T12300] team0: entered allmulticast mode
[  391.687000][T12300] team_slave_0: entered allmulticast mode
[  391.693898][T12300] team_slave_1: entered allmulticast mode
[  391.701017][T12300] dummy0: entered allmulticast mode
[  391.718990][   T42] hfsplus: b-tree write err: -5, ino 3
[  391.736662][T12300] nlmon0: entered allmulticast mode
[  391.737943][T12298] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  391.756132][T12300] caif0: entered allmulticast mode
[  391.761282][T12300] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  391.811448][T12305] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1760'.
[  391.846528][T12305] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1760'.
[  392.813240][ T7467] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  393.177571][ T8130] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  393.224476][ T7467] usb 7-1: New USB device found, idVendor=056e, idProduct=4010, bcdDevice=20.1c
[  393.269654][ T7467] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  393.343630][ T7467] usb 7-1: config 0 descriptor??
[  394.719802][T12335] loop5: detected capacity change from 0 to 2048
[  394.781514][T12335] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  395.002771][ T8130] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  395.201048][T12346] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1772'.
[  395.290882][T12346] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1772'.
[  395.459485][ T7467] pegasus 7-1:0.0: setup Pegasus II specific registers
[  395.607070][ T7467] pegasus 7-1:0.0: can't locate MII phy, using default
[  395.680613][ T7467] pegasus 7-1:0.0: eth13, ELECOM USB Ethernet LD-USB20, 6a:58:3c:dc:05:d7
[  395.756907][ T7467] usb 7-1: USB disconnect, device number 7
[  396.417967][T12366] loop6: detected capacity change from 0 to 512
[  396.539771][T12366] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  396.645066][T12366] ext4 filesystem being mounted at /60/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  396.757904][T12366] EXT4-fs error (device loop6): ext4_xattr_block_list:766: inode #15: comm syz.6.1778: corrupted xattr block 33: e_value out of bounds
[  396.852955][T12366] EXT4-fs (loop6): Remounting filesystem read-only
[  396.925408][T11116] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  396.987476][T12385] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1784'.
[  397.026447][T12385] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1784'.
[  399.008193][T12425] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1794'.
[  399.044712][T12425] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1794'.
[  399.124336][T12427] loop6: detected capacity change from 0 to 16
[  399.181092][T12427] erofs: (device loop6): mounted with root inode @ nid 36.
[  399.204466][T12427] erofs: (device loop6): z_erofs_readahead: readahead error at folio 23 @ nid 36
[  399.237371][T12427] erofs: (device loop6): z_erofs_readahead: readahead error at folio 22 @ nid 36
[  399.272744][T12427] erofs: (device loop6): z_erofs_readahead: readahead error at folio 21 @ nid 36
[  399.312593][T12427] erofs: (device loop6): z_erofs_readahead: readahead error at folio 20 @ nid 36
[  399.348270][T12427] erofs: (device loop6): z_erofs_readahead: readahead error at folio 18 @ nid 36
[  399.378984][T12427] erofs: (device loop6): z_erofs_readahead: readahead error at folio 16 @ nid 36
[  399.412806][T12427] erofs: (device loop6): z_erofs_readahead: readahead error at folio 12 @ nid 36
[  399.446174][T12427] erofs: (device loop6): z_erofs_readahead: readahead error at folio 9 @ nid 36
[  399.478545][T12427] erofs: (device loop6): z_erofs_readahead: readahead error at folio 8 @ nid 36
[  399.516000][T12427] syz.6.1795: attempt to access beyond end of device
[  399.516000][T12427] loop6: rw=524288, sector=67108872, nr_sectors = 16 limit=16
[  399.558110][T12427] syz.6.1795: attempt to access beyond end of device
[  399.558110][T12427] loop6: rw=524288, sector=720, nr_sectors = 16 limit=16
[  399.594558][T12427] syz.6.1795: attempt to access beyond end of device
[  399.594558][T12427] loop6: rw=524288, sector=525144, nr_sectors = 16 limit=16
[  399.639188][T12427] syz.6.1795: attempt to access beyond end of device
[  399.639188][T12427] loop6: rw=524288, sector=8, nr_sectors = 16 limit=16
[  400.610289][T12451] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable
[  401.652835][T12458] loop5: detected capacity change from 0 to 1024
[  401.956856][T12465] syz.6.1806: attempt to access beyond end of device
[  401.956856][T12465] loop12: rw=4096, sector=2, nr_sectors = 2 limit=0
[  402.041607][T12465] EXT4-fs (loop12): unable to read superblock
[  402.168370][T12476] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  402.624519][T12484] loop6: detected capacity change from 0 to 128
[  402.653804][T12484] FAT-fs (loop6): Unrecognized mount option "uni_x" or missing value
[  402.758566][ T7462] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  402.968899][T12492] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable
[  403.607542][T12495] sit0: left promiscuous mode
[  403.647710][T12495] bridge0: port 2(bridge_slave_1) entered blocking state
[  403.654964][T12495] bridge0: port 2(bridge_slave_1) entered forwarding state
[  403.662540][T12495] bridge0: port 1(bridge_slave_0) entered blocking state
[  403.669714][T12495] bridge0: port 1(bridge_slave_0) entered forwarding state
[  403.705975][T12495] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  404.780777][T12503] binder: 12500:12503 unknown command 0
[  404.786616][T12503] binder: 12500:12503 ioctl c0306201 200000000080 returned -22
[  405.447681][T12505] usb usb5: usbfs: process 12505 (syz.5.1816) did not claim interface 2 before use
[  405.572093][T12507] loop5: detected capacity change from 0 to 512
[  405.654221][T12507] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  405.692795][T12507] ext4 filesystem being mounted at /271/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  405.728002][T12507] EXT4-fs error (device loop5): ext4_xattr_block_list:766: inode #15: comm syz.5.1817: corrupted xattr block 33: e_value out of bounds
[  405.755066][T12507] EXT4-fs (loop5): Remounting filesystem read-only
[  405.867919][ T8130] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  405.874641][T12517] loop6: detected capacity change from 0 to 512
[  405.887479][T12517] EXT4-fs: Ignoring removed oldalloc option
[  405.935064][T12517] EXT4-fs (loop6): feature flags set on rev 0 fs, running e2fsck is recommended
[  405.969641][T12517] EXT4-fs (loop6): can't mount with data=, fs mounted w/o journal
[  406.215570][T12523] loop6: detected capacity change from 0 to 128
[  406.228342][T12523] FAT-fs (loop6): Unrecognized mount option "uni_x" or missing value
[  406.400488][T12527] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable
[  407.505933][T12530] dvmrp0: entered allmulticast mode
[  408.194692][ T5770] usb 6-1: new high-speed USB device number 16 using dummy_hcd
[  408.447437][ T5770] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  408.472634][ T5770] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  408.480695][ T5770] usb 6-1: Product: syz
[  408.502800][ T5770] usb 6-1: Manufacturer: syz
[  408.507461][ T5770] usb 6-1: SerialNumber: syz
[  409.681621][T12556] lo: left allmulticast mode
[  409.687999][T12556] tunl0: left allmulticast mode
[  409.693892][T12556] gre0: left allmulticast mode
[  409.699512][T12556] gretap0: left allmulticast mode
[  409.705844][T12556] ip_vti0: left allmulticast mode
[  409.711555][T12556] ip6_vti0: left allmulticast mode
[  409.717419][T12556] sit0: left allmulticast mode
[  409.723010][T12556] ip6tnl0: left allmulticast mode
[  409.728670][T12556] ip6gre0: left allmulticast mode
[  409.734558][T12556] syz_tun: left allmulticast mode
[  409.740277][T12556] ip6gretap0: left allmulticast mode
[  409.746278][T12556] bridge0: left allmulticast mode
[  409.751954][T12556] vcan0: left allmulticast mode
[  409.757201][T12556] bond0: left allmulticast mode
[  409.762079][T12556] bond_slave_0: left allmulticast mode
[  409.767660][T12556] bond_slave_1: left allmulticast mode
[  409.774490][T12556] team0: left allmulticast mode
[  409.779399][T12556] team_slave_0: left allmulticast mode
[  409.784984][T12556] team_slave_1: left allmulticast mode
[  409.796438][T12556] dummy0: left allmulticast mode
[  409.804081][T12556] nlmon0: left allmulticast mode
[  410.383910][T12556] caif0: left allmulticast mode
[  410.388830][T12556] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  410.493377][ T5770] cdc_ncm 6-1:1.0: SET_NTB_FORMAT failed
[  410.643392][ T5770] cdc_ncm 6-1:1.0: bind() failure
[  410.652353][ T5770] cdc_ncm 6-1:1.1: CDC Union missing and no IAD found
[  410.685155][ T5770] cdc_ncm 6-1:1.1: bind() failure
[  410.708319][ T5770] usb 6-1: USB disconnect, device number 16
[  411.220328][T12582] loop5: detected capacity change from 0 to 16
[  411.246636][T12582] erofs: (device loop5): mounted with root inode @ nid 36.
[  411.268213][T12582] erofs: (device loop5): z_erofs_readahead: readahead error at folio 23 @ nid 36
[  411.281787][T12582] erofs: (device loop5): z_erofs_readahead: readahead error at folio 22 @ nid 36
[  411.297609][T12582] erofs: (device loop5): z_erofs_readahead: readahead error at folio 21 @ nid 36
[  411.315200][T12582] erofs: (device loop5): z_erofs_readahead: readahead error at folio 20 @ nid 36
[  411.345177][T12582] erofs: (device loop5): z_erofs_readahead: readahead error at folio 18 @ nid 36
[  411.374576][T12582] erofs: (device loop5): z_erofs_readahead: readahead error at folio 16 @ nid 36
[  411.387472][T12582] erofs: (device loop5): z_erofs_readahead: readahead error at folio 12 @ nid 36
[  411.400084][T12585] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1837'.
[  411.409565][T12582] erofs: (device loop5): z_erofs_readahead: readahead error at folio 9 @ nid 36
[  411.429130][T12582] erofs: (device loop5): z_erofs_readahead: readahead error at folio 8 @ nid 36
[  411.449305][T12582] syz.5.1836: attempt to access beyond end of device
[  411.449305][T12582] loop5: rw=524288, sector=67108872, nr_sectors = 16 limit=16
[  411.471753][T12582] syz.5.1836: attempt to access beyond end of device
[  411.471753][T12582] loop5: rw=524288, sector=720, nr_sectors = 16 limit=16
[  411.486604][T12582] syz.5.1836: attempt to access beyond end of device
[  411.486604][T12582] loop5: rw=524288, sector=525144, nr_sectors = 16 limit=16
[  411.501058][T12582] syz.5.1836: attempt to access beyond end of device
[  411.501058][T12582] loop5: rw=524288, sector=8, nr_sectors = 16 limit=16
[  412.217859][T12592] sit0: left promiscuous mode
[  412.288987][T12592] bridge0: port 3(veth0_to_bond) entered blocking state
[  412.296120][T12592] bridge0: port 3(veth0_to_bond) entered forwarding state
[  412.303580][T12592] bridge0: port 2(bridge_slave_1) entered blocking state
[  412.310720][T12592] bridge0: port 2(bridge_slave_1) entered forwarding state
[  412.318243][T12592] bridge0: port 1(bridge_slave_0) entered blocking state
[  412.325433][T12592] bridge0: port 1(bridge_slave_0) entered forwarding state
[  413.015192][T12592] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  413.347707][T12606] loop5: detected capacity change from 0 to 8192
[  413.463092][T12606] FAT-fs (loop5): error, clusters badly computed (2 != 1)
[  413.484123][T12606] FAT-fs (loop5): Filesystem has been set read-only
[  413.538283][T12614] Bluetooth: hci0: unsupported parameter 255
[  413.556314][T12614] Bluetooth: hci0: invalid length 0, exp 2 for type 0
[  415.268861][T12660] loop6: detected capacity change from 0 to 2048
[  415.313236][T12660] UDF-fs: error (device loop6): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  415.341570][T12660] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  415.385748][   T27] audit: type=1800 audit(1771767840.719:36): pid=12660 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.1862" name=3030303030303030303030303030303030303030322C076F6E6761642C6769643D771D0F4D30DC61469A581342D98A7A4C3534A956C3E26DE72EDC9EC3DB403D8B2E970B9DCEA448E6F67D99A77AA5F0CD7FC5451BCF5B13E9698D80385C54FFF77D38AA9703314CD19A075893A1648DD8EF78A118122EE7A0E4 dev="loop6" ino=1367 res=0 errno=0
[  415.963900][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  416.112728][    T0] NOHZ tick-stop error: local softirq work is pending, handler #41!!!
[  416.121122][    T0] NOHZ tick-stop error: local softirq work is pending, handler #41!!!
[  416.202735][ T5812] usb 6-1: new low-speed USB device number 17 using dummy_hcd
[  416.571702][ T5812] usb 6-1: config 0 has an invalid interface number: 3 but max is 0
[  416.586408][ T5812] usb 6-1: config 0 has no interface number 0
[  416.593713][ T5812] usb 6-1: New USB device found, idVendor=1199, idProduct=6821, bcdDevice=98.59
[  416.612016][T12679] loop6: detected capacity change from 0 to 128
[  416.612518][ T5812] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  416.632230][ T5812] usb 6-1: config 0 descriptor??
[  416.665753][T12679] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=256, location=256
[  416.759856][T12679] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  416.760475][ T5812] hub 6-1:0.3: bad descriptor, ignoring hub
[  416.825493][ T5812] hub: probe of 6-1:0.3 failed with error -5
[  416.836526][ T5812] sierra 6-1:0.3: Sierra USB modem converter detected
[  416.900332][ T5812] usb 6-1: Sierra USB modem converter now attached to ttyUSB0
[  416.959434][ T5812] usb 6-1: USB disconnect, device number 17
[  416.970918][ T5812] sierra ttyUSB0: Sierra USB modem converter now disconnected from ttyUSB0
[  417.019959][ T5812] sierra 6-1:0.3: device disconnected
[  419.138074][T12709] loop6: detected capacity change from 0 to 4096
[  419.209967][T12709] EXT4-fs (loop6): Test dummy encryption mode enabled
[  419.353128][T12709] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  419.655547][T12720] EXT4-fs error (device loop6) in ext4_reserve_inode_write:5920: Corrupt filesystem
[  419.711342][T12720] EXT4-fs error (device loop6) in ext4_reserve_inode_write:5920: Corrupt filesystem
[  419.735252][T12720] EXT4-fs error (device loop6): ext4_evict_inode:252: inode #18: comm syz.6.1879: mark_inode_dirty error
[  419.764498][T12720] EXT4-fs warning (device loop6): ext4_evict_inode:255: couldn't mark inode dirty (err -117)
[  419.917453][T11116] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  420.200925][T12729] dvmrp0: entered allmulticast mode
[  421.789975][T12735] loop6: detected capacity change from 0 to 2048
[  421.871811][T12735] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  421.884578][T12735] ext4 filesystem being mounted at /88/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  421.913422][T12735] EXT4-fs error (device loop6): ext4_validate_block_bitmap:439: comm syz.6.1885: bg 0: block 345: padding at end of block bitmap is not set
[  422.168931][  T143] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 79 with max blocks 1 with error 28
[  422.882840][  T143] EXT4-fs (loop6): This should not happen!! Data will be lost
[  422.882840][  T143] 
[  422.926979][  T143] EXT4-fs (loop6): Total free blocks count 0
[  422.966179][  T143] EXT4-fs (loop6): Free/Dirty block details
[  422.972160][  T143] EXT4-fs (loop6): free_blocks=0
[  422.992884][  T143] EXT4-fs (loop6): dirty_blocks=16
[  422.998041][  T143] EXT4-fs (loop6): Block reservation details
[  423.013314][  T143] EXT4-fs (loop6): i_reserved_data_blocks=1
[  423.035181][T11116] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  423.265628][T12747] loop6: detected capacity change from 0 to 512
[  423.337224][T12747] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  424.708399][T11116] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  425.199028][T12769] loop5: detected capacity change from 0 to 128
[  425.248825][T12769] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256
[  425.313013][T12769] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  425.429065][T12774] Bluetooth: hci0: invalid length 0, exp 2 for type 27
[  426.614021][T12795] loop6: detected capacity change from 0 to 128
[  426.621465][T12795] FAT-fs (loop6): Unrecognized mount option "uni_x" or missing value
[  426.850121][ T7462] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  427.309950][T12816] Bluetooth: hci0: invalid length 0, exp 2 for type 27
[  428.214054][T12835] netlink: 'syz.0.1920': attribute type 11 has an invalid length.
[  428.837709][T12854] netlink: 48 bytes leftover after parsing attributes in process `syz.6.1925'.
[  428.876846][T12854] netlink: 48 bytes leftover after parsing attributes in process `syz.6.1925'.
[  430.241784][T12868] loop6: detected capacity change from 0 to 1024
[  430.263696][T12868] EXT4-fs: Ignoring removed orlov option
[  430.303612][T12868] EXT4-fs (loop6): stripe (129) is not aligned with cluster size (16), stripe is disabled
[  430.388554][T12868] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  430.507585][T12868] EXT4-fs error (device loop6): ext4_check_all_de:666: inode #12: block 7: comm syz.6.1931: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=108 fake=0
[  430.590324][T12868] EXT4-fs (loop6): Remounting filesystem read-only
[  430.701492][T11116] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  430.937722][T12884] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1935'.
[  430.967431][T12884] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1935'.
[  432.673130][T12913] netlink: 48 bytes leftover after parsing attributes in process `syz.5.1944'.
[  432.682857][T12913] netlink: 48 bytes leftover after parsing attributes in process `syz.5.1944'.
[  432.810382][T12915] bridge1: entered promiscuous mode
[  434.967131][T12941] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1953'.
[  434.985939][T12943] loop5: detected capacity change from 0 to 128
[  434.998309][T12941] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1953'.
[  435.052305][T12943] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  435.062609][    T9] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  435.089261][T12943] ext4 filesystem being mounted at /297/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  435.452043][    T9] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  435.547002][ T8130] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  435.620487][    T9] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  435.789543][    T9] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  435.974569][    T9] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  436.005814][    T9] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  436.048407][    T9] usb 7-1: config 0 descriptor??
[  436.069235][T12954] bridge1: entered promiscuous mode
[  436.300320][T12919] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  436.317244][T12919] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  436.910435][T12973] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1964'.
[  436.921196][T12973] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1964'.
[  437.181984][T12978] loop5: detected capacity change from 0 to 128
[  437.254631][T12978] FAT-fs (loop5): Directory bread(block 32) failed
[  437.273421][T12978] FAT-fs (loop5): Directory bread(block 33) failed
[  437.283899][    T9] plantronics 0003:047F:FFFF.0013: No inputs registered, leaving
[  437.292693][T12978] FAT-fs (loop5): Directory bread(block 34) failed
[  437.299233][T12978] FAT-fs (loop5): Directory bread(block 35) failed
[  437.322676][T12978] FAT-fs (loop5): Directory bread(block 36) failed
[  437.364631][T12978] FAT-fs (loop5): Directory bread(block 37) failed
[  437.388801][T12978] FAT-fs (loop5): Directory bread(block 38) failed
[  437.422858][T12978] FAT-fs (loop5): Directory bread(block 39) failed
[  437.461941][T12978] FAT-fs (loop5): Directory bread(block 40) failed
[  437.508951][T12978] FAT-fs (loop5): Directory bread(block 41) failed
[  437.517115][T12982] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1968'.
[  437.667233][    T9] plantronics 0003:047F:FFFF.0013: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.6-1/input0
[  437.694873][    T9] usb 7-1: USB disconnect, device number 8
[  437.904392][T12985] fido_id[12985]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.6/usb7/report_descriptor': No such file or directory
[  437.991168][T12978] FAT-fs (loop5): error, corrupted directory (invalid entries)
[  438.015224][T12978] FAT-fs (loop5): Filesystem has been set read-only
[  438.087676][T12993] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1973'.
[  438.096980][T12993] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1973'.
[  438.220429][T12997] loop6: detected capacity change from 0 to 512
[  438.254198][T12997] FAT-fs (loop6): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  439.052638][ T5812] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[  439.534243][ T5812] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  439.574378][ T5812] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  439.588379][ T5812] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  439.602748][ T5812] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  439.612017][ T5812] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  439.638719][ T5812] usb 7-1: config 0 descriptor??
[  439.757345][T13021] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1983'.
[  439.766698][T13021] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1983'.
[  440.149382][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[  440.156221][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  440.348346][ T5812] plantronics 0003:047F:FFFF.0014: unknown main item tag 0x0
[  440.375715][ T5812] plantronics 0003:047F:FFFF.0014: unknown main item tag 0x0
[  440.412595][ T5812] plantronics 0003:047F:FFFF.0014: unknown main item tag 0x0
[  440.463467][T13026] input: syz1 as /devices/virtual/input/input8
[  440.468542][ T5812] plantronics 0003:047F:FFFF.0014: unknown main item tag 0x0
[  440.490763][ T5812] plantronics 0003:047F:FFFF.0014: unknown main item tag 0x0
[  440.500948][ T5812] plantronics 0003:047F:FFFF.0014: unknown main item tag 0x0
[  440.526038][ T5812] plantronics 0003:047F:FFFF.0014: unknown main item tag 0x0
[  440.542696][ T5812] plantronics 0003:047F:FFFF.0014: unknown main item tag 0x0
[  440.553899][ T5812] plantronics 0003:047F:FFFF.0014: unknown main item tag 0x0
[  440.571734][ T5812] plantronics 0003:047F:FFFF.0014: unknown main item tag 0x0
[  440.597430][ T5812] plantronics 0003:047F:FFFF.0014: unknown main item tag 0x0
[  440.608707][ T5812] plantronics 0003:047F:FFFF.0014: No inputs registered, leaving
[  440.646311][ T5812] plantronics 0003:047F:FFFF.0014: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.6-1/input0
[  440.687179][ T5812] usb 7-1: USB disconnect, device number 9
[  440.765959][T13031] fido_id[13031]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.6/usb7/7-1/report_descriptor': No such file or directory
[  442.579439][T13052] loop6: detected capacity change from 0 to 1024
[  442.620695][T13052] EXT4-fs: Ignoring removed orlov option
[  442.697842][T13052] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  442.899451][T13068] loop5: detected capacity change from 0 to 128
[  442.907789][T13068] FAT-fs (loop5): Unrecognized mount option "uni_x" or missing value
[  443.749296][T11116] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  443.961826][T13081] loop5: detected capacity change from 0 to 512
[  443.996563][T13081] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  444.698726][T13093] loop6: detected capacity change from 0 to 1024
[  444.796991][T13093] EXT4-fs (loop6): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  444.870662][T13093] ext4 filesystem being mounted at /109/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  444.953438][T13093] EXT4-fs error (device loop6): ext4_lookup:1858: inode #15: comm syz.6.2009: inode has both inline data and extents flags
[  444.996177][T13093] EXT4-fs (loop6): Remounting filesystem read-only
[  445.075433][T11116] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  445.086468][T13104] loop5: detected capacity change from 0 to 1024
[  445.113278][T13104] ext4: Unknown parameter 'appraise_type'
[  445.401632][T13109] loop6: detected capacity change from 0 to 128
[  445.442337][T13109] FAT-fs (loop6): Unrecognized mount option "uni_x" or missing value
[  446.832563][  T970] usb 6-1: new high-speed USB device number 18 using dummy_hcd
[  447.034638][  T970] usb 6-1: config 0 has no interfaces?
[  447.044968][  T970] usb 6-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  447.062665][  T970] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  447.091574][  T970] usb 6-1: Product: syz
[  447.122927][  T970] usb 6-1: Manufacturer: syz
[  447.138375][  T970] usb 6-1: SerialNumber: syz
[  447.159208][  T970] usb 6-1: config 0 descriptor??
[  447.443529][  T970] usb 6-1: USB disconnect, device number 18
[  447.735606][T13133] loop6: detected capacity change from 0 to 1024
[  447.778273][T13133] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  447.835937][T13133] EXT4-fs error (device loop6): ext4_mb_mark_diskspace_used:4047: comm syz.6.2023: Allocating blocks 385-513 which overlap fs metadata
[  447.890975][T13132] EXT4-fs (loop6): pa ffff888076ce70e8: logic 16, phys. 129, len 24
[  447.899588][T13132] EXT4-fs error (device loop6): ext4_mb_release_inode_pa:5388: group 0, free 0, pa_free 8
[  447.949291][T11116] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  448.065298][T13141] loop6: detected capacity change from 0 to 128
[  448.081436][T13141] FAT-fs (loop6): Unrecognized mount option "uni_x" or missing value
[  449.510109][T13153] loop5: detected capacity change from 0 to 1024
[  449.532690][ T5770] usb 1-1: new high-speed USB device number 28 using dummy_hcd
[  449.550855][T13153] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  449.595317][T13153] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  449.628602][T13153] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1231: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters
[  449.697311][T13153] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  449.714571][T13153] EXT4-fs (loop5): This should not happen!! Data will be lost
[  449.714571][T13153] 
[  449.728781][T13153] EXT4-fs (loop5): Total free blocks count 0
[  449.740420][T13153] EXT4-fs (loop5): Free/Dirty block details
[  449.742767][ T5770] usb 1-1: Using ep0 maxpacket: 32
[  449.749912][T13153] EXT4-fs (loop5): free_blocks=20480
[  449.758294][T13153] EXT4-fs (loop5): dirty_blocks=16
[  449.764275][ T5770] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  449.774479][T13153] EXT4-fs (loop5): Block reservation details
[  449.775449][ T5770] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  449.781175][T13153] EXT4-fs (loop5): i_reserved_data_blocks=1
[  449.812563][ T5770] usb 1-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  449.842440][ T5770] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  449.853753][ T8130] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  449.864907][ T5770] usb 1-1: config 0 descriptor??
[  449.873532][ T5770] hub 1-1:0.0: USB hub found
[  450.007644][T13160] loop6: detected capacity change from 0 to 512
[  450.068412][T13160] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  450.090016][ T5770] hub 1-1:0.0: 1 port detected
[  450.169303][T13168] 9pnet_fd: Insufficient options for proto=fd
[  450.216114][T11116] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  450.402962][T13176] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2035'.
[  450.541172][T13178] loop6: detected capacity change from 0 to 128
[  450.555107][T13178] FAT-fs (loop6): Unrecognized mount option "uni_x" or missing value
[  450.825515][ T5770] hub 1-1:0.0: activate --> -90
[  451.223919][   T28] usb 1-1: USB disconnect, device number 28
[  451.382890][ T5780] Bluetooth: hci2: link tx timeout
[  451.388894][ T5780] Bluetooth: hci2: killing stalled connection 11:aa:aa:aa:aa:aa
[  451.400442][ T5772] Bluetooth: hci2: link tx timeout
[  451.406327][ T5772] Bluetooth: hci2: killing stalled connection 11:aa:aa:aa:aa:aa
[  451.465180][ T5770] usb 1-1-port1: config error
[  453.295926][T13231] loop5: detected capacity change from 0 to 256
[  453.319631][T13231] exFAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  453.338841][T13231] exFAT-fs (loop5): Medium has reported failures. Some data may be lost.
[  453.357750][T13231] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  453.492745][ T5780] Bluetooth: hci2: command 0x0406 tx timeout
[  453.867243][T13242] dns_resolver: Unsupported server list version (6)
[  453.940582][T13244] loop5: detected capacity change from 0 to 512
[  453.947988][T13244] EXT4-fs: Ignoring removed i_version option
[  454.117304][T13244] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  454.699563][ T8130] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  455.172285][T13265] loop5: detected capacity change from 0 to 1024
[  458.444340][T13312] kvm: emulating exchange as write
[  458.772582][   T28] usb 7-1: new full-speed USB device number 10 using dummy_hcd
[  458.934963][T13333] loop5: detected capacity change from 0 to 128
[  458.959543][T13333] FAT-fs (loop5): Unrecognized mount option "uni_x" or missing value
[  458.987249][   T28] usb 7-1: config 0 interface 0 altsetting 11 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  459.008677][   T28] usb 7-1: config 0 interface 0 altsetting 11 endpoint 0x81 has invalid wMaxPacketSize 0
[  459.043132][   T28] usb 7-1: config 0 interface 0 has no altsetting 0
[  459.060175][   T28] usb 7-1: New USB device found, idVendor=056a, idProduct=0144, bcdDevice= 0.00
[  459.108629][   T28] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  459.158275][   T28] usb 7-1: config 0 descriptor??
[  459.880631][   T28] wacom 0003:056A:0144.0015: Unknown device_type for 'HID 056a:0144'. Ignoring.
[  460.040556][   T28] usb 7-1: USB disconnect, device number 10
[  461.342163][ T5772] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  461.402304][ T5772] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  461.416724][ T5772] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  461.426372][ T5772] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  461.443031][ T5772] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  461.451468][ T5772] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  461.496756][T13350] binder: 13349:13350 ioctl 40047451 0 returned -22
[  461.675361][T13347] chnl_net:caif_netlink_parms(): no params data found
[  462.073888][T13347] bridge0: port 1(bridge_slave_0) entered blocking state
[  462.110777][T13347] bridge0: port 1(bridge_slave_0) entered disabled state
[  462.148885][T13347] bridge_slave_0: entered allmulticast mode
[  462.176478][T13347] bridge_slave_0: entered promiscuous mode
[  462.196142][T13347] bridge0: port 2(bridge_slave_1) entered blocking state
[  462.232852][T13347] bridge0: port 2(bridge_slave_1) entered disabled state
[  462.242965][T13347] bridge_slave_1: entered allmulticast mode
[  462.264120][T13347] bridge_slave_1: entered promiscuous mode
[  462.396547][T13347] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  462.409569][T13370] loop5: detected capacity change from 0 to 1024
[  462.437009][T13370] EXT4-fs: inline encryption not supported
[  462.444892][T13347] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  462.528179][T13370] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  462.961883][T13370] EXT4-fs error (device loop5): ext4_map_blocks:608: inode #3: block 2: comm syz.5.2100: lblock 2 mapped to illegal pblock 2 (length 1)
[  462.982734][T13374] loop6: detected capacity change from 0 to 1024
[  463.067033][T13370] EXT4-fs (loop5): Remounting filesystem read-only
[  463.094967][T13374] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  463.148629][T13370] Quota error (device loop5): qtree_write_dquot: dquota write failed
[  463.178904][T13370] Quota error (device loop5): v2_write_file_info: Can't write info structure
[  463.242686][T13370] EXT4-fs (loop5): 1 orphan inode deleted
[  463.249996][T13370] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  463.408755][T13347] team0: Port device team_slave_0 added
[  463.484528][T13347] team0: Port device team_slave_1 added
[  463.532789][ T5780] Bluetooth: hci4: command tx timeout
[  463.588593][ T8130] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  463.642568][  T787] usb 1-1: new high-speed USB device number 29 using dummy_hcd
[  463.769665][ T6713] netdevsim netdevsim1 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  463.788667][ T6713] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  463.819325][T13347] batman_adv: batadv0: Adding interface: batadv_slave_0
[  463.831123][T13347] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  463.865027][T13347] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  463.881532][T13347] batman_adv: batadv0: Adding interface: batadv_slave_1
[  463.900210][  T787] usb 1-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36
[  463.914420][T13347] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  463.940921][  T787] usb 1-1: New USB device strings: Mfr=241, Product=2, SerialNumber=3
[  463.949518][T13347] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  463.993128][  T787] usb 1-1: Product: syz
[  463.998320][  T787] usb 1-1: Manufacturer: syz
[  464.019566][  T787] usb 1-1: SerialNumber: syz
[  464.046620][  T787] usb 1-1: config 0 descriptor??
[  464.062282][  T787] ch341 1-1:0.0: ch341-uart converter detected
[  464.073381][ T6713] netdevsim netdevsim1 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  464.086644][T13385] loop5: detected capacity change from 0 to 128
[  464.088973][ T6713] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  464.126142][T13385] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256
[  464.136423][T11116] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  464.147852][T13385] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  464.338379][ T6713] netdevsim netdevsim1 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  464.383112][ T6713] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  464.420519][T13347] hsr_slave_0: entered promiscuous mode
[  464.448548][T13347] hsr_slave_1: entered promiscuous mode
[  464.461751][T13347] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  464.468483][  T787] usb 1-1: failed to send control message: -71
[  464.479188][T13347] Cannot create hsr debugfs directory
[  464.488892][  T787] ch341-uart: probe of ttyUSB0 failed with error -71
[  464.507733][  T787] usb 1-1: USB disconnect, device number 29
[  464.520934][  T787] ch341 1-1:0.0: device disconnected
[  464.571086][T13395] loop5: detected capacity change from 0 to 512
[  464.608738][ T6713] netdevsim netdevsim1 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  464.616250][T13395] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  464.630134][ T6713] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  464.633495][T13395] ext4 filesystem being mounted at /335/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  464.745646][ T8130] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  465.134257][ T6713] tipc: Left network mode
[  465.573853][ T5780] Bluetooth: hci4: command tx timeout
[  466.307906][T13421] loop5: detected capacity change from 0 to 256
[  466.346944][T13421] exfat: Deprecated parameter 'utf8'
[  466.391467][T13421] exfat: Deprecated parameter 'namecase'
[  466.485119][T13421] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d)
[  467.172961][   T28] usb 1-1: new high-speed USB device number 30 using dummy_hcd
[  467.382959][   T28] usb 1-1: Using ep0 maxpacket: 16
[  467.456866][   T28] usb 1-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  467.621262][   T28] usb 1-1: config 0 interface 0 has no altsetting 0
[  467.653042][ T5780] Bluetooth: hci4: command tx timeout
[  467.669071][   T28] usb 1-1: New USB device found, idVendor=060b, idProduct=500a, bcdDevice= 0.00
[  467.680128][   T28] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  467.694411][   T28] usb 1-1: config 0 descriptor??
[  468.066920][ T6713] dvmrp0 (unregistering): left allmulticast mode
[  468.163552][  T787] usb 6-1: new high-speed USB device number 19 using dummy_hcd
[  468.189672][T13457] loop6: detected capacity change from 0 to 1024
[  468.195831][   T28] cougar 0003:060B:500A.0016: unexpected long global item
[  468.219645][   T28] cougar 0003:060B:500A.0016: parse failed
[  468.225843][   T28] cougar: probe of 0003:060B:500A.0016 failed with error -22
[  468.347893][   T28] usb 1-1: USB disconnect, device number 30
[  468.409084][  T787] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  468.435369][  T787] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  468.451503][ T6713] hsr_slave_0: left promiscuous mode
[  468.484539][  T787] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  468.505486][ T6713] hsr_slave_1: left promiscuous mode
[  468.515920][ T6713] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  468.519010][T13461] loop6: detected capacity change from 0 to 128
[  468.526276][  T787] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  468.540101][ T6713] batman_adv: batadv0: Removing interface: batadv_slave_0
[  468.552608][  T787] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  468.558237][T13461] FAT-fs (loop6): Unrecognized mount option "uni_x" or missing value
[  468.563260][ T6713] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  468.580128][ T6713] batman_adv: batadv0: Removing interface: batadv_slave_1
[  468.588459][  T787] usb 6-1: config 0 descriptor??
[  468.604246][ T6713] bridge_slave_1: left allmulticast mode
[  468.609946][ T6713] bridge_slave_1: left promiscuous mode
[  468.625083][ T6713] bridge0: port 2(bridge_slave_1) entered disabled state
[  468.680875][ T6713] bridge_slave_0: left allmulticast mode
[  468.689385][ T6713] bridge_slave_0: left promiscuous mode
[  468.699710][ T6713] bridge0: port 1(bridge_slave_0) entered disabled state
[  468.788267][ T6713] veth1_macvtap: left promiscuous mode
[  468.802602][ T6713] veth0_macvtap: left promiscuous mode
[  468.808395][ T6713] veth1_vlan: left promiscuous mode
[  468.817945][ T6713] veth0_vlan: left promiscuous mode
[  469.048030][  T787] plantronics 0003:047F:FFFF.0017: unknown main item tag 0x0
[  469.081124][  T787] plantronics 0003:047F:FFFF.0017: unknown main item tag 0x0
[  469.091493][  T787] plantronics 0003:047F:FFFF.0017: unknown main item tag 0x0
[  469.128896][  T787] plantronics 0003:047F:FFFF.0017: unknown main item tag 0x0
[  469.136799][  T787] plantronics 0003:047F:FFFF.0017: unknown main item tag 0x0
[  469.159136][  T787] plantronics 0003:047F:FFFF.0017: unknown main item tag 0x0
[  469.188082][  T787] plantronics 0003:047F:FFFF.0017: unknown main item tag 0x0
[  469.210611][  T787] plantronics 0003:047F:FFFF.0017: unknown main item tag 0x0
[  469.234511][  T787] plantronics 0003:047F:FFFF.0017: unknown main item tag 0x0
[  469.255441][  T787] plantronics 0003:047F:FFFF.0017: unknown main item tag 0x0
[  469.278568][  T787] plantronics 0003:047F:FFFF.0017: unknown main item tag 0x0
[  469.301793][  T787] plantronics 0003:047F:FFFF.0017: unknown main item tag 0x0
[  469.327011][  T787] plantronics 0003:047F:FFFF.0017: unknown main item tag 0x0
[  469.349178][  T787] plantronics 0003:047F:FFFF.0017: unknown main item tag 0x0
[  469.370216][  T787] plantronics 0003:047F:FFFF.0017: unknown main item tag 0x0
[  469.394732][  T787] plantronics 0003:047F:FFFF.0017: No inputs registered, leaving
[  469.439260][  T787] plantronics 0003:047F:FFFF.0017: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.5-1/input0
[  469.485366][  T787] usb 6-1: USB disconnect, device number 19
[  469.612141][T13479] fido_id[13479]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/report_descriptor': No such file or directory
[  469.732636][ T5780] Bluetooth: hci4: command tx timeout
[  470.352153][ T6713] team0 (unregistering): Port device team_slave_1 removed
[  470.459023][ T6713] team0 (unregistering): Port device team_slave_0 removed
[  470.532907][ T6713] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  470.599707][ T6713] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  471.569205][T13490] loop6: detected capacity change from 0 to 512
[  471.650205][T13490] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  471.860765][T13490] EXT4-fs (loop6): 1 truncate cleaned up
[  471.919475][T13490] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  472.250464][ T6713] bond0 (unregistering): Released all slaves
[  472.387473][T11116] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  472.727997][T13347] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  472.742607][ T5770] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[  472.750583][T13347] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  472.762329][T13347] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  472.791645][T13347] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  472.952950][ T5770] usb 7-1: Using ep0 maxpacket: 16
[  472.981420][ T5770] usb 7-1: config 0 has an invalid interface number: 216 but max is 0
[  472.993558][ T5770] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  473.004371][ T5770] usb 7-1: config 0 has no interface number 0
[  473.024218][ T5770] usb 7-1: config 0 interface 216 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[  473.042313][T13347] 8021q: adding VLAN 0 to HW filter on device bond0
[  473.050690][ T5770] usb 7-1: config 0 interface 216 altsetting 0 bulk endpoint 0xA has invalid maxpacket 0
[  473.060919][ T5770] usb 7-1: config 0 interface 216 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  473.110020][T13347] 8021q: adding VLAN 0 to HW filter on device team0
[  473.113542][ T5770] usb 7-1: New USB device found, idVendor=c877, idProduct=d477, bcdDevice=ca.74
[  473.137837][ T5770] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  473.152516][ T5770] usb 7-1: Product: syz
[  473.156767][ T5770] usb 7-1: Manufacturer: syz
[  473.158542][  T143] bridge0: port 1(bridge_slave_0) entered blocking state
[  473.168524][  T143] bridge0: port 1(bridge_slave_0) entered forwarding state
[  473.171610][ T5770] usb 7-1: SerialNumber: syz
[  473.194267][  T143] bridge0: port 2(bridge_slave_1) entered blocking state
[  473.201412][  T143] bridge0: port 2(bridge_slave_1) entered forwarding state
[  473.210515][ T5770] usb 7-1: config 0 descriptor??
[  473.227046][ T5770] usb-storage 7-1:0.216: USB Mass Storage device detected
[  473.320221][T13347] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  473.470311][ T5770] usb 7-1: USB disconnect, device number 11
[  473.662034][T13347] 8021q: adding VLAN 0 to HW filter on device batadv0
[  473.760456][T13347] veth0_vlan: entered promiscuous mode
[  473.786867][T13347] veth1_vlan: entered promiscuous mode
[  473.842917][T13347] veth0_macvtap: entered promiscuous mode
[  473.858121][T13347] veth1_macvtap: entered promiscuous mode
[  473.909851][T13347] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  473.920642][T13347] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  473.931946][T13347] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  473.942821][T13347] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  473.955627][T13518] loop5: detected capacity change from 0 to 128
[  473.962063][T13347] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  473.975942][T13347] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  473.986988][T13518] FAT-fs (loop5): Unrecognized mount option "uni_x" or missing value
[  473.999235][T13347] batman_adv: batadv0: Interface activated: batadv_slave_0
[  474.031004][T13347] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  474.046137][T13347] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  474.060069][T13347] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  474.083188][T13347] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  474.107595][T13347] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  474.118570][T13347] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  474.137272][T13347] batman_adv: batadv0: Interface activated: batadv_slave_1
[  474.175793][T13347] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  474.212520][T13347] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  474.241060][T13347] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  474.257555][T13347] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  474.605361][ T2965] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  474.681379][ T2965] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  474.738400][ T3467] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  474.802413][ T3467] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  475.432751][    T8] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[  475.493751][   T27] audit: type=1326 audit(1771767900.789:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13541 comm="syz.6.2136" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3ecd9c629 code=0x7fc00000
[  475.660384][    T8] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  475.710457][    T8] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  475.763494][    T8] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  475.842350][    T8] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  475.883403][    T8] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  475.928406][    T8] usb 2-1: config 0 descriptor??
[  476.162668][   T27] audit: type=1326 audit(1771767901.489:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13541 comm="syz.6.2136" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fc3ecd96417 code=0x7fc00000
[  476.362360][    T8] plantronics 0003:047F:FFFF.0018: unknown main item tag 0x0
[  476.382723][    T8] plantronics 0003:047F:FFFF.0018: unknown main item tag 0x0
[  476.390258][    T8] plantronics 0003:047F:FFFF.0018: unknown main item tag 0x0
[  476.402945][    T8] plantronics 0003:047F:FFFF.0018: unknown main item tag 0x0
[  476.410416][    T8] plantronics 0003:047F:FFFF.0018: unknown main item tag 0x0
[  476.418426][    T8] plantronics 0003:047F:FFFF.0018: unknown main item tag 0x0
[  476.427248][    T8] plantronics 0003:047F:FFFF.0018: unknown main item tag 0x0
[  476.435539][    T8] plantronics 0003:047F:FFFF.0018: unknown main item tag 0x0
[  476.444495][    T8] plantronics 0003:047F:FFFF.0018: unknown main item tag 0x0
[  476.452196][    T8] plantronics 0003:047F:FFFF.0018: unknown main item tag 0x0
[  476.462662][    T8] plantronics 0003:047F:FFFF.0018: unknown main item tag 0x0
[  476.472823][    T8] plantronics 0003:047F:FFFF.0018: No inputs registered, leaving
[  476.505402][    T8] plantronics 0003:047F:FFFF.0018: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[  476.587764][    T8] usb 2-1: USB disconnect, device number 14
[  477.473152][ T5770] usb 1-1: new high-speed USB device number 31 using dummy_hcd
[  477.683413][ T5770] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  477.709127][ T5770] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  477.739658][ T5770] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  477.771014][ T5770] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  477.802285][ T5770] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  477.838071][ T5770] usb 1-1: config 0 descriptor??
[  477.895097][T13574] loop5: detected capacity change from 0 to 1024
[  478.167752][T13579] loop6: detected capacity change from 0 to 128
[  478.232331][T13579] FAT-fs (loop6): Unrecognized mount option "uni_x" or missing value
[  478.912373][ T5770] plantronics 0003:047F:FFFF.0019: unknown main item tag 0x0
[  478.924443][ T5770] plantronics 0003:047F:FFFF.0019: unknown main item tag 0x0
[  478.931867][ T5770] plantronics 0003:047F:FFFF.0019: unknown main item tag 0x0
[  478.940177][ T5770] plantronics 0003:047F:FFFF.0019: unknown main item tag 0x0
[  478.947637][ T5770] plantronics 0003:047F:FFFF.0019: unknown main item tag 0x0
[  478.955132][ T5770] plantronics 0003:047F:FFFF.0019: unknown main item tag 0x0
[  478.962572][ T5770] plantronics 0003:047F:FFFF.0019: unknown main item tag 0x0
[  478.969982][ T5770] plantronics 0003:047F:FFFF.0019: unknown main item tag 0x0
[  478.977511][ T5770] plantronics 0003:047F:FFFF.0019: unknown main item tag 0x0
[  478.985020][ T5770] plantronics 0003:047F:FFFF.0019: unknown main item tag 0x0
[  478.992423][ T5770] plantronics 0003:047F:FFFF.0019: unknown main item tag 0x0
[  479.000743][ T5770] plantronics 0003:047F:FFFF.0019: No inputs registered, leaving
[  479.024583][ T5770] plantronics 0003:047F:FFFF.0019: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  479.042730][ T5770] usb 1-1: USB disconnect, device number 31
[  479.230177][T13585] fido_id[13585]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/report_descriptor': No such file or directory
[  479.483470][ T5825] usb 6-1: new high-speed USB device number 20 using dummy_hcd
[  479.685966][ T5825] usb 6-1: config 8 has an invalid interface number: 82 but max is 0
[  479.711337][ T5825] usb 6-1: config 8 has no interface number 0
[  479.733195][ T5825] usb 6-1: New USB device found, idVendor=058f, idProduct=3820, bcdDevice=bb.a0
[  479.752500][ T5825] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  479.820627][T13604] loop6: detected capacity change from 0 to 512
[  479.892381][T13604] UDF-fs: warning (device loop6): udf_load_vrs: No VRS found
[  479.942816][T13604] UDF-fs: Scanning with blocksize 512 failed
[  479.955012][T13604] UDF-fs: warning (device loop6): udf_load_vrs: No VRS found
[  479.980811][ T5770] usb 6-1: USB disconnect, device number 20
[  480.005716][T13604] UDF-fs: Scanning with blocksize 1024 failed
[  480.031159][T13604] UDF-fs: warning (device loop6): udf_load_vrs: No VRS found
[  480.062937][T13604] UDF-fs: Scanning with blocksize 2048 failed
[  480.071379][T13604] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=256, location=256
[  480.129466][T13604] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  480.307107][T13604] ------------[ cut here ]------------
[  480.313063][T13604] WARNING: CPU: 0 PID: 13604 at fs/udf/truncate.c:224 udf_truncate_extents+0xd87/0xef0
[  480.322929][T13604] Modules linked in:
[  480.326875][T13604] CPU: 0 PID: 13604 Comm: syz.6.2154 Not tainted syzkaller #0
[  480.334371][T13604] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  480.344523][T13604] RIP: 0010:udf_truncate_extents+0xd87/0xef0
[  480.351464][T13604] Code: 65 48 8b 04 25 28 00 00 00 48 3b 84 24 80 01 00 00 75 73 44 89 e0 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 a9 67 89 fe <0f> 0b e9 6a ff ff ff 44 89 e9 80 e1 07 38 c1 0f 8c e8 f3 ff ff 4c
[  480.371351][T13604] RSP: 0018:ffffc90003227660 EFLAGS: 00010287
[  480.377660][T13604] RAX: ffffffff82fdad67 RBX: 1ffff1100ba674d6 RCX: 0000000000080000
[  480.385840][T13604] RDX: ffffc90005089000 RSI: 00000000000056fe RDI: 00000000000056ff
[  480.393896][T13604] RBP: ffffc90003227840 R08: ffff88802bf49e00 R09: 0000000000000002
[  480.401911][T13604] R10: 0000000000000001 R11: 0000000000000002 R12: 0000000000000000
[  480.409961][T13604] R13: 0000000000000000 R14: 0000000000000028 R15: 0000000000000028
[  480.418010][T13604] FS:  00007fc3edd2c6c0(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[  480.427021][T13604] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  480.433674][T13604] CR2: 00007fc3edd03000 CR3: 000000006854b000 CR4: 00000000003526f0
[  480.441670][T13604] Call Trace:
[  480.445030][T13604]  <TASK>
[  480.448002][T13604]  ? udf_discard_prealloc+0x5c0/0x5c0
[  480.454451][T13604]  ? udf_write_failed+0x178/0x1b0
[  480.459519][T13604]  ? __lock_acquire+0x7d40/0x7d40
[  480.464812][T13604]  ? __rwlock_init+0xe0/0x150
[  480.469530][T13604]  ? down_write+0x16e/0x200
[  480.474133][T13604]  ? do_raw_spin_unlock+0x121/0x230
[  480.479369][T13604]  udf_write_failed+0x180/0x1b0
[  480.484349][T13604]  udf_write_begin+0x21f/0x420
[  480.489153][T13604]  generic_perform_write+0x2fe/0x5c0
[  480.494566][T13604]  ? generic_file_direct_write+0x3e0/0x3e0
[  480.500401][T13604]  ? __mnt_drop_write_file+0xc3/0x100
[  480.505863][T13604]  ? __generic_file_write_iter+0xf7/0x230
[  480.511606][T13604]  ? udf_file_write_iter+0x29c/0x610
[  480.517019][T13604]  udf_file_write_iter+0x2b5/0x610
[  480.522170][T13604]  aio_write+0x564/0x7d0
[  480.526503][T13604]  ? aio_read+0x4d0/0x4d0
[  480.530874][T13604]  ? __might_fault+0xaa/0x120
[  480.535689][T13604]  io_submit_one+0x73f/0x12a0
[  480.540418][T13604]  ? lookup_ioctx+0x740/0x740
[  480.545175][T13604]  ? __might_fault+0xaa/0x120
[  480.549891][T13604]  ? __might_fault+0xc6/0x120
[  480.555543][T13604]  ? __might_fault+0xaa/0x120
[  480.560268][T13604]  __se_sys_io_submit+0x1a1/0x310
[  480.565537][T13604]  ? __x64_sys_io_submit+0x80/0x80
[  480.570696][T13604]  ? lockdep_hardirqs_on+0x98/0x150
[  480.575986][T13604]  do_syscall_64+0x55/0xa0
[  480.580431][T13604]  ? clear_bhb_loop+0x40/0x90
[  480.585184][T13604]  ? clear_bhb_loop+0x40/0x90
[  480.589885][T13604]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  480.595874][T13604] RIP: 0033:0x7fc3ecd9c629
[  480.600320][T13604] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  480.620027][T13604] RSP: 002b:00007fc3edd2c028 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1
[  480.628516][T13604] RAX: ffffffffffffffda RBX: 00007fc3ed015fa0 RCX: 00007fc3ecd9c629
[  480.636738][T13604] RDX: 0000200000000540 RSI: 000000000000003b RDI: 00007fc3edd03000
[  480.644898][T13604] RBP: 00007fc3ece32b39 R08: 0000000000000000 R09: 0000000000000000
[  480.653026][T13604] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  480.663861][T13604] R13: 00007fc3ed016038 R14: 00007fc3ed015fa0 R15: 00007ffca3f6cde8
[  480.671961][T13604]  </TASK>
[  480.675172][T13604] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  480.682466][T13604] CPU: 0 PID: 13604 Comm: syz.6.2154 Not tainted syzkaller #0
[  480.689939][T13604] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  480.699993][T13604] Call Trace:
[  480.703269][T13604]  <TASK>
[  480.706197][T13604]  dump_stack_lvl+0x18c/0x250
[  480.710879][T13604]  ? show_regs_print_info+0x20/0x20
[  480.716072][T13604]  ? load_image+0x400/0x400
[  480.720651][T13604]  panic+0x2dc/0x730
[  480.724562][T13604]  ? bpf_jit_dump+0xd0/0xd0
[  480.729077][T13604]  __warn+0x2e0/0x470
[  480.733053][T13604]  ? udf_truncate_extents+0xd87/0xef0
[  480.738420][T13604]  ? udf_truncate_extents+0xd87/0xef0
[  480.743786][T13604]  report_bug+0x2be/0x4f0
[  480.748136][T13604]  ? udf_truncate_extents+0xd87/0xef0
[  480.753521][T13604]  ? udf_truncate_extents+0xd87/0xef0
[  480.758902][T13604]  ? udf_truncate_extents+0xd89/0xef0
[  480.764270][T13604]  handle_bug+0xcf/0x120
[  480.768518][T13604]  exc_invalid_op+0x1a/0x50
[  480.773025][T13604]  asm_exc_invalid_op+0x1a/0x20
[  480.777872][T13604] RIP: 0010:udf_truncate_extents+0xd87/0xef0
[  480.783847][T13604] Code: 65 48 8b 04 25 28 00 00 00 48 3b 84 24 80 01 00 00 75 73 44 89 e0 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 a9 67 89 fe <0f> 0b e9 6a ff ff ff 44 89 e9 80 e1 07 38 c1 0f 8c e8 f3 ff ff 4c
[  480.803445][T13604] RSP: 0018:ffffc90003227660 EFLAGS: 00010287
[  480.809507][T13604] RAX: ffffffff82fdad67 RBX: 1ffff1100ba674d6 RCX: 0000000000080000
[  480.817472][T13604] RDX: ffffc90005089000 RSI: 00000000000056fe RDI: 00000000000056ff
[  480.825432][T13604] RBP: ffffc90003227840 R08: ffff88802bf49e00 R09: 0000000000000002
[  480.833392][T13604] R10: 0000000000000001 R11: 0000000000000002 R12: 0000000000000000
[  480.841352][T13604] R13: 0000000000000000 R14: 0000000000000028 R15: 0000000000000028
[  480.849334][T13604]  ? udf_truncate_extents+0xd87/0xef0
[  480.854731][T13604]  ? udf_discard_prealloc+0x5c0/0x5c0
[  480.860109][T13604]  ? udf_write_failed+0x178/0x1b0
[  480.865135][T13604]  ? __lock_acquire+0x7d40/0x7d40
[  480.870157][T13604]  ? __rwlock_init+0xe0/0x150
[  480.874831][T13604]  ? down_write+0x16e/0x200
[  480.879336][T13604]  ? do_raw_spin_unlock+0x121/0x230
[  480.884536][T13604]  udf_write_failed+0x180/0x1b0
[  480.889379][T13604]  udf_write_begin+0x21f/0x420
[  480.894140][T13604]  generic_perform_write+0x2fe/0x5c0
[  480.899425][T13604]  ? generic_file_direct_write+0x3e0/0x3e0
[  480.905220][T13604]  ? __mnt_drop_write_file+0xc3/0x100
[  480.910592][T13604]  ? __generic_file_write_iter+0xf7/0x230
[  480.916297][T13604]  ? udf_file_write_iter+0x29c/0x610
[  480.921578][T13604]  udf_file_write_iter+0x2b5/0x610
[  480.926688][T13604]  aio_write+0x564/0x7d0
[  480.930968][T13604]  ? aio_read+0x4d0/0x4d0
[  480.935297][T13604]  ? __might_fault+0xaa/0x120
[  480.939976][T13604]  io_submit_one+0x73f/0x12a0
[  480.944653][T13604]  ? lookup_ioctx+0x740/0x740
[  480.949319][T13604]  ? __might_fault+0xaa/0x120
[  480.954004][T13604]  ? __might_fault+0xc6/0x120
[  480.958676][T13604]  ? __might_fault+0xaa/0x120
[  480.963356][T13604]  __se_sys_io_submit+0x1a1/0x310
[  480.968381][T13604]  ? __x64_sys_io_submit+0x80/0x80
[  480.973495][T13604]  ? lockdep_hardirqs_on+0x98/0x150
[  480.978693][T13604]  do_syscall_64+0x55/0xa0
[  480.983112][T13604]  ? clear_bhb_loop+0x40/0x90
[  480.987782][T13604]  ? clear_bhb_loop+0x40/0x90
[  480.992462][T13604]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  480.998355][T13604] RIP: 0033:0x7fc3ecd9c629
[  481.002764][T13604] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  481.022361][T13604] RSP: 002b:00007fc3edd2c028 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1
[  481.030765][T13604] RAX: ffffffffffffffda RBX: 00007fc3ed015fa0 RCX: 00007fc3ecd9c629
[  481.038726][T13604] RDX: 0000200000000540 RSI: 000000000000003b RDI: 00007fc3edd03000
[  481.046687][T13604] RBP: 00007fc3ece32b39 R08: 0000000000000000 R09: 0000000000000000
[  481.054647][T13604] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  481.062606][T13604] R13: 00007fc3ed016038 R14: 00007fc3ed015fa0 R15: 00007ffca3f6cde8
[  481.070579][T13604]  </TASK>
[  481.073942][T13604] Kernel Offset: disabled
[  481.078333][T13604] Rebooting in 86400 seconds..