last executing test programs:

2m32.939040241s ago: executing program 4 (id=384):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x10, 0x4)
syz_emit_ethernet(0xbe, &(0x7f0000000100)={@local, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x1, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x4e24, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x1, "65a252e7cb7a5918c004a9971a46afced2c32642b1ec9fe34818d8ccd82041b7", "c930713c550e74ee13c2638ac75b2a9666efd31a34fce4498df8105d8bd8ed283a220c3a9becd8a70d3607ea8270d351", "ae12e16b560f2f8ac4ca3e745ce285f12f6e8719e7f1e7f286a68f76", {"e93e000000000000000000ef00", "55e824bb69e833bd36300b088233545a"}}}}}}}, 0x0)
recvfrom(r0, 0x0, 0x0, 0x10020, 0x0, 0x0)

2m32.780386041s ago: executing program 4 (id=386):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x101)
pipe2$9p(&(0x7f0000001900)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="1500000065ffff0180000008003950323030302e75"], 0x15)
r1 = dup(r0)
write$FUSE_BMAP(r1, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r1, &(0x7f00000000c0)={0x14c}, 0x137)
chdir(&(0x7f0000000040)='./file0\x00')
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x80, 0x0)

2m32.600121732s ago: executing program 4 (id=387):
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x8004, &(0x7f00000002c0)={[{@discard}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4}}, {@norecovery}]}, 0x1, 0x7b9, &(0x7f00000007c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x143042, 0x1a1)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
sendfile(r0, r0, 0x0, 0x7a680000)
r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x141442, 0x38)
write$UHID_INPUT(r1, &(0x7f0000001a40)={0x8, {"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", 0x1000}}, 0x1006)

2m31.146537086s ago: executing program 4 (id=392):
syz_mount_image$hfsplus(&(0x7f00000003c0), &(0x7f0000000400)='./file0\x00', 0xa08802, &(0x7f0000000180)=ANY=[], 0x1, 0x693, &(0x7f0000000600)="$eJzs3c1rHOcdB/DvrFay1gVHSWwnLYGKGNJSU1uycFqVQtweig+hBBcaCr0IW46F106QlaKE0qrv1x7yB6QHHQq9tNC7IYWe2h4KoTfRQwkUekkvurnM7Ky0trTKrixprebzMbPzzDyv89uZZzS7mA3wqXX1fJr3U+Tq+VdXy+2N9bn2xvrciTq7naRMN5JmZ5XiblJ8kFxJZ8lny511+aJfP+8tzV/78OONjzpbzXqpyjf2qjeYtXrJdJKxer3T+L7au963vd19vV4vbO0pto6wDNi5buBg1B7ssDZM9ce8boEnQdG5b+4wlZxMMln/HZB6dmgc7egO3lCzHAAAABxTT21mM6s5NepxAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwHFSpDVWrTpLo5ueTtH9/f+Jel/q9LXGiMf8OO6PegAAAAAAAAAAcAA+v5nNrOZUkr+X2w863+y/WL2erl4/k7dzL4tZzoWsZiErWclyZpNM9TQ0sbqwsrI8O0DNS7vWvLS/8f9+f9UAAAAAAAAA4P/NT3O1+v4fAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACeGEUy1llVy+lueiqNZpLJJBNlubXkb930MVHstvP+0Y8DAAAAHsvkPuo8tZnNrOZUd/tBUT3zn62elyfzdu5mJUtZSTuLuVE/Q5dP/Y2N9bn2xvrcnY31uarj7z/o6LTzjf8MNYyqxXQ+e9i95+erEq3czFK150KuV4O5kUZVs/R8PZ6t5eFOflKOqfVKbcCR3ajXZWe/7vcpwkFoDFthqqo0vhWRmXpsZUNP7x2JT3x3mnv2NJvG1ic/p/foqXtIxZAxP9mtl+SXj8T8lX/99nsDNnMItiLRSBWJSz1n39mN9bmx9I158oU//u71W+27t2/dvHf+0E6jo/LoOTHXE4nn9j77nvBINIcsP1NF4szW9tV8K9/J+UzntSxnKT/IQlaymHpmzEJ9PpevUz1RSnZE6spDW6990kgm6velM4sOMqbpnKhSC3mxqnsqSynyZm5kMS9X/y5lNl/J5VzOfM87fKbvO1wdWzXTNoa76s99MduX+q/KmXqwesmfBy04vM4ttYzr0z1x7Z1zp6q83j3bUXpmgPvRkHNj83N1ouzjZ/u5bRyaRyMx2xOJZ/eOxG+qa+Ne++7t5VsLb/Vpf+2R7ZfGt9O/OMw789DK8+WZTNYzycNnR5n37NYs83C8JupvXDp5jR15Z6q8ouheqd/e5UotIz5flT67a0uXqrznduaN1SP/xz978h76eytv/mU08QRgSCe/dHKi9e/WX1vvt37eutV6dfKbJ7564oWJjP9p/GvNmbGXGi8Uf8j7+dH28z8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAALB/99559/ZCu724vHui0T/rYBNF/UM+/co008oRDOMoE0Wy1n4wdrAtZ/THNUCi+yOCj9vO61eeiMM51omxJPWeHyfb50/9FnV+Ce27/x3ZDAUclosrd966eO+dd7+8dGfhjcU3Fu+OX748PzN/+eW5izeX2osznddRjxI4DNt/D4x6JAAAAAAAAAAAAMCgjuJ/GvR0Nz3CQwUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACOqavn0xxPkdmZCzPl9sb6XLtcuuntks0kjUZS/DApPkiupLNkqqe5ol8/7y3NX/vw442Ptttqdss39qo3mLV6yXSSsXq9w8T+2rver72BFVtHWAbsXDdwMGr/CwAA//8xgggQ")
setxattr$security_ima(&(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$peeksig(0x1a, r0, 0x0, &(0x7f0000000040))
llistxattr(&(0x7f0000000000)='./file1\x00', 0x0, 0x25)
pipe2$9p(0x0, 0x0)

2m30.022804282s ago: executing program 4 (id=401):
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0))
write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000001040)={0x1a, {"a2e3ad21ed6b52f99cfbf4c087f71e9b230963ff7fc6e5539b9b3b09719b711b5d52101b080d29428f0e1ac6e7049b3468959b189a242a9b45f3988f7ef319520100ffe8d178708c523c921b1b23380a169b63d336cd3b78130daa61d8e81aea882f5802b77f07227227b7ba67e0e78657a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f309f4cff7738596ecae8707ce065cd5b91cd0ae11a973735b36d5b1b63e91c00305d9be7bd1d020000000000000075a9aaa1b469c3090000000000000075271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecd03aded6f9081b4dd0d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1f416e56c71b1931870262f5e801000000005b6bfc821e7e7daf2451138e645bb80c617669314e2fbe70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c580263093ca9a34af674f3f39fe23491e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d546a40b9f6fa94fc488ec130fb3850a27afc953854a642c57519544ae15a7e454dea05918b412435111c8f11baa500a3621c56cea8d20ff911a0c41db6ebe8cac64f17679141d54b34bbc9963ac4f4bb3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269caf12c31357c8219793e9639e1f59c0ede26c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a687974e7b4ab01b7f73483b6a62fa678ca14ffd9f9db2a7869d85864056526f889af43a60560a22f1fca567e65d5e880572286522449df466c632b3570243f989cce3803f465e41e610c20d80421d653a5120000008213b704c7fb082ff27590678ef9f190bae979babc7041d860420c5664ba7921b14dc1db8892fd32d0ad7bc946813591ad8deff4b05f60cea0da3710ac000000001a527777a5371f87d0d4aa202fd28f28381aab144a5d429a04a689b83c7068ae949ef06e288e810bac9c766000a5e19c907f8ea2e2f05dd3318271a1f5f8528f227e79c1386abdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4fb8a48a76eefc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f103000000416d59fdee5325928974d12dad99dac44c3f0008047096a44060fb30e900caab415db6578b4779415d97b9a6d601005c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3c901cd34e5c92f76cc4c24eeb8bc4e9ac292d9e53803ed000000009737d214060005ea6f1783e287b3bee96e3a7288afe2fdfaa78d1f48c13b64df07847754b8400daaa69bf5c8f48fe4eae9ca1207e78283cd0b20ceb360c7e658828163e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034ef655b253ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf02b98a269b891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efedfd71af9444e197f47e866101496f42355bc7872c827467cfa5c4e72730d56bd068ed211cf847535edecb7b373f78b095b68441a34cb51682a8ffffff7f000000007f889b09114edb8e79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdcce04579b5561dc825ab829827945e020c1f67ee615f7084a607a7eceb6243378e0610060f02cca405d8c5f64fdb3d78fb4b55668dda93aec92a5de203717aa49c2d284acfabe262fccfcbb2b75a2183c4e15a7b6eb65ca8104e1b4da1fbb67ab2fc043aead87c32ab875ee7c2e7b7019c902cd3b43eaeb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e94265c803b35ee5f83a2b210520106b8a358b50ab7a1fa89af9c251fe529003d1802d5676d95f160ec97b1ad948741b2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7a508ae54b3cd73643de50e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c1023bf70cc77737c3b42aae501b20f7694a00f16e2d0174035a2c22656dc29880acebdbe8ddbd75c2f998d8ac2dfad2ba3a504767b6b45a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7bcddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73c497579773767075428067e7f16f4dde374f8211fef42cb468e623daf60b3569d462f4f19eacdb3ed70eeebb40800000077d443e8b40426db6fe29068c0ca3d3414442e863a154704b0e5e2c664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf46366e7205dd8d6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae44369ddb4581c55925d0f6f1ba471eba281f259152f85e654fb39ddff3b484439ff158e7c5419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b405177548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d81eaee5ee6cf1d0ab378dd4dd84e935e00785ec27e923911fab964c271556527697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9ddbfb96d6144345f48843dd014e5c5ad8fe995754bd9cf32fce1e7027132f2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6d594f88a4facfd4c735a20307c737afae5336651b1b9bd522d60399473296b831dbd933d93994ba30b4279b10ea0c5833f41f157ea2302993dbe433b1aa3a3766d5439020484f4113c4c859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee29165895ac4b008e595f437491d87abed02cefcd9db53dc10772d2b13f7809959bc048850613d17ca51055f2f416a44fe180d2d50c312cca7cb14a2bdc331f57a9817139a206fc76d57227edff2de20a4b8e3737fbb42913777c06376f799eba367e21f94ca598705f5dcb767d6f84fa6ab8f43c0013ee93b83946ee7759e89d7bdd1a32d7b30f0b932a4d02da711b757fe43c06d21e759595e4e98b27faea8aa12bc8040000000000000033eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7f96093530e76692839d7961939adfdeeeaff19d11efcafb6d546fef271e89d0000010000000000fcce3fbf4625a7e7de40e42e07b34449e15e065cc7348663a52190202c7af288a4510de03dab19d26285eda89156d50dd385a60333ba5bbf5d77cd7007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f732ae00398e8bd1f4908b7807fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cb0b3e35cb80dd349e891aef595dc4d080e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c60edddab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf652f406c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6528341b648cdd56fed7cdcbb1575912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae033a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a3cd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08758897fb411a94b3c2fc5d5f0db42c0456ec014508e5247d33ae6c962d35603ff8454c16f8342856935125102bb784ed704887071f3d998efdd9923c954ab6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6ff7ffb1d62458d0741a12830052fcc460db043afe525629b40d7cee65802cb5e930ed624806c43a006dc9336d07c2b8081c188d26558f48261f7897084c2a1a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da3932ba5c04c24a560ad80a3ce654578376e599aff3565b1d531f30912b99e6619ebe93cc0b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c0ff516a9c861a0e7e65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf475bed79dfc248c1f5aea4b8b32c5d295e57079d0fe662a46b7f71cd47744db86c50b704c971d90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e6491953264c7b34252600c9654e502dcea39cb0800eb69992e234b4ca7db2f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc640df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c02b5fe36d7d3e5db21b094b8b77940b5f07722e47a08d367e5f84c96ec664b72934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1162dfa13bdc1fa7cfaadbb25c72e9758f03a755d0be53f8d2a1dfb1c6000064b0a0780d971a96ea2c4d4ca0398c2235980a9307b3d5bd3b01faffd0a5dbed2881a9700af561ac8c7e36bb2fc4c40e9cf96f06817fb903729a7db6ff957697c9ede7885d94ff1aa7082ead01a9b03c37b0969be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058093fef86faec216eb6992162f8dcbf719c148cd2f9c55f4901203a9a8a2c3e90f3943dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d060000008926407a4eddd5d0fc5a752f9000", 0x1000}}, 0x1006)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(0xffffffffffffffff, 0xc04064a0, &(0x7f0000000340)={&(0x7f0000000240)=[0x0, 0x0, 0x0], &(0x7f0000000380)=[0x0, 0x0], &(0x7f0000000300)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000280), 0x3, 0x2, 0x7})
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000740)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)=ANY=[@ANYBLOB="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"], 0xa8}}], 0x1, 0x810)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
capset(&(0x7f0000000500)={0x20080522}, &(0x7f0000000200)={0x200002, 0x200003, 0x801, 0x4, 0x7})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0x4d}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443", 0x67}], 0x3, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

2m29.278938206s ago: executing program 4 (id=405):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000007c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = eventfd(0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0x4008af12, &(0x7f0000000080)={0x1, 0x7f})
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/53, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000800)=""/90})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0xfffffeac, &(0x7f00000001c0)=""/115}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000340)=0x1)
ioctl$BTRFS_IOC_SCRUB_PROGRESS(0xffffffffffffffff, 0xc400941d, &(0x7f0000000380)={0x0, 0x3fb, 0x7fff})

2m28.805479623s ago: executing program 32 (id=405):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000007c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = eventfd(0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0x4008af12, &(0x7f0000000080)={0x1, 0x7f})
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/53, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000800)=""/90})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0xfffffeac, &(0x7f00000001c0)=""/115}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000340)=0x1)
ioctl$BTRFS_IOC_SCRUB_PROGRESS(0xffffffffffffffff, 0xc400941d, &(0x7f0000000380)={0x0, 0x3fb, 0x7fff})

2m27.587673155s ago: executing program 3 (id=412):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000040)='./file1\x00', 0xa1081c, &(0x7f0000000300), 0x1, 0x4fa, &(0x7f00000005c0)="$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")
mount$bind(0x0, 0x0, 0x0, 0x21, 0x0)
quotactl$Q_GETNEXTQUOTA(0xffffffff80000901, &(0x7f0000000180)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)

2m27.223150866s ago: executing program 3 (id=417):
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r0, &(0x7f0000000000), 0xd)

2m27.008335549s ago: executing program 3 (id=418):
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0))
write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000001040)={0x1a, {"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", 0x1000}}, 0x1006)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(0xffffffffffffffff, 0xc04064a0, &(0x7f0000000340)={&(0x7f0000000240)=[0x0, 0x0, 0x0], &(0x7f0000000380)=[0x0, 0x0], &(0x7f0000000300)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000280), 0x3, 0x2, 0x7})
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000740)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)=ANY=[@ANYBLOB="1400000000000000290000003400400004000000000000005800000000000bd74cd148ed20b50000040800000000000007100000000102099f000800000000000000fe00800000010005020bf5c910fc020000000000000000000000000000930fe80ee304ecb784ec4655260cecea1438000b024300000000000029000000390000001e04090000000000ff010000000000000000000000000001ff0200000400000000000020005c0443cedcaff8500318991b9daeec454b97d733074350b507694e52df59150348b4ded0ff8698370aeff98aed6ad0ac98c21a009e6bd73e9dac88d6b9c66a8799985af8a4f58054"], 0xa8}}], 0x1, 0x810)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
capset(&(0x7f0000000500)={0x20080522}, &(0x7f0000000200)={0x200002, 0x200003, 0x801, 0x4, 0x7})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000), 0x0, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

2m25.95672437s ago: executing program 3 (id=421):
r0 = socket(0x10, 0x2, 0x0)
syz_mount_image$udf(&(0x7f0000000080), &(0x7f00000000c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x4040, &(0x7f00000015c0)=ANY=[], 0x2, 0xc2d, &(0x7f00000001c0)="$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")
mknod$loop(&(0x7f0000000a00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x1000, 0x1)
link(0x0, 0x0)
write(r0, &(0x7f0000000040)="1c0000001a009b8a140000003b9b301f00"/28, 0x1c)
recvmmsg(r0, &(0x7f0000002ec0), 0x400000000000ec0, 0x2, &(0x7f00000001c0)={0x77359400})
creat(&(0x7f0000000100)='./bus\x00', 0x44)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x301400, 0x0)
r1 = open(&(0x7f00000005c0)='./bus\x00', 0x64d42, 0xcd)
pwritev2(r1, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x78c00}], 0x1, 0x7a00, 0x0, 0x3)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)

2m24.415212121s ago: executing program 3 (id=429):
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x84}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r2 = socket(0xa, 0x3, 0xff)
setsockopt$inet6_int(r2, 0x29, 0x5, &(0x7f0000000040)=0xfffffff9, 0x4)
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x8000)
ioctl$SNDRV_SEQ_IOCTL_QUERY_SUBS(r3, 0xc058534f, &(0x7f0000000080)={{0x0, 0x10}, 0x1, 0x4, 0x7, {0x7, 0xd}, 0xb, 0x80000001})

2m23.970943137s ago: executing program 3 (id=431):
socket(0x400000000010, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000300)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = syz_open_dev$sndpcmp(&(0x7f0000000200), 0x0, 0xa2865)
ioctl$SNDRV_PCM_IOCTL_WRITEI_FRAMES(r3, 0x40184150, &(0x7f00000000c0)={0x0, 0x0})

2m23.90328183s ago: executing program 33 (id=431):
socket(0x400000000010, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000300)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = syz_open_dev$sndpcmp(&(0x7f0000000200), 0x0, 0xa2865)
ioctl$SNDRV_PCM_IOCTL_WRITEI_FRAMES(r3, 0x40184150, &(0x7f00000000c0)={0x0, 0x0})

1m24.716981047s ago: executing program 2 (id=868):
syz_mount_image$squashfs(&(0x7f0000000040), &(0x7f00000001c0)='./file2\x00', 0x3, &(0x7f0000001b00)=ANY=[], 0x21, 0x1b7, &(0x7f0000000440)="$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")
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, &(0x7f0000000080)="f2ae0f20c035000000200f22c00fc65200000f070f20d835200000000f22d88f0978c2936476f6f7c481ddeee80f32673e672ef20f38f08800300000f2f4", 0x3e}], 0x1, 0x4498bda7e2139f37, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000000)={0x1, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f00000003c0)={[0x0, 0x0, 0x8000, 0x40, 0x0, 0x0, 0x2004cb, 0x0, 0xfffffffffffffffe, 0x5, 0x4, 0x200004, 0x0, 0x2, 0x0, 0x1], 0x80a0000, 0x1008c0})
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

1m24.15997161s ago: executing program 2 (id=875):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x80000)
unshare(0x20000)
r1 = inotify_init1(0x800)
inotify_add_watch(r1, &(0x7f00000006c0)='.\x00', 0xaa)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000040)='debugfs\x00', 0x40, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDSKBLED(r4, 0x4b65, 0x7fffffffffffffff)
ioctl$KDSETKEYCODE(r4, 0x4b4d, &(0x7f0000000000)={0x9, 0x9})

1m23.087104472s ago: executing program 2 (id=878):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_CHANNEL_SWITCH(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000400)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010008020000001800006600000008000300", @ANYRES32=r1, @ANYBLOB="08002600940900000800b70099"], 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)={0x94, r2, 0x1, 0x70bd26, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_CSA_C_OFFSETS_TX={0xc, 0xcd, [0x0, 0xe, 0x4f, 0x4]}, @NL80211_ATTR_FRAME={0x6c, 0x33, @beacon={{{0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {0x9}, @device_b, @device_a, @random="7d8cc6decdc2", {0xf, 0x5}}, 0xffffffffffffffff, @random=0x7, 0x1000, @val={0x0, 0x6, @default_ibss_ssid}, @void, @val={0x3, 0x1, 0x24}, @void, @val={0x6, 0x2, 0x1fc}, @val={0x5, 0x3, {0x5, 0x97, 0x5}}, @void, @val={0x2a, 0x1, {0x0, 0x0, 0x1}}, @void, @val={0x2d, 0x1a, {0x400, 0x2, 0x5, 0x0, {0x2, 0xb7b, 0x0, 0x347, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x100, 0x1}}, @void, @val={0x71, 0x7, {0x69, 0x0, 0x1, 0xffffffffffffffff, 0x1, 0x7, 0x20}}, @val={0x76, 0x6, {0x3, 0x0, 0x2f, 0x6}}}}]}, 0x94}, 0x1, 0x0, 0x0, 0xc0}, 0x0)

1m22.970789299s ago: executing program 2 (id=880):
r0 = syz_open_procfs(0x0, &(0x7f0000000540)='mounts\x00')
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000980)='./file0\x00', 0x4c8, &(0x7f0000000340)={[{@sbsector={'sbsector', 0x3d, 0x7fffffff}}, {@check_strict}, {@session={'session', 0x3d, 0x49}}, {@sbsector={'sbsector', 0x3d, 0x3}}, {@sbsector={'sbsector', 0x3d, 0xffffffffffffffff}}, {@showassoc}, {@mode={'mode', 0x3d, 0xfffffffffffffffc}}, {@overriderock}, {@nocompress}, {@iocharset={'iocharset', 0x3d, 'macgaelic'}}, {@sbsector={'sbsector', 0x3d, 0x76}}, {@iocharset={'iocharset', 0x3d, 'cp863'}}, {@iocharset={'iocharset', 0x3d, 'none'}}, {@nojoliet}, {@session={'session', 0x3d, 0x27}}], [{@pcr={'pcr', 0x3d, 0x1a}}, {@permit_directio}]}, 0x0, 0x936, &(0x7f00000009c0)="$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")
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x1333c06, 0x0)
mount$bind(&(0x7f0000000300)='./file0\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x11080, 0x0)
mount$bind(&(0x7f0000000240)='.\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x1005848, 0x0)
read$FUSE(r0, &(0x7f0000002d40)={0x2020}, 0x2020)

1m22.690745806s ago: executing program 2 (id=884):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000480)=[{0x0}, {0x0}, {&(0x7f00000003c0)="77cccb0deedbb94f1afd3ccb469a6721cc637e9cbc7f0685c4ab02897a615638b1ba209474e485e5c676dab2f779fc45e14a15eb8cab8dce71eaea08ea87db5609774523b75431043e4a32f82c5b61bea2b9b0eff207d81c7b175cfcb3e448d7fcac8844402e9401582eeb4a08d247096e183b9b7de727a818150a153b9397c4cc61a6bd461f30fb84b679bca11d47c56904a9d359442a5c3693048b8aa179cf93", 0xa1}, {0x0}, {&(0x7f0000000680), 0x1d}], 0x5, 0x4, 0x5)
syz_clone(0xe200, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, &(0x7f0000000200)="f7790066baa00066b86b4266ef66ba420066b8e20066ef0f29902cbb0000c4e2b1ba8c88d9000000666666440f38826b410f7842280f07b8010000000f01d9c4033921820f47a753fd", 0x49}], 0x1, 0x43, 0x0, 0x0)
ioctl$KVM_CAP_HYPERV_SYNIC2(r2, 0x4068aea3, &(0x7f0000000280))
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000040)={[0x4, 0x2, 0x4, 0x5, 0x4, 0x7f, 0x4230, 0x500000000000000, 0x81, 0x9c1, 0x8001, 0x5, 0x7, 0x4db6, 0x0, 0xfffffdfffffffffd], 0xdddd1000, 0x80300})
setsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000340)="0bbb288dd6ffa80800431c00000000000000210d0000aaa8fa017242ba9380d419000000000000002900000002000000e2", 0x31)
ioctl$KVM_SET_MP_STATE(r2, 0x4004ae99, &(0x7f0000000180)=0x3)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000140)=@x86={0x40, 0x1, 0xc, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x80, 0x9, 0x0, 0x0, 0x0, 0xfffffff8, 0x0, 0xff, 0xff})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

1m21.526801474s ago: executing program 2 (id=890):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_CHANNEL_SWITCH(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000400)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010008020000001800006600000008000300", @ANYRES32=r1, @ANYBLOB="08002600940900000800b70099"], 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)={0x94, r2, 0x1, 0x70bd26, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_CSA_C_OFFSETS_TX={0xc, 0xcd, [0x0, 0xe, 0x4f, 0x4]}, @NL80211_ATTR_FRAME={0x6c, 0x33, @beacon={{{0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {0x9}, @device_b, @device_a, @random="7d8cc6decdc2", {0xf, 0x5}}, 0xffffffffffffffff, @random=0x7, 0x1000, @val={0x0, 0x6, @default_ibss_ssid}, @void, @val={0x3, 0x1, 0x24}, @void, @val={0x6, 0x2, 0x1fc}, @val={0x5, 0x3, {0x5, 0x97, 0x5}}, @void, @val={0x2a, 0x1, {0x0, 0x0, 0x1}}, @void, @val={0x2d, 0x1a, {0x400, 0x2, 0x5, 0x0, {0x2, 0xb7b, 0x0, 0x347, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x100, 0x1}}, @void, @val={0x71, 0x7, {0x69, 0x0, 0x1, 0xffffffffffffffff, 0x1, 0x7, 0x20}}, @val={0x76, 0x6, {0x3, 0x0, 0x2f, 0x6}}}}]}, 0x94}, 0x1, 0x0, 0x0, 0xc0}, 0x0)

1m21.342750105s ago: executing program 34 (id=890):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_CHANNEL_SWITCH(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000400)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010008020000001800006600000008000300", @ANYRES32=r1, @ANYBLOB="08002600940900000800b70099"], 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)={0x94, r2, 0x1, 0x70bd26, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_CSA_C_OFFSETS_TX={0xc, 0xcd, [0x0, 0xe, 0x4f, 0x4]}, @NL80211_ATTR_FRAME={0x6c, 0x33, @beacon={{{0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {0x9}, @device_b, @device_a, @random="7d8cc6decdc2", {0xf, 0x5}}, 0xffffffffffffffff, @random=0x7, 0x1000, @val={0x0, 0x6, @default_ibss_ssid}, @void, @val={0x3, 0x1, 0x24}, @void, @val={0x6, 0x2, 0x1fc}, @val={0x5, 0x3, {0x5, 0x97, 0x5}}, @void, @val={0x2a, 0x1, {0x0, 0x0, 0x1}}, @void, @val={0x2d, 0x1a, {0x400, 0x2, 0x5, 0x0, {0x2, 0xb7b, 0x0, 0x347, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x100, 0x1}}, @void, @val={0x71, 0x7, {0x69, 0x0, 0x1, 0xffffffffffffffff, 0x1, 0x7, 0x20}}, @val={0x76, 0x6, {0x3, 0x0, 0x2f, 0x6}}}}]}, 0x94}, 0x1, 0x0, 0x0, 0xc0}, 0x0)

8.683665021s ago: executing program 6 (id=1396):
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)

8.565923498s ago: executing program 6 (id=1397):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000500)=ANY=[@ANYBLOB="12010000000000207d1e5a2d00000000000109022400010000000009040000010300000009210000000122080009"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000940)={0x24, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="002208000000a20100c3"], 0x0}, 0x0)
r1 = syz_open_dev$hiddev(&(0x7f0000000080), 0x0, 0x0)
ioctl$HIDIOCGFIELDINFO(r1, 0xc038480a, &(0x7f00000000c0)={0x1, 0xffffffff, 0x4d1, 0x3bd, 0x35, 0xd72, 0xbea9, 0xf233, 0x1, 0x9, 0x4b2f, 0x2, 0x3, 0x1c36})

6.842874469s ago: executing program 1 (id=1410):
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000003c0)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x1000, 0x1)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)=ANY=[@ANYBLOB="14"], &(0x7f0000000180), 0x0)
lsetxattr$security_capability(&(0x7f0000000000)='./file0\x00', &(0x7f0000000200), &(0x7f0000000240)=@v1={0x1000000, [{0xde2c, 0x8}]}, 0xc, 0x0)
open_by_handle_at(0xffffffffffffff9c, &(0x7f00000000c0)=ANY=[], 0x160)

5.555357904s ago: executing program 0 (id=1417):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x2a0471a, &(0x7f0000000280)={[{@max_batch_time={'max_batch_time', 0x3d, 0xd}}]}, 0x82, 0x48f, &(0x7f0000000380)="$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")
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pwritev(r0, &(0x7f0000000480)=[{0x0}, {0x0}, {&(0x7f0000000280)="77cccb0deedbb94f1afd3ccb469a67", 0xf}, {&(0x7f0000000040)}], 0x4, 0xc, 0x5)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, &(0x7f0000000200)="f7790066baa00066b86b4266ef66ba420066b8e20066ef0f29902cbb0000c4e2b1ba8c88d9000000666666440f38826b410f7842280f07b8010000000f01d9c4033921820f47a753fd", 0x49}], 0x1, 0x43, 0x0, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000140)=@arm64={0x7, 0xdb, 0xd})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

5.440196381s ago: executing program 6 (id=1419):
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
syz_usb_connect$printer(0x2, 0x2d, &(0x7f0000000180)={{0x12, 0x1, 0x201, 0x7, 0x1, 0x2, 0x8, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x1, 0x0, 0x0, 0x3, [{{0x9, 0x4, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x6, "", {{{0x9, 0x5, 0x1, 0x2, 0x3ff, 0x6a, 0x2, 0x91}}}}}]}}]}}, 0x0)
r0 = syz_open_dev$evdev(&(0x7f00000001c0), 0x1bbc, 0x801)
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_SET_MSRS(r1, 0x4008ae89, 0x0)
ioctl$sock_SIOCSIFVLAN_SET_VLAN_EGRESS_PRIORITY_CMD(0xffffffffffffffff, 0x8983, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
ioctl$EVIOCSCLOCKID(r0, 0x400445a0, &(0x7f0000000a80)=0x6a52)

5.382445085s ago: executing program 7 (id=1420):
mmap$KVM_VCPU(&(0x7f0000ff5000/0x3000)=nil, 0x930, 0x100000f, 0x24132, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
close(r0)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x0)
close(0xffffffffffffffff)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, 0x0)
socket(0x400000000010, 0x3, 0x0)
r2 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
close(r2)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, 0x0)
sendmsg$unix(0xffffffffffffffff, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)=ANY=[@ANYRESDEC=r3], 0x18, 0x1}, 0x1)
close_range(0xffffffffffffffff, r0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000))
r5 = syz_open_dev$sndctrl(0x0, 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_NEXT_DEVICE(r5, 0xc1205531, &(0x7f0000000680)=""/140)

5.255012022s ago: executing program 7 (id=1421):
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_INIT(r0, 0x0, 0xc8, &(0x7f0000003d40), 0x4)
setsockopt$MRT_ADD_VIF(r0, 0x0, 0xca, &(0x7f0000003d80)={0x0, 0x0, 0x0, 0x0, @vifc_lcl_addr=@local, @dev={0xac, 0x14, 0x14, 0x3a}}, 0x10)
r1 = socket(0x1, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000280)={'syz_tun\x00', <r2=>0x0})
r3 = socket(0x200000000000011, 0x2, 0x0)
bind$packet(r3, &(0x7f0000000080)={0x11, 0x800, r2, 0x1, 0x0, 0x6, @random="933c547ecfa7"}, 0x14)
syz_emit_ethernet(0x3e, &(0x7f0000000040)={@local, @broadcast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x2, 0x0, @empty, @multicast1=0xe0000300}, @source_quench={0x4, 0x0, 0x0, 0x0, {0x5, 0x4, 0x2, 0x10, 0x4, 0x64, 0x2, 0x5, 0x4b, 0xa7, @loopback, @dev={0xac, 0x14, 0x14, 0x35}}}}}}}, 0x0)

5.203027415s ago: executing program 7 (id=1422):
syz_mount_image$ext4(&(0x7f0000000500)='ext4\x00', &(0x7f0000000740)='./file0\x00', 0x10040, &(0x7f0000000380), 0xfd, 0x269, &(0x7f0000000a00)="$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")
mknod$loop(&(0x7f0000000140)='./file0\x00', 0x8fff, 0x0)
quotactl$Q_QUOTAON(0xffffffff80000201, &(0x7f0000000180)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x9)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x28011, 0xffffffffffffffff, 0x0)
write$FUSE_INIT(0xffffffffffffffff, &(0x7f0000000440)={0x50, 0x0, 0x0, {0x7, 0x29, 0x0, 0x14c0348, 0x0, 0x1, 0xfffffffe, 0xec, 0x0, 0x0, 0x0, 0x7fffffff}}, 0x50)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x101000, 0x108)
getdents64(r0, &(0x7f0000000f80)=""/4096, 0x1000)

5.107266191s ago: executing program 0 (id=1423):
syz_mount_image$vfat(&(0x7f0000000100), &(0x7f0000000980)='./bus\x00', 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="009f587a31d53b5cb6077bd11087bb6e13aac56feecaaae0b009cee43814e80646ff2772abedb27f35c706ba7c624afb75f473956061ae41834d27270063fa18a3515f9ac6cd6f15a042b1edcd60bdeb55446beed1014aa13d43d399fb4f716b8a24502a8e3e697642b172841c89aecefe0cfb3c32d7c28955601f41fb90d51951d91a35a5abeb4ffceef5cf6e190ec9eb6f91a0d06882039b54dd4485b823414e06691b0244ca11ac0baeaeec1a96861d358464329c64b77e6ff2e2d8a6bb29268be3e7c46750210270d79e1054add6c2ef3f0373", @ANYBLOB="fd5a30494a98e2fd594c7f5575b44a6b9875a6deb8a9ed63e149fdc3a5e345922596d46c4a2b3978044b864f941e1137ce034002852c9ef5606de83cf95a02ef4bacef1188250b8a73609da88d66c4224c3ea46f117012f2aab4bca171e710172b4c22e4d51e27059feb304bb3e260a2", @ANYRES32=0x0], 0x1, 0x1282, &(0x7f0000002880)="$eJzs3U1rY1UcB+B/pmmbduyLOo52QDzoRhHitAtXborMgFhQqh1QQbhjUy1Nm9KEQkScunIl+DFEXboTxC/QjRvXgiDSjctZiFfSpE7TpB2nNq0Mz7PJ5ZzzO+fce8qFW+7h7r3y5fraSr28kjXiUqEQxc3hKN5NkeJSDEXbTrxw6+dfnn7rnXdfn19YuLGY0s35t2dfTilNPvPDe598++yPjcu3vpv8fjR2p9/f+2Pu192ruzN7f30Tq/W0Wk8btUbK0u1arZHdrlbS8mp9rZzSm9VKVq+kUmeMe/Ur1drmZjNlG8sT45tblXo9ZRvNtFZppkYhNbaaKfswW91I5XI5TYwH/8XS13fzPI/I8+EYiTzP87EYj8vxSEzEZEzFdDwaj8XjcSWeiKvxZDwVM/utDvIjFzt9AAAAAAAAAAAAAAAAAAAAeEjcZ/9/oXf//+hFTxkAAAAAAAAAAAAAAAAAAAAeOkf3/xcjHuD7/wAAAAAAAAAAAAAAAAAAAMBZuM/3/4/s/3/R/n8AAAAAAAAAAAAAAAAAAAAYhFL7ZzGlUsT659tL20vt33b5/EqsRjUqcT2m4s/Y3/3f1j6++drCjetp33S8tH6nk7+zvTTUnZ8dnorpQt/8bDufuvOjMX44PxdTcaX/+HN986V4/rlW/rN2vhxT8dMHUYtqLEcUOme/n/90NqVX31gY685fa7U71tCAlwUAAADOUjn9o/f5fafTqG99u6rzfJ46LQsn/H/gyPN5Ma4VL+qsOVBvfryWVauVrVMejBzfz0h3yVin5anHKkRE1hWfHP9tsdXlaSd/ZgdD5zro8Mltjq7FTOnEDi8dWsEo/g8u5hkc/P7VoZJSDGqs4dafc0/VwQXNqq3757/rMHbyfKCXZaRf1ehJqePvGYUB3o84X/cW/aJnAgAAAAAAAAAAwIPo+/bfWET0vA/4UU/Jwevh3fHeno8f/YtzOEMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD+ZgeOBQAAAACE+Vun0bEBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADwVQAAAP//kh3BBA==")
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x6000)
io_setup(0x202, &(0x7f0000000200)=<r0=>0x0)
ftruncate(0xffffffffffffffff, 0x81fe)
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000)
io_submit(r0, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0x0, 0x0, 0x1, 0x0, 0xffffffffffffffff, &(0x7f0000000000), 0x4000, 0xa00}])

5.049634323s ago: executing program 1 (id=1424):
syz_open_procfs(0x0, &(0x7f0000000480)='net/fib_triestat\x00')
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000500)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x16, 0x0, 0x0)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r3, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
writev(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000000)='4', 0x1}], 0x1)
write$binfmt_misc(r3, &(0x7f0000000000), 0xd)

4.966977179s ago: executing program 7 (id=1425):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4040aea0, &(0x7f0000000340)=@arm64={0xf3, 0x8, 0x45, '\x00', 0x6})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000100)={{0x0, 0xfec00000, 0x0, 0x0, 0x8, 0x0, 0x0, 0x2, 0x0, 0x8, 0x9, 0x10}, {0xc000, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x7}, {0x2000, 0x5000, 0xc, 0xff, 0x7, 0x4, 0x0, 0x0, 0x3, 0x0, 0x0, 0xfc}, {0x3000, 0xd000, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x8, 0x2, 0x1}, {0xeeee8000, 0xffff1000, 0x9, 0x0, 0x0, 0x8, 0x0, 0x0, 0x2, 0x3c}, {0x0, 0x9000, 0x0, 0x0, 0x8, 0x3, 0x2, 0x0, 0x0, 0x8, 0x5}, {0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x3}, {0x0, 0x3000, 0xb, 0x0, 0x0, 0x1, 0x0, 0xca, 0x26}, {0x80a0000}, {0xdddd1000}, 0xddf8ffdb, 0x0, 0x0, 0x50, 0x400, 0xf801, 0x0, [0x0, 0x0, 0x1]})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

4.902834703s ago: executing program 5 (id=1426):
syz_open_procfs(0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000340)='blkio.bfq.io_wait_time\x00', 0x26e1, 0x0)
close(r0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r2 = fanotify_init(0x10, 0x101000)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
fanotify_mark(r2, 0x455, 0x8000008, r3, 0x0)
fanotify_mark(r2, 0x7e, 0x800003a, r3, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_serviced\x00', 0x26e1, 0x0)
close(r4)
ioctl$SIOCSIFHWADDR(r4, 0x8b18, &(0x7f0000000000)={'wlan1\x00', @random="010000000700"})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
ioctl$SIOCSIFHWADDR(r0, 0x8b06, &(0x7f0000000000)={'wlan1\x00', @random="02000000000a"})

4.297499168s ago: executing program 5 (id=1427):
syz_open_procfs(0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000340)='blkio.bfq.io_wait_time\x00', 0x26e1, 0x0)
close(r0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r2 = fanotify_init(0x10, 0x101000)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
fanotify_mark(r2, 0x455, 0x8000008, r3, 0x0)
fanotify_mark(r2, 0x7e, 0x800003a, r3, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_serviced\x00', 0x26e1, 0x0)
close(r4)
socket$netlink(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r4, 0x8b18, &(0x7f0000000000)={'wlan1\x00', @random="010000000700"})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
ioctl$SIOCSIFHWADDR(r0, 0x8b06, &(0x7f0000000000)={'wlan1\x00', @random="02000000000a"})

4.118080578s ago: executing program 1 (id=1428):
socket$packet(0x11, 0xa, 0x300)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = dup(r1)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}})
write$tun(r0, 0x0, 0x7b)

4.055798142s ago: executing program 7 (id=1429):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000500)=ANY=[@ANYBLOB="12010000000000207d1e5a2d000000000001090224000100000000090400000103000000092100000001220800090581"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000940)={0x24, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="002208000000a20100c3"], 0x0}, 0x0)
r1 = syz_open_dev$hiddev(&(0x7f0000000080), 0x0, 0x0)
ioctl$HIDIOCGFIELDINFO(r1, 0xc038480a, &(0x7f00000000c0)={0x1, 0xffffffff, 0x4d1, 0x3bd, 0x35, 0xd72, 0xbea9, 0xf233, 0x1, 0x9, 0x4b2f, 0x2, 0x3, 0x1c36})

3.997455066s ago: executing program 5 (id=1430):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000480)=[{0x0}, {&(0x7f00000003c0)}, {0x0}, {&(0x7f0000000680)}], 0x4, 0x4, 0x5)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
setsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000340)="0bbb288dd6ffa80800431c00000000000000210d0000aaa8fa017242ba9380d419000000000000002900000002000000e2", 0x31)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000140)=@x86={0x40, 0x1, 0xc, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x80, 0x9, 0x0, 0x0, 0x0, 0xfffffff8, 0x0, 0xff, 0xff})

3.868788573s ago: executing program 1 (id=1431):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000800)={0x1f, 0x13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11}, 0x94)
r0 = openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x4008011}, 0x4000800)
syz_usb_connect(0x0, 0x73, &(0x7f00000000c0)=ANY=[@ANYBLOB="12010000ea7c5708f0031d58b3120000000109026100040007200709045805007ec8ee020904fa0200ff"], 0x0)

3.858484664s ago: executing program 5 (id=1432):
syz_usb_connect(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000d7dda4108911930800000102030109022400020000000009046802006e02c000090468"], 0x0)

3.837979425s ago: executing program 0 (id=1433):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000000)={[0x35, 0x1, 0x2, 0x180, 0x4, 0x10, 0x8000f1, 0x50, 0x12, 0x5, 0x0, 0x1, 0x2, 0x6, 0x0, 0xbdb], 0xffff1001})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000040)={[{@grpquota}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x800}}, {@minixdf}]}, 0x1, 0x500, &(0x7f00000010c0)="$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")
setsockopt$SO_TIMESTAMP(0xffffffffffffffff, 0x1, 0x40, &(0x7f0000000000)=0x10001, 0x4)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000003c0)={[0x5, 0x1000000000, 0x0, 0x43, 0x2000001, 0xff, 0x2004cb, 0x5, 0x1000000, 0x68ff, 0x5, 0x400009, 0x3], 0xeeee8000, 0x4ad7})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000001c0)={{0x8080000, 0xf000, 0x8, 0x8, 0xb, 0xe4, 0x40, 0x0, 0x0, 0x2e, 0x80}, {0x5000, 0x4000, 0x3, 0x0, 0x42, 0x5, 0x5, 0x6, 0x15, 0x3, 0x2, 0x87}, {0x6000, 0x1, 0xd, 0x5, 0x3, 0x7, 0x0, 0x9, 0x1, 0xa4, 0x5, 0x5}, {0x1, 0xeeee0000, 0xd, 0x6, 0x4, 0x42, 0xb, 0xff, 0x0, 0x7, 0xe}, {0xeeee0000, 0x200000, 0xf, 0x3, 0x15, 0x7, 0xab, 0x8, 0x9, 0x83, 0xf7, 0x83}, {0x1000, 0x3909e40c33606d9c, 0xc, 0xa0, 0xb1, 0x8, 0x1, 0xa0, 0x82, 0xf, 0x1, 0x7}, {0x3000, 0x3000, 0x4, 0x5, 0x7, 0x5, 0x7, 0x3, 0x8, 0x81, 0x40, 0x70}, {0x4000, 0x4000, 0xe, 0x5, 0xcd, 0x7, 0x1, 0x9, 0x2, 0xc, 0xb0, 0x9}, {0xeeef0000, 0x30}, {0x8000000, 0x7}, 0x80000031, 0x0, 0x0, 0x2024, 0x2, 0x1500, 0x3000, [0x6800000000000000, 0x4, 0x5b, 0x100000000000008]})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

3.75554917s ago: executing program 0 (id=1434):
socket$nl_xfrm(0x10, 0x3, 0x6)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setxattr$system_posix_acl(&(0x7f0000002a00)='.\x00', &(0x7f0000000000)='system.posix_acl_default\x00', &(0x7f0000002b40), 0x24, 0x0)
r2 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$uinput_user_dev(r2, &(0x7f0000000a00)={'syz1\x00', {0x9, 0x7, 0x5, 0x5}, 0x3f, [0x9, 0x2, 0x18, 0x2, 0x2, 0x400, 0x80400000, 0x0, 0x8, 0x2, 0x6, 0x2, 0xfffffffb, 0x39, 0x747d5e13, 0x800, 0xfffffb9a, 0xfffffffe, 0x0, 0xfffffffb, 0x2004, 0x3, 0x0, 0xf250, 0x80, 0x4800, 0x300000, 0x800c, 0xe, 0x4623f, 0x0, 0x10001, 0x1ff, 0x8000, 0x0, 0x3, 0xd, 0x3, 0xba55, 0x8da8, 0x2, 0xe, 0x2, 0x4, 0xe, 0x4, 0x2, 0x6f, 0x8, 0x9, 0x1, 0x199d, 0x6, 0x2, 0x9, 0xfffbffff, 0x4, 0x6, 0x1000, 0x5, 0x3d, 0x9, 0xa, 0x5], [0x7, 0x1e, 0x3, 0x8000, 0xfffffffd, 0x3, 0x0, 0x2fcd0, 0x7, 0xfffffffc, 0x8, 0x7fff, 0x72c, 0x1c32, 0x3, 0x5, 0x10000, 0x400, 0x7ffd, 0x3, 0x1, 0x297, 0x5, 0x0, 0x981, 0x4, 0x0, 0x3ff, 0x0, 0xfffffffe, 0x0, 0x1000001, 0x10, 0xfffffff9, 0xfffffffd, 0x7, 0x1, 0xffffffff, 0x6, 0x8, 0x800, 0xffff, 0x6, 0x96, 0xfbfffff9, 0x2, 0x0, 0x2, 0x401, 0xc, 0x3, 0x379, 0x6, 0xe, 0x5, 0x7, 0x6, 0x2, 0x2, 0x1, 0x8, 0x7, 0x200, 0x3], [0x401, 0x8000c584, 0xffff, 0xcd3, 0x7, 0x1f, 0x404, 0x4, 0x4008, 0xc, 0x7, 0x9, 0xe8b, 0x5, 0x80000001, 0x8, 0x3f92, 0x1000, 0x0, 0x10, 0x1, 0xfffffff9, 0x0, 0x1000, 0x80040101, 0x5, 0x4, 0x5, 0x200003, 0x2, 0x5, 0x80, 0x9, 0x8001, 0x10000, 0x0, 0x7, 0x400004, 0x3, 0x6d7e, 0x3, 0x8, 0x3, 0xbf23, 0x6, 0x9, 0x956, 0x0, 0x3ff, 0xe, 0x6, 0x100fffd, 0x2005, 0x9, 0x4, 0xea, 0x9, 0x20000005, 0x3, 0xd9, 0x0, 0x7d, 0x401, 0x5], [0x108e, 0xffff, 0x3, 0x3, 0x88, 0x2, 0x4000000, 0x4, 0x50, 0x2, 0x763, 0xb, 0x402, 0x1, 0x5, 0x4001000, 0x7f, 0x5, 0x3fa6, 0x4, 0x0, 0x5, 0x6, 0x4, 0xe47, 0x4, 0x3, 0x4, 0x200, 0x2851, 0x3b, 0x20000001, 0x5, 0x101, 0xa80a, 0x65f413f9, 0x4, 0x20008, 0x8a5, 0x86, 0x44, 0x409, 0x3, 0x4, 0x4, 0x10, 0x4, 0xffffffff, 0x7fff, 0xffff8a33, 0xfffffff8, 0x401, 0x3, 0x200, 0x7, 0x4edf, 0xfffffffd, 0xa, 0xe, 0x2, 0xf, 0xf, 0x136, 0x6]}, 0x45c)
ioctl$UI_DEV_CREATE(r2, 0x5501)
write$input_event(r2, &(0x7f0000000000)={{0x77359400}, 0x15}, 0xfe4f)

2.72137085s ago: executing program 0 (id=1435):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x2a0471a, &(0x7f0000000280)={[{@max_batch_time={'max_batch_time', 0x3d, 0xd}}]}, 0x82, 0x48f, &(0x7f0000000380)="$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")
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pwritev(r0, &(0x7f0000000480)=[{0x0}, {0x0}, {&(0x7f0000000280)="77cccb0deedbb94f1afd3ccb469a67", 0xf}, {&(0x7f0000000040)}], 0x4, 0xc, 0x5)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, &(0x7f0000000200)="f7790066baa00066b86b4266ef66ba420066b8e20066ef0f29902cbb0000c4e2b1ba8c88d9000000666666440f38826b410f7842280f07b8010000000f01d9c4033921820f47a753fd", 0x49}], 0x1, 0x43, 0x0, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000140)=@arm64={0x7, 0xdb, 0xd})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

2.518194342s ago: executing program 0 (id=1436):
fsmount(0xffffffffffffffff, 0x1, 0x0)
syz_usb_connect$cdc_ncm(0x3, 0x86, &(0x7f0000000600)=ANY=[@ANYBLOB="12014002020000082505a1a440000102030109027400020139f004090400000102"], &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x96, &(0x7f00000020c0)=ANY=[]}]})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_usb_connect$cdc_ecm(0x0, 0x5a, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000000)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r1, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r2, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

2.253076858s ago: executing program 6 (id=1437):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000001c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'xchacha20\x00'}, 0x58)
getpid()
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f00000000c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x100000f)
syz_open_dev$evdev(&(0x7f000001fa80), 0x0, 0x2801bf)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r4, 0x0, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x8, 0x3, 0x3c8, 0x0, 0xa, 0x148, 0x0, 0x10, 0x330, 0x2a8, 0x2a8, 0x330, 0x2a8, 0x3, 0x0, {[{{@ip={@rand_addr, @multicast1, 0x0, 0x0, 'bridge0\x00', 'rose0\x00'}, 0x0, 0x70, 0xe0, 0x0, {0x200003ae, 0x7f00}}, @common=@unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, "f2f7b90ad2b60c45cb4ea6e7bf902bdc2ff8a9304d9f655c746adc0bdc773506378bc0d27efd6abb05175089830cc46186074d7de46d5af300"}}}, {{@ip={@empty, @local, 0x0, 0x0, 'ip6erspan0\x00', 'veth0_to_team\x00'}, 0x0, 0x1f0, 0x250, 0x0, {}, [@common=@inet=@hashlimit3={{0x158}, {'wg2\x00', {0xffffffffffffffff, 0xff, 0x0, 0x0, 0x0, 0x7fff, 0x200}}}, @inet=@rpfilter={{0x28}}]}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x1, @multicast, 0x2, 0x7, [0x0, 0x10, 0x1b, 0x2b, 0x37, 0x2e, 0x2b, 0x18, 0x2b, 0x34, 0xd, 0x0, 0x3d, 0x1, 0x32, 0x37], 0x1, 0x6, 0x1570000000000}}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x428)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$SO_ATTACH_FILTER(r5, 0x1, 0x1a, 0x0, 0x0)
bind$bt_hci(r5, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
write(r5, &(0x7f0000000140)="24000000010006", 0x7)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000300)="c99b57381801238c09d0ff0f1d0dbd301e5a47b2f3caa73dcd2a6a370554375a", 0x20)
r6 = accept4(r0, 0x0, 0x0, 0x80000)
sendmsg$nl_route_sched(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000b40), 0x2328}}, 0x0)
socket(0x10, 0x3, 0x0)
recvmmsg(r6, &(0x7f00000050c0)=[{{0x0, 0x0, &(0x7f0000000f80)=[{&(0x7f0000001900)=""/4077, 0xfed}], 0x1}, 0x8}], 0x1, 0x40010002, 0x0)

2.229625379s ago: executing program 1 (id=1438):
syz_open_procfs(0x0, &(0x7f0000000480)='net/fib_triestat\x00')
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000500)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x16, 0x0, 0x0)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r3, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
writev(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000000)='4', 0x1}], 0x1)
write$binfmt_misc(r3, &(0x7f0000000000), 0xd)

1.556107579s ago: executing program 5 (id=1439):
socket$inet_tcp(0x2, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000100)='./binderfs2/binder1\x00', 0x803, 0x0)
mmap$binder(&(0x7f0000937000/0x1000)=nil, 0x1000, 0x1, 0x11, r1, 0x8)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$GIO_CMAP(0xffffffffffffffff, 0x4b70, 0x0)
r4 = fsopen(&(0x7f00000000c0)='proc\x00', 0x1)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
socket$inet_udp(0x2, 0x2, 0x0)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup.net/syz0\x00', 0x200002, 0x0)
r7 = openat$cgroup_devices(r6, 0x0, 0x2, 0x0)
write$cgroup_devices(r7, &(0x7f0000000080)={'a', ' *:* ', 'r\x00'}, 0x8)
r8 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)
r9 = openat$cgroup_devices(r8, &(0x7f00000000c0)='devices.deny\x00', 0x2, 0x0)
write$cgroup_devices(r9, &(0x7f00000001c0)={'b', ' *:* ', 'rm\x00'}, 0x9)
openat$cgroup_devices(r5, &(0x7f0000000840)='devices.allow\x00', 0x2, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
fsmount(r4, 0x0, 0xf)

1.424995947s ago: executing program 6 (id=1440):
syz_open_procfs(0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000340)='blkio.bfq.io_wait_time\x00', 0x26e1, 0x0)
close(r0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r2 = fanotify_init(0x10, 0x101000)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
fanotify_mark(r2, 0x455, 0x8000008, r3, 0x0)
fanotify_mark(r2, 0x7e, 0x800003a, r3, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_serviced\x00', 0x26e1, 0x0)
close(r4)
socket$netlink(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r4, 0x8b18, &(0x7f0000000000)={'wlan1\x00', @random="010000000700"})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
ioctl$SIOCSIFHWADDR(r0, 0x8b06, &(0x7f0000000000)={'wlan1\x00', @random="02000000000a"})

71.655445ms ago: executing program 1 (id=1441):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f00000001c0)={"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"})
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f00000005c0)={{0x80a0000, 0x70000, 0x10, 0x2d, 0x4, 0x7, 0x0, 0x4, 0x0, 0x6, 0x5, 0x5}, {0x2, 0x100000, 0xa, 0x5, 0xc, 0x96, 0x2, 0x6, 0x7, 0x23, 0x5, 0xe}, {0xffffffff, 0xdddd1000, 0x3, 0x7, 0xfb, 0x1, 0xf7, 0x2c, 0xff, 0x7, 0xe3, 0xd}, {0x70000, 0x2000, 0x1d, 0xf8, 0x0, 0x8, 0x2, 0x0, 0x64, 0x3, 0x1, 0x6d}, {0xb000, 0x1000, 0xc, 0xc1, 0x81, 0x4, 0x16, 0xf, 0xf7, 0x6, 0x9, 0x95}, {0x1dddd0000, 0x1, 0xb, 0x0, 0x21, 0x6, 0x2c, 0x1, 0x8, 0x7, 0x68, 0x8}, {0x5000, 0x26000, 0x9, 0xf7, 0x1, 0x3, 0x7f, 0x5, 0x9, 0x3, 0xe, 0x3}, {0x4, 0x1000, 0x9, 0x8, 0xa3, 0x2, 0x40, 0x2, 0x1, 0xfd, 0x1}, {0x10000, 0x2}, {0x2000, 0x9}, 0x8, 0x0, 0x27000, 0x400, 0x9, 0x2000, 0xdddd0000, [0x0, 0x7, 0x1, 0x9]})
ioctl$KVM_SET_MP_STATE(r2, 0x4004ae99, &(0x7f00000000c0)=0x1)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

71.123475ms ago: executing program 5 (id=1442):
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0))
write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000001040)={0x1a, {"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", 0x1000}}, 0x1006)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(0xffffffffffffffff, 0xc04064a0, &(0x7f0000000340)={&(0x7f0000000240)=[0x0, 0x0, 0x0], &(0x7f0000000380)=[0x0, 0x0], &(0x7f0000000300)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000280), 0x3, 0x2, 0x7})
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000740)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0xa8}}], 0x1, 0x810)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb09587", 0x4b}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11", 0xce}], 0x3, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

52.616626ms ago: executing program 6 (id=1443):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000480)=[{0x0}, {&(0x7f00000003c0)}, {0x0}, {&(0x7f0000000680)}], 0x4, 0x4, 0x5)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
setsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000340)="0bbb288dd6ffa80800431c00000000000000210d0000aaa8fa017242ba9380d419000000000000002900000002000000e2", 0x31)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000140)=@x86={0x40, 0x1, 0xc, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x80, 0x9, 0x0, 0x0, 0x0, 0xfffffff8, 0x0, 0xff, 0xff})

0s ago: executing program 7 (id=1444):
syz_mount_image$vfat(&(0x7f0000000100), &(0x7f0000000980)='./bus\x00', 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="009f587a31d53b5cb6077bd11087bb6e13aac56feecaaae0b009cee43814e80646ff2772abedb27f35c706ba7c624afb75f473956061ae41834d27270063fa18a3515f9ac6cd6f15a042b1edcd60bdeb55446beed1014aa13d43d399fb4f716b8a24502a8e3e697642b172841c89aecefe0cfb3c32d7c28955601f41fb90d51951d91a35a5abeb4ffceef5cf6e190ec9eb6f91a0d06882039b54dd4485b823414e06691b0244ca11ac0baeaeec1a96861d358464329c64b77e6ff2e2d8a6bb29268be3e7c46750210270d79e1054add6c2ef3f0373", @ANYBLOB="fd5a30494a98e2fd594c7f5575b44a6b9875a6deb8a9ed63e149fdc3a5e345922596d46c4a2b3978044b864f941e1137ce034002852c9ef5606de83cf95a02ef4bacef1188250b8a73609da88d66c4224c3ea46f117012f2aab4bca171e710172b4c22e4d51e27059feb304bb3e260a2", @ANYRES32=0x0], 0x1, 0x1282, &(0x7f0000002880)="$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")
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x6000)
io_setup(0x202, &(0x7f0000000200)=<r0=>0x0)
ftruncate(0xffffffffffffffff, 0x81fe)
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000)
io_submit(r0, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0x0, 0x0, 0x1, 0x0, 0xffffffffffffffff, &(0x7f0000000000), 0x4000, 0xa00}])

kernel console output (not intermixed with test programs):

 INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  157.597040][ T6646] loop5: detected capacity change from 0 to 256
[  157.635803][ T6643] loop1: detected capacity change from 0 to 4096
[  157.655371][ T6646] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x205ab87c, utbl_chksum : 0xe619d30d)
[  157.687401][ T6643] EXT4-fs (loop1): Test dummy encryption mode enabled
[  157.754601][ T6643] EXT4-fs (loop1): mounted filesystem without journal. Opts: test_dummy_encryption,grpquota,,errors=continue. Quota mode: writeback.
[  157.960325][ T6654] blktrace: Concurrent blktraces are not allowed on loop13
[  158.259416][ T6667] loop5: detected capacity change from 0 to 2048
[  158.352654][ T6667] EXT4-fs (loop5): mounted filesystem without journal. Opts: discard,max_dir_size_kb=0x0000000000000004,norecovery,,errors=continue. Quota mode: none.
[  158.544192][ T6667] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1163: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  158.600514][ T6667] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 3 with error 28
[  158.946792][ T6667] EXT4-fs (loop5): This should not happen!! Data will be lost
[  158.946792][ T6667] 
[  159.260844][ T6667] EXT4-fs (loop5): Total free blocks count 0
[  159.266865][ T6667] EXT4-fs (loop5): Free/Dirty block details
[  159.310819][ T6667] EXT4-fs (loop5): free_blocks=2415919104
[  159.343252][ T6667] EXT4-fs (loop5): dirty_blocks=16
[  159.389133][ T6667] EXT4-fs (loop5): Block reservation details
[  159.439138][ T6667] EXT4-fs (loop5): i_reserved_data_blocks=1
[  159.494976][ T6697] loop6: detected capacity change from 0 to 256
[  159.636541][ T6697] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0x205ab87c, utbl_chksum : 0xe619d30d)
[  160.028452][ T6714] loop6: detected capacity change from 0 to 1024
[  160.391979][ T6717] blktrace: Concurrent blktraces are not allowed on loop13
[  161.202673][ T6731] loop6: detected capacity change from 0 to 512
[  161.399718][ T6731] EXT4-fs (loop6): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  161.706929][ T6731] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  161.882642][ T6731] EXT4-fs (loop6): can't mount with data=, fs mounted w/o journal
[  162.992940][ T4231] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  163.209615][ T6766] input: syz1 as /devices/virtual/input/input15
[  163.945020][ T6775] loop5: detected capacity change from 0 to 512
[  163.950329][ T4231] usb 1-1: Using ep0 maxpacket: 32
[  164.049813][ T6775] EXT4-fs (loop5): Mount option "noacl" will be removed by 3.5
[  164.049813][ T6775] Contact linux-ext4@vger.kernel.org if you think we should keep it.
[  164.049813][ T6775] 
[  164.135540][ T6775] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[  164.217785][ T4231] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  164.231300][ T4231] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  164.242055][ T4231] usb 1-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  164.251390][ T4231] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  164.271122][ T4231] usb 1-1: config 0 descriptor??
[  164.278284][ T6775] [EXT4 FS bs=4096, gc=1, bpg=3008, ipg=32, mo=80026029, mo2=0000]
[  164.701112][ T6775] EXT4-fs (loop5): 1 truncate cleaned up
[  164.714009][ T4327] Quota error (device loop5): free_dqentry: Quota structure has offset to other block (1) than it should (5)
[  164.820725][ T4231] usbhid 1-1:0.0: can't add hid device: -71
[  164.854961][ T4231] usbhid: probe of 1-1:0.0 failed with error -71
[  164.904249][ T6775] EXT4-fs (loop5): mounted filesystem without journal. Opts: nobarrier,noblock_validity,nombcache,acl,barrier=0x000000000000000c,noacl,errors=remount-ro,nodelalloc,resgid=0x00000000000000002. Quota mode: writeback.
[  164.915950][ T4231] usb 1-1: USB disconnect, device number 9
[  164.977480][ T4327] EXT4-fs error (device loop5): ext4_release_dquot:6270: comm kworker/u4:8: Failed to release dquot type 1
[  165.113451][ T4327] EXT4-fs (loop5): Remounting filesystem read-only
[  165.220662][ T4327] Quota error (device loop5): free_dqentry: Quota structure has offset to other block (1) than it should (5)
[  165.242839][ T4327] EXT4-fs error (device loop5): ext4_release_dquot:6270: comm kworker/u4:8: Failed to release dquot type 1
[  165.757591][ T4327] EXT4-fs (loop5): Remounting filesystem read-only
[  166.040235][ T6817] loop0: detected capacity change from 0 to 512
[  166.077574][ T6817] EXT4-fs (loop0): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  166.122515][ T6817] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  166.155668][ T6820] loop1: detected capacity change from 0 to 256
[  166.183482][ T6817] EXT4-fs (loop0): can't mount with data=, fs mounted w/o journal
[  166.258474][ T6820] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x205ab87c, utbl_chksum : 0xe619d30d)
[  166.321885][ T6826] loop2: detected capacity change from 0 to 512
[  166.403759][ T6829] input: syz1 as /devices/virtual/input/input16
[  167.064770][ T6826] EXT4-fs (loop2): 1 truncate cleaned up
[  167.074115][ T6826] EXT4-fs (loop2): mounted filesystem without journal. Opts: max_batch_time=0x000000000000000d,,errors=continue. Quota mode: none.
[  167.103401][   T25] audit: type=1800 audit(1769401513.487:17): pid=6826 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.652" name="file0" dev="loop2" ino=13 res=0 errno=0
[  167.120281][ T2414] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  167.380271][ T2414] usb 6-1: Using ep0 maxpacket: 8
[  167.540403][ T2414] usb 6-1: unable to get BOS descriptor or descriptor too short
[  167.630594][ T2414] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  167.666073][ T2414] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 2
[  167.838084][ T2414] usb 6-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  168.370514][ T2414] usb 6-1: language id specifier not provided by device, defaulting to English
[  168.477730][ T6881] loop0: detected capacity change from 0 to 512
[  168.520386][ T2414] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  168.539625][ T2414] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  168.590839][ T2414] usb 6-1: Product: syz
[  168.595016][ T2414] usb 6-1: Manufacturer: syz
[  168.599607][ T2414] usb 6-1: SerialNumber: syz
[  168.612155][ T6887] fuse: Unknown parameter 'fdHèIÕcá²âŠáó‡˜'
[  168.780094][ T6881] EXT4-fs (loop0): 1 truncate cleaned up
[  168.790475][ T6881] EXT4-fs (loop0): mounted filesystem without journal. Opts: max_batch_time=0x000000000000000d,,errors=continue. Quota mode: none.
[  168.919224][   T25] audit: type=1800 audit(1769401515.297:18): pid=6881 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.665" name="file0" dev="loop0" ino=13 res=0 errno=0
[  168.948980][ T6881] EXT4-fs warning (device loop0): ext4_update_dynamic_rev:1062: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  168.990712][ T6881] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.665: bg 0: block 465: padding at end of block bitmap is not set
[  169.030242][ T6881] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6194: Corrupt filesystem
[  169.059887][ T6881] EXT4-fs error (device loop0): ext4_free_branches:1043: inode #13: block 234881024: comm syz.0.665: Read failure
[  169.063664][ T2414] usb 6-1: USB disconnect, device number 3
[  169.563781][ T6914] loop1: detected capacity change from 0 to 512
[  169.703059][ T6914] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  169.745358][ T6914] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  169.789011][ T6914] EXT4-fs (loop1): can't mount with data=, fs mounted w/o journal
[  169.829608][ T6929] loop6: detected capacity change from 0 to 1024
[  169.865014][ T6932] loop5: detected capacity change from 0 to 8
[  169.915631][ T6932] SQUASHFS error: zstd decompression failed, data probably corrupt
[  169.960460][ T6932] SQUASHFS error: Failed to read block 0x4ec: -5
[  170.000340][ T6932] SQUASHFS error: Unable to read metadata cache entry [4ea]
[  170.025123][ T6932] SQUASHFS error: Unable to read inode 0x2011f
[  170.576489][ T6959] loop5: detected capacity change from 0 to 16
[  170.630364][   T21] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  170.633539][ T6959] erofs: (device loop5): mounted with root inode @ nid 36.
[  170.900359][   T21] usb 1-1: Using ep0 maxpacket: 8
[  170.983173][ T6971] loop1: detected capacity change from 0 to 2048
[  171.080254][   T21] usb 1-1: unable to get BOS descriptor or descriptor too short
[  171.160344][   T21] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  171.171483][ T6971] EXT4-fs (loop1): mounted filesystem without journal. Opts: discard,max_dir_size_kb=0x0000000000000004,norecovery,,errors=continue. Quota mode: none.
[  171.205044][   T21] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 2
[  171.227376][ T6971] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1163: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  171.245587][ T6971] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 23 with error 28
[  171.258308][ T6971] EXT4-fs (loop1): This should not happen!! Data will be lost
[  171.258308][ T6971] 
[  171.268465][ T6971] EXT4-fs (loop1): Total free blocks count 0
[  171.274659][ T6971] EXT4-fs (loop1): Free/Dirty block details
[  171.281656][ T6971] EXT4-fs (loop1): free_blocks=2415919104
[  171.285338][   T21] usb 1-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  171.287904][ T6971] EXT4-fs (loop1): dirty_blocks=48
[  171.305787][ T6971] EXT4-fs (loop1): Block reservation details
[  171.312075][ T6971] EXT4-fs (loop1): i_reserved_data_blocks=3
[  171.331252][ T6992] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 32 with error 28
[  171.380291][ T6992] EXT4-fs (loop1): This should not happen!! Data will be lost
[  171.380291][ T6992] 
[  171.504246][ T7004] loop6: detected capacity change from 0 to 8
[  171.531736][ T7004] SQUASHFS error: zstd decompression failed, data probably corrupt
[  171.560633][ T7004] SQUASHFS error: Failed to read block 0x4ec: -5
[  171.566977][ T7004] SQUASHFS error: Unable to read metadata cache entry [4ea]
[  171.590442][   T21] usb 1-1: language id specifier not provided by device, defaulting to English
[  171.605531][ T7004] SQUASHFS error: Unable to read inode 0x2011f
[  171.619157][ T7007] loop1: detected capacity change from 0 to 512
[  171.638393][ T7007] EXT4-fs (loop1): Ignoring removed bh option
[  171.712608][ T7007] EXT4-fs (loop1): mounted filesystem without journal. Opts: i_version,nogrpid,bh,,errors=continue. Quota mode: writeback.
[  171.726024][   T21] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  171.760341][   T21] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  171.770341][ T7007] ext4 filesystem being mounted at /152/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  171.787557][ T7021] binder: BINDER_SET_CONTEXT_MGR already set
[  171.801524][   T21] usb 1-1: Product: syz
[  171.805692][   T21] usb 1-1: Manufacturer: syz
[  171.821268][ T7021] binder: 7018:7021 ioctl 4018620d 200000000180 returned -16
[  171.846115][   T21] usb 1-1: SerialNumber: syz
[  171.893325][ T7029] loop5: detected capacity change from 0 to 16
[  171.924090][ T7029] erofs: (device loop5): mounted with root inode @ nid 36.
[  172.153569][ T7032] loop6: detected capacity change from 0 to 2048
[  172.177895][   T21] usb 1-1: USB disconnect, device number 10
[  172.212105][ T7032] UDF-fs: bad mount option "18446744073709551615ÿ" or missing value
[  172.296338][ T7047] loop5: detected capacity change from 0 to 2048
[  172.405733][ T7047] EXT4-fs (loop5): mounted filesystem without journal. Opts: discard,max_dir_size_kb=0x0000000000000004,norecovery,,errors=continue. Quota mode: none.
[  172.430366][ T4238] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  172.456720][ T7047] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1163: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  172.473019][ T7047] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 23 with error 28
[  172.485498][ T7047] EXT4-fs (loop5): This should not happen!! Data will be lost
[  172.485498][ T7047] 
[  172.496081][ T7047] EXT4-fs (loop5): Total free blocks count 0
[  172.502305][ T7047] EXT4-fs (loop5): Free/Dirty block details
[  172.508946][ T7047] EXT4-fs (loop5): free_blocks=2415919104
[  172.516395][ T7047] EXT4-fs (loop5): dirty_blocks=48
[  172.521790][ T7047] EXT4-fs (loop5): Block reservation details
[  172.527771][ T7047] EXT4-fs (loop5): i_reserved_data_blocks=3
[  172.544299][ T7047] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 32 with error 28
[  172.556739][ T7047] EXT4-fs (loop5): This should not happen!! Data will be lost
[  172.556739][ T7047] 
[  172.710442][ T4238] usb 3-1: Using ep0 maxpacket: 16
[  172.840494][ T4238] usb 3-1: config 0 has an invalid interface number: 132 but max is 0
[  172.854982][ T4238] usb 3-1: config 0 has no interface number 0
[  172.879321][ T4238] usb 3-1: config 0 interface 132 altsetting 0 bulk endpoint 0x84 has invalid maxpacket 16
[  172.907476][ T4238] usb 3-1: config 0 interface 132 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64
[  172.970447][ T7076] EXT4-fs (loop0): Ignoring removed bh option
[  173.421812][ T7076] EXT4-fs (loop0): mounted filesystem without journal. Opts: i_version,nogrpid,bh,,errors=continue. Quota mode: writeback.
[  173.593746][ T7076] ext4 filesystem being mounted at /144/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  173.832785][ T4238] usb 3-1: New USB device found, idVendor=7dd7, idProduct=902f, bcdDevice=a3.2c
[  173.888164][ T4238] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  173.915615][ T4238] usb 3-1: Product: syz
[  173.926150][ T4238] usb 3-1: Manufacturer: syz
[  173.937321][ T4238] usb 3-1: SerialNumber: syz
[  173.944392][ T4238] usb 3-1: config 0 descriptor??
[  173.975388][ T7038] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  174.000399][ T7038] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  174.152286][ T7095] UDF-fs: bad mount option "18446744073709551615ÿ" or missing value
[  174.214694][ T7106] erofs: (device loop0): mounted with root inode @ nid 36.
[  174.231170][ T7102] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  174.246986][ T7102] ext4 filesystem being mounted at /49/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  174.270709][ T7102] EXT4-fs error (device loop6): ext4_lookup:1858: inode #15: comm syz.6.720: inode has both inline data and extents flags
[  174.326386][ T7115] EXT4-fs (loop6): shut down requested (1)
[  174.416198][ T4238] usb 3-1: MIDIStreaming interface descriptor not found
[  174.473372][ T4238] usb 3-1: USB disconnect, device number 6
[  174.645967][ T7125] set_capacity_and_notify: 4 callbacks suppressed
[  174.645981][ T7125] loop0: detected capacity change from 0 to 512
[  174.670415][ T1109] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  174.781055][ T7125] EXT4-fs (loop0): Ignoring removed bh option
[  174.799404][ T7130] loop6: detected capacity change from 0 to 1024
[  174.936869][ T7125] EXT4-fs (loop0): mounted filesystem without journal. Opts: i_version,nogrpid,bh,,errors=continue. Quota mode: writeback.
[  174.991998][ T7125] ext4 filesystem being mounted at /146/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  175.104736][ T1109] usb 6-1: Using ep0 maxpacket: 8
[  175.640576][ T1109] usb 6-1: unable to get BOS descriptor or descriptor too short
[  175.650349][   T21] Bluetooth: hci0: command 0x0406 tx timeout
[  175.656398][   T21] Bluetooth: hci3: command 0x0406 tx timeout
[  175.682853][ T4174] udevd[4174]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.132/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  175.742775][ T1109] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  175.746513][   T21] Bluetooth: hci4: command 0x0406 tx timeout
[  175.775862][ T7156] loop6: detected capacity change from 0 to 2048
[  175.783895][ T1109] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 2
[  175.801049][ T1109] usb 6-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  175.861307][ T7156] UDF-fs: bad mount option "18446744073709551615ÿ" or missing value
[  176.070485][ T1109] usb 6-1: language id specifier not provided by device, defaulting to English
[  176.220475][ T1109] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  176.236082][ T1109] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  176.255732][ T1109] usb 6-1: Product: syz
[  176.259904][ T1109] usb 6-1: Manufacturer: syz
[  176.274370][ T1109] usb 6-1: SerialNumber: syz
[  176.410262][ T2414] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  176.543888][ T7207] loop6: detected capacity change from 0 to 2048
[  176.583704][ T1109] usb 6-1: USB disconnect, device number 4
[  176.618303][ T7209] loop0: detected capacity change from 0 to 4096
[  176.631503][ T7207] UDF-fs: bad mount option "18446744073709551615ÿ" or missing value
[  176.653376][ T7209] EXT4-fs (loop0): Test dummy encryption mode enabled
[  176.660325][ T2414] usb 2-1: Using ep0 maxpacket: 16
[  176.877266][ T7209] EXT4-fs (loop0): mounted filesystem without journal. Opts: test_dummy_encryption,grpquota,,errors=continue. Quota mode: writeback.
[  176.880357][ T2414] usb 2-1: config 0 interface 0 has no altsetting 0
[  176.898643][ T2414] usb 2-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  176.907820][ T2414] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  176.925057][ T2414] usb 2-1: config 0 descriptor??
[  176.986849][ T7229] netlink: 4 bytes leftover after parsing attributes in process `syz.2.751'.
[  177.324847][ T7228] loop6: detected capacity change from 0 to 512
[  177.633461][ T7228] EXT4-fs (loop6): 1 truncate cleaned up
[  177.639132][ T7228] EXT4-fs (loop6): mounted filesystem without journal. Opts: max_batch_time=0x000000000000000d,,errors=continue. Quota mode: none.
[  177.679092][ T7228] EXT4-fs (loop6): shut down requested (1)
[  177.767072][ T4239] usb 2-1: USB disconnect, device number 7
[  177.959397][ T7246] loop6: detected capacity change from 0 to 512
[  178.044523][ T7246] EXT4-fs (loop6): 1 truncate cleaned up
[  178.075620][ T7246] EXT4-fs (loop6): mounted filesystem without journal. Opts: max_batch_time=0x000000000000000d,,errors=continue. Quota mode: none.
[  178.143225][   T25] audit: type=1800 audit(1769401524.527:19): pid=7246 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.756" name="file0" dev="loop6" ino=13 res=0 errno=0
[  178.190130][ T7246] EXT4-fs error (device loop6): ext4_validate_block_bitmap:438: comm syz.6.756: bg 0: block 465: padding at end of block bitmap is not set
[  178.235266][ T7246] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6194: Corrupt filesystem
[  178.290754][ T7246] EXT4-fs error (device loop6): ext4_free_branches:1030: inode #13: comm syz.6.756: invalid indirect mapped block 234881024 (level 0)
[  178.419674][ T7278] loop1: detected capacity change from 0 to 512
[  178.490573][ T7278] EXT4-fs (loop1): 1 truncate cleaned up
[  178.496358][ T7278] EXT4-fs (loop1): mounted filesystem without journal. Opts: max_batch_time=0x000000000000000d,,errors=continue. Quota mode: none.
[  178.512601][ T7280] loop0: detected capacity change from 0 to 4096
[  178.523342][ T7278] EXT4-fs (loop1): shut down requested (1)
[  178.600297][ T7280] EXT4-fs (loop0): Test dummy encryption mode enabled
[  178.657250][ T7280] EXT4-fs (loop0): mounted filesystem without journal. Opts: test_dummy_encryption,grpquota,,errors=continue. Quota mode: writeback.
[  178.667052][ T7294] loop5: detected capacity change from 0 to 1024
[  178.740331][ T4239] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  178.989649][ T4239] usb 7-1: Using ep0 maxpacket: 8
[  179.150718][ T4239] usb 7-1: unable to get BOS descriptor or descriptor too short
[  179.250712][ T4239] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  179.297442][ T4239] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 2
[  179.368636][ T4239] usb 7-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  179.677621][ T4239] usb 7-1: language id specifier not provided by device, defaulting to English
[  179.733240][ T7315] loop5: detected capacity change from 0 to 8
[  179.795741][ T7315] SQUASHFS error: zstd decompression failed, data probably corrupt
[  179.829218][ T4239] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  179.845230][ T4239] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  179.854164][ T7315] SQUASHFS error: Failed to read block 0x4ec: -5
[  179.865981][ T4239] usb 7-1: Product: syz
[  179.870154][ T4239] usb 7-1: Manufacturer: syz
[  179.875082][ T7315] SQUASHFS error: Unable to read metadata cache entry [4ea]
[  179.888335][ T4239] usb 7-1: SerialNumber: syz
[  179.891487][ T7326] loop1: detected capacity change from 0 to 512
[  179.896480][ T7315] SQUASHFS error: Unable to read inode 0x2011f
[  180.053423][ T7326] EXT4-fs (loop1): 1 truncate cleaned up
[  180.069482][ T7326] EXT4-fs (loop1): mounted filesystem without journal. Opts: max_batch_time=0x000000000000000d,,errors=continue. Quota mode: none.
[  180.090588][    T7] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  180.278882][   T25] audit: type=1800 audit(1769401526.657:20): pid=7326 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.778" name="file0" dev="loop1" ino=13 res=0 errno=0
[  180.377626][ T7343] loop5: detected capacity change from 0 to 512
[  180.390683][    T7] usb 1-1: Using ep0 maxpacket: 32
[  180.463418][ T7343] EXT4-fs (loop5): 1 truncate cleaned up
[  180.469075][ T7343] EXT4-fs (loop5): mounted filesystem without journal. Opts: max_batch_time=0x000000000000000d,,errors=continue. Quota mode: none.
[  180.494900][ T7343] EXT4-fs (loop5): shut down requested (1)
[  180.531088][    T7] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  180.542093][    T7] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  180.550418][ T4239] usb 7-1: USB disconnect, device number 4
[  180.559711][    T7] usb 1-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  180.569063][    T7] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  180.584081][    T7] usb 1-1: config 0 descriptor??
[  180.812110][ T7362] loop2: detected capacity change from 0 to 1024
[  180.890813][   T25] audit: type=1326 audit(1769401527.277:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7322 comm="syz.0.777" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f53a91edcb9 code=0x0
[  181.098976][ T7381] loop2: detected capacity change from 0 to 8
[  181.125316][ T7383] loop6: detected capacity change from 0 to 512
[  181.154366][ T7381] SQUASHFS error: zstd decompression failed, data probably corrupt
[  181.191501][    T7] savu 0003:1E7D:2D5A.0007: hiddev0,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.0-1/input0
[  181.216950][ T7381] SQUASHFS error: Failed to read block 0x4ec: -5
[  181.240411][ T7381] SQUASHFS error: Unable to read metadata cache entry [4ea]
[  181.258258][ T7383] EXT4-fs (loop6): 1 truncate cleaned up
[  181.270448][ T7381] SQUASHFS error: Unable to read inode 0x2011f
[  181.277650][ T7383] EXT4-fs (loop6): mounted filesystem without journal. Opts: max_batch_time=0x000000000000000d,,errors=continue. Quota mode: none.
[  181.297313][ T7383] EXT4-fs (loop6): shut down requested (1)
[  181.702587][ T7405] netlink: 4 bytes leftover after parsing attributes in process `syz.5.793'.
[  182.560369][    T7] usb 1-1: reset high-speed USB device number 11 using dummy_hcd
[  182.615561][ T7414] fuse: Unknown parameter 'fdHèIÕcá²âŠáó‡˜'
[  183.566388][ T7429] loop0: detected capacity change from 0 to 512
[  183.627669][ T7432] loop1: detected capacity change from 0 to 4096
[  183.664703][ T7435] loop5: detected capacity change from 0 to 512
[  183.685102][ T7429] EXT4-fs (loop0): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  183.693142][ T7432] EXT4-fs (loop1): Test dummy encryption mode enabled
[  183.714512][ T7440] 9pnet: Insufficient options for proto=fd
[  183.740328][ T7429] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  183.760494][ T7429] EXT4-fs (loop0): can't mount with data=, fs mounted w/o journal
[  183.790651][ T7432] EXT4-fs (loop1): mounted filesystem without journal. Opts: test_dummy_encryption,grpquota,,errors=continue. Quota mode: writeback.
[  183.794375][ T7435] EXT4-fs (loop5): 1 truncate cleaned up
[  183.814504][ T7435] EXT4-fs (loop5): mounted filesystem without journal. Opts: max_batch_time=0x000000000000000d,,errors=continue. Quota mode: none.
[  183.955152][   T25] audit: type=1800 audit(1769401530.327:22): pid=7435 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.802" name="file0" dev="loop5" ino=13 res=0 errno=0
[  183.962064][ T7435] EXT4-fs error (device loop5): ext4_validate_block_bitmap:438: comm syz.5.802: bg 0: block 465: padding at end of block bitmap is not set
[  184.146184][ T7435] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6194: Corrupt filesystem
[  184.161579][ T7435] EXT4-fs error (device loop5): ext4_free_branches:1030: inode #13: comm syz.5.802: invalid indirect mapped block 234881024 (level 0)
[  184.514864][ T7469] 9pnet: Insufficient options for proto=fd
[  184.729819][ T1109] usb 1-1: USB disconnect, device number 11
[  184.919369][ T7476] loop1: detected capacity change from 0 to 4096
[  185.384941][ T7476] EXT4-fs (loop1): Test dummy encryption mode enabled
[  185.439367][ T7476] EXT4-fs (loop1): mounted filesystem without journal. Opts: test_dummy_encryption,grpquota,,errors=continue. Quota mode: writeback.
[  185.544433][ T7482] loop0: detected capacity change from 0 to 2048
[  185.596544][ T7486] loop2: detected capacity change from 0 to 512
[  185.662838][ T7486] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  185.689944][ T7482] EXT4-fs (loop0): mounted filesystem without journal. Opts: discard,max_dir_size_kb=0x0000000000000004,norecovery,,errors=continue. Quota mode: none.
[  185.741212][ T7486] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  185.751307][ T7486] EXT4-fs (loop2): can't mount with data=, fs mounted w/o journal
[  185.855795][ T7482] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1163: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  185.882277][ T7482] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 23 with error 28
[  185.905275][ T7482] EXT4-fs (loop0): This should not happen!! Data will be lost
[  185.905275][ T7482] 
[  185.948179][ T7482] EXT4-fs (loop0): Total free blocks count 0
[  185.983517][ T7482] EXT4-fs (loop0): Free/Dirty block details
[  185.997865][ T7482] EXT4-fs (loop0): free_blocks=2415919104
[  186.015197][ T7482] EXT4-fs (loop0): dirty_blocks=48
[  186.021240][ T7505] loop6: detected capacity change from 0 to 512
[  186.023305][ T7507] loop1: detected capacity change from 0 to 8
[  186.045670][ T7482] EXT4-fs (loop0): Block reservation details
[  186.062497][ T7482] EXT4-fs (loop0): i_reserved_data_blocks=3
[  186.081299][ T7497] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 32 with error 28
[  186.103385][ T7505] EXT4-fs (loop6): 1 truncate cleaned up
[  186.109661][ T7505] EXT4-fs (loop6): mounted filesystem without journal. Opts: max_batch_time=0x000000000000000d,,errors=continue. Quota mode: none.
[  186.113150][ T7497] EXT4-fs (loop0): This should not happen!! Data will be lost
[  186.113150][ T7497] 
[  186.161966][ T7507] SQUASHFS error: zstd decompression failed, data probably corrupt
[  186.169891][ T7507] SQUASHFS error: Failed to read block 0x4ec: -5
[  186.196025][   T25] audit: type=1800 audit(1769401532.577:23): pid=7505 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.826" name="file0" dev="loop6" ino=13 res=0 errno=0
[  186.280288][ T7507] SQUASHFS error: Unable to read metadata cache entry [4ea]
[  186.318212][ T7507] SQUASHFS error: Unable to read inode 0x2011f
[  187.295160][ T7537] loop1: detected capacity change from 0 to 16
[  187.354972][ T7540] loop0: detected capacity change from 0 to 512
[  187.378058][ T7537] erofs: (device loop1): mounted with root inode @ nid 36.
[  187.423598][ T7540] EXT4-fs (loop0): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  187.464552][ T7540] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  187.495105][ T7540] EXT4-fs (loop0): can't mount with data=, fs mounted w/o journal
[  187.670499][ T7550] loop1: detected capacity change from 0 to 512
[  187.807263][ T7550] EXT4-fs (loop1): 1 truncate cleaned up
[  187.817188][ T7550] EXT4-fs (loop1): mounted filesystem without journal. Opts: max_batch_time=0x000000000000000d,,errors=continue. Quota mode: none.
[  188.086808][ T7561] loop6: detected capacity change from 0 to 4096
[  188.110896][ T7561] EXT4-fs (loop6): Test dummy encryption mode enabled
[  188.317604][ T7561] EXT4-fs (loop6): mounted filesystem without journal. Opts: test_dummy_encryption,grpquota,,errors=continue. Quota mode: writeback.
[  189.192824][ T7575] loop0: detected capacity change from 0 to 2048
[  189.309046][ T7575] UDF-fs: bad mount option "18446744073709551615ÿ" or missing value
[  189.358605][ T7586] EXT4-fs (loop2): 1 truncate cleaned up
[  189.379496][ T7586] EXT4-fs (loop2): mounted filesystem without journal. Opts: max_batch_time=0x000000000000000d,,errors=continue. Quota mode: none.
[  189.430844][ T7589] EXT4-fs (loop5): Ignoring removed bh option
[  189.523598][ T7588] EXT4-fs (loop6): Test dummy encryption mode enabled
[  189.603257][ T7596] EXT4-fs (loop0): 1 truncate cleaned up
[  189.609475][ T7589] EXT4-fs (loop5): mounted filesystem without journal. Opts: i_version,nogrpid,bh,,errors=continue. Quota mode: writeback.
[  189.623544][ T7588] EXT4-fs (loop6): mounted filesystem without journal. Opts: test_dummy_encryption,grpquota,,errors=continue. Quota mode: writeback.
[  189.629525][ T7596] EXT4-fs (loop0): mounted filesystem without journal. Opts: max_batch_time=0x000000000000000d,,errors=continue. Quota mode: none.
[  189.654736][ T7589] ext4 filesystem being mounted at /95/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  190.040407][   T25] audit: type=1800 audit(1769401536.417:24): pid=7596 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.860" name="file0" dev="loop0" ino=13 res=0 errno=0
[  190.189053][ T7596] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.860: bg 0: block 465: padding at end of block bitmap is not set
[  190.219531][ T7596] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6194: Corrupt filesystem
[  190.250926][ T7596] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz.0.860: invalid indirect mapped block 234881024 (level 0)
[  190.444385][ T7610] set_capacity_and_notify: 4 callbacks suppressed
[  190.444400][ T7610] loop1: detected capacity change from 0 to 512
[  190.526177][ T7610] EXT4-fs (loop1): Ignoring removed oldalloc option
[  190.545476][ T7619] loop2: detected capacity change from 0 to 8
[  190.563655][ T7610] EXT4-fs (loop1): 1 truncate cleaned up
[  190.583511][ T7610] EXT4-fs (loop1): mounted filesystem without journal. Opts: quota,nodioread_nolock,nouid32,errors=remount-ro,jqfmt=vfsv1,oldalloc,acl,. Quota mode: writeback.
[  190.628975][ T7619] SQUASHFS error: zstd decompression failed, data probably corrupt
[  190.723672][ T7619] SQUASHFS error: Failed to read block 0x4ec: -5
[  190.782846][ T7619] SQUASHFS error: Unable to read metadata cache entry [4ea]
[  190.825259][ T7619] SQUASHFS error: Unable to read inode 0x2011f
[  190.934335][ T7633] loop1: detected capacity change from 0 to 512
[  191.012817][ T7633] EXT4-fs (loop1): 1 truncate cleaned up
[  191.018496][ T7633] EXT4-fs (loop1): mounted filesystem without journal. Opts: max_batch_time=0x000000000000000d,,errors=continue. Quota mode: none.
[  191.110286][ T4239] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  191.159208][ T7639] loop6: detected capacity change from 0 to 512
[  191.192414][ T7639] EXT4-fs (loop6): Ignoring removed bh option
[  191.348163][ T7639] EXT4-fs (loop6): mounted filesystem without journal. Opts: i_version,nogrpid,bh,,errors=continue. Quota mode: writeback.
[  191.361887][ T4239] usb 1-1: Using ep0 maxpacket: 16
[  191.370442][ T7639] ext4 filesystem being mounted at /83/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  192.110460][ T4239] usb 1-1: config 0 has an invalid interface number: 132 but max is 0
[  192.151426][ T4239] usb 1-1: config 0 has no interface number 0
[  192.157550][ T4239] usb 1-1: config 0 interface 132 altsetting 0 bulk endpoint 0x84 has invalid maxpacket 16
[  192.205943][ T4239] usb 1-1: config 0 interface 132 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64
[  192.328262][ T7656] loop2: detected capacity change from 0 to 2364
[  192.384461][ T4239] usb 1-1: New USB device found, idVendor=7dd7, idProduct=902f, bcdDevice=a3.2c
[  192.399686][ T4239] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  192.432912][ T4239] usb 1-1: Product: syz
[  192.448533][ T4239] usb 1-1: Manufacturer: syz
[  192.474076][ T4239] usb 1-1: SerialNumber: syz
[  192.498128][ T4239] usb 1-1: config 0 descriptor??
[  192.540503][ T7629] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  192.550977][ T7629] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  193.521750][ T7669] binder_alloc: 7668: binder_alloc_buf, no vma
[  193.598192][ T7671] loop5: detected capacity change from 0 to 512
[  193.614723][ T7674] loop1: detected capacity change from 0 to 512
[  193.648140][ T7674] EXT4-fs (loop1): Ignoring removed bh option
[  193.664659][ T4239] usb 1-1: MIDIStreaming interface descriptor not found
[  193.669891][ T7671] EXT4-fs (loop5): 1 truncate cleaned up
[  193.694046][ T4239] usb 1-1: USB disconnect, device number 12
[  193.701272][ T7671] EXT4-fs (loop5): mounted filesystem without journal. Opts: max_batch_time=0x000000000000000d,,errors=continue. Quota mode: none.
[  193.808845][ T7685] overlayfs: missing 'lowerdir'
[  193.813593][ T7674] EXT4-fs (loop1): mounted filesystem without journal. Opts: i_version,nogrpid,bh,,errors=continue. Quota mode: writeback.
[  193.840609][ T7674] ext4 filesystem being mounted at /199/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  193.996757][ T7689] loop6: detected capacity change from 0 to 16
[  194.042676][ T4174] udevd[4174]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.132/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  194.070730][ T1421] ieee802154 phy0 wpan0: encryption failed: -22
[  194.077047][ T1421] ieee802154 phy1 wpan1: encryption failed: -22
[  194.095624][ T7689] erofs: (device loop6): mounted with root inode @ nid 36.
[  194.579993][ T7691] chnl_net:caif_netlink_parms(): no params data found
[  194.809409][ T7691] bridge0: port 1(bridge_slave_0) entered blocking state
[  194.816835][ T7691] bridge0: port 1(bridge_slave_0) entered disabled state
[  194.835152][ T7691] device bridge_slave_0 entered promiscuous mode
[  194.862709][ T7691] bridge0: port 2(bridge_slave_1) entered blocking state
[  194.869893][ T7691] bridge0: port 2(bridge_slave_1) entered disabled state
[  194.906044][ T7691] device bridge_slave_1 entered promiscuous mode
[  195.042159][ T7691] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  195.092215][ T7691] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  195.152426][ T7723] loop1: detected capacity change from 0 to 512
[  195.197518][ T7691] team0: Port device team_slave_0 added
[  195.239155][ T7723] EXT4-fs (loop1): 1 truncate cleaned up
[  195.240355][ T7691] team0: Port device team_slave_1 added
[  195.264828][ T7723] EXT4-fs (loop1): mounted filesystem without journal. Opts: max_batch_time=0x000000000000000d,,errors=continue. Quota mode: none.
[  195.293290][ T7691] batman_adv: batadv0: Adding interface: batadv_slave_0
[  195.310246][ T7691] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  195.337496][ T7691] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  195.350401][ T7691] batman_adv: batadv0: Adding interface: batadv_slave_1
[  195.357385][ T7691] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  195.384129][ T7691] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  195.422543][ T7691] device hsr_slave_0 entered promiscuous mode
[  195.429373][ T7691] device hsr_slave_1 entered promiscuous mode
[  195.637877][ T7691] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  195.653204][ T7691] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  195.668735][ T7729] loop6: detected capacity change from 0 to 512
[  195.693825][ T7691] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  195.724364][ T7691] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  195.826680][ T7729] EXT4-fs (loop6): 1 truncate cleaned up
[  195.848236][ T7729] EXT4-fs (loop6): mounted filesystem without journal. Opts: max_batch_time=0x000000000000000d,,errors=continue. Quota mode: none.
[  195.872687][ T7691] 8021q: adding VLAN 0 to HW filter on device bond0
[  195.889046][ T4330] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  196.050630][ T2414] Bluetooth: hci4: command 0x0409 tx timeout
[  196.247837][ T4330] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  196.521755][ T7691] 8021q: adding VLAN 0 to HW filter on device team0
[  196.694397][ T3046] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  196.705299][ T7746] loop0: detected capacity change from 0 to 512
[  196.715961][ T7747] loop1: detected capacity change from 0 to 512
[  196.730793][ T3046] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  196.746102][ T3046] bridge0: port 1(bridge_slave_0) entered blocking state
[  196.753197][ T3046] bridge0: port 1(bridge_slave_0) entered forwarding state
[  196.763386][ T3046] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  196.776186][ T3046] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  196.777021][ T7747] EXT4-fs (loop1): Ignoring removed bh option
[  196.784759][ T3046] bridge0: port 2(bridge_slave_1) entered blocking state
[  196.797668][ T3046] bridge0: port 2(bridge_slave_1) entered forwarding state
[  196.849918][ T7746] EXT4-fs (loop0): 1 truncate cleaned up
[  196.854727][ T7754] loop6: detected capacity change from 0 to 16
[  196.864362][ T7746] EXT4-fs (loop0): mounted filesystem without journal. Opts: max_batch_time=0x000000000000000d,,errors=continue. Quota mode: none.
[  196.879441][ T3046] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  196.891280][ T7750] netlink: 4 bytes leftover after parsing attributes in process `syz.5.909'.
[  196.908259][   T25] audit: type=1800 audit(1769401543.287:25): pid=7746 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.906" name="file0" dev="loop0" ino=13 res=0 errno=0
[  196.908814][ T7746] EXT4-fs (loop0): shut down requested (1)
[  196.932163][ T7754] erofs: (device loop6): mounted with root inode @ nid 36.
[  196.951614][ T7752] netlink: 56 bytes leftover after parsing attributes in process `syz.5.909'.
[  196.961388][ T3046] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  196.998688][ T7747] EXT4-fs (loop1): mounted filesystem without journal. Opts: i_version,nogrpid,bh,,errors=continue. Quota mode: writeback.
[  197.021218][ T7747] ext4 filesystem being mounted at /205/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  197.046764][ T3046] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  197.095318][ T4311] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  197.118167][ T4311] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  197.186927][ T4311] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  197.201313][ T4311] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  197.210042][ T4311] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  197.219581][ T4311] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  197.266772][ T4311] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  197.282970][ T4379] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  197.344301][ T4379] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  197.359727][ T7691] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  197.409844][ T7773] loop5: detected capacity change from 0 to 512
[  197.494060][ T7773] EXT4-fs (loop5): Mount option "noacl" will be removed by 3.5
[  197.494060][ T7773] Contact linux-ext4@vger.kernel.org if you think we should keep it.
[  197.494060][ T7773] 
[  197.596866][ T7773] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[  197.957199][ T7773] [EXT4 FS bs=4096, gc=1, bpg=3008, ipg=32, mo=80026029, mo2=0000]
[  198.284173][ T7773] EXT4-fs (loop5): 1 truncate cleaned up
[  198.337877][ T4379] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  198.355969][ T4379] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  198.385761][ T4330] Quota error (device loop5): free_dqentry: Quota structure has offset to other block (1) than it should (5)
[  198.388231][   T21] Bluetooth: hci4: command 0x041b tx timeout
[  198.405010][ T7773] EXT4-fs (loop5): mounted filesystem without journal. Opts: nobarrier,noblock_validity,nombcache,acl,barrier=0x000000000000000c,noacl,errors=remount-ro,nodelalloc,resgid=0x00000000000000002. Quota mode: writeback.
[  198.452333][ T7691] 8021q: adding VLAN 0 to HW filter on device batadv0
[  198.472039][ T4330] EXT4-fs error (device loop5): ext4_release_dquot:6270: comm kworker/u4:9: Failed to release dquot type 1
[  198.520616][ T4330] EXT4-fs (loop5): Remounting filesystem read-only
[  199.397701][ T7806] loop5: detected capacity change from 0 to 512
[  199.457024][ T7806] EXT4-fs (loop5): 1 truncate cleaned up
[  199.469942][ T7806] EXT4-fs (loop5): mounted filesystem without journal. Opts: max_batch_time=0x000000000000000d,,errors=continue. Quota mode: none.
[  199.509059][ T4330] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  199.520228][   T25] audit: type=1800 audit(1769401545.897:26): pid=7806 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.920" name="file0" dev="loop5" ino=13 res=0 errno=0
[  199.548692][ T7806] EXT4-fs (loop5): shut down requested (1)
[  199.556938][ T4330] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  199.603539][ T4330] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  199.613768][ T4330] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  199.624738][ T7691] device veth0_vlan entered promiscuous mode
[  199.632230][ T4330] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  199.640893][ T4330] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  199.654647][ T7691] device veth1_vlan entered promiscuous mode
[  199.694658][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  199.703526][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  199.732083][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  199.740421][ T1109] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  199.741140][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  199.766333][ T7691] device veth0_macvtap entered promiscuous mode
[  199.777919][ T7691] device veth1_macvtap entered promiscuous mode
[  199.806931][ T7691] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  199.819831][ T7691] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  199.844076][ T7691] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  199.855845][ T7691] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  199.867867][ T7691] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  199.886471][ T7691] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  199.896458][ T7691] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  199.907391][ T7691] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  199.923929][ T7691] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  199.936926][ T7691] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  199.951555][ T7691] batman_adv: batadv0: Interface activated: batadv_slave_0
[  199.959503][ T4330] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  199.971844][ T4330] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  199.979942][ T4330] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  199.992770][ T4330] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  200.022511][ T1109] usb 1-1: Using ep0 maxpacket: 8
[  200.037838][ T7691] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  200.049052][ T7691] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  200.062288][ T7691] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  200.078318][ T7691] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  200.090073][ T7691] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  200.094531][ T7829] loop5: detected capacity change from 0 to 512
[  200.106688][ T7691] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  200.116965][ T7691] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  200.137636][ T7691] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  200.149076][ T7691] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  200.176240][ T7691] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  200.197457][ T7691] batman_adv: batadv0: Interface activated: batadv_slave_1
[  200.237027][ T7829] EXT4-fs (loop5): 1 truncate cleaned up
[  200.250250][ T7829] EXT4-fs (loop5): mounted filesystem without journal. Opts: max_batch_time=0x000000000000000d,,errors=continue. Quota mode: none.
[  200.264431][ T1109] usb 1-1: unable to get BOS descriptor or descriptor too short
[  200.275563][ T4330] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  200.281731][ T7832] loop6: detected capacity change from 0 to 256
[  200.294222][ T4330] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  200.326292][ T7691] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  200.335238][ T7691] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  200.344163][ T7691] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  200.353616][ T7691] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  200.370654][ T1109] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  200.418045][ T7832] exFAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  200.430220][ T1109] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 2
[  200.451227][ T2414] Bluetooth: hci4: command 0x040f tx timeout
[  200.466328][ T1109] usb 1-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  200.475270][  T154] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  200.480719][ T7832] exFAT-fs (loop6): Medium has reported failures. Some data may be lost.
[  200.523056][  T154] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  200.539214][ T4379] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  200.550464][ T4330] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  200.564791][ T4379] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  200.574221][ T7832] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  200.593551][ T4330] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  200.830637][ T1109] usb 1-1: language id specifier not provided by device, defaulting to English
[  200.980752][ T1109] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  201.000035][ T1109] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  201.030324][ T1109] usb 1-1: Product: syz
[  201.067492][ T1109] usb 1-1: Manufacturer: syz
[  201.076862][ T1109] usb 1-1: SerialNumber: syz
[  201.098039][ T7848] netlink: 4 bytes leftover after parsing attributes in process `syz.7.934'.
[  201.156831][ T7849] netlink: 56 bytes leftover after parsing attributes in process `syz.7.934'.
[  201.377967][ T1109] usb 1-1: USB disconnect, device number 13
[  201.502097][ T7859] input: syz1 as /devices/virtual/input/input17
[  202.515225][ T7883] loop0: detected capacity change from 0 to 512
[  202.531374][ T4231] Bluetooth: hci4: command 0x0419 tx timeout
[  202.544073][ T7884] loop1: detected capacity change from 0 to 512
[  202.598407][ T7883] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpquota,nobarrier,noload,,errors=continue. Quota mode: writeback.
[  202.643188][ T7884] EXT4-fs (loop1): 1 truncate cleaned up
[  202.655696][ T7884] EXT4-fs (loop1): mounted filesystem without journal. Opts: max_batch_time=0x000000000000000d,,errors=continue. Quota mode: none.
[  202.657198][ T7883] ext4 filesystem being mounted at /181/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  202.737646][ T7883] EXT4-fs error (device loop0): __ext4_get_inode_loc:4327: comm syz.0.944: Invalid inode table block 34 in block_group 0
[  202.766343][ T7883] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5854: Corrupt filesystem
[  202.781912][ T7883] EXT4-fs error (device loop0): ext4_dirty_inode:6058: inode #15: comm syz.0.944: mark_inode_dirty error
[  202.799007][ T7883] EXT4-fs error (device loop0): ext4_map_blocks:629: inode #15: block 37: comm syz.0.944: lblock 0 mapped to illegal pblock 37 (length 1)
[  202.822133][ T7883] EXT4-fs error (device loop0): __ext4_get_inode_loc:4327: comm syz.0.944: Invalid inode table block 34 in block_group 0
[  202.842695][ T7883] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5854: Corrupt filesystem
[  202.856770][ T7883] EXT4-fs error (device loop0): ext4_alloc_file_blocks:4534: inode #15: comm syz.0.944: mark_inode_dirty error
[  202.909738][ T4379] EXT4-fs error (device loop0): __ext4_get_inode_loc:4327: comm kworker/u4:11: Invalid inode table block 34 in block_group 0
[  203.353263][ T7909] loop6: detected capacity change from 0 to 16
[  203.441202][ T7909] erofs: (device loop6): mounted with root inode @ nid 36.
[  203.609645][ T5187] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  203.629536][ T7918] loop6: detected capacity change from 0 to 8
[  203.713508][ T7918] SQUASHFS error: zstd decompression failed, data probably corrupt
[  203.726662][ T7918] SQUASHFS error: Failed to read block 0x4ec: -5
[  203.734554][ T7918] SQUASHFS error: Unable to read metadata cache entry [4ea]
[  203.742544][ T7918] SQUASHFS error: Unable to read inode 0x2011f
[  204.660272][ T5187] usb 8-1: Using ep0 maxpacket: 8
[  204.970889][ T5187] usb 8-1: unable to get BOS descriptor or descriptor too short
[  205.080829][ T5187] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  205.125052][ T5187] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 2
[  205.209461][ T5187] usb 8-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  205.497393][ T7943] loop5: detected capacity change from 0 to 512
[  205.499694][ T7942] loop6: detected capacity change from 0 to 1024
[  205.576082][ T7943] EXT4-fs (loop5): 1 truncate cleaned up
[  205.598805][ T7943] EXT4-fs (loop5): mounted filesystem without journal. Opts: max_batch_time=0x000000000000000d,,errors=continue. Quota mode: none.
[  205.752528][ T5187] usb 8-1: language id specifier not provided by device, defaulting to English
[  205.769959][ T7950] loop1: detected capacity change from 0 to 16
[  205.830315][ T7950] erofs: (device loop1): mounted with root inode @ nid 36.
[  205.882734][ T7951] blktrace: Concurrent blktraces are not allowed on loop13
[  206.411077][ T7953] loop7: detected capacity change from 0 to 8
[  206.430465][ T5187] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  206.442575][ T5187] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  206.458719][ T5187] usb 8-1: Product: syz
[  206.463104][    T7] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  206.486559][ T7953] SQUASHFS error: zstd decompression failed, data probably corrupt
[  206.506282][ T5187] usb 8-1: Manufacturer: syz
[  206.548203][ T7953] SQUASHFS error: Failed to read block 0x4ec: -5
[  206.556828][ T7956] loop1: detected capacity change from 0 to 512
[  206.561518][ T7953] SQUASHFS error: Unable to read metadata cache entry [4ea]
[  206.570669][ T5187] usb 8-1: can't set config #1, error -71
[  206.582502][ T5187] usb 8-1: USB disconnect, device number 2
[  206.597463][ T7953] SQUASHFS error: Unable to read inode 0x2011f
[  206.638101][ T7956] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  206.710346][    T7] usb 1-1: device descriptor read/64, error -71
[  206.721503][ T7956] EXT4-fs (loop1): shut down requested (0)
[  206.969792][ T7976] loop1: detected capacity change from 0 to 512
[  207.000399][    T7] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  207.000553][ T7971] netlink: 4 bytes leftover after parsing attributes in process `syz.6.971'.
[  207.024230][ T7976] EXT4-fs (loop1): Mount option "noacl" will be removed by 3.5
[  207.024230][ T7976] Contact linux-ext4@vger.kernel.org if you think we should keep it.
[  207.024230][ T7976] 
[  207.050951][ T7976] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  207.084852][ T7976] [EXT4 FS bs=4096, gc=1, bpg=3008, ipg=32, mo=80026029, mo2=0000]
[  207.097799][ T7976] EXT4-fs (loop1): 1 truncate cleaned up
[  207.104123][ T7976] EXT4-fs (loop1): mounted filesystem without journal. Opts: nobarrier,noblock_validity,nombcache,acl,barrier=0x000000000000000c,noacl,errors=remount-ro,nodelalloc,resgid=0x00000000000000002. Quota mode: writeback.
[  207.157023][ T4330] Quota error (device loop1): free_dqentry: Quota structure has offset to other block (1) than it should (5)
[  207.169061][ T4330] EXT4-fs error (device loop1): ext4_release_dquot:6270: comm kworker/u4:9: Failed to release dquot type 1
[  207.181484][ T4330] EXT4-fs (loop1): Remounting filesystem read-only
[  207.210349][    T7] usb 1-1: device descriptor read/64, error -71
[  207.304674][ T7981] UDF-fs: bad mount option "ÿ" or missing value
[  207.322075][ T7981] netlink: 'syz.1.976': attribute type 4 has an invalid length.
[  207.340945][    T7] usb usb1-port1: attempt power cycle
[  207.766497][ T7994] set_capacity_and_notify: 2 callbacks suppressed
[  207.766507][ T7994] loop6: detected capacity change from 0 to 512
[  207.780534][    T7] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[  207.910871][    T7] usb 1-1: device descriptor read/8, error -71
[  208.190699][    T7] usb 1-1: new high-speed USB device number 17 using dummy_hcd
[  208.368655][ T7994] EXT4-fs (loop6): 1 truncate cleaned up
[  208.393323][    T7] usb 1-1: device descriptor read/8, error -71
[  208.410343][ T7994] EXT4-fs (loop6): mounted filesystem without journal. Opts: max_batch_time=0x000000000000000d,,errors=continue. Quota mode: none.
[  208.436449][ T8000] loop7: detected capacity change from 0 to 16
[  208.489887][ T8000] erofs: (device loop7): mounted with root inode @ nid 36.
[  208.512511][    T7] usb usb1-port1: unable to enumerate USB device
[  208.548932][ T8004] loop1: detected capacity change from 0 to 8
[  208.629303][ T8004] SQUASHFS error: zstd decompression failed, data probably corrupt
[  208.637055][ T8008] loop7: detected capacity change from 0 to 512
[  208.656054][ T8004] SQUASHFS error: Failed to read block 0x4ec: -5
[  208.673037][ T8004] SQUASHFS error: Unable to read metadata cache entry [4ea]
[  208.699497][ T8004] SQUASHFS error: Unable to read inode 0x2011f
[  208.721981][ T8012] loop6: detected capacity change from 0 to 128
[  208.743331][ T8008] EXT4-fs (loop7): Mount option "noacl" will be removed by 3.5
[  208.743331][ T8008] Contact linux-ext4@vger.kernel.org if you think we should keep it.
[  208.743331][ T8008] 
[  208.764964][ T8008] EXT4-fs (loop7): feature flags set on rev 0 fs, running e2fsck is recommended
[  208.820333][ T8015] fuse: root generation should be zero
[  208.831856][ T8012] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  208.897946][ T8012] ext4 filesystem being mounted at /110/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  208.905754][ T8008] [EXT4 FS bs=4096, gc=1, bpg=3008, ipg=32, mo=80026029, mo2=0000]
[  208.965685][ T8008] EXT4-fs (loop7): 1 truncate cleaned up
[  208.994556][ T8008] EXT4-fs (loop7): mounted filesystem without journal. Opts: nobarrier,noblock_validity,nombcache,acl,barrier=0x000000000000000c,noacl,errors=remount-ro,nodelalloc,resgid=0x00000000000000002. Quota mode: writeback.
[  209.002018][ T4311] Quota error (device loop7): free_dqentry: Quota structure has offset to other block (1) than it should (5)
[  209.028240][ T4311] EXT4-fs error (device loop7): ext4_release_dquot:6270: comm kworker/u4:6: Failed to release dquot type 1
[  209.044250][ T4311] EXT4-fs (loop7): Remounting filesystem read-only
[  209.086860][  T144] Quota error (device loop7): free_dqentry: Quota structure has offset to other block (1) than it should (5)
[  209.105170][  T144] EXT4-fs error (device loop7): ext4_release_dquot:6270: comm kworker/u4:1: Failed to release dquot type 1
[  209.136906][  T144] EXT4-fs (loop7): Remounting filesystem read-only
[  209.190043][ T8026] binder: BINDER_SET_CONTEXT_MGR already set
[  209.197559][ T8026] binder: 8025:8026 ioctl 4018620d 200000000180 returned -16
[  209.266712][ T8023] loop6: detected capacity change from 0 to 512
[  209.343193][ T8023] EXT4-fs (loop6): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[  209.376141][ T8023] ext4 filesystem being mounted at /111/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  209.381566][ T8037] netlink: 4 bytes leftover after parsing attributes in process `syz.7.995'.
[  209.472715][ T8037] netlink: 48 bytes leftover after parsing attributes in process `syz.7.995'.
[  209.539174][ T8043] loop7: detected capacity change from 0 to 16
[  209.565713][ T8043] erofs: (device loop7): mounted with root inode @ nid 36.
[  209.757373][ T8054] loop7: detected capacity change from 0 to 512
[  209.798507][ T8056] loop0: detected capacity change from 0 to 512
[  209.926367][ T8056] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  209.942497][ T8058] binder: BINDER_SET_CONTEXT_MGR already set
[  209.948509][ T8058] binder: 8057:8058 ioctl 4018620d 200000000180 returned -16
[  209.955567][ T8056] EXT4-fs (loop0): 1 truncate cleaned up
[  209.962640][ T8054] EXT4-fs (loop7): Mount option "noacl" will be removed by 3.5
[  209.962640][ T8054] Contact linux-ext4@vger.kernel.org if you think we should keep it.
[  209.962640][ T8054] 
[  210.137210][ T8056] EXT4-fs (loop0): mounted filesystem without journal. Opts: noload,stripe=0x00000000000000dc,data_err=abort,noload,data_err=ignore,bsddf,,errors=continue. Quota mode: none.
[  210.317880][ T8054] EXT4-fs (loop7): feature flags set on rev 0 fs, running e2fsck is recommended
[  210.736778][ T8056] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz.0.1003: invalid indirect mapped block 4294901760 (level 0)
[  210.778035][ T8054] [EXT4 FS bs=4096, gc=1, bpg=3008, ipg=32, mo=80026029, mo2=0000]
[  210.802428][ T8056] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz.0.1003: invalid indirect mapped block 4294967295 (level 1)
[  210.804620][ T8073] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1008'.
[  211.089956][ T8054] EXT4-fs (loop7): 1 truncate cleaned up
[  211.114545][ T4330] Quota error (device loop7): free_dqentry: Quota structure has offset to other block (1) than it should (5)
[  211.213239][ T8054] EXT4-fs (loop7): mounted filesystem without journal. Opts: nobarrier,noblock_validity,nombcache,acl,barrier=0x000000000000000c,noacl,errors=remount-ro,nodelalloc,resgid=0x00000000000000002. Quota mode: writeback.
[  211.259745][ T4330] EXT4-fs error (device loop7): ext4_release_dquot:6270: comm kworker/u4:9: Failed to release dquot type 1
[  211.438061][ T8073] netlink: 48 bytes leftover after parsing attributes in process `syz.6.1008'.
[  211.468291][ T4330] EXT4-fs (loop7): Remounting filesystem read-only
[  211.556887][ T8077] loop1: detected capacity change from 0 to 16
[  211.582602][ T4330] Quota error (device loop7): free_dqentry: Quota structure has offset to other block (1) than it should (5)
[  211.605741][ T4330] EXT4-fs error (device loop7): ext4_release_dquot:6270: comm kworker/u4:9: Failed to release dquot type 1
[  211.618605][ T4330] EXT4-fs (loop7): Remounting filesystem read-only
[  211.625469][ T8077] erofs: (device loop1): mounted with root inode @ nid 36.
[  211.672287][ T8083] erofs: (device loop6): mounted with root inode @ nid 36.
[  211.755731][ T8089] binder: BINDER_SET_CONTEXT_MGR already set
[  211.791277][ T8089] binder: 8088:8089 ioctl 4018620d 200000000180 returned -16
[  212.805884][ T8099] set_capacity_and_notify: 1 callbacks suppressed
[  212.805898][ T8099] loop7: detected capacity change from 0 to 8192
[  212.843997][ T8107] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1022'.
[  212.854718][ T8107] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1022'.
[  212.974091][ T8112] loop0: detected capacity change from 0 to 512
[  213.248864][ T8112] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  213.663005][ T8099] FAT-fs (loop7): error, clusters badly computed (2 != 1)
[  213.681566][ T8112] EXT4-fs (loop0): 1 truncate cleaned up
[  213.705966][ T8112] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  213.716542][ T8099] FAT-fs (loop7): Filesystem has been set read-only
[  213.746636][ T8119] loop1: detected capacity change from 0 to 512
[  213.780230][   T25] audit: type=1800 audit(1769401560.157:27): pid=8112 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1024" name="file1" dev="loop0" ino=15 res=0 errno=0
[  213.855540][ T8119] EXT4-fs (loop1): Mount option "noacl" will be removed by 3.5
[  213.855540][ T8119] Contact linux-ext4@vger.kernel.org if you think we should keep it.
[  213.855540][ T8119] 
[  213.879769][ T8119] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  213.933089][ T8119] [EXT4 FS bs=4096, gc=1, bpg=3008, ipg=32, mo=80026029, mo2=0000]
[  213.945832][ T8119] EXT4-fs (loop1): 1 truncate cleaned up
[  213.958290][ T8119] EXT4-fs (loop1): mounted filesystem without journal. Opts: nobarrier,noblock_validity,nombcache,acl,barrier=0x000000000000000c,noacl,errors=remount-ro,nodelalloc,resgid=0x00000000000000002. Quota mode: writeback.
[  213.981501][ T4379] Quota error (device loop1): free_dqentry: Quota structure has offset to other block (1) than it should (5)
[  213.998008][ T4379] EXT4-fs error (device loop1): ext4_release_dquot:6270: comm kworker/u4:11: Failed to release dquot type 1
[  214.011091][ T4379] EXT4-fs (loop1): Remounting filesystem read-only
[  214.045475][ T4379] Quota error (device loop1): free_dqentry: Quota structure has offset to other block (1) than it should (5)
[  214.068161][ T4379] EXT4-fs error (device loop1): ext4_release_dquot:6270: comm kworker/u4:11: Failed to release dquot type 1
[  214.081508][ T4379] EXT4-fs (loop1): Remounting filesystem read-only
[  214.562218][ T8153] loop0: detected capacity change from 0 to 512
[  214.604551][ T8153] EXT4-fs (loop0): 1 truncate cleaned up
[  214.611034][ T8153] EXT4-fs (loop0): mounted filesystem without journal. Opts: max_batch_time=0x000000000000000d,,errors=continue. Quota mode: none.
[  214.629923][   T25] audit: type=1800 audit(1769401561.007:28): pid=8153 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1039" name="file0" dev="loop0" ino=13 res=0 errno=0
[  215.389307][ T8164] loop1: detected capacity change from 0 to 512
[  215.533410][ T8164] EXT4-fs (loop1): Mount option "noacl" will be removed by 3.5
[  215.533410][ T8164] Contact linux-ext4@vger.kernel.org if you think we should keep it.
[  215.533410][ T8164] 
[  215.617026][ T8164] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  215.656138][ T8164] [EXT4 FS bs=4096, gc=1, bpg=3008, ipg=32, mo=80026029, mo2=0000]
[  215.672445][ T8182] loop0: detected capacity change from 0 to 512
[  215.680364][ T8164] EXT4-fs (loop1): 1 truncate cleaned up
[  215.686015][ T8164] EXT4-fs (loop1): mounted filesystem without journal. Opts: nobarrier,noblock_validity,nombcache,acl,barrier=0x000000000000000c,noacl,errors=remount-ro,nodelalloc,resgid=0x00000000000000002. Quota mode: writeback.
[  215.722162][ T4379] Quota error (device loop1): free_dqentry: Quota structure has offset to other block (1) than it should (5)
[  215.749627][ T4379] EXT4-fs error (device loop1): ext4_release_dquot:6270: comm kworker/u4:11: Failed to release dquot type 1
[  215.775779][ T4379] EXT4-fs (loop1): Remounting filesystem read-only
[  215.787120][ T4379] Quota error (device loop1): free_dqentry: Quota structure has offset to other block (1) than it should (5)
[  215.798900][ T4379] EXT4-fs error (device loop1): ext4_release_dquot:6270: comm kworker/u4:11: Failed to release dquot type 1
[  215.830806][ T4379] EXT4-fs (loop1): Remounting filesystem read-only
[  215.864721][ T8182] EXT4-fs (loop0): 1 truncate cleaned up
[  215.895088][ T8182] EXT4-fs (loop0): mounted filesystem without journal. Opts: max_batch_time=0x000000000000000d,,errors=continue. Quota mode: none.
[  215.957555][ T8186] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[  215.969501][ T8186] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[  215.986344][ T8182] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
[  216.000364][ T4238] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  216.008566][ T8182] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2497011243 (4994022486 ns) > initial count (200000 ns). Using initial count to start timer.
[  216.074544][ T8196] loop6: detected capacity change from 0 to 512
[  216.120274][ T8196] EXT4-fs (loop6): 1 truncate cleaned up
[  216.126049][ T8196] EXT4-fs (loop6): mounted filesystem without journal. Opts: max_batch_time=0x000000000000000d,,errors=continue. Quota mode: none.
[  216.146336][   T25] audit: type=1800 audit(1769401562.527:29): pid=8196 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.1053" name="file0" dev="loop6" ino=13 res=0 errno=0
[  216.357420][ T4238] usb 8-1: Using ep0 maxpacket: 16
[  216.915014][ T4238] usb 8-1: config 0 has an invalid interface number: 132 but max is 0
[  217.270535][ T4238] usb 8-1: config 0 has no interface number 0
[  217.278795][ T4238] usb 8-1: config 0 interface 132 altsetting 0 bulk endpoint 0x84 has invalid maxpacket 16
[  217.484345][ T4238] usb 8-1: New USB device found, idVendor=7dd7, idProduct=902f, bcdDevice=a3.2c
[  217.514423][ T4238] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  217.538872][ T4238] usb 8-1: Product: syz
[  217.546465][ T4238] usb 8-1: Manufacturer: syz
[  217.551575][ T4238] usb 8-1: SerialNumber: syz
[  217.557865][ T4238] usb 8-1: config 0 descriptor??
[  217.580640][ T8184] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  217.598175][ T8204] bridge0: port 2(bridge_slave_1) entered disabled state
[  217.605635][ T8204] bridge0: port 1(bridge_slave_0) entered disabled state
[  217.889047][ T8204] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  217.923390][ T8204] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  217.940389][ T4238] usb 8-1: MIDIStreaming interface descriptor not found
[  217.957905][ T4238] usb 8-1: USB disconnect, device number 3
[  218.208446][ T4174] udevd[4174]: error opening ATTR{/sys/devices/platform/dummy_hcd.7/usb8/8-1/8-1:0.132/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  218.265065][ T8204] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  218.274078][ T8204] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  218.284008][ T8204] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  218.293972][ T8204] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  218.492132][ T8223] loop7: detected capacity change from 0 to 512
[  218.511878][ T8231] loop0: detected capacity change from 0 to 512
[  218.569374][ T8231] EXT4-fs (loop0): 1 truncate cleaned up
[  218.575985][ T8231] EXT4-fs (loop0): mounted filesystem without journal. Opts: max_batch_time=0x000000000000000d,,errors=continue. Quota mode: none.
[  218.622537][ T8223] EXT4-fs (loop7): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[  218.659943][   T25] audit: type=1800 audit(1769401565.037:30): pid=8231 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1064" name="file0" dev="loop0" ino=13 res=0 errno=0
[  218.781656][ T8223] ext4 filesystem being mounted at /32/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  219.235156][ T8249] binder: BINDER_SET_CONTEXT_MGR already set
[  219.246528][ T8249] binder: 8248:8249 ioctl 4018620d 200000000180 returned -16
[  220.543202][ T8273] loop1: detected capacity change from 0 to 512
[  220.595665][ T8273] EXT4-fs (loop1): Ignoring removed bh option
[  220.622798][ T8278] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1078'.
[  220.673411][ T8273] EXT4-fs (loop1): mounted filesystem without journal. Opts: i_version,nogrpid,bh,,errors=continue. Quota mode: writeback.
[  220.729274][ T8282] loop0: detected capacity change from 0 to 128
[  220.734249][ T8273] ext4 filesystem being mounted at /247/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  220.847426][ T8282] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  220.896514][ T8282] ext4 filesystem being mounted at /209/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  220.952460][ T8284] loop6: detected capacity change from 0 to 8192
[  221.151402][ T8284] FAT-fs (loop6): error, clusters badly computed (2 != 1)
[  221.213087][ T8284] FAT-fs (loop6): Filesystem has been set read-only
[  221.935411][ T8305] loop5: detected capacity change from 0 to 512
[  221.970770][ T8305] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[  222.031653][ T8305] EXT4-fs (loop5): 1 truncate cleaned up
[  222.048388][ T8305] EXT4-fs (loop5): mounted filesystem without journal. Opts: noload,stripe=0x00000000000000dc,data_err=abort,noload,data_err=ignore,bsddf,,errors=continue. Quota mode: none.
[  222.636687][ T8305] EXT4-fs error (device loop5): ext4_free_branches:1030: inode #13: comm syz.5.1088: invalid indirect mapped block 4294901760 (level 0)
[  222.708974][ T8305] EXT4-fs error (device loop5): ext4_free_branches:1030: inode #13: comm syz.5.1088: invalid indirect mapped block 4294967295 (level 1)
[  222.864392][ T8323] loop6: detected capacity change from 0 to 512
[  223.140124][ T8335] loop0: detected capacity change from 0 to 512
[  223.394964][ T8323] EXT4-fs (loop6): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[  223.429395][ T8336] input: syz1 as /devices/virtual/input/input18
[  223.500467][ T8323] ext4 filesystem being mounted at /130/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  223.518261][ T8335] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  224.912922][ T8361] loop7: detected capacity change from 0 to 512
[  224.949857][ T8361] EXT4-fs (loop7): mounting ext3 file system using the ext4 subsystem
[  225.444819][ T8361] EXT4-fs (loop7): 1 truncate cleaned up
[  225.574066][ T8361] EXT4-fs (loop7): mounted filesystem without journal. Opts: noload,stripe=0x00000000000000dc,data_err=abort,noload,data_err=ignore,bsddf,,errors=continue. Quota mode: none.
[  225.839053][ T8372] loop7: detected capacity change from 0 to 512
[  226.012181][ T8377] loop0: detected capacity change from 0 to 8
[  226.023801][ T8372] EXT4-fs (loop7): Mount option "noacl" will be removed by 3.5
[  226.023801][ T8372] Contact linux-ext4@vger.kernel.org if you think we should keep it.
[  226.023801][ T8372] 
[  226.050134][ T8374] input: syz1 as /devices/virtual/input/input19
[  226.070404][ T8372] EXT4-fs (loop7): feature flags set on rev 0 fs, running e2fsck is recommended
[  226.091569][ T8377] SQUASHFS error: zstd decompression failed, data probably corrupt
[  226.123050][ T8377] SQUASHFS error: Failed to read block 0x4ec: -5
[  226.130748][ T8377] SQUASHFS error: Unable to read metadata cache entry [4ea]
[  226.138044][ T8377] SQUASHFS error: Unable to read inode 0x2011f
[  226.173633][ T8372] [EXT4 FS bs=4096, gc=1, bpg=3008, ipg=32, mo=80026029, mo2=0000]
[  226.207263][ T8372] EXT4-fs (loop7): 1 truncate cleaned up
[  226.220672][  T144] Quota error (device loop7): free_dqentry: Quota structure has offset to other block (1) than it should (5)
[  226.231936][ T8372] EXT4-fs (loop7): mounted filesystem without journal. Opts: nobarrier,noblock_validity,nombcache,acl,barrier=0x000000000000000c,noacl,errors=remount-ro,nodelalloc,resgid=0x00000000000000002. Quota mode: writeback.
[  226.266218][  T144] EXT4-fs error (device loop7): ext4_release_dquot:6270: comm kworker/u4:1: Failed to release dquot type 1
[  226.291122][  T144] EXT4-fs (loop7): Remounting filesystem read-only
[  226.322133][  T144] Quota error (device loop7): free_dqentry: Quota structure has offset to other block (1) than it should (5)
[  226.340514][ T8383] loop6: detected capacity change from 0 to 512
[  226.346859][  T144] EXT4-fs error (device loop7): ext4_release_dquot:6270: comm kworker/u4:1: Failed to release dquot type 1
[  226.362699][  T144] EXT4-fs (loop7): Remounting filesystem read-only
[  226.462144][ T8383] EXT4-fs error (device loop6): ext4_fill_super:4866: inode #2: comm syz.6.1110: inode has both inline data and extents flags
[  226.491610][ T8383] EXT4-fs (loop6): get root inode failed
[  226.502515][ T8387] loop7: detected capacity change from 0 to 512
[  226.503648][ T8383] EXT4-fs (loop6): mount failed
[  226.512582][ T8387] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  226.544699][ T8387] EXT4-fs (loop7): 1 truncate cleaned up
[  226.565784][ T8390] loop0: detected capacity change from 0 to 512
[  226.569112][ T8392] loop1: detected capacity change from 0 to 256
[  226.572357][ T8387] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  226.604377][ T8392] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  226.615769][   T25] audit: type=1800 audit(1769401572.997:31): pid=8387 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.1111" name="file1" dev="loop7" ino=15 res=0 errno=0
[  226.635830][ T8392] exFAT-fs (loop1): Medium has reported failures. Some data may be lost.
[  226.640581][ T8390] EXT4-fs (loop0): Ignoring removed bh option
[  226.659896][ T8392] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  226.817092][ T8390] EXT4-fs (loop0): mounted filesystem without journal. Opts: i_version,nogrpid,bh,,errors=continue. Quota mode: writeback.
[  226.842160][ T8390] ext4 filesystem being mounted at /219/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  226.879140][ T8404] loop5: detected capacity change from 0 to 16
[  226.949744][ T8404] erofs: (device loop5): mounted with root inode @ nid 36.
[  226.955170][ T8406] loop6: detected capacity change from 0 to 1024
[  227.325859][ T8420] blktrace: Concurrent blktraces are not allowed on loop13
[  227.815542][ T8423] loop5: detected capacity change from 0 to 512
[  227.921469][ T8423] EXT4-fs (loop5): Mount option "noacl" will be removed by 3.5
[  227.921469][ T8423] Contact linux-ext4@vger.kernel.org if you think we should keep it.
[  227.921469][ T8423] 
[  227.942700][ T8421] EXT4-fs (loop0): 1 truncate cleaned up
[  227.948351][ T8421] EXT4-fs (loop0): mounted filesystem without journal. Opts: max_batch_time=0x000000000000000d,,errors=continue. Quota mode: none.
[  228.077965][ T8423] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[  228.097250][ T8429] SQUASHFS error: zstd decompression failed, data probably corrupt
[  228.113637][   T25] audit: type=1800 audit(1769401574.497:32): pid=8421 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1119" name="file0" dev="loop0" ino=13 res=0 errno=0
[  228.133995][ T8429] SQUASHFS error: Failed to read block 0x4ec: -5
[  228.142560][ T8429] SQUASHFS error: Unable to read metadata cache entry [4ea]
[  228.155828][ T8421] EXT4-fs warning (device loop0): ext4_update_dynamic_rev:1062: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  228.159079][ T8429] SQUASHFS error: Unable to read inode 0x2011f
[  228.171847][ T8421] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.1119: bg 0: block 465: padding at end of block bitmap is not set
[  228.192667][ T8421] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6194: Corrupt filesystem
[  228.211120][ T8421] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz.0.1119: invalid indirect mapped block 234881024 (level 0)
[  228.245897][ T8423] [EXT4 FS bs=4096, gc=1, bpg=3008, ipg=32, mo=80026029, mo2=0000]
[  228.314678][ T8423] EXT4-fs (loop5): 1 truncate cleaned up
[  228.330874][ T8423] EXT4-fs (loop5): mounted filesystem without journal. Opts: nobarrier,noblock_validity,nombcache,acl,barrier=0x000000000000000c,noacl,errors=remount-ro,nodelalloc,resgid=0x00000000000000002. Quota mode: writeback.
[  228.355858][  T154] Quota error (device loop5): free_dqentry: Quota structure has offset to other block (1) than it should (5)
[  228.369115][  T154] EXT4-fs error (device loop5): ext4_release_dquot:6270: comm kworker/u4:2: Failed to release dquot type 1
[  228.403697][ T8433] input: syz1 as /devices/virtual/input/input20
[  228.438595][  T154] EXT4-fs (loop5): Remounting filesystem read-only
[  228.515052][ T8441] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  228.551801][ T8441] EXT4-fs (loop0): 1 truncate cleaned up
[  228.570147][ T8441] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  228.578760][ T4765] Quota error (device loop5): free_dqentry: Quota structure has offset to other block (1) than it should (5)
[  228.643365][ T4765] EXT4-fs error (device loop5): ext4_release_dquot:6270: comm kworker/u4:12: Failed to release dquot type 1
[  228.714040][ T8444] exFAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  228.724922][ T4765] EXT4-fs (loop5): Remounting filesystem read-only
[  228.789296][ T8444] exFAT-fs (loop6): Medium has reported failures. Some data may be lost.
[  228.809215][ T8444] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  229.110405][ T8452] EXT4-fs (loop0): Ignoring removed bh option
[  229.363353][ T8452] EXT4-fs (loop0): mounted filesystem without journal. Opts: i_version,nogrpid,bh,,errors=continue. Quota mode: writeback.
[  229.559172][ T8452] ext4 filesystem being mounted at /223/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  229.867326][ T8468] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  230.043057][ T8468] EXT4-fs (loop1): 1 truncate cleaned up
[  230.048812][ T8468] EXT4-fs (loop1): mounted filesystem without journal. Opts: noload,stripe=0x00000000000000dc,data_err=abort,noload,data_err=ignore,bsddf,,errors=continue. Quota mode: none.
[  230.323178][ T8477] set_capacity_and_notify: 6 callbacks suppressed
[  230.323192][ T8477] loop7: detected capacity change from 0 to 512
[  230.375357][ T8477] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  230.432572][ T8477] EXT4-fs (loop7): 1 truncate cleaned up
[  230.441453][ T8477] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  230.529968][ T8489] loop1: detected capacity change from 0 to 256
[  230.577129][ T8491] loop7: detected capacity change from 0 to 128
[  230.611527][ T8489] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  230.650454][ T8491] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  230.659839][ T8489] exFAT-fs (loop1): Medium has reported failures. Some data may be lost.
[  230.678955][ T8491] ext4 filesystem being mounted at /47/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  230.745857][ T8489] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  230.776591][ T4828] udevd[4828]: incorrect ext4 checksum on /dev/loop7
[  231.045250][ T8499] input: syz1 as /devices/virtual/input/input21
[  232.105998][ T8519] loop6: detected capacity change from 0 to 512
[  232.166027][ T8519] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  232.307667][ T8522] loop5: detected capacity change from 0 to 512
[  232.336436][ T8519] EXT4-fs (loop6): 1 truncate cleaned up
[  232.388134][ T8519] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  232.644206][ T8522] EXT4-fs (loop5): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[  232.802267][ T1109] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[  232.819451][ T8522] ext4 filesystem being mounted at /141/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  232.961231][ T8530] loop1: detected capacity change from 0 to 1024
[  233.085171][ T8530] hfsplus: invalid xattr key length: 0
[  233.100397][ T1109] usb 8-1: Using ep0 maxpacket: 32
[  233.142698][ T8534] binder: BINDER_SET_CONTEXT_MGR bad uid 0 != 60929
[  233.155616][ T8534] binder: 8533:8534 ioctl 4018620d 2000000000c0 returned -1
[  233.166600][ T4765] hfsplus: b-tree write err: -5, ino 8
[  233.181029][ T8534] binder: BINDER_SET_CONTEXT_MGR bad uid 0 != 60929
[  233.187857][ T8534] binder: 8533:8534 ioctl 4018620d 200000000180 returned -1
[  233.228478][ T1109] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  233.251348][ T1109] usb 8-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  233.276915][ T1109] usb 8-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  233.287322][ T8536] loop5: detected capacity change from 0 to 16
[  233.315423][ T1109] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  233.331896][ T8536] erofs: (device loop5): mounted with root inode @ nid 36.
[  233.358807][ T1109] usb 8-1: config 0 descriptor??
[  233.422465][ T1109] usbhid 8-1:0.0: couldn't find an input interrupt endpoint
[  233.639792][ T8543] input: syz1 as /devices/virtual/input/input22
[  234.566986][ T8561] loop5: detected capacity change from 0 to 512
[  234.628643][ T8561] EXT4-fs (loop5): 1 truncate cleaned up
[  234.634989][ T8561] EXT4-fs (loop5): mounted filesystem without journal. Opts: max_batch_time=0x000000000000000d,,errors=continue. Quota mode: none.
[  234.679086][ T8571] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  234.728940][ T8573] loop1: detected capacity change from 0 to 16
[  234.779421][ T8573] erofs: (device loop1): mounted with root inode @ nid 36.
[  234.800634][ T8575] loop0: detected capacity change from 0 to 16
[  234.824405][ T8575] erofs: (device loop0): mounted with root inode @ nid 36.
[  235.628798][   T21] usb 8-1: USB disconnect, device number 4
[  236.286677][ T8590] input: syz1 as /devices/virtual/input/input23
[  236.336879][ T8600] loop1: detected capacity change from 0 to 512
[  236.374705][ T8602] loop5: detected capacity change from 0 to 512
[  236.387121][ T8600] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  236.407193][ T8600] EXT4-fs (loop1): 1 truncate cleaned up
[  236.413352][ T8600] EXT4-fs (loop1): mounted filesystem without journal. Opts: noload,stripe=0x00000000000000dc,data_err=abort,noload,data_err=ignore,bsddf,,errors=continue. Quota mode: none.
[  236.476830][ T8602] EXT4-fs (loop5): 1 truncate cleaned up
[  236.484748][ T8602] EXT4-fs (loop5): mounted filesystem without journal. Opts: max_batch_time=0x000000000000000d,,errors=continue. Quota mode: none.
[  236.871153][ T8618] loop0: detected capacity change from 0 to 16
[  236.898923][ T8618] erofs: (device loop0): mounted with root inode @ nid 36.
[  237.740163][ T8633] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  237.790432][   T26] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[  237.938397][ T8641] loop1: detected capacity change from 0 to 8192
[  238.060585][   T26] usb 8-1: Using ep0 maxpacket: 32
[  238.120257][ T1109] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  238.200470][   T26] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  238.220283][   T26] usb 8-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  238.250289][   T26] usb 8-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  238.280760][   T26] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  238.296803][   T26] usb 8-1: config 0 descriptor??
[  238.361958][   T26] usbhid 8-1:0.0: couldn't find an input interrupt endpoint
[  238.640348][ T1109] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  238.649424][ T1109] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  238.688513][ T1109] usb 6-1: Product: syz
[  238.693123][ T1109] usb 6-1: Manufacturer: syz
[  238.697718][ T1109] usb 6-1: SerialNumber: syz
[  238.863620][ T8656] loop0: detected capacity change from 0 to 256
[  238.886448][ T8656] exFAT-fs (loop0): failed to load upcase table (idx : 0x0001207b, chksum : 0x1e8dde4d, utbl_chksum : 0xe619d30d)
[  239.021351][ T8658] loop6: detected capacity change from 0 to 512
[  239.237751][ T8658] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  239.760144][ T8667] loop0: detected capacity change from 0 to 512
[  239.897664][ T8667] EXT4-fs (loop0): 1 truncate cleaned up
[  239.903677][ T8667] EXT4-fs (loop0): mounted filesystem without journal. Opts: max_batch_time=0x000000000000000d,,errors=continue. Quota mode: none.
[  240.190676][ T1109] cdc_ncm 6-1:1.0: MAC-Address: 42:42:42:42:42:42
[  240.218259][ T1109] cdc_ncm 6-1:1.0: dwNtbInMaxSize=2047 is too small. Using 2048
[  240.449107][ T1109] cdc_ncm 6-1:1.0: setting rx_max = 2048
[  240.561395][   T21] usb 8-1: USB disconnect, device number 5
[  240.580393][ T1109] cdc_ncm 6-1:1.0: setting tx_max = 184
[  240.630896][ T1109] cdc_ncm 6-1:1.0 usb0: register 'cdc_ncm' at usb-dummy_hcd.5-1, CDC NCM, 42:42:42:42:42:42
[  240.743449][ T1109] usb 6-1: USB disconnect, device number 5
[  240.771059][ T1109] cdc_ncm 6-1:1.0 usb0: unregister 'cdc_ncm' usb-dummy_hcd.5-1, CDC NCM
[  240.911074][ T8682] loop0: detected capacity change from 0 to 8
[  241.016674][ T8682] SQUASHFS error: zstd decompression failed, data probably corrupt
[  241.072674][ T8688] loop1: detected capacity change from 0 to 128
[  241.079187][ T8682] SQUASHFS error: Failed to read block 0x4ec: -5
[  241.085795][ T8682] SQUASHFS error: Unable to read metadata cache entry [4ea]
[  241.093593][ T8682] SQUASHFS error: Unable to read inode 0x2011f
[  241.429399][ T8688] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  241.662037][ T8688] ext4 filesystem being mounted at /275/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  242.008303][ T8709] loop0: detected capacity change from 0 to 512
[  242.180497][ T8709] EXT4-fs (loop0): Test dummy encryption mode enabled
[  242.210302][ T8709] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  242.272410][ T8709] EXT4-fs error (device loop0): ext4_orphan_get:1426: comm syz.0.1208: bad orphan inode 131083
[  242.291013][ T8709] EXT4-fs (loop0): mounted filesystem without journal. Opts: test_dummy_encryption,init_itable,noload,,errors=continue. Quota mode: none.
[  242.679064][ T8731] loop0: detected capacity change from 0 to 512
[  242.743057][ T8731] EXT4-fs (loop0): 1 truncate cleaned up
[  242.776467][ T8731] EXT4-fs (loop0): mounted filesystem without journal. Opts: max_batch_time=0x000000000000000d,,errors=continue. Quota mode: none.
[  242.905381][ T8731] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2497011243 (4994022486 ns) > initial count (1971107832 ns). Using initial count to start timer.
[  243.064524][ T8743] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1212'.
[  243.392921][ T8759] loop1: detected capacity change from 0 to 512
[  243.420394][ T2414] usb 1-1: new high-speed USB device number 18 using dummy_hcd
[  243.650374][ T8759] EXT4-fs (loop1): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[  243.680603][ T2414] usb 1-1: Using ep0 maxpacket: 32
[  243.815425][ T2414] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  243.925495][ T2414] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  243.974848][ T8759] ext4 filesystem being mounted at /279/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  244.011801][ T2414] usb 1-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  244.049701][ T2414] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  244.067593][ T2414] usb 1-1: config 0 descriptor??
[  244.160297][ T2414] usbhid 1-1:0.0: couldn't find an input interrupt endpoint
[  244.229766][ T8774] loop6: detected capacity change from 0 to 8192
[  244.295872][ T8779] loop7: detected capacity change from 0 to 8192
[  244.369512][ T8781] loop1: detected capacity change from 0 to 512
[  244.437786][ T8781] EXT4-fs (loop1): 1 truncate cleaned up
[  244.446853][ T8781] EXT4-fs (loop1): mounted filesystem without journal. Opts: max_batch_time=0x000000000000000d,,errors=continue. Quota mode: none.
[  244.564710][ T8786] loop6: detected capacity change from 0 to 2048
[  244.581065][ T8781] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2497011243 (4994022486 ns) > initial count (1971107832 ns). Using initial count to start timer.
[  244.611143][ T8786] UDF-fs: bad mount option "volume=00000000000tÒÕ’" or missing value
[  244.818679][ T8797] binder: BINDER_SET_CONTEXT_MGR bad uid 0 != 60929
[  244.840488][ T8797] binder: 8796:8797 ioctl 4018620d 200000000180 returned -1
[  244.922531][ T8800] loop1: detected capacity change from 0 to 256
[  244.960591][ T8800] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  245.018697][ T8800] exFAT-fs (loop1): Medium has reported failures. Some data may be lost.
[  245.066587][ T8800] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  245.360274][   T26] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  245.602995][ T8814] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1233'.
[  245.613617][ T8814] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1233'.
[  245.623102][   T26] usb 6-1: Using ep0 maxpacket: 8
[  245.678721][ T8816] loop7: detected capacity change from 0 to 128
[  245.712068][ T8816] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  245.728811][ T8816] ext4 filesystem being mounted at /60/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  245.790531][   T26] usb 6-1: unable to get BOS descriptor or descriptor too short
[  245.900499][   T26] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  245.926967][   T26] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 2
[  245.942424][   T26] usb 6-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  246.129113][ T4231] usb 1-1: USB disconnect, device number 18
[  246.250612][   T26] usb 6-1: language id specifier not provided by device, defaulting to English
[  246.415244][   T26] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  246.435323][   T26] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  246.444985][   T26] usb 6-1: Product: syz
[  246.451185][   T26] usb 6-1: Manufacturer: syz
[  246.458283][   T26] usb 6-1: SerialNumber: syz
[  246.768895][   T26] usb 6-1: USB disconnect, device number 6
[  246.870984][ T8845] loop7: detected capacity change from 0 to 512
[  246.923834][ T8845] EXT4-fs (loop7): Test dummy encryption mode enabled
[  246.939534][ T8845] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  246.996770][ T8845] EXT4-fs error (device loop7): ext4_orphan_get:1426: comm syz.7.1243: bad orphan inode 131083
[  247.026536][ T8845] EXT4-fs (loop7): mounted filesystem without journal. Opts: test_dummy_encryption,init_itable,noload,,errors=continue. Quota mode: none.
[  247.167641][ T8851] loop0: detected capacity change from 0 to 256
[  247.233281][ T8851] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  247.300330][ T8851] exFAT-fs (loop0): Medium has reported failures. Some data may be lost.
[  247.405398][ T8857] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1248'.
[  247.415722][ T8857] netlink: 48 bytes leftover after parsing attributes in process `syz.7.1248'.
[  247.510705][ T8851] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  247.751329][    T7] usb 8-1: new high-speed USB device number 6 using dummy_hcd
[  248.020425][    T7] usb 8-1: Using ep0 maxpacket: 32
[  248.150621][    T7] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  248.200775][ T8867] loop0: detected capacity change from 0 to 8
[  248.233432][ T8867] SQUASHFS error: zstd decompression failed, data probably corrupt
[  248.270527][ T8867] SQUASHFS error: Failed to read block 0x4ec: -5
[  248.285983][ T8867] SQUASHFS error: Unable to read metadata cache entry [4ea]
[  248.299195][    T7] usb 8-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  248.312528][    T7] usb 8-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  248.325052][    T7] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  248.340397][ T8867] SQUASHFS error: Unable to read inode 0x2011f
[  248.347802][    T7] usb 8-1: config 0 descriptor??
[  248.394833][    T7] usbhid 8-1:0.0: couldn't find an input interrupt endpoint
[  248.534913][ T8874] loop1: detected capacity change from 0 to 1024
[  248.654452][ T8874] hfsplus: invalid xattr key length: 0
[  248.714755][ T8878] loop0: detected capacity change from 0 to 512
[  248.728000][ T4311] hfsplus: b-tree write err: -5, ino 8
[  248.728121][ T8878] EXT4-fs (loop0): Test dummy encryption mode enabled
[  248.743092][ T8878] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  248.767153][ T8878] EXT4-fs error (device loop0): ext4_orphan_get:1426: comm syz.0.1256: bad orphan inode 131083
[  248.778998][ T8878] EXT4-fs (loop0): mounted filesystem without journal. Opts: test_dummy_encryption,init_itable,noload,,errors=continue. Quota mode: none.
[  248.996832][ T8893] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1260'.
[  249.012961][ T8893] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1260'.
[  249.068155][ T8895] loop1: detected capacity change from 0 to 128
[  249.087714][ T8895] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  249.105916][ T8895] ext4 filesystem being mounted at /289/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  249.127780][   T25] audit: type=1800 audit(1769401595.507:33): pid=8895 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1261" name="file1" dev="loop1" ino=13 res=0 errno=0
[  249.490731][ T8909] loop5: detected capacity change from 0 to 8
[  249.603847][ T8909] SQUASHFS error: zstd decompression failed, data probably corrupt
[  249.659959][ T8909] SQUASHFS error: Failed to read block 0x4ec: -5
[  249.679290][ T8909] SQUASHFS error: Unable to read metadata cache entry [4ea]
[  249.688178][ T8909] SQUASHFS error: Unable to read inode 0x2011f
[  249.831726][ T8920] loop6: detected capacity change from 0 to 512
[  249.878631][ T8920] EXT4-fs (loop6): 1 truncate cleaned up
[  249.886921][ T8920] EXT4-fs (loop6): mounted filesystem without journal. Opts: max_batch_time=0x000000000000000d,,errors=continue. Quota mode: none.
[  249.987585][   T25] audit: type=1800 audit(1769401596.367:34): pid=8920 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.1269" name="file0" dev="loop6" ino=13 res=0 errno=0
[  250.185311][ T8930] loop0: detected capacity change from 0 to 128
[  250.255443][ T8930] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  250.284231][ T8930] ext4 filesystem being mounted at /252/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  250.356176][ T8934] loop6: detected capacity change from 0 to 512
[  250.384376][   T25] audit: type=1800 audit(1769401596.767:35): pid=8930 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1274" name="file1" dev="loop0" ino=13 res=0 errno=0
[  250.402683][ T8934] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem
[  250.465535][ T8934] EXT4-fs (loop6): 1 truncate cleaned up
[  250.525873][ T5187] usb 8-1: USB disconnect, device number 6
[  250.546215][ T8934] EXT4-fs (loop6): mounted filesystem without journal. Opts: noload,stripe=0x00000000000000dc,data_err=abort,noload,data_err=ignore,bsddf,,errors=continue. Quota mode: none.
[  250.599093][ T8941] binder: 8940:8941 ioctl 4018620d 0 returned -22
[  250.607522][ T8941] binder: BINDER_SET_CONTEXT_MGR bad uid 0 != 60929
[  250.614377][ T8941] binder: 8940:8941 ioctl 4018620d 200000000180 returned -1
[  250.636283][ T8939] loop7: detected capacity change from 0 to 512
[  250.654510][ T8943] 9pnet: p9_fd_create_tcp (8943): problem connecting socket to 127.0.0.1
[  250.706384][ T8939] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  250.844584][ T8939] EXT4-fs (loop7): 1 truncate cleaned up
[  250.859955][ T8939] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  250.885753][   T25] audit: type=1800 audit(1769401597.267:36): pid=8939 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.1276" name="file1" dev="loop7" ino=15 res=0 errno=0
[  251.422309][ T8953] EXT4-fs (loop6): Test dummy encryption mode enabled
[  251.566256][ T8953] EXT4-fs (loop6): mounted filesystem without journal. Opts: test_dummy_encryption,usrjquota=,,errors=continue. Quota mode: none.
[  251.630375][ T8953] ext4 filesystem being mounted at /163/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  251.721801][ T8957] EXT4-fs (loop5): 1 truncate cleaned up
[  251.727628][ T8957] EXT4-fs (loop5): mounted filesystem without journal. Opts: max_batch_time=0x000000000000000d,,errors=continue. Quota mode: none.
[  251.770863][   T25] audit: type=1800 audit(1769401598.157:37): pid=8957 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.1283" name="file0" dev="loop5" ino=13 res=0 errno=0
[  251.812373][ T4231] usb 1-1: new high-speed USB device number 19 using dummy_hcd
[  251.843476][ T8959] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  251.891267][ T8959] ext4 filesystem being mounted at /67/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  252.013596][ T8969] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1285'.
[  252.090244][ T4231] usb 1-1: Using ep0 maxpacket: 16
[  252.100597][ T4176] udevd[4176]: incorrect ext4 checksum on /dev/loop7
[  252.240451][ T4231] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  252.265619][ T4231] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  252.296248][ T4231] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  252.315378][ T8974] set_capacity_and_notify: 4 callbacks suppressed
[  252.315390][ T8974] loop5: detected capacity change from 0 to 512
[  252.356088][ T4231] usb 1-1: New USB device found, idVendor=56f8, idProduct=07da, bcdDevice= 0.00
[  252.365917][ T8974] EXT4-fs error (device loop5): ext4_orphan_get:1400: inode #15: comm syz.5.1289: iget: bad i_size value: 38620345925642
[  252.383576][ T4231] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  252.392366][ T8974] EXT4-fs error (device loop5): ext4_orphan_get:1405: comm syz.5.1289: couldn't read orphan inode 15 (err -117)
[  252.416644][ T8974] EXT4-fs (loop5): mounted filesystem without journal. Opts: nombcache,delalloc,data_err=ignore,nojournal_checksum,usrjquota=,bsdgroups,,errors=continue. Quota mode: writeback.
[  252.447493][ T4231] usb 1-1: config 0 descriptor??
[  252.450257][    T7] Bluetooth: hci2: command 0x0406 tx timeout
[  252.963451][ T4231] hid-multitouch 0003:56F8:07DA.0008: unknown main item tag 0x0
[  252.979344][ T4231] hid-multitouch 0003:56F8:07DA.0008: unknown main item tag 0x0
[  252.987469][ T4231] hid-multitouch 0003:56F8:07DA.0008: unknown main item tag 0x0
[  253.002077][ T4231] hid-multitouch 0003:56F8:07DA.0008: unknown main item tag 0x0
[  253.009906][ T4231] hid-multitouch 0003:56F8:07DA.0008: unknown main item tag 0x0
[  253.022773][ T4231] hid-multitouch 0003:56F8:07DA.0008: unknown main item tag 0x0
[  253.033844][ T4231] hid-multitouch 0003:56F8:07DA.0008: unknown main item tag 0x0
[  253.045077][ T4231] hid-multitouch 0003:56F8:07DA.0008: unknown main item tag 0x0
[  253.055979][ T4231] hid-multitouch 0003:56F8:07DA.0008: unknown main item tag 0x0
[  253.066833][ T4231] hid-multitouch 0003:56F8:07DA.0008: unknown main item tag 0x0
[  253.081536][ T4231] hid-multitouch 0003:56F8:07DA.0008: hidraw0: USB HID v0.00 Device [HID 56f8:07da] on usb-dummy_hcd.0-1/input0
[  253.086745][ T8989] loop1: detected capacity change from 0 to 512
[  253.162040][ T8989] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  253.199172][ T4231] usb 1-1: USB disconnect, device number 19
[  253.221760][ T8989] EXT4-fs (loop1): 1 truncate cleaned up
[  253.233057][ T8989] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  253.247081][   T25] audit: type=1800 audit(1769401599.627:38): pid=8989 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1294" name="file1" dev="loop1" ino=15 res=0 errno=0
[  253.318169][ T8990] fido_id[8990]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/report_descriptor': No such file or directory
[  253.509303][ T9000] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1298'.
[  253.526688][ T9000] netlink: 48 bytes leftover after parsing attributes in process `syz.7.1298'.
[  253.587125][ T9003] loop7: detected capacity change from 0 to 128
[  254.195334][ T9003] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  254.278091][ T9003] ext4 filesystem being mounted at /74/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  254.334292][ T9012] loop1: detected capacity change from 0 to 16
[  254.398442][ T9014] binder: BINDER_SET_CONTEXT_MGR already set
[  254.404647][ T9014] binder: 9013:9014 ioctl 4018620d 200000000180 returned -16
[  254.438075][ T9012] erofs: (device loop1): mounted with root inode @ nid 36.
[  254.470889][ T9018] loop7: detected capacity change from 0 to 512
[  254.726548][ T9018] EXT4-fs (loop7): mounted filesystem without journal. Opts: grpid,grpquota,,errors=continue. Quota mode: writeback.
[  254.788833][ T9018] ext4 filesystem being mounted at /75/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  255.497704][ T1421] ieee802154 phy0 wpan0: encryption failed: -22
[  255.504624][ T1421] ieee802154 phy1 wpan1: encryption failed: -22
[  256.576388][ T9054] loop0: detected capacity change from 0 to 512
[  256.620449][ T5187] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  256.662623][ T9055] xt_hashlimit: overflow, try lower: 18446744073709551615/255
[  256.960454][ T5187] usb 2-1: Using ep0 maxpacket: 16
[  257.080838][ T5187] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  257.129718][ T5187] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  257.280256][ T5187] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  257.320632][ T9061] binder: BINDER_SET_CONTEXT_MGR bad uid 0 != 60929
[  257.327811][ T5187] usb 2-1: New USB device found, idVendor=56f8, idProduct=07da, bcdDevice= 0.00
[  257.383915][ T9061] binder: 9060:9061 ioctl 4018620d 2000000000c0 returned -1
[  257.399885][ T9054] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[  257.446879][ T5187] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  257.462575][ T9061] binder: BINDER_SET_CONTEXT_MGR bad uid 0 != 60929
[  257.492148][ T5187] usb 2-1: config 0 descriptor??
[  257.497343][ T9054] ext4 filesystem being mounted at /261/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  257.559469][ T9061] binder: 9060:9061 ioctl 4018620d 200000000180 returned -1
[  257.570325][    T7] Bluetooth: hci1: command 0x0406 tx timeout
[  257.625419][ T9071] loop6: detected capacity change from 0 to 512
[  257.667773][ T9071] EXT4-fs (loop6): Test dummy encryption mode enabled
[  257.695302][ T9071] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  257.723890][ T9071] EXT4-fs error (device loop6): ext4_orphan_get:1426: comm syz.6.1321: bad orphan inode 131083
[  257.829491][ T9071] EXT4-fs (loop6): mounted filesystem without journal. Opts: test_dummy_encryption,init_itable,noload,,errors=continue. Quota mode: none.
[  258.011653][ T9082] loop0: detected capacity change from 0 to 16
[  258.040619][ T5187] usbhid 2-1:0.0: can't add hid device: -71
[  258.054010][ T5187] usbhid: probe of 2-1:0.0 failed with error -71
[  258.081495][ T9082] erofs: (device loop0): mounted with root inode @ nid 36.
[  258.094713][ T5187] usb 2-1: USB disconnect, device number 8
[  258.337928][ T9087] loop0: detected capacity change from 0 to 512
[  258.435180][ T9087] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  259.077549][ T9087] EXT4-fs (loop0): 1 truncate cleaned up
[  259.090644][ T9087] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  259.153790][   T25] audit: type=1800 audit(1769401605.537:39): pid=9087 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1327" name="file1" dev="loop0" ino=15 res=0 errno=0
[  259.320947][ T9105] loop7: detected capacity change from 0 to 512
[  259.399025][ T9105] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  259.414939][ T9110] binder: BINDER_SET_CONTEXT_MGR bad uid 0 != 60929
[  259.424362][ T9105] EXT4-fs (loop7): 1 truncate cleaned up
[  259.430009][ T9105] EXT4-fs (loop7): mounted filesystem without journal. Opts: debug_want_extra_isize=0x000000000000002e,min_batch_time=0x0000000000000fff,inode_readahead_blks=0x0000000000000080,stripe=0x0000000000004000,errors=remount-ro,max_batch_time=0x0000000000000004,. Quota mode: none.
[  259.457955][ T9110] binder: 9108:9110 ioctl 4018620d 2000000000c0 returned -1
[  259.466984][ T9110] binder: 9108:9110 ioctl c0306201 0 returned -14
[  259.512893][ T9110] binder: BINDER_SET_CONTEXT_MGR bad uid 0 != 60929
[  259.519490][ T9110] binder: 9108:9110 ioctl 4018620d 200000000180 returned -1
[  259.685326][ T9122] loop6: detected capacity change from 0 to 512
[  259.689358][ T9118] loop7: detected capacity change from 0 to 512
[  259.746004][ T9122] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem
[  259.768352][ T9118] EXT4-fs (loop7): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[  259.799581][ T9122] EXT4-fs (loop6): 1 truncate cleaned up
[  259.811208][ T9118] ext4 filesystem being mounted at /82/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  259.823269][ T9122] EXT4-fs (loop6): mounted filesystem without journal. Opts: noload,stripe=0x00000000000000dc,data_err=abort,noload,data_err=ignore,bsddf,,errors=continue. Quota mode: none.
[  260.927002][ T9146] loop0: detected capacity change from 0 to 512
[  261.186403][ T9146] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  261.212521][ T9146] EXT4-fs (loop0): 1 truncate cleaned up
[  261.226934][ T9146] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  261.243776][   T25] audit: type=1800 audit(1769401607.627:40): pid=9146 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1344" name="file1" dev="loop0" ino=15 res=0 errno=0
[  261.570126][ T9169] loop5: detected capacity change from 0 to 512
[  261.627837][ T9169] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[  261.667578][ T9169] EXT4-fs (loop5): 1 truncate cleaned up
[  261.690745][ T9169] EXT4-fs (loop5): mounted filesystem without journal. Opts: noload,stripe=0x00000000000000dc,data_err=abort,noload,data_err=ignore,bsddf,,errors=continue. Quota mode: none.
[  261.760270][ T4239] usb 1-1: new high-speed USB device number 20 using dummy_hcd
[  262.020270][ T4239] usb 1-1: Using ep0 maxpacket: 8
[  262.290337][ T4239] usb 1-1: config 0 has an invalid interface number: 88 but max is 3
[  262.298446][ T4239] usb 1-1: config 0 has an invalid interface number: 250 but max is 3
[  263.072193][ T4239] usb 1-1: config 0 has an invalid descriptor of length 95, skipping remainder of the config
[  263.083552][ T4239] usb 1-1: config 0 has 2 interfaces, different from the descriptor's value: 4
[  263.093519][ T4239] usb 1-1: config 0 has no interface number 0
[  263.099593][ T4239] usb 1-1: config 0 has no interface number 1
[  263.106001][ T4239] usb 1-1: config 0 interface 88 has no altsetting 0
[  263.120353][ T4239] usb 1-1: config 0 interface 250 has no altsetting 0
[  263.136191][   T21] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  263.150328][ T4239] usb 1-1: New USB device found, idVendor=03f0, idProduct=581d, bcdDevice=12.b3
[  263.179681][ T4239] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  263.207072][ T4239] usb 1-1: config 0 descriptor??
[  263.410565][   T21] usb 6-1: Using ep0 maxpacket: 32
[  263.507508][ T9197] binder: BINDER_SET_CONTEXT_MGR bad uid 0 != 60929
[  263.514492][ T4239] usb 1-1: string descriptor 0 read error: -71
[  263.530626][   T21] usb 6-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  263.551452][ T4239] usb 1-1: USB disconnect, device number 20
[  263.553155][ T9197] binder: 9196:9197 ioctl 4018620d 2000000000c0 returned -1
[  263.565014][   T21] usb 6-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  263.600133][ T9197] binder: 9196:9197 ioctl c0306201 0 returned -14
[  263.612633][   T21] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  263.628917][ T9197] binder: BINDER_SET_CONTEXT_MGR bad uid 0 != 60929
[  263.632616][   T21] usb 6-1: config 0 descriptor??
[  263.649403][ T9197] binder: 9196:9197 ioctl 4018620d 200000000180 returned -1
[  263.682408][   T21] usbhid 6-1:0.0: couldn't find an input interrupt endpoint
[  263.899688][ T9205] loop6: detected capacity change from 0 to 512
[  263.932768][ T9211] loop1: detected capacity change from 0 to 128
[  264.007024][ T9211] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  264.051121][ T9205] EXT4-fs (loop6): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[  264.051601][ T9211] ext4 filesystem being mounted at /308/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  264.084614][ T9205] ext4 filesystem being mounted at /179/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  264.305329][ T9231] loop1: detected capacity change from 0 to 512
[  264.393219][ T9231] EXT4-fs (loop1): mounted filesystem without journal. Opts: sysvgroups,nolazytime,acl,i_version,lazytime,nodiscard,grpjquota=,block_validity,errors=remount-ro,. Quota mode: writeback.
[  264.415703][ T9231] ext4 filesystem being mounted at /309/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  264.457014][ T9231] EXT4-fs error (device loop1): ext4_do_update_inode:5222: inode #2: comm syz.1.1370: corrupted inode contents
[  264.478555][ T9231] EXT4-fs (loop1): Remounting filesystem read-only
[  264.485199][ T9231] EXT4-fs error (device loop1): ext4_dirty_inode:6058: inode #2: comm syz.1.1370: mark_inode_dirty error
[  264.503072][ T9231] EXT4-fs (loop1): Remounting filesystem read-only
[  264.520743][ T9231] EXT4-fs error (device loop1): ext4_do_update_inode:5222: inode #2: comm syz.1.1370: corrupted inode contents
[  264.539463][ T9231] EXT4-fs (loop1): Remounting filesystem read-only
[  264.549084][ T9231] EXT4-fs error (device loop1): __ext4_ext_dirty:183: inode #2: comm syz.1.1370: mark_inode_dirty error
[  264.568935][ T9231] EXT4-fs (loop1): Remounting filesystem read-only
[  264.578953][ T9242] EXT4-fs error (device loop1): ext4_do_update_inode:5222: inode #2: comm syz.1.1370: corrupted inode contents
[  264.602732][ T9242] EXT4-fs (loop1): Remounting filesystem read-only
[  264.609693][ T9242] EXT4-fs error (device loop1): ext4_dirty_inode:6058: inode #2: comm syz.1.1370: mark_inode_dirty error
[  264.630517][ T9242] EXT4-fs (loop1): Remounting filesystem read-only
[  264.637950][ T9242] EXT4-fs error (device loop1): ext4_do_update_inode:5222: inode #2: comm syz.1.1370: corrupted inode contents
[  264.659507][ T9242] EXT4-fs (loop1): Remounting filesystem read-only
[  264.668495][ T9244] EXT4-fs error (device loop1): ext4_do_update_inode:5222: inode #2: comm syz.1.1370: corrupted inode contents
[  264.690976][ T9244] EXT4-fs (loop1): Remounting filesystem read-only
[  264.698081][ T9244] EXT4-fs error (device loop1): ext4_append:88: inode #2: comm syz.1.1370: mark_inode_dirty error
[  264.717320][ T9244] EXT4-fs (loop1): Remounting filesystem read-only
[  264.724698][ T9244] EXT4-fs error (device loop1) in ext4_append:100: Corrupt filesystem
[  264.742316][ T9244] EXT4-fs (loop1): Remounting filesystem read-only
[  265.079412][ T9259] loop1: detected capacity change from 0 to 128
[  265.136887][ T9259] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  265.189311][ T9259] ext4 filesystem being mounted at /313/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  265.213534][ T9262] loop6: detected capacity change from 0 to 8
[  265.322848][ T9262] SQUASHFS error: lzo decompression failed, data probably corrupt
[  265.337610][ T9262] SQUASHFS error: Failed to read block 0x91: -5
[  265.385318][ T9262] SQUASHFS error: Unable to read metadata cache entry [8f]
[  265.406990][ T9266] loop1: detected capacity change from 0 to 512
[  265.414833][ T9262] SQUASHFS error: Unable to read inode 0x7
[  265.525589][ T9266] EXT4-fs (loop1): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[  265.553326][ T9266] ext4 filesystem being mounted at /314/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  265.645606][ T9274] loop0: detected capacity change from 0 to 512
[  265.658636][ T4239] usb 6-1: USB disconnect, device number 7
[  265.757573][ T9274] EXT4-fs (loop0): 1 truncate cleaned up
[  265.774003][ T9274] EXT4-fs (loop0): mounted filesystem without journal. Opts: max_batch_time=0x000000000000000d,,errors=continue. Quota mode: none.
[  266.038255][ T9291] binder: BINDER_SET_CONTEXT_MGR bad uid 0 != 60929
[  266.056035][ T9291] binder: 9287:9291 ioctl 4018620d 2000000000c0 returned -1
[  266.077480][ T9291] binder: BINDER_SET_CONTEXT_MGR bad uid 0 != 60929
[  266.088807][ T9291] binder: 9287:9291 ioctl 4018620d 200000000180 returned -1
[  266.136894][ T9295] loop0: detected capacity change from 0 to 128
[  266.197148][ T9295] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  266.220287][   T26] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  266.254804][ T9295] ext4 filesystem being mounted at /276/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  266.470646][   T26] usb 2-1: Using ep0 maxpacket: 16
[  266.492089][ T9302] loop0: detected capacity change from 0 to 256
[  266.553803][ T9302] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  266.591490][ T9302] exFAT-fs (loop0): Medium has reported failures. Some data may be lost.
[  266.600544][   T26] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  266.629893][   T26] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  266.675720][ T9302] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  266.705705][   T26] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  266.756979][   T26] usb 2-1: New USB device found, idVendor=56f8, idProduct=07da, bcdDevice= 0.00
[  266.790269][   T26] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  266.809559][   T26] usb 2-1: config 0 descriptor??
[  267.340766][   T26] usbhid 2-1:0.0: can't add hid device: -71
[  267.362665][   T26] usbhid: probe of 2-1:0.0 failed with error -71
[  267.478754][   T26] usb 2-1: USB disconnect, device number 9
[  267.877586][ T9313] loop5: detected capacity change from 0 to 512
[  267.968722][ T9313] EXT4-fs (loop5): 1 truncate cleaned up
[  267.976590][ T9313] EXT4-fs (loop5): mounted filesystem without journal. Opts: max_batch_time=0x000000000000000d,,errors=continue. Quota mode: none.
[  268.183688][ T9329] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  268.226942][ T9329] ext4 filesystem being mounted at /101/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  268.949969][ T9353] xt_hashlimit: overflow, try lower: 18446744073709551615/255
[  269.685069][ T9362] binder: BINDER_SET_CONTEXT_MGR bad uid 0 != 60929
[  269.711400][ T9362] binder: 9361:9362 ioctl 4018620d 2000000000c0 returned -1
[  269.725363][ T9364] set_capacity_and_notify: 1 callbacks suppressed
[  269.725375][ T9364] loop0: detected capacity change from 0 to 512
[  269.752434][ T9362] binder: BINDER_SET_CONTEXT_MGR bad uid 0 != 60929
[  269.759301][ T9362] binder: 9361:9362 ioctl 4018620d 200000000180 returned -1
[  269.824176][ T9364] EXT4-fs (loop0): 1 truncate cleaned up
[  269.829865][ T9364] EXT4-fs (loop0): mounted filesystem without journal. Opts: max_batch_time=0x000000000000000d,,errors=continue. Quota mode: none.
[  270.042558][ T9364] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2497011243 (4994022486 ns) > initial count (1971107832 ns). Using initial count to start timer.
[  270.053259][ T9377] loop7: detected capacity change from 0 to 128
[  270.102362][ T9377] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  270.122088][ T9377] ext4 filesystem being mounted at /106/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  270.967097][ T9382] loop0: detected capacity change from 0 to 8192
[  270.978858][ T9389] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  271.450445][ T4238] usb 8-1: new high-speed USB device number 7 using dummy_hcd
[  271.670301][   T26] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  271.720296][ T4238] usb 8-1: Using ep0 maxpacket: 32
[  271.736528][ T9411] input: syz1 as /devices/virtual/input/input24
[  271.760855][ T1109] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  271.840382][ T4238] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  271.863522][ T4238] usb 8-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  271.899382][ T4238] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  271.939912][ T4238] usb 8-1: config 0 descriptor??
[  271.950267][   T26] usb 2-1: Using ep0 maxpacket: 8
[  271.992975][ T4238] usbhid 8-1:0.0: couldn't find an input interrupt endpoint
[  272.000412][ T1109] usb 6-1: Using ep0 maxpacket: 16
[  272.090475][   T26] usb 2-1: config 0 has an invalid interface number: 88 but max is 3
[  272.098604][   T26] usb 2-1: config 0 has an invalid interface number: 250 but max is 3
[  272.107227][   T26] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  272.117567][   T26] usb 2-1: config 0 has 2 interfaces, different from the descriptor's value: 4
[  272.120371][ T1109] usb 6-1: config 0 has an invalid interface number: 104 but max is 1
[  272.126955][   T26] usb 2-1: config 0 has no interface number 0
[  272.141520][   T26] usb 2-1: config 0 has no interface number 1
[  272.147833][   T26] usb 2-1: config 0 interface 88 has no altsetting 0
[  272.154855][   T26] usb 2-1: config 0 interface 250 has no altsetting 0
[  272.162035][   T26] usb 2-1: New USB device found, idVendor=03f0, idProduct=581d, bcdDevice=12.b3
[  272.162602][ T1109] usb 6-1: config 0 has an invalid interface number: 104 but max is 1
[  272.171507][   T26] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  272.189958][   T26] usb 2-1: config 0 descriptor??
[  272.229557][ T1109] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  272.282792][ T1109] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 2
[  272.320736][ T1109] usb 6-1: config 0 has no interface number 0
[  272.360343][ T1109] usb 6-1: config 0 interface 104 has no altsetting 1
[  272.470363][   T26] usb 2-1: string descriptor 0 read error: -71
[  272.480040][   T26] usb 2-1: selecting invalid altsetting 0
[  272.486452][   T26] usb 2-1: Could not set interface, error -22
[  272.514410][   T26] usb 2-1: USB disconnect, device number 10
[  272.521574][ T1109] usb 6-1: New USB device found, idVendor=1189, idProduct=0893, bcdDevice= 0.00
[  272.535041][ T1109] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  272.550845][ T1109] usb 6-1: Product: syz
[  272.555024][ T1109] usb 6-1: Manufacturer: syz
[  272.558615][ T9413] loop0: detected capacity change from 0 to 512
[  272.559697][ T1109] usb 6-1: SerialNumber: syz
[  272.584346][ T1109] usb 6-1: config 0 descriptor??
[  272.596849][ T9413] EXT4-fs (loop0): 1 truncate cleaned up
[  272.603099][ T9413] EXT4-fs (loop0): mounted filesystem without journal. Opts: max_batch_time=0x000000000000000d,,errors=continue. Quota mode: none.
[  272.621826][ T1109] asix: probe of 6-1:0.104 failed with error -22
[  272.642973][ T9413] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2497011243 (4994022486 ns) > initial count (1971107832 ns). Using initial count to start timer.
[  272.898266][   T21] usb 6-1: USB disconnect, device number 8
[  273.148176][ T9425] xt_hashlimit: overflow, try lower: 18446744073709551615/255
[  273.622439][ T1109] usb 1-1: new high-speed USB device number 21 using dummy_hcd
[  275.153773][ T1109] usb 1-1: Using ep0 maxpacket: 8
[  275.161430][   T21] usb 8-1: USB disconnect, device number 7
[  275.252114][ T9439] ------------[ cut here ]------------
[  275.287513][ T9439] WARNING: CPU: 0 PID: 9439 at arch/x86/kvm/x86.c:10372 kvm_arch_vcpu_ioctl_run+0x1bc4/0x1f40
[  275.298805][ T9444] loop7: detected capacity change from 0 to 8192
[  275.320442][ T1109] usb 1-1: unable to get BOS descriptor or descriptor too short
[  275.348937][ T9439] Modules linked in:
[  275.364606][ T9439] CPU: 0 PID: 9439 Comm: syz.1.1441 Not tainted syzkaller #0
[  275.386950][ T9439] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  275.410951][ T1109] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  275.427039][ T1109] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 2
[  275.437364][ T9439] RIP: 0010:kvm_arch_vcpu_ioctl_run+0x1bc4/0x1f40
[  275.449765][ T9439] Code: e8 f1 e9 ae 00 e9 03 e9 ff ff 44 89 f9 80 e1 07 38 c1 0f 8c d5 ed ff ff 4c 89 ff e8 d6 e9 ae 00 e9 c8 ed ff ff e8 dc e5 69 00 <0f> 0b e9 31 fd ff ff 44 89 f9 80 e1 07 38 c1 0f 8c d2 ed ff ff 4c
[  275.469722][ T1109] usb 1-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  275.485081][ T9439] RSP: 0018:ffffc900037ffc30 EFLAGS: 00010287
[  275.491377][ T9439] RAX: ffffffff810f39c4 RBX: ffff8880663a8000 RCX: 0000000000080000
[  275.499642][ T9439] RDX: ffffc90003862000 RSI: 000000000000040b RDI: 000000000000040c
[  275.508023][ T9439] RBP: 0000000000000000 R08: ffffffff8d89d8af R09: 1ffffffff1b13b15
[  275.516337][ T9439] R10: dffffc0000000000 R11: fffffbfff1b13b16 R12: ffff88805897e001
[  275.525659][ T9439] R13: 1ffff1100cc7501e R14: ffff8880663a80f0 R15: ffff88805897e000
[  275.537839][ T9439] FS:  00007fcde14b66c0(0000) GS:ffff8880b9000000(0000) knlGS:0000000000000000
[  275.553159][ T9439] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  275.559896][ T9439] CR2: 000055555868fa28 CR3: 000000007eede000 CR4: 00000000003526f0
[  275.596003][ T9439] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  275.620333][ T9439] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  275.635372][ T9439] Call Trace:
[  275.638679][ T9439]  <TASK>
[  275.652167][ T9439]  ? __lock_acquire+0x7d10/0x7d10
[  275.657406][ T9439]  kvm_vcpu_ioctl+0x8f7/0xc10
[  275.680317][ T9439]  ? kvm_clear_stat_per_vcpu+0x1f0/0x1f0
[  275.685997][ T9439]  ? bpf_lsm_file_ioctl+0x5/0x10
[  275.700246][ T9439]  ? security_file_ioctl+0x7c/0xa0
[  275.705398][ T9439]  ? kvm_clear_stat_per_vcpu+0x1f0/0x1f0
[  275.730255][ T9439]  __se_sys_ioctl+0xfa/0x170
[  275.730437][ T1109] usb 1-1: language id specifier not provided by device, defaulting to English
[  275.735119][ T9439]  do_syscall_64+0x4c/0xa0
[  275.760248][ T9439]  ? clear_bhb_loop+0x30/0x80
[  275.765076][ T9439]  ? clear_bhb_loop+0x30/0x80
[  275.769763][ T9439]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  275.800269][ T9439] RIP: 0033:0x7fcde325acb9
[  275.804832][ T9439] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  275.850377][ T9439] RSP: 002b:00007fcde14b6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  275.858836][ T9439] RAX: ffffffffffffffda RBX: 00007fcde34d5fa0 RCX: 00007fcde325acb9
[  275.869914][ T9439] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  275.878017][ T9439] RBP: 00007fcde32c8bf7 R08: 0000000000000000 R09: 0000000000000000
[  275.886158][ T9439] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  275.894221][ T9439] R13: 00007fcde34d6038 R14: 00007fcde34d5fa0 R15: 00007ffdaac48c08
[  275.894460][ T1109] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  275.902433][ T9439]  </TASK>
[  275.917891][ T1109] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  275.920680][ T9439] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  275.933166][ T9439] CPU: 1 PID: 9439 Comm: syz.1.1441 Not tainted syzkaller #0
[  275.940534][ T9439] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  275.950570][ T9439] Call Trace:
[  275.953834][ T9439]  <TASK>
[  275.956748][ T9439]  dump_stack_lvl+0x188/0x250
[  275.961413][ T9439]  ? show_regs_print_info+0x20/0x20
[  275.966594][ T9439]  ? load_image+0x400/0x400
[  275.971093][ T9439]  panic+0x2e5/0x810
[  275.974991][ T9439]  ? bpf_jit_dump+0xd0/0xd0
[  275.979482][ T9439]  ? kvm_arch_vcpu_ioctl_run+0x1bc4/0x1f40
[  275.985267][ T9439]  __warn+0x248/0x2b0
[  275.989229][ T9439]  ? kvm_arch_vcpu_ioctl_run+0x1bc4/0x1f40
[  275.995015][ T9439]  report_bug+0x1b7/0x2e0
[  275.999331][ T9439]  handle_bug+0x3a/0x70
[  276.003467][ T9439]  exc_invalid_op+0x16/0x40
[  276.007953][ T9439]  asm_exc_invalid_op+0x16/0x20
[  276.012781][ T9439] RIP: 0010:kvm_arch_vcpu_ioctl_run+0x1bc4/0x1f40
[  276.019175][ T9439] Code: e8 f1 e9 ae 00 e9 03 e9 ff ff 44 89 f9 80 e1 07 38 c1 0f 8c d5 ed ff ff 4c 89 ff e8 d6 e9 ae 00 e9 c8 ed ff ff e8 dc e5 69 00 <0f> 0b e9 31 fd ff ff 44 89 f9 80 e1 07 38 c1 0f 8c d2 ed ff ff 4c
[  276.038759][ T9439] RSP: 0018:ffffc900037ffc30 EFLAGS: 00010287
[  276.044806][ T9439] RAX: ffffffff810f39c4 RBX: ffff8880663a8000 RCX: 0000000000080000
[  276.052759][ T9439] RDX: ffffc90003862000 RSI: 000000000000040b RDI: 000000000000040c
[  276.060709][ T9439] RBP: 0000000000000000 R08: ffffffff8d89d8af R09: 1ffffffff1b13b15
[  276.068660][ T9439] R10: dffffc0000000000 R11: fffffbfff1b13b16 R12: ffff88805897e001
[  276.076620][ T9439] R13: 1ffff1100cc7501e R14: ffff8880663a80f0 R15: ffff88805897e000
[  276.084590][ T9439]  ? kvm_arch_vcpu_ioctl_run+0x1bc4/0x1f40
[  276.090396][ T9439]  ? __lock_acquire+0x7d10/0x7d10
[  276.095418][ T9439]  kvm_vcpu_ioctl+0x8f7/0xc10
[  276.100078][ T9439]  ? kvm_clear_stat_per_vcpu+0x1f0/0x1f0
[  276.105705][ T9439]  ? bpf_lsm_file_ioctl+0x5/0x10
[  276.110620][ T9439]  ? security_file_ioctl+0x7c/0xa0
[  276.115711][ T9439]  ? kvm_clear_stat_per_vcpu+0x1f0/0x1f0
[  276.121321][ T9439]  __se_sys_ioctl+0xfa/0x170
[  276.125890][ T9439]  do_syscall_64+0x4c/0xa0
[  276.130285][ T9439]  ? clear_bhb_loop+0x30/0x80
[  276.134941][ T9439]  ? clear_bhb_loop+0x30/0x80
[  276.139595][ T9439]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  276.145464][ T9439] RIP: 0033:0x7fcde325acb9
[  276.149864][ T9439] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  276.169445][ T9439] RSP: 002b:00007fcde14b6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  276.177834][ T9439] RAX: ffffffffffffffda RBX: 00007fcde34d5fa0 RCX: 00007fcde325acb9
[  276.185787][ T9439] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  276.193735][ T9439] RBP: 00007fcde32c8bf7 R08: 0000000000000000 R09: 0000000000000000
[  276.201683][ T9439] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  276.209632][ T9439] R13: 00007fcde34d6038 R14: 00007fcde34d5fa0 R15: 00007ffdaac48c08
[  276.217589][ T9439]  </TASK>
[  276.220899][ T9439] Kernel Offset: disabled
[  276.225402][ T9439] Rebooting in 86400 seconds..