last executing test programs:

1m27.519953522s ago: executing program 4 (id=344):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0x5, 0x8, 0x2, 0x4, 0x0, 0xffffffffffffffff, 0xfffffffc}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, &(0x7f0000000580)=ANY=[@ANYBLOB="1802000000000000000000000000000018010000786c6c2500000000070000007b1af8ff00000000bfa100000000000007010000f8ffffffb700000000000000b7030000000000fd850000007200000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000000c0)={r1}, 0xc)

1m27.393412649s ago: executing program 4 (id=345):
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1)
recvfrom(r0, 0x0, 0x0, 0x40000000, 0x0, 0x0)

1m27.21256016s ago: executing program 4 (id=346):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0x4e, 0x0, 0x0)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000340)={0x2, 0x0, [{0x2, 0x4, 0x2, 0x3, 0x7, 0x1, 0x1}, {0x80000007, 0x6, 0x3, 0xffff9d96, 0xe61, 0xf0, 0x7}]})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, &(0x7f0000000000)="0f080fae04a200400f01c426660f3a15e6160fc76bdbf08666350f2170260fed9c000066b9230b00000f32", 0x2b}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

1m26.384724678s ago: executing program 4 (id=349):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x8002, &(0x7f00000000c0), 0x1, 0x4b4, &(0x7f0000000c80)="$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")
openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x34)
syz_mount_image$fuse(0x0, &(0x7f0000000080)='./bus\x00', 0x30000d0, 0x0, 0x2, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x10000, &(0x7f00000002c0)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './bus'}}], [], 0x2c})
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
getdents(r0, 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004280)='.\x00', 0x0, 0x0)
getdents64(r1, 0xfffffffffffffffe, 0xff80)

1m25.063668955s ago: executing program 4 (id=357):
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000cc0)={'syz1\x00', {0xfff9, 0x2, 0x248, 0x9b99}, 0x37, [0xfffffff8, 0x8, 0x5, 0x9, 0x7, 0x155f, 0x6, 0x4, 0x25cd, 0x1, 0xb4, 0xa, 0xa2b9, 0x6, 0x7, 0xe4, 0x6, 0xfc000000, 0x3, 0xbbf, 0x4a732f64, 0x1, 0x8, 0xd, 0x4, 0x12a3, 0x6, 0x1, 0x2, 0x6, 0x10001, 0x81, 0x8a, 0x79, 0x2, 0x10000, 0x0, 0x91, 0x4, 0x4, 0x16, 0x8, 0x5, 0x401, 0xfffffff5, 0x6, 0xa7, 0x81, 0x9, 0xf9a2, 0x80000001, 0xff, 0x0, 0x2, 0x2, 0x2, 0x7, 0x1, 0x7ff, 0x4, 0x4007f, 0xffffffff, 0x9, 0x4], [0x9, 0x3, 0x6, 0x9, 0x4, 0xc66, 0xa8a9, 0x5, 0x8e, 0xd50, 0x7, 0x5, 0x2, 0x401, 0x4, 0xa7, 0x1000, 0x0, 0x200b398, 0x400080, 0x1, 0x4, 0x1c, 0x7, 0x1, 0x2, 0x3, 0x8, 0xffffff7f, 0x400, 0x6, 0x4c2336d3, 0x4, 0x0, 0xfffffff8, 0x401, 0x46, 0xf1, 0x4, 0xab00060, 0x5, 0x6, 0x2, 0x5, 0xfffffff8, 0x1ff, 0x81, 0xd95, 0x1, 0x1cb, 0x1, 0x80000004, 0x6, 0x438, 0x77, 0x9, 0x99, 0x7fffffff, 0x4, 0xfffffff9, 0x1, 0x1000, 0xfffff801, 0x5], [0x4, 0xfffffffe, 0xffff, 0x637b, 0x2, 0x2e6bf783, 0x80000001, 0x5, 0x5, 0x491, 0x800008d3, 0x200006, 0x8, 0x400, 0x2, 0x400, 0x41, 0x6, 0xee4b, 0x2000004, 0x1, 0x8000003, 0x5, 0x9, 0xa, 0x3, 0x9, 0x1, 0xc7, 0xfff, 0x10000a, 0x10000002, 0x400, 0x3e55, 0x5, 0xd3, 0x8, 0x3436, 0x3, 0xd, 0x3, 0x601, 0x0, 0xdd80, 0x60a0, 0x7f, 0x9d26, 0x10000, 0x1, 0x2, 0x2, 0x6, 0x8000, 0xf45, 0x3, 0xd500, 0x2, 0x7a, 0x9, 0x6, 0x10000, 0xfffffffd, 0x8, 0x1], [0xa772, 0x6, 0x5, 0x1afa, 0xbfc, 0x8, 0x5, 0x7f, 0x6300, 0x40, 0xfb, 0x1005, 0x1, 0x7, 0x1e, 0x9, 0x81, 0x3, 0x9d86, 0xd, 0xfffffff7, 0x8, 0x140f2, 0x5396, 0x3, 0x6, 0x80008001, 0x7777, 0x1, 0x2, 0x100, 0xd8ce, 0x7fffffff, 0x100009, 0x8, 0x32d, 0x0, 0x1ff, 0x2000803, 0xfffffffc, 0x10000, 0x0, 0x8004, 0x7fff, 0x3, 0x7, 0xc, 0xe, 0x5337, 0x26d, 0x6, 0xfffffff9, 0x4, 0xfffffff9, 0x9, 0x4, 0x463f, 0x4, 0x2, 0x6, 0x8, 0x14000, 0x1, 0x9]}, 0x45c)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
sendmsg(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000200)="5500000018", 0x5}], 0x1}, 0x48000)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000000)={[0x35, 0xfff, 0xfffffffffffffffe, 0x40000000000180, 0x2, 0x5, 0xf5, 0xf, 0x5, 0x6, 0x7, 0x1, 0x4, 0x5, 0x4, 0x8], 0x25000, 0x100400})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
setresuid(0x0, 0x0, 0x0)
getresuid(&(0x7f0000000440), &(0x7f0000000480), &(0x7f0000000400))
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r5 = dup(r4)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f00000000c0)="c20000361e0f01c3660fd2eff30f10f1b961020000b80e000000ba000000000f30b98d0200000f320b99f3530000660f6af7c4e2f91d20", 0x37}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text32={0x20, 0x0}], 0x1, 0x50, 0x0, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

1m24.47853142s ago: executing program 4 (id=367):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_XSAVE(r2, 0x5000aea5, 0x0)

1m24.166703157s ago: executing program 32 (id=367):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_XSAVE(r2, 0x5000aea5, 0x0)

1m23.243477571s ago: executing program 0 (id=375):
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000cc0)={'syz1\x00', {0xfff9, 0x2, 0x248, 0x9b99}, 0x37, [0xfffffff8, 0x8, 0x5, 0x9, 0x7, 0x155f, 0x6, 0x4, 0x25cd, 0x1, 0xb4, 0xa, 0xa2b9, 0x6, 0x7, 0xe4, 0x6, 0xfc000000, 0x3, 0xbbf, 0x4a732f64, 0x1, 0x8, 0xd, 0x4, 0x12a3, 0x6, 0x1, 0x2, 0x6, 0x10001, 0x81, 0x8a, 0x79, 0x2, 0x10000, 0x0, 0x91, 0x8, 0x4, 0x16, 0x8, 0x5, 0x401, 0xfffffff5, 0x6, 0xa7, 0x81, 0x9, 0xf9a2, 0x80000001, 0xff, 0x0, 0x2, 0x2, 0x2, 0x7, 0x1, 0x7ff, 0x4, 0x4007f, 0xffffffff, 0x9, 0x4], [0x9, 0x3, 0x6, 0x9, 0x4, 0xc66, 0xa8a9, 0x5, 0x8e, 0xd50, 0x7, 0x5, 0x2, 0x401, 0x4, 0xa7, 0x1000, 0x0, 0x200b398, 0x400080, 0x1, 0x4, 0x1c, 0x7, 0x1, 0x2, 0x3, 0x8, 0xffffff7f, 0x400, 0x6, 0x4c2336d3, 0x4, 0x0, 0xfffffff8, 0x401, 0x46, 0xf1, 0x4, 0xab00060, 0x5, 0x6, 0x2, 0x5, 0xfffffff8, 0x1ff, 0x81, 0xd95, 0x1, 0x1cb, 0x1, 0x80000004, 0x6, 0x438, 0x77, 0x9, 0x99, 0x7fffffff, 0x4, 0xfffffff9, 0x1, 0x1000, 0xfffff801, 0x5], [0x4, 0xfffffffe, 0xffff, 0x637b, 0x2, 0x2e6bf783, 0x80000001, 0x5, 0x5, 0x491, 0x800008d3, 0x200006, 0x8, 0x400, 0x2, 0x400, 0x41, 0x6, 0xee4b, 0x2000004, 0x1, 0x8000003, 0x5, 0x9, 0xa, 0x3, 0x9, 0x1, 0xc7, 0xfff, 0x10000a, 0x10000002, 0x400, 0x3e55, 0x5, 0xd3, 0x8, 0x3436, 0x3, 0xd, 0x3, 0x601, 0x0, 0xdd80, 0x60a0, 0x7f, 0x9d26, 0x10000, 0x1, 0x2, 0x2, 0x6, 0x8000, 0xf45, 0x3, 0xd500, 0x2, 0x7a, 0x9, 0x6, 0x10000, 0xfffffffd, 0x8, 0x1], [0xa772, 0x6, 0x5, 0x1afa, 0xbfc, 0x8, 0x5, 0x7f, 0x6300, 0x40, 0xfb, 0x1005, 0x1, 0x7, 0x1e, 0x9, 0x81, 0x3, 0x9d86, 0xd, 0xfffffff7, 0x8, 0x140f2, 0x5396, 0x3, 0x6, 0x80008001, 0x7777, 0x1, 0x2, 0x100, 0xd8ce, 0x7fffffff, 0x100009, 0x8, 0x32d, 0x0, 0x1ff, 0x2000803, 0xfffffffc, 0x10000, 0x0, 0x8004, 0x7fff, 0x3, 0x7, 0xc, 0xe, 0x5337, 0x26d, 0x6, 0xfffffff9, 0x4, 0xfffffff9, 0x9, 0x4, 0x463f, 0x4, 0x2, 0x6, 0x8, 0x14000, 0x1, 0x9]}, 0x45c)
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000000)={[0x35, 0xfff, 0xfffffffffffffffe, 0x40000000000180, 0x2, 0x5, 0xf5, 0xf, 0x5, 0x6, 0x7, 0x1, 0x4, 0x5, 0x4, 0x8], 0x25000, 0x100400})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={0x0, 0xfc}}, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000001100)=ANY=[], 0xa0}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
newfstatat(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, <r4=>0x0}, 0x4000)
setresuid(0x0, 0x0, r4)
getresuid(&(0x7f0000000440), &(0x7f0000000480), &(0x7f0000000400))
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r6 = dup(r5)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f00000000c0)="c20000361e0f01c3660fd2eff30f10f1b961020000b80e000000ba000000000f30b98d0200000f320b99f3530000660f6af7c4e2f91d20", 0x37}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text32={0x20, 0x0}], 0x1, 0x50, 0x0, 0x0)
ioctl$KVM_RUN(r7, 0xae80, 0x0)

1m22.031884902s ago: executing program 0 (id=379):
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000cc0)={'syz1\x00', {0xfff9, 0x2, 0x248, 0x9b99}, 0x37, [0xfffffff8, 0x8, 0x5, 0x9, 0x7, 0x155f, 0x6, 0x4, 0x25cd, 0x1, 0xb4, 0xa, 0xa2b9, 0x6, 0x7, 0xe4, 0x6, 0xfc000000, 0x3, 0xbbf, 0x4a732f64, 0x1, 0x8, 0xd, 0x4, 0x12a3, 0x6, 0x1, 0x2, 0x6, 0x10001, 0x81, 0x8a, 0x79, 0x2, 0x10000, 0x0, 0x91, 0x8, 0x4, 0x16, 0x8, 0x5, 0x401, 0xfffffff5, 0x6, 0xa7, 0x81, 0x9, 0xf9a2, 0x80000001, 0xff, 0x0, 0x2, 0x2, 0x2, 0x7, 0x1, 0x7ff, 0x4, 0x4007f, 0xffffffff, 0x9, 0x4], [0xb6, 0x3, 0x6, 0x9, 0x4, 0xc66, 0xa8a9, 0x5, 0x8e, 0xd50, 0x7, 0x2, 0x2, 0x401, 0x4, 0xa7, 0x1000, 0x0, 0x200b398, 0x400080, 0x1, 0x4, 0x1c, 0x7, 0x1, 0x2, 0x3, 0x8, 0xffffff7f, 0x400, 0x6, 0x4c2336d3, 0x4, 0x0, 0xfffffff8, 0x401, 0x46, 0xf1, 0x4, 0xab00060, 0x5, 0x6, 0x2, 0x5, 0xfffffff8, 0x1ff, 0x81, 0xfffffffc, 0x1, 0x1cb, 0x1, 0x80000004, 0x6, 0x438, 0x77, 0x9, 0x99, 0x7fffffff, 0x4, 0x5c, 0x1, 0x1000, 0xfffff801, 0x5], [0x4, 0xfffffffe, 0xffff, 0x637b, 0x2, 0x2e6bf783, 0x80000001, 0x5, 0x5, 0x491, 0x800008d3, 0x200006, 0x8, 0x400, 0x82, 0x400, 0x41, 0x6, 0xee4b, 0x2000004, 0x1, 0x1, 0x5, 0x9, 0xa, 0x3, 0x9, 0x1, 0xc7, 0xfff, 0x10000a, 0x10000002, 0x400, 0x3e55, 0x5, 0xd3, 0x8, 0x3436, 0x3, 0xd, 0x3, 0x601, 0x0, 0xdd80, 0x60a0, 0x7f, 0x9d26, 0x10000, 0x1, 0x2, 0x2, 0x6, 0x8000, 0xf45, 0x3, 0xd500, 0x2, 0x7a, 0x9, 0x6, 0x10000, 0xfffffffd, 0x8, 0x1], [0xa772, 0x6, 0x5, 0x1afa, 0xbfc, 0x8, 0x5, 0x7f, 0x6300, 0x40, 0xfb, 0x1005, 0x1, 0x7, 0x1e, 0x9, 0x81, 0x3, 0x9d86, 0xd, 0xfffffff7, 0x8, 0x140f2, 0x5396, 0x3, 0x6, 0x80008001, 0x7777, 0x1, 0x2, 0x100, 0xd8ce, 0x7fffffff, 0x100009, 0x8, 0x32d, 0x0, 0x1ff, 0x2000803, 0xfffffffc, 0x10000, 0x0, 0x1b3a, 0x7fff, 0x3, 0x7, 0xc, 0xe, 0x5337, 0x26d, 0x6, 0xfffffff9, 0x4, 0xfffffff9, 0x9, 0x4, 0x463f, 0x4, 0x2, 0x6, 0x8, 0x14000, 0x1, 0x9]}, 0x45c)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
openat$ptp0(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000140)={&(0x7f0000000440)=ANY=[], 0x7c}}, 0x4)
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='comm\x00')
ioctl$PTP_PIN_GETFUNC(r3, 0xc0603d06, &(0x7f0000000340)={'\x00', 0x7fff, 0x0, 0xfff})
sendmsg(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000200)="5500000018", 0x5}], 0x1}, 0x48000)
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000000)={[0x35, 0xfff, 0xfffffffffffffffe, 0x40000000000180, 0x2, 0x5, 0xf5, 0xf, 0x5, 0x6, 0x7, 0x1, 0x4, 0x5, 0x4, 0x8], 0x25000, 0x100400})
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
eventfd(0x8c66)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
r6 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r7 = dup(r6)
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r8 = ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r8, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f00000000c0)="c20000361e0f01c3660fd2eff30f10f1b961020000b80e000000ba000000000f30b98d0200000f320b99f3530000660f6af7c4e2f91d20", 0x37}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r6, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text32={0x20, 0x0}], 0x1, 0x50, 0x0, 0x0)
ioctl$KVM_RUN(r8, 0xae80, 0x0)

1m21.263584257s ago: executing program 0 (id=387):
unshare(0x64000600)
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$SMC_PNETID_GET(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x14}}, 0x0)
getsockname$packet(r1, &(0x7f0000000180)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="440000001000370400000000ffffffff00000000", @ANYRES32=r2, @ANYBLOB="0b12050081010000240012800b00010069703667726500001400020008000100", @ANYRES32=r2], 0x44}, 0x1, 0x0, 0x0, 0x48800}, 0x4000010)
sendmmsg$inet(r0, &(0x7f0000001580)=[{{&(0x7f0000000040)={0x2, 0x4e1c, @empty}, 0x10, 0x0, 0x0, &(0x7f0000000000)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r2, @empty, @multicast1}}}], 0x20}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0)

1m20.382911318s ago: executing program 0 (id=392):
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f00000022c0)={[{@errors_remount}, {@nobarrier}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@oldalloc}, {@block_validity}, {@dioread_lock}]}, 0x3, 0x44e, &(0x7f0000000bc0)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0)
open(0x0, 0x8000, 0x50)
mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000180)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
chdir(&(0x7f0000000240)='./file0\x00')
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
fdatasync(r0)

1m19.056136865s ago: executing program 0 (id=399):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ENABLE(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)={0x54, r1, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x40, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x0, @loopback}}, {0x14, 0x2, @in={0x2, 0x0, @multicast2}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}]}]}, 0x54}}, 0x0)

1m16.448107167s ago: executing program 0 (id=410):
r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0xa00, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
unlink(0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee6, 0x12, r2, 0x31f39000)
bind$tipc(0xffffffffffffffff, 0x0, 0x0)
r3 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, 0x0, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r4, 0x29, 0x33, 0x0, 0x0)
ioctl$FIGETBSZ(r3, 0x2, &(0x7f0000000200))

1m16.05571039s ago: executing program 33 (id=410):
r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0xa00, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
unlink(0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee6, 0x12, r2, 0x31f39000)
bind$tipc(0xffffffffffffffff, 0x0, 0x0)
r3 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, 0x0, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r4, 0x29, 0x33, 0x0, 0x0)
ioctl$FIGETBSZ(r3, 0x2, &(0x7f0000000200))

17.227980576s ago: executing program 1 (id=588):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x8002, &(0x7f00000000c0), 0x1, 0x4b4, &(0x7f0000000c80)="$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")
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$inet6_opts(r0, 0x29, 0x36, 0xffffffffffffffff, 0x0)
setrlimit(0x1, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff})
truncate(&(0x7f00000000c0)='./file1\x00', 0x20fe000002)

16.970687041s ago: executing program 2 (id=591):
r0 = syz_usb_connect(0x3, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x141, 0x17, 0x51, 0x29, 0x20, 0x557, 0x2009, 0xc71e, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x2, 0x0, 0x10, 0x0, [{{0x9, 0x4, 0x58, 0x7, 0x2, 0x8a, 0xb5, 0x38, 0x0, [], [{{0x9, 0x5, 0x6, 0x2, 0x200, 0xd, 0x0, 0x6}}, {{0x9, 0x5, 0x82, 0x2, 0x200, 0x0, 0x1, 0x10}}]}}]}}]}}, 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io$rtl8150(r0, 0x0, 0x0)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x80, 0x0)
capset(0x0, 0x0)
write$binfmt_misc(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)

16.610144982s ago: executing program 1 (id=593):
write(0xffffffffffffffff, &(0x7f0000000100)="240000001e005f1814fffffffffffff807000000b800000000000000080008000d0000", 0x23)
r0 = socket$can_raw(0x1d, 0x3, 0x1)
r1 = syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101201)
ioctl$USBDEVFS_CONTROL(r1, 0xc0105500, 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r2, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$sock_int(r2, 0x1, 0x21, &(0x7f0000000040)=0x4, 0x4)
sendto$inet(r2, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
sendmmsg$inet(r2, &(0x7f0000000600)=[{{0x0, 0x0, &(0x7f0000000880)=[{&(0x7f0000000b00)="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", 0x22a}], 0x1}}, {{&(0x7f0000000680)={0x2, 0x4e23, @local}, 0x10, &(0x7f00000002c0)}}], 0x2, 0x4040080)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r3=>0x0})
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r4, 0x6, 0x14, &(0x7f0000000080)=0x1, 0x4)
syz_usb_connect$uac1(0x0, 0xbb, 0x0, 0x0)
setsockopt$CAN_RAW_FILTER(0xffffffffffffffff, 0x65, 0x1, &(0x7f00000006c0), 0x0)
bind$can_raw(0xffffffffffffffff, &(0x7f0000000080)={0x1d, r3}, 0x10)
r5 = socket(0x10, 0x3, 0x0)
r6 = syz_usb_connect$hid(0x3, 0x0, 0x0, 0x0)
syz_usb_control_io(r6, 0x0, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
syz_usb_control_io$hid(r6, 0x0, &(0x7f0000000600)={0x2c, &(0x7f00000003c0)={0x20, 0x5, 0xe5, "08791e49a0aeed3850038693fccd11927b5d6d64db241a27d0b8da2a812f185e73a3035634223d668f3e5f5331ee8dbc28d7640caedbd520a5d235e6e3e9372721a5c8df6c97a9ba9247b8a8cbe484d81fe54f2a5b8a8fbd291e5c487513434d800417e743c7356e3612a9dc17da749ba4796292c7aa1fde59cc190f53eef511d8534819c46eb2ff47acf2886573112eb6e0a95dbd07b4754efa0320a0acc583669c0c9de21edb32c04049539c3866968513321199571c4055912aa050ecf7dd838aa6abb70ae937a7f0407065ef354b8926ad04bd8c70e5afbce3c13c557b559eace6b7b9"}, &(0x7f00000004c0)={0x0, 0xa, 0x1, 0x9}, &(0x7f0000000500)={0x0, 0x8, 0x1, 0x1}, 0x0, 0x0})
getpeername$netlink(0xffffffffffffffff, 0x0, 0x0)
write(r5, &(0x7f0000000000)="2400000011005f0414f9f4070009041f810000000e0000000000000008000f0001000000", 0x24)

15.884722595s ago: executing program 3 (id=595):
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0xf, 0x0, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x4b, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000180), r0)
bind$inet6(0xffffffffffffffff, &(0x7f0000000140)={0xa, 0x4e22, 0x0, @rand_addr=' \x01\x00', 0x4}, 0x1c)
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x1208002, &(0x7f0000000100)={[{@grpquota}, {@delalloc}, {@resuid}, {@debug}, {@dioread_nolock}, {}, {@nomblk_io_submit}, {@noauto_da_alloc}]}, 0x1, 0x5d8, &(0x7f00000005c0)="$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")
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='mountinfo\x00')
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/crypto\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
read$FUSE(r2, &(0x7f0000002640)={0x2020}, 0x2020)
mount(&(0x7f0000000300), &(0x7f0000000080)='.\x00', &(0x7f0000002600)='binder\x00', 0x2200892, 0x0)
munlock(&(0x7f000038b000/0x1000)=nil, 0x1000)
read$FUSE(r1, &(0x7f00000005c0)={0x2020}, 0x2020)
r6 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_buf(r6, 0x0, 0x8008000000010, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180200001000000000000000030000001801000064046c250000ffffffff20207b1af8ff00000000bfa100000000000007010000f8ffffffb7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, 0xffffffffffffffff, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.time\x00', 0x26e1, 0x0)
symlink(&(0x7f00000005c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', &(0x7f00000002c0)='.\x02\x00')

14.411914601s ago: executing program 3 (id=597):
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000cc0)={'syz1\x00', {0xfff9, 0x2, 0x248, 0x9b99}, 0x37, [0xfffffff8, 0x8, 0x5, 0x9, 0x7, 0x155f, 0x6, 0x4, 0x25cd, 0x1, 0xb4, 0xa, 0xa2b9, 0x6, 0x7, 0xe4, 0x6, 0xfc000000, 0x3, 0xbbf, 0x4a732f64, 0x1, 0x8, 0xd, 0x4, 0x12a3, 0x6, 0x1, 0x2, 0x6, 0x10001, 0x81, 0x8a, 0x79, 0x2, 0x10000, 0x0, 0x91, 0x4, 0x4, 0x16, 0x8, 0x5, 0x401, 0xfffffff5, 0x6, 0xa7, 0x81, 0x9, 0xf9a2, 0x80000001, 0xff, 0x0, 0x2, 0x2, 0x2, 0x7, 0x1, 0x7ff, 0x4, 0x4007f, 0xffffffff, 0x9, 0x4], [0x9, 0x3, 0x6, 0x9, 0x4, 0xc66, 0xa8a9, 0x5, 0x8e, 0xd50, 0x7, 0x5, 0x2, 0x401, 0x4, 0xa7, 0x1000, 0x0, 0x200b398, 0x400080, 0x1, 0x4, 0x1c, 0x7, 0x1, 0x2, 0x3, 0x8, 0xffffff7f, 0x400, 0x6, 0x4c2336d3, 0x4, 0x0, 0xfffffff8, 0x401, 0x46, 0xf1, 0x4, 0xab00060, 0x5, 0x6, 0x2, 0x5, 0xfffffff8, 0x1ff, 0x81, 0xd95, 0x1, 0x1cb, 0x1, 0x80000004, 0x6, 0x438, 0x77, 0x9, 0x99, 0x7fffffff, 0x4, 0xfffffff9, 0x1, 0x1000, 0xfffff801, 0x5], [0x4, 0xfffffffe, 0xffff, 0x637b, 0x2, 0x2e6bf783, 0x80000001, 0x5, 0x5, 0x491, 0x800008d3, 0x200006, 0x8, 0x400, 0x2, 0x400, 0x41, 0x6, 0xee4b, 0x2000004, 0x1, 0x8000003, 0x5, 0x9, 0xa, 0x3, 0x9, 0x1, 0xc7, 0xfff, 0x10000a, 0x10000002, 0x400, 0x3e55, 0x5, 0xd3, 0x8, 0x3436, 0x3, 0xd, 0x3, 0x601, 0x0, 0xdd80, 0x60a0, 0x7f, 0x9d26, 0x10000, 0x1, 0x2, 0x2, 0x6, 0x8000, 0xf45, 0x3, 0xd500, 0x2, 0x7a, 0x9, 0x6, 0x10000, 0xfffffffd, 0x8, 0x1], [0xa772, 0x6, 0x5, 0x1afa, 0xbfc, 0x8, 0x5, 0x7f, 0x6300, 0x40, 0xfb, 0x1005, 0x1, 0x7, 0x1e, 0x9, 0x81, 0x3, 0x9d86, 0xd, 0xfffffff7, 0x8, 0x140f2, 0x5396, 0x3, 0x6, 0x80008001, 0x7777, 0x1, 0x2, 0x100, 0xd8ce, 0x7fffffff, 0x100009, 0x8, 0x32d, 0x0, 0x1ff, 0x2000803, 0xfffffffc, 0x10000, 0x0, 0x8004, 0x7fff, 0x3, 0x7, 0xc, 0xe, 0x5337, 0x26d, 0x6, 0xfffffff9, 0x4, 0xfffffff9, 0x9, 0x4, 0x463f, 0x4, 0x2, 0x6, 0x8, 0x14000, 0x1, 0x9]}, 0x45c)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x35, 0xfff, 0xfffffffffffffffe, 0x40000000000180, 0x2, 0x5, 0xf5, 0xf, 0x5, 0x6, 0x7, 0x1, 0x4, 0x5, 0x4, 0x8], 0x25000, 0x100400})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
newfstatat(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, <r3=>0x0}, 0x4000)
setresuid(0x0, 0x0, r3)
getresuid(&(0x7f0000000440), &(0x7f0000000480), &(0x7f0000000400))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r4 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r5 = dup(r4)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f00000000c0)="c20000361e0f01c3660fd2eff30f10f1b961020000b80e000000ba000000000f30b98d0200000f320b99f3530000660f6af7c4e2f91d20", 0x37}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text32={0x20, 0x0}], 0x1, 0x50, 0x0, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

14.164364165s ago: executing program 3 (id=598):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x4c, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f00000007c0)='./mnt\x00', 0x840, &(0x7f0000000080)={[{@test_dummy_encryption_v1}, {@test_dummy_encryption_v1}]}, 0x1, 0x241, &(0x7f0000000540)="$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")
socket(0x80000000000000a, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000600)=ANY=[], &(0x7f0000000340)='syzkaller\x00'}, 0x94)
quotactl$Q_SETQUOTA(0xffffffff80000800, 0x0, 0x0, 0x0)
creat(0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
mremap(&(0x7f00005ab000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000ffe000/0x1000)=nil)

12.938421986s ago: executing program 2 (id=599):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r1, 0x0, 0x0)
connect$inet(r1, 0x0, 0x0)
sendmmsg(r1, 0x0, 0x0, 0x0)
setsockopt$inet_udp_encap(r0, 0x11, 0x64, &(0x7f0000000000)=0x2, 0x4)
syz_emit_ethernet(0x33, &(0x7f0000000280)={@link_local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x25, 0x100, 0x0, 0x0, 0x11, 0x0, @empty, @multicast1}, {0x0, 0x4e20, 0x11, 0x0, @gue={{0x2, 0x1, 0x1, 0xc0, 0x100}, "cb"}}}}}}, 0x0)

12.928395887s ago: executing program 1 (id=600):
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="09000000030000000400010005"], 0x48)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0x5, 0x8, 0x2, 0x4, 0x0, 0xffffffffffffffff, 0xfffffffc}, 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, &(0x7f0000000580)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000000c0)={r0}, 0xc)

11.710074748s ago: executing program 3 (id=603):
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xa, 0x6, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x6b, 0x11, 0x3f}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x5}, @exit={0x95, 0x0, 0x33}], {0x95, 0x0, 0x5a5}}, &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xb8000000}, 0x70)
r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0)
syz_usb_disconnect(r0)
syz_usb_connect(0x6, 0x24, 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'batadv_slave_1\x00', <r2=>0x0})
sendmsg$nl_route(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000010000104000002000004000000000000", @ANYRES32=0x0, @ANYBLOB="8b90000010e3040008000500", @ANYRES32=r2, @ANYBLOB="200012800900017a6e327aca636d5b00766c616e000000001000028006000100"], 0x48}, 0x1, 0x0, 0x0, 0x240008c4}, 0x4054)
syz_emit_ethernet(0x2a, &(0x7f0000000040)=ANY=[@ANYBLOB="0180c2000002aaaaaaaab8bb08004553001c0068000008019078e00000010a0101001100907800000005113f314d7670a95a1c1285fb1cbb17793251beb2cb6dd52baa93598463bd8439008b3240cfb2c50875996c8d97ff54cd"], 0x0)
r3 = socket$can_raw(0x1d, 0x3, 0x1)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x101800, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000080)={'\x00', 0x2})
ioctl$TUNSETDEBUG(r4, 0x400454c9, 0xffffffffffffffff)
ioctl$TUNSETLINK(r4, 0x400454cd, 0x1)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={0x0}, 0x1, 0x0, 0x0, 0x24040804}, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x48c0)
sendmsg$nl_route(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000340)=ANY=[@ANYBLOB="340000001100010027bd7000fddbdf2500000000", @ANYRES32=0x0, @ANYBLOB="20100000000004001400030076657468315f766c616e"], 0x34}, 0x1, 0x0, 0x0, 0x801}, 0x4000000)
setsockopt$CAN_RAW_FILTER(r3, 0x65, 0x1, &(0x7f0000000180)=[{{0x0, 0x1}, {0x1, 0x0, 0x1}}], 0x8)
ioctl$EVIOCRMFF(r0, 0x4004550a, 0x0)
r7 = fspick(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x1)
fsconfig$FSCONFIG_SET_FD(r7, 0x5, &(0x7f0000000140)='\x1b+%{!\xe7-%.\x00', 0x0, r1)

11.452066773s ago: executing program 2 (id=604):
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(0xffffffffffffffff, 0x10e, 0x1, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000280)={[{@grpquota}, {@nobarrier}, {@noload}]}, 0x1, 0x50a, &(0x7f0000001700)="$eJzs3c9vW0kdAPCvnThxstlNdukBEOyW3YWCVnUSdzda7QHKCSFUCdEjSG1I3CiKHUf5UZpQifTMFYlKnODIH8C5J+5cENy4lAMSPyJQg8TB6D0/p25qN1aT2FH8+UhPb+aN4+936nrGnsSeAIbW1YjYj4ixiLgbEdPZ9Vx2xM3mkdzu2cHDpcODh0u5aDRu/zOXtifXou1nEm9k91mMiB98J+LHuZfjbu3urS1Wq5XNrD67XduY3drdu75aW1yprFTWy+WF+YW5T298Uj6zvr5XG8tKX376h/1v/DRJayq70t6Ps9TseuEoTmI0Ir53HsEGYCTrz9igE+G15CPinYh4P33+T8dI+mgCAJdZozEdjen2euGoBABcTvl0DSyXL2VrAVORz5dKzTW8KzE5nr0Y2Flfbq6VzUQhf2+1WpnL1gpnopBL6vNp+Xm9fKx+IyLejohfjE+k9dJSvbo8iBc8AEA6z7fP//8Zb87/AMAlVxx0AgBA35n/AWD4mP8BYPiY/wFg+DTn/4lBpwEA9JH3/wAwfMz/ADBUvn/rVnI0DrPvv16+v7uzVr9/fbmytVaq7SyVluqbG6WVen0l/c6e2kn3V63XN+Y/jp0HM9/c2Nqe3drdu1Or76xv30m/1/tOpfntgvt96BkA0M3b7z35cy6ZkT+bSI9o28uhMNDMgPOWH3QCwMCMDDoBYGBO3u3LfmBwWZ3iPb7lAbgkOmzR+4Jipw8INRqNxvmlBJyza1+w/g/Dqm39318Bw5Cx/g/Dy+o+DK9GI9frTv/R6w0BgIvNGj/Q5ff/72Tn32a/HPjR8vFbPD7PrAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOBia+3/W8r2Ap+KfL5UingzImaikLu3Wq3MRcRbEfGn8cJ4Up8fcM4AwGnl/5bL9v+6Nv3h1AtN775xVByLiJ/86vYvHyxub2/+MWIs96/x1vXtx9n1cv+zBwBO1pqn03PbG/lnBw+XWkc/8/n7tyOiGFeSuIcHY3F4FH80RtNzMQoRMfnvXFZvyrWtXZzG/qOI+Hyn/udiKl0Dae58ejx+EvvNvsbPvxA/n7Y1z8m/xefOIBcYNk+S8edmp+dfPq6m587P/2I6Qp1eNv4ld7V0mI6Bz+O3xr+RLuPf1V5jfPz77zZLEy+3PYr44mhEK/Zh2/jTip/rEv/DHuP/5Uvvvt+trfHriGvROX57rNnt2sbs1u7e9dXa4kplpbJeLi/ML8x9euOT8my6Rj3bfTb4x2cfvdWtLen/ZJf4xRP6/9Ue+/+b/9394VdeEf/rH3SKn48rr4ifzIlf6zH+4uTvit3akvjLXfp/0uP/UY/xn/51r7Vt+M96/BEA4Bxt7e6tLVarlU2FoS1k/xX2L0Q+yQvbV6c66Ay7Fb7Vr1hj0bnp5x80H8hjTY3Ga8XqNmKcxaobcBEcPekj4r+DTgYAAAAAAAAAAAAAAOioH59YGnQfAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuLz+HwAA///TQsBX")
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)

11.451782393s ago: executing program 1 (id=605):
syz_mount_image$exfat(&(0x7f0000000280), &(0x7f00000000c0)='./file2\x00', 0x810, &(0x7f00000018c0)=ANY=[], 0xfd, 0x150c, &(0x7f0000002d40)="$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")
chdir(&(0x7f0000000c00)='./file0\x00')
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r0 = fsmount(0xffffffffffffffff, 0x0, 0x0)
openat$cgroup_int(r0, 0x0, 0x2, 0x0)
sendmsg$NL80211_CMD_GET_REG(0xffffffffffffffff, 0x0, 0x0)
sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, 0x0, 0x40)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0xc044)

10.713713366s ago: executing program 1 (id=606):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000340)={0x0, 0x0})
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
syz_mount_image$msdos(&(0x7f0000000400), &(0x7f0000000180)='./file2\x00', 0x0, &(0x7f00000025c0)=ANY=[], 0x0, 0x1a6, &(0x7f0000000540)="$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")
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000140)='veth1_to_bridge\x00', 0x10)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x19, &(0x7f0000000800)=""/236, &(0x7f0000000280)=0xec)
r4 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r4, 0xaf01, 0x0)
ioctl$VHOST_SET_FEATURES(r4, 0x4008af00, &(0x7f0000000140)=0x200000000)
ioctl$VHOST_SET_MEM_TABLE(r4, 0x4008af03, &(0x7f0000000740)={0x4, 0x0, [{0x200000, 0x1e, &(0x7f0000000040)=""/30}, {0x30000, 0x4, &(0x7f0000000440)=""/4}, {0x3000, 0xb, &(0x7f0000000480)=""/11}, {0x50000, 0x23, &(0x7f0000000700)=""/35}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r4, 0x4004af61, &(0x7f00000000c0)=0x1)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000100)={0x2, &(0x7f0000000100)})

10.010832897s ago: executing program 6 (id=607):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000540)=@base={0xb, 0x0, 0x0, 0x8003}, 0x50)
r3 = syz_open_dev$usbfs(&(0x7f00000003c0), 0x76, 0x101301)
ioctl$USBDEVFS_DROP_PRIVILEGES(r3, 0x4004551e, &(0x7f0000000340)=0x79)
syz_usb_connect(0x1, 0x24, &(0x7f0000000ac0)={{0x12, 0x1, 0x200, 0xac, 0x8e, 0x8d, 0x8, 0x1b3d, 0x11c, 0x235, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x2, 0x3, 0x80, 0x7e, [{{0x9, 0x4, 0x17, 0x6, 0x0, 0x6c, 0xdc, 0x4f}}]}}]}}, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x0, 0x0}]})

7.464620895s ago: executing program 5 (id=608):
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000cc0)={'syz1\x00', {0xfff9, 0x2, 0x248, 0x9b99}, 0x37, [0xfffffff8, 0x8, 0x5, 0x9, 0x7, 0x155f, 0x6, 0x4, 0x25cd, 0x1, 0xb4, 0xa, 0xa2b9, 0x6, 0x7, 0xe4, 0x6, 0xfc000000, 0x3, 0xbbf, 0x4a732f64, 0x1, 0x8, 0xd, 0x4, 0x12a3, 0x6, 0x1, 0x2, 0x6, 0x10001, 0x81, 0x8a, 0x79, 0x2, 0x10000, 0x0, 0x91, 0x4, 0x4, 0x16, 0x8, 0x5, 0x401, 0xfffffff5, 0x6, 0xa7, 0x81, 0x9, 0xf9a2, 0x80000001, 0xff, 0x0, 0x2, 0x2, 0x2, 0x7, 0x1, 0x7ff, 0x4, 0x4007f, 0xffffffff, 0x9, 0x4], [0x9, 0x3, 0x6, 0x9, 0x4, 0xc66, 0xa8a9, 0x5, 0x8e, 0xd50, 0x7, 0x5, 0x2, 0x401, 0x4, 0xa7, 0x1000, 0x0, 0x200b398, 0x400080, 0x1, 0x4, 0x1c, 0x7, 0x1, 0x2, 0x3, 0x8, 0xffffff7f, 0x400, 0x6, 0x4c2336d3, 0x4, 0x0, 0xfffffff8, 0x401, 0x46, 0xf1, 0x4, 0xab00060, 0x5, 0x6, 0x2, 0x5, 0xfffffff8, 0x1ff, 0x81, 0xd95, 0x1, 0x1cb, 0x1, 0x80000004, 0x6, 0x438, 0x77, 0x9, 0x99, 0x7fffffff, 0x4, 0xfffffff9, 0x1, 0x1000, 0xfffff801, 0x5], [0x4, 0xfffffffe, 0xffff, 0x637b, 0x2, 0x2e6bf783, 0x80000001, 0x5, 0x5, 0x491, 0x800008d3, 0x200006, 0x8, 0x400, 0x2, 0x400, 0x41, 0x6, 0xee4b, 0x2000004, 0x1, 0x8000003, 0x5, 0x9, 0xa, 0x3, 0x9, 0x1, 0xc7, 0xfff, 0x10000a, 0x10000002, 0x400, 0x3e55, 0x5, 0xd3, 0x8, 0x3436, 0x3, 0xd, 0x3, 0x601, 0x0, 0xdd80, 0x60a0, 0x7f, 0x9d26, 0x10000, 0x1, 0x2, 0x2, 0x6, 0x8000, 0xf45, 0x3, 0xd500, 0x2, 0x7a, 0x9, 0x6, 0x10000, 0xfffffffd, 0x8, 0x1], [0xa772, 0x6, 0x5, 0x1afa, 0xbfc, 0x8, 0x5, 0x7f, 0x6300, 0x40, 0xfb, 0x1005, 0x1, 0x7, 0x1e, 0x9, 0x81, 0x3, 0x9d86, 0xd, 0xfffffff7, 0x8, 0x140f2, 0x5396, 0x3, 0x6, 0x80008001, 0x7777, 0x1, 0x2, 0x100, 0xd8ce, 0x7fffffff, 0x100009, 0x8, 0x32d, 0x0, 0x1ff, 0x2000803, 0xfffffffc, 0x10000, 0x0, 0x8004, 0x7fff, 0x3, 0x7, 0xc, 0xe, 0x5337, 0x26d, 0x6, 0xfffffff9, 0x4, 0xfffffff9, 0x9, 0x4, 0x463f, 0x4, 0x2, 0x6, 0x8, 0x14000, 0x1, 0x9]}, 0x45c)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x35, 0xfff, 0xfffffffffffffffe, 0x40000000000180, 0x2, 0x5, 0xf5, 0xf, 0x5, 0x6, 0x7, 0x1, 0x4, 0x5, 0x4, 0x8], 0x25000, 0x100400})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
newfstatat(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, <r3=>0x0}, 0x4000)
setresuid(0x0, 0x0, r3)
getresuid(&(0x7f0000000440), &(0x7f0000000480), &(0x7f0000000400))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r4 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r5 = dup(r4)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f00000000c0)="c20000361e0f01c3660fd2eff30f10f1b961020000b80e000000ba000000000f30b98d0200000f320b99f3530000660f6af7c4e2f91d20", 0x37}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text32={0x20, 0x0}], 0x1, 0x50, 0x0, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

7.368847801s ago: executing program 1 (id=609):
unshare(0x62040200)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = dup(r0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(0x0, r3)
sendmsg$nl_route(r3, &(0x7f0000000440)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000ec0)=@newlink={0x3c, 0x10, 0x437, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x50483}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @ip6gretap={{0xe}, {0x8, 0x2, 0x0, 0x1, [@IFLA_GRE_COLLECT_METADATA={0x4}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x4000000)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}})
write$tun(r2, &(0x7f0000000ac0)=ANY=[@ANYBLOB="080086dd0001110004000000a60c6eec00be000c2ffffe80000000"], 0xfdef)

7.155637763s ago: executing program 5 (id=610):
write(0xffffffffffffffff, &(0x7f0000000100)="240000001e005f1814fffffffffffff807000000b800000000000000080008000d0000", 0x23)
r0 = socket$can_raw(0x1d, 0x3, 0x1)
r1 = syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101201)
ioctl$USBDEVFS_CONTROL(r1, 0xc0105500, 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r2, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$sock_int(r2, 0x1, 0x21, &(0x7f0000000040)=0x4, 0x4)
sendto$inet(r2, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
sendmmsg$inet(r2, &(0x7f0000000600)=[{{0x0, 0x0, &(0x7f0000000880)=[{&(0x7f0000000b00)="68ddaa732d69a6f7eb258957fccb89134faf578e9ff0cc38595e4c9c1f2a32ceb6799c682d87e991cd718f04a1487a5d99bef5a95019bdd837d20274d2e98cfbde31b70e45fcc74efe1c42ba121fe280bf8af2c22489537e57dee1cc54c41bd8f9086f9498bc3bcc4f0501f1defec42e4faac1dd0b0b67b797182b6c4ce3ff3da7d4d4a1069cada5b152bbd64335f0254ecbfe43c5d7cd5b8403e53ae4f712b05945b98eb3420bb04c7ecf528693bb9693ada19e3a8f9522ab692a2d78aefa8af8f0e6b3b3af268e535bc4a610f7341e7da01249d929b75acf7c99bd21b2b5e3f210e2798f5636bed013dae7ff0d009ca52fffbd88a3964a60786f8f025e4b8fac68f910cdd4a991a6020fcd5a92bc7747acef6f62d087646d32fc37f6d1cabd609e6f392350ebcc02c341a3ce598522d3963374f5eb522919d029136288fd1c08cadfd7f43a3a6618d6dd5ae6baf5b2f321588e9dfc879e213badc550eb9982777b09d808ca8e5540695200193c820ad6ce1e924cdf342a1ff9feeab68af907798fbc0fa570ef885369090c35b0959baf6e29b86833a14cf3532cd537891f27caa37b10cda2cf6e75ddc11cb13c558cc210be334af3813630bb2c16145cf91ce50099452e0b10e4ce9beb32ab1a8692d2b3cff0e370f87e2219172b7bbcce5d8daca20ce4e047510920000e3a56747839920f72318843b6161fd643c2c56ca396b4c2283f9afef62412c04c934bc1ad4e54eac1acd4447ae3e2f9abf6cb9a5dcbba25aaf4254dc8a081", 0x22a}], 0x1}}, {{&(0x7f0000000680)={0x2, 0x4e23, @local}, 0x10, &(0x7f00000002c0)}}], 0x2, 0x4040080)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r3=>0x0})
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r4, 0x6, 0x14, &(0x7f0000000080)=0x1, 0x4)
syz_usb_connect$uac1(0x0, 0xbb, 0x0, 0x0)
setsockopt$CAN_RAW_FILTER(0xffffffffffffffff, 0x65, 0x1, &(0x7f00000006c0), 0x0)
bind$can_raw(0xffffffffffffffff, &(0x7f0000000080)={0x1d, r3}, 0x10)
r5 = socket(0x10, 0x3, 0x0)
r6 = syz_usb_connect$hid(0x3, 0x0, 0x0, 0x0)
syz_usb_control_io(r6, 0x0, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
syz_usb_control_io$hid(r6, 0x0, &(0x7f0000000600)={0x2c, &(0x7f00000003c0)={0x20, 0x5, 0xe5, "08791e49a0aeed3850038693fccd11927b5d6d64db241a27d0b8da2a812f185e73a3035634223d668f3e5f5331ee8dbc28d7640caedbd520a5d235e6e3e9372721a5c8df6c97a9ba9247b8a8cbe484d81fe54f2a5b8a8fbd291e5c487513434d800417e743c7356e3612a9dc17da749ba4796292c7aa1fde59cc190f53eef511d8534819c46eb2ff47acf2886573112eb6e0a95dbd07b4754efa0320a0acc583669c0c9de21edb32c04049539c3866968513321199571c4055912aa050ecf7dd838aa6abb70ae937a7f0407065ef354b8926ad04bd8c70e5afbce3c13c557b559eace6b7b9"}, &(0x7f00000004c0)={0x0, 0xa, 0x1, 0x9}, &(0x7f0000000500)={0x0, 0x8, 0x1, 0x1}, 0x0, 0x0})
getpeername$netlink(0xffffffffffffffff, 0x0, 0x0)
write(r5, &(0x7f0000000000)="2400000011005f0414f9f4070009041f810000000e0000000000000008000f0001000000", 0x24)

7.048663589s ago: executing program 2 (id=611):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xbebf8000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000141, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, 0xffffffffffffffff, 0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000040))
getgid()
prlimit64(r0, 0xd, 0x0, 0x0)
creat(0x0, 0x8d)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000240)={&(0x7f0000000140)=ANY=[@ANYBLOB="9feb0100180000000000000024000000240000000800000004000000000000070000000003000000000000080100000000000000000000020200000000002e2e5f"], 0x0, 0x44}, 0x20)
socket$tipc(0x1e, 0x5, 0x0)
syz_open_dev$tty20(0xc, 0x4, 0x1)

6.937307456s ago: executing program 6 (id=612):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
open(0x0, 0x408002, 0x28)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./bus\x00', 0x140)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000240)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0/file1\x00', 0x20400, 0x20)
lseek(r0, 0x0, 0x2)

6.642820443s ago: executing program 6 (id=613):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
socket$inet6_tcp(0xa, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000001c0)=0x5)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
syz_clone(0x0, 0x0, 0x9, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
getrlimit(0xe, 0x0)
ptrace$ARCH_GET_GS(0x1e, r0, &(0x7f0000000000), 0x1004)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r3, &(0x7f0000000440), 0x10)
listen(r3, 0x0)
r4 = socket$vsock_stream(0x28, 0x1, 0x0)
r5 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r5}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
syz_open_dev$usbmon(0x0, 0x7, 0x0)
setsockopt$sock_linger(r4, 0x1, 0xd, &(0x7f0000000180)={0x2, 0x5}, 0x8)
connect$vsock_stream(r4, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x4, 0x4, 0x7fff0000}]})
close_range(r6, 0xffffffffffffffff, 0x0)

3.539529734s ago: executing program 3 (id=614):
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/profiling', 0x141b82, 0xa9)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000300)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000040)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffc}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r3 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb010018000000000000003c0000003c000000020000000000000002000004080000000000000003000000000000000000000003000000000000000000000000000002000000000000000000000004"], 0x0, 0x56}, 0x28)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000080)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0x737, '\x00', 0x0, r3, 0x0, 0x1}, 0x50)
pipe(0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x7000000)

3.527420544s ago: executing program 2 (id=615):
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000044, &(0x7f0000000380)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x3}}, {@nodioread_nolock}, {@bh}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@data_err_ignore}, {@nouid32}, {@quota}, {@user_xattr}, {@barrier}, {@dioread_nolock}]}, 0x1, 0x55e, &(0x7f0000001bc0)="$eJzs3d9rW+UbAPDnpM1+f7/rYAwVkcIunMyla+uPCV7MS9HhQO9naM/KaLqMJh1rHbhduBtvZAgiDsR7vfdKhv+Af8VAB0NG0QtvKic9abs1adIuWzrz+cDZ3jfnJO95cs7z9n1zTkgAA2s0+6cQ8WJEfJVEHI6IJF83HPnK0dXtlh9en8qWJFZWPv4zaWyX1Zuv1XzewbzyQkT8+kXEycLmdmuLS7PlSiWdz+tj9bkrY7XFpVOX5soz6Ux6eWJy8sybkxPvvP1Wz2J97fzf33509/0zXx5f/uan+0duJ3E2DuXrNsbxBG5srIzGaP6eFOPsYxuOr/7XizZ3haTfO8CODOV5XoysDzgcQ3nWA/99n0fECjCgEvkPA6o5DmjO7Xs0D35uPHhvdQK0Of7h1c9GYl9jbnRgOXlkZpTNd0d60H7Wxs9/3LmdLdG7zyEAOrpxMyJODw9v7v+SvP/budNdbPN4G/o/eHbuZuOf11uNfwpr459oMf452CJ3d6Jz/hfu96CZtrLx37stx79rF61GhvLa/xpjvmJy8VIlzfq2/0fEiSjuzerjW7RxZvneSrt1G8d/2ZK13xwL5vtxf3jvo8+ZLtfLTxLzRg9uRrzUcvybrB3/pMXxz96P8122cSy980q7dZ3jf7pWfoh4teXxX7+ilWx9fXKscT6MNc+Kzf66dey3du33O/7s+B/YOv6RZOP12tr22/h+3z9pu3WPxB/dn/97kk8a5T35Y9fK9fr8eMSe5MPNj0+sP7dZb26fxX/i+Nb93/r5/8va6+yPiE+7jP/W0R9f3tdN/H06/tPbOv7bL9z74LPv2rXfXf/3RqN0In+km/6vw34VY8dnMwAAAAAAAOxehYg4FEmhtFYuFEql1fs7jsaBQqVaq5+8WF24PB2N78qORLHQvNJ9eMP9EOP5/bDN+sRj9cmIOBIRXw/tb9RLU9XKdL+DBwAAAAAAAAAAAAAAAAAAgF3iYJvv/2d+H+r33gFPnZ/8hsHVMf978UtPwK7k7z8MLvkPg0v+w+CS/zC45D8MLvkPg0v+w+CS/wAAAAAAAAAAAAAAAAAAAAAAAAAAANBT58+dy5aV5YfXp7L69NXFhdnq1VPTaW22NLcwVZqqzl8pzVSrM5W0NFWd6/R6lWr1yvhELFwbq6e1+lhtcenCXHXhcv3CpbnyTHohLT6TqAAAAAAAAAAAAAAAAAAAAOD5Ultcmi1XKum8gsKOCsO7YzcUelzod88EAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOv+DQAA//8Kozfs")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
ioctl$FS_IOC_FIEMAP(r0, 0xc020660b, &(0x7f0000000240)=ANY=[])

2.39365509s ago: executing program 5 (id=616):
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000340)='./file0\x00', 0x2800000, &(0x7f00000002c0)={[{@debug}, {@delalloc}, {@dax_never}, {@test_dummy_encryption}, {@nodiscard}, {@nomblk_io_submit}, {@grpjquota_path={'grpjquota', 0x3d, './file0'}}, {@nodiscard}]}, 0x1, 0xbb4, &(0x7f00000017c0)="$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")
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000100)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet(0x2, 0x3, 0x8)
setsockopt$inet_int(r3, 0x0, 0x5, &(0x7f0000000080)=0x7, 0x4)
setsockopt$MRT_ADD_MFC(0xffffffffffffffff, 0x0, 0x5, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmsg$inet(r4, &(0x7f0000000680)={&(0x7f0000000280)={0x2, 0x4e20, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000240)=[@ip_retopts={{0x10}}], 0x10}, 0x4000810)

2.39322144s ago: executing program 6 (id=617):
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000540)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000180)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
ioctl$UI_SET_EVBIT(0xffffffffffffffff, 0x40045564, 0x12)
r3 = memfd_create(&(0x7f0000000300)='-B\xd5NI\xc5j\x87\b\x00\x00\x00\b\x84\xa2{\x00\v\x18\x004\xa6\x05\x00\x00\x00Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xc83\x12\xd7\xdb\x93\xcc]x\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x81\x01\xe5\x98\r\x1d\xa1\xce\x8b\x19\xea\xef\xe3\x00\x00\x00\x00\x00\x00\x00\x00\x00', 0x0)
fremovexattr(r3, &(0x7f0000000000)=@known='system.posix_acl_access\x00')
getsockopt$CAN_RAW_LOOPBACK(0xffffffffffffffff, 0x65, 0x3, 0x0, 0x0)

1.646632084s ago: executing program 2 (id=618):
sched_setscheduler(0x0, 0x2, &(0x7f00000000c0)=0x8)
getpid()
socket$inet6_tcp(0xa, 0x1, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, 0x0, 0x0, 0x2, 0x0)
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/timer_list\x00', 0x0, 0x0)
sendfile(r2, r3, 0x0, 0x20000023896)

1.568427449s ago: executing program 6 (id=619):
write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000001b00)=[{{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000080)="050000007402b8f419", 0x9}, {&(0x7f0000000440)="9f336d70bf41f19e47e98b", 0xb}], 0x2}}], 0x1, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000000)={[0x35, 0xfff, 0xfffffffffffffffe, 0x40000000000180, 0x2, 0x5, 0xf5, 0xf, 0x5, 0x6, 0x7, 0x1, 0x4, 0x5, 0x4, 0x8], 0x25000, 0x100400})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000001100)=ANY=[], 0xa0}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r5 = dup(r4)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f00000000c0)="c20000361e0f01c3660fd2eff30f10f1b961020000b80e000000ba000000000f30b98d0200000f320b99f3530000660f6af7c4e2f91d20", 0x37}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text32={0x20, 0x0}], 0x1, 0x50, 0x0, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

1.415524077s ago: executing program 5 (id=620):
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000cc0)={'syz1\x00', {0xfff9, 0x2, 0x248, 0x9b99}, 0x37, [0xfffffff8, 0x8, 0x5, 0x9, 0x7, 0x155f, 0x6, 0x4, 0x25cd, 0x1, 0xb4, 0xa, 0xa2b9, 0x6, 0x7, 0xe4, 0x6, 0xfc000000, 0x3, 0xbbf, 0x4a732f64, 0x1, 0x8, 0xd, 0x4, 0x12a3, 0x6, 0x1, 0x2, 0x6, 0x10001, 0x81, 0x8a, 0x79, 0x2, 0x10000, 0x0, 0x91, 0x4, 0x4, 0x16, 0x8, 0x5, 0x401, 0xfffffff5, 0x6, 0xa7, 0x81, 0x9, 0xf9a2, 0x80000001, 0xff, 0x0, 0x2, 0x2, 0x2, 0x7, 0x1, 0x7ff, 0x4, 0x4007f, 0xffffffff, 0x9, 0x4], [0x9, 0x3, 0x6, 0x9, 0x4, 0xc66, 0xa8a9, 0x5, 0x8e, 0xd50, 0x7, 0x5, 0x2, 0x401, 0x4, 0xa7, 0x1000, 0x0, 0x200b398, 0x400080, 0x1, 0x4, 0x1c, 0x7, 0x1, 0x2, 0x3, 0x8, 0xffffff7f, 0x400, 0x6, 0x4c2336d3, 0x4, 0x0, 0xfffffff8, 0x401, 0x46, 0xf1, 0x4, 0xab00060, 0x5, 0x6, 0x2, 0x5, 0xfffffff8, 0x1ff, 0x81, 0xd95, 0x1, 0x1cb, 0x1, 0x80000004, 0x6, 0x438, 0x77, 0x9, 0x99, 0x7fffffff, 0x4, 0xfffffff9, 0x1, 0x1000, 0xfffff801, 0x5], [0x4, 0xfffffffe, 0xffff, 0x637b, 0x2, 0x2e6bf783, 0x80000001, 0x5, 0x5, 0x491, 0x800008d3, 0x200006, 0x8, 0x400, 0x2, 0x400, 0x41, 0x6, 0xee4b, 0x2000004, 0x1, 0x8000003, 0x5, 0x9, 0xa, 0x3, 0x9, 0x1, 0xc7, 0xfff, 0x10000a, 0x10000002, 0x400, 0x3e55, 0x5, 0xd3, 0x8, 0x3436, 0x3, 0xd, 0x3, 0x601, 0x0, 0xdd80, 0x60a0, 0x7f, 0x9d26, 0x10000, 0x1, 0x2, 0x2, 0x6, 0x8000, 0xf45, 0x3, 0xd500, 0x2, 0x7a, 0x9, 0x6, 0x10000, 0xfffffffd, 0x8, 0x1], [0xa772, 0x6, 0x5, 0x1afa, 0xbfc, 0x8, 0x5, 0x7f, 0x6300, 0x40, 0xfb, 0x1005, 0x1, 0x7, 0x1e, 0x9, 0x81, 0x3, 0x9d86, 0xd, 0xfffffff7, 0x8, 0x140f2, 0x5396, 0x3, 0x6, 0x80008001, 0x7777, 0x1, 0x2, 0x100, 0xd8ce, 0x7fffffff, 0x100009, 0x8, 0x32d, 0x0, 0x1ff, 0x2000803, 0xfffffffc, 0x10000, 0x0, 0x8004, 0x7fff, 0x3, 0x7, 0xc, 0xe, 0x5337, 0x26d, 0x6, 0xfffffff9, 0x4, 0xfffffff9, 0x9, 0x4, 0x463f, 0x4, 0x2, 0x6, 0x8, 0x14000, 0x1, 0x9]}, 0x45c)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x35, 0xfff, 0xfffffffffffffffe, 0x40000000000180, 0x2, 0x5, 0xf5, 0xf, 0x5, 0x6, 0x7, 0x1, 0x4, 0x5, 0x4, 0x8], 0x25000, 0x100400})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
newfstatat(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, <r3=>0x0}, 0x4000)
setresuid(0x0, 0x0, r3)
getresuid(&(0x7f0000000440), &(0x7f0000000480), &(0x7f0000000400))
ioctl$KVM_RUN(r2, 0xae80, 0x0)
r4 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r5 = dup(r4)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f00000000c0)="c20000361e0f01c3660fd2eff30f10f1b961020000b80e000000ba000000000f30b98d0200000f320b99f3530000660f6af7c4e2f91d20", 0x37}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text32={0x20, 0x0}], 0x1, 0x50, 0x0, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

319.819251ms ago: executing program 5 (id=621):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x10)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', 0x0, 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000002140)={0x2020, 0x0, <r1=>0x0}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f0000006180)="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", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x90, 0x0, 0x0, {0x1, 0x2, 0xfffffffffffffffe, 0x8, 0x0, 0x0, {0x42, 0x3, 0x6, 0xffff, 0x1000, 0xfffffffffffffffc, 0x0, 0x0, 0x7, 0x2000, 0x0, 0x0, 0x0, 0x501, 0x10000004}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r0, &(0x7f0000000440)={0x50, 0x0, r1, {0x7, 0x29, 0x2, 0x14c0348, 0x40, 0x1, 0xfffffff1, 0x0, 0x0, 0x0, 0x80, 0x7fffffff}}, 0x50)
openat(0xffffffffffffff9c, &(0x7f00000013c0)='./file0/file0\x00', 0x42, 0x0)

155.147851ms ago: executing program 3 (id=622):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000340)={0x1, &(0x7f0000000000)=[{0x6, 0xf, 0x0, 0x7fff8000}]})
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f0000000200)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x2}}, {@bsdgroups}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@noauto_da_alloc}, {@bsdgroups}, {@oldalloc}, {@errors_continue}]}, 0x2, 0x45d, &(0x7f0000000ac0)="$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")
fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000002740)={@broadcast, @empty, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x5, 0x0, 0x0, 0x3, 0x0, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2f, 0x0, @loopback, @dev}}}}}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000001c0)=ANY=[@ANYRESDEC], &(0x7f0000000000)='syzkaller\x00', 0x1, 0x0, 0x0, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file1\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000280), 0x12)
r3 = add_key$keyring(&(0x7f00000000c0), &(0x7f0000000040)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
request_key(&(0x7f0000000100)='asymmetric\x00', &(0x7f0000000140)={'syz', 0x1}, &(0x7f0000000180)='asymmetPic@\xe6u\x18\x8f\x8d\xd0\xb9\xb4d\x97\xee\x9bY\xb3\xa0dI$(\xed\x98S\xdcB\xdf\x99J\x9c&#m\xd0\xb0\x134m\xa7se\x8fvS\x84:\"-\x94\x84\xbd\xf4X\xf2F6\xe44\x1f\xa7f\x82\xd7aLt@%a\x8a\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xbf\xb4\xc6m39\x9e)\xa5\xe7\xdb\xdc\xb3\xb6\x1f\x1d5\x13\xde\xab\x86\xf5`S<\xd5\xc7@-X0\xa9\xe4l\xab\xf0}\xf0\xeaco\x85kM\x8a<Z\x02\xfc\xb6E\x8c&\f\xb4)l\x93\xb8\xb1\xcfK\x0e\xben \xc3\xc5xH\xa5\t\xcc\"\xcd\xe2\xbb>S\x1bZ\xa1\xba\xb4E\xbc', r3)
munmap(&(0x7f0000ffb000/0x3000)=nil, 0x3000)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x0, 0x0})
clock_settime(0x0, &(0x7f0000000240)={0x77359400})
mkdirat(0xffffffffffffff9c, 0x0, 0x64)
keyctl$restrict_keyring(0xa, r3, &(0x7f0000000300)='asymmetric\x00', &(0x7f0000000000)='id:cb2e')
bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0e0000000400"], 0x50)
mkdir(0x0, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x20040, 0x0)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x89f0, &(0x7f0000000180)={'bridge0\x00', &(0x7f0000000100)=@ethtool_ringparam={0x11, 0x0, 0x20040001, 0x0, 0x2, 0x0, 0x0, 0x0, 0x4}})
r4 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000440)=@raw={'raw\x00', 0x8, 0x3, 0x4c8, 0x0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x3f8, 0xffffffff, 0xffffffff, 0x3f8, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'bridge0\x00'}, 0x0, 0x148, 0x170, 0x0, {}, [@common=@unspec=@helper={{0x48}}, @common=@inet=@hashlimit1={{0x58}, {'bond_slave_1\x00', {0x41, 0x1ff, 0x6, 0xb0e2, 0x10001, 0x84e, 0xfffffffb, 0x18, 0x8}, {0x1}}}]}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'erspan0\x00', 'gre0\x00', {0xff}, {}, 0x0, 0x0, 0x0, 0x4b}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'vcan0\x00', {0x3, 0x0, 0x41, 0xfffffffe, 0x2, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x528)

68.874396ms ago: executing program 5 (id=623):
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0xf, 0x0, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x4b, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000180), r0)
bind$inet6(0xffffffffffffffff, &(0x7f0000000140)={0xa, 0x4e22, 0x0, @rand_addr=' \x01\x00', 0x4}, 0x1c)
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x1208002, &(0x7f0000000100)={[{@grpquota}, {@delalloc}, {@resuid}, {@debug}, {@dioread_nolock}, {}, {@nomblk_io_submit}, {@noauto_da_alloc}]}, 0x1, 0x5d8, &(0x7f00000005c0)="$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")
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='mountinfo\x00')
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/crypto\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
read$FUSE(r2, &(0x7f0000002640)={0x2020}, 0x2020)
mount(&(0x7f0000000300), &(0x7f0000000080)='.\x00', &(0x7f0000002600)='binder\x00', 0x2200892, 0x0)
munlock(&(0x7f000038b000/0x1000)=nil, 0x1000)
read$FUSE(r1, &(0x7f00000005c0)={0x2020}, 0x2020)
socket$inet_tcp(0x2, 0x1, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0))
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180200001000000000000000030000001801000064046c250000ffffffff20207b1af8ff00000000bfa100000000000007010000f8ffffffb7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, 0xffffffffffffffff, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.time\x00', 0x26e1, 0x0)
symlink(&(0x7f00000005c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', &(0x7f00000002c0)='.\x02\x00')

0s ago: executing program 6 (id=624):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
socket$inet6_tcp(0xa, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000001c0)=0x5)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
syz_clone(0x0, 0x0, 0x9, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
getrlimit(0xe, 0x0)
ptrace$ARCH_GET_GS(0x1e, r0, &(0x7f0000000000), 0x1004)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r3, &(0x7f0000000440), 0x10)
listen(r3, 0x0)
r4 = socket$vsock_stream(0x28, 0x1, 0x0)
r5 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r5}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
setsockopt$sock_linger(r4, 0x1, 0xd, &(0x7f0000000180)={0x2, 0x5}, 0x8)
connect$vsock_stream(r4, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
sendto$packet(r4, &(0x7f0000000600)="5f0e", 0x2, 0x44, 0x0, 0x0)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x4, 0x4, 0x7fff0000}]})
close_range(r6, 0xffffffffffffffff, 0x0)
syz_usb_disconnect(0xffffffffffffffff)

kernel console output (not intermixed with test programs):

   79.275482][ T4233] usb 5-1: config 1 interface 2 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[   79.431667][ T4393] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[   79.442947][ T4233] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[   79.469731][ T4233] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   79.479848][ T4233] usb 5-1: Product: syz
[   79.484189][ T2302] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[   79.502153][ T4233] usb 5-1: Manufacturer: syz
[   79.506803][ T4233] usb 5-1: SerialNumber: syz
[   79.613877][ T4301] tipc: Node number set to 2130706433
[   79.862219][ T2302] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   79.879617][ T4408] loop1: detected capacity change from 0 to 40427
[   79.886268][ T2302] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   79.957575][ T4384] team0: Port device team_slave_0 removed
[   79.973764][ T4408] F2FS-fs (loop1): invalid crc value
[   79.982328][ T2302] usb 4-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[   79.997033][ T2302] usb 4-1: New USB device strings: Mfr=2, Product=0, SerialNumber=0
[   80.009990][ T4408] F2FS-fs (loop1): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 10241044815247771109)
[   80.061762][ T2302] usb 4-1: Manufacturer: syz
[   80.091346][ T2302] usb 4-1: config 0 descriptor??
[   80.195379][ T4408] F2FS-fs (loop1): Start checkpoint disabled!
[   80.211356][ T4408] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[   80.285910][ T4233] usb 5-1: USB disconnect, device number 3
[   80.343016][ T4380] attempt to access beyond end of device
[   80.343016][ T4380] loop1: rw=2049, want=45112, limit=40427
[   80.360230][ T4301] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[   80.577805][ T4409] loop3: detected capacity change from 0 to 512
[   80.642005][ T4301] usb 1-1: Using ep0 maxpacket: 32
[   80.657335][ T4409] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[   80.740886][ T4409] EXT4-fs error (device loop3): ext4_orphan_get:1400: inode #17: comm syz.3.34: inode has both inline data and extents flags
[   80.791668][ T4409] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.34: couldn't read orphan inode 17 (err -117)
[   80.808111][ T4409] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[   80.812549][ T4301] usb 1-1: config 0 has an invalid interface number: 184 but max is 0
[   80.890534][ T4301] usb 1-1: config 0 has no interface number 0
[   80.903312][ T4301] usb 1-1: config 0 interface 184 has no altsetting 0
[   81.072867][ T4301] usb 1-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[   81.100438][ T4301] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   81.112425][ T4301] usb 1-1: Product: syz
[   81.117057][ T4301] usb 1-1: Manufacturer: syz
[   81.128546][ T4301] usb 1-1: SerialNumber: syz
[   81.165914][ T4301] usb 1-1: config 0 descriptor??
[   81.213306][ T4301] smsc75xx v1.0.0
[   81.348401][ T2302] input: syz Pen as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:256C:006D.0002/input/input5
[   81.383343][ T4431] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 65: padding at end of block bitmap is not set
[   81.477487][ T2302] input: syz Pad as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:256C:006D.0002/input/input6
[   81.512297][ T2302] uclogic 0003:256C:006D.0002: input,hidraw0: USB HID v0.00 Keypad [syz] on usb-dummy_hcd.3-1/input0
[   81.586251][ T2302] usb 4-1: USB disconnect, device number 3
[   81.749892][ T4442] fido_id[4442]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/4-1/report_descriptor': No such file or directory
[   81.896365][ T4446] mmap: syz.2.43 (4446) uses deprecated remap_file_pages() syscall. See Documentation/vm/remap_file_pages.rst.
[   81.952090][ T4233] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[   82.194098][ T4233] usb 5-1: Using ep0 maxpacket: 32
[   82.301166][ T4455] loop1: detected capacity change from 0 to 1024
[   82.317582][ T4233] usb 5-1: config index 0 descriptor too short (expected 29220, got 36)
[   82.332098][ T4233] usb 5-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[   82.341227][ T4233] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 81
[   82.354640][ T4233] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[   82.363492][ T4455] =======================================================
[   82.363492][ T4455] WARNING: The mand mount option has been deprecated and
[   82.363492][ T4455]          and is ignored by this kernel. Remove the mand
[   82.363492][ T4455]          option from the mount to silence this warning.
[   82.363492][ T4455] =======================================================
[   82.396596][ T4233] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[   82.447889][ T4233] usb 5-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[   82.475743][ T4233] usb 5-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[   82.486213][ T4233] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   82.508571][ T4233] usb 5-1: config 0 descriptor??
[   82.517140][ T4455] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[   82.552734][   T23] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[   82.651575][   T26] audit: type=1800 audit(1769794619.946:2): pid=4455 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.46" name="file1" dev="loop1" ino=13 res=0 errno=0
[   82.724322][ T4455] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:3887: comm syz.1.46: Allocating blocks 497-513 which overlap fs metadata
[   82.742997][ T4455] EXT4-fs (loop1): pa ffff8880745cb380: logic 256, phys. 385, len 8
[   82.751392][ T4455] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:4904: group 0, free 0, pa_free 1
[   82.782121][ T4301] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000040: -71
[   82.798936][ T4301] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Error writing E2P_CMD
[   82.809785][ T4233] usblp 5-1:0.0: usblp0: USB Bidirectional printer dev 4 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[   82.821999][   T23] usb 4-1: Using ep0 maxpacket: 8
[   82.853067][ T4301] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71
[   82.866415][ T4452] EXT4-fs error (device loop1): mb_free_blocks:1876: group 0, inode 15: block 129:freeing already freed block (bit 8); block bitmap corrupt.
[   82.873176][ T4233] usb 5-1: USB disconnect, device number 4
[   82.908666][ T4301] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -71
[   82.922173][ T4301] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): device not ready in smsc75xx_reset
[   82.946330][ T4233] usblp0: removed
[   82.962879][ T4301] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -71
[   82.992376][   T23] usb 4-1: config 0 interface 0 altsetting 41 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[   83.008286][ T4301] smsc75xx: probe of 1-1:0.184 failed with error -71
[   83.015485][   T23] usb 4-1: config 0 interface 0 has no altsetting 0
[   83.048256][   T23] usb 4-1: New USB device found, idVendor=0458, idProduct=501a, bcdDevice= 0.00
[   83.063274][ T4301] usb 1-1: USB disconnect, device number 4
[   83.102684][   T23] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   83.129504][   T23] usb 4-1: config 0 descriptor??
[   83.482296][ T4233] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[   83.718194][   T23] kye 0003:0458:501A.0003: hidraw0: USB HID v0.09 Device [HID 0458:501a] on usb-dummy_hcd.3-1/input0
[   83.722652][ T4233] usb 5-1: Using ep0 maxpacket: 32
[   83.746696][   T23] kye 0003:0458:501A.0003: tablet-enabling feature report not found
[   83.910049][   T23] kye 0003:0458:501A.0003: tablet enabling failed
[   84.475077][   T23] usb 4-1: USB disconnect, device number 4
[   84.700422][ T4488] fido_id[4488]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory
[   84.782047][ T4233] usb 5-1: unable to read config index 0 descriptor/all
[   84.789141][ T4233] usb 5-1: can't read configurations, error -71
[   84.831803][ T4494] loop3: detected capacity change from 0 to 1024
[   84.842282][ T4301] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[   84.884589][ T4494] EXT4-fs (loop3): Ignoring removed nomblk_io_submit option
[   84.893870][ T4496] netlink: 4 bytes leftover after parsing attributes in process `syz.4.58'.
[   84.932221][ T4494] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[   84.953828][ T4498] loop1: detected capacity change from 0 to 512
[   84.998491][ T4494] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[   85.016686][ T4494] System zones: 0-1, 3-36
[   85.062139][ T4301] usb 3-1: device descriptor read/64, error -71
[   85.077924][ T4494] EXT4-fs (loop3): mounted filesystem without journal. Opts: grpquota,delalloc,resuid=0x0000000000000000,debug,dioread_nolock,bsddf,nomblk_io_submit,noauto_da_alloc,,errors=continue. Quota mode: writeback.
[   85.114466][ T4498] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[   85.179220][ T4498] EXT4-fs error (device loop1): ext4_validate_block_bitmap:420: comm syz.1.59: bg 0: bad block bitmap checksum
[   85.300846][ T4498] Quota error (device loop1): write_blk: dquota write failed
[   85.329654][ T4498] Quota error (device loop1): qtree_write_dquot: Error -28 occurred while creating quota
[   85.412408][ T4498] EXT4-fs error (device loop1): ext4_acquire_dquot:6234: comm syz.1.59: Failed to acquire dquot type 0
[   85.492007][ T4301] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[   85.805811][ T4301] usb 3-1: device descriptor read/64, error -71
[   86.455748][ T4498] syz.1.59 (4498) used greatest stack depth: 20440 bytes left
[   86.582169][ T4301] usb usb3-port1: attempt power cycle
[   86.675149][ T1325] cfg80211: failed to load regulatory.db
[   87.022003][   T21] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[   87.042024][ T4301] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[   87.152516][ T4301] usb 3-1: device descriptor read/8, error -71
[   87.423577][   T21] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   87.434570][ T4301] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[   87.542202][ T4301] usb 3-1: device descriptor read/8, error -71
[   87.587824][ T4537] loop2: detected capacity change from 0 to 512
[   87.612259][   T21] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[   87.635353][   T21] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   87.654023][   T21] usb 2-1: Product: syz
[   87.658248][   T21] usb 2-1: Manufacturer: syz
[   87.663525][ T4301] usb usb3-port1: unable to enumerate USB device
[   87.690249][   T21] usb 2-1: SerialNumber: syz
[   87.734301][ T4537] EXT4-fs (loop2): mounted filesystem without journal. Opts: noauto_da_alloc,barrier=0x0000000000000008,noquota,norecovery,bsddf,,errors=continue. Quota mode: writeback.
[   87.767519][ T4537] ext4 filesystem being mounted at /15/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   87.874411][ T4537] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2922: inode #15: comm syz.2.69: corrupted xattr block 32
[   87.928929][ T4537] EXT4-fs warning (device loop2): ext4_evict_inode:302: xattr delete (err -117)
[   88.172144][ T4548] netlink: 8 bytes leftover after parsing attributes in process `syz.2.72'.
[   88.190781][ T4533] loop3: detected capacity change from 0 to 40427
[   88.198305][ T4548] netlink: 8 bytes leftover after parsing attributes in process `syz.2.72'.
[   88.214468][ T4546] netlink: 4 bytes leftover after parsing attributes in process `syz.0.73'.
[   88.287064][ T4552] fuse: Unknown parameter '00000000000000000000003'
[   88.317789][ T4533] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[   88.332409][ T4533] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[   88.392301][   T21] cdc_ncm 2-1:1.0: failed GET_NTB_PARAMETERS
[   88.399606][ T4533] F2FS-fs (loop3): Found nat_bits in checkpoint
[   88.407855][   T21] cdc_ncm 2-1:1.0: bind() failure
[   88.428254][ T4559] loop4: detected capacity change from 0 to 512
[   88.440041][   T21] cdc_ncm 2-1:1.1: CDC Union missing and no IAD found
[   88.473952][   T21] cdc_ncm 2-1:1.1: bind() failure
[   88.534890][ T4533] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[   88.545023][ T4533] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[   88.613114][ T4559] EXT4-fs (loop4): 1 truncate cleaned up
[   88.642706][ T4559] EXT4-fs (loop4): mounted filesystem without journal. Opts: bsddf,,errors=continue. Quota mode: none.
[   88.666978][   T26] audit: type=1800 audit(1769794625.966:3): pid=4559 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.77" name="file1" dev="loop4" ino=13 res=0 errno=0
[   89.947065][ T4301] usb 2-1: USB disconnect, device number 3
[   90.142524][ T4589] fuse: Unknown parameter '00000000000000000000003'
[   90.516747][ T4604] netlink: 4 bytes leftover after parsing attributes in process `syz.0.90'.
[   90.798768][ T4485] attempt to access beyond end of device
[   90.798768][ T4485] loop3: rw=1, want=45152, limit=40427
[   91.102342][ T4254] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[   91.186200][ T4614] loop0: detected capacity change from 0 to 128
[   91.276684][ T4616] loop4: detected capacity change from 0 to 512
[   91.330613][ T4614] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[   91.342045][ T4614] ext4 filesystem being mounted at /19/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   91.407172][ T4619] capability: warning: `syz.3.93' uses 32-bit capabilities (legacy support in use)
[   91.489066][ T4616] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[   91.522342][ T4254] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   91.569348][ T4616] ext4 filesystem being mounted at /14/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   91.753357][ T4254] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[   91.786681][ T4254] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   91.830562][ T4254] usb 3-1: Product: syz
[   91.852020][ T4254] usb 3-1: Manufacturer: syz
[   91.856694][ T4254] usb 3-1: SerialNumber: syz
[   92.060036][ T4631] loop0: detected capacity change from 0 to 1024
[   92.195850][ T4634] fuse: Unknown parameter '00000000000000000000003'
[   93.135661][ T4631] EXT4-fs (loop0): mounted filesystem without journal. Opts: nojournal_checksum,noquota,errors=remount-ro,grpquota,. Quota mode: writeback.
[   93.177876][ T4635] loop3: detected capacity change from 0 to 40427
[   93.218936][ T4630] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1163: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[   93.242212][ T4635] F2FS-fs (loop3): Invalid segment/section count (24 != 2 * 1)
[   93.250638][ T4635] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[   93.260749][ T4635] F2FS-fs (loop3): build fault injection attr: rate: 6, type: 0x1ffff
[   93.271163][ T4635] F2FS-fs (loop3) : inject page alloc in f2fs_grab_cache_page of __get_meta_page+0x180/0x4a0
[   93.282734][    C1] F2FS-fs (loop3) : inject read IO error in f2fs_read_end_io of blk_update_request+0x876/0x1200
[   93.309954][ T4635] F2FS-fs (loop3) : inject kvmalloc in f2fs_kvmalloc of f2fs_fill_super+0x4480/0x6de0
[   93.319683][ T4635] F2FS-fs (loop3): Failed to initialize F2FS segment manager (-12)
[   93.341620][ T4630] EXT4-fs (loop0): Remounting filesystem read-only
[   93.541022][ T4655] netlink: 4 bytes leftover after parsing attributes in process `syz.1.105'.
[   93.612073][ T4254] cdc_ncm 3-1:1.0: failed GET_NTB_PARAMETERS
[   93.618161][ T4254] cdc_ncm 3-1:1.0: bind() failure
[   93.639180][ T4254] cdc_ncm 3-1:1.1: CDC Union missing and no IAD found
[   93.669032][ T4658] netlink: 348 bytes leftover after parsing attributes in process `syz.3.106'.
[   93.677037][ T4254] cdc_ncm 3-1:1.1: bind() failure
[   93.740113][ T4658] netlink: 56 bytes leftover after parsing attributes in process `syz.3.106'.
[   93.881077][ T4667] loop3: detected capacity change from 0 to 128
[   93.956510][ T4669] loop0: detected capacity change from 0 to 256
[   93.965161][ T4667] EXT4-fs (loop3): Ignoring removed nobh option
[   93.990515][ T4667] EXT4-fs (loop3): mounted filesystem without journal. Opts: nobh,abort,,errors=continue. Quota mode: none.
[   94.004631][ T4667] ext4 filesystem being mounted at /22/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   94.033164][ T4667] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5854: Corrupt filesystem
[   94.044627][ T4667] EXT4-fs error (device loop3): ext4_ext_tree_init:872: inode #12: comm syz.3.108: mark_inode_dirty error
[   94.071071][ T4669] FAT-fs (loop0): Unrecognized mount option "dmk=00000000000000000046613" or missing value
[   94.093488][ T4667] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5854: Corrupt filesystem
[   94.156504][ T4667] EXT4-fs error (device loop3): __ext4_new_inode:1350: inode #12: comm syz.3.108: mark_inode_dirty error
[   94.212638][ T4667] EXT4-fs error (device loop3) in __ext4_new_inode:1352: Corrupt filesystem
[   94.257612][ T4667] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5854: Corrupt filesystem
[   94.354407][ T4667] EXT4-fs error (device loop3): ext4_evict_inode:282: inode #12: comm syz.3.108: mark_inode_dirty error
[   94.388122][ T4667] EXT4-fs warning (device loop3): ext4_evict_inode:285: couldn't mark inode dirty (err -117)
[   94.639364][ T4254] usb 3-1: USB disconnect, device number 6
[   94.834659][ T4690] loop1: detected capacity change from 0 to 128
[   94.939722][ T4690] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[   94.962065][ T4690] ext4 filesystem being mounted at /22/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   95.290588][ T4669] loop0: detected capacity change from 0 to 40427
[   95.373680][ T4669] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[   95.431053][ T4669] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[   95.482172][ T4669] F2FS-fs (loop0): Unrecognized mount option "…ê6T‰ºèÆÆn!$2½ä)¼Ú}ëHØ\o^&œ !ÈøÜ	¯?.è¬yÌgâda<K惎âÚ¬÷’jn" or missing value
[   95.520508][ T4681] loop3: detected capacity change from 0 to 40427
[   95.659690][ T4707] netlink: 4 bytes leftover after parsing attributes in process `syz.1.121'.
[   95.716830][ T4681] F2FS-fs (loop3): Found nat_bits in checkpoint
[   95.929662][ T4681] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[   96.074646][   T26] audit: type=1804 audit(1769794633.376:4): pid=4681 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.112" name="/newroot/23/file0/bus" dev="loop3" ino=10 res=1 errno=0
[   96.409369][ T4198] attempt to access beyond end of device
[   96.409369][ T4198] loop3: rw=2049, want=45104, limit=40427
[   96.581988][ T4254] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[   97.052835][ T2302] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[   97.194836][ T4743] loop0: detected capacity change from 0 to 512
[   97.222419][ T4254] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   97.305002][ T4743] EXT4-fs (loop0): Ignoring removed nobh option
[   97.311612][ T4743] EXT4-fs (loop0): Unrecognized mount option "fscontext=staff_u" or missing value
[   97.623384][ T4254] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[   97.723911][ T4254] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   97.897439][ T4254] usb 5-1: Product: syz
[   97.976630][ T4254] usb 5-1: Manufacturer: syz
[   98.057288][ T4254] usb 5-1: SerialNumber: syz
[   98.791896][    C0] sched: RT throttling activated
[   99.432156][ T4254] cdc_ncm 5-1:1.0: failed GET_NTB_PARAMETERS
[   99.438248][ T4254] cdc_ncm 5-1:1.0: bind() failure
[   99.487161][ T4254] cdc_ncm 5-1:1.1: CDC Union missing and no IAD found
[   99.526535][ T4254] cdc_ncm 5-1:1.1: bind() failure
[  100.072124][ T2302] usb 2-1: device descriptor read/all, error -71
[  100.261121][ T4762] netlink: 4 bytes leftover after parsing attributes in process `syz.3.138'.
[  100.456768][ T4254] usb 5-1: USB disconnect, device number 7
[  100.589497][ T4777] loop1: detected capacity change from 0 to 256
[  100.613061][ T4779] loop0: detected capacity change from 0 to 512
[  100.679866][ T4779] EXT4-fs (loop0): Test dummy encryption mode enabled
[  100.686730][ T4777] FAT-fs (loop1): Directory bread(block 64) failed
[  100.686796][ T4777] FAT-fs (loop1): Directory bread(block 65) failed
[  100.686870][ T4777] FAT-fs (loop1): Directory bread(block 66) failed
[  100.715311][ T4781] Zero length message leads to an empty skb
[  100.723037][ T4779] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  100.752713][ T4777] FAT-fs (loop1): Directory bread(block 67) failed
[  100.772101][ T4777] FAT-fs (loop1): Directory bread(block 68) failed
[  100.778689][ T4777] FAT-fs (loop1): Directory bread(block 69) failed
[  100.797002][ T4777] FAT-fs (loop1): Directory bread(block 70) failed
[  100.812199][ T4779] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  100.843379][ T4777] FAT-fs (loop1): Directory bread(block 71) failed
[  100.850036][ T4777] FAT-fs (loop1): Directory bread(block 72) failed
[  100.865743][ T4777] FAT-fs (loop1): Directory bread(block 73) failed
[  100.874725][ T4779] EXT4-fs error (device loop0): ext4_orphan_get:1426: comm syz.0.143: bad orphan inode 131083
[  100.979075][ T4779] EXT4-fs (loop0): mounted filesystem without journal. Opts: test_dummy_encryption,init_itable,noload,,errors=continue. Quota mode: none.
[  101.074275][ T4789] loop2: detected capacity change from 0 to 512
[  101.117560][   T26] audit: type=1800 audit(1769794638.416:5): pid=4777 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.144" name="file1" dev="loop1" ino=1048593 res=0 errno=0
[  101.148008][ T4789] EXT4-fs (loop2): Ignoring removed nobh option
[  101.158867][ T4779] EXT4-fs error (device loop0): ext4_lookup:1858: inode #15: comm syz.0.143: iget: bad extra_isize 1312 (inode size 256)
[  101.199740][ T4789] fscrypt (loop2, inode 2): Error -61 getting encryption context
[  101.221383][ T4777] attempt to access beyond end of device
[  101.221383][ T4777] loop1: rw=0, want=1772, limit=256
[  101.265059][ T4789] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -61
[  101.413559][ T4789] EXT4-fs error (device loop2): ext4_orphan_get:1400: inode #13: comm syz.2.146: inode has both inline data and extents flags
[  101.495357][ T4789] EXT4-fs error (device loop2): ext4_orphan_get:1405: comm syz.2.146: couldn't read orphan inode 13 (err -117)
[  101.530231][ T4789] EXT4-fs (loop2): mounted filesystem without journal. Opts: jqfmt=vfsold,nouid32,nobh,stripe=0x000000000000ffff,block_validity,grpjquota=",errors=continue. Quota mode: writeback.
[  103.843368][ T4794] fscrypt (loop0): Missing crypto API support for AES-256-XTS (API name: "xts(aes)")
[  104.576080][ T4823] xt_hashlimit: size too large, truncated to 1048576
[  104.623036][   T23] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  104.824964][ T4829] loop1: detected capacity change from 0 to 1024
[  104.862485][ T4829] EXT4-fs (loop1): Ignoring removed bh option
[  104.910307][ T4829] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  105.011622][ T4829] EXT4-fs (loop1): mounted filesystem without journal. Opts: delalloc,data_err=abort,barrier=0x0000000000000003,nodioread_nolock,bh,max_dir_size_kb=0x00000000004007b1,data_err=ignore,nouid32,quota,user_xattr,stripe=0x0000000000000009,dioread_nolock,,errors=continue. Quota mode: writeback.
[  105.042317][   T23] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  105.161599][ T4837] loop0: detected capacity change from 0 to 512
[  105.242444][   T23] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  105.254415][   T23] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  105.268029][ T4837] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  105.268819][   T23] usb 5-1: Product: syz
[  105.292391][   T23] usb 5-1: Manufacturer: syz
[  105.300528][   T23] usb 5-1: SerialNumber: syz
[  105.314574][ T4837] ext4 filesystem being mounted at /35/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  105.456092][ T4837] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.156: bg 0: block 217: padding at end of block bitmap is not set
[  105.616619][ T4829] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:3887: comm syz.1.154: Allocating blocks 497-513 which overlap fs metadata
[  105.645115][ T4829] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:3887: comm syz.1.154: Allocating blocks 497-513 which overlap fs metadata
[  105.706770][ T4829] EXT4-fs (loop1): pa ffff888074690a80: logic 256, phys. 401, len 7
[  105.715519][ T4829] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:4904: group 0, free 0, pa_free 1
[  105.992051][   T23] cdc_ncm 5-1:1.0: failed GET_NTB_PARAMETERS
[  105.998148][   T23] cdc_ncm 5-1:1.0: bind() failure
[  106.054776][   T23] cdc_ncm 5-1:1.1: CDC Union missing and no IAD found
[  106.101861][   T23] cdc_ncm 5-1:1.1: bind() failure
[  106.875430][ T4847] loop1: detected capacity change from 0 to 512
[  106.953428][ T4847] EXT4-fs (loop1): orphan cleanup on readonly fs
[  106.988264][ T4847] EXT4-fs error (device loop1): ext4_ext_check_inode:501: inode #4: comm syz.1.158: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 1(1)
[  107.073041][ T4847] EXT4-fs error (device loop1): ext4_quota_enable:6445: comm syz.1.158: Bad quota inode: 4, type: 1
[  107.120743][ T4847] EXT4-fs warning (device loop1): ext4_enable_quotas:6486: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  107.180805][ T4847] EXT4-fs (loop1): Cannot turn on quotas: error -117
[  107.208297][ T4847] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  107.369721][ T1107] usb 5-1: USB disconnect, device number 8
[  107.525304][ T4853] loop4: detected capacity change from 0 to 256
[  107.692038][ T4853] FAT-fs (loop4): Directory bread(block 64) failed
[  107.698654][ T4853] FAT-fs (loop4): Directory bread(block 65) failed
[  107.749608][ T4853] FAT-fs (loop4): Directory bread(block 66) failed
[  107.776999][ T4853] FAT-fs (loop4): Directory bread(block 67) failed
[  107.806247][ T4853] FAT-fs (loop4): Directory bread(block 68) failed
[  107.812921][ T4853] FAT-fs (loop4): Directory bread(block 69) failed
[  107.819582][ T4853] FAT-fs (loop4): Directory bread(block 70) failed
[  107.826206][ T4853] FAT-fs (loop4): Directory bread(block 71) failed
[  107.832937][ T4853] FAT-fs (loop4): Directory bread(block 72) failed
[  107.839492][ T4853] FAT-fs (loop4): Directory bread(block 73) failed
[  108.156915][ T4859] fuse: root generation should be zero
[  109.490085][ T4898] loop1: detected capacity change from 0 to 256
[  109.548300][   T26] audit: type=1326 audit(1769794646.846:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4896 comm="syz.1.173" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5619ad6eb9 code=0x0
[  109.572143][   T21] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  109.972267][   T21] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  110.272062][   T21] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  110.281166][   T21] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  110.306675][   T21] usb 4-1: Product: syz
[  110.311022][   T21] usb 4-1: Manufacturer: syz
[  110.334408][   T21] usb 4-1: SerialNumber: syz
[  111.302927][   T21] cdc_ncm 4-1:1.0: failed GET_NTB_PARAMETERS
[  111.312516][   T21] cdc_ncm 4-1:1.0: bind() failure
[  111.326623][   T21] cdc_ncm 4-1:1.1: CDC Union missing and no IAD found
[  111.333970][   T21] cdc_ncm 4-1:1.1: bind() failure
[  112.579240][ T2302] usb 4-1: USB disconnect, device number 5
[  112.801113][ T4945] loop0: detected capacity change from 0 to 1024
[  112.934069][ T4953] loop2: detected capacity change from 0 to 256
[  112.942820][ T4945] EXT4-fs (loop0): Ignoring removed orlov option
[  112.949241][ T4945] EXT4-fs (loop0): Ignoring removed nomblk_io_submit option
[  112.973073][ T4956] netlink: 4 bytes leftover after parsing attributes in process `syz.1.189'.
[  112.995063][ T4953] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  113.006327][ T4945] EXT4-fs (loop0): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  113.043991][ T4953] exFAT-fs (loop2): Medium has reported failures. Some data may be lost.
[  113.091348][ T4945] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e055c01c, mo2=0002]
[  113.116791][ T4945] System zones: 0-1, 3-36
[  113.146676][ T4953] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  113.165278][ T4945] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpquota,resgid=0x0000000000000000,resuid=0x0000000000000000,debug,dioread_nolock,orlov,nomblk_io_submit,noauto_da_alloc,,errors=continue. Quota mode: writeback.
[  113.490430][ T4937] kernel profiling enabled (shift: 17)
[  113.857242][ T4976] loop1: detected capacity change from 0 to 256
[  113.969893][ T4964] loop3: detected capacity change from 0 to 40427
[  113.991645][ T4976] FAT-fs (loop1): Directory bread(block 64) failed
[  114.006289][ T4976] FAT-fs (loop1): Directory bread(block 65) failed
[  114.023370][ T4976] FAT-fs (loop1): Directory bread(block 66) failed
[  114.030695][ T4976] FAT-fs (loop1): Directory bread(block 67) failed
[  114.040322][ T4976] FAT-fs (loop1): Directory bread(block 68) failed
[  114.049502][ T4976] FAT-fs (loop1): Directory bread(block 69) failed
[  114.061069][ T4976] FAT-fs (loop1): Directory bread(block 70) failed
[  114.070602][ T4976] FAT-fs (loop1): Directory bread(block 71) failed
[  114.081239][ T4976] FAT-fs (loop1): Directory bread(block 72) failed
[  114.092102][ T4964] F2FS-fs (loop3): Invalid SB checksum offset: 0
[  114.098592][ T4964] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock
[  114.121179][ T4976] FAT-fs (loop1): Directory bread(block 73) failed
[  114.144613][ T4964] F2FS-fs (loop3): invalid crc value
[  114.182011][   T23] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  114.195122][ T4964] F2FS-fs (loop3): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437)
[  114.336931][ T4964] F2FS-fs (loop3): Try to recover 2th superblock, ret: 0
[  114.348781][ T4964] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  114.466688][ T4977] loop4: detected capacity change from 0 to 40427
[  114.490392][ T4977] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  114.501596][ T4198] attempt to access beyond end of device
[  114.501596][ T4198] loop3: rw=2049, want=45104, limit=40427
[  114.515027][ T4977] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  114.527959][ T4977] F2FS-fs (loop4): invalid crc value
[  114.532381][   T21] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  114.560596][ T4977] F2FS-fs (loop4): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 9809626597)
[  114.612268][   T23] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  114.652999][ T4977] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  114.660111][ T4977] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  114.744987][ T4977] fscrypt (loop4, inode 3): Error -61 getting encryption context
[  114.782390][   T21] usb 2-1: Using ep0 maxpacket: 16
[  114.813847][   T23] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  114.832220][   T23] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  114.840368][   T23] usb 3-1: Product: syz
[  114.861934][   T23] usb 3-1: Manufacturer: syz
[  114.866794][   T23] usb 3-1: SerialNumber: syz
[  114.953458][   T21] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  114.988132][   T21] usb 2-1: config 1 interface 0 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 13
[  115.016970][   T21] usb 2-1: config 1 interface 1 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  115.178074][ T4996] loop4: detected capacity change from 0 to 128
[  115.263622][   T21] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  115.284007][   T21] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  115.292508][   T21] usb 2-1: Product: syz
[  115.296826][   T21] usb 2-1: Manufacturer: syz
[  115.303032][   T21] usb 2-1: SerialNumber: syz
[  115.332379][ T4976] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  115.510572][   T26] audit: type=1800 audit(1769794652.806:7): pid=4996 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.198" name="file1" dev="loop4" ino=1048607 res=0 errno=0
[  115.562517][   T23] cdc_ncm 3-1:1.0: failed GET_NTB_PARAMETERS
[  115.575457][   T23] cdc_ncm 3-1:1.0: bind() failure
[  115.594251][ T5005] netlink: 4 bytes leftover after parsing attributes in process `syz.3.202'.
[  115.618541][ T5005] netlink: 12 bytes leftover after parsing attributes in process `syz.3.202'.
[  115.783727][   T23] cdc_ncm 3-1:1.1: CDC Union missing and no IAD found
[  115.790573][   T23] cdc_ncm 3-1:1.1: bind() failure
[  116.267116][ T5016] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  116.379820][ T5023] capability: warning: `syz.3.208' uses deprecated v2 capabilities in a way that may be insecure
[  116.429287][ T5025] loop3: detected capacity change from 0 to 512
[  116.468167][ T5027] loop4: detected capacity change from 0 to 256
[  116.506695][ T5025] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  116.520531][ T5025] ext4 filesystem being mounted at /43/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  116.545057][ T5025] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.209: bg 0: block 217: padding at end of block bitmap is not set
[  116.662231][   T21] cdc_ncm 2-1:1.0: SET_NTB_FORMAT failed
[  116.702241][   T21] cdc_ncm 2-1:1.0: bind() failure
[  116.737450][   T21] cdc_ncm 2-1:1.1: CDC Union missing and no IAD found
[  116.763093][   T21] cdc_ncm 2-1:1.1: bind() failure
[  116.804821][   T21] usb 2-1: USB disconnect, device number 6
[  116.924943][ T4234] usb 3-1: USB disconnect, device number 7
[  118.836169][ T5049] netlink: 4 bytes leftover after parsing attributes in process `syz.0.215'.
[  118.847761][ T5049] netlink: 12 bytes leftover after parsing attributes in process `syz.0.215'.
[  119.102854][ T2302] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  119.412112][ T2302] usb 5-1: Using ep0 maxpacket: 32
[  119.490046][ T5062] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[  119.507047][ T5062] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[  119.542304][ T2302] usb 5-1: config 0 has an invalid interface number: 188 but max is 0
[  119.562341][ T2302] usb 5-1: config 0 has no interface number 0
[  119.590144][ T2302] usb 5-1: config 0 interface 188 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 32
[  120.657570][ T2302] usb 5-1: string descriptor 0 read error: -71
[  120.669668][ T2302] usb 5-1: New USB device found, idVendor=17ef, idProduct=7203, bcdDevice=2e.36
[  120.697603][ T2302] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  120.759188][ T2302] usb 5-1: config 0 descriptor??
[  120.783072][ T2302] usb 5-1: can't set config #0, error -71
[  120.812530][ T2302] usb 5-1: USB disconnect, device number 9
[  120.823167][ T5068] loop1: detected capacity change from 0 to 40427
[  120.855664][ T5068] F2FS-fs (loop1): Invalid segment/section count (24 != 2 * 1)
[  120.863414][ T5068] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  120.872198][ T5068] F2FS-fs (loop1): build fault injection attr: rate: 6, type: 0x1ffff
[  120.892940][ T5068] F2FS-fs (loop1) : inject page alloc in f2fs_grab_cache_page of __get_meta_page+0x180/0x4a0
[  120.919167][    C0] F2FS-fs (loop1) : inject read IO error in f2fs_read_end_io of blk_update_request+0x876/0x1200
[  120.952082][ T5068] F2FS-fs (loop1) : inject kvmalloc in f2fs_kvmalloc of f2fs_fill_super+0x4480/0x6de0
[  120.961718][ T5068] F2FS-fs (loop1): Failed to initialize F2FS segment manager (-12)
[  120.982211][ T5072] loop4: detected capacity change from 0 to 512
[  121.000793][ T5052] loop0: detected capacity change from 0 to 40427
[  121.065897][ T5077] loop2: detected capacity change from 0 to 1024
[  121.171622][ T5052] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  121.180656][ T5052] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  121.215334][ T5052] F2FS-fs (loop0): invalid crc value
[  121.256453][ T5077] EXT4-fs (loop2): Ignoring removed bh option
[  121.277170][ T5072] EXT4-fs (loop4): mounted filesystem without journal. Opts: grpquota,errors=remount-ro,. Quota mode: writeback.
[  121.292304][ T5072] ext4 filesystem being mounted at /41/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  121.306616][ T5052] F2FS-fs (loop0): Found nat_bits in checkpoint
[  121.497285][ T5077] EXT4-fs (loop2): mounted filesystem without journal. Opts: nodelalloc,dioread_lock,barrier=0x0000000000000004,nolazytime,debug_want_extra_isize=0x0000000000000080,lazytime,errors=remount-ro,nojournal_checksum,bh,init_itable,noblock_validity,nojournal_checksum,. Quota mode: none.
[  121.580847][ T5052] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  121.628720][ T5052] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  122.543837][ T5102] loop1: detected capacity change from 0 to 128
[  123.110592][ T5105] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000100)
[  123.118565][ T5105] FAT-fs (loop1): Filesystem has been set read-only
[  123.872269][ T5072] EXT4-fs warning (device loop4): ext4_empty_dir:3147: inode #12: comm syz.4.223: directory missing '.'
[  124.176019][ T5118] netlink: 4 bytes leftover after parsing attributes in process `syz.1.232'.
[  124.582249][    T7] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  124.759580][ T5135] loop4: detected capacity change from 0 to 256
[  124.800607][ T5137] loop0: detected capacity change from 0 to 256
[  124.851982][    T7] usb 4-1: Using ep0 maxpacket: 32
[  124.975023][ T5137] FAT-fs (loop0): Directory bread(block 64) failed
[  125.005918][    T7] usb 4-1: config 0 has an invalid interface number: 188 but max is 0
[  125.017248][ T5137] FAT-fs (loop0): Directory bread(block 65) failed
[  125.024003][ T5137] FAT-fs (loop0): Directory bread(block 66) failed
[  125.030564][ T5137] FAT-fs (loop0): Directory bread(block 67) failed
[  125.037763][ T5137] FAT-fs (loop0): Directory bread(block 68) failed
[  125.056858][ T5135] exFAT-fs (loop4): failed to load upcase table (idx : 0x00011a39, chksum : 0xd7c18d7b, utbl_chksum : 0xe619d30d)
[  125.057955][ T5137] FAT-fs (loop0): Directory bread(block 69) failed
[  125.082759][    T7] usb 4-1: config 0 has no interface number 0
[  125.349813][ T5137] FAT-fs (loop0): Directory bread(block 70) failed
[  125.461613][ T5137] FAT-fs (loop0): Directory bread(block 71) failed
[  125.580495][ T5137] FAT-fs (loop0): Directory bread(block 72) failed
[  125.834610][ T5137] FAT-fs (loop0): Directory bread(block 73) failed
[  125.929676][    T7] usb 4-1: config 0 interface 188 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 32
[  126.172296][    T7] usb 4-1: New USB device found, idVendor=17ef, idProduct=7203, bcdDevice=2e.36
[  126.201510][    T7] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  126.221970][    T7] usb 4-1: Product: syz
[  126.226233][    T7] usb 4-1: Manufacturer: syz
[  126.281739][    T7] usb 4-1: SerialNumber: syz
[  126.324071][    T7] usb 4-1: config 0 descriptor??
[  126.408054][ T5120] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  126.425298][ T5151] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  127.212733][ T5120] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  127.469098][ T5161] loop2: detected capacity change from 0 to 128
[  127.508946][ T5145] loop4: detected capacity change from 0 to 40427
[  127.893070][ T5145] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  128.051362][ T5145] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  128.333179][ T5145] F2FS-fs (loop4): invalid crc value
[  128.460668][ T5169] loop1: detected capacity change from 0 to 512
[  128.479518][ T5145] F2FS-fs (loop4): Found nat_bits in checkpoint
[  128.591123][ T5173] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[  128.599097][ T5173] FAT-fs (loop2): Filesystem has been set read-only
[  128.638343][ T5169] EXT4-fs (loop1): Test dummy encryption mode enabled
[  129.143820][ T5174] netlink: 4 bytes leftover after parsing attributes in process `syz.0.256'.
[  129.192026][ T5169] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  129.285604][ T5169] EXT4-fs error (device loop1): ext4_orphan_get:1426: comm syz.1.246: bad orphan inode 131083
[  129.327294][ T5169] EXT4-fs (loop1): mounted filesystem without journal. Opts: test_dummy_encryption,init_itable,noload,,errors=continue. Quota mode: none.
[  129.352203][    T7] asix 4-1:0.188 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[  129.383842][    T7] asix: probe of 4-1:0.188 failed with error -71
[  129.470344][    T7] usb 4-1: USB disconnect, device number 6
[  129.471735][ T5169] EXT4-fs error (device loop1): ext4_lookup:1858: inode #15: comm syz.1.246: iget: bad extra_isize 1312 (inode size 256)
[  132.439876][ T5190] fscrypt (loop1): Missing crypto API support for AES-256-XTS (API name: "xts(aes)")
[  132.743500][   T21] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  132.764278][ T1422] ieee802154 phy0 wpan0: encryption failed: -22
[  132.770627][ T1422] ieee802154 phy1 wpan1: encryption failed: -22
[  132.974748][ T5212] netlink: 4 bytes leftover after parsing attributes in process `syz.0.263'.
[  133.102398][   T21] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  133.292284][   T21] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  133.317977][   T21] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  133.336503][   T21] usb 3-1: Product: syz
[  133.366385][   T21] usb 3-1: Manufacturer: syz
[  133.405974][   T21] usb 3-1: SerialNumber: syz
[  134.702197][   T21] cdc_ncm 3-1:1.0: failed to get mac address
[  134.722441][   T21] cdc_ncm 3-1:1.0: bind() failure
[  134.762116][   T21] cdc_ncm: probe of 3-1:1.1 failed with error -71
[  134.782033][   T21] cdc_mbim: probe of 3-1:1.1 failed with error -71
[  134.802071][   T21] usbtest: probe of 3-1:1.1 failed with error -71
[  134.863220][   T21] usb 3-1: USB disconnect, device number 8
[  135.020408][ T4234] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  135.237915][ T5234] loop3: detected capacity change from 0 to 128
[  135.328002][ T4234] usb 5-1: Using ep0 maxpacket: 32
[  135.462309][ T4234] usb 5-1: config 0 has an invalid interface number: 188 but max is 0
[  135.473793][ T4234] usb 5-1: config 0 has no interface number 0
[  135.479964][ T4234] usb 5-1: config 0 interface 188 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 32
[  135.491364][   T26] audit: type=1800 audit(1769794672.786:8): pid=5237 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.261" name="file1" dev="loop3" ino=1048613 res=0 errno=0
[  135.673507][ T5227] loop0: detected capacity change from 0 to 40427
[  136.668991][ T5227] F2FS-fs (loop0): Invalid SB checksum offset: 0
[  136.681960][ T5227] F2FS-fs (loop0): Can't find valid F2FS filesystem in 2th superblock
[  136.692478][ T4234] usb 5-1: New USB device found, idVendor=17ef, idProduct=7203, bcdDevice=2e.36
[  136.711807][ T4234] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  136.730644][ T4234] usb 5-1: Product: syz
[  136.743709][ T5227] F2FS-fs (loop0): invalid crc value
[  136.755872][ T4234] usb 5-1: Manufacturer: syz
[  136.777966][ T4234] usb 5-1: SerialNumber: syz
[  136.799255][ T4234] usb 5-1: config 0 descriptor??
[  136.814545][ T5227] F2FS-fs (loop0): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437)
[  136.832689][ T5229] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  137.003883][ T5227] F2FS-fs (loop0): Try to recover 2th superblock, ret: 0
[  137.021175][ T5227] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  137.071542][ T5229] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  137.236649][ T4185] attempt to access beyond end of device
[  137.236649][ T4185] loop0: rw=2049, want=45104, limit=40427
[  137.407868][ T5241] loop2: detected capacity change from 0 to 40427
[  137.425224][ T5248] loop3: detected capacity change from 0 to 512
[  137.433128][ T5241] F2FS-fs (loop2): Invalid SB checksum offset: 0
[  137.439857][ T5241] F2FS-fs (loop2): Can't find valid F2FS filesystem in 2th superblock
[  137.482880][ T5248] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  137.507949][ T5241] F2FS-fs (loop2): invalid crc value
[  137.514549][ T5248] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c802e02c, mo2=0002]
[  137.525499][ T5248] EXT4-fs (loop3): orphan cleanup on readonly fs
[  137.531936][ T5248] EXT4-fs error (device loop3): ext4_orphan_get:1426: comm syz.3.265: bad orphan inode 267
[  137.543805][ T5248] EXT4-fs (loop3): Remounting filesystem read-only
[  137.550358][ T5248] EXT4-fs (loop3): mounted filesystem without journal. Opts: nojournal_checksum,noblock_validity,discard,errors=remount-ro,inode_readahead_blks=0x0000000001000000. Quota mode: none.
[  137.575145][ T5248] EXT4-fs warning (device loop3): dx_probe:893: inode #2: comm syz.3.265: dx entry: limit 0 != root limit 125
[  137.633262][ T5248] EXT4-fs warning (device loop3): dx_probe:966: inode #2: comm syz.3.265: Corrupt directory, running e2fsck is recommended
[  137.653574][ T5241] F2FS-fs (loop2): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437)
[  137.823843][ T5241] F2FS-fs (loop2): Try to recover 2th superblock, ret: 0
[  137.830954][ T5241] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  137.879842][   T26] audit: type=1800 audit(1769794675.176:9): pid=5241 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.262" name="file1" dev="loop2" ino=10 res=0 errno=0
[  137.943523][ T5258] loop3: detected capacity change from 0 to 256
[  137.971753][ T4193] attempt to access beyond end of device
[  137.971753][ T4193] loop2: rw=2049, want=45104, limit=40427
[  138.012459][ T4234] asix 5-1:0.188 (unnamed net_device) (uninitialized): invalid PHY address: 157
[  138.280459][ T5265] loop3: detected capacity change from 0 to 512
[  138.318035][ T5265] EXT4-fs (loop3): Test dummy encryption mode enabled
[  138.357290][ T5265] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  138.419000][ T5265] EXT4-fs error (device loop3): ext4_orphan_get:1426: comm syz.3.268: bad orphan inode 131083
[  138.436153][ T5265] EXT4-fs (loop3): mounted filesystem without journal. Opts: test_dummy_encryption,init_itable,noload,,errors=continue. Quota mode: none.
[  138.460196][ T5271] netlink: 4 bytes leftover after parsing attributes in process `syz.0.269'.
[  138.547954][ T5265] EXT4-fs error (device loop3): ext4_lookup:1858: inode #15: comm syz.3.268: iget: bad extra_isize 1312 (inode size 256)
[  140.630808][ T4234] usb 5-1: USB disconnect, device number 10
[  141.315097][ T5277] fscrypt (loop3): Missing crypto API support for AES-256-XTS (API name: "xts(aes)")
[  141.343434][ T5280] tipc: Started in network mode
[  141.391063][ T5280] tipc: Node identity 7f000001, cluster identity 4711
[  141.499276][ T5280] tipc: Enabled bearer <udp:syz2>, priority 10
[  141.596858][ T5289] loop4: detected capacity change from 0 to 512
[  141.727572][ T5289] EXT4-fs (loop4): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  141.901110][ T5289] EXT4-fs error (device loop4): ext4_xattr_inode_iget:397: comm syz.4.272: Parent and EA inode have the same ino 15
[  141.970701][ T5289] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2806: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  141.988441][ T5289] EXT4-fs error (device loop4): ext4_xattr_inode_iget:397: comm syz.4.272: Parent and EA inode have the same ino 15
[  142.017534][ T5289] EXT4-fs (loop4): 1 orphan inode deleted
[  142.051288][ T5289] EXT4-fs (loop4): mounted filesystem without journal. Opts: noquota,nolazytime,debug_want_extra_isize=0x000000000000005c,dioread_nolock,usrjquota=,usrjquota=,i_version,,errors=continue. Quota mode: none.
[  142.096838][ T5299] loop3: detected capacity change from 0 to 256
[  142.166117][ T4234] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  143.091502][ T1325] tipc: Node number set to 2130706433
[  143.231579][ T5306] loop1: detected capacity change from 0 to 128
[  143.262206][ T4234] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 101, changing to 10
[  143.285195][ T5306] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  143.295985][ T4234] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 17664, setting to 1024
[  143.312045][ T4234] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  143.312574][ T5306] ext4 filesystem being mounted at /57/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  143.329328][ T4234] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  143.344543][ T4234] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  143.355422][ T4234] usb 3-1: config 0 descriptor??
[  143.370297][ T5308] loop4: detected capacity change from 0 to 512
[  143.377120][ T5297] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  143.386888][   T26] audit: type=1800 audit(1769794680.686:10): pid=5306 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.277" name="bus" dev="loop1" ino=12 res=0 errno=0
[  143.484069][ T5308] EXT4-fs (loop4): 1 truncate cleaned up
[  143.492058][ T5308] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  144.500847][ T5297] loop2: detected capacity change from 0 to 512
[  144.659895][ T5303] loop3: detected capacity change from 0 to 40427
[  144.676196][ T4234] plantronics 0003:047F:FFFF.0004: unbalanced delimiter at end of report description
[  144.687759][ T4234] plantronics 0003:047F:FFFF.0004: parse failed
[  144.694161][ T4234] plantronics: probe of 0003:047F:FFFF.0004 failed with error -22
[  144.739583][ T5297] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  144.751543][ T5297] EXT4-fs (loop2): can't mount with commit=195, fs mounted w/o journal
[  144.822151][ T5303] F2FS-fs (loop3): build fault injection attr: rate: 690, type: 0x1ffff
[  144.855235][ T5303] xt_hashlimit: size too large, truncated to 1048576
[  144.982212][ T4293] usb 3-1: USB disconnect, device number 9
[  145.089438][ T5331] netlink: 4 bytes leftover after parsing attributes in process `syz.1.283'.
[  145.602739][ T5338] loop2: detected capacity change from 0 to 512
[  145.693535][ T5338] EXT4-fs (loop2): Test dummy encryption mode enabled
[  145.700415][ T5338] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  145.912740][ T5338] EXT4-fs error (device loop2): ext4_orphan_get:1426: comm syz.2.285: bad orphan inode 131083
[  145.969277][ T5338] EXT4-fs (loop2): mounted filesystem without journal. Opts: test_dummy_encryption,init_itable,noload,,errors=continue. Quota mode: none.
[  146.362450][ T5338] EXT4-fs error (device loop2): ext4_lookup:1858: inode #15: comm syz.2.285: iget: bad extra_isize 1312 (inode size 256)
[  147.139070][ T5347] loop1: detected capacity change from 0 to 256
[  147.236166][ T5347] exfat: Unknown parameter '†tf8`Bldh‡q>ä—éIO'
[  150.052005][   T23] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  150.317530][   T23] usb 3-1: Using ep0 maxpacket: 8
[  150.377871][ T2302] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  150.442239][   T23] usb 3-1: config 0 interface 0 has no altsetting 0
[  150.465127][   T23] usb 3-1: New USB device found, idVendor=18b1, idProduct=0037, bcdDevice= 0.00
[  150.495388][   T23] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  150.528454][   T23] usb 3-1: config 0 descriptor??
[  151.358109][   T23] petalynx 0003:18B1:0037.0005: global environment stack underflow
[  151.551923][   T23] petalynx 0003:18B1:0037.0005: item 0 2 1 11 parsing failed
[  151.559946][   T23] petalynx 0003:18B1:0037.0005: parse failed
[  151.570460][   T23] petalynx: probe of 0003:18B1:0037.0005 failed with error -22
[  151.582330][   T23] usb 3-1: USB disconnect, device number 10
[  151.637379][ T2302] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  151.658140][ T2302] usb 2-1: config 0 has no interfaces?
[  151.772255][ T2302] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  151.781356][ T2302] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  151.805748][ T2302] usb 2-1: SerialNumber: syz
[  151.811132][ T5401] loop4: detected capacity change from 0 to 128
[  151.821381][ T2302] usb 2-1: config 0 descriptor??
[  151.937539][ T5401] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  151.972889][ T5401] ext4 filesystem being mounted at /61/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  152.080169][ T5405] EXT4-fs (loop4): shut down requested (2)
[  152.103011][   T21] usb 2-1: USB disconnect, device number 7
[  152.331935][ T5401] fscrypt: AES-128-CTS-CBC using implementation "cts-cbc-aes-aesni"
[  152.371691][ T5405] fscrypt: loop4: 1 inode(s) still busy after removing key with identifier 69b2f6edeee720cce0577937eb8a6751, including ino 12
[  153.866288][ T5435] netlink: 288 bytes leftover after parsing attributes in process `syz.2.311'.
[  154.628101][ T2302] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  154.681319][ T5437] loop0: detected capacity change from 0 to 1024
[  154.775382][ T5421] loop1: detected capacity change from 0 to 40427
[  154.801612][ T5437] EXT4-fs (loop0): Ignoring removed nobh option
[  154.818990][ T5437] EXT4-fs (loop0): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  155.421120][ T5437] EXT4-fs (loop0): mounted filesystem without journal. Opts: delalloc,data_err=abort,barrier=0x0000000000000003,nodioread_nolock,data_err=ignore,max_dir_size_kb=0x00000000004007b1,data_err=ignore,nouid32,nobh,user_xattr,nouid32,dioread_nolock,,errors=continue. Quota mode: none.
[  155.587732][ T5421] F2FS-fs (loop1): Invalid SB checksum offset: 0
[  155.721200][ T5421] F2FS-fs (loop1): Can't find valid F2FS filesystem in 2th superblock
[  156.186496][ T5421] F2FS-fs (loop1): invalid crc value
[  156.264398][ T5421] F2FS-fs (loop1): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437)
[  156.391950][ T2302] usb 4-1: Using ep0 maxpacket: 16
[  156.542493][ T2302] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7
[  156.575054][ T2302] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[  156.590975][ T2302] usb 4-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  156.631021][ T2302] usb 4-1: config 1 interface 2 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  156.732053][ T2302] usb 4-1: string descriptor 0 read error: -71
[  156.738941][ T2302] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  156.764989][ T2302] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  156.826712][ T2302] usb 4-1: can't set config #1, error -71
[  156.880094][ T2302] usb 4-1: USB disconnect, device number 7
[  157.085884][ T5479] loop2: detected capacity change from 0 to 1024
[  157.880580][ T5479] EXT4-fs (loop2): mounted filesystem without journal. Opts: grpjquota=,,errors=continue. Quota mode: writeback.
[  159.798025][   T21] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  159.829680][ T5500] loop4: detected capacity change from 0 to 256
[  161.119382][ T5500] exFAT-fs (loop4): failed to load upcase table (idx : 0x00011f41, chksum : 0x2f9e4978, utbl_chksum : 0xe619d30d)
[  161.665197][ T5536] loop2: detected capacity change from 0 to 512
[  161.804927][ T5536] EXT4-fs (loop2): 1 truncate cleaned up
[  161.810779][ T5536] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  162.924405][ T5554] loop4: detected capacity change from 0 to 512
[  162.989780][ T5556] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  163.017139][ T5554] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.349: bg 0: block 393: padding at end of block bitmap is not set
[  163.037033][ T5554] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6194: Corrupt filesystem
[  163.076932][ T5554] EXT4-fs (loop4): 2 truncates cleaned up
[  163.097001][ T5554] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  163.123326][ T5554] EXT4-fs error (device loop4): ext4_find_dest_de:2115: inode #12: block 7: comm syz.4.349: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=4278190093, rec_len=255, size=56 fake=0
[  163.160483][ T5554] overlayfs: failed to create directory ./file0/work (errno: 117); mounting read-only
[  164.710790][ T1235] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  164.723758][ T5598] loop3: detected capacity change from 0 to 512
[  164.836259][ T5598] EXT4-fs (loop3): mounted filesystem without journal. Opts: grpjquota=,max_dir_size_kb=0x0000000000000a30,grpquota,,errors=continue. Quota mode: writeback.
[  164.852306][ T4234] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  164.860142][ T5598] ext4 filesystem being mounted at /74/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  164.933973][ T1235] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  164.972789][ T5603] tipc: Started in network mode
[  164.977717][ T5603] tipc: Node identity 7f000001, cluster identity 4711
[  165.042527][ T5603] tipc: Enabled bearer <udp:syz2>, priority 10
[  165.084038][ T1235] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  165.132149][ T4234] usb 3-1: Using ep0 maxpacket: 16
[  165.168699][ T1235] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  165.262545][ T4234] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7
[  165.303115][ T4234] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[  165.332627][ T4234] usb 3-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  165.373167][ T4234] usb 3-1: config 1 interface 2 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  165.450432][ T5620] loop0: detected capacity change from 0 to 1024
[  165.540359][ T5620] EXT4-fs (loop0): Ignoring removed orlov option
[  165.592334][ T4234] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  165.616366][ T4234] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  165.641228][ T4234] usb 3-1: Product: syz
[  165.648819][ T5620] EXT4-fs (loop0): mounted filesystem without journal. Opts: block_validity,bsddf,nogrpid,norecovery,debug_want_extra_isize=0x0000000000000080,orlov,grpjquota=,minixdf,norecovery,,errors=continue. Quota mode: none.
[  165.680166][ T4234] usb 3-1: Manufacturer: syz
[  165.695380][ T4234] usb 3-1: SerialNumber: syz
[  166.133226][ T5637] loop1: detected capacity change from 0 to 128
[  166.167789][   T21] tipc: Node number set to 2130706433
[  166.216092][ T5621] chnl_net:caif_netlink_parms(): no params data found
[  166.270321][ T4234] usb 3-1: USB disconnect, device number 11
[  166.539583][ T5650] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000100)
[  166.547583][ T5650] FAT-fs (loop1): Filesystem has been set read-only
[  167.351460][ T4322] udevd[4322]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  167.507841][ T5674] loop1: detected capacity change from 0 to 1024
[  167.556835][   T23] Bluetooth: hci3: command 0x0409 tx timeout
[  167.580378][ T5674] EXT4-fs (loop1): mounted filesystem without journal. Opts: dioread_lock,resgid=0x0000000000000000,min_batch_time=0x0000000000000000,norecovery,debug_want_extra_isize=0x0000000000000080,resgid=0x0000000000000000,errors=remount-ro,grpid,jqfmt=vfsv0,. Quota mode: none.
[  167.827053][ T5621] bridge0: port 1(bridge_slave_0) entered blocking state
[  167.840765][ T5621] bridge0: port 1(bridge_slave_0) entered disabled state
[  167.871636][ T5621] device bridge_slave_0 entered promiscuous mode
[  167.955482][ T5621] bridge0: port 2(bridge_slave_1) entered blocking state
[  167.990850][ T5621] bridge0: port 2(bridge_slave_1) entered disabled state
[  168.003782][ T5621] device bridge_slave_1 entered promiscuous mode
[  168.185204][ T5696] netlink: 8 bytes leftover after parsing attributes in process `syz.0.387'.
[  168.289973][ T5621] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  168.398490][ T5621] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  168.479388][ T5621] team0: Port device team_slave_0 added
[  168.504174][ T5621] team0: Port device team_slave_1 added
[  168.554972][ T5708] loop3: detected capacity change from 0 to 128
[  168.628037][ T5680] loop2: detected capacity change from 0 to 40427
[  168.811028][ T5621] batman_adv: batadv0: Adding interface: batadv_slave_0
[  168.861428][ T5621] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  169.065890][ T5713] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[  169.073933][ T5713] FAT-fs (loop3): Filesystem has been set read-only
[  169.511889][ T5621] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  169.582535][ T5719] loop0: detected capacity change from 0 to 512
[  169.649547][ T4194] Bluetooth: hci3: command 0x041b tx timeout
[  169.671711][ T5621] batman_adv: batadv0: Adding interface: batadv_slave_1
[  169.694192][ T5621] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  169.741981][ T5621] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  169.780965][ T5719] EXT4-fs (loop0): Ignoring removed oldalloc option
[  169.830380][ T5719] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  169.950167][ T5719] EXT4-fs (loop0): 1 truncate cleaned up
[  169.974421][ T5719] EXT4-fs (loop0): mounted filesystem without journal. Opts: errors=remount-ro,nobarrier,debug_want_extra_isize=0x0000000000000068,oldalloc,block_validity,dioread_lock,. Quota mode: none.
[  170.100044][ T5744] loop1: detected capacity change from 0 to 4096
[  170.148005][ T4185] EXT4-fs error (device loop0): __ext4_iget:4912: inode #11: block 327702: comm syz-executor: invalid block
[  170.180098][ T5621] device hsr_slave_0 entered promiscuous mode
[  170.211117][ T4185] EXT4-fs (loop0): Remounting filesystem read-only
[  170.228715][ T4185] EXT4-fs error (device loop0): __ext4_iget:4912: inode #11: block 327702: comm syz-executor: invalid block
[  170.245387][ T5744] EXT4-fs (loop1): Test dummy encryption mode enabled
[  170.264904][ T5621] device hsr_slave_1 entered promiscuous mode
[  170.282029][ T5621] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  170.310782][ T5748] loop2: detected capacity change from 0 to 2048
[  170.330219][ T5744] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[  170.338809][ T4185] EXT4-fs (loop0): Remounting filesystem read-only
[  170.354805][ T5621] Cannot create hsr debugfs directory
[  170.360605][ T5744] System zones: 0-5
[  170.402824][ T5744] EXT4-fs (loop1): mounted filesystem without journal. Opts: debug,delalloc,journal_ioprio=0x0000000000000000,test_dummy_encryption,nodiscard,min_batch_time=0x0000000000000004,acl,debug_want_extra_isize=0x0000000000000040,,errors=continue. Quota mode: writeback.
[  170.537843][ T5748] EXT4-fs (loop2): mounted filesystem without journal. Opts: nobarrier,noinit_itable,i_version,init_itable,,errors=continue. Quota mode: none.
[  170.674962][ T5748] ext4 filesystem being mounted at /71/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  170.784443][ T5748] fs-verity: sha512 using implementation "sha512-avx2"
[  170.876423][ T5744] fscrypt (loop1): Missing crypto API support for AES-256-XTS (API name: "xts(aes)")
[  171.378090][ T1235] device hsr_slave_0 left promiscuous mode
[  171.393413][ T1235] device hsr_slave_1 left promiscuous mode
[  171.431007][ T1235] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  171.461505][ T1235] batman_adv: batadv0: Removing interface: batadv_slave_0
[  171.479190][ T1235] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  171.487646][ T1235] batman_adv: batadv0: Removing interface: batadv_slave_1
[  171.533950][ T1235] device bridge_slave_1 left promiscuous mode
[  171.544556][ T1235] bridge0: port 2(bridge_slave_1) entered disabled state
[  171.599239][ T1235] device bridge_slave_0 left promiscuous mode
[  171.620369][ T1235] bridge0: port 1(bridge_slave_0) entered disabled state
[  171.691650][ T1235] device veth1_macvtap left promiscuous mode
[  171.698776][ T1235] device veth0_macvtap left promiscuous mode
[  171.705451][ T1235] device veth1_vlan left promiscuous mode
[  171.711726][ T1235] device veth0_vlan left promiscuous mode
[  171.722240][ T4301] Bluetooth: hci3: command 0x040f tx timeout
[  172.293859][ T1235] team0 (unregistering): Port device team_slave_1 removed
[  172.320149][ T1235] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  172.340503][ T1235] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  172.484056][ T1235] bond0 (unregistering): Released all slaves
[  172.629475][ T5770] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  172.841685][ T5795] syz.3.409 uses obsolete (PF_INET,SOCK_PACKET)
[  173.020180][ T5621] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  173.065792][ T5621] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  173.108689][ T5621] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  173.131807][ T5621] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  173.383570][ T5812] loop2: detected capacity change from 0 to 128
[  173.462699][ T5621] 8021q: adding VLAN 0 to HW filter on device bond0
[  173.498576][ T5816] loop1: detected capacity change from 0 to 1024
[  173.529025][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  173.548770][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  173.577526][ T5621] 8021q: adding VLAN 0 to HW filter on device team0
[  173.588865][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  173.599152][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  173.600570][ T5812] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  173.619235][  T144] bridge0: port 1(bridge_slave_0) entered blocking state
[  173.626386][  T144] bridge0: port 1(bridge_slave_0) entered forwarding state
[  173.659289][ T5816] EXT4-fs (loop1): Ignoring removed bh option
[  173.670397][ T5816] EXT4-fs (loop1): Ignoring removed nobh option
[  173.681948][ T5816] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  173.701051][ T5812] ext4 filesystem being mounted at /75/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  173.745169][ T5816] EXT4-fs (loop1): mounted filesystem without journal. Opts: delalloc,data_err=abort,barrier=0x0000000000000003,nodioread_nolock,bh,max_dir_size_kb=0x00000000004007b1,data_err=ignore,nouid32,nobh,user_xattr,nouid32,dioread_nolock,,errors=continue. Quota mode: none.
[  173.772390][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  173.804305][ T4254] Bluetooth: hci3: command 0x0419 tx timeout
[  173.968841][ T5814] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:3887: comm syz.1.414: Allocating blocks 497-513 which overlap fs metadata
[  174.010623][ T5142] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  174.024289][ T5142] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  174.056396][ T5142] bridge0: port 2(bridge_slave_1) entered blocking state
[  174.063593][ T5142] bridge0: port 2(bridge_slave_1) entered forwarding state
[  174.081728][ T5814] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:3887: comm syz.1.414: Allocating blocks 497-513 which overlap fs metadata
[  174.098430][ T5142] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  174.107865][ T5142] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  174.118376][ T5142] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  174.138689][ T5142] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  174.155253][ T5142] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  174.169037][ T5142] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  174.336174][ T5814] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:3887: comm syz.1.414: Allocating blocks 497-513 which overlap fs metadata
[  174.373814][ T5142] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  174.451549][ T5814] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:3887: comm syz.1.414: Allocating blocks 497-513 which overlap fs metadata
[  174.481673][ T5621] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  174.519156][ T5831] loop3: detected capacity change from 0 to 1024
[  174.558577][ T5621] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  174.578353][ T5814] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:3887: comm syz.1.414: Allocating blocks 497-513 which overlap fs metadata
[  174.625016][ T5831] EXT4-fs (loop3): Ignoring removed bh option
[  174.702246][ T5831] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  174.718593][ T5814] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:3887: comm syz.1.414: Allocating blocks 497-513 which overlap fs metadata
[  174.749818][ T5142] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  174.761476][ T5814] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:3887: comm syz.1.414: Allocating blocks 497-513 which overlap fs metadata
[  174.782784][ T5142] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  174.801461][ T5814] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:3887: comm syz.1.414: Allocating blocks 497-513 which overlap fs metadata
[  174.804503][ T5831] EXT4-fs (loop3): mounted filesystem without journal. Opts: delalloc,data_err=abort,barrier=0x0000000000000003,nodioread_nolock,bh,max_dir_size_kb=0x00000000004007b1,data_err=ignore,nouid32,quota,user_xattr,nouid32,dioread_nolock,,errors=continue. Quota mode: writeback.
[  174.852029][ T5814] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:3887: comm syz.1.414: Allocating blocks 497-513 which overlap fs metadata
[  174.875847][ T5142] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  174.895765][ T5142] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  174.908446][ T5142] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  174.920384][ T5816] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:3887: comm syz.1.414: Allocating blocks 497-513 which overlap fs metadata
[  175.082508][   T26] audit: type=1800 audit(1769794712.386:11): pid=5831 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.415" name="file1" dev="loop3" ino=15 res=0 errno=0
[  175.193025][   T26] audit: type=1800 audit(1769794712.436:12): pid=5831 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.415" name="file1" dev="loop3" ino=15 res=0 errno=0
[  175.321910][   T26] audit: type=1800 audit(1769794712.456:13): pid=5831 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.415" name="file1" dev="loop3" ino=15 res=0 errno=0
[  175.385770][ T5848] loop1: detected capacity change from 0 to 256
[  175.418280][ T5848] exfat: Deprecated parameter 'utf8'
[  175.447581][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  175.472136][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  175.480923][ T5848] exfat: Deprecated parameter 'utf8'
[  175.526461][ T5848] exfat: Deprecated parameter 'utf8'
[  175.544982][ T5621] 8021q: adding VLAN 0 to HW filter on device batadv0
[  175.655132][ T5848] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d)
[  175.731481][ T5826] chnl_net:caif_netlink_parms(): no params data found
[  176.066657][ T5826] bridge0: port 1(bridge_slave_0) entered blocking state
[  176.074334][ T5826] bridge0: port 1(bridge_slave_0) entered disabled state
[  176.082631][ T5826] device bridge_slave_0 entered promiscuous mode
[  176.091646][ T5826] bridge0: port 2(bridge_slave_1) entered blocking state
[  176.098852][ T5826] bridge0: port 2(bridge_slave_1) entered disabled state
[  176.107284][ T5826] device bridge_slave_1 entered promiscuous mode
[  176.135168][ T5826] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  176.155348][ T5826] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  176.185623][ T5826] team0: Port device team_slave_0 added
[  176.195304][ T5826] team0: Port device team_slave_1 added
[  176.234909][ T5882] loop3: detected capacity change from 0 to 128
[  176.250226][ T5826] batman_adv: batadv0: Adding interface: batadv_slave_0
[  176.304485][ T5882] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  176.322326][ T5826] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  176.348541][ T5826] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  176.354008][ T5882] ext4 filesystem being mounted at /88/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  176.377238][ T5826] batman_adv: batadv0: Adding interface: batadv_slave_1
[  176.384415][ T5826] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  176.411583][ T5826] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  176.422416][ T2302] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  176.442133][ T4194] Bluetooth: hci0: command 0x0409 tx timeout
[  176.504805][ T5826] device hsr_slave_0 entered promiscuous mode
[  176.581587][ T5826] device hsr_slave_1 entered promiscuous mode
[  176.612255][ T5890] loop2: detected capacity change from 0 to 512
[  176.618749][ T5826] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  176.628864][ T5826] Cannot create hsr debugfs directory
[  176.781577][ T4485] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  176.790145][ T2302] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  176.812608][ T4485] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  176.820804][ T2302] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  176.880970][ T4485] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  176.893062][ T4485] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  176.910164][ T4485] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  176.932268][ T2302] usb 2-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  176.941396][ T2302] usb 2-1: New USB device strings: Mfr=2, Product=0, SerialNumber=0
[  176.960565][ T4485] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  176.969386][ T2302] usb 2-1: Manufacturer: syz
[  176.982227][ T5896] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  176.990120][ T2302] usb 2-1: config 0 descriptor??
[  176.996233][ T5621] device veth0_vlan entered promiscuous mode
[  177.049055][ T5621] device veth1_vlan entered promiscuous mode
[  177.160701][ T5901] loop2: detected capacity change from 0 to 1024
[  177.190409][ T5621] device veth0_macvtap entered promiscuous mode
[  177.199406][ T5903] loop3: detected capacity change from 0 to 128
[  177.224517][ T5142] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  177.236790][ T5901] EXT4-fs (loop2): Ignoring removed nomblk_io_submit option
[  177.250874][ T5142] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  177.273672][ T5901] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  177.296382][ T5901] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  177.311042][ T5621] device veth1_macvtap entered promiscuous mode
[  177.352057][ T5901] System zones: 0-1, 3-36
[  177.368406][ T5142] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  177.401206][ T5901] EXT4-fs (loop2): mounted filesystem without journal. Opts: grpquota,delalloc,resuid=0x0000000000000000,debug,dioread_nolock,bsddf,nomblk_io_submit,noauto_da_alloc,,errors=continue. Quota mode: writeback.
[  177.462316][ T5142] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  177.475694][ T5879] loop1: detected capacity change from 0 to 512
[  177.620548][ T5621] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  177.633678][ T5621] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  177.644004][ T5621] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  177.654710][ T5621] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  177.665064][ T5621] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  177.686099][ T5879] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  177.702250][ T5621] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  177.713666][ T5621] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  178.493621][ T5879] EXT4-fs error (device loop1): ext4_orphan_get:1400: inode #17: comm syz.1.430: inode has both inline data and extents flags
[  178.525575][ T4194] Bluetooth: hci0: command 0x041b tx timeout
[  178.551948][ T5621] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  178.572530][ T5879] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.430: couldn't read orphan inode 17 (err -117)
[  178.596122][ T5621] batman_adv: batadv0: Interface activated: batadv_slave_0
[  178.649672][ T4300] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  178.665169][ T5879] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  178.682657][ T4300] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  178.719868][ T5621] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  178.781890][ T5621] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  178.791757][ T5621] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  178.863271][ T5621] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  178.907588][ T5621] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  178.931923][ T5621] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  178.941784][ T5621] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  178.973560][ T5621] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  179.030067][ T5621] batman_adv: batadv0: Interface activated: batadv_slave_1
[  179.049159][ T4485] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  179.067106][ T4485] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  179.276749][ T5621] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  179.393614][ T2302] input: syz Pen as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:256C:006D.0006/input/input7
[  179.473571][ T5621] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  179.676090][ T5621] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  179.734490][ T2302] input: syz Pad as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:256C:006D.0006/input/input8
[  179.827940][ T5621] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  180.244610][ T2302] uclogic 0003:256C:006D.0006: input,hidraw0: USB HID v0.00 Keypad [syz] on usb-dummy_hcd.1-1/input0
[  180.367445][ T2302] usb 2-1: USB disconnect, device number 9
[  180.677159][ T5819] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 65: padding at end of block bitmap is not set
[  180.792803][ T4194] Bluetooth: hci0: command 0x040f tx timeout
[  180.825028][ T5826] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  181.429568][ T5826] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  181.436923][ T5939] loop3: detected capacity change from 0 to 256
[  181.520203][ T5826] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  181.537741][ T5939] FAT-fs (loop3): Directory bread(block 64) failed
[  181.602943][ T5939] FAT-fs (loop3): Directory bread(block 65) failed
[  181.609672][ T5939] FAT-fs (loop3): Directory bread(block 66) failed
[  181.633663][ T4485] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  181.648723][ T4485] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  181.668475][ T5826] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  181.683234][ T5939] FAT-fs (loop3): Directory bread(block 67) failed
[  181.690056][ T5939] FAT-fs (loop3): Directory bread(block 68) failed
[  181.698496][ T5945] fido_id[5945]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory
[  181.723147][ T5939] FAT-fs (loop3): Directory bread(block 69) failed
[  181.729877][  T495] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  181.770144][ T5939] FAT-fs (loop3): Directory bread(block 70) failed
[  181.832129][ T5939] FAT-fs (loop3): Directory bread(block 71) failed
[  181.838803][ T5939] FAT-fs (loop3): Directory bread(block 72) failed
[  181.863243][ T4380] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  181.943362][ T4380] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  181.952084][ T5939] FAT-fs (loop3): Directory bread(block 73) failed
[  182.018577][ T4485] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  182.120806][ T5964] loop1: detected capacity change from 0 to 512
[  182.213214][ T5826] 8021q: adding VLAN 0 to HW filter on device bond0
[  182.261241][ T5964] EXT4-fs (loop1): mounted filesystem without journal. Opts: grpid,grpquota,,errors=continue. Quota mode: writeback.
[  182.302279][ T5964] ext4 filesystem being mounted at /98/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  182.341413][ T5826] 8021q: adding VLAN 0 to HW filter on device team0
[  182.348758][  T495] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  182.357289][  T495] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  182.512636][ T5977] process 'syz.5.368' launched '/dev/fd/6' with NULL argv: empty string added
[  182.834246][ T1107] Bluetooth: hci0: command 0x0419 tx timeout
[  183.374203][ T1235] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  183.419187][ T5984] loop3: detected capacity change from 0 to 2048
[  183.858939][ T5984] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  184.096954][ T5984] ext4 filesystem being mounted at /96/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  184.244971][  T495] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  184.270932][  T495] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  184.343843][  T495] bridge0: port 1(bridge_slave_0) entered blocking state
[  184.350989][  T495] bridge0: port 1(bridge_slave_0) entered forwarding state
[  184.473669][ T1235] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  184.513379][  T495] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  184.557291][  T495] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  184.614779][  T495] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  184.689276][  T495] bridge0: port 2(bridge_slave_1) entered blocking state
[  184.696480][  T495] bridge0: port 2(bridge_slave_1) entered forwarding state
[  184.762523][  T495] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  184.793857][  T495] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  184.848492][ T1235] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  184.924078][ T4380] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  184.961246][ T4380] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  185.007771][ T4380] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  185.027074][ T5969] loop2: detected capacity change from 0 to 40427
[  185.041719][ T4380] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  185.091663][ T5969] F2FS-fs (loop2): build fault injection attr: rate: 771, type: 0x1ffff
[  185.119866][ T4380] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  185.141308][ T5969] F2FS-fs (loop2): invalid crc value
[  185.151390][ T4380] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  185.167818][ T5969] F2FS-fs (loop2): Found nat_bits in checkpoint
[  185.181596][ T4380] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  185.237218][ T1235] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  185.293173][ T4380] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  185.308289][ T4380] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  185.332949][ T5826] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  185.622299][ T6033] loop3: detected capacity change from 0 to 512
[  185.715340][ T6033] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  185.813227][ T6033] EXT4-fs (loop3): invalid journal inode
[  185.819935][ T6033] EXT4-fs (loop3): can't get journal size
[  185.962284][ T4380] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  185.969861][ T4380] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  185.978831][ T6033] EXT4-fs (loop3): 1 truncate cleaned up
[  186.010144][ T6033] EXT4-fs (loop3): mounted filesystem without journal. Opts: norecovery,grpquota,sysvgroups,lazytime,,errors=continue. Quota mode: writeback.
[  186.032304][ T4293] Bluetooth: hci1: command 0x0406 tx timeout
[  186.040589][ T4293] Bluetooth: hci2: command 0x0406 tx timeout
[  186.047275][ T4293] Bluetooth: hci4: command 0x0406 tx timeout
[  186.069616][   T26] audit: type=1800 audit(1769794723.366:14): pid=6033 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.453" name="file1" dev="loop3" ino=15 res=0 errno=0
[  186.097038][ T5826] 8021q: adding VLAN 0 to HW filter on device batadv0
[  186.116687][ T6033] EXT4-fs error (device loop3): __ext4_get_inode_loc:4327: comm syz.3.453: Invalid inode table block 0 in block_group 0
[  186.348373][ T6033] EXT4-fs error (device loop3): __ext4_get_inode_loc:4327: comm syz.3.453: Invalid inode table block 0 in block_group 0
[  187.010125][ T6033] EXT4-fs error (device loop3): ext4_get_max_inline_size:115: inode #15: comm syz.3.453: can't get inode location 15
[  187.039973][ T6033] EXT4-fs error (device loop3): __ext4_get_inode_loc:4327: comm syz.3.453: Invalid inode table block 0 in block_group 0
[  187.068165][ T6009] loop1: detected capacity change from 0 to 40427
[  187.134551][ T6009] F2FS-fs (loop1): Unrecognized mount option "" or missing value
[  187.196781][ T6062] loop5: detected capacity change from 0 to 1024
[  187.252988][ T6062] EXT4-fs (loop5): Ignoring removed bh option
[  187.262803][ T4198] EXT4-fs error (device loop3): __ext4_get_inode_loc:4327: comm syz-executor: Invalid inode table block 0 in block_group 0
[  187.399090][ T4198] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5854: Corrupt filesystem
[  187.466392][ T6062] EXT4-fs (loop5): mounted filesystem without journal. Opts: nodelalloc,dioread_lock,barrier=0x0000000000000004,nolazytime,debug_want_extra_isize=0x0000000000000080,lazytime,errors=remount-ro,stripe=0x0000000000000010,bh,init_itable,. Quota mode: none.
[  187.481816][ T4198] EXT4-fs error (device loop3): ext4_dirty_inode:6058: inode #15: comm syz-executor: mark_inode_dirty error
[  187.563273][ T4340] EXT4-fs error (device loop3): __ext4_get_inode_loc:4327: comm kworker/u4:10: Invalid inode table block 0 in block_group 0
[  187.609985][ T6074] netlink: 48 bytes leftover after parsing attributes in process `syz.1.447'.
[  187.792565][ T4340] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  187.852759][ T4340] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  187.969338][ T4485] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  188.021359][ T4485] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  188.087394][ T4485] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  188.128868][ T4485] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  188.183996][ T5826] device veth0_vlan entered promiscuous mode
[  188.236286][ T5826] device veth1_vlan entered promiscuous mode
[  188.329778][ T6094] loop2: detected capacity change from 0 to 256
[  188.380477][ T5175] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  188.413009][ T5175] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  188.461658][ T5826] device veth0_macvtap entered promiscuous mode
[  188.540632][ T6094] FAT-fs (loop2): Directory bread(block 64) failed
[  188.547844][ T5826] device veth1_macvtap entered promiscuous mode
[  188.588676][ T6094] FAT-fs (loop2): Directory bread(block 65) failed
[  188.607618][ T6094] FAT-fs (loop2): Directory bread(block 66) failed
[  188.650036][ T6094] FAT-fs (loop2): Directory bread(block 67) failed
[  188.653959][ T5826] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  188.699578][ T6094] FAT-fs (loop2): Directory bread(block 68) failed
[  188.714056][ T6094] FAT-fs (loop2): Directory bread(block 69) failed
[  188.718384][ T5826] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  188.721321][ T6094] FAT-fs (loop2): Directory bread(block 70) failed
[  188.744809][ T6094] FAT-fs (loop2): Directory bread(block 71) failed
[  188.751099][ T5826] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  188.753130][ T6094] FAT-fs (loop2): Directory bread(block 72) failed
[  188.885055][ T6094] FAT-fs (loop2): Directory bread(block 73) failed
[  189.007491][ T5826] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  189.181424][ T5826] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  189.359287][ T5826] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  189.633753][ T5826] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  189.659800][ T5826] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  189.682127][ T5826] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  189.707871][ T5826] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  189.746241][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_0
[  189.792349][ T5826] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  189.829121][ T5826] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  189.863387][ T5826] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  189.875287][ T5826] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  189.885285][ T5826] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  189.895831][ T5826] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  189.905724][ T5826] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  189.924582][ T5826] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  189.956865][ T5826] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  190.001313][   T26] audit: type=1326 audit(1769794727.286:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6103 comm="syz.5.465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbed41a2eb9 code=0x7ffc0000
[  190.103344][ T5826] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  190.189784][   T26] audit: type=1326 audit(1769794727.286:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6103 comm="syz.5.465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbed41a2eb9 code=0x7ffc0000
[  190.377236][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_1
[  190.533426][ T4300] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  190.579064][ T4300] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  190.606658][   T26] audit: type=1326 audit(1769794727.296:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6103 comm="syz.5.465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fbed41a2eb9 code=0x7ffc0000
[  190.843621][ T4300] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  190.852758][ T4300] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  190.861205][   T26] audit: type=1326 audit(1769794727.296:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6103 comm="syz.5.465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbed41a2eb9 code=0x7ffc0000
[  190.897754][ T4300] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  190.917295][   T26] audit: type=1326 audit(1769794727.296:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6103 comm="syz.5.465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbed41a2eb9 code=0x7ffc0000
[  190.941945][   T26] audit: type=1326 audit(1769794727.296:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6103 comm="syz.5.465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=318 compat=0 ip=0x7fbed41a2eb9 code=0x7ffc0000
[  190.993377][ T4300] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  191.032379][ T5826] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  191.078524][ T6110] loop2: detected capacity change from 0 to 512
[  191.090491][ T5826] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  191.108528][ T5826] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  191.125114][   T26] audit: type=1326 audit(1769794727.296:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6103 comm="syz.5.465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbed41a2eb9 code=0x7ffc0000
[  191.160827][ T6110] EXT4-fs (loop2): Ignoring removed oldalloc option
[  191.186499][ T5826] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  191.208211][ T6110] EXT4-fs (loop2): mounted filesystem without journal. Opts: acl,nodiscard,oldalloc,,errors=continue. Quota mode: none.
[  191.282153][   T26] audit: type=1326 audit(1769794727.296:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6103 comm="syz.5.465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbed41a2eb9 code=0x7ffc0000
[  191.304651][   T26] audit: type=1326 audit(1769794727.296:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6103 comm="syz.5.465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7fbed41a2eb9 code=0x7ffc0000
[  191.327789][   T26] audit: type=1326 audit(1769794727.296:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6103 comm="syz.5.465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbed41a2eb9 code=0x7ffc0000
[  191.351340][   T26] audit: type=1326 audit(1769794727.296:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6103 comm="syz.5.465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbed41a2eb9 code=0x7ffc0000
[  191.375074][   T26] audit: type=1326 audit(1769794727.326:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6103 comm="syz.5.465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fbed41a2eb9 code=0x7ffc0000
[  191.446222][   T26] audit: type=1326 audit(1769794727.326:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6103 comm="syz.5.465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbed41a2eb9 code=0x7ffc0000
[  191.506625][ T6110] EXT4-fs (loop2): Mount option "nouser_xattr" will be removed by 3.5
[  191.506625][ T6110] Contact linux-ext4@vger.kernel.org if you think we should keep it.
[  191.506625][ T6110] 
[  191.588116][   T26] audit: type=1326 audit(1769794727.326:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6103 comm="syz.5.465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbed41a2eb9 code=0x7ffc0000
[  191.669291][ T1235] device hsr_slave_0 left promiscuous mode
[  191.688720][ T1235] device hsr_slave_1 left promiscuous mode
[  191.720604][ T1235] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  191.720780][   T26] audit: type=1326 audit(1769794727.326:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6103 comm="syz.5.465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=295 compat=0 ip=0x7fbed41a2eb9 code=0x7ffc0000
[  191.756592][ T1235] batman_adv: batadv0: Removing interface: batadv_slave_0
[  191.783170][ T1235] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  191.821444][ T1235] batman_adv: batadv0: Removing interface: batadv_slave_1
[  191.829786][   T26] audit: type=1326 audit(1769794727.326:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6103 comm="syz.5.465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbed41a2eb9 code=0x7ffc0000
[  191.854859][ T6126] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  191.902470][ T1235] device bridge_slave_1 left promiscuous mode
[  191.908759][ T1235] bridge0: port 2(bridge_slave_1) entered disabled state
[  191.914102][ T6126] fuse: Bad value for 'fd'
[  191.935094][ T1235] device bridge_slave_0 left promiscuous mode
[  191.942184][ T1235] bridge0: port 1(bridge_slave_0) entered disabled state
[  192.002094][ T4822] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  192.028556][ T1235] device veth1_macvtap left promiscuous mode
[  192.046904][ T1235] device veth0_macvtap left promiscuous mode
[  192.057460][ T1235] device veth1_vlan left promiscuous mode
[  192.072062][ T1235] device veth0_vlan left promiscuous mode
[  192.402080][ T4822] usb 4-1: config 249 has an invalid interface number: 4 but max is 0
[  192.410322][ T4822] usb 4-1: config 249 has no interface number 0
[  192.432387][ T4822] usb 4-1: config 249 interface 4 has no altsetting 0
[  192.461102][ T1235] team0 (unregistering): Port device team_slave_1 removed
[  192.479042][ T1235] team0 (unregistering): Port device team_slave_0 removed
[  192.496080][ T1235] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  192.515563][ T1235] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  192.601245][ T1235] bond0 (unregistering): Released all slaves
[  192.607717][ T4822] usb 4-1: New USB device found, idVendor=0421, idProduct=0088, bcdDevice=42.58
[  192.622848][ T4822] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  192.630897][ T4822] usb 4-1: Product: syz
[  192.635171][ T4822] usb 4-1: Manufacturer: syz
[  192.639805][ T4822] usb 4-1: SerialNumber: syz
[  192.779338][ T4340] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  192.815056][ T4340] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  192.871473][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  192.978591][ T4822] usb 4-1: bad CDC descriptors
[  192.992152][ T4822] usb 4-1: bad CDC descriptors
[  193.001672][    T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  193.015950][    T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  193.040480][ T4822] usb 4-1: USB disconnect, device number 8
[  193.061498][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  193.366321][ T6165] netlink: 'syz.1.477': attribute type 12 has an invalid length.
[  194.373389][ T1422] ieee802154 phy0 wpan0: encryption failed: -22
[  194.379750][ T1422] ieee802154 phy1 wpan1: encryption failed: -22
[  196.185636][ T6163] loop2: detected capacity change from 0 to 40427
[  196.248325][ T6163] F2FS-fs (loop2): Small segment_count (9 < 1 * 24)
[  196.289404][ T6163] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  196.308453][ T6220] loop5: detected capacity change from 0 to 128
[  196.400354][ T6163] F2FS-fs (loop2): Failed to start F2FS issue_checkpoint_thread (-12)
[  197.407968][ T6225] FAT-fs (loop5): error, invalid access to FAT (entry 0x00000100)
[  197.415941][ T6225] FAT-fs (loop5): Filesystem has been set read-only
[  197.485887][ T6230] loop3: detected capacity change from 0 to 512
[  197.636687][ T6234] hub 8-0:1.0: USB hub found
[  197.644762][ T6234] hub 8-0:1.0: 1 port detected
[  198.373363][ T6230] EXT4-fs (loop3): 1 truncate cleaned up
[  198.398084][ T6230] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  199.800161][ T6263] loop5: detected capacity change from 0 to 512
[  199.945840][ T6271] loop3: detected capacity change from 0 to 128
[  200.798031][ T6278] netlink: 4 bytes leftover after parsing attributes in process `syz.2.508'.
[  200.959388][ T6263] EXT4-fs (loop5): mounted filesystem without journal. Opts: nodiscard,nogrpid,quota,,errors=continue. Quota mode: writeback.
[  201.017750][ T6263] ext4 filesystem being mounted at /16/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  201.120079][ T6286] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[  201.128025][ T6286] FAT-fs (loop3): Filesystem has been set read-only
[  203.455790][ T6314] loop2: detected capacity change from 0 to 1024
[  203.520996][ T6314] EXT4-fs (loop2): Ignoring removed nomblk_io_submit option
[  203.579659][ T6314] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  203.659484][ T6314] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  203.706830][ T6314] System zones: 0-1, 3-36
[  203.784927][ T6314] EXT4-fs (loop2): mounted filesystem without journal. Opts: grpquota,delalloc,resuid=0x0000000000000000,debug,dioread_nolock,bsddf,nomblk_io_submit,noauto_da_alloc,,errors=continue. Quota mode: writeback.
[  204.821274][ T4822] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  204.982161][ T6324] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  205.382283][ T4822] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  205.691063][ T4822] usb 4-1: New USB device found, idVendor=0458, idProduct=0153, bcdDevice= 0.00
[  206.602690][ T6350] loop2: detected capacity change from 0 to 128
[  206.795190][ T4822] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  206.859865][ T4822] usb 4-1: config 0 descriptor??
[  206.902130][ T4822] usb 4-1: can't set config #0, error -71
[  207.477307][ T4822] usb 4-1: USB disconnect, device number 9
[  207.748777][ T6363] usb usb1: usbfs: process 6363 (syz.3.529) did not claim interface 0 before use
[  207.808527][ T6363] usb usb1: selecting invalid altsetting 3
[  207.819603][ T6364] loop5: detected capacity change from 0 to 1024
[  207.967159][ T6364] EXT4-fs (loop5): Ignoring removed nomblk_io_submit option
[  208.011981][ T6364] EXT4-fs (loop5): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  208.265153][ T6375] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[  208.273548][ T6375] FAT-fs (loop2): Filesystem has been set read-only
[  208.516458][ T6364] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  208.875804][ T6364] System zones: 0-1, 3-36
[  208.962088][ T6364] EXT4-fs (loop5): mounted filesystem without journal. Opts: grpquota,delalloc,resuid=0x0000000000000000,debug,dioread_nolock,bsddf,nomblk_io_submit,noauto_da_alloc,,errors=continue. Quota mode: writeback.
[  209.426983][ T6386] loop2: detected capacity change from 0 to 256
[  210.535153][ T6393] netlink: 288 bytes leftover after parsing attributes in process `syz.1.536'.
[  210.562526][ T6386] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d)
[  210.854374][ T6399] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  212.848456][   T26] kauditd_printk_skb: 19 callbacks suppressed
[  212.848477][   T26] audit: type=1800 audit(1769794749.066:50): pid=6405 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.534" name="file1" dev="loop2" ino=1048635 res=0 errno=0
[  214.052460][ T6420] loop3: detected capacity change from 0 to 256
[  214.538931][ T6420] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x987a2e96, utbl_chksum : 0xe619d30d)
[  215.980868][ T6434] loop5: detected capacity change from 0 to 128
[  216.736444][ T6446] FAT-fs (loop5): error, invalid access to FAT (entry 0x00000100)
[  216.736504][ T6446] FAT-fs (loop5): Filesystem has been set read-only
[  217.275984][ T6460] loop1: detected capacity change from 0 to 256
[  217.295787][ T6462] netlink: 288 bytes leftover after parsing attributes in process `syz.5.548'.
[  218.040454][ T6460] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xf3da6b1f, utbl_chksum : 0xe619d30d)
[  219.125390][ T6473] loop5: detected capacity change from 0 to 256
[  219.697683][ T6473] xt_hashlimit: overflow, try lower: 3/0
[  219.732857][ T6472] uffd: Set unprivileged_userfaultfd sysctl knob to 1 if kernel faults must be handled without obtaining CAP_SYS_PTRACE capability
[  221.431907][ T4234] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  221.807809][ T4234] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  221.847565][ T4234] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  221.911912][ T4234] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  221.986066][ T4234] usb 4-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.00
[  222.046548][ T4234] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  222.153234][ T4234] usb 4-1: config 0 descriptor??
[  222.261678][ T6482] loop2: detected capacity change from 0 to 40427
[  222.276170][ T6493] loop1: detected capacity change from 0 to 1024
[  222.313809][ T6482] F2FS-fs (loop2): Invalid SB checksum offset: 0
[  222.329377][ T6482] F2FS-fs (loop2): Can't find valid F2FS filesystem in 2th superblock
[  222.388237][ T6493] EXT4-fs (loop1): Ignoring removed nomblk_io_submit option
[  222.435110][ T6482] F2FS-fs (loop2): invalid crc value
[  222.452068][ T6493] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  222.474734][ T6482] F2FS-fs (loop2): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437)
[  222.523115][ T6493] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  222.538117][ T6493] System zones: 0-1, 3-36
[  222.614174][ T6493] EXT4-fs (loop1): mounted filesystem without journal. Opts: grpquota,delalloc,resuid=0x0000000000000000,debug,dioread_nolock,bsddf,nomblk_io_submit,noauto_da_alloc,,errors=continue. Quota mode: writeback.
[  222.653840][ T4234] acrux 0003:1A34:0802.0007: unknown main item tag 0x0
[  222.674398][ T4234] acrux 0003:1A34:0802.0007: unknown main item tag 0x0
[  222.682613][ T4234] acrux 0003:1A34:0802.0007: item fetching failed at offset 2/5
[  222.690901][ T4234] acrux 0003:1A34:0802.0007: parse failed
[  222.700692][ T4234] acrux: probe of 0003:1A34:0802.0007 failed with error -22
[  222.813008][ T6511] loop5: detected capacity change from 0 to 128
[  222.862180][ T1325] usb 4-1: USB disconnect, device number 10
[  222.973033][ T6482] F2FS-fs (loop2): Try to recover 2th superblock, ret: 0
[  222.992654][ T6482] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  223.315678][ T6511] FAT-fs (loop5): error, invalid access to FAT (entry 0x00000100)
[  223.323725][ T6511] FAT-fs (loop5): Filesystem has been set read-only
[  223.817457][ T6526] netlink: 288 bytes leftover after parsing attributes in process `syz.1.561'.
[  224.153393][ T4819] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  224.682958][ T4819] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  224.865942][ T4819] usb 6-1: New USB device found, idVendor=0079, idProduct=0006, bcdDevice= 0.00
[  225.132015][ T4819] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  225.237156][ T4819] usb 6-1: config 0 descriptor??
[  225.298701][ T6553] loop1: detected capacity change from 0 to 128
[  225.554478][ T6553] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  225.582890][ T6553] ext4 filesystem being mounted at /127/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  225.855521][ T6563] netlink: 8 bytes leftover after parsing attributes in process `syz.3.568'.
[  225.972683][ T4819] dragonrise 0003:0079:0006.0008: unknown main item tag 0x0
[  225.980064][ T4819] dragonrise 0003:0079:0006.0008: unknown main item tag 0x0
[  226.009315][ T4819] dragonrise 0003:0079:0006.0008: unknown main item tag 0x0
[  226.031926][ T4819] dragonrise 0003:0079:0006.0008: unknown main item tag 0x0
[  226.052013][ T4819] dragonrise 0003:0079:0006.0008: unknown main item tag 0x0
[  226.094313][ T4819] dragonrise 0003:0079:0006.0008: unknown main item tag 0x0
[  226.102299][ T4819] dragonrise 0003:0079:0006.0008: unknown main item tag 0x0
[  226.109656][ T4819] dragonrise 0003:0079:0006.0008: unknown main item tag 0x0
[  226.167202][ T4819] dragonrise 0003:0079:0006.0008: unknown main item tag 0x0
[  226.221085][ T4819] dragonrise 0003:0079:0006.0008: unknown main item tag 0x0
[  226.261896][ T4819] dragonrise 0003:0079:0006.0008: unknown main item tag 0x0
[  226.505619][ T4819] dragonrise 0003:0079:0006.0008: hidraw0: USB HID v0.00 Device [HID 0079:0006] on usb-dummy_hcd.5-1/input0
[  226.531895][ T4819] dragonrise 0003:0079:0006.0008: no inputs found
[  226.538380][ T4819] dragonrise 0003:0079:0006.0008: force feedback init failed
[  226.589021][ T4819] usb 6-1: USB disconnect, device number 2
[  227.514899][ T6559] IPv6: NLM_F_REPLACE set, but no existing node found!
[  227.544083][ T6575] loop1: detected capacity change from 0 to 1024
[  227.659620][ T6585] loop5: detected capacity change from 0 to 256
[  227.682177][ T6575] EXT4-fs (loop1): Ignoring removed nomblk_io_submit option
[  227.689626][ T6575] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  227.752485][ T6575] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  227.765680][ T6581] fido_id[6581]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/report_descriptor': No such file or directory
[  227.803215][ T6575] System zones: 0-1, 3-36
[  227.847970][ T6585] FAT-fs (loop5): Directory bread(block 64) failed
[  227.883534][ T6585] FAT-fs (loop5): Directory bread(block 65) failed
[  227.890316][ T6585] FAT-fs (loop5): Directory bread(block 66) failed
[  227.899709][ T6585] FAT-fs (loop5): Directory bread(block 67) failed
[  227.907341][ T6585] FAT-fs (loop5): Directory bread(block 68) failed
[  227.914402][ T6585] FAT-fs (loop5): Directory bread(block 69) failed
[  227.921194][ T6585] FAT-fs (loop5): Directory bread(block 70) failed
[  227.928535][ T6585] FAT-fs (loop5): Directory bread(block 71) failed
[  227.935548][ T6585] FAT-fs (loop5): Directory bread(block 72) failed
[  227.942547][ T6585] FAT-fs (loop5): Directory bread(block 73) failed
[  227.974718][ T6575] EXT4-fs (loop1): mounted filesystem without journal. Opts: grpquota,delalloc,resuid=0x0000000000000000,debug,dioread_nolock,bsddf,nomblk_io_submit,noauto_da_alloc,,errors=continue. Quota mode: writeback.
[  228.312420][ T6599] netlink: 288 bytes leftover after parsing attributes in process `syz.6.575'.
[  229.134698][ T6604] loop2: detected capacity change from 0 to 512
[  229.275069][ T6604] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  229.346389][ T6611] loop3: detected capacity change from 0 to 256
[  229.357434][ T6614] loop6: detected capacity change from 0 to 128
[  229.364991][ T6604] ext4 filesystem being mounted at /111/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  229.656595][ T6611] FAT-fs (loop3): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  229.671672][ T6611] FAT-fs (loop3): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  229.682380][ T6611] FAT-fs (loop3): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  229.693376][   T26] audit: type=1800 audit(1769794766.996:51): pid=6611 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.579" name="file1" dev="loop3" ino=1048642 res=0 errno=0
[  230.651920][ T4226] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  230.891973][ T4226] usb 7-1: Using ep0 maxpacket: 32
[  230.917286][ T6623] loop3: detected capacity change from 0 to 40427
[  230.986102][ T6623] F2FS-fs (loop3): build fault injection attr: rate: 684, type: 0x1ffff
[  231.012217][ T4226] usb 7-1: config 4 has an invalid interface number: 128 but max is 0
[  231.012852][ T6623] F2FS-fs (loop3): build fault injection attr: rate: 0, type: 0x35f7
[  231.022665][ T4226] usb 7-1: config 4 has no interface number 0
[  231.065718][ T4226] usb 7-1: config 4 interface 128 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  231.100675][ T6623] F2FS-fs (loop3): invalid crc value
[  231.122128][ T6623] F2FS-fs (loop3): Found nat_bits in checkpoint
[  231.142568][ T4226] usb 7-1: config 4 interface 128 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  231.194506][ T4226] usb 7-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  231.234986][ T4226] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  231.308507][ T6623] F2FS-fs (loop3): Start checkpoint disabled!
[  231.323976][ T4226] hub 7-1:4.128: USB hub found
[  231.342790][ T6623] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[  231.543158][ T4226] hub 7-1:4.128: 2 ports detected
[  231.548411][ T4226] hub 7-1:4.128: Using single TT (err -22)
[  231.608978][ T6623] F2FS-fs (loop3) : inject kmalloc in f2fs_kmalloc of __f2fs_setxattr+0x1df/0x10e0
[  231.644395][ T6623] overlayfs: failed to verify upper (/file0, ino=14, err=-12)
[  231.675491][ T6623] overlayfs: failed to verify index dir 'upper' xattr
[  231.720414][ T6623] overlayfs: try deleting index dir or mounting with '-o index=off' to disable inodes index.
[  231.758771][ T4226] hub 7-1:4.128: hub_hub_status failed (err = -71)
[  231.777626][ T4226] hub 7-1:4.128: config failed, can't get hub status (err -71)
[  231.862771][ T4226] usb 7-1: USB disconnect, device number 2
[  232.078710][ T6668] loop1: detected capacity change from 0 to 512
[  232.123456][  T495] attempt to access beyond end of device
[  232.123456][  T495] loop3: rw=2049, want=40984, limit=40427
[  232.171410][ T6668] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.588: bg 0: block 393: padding at end of block bitmap is not set
[  232.329935][ T6668] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6194: Corrupt filesystem
[  232.443486][ T6668] EXT4-fs (loop1): 2 truncates cleaned up
[  232.470126][ T6668] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  232.692110][ T4301] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  232.895046][ T6694] netlink: 4 bytes leftover after parsing attributes in process `syz.1.593'.
[  232.916435][ T6695] loop3: detected capacity change from 0 to 128
[  232.982011][ T4301] usb 3-1: Using ep0 maxpacket: 32
[  233.229057][ T6695] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[  233.237775][ T6695] FAT-fs (loop3): Filesystem has been set read-only
[  233.261989][ T4301] usb 3-1: config 2 has an invalid interface number: 88 but max is 0
[  233.270139][ T4301] usb 3-1: config 2 has no interface number 0
[  233.291908][ T4301] usb 3-1: config 2 interface 88 has no altsetting 0
[  233.479555][ T4301] usb 3-1: New USB device found, idVendor=0557, idProduct=2009, bcdDevice=c7.1e
[  233.496720][ T4301] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  233.537953][ T4301] usb 3-1: Product: syz
[  233.544230][ T6709] loop3: detected capacity change from 0 to 1024
[  233.562206][ T4301] usb 3-1: Manufacturer: syz
[  233.581402][ T4301] usb 3-1: SerialNumber: syz
[  233.596580][ T6709] EXT4-fs (loop3): Ignoring removed nomblk_io_submit option
[  233.626179][ T6709] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  233.690968][ T6709] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  233.749282][ T6709] System zones: 0-1, 3-36
[  233.814406][ T6709] EXT4-fs (loop3): mounted filesystem without journal. Opts: grpquota,delalloc,resuid=0x0000000000000000,debug,dioread_nolock,bsddf,nomblk_io_submit,noauto_da_alloc,,errors=continue. Quota mode: writeback.
[  235.122131][ T4301] asix 3-1:2.88 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[  235.149622][ T4301] asix: probe of 3-1:2.88 failed with error -71
[  235.166136][ T4301] usb 3-1: USB disconnect, device number 12
[  235.201768][ T6712] loop5: detected capacity change from 0 to 40427
[  235.271652][ T6712] F2FS-fs (loop5): build fault injection attr: rate: 684, type: 0x1ffff
[  235.327525][ T6712] F2FS-fs (loop5): build fault injection attr: rate: 0, type: 0x35f7
[  235.379332][ T6712] F2FS-fs (loop5): invalid crc value
[  235.402893][ T6712] F2FS-fs (loop5): Found nat_bits in checkpoint
[  235.497794][ T6738] loop3: detected capacity change from 0 to 128
[  235.606686][ T6738] EXT4-fs (loop3): Test dummy encryption mode enabled
[  235.614677][ T6738] EXT4-fs (loop3): Test dummy encryption mode enabled
[  235.827309][ T6738] EXT4-fs (loop3): mounted filesystem without journal. Opts: test_dummy_encryption=v1,test_dummy_encryption=v1,,errors=continue. Quota mode: none.
[  235.843028][ T6738] ext4 filesystem being mounted at /131/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  236.218761][ T6712] F2FS-fs (loop5): Start checkpoint disabled!
[  236.351169][ T6712] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6
[  237.906473][ T6766] loop1: detected capacity change from 0 to 256
[  237.940852][ T6764] loop2: detected capacity change from 0 to 512
[  238.120413][ T6766] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x99a53fd9, utbl_chksum : 0xe619d30d)
[  238.332648][ T4301] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  238.353450][ T6764] EXT4-fs (loop2): mounted filesystem without journal. Opts: grpquota,nobarrier,noload,,errors=continue. Quota mode: writeback.
[  238.428659][ T6764] ext4 filesystem being mounted at /119/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  238.464899][ T6774] netlink: 16 bytes leftover after parsing attributes in process `syz.3.603'.
[  238.570070][ T6774] tap0: tun_chr_ioctl cmd 1074025677
[  238.618668][ T6774] tap0: linktype set to 1
[  238.742327][ T4301] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  238.775089][ T4301] usb 6-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  238.813321][ T4301] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  238.876075][ T4301] usb 6-1: config 0 descriptor??
[  239.197186][ T6784] loop1: detected capacity change from 0 to 128
[  240.999874][ T4301] keytouch 0003:0926:3333.0009: fixing up Keytouch IEC report descriptor
[  241.747104][ T4301] input: HID 0926:3333 as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/0003:0926:3333.0009/input/input9
[  241.932102][    T7] usb 7-1: new low-speed USB device number 3 using dummy_hcd
[  241.949360][ T4301] keytouch 0003:0926:3333.0009: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.5-1/input0
[  242.008886][ T4301] usb 6-1: USB disconnect, device number 3
[  242.157116][ T6799] fido_id[6799]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/report_descriptor': No such file or directory
[  242.219874][ T6803] netlink: 4 bytes leftover after parsing attributes in process `syz.5.610'.
[  242.351651][    T7] usb 7-1: unable to read config index 0 descriptor/all
[  242.369467][    T7] usb 7-1: can't read configurations, error -71
[  246.045880][ T6840] loop5: detected capacity change from 0 to 4096
[  246.107102][ T6840] EXT4-fs (loop5): Test dummy encryption mode enabled
[  246.131430][ T6840] EXT4-fs (loop5): Ignoring removed nomblk_io_submit option
[  246.159801][ T6840] EXT4-fs (loop5): Journaled quota options ignored when QUOTA feature is enabled
[  246.220767][ T6840] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0023]
[  246.231618][ T6840] System zones: 0-5
[  246.247485][ T6840] EXT4-fs (loop5): mounted filesystem without journal. Opts: debug,delalloc,dax=never,test_dummy_encryption,nodiscard,nomblk_io_submit,grpjquota=./file0,nodiscard,,errors=continue. Quota mode: writeback.
[  246.959783][ T6833] loop2: detected capacity change from 0 to 1024
[  246.987899][ T6833] EXT4-fs (loop2): Ignoring removed bh option
[  247.018036][ T6833] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  247.154177][ T6833] EXT4-fs (loop2): mounted filesystem without journal. Opts: delalloc,data_err=abort,barrier=0x0000000000000003,nodioread_nolock,bh,max_dir_size_kb=0x00000000004007b1,data_err=ignore,nouid32,quota,user_xattr,barrier,dioread_nolock,,errors=continue. Quota mode: writeback.
[  249.191172][ T6876] loop3: detected capacity change from 0 to 512
[  249.293631][ T6876] EXT4-fs (loop3): Ignoring removed oldalloc option
[  249.314377][ T6880] loop5: detected capacity change from 0 to 1024
[  249.697798][ T6880] EXT4-fs (loop5): Ignoring removed nomblk_io_submit option
[  249.843193][ T6876] ------------[ cut here ]------------
[  249.967701][ T6880] EXT4-fs (loop5): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  250.039832][ T6876] WARNING: CPU: 0 PID: 6876 at mm/page_alloc.c:5462 __alloc_pages+0x39f/0x480
[  250.669481][ T6876] Modules linked in:
[  250.822121][ T6880] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  250.848048][ T6876] CPU: 0 PID: 6876 Comm: syz.3.622 Not tainted syzkaller #0
[  251.006147][ T6880] System zones: 0-1, 3-36
[  251.016264][ T6876] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  251.041981][ T6876] RIP: 0010:__alloc_pages+0x39f/0x480
[  251.143133][ T6876] Code: 31 ff e9 b1 fe ff ff e8 0f 83 07 08 44 89 e1 80 e1 07 80 c1 03 38 c1 0f 8c 4f fd ff ff 4c 89 e7 e8 e6 bd 09 00 e9 42 fd ff ff <0f> 0b 45 31 ff e9 ee fe ff ff 65 44 8b 2d 77 af 4d 7e 41 83 fd 08
[  251.204987][ T6880] EXT4-fs (loop5): mounted filesystem without journal. Opts: grpquota,delalloc,resuid=0x0000000000000000,debug,dioread_nolock,bsddf,nomblk_io_submit,noauto_da_alloc,,errors=continue. Quota mode: writeback.
[  251.561934][ T6876] RSP: 0000:ffffc90003dff380 EFLAGS: 00010246
[  251.595499][ T6876] RAX: ffffc90003dff3c0 RBX: 1ffff920007bfe74 RCX: 0000000000000000
[  252.162500][ T6876] RDX: 0000000000000028 RSI: 0000000000000000 RDI: ffffc90003dff3e8
[  252.243331][ T6876] RBP: ffffc90003dff470 R08: ffffc90003dff3e7 R09: ffffc90003dff3c0
[  252.311961][ T6876] R10: dffffc0000000000 R11: fffff520007bfe7d R12: dffffc0000000000
[  252.335151][ T6876] R13: 0000000000000000 R14: 0000000000040c40 R15: 000000000000000c
[  252.431475][ T6876] FS:  00007f87b35826c0(0000) GS:ffff8880b9100000(0000) knlGS:0000000000000000
[  252.448319][ T6876] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  252.455112][ T6876] CR2: 00007fcbebf82368 CR3: 00000000544cf000 CR4: 00000000003506e0
[  252.486093][ T6876] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  252.529372][ T6876] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  252.573615][ T6876] Call Trace:
[  252.582387][ T6876]  <TASK>
[  252.585392][ T6876]  ? zone_statistics+0x170/0x170
[  252.590472][ T6876]  kmalloc_large_node+0x7d/0x190
[  252.614132][ T6876]  __kmalloc_node+0x232/0x3b0
[  252.619010][ T6876]  ext4_expand_extra_isize_ea+0xd26/0x19b0
[  252.642205][ T6876]  __ext4_expand_extra_isize+0x301/0x3e0
[  252.647937][ T6876]  __ext4_mark_inode_dirty+0x469/0x700
[  252.678440][ T6876]  ext4_evict_inode+0xa8d/0x1090
[  252.707813][ T6876]  ? _raw_spin_unlock+0x24/0x40
[  252.730555][ T6876]  ? ext4_inode_is_fast_symlink+0x390/0x390
[  252.747407][ T6876]  ? do_raw_spin_unlock+0x11d/0x230
[  252.771230][ T6876]  ? ext4_inode_is_fast_symlink+0x390/0x390
[  252.789493][ T6876]  evict+0x4c9/0x8d0
[  252.808837][ T6876]  ? proc_nr_inodes+0x320/0x320
[  252.827622][ T6876]  ? do_raw_spin_unlock+0x11d/0x230
[  252.841887][ T6876]  ? _raw_spin_unlock+0x24/0x40
[  252.846823][ T6876]  ? iput+0x706/0x8a0
[  252.850869][ T6876]  ext4_orphan_cleanup+0xad2/0x1320
[  252.884360][ T6876]  ? ext4_orphan_del+0xbf0/0xbf0
[  252.891313][ T6876]  ? errseq_check_and_advance+0x62/0x120
[  252.915599][ T6876]  ext4_fill_super+0x8e25/0x95a0
[  252.920658][ T6876]  ? ext4_mount+0x40/0x40
[  252.940376][ T6876]  ? set_blocksize+0x1f3/0x370
[  252.948571][ T6876]  ? sb_set_blocksize+0xa5/0xe0
[  252.979191][ T6876]  mount_bdev+0x287/0x3c0
[  253.000622][ T6876]  ? ext4_mount+0x40/0x40
[  253.011156][ T6876]  legacy_get_tree+0xe6/0x180
[  253.016471][ T6876]  ? ext4_errno_to_code+0x160/0x160
[  253.021730][ T6876]  vfs_get_tree+0x88/0x270
[  253.033050][ T6876]  do_new_mount+0x24a/0xa40
[  253.037645][ T6876]  __se_sys_mount+0x2e3/0x3d0
[  253.047426][ T6876]  ? __x64_sys_mount+0xc0/0xc0
[  253.054429][ T6876]  ? __x64_sys_mount+0x1c/0xc0
[  253.059270][ T6876]  do_syscall_64+0x4c/0xa0
[  253.068713][ T6876]  ? clear_bhb_loop+0x30/0x80
[  253.076158][ T6876]  ? clear_bhb_loop+0x30/0x80
[  253.080903][ T6876]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  253.091758][ T6876] RIP: 0033:0x7f87b532814a
[  253.099717][ T6876] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  253.123357][ T6876] RSP: 002b:00007f87b3581e58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  253.131895][ T6876] RAX: ffffffffffffffda RBX: 00007f87b3581ee0 RCX: 00007f87b532814a
[  253.140088][ T6876] RDX: 00002000000002c0 RSI: 00002000000001c0 RDI: 00007f87b3581ea0
[  253.153763][ T6876] RBP: 00002000000002c0 R08: 00007f87b3581ee0 R09: 0000000000800700
[  253.172038][ T6876] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[  253.180075][ T6876] R13: 00007f87b3581ea0 R14: 000000000000045d R15: 0000200000000200
[  253.201945][ T6876]  </TASK>
[  253.205056][ T6876] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  253.212386][ T6876] CPU: 1 PID: 6876 Comm: syz.3.622 Not tainted syzkaller #0
[  253.219707][ T6876] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  253.229788][ T6876] Call Trace:
[  253.233100][ T6876]  <TASK>
[  253.236067][ T6876]  dump_stack_lvl+0x188/0x250
[  253.240789][ T6876]  ? show_regs_print_info+0x20/0x20
[  253.246047][ T6876]  ? load_image+0x400/0x400
[  253.250603][ T6876]  panic+0x2e5/0x810
[  253.254552][ T6876]  ? bpf_jit_dump+0xd0/0xd0
[  253.259104][ T6876]  ? __alloc_pages+0x39f/0x480
[  253.263909][ T6876]  __warn+0x248/0x2b0
[  253.267942][ T6876]  ? __alloc_pages+0x39f/0x480
[  253.272746][ T6876]  report_bug+0x1b7/0x2e0
[  253.277124][ T6876]  handle_bug+0x3a/0x70
[  253.281313][ T6876]  exc_invalid_op+0x16/0x40
[  253.285939][ T6876]  asm_exc_invalid_op+0x16/0x20
[  253.290826][ T6876] RIP: 0010:__alloc_pages+0x39f/0x480
[  253.296240][ T6876] Code: 31 ff e9 b1 fe ff ff e8 0f 83 07 08 44 89 e1 80 e1 07 80 c1 03 38 c1 0f 8c 4f fd ff ff 4c 89 e7 e8 e6 bd 09 00 e9 42 fd ff ff <0f> 0b 45 31 ff e9 ee fe ff ff 65 44 8b 2d 77 af 4d 7e 41 83 fd 08
[  253.315916][ T6876] RSP: 0000:ffffc90003dff380 EFLAGS: 00010246
[  253.322031][ T6876] RAX: ffffc90003dff3c0 RBX: 1ffff920007bfe74 RCX: 0000000000000000
[  253.330036][ T6876] RDX: 0000000000000028 RSI: 0000000000000000 RDI: ffffc90003dff3e8
[  253.338048][ T6876] RBP: ffffc90003dff470 R08: ffffc90003dff3e7 R09: ffffc90003dff3c0
[  253.346055][ T6876] R10: dffffc0000000000 R11: fffff520007bfe7d R12: dffffc0000000000
[  253.354061][ T6876] R13: 0000000000000000 R14: 0000000000040c40 R15: 000000000000000c
[  253.362081][ T6876]  ? zone_statistics+0x170/0x170
[  253.367090][ T6876]  kmalloc_large_node+0x7d/0x190
[  253.372072][ T6876]  __kmalloc_node+0x232/0x3b0
[  253.376800][ T6876]  ext4_expand_extra_isize_ea+0xd26/0x19b0
[  253.382677][ T6876]  __ext4_expand_extra_isize+0x301/0x3e0
[  253.388352][ T6876]  __ext4_mark_inode_dirty+0x469/0x700
[  253.393863][ T6876]  ext4_evict_inode+0xa8d/0x1090
[  253.398832][ T6876]  ? _raw_spin_unlock+0x24/0x40
[  253.403723][ T6876]  ? ext4_inode_is_fast_symlink+0x390/0x390
[  253.409655][ T6876]  ? do_raw_spin_unlock+0x11d/0x230
[  253.414890][ T6876]  ? ext4_inode_is_fast_symlink+0x390/0x390
[  253.420826][ T6876]  evict+0x4c9/0x8d0
[  253.424775][ T6876]  ? proc_nr_inodes+0x320/0x320
[  253.429663][ T6876]  ? do_raw_spin_unlock+0x11d/0x230
[  253.434903][ T6876]  ? _raw_spin_unlock+0x24/0x40
[  253.439785][ T6876]  ? iput+0x706/0x8a0
[  253.443813][ T6876]  ext4_orphan_cleanup+0xad2/0x1320
[  253.449059][ T6876]  ? ext4_orphan_del+0xbf0/0xbf0
[  253.454292][ T6876]  ? errseq_check_and_advance+0x62/0x120
[  253.459964][ T6876]  ext4_fill_super+0x8e25/0x95a0
[  253.465071][ T6876]  ? ext4_mount+0x40/0x40
[  253.469493][ T6876]  ? set_blocksize+0x1f3/0x370
[  253.474292][ T6876]  ? sb_set_blocksize+0xa5/0xe0
[  253.479199][ T6876]  mount_bdev+0x287/0x3c0
[  253.483582][ T6876]  ? ext4_mount+0x40/0x40
[  253.487953][ T6876]  legacy_get_tree+0xe6/0x180
[  253.492661][ T6876]  ? ext4_errno_to_code+0x160/0x160
[  253.497910][ T6876]  vfs_get_tree+0x88/0x270
[  253.502362][ T6876]  do_new_mount+0x24a/0xa40
[  253.506913][ T6876]  __se_sys_mount+0x2e3/0x3d0
[  253.511646][ T6876]  ? __x64_sys_mount+0xc0/0xc0
[  253.516468][ T6876]  ? __x64_sys_mount+0x1c/0xc0
[  253.521289][ T6876]  do_syscall_64+0x4c/0xa0
[  253.525748][ T6876]  ? clear_bhb_loop+0x30/0x80
[  253.530468][ T6876]  ? clear_bhb_loop+0x30/0x80
[  253.535187][ T6876]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  253.541123][ T6876] RIP: 0033:0x7f87b532814a
[  253.545569][ T6876] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  253.565210][ T6876] RSP: 002b:00007f87b3581e58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  253.573674][ T6876] RAX: ffffffffffffffda RBX: 00007f87b3581ee0 RCX: 00007f87b532814a
[  253.581675][ T6876] RDX: 00002000000002c0 RSI: 00002000000001c0 RDI: 00007f87b3581ea0
[  253.589683][ T6876] RBP: 00002000000002c0 R08: 00007f87b3581ee0 R09: 0000000000800700
[  253.597684][ T6876] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[  253.605698][ T6876] R13: 00007f87b3581ea0 R14: 000000000000045d R15: 0000200000000200
[  253.613723][ T6876]  </TASK>
[  253.617098][ T6876] Kernel Offset: disabled
[  253.621734][ T6876] Rebooting in 86400 seconds..