last executing test programs:

12m47.45172562s ago: executing program 32 (id=92):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_VENDOR(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="01134f9b3a000000fc006700000008000300", @ANYRES32=r2, @ANYBLOB="0c00990000000000000000000800c300741300000800c40001"], 0x3c}}, 0x40000)

12m28.866965085s ago: executing program 33 (id=137):
ioprio_set$uid(0x3, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f00000001c0)='./file0\x00', 0x0, &(0x7f0000000240)={[{@nobarrier}, {@barrier}, {@noauto_da_alloc}, {@noload}, {@nobarrier}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x40}}]}, 0xfe, 0x44e, &(0x7f00000010c0)="$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")
syz_mount_image$erofs(&(0x7f0000000040), &(0x7f0000000140)='./file0\x00', 0x8, &(0x7f0000000640)=ANY=[@ANYRES16, @ANYRESDEC=0x0], 0x1, 0x1cd, &(0x7f0000000440)="$eJzslT3v0lAUxp97Cy0YP4GLgyTiYGmLGhcSWJwcTHwhDiYSKQQtYqCDkBjjJ3B3c/BjmOjqhzBoYnTBRZ1r7gvtFRHlTf7J//wSTp+2956ee254LgiCOLZ8/PBjmnyvfS4AOIkSHP38i5WN4cb494WvT95evdJ8fufVO2fqFpflTJJ//34OwJuGhTid++vskr7eAE/1TXCc07oJBlfru+C4pXUIhtta3zf0QIx33U4vCt17g6gthCeCL0IgQnWxvtkzhrZRHzPej8aTB60oCod7FH/r36zBUTPqM/fLharWM/rng8PXugqG61pfhjPvjWqJsf5TuSy/tXL9NrZc9icA2ZPOPjtri09tNB1g/2Xv9ywsSDHf0YPXs3OB3M4SJg6wizz5bf8gv4vXdbV/aalP1f16eep/eGWvmUd3PvWn5CXDWcOflJW8kEdNJe4/qozGk/O9fqsbdsOHQVC95F3wvItBRRqRiiv8ryj96USWf+mZJLCZjcetOB76Kqb3gYrLHJdL/+Mon0Fe3As3tRfyfjM00z8ur0KVTbtUSQiCII4Ap8GkJ0tfngt9mqQvkiS4duA6CYIgCIIgCIIgCILYnJ8BAAD//0FgXsk=")
open(&(0x7f0000000200)='./file2\x00', 0x100, 0x123)

11m13.38939273s ago: executing program 5 (id=396):
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000500)=[{{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000400)}], 0x1}}], 0x1, 0x40408e0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x800448d2, &(0x7f0000000240))

11m12.295724793s ago: executing program 5 (id=400):
r0 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=@newqdisc={0x40, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_pfifo_head_drop={{0x14}, {0xa}}]}, 0x40}}, 0x0)

11m11.092888013s ago: executing program 5 (id=405):
r0 = socket$netlink(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macsec0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001800)=ANY=[@ANYBLOB="480000001000010010000000ffdbdf2500000000", @ANYRES32=r2, @ANYBLOB="dc020000110004001c0012800b0001006d616373656300000c00028008000500040000000c002b80080003001f007a"], 0x48}}, 0x8000)

11m9.894667023s ago: executing program 5 (id=409):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0)
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x2a05004, 0x0)
mount$9p_unix(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x84000, 0x0)

11m9.099740885s ago: executing program 5 (id=413):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
r1 = syz_genetlink_get_family_id$gtp(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$GTP_CMD_ECHOREQ(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000780)={0x4c, r1, 0x200, 0x70bd23, 0x25dfdbfc, {}, [@GTPA_MS_ADDRESS={0x8, 0x5, @initdev={0xac, 0x1e, 0x0, 0x0}}, @GTPA_TID={0xc, 0x3, 0x4}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_MS_ADDR6={0x14, 0xc, @dev={0xfe, 0x80, '\x00', 0x12}}, @GTPA_I_TEI={0x8, 0x8, 0x1}]}, 0x4c}, 0x1, 0x0, 0x0, 0x2c04c450}, 0x4000)

11m8.368732014s ago: executing program 5 (id=417):
r0 = openat$ttynull(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
ioctl$TCSETSF(r0, 0x5404, &(0x7f0000000040)={0xfdfdffff, 0xd, 0xffffffff, 0x40000005, 0xb, "088aefdd2000"})
r1 = dup(r0)
write$UHID_INPUT(r1, &(0x7f0000001040)={0xfc, {"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", 0x1000}}, 0x1006)

11m5.616278087s ago: executing program 34 (id=417):
r0 = openat$ttynull(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
ioctl$TCSETSF(r0, 0x5404, &(0x7f0000000040)={0xfdfdffff, 0xd, 0xffffffff, 0x40000005, 0xb, "088aefdd2000"})
r1 = dup(r0)
write$UHID_INPUT(r1, &(0x7f0000001040)={0xfc, {"a2336848149e516ddd7a7fb187f70e09d038e7ff7fc6e5539b0d500a8b089b3f383563030890e0879b0a71c6e70a9b334a959b669a242f0a0af3988f7ef319520100ffe8d178708c523c921b1b3e31070d0773090acd3b78130daa41d8e8040000005802b77f07227227b7ba67e0e78657a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f30e065cd5b91cd0ae193973735b36d5b1b63dd1c00305d3f46635eb016d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000000000075271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f9081b4dd0d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1f416e56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617669314e2fbe70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d546a40b9f6ff14ac488ec130fb3850a27af9544ae15a7e454dea05918b41243513f000000000000000a3621c56cea8d20fa911a0c41db6ebe8cac64f17679141d54b34bbc9963ac4f4bb3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e1088334975e9f73483b6a62fa678ca14ffd9f9db2a7869d85864056526f889af43a6056080572286522449df466c632b3570243f989cce7cd9f465e41e610c20d80421d653a5520000008213b704c7fb082ff27590678ef9f190bae97909507041d860420c5664b27921b14dc1db8892fd32d0ad7bc946813591ad8deff4b05f60cea0da7710ac0000000000008000bea37ce0d0d4aa202f928f28381aab144a5d429a04a6a2b83c7068ae949ed06e288e810bac9c76600025e19c907f8ea2e2010000008271a1f5f8528f227e79c1389dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4fb8a48a76eafc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee5325928974d12dad99dac44c3f0008047096a44002bebc2420aed92fa9b6578b4779415d4ac01b75d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2aed9e53803ed0ca4ae3a9737d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df07847754b8400daaa69bf5c8f4350aeae9ca1207e78283cd0b20ceb360c7e658828163e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034ef655b253ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f42355bc7872c827467cfa5c4e72730d56bd068ed211cf847535edecb7b373f78b095b68441a34cb51682a8ae4d24ad0465f3927f889b813076038e79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdcce04579b5561dc825ab829827945e020c1f67ee615feb6243378e0610060f02cca4e91b2f001edb3d78fb4b55668dda93aec92a5de203717aa49c2d284acfabe262fccfcbb2b75a2183c46eb65ca8104e1b4da7fbb77ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43eaeb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e94265c803b35ee5f83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad94872cb2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7a508ae54b3cd7369dde50e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c10238e204a67737c3b42aae501b20f7694a00f16e2d0174035a2c22656dc29880acebdbe8ddbd75c2f998d8ac2dfad2ba3a504767b6b45a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7bcddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4483f8fd777d443e8b40427db6fe29068c0ca3d2414442e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf46366e7205dd8d6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439ff158e7c5419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828eea399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d81eaee5ee6cf1d0ab378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9d4afb8843dd014e5c5ad8fe995754bd9cf32fce1e31919c4b2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6d594f88a4facfd4c735a20307c737afa2d60399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a3766d5439020484f4113c4c859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee2916580dac4b008e595f437491d87abed02cefcd9db53d94d02daee67918e5d6787463183b4b87c9050000002f7809959bc048850613d17ca51055f2f416a44fe180d2d50c312cca7cb14a2bdc331f57a9817139a206fc76957227ffff2de20a4b8e3737fbb42913777c06376f799eba367e21f94ca598705f5dcb767d6f0900d6b0f6095e53c4c4234d0c1fbe434f6ab8f43c0013ee93b83946ee7759e89d7bdd1a32d7b311711b757fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7f96093530e76692839d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b34449e15e065cc7340002000000000000f288a4510de03dab19d26285eda89156d50dd385a60333ba5bbf5d77cd7007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f732ae00398e8bd1f4108b7807fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cf255315ab80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c6087f1ab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf652f406c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6528341b648cdd56fed7cdcbb1575912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae033a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a3cd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08758897fb411a94b3c2fc5d5f0db42c0456ec015f08e5247d33ae2d35603ff8454c16f8342856935125102bb784ed7148b6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee458e4cb5e930ed624806c43a006e39336d07c2b8081c128ad2706f48261f7897484c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da398000000000000000d80a4fe654578376e599aff3565b1d531f30912b9945030b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9c861a0e7e65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57079d0fe662a46b7f71cd47744db86c50b704c971d90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e0691953264d2700c838fa2c7b3425260f59554e502dcea39cb313b0000000000004ca7c12f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe36d7d3e5db21b094b8b77940b5f07722e47a08d367e5f84c96ec664b72934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1162dfa13bdc1fa7cfaadba85c72e9758f03a755d0be53f8d2a1dfb1c68cc164b0a0780d971a96ea2c4d4ca0398c2235980a9307b3d5bd3b01faffd0a5dbed2881a9700af561ac8c6b00000000000000f96f0e817fb903729a7db6ff957697c9ede7885d94ffb0969be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c148cd2f9c55f4901203a9a8a2c3e90f3943dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d0fc5a752f900000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800", 0x1000}}, 0x1006)

9m29.896729546s ago: executing program 1 (id=858):
syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000240)='./bus\x00', 0x2a10008, &(0x7f0000000100)=ANY=[], 0xf, 0xab, &(0x7f0000000340)="$eJzs1zGKwkAYBeB/s7CbdptFsLBO4x08ilhqI1aK4A3Ei3gVj5DewiKtiCOYiIidRQT5vmLgzWPgtbM7brubIiKtIlLRme7T3Wy+GA8n9Rl8pCwifiMij4jeX50Pg7r7avqyWo7K6vv58c+69b0AAMDrsug/5nNqLk7NL/Aa/m993vI+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgHe7BAAA//+dfyiL")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000740)='./file1\x00', 0x183042, 0x15)
syncfs(r0)
pwrite64(r0, &(0x7f0000000140)='2', 0xfdef, 0xe7c)

9m29.150059136s ago: executing program 1 (id=863):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x2c, r1, 0x1, 0x70bd2c, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0xb}, @NL80211_ATTR_4ADDR={0x5}]}, 0x2c}}, 0x0)

9m27.928404373s ago: executing program 1 (id=869):
r0 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'syz_tun\x00', <r2=>0x0})
sendmsg$ETHTOOL_MSG_LINKINFO_SET(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)={0x30, r0, 0x603, 0x70bd32, 0x25dfdbfc, {}, [@ETHTOOL_A_LINKINFO_PHYADDR={0x5}, @ETHTOOL_A_LINKINFO_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}]}, @ETHTOOL_A_LINKINFO_PORT={0x5, 0x2, 0x32}]}, 0x30}}, 0x10)

9m27.076802552s ago: executing program 1 (id=872):
syz_mount_image$udf(&(0x7f0000000100), &(0x7f0000000f00)='./file0\x00', 0x14444, &(0x7f0000001d80)=ANY=[@ANYBLOB="696f636861727365743d61736369692c6e6f6164696e696362000064696e6963622c6769643d69676e6f72652c7569643d666f726765742c756d61736b3d30303030303030303030303030303030303030303030322c076f6e6761642c6769643d771d0f4d30dc61469a581342d98a7a4c3534a971c3e26de72edc9ec3db403d8b2e970b9dcea448ddbb5a116ce6f67d99a77aa50bce7fc5451bcf5b13e9698d80385c54fff77d38aa9703314cd19a075893a1648dd8ef78a118122ee7a0e400"/203, @ANYRESDEC=0x0, @ANYBLOB=',nostrict,\x00'], 0xfe, 0xc22, &(0x7f00000002c0)="$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")
syz_mount_image$fuse(0x0, &(0x7f0000000080)='./bus\x00', 0x10040d0, 0x0, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000180)={[{@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@metacopy_on}]})

9m25.052321851s ago: executing program 1 (id=879):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
syz_emit_ethernet(0x2a, &(0x7f0000000240)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x8}}}}}, 0x0)
syz_emit_ethernet(0x86, &(0x7f0000000200)={@random="5b1a033f2511", @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x78, 0x0, 0x0, 0xfd, 0x11, 0x0, @empty=0x7f000000, @empty=0xe0000001}, {0x0, 0x4e20, 0x64, 0x0, @wg=@response={0x2, 0x0, 0x0, "fdcdae25a7a296872a8a5290e48e30acf8afc7e67d70a62c979cefa10a0028bd", "ae0025aef0ad02b7e6b000", {"35f3c07e0500a2ab3d58ac1500", "63081fe8fe001a08ed082ad7121d696f"}}}}}}}, 0x0)

9m23.960832646s ago: executing program 1 (id=880):
r0 = socket(0xa, 0x1, 0x0)
listen(r0, 0x80000001)
setsockopt$sock_timeval(r0, 0x1, 0x14, &(0x7f0000454ff0)={0x0, 0x2710}, 0x10)
accept4$packet(r0, 0x0, 0x0, 0x800)

9m21.147296299s ago: executing program 35 (id=880):
r0 = socket(0xa, 0x1, 0x0)
listen(r0, 0x80000001)
setsockopt$sock_timeval(r0, 0x1, 0x14, &(0x7f0000454ff0)={0x0, 0x2710}, 0x10)
accept4$packet(r0, 0x0, 0x0, 0x800)

4m51.6249403s ago: executing program 8 (id=2116):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000440), 0x2, 0x0)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x0, 0x0, 0x13f, 0x9}}, 0x20)

4m50.851448289s ago: executing program 8 (id=2119):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x4}, 0x6)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYBLOB="5c0000001400000325bd70"], 0x5c}}, 0x0)
write$bt_hci(r0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0000023f3201"], 0x138)

4m50.042539615s ago: executing program 8 (id=2123):
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
open$dir(&(0x7f0000000000)='./file0\x00', 0x4000, 0x0)
open$dir(&(0x7f0000000140)='./file0\x00', 0x1, 0x0)
open(&(0x7f0000000040)='./file0\x00', 0x400, 0x43)

4m49.295632359s ago: executing program 8 (id=2126):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000280)='./file1\x00', 0x0, &(0x7f0000000240)=ANY=[], 0x1, 0x1237, &(0x7f00000006c0)="$eJzs3E1rXFUYAOB3kon5qPlQ61cXeqgbV5cmC1eCBklBMgupRmgFcWonOOQ6E3KHQERtXbkV/Bfi0p0g/gE3/gWX3bjsQrjivZNk0qStlTJj6fNs7ptz3jfnXA4MnMs99/ab332+s11k2+1BTDUaMbUbke6kSDEVh17ZrK9Xr22ut1obV1K6vP7B6hsppaVXf/noyx8v/jo49+FPSz/Pxm8rH9/+cy0ibv2T/1m3SN0i9fqD1E7X+/1B+3remY5usZOl9F7eaRed1O0Vnb3R/rSd93d3D1K7d2NxYXevUxSp3TtIO52DNOin5nBKvZRlWVpcCO5p5lTLJ3c3bv1wpyzLiLKciaeiLMtyPhbiXDwdi7FULeIz8Ww8F+fj+XghXoyX4uUqa4x3AQAAAAAAAAAAAAAAAAAAAE+A+53/X44V5/8BAAAAAAAAAAAAAAAAAABgDN6/em1zvdXauJLSXET+7f7W/lZ9rfvXt6MbeXTiUizHX1Gd/q/V8eV3WxuXUmUlvslvDutv7m9Nn6xfrT4nMKxvVn2H9at1fTpZPxsLo/VrsRznzx5/7Yz6me8jXn9tpD6L5fj90+hHHjeqsY/rv15N6Z1b9ZziaPwLVd6xRjRG/2yOZ30AAADgUcjSkaP9+9sj+/csO91f74/r+od4PnDX/r4ZF+yhJ644+GKnneedvZPB3KmWBwWNiPjXyfcKGsNHLGfmxFzEf/7PYw2mHrZqerga908+/O7m5G/wcQvm/x/TeKyCif0kMUbHi36y/Y+LR+H8+GcFAAAAAAAAAADAgzyydwajcdb7v82o3yybHR3zrfgqm9wdAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPA3O3AsAAAAACDM3zqNjg0AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgpAAAAP//d+24Qg==")
mount$bind(&(0x7f0000000c40)='.\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1901080, 0x0)
chroot(&(0x7f0000000300)='./file0/../file0/file0\x00')
execve(&(0x7f0000000080)='./file0/../file0/file0\x00', 0x0, 0x0)

4m47.498499828s ago: executing program 8 (id=2132):
r0 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
fcntl$notify(r0, 0x402, 0x29)
r1 = syz_open_procfs(0x0, &(0x7f0000000380)='map_files\x00')
getdents64(r1, &(0x7f0000000fc0)=""/224, 0xe0)

4m46.81588563s ago: executing program 8 (id=2134):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'lo\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="340000001a00010028bd70000000000002202000ff0000070002000008000300", @ANYRES32=r2, @ANYBLOB="08000100c8141433080002000a"], 0x34}}, 0xea5bc50b6199d77e)

4m43.82063776s ago: executing program 36 (id=2134):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'lo\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="340000001a00010028bd70000000000002202000ff0000070002000008000300", @ANYRES32=r2, @ANYBLOB="08000100c8141433080002000a"], 0x34}}, 0xea5bc50b6199d77e)

2m34.252637352s ago: executing program 2 (id=2668):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={0x2c, r1, 0x5, 0x70bd27, 0x30000, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @NL80211_ATTR_PBSS={0x4}]}, 0x2c}}, 0x0)

2m33.411645203s ago: executing program 2 (id=2673):
r0 = gettid()
timer_create(0x0, &(0x7f0000000000)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)=<r1=>0x0)
timer_settime(r1, 0x0, &(0x7f0000000240)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = mq_open(&(0x7f0000000880)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|', 0x42, 0x156, 0x0)
mq_timedreceive(r2, &(0x7f0000036600)=""/102378, 0x18fea, 0x3, 0x0)

2m31.981813596s ago: executing program 2 (id=2679):
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000180)={&(0x7f0000000040)=[<r1=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_GETPLANE(r0, 0xc02064b6, &(0x7f00000001c0)={r1, <r2=>0x0, <r3=>0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_SETCRTC(r0, 0xc06864a2, &(0x7f0000000500)={0x0, 0x0, r2, r3, 0x3, 0x6, 0xbfffffe, 0x5, {0x2, 0x2006, 0x1000, 0x10a, 0x9, 0x7, 0x8, 0x4, 0xb, 0xd25, 0x7, 0x9, 0x3, 0x10005, "6f4f1a1330d477419c0fd5ae7397950a000400"}})

2m31.347116887s ago: executing program 2 (id=2681):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x800000, 0x0)
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x2a05004, 0x0)
chroot(&(0x7f0000000100)='./file0\x00')
setxattr$incfs_size(&(0x7f00000000c0)='./file0/../file0\x00', &(0x7f0000000140), 0x0, 0x0, 0x2)

2m30.547766778s ago: executing program 2 (id=2685):
sendmsg$NL80211_CMD_REQ_SET_REG(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000240)=ANY=[@ANYBLOB="c0400001", @ANYRES16=0x0, @ANYBLOB="000000000000000000001b000000200022801c000080080002000000000008000400000000000800050000000000050092000000000007002100616100007c00228034000080080003000000000008000500000000000800020000000000080003000000000008000200000000000800040000000000440000800800040000000000080007000000000008000600000000000800050000000000080001000000000008000200000000000800030000000000080007"], 0xc0}}, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000440)='blkio.bfq.dequeue\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000180), 0xfefc)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1000004, 0x10012, r0, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000140)={&(0x7f0000002000/0x3000)=nil, &(0x7f0000000000/0xe000)=nil, &(0x7f000000a000/0x2000)=nil, &(0x7f0000000000/0xc00000)=nil, &(0x7f0000002000/0x3000)=nil, &(0x7f0000008000/0x3000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000002000/0x1000)=nil, &(0x7f0000000000/0x2000)=nil, &(0x7f0000008000/0x1000)=nil, &(0x7f000000c000/0x2000)=nil, 0x0}, 0x68)

2m29.77223298s ago: executing program 2 (id=2689):
syz_mount_image$hfsplus(&(0x7f00000000c0), &(0x7f0000000300)='./file1\x00', 0x414, &(0x7f0000000340)=ANY=[], 0x1, 0x67d, &(0x7f0000000780)="$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")
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f0000000340)='syzkaller\x00', 0x3, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r0}, 0x18)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x101000, 0x108)
getdents64(r1, &(0x7f0000001f80)=""/4071, 0xfe7)

2m27.398102947s ago: executing program 37 (id=2689):
syz_mount_image$hfsplus(&(0x7f00000000c0), &(0x7f0000000300)='./file1\x00', 0x414, &(0x7f0000000340)=ANY=[], 0x1, 0x67d, &(0x7f0000000780)="$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")
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f0000000340)='syzkaller\x00', 0x3, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r0}, 0x18)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x101000, 0x108)
getdents64(r1, &(0x7f0000001f80)=""/4071, 0xfe7)

1m5.368902607s ago: executing program 7 (id=2963):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x46, &(0x7f0000000080)=0x100, 0x1)
setsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000000)={@multicast1, @remote}, 0xc)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
getsockopt$inet_buf(r0, 0x0, 0x29, &(0x7f0000000000)=""/102, &(0x7f0000000080)=0x66)

1m4.484478454s ago: executing program 7 (id=2967):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001680)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x40001}, 0x4040850)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a48000000030a0fdb00000000000000000a0000050900030073797a30000000000900010073797a310000000014000480080002403cb140bb0800014000000003080005400000000014000000110001"], 0x70}, 0x1, 0x0, 0x0, 0x4000850}, 0x24000840)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000840)={&(0x7f0000000c40)=ANY=[@ANYBLOB="580000001000010009000000000000000000ffff", @ANYRES32=0x0, @ANYBLOB="00000000da44000024001a8020000a8014000700fe8000000000000000020040000000000500080002000000140003007866726d30"], 0x58}}, 0x40408c4)

1m3.532074994s ago: executing program 7 (id=2973):
set_mempolicy(0x3, &(0x7f0000000880)=0x6, 0x3)
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f0000000180)={0x7a2a, 0x9, 0x5a}, 0x8)
sendmsg$inet_sctp(r0, &(0x7f0000000700)={&(0x7f0000000340)=@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10, &(0x7f00000006c0)=[{&(0x7f0000000640)="0c4a522d12", 0x5}], 0x1, 0x0, 0x0, 0x2804c044}, 0x0)
shutdown(r0, 0x1)

1m2.18792205s ago: executing program 7 (id=2980):
syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x21008, 0x0, 0x0, 0x0, 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
chroot(&(0x7f0000000100)='./file0\x00')
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f00000003c0)='./file0\x00', 0x0, 0x2a05004, 0x0)
pivot_root(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0/../file0\x00')

1m1.207690197s ago: executing program 7 (id=2985):
r0 = creat(&(0x7f0000000280)='./file0\x00', 0x0)
close(r0)
socket$inet_mptcp(0x2, 0x1, 0x106)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
mount$9p_fd(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200), 0x0, &(0x7f0000000440)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

1m0.325447527s ago: executing program 7 (id=2990):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000080000000000000010000009400000007ad4160850000000f00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='netlink_extack\x00', r0}, 0x10)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000480)=ANY=[@ANYBLOB="180000006a004d"], 0x18}}, 0x20004000)
sendmmsg(r1, &(0x7f00000002c0), 0x40000000000009f, 0x0)

58.301237043s ago: executing program 38 (id=2990):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000080000000000000010000009400000007ad4160850000000f00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='netlink_extack\x00', r0}, 0x10)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000480)=ANY=[@ANYBLOB="180000006a004d"], 0x18}}, 0x20004000)
sendmmsg(r1, &(0x7f00000002c0), 0x40000000000009f, 0x0)

9.244737761s ago: executing program 3 (id=3157):
syz_mount_image$hfs(&(0x7f0000002c80), &(0x7f0000000040)='./file1\x00', 0x4490, &(0x7f0000000080)=ANY=[@ANYRESOCT], 0xfd, 0x2af, &(0x7f00000002c0)="$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")
r0 = userfaultfd(0x80801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000040)={0xaa, 0x100})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
ioctl$UFFDIO_UNREGISTER(r0, 0x8010aa01, &(0x7f0000000300)={&(0x7f0000ffd000/0x3000)=nil, 0x3000})

8.590371587s ago: executing program 3 (id=3160):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x56a, 0x331, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x80, 0x0, [{{0x9, 0x4, 0x0, 0x2, 0x1, 0x3, 0x0, 0x1, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x4f8}}, {{{0x9, 0x5, 0x81, 0x3, 0x40, 0x4}}}}}]}}]}}, 0x0)
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f0000000c40)='./file1\x00', 0x810410, &(0x7f00000059c0)=ANY=[], 0x5, 0x1e5, &(0x7f00000001c0)="$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")
syz_usb_connect$cdc_ecm(0x2, 0x57, &(0x7f00000003c0)={{0x12, 0x1, 0x201, 0x2, 0x0, 0x0, 0xff, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x45, 0x1, 0x1, 0x5, 0x50, 0x1, [{{0x9, 0x4, 0x0, 0x8, 0x2, 0x2, 0x6, 0x0, 0x1, {{0xa, 0x24, 0x6, 0x0, 0x0, "274f5a9eff"}, {0x5, 0x24, 0x0, 0xfffb}, {0xd, 0x24, 0xf, 0x1, 0x5, 0xfffe, 0x68f, 0x5}, [@call_mgmt={0x5, 0x24, 0x1, 0x2, 0x3}]}, {[], {{0x9, 0x5, 0x82, 0x2, 0x10, 0x80, 0x2, 0x1}}, {{0x9, 0x5, 0x3, 0x2, 0x200, 0x7, 0xe5, 0x4}}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000140)={0x24, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="00220508"], 0x0}, 0x0)

7.839532235s ago: executing program 0 (id=3164):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'bond0\x00', <r2=>0x0})
setsockopt$packet_int(r0, 0x107, 0x14, &(0x7f0000000000)=0x5, 0x4)
sendto$packet(r0, &(0x7f0000000080)="33031600d1fd140000007ef52f55", 0xe, 0x40008c1, &(0x7f00000000c0)={0x11, 0x86dd, r2, 0x1, 0x62, 0x6, @random="e5adbf838f60"}, 0x14)

7.06682019s ago: executing program 0 (id=3167):
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000000)={0x1, 0x5}, 0x4)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'ip6gretap0\x00', <r2=>0x0})
sendto$packet(r1, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x11, 0x4, r2, 0x1, 0xe0, 0x6, @local}, 0x14)

6.511847998s ago: executing program 0 (id=3169):
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4f23, 0x2000005, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, 0x1c)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x3}, 0x6)
write$bt_hci(r0, &(0x7f0000000180)=ANY=[@ANYBLOB="0e000100"], 0x8)

6.18182058s ago: executing program 9 (id=3170):
r0 = fsopen(&(0x7f0000000040)='fuseblk\x00', 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40042, 0x1)
close(r1)
socket$inet_sctp(0x2, 0x1, 0x84)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}})

5.633856477s ago: executing program 0 (id=3173):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
bind$bt_l2cap(r0, &(0x7f0000000000), 0x6)
listen(r0, 0x9)
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f00000002c0)={0x80000008})

5.550515012s ago: executing program 3 (id=3174):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
sendmmsg$inet_sctp(r0, &(0x7f0000003fc0)=[{&(0x7f0000000100)=@in={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10, &(0x7f00000007c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1, 0x0, 0x0, 0x20000004}], 0x1, 0x20000000)
sendmsg$inet_sctp(r0, &(0x7f0000000040)={&(0x7f0000000340)=@in={0x2, 0x4e21, @rand_addr=0x64010100}, 0x10, &(0x7f00000006c0)=[{&(0x7f00000000c0)="83", 0x1}], 0x1, 0x0, 0x0, 0x804c040}, 0x24000000)
shutdown(r0, 0x1)
getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(r0, 0x84, 0x6c, &(0x7f0000000240), &(0x7f0000000080)=0x8)

5.27778654s ago: executing program 9 (id=3175):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0xa0000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f00000000c0)={0x0, 0x115000})
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f0000000340)={0x10004, 0x10000})

5.129138108s ago: executing program 0 (id=3176):
r0 = syz_io_uring_setup(0x1dee, &(0x7f0000000240)={0x0, 0x5e93, 0x3000, 0x0, 0xab}, &(0x7f00000000c0), &(0x7f0000000040))
r1 = socket(0x10, 0x3, 0xa)
r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x7fffffffffffffff)
ppoll(&(0x7f00000001c0)=[{r0, 0x20}], 0x1, 0x0, 0x0, 0x0)

4.570958892s ago: executing program 9 (id=3179):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
r1 = syz_usb_connect(0x3, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100008010bd40820514009dbb0000000109022400011b00000009040000022a3e740009058bff7f0000100109050b362f"], 0x0)
syz_open_dev$midi(&(0x7f0000000000), 0x3, 0x88c02)
syz_usb_disconnect(r1)
close_range(r0, 0xffffffffffffffff, 0x0)

4.142632999s ago: executing program 6 (id=3180):
r0 = inotify_init1(0x0)
r1 = inotify_add_watch(r0, &(0x7f0000000200)='.\x00', 0x400)
r2 = dup(r0)
read$FUSE(r2, 0x0, 0x0)
inotify_rm_watch(r2, r1)

4.104460506s ago: executing program 4 (id=3181):
openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x2, 0x2002)
ioctl$EVIOCGRAB(r0, 0x40044590, &(0x7f0000000140)=0x6)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$PIO_UNIMAP(r1, 0x4b52, &(0x7f0000000040)={0x0, 0x0})

4.052726831s ago: executing program 3 (id=3182):
r0 = socket$inet_icmp(0x2, 0x2, 0x1)
bind$inet(r0, &(0x7f0000000100)={0x2, 0x4e23, @local}, 0x10)
r1 = syz_open_procfs(0x0, &(0x7f0000000300)='net/icmp\x00')
socket$inet6_icmp(0xa, 0x2, 0x3a)
pread64(r1, &(0x7f00000003c0)=""/243, 0xf3, 0x8)

3.653802073s ago: executing program 0 (id=3183):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
shutdown(r0, 0x0)

3.494776875s ago: executing program 4 (id=3184):
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x1e, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000001"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x8, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2568}, 0x94)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x2400, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x1, 0x3, 0x6000, 0x2000, &(0x7f0000fa3000/0x2000)=nil})
ioctl$KVM_CREATE_DEVICE(r1, 0xc018aec0, &(0x7f00000000c0)={0x1})

3.459932182s ago: executing program 6 (id=3185):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f00000000c0)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r0}, 0x10)
r1 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
close(r1)
execve(&(0x7f0000000300)='./file0\x00', &(0x7f0000002200)={[&(0x7f0000000340)='^-%-\\x\\$})\'!&}*', &(0x7f0000000440)='syz0']}, 0x0)

3.25024273s ago: executing program 3 (id=3186):
r0 = syz_usb_connect$rtl8150(0x3, 0x3f, &(0x7f00000003c0)={{0x12, 0x1, 0x110, 0xff, 0xff, 0x0, 0x40, 0xbda, 0x8150, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x1, 0x5, 0x80, 0x0, {{0x9, 0x4, 0x0, 0x7f, 0x3, 0xff, 0x11, 0x1, 0x5, "", {{0x9, 0x5, 0x81, 0x2, 0x40, 0x6, 0x9, 0x4}, {0x9, 0x5, 0x2, 0x2, 0x20, 0x2, 0x57, 0x6e}, {0x9, 0x5, 0x83, 0x3, 0x240, 0x3, 0x82, 0x8}}}}}}]}}, 0x0)
syz_usb_control_io$rtl8150(r0, &(0x7f0000000580)={0x14, 0x0, &(0x7f0000000480)={0x0, 0x3, 0x3}}, 0x0)
syz_usb_control_io$rtl8150(r0, &(0x7f0000002980)={0x14, 0x0, &(0x7f00000028c0)={0x0, 0x3, 0x3}}, 0x0)
syz_usb_control_io$rtl8150(r0, 0x0, 0x0)
syz_usb_control_io$rtl8150(r0, 0x0, &(0x7f0000004280)={0x2c, 0x0, 0x0, 0x0, 0x0, &(0x7f0000004240)={0x40, 0x5, 0x2, "2bd8"}})

2.659978859s ago: executing program 4 (id=3187):
unshare(0x22020600)
bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xc, &(0x7f0000000b80)=ANY=[@ANYBLOB="aad3c3ec11a4b6044733534aa7"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xbb2b}, 0x94)
r0 = socket(0x40000000015, 0x5, 0x0)
recvmmsg(r0, &(0x7f0000000b40)=[{{0x0, 0x38, 0x0, 0x0, &(0x7f0000000280)=""/11, 0xb}}], 0x5df, 0x2001, 0x0)
ppoll(&(0x7f0000000080)=[{r0}], 0x1, 0x0, 0x0, 0x0)

2.450007404s ago: executing program 6 (id=3188):
r0 = syz_io_uring_setup(0x4b5, &(0x7f0000010400)={0x0, 0x8086e1, 0x0, 0x1, 0xfffffffd}, &(0x7f0000000500), &(0x7f0000000000))
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f0000000140)=[{0x0}, {0x0}], 0x2)
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x600, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r0, 0x10, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000540)=[{0x0}, {&(0x7f0000000340), 0xa002a0}], &(0x7f00000005c0), 0x2}, 0x20)

2.351736775s ago: executing program 9 (id=3189):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r0, &(0x7f0000000180)=@pppol2tpv3={0x18, 0x1, {0x3, r1, {0x2, 0x4e23, @broadcast}, 0x2, 0x0, 0x4}}, 0x2e)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0xe22, 0x0, @empty}, 0x1c)
syz_emit_ethernet(0x4c, &(0x7f0000000040)={@link_local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x3c}, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, '\x00', 0x16, 0x11, 0xff, @dev={0xfe, 0x80, '\x00', 0x37}, @mcast2, {[], {0x0, 0xe22, 0x16, 0x0, @gue={{0x2, 0x0, 0x2, 0x2}, "30b00ae98e79"}}}}}}}, 0x0)

1.965020066s ago: executing program 4 (id=3190):
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = dup(r0)
setsockopt$inet_mtu(r1, 0x0, 0xa, &(0x7f0000000000)=0x3, 0x4)
setsockopt$inet_udp_int(r1, 0x11, 0x67, &(0x7f0000000040)=0x4, 0x4)
sendmmsg$inet6(r1, &(0x7f0000005c00)=[{{&(0x7f00000022c0)={0xa, 0x4e23, 0x1, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0xd}}, 0x6}, 0x1c, &(0x7f0000003a40)=[{&(0x7f00000037c0)="1049456d5c", 0x5}], 0x1}}], 0x1, 0x20000080)

1.553956641s ago: executing program 6 (id=3191):
syz_mount_image$exfat(&(0x7f0000000080), &(0x7f0000000240)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0xa1008a, &(0x7f00000004c0)=ANY=[], 0x21, 0x1517, &(0x7f0000001240)="$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")
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000000040)="4dc07f9471", 0x5)
syz_emit_ethernet(0x12, &(0x7f0000000040)=ANY=[@ANYBLOB="aab2aa"], 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)

1.317585394s ago: executing program 9 (id=3192):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000100)=ANY=[], 0x32600)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r0, 0x0)
r1 = socket$inet(0x2, 0x802, 0x1)
write(r1, &(0x7f0000000440)="08008edf773c8000", 0x8)

1.170750937s ago: executing program 4 (id=3193):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000000000000000000001000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000280)='netlink_extack\x00', r0}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="3800000054000100040000000000000807000000", @ANYRES32, @ANYBLOB="200001"], 0x38}, 0x1, 0x0, 0x0, 0x10}, 0x40080)

617.60381ms ago: executing program 6 (id=3194):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
mremap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x2000, 0x3, &(0x7f0000b0c000/0x2000)=nil)
mlock(&(0x7f0000bfc000/0x3000)=nil, 0x3000)
mbind(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2)

493.831863ms ago: executing program 9 (id=3195):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0x3, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000100)={'syzkaller1\x00', @broadcast})
write$tun(r0, &(0x7f0000000440)={@val={0x8, 0x800}, @val={0x5, 0x0, 0x6, 0x0, 0x14}, @ipv4=@generic={{0x5, 0x4, 0x2, 0x2, 0x1c, 0x66, 0x0, 0xb, 0x89, 0x0, @rand_addr=0x64010102, @broadcast}, "3297e3ba0fa8a2e7"}}, 0x2a)

193.062763ms ago: executing program 4 (id=3196):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000800), r0)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000840)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000a40)={&(0x7f0000000240)=ANY=[@ANYBLOB="60010000", @ANYRES16=r2, @ANYBLOB="010028bd7000fedbdf254400000008000300", @ANYRES32=r3, @ANYBLOB="0a0018000303030303030000080070"], 0x160}, 0x1, 0x0, 0x0, 0x18000}, 0x0)

181.108993ms ago: executing program 3 (id=3197):
unshare(0x28040600)
r0 = syz_open_dev$sg(&(0x7f00000002c0), 0xe6, 0x2602)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0xd, 0x11, r0, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$inet_tcp_buf(r1, 0x6, 0x1a, 0x0, &(0x7f0000000040))

0s ago: executing program 6 (id=3198):
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file2\x00', 0x8, &(0x7f0000000080)={[{@nodioread_nolock}, {@sb={'sb', 0x3d, 0x1}}]}, 0x4, 0x523, &(0x7f00000018c0)="$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")
r0 = open(&(0x7f0000000040)='./file0\x00', 0x400, 0x43)
mknodat$loop(r0, &(0x7f00000002c0)='./file1\x00', 0x6000, 0x0)
syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f00000000c0)='./bus\x00', 0x2c600, 0x0, 0xbe, 0x0, &(0x7f00000007c0))
rename(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='./bus/file0\x00')

kernel console output (not intermixed with test programs):

769][   T42] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  671.543155][   T42] dvb-usb: bulk message failed: -22 (6/0)
[  671.549585][   T42] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[  671.610420][   T42] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.3/usb4/4-1/input/input17
[  671.672874][   T42] dvb-usb: schedule remote query interval to 150 msecs.
[  671.680087][   T42] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[  671.834820][   T42] dvb-usb: bulk message failed: -22 (1/0)
[  671.841045][   T42] dvb-usb: error while querying for an remote control event.
[  672.015632][   T42] dvb-usb: bulk message failed: -22 (1/0)
[  672.021998][   T42] dvb-usb: error while querying for an remote control event.
[  672.086710][T10306] loop2: detected capacity change from 0 to 128
[  672.113183][T10305] netlink: 152 bytes leftover after parsing attributes in process `syz.7.1653'.
[  672.126065][T10305] netlink: 24 bytes leftover after parsing attributes in process `syz.7.1653'.
[  672.186311][   T42] dvb-usb: bulk message failed: -22 (1/0)
[  672.195743][   T42] dvb-usb: error while querying for an remote control event.
[  672.365475][   T42] dvb-usb: bulk message failed: -22 (1/0)
[  672.375006][   T42] dvb-usb: error while querying for an remote control event.
[  672.545453][   T42] dvb-usb: bulk message failed: -22 (1/0)
[  672.557876][   T42] dvb-usb: error while querying for an remote control event.
[  672.735878][   T42] dvb-usb: bulk message failed: -22 (1/0)
[  672.742448][   T42] dvb-usb: error while querying for an remote control event.
[  672.905056][   T42] dvb-usb: bulk message failed: -22 (1/0)
[  672.911135][   T42] dvb-usb: error while querying for an remote control event.
[  673.085752][   T42] dvb-usb: bulk message failed: -22 (1/0)
[  673.092167][   T42] dvb-usb: error while querying for an remote control event.
[  673.254851][   T42] dvb-usb: bulk message failed: -22 (1/0)
[  673.261119][   T42] dvb-usb: error while querying for an remote control event.
[  673.315386][T10314] loop7: detected capacity change from 0 to 1024
[  673.368059][T10314] EXT4-fs: inline encryption not supported
[  673.445622][ T1669] usb 4-1: USB disconnect, device number 15
[  673.520976][ T1669] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[  673.562535][T10314] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  674.395394][ T7268] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  676.084896][   T42] usb 4-1: new high-speed USB device number 16 using dummy_hcd
[  676.264955][   T42] usb 4-1: Using ep0 maxpacket: 32
[  676.288656][   T42] usb 4-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  676.303891][   T42] usb 4-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  676.420053][   T42] usb 4-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  676.433027][   T42] usb 4-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0
[  676.445325][   T42] usb 4-1: Product: syz
[  676.449768][   T42] usb 4-1: Manufacturer: syz
[  676.556687][   T42] hub 4-1:4.0: USB hub found
[  676.838857][   T42] hub 4-1:4.0: 2 ports detected
[  676.849048][   T42] hub 4-1:4.0: insufficient power available to use all downstream ports
[  677.247204][   T42] hub 4-1:4.0: set hub depth failed
[  677.289803][   T42] usb 4-1: USB disconnect, device number 16
[  677.657171][T10357] loop2: detected capacity change from 0 to 1024
[  678.014395][ T4082] hfsplus: b-tree write err: -5, ino 4
[  678.539074][T10370] loop3: detected capacity change from 0 to 64
[  678.588724][T10366] loop8: detected capacity change from 0 to 1024
[  678.633409][T10366] EXT4-fs: Ignoring removed nomblk_io_submit option
[  678.702284][T10366] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  678.799082][T10366] System zones: 0-1, 3-36
[  678.877301][T10366] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  678.902192][T10372] loop2: detected capacity change from 0 to 1024
[  678.976629][T10372] EXT4-fs: Ignoring removed nomblk_io_submit option
[  679.107536][T10372] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  679.205380][T10382] loop7: detected capacity change from 0 to 256
[  679.354613][T10382] exfat: Deprecated parameter 'namecase'
[  679.360916][T10382] exfat: Deprecated parameter 'utf8'
[  679.530744][T10382] exFAT-fs (loop7): failed to load upcase table (idx : 0x0001ff53, chksum : 0xd72bb7d8, utbl_chksum : 0xe619d30d)
[  679.635557][ T8475] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  679.745009][ T5791] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  680.360909][T10391] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1688'.
[  680.435322][T10391] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1688'.
[  681.445091][T10399] loop2: detected capacity change from 0 to 1024
[  681.602923][T10405] netlink: 'syz.8.1694': attribute type 2 has an invalid length.
[  681.611334][T10405] netlink: 'syz.8.1694': attribute type 2 has an invalid length.
[  681.619789][T10405] netlink: 8 bytes leftover after parsing attributes in process `syz.8.1694'.
[  681.927821][ T4082] hfsplus: b-tree write err: -5, ino 4
[  683.195624][T10412] loop7: detected capacity change from 0 to 4096
[  683.508619][   T42] kernel read not supported for file /media0 (pid: 42 comm: kworker/1:1)
[  684.166515][ T3791] ntfs3(loop7): ino=5, mi_enum_attr
[  684.178170][ T3791] ntfs3(loop7): ino=5, mi_enum_attr
[  684.325654][T10433] netlink: 16 bytes leftover after parsing attributes in process `syz.8.1707'.
[  684.352667][T10433] bond0: entered promiscuous mode
[  684.357958][T10433] bond_slave_0: entered promiscuous mode
[  684.365239][T10433] bond_slave_1: entered promiscuous mode
[  684.472016][T10433] bond0: left promiscuous mode
[  684.477101][T10433] bond_slave_0: left promiscuous mode
[  684.484425][T10433] bond_slave_1: left promiscuous mode
[  685.273826][T10444] netlink: 'syz.8.1713': attribute type 8 has an invalid length.
[  685.558022][T10441] loop7: detected capacity change from 0 to 4096
[  685.715314][T10449] NILFS (loop7): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  686.158702][T10455] loop6: detected capacity change from 0 to 256
[  686.297458][T10455] exFAT-fs (loop6): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  687.313555][T10469] netlink: 'syz.2.1722': attribute type 7 has an invalid length.
[  688.019599][T10477] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1724'.
[  688.032763][T10477] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1724'.
[  688.635272][T10481] loop8: detected capacity change from 0 to 512
[  688.636441][T10483] loop7: detected capacity change from 0 to 16
[  688.670002][T10481] EXT4-fs: inline encryption not supported
[  688.717200][T10483] erofs (device loop7): mounted with root inode @ nid 36.
[  688.771045][T10483] syz.7.1729: attempt to access beyond end of device
[  688.771045][T10483] loop7: rw=524288, sector=0, nr_sectors = 64 limit=16
[  688.790305][T10483] erofs (device loop7): invalid de[0].nameoff 0 @ nid 36
[  688.810228][T10483] erofs (device loop7): invalid de[0].nameoff 0 @ nid 36
[  688.815146][T10481] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  689.011113][T10491] loop3: detected capacity change from 0 to 2048
[  689.049800][T10491] UDF-fs: error (device loop3): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[  689.074525][T10491] UDF-fs: warning (device loop3): udf_load_vrs: No anchor found
[  689.083009][T10491] UDF-fs: Scanning with blocksize 512 failed
[  689.093392][   T30] audit: type=1804 audit(1764585686.978:88): pid=10481 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.8.1728" name="/newroot/153/file0/bus" dev="loop8" ino=18 res=1 errno=0
[  689.118987][   T30] audit: type=1800 audit(1764585686.978:89): pid=10481 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.1728" name="bus" dev="loop8" ino=18 res=0 errno=0
[  689.205008][T10491] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  689.647250][ T8475] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  691.651642][T10517] loop2: detected capacity change from 0 to 512
[  691.702003][T10517] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  691.835696][T10517] EXT4-fs (loop2): 1 truncate cleaned up
[  691.845012][T10517] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  692.059930][T10517] EXT4-fs (loop2): shut down requested (1)
[  692.516319][ T5791] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  694.762423][T10557] loop7: detected capacity change from 0 to 128
[  694.821132][T10557] UDF-fs: error (device loop7): udf_read_tagged: read failed, block=256, location=256
[  694.868219][T10557] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  695.652975][ T1669] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  695.852398][ T1669] usb 3-1: Using ep0 maxpacket: 16
[  695.875821][ T1669] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  695.887583][ T1669] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  695.899907][ T1669] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  695.910351][ T1669] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[  695.920630][ T1669] usb 3-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  696.126262][ T1669] usb 3-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  696.136368][ T1669] usb 3-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  696.145404][ T1669] usb 3-1: Manufacturer: syz
[  696.225823][ T1669] usb 3-1: config 0 descriptor??
[  696.522095][T10571] loop7: detected capacity change from 0 to 4096
[  696.535673][T10571] EXT4-fs: Ignoring removed mblk_io_submit option
[  696.596252][T10571] EXT4-fs (loop7): Test dummy encryption mode enabled
[  696.737645][T10563] loop2: detected capacity change from 0 to 512
[  696.780233][T10571] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  696.843509][ T1669] rc_core: IR keymap rc-hauppauge not found
[  696.849661][ T1669] Registered IR keymap rc-empty
[  696.855754][ T1669] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  696.872498][T10563] EXT4-fs (loop2): Test dummy encryption mode enabled
[  696.958614][ T1669] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  696.967891][T10563] EXT4-fs error (device loop2): ext4_iget_extra_inode:5075: inode #12: comm syz.2.1763: corrupted in-inode xattr: invalid ea_ino
[  696.995818][ T1669] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/rc/rc0
[  697.010882][ T1669] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/rc/rc0/input18
[  697.085237][   T30] audit: type=1804 audit(1764585694.938:90): pid=10581 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.7.1767" name=2F6E6577726F6F742F3235332F131377C5FC35D41454D5D41D29AD1A6029598146E6BE166E41AD0DBD4054033C9F33BBDA8224A2F3D772E7636E48B33CBF708372E8F1B9933EC5127743BE2206209EF02DF9CBF2F6E880D3382F66696C6531 dev="loop7" ino=15 res=1 errno=0
[  697.115907][T10563] EXT4-fs (loop2): Remounting filesystem read-only
[  697.131263][T10563] EXT4-fs (loop2): mounted filesystem 00000005-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  697.222903][ T1669] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  697.257275][ T1669] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  697.347506][ T1669] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  697.397951][ T1669] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  697.442328][ T1669] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  697.462898][ T1669] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  697.507815][ T1669] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  697.577290][ T1669] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  697.623683][ T1669] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  697.666804][ T1669] mceusb 3-1:0.0: Error: mce write submit urb error = -90
[  697.711672][ T7268] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  697.736277][ T1669] mceusb 3-1:0.0: Registered   with mce emulator interface version 1
[  697.745151][ T1669] mceusb 3-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[  697.789935][ T1669] usb 3-1: USB disconnect, device number 8
[  698.557851][T10590] loop7: detected capacity change from 0 to 256
[  698.614546][ T5791] EXT4-fs (loop2): unmounting filesystem 00000005-0000-0000-0000-000000000000.
[  698.859205][T10596] loop8: detected capacity change from 0 to 512
[  698.880186][T10590] FAT-fs (loop7): Directory bread(block 64) failed
[  698.887500][T10590] FAT-fs (loop7): Directory bread(block 65) failed
[  698.894701][T10590] FAT-fs (loop7): Directory bread(block 66) failed
[  698.901749][T10590] FAT-fs (loop7): Directory bread(block 67) failed
[  698.908812][T10590] FAT-fs (loop7): Directory bread(block 68) failed
[  698.915973][T10590] FAT-fs (loop7): Directory bread(block 69) failed
[  698.923077][T10590] FAT-fs (loop7): Directory bread(block 70) failed
[  698.929859][T10590] FAT-fs (loop7): Directory bread(block 71) failed
[  698.942156][T10590] FAT-fs (loop7): Directory bread(block 72) failed
[  698.950403][T10590] FAT-fs (loop7): Directory bread(block 73) failed
[  699.079164][T10596] EXT4-fs error (device loop8): ext4_orphan_get:1392: inode #15: comm syz.8.1776: inode has both inline data and extents flags
[  699.135075][T10592] loop6: detected capacity change from 0 to 4096
[  699.160998][T10596] EXT4-fs error (device loop8): ext4_orphan_get:1397: comm syz.8.1776: couldn't read orphan inode 15 (err -117)
[  699.182719][T10592] ntfs3(loop6): Different NTFS sector size (4096) and media sector size (512).
[  699.195705][T10596] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  699.453911][ T8475] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  699.612905][T10592] ntfs3(loop6): ino=19, mi_enum_attr
[  699.618546][T10592] ntfs3(loop6): Mark volume as dirty due to NTFS errors
[  699.846749][   T30] audit: type=1800 audit(1764585697.738:91): pid=10592 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.1774" name="file0" dev="loop6" ino=0 res=0 errno=0
[  701.241366][T10621] loop7: detected capacity change from 0 to 256
[  701.469986][T10621] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0xecfd5def, utbl_chksum : 0xe619d30d)
[  701.662705][T10627] loop2: detected capacity change from 0 to 512
[  701.792796][T10627] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  701.810161][T10627] ext4 filesystem being mounted at /394/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  702.045686][T10627] EXT4-fs (loop2): shut down requested (1)
[  702.399541][ T5791] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  702.971313][T10645] loop3: detected capacity change from 0 to 1024
[  703.170741][T10645] hfsplus: bad catalog entry type
[  703.480340][   T35] hfsplus: b-tree write err: -5, ino 4
[  705.085674][T10672] loop7: detected capacity change from 0 to 1024
[  705.165815][ T1669] kernel read not supported for file /dsp (pid: 1669 comm: kworker/0:2)
[  706.057214][ T1669] usb 7-1: new high-speed USB device number 14 using dummy_hcd
[  706.274046][ T1669] usb 7-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  706.284156][ T1669] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  706.368028][   T42] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[  706.374731][ T1669] usb 7-1: config 0 descriptor??
[  706.396031][ T1669] cp210x 7-1:0.0: cp210x converter detected
[  706.602114][   T42] usb 9-1: Using ep0 maxpacket: 16
[  706.658461][   T42] usb 9-1: config 0 has an invalid interface number: 105 but max is 0
[  706.667302][   T42] usb 9-1: config 0 has no interface number 0
[  706.668330][ T1669] usb 7-1: cp210x converter now attached to ttyUSB0
[  706.781994][   T42] usb 9-1: New USB device found, idVendor=046d, idProduct=08f3, bcdDevice= b.28
[  706.794834][   T42] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  706.806934][   T42] usb 9-1: Product: syz
[  706.811819][   T42] usb 9-1: Manufacturer: syz
[  706.816748][   T42] usb 9-1: SerialNumber: syz
[  706.866354][ T1669] usb 7-1: USB disconnect, device number 14
[  706.903238][   T42] usb 9-1: config 0 descriptor??
[  706.936136][ T1669] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  706.945493][ T1669] cp210x 7-1:0.0: device disconnected
[  707.148504][   T42] uvcvideo 9-1:0.105: Found UVC 0.00 device syz (046d:08f3)
[  707.159659][   T42] uvcvideo 9-1:0.105: No valid video chain found.
[  707.218676][   T42] usb 9-1: USB disconnect, device number 5
[  708.038645][T10695] block nbd2: Unsupported socket: should be TCP or UNIX.
[  708.865169][T10702] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1823'.
[  709.087388][T10704] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1824'.
[  709.150251][T10706] program syz.7.1825 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  710.535782][T10721] loop3: detected capacity change from 0 to 16
[  710.659056][T10721] erofs (device loop3): mounted with root inode @ nid 36.
[  710.765526][T10724] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1833'.
[  712.067099][T10737] loop6: detected capacity change from 0 to 1024
[  712.152008][T10737] EXT4-fs (loop6): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  712.239700][T10737] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  712.442683][T10737] EXT4-fs error (device loop6): ext4_xattr_inode_iget:441: inode #11: comm syz.6.1837: missing EA_INODE flag
[  712.549200][T10737] EXT4-fs (loop6): Remounting filesystem read-only
[  712.990448][ T6355] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  713.530461][T10761] loop6: detected capacity change from 0 to 64
[  714.451073][T10773] netlink: 4 bytes leftover after parsing attributes in process `syz.8.1851'.
[  715.263118][T10781] loop6: detected capacity change from 0 to 65
[  715.307584][T10781] BFS-fs: bfs_fill_super(): NOTE: filesystem loop6 was created with 512 inodes, the real maximum is 511, mounting anyway
[  715.451079][T10786] loop8: detected capacity change from 0 to 8
[  715.500604][T10786] squashfs image failed sanity check
[  715.548617][T10785] loop3: detected capacity change from 0 to 1024
[  715.570350][T10785] EXT4-fs: Ignoring removed nomblk_io_submit option
[  715.706642][T10785] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  715.986246][T10785] EXT4-fs (loop3): shut down requested (1)
[  716.335292][ T5793] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  717.497624][T10809] loop8: detected capacity change from 0 to 256
[  717.526609][T10809] exfat: Deprecated parameter 'utf8'
[  717.630832][T10809] exFAT-fs (loop8): failed to load upcase table (idx : 0x00010000, chksum : 0xe3865569, utbl_chksum : 0xe619d30d)
[  718.704805][T10819] trusted_key: encrypted_key: keyword 'load' not allowed when called from .update method
[  719.402259][   T42] usb 7-1: new high-speed USB device number 15 using dummy_hcd
[  719.575281][   T42] usb 7-1: Using ep0 maxpacket: 32
[  719.641287][   T42] usb 7-1: New USB device found, idVendor=0fd9, idProduct=0025, bcdDevice=29.40
[  719.651949][   T42] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  719.676404][   T42] usb 7-1: config 0 descriptor??
[  719.912099][   T42] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[  719.953400][   T42] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  720.044629][   T42] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[  720.058550][   T42] usb 7-1: media controller created
[  720.205868][   T42] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  720.358175][T10834] loop7: detected capacity change from 0 to 64
[  720.402203][   T42] az6027: usb out operation failed. (-71)
[  720.427977][   T42] az6027: usb out operation failed. (-71)
[  720.434112][   T42] stb0899_attach: Driver disabled by Kconfig
[  720.447396][   T42] az6027: no front-end attached
[  720.447396][   T42] 
[  720.474948][   T42] az6027: usb out operation failed. (-71)
[  720.480952][   T42] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[  720.497641][   T42] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.6/usb7/7-1/input/input19
[  720.513374][   T42] dvb-usb: schedule remote query interval to 400 msecs.
[  720.520565][   T42] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
[  720.521632][T10834] BFS-fs: bfs_fill_super(): loop7 is unclean, continuing
[  720.547561][   T42] usb 7-1: USB disconnect, device number 15
[  720.989051][T10836] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1877'.
[  720.990233][   T42] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected.
[  722.496284][T10854] netlink: 'syz.6.1886': attribute type 1 has an invalid length.
[  722.507802][T10854] netlink: 36 bytes leftover after parsing attributes in process `syz.6.1886'.
[  722.667731][T10856] loop7: detected capacity change from 0 to 1024
[  722.825028][T10856] hfsplus: bad catalog entry type
[  723.212696][T10799] hfsplus: b-tree write err: -5, ino 4
[  723.418414][T10868] IPVS: sync thread started: state = MASTER, mcast_ifn = hsr0, syncid = 4, id = 1
[  723.430730][T10867] IPVS: sync thread started: state = MASTER, mcast_ifn = hsr0, syncid = 4, id = 0
[  723.449473][T10869] IPVS: sync thread started: state = MASTER, mcast_ifn = hsr0, syncid = 4, id = 2
[  723.459372][ T1669] usb 9-1: new full-speed USB device number 6 using dummy_hcd
[  723.469397][T10870] IPVS: sync thread started: state = MASTER, mcast_ifn = hsr0, syncid = 4, id = 3
[  723.690231][ T1669] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 512, setting to 64
[  723.702194][ T1669] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 1600, setting to 64
[  723.713519][ T1669] usb 9-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  723.830948][ T1669] usb 9-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  723.840952][ T1669] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  723.849460][ T1669] usb 9-1: SerialNumber: syz
[  723.914820][T10872] loop2: detected capacity change from 0 to 512
[  723.929113][T10864] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22
[  723.929922][T10864] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22
[  723.960653][T10874] loop3: detected capacity change from 0 to 1024
[  724.068322][T10874] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  724.192674][T10864] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22
[  724.200839][T10864] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22
[  724.727503][ T1669] cdc_ether 9-1:1.0: probe with driver cdc_ether failed with error -22
[  724.756848][ T5793] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  724.936108][ T5854] usb 9-1: USB disconnect, device number 6
[  725.201946][ T1669] usb 8-1: new high-speed USB device number 8 using dummy_hcd
[  725.382340][ T1669] usb 8-1: Using ep0 maxpacket: 32
[  725.407993][ T1669] usb 8-1: config 0 has an invalid interface number: 1 but max is 0
[  725.416719][ T1669] usb 8-1: config 0 has no interface number 0
[  725.442609][ T1669] usb 8-1: New USB device found, idVendor=8086, idProduct=9500, bcdDevice=b6.d8
[  725.452344][ T1669] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  725.464349][ T1669] usb 8-1: Product: syz
[  725.468857][ T1669] usb 8-1: Manufacturer: syz
[  725.475196][ T1669] usb 8-1: SerialNumber: syz
[  725.528429][ T1669] usb 8-1: config 0 descriptor??
[  725.587494][ T1669] usb 8-1: dvb_usb_v2: found a 'Intel CE9500 reference design' in warm state
[  725.596786][ T1669] usb 8-1: selecting invalid altsetting 1
[  725.603170][ T1669] usb 8-1: dvb_usb_ce6230: usb_set_interface() failed=-22
[  725.695754][ T1669] usb 8-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  725.707597][ T1669] dvbdev: DVB: registering new adapter (Intel CE9500 reference design)
[  725.716456][ T1669] usb 8-1: media controller created
[  725.960871][ T1669] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  726.527292][T10896] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1901'.
[  726.549471][ T1669] usb 8-1: dvb_usb_ce6230: usb_control_msg() failed=-71
[  726.557595][ T1669] zl10353_read_register: readreg error (reg=127, ret==-71)
[  726.599034][ T1669] usb 8-1: dvb_usb_ce6230: usb_set_interface() failed=-71
[  726.664519][T10898] netlink: 8 bytes leftover after parsing attributes in process `syz.8.1902'.
[  727.087671][ T1669] usb 8-1: USB disconnect, device number 8
[  727.402044][T10904] loop7: detected capacity change from 0 to 128
[  727.473250][T10904] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  727.520417][T10904] ext4 filesystem being mounted at /278/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  727.715503][T10904] syz.7.1905 (pid 10904) is setting deprecated v1 encryption policy; recommend upgrading to v2.
[  728.239762][ T7268] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  728.575019][T10920] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1909'.
[  730.025301][T10937] program syz.2.1918 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  730.568046][   T42] usb 4-1: new high-speed USB device number 17 using dummy_hcd
[  730.748249][   T42] usb 4-1: Using ep0 maxpacket: 32
[  730.779242][   T42] usb 4-1: config 0 has an invalid interface number: 85 but max is 0
[  730.792728][   T42] usb 4-1: config 0 has no interface number 0
[  730.799170][   T42] usb 4-1: config 0 interface 85 altsetting 7 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  730.819830][   T42] usb 4-1: config 0 interface 85 has no altsetting 0
[  730.916682][   T42] usb 4-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72
[  730.916857][   T42] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  730.917006][   T42] usb 4-1: Product: syz
[  730.917117][   T42] usb 4-1: Manufacturer: syz
[  730.917234][   T42] usb 4-1: SerialNumber: syz
[  730.945296][   T42] usb 4-1: config 0 descriptor??
[  731.634271][   T42] appletouch 4-1:0.85: Geyser mode initialized.
[  731.637102][   T42] input: appletouch as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.85/input/input20
[  731.851641][   T42] usb 4-1: USB disconnect, device number 17
[  731.874216][   T42] appletouch 4-1:0.85: input: appletouch disconnected
[  731.916267][T10959] loop8: detected capacity change from 0 to 512
[  731.948992][T10961] TCP: tcp_parse_options: Illegal window scaling value 129 > 14 received
[  732.135825][T10959] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  732.154281][T10959] ext4 filesystem being mounted at /194/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  733.149365][ T8475] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  733.892256][ T1669] usb 7-1: new high-speed USB device number 16 using dummy_hcd
[  734.118672][ T1669] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  734.129398][ T1669] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 3
[  734.205854][ T1669] usb 7-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  734.215840][ T1669] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  734.224454][ T1669] usb 7-1: SerialNumber: syz
[  734.460879][T10985] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1938'.
[  734.518995][ T1669] usb 7-1: 0:2 : does not exist
[  734.524845][ T1669] usb 7-1: unit 5: unexpected type 0x03
[  734.678479][ T1669] usb 7-1: USB disconnect, device number 16
[  735.236619][T10993] netlink: 44 bytes leftover after parsing attributes in process `syz.7.1942'.
[  735.556883][T10999] bridge0: port 3(syz_tun) entered blocking state
[  735.567567][T10999] bridge0: port 3(syz_tun) entered disabled state
[  735.574865][T10999] syz_tun: entered allmulticast mode
[  735.586897][T10999] syz_tun: entered promiscuous mode
[  735.605020][T10999] bridge0: port 3(syz_tun) entered blocking state
[  735.612205][T10999] bridge0: port 3(syz_tun) entered forwarding state
[  735.888327][T11003] sctp: [Deprecated]: syz.6.1946 (pid 11003) Use of int in maxseg socket option.
[  735.888327][T11003] Use struct sctp_assoc_value instead
[  736.429793][T11005] loop7: detected capacity change from 0 to 1024
[  736.436256][T10798] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  736.450167][T10798] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  736.450501][T10798] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  736.450737][T10798] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  737.388071][   T30] audit: type=1326 audit(1764585735.278:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11015 comm="syz.2.1951" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f11539 code=0x7ffc0000
[  737.520692][   T30] audit: type=1326 audit(1764585735.408:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11015 comm="syz.2.1951" exe="/root/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f11539 code=0x7ffc0000
[  737.547097][   T30] audit: type=1326 audit(1764585735.408:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11015 comm="syz.2.1951" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f11539 code=0x7ffc0000
[  737.570884][   T30] audit: type=1326 audit(1764585735.408:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11015 comm="syz.2.1951" exe="/root/syz-executor" sig=0 arch=40000003 syscall=75 compat=1 ip=0xf7f11539 code=0x7ffc0000
[  737.593321][   T30] audit: type=1326 audit(1764585735.408:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11015 comm="syz.2.1951" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f11539 code=0x7ffc0000
[  737.646256][   T30] audit: type=1326 audit(1764585735.408:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11015 comm="syz.2.1951" exe="/root/syz-executor" sig=0 arch=40000003 syscall=364 compat=1 ip=0xf7f11539 code=0x7ffc0000
[  737.674220][   T30] audit: type=1326 audit(1764585735.408:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11015 comm="syz.2.1951" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f11539 code=0x7ffc0000
[  738.220529][T11020] loop2: detected capacity change from 0 to 512
[  738.301619][T11020] EXT4-fs: Ignoring removed nobh option
[  738.616863][T11020] EXT4-fs error (device loop2): ext4_orphan_get:1392: inode #15: comm syz.2.1954: iget: bad i_size value: 38620345925642
[  738.699663][T11020] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.1954: couldn't read orphan inode 15 (err -117)
[  738.737641][T11020] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  739.274110][ T5791] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  739.745836][T11038] IPVS: wrr: FWM 3 0x00000003 - no destination available
[  740.011314][T11040] netlink: 44 bytes leftover after parsing attributes in process `syz.6.1961'.
[  741.597973][T11062] loop2: detected capacity change from 0 to 64
[  742.948003][T11073] input: syz0 as /devices/virtual/input/input21
[  743.748747][T11083] netem: change failed
[  747.903592][T11140] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2006'.
[  751.630198][T11178] loop2: detected capacity change from 0 to 256
[  751.699246][T11178] exfat: Deprecated parameter 'namecase'
[  751.708905][T11178] exfat: Deprecated parameter 'namecase'
[  751.715643][T11178] exfat: Deprecated parameter 'utf8'
[  751.924757][T11178] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  752.121872][T11183] loop3: detected capacity change from 0 to 512
[  752.619293][T11192] netlink: 16 bytes leftover after parsing attributes in process `syz.6.2028'.
[  752.985217][T11196] loop3: detected capacity change from 0 to 256
[  753.343968][T11200] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2032'.
[  754.001995][T11205] wg1: tun_chr_ioctl cmd 1074025677
[  754.007976][T11205] wg1: linktype set to 774
[  754.151945][T11207] loop8: detected capacity change from 0 to 1024
[  754.464021][T11207] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  754.633512][T11213] block nbd2: server does not support multiple connections per device.
[  754.647719][T11213] block nbd2: shutting down sockets
[  755.035940][T11219] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2040'.
[  755.085990][ T8475] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  755.092896][T11219] netlink: 277 bytes leftover after parsing attributes in process `syz.3.2040'.
[  755.104823][T11219] netlink: 277 bytes leftover after parsing attributes in process `syz.3.2040'.
[  755.300658][T11222] loop2: detected capacity change from 0 to 512
[  755.413111][T11222] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  755.510779][T11225] loop6: detected capacity change from 0 to 1024
[  755.618980][T11222] fs-verity (loop2, inode 13): Unsupported log_blocksize: 12
[  755.713933][T11227] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2043'.
[  756.003858][   T35] hfsplus: b-tree write err: -5, ino 4
[  756.066079][ T5791] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  758.274990][T11258] loop2: detected capacity change from 0 to 128
[  758.967854][T11264] loop3: detected capacity change from 0 to 136
[  759.180261][T11266] loop7: detected capacity change from 0 to 256
[  759.260168][T11266] exfat: Deprecated parameter 'utf8'
[  759.266311][T11266] exfat: Deprecated parameter 'utf8'
[  759.451320][T11266] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0x18acca35, utbl_chksum : 0xe619d30d)
[  760.229821][T11279] loop8: detected capacity change from 0 to 128
[  760.267269][T11278] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2066'.
[  760.300661][T11279] UDF-fs: error (device loop8): udf_read_tagged: read failed, block=256, location=256
[  760.367822][T11279] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  761.590001][T11295] loop6: detected capacity change from 0 to 512
[  761.679465][T11295] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  761.769163][T11295] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e02c, mo2=0002]
[  761.806029][T11295] EXT4-fs (loop6): orphan cleanup on readonly fs
[  761.818496][T11295] EXT4-fs error (device loop6): ext4_orphan_get:1418: comm syz.6.2074: bad orphan inode 267
[  761.852888][T11295] EXT4-fs (loop6): Remounting filesystem read-only
[  761.868727][T11295] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  761.906329][T11295] EXT4-fs warning (device loop6): dx_probe:861: inode #2: comm syz.6.2074: dx entry: limit 0 != root limit 125
[  761.923561][T11295] EXT4-fs warning (device loop6): dx_probe:934: inode #2: comm syz.6.2074: Corrupt directory, running e2fsck is recommended
[  762.168172][ T6355] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  762.275303][T11302] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2077'.
[  762.318906][T11302] netlink: 12 bytes leftover after parsing attributes in process `syz.8.2077'.
[  762.408452][T11304] netlink: 24 bytes leftover after parsing attributes in process `syz.7.2078'.
[  763.276380][T11316] overlay: filesystem on ./file0 is read-only
[  763.972039][   T42] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  764.174894][   T42] usb 3-1: New USB device found, idVendor=0813, idProduct=0001, bcdDevice=3a.08
[  764.184614][   T42] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  764.274113][   T42] usb 3-1: config 0 descriptor??
[  764.303982][   T42] gspca_main: cpia1-2.14.0 probing 0813:0001
[  764.826052][   T42] cpia1 3-1:0.0: unexpected state after lo power cmd: 00
[  765.162614][T11332] loop8: detected capacity change from 0 to 4096
[  765.229777][   T42] gspca_cpia1: usb_control_msg 02, error -71
[  765.236424][   T42] cpia1 3-1:0.0: only firmware version 1 is supported (got: 0)
[  765.286816][   T42] usb 3-1: USB disconnect, device number 9
[  765.317400][T11332] NILFS (loop8): invalid segment: Checksum error in segment payload
[  765.326090][T11332] NILFS (loop8): trying rollback from an earlier position
[  765.389282][T11332] NILFS (loop8): recovery complete
[  765.460554][T11340] NILFS (loop8): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  766.207897][T10799] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  766.274972][T10798] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  766.305196][T10798] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  766.326793][ T1871] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  766.509396][T11350] netlink: 288 bytes leftover after parsing attributes in process `syz.7.2099'.
[  766.538498][T11349] netlink: 84 bytes leftover after parsing attributes in process `syz.2.2100'.
[  766.799020][T11353] rtc_cmos 00:00: Alarms can be up to one day in the future
[  767.575578][T11366] netlink: 88 bytes leftover after parsing attributes in process `syz.6.2105'.
[  767.682532][   T42] usb 8-1: new high-speed USB device number 9 using dummy_hcd
[  767.767147][   T24] rtc_cmos 00:00: Alarms can be up to one day in the future
[  767.776941][   T24] rtc_cmos 00:00: Alarms can be up to one day in the future
[  767.789037][   T24] rtc_cmos 00:00: Alarms can be up to one day in the future
[  767.800261][   T24] rtc_cmos 00:00: Alarms can be up to one day in the future
[  767.808206][   T24] rtc rtc0: __rtc_set_alarm: err=-22
[  767.911189][   T42] usb 8-1: Using ep0 maxpacket: 32
[  767.956875][   T42] usb 8-1: New USB device found, idVendor=0c72, idProduct=000d, bcdDevice=27.9b
[  767.968349][   T42] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  767.984781][   T42] usb 8-1: Product: syz
[  767.989224][   T42] usb 8-1: Manufacturer: syz
[  767.994952][   T42] usb 8-1: SerialNumber: syz
[  768.084110][   T42] usb 8-1: config 0 descriptor??
[  768.790162][   T42] peak_usb 8-1:0.0: PEAK-System PCAN-USB Pro hwrev 0 serial 00000000.00000000 (2 channels)
[  768.805724][   T42] peak_usb 8-1:0.0 can0: sending command failure: -22
[  768.817235][   T42] peak_usb 8-1:0.0 can0: sending command failure: -22
[  768.984113][   T42] peak_usb 8-1:0.0: probe with driver peak_usb failed with error -22
[  769.110417][ T1669] usb 8-1: USB disconnect, device number 9
[  769.935253][T11389] team0: Device gtp0 is up. Set it down before adding it as a team port
[  773.299493][T11412] loop8: detected capacity change from 0 to 8192
[  773.343518][T11412] FAT-fs (loop8): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  774.356741][T10799] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  774.627307][T10799] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  774.858079][T10799] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  775.037261][T10799] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  775.421041][T10799] bridge_slave_1: left allmulticast mode
[  775.432865][T10799] bridge_slave_1: left promiscuous mode
[  775.439620][T10799] bridge0: port 2(bridge_slave_1) entered disabled state
[  775.461744][T10799] bridge_slave_0: left allmulticast mode
[  775.467935][T10799] bridge_slave_0: left promiscuous mode
[  775.474945][T10799] bridge0: port 1(bridge_slave_0) entered disabled state
[  775.565665][T11435] use of bytesused == 0 is deprecated and will be removed in the future,
[  775.577567][T11435] use the actual size instead.
[  776.607056][T10799] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  776.651952][T10799] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  776.699185][T10799] bond0 (unregistering): Released all slaves
[  777.268665][T10799] hsr_slave_0: left promiscuous mode
[  777.291767][T10799] hsr_slave_1: left promiscuous mode
[  777.300332][T10799] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  777.308795][T10799] batman_adv: batadv0: Removing interface: batadv_slave_0
[  777.335258][T10799] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  777.343032][T10799] batman_adv: batadv0: Removing interface: batadv_slave_1
[  777.474819][T10799] veth1_macvtap: left promiscuous mode
[  777.484564][T10799] veth0_macvtap: left promiscuous mode
[  777.490562][T10799] veth1_vlan: left promiscuous mode
[  777.496407][T10799] veth0_vlan: left promiscuous mode
[  778.940006][T10799] team0 (unregistering): Port device team_slave_1 removed
[  779.007660][T10799] team0 (unregistering): Port device team_slave_0 removed
[  779.083103][T11454] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  779.279332][T11454] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  779.290334][T11454] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  779.312520][T11454] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  779.331343][T11454] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  780.886789][T11453] chnl_net:caif_netlink_parms(): no params data found
[  781.377885][   T51] Bluetooth: hci0: command tx timeout
[  782.516240][T11453] bridge0: port 1(bridge_slave_0) entered blocking state
[  782.524505][T11453] bridge0: port 1(bridge_slave_0) entered disabled state
[  782.532581][T11453] bridge_slave_0: entered allmulticast mode
[  782.545106][T11453] bridge_slave_0: entered promiscuous mode
[  782.653424][T11453] bridge0: port 2(bridge_slave_1) entered blocking state
[  782.661161][T11453] bridge0: port 2(bridge_slave_1) entered disabled state
[  782.669330][T11453] bridge_slave_1: entered allmulticast mode
[  782.679855][T11453] bridge_slave_1: entered promiscuous mode
[  782.940596][T11453] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  783.010998][T11453] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  783.321195][T11453] team0: Port device team_slave_0 added
[  783.378401][T11453] team0: Port device team_slave_1 added
[  783.458834][T11496] loop2: detected capacity change from 0 to 512
[  783.461716][   T51] Bluetooth: hci0: command tx timeout
[  783.582531][T11499] loop7: detected capacity change from 0 to 1024
[  783.605766][T11453] batman_adv: batadv0: Adding interface: batadv_slave_0
[  783.610636][T11496] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  783.614268][T11453] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  783.614447][T11453] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  783.630443][T11453] batman_adv: batadv0: Adding interface: batadv_slave_1
[  783.630532][T11453] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  783.630699][T11453] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  783.660558][    C1] vkms_vblank_simulate: vblank timer overrun
[  783.713770][    C1] vkms_vblank_simulate: vblank timer overrun
[  783.761601][T11496] ext4 filesystem being mounted at /466/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  784.105061][T11453] hsr_slave_0: entered promiscuous mode
[  784.116182][T11453] hsr_slave_1: entered promiscuous mode
[  784.347613][ T5791] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  785.605891][   T51] Bluetooth: hci0: command tx timeout
[  785.614783][T11453] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  785.716770][T11453] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  785.816059][T11516] loop3: detected capacity change from 0 to 4096
[  785.834939][T11453] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  785.837763][T11516] ntfs3(loop3): Different NTFS sector size (1024) and media sector size (512).
[  785.880219][T11522] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2165'.
[  785.946048][T11453] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  786.217524][T11516] ntfs3(loop3): Failed to load $Extend (-22).
[  786.227462][T11516] ntfs3(loop3): Failed to initialize $Extend.
[  786.770216][T11529] loop2: detected capacity change from 0 to 1024
[  787.014279][T11529] hfsplus: small dir entry
[  787.164456][T11453] 8021q: adding VLAN 0 to HW filter on device bond0
[  787.373444][T11453] 8021q: adding VLAN 0 to HW filter on device team0
[  787.448103][T11533] netlink: 36 bytes leftover after parsing attributes in process `syz.7.2171'.
[  787.520120][ T3926] bridge0: port 1(bridge_slave_0) entered blocking state
[  787.527869][ T3926] bridge0: port 1(bridge_slave_0) entered forwarding state
[  787.646499][ T3926] bridge0: port 2(bridge_slave_1) entered blocking state
[  787.654331][ T3926] bridge0: port 2(bridge_slave_1) entered forwarding state
[  787.698469][   T51] Bluetooth: hci0: command tx timeout
[  788.468746][T11540] loop6: detected capacity change from 0 to 164
[  788.620735][T11540] iso9660: Corrupted directory entry in block 2 of inode 1792
[  788.691904][T11544] sctp: [Deprecated]: syz.7.2174 (pid 11544) Use of int in maxseg socket option.
[  788.691904][T11544] Use struct sctp_assoc_value instead
[  790.031815][T11453] 8021q: adding VLAN 0 to HW filter on device batadv0
[  790.260409][T11560] loop2: detected capacity change from 0 to 1024
[  790.339343][   T11] Process accounting resumed
[  790.678944][T11568] loop7: detected capacity change from 0 to 64
[  791.248997][ T7268] Trying to free block not in datazone
[  792.315270][T11576] loop3: detected capacity change from 0 to 4096
[  792.359255][T11576] ntfs3(loop3): Different NTFS sector size (2048) and media sector size (512).
[  792.770520][T11576] ntfs3: Cannot use different iocharset when remounting!
[  792.825422][T11590] ntfs3(loop3): failed to convert name for inode a.
[  793.110051][T11453] veth0_vlan: entered promiscuous mode
[  793.236075][T11453] veth1_vlan: entered promiscuous mode
[  793.823747][T11453] veth0_macvtap: entered promiscuous mode
[  793.948727][T11453] veth1_macvtap: entered promiscuous mode
[  794.209954][T11453] batman_adv: batadv0: Interface activated: batadv_slave_0
[  794.347457][T11453] batman_adv: batadv0: Interface activated: batadv_slave_1
[  794.512034][T10798] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  794.616921][T10798] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  794.690978][T10798] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  794.752706][   T14] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  795.260289][T11598] loop3: detected capacity change from 0 to 2048
[  795.531075][T11598] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  795.547506][T11598] ext4 filesystem being mounted at /438/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  796.120551][ T5793] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  797.312665][T11624] program syz.2.2201 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  797.987367][T11622] loop6: detected capacity change from 0 to 4096
[  798.029597][T11622] ntfs3(loop6): Different NTFS sector size (4096) and media sector size (512).
[  798.278203][T11622] ntfs3(loop6): Mark volume as dirty due to NTFS errors
[  798.281774][T11622] ntfs3(loop6): ino=1a, mi_enum_attr
[  798.282425][T11622] ntfs3(loop6): Failed to initialize $Extend/$ObjId.
[  798.344669][T11622] ntfs3(loop6): ino=5, "/" ntfs_readdir
[  798.417678][ T5795] Bluetooth: hci0: command 0x0c1a tx timeout
[  798.418027][T11610] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  800.296783][T11641] loop3: detected capacity change from 0 to 4096
[  800.894250][T11647] loop6: detected capacity change from 0 to 4096
[  800.912309][T11647] ntfs3(loop6): Different NTFS sector size (1024) and media sector size (512).
[  801.377465][ T3582] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  801.377595][ T3582] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  801.450236][T11647] ntfs3(loop6): ino=1e, "file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" ni_find_attr
[  801.534645][   T14] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  801.555742][   T14] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  804.633975][T11674] batadv_slave_1: entered promiscuous mode
[  804.712307][T11673] batadv_slave_1: left promiscuous mode
[  805.345545][   T30] audit: type=1326 audit(1764585803.238:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11684 comm="syz.7.2223" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf701d539 code=0x0
[  808.282165][T11710] kernel read not supported for file /rmdF�� (pid: 11710 comm: syz.3.2234)
[  808.295161][   T30] audit: type=1800 audit(1764585806.198:100): pid=11710 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.2234" name=726D64461716BCEC dev="mqueue" ino=32992 res=0 errno=0
[  808.847451][T11719] Freezing with imperfect legacy cgroup freezer. See cgroup.freeze of cgroup v2
[  809.114797][T11722] syz.6.2239 uses obsolete (PF_INET,SOCK_PACKET)
[  809.175141][T11725] trusted_key: syz.2.2240 sent an empty control message without MSG_MORE.
[  809.178757][T11722] syzkaller1: entered allmulticast mode
[  809.475808][T11729] smc: net device hsr0 applied user defined pnetid SYZ2
[  809.546637][T11729] smc: net device hsr0 erased user defined pnetid SYZ2
[  810.490047][T11741] loop9: detected capacity change from 0 to 512
[  811.061227][T11745] loop2: detected capacity change from 0 to 512
[  811.206308][T11745] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  811.375317][T11745] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2250'.
[  811.818678][ T5791] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  811.972295][   T24] usb 8-1: new full-speed USB device number 10 using dummy_hcd
[  812.219295][   T24] usb 8-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  812.235056][   T24] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  812.245956][   T24] usb 8-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  812.255410][   T24] usb 8-1: config 1 has no interface number 1
[  812.268096][   T24] usb 8-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  812.281530][   T24] usb 8-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 4
[  812.449323][   T24] usb 8-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  812.459372][   T24] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  812.467823][   T24] usb 8-1: Product: syz
[  812.478497][   T24] usb 8-1: Manufacturer: syz
[  812.483726][   T24] usb 8-1: SerialNumber: syz
[  812.768089][   T24] usb 8-1: 2:1 : no or invalid class specific endpoint descriptor
[  812.782942][   T24] usb 8-1: found format II with max.bitrate = 0, frame size=0
[  812.791267][   T24] usb 8-1: 2:1 : invalid UAC_FORMAT_TYPE desc
[  812.950966][   T24] usb 8-1: USB disconnect, device number 10
[  815.497823][T11785] loop9: detected capacity change from 0 to 256
[  815.632115][   T30] audit: type=1804 audit(1764585813.508:101): pid=11785 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.9.2265" name="/newroot/11/file0/bus" dev="loop9" ino=1048753 res=1 errno=0
[  816.023501][T11790] netlink: 28 bytes leftover after parsing attributes in process `syz.7.2267'.
[  816.033355][T11790] netlink: 28 bytes leftover after parsing attributes in process `syz.7.2267'.
[  816.401180][T11795] loop6: detected capacity change from 0 to 512
[  816.615297][T11795] EXT4-fs warning (device loop6): ext4_xattr_inode_get:560: inode #11: comm syz.6.2270: EA inode hash validation failed
[  816.632530][T11795] EXT4-fs error (device loop6): ext4_do_update_inode:5632: inode #15: comm syz.6.2270: corrupted inode contents
[  816.777126][T11795] EXT4-fs error (device loop6): ext4_dirty_inode:6517: inode #15: comm syz.6.2270: mark_inode_dirty error
[  816.850310][T11795] EXT4-fs error (device loop6): ext4_do_update_inode:5632: inode #15: comm syz.6.2270: corrupted inode contents
[  816.937313][T11795] EXT4-fs error (device loop6): ext4_xattr_delete_inode:2996: inode #15: comm syz.6.2270: mark_inode_dirty error
[  817.033549][T11795] EXT4-fs error (device loop6): ext4_xattr_delete_inode:2999: inode #15: comm syz.6.2270: mark inode dirty (error -117)
[  817.120894][T11795] EXT4-fs warning (device loop6): ext4_evict_inode:274: xattr delete (err -117)
[  817.133221][T11795] EXT4-fs (loop6): 1 orphan inode deleted
[  817.142935][T11795] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  817.669059][ T6355] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  818.211187][T11813] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  818.505503][T11817] overlayfs: failed lookup in lower (/, name='tracing', err=-66): unsupported object type
[  818.554894][T11817] overlayfs: failed to look up (tracing) for ino (-66)
[  818.904895][T11821] loop2: detected capacity change from 0 to 512
[  818.923602][T11821] EXT4-fs: Ignoring removed nobh option
[  819.090659][T11821] fscrypt (loop2, inode 2): Error -61 getting encryption context
[  819.147205][T11821] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -61
[  819.236829][T11821] EXT4-fs error (device loop2): ext4_orphan_get:1392: inode #13: comm syz.2.2280: inode has both inline data and extents flags
[  819.300524][T11821] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.2280: couldn't read orphan inode 13 (err -117)
[  819.442146][T11821] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  819.859561][T11825] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters
[  819.924330][ T5791] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  821.224111][T11840] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci0/hci0:200/input22
[  821.887813][T11850] netlink: 'syz.9.2292': attribute type 39 has an invalid length.
[  822.153415][T11852] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2293'.
[  822.166718][T11852] netlink: 'syz.3.2293': attribute type 30 has an invalid length.
[  822.178147][T11852] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2293'.
[  823.753012][T11870] loop9: detected capacity change from 0 to 1024
[  823.802265][T11870] EXT4-fs: Ignoring removed orlov option
[  823.922433][T11870] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  824.141991][    T9] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  824.366849][   T11] usb 8-1: new high-speed USB device number 11 using dummy_hcd
[  824.403525][    T9] usb 3-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  824.416882][    T9] usb 3-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  824.428287][    T9] usb 3-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  824.440952][    T9] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  824.535453][T11872] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  824.602109][   T11] usb 8-1: Using ep0 maxpacket: 32
[  824.638489][    T9] usb 3-1: Quirk or no altset; falling back to MIDI 1.0
[  824.702028][   T11] usb 8-1: New USB device found, idVendor=05a9, idProduct=1550, bcdDevice=e4.bb
[  824.717066][   T11] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  824.726690][   T11] usb 8-1: Product: syz
[  824.731128][   T11] usb 8-1: Manufacturer: syz
[  824.736175][   T11] usb 8-1: SerialNumber: syz
[  824.780489][T11453] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  824.800434][   T11] usb 8-1: config 0 descriptor??
[  824.868749][   T11] gspca_main: ov534_9-2.14.0 probing 05a9:1550
[  825.250506][   T24] usb 3-1: USB disconnect, device number 10
[  825.578229][T11890] loop9: detected capacity change from 0 to 1024
[  825.967485][   T11] gspca_ov534_9: reg_w failed -71
[  826.271795][   T11] gspca_ov534_9: Unknown sensor 0000
[  826.272181][   T11] ov534_9 8-1:0.0: probe with driver ov534_9 failed with error -22
[  826.313562][   T11] usb 8-1: USB disconnect, device number 11
[  826.393711][   T24] kernel write not supported for file /i2c-0 (pid: 24 comm: kworker/1:0)
[  826.768993][T11898] loop2: detected capacity change from 0 to 512
[  826.802279][T11898] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  826.964731][T11898] EXT4-fs warning (device loop2): ext4_update_dynamic_rev:1137: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  827.078443][T11898] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.2312: bg 0: block 248: padding at end of block bitmap is not set
[  827.098820][T11898] Quota error (device loop2): write_blk: dquota write failed
[  827.110677][T11898] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  827.122143][T11898] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.2312: Failed to acquire dquot type 1
[  827.157083][T11898] EXT4-fs (loop2): 1 truncate cleaned up
[  827.171984][T11898] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0008-000000000000 r/w without journal. Quota mode: writeback.
[  827.280050][T11898] EXT4-fs error (device loop2): ext4_lookup:1791: inode #2: comm syz.2.2312: deleted inode referenced: 12
[  827.336364][    C1] IPv4: Oversized IP packet from 172.20.20.24
[  827.812689][T11898] syz.2.2312 (11898) used greatest stack depth: 3144 bytes left
[  827.877962][ T5791] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0008-000000000000.
[  827.906638][   T14] Quota error (device loop2): do_check_range: Getting block 0 out of range 1-5
[  827.916630][   T14] EXT4-fs error (device loop2): ext4_release_dquot:6981: comm kworker/u8:1: Failed to release dquot type 1
[  828.003978][T11910] loop9: detected capacity change from 0 to 256
[  828.365741][T11917] loop7: detected capacity change from 0 to 128
[  828.409571][T11910] exFAT-fs (loop9): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  828.447403][T11917] EXT4-fs (loop7): mounting ext2 file system using the ext4 subsystem
[  828.523473][T11917] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  828.526504][T11910] exFAT-fs (loop9): valid_size(150994954) is greater than size(10)
[  828.544945][T11919] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2319'.
[  828.563738][T11917] ext2 filesystem being mounted at /365/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  828.738334][T11917] EXT4-fs error (device loop7): make_indexed_dir:2269: inode #2: block 18: comm syz.7.2320: bad entry in directory: rec_len is smaller than minimal - offset=988, inode=128, rec_len=9, size=1000 fake=0
[  829.359831][ T7268] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  831.714873][T11953] input: syz1 as /devices/virtual/input/input23
[  835.016551][T11985] loop7: detected capacity change from 0 to 256
[  835.039475][T11983] loop9: detected capacity change from 0 to 1024
[  835.077797][T11983] EXT4-fs: Ignoring removed orlov option
[  835.170918][T11983] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  835.299421][T11985] exFAT-fs (loop7): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  835.395568][T11985] exFAT-fs (loop7): valid_size(150994954) is greater than size(10)
[  835.652042][T11453] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  835.940255][T11992] loop6: detected capacity change from 0 to 512
[  836.032861][T11992] EXT4-fs error (device loop6): ext4_iget_extra_inode:5075: inode #15: comm syz.6.2348: corrupted in-inode xattr: e_value size too large
[  836.154704][T11992] EXT4-fs error (device loop6): ext4_orphan_get:1397: comm syz.6.2348: couldn't read orphan inode 15 (err -117)
[  836.177735][T11999] loop2: detected capacity change from 0 to 256
[  836.193623][T11999] exfat: Unknown parameter '017777777777777777777770x0000000000000000'
[  836.220762][T11992] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  836.895053][ T6355] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  837.550887][T12013] bridge1: entered promiscuous mode
[  837.559811][T12013] bridge1: entered allmulticast mode
[  837.580424][T12013] team0: Port device bridge1 added
[  837.668657][T12013] bridge0: port 3(team0) entered blocking state
[  837.679264][T12013] bridge0: port 3(team0) entered disabled state
[  837.691179][T12013] team0: entered allmulticast mode
[  837.704961][T12013] team_slave_0: entered allmulticast mode
[  837.710948][T12013] team_slave_1: entered allmulticast mode
[  837.726910][T12013] team0: entered promiscuous mode
[  837.735712][T12013] team_slave_0: entered promiscuous mode
[  837.743218][T12013] team_slave_1: entered promiscuous mode
[  837.756828][T12013] bridge0: port 3(team0) entered blocking state
[  837.763881][T12013] bridge0: port 3(team0) entered forwarding state
[  840.541679][T12045] loop6: detected capacity change from 0 to 1024
[  840.717001][T12045] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  841.348942][ T6355] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  842.008005][T12058] loop7: detected capacity change from 0 to 1024
[  842.691053][T12067] loop2: detected capacity change from 0 to 512
[  842.811537][T12067] EXT4-fs (loop2): too many log groups per flexible block group
[  842.820351][T12067] EXT4-fs (loop2): failed to initialize mballoc (-12)
[  842.902275][T12067] EXT4-fs (loop2): mount failed
[  843.417710][   T11] usb 4-1: new high-speed USB device number 18 using dummy_hcd
[  843.661851][   T11] usb 4-1: Using ep0 maxpacket: 16
[  843.742035][   T11] usb 4-1: New USB device found, idVendor=2001, idProduct=4002, bcdDevice=df.bf
[  843.752672][   T11] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  843.837973][   T11] usb 4-1: config 0 descriptor??
[  844.628709][T12081] loop2: detected capacity change from 0 to 1024
[  844.674974][T12081] EXT4-fs: Ignoring removed nomblk_io_submit option
[  844.758317][T12081] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  845.000903][   T11] pegasus 4-1:0.0: probe with driver pegasus failed with error -71
[  845.066041][   T11] usb 4-1: USB disconnect, device number 18
[  845.547525][ T5791] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  847.100560][T12104] loop9: detected capacity change from 0 to 512
[  847.192037][T12106] netlink: 199836 bytes leftover after parsing attributes in process `syz.2.2390'.
[  847.205202][T12106] ksmbd: Unknown IPC event: 1, ignore.
[  847.309588][T12104] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  847.327570][T12104] ext4 filesystem being mounted at /31/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  847.858330][T11453] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  848.933591][T12124] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2398'.
[  849.661926][   T11] usb 8-1: new high-speed USB device number 12 using dummy_hcd
[  849.854286][   T11] usb 8-1: Using ep0 maxpacket: 32
[  849.867763][   T11] usb 8-1: config 0 has an invalid interface number: 172 but max is 0
[  849.879531][   T11] usb 8-1: config 0 has no interface number 0
[  849.887046][   T11] usb 8-1: config 0 interface 172 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  849.954366][   T11] usb 8-1: New USB device found, idVendor=06f8, idProduct=301b, bcdDevice=bb.39
[  849.964093][   T11] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  849.972938][   T11] usb 8-1: Product: syz
[  849.980114][   T11] usb 8-1: Manufacturer: syz
[  849.985928][   T11] usb 8-1: SerialNumber: syz
[  850.033343][   T11] usb 8-1: config 0 descriptor??
[  850.075478][   T42] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  850.093567][   T11] gspca_main: gspca_pac7302-2.14.0 probing 06f8:301b
[  850.273115][   T42] usb 3-1: Using ep0 maxpacket: 32
[  850.365736][   T42] usb 3-1: config 0 interface 0 has no altsetting 0
[  850.446506][   T42] usb 3-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e
[  850.456069][   T42] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  850.468093][   T42] usb 3-1: Product: syz
[  850.476235][   T42] usb 3-1: Manufacturer: syz
[  850.481134][   T42] usb 3-1: SerialNumber: syz
[  850.585241][   T42] usb 3-1: config 0 descriptor??
[  850.984311][   T11] input: gspca_pac7302 as /devices/platform/dummy_hcd.7/usb8/8-1/input/input24
[  851.128259][   T42] gs_usb 3-1:0.0: Configuring for 1 interfaces
[  851.247382][   T24] usb 8-1: USB disconnect, device number 12
[  851.547774][   T42] gs_usb 3-1:0.0: Disabling termination support for channel 0 (-EREMOTEIO)
[  851.822684][   T42] usb 3-1: USB disconnect, device number 11
[  852.569478][T12158] netlink: 20 bytes leftover after parsing attributes in process `syz.7.2414'.
[  853.271972][   T42] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  853.510940][   T42] usb 3-1: New USB device found, idVendor=0c72, idProduct=0012, bcdDevice=22.96
[  853.520785][   T42] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  853.535512][   T42] usb 3-1: Product: syz
[  853.540091][   T42] usb 3-1: Manufacturer: syz
[  853.545344][   T42] usb 3-1: SerialNumber: syz
[  853.579127][   T42] usb 3-1: config 0 descriptor??
[  853.962330][   T42] peak_usb 3-1:0.0: PEAK-System PCAN-USB FD v0 fw v0.0.0 (1 channels)
[  854.085294][   T42] peak_usb 3-1:0.0 can0: sending command failure: -22
[  854.096246][   T42] peak_usb 3-1:0.0 can0: sending command failure: -22
[  854.110291][   T42] peak_usb 3-1:0.0 can0: sending command failure: -22
[  854.268792][   T42] peak_usb 3-1:0.0: probe with driver peak_usb failed with error -22
[  854.311800][   T42] usb 3-1: USB disconnect, device number 12
[  855.415168][   T42] usb 4-1: new high-speed USB device number 19 using dummy_hcd
[  855.601694][   T42] usb 4-1: Using ep0 maxpacket: 32
[  855.635942][   T42] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  855.650803][   T42] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  855.664751][   T42] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  855.677539][   T42] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  855.768534][   T42] usb 4-1: config 0 descriptor??
[  855.795667][   T42] hub 4-1:0.0: USB hub found
[  856.004826][   T42] hub 4-1:0.0: config failed, hub has too many ports! (err -19)
[  856.235289][   T42] usbhid 4-1:0.0: can't add hid device: -71
[  856.246434][   T42] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  856.314370][   T42] usb 4-1: USB disconnect, device number 19
[  856.415447][   T24] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  856.606163][   T24] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  856.617706][   T24] usb 3-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  856.635140][   T24] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  856.735768][   T24] usb 3-1: config 0 descriptor??
[  856.814267][T12197] loop6: detected capacity change from 0 to 1024
[  857.000054][T12197] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: none.
[  857.316420][   T24] keytouch 0003:0926:3333.000D: fixing up Keytouch IEC report descriptor
[  857.404387][   T24] input: HID 0926:3333 as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:0926:3333.000D/input/input25
[  857.681888][   T24] keytouch 0003:0926:3333.000D: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.2-1/input0
[  857.746165][ T6355] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-001000000000.
[  858.140207][   T11] usb 3-1: USB disconnect, device number 13
[  859.511222][T12222] loop2: detected capacity change from 0 to 256
[  859.667166][T12222] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xbe66f6fd, utbl_chksum : 0xe619d30d)
[  859.738246][T12226] netlink: 80 bytes leftover after parsing attributes in process `syz.7.2444'.
[  859.755857][T12226] netlink: 80 bytes leftover after parsing attributes in process `syz.7.2444'.
[  860.280666][   T30] audit: type=1326 audit(2000000005.900:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12221 comm="syz.2.2442" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f11539 code=0x7fc00000
[  860.303482][    C1] vkms_vblank_simulate: vblank timer overrun
[  865.487319][T12298] bridge1: entered allmulticast mode
[  865.508986][T12298] team0: Port device bridge1 added
[  865.820004][T12298] netlink: 24 bytes leftover after parsing attributes in process `syz.7.2473'.
[  868.165482][T12323] netlink: 12 bytes leftover after parsing attributes in process `syz.9.2486'.
[  868.295173][T12326] loop7: detected capacity change from 0 to 512
[  868.359066][T12326] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  868.490452][T12326] EXT4-fs (loop7): 1 truncate cleaned up
[  868.505734][T12326] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  868.618406][T12331] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2488'.
[  869.211041][ T7268] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  869.876179][T12346] Bluetooth: MGMT ver 1.23
[  870.292851][T12348] loop7: detected capacity change from 0 to 2048
[  870.367451][T12348] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  870.432052][   T42] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[  870.679833][   T42] usb 10-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  870.698483][   T42] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  870.710030][   T42] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  870.720433][   T42] usb 10-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  870.871141][   T42] usb 10-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  870.880754][   T42] usb 10-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  870.895518][   T42] usb 10-1: Manufacturer: syz
[  870.934994][   T42] usb 10-1: config 0 descriptor??
[  871.452327][   T42] appleir 0003:05AC:8243.000E: unknown main item tag 0x0
[  871.519825][   T42] appleir 0003:05AC:8243.000E: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.9-1/input0
[  871.614505][T12365] sctp: [Deprecated]: syz.3.2504 (pid 12365) Use of int in max_burst socket option deprecated.
[  871.614505][T12365] Use struct sctp_assoc_value instead
[  873.583262][   T11] usb 10-1: USB disconnect, device number 2
[  874.447035][T12393] loop6: detected capacity change from 0 to 256
[  876.251076][T12413] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2525'.
[  876.450389][T12415] loop2: detected capacity change from 0 to 256
[  876.545155][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[  876.657687][T12415] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x76dfe2a7, utbl_chksum : 0xe619d30d)
[  876.675629][T12415] exFAT-fs (loop2): failed to load alloc-bitmap
[  876.682421][T12415] exFAT-fs (loop2): failed to recognize exfat type
[  877.802435][T12430] tap0: tun_chr_ioctl cmd 1074025675
[  877.808309][T12430] tap0: persist enabled
[  877.838865][T12428] tap0: tun_chr_ioctl cmd 1074025675
[  877.844897][T12428] tap0: persist enabled
[  880.485253][T12464] loop9: detected capacity change from 0 to 764
[  883.722349][   T42] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[  883.965085][   T42] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  883.989533][   T42] usb 10-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  883.999128][   T42] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  884.142278][   T42] usb 10-1: config 0 descriptor??
[  884.564400][T12512] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2567'.
[  884.638949][   T42] keytouch 0003:0926:3333.000F: fixing up Keytouch IEC report descriptor
[  884.719209][   T42] input: HID 0926:3333 as /devices/platform/dummy_hcd.9/usb10/10-1/10-1:0.0/0003:0926:3333.000F/input/input26
[  884.968458][   T42] keytouch 0003:0926:3333.000F: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.9-1/input0
[  885.633756][   T42] usb 10-1: USB disconnect, device number 3
[  886.262574][T12524] loop7: detected capacity change from 0 to 4096
[  886.499782][T12531] NILFS (loop7): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  889.128128][T12561] loop7: detected capacity change from 0 to 256
[  889.176628][   T42] usb 4-1: new high-speed USB device number 20 using dummy_hcd
[  889.384214][   T42] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  889.399440][   T42] usb 4-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  889.416841][   T42] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  889.526239][   T42] usb 4-1: config 0 descriptor??
[  889.611293][T12565] netlink: 4 bytes leftover after parsing attributes in process `syz.9.2590'.
[  890.055339][   T42] keytouch 0003:0926:3333.0010: fixing up Keytouch IEC report descriptor
[  890.105849][   T42] input: HID 0926:3333 as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:0926:3333.0010/input/input27
[  890.381597][   T42] keytouch 0003:0926:3333.0010: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.3-1/input0
[  890.967309][T12578] af_packet: tpacket_rcv: packet too big, clamped from 32 to 4294967272. macoff=96
[  891.152675][   T42] usb 4-1: USB disconnect, device number 20
[  891.480902][T12582] netlink: 24 bytes leftover after parsing attributes in process `syz.9.2599'.
[  891.491149][T12582] bond0: ARP target 170.170.170.170 is already present
[  891.505073][T12582] bond0: option arp_ip_target: invalid value (2863311530)
[  892.348785][T12591] loop9: detected capacity change from 0 to 1024
[  892.615016][T12591] hfsplus: xattr searching failed
[  892.810541][T12591] hfsplus: xattr search failed
[  893.246095][   T14] hfsplus: bad catalog file entry
[  893.259261][   T14] hfsplus: b-tree write err: -5, ino 3
[  894.851076][T12620] loop6: detected capacity change from 0 to 128
[  897.446366][T12655] batadv_slave_1: entered promiscuous mode
[  897.482901][T12653] batadv_slave_1: left promiscuous mode
[  898.070246][T12659] loop7: detected capacity change from 0 to 2048
[  898.109249][T12659] NILFS (loop7): broken superblock, retrying with spare superblock (blocksize = 1024)
[  898.202420][T12666] NILFS (loop7): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  898.289374][T12659] NILFS (loop7): unable to set label with more than 80 bytes
[  900.536390][   T30] audit: type=1326 audit(2000000046.150:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12690 comm="syz.6.2644" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f11539 code=0x7ffc0000
[  900.566545][   T30] audit: type=1326 audit(2000000046.150:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12690 comm="syz.6.2644" exe="/root/syz-executor" sig=0 arch=40000003 syscall=308 compat=1 ip=0xf7f11539 code=0x7ffc0000
[  900.593614][   T30] audit: type=1326 audit(2000000046.150:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12690 comm="syz.6.2644" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f11539 code=0x7ffc0000
[  900.624153][   T30] audit: type=1326 audit(2000000046.160:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12690 comm="syz.6.2644" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f11539 code=0x7ffc0000
[  901.592262][   T11] usb 10-1: new high-speed USB device number 4 using dummy_hcd
[  901.846106][   T11] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  901.857945][   T11] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  901.868372][   T11] usb 10-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  901.882251][   T11] usb 10-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  901.895041][   T11] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  901.925895][   T11] usb 10-1: config 0 descriptor??
[  902.636105][   T11] plantronics 0003:047F:FFFF.0011: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.9-1/input0
[  902.852789][   T42] usb 10-1: USB disconnect, device number 4
[  903.089099][T12711] loop6: detected capacity change from 0 to 4096
[  903.131913][   T11] usb 8-1: new high-speed USB device number 13 using dummy_hcd
[  903.360444][   T11] usb 8-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  903.371064][   T11] usb 8-1: config 0 interface 0 has no altsetting 0
[  903.436472][   T11] usb 8-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  903.446180][   T11] usb 8-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  903.457201][   T11] usb 8-1: Product: syz
[  903.462914][   T11] usb 8-1: Manufacturer: syz
[  903.467915][   T11] usb 8-1: SerialNumber: syz
[  903.520189][   T11] usb 8-1: config 0 descriptor??
[  903.563995][   T11] usb 8-1: selecting invalid altsetting 0
[  903.782939][   T11] usb 8-1: USB disconnect, device number 13
[  905.401053][T12733] loop2: detected capacity change from 0 to 64
[  907.484986][T12752] vcan0: tx drop: invalid sa for name 0xfffffffffffffffd
[  908.419669][T12763] loop7: detected capacity change from 0 to 512
[  908.495498][T12763] EXT4-fs: Ignoring removed oldalloc option
[  908.505422][T12763] EXT4-fs: Ignoring removed mblk_io_submit option
[  908.552898][T12763] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  908.625925][T12763] EXT4-fs (loop7): orphan cleanup on readonly fs
[  908.751816][T12763] Quota error (device loop7): do_check_range: Getting block 196613 out of range 1-5
[  908.777275][T12763] Quota error (device loop7): qtree_read_dquot: Can't read quota structure for id 0
[  908.787375][T12763] EXT4-fs error (device loop7): ext4_acquire_dquot:6945: comm syz.7.2671: Failed to acquire dquot type 1
[  908.826113][T12763] EXT4-fs (loop7): 1 truncate cleaned up
[  908.843001][T12763] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  909.276555][T12763] EXT4-fs: Ignoring removed orlov option
[  909.289861][T12763] EXT4-fs: Remounting file system with no journal so ignoring journalled data option
[  909.300067][T12763] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  909.361830][T12763] EXT4-fs (loop7): warning: mounting fs with errors, running e2fsck is recommended
[  909.429990][T12763] EXT4-fs error (device loop7): __ext4_remount:6748: comm syz.7.2671: Abort forced by user
[  909.500443][T12763] EXT4-fs (loop7): Remounting filesystem read-only
[  909.513918][T12763] EXT4-fs (loop7): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  909.523193][T12763] ext4 filesystem being remounted at /431/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  910.110406][ T7268] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  912.205886][T12798] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2692'.
[  914.783724][ T5795] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  914.806427][ T5795] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  914.816993][ T5795] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  914.838541][ T5795] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  914.850875][ T5795] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  914.979476][T12816] loop9: detected capacity change from 0 to 512
[  915.272126][T12816] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  915.285492][T12816] ext4 filesystem being mounted at /92/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  915.461010][T12816] Quota error (device loop9): do_check_range: Getting dqdh_next_free 4294967294 out of range 0-8
[  915.475611][T12816] Quota error (device loop9): qtree_write_dquot: Error -117 occurred while creating quota
[  915.489324][T12816] EXT4-fs error (device loop9): ext4_acquire_dquot:6945: comm syz.9.2699: Failed to acquire dquot type 0
[  916.161626][T11453] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  916.272962][T12812] chnl_net:caif_netlink_parms(): no params data found
[  916.892681][ T5795] Bluetooth: hci2: command tx timeout
[  917.269159][T12834] loop7: detected capacity change from 0 to 512
[  917.618945][T12836] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2704'.
[  917.712048][T12839] loop6: detected capacity change from 0 to 2048
[  917.744424][T12834] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  917.847180][T12839] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  917.896767][   T30] audit: type=1800 audit(2000000063.510:107): pid=12839 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.2706" name="file1" dev="loop6" ino=1367 res=0 errno=0
[  917.936716][T12812] bridge0: port 1(bridge_slave_0) entered blocking state
[  917.945149][T12812] bridge0: port 1(bridge_slave_0) entered disabled state
[  917.953350][T12812] bridge_slave_0: entered allmulticast mode
[  917.964114][T12812] bridge_slave_0: entered promiscuous mode
[  918.798258][T12812] bridge0: port 2(bridge_slave_1) entered blocking state
[  918.806332][T12812] bridge0: port 2(bridge_slave_1) entered disabled state
[  918.817323][T12812] bridge_slave_1: entered allmulticast mode
[  918.827892][T12812] bridge_slave_1: entered promiscuous mode
[  918.988077][ T5795] Bluetooth: hci2: command tx timeout
[  919.228556][ T7268] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  919.277671][T12812] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  919.376455][T12812] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  919.553276][T12812] team0: Port device team_slave_0 added
[  919.623466][T12812] team0: Port device team_slave_1 added
[  919.969776][T12812] batman_adv: batadv0: Adding interface: batadv_slave_0
[  919.977382][T12812] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  920.003982][T12812] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  920.030143][T12812] batman_adv: batadv0: Adding interface: batadv_slave_1
[  920.037642][T12812] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  920.066799][T12812] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  920.928346][T12812] hsr_slave_0: entered promiscuous mode
[  920.943725][T12812] hsr_slave_1: entered promiscuous mode
[  920.953738][T12812] debugfs: 'hsr0' already exists in 'hsr'
[  920.959752][T12812] Cannot create hsr debugfs directory
[  921.060532][ T5795] Bluetooth: hci2: command tx timeout
[  923.132455][ T5795] Bluetooth: hci2: command tx timeout
[  923.790783][T12812] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  923.898033][T12812] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  923.943288][T12812] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  924.020428][T12812] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  925.902190][T12812] 8021q: adding VLAN 0 to HW filter on device bond0
[  926.092458][T12907] loop9: detected capacity change from 0 to 7
[  926.118196][T12907] Dev loop9: unable to read RDB block 7
[  926.124881][T12907]  loop9: AHDI p2
[  926.129124][T12907] loop9: partition table partially beyond EOD, truncated
[  926.142430][T12812] 8021q: adding VLAN 0 to HW filter on device team0
[  926.272932][ T3791] bridge0: port 1(bridge_slave_0) entered blocking state
[  926.280579][ T3791] bridge0: port 1(bridge_slave_0) entered forwarding state
[  926.423155][T12899] loop9: detected capacity change from 0 to 4096
[  926.425981][ T3791] bridge0: port 2(bridge_slave_1) entered blocking state
[  926.437534][ T3791] bridge0: port 2(bridge_slave_1) entered forwarding state
[  926.478689][T12899] ntfs3: Bad value for 'uid'
[  926.484212][T12899] ntfs3: Bad value for 'uid'
[  926.919397][T12812] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  928.677531][T12928] vivid-007: disconnect
[  928.684818][T12927] vivid-007: reconnect
[  929.098639][T12932] loop6: detected capacity change from 0 to 2560
[  929.106640][T12932] Buffer I/O error on dev loop6, logical block 0, async page read
[  929.118210][T12932] Buffer I/O error on dev loop6, logical block 0, async page read
[  929.133808][T12932] Buffer I/O error on dev loop6, logical block 0, async page read
[  929.146926][T12932] Buffer I/O error on dev loop6, logical block 0, async page read
[  929.158353][T12932] Buffer I/O error on dev loop6, logical block 0, async page read
[  929.174594][T12932] Buffer I/O error on dev loop6, logical block 0, async page read
[  929.186288][T12932] Buffer I/O error on dev loop6, logical block 0, async page read
[  929.194911][T12932] Buffer I/O error on dev loop6, logical block 0, async page read
[  929.206424][T12932] ldm_validate_partition_table(): Disk read failed.
[  929.216465][T12812] 8021q: adding VLAN 0 to HW filter on device batadv0
[  929.223888][T12932] Buffer I/O error on dev loop6, logical block 0, async page read
[  929.236015][T12931] syzkaller1: entered promiscuous mode
[  929.236136][T12931] syzkaller1: entered allmulticast mode
[  929.257150][T12932] Buffer I/O error on dev loop6, logical block 0, async page read
[  929.269512][T12932] Dev loop6: unable to read RDB block 0
[  929.279260][T12932]  loop6: unable to read partition table
[  929.413270][T12934] overlayfs: failed to decode file handle (len=6, type=248, flags=0, err=-22)
[  929.447584][T12932] loop_reread_partitions: partition scan of loop6 (3�����) failed (rc=-5)
[  931.755613][T12959] loop7: detected capacity change from 0 to 1024
[  932.861251][T12812] veth0_vlan: entered promiscuous mode
[  932.943603][T12812] veth1_vlan: entered promiscuous mode
[  933.364341][T12812] veth0_macvtap: entered promiscuous mode
[  933.489937][T12812] veth1_macvtap: entered promiscuous mode
[  933.798709][T12812] batman_adv: batadv0: Interface activated: batadv_slave_0
[  933.927363][T12812] batman_adv: batadv0: Interface activated: batadv_slave_1
[  934.130682][ T3582] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  934.224988][ T3582] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  934.283857][ T3582] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  934.346563][ T3582] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  935.967825][T12999] netlink: 212916 bytes leftover after parsing attributes in process `syz.3.2753'.
[  937.327794][    T9] usb 4-1: new high-speed USB device number 21 using dummy_hcd
[  937.591219][    T9] usb 4-1: Using ep0 maxpacket: 16
[  937.669161][    T9] usb 4-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  937.678647][    T9] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  937.689385][    T9] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  937.800026][    T9] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  937.810008][    T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  937.818590][    T9] usb 4-1: Product: syz
[  937.823232][    T9] usb 4-1: Manufacturer: syz
[  937.828177][    T9] usb 4-1: SerialNumber: syz
[  938.380061][    T9] usb 4-1: 0:2 : does not exist
[  939.124337][    T9] usb 4-1: USB disconnect, device number 21
[  939.688166][T13036] netlink: 'syz.9.2763': attribute type 4 has an invalid length.
[  940.721045][T13045] loop6: detected capacity change from 0 to 512
[  940.794998][T13048] gretap0: entered promiscuous mode
[  940.833128][T13045] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  940.951258][T13045] EXT4-fs (loop6): 1 orphan inode deleted
[  940.957923][T13045] EXT4-fs (loop6): 1 truncate cleaned up
[  940.966857][T13045] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  941.219843][T13045] EXT4-fs error (device loop6): ext4_inlinedir_to_tree:1314: inode #12: block 7: comm syz.6.2765: path /527/file0/file0: bad entry in directory: directory entry overrun - offset=788, inode=13, rec_len=784, size=60 fake=0
[  941.348652][T13045] EXT4-fs (loop6): Remounting filesystem read-only
[  941.866916][ T6355] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  943.928484][   T14] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  943.937700][   T14] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  944.399299][   T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  944.415290][   T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  947.526533][T13117] netlink: 'syz.3.2786': attribute type 11 has an invalid length.
[  947.910047][T13125] netlink: 276 bytes leftover after parsing attributes in process `syz.7.2785'.
[  948.162576][T13125] netlink: 276 bytes leftover after parsing attributes in process `syz.7.2785'.
[  949.054510][T13114] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2784'.
[  951.493849][T13160] netlink: 'syz.6.2799': attribute type 5 has an invalid length.
[  954.420297][T13193] loop6: detected capacity change from 0 to 512
[  954.643363][T13200] loop4: detected capacity change from 0 to 256
[  954.734414][T11454] Bluetooth: hci0: command 0x0c1a tx timeout
[  955.615995][T13209] loop6: detected capacity change from 0 to 16
[  955.742138][T13209] erofs (device loop6): mounted with root inode @ nid 36.
[  956.281139][   T42] kernel read not supported for file /18/wchan (pid: 42 comm: kworker/1:1)
[  960.929207][   T30] audit: type=1326 audit(2000000106.550:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13262 comm="syz.6.2834" exe="/root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f11539 code=0x0
[  963.075915][T13287] loop9: detected capacity change from 0 to 256
[  963.125918][T13287] exfat: Deprecated parameter 'utf8'
[  963.342051][T13287] exFAT-fs (loop9): failed to load upcase table (idx : 0x00010000, chksum : 0xe3865569, utbl_chksum : 0xe619d30d)
[  966.364439][T13323] block nbd3: shutting down sockets
[  969.126156][T13355] tun0: tun_chr_ioctl cmd 1074025675
[  969.134096][T13355] tun0: persist enabled
[  969.180255][T13357] tun0: tun_chr_ioctl cmd 1074025675
[  969.189417][T13357] tun0: persist disabled
[  969.765853][T13363] batadv_slave_1: entered promiscuous mode
[  969.863565][T13360] batadv_slave_1: left promiscuous mode
[  970.577098][T13371] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2871'.
[  972.565408][   T42] usb 4-1: new low-speed USB device number 22 using dummy_hcd
[  972.802083][   T42] usb 4-1: config index 0 descriptor too short (expected 6427, got 27)
[  972.820311][   T42] usb 4-1: config 0 has an invalid interface number: 21 but max is 0
[  972.829170][   T42] usb 4-1: config 0 has no interface number 0
[  972.835846][   T42] usb 4-1: config 0 interface 21 altsetting 0 endpoint 0x82 is Bulk; changing to Interrupt
[  972.854580][   T42] usb 4-1: New USB device found, idVendor=06cd, idProduct=0202, bcdDevice=92.d4
[  972.868993][   T42] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  973.057106][   T42] usb 4-1: config 0 descriptor??
[  973.082917][T13391] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  973.946181][   T42] input: USB Keyspan Remote 06cd:0202 as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.21/input/input29
[  974.184403][    T9] usb 4-1: USB disconnect, device number 22
[  974.185675][    C1] keyspan_remote 4-1:0.21: keyspan_irq_recv - usb_submit_urb failed with result: -19
[  977.327643][T13440] loop6: detected capacity change from 0 to 47
[  978.025267][   T42] usb 5-1: new full-speed USB device number 3 using dummy_hcd
[  978.120334][T13448] netlink: 27 bytes leftover after parsing attributes in process `syz.3.2894'.
[  978.249319][   T42] usb 5-1: config 0 interface 0 altsetting 10 endpoint 0x81 has invalid wMaxPacketSize 0
[  978.267154][   T42] usb 5-1: config 0 interface 0 altsetting 10 endpoint 0x2 has invalid maxpacket 1023, setting to 64
[  978.280476][   T42] usb 5-1: config 0 interface 0 has no altsetting 0
[  978.288312][   T42] usb 5-1: New USB device found, idVendor=05ac, idProduct=0215, bcdDevice= 0.00
[  978.308681][   T42] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  978.527176][   T42] usb 5-1: config 0 descriptor??
[  978.547042][T13444] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  979.165640][   T42] apple 0003:05AC:0215.0012: hidraw0: USB HID v0.00 Device [HID 05ac:0215] on usb-dummy_hcd.4-1/input0
[  979.342489][    T9] usb 5-1: USB disconnect, device number 3
[  979.499883][T13460] loop9: detected capacity change from 0 to 1024
[  980.809826][T13471] loop9: detected capacity change from 0 to 128
[  980.837753][T13471] adfs: Bad value for 'gid'
[  980.852320][T13471] adfs: Bad value for 'gid'
[  981.121084][   T42] kernel write not supported for file /adsp1 (pid: 42 comm: kworker/1:1)
[  982.389307][T13488] syzkaller1: entered allmulticast mode
[  982.938314][T13494] loop4: detected capacity change from 0 to 1024
[  986.610638][T13532] loop4: detected capacity change from 0 to 256
[  986.675327][T13532] exfat: Deprecated parameter 'namecase'
[  986.690207][T13532] exfat: Deprecated parameter 'utf8'
[  986.864239][T13532] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  987.143391][T13535] loop7: detected capacity change from 0 to 4096
[  987.188532][T13535] ntfs3(loop7): Different NTFS sector size (1024) and media sector size (512).
[  987.858279][T13535] ntfs3(loop7): ino=1d, mi_enum_attr
[  987.867384][T13535] ntfs3(loop7): Mark volume as dirty due to NTFS errors
[  987.963263][T13535] ntfs3(loop7): ino=1d, mi_enum_attr
[  987.970471][T13535] ntfs3(loop7): ino=1d, mi_enum_attr
[  988.190542][T13549] syzkaller1: entered promiscuous mode
[  988.196569][T13549] syzkaller1: entered allmulticast mode
[  989.805619][   T42] usb 8-1: new high-speed USB device number 14 using dummy_hcd
[  989.992895][   T42] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x6 has invalid maxpacket 1023
[  990.008132][   T42] usb 8-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xBA, changing to 0x8A
[  990.023554][   T42] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8A has invalid maxpacket 121
[  990.156610][   T42] usb 8-1: New USB device found, idVendor=2294, idProduct=425b, bcdDevice=a2.10
[  990.170317][   T42] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  990.188136][   T42] usb 8-1: Product: syz
[  990.193121][   T42] usb 8-1: Manufacturer: syz
[  990.198112][   T42] usb 8-1: SerialNumber: syz
[  990.229762][   T42] usb 8-1: config 0 descriptor??
[  990.241128][T13565] raw-gadget.0 gadget.7: fail, usb_ep_enable returned -22
[  990.279070][T13565] raw-gadget.0 gadget.7: fail, usb_ep_enable returned -22
[  990.307171][   T42] usb 8-1: ucan: probing device on interface #0
[  990.996663][   T42] ucan 8-1:0.0 can0: registered device
[  991.165710][   T42] ucan 8-1:0.0 can0: firmware string: ���L��>z�^�ɉw�{f�,��
=�}���̫eRJ�(�=#�gE}��u�t�+�|����H�!R�$8g�[- }q>�A�rŴ�,���xp|�J�B��*~���|X��8�-�e���o!
[  991.404363][    T9] usb 8-1: USB disconnect, device number 14
[  994.582030][T13622] input: syz1 as /devices/virtual/input/input30
[  995.049246][T13626] syz.9.2955 (13626): /proc/13625/oom_adj is deprecated, please use /proc/13625/oom_score_adj instead.
[  995.530645][T13634] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2959'.
[  996.355936][T13643] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2964'.
[  999.325138][T13679] netlink: 'syz.6.2979': attribute type 11 has an invalid length.
[ 1000.142975][T13687] netlink: 7 bytes leftover after parsing attributes in process `syz.3.2984'.
[ 1000.178053][T13687] netlink: 7 bytes leftover after parsing attributes in process `syz.3.2984'.
[ 1000.803617][ T3926] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1000.971073][ T3926] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1001.249307][ T3926] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1001.485754][ T3926] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1001.788403][ T3926] bridge_slave_1: left allmulticast mode
[ 1001.794640][ T3926] bridge_slave_1: left promiscuous mode
[ 1001.801490][ T3926] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1001.848728][ T3926] bridge_slave_0: left allmulticast mode
[ 1001.854874][ T3926] bridge_slave_0: left promiscuous mode
[ 1001.861793][ T3926] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1002.672134][ T3926] team0: Port device bridge1 removed
[ 1002.769079][ T3926] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1002.809377][ T3926] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1002.837359][ T3926] bond0 (unregistering): Released all slaves
[ 1003.129788][ T3926] tipc: Disabling bearer <udp:syz2>
[ 1003.139033][ T3926] tipc: Left network mode
[ 1003.199869][T13703] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2992'.
[ 1004.330447][ T3926] hsr_slave_0: left promiscuous mode
[ 1004.358450][ T3926] hsr_slave_1: left promiscuous mode
[ 1004.368225][ T3926] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1004.376340][ T3926] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1004.452080][ T3926] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1004.460744][ T3926] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1004.589201][ T5795] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1004.610103][ T3926] veth1_macvtap: left promiscuous mode
[ 1004.616252][ T3926] veth0_macvtap: left promiscuous mode
[ 1004.623657][ T3926] veth1_vlan: left promiscuous mode
[ 1004.629409][ T3926] veth0_vlan: left promiscuous mode
[ 1004.640879][ T5795] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1004.973123][ T5795] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1005.001184][ T5795] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1005.020866][ T5795] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1005.800545][ T3926] team0 (unregistering): Port device team_slave_1 removed
[ 1005.885760][ T3926] team0 (unregistering): Port device team_slave_0 removed
[ 1007.299417][ T5795] Bluetooth: hci1: command tx timeout
[ 1008.019945][T13720] chnl_net:caif_netlink_parms(): no params data found
[ 1009.372327][T11454] Bluetooth: hci1: command tx timeout
[ 1009.689484][T13762] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3013'.
[ 1009.707661][T13720] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1009.715476][T13720] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1009.733096][T13720] bridge_slave_0: entered allmulticast mode
[ 1009.743579][T13720] bridge_slave_0: entered promiscuous mode
[ 1009.856977][T13720] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1009.864804][T13720] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1009.878712][T13720] bridge_slave_1: entered allmulticast mode
[ 1009.888997][T13720] bridge_slave_1: entered promiscuous mode
[ 1010.186805][T13720] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1010.225970][T13720] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1010.397705][T13720] team0: Port device team_slave_0 added
[ 1010.459546][T13720] team0: Port device team_slave_1 added
[ 1010.657194][T13720] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1010.669112][T13720] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1010.702040][T13720] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1010.850806][T13720] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1010.861847][T13720] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1010.888134][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1010.901246][T13720] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1011.356538][T13779] loop6: detected capacity change from 0 to 256
[ 1011.437981][T13720] hsr_slave_0: entered promiscuous mode
[ 1011.451654][T11454] Bluetooth: hci1: command 0x040f tx timeout
[ 1011.452993][T13720] hsr_slave_1: entered promiscuous mode
[ 1011.477472][T13720] debugfs: 'hsr0' already exists in 'hsr'
[ 1011.483666][T13720] Cannot create hsr debugfs directory
[ 1011.568169][   T30] audit: type=1800 audit(2000000157.150:109): pid=13779 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.3022" name="file1" dev="loop6" ino=1048781 res=0 errno=0
[ 1011.619697][T13779] exFAT-fs (loop6): start_clu is invalid cluster(0x400)
[ 1011.661833][    T9] usb 4-1: new high-speed USB device number 23 using dummy_hcd
[ 1011.953179][    T9] usb 4-1: Using ep0 maxpacket: 32
[ 1011.990010][    T9] usb 4-1: config 0 has an invalid interface number: 85 but max is 0
[ 1011.999563][    T9] usb 4-1: config 0 has no interface number 0
[ 1012.006249][    T9] usb 4-1: config 0 interface 85 altsetting 7 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 1012.018017][    T9] usb 4-1: config 0 interface 85 has no altsetting 0
[ 1012.125725][    T9] usb 4-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72
[ 1012.135704][    T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1012.144070][    T9] usb 4-1: Product: syz
[ 1012.148452][    T9] usb 4-1: Manufacturer: syz
[ 1012.153396][    T9] usb 4-1: SerialNumber: syz
[ 1012.167142][    T9] usb 4-1: config 0 descriptor??
[ 1012.835408][    T9] appletouch 4-1:0.85: Geyser mode initialized.
[ 1012.845787][    T9] input: appletouch as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.85/input/input31
[ 1013.078345][    T9] usb 4-1: USB disconnect, device number 23
[ 1013.137853][    T9] appletouch 4-1:0.85: input: appletouch disconnected
[ 1013.439660][T13794] loop9: detected capacity change from 0 to 2048
[ 1013.536013][T13794] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1013.545996][ T5795] Bluetooth: hci1: command 0x040f tx timeout
[ 1013.587596][T13720] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 1013.716021][T13720] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 1013.822017][T13720] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 1013.934036][T13720] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 1014.185686][T13801] loop4: detected capacity change from 0 to 1024
[ 1014.640224][   T30] audit: type=1326 audit(2000000160.250:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13807 comm="syz.6.3031" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f11539 code=0x7ffc0000
[ 1014.770141][   T30] audit: type=1326 audit(2000000160.320:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13807 comm="syz.6.3031" exe="/root/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f11539 code=0x7ffc0000
[ 1014.799600][   T30] audit: type=1326 audit(2000000160.320:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13807 comm="syz.6.3031" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f11539 code=0x7ffc0000
[ 1014.829580][   T30] audit: type=1326 audit(2000000160.320:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13807 comm="syz.6.3031" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f11539 code=0x7ffc0000
[ 1015.224648][T10798] hfsplus: b-tree write err: -5, ino 3
[ 1015.358169][T12812] hfsplus: node 4:3 still has 2 user(s)!
[ 1015.551894][T13720] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1015.627965][ T5795] Bluetooth: hci1: command 0x040f tx timeout
[ 1015.758570][T13720] 8021q: adding VLAN 0 to HW filter on device team0
[ 1015.858115][T10798] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1015.866118][T10798] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1015.888571][T10798] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1015.896362][T10798] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1016.107783][T13825] loop9: detected capacity change from 0 to 512
[ 1016.230931][T13825] EXT4-fs: inline encryption not supported
[ 1016.328906][T13825] EXT4-fs: Mount option(s) incompatible with ext3
[ 1017.488466][T13828] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[ 1017.600571][T13831] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[ 1018.233723][   T11] usb 10-1: new full-speed USB device number 5 using dummy_hcd
[ 1018.439312][   T11] usb 10-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1018.450538][   T11] usb 10-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1018.510722][   T11] usb 10-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1018.520566][   T11] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1018.531016][   T11] usb 10-1: Product: syz
[ 1018.536210][   T11] usb 10-1: Manufacturer: syz
[ 1018.541596][   T11] usb 10-1: SerialNumber: syz
[ 1018.852110][   T11] usb 10-1: 0:2 : does not exist
[ 1018.906714][   T11] usb 10-1: 5:0: failed to get current value for ch 0 (-22)
[ 1019.043075][T13720] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1019.060570][T13845] netlink: 774 bytes leftover after parsing attributes in process `syz.3.3043'.
[ 1019.112373][   T11] usb 10-1: USB disconnect, device number 5
[ 1019.585200][T13849] loop6: detected capacity change from 0 to 1024
[ 1019.629202][T13720] veth0_vlan: entered promiscuous mode
[ 1019.675797][T13849] EXT4-fs (loop6): stripe (32769) is not aligned with cluster size (16), stripe is disabled
[ 1019.852581][T13720] veth1_vlan: entered promiscuous mode
[ 1019.877375][T13849] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1020.052007][T13860] syzkaller1: entered promiscuous mode
[ 1020.057750][T13860] syzkaller1: entered allmulticast mode
[ 1020.089803][T13849] EXT4-fs error (device loop6): ext4_xattr_inode_iget:441: comm syz.6.3045: inode #1869771365: comm syz.6.3045: iget: illegal inode #
[ 1020.130285][T13849] EXT4-fs (loop6): Remounting filesystem read-only
[ 1020.138108][T13849] EXT4-fs warning (device loop6): ext4_xattr_inode_inc_ref_all:1134: inode #19: comm syz.6.3045: cleanup dec ref error -30
[ 1020.151651][T13849] EXT4-fs warning (device loop6): ext4_xattr_block_set:2195: inode #19: comm syz.6.3045: dec ref error=-30
[ 1020.378627][T13720] veth0_macvtap: entered promiscuous mode
[ 1020.422148][T13720] veth1_macvtap: entered promiscuous mode
[ 1020.514754][ T6355] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1020.639213][T13720] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1020.751787][T13720] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1020.859177][ T3791] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1020.929851][ T4200] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1020.967134][ T4200] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1021.009344][ T4200] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1021.269558][T13865] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[ 1021.362990][T13866] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[ 1022.331601][   T30] audit: type=1326 audit(2000000167.950:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13876 comm="syz.6.3054" exe="/root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f11539 code=0x0
[ 1024.355846][T13897] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3061'.
[ 1029.612278][   T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1029.620347][   T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1030.177423][   T14] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1030.185700][   T14] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1032.157666][   T11] usb 10-1: new high-speed USB device number 6 using dummy_hcd
[ 1032.392006][   T11] usb 10-1: Using ep0 maxpacket: 8
[ 1032.476083][   T11] usb 10-1: config 0 has an invalid interface number: 32 but max is 0
[ 1032.485025][   T11] usb 10-1: config 0 has no interface number 0
[ 1032.491920][   T11] usb 10-1: config 0 interface 32 has no altsetting 0
[ 1034.353825][T13895] Set syz1 is full, maxelem 65536 reached
[ 1034.531494][   T11] usb 10-1: New USB device found, idVendor=0856, idProduct=bc03, bcdDevice=44.6e
[ 1034.541146][   T11] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1034.549819][   T11] usb 10-1: Product: syz
[ 1034.554450][   T11] usb 10-1: Manufacturer: syz
[ 1034.559389][   T11] usb 10-1: SerialNumber: syz
[ 1034.570416][   T11] usb 10-1: config 0 descriptor??
[ 1034.783555][T13951] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[ 1035.336803][   T11] mos7840 10-1:0.32: required endpoints missing
[ 1035.395414][   T11] usb 10-1: USB disconnect, device number 6
[ 1038.051821][   T24] usb 4-1: new high-speed USB device number 24 using dummy_hcd
[ 1038.201840][   T11] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[ 1038.281234][   T24] usb 4-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[ 1038.297670][   T24] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1038.350845][   T24] usb 4-1: config 0 descriptor??
[ 1038.389848][   T11] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1038.403838][   T11] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1038.414838][   T11] usb 1-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.00
[ 1038.425185][   T11] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1038.607081][   T11] usb 1-1: config 0 descriptor??
[ 1038.796613][   T24] usb 4-1: Cannot set MAC address
[ 1038.813216][   T24] MOSCHIP usb-ethernet driver 4-1:0.0: probe with driver MOSCHIP usb-ethernet driver failed with error -71
[ 1038.855551][   T30] audit: type=1326 audit(2000000184.480:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13989 comm="syz.9.3094" exe="/root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f65539 code=0x0
[ 1038.926085][   T24] usb 4-1: USB disconnect, device number 24
[ 1039.067298][   T11] cp2112 0003:10C4:EA90.0013: unknown main item tag 0x0
[ 1039.075103][   T11] cp2112 0003:10C4:EA90.0013: unknown main item tag 0x0
[ 1039.082588][   T11] cp2112 0003:10C4:EA90.0013: unknown main item tag 0x0
[ 1039.089894][   T11] cp2112 0003:10C4:EA90.0013: unknown main item tag 0x0
[ 1039.098906][   T11] cp2112 0003:10C4:EA90.0013: unknown main item tag 0x0
[ 1039.106812][   T11] cp2112 0003:10C4:EA90.0013: unknown main item tag 0x0
[ 1039.117426][   T11] cp2112 0003:10C4:EA90.0013: unknown main item tag 0x0
[ 1039.190748][   T11] cp2112 0003:10C4:EA90.0013: hidraw0: USB HID v0.00 Device [HID 10c4:ea90] on usb-dummy_hcd.0-1/input0
[ 1039.299319][   T11] cp2112 0003:10C4:EA90.0013: Part Number: 0x82 Device Version: 0xFE
[ 1039.713991][   T11] cp2112 0003:10C4:EA90.0013: error setting SMBus config
[ 1039.777631][   T11] cp2112 0003:10C4:EA90.0013: probe with driver cp2112 failed with error -71
[ 1039.871909][   T11] usb 1-1: USB disconnect, device number 3
[ 1040.203132][T13999] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3096'.
[ 1041.775898][T11454] Bluetooth: hci2: command 0x0406 tx timeout
[ 1043.334916][   T24] usb 10-1: new high-speed USB device number 7 using dummy_hcd
[ 1043.518036][   T24] usb 10-1: Using ep0 maxpacket: 8
[ 1043.565912][   T24] usb 10-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[ 1043.583011][   T24] usb 10-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[ 1043.600233][   T24] usb 10-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1043.611870][   T24] usb 10-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1043.632193][   T24] usb 10-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[ 1043.644336][   T24] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1043.979166][   T24] usb 10-1: usb_control_msg returned -32
[ 1043.988519][   T24] usbtmc 10-1:16.0: can't read capabilities
[ 1044.106478][T14042] loop6: detected capacity change from 0 to 512
[ 1046.377074][   T24] usb 10-1: USB disconnect, device number 7
[ 1047.253725][   T11] usb 4-1: new high-speed USB device number 25 using dummy_hcd
[ 1047.461820][   T11] usb 4-1: Using ep0 maxpacket: 32
[ 1047.506358][   T11] usb 4-1: New USB device found, idVendor=041e, idProduct=400b, bcdDevice=3e.e7
[ 1047.516469][   T11] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1047.582657][   T11] usb 4-1: config 0 descriptor??
[ 1047.632359][   T11] gspca_main: sunplus-2.14.0 probing 041e:400b
[ 1048.582334][T14091] netlink: 'syz.6.3138': attribute type 1 has an invalid length.
[ 1048.590504][T14091] netlink: 'syz.6.3138': attribute type 2 has an invalid length.
[ 1048.773330][   T11] gspca_sunplus: reg_w_riv err -71
[ 1048.779237][   T11] sunplus 4-1:0.0: probe with driver sunplus failed with error -71
[ 1048.814706][   T11] usb 4-1: USB disconnect, device number 25
[ 1049.328243][   T24] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[ 1049.558702][T14104] capability: warning: `syz.9.3143' uses 32-bit capabilities (legacy support in use)
[ 1049.579194][   T24] usb 1-1: Using ep0 maxpacket: 8
[ 1049.612209][   T24] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[ 1049.624193][   T24] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[ 1049.644042][   T24] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1049.658324][   T24] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1049.672602][   T24] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[ 1049.688668][   T24] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1050.025327][   T24] usb 1-1: usb_control_msg returned -32
[ 1050.032156][   T24] usbtmc 1-1:16.0: can't read capabilities
[ 1050.125873][T14109] loop4: detected capacity change from 0 to 256
[ 1050.142861][T14109] exfat: Deprecated parameter 'namecase'
[ 1050.149314][T14109] exfat: Deprecated parameter 'utf8'
[ 1050.295285][T14109] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[ 1051.082953][T14122] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3151'.
[ 1051.098684][T14122] netlink: 52 bytes leftover after parsing attributes in process `syz.6.3151'.
[ 1051.198678][T14124] binder: 14123:14124 ioctl c0306201 80000480 returned -22
[ 1051.634573][T14126] loop9: detected capacity change from 0 to 512
[ 1051.725988][T14126] EXT4-fs (loop9): Cannot turn on journaled quota: type 0: error -2
[ 1051.735359][T14126] EXT4-fs (loop9): Cannot turn on journaled quota: type 1: error -2
[ 1051.833107][T14126] EXT4-fs (loop9): 1 truncate cleaned up
[ 1051.837646][T14134] loop4: detected capacity change from 0 to 1024
[ 1051.842345][T14126] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1051.923682][T14126] EXT4-fs (loop9): shut down requested (2)
[ 1051.938599][T14134] EXT4-fs (loop4): stripe (32769) is not aligned with cluster size (16), stripe is disabled
[ 1052.003565][T14134] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1052.103883][T11453] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1052.320876][T14134] EXT4-fs error (device loop4): ext4_xattr_inode_iget:441: comm syz.4.3156: inode #5: comm syz.4.3156: iget: illegal inode #
[ 1052.351862][T14134] EXT4-fs (loop4): Remounting filesystem read-only
[ 1052.358893][T14134] EXT4-fs warning (device loop4): ext4_xattr_inode_inc_ref_all:1134: inode #19: comm syz.4.3156: cleanup dec ref error -30
[ 1052.372726][T14134] EXT4-fs warning (device loop4): ext4_xattr_block_set:2195: inode #19: comm syz.4.3156: dec ref error=-30
[ 1052.487829][   T11] usb 1-1: USB disconnect, device number 4
[ 1052.736075][T12812] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1053.005327][T14148] input: syz1 as /devices/virtual/input/input32
[ 1053.344028][   T11] usb 4-1: new high-speed USB device number 26 using dummy_hcd
[ 1053.593352][   T11] usb 4-1: Using ep0 maxpacket: 16
[ 1053.634495][   T11] usb 4-1: config 0 interface 0 has no altsetting 0
[ 1053.642922][   T11] usb 4-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[ 1053.654403][   T11] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1053.675143][T14153] all (unregistering): Released all slaves
[ 1053.792092][   T11] usb 4-1: config 0 descriptor??
[ 1054.140720][T14150] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1054.153170][T14150] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1054.204677][T14159] loop9: detected capacity change from 0 to 512
[ 1054.310140][T14161] loop6: detected capacity change from 0 to 512
[ 1054.412363][T14159] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1054.504321][   T11] hid (null): unknown global tag 0xe
[ 1054.520260][T14161] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1054.694754][T14161] EXT4-fs warning (device loop6): ext4_begin_enable_verity:135: inode #15: comm syz.6.3166: verity is only allowed on extent-based files
[ 1054.715080][   T11] usb 4-1: USB disconnect, device number 26
[ 1054.793590][T14168] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3168'.
[ 1054.806388][T14168] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3168'.
[ 1054.971567][T11453] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1055.124114][ T6355] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1055.188547][T14170] Bluetooth: MGMT ver 1.23
[ 1055.637210][T14176] loop4: detected capacity change from 0 to 256
[ 1055.667252][T14176] exfat: Deprecated parameter 'utf8'
[ 1055.677264][T14176] exfat: Deprecated parameter 'utf8'
[ 1055.844671][T14176] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xf6efbb19, utbl_chksum : 0xe619d30d)
[ 1056.757130][T14193] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3178'.
[ 1057.134475][   T11] usb 10-1: new high-speed USB device number 8 using dummy_hcd
[ 1057.355446][   T11] usb 10-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1057.367883][   T11] usb 10-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 1057.378731][   T11] usb 10-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1057.389123][   T11] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1057.441618][T14195] raw-gadget.0 gadget.9: fail, usb_ep_enable returned -22
[ 1057.470189][   T11] usb 10-1: Quirk or no altset; falling back to MIDI 1.0
[ 1057.734515][   T11] usb 10-1: USB disconnect, device number 8
[ 1058.631802][   T11] usb 4-1: new high-speed USB device number 27 using dummy_hcd
[ 1058.854235][   T11] usb 4-1: config 1 interface 0 altsetting 127 bulk endpoint 0x81 has invalid maxpacket 64
[ 1058.866010][   T11] usb 4-1: config 1 interface 0 altsetting 127 bulk endpoint 0x2 has invalid maxpacket 32
[ 1058.878647][   T11] usb 4-1: config 1 interface 0 has no altsetting 0
[ 1058.968550][   T11] usb 4-1: New USB device found, idVendor=0bda, idProduct=8150, bcdDevice= 0.40
[ 1058.980285][   T11] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1058.989364][   T11] usb 4-1: Product: syz
[ 1058.994333][   T11] usb 4-1: Manufacturer: syz
[ 1058.999881][   T11] usb 4-1: SerialNumber: syz
[ 1059.032918][T14213] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1059.096227][T14213] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1060.011161][T14223] loop6: detected capacity change from 0 to 256
[ 1060.238168][   T11] (unnamed net_device) (uninitialized): Assigned a random MAC address: 9a:13:d9:8a:2b:91
[ 1060.268368][   T11] rtl8150 4-1:1.0: eth5: rtl8150 is detected
[ 1060.352903][   T11] usb 4-1: USB disconnect, device number 27
[ 1061.088770][T14231] syzkaller1: entered promiscuous mode
[ 1061.094640][T14231] syzkaller1: entered allmulticast mode
[ 1061.163188][    C0] =====================================================
[ 1061.170634][    C0] BUG: KMSAN: uninit-value in bpf_prog_run_generic_xdp+0x1465/0x2000
[ 1061.179122][    C0]  bpf_prog_run_generic_xdp+0x1465/0x2000
[ 1061.185247][    C0]  do_xdp_generic+0xd52/0x1690
[ 1061.190421][    C0]  __netif_receive_skb_core+0x2bc2/0x7150
[ 1061.196594][    C0]  __netif_receive_skb+0xcc/0xac0
[ 1061.201883][    C0]  process_backlog+0x485/0xa00
[ 1061.207008][    C0]  __napi_poll+0xdd/0x8a0
[ 1061.211609][    C0]  net_rx_action+0xbc8/0x1c30
[ 1061.216610][    C0]  handle_softirqs+0x169/0x6e0
[ 1061.221716][    C0]  __do_softirq+0x14/0x1b
[ 1061.226651][    C0]  do_softirq+0x99/0x100
[ 1061.231166][    C0]  __local_bh_enable_ip+0xa1/0xb0
[ 1061.236530][    C0]  tun_rx_batched+0x889/0x980
[ 1061.241620][    C0]  tun_get_user+0x5d62/0x6d70
[ 1061.246647][    C0]  tun_chr_write_iter+0x3e9/0x5c0
[ 1061.251993][    C0]  vfs_write+0xbe2/0x15d0
[ 1061.256528][    C0]  __ia32_sys_write+0x1f9/0x4d0
[ 1061.261680][    C0]  ia32_sys_call+0x35bc/0x4310
[ 1061.266726][    C0]  __do_fast_syscall_32+0xb0/0x150
[ 1061.272301][    C0]  do_fast_syscall_32+0x38/0x80
[ 1061.277427][    C0]  do_SYSENTER_32+0x1f/0x30
[ 1061.282320][    C0]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1061.289006][    C0] 
[ 1061.291537][    C0] Uninit was created at:
[ 1061.296086][    C0]  __kmalloc_node_track_caller_noprof+0xb4b/0x1ba0
[ 1061.302913][    C0]  kmalloc_reserve+0x22f/0x4b0
[ 1061.308185][    C0]  pskb_expand_head+0x1fc/0x1610
[ 1061.313661][    C0]  do_xdp_generic+0xa79/0x1690
[ 1061.318684][    C0]  __netif_receive_skb_core+0x2bc2/0x7150
[ 1061.324784][    C0]  __netif_receive_skb+0xcc/0xac0
[ 1061.330001][    C0]  process_backlog+0x485/0xa00
[ 1061.335054][    C0]  __napi_poll+0xdd/0x8a0
[ 1061.339648][    C0]  net_rx_action+0xbc8/0x1c30
[ 1061.345139][    C0]  handle_softirqs+0x169/0x6e0
[ 1061.350155][    C0]  __do_softirq+0x14/0x1b
[ 1061.354803][    C0] 
[ 1061.357279][    C0] CPU: 0 UID: 0 PID: 14232 Comm: syz.9.3195 Not tainted syzkaller #0 PREEMPT(none) 
[ 1061.367015][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 1061.377415][    C0] =====================================================
[ 1061.384573][    C0] Disabling lock debugging due to kernel taint
[ 1061.391072][    C0] Kernel panic - not syncing: kmsan.panic set ...
[ 1061.397652][    C0] CPU: 0 UID: 0 PID: 14232 Comm: syz.9.3195 Tainted: G    B               syzkaller #0 PREEMPT(none) 
[ 1061.408834][    C0] Tainted: [B]=BAD_PAGE
[ 1061.413154][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 1061.423639][    C0] Call Trace:
[ 1061.427102][    C0]  <IRQ>
[ 1061.430084][    C0]  __dump_stack+0x26/0x30
[ 1061.434654][    C0]  dump_stack_lvl+0x53/0x270
[ 1061.439499][    C0]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1061.445585][    C0]  dump_stack+0x1e/0x25
[ 1061.450085][    C0]  vpanic+0x435/0xd30
[ 1061.454320][    C0]  panic+0x15d/0x160
[ 1061.458499][    C0]  kmsan_report+0x31c/0x320
[ 1061.463265][    C0]  ? bpf_prog_run_generic_xdp+0x9b7/0x2000
[ 1061.469350][    C0]  ? __msan_warning+0x1b/0x30
[ 1061.474241][    C0]  ? bpf_prog_run_generic_xdp+0x1465/0x2000
[ 1061.480385][    C0]  ? do_xdp_generic+0xd52/0x1690
[ 1061.485749][    C0]  ? __netif_receive_skb_core+0x2bc2/0x7150
[ 1061.491933][    C0]  ? __netif_receive_skb+0xcc/0xac0
[ 1061.497353][    C0]  ? process_backlog+0x485/0xa00
[ 1061.502504][    C0]  ? __napi_poll+0xdd/0x8a0
[ 1061.507200][    C0]  ? net_rx_action+0xbc8/0x1c30
[ 1061.512262][    C0]  ? handle_softirqs+0x169/0x6e0
[ 1061.517454][    C0]  ? __do_softirq+0x14/0x1b
[ 1061.522347][    C0]  ? do_softirq+0x99/0x100
[ 1061.527275][    C0]  ? __local_bh_enable_ip+0xa1/0xb0
[ 1061.532701][    C0]  ? tun_rx_batched+0x889/0x980
[ 1061.537801][    C0]  ? tun_get_user+0x5d62/0x6d70
[ 1061.542970][    C0]  ? tun_chr_write_iter+0x3e9/0x5c0
[ 1061.548394][    C0]  ? vfs_write+0xbe2/0x15d0
[ 1061.553148][    C0]  ? __ia32_sys_write+0x1f9/0x4d0
[ 1061.559228][    C0]  ? ia32_sys_call+0x35bc/0x4310
[ 1061.564477][    C0]  ? __do_fast_syscall_32+0xb0/0x150
[ 1061.570031][    C0]  ? do_fast_syscall_32+0x38/0x80
[ 1061.575373][    C0]  ? do_SYSENTER_32+0x1f/0x30
[ 1061.580401][    C0]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1061.587260][    C0]  ? kmsan_get_metadata+0xfb/0x160
[ 1061.592586][    C0]  ? kmsan_get_metadata+0xfb/0x160
[ 1061.597913][    C0]  ? __bpf_prog_run32+0xc2/0xf0
[ 1061.603023][    C0]  ? kmem_cache_free+0x53a/0x1490
[ 1061.608276][    C0]  ? skb_free_head+0x13c/0x3a0
[ 1061.613315][    C0]  ? kmsan_get_metadata+0xfb/0x160
[ 1061.618715][    C0]  __msan_warning+0x1b/0x30
[ 1061.623408][    C0]  bpf_prog_run_generic_xdp+0x1465/0x2000
[ 1061.629540][    C0]  do_xdp_generic+0xd52/0x1690
[ 1061.634529][    C0]  ? __netif_receive_skb_core+0x21/0x7150
[ 1061.640512][    C0]  ? filter_irq_stacks+0x49/0x190
[ 1061.645839][    C0]  __netif_receive_skb_core+0x2bc2/0x7150
[ 1061.651832][    C0]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1061.657875][    C0]  ? kmsan_get_metadata+0xfb/0x160
[ 1061.663347][    C0]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1061.669467][    C0]  ? filter_irq_stacks+0x49/0x190
[ 1061.674754][    C0]  ? kmsan_get_metadata+0xfb/0x160
[ 1061.680169][    C0]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1061.686346][    C0]  __netif_receive_skb+0xcc/0xac0
[ 1061.691590][    C0]  ? kmsan_get_metadata+0xfb/0x160
[ 1061.696970][    C0]  process_backlog+0x485/0xa00
[ 1061.702005][    C0]  ? __pfx_process_backlog+0x10/0x10
[ 1061.707501][    C0]  __napi_poll+0xdd/0x8a0
[ 1061.712090][    C0]  ? kmsan_get_metadata+0xfb/0x160
[ 1061.717421][    C0]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1061.723624][    C0]  net_rx_action+0xbc8/0x1c30
[ 1061.728735][    C0]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1061.734869][    C0]  ? sched_clock_cpu+0x59/0xa80
[ 1061.739939][    C0]  ? kmsan_get_metadata+0xfb/0x160
[ 1061.745450][    C0]  ? __pfx_net_rx_action+0x10/0x10
[ 1061.750897][    C0]  handle_softirqs+0x169/0x6e0
[ 1061.756186][    C0]  __do_softirq+0x14/0x1b
[ 1061.760752][    C0]  do_softirq+0x99/0x100
[ 1061.765280][    C0]  </IRQ>
[ 1061.768338][    C0]  <TASK>
[ 1061.771407][    C0]  __local_bh_enable_ip+0xa1/0xb0
[ 1061.776772][    C0]  ? tun_rx_batched+0x16c/0x980
[ 1061.781832][    C0]  tun_rx_batched+0x889/0x980
[ 1061.786756][    C0]  ? kmsan_get_metadata+0xfb/0x160
[ 1061.792137][    C0]  tun_get_user+0x5d62/0x6d70
[ 1061.797166][    C0]  ? stack_depot_save_flags+0x35/0x7b0
[ 1061.802853][    C0]  ? kmsan_get_metadata+0xfb/0x160
[ 1061.808329][    C0]  ? kmsan_get_metadata+0xfb/0x160
[ 1061.813653][    C0]  ? kmsan_internal_set_shadow_origin+0x7a/0x110
[ 1061.820292][    C0]  ? kmsan_internal_unpoison_memory+0x14/0x20
[ 1061.826707][    C0]  tun_chr_write_iter+0x3e9/0x5c0
[ 1061.832095][    C0]  vfs_write+0xbe2/0x15d0
[ 1061.836751][    C0]  ? __pfx_tun_chr_write_iter+0x10/0x10
[ 1061.842613][    C0]  __ia32_sys_write+0x1f9/0x4d0
[ 1061.847658][    C0]  ia32_sys_call+0x35bc/0x4310
[ 1061.852659][    C0]  __do_fast_syscall_32+0xb0/0x150
[ 1061.858088][    C0]  do_fast_syscall_32+0x38/0x80
[ 1061.863199][    C0]  do_SYSENTER_32+0x1f/0x30
[ 1061.867947][    C0]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1061.874592][    C0] RIP: 0023:0xf7f65539
[ 1061.878795][    C0] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 1061.898593][    C0] RSP: 002b:00000000f543555c EFLAGS: 00000206 ORIG_RAX: 0000000000000004
[ 1061.907236][    C0] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000440
[ 1061.915357][    C0] RDX: 000000000000002a RSI: 0000000000000000 RDI: 0000000000000000
[ 1061.923657][    C0] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1061.931856][    C0] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 1061.940032][    C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1061.948176][    C0]  </TASK>
[ 1061.951782][    C0] Kernel Offset: disabled
[ 1061.956219][    C0] Rebooting in 86400 seconds..