last executing test programs:

20m27.915633805s ago: executing program 32 (id=2568):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, 0x0)
ioctl$KVM_GET_MSRS_cpu(r2, 0xc008ae88, &(0x7f0000000240)={0x2, 0x0, [{0xa18, 0x0, 0xf27}, {0x847, 0x0, 0x400}]})

18m33.227042977s ago: executing program 33 (id=3416):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x1b, &(0x7f0000000000)={@remote, 0x0, 0x0, 0x0, 0x2}, 0x20)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_mreq(r1, 0x29, 0x1b, &(0x7f0000000000)={@dev}, 0x14)
syz_emit_ethernet(0x3e, &(0x7f0000000400)={@multicast, @local, @void, {@ipv6={0x86dd, @generic={0x0, 0x6, '<!k', 0x8, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @remote, {[@routing={0x0, 0x0, 0x1}]}}}}}, 0x0)

18m24.277092641s ago: executing program 34 (id=3507):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x8, &(0x7f0000000140)={[{@nodiscard}, {@errors_remount}]}, 0x3, 0x521, &(0x7f0000001280)="$eJzs3c1vG2kZAPDHzsembZZ0F4R2F4mttEjlQ7XzIbQJICFOwKESYiUuIJWQeEOJU0exs2zCSqRw64EDEgKp4sCdv4ALPVFVQpxBHLhwqlpBCVJBRRrksSd1Ejt1RWyXzO8nuZ7xuH6e18nz5vU7M54AcutS859CxHRE/CEiZlqrh59wqXW3/+iDleatEEnyzt8K6fOa69lTs/93ISL2ImIqIr7+5YjvFI7Hre/sri9Xq5Wt9nq5sbFZru/sXrm+sbxWWavcmFt8e2lpcXZhfunU2nrrJ9+7dfU3X5389eMfP7j709/9tpnWdHtbZztOU6vpE/FKx2PjEfGFQQQbgbF2e861Vi+OOh+eT/Pn9+GIeCut/5kYS3+a/Xky0MyAQUuSJPlP8lKvzXsJcGYV0zFwoViKiNZysVgqtcbwH4nzxWqt3vjMu7XtG6utsfLFmCi+e71amW1/VrgYE4Xm+lx78Jetzx9ZX4hIx8A/+EurYymt1KqrQ+zngOMuHKn/f4616h/Iif4/8gNnjfqHfLo/qf4hz9Q/5Jf6h/xS/5Bf6h/yS/1Dfql/yK/O+m+fyBUvjygXYLhO+vs/OcQ8gKH62tWrzVuSnf+++t7O9nrtvSurlfp6aWN7pbRS29osrdVqa9VKaaW28azXq9Zqm3Ofje33y41KvVGu7+xe26ht32hcS8/rv1aZGEqrgH688uadPxUiYu9z59JbdPzJV6twtiVJIUZ9DjIwGmOj7oCAkbHrD/LrOT7j9/ySMOD/W5ev6D0wdaHnpi/G5kDSAYageNLGJ/eGlwgwdJdft/8P8sr8P+SX+X/Ir2eM8Q0PIAdOmv+P9rX8uup3/v/x8+UDDN6J8//AmTbd5fpfSZL88OWOa3fNRsSHIuKPYxMvZdf6As6C4v1Ce/x/eeYT00e3Thb+lc4BTEbE92+/8/P3lxuNrbnm438/eLzxi/bj86PIH+jt8AxfVqdZHQMA+bX/6IOV7DbMuA+/1DoI4Xj88fbc5FQ6gjm/Xzh0rELhlI5d2LsZEa91i19oX++8tefj/P7Ysfivtu8LrZdI8x1Pr5s+nPivd8T/eEf8N/7ndwXy4U6z/5ntVn/FtKbjoP4O9z/Tp3R8dNb/Zcdcd8bP+r+xHv3fm33G+O4vf9Rt9256sPfDmxFvdO1/s3hTaayj8Zu5Xe4z/oNvfeOjvbYlv2q9Trf4meZSubGxWa7v7F65nmWx+PbS0uLswvxSOZ2jLmcz1cd9/rXf3+0Vv9n+th7t//Ox9p9r5/SpPtv/74/d++alE+J/8q3uv3+vpvdH3v8kOcjh033G/8f8X78dPfb1NeOv9nj/i93iR7Y1YqHP+PWffcW5wwDwAqnv7K4vV6uVrS4LE703Wcj5QjFeiDSeLtyOiBcgjYEujMfxTcnMgII+q+fYG04HBQzM06IfdSYAAAAAAAAAAABAv3od/XvnFA8nHnUbAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADOgv8GAAD//+nh0o8=")
r0 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000002780)='/sys/kernel/debug/binder/transactions\x00', 0x0, 0x0)
read$FUSE(r0, &(0x7f0000005b00)={0x2020, 0x0, 0x0, <r1=>0x0, <r2=>0x0}, 0x2020)
chown(&(0x7f0000000080)='./file1\x00', r1, r2)

18m22.287374554s ago: executing program 35 (id=3533):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50)
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0x1}, 0x50)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000000), 0xc)

18m20.770523621s ago: executing program 36 (id=3548):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000456000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

18m10.266360862s ago: executing program 37 (id=3627):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x9a974000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000024c0), 0x2, 0x0)
ioctl$VHOST_GET_VRING_BASE(r0, 0x4008af24, &(0x7f0000000080))

18m5.318001867s ago: executing program 38 (id=3656):
r0 = syz_open_dev$loop(0x0, 0xf01c, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.stat\x00', 0x275a, 0x0)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x0, 0x6, 0x0, 0x1, 0xc, 0x1c, "fee8a2ab78fc5e3ee00d960791f9394bf59a32defb0000e400d52126669600000010000000000000000000be5d19cd50892b12f800", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f811200000000000000992861ac00", "90be8b1c551265406c7f30600358a0f4bd00", [0x4d]}})
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000002500)={0x0, 0x0, 0x0, 0x1, 0x10, 0x0, 0x1000000, 0x1f, 0x14, "6bf125058e637b44e58c1c72a4c01c47e50a2793c042d4aea4dcf9c014d0e072a3f096bdbdce0ceb94cb576a5d539a0f68412e32c7881104f7a2a88bb4a033af", "563e7e5b61a321b296a4d858a1a07e3c87df2f85a1df2c809cda49a11ff76e906b13a0c26ef2f2b08d4dcaffbc3200f99d6f328ccecaf9ec49aa55fba663c523", "6dd01086736c1613ad1d72b5e9aa72a58f30d74d3a7893dcfc2d1e56229263b3", [0xa2, 0x3562]})

18m3.333318209s ago: executing program 39 (id=3662):
readv(0xffffffffffffffff, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', 0x10, &(0x7f0000000040)=ANY=[@ANYBLOB="666c7573682c73686f72746e616d653d6c6f7765722c73686f72746e616d653d6d697865642c756e695f786c6174653d302c6e6f6e756d7461696c3d302c6e6f6e756d7461696c3d302c73686f72746e616d653d77696e6e742c00a56dc300a96c9b20f3fabdcb10cad696323259cc0500e5f91620d7b9dc000000000057c51b98cfb3b59f8db941abb77112000000b8ff"], 0x1, 0x250, &(0x7f0000000b80)="$eJzs2k9rHHUYB/BnYqUxJd2I/2hB+kMP6mVocvIgkiAtiAFFG6EK0qmZ6JJxN2SWwIrYeNGLB1+CZ/HoTZCKFy+5+Ao8eMslxx7EkXbTNhtWyKJxS/P5XPZhn/0uz/AMw+8wu69888n6Wp2vFb2YyrKYWoztuJXFXEzFXdvx0gtXf332navvvbG0vHzp7ZQuL12ZX0gpnb3w0/ufff/czd6Zd384++Pp2Jn7YHfviz92nt45t/vXlY/bdWrXqdPtpSJd73Z7xfWqTKvtej1P6a2qLOoytTt1uTnUX6u6Gxv9VHRWZ2c2Nsu6TkWnn9bLfup1U2+zn4qPinYn5XmeZmeCf2Plu1tNE3vNo9ciu/vd7O/RiuzxlD2xmD11LXtmOzu31zStyQ7KMbm3/6ZpHvs2zty0/xPlwEN9OqL6amtla2XwOegvrUU7qijjYrTiz7h9m+wb1JdfX750Md0xF19WN/bzN7ZWHhnOz0cr5kbn5wf5NJw/HTMH8wvRiidH5xdG5qfjxecP5PNoxW8fRjeqWI3b2fv5z+dTeu3N5UP583d+BwDwsMnTPSPPb3n+T/1Bfozz4aHz1ak4f2qy105E3f90vaiqclMxTnFh3NT05GeeeHH8N1uTRTwIV3qk4pefX335ARhjv1g8vJ1JP5n4P9xf+lET08c7EAAAAAAAAAAAAEfy371F+PX+Pw61snHeLAMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAE6mvwMAAP//cOvMBw==")
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
truncate(0x0, 0x7)
syz_mount_image$hfsplus(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x80040c, &(0x7f0000000440)=ANY=[@ANYBLOB="706172743d3078303030303030303030303030303030342c6e6c733d61736369692c73657373696f6e3d3078666666666666666666666666666637662c747970653d883b7f382c63726561746f723dd4a620e92c6e6f6465636f6d706f73652c747970653d5dbcce902c756d61736b3d30303030303030303030303030303030303030303030312c63726561746f723d40f194712c626172726965720063726561746f723d65fe04c22c6e6f6465636f6d706f73652c6465636f6d706f73652c63726561746f723d8a7222832c7569643d", @ANYBLOB="3ef628a9ecf9e1751ed9b65d6a5359bd9afb81136cbff69e1bdbcb39d60e9b32d9f142ac189ae0d659610ddf0bf8c95e8f1a51f27bbb9098900d07e5f0303418856a470de86ec769d69ea60f0ea33a2089c2a2d372ec5958bbc02c2b4d00f71d7062876aa812e57f7333fa60a4d976aba0ce610efbc27f6cd9f0eee7074c05c92ae57e5e1b9afed08d27df4b8b9fb9a30a14a0b4a82028df4924d31f4c15fe48e62ddf7437e325ec87679945ecbaeda079054d10574c0036c82e2fbc9d073f4f6644162662a8dc5700d5943d13b93f9868919746c86a6d48", @ANYRES16=0x0, @ANYRES16, @ANYRESHEX, @ANYBLOB="a520ad23321534a883fa116848e7295e8693132df1638d943e7dacc03c8d2d9fca2aeb72f72ed82af2ceb592a5eea7e56631ff9ac0d92bcc666859b316fd2ac8694577d071f3f31f92dfdbdd695e5edca5b90abb53107e708b90150fc9eee8418e9511b8a4ce6f69a31472378258a55e8aa64d4a9859bfb3d6d3e49cf0a4c8b0044d37812dd15af758d8177ad1d630193b27881a8a06b8221dbceefe3fbf199b81bc31338d35cf4cb9f7f28e7abc55afd41f3a8b4a1e3fc4cd2dece6d1659ab1fc8511c18f9bd3c80004efbd7cfda12866316c01cc4a69ca09f85189380f835231d8ae5332237152dc3ed45d7f88", @ANYRES64, @ANYRESDEC], 0x1, 0x703, &(0x7f0000001f80)="$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")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x109041, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x23)
ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x1)
mount$bind(&(0x7f0000000180)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x81105a, 0x0)
mount$bind(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000000)='./file0/file0\x00', 0x0, 0x887008, 0x0)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r1, &(0x7f0000004200)={0x2020}, 0x2020)

17m29.716344427s ago: executing program 40 (id=3910):
r0 = syz_usb_connect$cdc_ncm(0x0, 0x76, &(0x7f0000000040)=ANY=[@ANYBLOB="120100000200004025059d774000010203010902640002010000000904010001020d0000052406000105240000000d240f0100000000000000000006241a", @ANYRESOCT=0x0], 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, &(0x7f00000001c0)={0x44, &(0x7f00000000c0)=ANY=[@ANYBLOB="400e0001000062095b45ef53afc790ded516de3c8a5ce2323701243e0fbf1c430203b9"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io(r0, 0x0, 0x0)

10m22.760772166s ago: executing program 41 (id=6964):
r0 = eventfd2(0x0, 0x0)
io_setup(0x3ff, &(0x7f0000000500)=<r1=>0x0)
r2 = userfaultfd(0x80001)
fanotify_mark(0xffffffffffffffff, 0x445, 0x1011, r2, 0x0)
io_submit(r1, 0x1, &(0x7f0000000440)=[&(0x7f0000001840)={0x0, 0x0, 0x0, 0x0, 0x200, r0, 0x0, 0x0, 0x4, 0x0, 0x1, r0}])

5m0.569197021s ago: executing program 5 (id=11158):
unshare(0x6a040000)
r0 = socket$netlink(0x10, 0x3, 0x0)
writev(r0, &(0x7f00000001c0)=[{&(0x7f0000000400)="390000001300034700bb5be1c3e4feff06000000010000004500000025000000190004000400ad000200000000000006040000000000f93132", 0x39}], 0x1)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'lo\x00', <r2=>0x0})
rename(0x0, &(0x7f0000000640)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
sendmsg$nl_route(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000640)=ANY=[@ANYBLOB="3400000014000b032bbd7000fcdbdf250a281000", @ANYRES32=r2, @ANYBLOB="080008000604000014000100ff"], 0x34}}, 0x0)

5m0.117289056s ago: executing program 5 (id=11166):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, 0x0, 0x0)

4m59.997616737s ago: executing program 5 (id=11167):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000000)={r0, r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x3, 0x4, &(0x7f0000000180)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000}, [@call={0x85, 0x0, 0x0, 0x2a}]}, &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xb, '\x00', 0x0, @sched_cls=0x37, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r1, 0x0, 0xcc0, 0x0, &(0x7f0000000040)="f4b84de4115d64244a0e839e86dd", 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

4m59.653251381s ago: executing program 5 (id=11170):
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000280)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, &(0x7f0000000800)={[{@barrier_val={'barrier', 0x3d, 0x8}}, {@debug}, {@nodioread_nolock}, {@test_dummy_encryption}, {@inode_readahead_blks}, {@nodelalloc}, {@noblock_validity}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x40}}]}, 0x4, 0xbaf, &(0x7f00000017c0)="$eJzs3M1rXFUbAPDn3ny2zftO+vIi1k0jIi2o07SSYotgKxU3LgTdCg3ppIRMP0giNWkWE/0HRF0LbgS1KF3YdTcKbt1o3VpcCEVioyCikTsfSWxmkrSd5Ibk94Mz95w5d+Z5nrlM7j0wNwHsWgPZQxpxICLOJhGF+vNpRHRXe70Rldp+C/OzI7/Pz44ksbj42i9JJBFxd352pPFeSX27rz7ojYhvX0zif++sjjs5PTM+XC6XJurjI1MXLh+ZnJ55ZuzC8PnS+dLFo8efGzo2dHzwxFDbav3jx1M3fnv85Z8qf37617Vf3/84iVPRV59bWUe7DMTA0meyUmdEDLc7WE466vWsrDPpXOdF6SYnBQBAS+mKa7hHohAdsXzxVoivvss1OQAAAKAtFjsiFgEAAIAdLrH+BwAAgB2u8TuAu/OzI42W7y8Sttad0xHRX6t/od5qM51RqW57oysi9t5NYuVtrUntZQ9tICJu/3Dii6zFJt2HvJbKXEQ82uz4J9X6+6t3ca+uP42IwTbEH7hnvN3qf7q7df2n2hA/7/oB2J1unq6dyFaf/9Kl659ocv7rbHLuehB5n/8a138Lq67/luvvaHH99+oGY1z95MMrreay+p+/8dLnjZbFz7YPVdR9uDMX8Vhns/qTpfqTFvWf3WCMwt9XSq3m8q5/8aOIQ9G8/oZk7f9PdGR0rFwarD02jTH3zdBnreLnXX92/Pe2qH+94395gzHeOHPmequ59etPf+5OXq/2uuvPvDU8NTVxNKI7eWX188fqN7S30Nin8R5Z/YefWPv736z+LESl/jlka4G5+jYbv31PzBeuXf1yrfqztV+ex//cAx7/dzcY48mv3zvcam7l+jdrWfzbSW0tDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANaUT0RZIWl/ppWixG7IuI/8fetHxpcuqp0UtvXjyXzUX0R1c6OlYuDUZEoTZOsvHRan95fOye8bMRsT8iPijsqY6LI5fK5/IuHgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgCX7IqIvkrQYEWlELBTStFjMOysAAACg7frzTgAAAADYdNb/AAAAsPNZ/wMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALDJ9h+8eSuJiMrJPdWW6a7PdeWaGbDZ0rwTAHLTkXcCQG46804AyM19rvFdLsAOlKwz39typqftuQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACwfR06cPNWEhGVk3uqLdNdn+tq+oqDW5gdsJnSvBMActOx1mTn1uUBbD1fcdi9mq/xgd0kWWe+d3mfyr9nejYtJwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC2n75qS9JiRKTVfpoWixH/iYj+6EpGx8qlwYj4b0R8X+jqycY9eScNAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABA201Oz4wPl8ulCR0dnXw7yfZIo9bJ+y8TAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB5mJyeGR8ul0sTk3lnAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAORtcnpmfLhcLk1soHP9fnZe0cm7RgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8vNPAAAA///5ZQ4Q")
fsmount(0xffffffffffffffff, 0x0, 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x109041, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000180)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x31056, 0x0)
mount$bind(&(0x7f0000000880)='./file0/../file0\x00', &(0x7f00000001c0)='./file0/../file0\x00', 0x0, 0x1adc11, 0x0)
mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f0000000080)='./file0/file0/file0\x00', 0x0, 0x887008, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r0, &(0x7f0000006b40)={0x2020}, 0x2020)

4m58.961298899s ago: executing program 5 (id=11179):
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0x0, &(0x7f00000004c0)={[{@noload}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1}}, {@bh}, {@noload}, {@data_err_ignore}, {@usrjquota}]}, 0xff, 0x44d, &(0x7f0000000900)="$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")
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.stat\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000040), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
ioctl$EXT4_IOC_CLEAR_ES_CACHE(r0, 0x6628)
sendmsg$AUDIT_MAKE_EQUIV(0xffffffffffffffff, 0x0, 0x1)
fdatasync(r0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
getrandom(&(0x7f0000000240)=""/286, 0x11e, 0x100000000000001)

4m57.405267116s ago: executing program 5 (id=11188):
r0 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_LOCK(r0, 0x40405514, 0x0)
r1 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_LOCK(r1, 0x40405514, &(0x7f0000000200)={0x9, 0x2, 0x0, 0xfffffffc, 'syz1\x00', 0xffffff7e})

4m57.196774348s ago: executing program 42 (id=11188):
r0 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_LOCK(r0, 0x40405514, 0x0)
r1 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_LOCK(r1, 0x40405514, &(0x7f0000000200)={0x9, 0x2, 0x0, 0xfffffffc, 'syz1\x00', 0xffffff7e})

3m42.801250904s ago: executing program 2 (id=11710):
r0 = socket$unix(0x1, 0x5, 0x0)
shutdown(r0, 0x0)
bind$unix(r0, &(0x7f0000000100)=@abs={0x1, 0x0, 0x4e20}, 0x12)
listen(r0, 0x7)
accept$unix(r0, 0x0, 0x0)

3m42.679258595s ago: executing program 2 (id=11712):
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000300)='./file0\x00', 0xa00048, &(0x7f0000000140), 0x1, 0x7c8, &(0x7f0000001a80)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000680)='./file0\x00', 0x59b801, 0x1ce)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000040)={0x8, 0x0, 0x1, 0x6, 0x4})

3m42.445404207s ago: executing program 4 (id=11717):
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000000)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='sysfs\x00', 0x1214040, 0x0)

3m42.21551586s ago: executing program 2 (id=11718):
syz_mount_image$squashfs(&(0x7f0000000180), &(0x7f00000001c0)='./file0\x00', 0x40, &(0x7f0000000340)=ANY=[], 0x1, 0x195, &(0x7f0000000680)="$eJzs0LFr1GAYx/Hv8yaXXAutnopDBXtg8Uwp9hLFwelwOsGAq2DBcKatmKptblBpsYsIcth/Qac6ioOTiINzcRAcJC7dpBmKg4hIJMlb/4m+HwjP+zw84f3xLqerqQv83V8f0KNiMclnBBuYlnqmVF3f6f6Hrlt14YruR0K1+Vr3U+mjx3ejJInX2pfbtA4GwGYb+FnN/u+k05xU5EIP+bq/PojkVkjh6juOOvrgvWDKnuCEwqLojLiqWJUGcGR+uPJgPv1TFMVKtBQvxfeC4MKl7sWuS+As3knicRDvuShesoEX4oaMeRs0Fni6Y48zJ4i3rDJLZnOcBbZ2rHNn5nKUt0eB8LGT09QhztK8WYbvc1x4hRUyc40xhc2im8TdPnJdvRXf/mL/aiiam5Z1fnA/uf3shpLfznZP9pri79Lo+ASzPmX6ovaEmYx+xnbG7ndE3pe3jPR72uUib3R3itPg8DAaDtd8Bz5JJyQovxZMcIxJVJWrBR/0P7rw7eBgGIZhGIZhGIZhHAL/AgAA//8wc2Dw")
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
ioctl$KVM_SET_LAPIC(r1, 0x4400ae8f, &(0x7f0000000500)={"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"})
ioctl$KVM_SET_VCPU_EVENTS(r1, 0x4400ae8f, &(0x7f0000000140)=@arm64={0x7, 0xdb, 0xd})

3m41.100159313s ago: executing program 4 (id=11720):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x22, {[@global=@item_012={0x2, 0x1, 0x9, "2313"}, @global=@item_012={0x2, 0x1, 0x0, "e53f"}, @main=@item_4={0x3, 0x0, 0xb, "b2938f8d"}, @local=@item_012={0x2, 0x2, 0x2, "9000"}, @global=@item_4={0x3, 0x1, 0x0, "0900be00"}, @main=@item_4={0x3, 0x0, 0x8}, @global=@item_4={0x3, 0x1, 0x5, "a90da1f6"}, @local=@item_4={0x3, 0x2, 0x0, "00000400"}]}}, 0x0}, 0x0)
r1 = syz_open_dev$evdev(&(0x7f00000000c0), 0x40, 0x0)
bpf$ITER_CREATE(0xb, &(0x7f0000000100), 0x0)
ioctl$EVIOCGKEYCODE_V2(r1, 0x80284504, &(0x7f0000000100)=""/95)

3m40.345195801s ago: executing program 2 (id=11722):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='mountinfo\x00')
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f00000001c0)='./file0\x00', 0x48c5, &(0x7f0000000440)={[{@shortname_winnt}, {@shortname_winnt}, {@shortname_win95}, {@fat=@discard}, {@uni_xlate}, {@uni_xlateno}, {@fat=@sys_immutable}, {@fat=@dos1xfloppy}, {@fat=@dmask={'dmask', 0x3d, 0x4007}}, {@rodir}, {@utf8no}, {@shortname_mixed}, {@utf8}]}, 0x0, 0x2aa, &(0x7f0000000580)="$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")
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000500)='./file0\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x1333404, 0x0)
mount$bind(&(0x7f0000000240)='.\x00', &(0x7f0000000280)='./file0\x00', 0x0, 0x1005848, 0x0)
read$FUSE(r0, &(0x7f00000045c0)={0x2020}, 0x2020)

3m39.634368149s ago: executing program 2 (id=11724):
r0 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x1, 0x0)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_PREFER_SUBDEVICE(r0, 0x40045542, 0x0)

3m39.126373605s ago: executing program 2 (id=11729):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12013f00000000407f04ffff00000000000109022400010000000009040000150300000009"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000840)={0x24, 0x0, 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="00220f000000540b4550182195f51584b3"], 0x0}, 0x0)
r1 = syz_open_dev$hiddev(&(0x7f0000000540), 0x0, 0x0)
ioctl$HIDIOCGUCODE(r1, 0xc018480d, &(0x7f0000000280)={0x3, 0x100, 0x0, 0x800004, 0x80200, 0x1})

3m38.803371048s ago: executing program 43 (id=11729):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12013f00000000407f04ffff00000000000109022400010000000009040000150300000009"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000840)={0x24, 0x0, 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="00220f000000540b4550182195f51584b3"], 0x0}, 0x0)
r1 = syz_open_dev$hiddev(&(0x7f0000000540), 0x0, 0x0)
ioctl$HIDIOCGUCODE(r1, 0xc018480d, &(0x7f0000000280)={0x3, 0x100, 0x0, 0x800004, 0x80200, 0x1})

3m37.216795866s ago: executing program 4 (id=11741):
creat(&(0x7f00000002c0)='./file0\x00', 0x0)
open$dir(0x0, 0x0, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000300)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x8000}})
read$FUSE(r0, &(0x7f0000004280)={0x2020, 0x0, <r1=>0x0}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f00000062c0)="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", 0x2000, &(0x7f00000015c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000440)={0x10, 0xffffffffffffffda, 0x3ff, {0x0, 0xb}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r0, &(0x7f0000000180)={0x50, 0x0, r1, {0x7, 0x2b, 0xffffffde, 0x318145a8, 0x0, 0xfffe, 0x2, 0xfffffff6, 0x0, 0x0, 0x8, 0x100}}, 0x50)
openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40242, 0x1)
close(r0)

3m36.796157891s ago: executing program 4 (id=11744):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='mountinfo\x00')
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f00000001c0)='./file0\x00', 0x48c5, &(0x7f0000000440)={[{@shortname_winnt}, {@shortname_winnt}, {@shortname_win95}, {@fat=@discard}, {@uni_xlate}, {@uni_xlateno}, {@fat=@sys_immutable}, {@fat=@dos1xfloppy}, {@fat=@dmask={'dmask', 0x3d, 0x4007}}, {@rodir}, {@utf8no}, {@shortname_mixed}, {@utf8}]}, 0x0, 0x2aa, &(0x7f0000000580)="$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")
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000500)='./file0\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x1333404, 0x0)
mount$bind(&(0x7f0000000240)='.\x00', &(0x7f0000000280)='./file0\x00', 0x0, 0x1005848, 0x0)
read$FUSE(r0, &(0x7f00000045c0)={0x2020}, 0x2020)

3m36.633114163s ago: executing program 7 (id=11745):
syz_usb_connect(0x0, 0x34, &(0x7f00000002c0)=ANY=[@ANYBLOB="120100036a56f140b7e4a2cd01000000030109022200010302a05a0904560b"], &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0})

3m36.366647235s ago: executing program 4 (id=11748):
r0 = socket$alg(0x26, 0x5, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r1 = socket(0x10, 0x802, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000000), r1)
connect$netlink(r1, &(0x7f00000001c0)=@proc, 0xc)
r2 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r2, 0x0, 0x0)
listen(r2, 0x2)
accept4(r2, 0x0, 0x0, 0x80800)
r3 = socket$inet_icmp(0x2, 0x2, 0x1)
getsockopt$EBT_SO_GET_INIT_INFO(r3, 0x0, 0x82, &(0x7f0000000140)={'filter\x00', 0x0, 0x0, 0x0, [0xffffffff, 0x5, 0x0, 0x0, 0x20b, 0x89]}, &(0x7f00000001c0)=0x78)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800714, &(0x7f0000000040)={[{@max_batch_time}]}, 0xff, 0x497, &(0x7f0000000940)="$eJzs3M1rHOUfAPDvTJK26Vvy669WW1uNVrH4kjRp1R48qCh4UBD0UI8xSWvttpEmgi1Bo0g9SsG7eBT8C7x5EfUgglcFj1IoGoSmniKzO9NsNrvpZk2yJvv5wGafZ+eZfZ7vzDy7z8yT2QA61kD2J4nYHRG/RERfJbu0wEDlaX5uZuzW3MxYEgsLr/2RlMvdnJsZK4oW6+3KM8fSiPTjJJ5Nltc7dfnK+dFSaeJSnh+avvDO0NTlK0+cuzB6duLsxMWRU6dOnhh++qmRJ9ckziyum4fenzx88KU3rr0ydvram99/lTXrwJHK8uo47uhWnYDqGMi22p8LZbXLHl5F2zeDPVXppLuNDWFVuiIi21095f7fF12xuPP64sWP2to4YF1l303bGy+eXQC2sCTa3QKgPYov+uz8t3hs0NDjP+HGcxHb8vT83MzY/O34uyPNX+9Zx/oHIuL07N+fZ49Y7XUIAIAWlMc2j9cb/6VxoPxcmevYm8+h9EfE/yJiX0T8PyL2R8RdEeWyd0fEPZWVF/qarH+gJr98/JNer9vmNZKN/56pGvvNV8WfP/V35bk95fh7kjPnShPH821yLHq2Z/nhFer45oWfP220rHr8lz2y+ouxYN6A6901F+jGR6dH12oj3Pgw4lB3vfiT2zMB2RFwMCIOre6t9xaJc49+ebhRoTvHv4I1mGda+CLikcr+n42a+AvJyvOTQzuiNHF8qDgqlvvhp6uvNqq/hfib7VpNyfb/zqXHf211fyWV+dqeKJUmLk2tvo6rv37S8Jym1eN/W/J6ec76x7cqr703Oj19aThiW/JyOV+c05VfH1lct8gX5bP4jx2t3//35etk8d8bEdlBfCQi7ouI+/O2PxARD0bE0eoG9i9t73fPP/T2CvEnkURrx/8ayOIfX/b511tdpD+pnq9vIdF1/tuvG82YN7f/T8Zs+bO2ovz5dwfNNvDfbT0AAADYHNKI2B1JOlhJD+yONB0crPwP//7YmZYmp6YfOzP57sXxyj0C/dGTFle6+qquhw4ns/k7VvIj+WWQYvmJ/LrxZ1295fzg2GRpvM2xQ6fbtbT/R9H/M793tbt1wLpzvxZ0rtr+n7apHcDGa+b737kAbE11+n9vO9oBbDzn/9C56vX/D2ryxv+wNS3v/7/V+ck6YCsy/ofOpf9D59L/oSM1uDc+jZbu9G82Udws0Pr77Gj6Dv9OSRS/eLGedfXG4iuRtj3kDkpkPWZjK138DRUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIDN7J8AAAD//zL25iw=")
syz_clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000000040), 0x2}, 0xa0)
syz_mount_image$vfat(&(0x7f0000000540), &(0x7f00000001c0)='./file0\x00', 0x200000, &(0x7f0000000500)=ANY=[], 0x1, 0x2d2, &(0x7f0000000a00)="$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")
r4 = syz_usb_connect(0x0, 0x36, &(0x7f0000000a80)=ANY=[@ANYBLOB="12010000ffd26f10cb060600eb9a0102030109022400010000000009040001020a16d100090507000000000000090589"], 0x0)
syz_usb_control_io$printer(r4, 0x0, 0x0)
bind$alg(r0, &(0x7f0000000280)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(cipher_null)\x00'}, 0x58)
r5 = accept4(r0, 0x0, 0x0, 0x800)
ioctl$int_in(r5, 0x5452, 0x0)

3m35.831501632s ago: executing program 4 (id=11752):
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000080)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x200010, &(0x7f0000000340)=ANY=[@ANYBLOB="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", @ANYRES64, @ANYRES16], 0x21, 0x286, &(0x7f0000000640)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r1=>0x0)
fcntl$lock(0xffffffffffffffff, 0x24, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r1, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
ioctl$FITRIM(r0, 0xc0185879, &(0x7f0000000080)={0x4000, 0x8000})

3m35.553621525s ago: executing program 44 (id=11752):
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000080)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x200010, &(0x7f0000000340)=ANY=[@ANYBLOB="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", @ANYRES64, @ANYRES16], 0x21, 0x286, &(0x7f0000000640)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r1=>0x0)
fcntl$lock(0xffffffffffffffff, 0x24, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r1, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
ioctl$FITRIM(r0, 0xc0185879, &(0x7f0000000080)={0x4000, 0x8000})

3m33.583899697s ago: executing program 7 (id=11755):
pipe(&(0x7f0000019480)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
vmsplice(r1, &(0x7f00000001c0)=[{&(0x7f00000000c0)="dc52b390", 0xfffffede}, {&(0x7f0000000000)="7681", 0x2}, {&(0x7f0000000480)="eb", 0x1}, {&(0x7f0000000a80)='`', 0xfffffe3a}, {&(0x7f0000000080)="cb25", 0x2}, {&(0x7f00000011c0)="b488c5", 0x3}, {&(0x7f0000000340)="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", 0x109}], 0x7, 0x3)
close(r1)
setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000300)=0x1, 0x4)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000140), r1)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000580)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x8004}, 0x4011)
splice(r0, 0x0, r1, 0x0, 0x10500, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000700)=@newqdisc={0x24, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0xb, 0xb}, {0xb, 0x5}, {0xa, 0xfff3}}}, 0x24}, 0x1, 0x0, 0x0, 0x4004005}, 0x8000)

3m33.490262608s ago: executing program 7 (id=11756):
pipe(&(0x7f0000019480)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
vmsplice(r1, &(0x7f00000001c0)=[{&(0x7f00000000c0)="dc52b390", 0xfffffede}, {&(0x7f0000000000)="7681", 0x2}, {&(0x7f0000000480)="eb", 0x1}, {&(0x7f0000000a80)='`', 0xfffffe3a}, {&(0x7f0000000080)="cb25", 0x2}, {&(0x7f00000011c0)="b488c5", 0x3}, {&(0x7f0000000340)="748080a54714ce974a428103824a223696f0821cda0b0faabd2683bce6e29460f49e7ecca4b1efcaead665a9586108b36c3123d86e7472495513633f1a9b91ba0c6f68df1c7d587f503c24c0ab03730c8e3fd08dade50b3e8cc887e4ceefc44b41a04ab49c20b7a6caed21801820f58ceb0124c7a7f1145a47bdac6a15ecc48e712cce474b342b787013c31dec1e44edfe546ae4ad5fd37f93609de43a8e4a657cb582bbc0d5a6e03f0c8eabb5afd4579b71af1e22c4dd007b5e56c4d2638f382de8621e221ba85e0985abcf3487c8dc41095787d0660bc6695edf4897d391658837e9d0476448584cd49e02c59b6485e49ffb5f4b5861df94caa8adc078ec2774ec19d0ddf49891d9", 0x109}], 0x7, 0x3)
close(r1)
setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000300)=0x1, 0x4)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000140), r1)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000580)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x8004}, 0x4011)
splice(r0, 0x0, r1, 0x0, 0x10500, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000700)=@newqdisc={0x24, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0xb, 0xb}, {0xb, 0x5}, {0xa, 0xfff3}}}, 0x24}, 0x1, 0x0, 0x0, 0x4004005}, 0x8000)

3m33.34105556s ago: executing program 7 (id=11757):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='mountinfo\x00')
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f00000001c0)='./file0\x00', 0x48c5, &(0x7f0000000440)={[{@shortname_winnt}, {@shortname_winnt}, {@shortname_win95}, {@fat=@discard}, {@uni_xlate}, {@uni_xlateno}, {@fat=@sys_immutable}, {@fat=@dos1xfloppy}, {@fat=@dmask={'dmask', 0x3d, 0x4007}}, {@rodir}, {@utf8no}, {@shortname_mixed}, {@utf8}]}, 0x0, 0x2aa, &(0x7f0000000580)="$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")
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000300)='./file0\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x11080, 0x0)
mount$bind(&(0x7f0000000240)='.\x00', &(0x7f0000000280)='./file0\x00', 0x0, 0x1005848, 0x0)
read$FUSE(r0, &(0x7f00000045c0)={0x2020}, 0x2020)

3m33.202939691s ago: executing program 7 (id=11758):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/pids.max\x00', 0x2, 0x0)
read$FUSE(r0, &(0x7f0000000980)={0x2020}, 0x2020)

3m32.590426588s ago: executing program 7 (id=11762):
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x15, 0x2000000000000216, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2400000000000000007b1af8ff00000000bfa100000000000007"], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x1c, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0xa8}]}, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000004c0)={r0}, 0xc)

3m32.338304871s ago: executing program 45 (id=11762):
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x15, 0x2000000000000216, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2400000000000000007b1af8ff00000000bfa100000000000007"], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x1c, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0xa8}]}, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000004c0)={r0}, 0xc)

1m22.538815667s ago: executing program 8 (id=12899):
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
pipe2$9p(&(0x7f00000001c0), 0x0)
openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000040)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffc}, 0x6e)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000003c0)='net/mcfilter6\x00')
r3 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r3, 0x29, 0x2e, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}, 0x20000}}, {{0xa, 0x0, 0x0, @remote}}}, 0x108)
preadv(r2, &(0x7f00000001c0)=[{&(0x7f0000000580)=""/105, 0x69}, {0x0}], 0x2, 0x5b, 0x100)

1m21.39296133s ago: executing program 8 (id=12909):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x1d, {[@global=@item_012={0x2, 0x1, 0x9, "2313"}, @global=@item_012={0x2, 0x1, 0x0, "e53f"}, @main=@item_4={0x3, 0x0, 0xb, "b2938f8d"}, @local=@item_012={0x2, 0x2, 0x2, "9000"}, @main=@item_4={0x3, 0x0, 0x8}, @global=@item_4={0x3, 0x1, 0x5, "a90da1f6"}, @local=@item_4={0x3, 0x2, 0x0, "00000400"}]}}, 0x0}, 0x0)
r1 = syz_open_dev$evdev(&(0x7f00000000c0), 0x40, 0x0)
bpf$ITER_CREATE(0xb, &(0x7f0000000100), 0x0)
ioctl$EVIOCGKEYCODE_V2(r1, 0x80284504, &(0x7f0000000100)=""/95)

1m19.121216415s ago: executing program 8 (id=12929):
r0 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000500), 0x14b040, 0x0)
ioctl$ASHMEM_SET_SIZE(r0, 0x40087703, 0xfffffff3)
mmap(&(0x7f0000002000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0xcc840000)
ioctl$ASHMEM_SET_NAME(r0, 0x40087708, 0x0)
ioctl$ASHMEM_SET_NAME(r0, 0x40087707, &(0x7f0000000040)='\x00\x00\x03\x06\x00\x00\x00\x05\x00x\x92\x12\xac\x06^\xbewV\xf3\"\xc4\x04\xbb\x0642\x9c\x1a\xd1\xcb{\xb0\xd6\x1e\x00gQ\xca\x0eU\xf7\'\x8c\xc1\xc6\xbb\xc5\x1c\xf7\xaf\x95\x83=\t7\x96\x1a\xad\xd0\xd0\xee\x9c\x962\bu\xba\xfc\xae\xc2\x19\xeb\x91\xc9\t\xbc\xc1\xcb\xba\xe3\x8e\xf6\x89\xc2\'\xdfn(Q=v-<\r\xd1?$\x8b\x17Bn\x17h\x1b\xac\xfc\x82\x1c\xf4\xd0\xf5\xd5\x80\xc0\xb4a \x15\x9a\x9f\xf0:\xfd$\xad\xbb\x9a|c\xfc\"\xee\xc4\x93Q\x82\x16\xbf\xe3c\x8d \x0f\xb1\xe9\xf2o \x00\x00\x00\x00\x00\x00\x00H\xaf\t\x18\xc8\x1b\x1e\xbe\xd8>\xec\x9f~\xa7\xf7\xafdd\xf1\xdbjE\x01\xd1sD\x89\x94&\\U\f\x18\x99]\xaba\xe93\x01\xa23\xc9hP1\xdc-\'\xd0\x9e}\x89\xff\x8c\xec^\x84\x19\x9f_D\xbdt/\'\xf6\xc3\x8c\xb8\vS\x80\xad\xf8\xbf\xa2\xa0\x99\xc2\x16=\xcc\xb0\x1b7\xe3-\'\x02\x16\xf5\xe6\x93\x02E\n\xe8\x00\x00\x8c\xed\x11\xf7\xf2J\xf6\x90A@\x01\x13\xc7`g\xcb\xd7\xdb\x1e\xb2\xc9\xfd\xf7\xa9\x96\xf8/0Xd\xcf\xb9\xa2\x1d\x13\x8fC\xd2&\xd8\x9d\x8b\xe0E\xd2\xc6\x1a\xf3\xa8\x0e\xba\xecOv$\xc8\"\a\xd7T\xfb\xfc\xfauT\xf8\x9e\x86\xef.\xf6<\xbfB\xe7\x80\x1a\a\t+x_B=\xe7\xa5\x89\xfb\xa2\xc6\x97\xeb\xdecY{\x0e\xc2\x00\x00\x00\x00\x00\x00\x00\a\xf4\x88\x06\xe3\xcb\xc8\xe0\xcc\vE\x18\"\x87\xa0\xa9:\xceY\xf0\xa2\xe0\x9d\x8c\x8e\x11\xb7\x98\xa5\xda$\x94D\xb4\xf2>\x01\x00+\xfa\xa9 \xe1\x13Y\x86\xd8\xbfH\xc6\x9c\x8cs4\r\xcd\xd1\x83JT\xf9\xa2\x83?\xb3\x0f\xc6&\x1d\xa3\xc4\xc3\xd2\xfd\xad\xa35o\xe8\xcd^/\xd8\xf4[n\x9fJ\xf4\n\x92c\xaa\xddT&L<+\x19R\a\xfc\xf2\x17\xb8$\xa9]\xc2\\\xda<\xc8d.w\x9c\xaf4\xbb\xe8Co\xb3\xd8\x82\x92\xba+\x99PXB\xdc\xbay\xa0s<\x92k\vJTRW\xc26\x06\x10\x92\xc7\xa55\x9fZ\xff*ir\x1e\xe8\a\x00\x00\x00\x00\x00\x00\x00\x88\x19\xf7\xdd\xa8\xef\xa0\x98\xcd\x81\x10>\xc7{\x84\xb9\xc0B\xe1\t\x00\xbaQj\x81\xc8\xf8\x146%Z\x83H\xabF\x18<\x86h\x01=\x03i\xc4\t\x8e/\x12\a\xdf\xe7zU\x1d\x15\x0e\xc1?\xeau\xb4\x84x\x00\x00X\xf4\xe9\x1f\xcd\x05\x0fz_\x8d,^\xde\xfd\xd1\xbed\xed\xa1\xf5\xc6(p\xb4;\x0e\x18\xf7/A\xfd\x92\xd0}ur\xaag\xdb&e$\f\rrT\xd8\x88~\x13\xc22t\xf6\xf4Fs\xc1\x05\xfa\x99\x15\x87\x14\x13$\t\xa8?\xee\x94W\x8e\xe1\xcc\xc3U\x84\xc6]:\x9a|W\xec\x84\x18\bb\x82\x8f\xc0\xab\xe3a\x99\x17\x85\x9a\x05\xb1\x12K\\\xf2\xd5\b^[D~~\x84\\\xe4\x00')
ioctl$ASHMEM_SET_NAME(r0, 0x40087708, &(0x7f0000001d80)='\x00\x000\x10\x00\x00\x00\x1f\x00x\x85\x1c \xf3<r\xbc\xfe\x00\x00\x00\x04\xbb\x0642\x9c\x1aQ\xcb{\xb0\xd6\x1e\x00gQ\xca\x0eU\xf7\'\x8c\xc1\xc6\xbb\xc5\x1c\xf7\xaf\x95\x83=\t7\x96\x1a\xad\xd0\xd0\xee\x9c\x962\bu\xba\xfc\xae\xc2\x19\xeb\x91\xc9\t\xbc\xc1\xcb\xba\xe3\x8e\xf6\x89\xc2\'\xdfn(Q=v-<\r\x87\xa3\xd1?$\x8b\x17Bn\x17h\x1b\xac\xfc\x82\x1c\xf4\xd0\xf5\xd5\x80\xc0\xb4a  \x9a\x9f\xfc\"\xee\xc4\x93Q\x82,\xbf\xe3c\x8d \x0f\xb1\xe9\xf2o \x00\x00\x00\x00\x00\x00\x00H\xaf\t\x18\xc8\x1b\x1e\xbe\xd8>\xec\x9f~\xa7\xf7\xafdd\xf1\xdbjE\x01\xd1sD\x89\x94&\\U\f\x18\x99]\xaba\xe93\x01\xa23\xc9hP1\xdc-\'\xd0\x9e}\x89\xff\x8c\xec^\x84\x19\x9f_D\xbdt/\'\xf6\xc3\x8c\xb8\vS\x80\xad\xf8\xbf\xa2\xa0\x99\xc2\x16=\xcc\xb0\x1b^:4\xeb\xd37\xe3-\'\x02\x16\xf5\xe6\x93\x02E\n\xe8\x00\x00\x8c\xed\x11\xf7\xf2J\xf6\x90A@\x01\x13\xc7`g\xcb\xd7\xdb\x1e\xb2\xc9\xfd\xf7\x00\x00\x00\x000Hd\xcf\xb9\xa2\x1d\x13\x8fC\xd2&\xd8\x9d\x8b\xe0E\xd2\xc6\x1a\xf3\xa8\x0e\xba\xecOv$\xc8\"\a\xd7T\xfb\xfc\xfauT\xf8\x9e\x86\xef.\xc9\x91\xbfB\xe7\x80\x1a\a\t+x_B=\xe7\xa5\x89\xfb\xa2\xc6\x97\xeb\xdecY{\x0e\xc2\x00\x00\x00\x00\x00\x00\x00\a\xf4\x88\x06\xe3\xcb\xc8\xe0\xcc\vE\x18\"\x87\xa0\xa9:\xceY\xf0\xa2\xe0\x9d\x8c\x8e\x11\xb7\x98\xa5\xda$\x94D\xb4\xf2>\x01\x00+\xfa\xa9 \xe1\x13Y\x86\xd8\t\x00\x00\x00\x8cs4\r\xcd\xd1\x83JT\xf9\xa2\x83?\xb3\x0f\xc6&\x1d\xa3\xc4\xc3\xd2\xfd\xad\xa35o\xe8\xcd^/\xd8\xf4[n\x9fJ\xf4\n\x92c\xaa\xddT&L<+\x19R\a\xfc\xf2\x17\xb8$\x89]\xc2\\\xda<\xc8d.w\x9c\xaf4\xbb\xe8CoB\xdc\xc26\x06\x10\x92\xc7\xa55\x9f\x04\x00*ir\x1e\xe8\a\x00\x00\x00\x00\x00\x00\x00\x88\x19\xf7\xdd\xa8\xef\xa0\x98\xcd\x81\x10>\xc7{\x84\xb9\xc0B\xe1\t\x00\xbaQj\x81\xc8\xf8\x146%Z\x83H\xabF\x18<\x86h\x01=\x03\xae\xc4\t\x8e/\x12\a\xdf\xe7zU\x1d\x15\x0e\xc1?\xeau\xb4\x84\x1b\xdaR-\xf4\xe9\x1f\xcd\x05\x0fz_\x8d,^\xde\xfd\xd1\xbed\xed\xa1\xf5\xc6(p\xb4;\x0e\x18\xf7/A\xfd\x92\xd0}ur\xaag\xdb&e$\f\rrT\xd8\x88~\x13\xc22t\xf6\xf4Fs\xc1\xedo\x92\xae\r\x05\xfa\x99\x15\x87\x14\x13$\t\x01\x00\x00\x00\x00\x00\x00\x00\xc3U\x84\xc6]:\x9a|W\xec\x84\x18\bb\x82\x8f\xc0\xab\xe3a\x99\x17\x85\f\x03\xbb\x14\xa7\xda\x19M\xa3!\x95\xa0\x9a\x05\x06\x00\x00\x00\xf2\xd5\b^[D~\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00f\x8a\x9b\xe2\xa7k9\xd9`=}\t\x82\nw!y\x91\xbeM\xdck=\xcc\xef\x16vt\x1d\x1c\xa3\xee\x13\x16\xdbb0\b`/c\x9f\x8c\xee\xb1\x1a\xcf\x8ba\x11Oh\xc7\xb8\x8e#\xeeAh\xd9\x15\xc6\xe7>\x95\xe2\xdaQ\x0e\xc0E\xdd\xc3^7Y\xd2\xf0\xf7DZ\x12\xce\xba\vI$[v\x00\x830p\xd4\xbf\xa3\xf28\xab\xd4e\xc9z\xff\xfc\xeb\x04\xff\x98\xda\x01.gT\xcb7!W\x98\xc4\xa5\xb4\xc3\xd8\x94\xe6\xd7\x9e\xed\x1f\xafBF\xd6\xbfu5=.\x92\xc8-\xcc~6Y\xa7K\xd5=v\xdctJ\xba\x17\x18\xc8x\x95\xd8\xb2\xd6\x10)\xcfs\xaf\xf5E\x18\xa2*\x82\tU\xd3\xf7Y\x1d\x175\x04X2\xa3K\xab\x14\xec\xc9\x9c?\xa9\xc4\xc7\xe3{\xbfA\x16\xfcY\nR\x93\xb3\xcd\x0fg\xf6L3\xe87\x8aX\x82Y\x95\v\xbf%\xef\x83\x02\xc1\xd5c}\x18(\x13\x9e\xe7\xb2$\xee\xc4\x94\x00\xf6S9\xb7\xbcu\xb9\xad\xc6$=D\xb9\x82\x15yM\xa8\xf1N\xaeB\xf8.q\x90\x8a\xb57_\x98\x7f\xf2b\xbd\x97\xfc\xefN\xc6\xad\x99IJW\'\xd6m\xf0[WO\xf3\xd0\x9e\xda\xbd8\xd5FVA>\xa8p\vp*\xd1\xd9\v\xa3\xb2\x1b)E/\xbb\x90\xcct_K\x8d\xa3\xd2\xad,y\xa7\x8b\xa3\xb8\x86\xa9Q~\x1f\xbf\xa3(,\x91')

1m18.981526027s ago: executing program 8 (id=12932):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, 0x0, 0x0)
syz_mount_image$udf(&(0x7f0000000140), &(0x7f0000000100)='./file1\x00', 0x1004000, &(0x7f0000000640)=ANY=[@ANYBLOB='gid=ignore,undelete,anchor=00000000000000000011,longad,umask=00000000000000000000004,utf8,novrs,noadinicb,uid=forget,nostrict,gid=', @ANYRESDEC=0x0, @ANYBLOB="2c6e6f7374726963742c73686f727461642c646d6f64653d30303030303030303030303030303030303030303030302c0080ad9b92f74a7d4f9c4c2d40531531b8a84c7ad96565dc47c8f2c93715951bb4517f8bea88665ff7b1cbbb1efb194b6fbb9438655a17adf3317298821eba064f27ece65a487e218391424720c9c7321be9bf783a2a84ecd18bf3e86d87ce991173"], 0x1, 0xc32, &(0x7f0000001bc0)="$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")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x109041, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/../file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000180)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x91145a, 0x0)
mount$bind(&(0x7f0000000880)='./file0/../file0\x00', &(0x7f0000000440)='./file0/file0\x00', 0x0, 0x1adc11, 0x0)
mount$bind(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000000)='./file0/file0\x00', 0x0, 0x887008, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
read$FUSE(r0, &(0x7f0000004840)={0x2020}, 0x2020)

1m18.534433852s ago: executing program 8 (id=12937):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000940)=@base={0x1, 0xf9, 0x5, 0x7, 0xc1, 0xffffffffffffffff, 0x2}, 0x50)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000300)=@raw={'raw\x00', 0x8, 0x3, 0x278, 0x270, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x4a0, 0xffffffff, 0xffffffff, 0x4a0, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth1_to_batadv\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@uncond, 0x0, 0xa8, 0xd8}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x2d8)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000300), &(0x7f0000000100), 0x3f, r0}, 0x38)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f00000001c0)={r0, 0x0, 0x0}, 0x20)

1m18.113020046s ago: executing program 8 (id=12941):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0)
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000000)='./file0\x00', 0x402, &(0x7f0000000380)={[{@fat=@dmask}, {@uni_xlate}, {@numtail}, {@rodir}, {@fat=@fmask={'fmask', 0x3d, 0x6}}, {@numtail}, {@uni_xlate}, {@numtail}, {@uni_xlateno}, {@utf8}, {@uni_xlateno}, {@utf8}, {@uni_xlate}, {@numtail}, {@utf8no}, {@rodir}, {@uni_xlate}, {@fat=@quiet}]}, 0xf5, 0x2f0, &(0x7f0000000f80)="$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")
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000040)=0x3)
syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
syz_emit_vhci(0x0, 0x7)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, 0x0, 0x0)
r2 = socket$inet6(0xa, 0x80003, 0xff)
setsockopt$inet6_int(r2, 0x29, 0x16, 0x0, 0x0)

1m17.81105551s ago: executing program 46 (id=12941):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0)
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000000)='./file0\x00', 0x402, &(0x7f0000000380)={[{@fat=@dmask}, {@uni_xlate}, {@numtail}, {@rodir}, {@fat=@fmask={'fmask', 0x3d, 0x6}}, {@numtail}, {@uni_xlate}, {@numtail}, {@uni_xlateno}, {@utf8}, {@uni_xlateno}, {@utf8}, {@uni_xlate}, {@numtail}, {@utf8no}, {@rodir}, {@uni_xlate}, {@fat=@quiet}]}, 0xf5, 0x2f0, &(0x7f0000000f80)="$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")
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000040)=0x3)
syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
syz_emit_vhci(0x0, 0x7)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, 0x0, 0x0)
r2 = socket$inet6(0xa, 0x80003, 0xff)
setsockopt$inet6_int(r2, 0x29, 0x16, 0x0, 0x0)

7.588114788s ago: executing program 1 (id=13419):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0x0, '\x00', 0x0, 0x0}, 0x50)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000200)="9e36d448b388dd965f7a3312779a", 0x0, 0x0, 0xe8030000, 0x0, 0x0, 0x0, 0x0}, 0x50)

7.291993531s ago: executing program 1 (id=13422):
mount$bind(0x0, &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, 0x0, 0x0, 0x100000, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
syz_open_procfs(0x0, 0x0)
r2 = fsopen(&(0x7f0000000000)='proc\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
r3 = fsmount(r2, 0x0, 0x0)
fchdir(r3)
inotify_add_watch(0xffffffffffffffff, 0x0, 0x60000526)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r4, 0x0, 0x0)
r5 = openat$dir(0xffffffffffffff9c, &(0x7f0000000580)='.\x00', 0x0, 0x1aa)
getdents64(r5, &(0x7f0000004440)=""/4096, 0x1000)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r2, 0x7, 0x0, 0x0, 0x0)

4.910762847s ago: executing program 9 (id=13432):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'\x00', 0x2})
ioctl$TUNSETDEBUG(r0, 0x400454c9, 0xffffffffffffffff)
ioctl$SIOCSIFHWADDR(r0, 0x8924, &(0x7f0000000480)={'hsr0\x00', @multicast})

4.862629227s ago: executing program 6 (id=13433):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r0, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x13, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000080)=@newqdisc={0x40, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x0, 0x5}, {0xfff1, 0xffff}, {0x4, 0x7}}, [@TCA_EGRESS_BLOCK={0x8, 0xe, 0x1ff}, @qdisc_kind_options=@q_ingress={0xc}, @TCA_INGRESS_BLOCK={0x8, 0xd, 0x80}]}, 0x40}}, 0x4000)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000007c0)=[@text32={0x20, 0x0}], 0x1, 0x9, 0x0, 0x0)
ioctl$KVM_RUN(r0, 0xae80, 0x0)

4.685272909s ago: executing program 6 (id=13434):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
userfaultfd(0x80001)
ioctl$RNDADDENTROPY(0xffffffffffffffff, 0x40085203, &(0x7f000000fec0)=ANY=[@ANYBLOB="04000000000010"])

4.64484086s ago: executing program 0 (id=13435):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, 0x0)
sendmsg$NL80211_CMD_REGISTER_FRAME(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000026c0)={0x20, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_FRAME_MATCH={0x4}]}, 0x20}}, 0x0)
close(0x4)

4.575070131s ago: executing program 9 (id=13436):
sendmsg$ETHTOOL_MSG_DEBUG_SET(0xffffffffffffffff, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000180)={0x2c, 0x0, 0x1, 0x0, 0x300, {}, [@ETHTOOL_A_DEBUG_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}]}, 0x2c}}, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xb007}, 0x4)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r1, 0x107, 0xf, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'veth1_to_hsr\x00', <r2=>0x0})
sendto$packet(r1, &(0x7f0000000180)="0b031407e0ff640f0200475412f6a13bb1000e00080008004803", 0x10000, 0x0, &(0x7f0000000140)={0x11, 0x0, r2}, 0x14)

4.385315063s ago: executing program 9 (id=13437):
syz_usb_connect(0x2, 0x2d, &(0x7f00000000c0)=ANY=[], 0x0)

3.67744619s ago: executing program 0 (id=13438):
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f00000001c0)='./file0\x00', 0x2048c5, &(0x7f0000000680)={[{@fat=@uid={'uid', 0x3d, 0xee00}}, {@fat=@quiet}, {@numtail}, {@fat=@usefree}, {@uni_xlate}, {@rodir}, {@fat=@dos1xfloppy}, {@fat=@nfs_stale_rw}, {@fat=@showexec}, {@shortname_winnt}, {@fat=@errors_remount}, {@shortname_lower}, {@utf8}]}, 0x0, 0x29f, &(0x7f0000000840)="$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")
r0 = syz_open_procfs(0x0, &(0x7f0000000540)='mounts\x00')
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000500)='./file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x1333404, 0x0)
mount$bind(&(0x7f0000000300)='./file0\x00', &(0x7f0000000100)='./file0/file0\x00', 0x0, 0x11480, 0x0)
mount$bind(&(0x7f0000000240)='.\x00', &(0x7f0000000280)='./file0\x00', 0x0, 0x1005848, 0x0)
read$FUSE(r0, &(0x7f0000002c00)={0x2020}, 0x2020)

3.509313442s ago: executing program 6 (id=13440):
syz_usb_connect$uac1(0x69a90eab3db9c902, 0xa4, &(0x7f0000000140)=ANY=[@ANYBLOB="12010002000000406b1d010140000102030109029200030104a0060904000000010100000a2401f7ff0702010209240303000303030b0524050601090401000001020000090401010101020000072401650802100c2400012001000643d8d005090501090004ffc803072501000405000904020000010200000904020101010200000b240203060108013a388207240101c8000009050209"], &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0})

3.509124311s ago: executing program 0 (id=13441):
pipe(&(0x7f0000019480)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
vmsplice(r1, &(0x7f00000001c0)=[{&(0x7f00000000c0)="dc52b390", 0x4}, {&(0x7f0000000000)="7681", 0x2}, {&(0x7f0000000480)="eb", 0x1}, {&(0x7f0000000a80)}, {&(0x7f0000000080)="cb25", 0x2}, {&(0x7f00000011c0)="b488c5", 0x3}, {&(0x7f0000000340)="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", 0x109}], 0x7, 0x3)
close(r1)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000300)=0x1, 0x4)
connect$inet(r2, &(0x7f00000006c0)={0x2, 0x0, @empty}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f0000000900)=0xffffffffffffffff, 0x4)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000140), r1)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000580)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x8004}, 0x4011)
splice(r0, 0x0, r1, 0x0, 0x10500, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000700)=@newqdisc={0x24, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0xb, 0xb}, {0xb, 0x5}, {0xa, 0xfff3}}}, 0x24}, 0x1, 0x0, 0x0, 0x4004005}, 0x8000)

3.311024514s ago: executing program 3 (id=13443):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=@base={0xe, 0x4, 0x4, 0x3}, 0x50)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, r3, 0x0, '\x00', 0x0, 0x0}, 0x50)
capset(&(0x7f0000000100)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200003, 0x5, 0x0, 0x3})
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x18, 0x1c, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, {{0x18, 0x1, 0x1, 0x0, r3}, {}, {}, {0x85, 0x0, 0x0, 0x5}}, {{0x5, 0x0, 0x3}, {0x95, 0x0, 0x0, 0x700}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9, 0xfe00}, {0x6, 0x0, 0x6, 0x9, 0x0, 0x0, 0x3}, {0x3, 0x3, 0x6, 0xa, 0xa, 0xfff0, 0xf1}, {0x7, 0x1, 0xb, 0x6, 0x8}, {0x7, 0x0, 0x0, 0x8}, {}, {}, {0x7, 0x0, 0x6, 0x0}, {0x18, 0x9, 0x2, 0x0, r4}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x6, 0x1, 0x5, 0x2}, {0x6, 0x0, 0x5, 0x8, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x7}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd, '\x00', 0x0, @fallback=0xd, 0x0, 0xf00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

2.621358601s ago: executing program 1 (id=13444):
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x13, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000080)=@newqdisc={0x40, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x0, 0x5}, {0xfff1, 0xffff}, {0x4, 0x7}}, [@TCA_EGRESS_BLOCK={0x8, 0xe, 0x1ff}, @qdisc_kind_options=@q_ingress={0xc}, @TCA_INGRESS_BLOCK={0x8, 0xd, 0x80}]}, 0x40}}, 0x4000)
syz_kvm_setup_cpu$x86(r0, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000007c0)=[@text32={0x20, 0x0}], 0x1, 0x9, 0x0, 0x0)
ioctl$KVM_RUN(r1, 0xae80, 0x0)

2.336049804s ago: executing program 0 (id=13445):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000a40), 0x0, 0x0)
close(r1)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000500))
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x32, 0x0, &(0x7f0000000100)="b9ff03316844268cb89e14f0080048e0050000000000002f77fbac141516e0000001440c0510b18000890304000084508864", 0x0, 0xfe, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
write$cgroup_subtree(r0, &(0x7f0000000100)=ANY=[], 0x36)

2.248362785s ago: executing program 3 (id=13446):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x40e41, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'syzkaller1\x00', 0xc201})
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = dup(r1)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}})
write$tun(r0, &(0x7f00000000c0)=ANY=[@ANYBLOB="001c86dd0700100000001400000060ec97000fc83c00fe8000000000000000000000000000aaff020000"], 0xffe)

2.181005296s ago: executing program 1 (id=13447):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000fc0), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000000b80)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f0000000280)={0x40, r1, 0xa29, 0x0, 0x0, {}, [@WGDEVICE_A_IFINDEX={0x8}, @WGDEVICE_A_PRIVATE_KEY={0x24}]}, 0x40}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000300)={0x40, r1, 0x1, 0x0, 0xfffffffc, {}, [@WGDEVICE_A_PRIVATE_KEY={0x24, 0x3, @a}, @WGDEVICE_A_IFINDEX={0x8}]}, 0x40}}, 0x0)

2.058102947s ago: executing program 1 (id=13448):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, 0x0)
sendmsg$NL80211_CMD_REGISTER_FRAME(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000026c0)={0x20, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_FRAME_MATCH={0x4}]}, 0x20}}, 0x0)
close(0x4)

1.939005789s ago: executing program 1 (id=13449):
syz_usb_connect(0x0, 0x2d, &(0x7f00000003c0)=ANY=[@ANYBLOB="120100005ae4c41096050100f5050102030109021b0001000000000904d6"], 0x0)

1.908617309s ago: executing program 0 (id=13450):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
userfaultfd(0x80001)
ioctl$RNDADDENTROPY(0xffffffffffffffff, 0x40085203, &(0x7f000000fec0)=ANY=[@ANYBLOB="04000000000010"])

1.907996099s ago: executing program 3 (id=13451):
add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f00000001c0), &(0x7f00000002c0)="13f206bf3fac657251f90de7100ee3dbcf96cfacfcfeedb27340215bb190c5cb8a4df1c7d7fe6126764edaff29fc69d44f6011bf73021aa7683e5189a69a11cb1efe044c95ba7c5ac4e0bd419ad1744b2073", 0x52, 0xfffffffffffffffe)

1.637296282s ago: executing program 3 (id=13452):
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='\x00', 0x89901)
fchdir(r0)
syz_clone(0x65b2e19c076e05a, 0x0, 0x0, 0x0, 0x0, 0x0)

844.80163ms ago: executing program 9 (id=13453):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r1=>0x0})
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000bc0)={0x6, 0x10, &(0x7f0000000e40)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000300000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b704000008000000850000001c00"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000640)={r3, r1, 0x25, 0x0, @val=@iter={0x0}}, 0x20)
syz_emit_ethernet(0xd81, &(0x7f0000000ec0)=ANY=[], 0x0)

768.338891ms ago: executing program 0 (id=13454):
mount$bind(0x0, &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, 0x0, 0x0, 0x100000, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
syz_open_procfs(0x0, 0x0)
r3 = fsopen(&(0x7f0000000000)='proc\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
r4 = fsmount(r3, 0x0, 0x0)
fchdir(r4)
inotify_add_watch(0xffffffffffffffff, 0x0, 0x60000526)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r5, 0x0, 0x0)
r6 = openat$dir(0xffffffffffffff9c, &(0x7f0000000580)='.\x00', 0x0, 0x1aa)
getdents64(r6, &(0x7f0000004440)=""/4096, 0x1000)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0)

636.837102ms ago: executing program 9 (id=13455):
pipe(&(0x7f0000019480)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
vmsplice(r1, &(0x7f00000001c0)=[{&(0x7f00000000c0)="dc52b390", 0x4}, {&(0x7f0000000000)="7681", 0x2}, {&(0x7f0000000480)="eb", 0x1}, {&(0x7f0000000a80)}, {&(0x7f0000000080)="cb25", 0x2}, {&(0x7f00000011c0)="b488c5", 0x3}, {&(0x7f0000000340)="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", 0x109}], 0x7, 0x3)
close(r1)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000300)=0x1, 0x4)
connect$inet(r2, &(0x7f00000006c0)={0x2, 0x0, @empty}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f0000000900)=0xffffffffffffffff, 0x4)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000140), r1)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000580)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x8004}, 0x4011)
splice(r0, 0x0, r1, 0x0, 0x10500, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000700)=@newqdisc={0x24, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0xb, 0xb}, {0xb, 0x5}, {0xa, 0xfff3}}}, 0x24}, 0x1, 0x0, 0x0, 0x4004005}, 0x8000)

537.211114ms ago: executing program 3 (id=13456):
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000005c0)={0x14, 0x1a, 0x1, 0x70bd28, 0x4, {0x2}}, 0x14}}, 0x800)
syz_mount_image$ext4(&(0x7f0000000340)='ext2\x00', &(0x7f0000000000)='./file0\x00', 0x2800000, &(0x7f00000004c0)={[{@debug}, {@init_itable_val={'init_itable', 0x3d, 0x4}}, {@errors_continue}, {@noauto_da_alloc}, {@nodiscard}, {@data_err_ignore}, {@acl}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x3}}, {@resuid}]}, 0x1, 0xbb8, &(0x7f0000000600)="$eJzs3N1rXGUaAPDnnHy32Z10WZbt3jTLsrSw7DTtkrItC5suXbzxQtBboSGdlJDpB0mkJs3FRP8BUa8FbwS1KL2w171R8NYbrbcWL4QisVEQ0ciZjyRNZpK0neTE5PeDN+d95zlz3ufJYeacF2YmgANrMPuTRhyNiItJRKH+eBoR3dVeb/RVavstLc6P/bA4P5bE8vLz3yaRRMTDxfmxxrGS+vZwfdAbEZ/9L4k/vLpx3unZucnRcrk0VR+fnLly/eT07Nw/J66MXi5dLl09debfw6eHzwydHW5brT9+NXLn+78+83Xlp/d+vvXdG+8kMRL99djaOmpVP73BGFz5n6zVGRGjbTj+XtBRr2dtnUnnFk9KdzgpAABaStfcw/0pCtERqzdvhfj481yTAwAAANpiuSNiGQAAANjnEut/AAAA2OcanwN4uDg/1mj5fiJhdz04HxEDtfqX6q0W6YxKddsbXRFx6GESa7/WmtSe9tQGI+L+l2c/zFo0+R7yTqssRMSfm53/pFr/QP2b0OvrTyNiqA3zD64b/5bqH2nD/HnXD8DBdPd87UK28fqXrtz/RJPrX2eTa9eTyPv617j/W9pw/7daf0eL+7/ntjnHzXffutEqltX/nzv//6DRsvmz7VMV9RgeLET8pbNZ/clK/UmL+i9uc47CLzdKrWJ517/8dsTxaF5/Q7L57xOdHJ8ol4Zqf5vOsfDp8Put5s+7/uz8H2pR/1bn//ojR2r9oz4vXrhwu0VoZOv602+6kxeqve76Iy+PzsxMnYroTp7d+Pjpzett7NM4Rlb/ib9t/vpvVn/2nlCp/x+yyhfq22z8yro5/3vr5ket8mms//I8/5ee8Py/ts05/v7J6ydaxdauf7OWzX8/qa2FAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKAhjYj+SNJiRCTVfpoWixGHI+KPcSgtX5ue+cf4tZeuXspiEQPRlY5PlEtDEVGojZNsfKraXx2fXjf+V0QciYg3C33VcXHsWvlS3sUDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACw4nBE9EeSFiMijYilQpoWi3lnBQAAALTdQN4JAAAAADvO+h8AAAD2P+t/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAdtiRY3fvJRFROddXbZnueqwr18yAnZbmnQCQm468EwBy05l3AkBuHnON73YB9qFki3hvy0hP23MBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYO86fvTuvSQiKuf6qi3TXY91NX3GsV3MDthJad4JALnp2CzYuXt5ALvPSxwOruZrfOAgSbaI967uU3k00rNjOQEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACw9/RXW5IWIyKt9tO0WIz4XUQMRFcyPlEuDUXE7yPii0JXTzbuyTtpAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA2m56dm5ytFwuTeno6OTbSfZGGrVO3u9MAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADkYXp2bnK0XC5NTeedCQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAJC36dm5ydFyuTS1jc7tx9l5TSfvGgEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAyM+vAQAA//+Ztw49")
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, 0x0)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
syz_kvm_add_vcpu$x86(0x0, &(0x7f0000000000)={0x0, &(0x7f00000001c0)=[@code={0xa, 0x75, {"f326460f019f00200000420f01c5470f01c248b8f61e0000000000000f23c80f21f835080030000f23f8c462bd9791040000000f07c7442400e3420000c744240264000000c7442406000000000f011c24c421e3d040000f009f082c000066660f388000"}}], 0x75})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x1, 0x1, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000003c0)={[0x60000000004, 0x1000000000, 0x5, 0x41, 0x2000000, 0x0, 0x2004cb, 0x0, 0xa1d, 0x68ff, 0x5, 0x0, 0x3, 0x2], 0x10000, 0x202})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

479.589404ms ago: executing program 6 (id=13457):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x62181)
write$sndseq(r0, &(0x7f0000000100)=[{0xd9, 0xdb, 0x2, 0xfd, @time={0x4, 0x2}, {0x0, 0x1}, {0x81, 0x81}, @raw8={"8c73dcba3d036e056aeda0c9"}}], 0x1c)

423.567035ms ago: executing program 9 (id=13458):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0xfc, 0x0, 0x7fff0000}]})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
epoll_create1(0x80000)
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_usb_connect(0x5, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000079db8540da0b77010b7d000000010902120001000000000904", @ANYRES8=r1], 0x0)

221.250187ms ago: executing program 6 (id=13459):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000005a0000008500000022000000180100002020702500000000002020200100000000000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007300000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000"], 0x0, 0x100, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r1=>0x0})
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={r2, r1, 0x25, 0x0, @void}, 0x10)
syz_emit_ethernet(0xd81, &(0x7f0000000980)={@link_local, @multicast, @void, {@generic={0x883e, "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"}}}, 0x0)

94.899488ms ago: executing program 6 (id=13460):
syz_usb_connect$hid(0x2, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="1201000000b928407d1e9c310000000000010902"], 0x0)
syz_usb_connect(0x3, 0x36, 0x0, 0x0)
syz_usb_control_io$hid(0xffffffffffffffff, &(0x7f0000000240)={0x24, 0x0, 0x0, 0x0, 0x0}, 0x0)
r0 = syz_open_dev$evdev(&(0x7f0000001540), 0x0, 0x0)
ioctl$EVIOCGLED(r0, 0x5452, &(0x7f0000000240)=""/77)
ioctl$EVIOCSFF(0xffffffffffffffff, 0x40304580, &(0x7f0000000180)={0x57, 0x0, 0x0, {0xfffe, 0x1}, {0x74, 0x2}, @const={0x6, {0x7f, 0x0, 0x8000, 0xfffd}}})
r1 = syz_open_dev$evdev(&(0x7f00000000c0), 0x78, 0x822b01)
write$char_usb(r1, &(0x7f0000000040)="e2", 0x1068)

0s ago: executing program 3 (id=13461):
socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r3 = dup(r2)
write$UHID_INPUT(r3, &(0x7f0000001980)={0xf, {"a2e3ad214fc752f91b29090955f70e0dd038e7ff7fc6e5539b3267078b089b34083b681a0890e0878f0e1ac6e7049b076d959b669a240d5b67f3988f7ef319520100ffe8d178708c523c921b1b5b313b0d076d0936cd3b78130daa61d8e809ea889b5802b77f07227227b7ba67e0e78669a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f30e065cd5b91cd0ae19397d696d0d758f2dc7d1c00305d3f46635eb016d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000002335875271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f9081b4dd0d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1fe90a56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617601000000be70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d595a40b9f6ff14ac488ec130fb3850a27af9544ae15a7e454dea05918b41243513f000000000000000a3621c56cea8d20fa911a0c41db6ebe8cac64f17679141d54b34bbc9980000000b3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e1088334975e9f73483b6c82fa678ca14ffd9f9db2a7869d85864056526f889af43a6056080572286522449df466c632b3570243f989cce3803f465e41e610c2021d653a5520000008213b704a5000000000000008ef9f190bae97909507041d860420c5664b27921b14dc1db8892fd32d0ad7bc94681359bad8deff4b05f60cea0da7710a80000000000008000bea37ce0d0d4aa202f928f28381aab144a5d429a04a6a2b83c7068ae949ed06e288e810bac9c76600025e19c907f8ea2e2010000008271a1f5f8528f227e79c1389dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4e38a48a76eafc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee5325928974d12dad99dac44c3f0008047096a44002bebc2420aed92fa9b6578b4779415d97b9a6d6d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2bed9e53803edf1a4ae3a9737d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df07847754b8400daaa69bf5c8f4ceb360c7e658828563e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034e00000000ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f42355bc7872c827467cfa5c478b095b68441a34cb51682a8ae4d24ad92f243941ed274549b79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdbe6c4579b5561dc825ab829827945e020c1f67ee615feb6243378e0610060f02cca4e91b2f001edb3d78fb4b55668dda93ae62fccfcbb2b75a2183c46eb65ca8124e1b4da7fbb77ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43e4fb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e01feffffffffffff83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad94872cb2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7a508ae54b3cd7369d75f2e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c10238e204a67737c3b42aa01b20f7694a00f16e2d0174035a2c22656dc00880acebdbe8ddbd75c2f998d8ac2dfad2ba3a50200000045a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7bcddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4483f8fd777d443e8b40426db6fe2907ac0ca3d2414442e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf463661c953fcad6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439ff158e7cd419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d81eaeecf1d0ab378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9d4afb96d6861aca47da73d6f3dd014e5c5ad8fe995754bd9cf32fce1e31919c4b2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6ea94f88a4facfd4c735a20307c737afae5136651b1b9bd522dcb399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a37684f4113c48859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee2916580dac4b008e595f437491d87abed02cefcd9db53d94d02dae17b118e5d6787463183b4b87c105000000302a808d7f5251440613d17ca51055f2f416a44fe180d2d50c312cca7cb14a20dc331f57a9817139a206fc76957227ffff2de20a4b8e3737fbb40100000006376f799eba367e21f94ca598705f5dcb767d6f0900d6b0f6095e53c4c4234d0c1fbe434f6ab83c0013ee93b83946ee7759e89d7bdd1a32d7b311711b757fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7ceec7dc808bf653639d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b34449e15e065cc7348663a52190202c7af288a4510de03dab19d26285eda89156d50dd385a602000000000000007007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f732ae00303000000000000007fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cf255315ab80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c6087f1ab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf6529006c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6522fb5f6ffcdd56fed88935fcb75912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae233a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a5bd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08008897fb411a94b3c2fc5d5f0db42c0456ec015f08e5247d33ae2d35603ff8454c16f8342856935125102bb6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee458e4cb5e930ed624806c43a006e39336d07c2b80c1c128ad2706f48261f7897484c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da398000000000000000d80a4fe654578376e599aff3565b1d531f30912b9945030b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9c861a0e7e65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57fa9c0fe662a46b7f71cd47744db86c50b704c98ad90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e0691953264d2700c838fa2c7b3425260f59554e502dcea39cb313b0000000000004ca7c12f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe360500000000000000b77940b5f07722e47a08d3679507000000000000934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1062dfa13bdc1fa7cfaadba85c72e9758f03a755d0be53f8d2a1df0d07b3d5bd3b01faffd0addbed2881a9700af561ac8c7e36bb2fc4c40e9c766c06817bb903729a7db6ff957697c9ede7885d94ffb0759be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c1484d2f9c55f4901203a9a8a2c3e90f39c3dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000600", 0x1000}}, 0x1006)

kernel console output (not intermixed with test programs):

064][T27250] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[ 1363.342253][T27250] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1363.351210][ T6413] EXT4-fs error (device loop9): ext4_quota_off:6542: inode #3: comm syz-executor: mark_inode_dirty error
[ 1363.396850][T27250] usb 2-1: config 0 descriptor??
[ 1363.447959][T27250] usbhid 2-1:0.0: couldn't find an input interrupt endpoint
[ 1363.672890][ T6980] usb 7-1: unable to get BOS descriptor or descriptor too short
[ 1363.762899][ T6980] usb 7-1: config 3 has an invalid interface number: 86 but max is 0
[ 1363.771063][ T6980] usb 7-1: config 3 has an invalid descriptor of length 0, skipping remainder of the config
[ 1363.791597][ T6980] usb 7-1: config 3 has no interface number 0
[ 1363.805082][ T6980] usb 7-1: config 3 interface 86 has no altsetting 0
[ 1363.893976][ T6980] usb 7-1: New USB device found, idVendor=e4b7, idProduct=cda2, bcdDevice= 0.01
[ 1363.913960][ T6980] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[ 1363.939625][ T6980] usb 7-1: SerialNumber: syz
[ 1364.149104][ T6932] bridge0: port 3(veth0_to_bond) entered blocking state
[ 1364.156425][ T6932] bridge0: port 3(veth0_to_bond) entered disabled state
[ 1364.179467][ T6932] device veth0_to_bond entered promiscuous mode
[ 1364.190163][ T6932] bridge0: port 3(veth0_to_bond) entered blocking state
[ 1364.197396][ T6932] bridge0: port 3(veth0_to_bond) entered forwarding state
[ 1364.545229][ T6980] usb 7-1: USB disconnect, device number 2
[ 1365.030473][ T6941] loop8: detected capacity change from 0 to 256
[ 1365.079437][ T6940] loop9: detected capacity change from 0 to 1024
[ 1365.131894][ T6941] exFAT-fs (loop8): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1365.262576][ T6941] exFAT-fs (loop8): Medium has reported failures. Some data may be lost.
[ 1365.419194][ T6941] exFAT-fs (loop8): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[ 1365.435413][ T6940] hfsplus: b-tree write err: -5, ino 20
[ 1365.549713][ T6941] exfat filesystem being mounted at /21/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2107-12-31 (0x10391447f)
[ 1365.558722][ T6980] usb 2-1: USB disconnect, device number 47
[ 1365.709081][ T6954] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 1365.753100][T21883] hfsplus: b-tree write err: -5, ino 25
[ 1365.758940][T21883] hfsplus: b-tree write err: -5, ino 4
[ 1365.793659][T21883] hfsplus: b-tree write err: -5, ino 2
[ 1365.806798][T21883] hfsplus: b-tree write err: -5, ino 20
[ 1365.816978][ T6956] loop1: detected capacity change from 0 to 2048
[ 1365.902701][ T6659] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[ 1366.022581][ T6970] loop8: detected capacity change from 0 to 1024
[ 1366.033906][ T6956] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 1366.112404][ T6659] usb 7-1: device descriptor read/64, error -71
[ 1366.347142][ T6982] loop8: detected capacity change from 0 to 1024
[ 1366.382569][ T6659] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[ 1366.582320][ T6659] usb 7-1: device descriptor read/64, error -71
[ 1366.637141][T27250] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[ 1366.713112][ T6659] usb usb7-port1: attempt power cycle
[ 1366.892387][T27250] usb 10-1: Using ep0 maxpacket: 16
[ 1367.042624][T27250] usb 10-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1367.107986][T27250] usb 10-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 9
[ 1367.216183][T27250] usb 10-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[ 1367.260438][ T7018] loop8: detected capacity change from 0 to 1024
[ 1367.277990][T27250] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1367.299815][ T7017] loop1: detected capacity change from 0 to 2048
[ 1367.404203][T27250] usb 10-1: config 0 descriptor??
[ 1367.450313][ T6659] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[ 1367.475953][T27250] usbhid 10-1:0.0: couldn't find an input interrupt endpoint
[ 1367.503434][ T7017] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 1367.542501][ T6659] usb 7-1: device descriptor read/8, error -71
[ 1367.902180][ T6659] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[ 1367.921755][ T7039] loop1: detected capacity change from 0 to 1024
[ 1368.012494][ T6659] usb 7-1: device descriptor read/8, error -71
[ 1368.132436][ T6659] usb usb7-port1: unable to enumerate USB device
[ 1368.472085][ T1108] usb 2-1: new high-speed USB device number 48 using dummy_hcd
[ 1368.842370][ T1108] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1368.865193][ T1108] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1368.902027][ T1108] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1368.942153][ T1108] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1368.971141][ T1108] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1369.015326][ T1108] usb 2-1: config 0 descriptor??
[ 1369.441475][T14733] usb 10-1: USB disconnect, device number 3
[ 1369.494366][ T1108] plantronics 0003:047F:FFFF.003C: No inputs registered, leaving
[ 1369.526426][ T1108] plantronics 0003:047F:FFFF.003C: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[ 1369.673752][ T7116] loop8: detected capacity change from 0 to 1024
[ 1370.220634][ T1108] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[ 1370.421869][ T6657] usb 1-1: new high-speed USB device number 125 using dummy_hcd
[ 1370.668315][ T1108] usb 9-1: unable to get BOS descriptor or descriptor too short
[ 1370.676877][ T6657] usb 1-1: Using ep0 maxpacket: 16
[ 1370.742396][ T7174] loop9: detected capacity change from 0 to 1024
[ 1370.772230][ T1108] usb 9-1: config 3 has an invalid interface number: 86 but max is 0
[ 1370.784403][ T1108] usb 9-1: config 3 has an invalid descriptor of length 0, skipping remainder of the config
[ 1370.805830][ T6657] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1370.834728][ T6657] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 9
[ 1370.852316][ T1108] usb 9-1: config 3 has no interface number 0
[ 1370.858566][ T1108] usb 9-1: config 3 interface 86 altsetting 11 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1370.891834][ T6657] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[ 1370.913667][ T6657] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1370.922593][ T1108] usb 9-1: config 3 interface 86 has no altsetting 0
[ 1370.945380][ T6657] usb 1-1: config 0 descriptor??
[ 1370.994425][ T6657] usbhid 1-1:0.0: couldn't find an input interrupt endpoint
[ 1371.004209][ T1108] usb 9-1: New USB device found, idVendor=e4b7, idProduct=cda2, bcdDevice= 0.01
[ 1371.021867][ T1108] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[ 1371.050473][ T1108] usb 9-1: SerialNumber: syz
[ 1371.349068][ T7194] pit: kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[ 1371.352243][ T1108] usb 9-1: USB disconnect, device number 3
[ 1371.415872][ T7194] kvm: pic: non byte read
[ 1371.446317][ T7194] pic_ioport_write: 2 callbacks suppressed
[ 1371.446369][ T7194] kvm: pic: level sensitive irq not supported
[ 1371.484682][ T7194] kvm: pic: non byte read
[ 1371.517677][ T7194] kvm: pic: level sensitive irq not supported
[ 1371.518085][ T7194] kvm: pic: non byte read
[ 1371.569505][ T7194] kvm: pic: level sensitive irq not supported
[ 1371.570290][ T7194] kvm: pic: non byte read
[ 1371.595932][ T6659] usb 2-1: USB disconnect, device number 48
[ 1371.623014][ T7194] kvm: pic: level sensitive irq not supported
[ 1371.623229][ T7194] kvm: pic: non byte read
[ 1372.198573][ T7236] loop6: detected capacity change from 0 to 2048
[ 1372.323185][ T7236] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 1372.516918][T32154] udevd[32154]: incorrect ext4 checksum on /dev/loop6
[ 1372.890983][ T7269] loop1: detected capacity change from 0 to 1024
[ 1373.103762][ T7276] loop8: detected capacity change from 0 to 512
[ 1373.193251][ T4178] usb 1-1: USB disconnect, device number 125
[ 1373.357191][ T7276] EXT4-fs (loop8): journaled quota format not specified
[ 1373.434257][T21878] hfsplus: b-tree write err: -5, ino 25
[ 1373.442998][T21878] hfsplus: b-tree write err: -5, ino 4
[ 1373.448911][T21878] hfsplus: b-tree write err: -5, ino 2
[ 1373.494627][T21878] hfsplus: b-tree write err: -5, ino 17
[ 1374.281516][ T6657] usb 1-1: new high-speed USB device number 126 using dummy_hcd
[ 1374.724252][ T7339] loop6: detected capacity change from 0 to 1024
[ 1374.871782][ T7345] loop1: detected capacity change from 0 to 512
[ 1374.931504][ T6657] usb 1-1: Using ep0 maxpacket: 16
[ 1374.961048][ T7345] EXT4-fs (loop1): journaled quota format not specified
[ 1375.051548][ T6657] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1375.078330][ T6657] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 9
[ 1375.151872][ T6657] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[ 1375.359925][ T6657] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1375.377841][ T6657] usb 1-1: config 0 descriptor??
[ 1376.156759][ T6657] usbhid 1-1:0.0: couldn't find an input interrupt endpoint
[ 1376.772440][ T7373] loop6: detected capacity change from 0 to 1024
[ 1376.862934][ T7381] loop1: detected capacity change from 0 to 1024
[ 1377.333081][ T7396] pit: kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[ 1377.456459][ T7405] loop6: detected capacity change from 0 to 512
[ 1377.516539][ T7405] EXT4-fs (loop6): journaled quota format not specified
[ 1377.581809][ T7410] loop1: detected capacity change from 0 to 512
[ 1377.723504][ T7410] EXT4-fs (loop1): mounted filesystem without journal. Opts: lazytime,errors=remount-ro,. Quota mode: writeback.
[ 1377.736734][ T7410] ext4 filesystem being mounted at /148/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1377.770528][ T7410] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:476: comm syz.1.11984: Invalid block bitmap block 56140 in block_group 0
[ 1377.776646][ T6659] usb 1-1: USB disconnect, device number 126
[ 1377.804111][ T7410] EXT4-fs (loop1): Remounting filesystem read-only
[ 1377.986268][ T7430] loop9: detected capacity change from 0 to 1024
[ 1377.997679][ T7432] loop8: detected capacity change from 0 to 1024
[ 1378.469695][ T7445] loop1: detected capacity change from 0 to 512
[ 1378.515666][ T7445] EXT4-fs (loop1): journaled quota format not specified
[ 1378.734032][ T7446] pit: kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[ 1378.823674][ T7465] loop1: detected capacity change from 0 to 128
[ 1378.874281][ T7465] EXT4-fs (loop1): Test dummy encryption mode enabled
[ 1378.907112][ T7469] loop6: detected capacity change from 0 to 512
[ 1378.937557][ T7465] EXT4-fs (loop1): mounted filesystem without journal. Opts: test_dummy_encryption=v1,max_dir_size_kb=0x0000000000000002,,errors=continue. Quota mode: none.
[ 1379.051184][ T7465] ext4 filesystem being mounted at /151/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1379.096904][ T7469] EXT4-fs (loop6): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1379.146835][ T7476] loop8: detected capacity change from 0 to 1024
[ 1379.191271][ T7469] EXT4-fs (loop6): mounted filesystem without journal. Opts: quota,dioread_nolock,,errors=continue. Quota mode: writeback.
[ 1379.274155][ T7469] ext4 filesystem being mounted at /35/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1379.331092][ T7487] loop9: detected capacity change from 0 to 1024
[ 1379.655895][ T7499] loop9: detected capacity change from 0 to 512
[ 1379.733388][ T7499] EXT4-fs (loop9): journaled quota format not specified
[ 1380.205307][ T1108] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[ 1380.460988][ T1108] usb 7-1: Using ep0 maxpacket: 8
[ 1380.606702][ T1108] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1380.843568][ T1108] usb 7-1: config 0 has no interfaces?
[ 1380.924788][ T1108] usb 7-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58
[ 1380.972143][ T7524] loop8: detected capacity change from 0 to 1024
[ 1381.039648][ T1108] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1381.203963][ T1108] usb 7-1: config 0 descriptor??
[ 1381.507516][ T1108] usb 7-1: USB disconnect, device number 7
[ 1382.136800][ T7553] pit: kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[ 1382.164649][ T7558] loop6: detected capacity change from 0 to 1024
[ 1382.436982][ T7569] netlink: 40 bytes leftover after parsing attributes in process `syz.0.12035'.
[ 1382.467086][ T7569] netlink: 40 bytes leftover after parsing attributes in process `syz.0.12035'.
[ 1382.497744][ T7569] netlink: 40 bytes leftover after parsing attributes in process `syz.0.12035'.
[ 1383.307684][ T7603] loop9: detected capacity change from 0 to 1024
[ 1383.350066][ T7602] pit: kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[ 1383.733787][ T7619] loop8: detected capacity change from 0 to 512
[ 1383.826774][ T7619] EXT4-fs (loop8): Ignoring removed orlov option
[ 1383.899566][ T7619] EXT4-fs (loop8): mounted filesystem without journal. Opts: nodelalloc,orlov,auto_da_alloc,,errors=continue. Quota mode: writeback.
[ 1383.920942][ T7619] ext4 filesystem being mounted at /62/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1384.050683][T12437] usb 10-1: new high-speed USB device number 4 using dummy_hcd
[ 1384.394962][ T7649] loop6: detected capacity change from 0 to 1024
[ 1384.463792][T12437] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1384.532064][T12437] usb 10-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[ 1384.593017][T12437] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1384.651302][T12437] usb 10-1: config 0 descriptor??
[ 1384.785169][ T7671] pit: kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[ 1384.841861][ T7672] loop1: detected capacity change from 0 to 2048
[ 1384.981271][ T7672] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 1384.996642][ T7683] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[ 1385.163651][T12437] keytouch 0003:0926:3333.003D: fixing up Keytouch IEC report descriptor
[ 1385.186145][T12437] input: HID 0926:3333 as /devices/platform/dummy_hcd.9/usb10/10-1/10-1:0.0/0003:0926:3333.003D/input/input81
[ 1385.319808][T12437] keytouch 0003:0926:3333.003D: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.9-1/input0
[ 1385.372532][ T7694] loop8: detected capacity change from 0 to 512
[ 1385.375740][ T7625] udc-core: couldn't find an available UDC or it's busy
[ 1385.406945][ T7625] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[ 1385.657020][ T7694] EXT4-fs (loop8): mounted filesystem without journal. Opts: lazytime,errors=remount-ro,. Quota mode: writeback.
[ 1385.715668][ T7694] ext4 filesystem being mounted at /68/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1385.867712][ T7705] loop1: detected capacity change from 0 to 1024
[ 1385.988721][ T7707] EXT4-fs error (device loop8): ext4_read_block_bitmap_nowait:476: comm syz.8.12072: Invalid block bitmap block 56140 in block_group 0
[ 1386.044806][ T7707] EXT4-fs (loop8): Remounting filesystem read-only
[ 1386.074160][ T7707] Quota error (device loop8): write_blk: dquota write failed
[ 1386.162471][ T7707] Quota error (device loop8): find_free_dqentry: Can't write quota data block 5
[ 1386.218763][ T7707] Quota error (device loop8): qtree_write_dquot: Error -28 occurred while creating quota
[ 1386.270160][ T7707] EXT4-fs error (device loop8): ext4_acquire_dquot:6236: comm syz.8.12072: Failed to acquire dquot type 1
[ 1386.302273][ T7707] EXT4-fs (loop8): Remounting filesystem read-only
[ 1386.424387][ T7726] loop6: detected capacity change from 0 to 2048
[ 1386.591093][ T7726] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 1386.803618][ T4178] usb 10-1: USB disconnect, device number 4
[ 1387.165047][ T7763] loop6: detected capacity change from 0 to 512
[ 1387.222243][ T7766] binder: 7765:7766 ioctl c0306201 2000000003c0 returned -14
[ 1387.261269][ T7763] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[ 1387.328150][ T7763] EXT4-fs (loop6): 1 truncate cleaned up
[ 1387.380328][ T7763] EXT4-fs (loop6): mounted filesystem without journal. Opts: nojournal_checksum,jqfmt=vfsold,lazytime,usrquota,usrquota,,errors=continue. Quota mode: writeback.
[ 1387.470752][ T7777] loop9: detected capacity change from 0 to 1024
[ 1387.486218][ T7776] loop1: detected capacity change from 0 to 2048
[ 1387.621139][ T7776] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 1387.658157][ T9309] hfsplus: b-tree write err: -5, ino 25
[ 1387.674827][ T9309] hfsplus: b-tree write err: -5, ino 4
[ 1387.713431][ T9309] hfsplus: b-tree write err: -5, ino 2
[ 1387.750293][ T9309] hfsplus: b-tree write err: -5, ino 20
[ 1387.945956][ T7795] loop9: detected capacity change from 0 to 512
[ 1387.980496][ T7795] EXT4-fs (loop9): journaled quota format not specified
[ 1389.283272][ T7833] loop9: detected capacity change from 0 to 1024
[ 1389.312401][ T6657] Bluetooth: hci0: command 0x0406 tx timeout
[ 1389.348075][ T7835] loop6: detected capacity change from 0 to 2048
[ 1389.455055][ T7835] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 1389.580256][ T9309] hfsplus: b-tree write err: -5, ino 25
[ 1389.594049][ T9309] hfsplus: b-tree write err: -5, ino 4
[ 1389.602245][ T9309] hfsplus: b-tree write err: -5, ino 2
[ 1389.611353][ T9309] hfsplus: b-tree write err: -5, ino 20
[ 1389.624257][ T7796] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1389.631876][ T7796] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1389.918934][ T7855] loop9: detected capacity change from 0 to 512
[ 1390.057879][ T7855] EXT4-fs (loop9): journaled quota format not specified
[ 1390.224148][ T7859] loop9: detected capacity change from 0 to 512
[ 1390.276835][ T7859] EXT4-fs (loop9): mounted filesystem without journal. Opts: lazytime,errors=remount-ro,. Quota mode: writeback.
[ 1390.309939][ T7859] ext4 filesystem being mounted at /56/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1390.653496][ T7796] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1390.725713][ T7866] loop9: detected capacity change from 0 to 128
[ 1390.727986][ T7796] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1390.778557][ T7866] vfat filesystem being mounted at /58/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2107-12-31 (0x10391447e)
[ 1391.200186][   T26] audit: type=1800 audit(3925392664.481:82): pid=7868 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.12122" name="file1" dev="loop9" ino=1049245 res=0 errno=0
[ 1391.258811][ T7868] attempt to access beyond end of device
[ 1391.258811][ T7868] loop9: rw=2049, want=156, limit=128
[ 1391.966647][ T7796] netdevsim netdevsim8 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1391.976347][ T7796] netdevsim netdevsim8 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1391.985719][ T7796] netdevsim netdevsim8 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1391.996225][ T7796] netdevsim netdevsim8 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1392.003845][ T7871] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[ 1392.448244][ T7880] loop9: detected capacity change from 0 to 1024
[ 1392.507877][ T7878] loop1: detected capacity change from 0 to 2048
[ 1392.562109][ T7880] hfsplus: b-tree write err: -5, ino 20
[ 1392.608519][ T7882] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1392.704850][ T7882] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1392.710127][ T7878] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 1392.725171][ T7882] 8021q: adding VLAN 0 to HW filter on device team0
[ 1392.737059][ T7893] loop6: detected capacity change from 0 to 1024
[ 1393.013522][T21894] hfsplus: b-tree write err: -5, ino 25
[ 1393.019769][T21894] hfsplus: b-tree write err: -5, ino 4
[ 1393.025613][T21894] hfsplus: b-tree write err: -5, ino 2
[ 1393.043833][ T7882] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1393.071975][T21894] hfsplus: b-tree write err: -5, ino 20
[ 1393.252728][ T9309] hfsplus: b-tree write err: -5, ino 3
[ 1395.095167][ T7960] loop9: detected capacity change from 0 to 128
[ 1395.251532][ T7960] EXT4-fs (loop9): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 1395.292583][ T7960] ext4 filesystem being mounted at /67/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1395.339696][ T7960] xt_TPROXY: Can be used only with -p tcp or -p udp
[ 1395.689357][ T7983] loop1: detected capacity change from 0 to 2048
[ 1395.776467][ T7983] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1396.044297][ T7999] loop6: detected capacity change from 0 to 512
[ 1396.050333][ T7996] loop9: detected capacity change from 0 to 512
[ 1396.104502][ T7999] EXT4-fs (loop6): Test dummy encryption mode enabled
[ 1396.133511][ T7996] EXT4-fs (loop9): journaled quota format not specified
[ 1396.180587][ T7999] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[ 1396.229051][ T7999] EXT4-fs (loop6): SIPHASH is not a valid default hash value
[ 1396.375455][ T8012] netlink: 4 bytes leftover after parsing attributes in process `syz.9.12167'.
[ 1396.531150][ T8016] loop6: detected capacity change from 0 to 512
[ 1396.670248][ T8016] EXT4-fs (loop6): mounted filesystem without journal. Opts: lazytime,errors=remount-ro,. Quota mode: writeback.
[ 1396.739210][ T8016] ext4 filesystem being mounted at /72/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1396.958938][ T6657] usb 2-1: new high-speed USB device number 49 using dummy_hcd
[ 1397.031321][ T8046] loop6: detected capacity change from 0 to 512
[ 1397.073130][ T8046] EXT4-fs (loop6): journaled quota format not specified
[ 1397.210744][ T6657] usb 2-1: Using ep0 maxpacket: 32
[ 1397.329895][ T6657] usb 2-1: config 0 has an invalid interface number: 20 but max is 0
[ 1397.341687][ T6657] usb 2-1: config 0 has no interface number 0
[ 1397.358198][ T6657] usb 2-1: config 0 interface 20 altsetting 0 bulk endpoint 0x6 has invalid maxpacket 1023
[ 1397.383356][ T6657] usb 2-1: config 0 interface 20 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[ 1397.412253][ T6657] usb 2-1: config 0 interface 20 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[ 1397.609193][ T6657] usb 2-1: New USB device found, idVendor=04e6, idProduct=000b, bcdDevice= 1.00
[ 1397.633770][ T6657] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1397.688786][ T6657] usb 2-1: Product: syz
[ 1397.718554][ T6657] usb 2-1: Manufacturer: syz
[ 1397.738633][ T6657] usb 2-1: SerialNumber: syz
[ 1397.755743][ T6657] usb 2-1: config 0 descriptor??
[ 1397.779248][ T8033] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[ 1398.039730][ T6657] usb-storage 2-1:0.20: USB Mass Storage device detected
[ 1398.109777][ T6657] usb-storage 2-1:0.20: Quirks match for vid 04e6 pid 000b: 4
[ 1398.167561][ T6657] scsi host1: usb-storage 2-1:0.20
[ 1398.238252][ T6657] usb 2-1: USB disconnect, device number 49
[ 1398.684772][ T8139] loop9: detected capacity change from 0 to 512
[ 1398.785595][ T8139] EXT4-fs (loop9): journaled quota format not specified
[ 1398.950199][ T4178] usb 1-1: new high-speed USB device number 127 using dummy_hcd
[ 1399.004772][ T8149] loop1: detected capacity change from 0 to 1764
[ 1399.228914][ T4178] usb 1-1: Using ep0 maxpacket: 16
[ 1399.369071][ T4178] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1399.398706][ T4178] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[ 1399.452578][ T8166] futex_wake_op: syz.8.12215 tries to shift op by -1; fix this program
[ 1399.466674][ T4178] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[ 1399.498239][ T4178] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1399.498599][T24378] Bluetooth: hci3: command 0x0406 tx timeout
[ 1399.548370][ T4178] usb 1-1: config 0 descriptor??
[ 1399.601119][ T4178] usbhid 1-1:0.0: couldn't find an input interrupt endpoint
[ 1400.916006][ T8217] loop9: detected capacity change from 0 to 128
[ 1400.995627][ T8223] netlink: 12 bytes leftover after parsing attributes in process `syz.6.12231'.
[ 1401.003531][ T8217] FAT-fs (loop9): bogus number of reserved sectors
[ 1401.040334][ T8217] FAT-fs (loop9): Can't find a valid FAT filesystem
[ 1401.873932][T24378] usb 1-1: USB disconnect, device number 127
[ 1403.560655][ T8257] netlink: 44 bytes leftover after parsing attributes in process `syz.8.12240'.
[ 1403.567273][ T8259] netlink: 24 bytes leftover after parsing attributes in process `syz.1.12243'.
[ 1403.657218][ T8263] loop9: detected capacity change from 0 to 128
[ 1403.884935][ T8263] FAT-fs (loop9): bogus number of reserved sectors
[ 1403.958098][ T8263] FAT-fs (loop9): Can't find a valid FAT filesystem
[ 1406.380723][ T8310] loop8: detected capacity change from 0 to 128
[ 1406.392320][ T8311] loop1: detected capacity change from 0 to 8
[ 1406.428829][ T8313] netlink: 24 bytes leftover after parsing attributes in process `syz.0.12261'.
[ 1407.495349][ T8310] FAT-fs (loop8): bogus number of reserved sectors
[ 1407.507840][ T8310] FAT-fs (loop8): Can't find a valid FAT filesystem
[ 1407.516626][ T8311] SQUASHFS error: zlib decompression failed, data probably corrupt
[ 1407.537855][ T8311] SQUASHFS error: Failed to read block 0x9b: -5
[ 1407.717836][ T8311] SQUASHFS error: Unable to read metadata cache entry [99]
[ 1407.813151][ T8311] SQUASHFS error: Unable to read inode 0x127
[ 1408.043753][ T8361] loop9: detected capacity change from 0 to 512
[ 1408.728299][ T8387] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 1408.735662][ T8387] IPv6: NLM_F_CREATE should be set when creating new route
[ 1408.923074][ T8392] loop8: detected capacity change from 0 to 1024
[ 1409.320856][T21878] hfsplus: b-tree write err: -5, ino 25
[ 1409.333514][T21878] hfsplus: b-tree write err: -5, ino 4
[ 1409.361023][T21878] hfsplus: b-tree write err: -5, ino 2
[ 1409.386925][T21878] hfsplus: b-tree write err: -5, ino 20
[ 1409.759978][ T8387] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1409.767808][ T8387] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1410.811690][ T8387] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1410.851031][ T8387] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1411.316921][ T8387] netdevsim netdevsim9 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1411.329903][ T8387] netdevsim netdevsim9 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1411.339909][ T8387] netdevsim netdevsim9 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1411.348923][ T8387] netdevsim netdevsim9 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1411.772690][ T8463] loop8: detected capacity change from 0 to 512
[ 1411.930897][ T8463] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[ 1411.998144][ T8463] EXT4-fs (loop8): 1 truncate cleaned up
[ 1412.003956][ T8463] EXT4-fs (loop8): mounted filesystem without journal. Opts: nojournal_checksum,jqfmt=vfsold,lazytime,usrquota,usrquota,,errors=continue. Quota mode: writeback.
[ 1413.307188][T25668] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[ 1413.697558][T25668] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1413.721075][T25668] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1413.754235][T25668] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1413.797607][T25668] usb 9-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1413.833250][T25668] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1413.876943][T25668] usb 9-1: config 0 descriptor??
[ 1414.412928][ T8571] loop6: detected capacity change from 0 to 128
[ 1414.427313][T25668] usbhid 9-1:0.0: can't add hid device: -71
[ 1414.433785][T25668] usbhid: probe of 9-1:0.0 failed with error -71
[ 1414.495351][T25668] usb 9-1: USB disconnect, device number 4
[ 1414.617619][ T8571] vfat filesystem being mounted at /113/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2107-12-31 (0x10391447e)
[ 1415.476991][   T26] audit: type=1800 audit(3925392688.714:83): pid=8593 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.12349" name="file1" dev="loop6" ino=1049246 res=0 errno=0
[ 1415.535580][ T8593] attempt to access beyond end of device
[ 1415.535580][ T8593] loop6: rw=2049, want=156, limit=128
[ 1416.186979][ T8614] loop6: detected capacity change from 0 to 512
[ 1416.382601][ T8614] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[ 1416.459969][ T8614] EXT4-fs (loop6): 1 truncate cleaned up
[ 1416.465795][ T8614] EXT4-fs (loop6): mounted filesystem without journal. Opts: nojournal_checksum,jqfmt=vfsold,lazytime,usrquota,usrquota,,errors=continue. Quota mode: writeback.
[ 1416.827478][ T8495] usb 10-1: new high-speed USB device number 5 using dummy_hcd
[ 1419.166686][ T8495] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1419.198914][ T8495] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1419.239699][ T8495] usb 10-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1419.266421][ T8495] usb 10-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1419.286339][ T8495] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1419.304921][ T8495] usb 10-1: config 0 descriptor??
[ 1419.486521][ T8495] usbhid 10-1:0.0: can't add hid device: -71
[ 1419.499913][ T8495] usbhid: probe of 10-1:0.0 failed with error -71
[ 1419.525661][ T8676] loop9: detected capacity change from 0 to 512
[ 1419.712945][ T8495] usb 10-1: USB disconnect, device number 5
[ 1419.715969][ T8676] EXT4-fs (loop9): mounted filesystem without journal. Opts: lazytime,errors=remount-ro,. Quota mode: writeback.
[ 1421.019647][ T8676] ext4 filesystem being mounted at /111/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1422.276269][T10855] usb 2-1: new high-speed USB device number 50 using dummy_hcd
[ 1422.536414][ T8448] usb 10-1: new high-speed USB device number 6 using dummy_hcd
[ 1422.636607][T10855] usb 2-1: config 0 has an invalid interface number: 255 but max is 0
[ 1422.683829][T10855] usb 2-1: config 0 has no interface number 0
[ 1422.806153][ T8448] usb 10-1: Using ep0 maxpacket: 16
[ 1422.853492][T10855] usb 2-1: too many endpoints for config 0 interface 255 altsetting 255: 255, using maximum allowed: 30
[ 1422.976905][ T8448] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1423.020911][ T1417] ieee802154 phy0 wpan0: encryption failed: -22
[ 1423.028023][ T1417] ieee802154 phy1 wpan1: encryption failed: -22
[ 1423.236033][T10855] usb 2-1: config 0 interface 255 altsetting 255 has 0 endpoint descriptors, different from the interface descriptor's value: 255
[ 1423.250222][ T8448] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1423.314275][ T8448] usb 10-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[ 1423.349171][T10855] usb 2-1: config 0 interface 255 has no altsetting 0
[ 1423.379713][T10855] usb 2-1: New USB device found, idVendor=0bda, idProduct=0177, bcdDevice=7d.0b
[ 1423.406058][ T8448] usb 10-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[ 1423.443922][T10855] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1423.462767][ T8448] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1423.487648][T10855] usb 2-1: config 0 descriptor??
[ 1423.509531][ T8448] usb 10-1: config 0 descriptor??
[ 1423.517075][ T8741] loop6: detected capacity change from 0 to 8
[ 1423.547223][T10855] ums-realtek 2-1:0.255: USB Mass Storage device detected
[ 1423.806979][ T1108] usb 2-1: USB disconnect, device number 50
[ 1424.030002][ T8763] loop6: detected capacity change from 0 to 128
[ 1424.046072][ T8448] usbhid 10-1:0.0: can't add hid device: -71
[ 1424.053342][ T8448] usbhid: probe of 10-1:0.0 failed with error -71
[ 1424.086102][ T8448] usb 10-1: USB disconnect, device number 6
[ 1425.108174][ T8805] loop1: detected capacity change from 0 to 128
[ 1425.488936][ T8823] loop8: detected capacity change from 0 to 128
[ 1425.575420][ T8823] vfat filesystem being mounted at /128/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2107-12-31 (0x10391447e)
[ 1425.645985][T27252] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[ 1425.922378][T27252] usb 7-1: Using ep0 maxpacket: 16
[ 1426.039161][   T26] audit: type=1800 audit(3925392699.335:84): pid=8840 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.12421" name="file1" dev="loop8" ino=1049247 res=0 errno=0
[ 1426.093010][ T8840] attempt to access beyond end of device
[ 1426.093010][ T8840] loop8: rw=2049, want=156, limit=128
[ 1426.126091][T27252] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1426.261077][T27252] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1426.391806][T27252] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[ 1426.475501][T27252] usb 7-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[ 1426.535486][T27252] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1426.604446][T27252] usb 7-1: config 0 descriptor??
[ 1427.088788][ T8867] loop9: detected capacity change from 0 to 128
[ 1427.355517][T27252] usbhid 7-1:0.0: can't add hid device: -71
[ 1427.375508][T27252] usbhid: probe of 7-1:0.0 failed with error -71
[ 1427.409418][T27252] usb 7-1: USB disconnect, device number 8
[ 1427.450758][ T8887] loop8: detected capacity change from 0 to 512
[ 1427.597850][ T8887] EXT4-fs (loop8): mounted filesystem without journal. Opts: lazytime,errors=remount-ro,. Quota mode: writeback.
[ 1427.675595][ T8887] ext4 filesystem being mounted at /132/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1429.515357][T32290] usb 2-1: new high-speed USB device number 51 using dummy_hcd
[ 1429.733171][ T8960] loop6: detected capacity change from 0 to 128
[ 1429.775313][T32290] usb 2-1: Using ep0 maxpacket: 16
[ 1429.807725][ T8960] vfat filesystem being mounted at /132/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2107-12-31 (0x10391447e)
[ 1429.935639][T32290] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1429.957831][T32290] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1429.991679][T32290] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[ 1430.039116][T32290] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[ 1430.084357][T32290] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1430.130940][T32290] usb 2-1: config 0 descriptor??
[ 1430.335400][T27252] usb 9-1: new full-speed USB device number 5 using dummy_hcd
[ 1430.835572][T27252] usb 9-1: unable to get BOS descriptor or descriptor too short
[ 1430.895928][T27252] usb 9-1: not running at top speed; connect to a high speed hub
[ 1430.945898][T32290] usbhid 2-1:0.0: can't add hid device: -71
[ 1430.954447][T32290] usbhid: probe of 2-1:0.0 failed with error -71
[ 1430.980347][T32290] usb 2-1: USB disconnect, device number 51
[ 1431.025610][T27252] usb 9-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1431.045763][T27252] usb 9-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[ 1431.076438][T27252] usb 9-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 4
[ 1431.097933][T27252] usb 9-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[ 1431.315382][T27252] usb 9-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1431.335175][T27252] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1431.351770][T27252] usb 9-1: Product: syz
[ 1431.356749][T27252] usb 9-1: Manufacturer: syz
[ 1431.361563][T27252] usb 9-1: SerialNumber: syz
[ 1431.549858][ T9012] loop1: detected capacity change from 0 to 512
[ 1431.599454][ T9016] loop9: detected capacity change from 0 to 128
[ 1431.641844][ T9012] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[ 1431.700887][ T9016] vfat filesystem being mounted at /128/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2107-12-31 (0x10391447e)
[ 1431.761970][ T9012] EXT4-fs (loop1): 1 truncate cleaned up
[ 1431.805175][T27252] usb 9-1: 0:2 : does not exist
[ 1431.818601][ T9012] EXT4-fs (loop1): mounted filesystem without journal. Opts: nojournal_checksum,jqfmt=vfsold,lazytime,usrquota,usrquota,,errors=continue. Quota mode: writeback.
[ 1431.886209][T27252] usb 9-1: USB disconnect, device number 5
[ 1431.979089][T32154] udevd[32154]: error opening ATTR{/sys/devices/platform/dummy_hcd.8/usb9/9-1/9-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1432.704349][ T9039] tun0: tun_chr_ioctl cmd 1074025675
[ 1432.709880][ T9039] tun0: persist enabled
[ 1432.715039][ T9039] tun0: tun_chr_ioctl cmd 1074025675
[ 1432.720370][ T9039] tun0: persist enabled
[ 1433.085719][ T8448] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[ 1433.161051][ T9071] loop8: detected capacity change from 0 to 512
[ 1433.241335][ T9071] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[ 1433.272399][ T9071] EXT4-fs (loop8): 1 truncate cleaned up
[ 1433.284842][ T9071] EXT4-fs (loop8): mounted filesystem without journal. Opts: nojournal_checksum,jqfmt=vfsold,lazytime,usrquota,usrquota,,errors=continue. Quota mode: writeback.
[ 1433.335026][ T8448] usb 7-1: Using ep0 maxpacket: 16
[ 1433.455040][ T8448] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1433.480262][ T8448] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1433.504982][ T8448] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[ 1433.537756][ T8448] usb 7-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[ 1433.547885][ T8448] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1433.580393][ T8448] usb 7-1: config 0 descriptor??
[ 1434.489487][ T9103] loop1: detected capacity change from 0 to 128
[ 1434.834774][ T8448] usbhid 7-1:0.0: can't add hid device: -71
[ 1434.836416][ T9103] EXT4-fs (loop1): Test dummy encryption mode enabled
[ 1434.840926][ T8448] usbhid: probe of 7-1:0.0 failed with error -71
[ 1434.859207][ T8448] usb 7-1: USB disconnect, device number 9
[ 1434.879378][ T9103] EXT4-fs (loop1): inline encryption not supported
[ 1434.921489][ T9103] EXT4-fs (loop1): mounted filesystem without journal. Opts: test_dummy_encryption=v1,max_dir_size_kb=0x0000000000000002,errors=continue,inlinecrypt,,errors=continue. Quota mode: none.
[ 1434.969175][ T9103] ext4 filesystem being mounted at /243/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1435.104571][ T9127] loop9: detected capacity change from 0 to 1024
[ 1435.364753][T25668] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[ 1436.314622][T25668] usb 1-1: device descriptor read/64, error -71
[ 1436.406928][ T9147] loop1: detected capacity change from 0 to 128
[ 1436.522936][ T9147] vfat filesystem being mounted at /245/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2107-12-31 (0x10391447e)
[ 1436.634818][T25668] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[ 1436.674885][T27252] usb 10-1: new high-speed USB device number 7 using dummy_hcd
[ 1436.854923][T25668] usb 1-1: device descriptor read/64, error -71
[ 1436.880098][ T9171] blk_update_request: I/O error, dev loop6, sector 2 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 0
[ 1436.904742][ T9171] hfsplus: unable to find HFS+ superblock
[ 1436.934657][T27252] usb 10-1: Using ep0 maxpacket: 16
[ 1436.992403][   T26] audit: type=1800 audit(3925392716.280:85): pid=9173 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.12511" name="file1" dev="loop1" ino=1049248 res=0 errno=0
[ 1437.052289][ T9173] attempt to access beyond end of device
[ 1437.052289][ T9173] loop1: rw=2049, want=156, limit=128
[ 1437.071290][T25668] usb usb1-port1: attempt power cycle
[ 1437.170486][T27252] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1437.225625][T27252] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1437.309201][T27252] usb 10-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[ 1437.405827][T27252] usb 10-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[ 1437.464503][T27252] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1437.494627][T25668] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[ 1437.543979][T27252] usb 10-1: config 0 descriptor??
[ 1437.614922][T25668] usb 1-1: device descriptor read/8, error -71
[ 1437.988014][ T9199] xt_TCPMSS: Only works on TCP SYN packets
[ 1438.036025][T25668] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[ 1438.145646][T25668] usb 1-1: device descriptor read/8, error -71
[ 1438.276472][T25668] usb usb1-port1: unable to enumerate USB device
[ 1438.387878][T27252] usbhid 10-1:0.0: can't add hid device: -71
[ 1438.410382][T27252] usbhid: probe of 10-1:0.0 failed with error -71
[ 1438.816140][T27252] usb 10-1: USB disconnect, device number 7
[ 1440.100508][ T9241] loop6: detected capacity change from 0 to 128
[ 1441.565585][ T9241] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 1441.634038][ T9241] ext4 filesystem being mounted at /157/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1441.777952][T27252] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[ 1441.985230][T27252] usb 1-1: device descriptor read/64, error -71
[ 1442.334718][T27252] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[ 1442.564765][T27252] usb 1-1: device descriptor read/64, error -71
[ 1442.591991][ T9281] loop8: detected capacity change from 0 to 128
[ 1442.694914][T27252] usb usb1-port1: attempt power cycle
[ 1442.752617][ T9281] vfat filesystem being mounted at /160/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2107-12-31 (0x10391447e)
[ 1443.095029][   T26] audit: type=1800 audit(3925392722.370:86): pid=9293 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.12548" name="file1" dev="loop8" ino=1049249 res=0 errno=0
[ 1443.150271][ T9293] attempt to access beyond end of device
[ 1443.150271][ T9293] loop8: rw=2049, want=156, limit=128
[ 1443.753399][ T9308] loop1: detected capacity change from 0 to 8
[ 1443.835359][ T9308] SQUASHFS error: Failed to read block 0x62: -5
[ 1443.855067][ T9308] squashfs image failed sanity check
[ 1444.548574][ T9323] loop8: detected capacity change from 0 to 128
[ 1444.604946][ T9323] vfat filesystem being mounted at /163/file0 supports timestamps until 2107-12-31 (0x10391447e)
[ 1444.965182][ T9323] attempt to access beyond end of device
[ 1444.965182][ T9323] loop8: rw=2049, want=1041, limit=128
[ 1445.154627][T32290] usb 2-1: new high-speed USB device number 52 using dummy_hcd
[ 1445.248180][ T9353] loop8: detected capacity change from 0 to 16
[ 1445.374659][T32290] usb 2-1: device descriptor read/64, error -71
[ 1445.575116][ T9353] erofs: (device loop8): erofs_load_compr_cfgs: try to load compressed fs with unsupported algorithms fffe
[ 1445.674755][T32290] usb 2-1: new high-speed USB device number 53 using dummy_hcd
[ 1445.682545][T27252] usb 1-1: new full-speed USB device number 9 using dummy_hcd
[ 1445.884909][T32290] usb 2-1: device descriptor read/64, error -71
[ 1445.961462][ T9373] 9pnet: Insufficient options for proto=fd
[ 1446.015248][T32290] usb usb2-port1: attempt power cycle
[ 1446.044884][T27252] usb 1-1: not running at top speed; connect to a high speed hub
[ 1446.135326][T27252] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1446.149186][T27252] usb 1-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[ 1446.160503][T27252] usb 1-1: config 1 has no interface number 1
[ 1446.167092][T27252] usb 1-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[ 1446.180616][T27252] usb 1-1: config 1 interface 2 altsetting 1 endpoint 0x2 has an invalid bInterval 0, changing to 4
[ 1446.394913][T27252] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1446.421210][T27252] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1446.444734][T32290] usb 2-1: new high-speed USB device number 54 using dummy_hcd
[ 1446.465102][T27252] usb 1-1: Product: syz
[ 1446.469454][T27252] usb 1-1: Manufacturer: syz
[ 1446.474078][T27252] usb 1-1: SerialNumber: syz
[ 1446.544980][T32290] usb 2-1: device descriptor read/8, error -71
[ 1446.605442][ T9392] loop6: detected capacity change from 0 to 512
[ 1446.720669][ T9398] loop9: detected capacity change from 0 to 512
[ 1446.720730][ T9392] EXT4-fs error (device loop6): ext4_validate_block_bitmap:438: comm syz.6.12580: bg 0: block 473: padding at end of block bitmap is not set
[ 1446.769221][ T9392] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6191: Corrupt filesystem
[ 1446.789411][ T9392] EXT4-fs (loop6): 1 orphan inode deleted
[ 1446.798726][ T9392] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 1446.825955][ T9398] EXT4-fs (loop9): Quota format mount options ignored when QUOTA feature is enabled
[ 1446.845041][T32290] usb 2-1: new high-speed USB device number 55 using dummy_hcd
[ 1446.878887][ T9392] ext4 filesystem being mounted at /160/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1446.894800][T27252] usb 1-1: 2:1 : no or invalid class specific endpoint descriptor
[ 1446.906075][T27252] usb 1-1: 2:1 : no or invalid class specific endpoint descriptor
[ 1446.920730][ T9398] EXT4-fs (loop9): mounted filesystem without journal. Opts: grpquota,mb_optimize_scan=0x0000000000000001,quota,bsddf,jqfmt=vfsold,,errors=continue. Quota mode: writeback.
[ 1446.936324][ T9392] EXT4-fs error (device loop6): ext4_lookup:1850: inode #2: comm syz.6.12580: bad inode number: 7
[ 1446.975172][T32290] usb 2-1: device descriptor read/8, error -71
[ 1447.047259][ T9398] ext4 filesystem being mounted at /147/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1447.127431][T32290] usb usb2-port1: unable to enumerate USB device
[ 1447.158334][T27252] usb 1-1: USB disconnect, device number 9
[ 1447.495421][T28534] udevd[28534]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1447.890365][ T9442] loop8: detected capacity change from 0 to 1024
[ 1448.159450][ T9448] loop1: detected capacity change from 0 to 512
[ 1448.275853][ T9448] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 1449.064728][T32290] usb 2-1: new high-speed USB device number 56 using dummy_hcd
[ 1449.385158][T32290] usb 2-1: device descriptor read/64, error -71
[ 1449.684561][T32290] usb 2-1: new high-speed USB device number 57 using dummy_hcd
[ 1449.743993][ T9528] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1449.766828][ T9528] device bridge_slave_0 left promiscuous mode
[ 1449.776626][ T9528] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1449.803495][ T9528] device bridge_slave_1 left promiscuous mode
[ 1449.812210][ T9528] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1449.839362][ T9528] bond0: (slave bond_slave_0): Releasing backup interface
[ 1449.849959][ T9528] bond0: (slave bond_slave_1): Releasing backup interface
[ 1449.906461][T32290] usb 2-1: device descriptor read/64, error -71
[ 1449.940292][ T9528] team0: Port device team_slave_0 removed
[ 1449.987227][ T9528] team0: Port device team_slave_1 removed
[ 1449.993754][ T9528] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1450.003098][ T9528] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1450.024900][T32290] usb usb2-port1: attempt power cycle
[ 1450.077247][ T9542] input: syz1 as /devices/virtual/input/input82
[ 1450.221603][ T9547] loop6: detected capacity change from 0 to 1024
[ 1450.314117][ T9554] netlink: 'syz.9.12635': attribute type 4 has an invalid length.
[ 1450.371288][ T9554] netlink: 'syz.9.12635': attribute type 4 has an invalid length.
[ 1450.524766][T27252] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[ 1450.564691][T32290] usb 2-1: new high-speed USB device number 58 using dummy_hcd
[ 1451.194759][T32290] usb 2-1: device descriptor read/8, error -71
[ 1451.253395][ T9582] netlink: 24 bytes leftover after parsing attributes in process `syz.9.12642'.
[ 1451.326906][ T9584] device bridge_slave_0 left promiscuous mode
[ 1451.333233][ T9584] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1451.372850][ T9584] device bridge_slave_1 left promiscuous mode
[ 1451.383469][ T9584] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1451.410570][ T9584] bond0: (slave bond_slave_0): Releasing backup interface
[ 1451.437095][ T9584] bond0: (slave bond_slave_1): Releasing backup interface
[ 1451.445047][T27252] usb 9-1: config 0 has an invalid interface number: 255 but max is 0
[ 1451.456963][T27252] usb 9-1: config 0 has no interface number 0
[ 1451.467477][ T9584] team0: Port device team_slave_0 removed
[ 1451.469925][T27252] usb 9-1: too many endpoints for config 0 interface 255 altsetting 255: 255, using maximum allowed: 30
[ 1451.485599][T32290] usb 2-1: new high-speed USB device number 59 using dummy_hcd
[ 1451.487360][ T9584] team0: Port device team_slave_1 removed
[ 1451.511629][T27252] usb 9-1: config 0 interface 255 altsetting 255 has 0 endpoint descriptors, different from the interface descriptor's value: 255
[ 1451.517831][ T9584] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1451.534721][T27252] usb 9-1: config 0 interface 255 has no altsetting 0
[ 1451.542531][ T9584] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1451.543614][T27252] usb 9-1: New USB device found, idVendor=0bda, idProduct=0177, bcdDevice=7d.0b
[ 1451.580812][T27252] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1451.604697][T32290] usb 2-1: device descriptor read/8, error -71
[ 1451.611579][T27252] usb 9-1: config 0 descriptor??
[ 1451.655970][T27252] ums-realtek 9-1:0.255: USB Mass Storage device detected
[ 1451.738867][T32290] usb usb2-port1: unable to enumerate USB device
[ 1452.001758][ T9617] netlink: 8 bytes leftover after parsing attributes in process `syz.0.12653'.
[ 1452.298507][ T9634] netlink: 12 bytes leftover after parsing attributes in process `syz.6.12660'.
[ 1452.303052][ T9635] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1452.355750][ T9635] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1452.398551][ T9635] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1452.408529][T27250] usb 9-1: USB disconnect, device number 6
[ 1452.436464][ T9635] device bridge_slave_0 left promiscuous mode
[ 1452.475052][ T9635] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1452.508798][ T9643] loop9: detected capacity change from 0 to 128
[ 1452.520490][ T9635] device bridge_slave_1 left promiscuous mode
[ 1452.537585][ T9635] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1452.558757][ T9635] bond0: (slave bond_slave_0): Releasing backup interface
[ 1452.572613][ T9643] EXT4-fs (loop9): Test dummy encryption mode enabled
[ 1452.594637][ T9643] EXT4-fs (loop9): inline encryption not supported
[ 1452.631881][ T9635] bond0: (slave bond_slave_1): Releasing backup interface
[ 1452.640789][ T9643] EXT4-fs (loop9): mounted filesystem without journal. Opts: test_dummy_encryption=v1,max_dir_size_kb=0x0000000000000002,errors=continue,inlinecrypt,,errors=continue. Quota mode: none.
[ 1452.661133][ T9643] ext4 filesystem being mounted at /164/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1452.874644][T27250] usb 9-1: new high-speed USB device number 7 using dummy_hcd
[ 1452.967886][ T9635] team0: Port device team_slave_0 removed
[ 1453.013650][ T9635] team0: Port device team_slave_1 removed
[ 1453.040946][ T9635] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1453.070025][ T9635] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1453.091701][ T9635] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1453.104931][T27250] usb 9-1: device descriptor read/64, error -71
[ 1453.134115][ T9635] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1453.309711][ T9664] netlink: 8 bytes leftover after parsing attributes in process `syz.0.12667'.
[ 1453.374566][T27250] usb 9-1: new high-speed USB device number 8 using dummy_hcd
[ 1453.584741][T27250] usb 9-1: device descriptor read/64, error -71
[ 1453.705087][T27250] usb usb9-port1: attempt power cycle
[ 1453.842114][T10855] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[ 1453.916213][ T9712] netlink: 12 bytes leftover after parsing attributes in process `syz.9.12679'.
[ 1454.007374][ T9720] netlink: 8 bytes leftover after parsing attributes in process `syz.0.12681'.
[ 1454.144628][T27250] usb 9-1: new high-speed USB device number 9 using dummy_hcd
[ 1454.224783][T10855] usb 7-1: config 0 has an invalid interface number: 255 but max is 0
[ 1454.239911][T10855] usb 7-1: config 0 has no interface number 0
[ 1454.254877][T27250] usb 9-1: device descriptor read/8, error -71
[ 1454.262207][T10855] usb 7-1: too many endpoints for config 0 interface 255 altsetting 255: 255, using maximum allowed: 30
[ 1454.313530][T10855] usb 7-1: config 0 interface 255 altsetting 255 has 0 endpoint descriptors, different from the interface descriptor's value: 255
[ 1454.359241][T10855] usb 7-1: config 0 interface 255 has no altsetting 0
[ 1454.382299][T10855] usb 7-1: New USB device found, idVendor=0bda, idProduct=0177, bcdDevice=7d.0b
[ 1454.412052][T10855] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1454.434053][T10855] usb 7-1: config 0 descriptor??
[ 1454.466984][ T9736] 9p filesystem being mounted at /322/file0 supports timestamps until 2106-02-07 (0xffffffff)
[ 1454.487782][T10855] ums-realtek 7-1:0.255: USB Mass Storage device detected
[ 1454.534677][T27250] usb 9-1: new high-speed USB device number 10 using dummy_hcd
[ 1454.644984][T27250] usb 9-1: device descriptor read/8, error -71
[ 1454.758705][ T9758] netlink: 12 bytes leftover after parsing attributes in process `syz.0.12693'.
[ 1454.774924][T27250] usb usb9-port1: unable to enumerate USB device
[ 1454.934115][ T9766] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1454.960352][ T9766] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1454.977879][ T9766] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1455.002603][ T9766] device bridge_slave_0 left promiscuous mode
[ 1455.019156][ T9766] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1455.041394][ T9766] device bridge_slave_1 left promiscuous mode
[ 1455.061292][ T9766] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1455.089473][ T9766] device veth0_to_bond left promiscuous mode
[ 1455.124759][ T9766] bridge0: port 3(veth0_to_bond) entered disabled state
[ 1455.136297][ T9766] bond0: (slave bond_slave_0): Releasing backup interface
[ 1455.236616][ T9766] bond0: (slave bond_slave_1): Releasing backup interface
[ 1455.319890][T10855] usb 7-1: USB disconnect, device number 10
[ 1455.695736][ T9766] team0: Port device team_slave_0 removed
[ 1455.748446][ T9766] team0: Port device team_slave_1 removed
[ 1455.875960][ T9766] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1455.903718][ T9766] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1455.936839][ T9766] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1456.166395][ T9792] netlink: 8 bytes leftover after parsing attributes in process `syz.9.12701'.
[ 1456.189129][ T9792] netlink: 8 bytes leftover after parsing attributes in process `syz.9.12701'.
[ 1456.235639][ T9313] device hsr_slave_0 left promiscuous mode
[ 1456.296054][ T9313] device hsr_slave_1 left promiscuous mode
[ 1456.305266][ T9313] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1456.379946][ T9812] loop6: detected capacity change from 0 to 1024
[ 1456.727932][ T9313] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1456.783396][ T7525] hfsplus: b-tree write err: -5, ino 3
[ 1456.865480][T32290] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[ 1456.975039][ T9825] loop6: detected capacity change from 0 to 1024
[ 1457.118408][ T9313] team0 (unregistering): Port device team_slave_1 removed
[ 1457.219038][ T9313] team0 (unregistering): Port device team_slave_0 removed
[ 1457.231569][T32290] usb 1-1: device descriptor read/64, error -71
[ 1457.396370][ T9313] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1457.449604][ T9833] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[ 1457.458627][ T9833] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[ 1457.482982][ T9313] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1457.514812][T32290] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[ 1457.734921][T32290] usb 1-1: device descriptor read/64, error -71
[ 1457.770576][ T9313] bond0 (unregistering): Released all slaves
[ 1457.845888][ T9817] netlink: 'syz.9.12707': attribute type 6 has an invalid length.
[ 1457.865350][T32290] usb usb1-port1: attempt power cycle
[ 1458.142024][ T9860] loop9: detected capacity change from 0 to 128
[ 1458.383212][ T9860] EXT4-fs (loop9): Test dummy encryption mode enabled
[ 1458.402813][ T9860] EXT4-fs (loop9): inline encryption not supported
[ 1458.432990][T32290] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[ 1458.524824][T32290] usb 1-1: device descriptor read/8, error -71
[ 1458.607981][ T9860] EXT4-fs (loop9): mounted filesystem without journal. Opts: test_dummy_encryption=v1,max_dir_size_kb=0x0000000000000002,errors=continue,inlinecrypt,,errors=continue. Quota mode: none.
[ 1458.662387][ T9860] ext4 filesystem being mounted at /180/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1458.834786][T32290] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[ 1458.954930][T32290] usb 1-1: device descriptor read/8, error -71
[ 1459.084872][T32290] usb usb1-port1: unable to enumerate USB device
[ 1459.609034][ T9888] loop6: detected capacity change from 0 to 512
[ 1459.723820][ T9888] EXT4-fs (loop6): Cannot turn on journaled quota: type 0: error -2
[ 1459.739667][ T9894] loop8: detected capacity change from 0 to 1024
[ 1459.755063][ T9888] EXT4-fs (loop6): Cannot turn on journaled quota: type 1: error -2
[ 1459.763238][ T9888] EXT4-fs error (device loop6): ext4_orphan_get:1432: comm syz.6.12730: bad orphan inode 13
[ 1459.794048][ T9888] EXT4-fs (loop6): mounted filesystem without journal. Opts: jqfmt=vfsold,usrjquota="data_err=ignore,noload,data_err=ignore,grpjquota="errors=continue,max_dir_size_kb=0x00000000000001ff,nobarrier,,errors=continue. Quota mode: writeback.
[ 1460.035632][ T9906] netlink: 'syz.0.12736': attribute type 4 has an invalid length.
[ 1460.247023][ T9915] netlink: 12 bytes leftover after parsing attributes in process `syz.0.12738'.
[ 1460.276310][ T8230] hfsplus: b-tree write err: -5, ino 3
[ 1460.305576][ T9915] netlink: 16 bytes leftover after parsing attributes in process `syz.0.12738'.
[ 1460.340667][ T9915] netlink: 12 bytes leftover after parsing attributes in process `syz.0.12738'.
[ 1460.386183][ T9915] netlink: 16 bytes leftover after parsing attributes in process `syz.0.12738'.
[ 1460.424781][ T9915] netlink: 5 bytes leftover after parsing attributes in process `syz.0.12738'.
[ 1460.754907][ T8448] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[ 1460.793038][ T9938] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1460.868230][ T9938] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1460.919145][ T9938] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1460.975464][ T8448] usb 7-1: device descriptor read/64, error -71
[ 1461.006427][ T9946] netlink: 'syz.9.12748': attribute type 4 has an invalid length.
[ 1461.054568][ T9949] netlink: 'syz.9.12748': attribute type 4 has an invalid length.
[ 1461.244916][ T8448] usb 7-1: new high-speed USB device number 12 using dummy_hcd
[ 1461.434611][ T8448] usb 7-1: device descriptor read/64, error -71
[ 1461.573067][ T8448] usb usb7-port1: attempt power cycle
[ 1461.833946][ T9985] loop9: detected capacity change from 0 to 512
[ 1461.984522][ T8448] usb 7-1: new high-speed USB device number 13 using dummy_hcd
[ 1462.016253][ T9985] EXT4-fs (loop9): mounted filesystem without journal. Opts: grpquota,nogrpid,quota,,errors=continue. Quota mode: writeback.
[ 1462.034997][ T9985] ext4 filesystem being mounted at /186/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1462.084630][ T8448] usb 7-1: device descriptor read/8, error -71
[ 1462.364555][ T8448] usb 7-1: new high-speed USB device number 14 using dummy_hcd
[ 1462.454725][ T8448] usb 7-1: device descriptor read/8, error -71
[ 1462.594701][ T8448] usb usb7-port1: unable to enumerate USB device
[ 1462.934706][T32290] usb 9-1: new high-speed USB device number 11 using dummy_hcd
[ 1463.315013][T32290] usb 9-1: config 0 has an invalid interface number: 255 but max is 0
[ 1463.327511][T32290] usb 9-1: config 0 has no interface number 0
[ 1463.350616][T32290] usb 9-1: too many endpoints for config 0 interface 255 altsetting 255: 255, using maximum allowed: 30
[ 1463.398433][T32290] usb 9-1: config 0 interface 255 altsetting 255 has 0 endpoint descriptors, different from the interface descriptor's value: 255
[ 1463.452833][T32290] usb 9-1: config 0 interface 255 has no altsetting 0
[ 1463.486132][T32290] usb 9-1: New USB device found, idVendor=0bda, idProduct=0177, bcdDevice=7d.0b
[ 1463.544513][T32290] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1463.596749][T32290] usb 9-1: config 0 descriptor??
[ 1463.675998][T32290] ums-realtek 9-1:0.255: USB Mass Storage device detected
[ 1464.404122][T32290] usb 9-1: USB disconnect, device number 11
[ 1464.684963][T10056] netlink: 'syz.6.12783': attribute type 4 has an invalid length.
[ 1465.122849][T10075] netlink: 24 bytes leftover after parsing attributes in process `syz.0.12790'.
[ 1465.240992][T10078] netlink: 'syz.1.12792': attribute type 4 has an invalid length.
[ 1465.274720][T10078] netlink: 17 bytes leftover after parsing attributes in process `syz.1.12792'.
[ 1465.495982][T10094] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 1465.632252][T10098] netlink: 'syz.1.12798': attribute type 4 has an invalid length.
[ 1465.904526][T25668] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[ 1466.012774][T10108] loop6: detected capacity change from 0 to 2048
[ 1466.144744][T32290] Bluetooth: hci1: command 0x0406 tx timeout
[ 1466.155767][T10115] netlink: 24 bytes leftover after parsing attributes in process `syz.1.12805'.
[ 1466.232579][T10108] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1466.305055][T25668] usb 1-1: config 0 has an invalid interface number: 255 but max is 0
[ 1466.313426][T25668] usb 1-1: config 0 has no interface number 0
[ 1466.372454][T25668] usb 1-1: too many endpoints for config 0 interface 255 altsetting 255: 255, using maximum allowed: 30
[ 1466.424521][T25668] usb 1-1: config 0 interface 255 altsetting 255 has 0 endpoint descriptors, different from the interface descriptor's value: 255
[ 1466.491799][T25668] usb 1-1: config 0 interface 255 has no altsetting 0
[ 1466.529777][T25668] usb 1-1: New USB device found, idVendor=0bda, idProduct=0177, bcdDevice=7d.0b
[ 1466.574501][T25668] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1466.601601][T25668] usb 1-1: config 0 descriptor??
[ 1466.679260][T25668] ums-realtek 1-1:0.255: USB Mass Storage device detected
[ 1466.889414][T27250] usb 1-1: USB disconnect, device number 14
[ 1467.125352][T10160] usb usb8: usbfs: process 10160 (syz.9.12819) did not claim interface 0 before use
[ 1467.534780][T27250] usb 10-1: new high-speed USB device number 8 using dummy_hcd
[ 1467.640035][T10180] loop8: detected capacity change from 0 to 128
[ 1467.766982][T10180] FAT-fs (loop8): bogus number of reserved sectors
[ 1467.793996][T10180] FAT-fs (loop8): Can't find a valid FAT filesystem
[ 1469.444666][T10855] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[ 1469.524692][T27250] usb 10-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1469.555598][T27250] usb 10-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 1469.601234][T27250] usb 10-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1469.654552][T27250] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1469.695874][T27250] usb 10-1: config 0 descriptor??
[ 1469.845041][T10855] usb 1-1: config 0 has an invalid interface number: 255 but max is 0
[ 1469.872810][T10855] usb 1-1: config 0 has no interface number 0
[ 1469.880020][T10855] usb 1-1: too many endpoints for config 0 interface 255 altsetting 255: 255, using maximum allowed: 30
[ 1469.903531][T10855] usb 1-1: config 0 interface 255 altsetting 255 has 0 endpoint descriptors, different from the interface descriptor's value: 255
[ 1469.932765][T10855] usb 1-1: config 0 interface 255 has no altsetting 0
[ 1469.974859][T10855] usb 1-1: New USB device found, idVendor=0bda, idProduct=0177, bcdDevice=7d.0b
[ 1469.991854][T10855] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1470.027751][T10855] usb 1-1: config 0 descriptor??
[ 1470.065999][T10855] ums-realtek 1-1:0.255: USB Mass Storage device detected
[ 1470.269133][T24378] usb 1-1: USB disconnect, device number 15
[ 1470.566849][T10244] loop6: detected capacity change from 0 to 764
[ 1470.805807][T10248] loop8: detected capacity change from 0 to 512
[ 1470.831862][T24378] usb 10-1: USB disconnect, device number 8
[ 1471.254545][T24378] Bluetooth: hci2: command 0x0406 tx timeout
[ 1471.494702][T24378] Bluetooth: hci4: command 0x0406 tx timeout
[ 1471.898192][T10248] EXT4-fs (loop8): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000001000,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 1472.007423][T10248] ext4 filesystem being mounted at /217/file7 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1472.048336][T10263] loop6: detected capacity change from 0 to 16
[ 1472.144309][T10263] erofs: (device loop6): mounted with root inode @ nid 36.
[ 1472.287804][T10248] EXT4-fs error (device loop8): ext4_do_update_inode:5229: inode #2: comm syz.8.12840: corrupted inode contents
[ 1472.425000][T10263] erofs: (device loop6): erofs_map_blocks_flatmode: inline data cross block boundary @ nid 36
[ 1472.518997][T10248] EXT4-fs error (device loop8): ext4_dirty_inode:6077: inode #2: comm syz.8.12840: mark_inode_dirty error
[ 1472.567288][T10263] attempt to access beyond end of device
[ 1472.567288][T10263] loop6: rw=524288, want=34359740336, limit=16
[ 1472.612350][T10272] loop9: detected capacity change from 0 to 128
[ 1472.632983][T10248] EXT4-fs error (device loop8): ext4_do_update_inode:5229: inode #2: comm syz.8.12840: corrupted inode contents
[ 1472.667134][T10248] EXT4-fs error (device loop8): __ext4_ext_dirty:183: inode #2: comm syz.8.12840: mark_inode_dirty error
[ 1472.746159][T10272] EXT4-fs (loop9): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 1472.827622][T10272] ext4 filesystem being mounted at /197/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1473.344607][ T8495] usb 7-1: new high-speed USB device number 15 using dummy_hcd
[ 1473.391979][T10301] loop8: detected capacity change from 0 to 128
[ 1473.442735][T10301] FAT-fs (loop8): bogus number of reserved sectors
[ 1473.463911][T10301] FAT-fs (loop8): Can't find a valid FAT filesystem
[ 1474.087676][T10319] netlink: 4 bytes leftover after parsing attributes in process `syz.8.12859'.
[ 1474.798893][T10330] loop8: detected capacity change from 0 to 128
[ 1474.807335][T10326] loop9: detected capacity change from 0 to 2048
[ 1474.892707][T10326] UDF-fs: error (device loop9): udf_process_sequence: Primary Volume Descriptor not found!
[ 1474.947103][T10326] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1474.966491][ T8495] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1474.969599][T10330] EXT4-fs (loop8): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 1475.001448][ T8495] usb 7-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 1475.041860][T10330] ext4 filesystem being mounted at /223/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1475.063042][ T8495] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1475.158976][ T8495] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1475.200771][T10343] netlink: 4 bytes leftover after parsing attributes in process `syz.0.12864'.
[ 1475.201451][ T8495] usb 7-1: config 0 descriptor??
[ 1475.508379][T10352] loop9: detected capacity change from 0 to 512
[ 1475.628803][T10352] EXT4-fs (loop9): Cannot turn on journaled quota: type 0: error -2
[ 1475.643423][T10352] EXT4-fs (loop9): Cannot turn on journaled quota: type 1: error -2
[ 1475.654681][T10352] EXT4-fs error (device loop9): ext4_orphan_get:1432: comm syz.9.12867: bad orphan inode 13
[ 1475.710890][T10352] EXT4-fs (loop9): mounted filesystem without journal. Opts: jqfmt=vfsold,usrjquota="data_err=ignore,noload,data_err=ignore,grpjquota="errors=continue,max_dir_size_kb=0x00000000000001ff,nobarrier,,errors=continue. Quota mode: writeback.
[ 1476.126262][T10382] loop9: detected capacity change from 0 to 128
[ 1476.197438][T10382] EXT4-fs (loop9): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 1476.209172][T10382] ext4 filesystem being mounted at /207/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1476.361668][T10393] netlink: 4 bytes leftover after parsing attributes in process `syz.0.12880'.
[ 1477.171525][T10424] netlink: 4 bytes leftover after parsing attributes in process `syz.8.12891'.
[ 1477.314944][T24378] usb 7-1: USB disconnect, device number 15
[ 1478.124539][T24378] usb 7-1: new high-speed USB device number 16 using dummy_hcd
[ 1478.406882][T10473] netlink: 12 bytes leftover after parsing attributes in process `syz.9.12905'.
[ 1478.484787][T24378] usb 7-1: config 0 has an invalid interface number: 255 but max is 0
[ 1478.506679][T24378] usb 7-1: config 0 has no interface number 0
[ 1478.513281][T24378] usb 7-1: too many endpoints for config 0 interface 255 altsetting 255: 255, using maximum allowed: 30
[ 1478.556770][T10480] loop9: detected capacity change from 0 to 128
[ 1478.562151][T24378] usb 7-1: config 0 interface 255 altsetting 255 has 0 endpoint descriptors, different from the interface descriptor's value: 255
[ 1478.587443][T24378] usb 7-1: config 0 interface 255 has no altsetting 0
[ 1478.594302][T24378] usb 7-1: New USB device found, idVendor=0bda, idProduct=0177, bcdDevice=7d.0b
[ 1478.617816][T24378] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1478.636811][T24378] usb 7-1: config 0 descriptor??
[ 1478.644202][T10480] vfat filesystem being mounted at /215/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2107-12-31 (0x10391447e)
[ 1478.685900][T24378] ums-realtek 7-1:0.255: USB Mass Storage device detected
[ 1478.958044][   T26] audit: type=1800 audit(3925392758.260:87): pid=10480 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.12908" name="file1" dev="loop9" ino=1049251 res=0 errno=0
[ 1478.986673][T10480] attempt to access beyond end of device
[ 1478.986673][T10480] loop9: rw=2049, want=156, limit=128
[ 1479.092757][T24378] usb 7-1: USB disconnect, device number 16
[ 1479.224814][T12437] usb 9-1: new high-speed USB device number 12 using dummy_hcd
[ 1479.355893][T10504] netlink: 'syz.9.12912': attribute type 4 has an invalid length.
[ 1479.504649][T12437] usb 9-1: Using ep0 maxpacket: 16
[ 1479.625560][T12437] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1479.644538][T12437] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1479.667796][T10519] netlink: 12 bytes leftover after parsing attributes in process `syz.6.12918'.
[ 1479.694830][T12437] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[ 1479.718799][T12437] usb 9-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[ 1479.729153][T12437] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1479.751839][T12437] usb 9-1: config 0 descriptor??
[ 1480.082285][T10531] loop6: detected capacity change from 0 to 512
[ 1480.143557][T10531] EXT4-fs (loop6): Ignoring removed orlov option
[ 1480.183307][T10531] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem
[ 1480.260887][T10531] EXT4-fs error (device loop6): ext4_iget_extra_inode:4573: inode #15: comm syz.6.12921: corrupted in-inode xattr
[ 1480.313337][ T1108] usb 10-1: new high-speed USB device number 9 using dummy_hcd
[ 1480.326789][T10531] EXT4-fs error (device loop6): ext4_orphan_get:1411: comm syz.6.12921: couldn't read orphan inode 15 (err -117)
[ 1480.353736][T10531] EXT4-fs (loop6): mounted filesystem without journal. Opts: jqfmt=vfsold,stripe=0x0000000000000002,noblock_validity,noload,nombcache,orlov,min_batch_time=0x0000000000000002,inode_readahead_blks=0x0000000000008000,,errors=continue. Quota mode: none.
[ 1480.515800][T12437] usbhid 9-1:0.0: can't add hid device: -71
[ 1480.574660][ T1108] usb 10-1: Using ep0 maxpacket: 32
[ 1480.744754][ T1108] usb 10-1: unable to get BOS descriptor or descriptor too short
[ 1480.781445][T12437] usbhid: probe of 9-1:0.0 failed with error -71
[ 1480.825030][ T1108] usb 10-1: config 6 has an invalid descriptor of length 0, skipping remainder of the config
[ 1480.826575][T12437] usb 9-1: USB disconnect, device number 12
[ 1480.860234][ T1108] usb 10-1: config 6 has 0 interfaces, different from the descriptor's value: 3
[ 1481.074923][ T1108] usb 10-1: New USB device found, idVendor=1410, idProduct=a001, bcdDevice=ec.5b
[ 1481.096172][ T1108] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1481.104329][ T1108] usb 10-1: Product: syz
[ 1481.134580][ T1108] usb 10-1: Manufacturer: syz
[ 1481.153603][ T1108] usb 10-1: SerialNumber: syz
[ 1481.164734][T27252] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[ 1481.221860][T10562] netlink: 12 bytes leftover after parsing attributes in process `syz.6.12930'.
[ 1481.319984][T10568] loop8: detected capacity change from 0 to 2048
[ 1481.375984][T10568] UDF-fs: error (device loop8): udf_process_sequence: Primary Volume Descriptor not found!
[ 1481.420581][T24378] usb 10-1: USB disconnect, device number 9
[ 1481.434119][T10573] loop6: detected capacity change from 0 to 8
[ 1481.451414][T10568] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1481.541226][T10573] squashfs image failed sanity check
[ 1481.565084][T27252] usb 1-1: config 0 has an invalid interface number: 255 but max is 0
[ 1481.573543][T27252] usb 1-1: config 0 has no interface number 0
[ 1481.644752][T27252] usb 1-1: too many endpoints for config 0 interface 255 altsetting 255: 255, using maximum allowed: 30
[ 1481.681149][T27252] usb 1-1: config 0 interface 255 altsetting 255 has 0 endpoint descriptors, different from the interface descriptor's value: 255
[ 1481.724489][T27252] usb 1-1: config 0 interface 255 has no altsetting 0
[ 1481.741798][T27252] usb 1-1: New USB device found, idVendor=0bda, idProduct=0177, bcdDevice=7d.0b
[ 1481.771814][T27252] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1481.804397][T27252] usb 1-1: config 0 descriptor??
[ 1481.818237][ T6361] UDF-fs: error (device loop8): udf_read_inode: (ino 1317) failed !bh
[ 1481.856459][T27252] ums-realtek 1-1:0.255: USB Mass Storage device detected
[ 1481.870447][ T6361] UDF-fs: error (device loop8): udf_read_inode: (ino 1317) failed !bh
[ 1482.121426][T10595] loop6: detected capacity change from 0 to 16
[ 1482.173095][T32290] usb 1-1: USB disconnect, device number 16
[ 1482.239538][T10595] erofs: (device loop6): mounted with root inode @ nid 36.
[ 1482.364648][ T2286] usb 10-1: new high-speed USB device number 10 using dummy_hcd
[ 1482.614642][ T2286] usb 10-1: Using ep0 maxpacket: 16
[ 1482.696894][T10604] netlink: 8 bytes leftover after parsing attributes in process `syz.0.12943'.
[ 1482.734938][ T2286] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1482.766468][ T2286] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1482.804541][ T2286] usb 10-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[ 1482.842788][ T2286] usb 10-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[ 1482.895193][ T2286] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1482.944759][ T2286] usb 10-1: config 0 descriptor??
[ 1483.466355][T10609] chnl_net:caif_netlink_parms(): no params data found
[ 1483.659451][T10643] netlink: 8 bytes leftover after parsing attributes in process `syz.6.12953'.
[ 1483.684747][ T2286] usbhid 10-1:0.0: can't add hid device: -71
[ 1483.695817][ T2286] usbhid: probe of 10-1:0.0 failed with error -71
[ 1483.708744][ T2286] usb 10-1: USB disconnect, device number 10
[ 1483.840151][T10609] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1483.874867][T10609] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1483.947241][T10609] device bridge_slave_0 entered promiscuous mode
[ 1483.979078][T10609] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1484.014661][T10609] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1484.066674][T10609] device bridge_slave_1 entered promiscuous mode
[ 1484.203501][T10609] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1484.326651][T10609] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1484.495073][ T1417] ieee802154 phy0 wpan0: encryption failed: -22
[ 1484.501676][ T1417] ieee802154 phy1 wpan1: encryption failed: -22
[ 1484.669748][T10609] team0: Port device team_slave_0 added
[ 1484.873852][T10609] team0: Port device team_slave_1 added
[ 1485.014713][T24378] Bluetooth: hci1: command 0x0409 tx timeout
[ 1485.042062][T10609] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1485.057917][T10676] netlink: 8 bytes leftover after parsing attributes in process `syz.1.12963'.
[ 1485.066980][T10609] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1485.067015][T10609] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1485.123662][T10609] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1485.147898][T10609] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1485.254830][T10609] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1485.386386][ T9313] device hsr_slave_0 left promiscuous mode
[ 1485.410534][ T9313] device hsr_slave_1 left promiscuous mode
[ 1485.922455][ T9313] bond0 (unregistering): Released all slaves
[ 1486.054549][T10609] device hsr_slave_0 entered promiscuous mode
[ 1486.061086][T12437] usb 10-1: new high-speed USB device number 11 using dummy_hcd
[ 1486.069401][T10609] device hsr_slave_1 entered promiscuous mode
[ 1486.114312][T10609] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1486.122634][T10609] Cannot create hsr debugfs directory
[ 1486.475012][T12437] usb 10-1: config 0 has an invalid interface number: 255 but max is 0
[ 1486.495179][T12437] usb 10-1: config 0 has no interface number 0
[ 1486.522041][T12437] usb 10-1: too many endpoints for config 0 interface 255 altsetting 255: 255, using maximum allowed: 30
[ 1486.564586][T12437] usb 10-1: config 0 interface 255 altsetting 255 has 0 endpoint descriptors, different from the interface descriptor's value: 255
[ 1486.592228][T12437] usb 10-1: config 0 interface 255 has no altsetting 0
[ 1486.600420][T12437] usb 10-1: New USB device found, idVendor=0bda, idProduct=0177, bcdDevice=7d.0b
[ 1486.629219][T12437] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1486.630487][T10727] netlink: 8 bytes leftover after parsing attributes in process `syz.1.12976'.
[ 1486.661571][T12437] usb 10-1: config 0 descriptor??
[ 1486.745368][T12437] ums-realtek 10-1:0.255: USB Mass Storage device detected
[ 1486.949480][T12437] usb 10-1: USB disconnect, device number 11
[ 1487.094556][ T8495] Bluetooth: hci1: command 0x041b tx timeout
[ 1487.426428][T10752] loop6: detected capacity change from 0 to 2048
[ 1487.578722][T10752] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1488.621959][T10609] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 1488.710166][T10609] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 1488.717328][T10777] netlink: 8 bytes leftover after parsing attributes in process `syz.9.12989'.
[ 1488.753554][T10609] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 1488.803222][T10609] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 1489.222875][ T8495] Bluetooth: hci1: command 0x040f tx timeout
[ 1489.254924][T27250] usb 2-1: new high-speed USB device number 60 using dummy_hcd
[ 1489.296298][T10609] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1489.391471][ T4453] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1489.410372][ T4453] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1489.451602][T10609] 8021q: adding VLAN 0 to HW filter on device team0
[ 1489.480745][ T4453] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1489.515208][ T4453] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1489.555800][ T4453] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1489.563054][ T4453] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1489.600696][T10804] loop6: detected capacity change from 0 to 764
[ 1489.624948][T27250] usb 2-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[ 1489.640662][ T4453] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1489.652667][T27250] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1489.673422][ T4453] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1489.693496][T27250] usb 2-1: config 0 descriptor??
[ 1489.708122][ T4453] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1489.764370][ T4453] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1489.771591][ T4453] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1489.925557][ T4453] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1489.960992][ T4453] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1490.144313][ T4453] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1490.530459][ T4453] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1490.671223][ T4453] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1490.710437][ T4453] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1490.737094][ T4453] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1490.746180][ T4453] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1490.759439][ T4453] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1490.769088][ T4453] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1490.785886][ T4453] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1490.814303][T10609] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1490.985094][T10827] netlink: 8 bytes leftover after parsing attributes in process `syz.9.13003'.
[ 1491.254546][ T8495] Bluetooth: hci1: command 0x0419 tx timeout
[ 1491.305416][ T4453] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1491.336460][ T4453] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1491.351871][T10609] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1491.444817][T27250] usb 2-1: Cannot set autoneg
[ 1491.449687][T27250] MOSCHIP usb-ethernet driver: probe of 2-1:0.0 failed with error -71
[ 1491.487583][T21887] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1491.507144][T21887] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1491.525189][T27250] usb 2-1: USB disconnect, device number 60
[ 1491.636282][T21887] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1491.650709][T21887] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1491.699619][T21887] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1491.735594][T21887] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1491.785674][T10609] device veth0_vlan entered promiscuous mode
[ 1491.883393][T10609] device veth1_vlan entered promiscuous mode
[ 1492.197132][T21894] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1492.225534][T21894] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1492.267760][T10609] device veth0_macvtap entered promiscuous mode
[ 1492.344075][T10609] device veth1_macvtap entered promiscuous mode
[ 1492.413147][T10609] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1492.478052][T10609] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1492.500936][T10609] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1492.544535][T10609] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1492.588534][T10609] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1492.624555][T10609] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1492.668513][T10609] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1492.704546][T10609] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1492.736295][T10609] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1492.780056][T10609] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1492.824553][T10609] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1492.865452][T10609] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1492.969225][T10609] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1492.997989][T10609] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1493.029019][T10609] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1493.071491][T10609] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1493.122090][ T4453] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1493.137828][ T4453] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1493.181436][ T4453] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1493.208826][ T4453] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1493.257893][ T4453] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1493.297578][ T4453] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1493.334068][T10609] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1493.364489][T10609] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1493.373260][T10609] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1493.423080][T10609] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1493.654235][T21894] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1493.671328][T21894] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1493.699782][T21887] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1493.748605][T21887] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1493.754599][T27250] usb 7-1: new full-speed USB device number 17 using dummy_hcd
[ 1493.774659][T21887] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1493.812878][ T9309] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1494.334846][T27250] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 1494.395578][T27250] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[ 1494.536322][T27250] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a5, bcdDevice= 0.40
[ 1494.556275][T27250] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[ 1494.592362][T27250] usb 7-1: SerialNumber: syz
[ 1494.676696][T27250] cdc_ether: probe of 7-1:1.0 failed with error -22
[ 1494.690460][T27250] usb-storage 7-1:1.0: USB Mass Storage device detected
[ 1494.733812][T27250] usb-storage 7-1:1.0: Quirks match for vid 0525 pid a4a5: 10000
[ 1494.765094][T27250] scsi host1: usb-storage 7-1:1.0
[ 1494.907977][T27250] usb 7-1: USB disconnect, device number 17
[ 1495.561577][T10941] loop3: detected capacity change from 0 to 512
[ 1495.849144][T10941] EXT4-fs (loop3): Mount option "noacl" will be removed by 3.5
[ 1495.849144][T10941] Contact linux-ext4@vger.kernel.org if you think we should keep it.
[ 1495.849144][T10941] 
[ 1496.014641][T10941] EXT4-fs (loop3): mounted filesystem without journal. Opts: usrjquota=,stripe=0x00000000000077b2,noacl,,errors=continue. Quota mode: writeback.
[ 1496.123055][T10941] ext4 filesystem being mounted at /4/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1496.991353][T10981] "syz.1.13039" (10981) uses obsolete ecb(arc4) skcipher
[ 1497.034310][T10981] syz.1.13039 sent an empty control message without MSG_MORE.
[ 1497.757919][T10998] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[ 1497.794616][T10998] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[ 1498.060595][T11020] loop3: detected capacity change from 0 to 128
[ 1498.222825][T11020] vfat filesystem being mounted at /7/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2107-12-31 (0x10391447e)
[ 1498.805486][   T26] audit: type=1800 audit(3925392778.110:88): pid=11036 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.13051" name="file1" dev="loop3" ino=1049254 res=0 errno=0
[ 1498.835092][T11036] attempt to access beyond end of device
[ 1498.835092][T11036] loop3: rw=2049, want=156, limit=128
[ 1503.044866][   T26] audit: type=1326 audit(3925392782.320:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11079 comm="syz.9.13068" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f051d423dd9 code=0x0
[ 1503.149571][   T26] audit: type=1326 audit(3925392782.320:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11079 comm="syz.9.13068" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=31 arch=c000003e syscall=230 compat=0 ip=0x7f051d3e460e code=0x0
[ 1503.235237][T11090] netlink: 4 bytes leftover after parsing attributes in process `syz.0.13071'.
[ 1503.604631][ T8495] usb 2-1: new full-speed USB device number 61 using dummy_hcd
[ 1503.921678][T11124] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[ 1503.934773][ T8495] usb 2-1: not running at top speed; connect to a high speed hub
[ 1504.054587][ T8495] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1504.094278][ T8495] usb 2-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[ 1504.144621][ T8495] usb 2-1: config 1 has no interface number 1
[ 1504.160491][ T8495] usb 2-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[ 1504.334782][ T8495] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1504.364729][ T8495] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1504.372794][ T8495] usb 2-1: Product: syz
[ 1504.511884][ T8495] usb 2-1: Manufacturer: syz
[ 1504.556859][ T8495] usb 2-1: SerialNumber: syz
[ 1505.087083][ T8495] usb 2-1: USB disconnect, device number 61
[ 1505.298671][T11169] loop9: detected capacity change from 0 to 764
[ 1505.375490][T32154] udevd[32154]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1506.410027][   T26] audit: type=1326 audit(3925392785.680:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11181 comm="syz.1.13098" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8dc0435dd9 code=0x0
[ 1506.444160][   T26] audit: type=1326 audit(3925392785.730:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11181 comm="syz.1.13098" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=31 arch=c000003e syscall=436 compat=0 ip=0x7f8dc0435dd9 code=0x0
[ 1507.264725][ T8495] usb 4-1: new high-speed USB device number 70 using dummy_hcd
[ 1507.524991][ T8495] usb 4-1: Using ep0 maxpacket: 16
[ 1507.631195][T12437] Bluetooth: hci1: command 0x0405 tx timeout
[ 1507.644767][ T8495] usb 4-1: config 0 has an invalid interface number: 1 but max is 0
[ 1507.653777][ T8495] usb 4-1: config 0 has no interface number 0
[ 1507.724215][ T8495] usb 4-1: config 0 interface 1 altsetting 0 endpoint 0xC has an invalid bInterval 255, changing to 11
[ 1507.776485][ T8495] usb 4-1: config 0 interface 1 altsetting 0 endpoint 0xC has invalid maxpacket 59391, setting to 1024
[ 1507.813054][T11222] loop6: detected capacity change from 0 to 8
[ 1508.024946][ T8495] usb 4-1: New USB device found, idVendor=1a86, idProduct=752d, bcdDevice=2d.4d
[ 1508.065028][ T8495] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1508.141581][ T8495] usb 4-1: Product: syz
[ 1508.150795][T11226] loop9: detected capacity change from 0 to 512
[ 1508.179671][ T8495] usb 4-1: Manufacturer: syz
[ 1508.226400][ T8495] usb 4-1: SerialNumber: syz
[ 1508.233468][T11226] EXT4-fs (loop9): Ignoring removed mblk_io_submit option
[ 1508.287507][ T8495] usb 4-1: config 0 descriptor??
[ 1508.299972][T11226] EXT4-fs (loop9): Cannot turn on journaled quota: type 0: error -13
[ 1508.318093][T11226] EXT4-fs error (device loop9): ext4_mb_generate_buddy:1176: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters
[ 1508.335795][T11203] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[ 1508.343089][T11226] EXT4-fs error (device loop9): ext4_clear_blocks:883: inode #13: comm syz.9.13112: attempt to clear invalid blocks 33619980 len 1
[ 1508.426482][T11226] EXT4-fs error (device loop9): ext4_free_branches:1030: inode #13: comm syz.9.13112: invalid indirect mapped block 1819239214 (level 0)
[ 1508.455229][T11226] EXT4-fs error (device loop9): ext4_free_branches:1030: inode #13: comm syz.9.13112: invalid indirect mapped block 1819239214 (level 1)
[ 1508.537586][T11226] EXT4-fs (loop9): 1 truncate cleaned up
[ 1508.543314][T11226] EXT4-fs (loop9): mounted filesystem without journal. Opts: i_version,init_itable=0x0000000000000004,mblk_io_submit,noblock_validity,jqfmt=vfsv0,usrjquota=..,errors=continue. Quota mode: writeback.
[ 1508.719389][T12437] usb 4-1: USB disconnect, device number 70
[ 1508.747657][T11226] EXT4-fs (loop9): shut down requested (1)
[ 1509.981815][T11272] loop3: detected capacity change from 0 to 2048
[ 1510.399915][T11266] loop3: detected capacity change from 0 to 2048
[ 1511.091584][T11266] EXT4-fs error (device loop3): ext4_ext_check_inode:501: inode #2: comm syz.3.13125: pblk 0 bad header/extent: eh_entries is 0 but eh_depth is > 0 - magic f30a, entries 0, max 4(4), depth 5(5)
[ 1511.197162][T11266] EXT4-fs (loop3): get root inode failed
[ 1511.229975][T11266] EXT4-fs (loop3): mount failed
[ 1511.537135][   T26] audit: type=1326 audit(3925392790.840:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11301 comm="syz.9.13133" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f051d423dd9 code=0x0
[ 1511.652590][   T26] audit: type=1326 audit(3925392790.890:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11301 comm="syz.9.13133" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=31 arch=c000003e syscall=436 compat=0 ip=0x7f051d423dd9 code=0x0
[ 1512.998740][T11343] loop3: detected capacity change from 0 to 1024
[ 1513.037480][T11343] EXT4-fs (loop3): Ignoring removed orlov option
[ 1513.198480][T11343] EXT4-fs (loop3): mounted filesystem without journal. Opts: block_validity,bsddf,sysvgroups,norecovery,debug_want_extra_isize=0x0000000000000080,orlov,nogrpid,noauto_da_alloc,norecovery,,errors=continue. Quota mode: none.
[ 1513.962429][T11374] loop6: detected capacity change from 0 to 512
[ 1514.091618][T11374] EXT4-fs (loop6): feature flags set on rev 0 fs, running e2fsck is recommended
[ 1514.127802][T11374] EXT4-fs (loop6): warning: mounting unchecked fs, running e2fsck is recommended
[ 1514.182145][T11374] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[ 1514.191163][T11374] System zones: 0-2, 18-18, 34-35
[ 1514.198037][T11374] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 1514.691068][T11393] loop3: detected capacity change from 0 to 764
[ 1516.240156][T11420] loop6: detected capacity change from 0 to 512
[ 1516.310457][T11420] EXT4-fs (loop6): feature flags set on rev 0 fs, running e2fsck is recommended
[ 1516.355066][T11420] EXT4-fs (loop6): warning: mounting unchecked fs, running e2fsck is recommended
[ 1516.461397][T11420] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[ 1516.520428][T11420] System zones: 0-2, 18-18, 34-35
[ 1516.575530][T11420] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 1516.647466][T11428] EXT4-fs error (device loop6): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 353: padding at end of block bitmap is not set
[ 1516.902332][   T26] audit: type=1326 audit(3925392796.210:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11437 comm="syz.0.13169" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5037d8cdd9 code=0x0
[ 1516.984311][   T26] audit: type=1326 audit(3925392796.250:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11437 comm="syz.0.13169" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=31 arch=c000003e syscall=436 compat=0 ip=0x7f5037d8cdd9 code=0x0
[ 1518.739412][T11358] usb 2-1: new high-speed USB device number 62 using dummy_hcd
[ 1519.025566][T11358] usb 2-1: Using ep0 maxpacket: 16
[ 1519.154964][T11358] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1519.204212][T11358] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1519.240425][T11358] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[ 1519.304510][T11358] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[ 1519.335194][T11358] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1519.376938][T11358] usb 2-1: config 0 descriptor??
[ 1520.144853][T11358] usbhid 2-1:0.0: can't add hid device: -71
[ 1520.153326][T11358] usbhid: probe of 2-1:0.0 failed with error -71
[ 1520.186592][T11358] usb 2-1: USB disconnect, device number 62
[ 1521.577675][   T26] audit: type=1326 audit(3925392800.880:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11574 comm="syz.6.13206" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb492731dd9 code=0x0
[ 1521.653372][   T26] audit: type=1326 audit(3925392800.930:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11574 comm="syz.6.13206" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=31 arch=c000003e syscall=230 compat=0 ip=0x7fb4926f260e code=0x0
[ 1522.204623][ T1108] usb 4-1: new high-speed USB device number 71 using dummy_hcd
[ 1522.454887][ T1108] usb 4-1: Using ep0 maxpacket: 16
[ 1522.594930][ T1108] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1522.647594][ T1108] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1522.675712][ T1108] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[ 1522.744521][ T1108] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[ 1522.754070][ T1108] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1522.811987][ T1108] usb 4-1: config 0 descriptor??
[ 1523.564635][ T1108] usbhid 4-1:0.0: can't add hid device: -71
[ 1523.572974][ T1108] usbhid: probe of 4-1:0.0 failed with error -71
[ 1523.618353][ T1108] usb 4-1: USB disconnect, device number 71
[ 1524.664580][ T4178] usb 2-1: new high-speed USB device number 63 using dummy_hcd
[ 1524.966953][ T4178] usb 2-1: Using ep0 maxpacket: 16
[ 1525.104891][ T4178] usb 2-1: too many endpoints for config 0 interface 0 altsetting 48: 48, using maximum allowed: 30
[ 1525.135156][ T4178] usb 2-1: config 0 interface 0 altsetting 48 has 0 endpoint descriptors, different from the interface descriptor's value: 48
[ 1525.176207][   T26] audit: type=1326 audit(3925392804.480:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11707 comm="syz.0.13244" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5037d8cdd9 code=0x0
[ 1525.214562][ T4204] usb 4-1: new high-speed USB device number 72 using dummy_hcd
[ 1525.225183][ T4178] usb 2-1: config 0 interface 0 has no altsetting 0
[ 1525.245885][   T26] audit: type=1326 audit(3925392804.530:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11707 comm="syz.0.13244" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=31 arch=c000003e syscall=230 compat=0 ip=0x7f5037d4d60e code=0x0
[ 1525.441320][ T4178] usb 2-1: New USB device found, idVendor=1235, idProduct=0010, bcdDevice=29.82
[ 1525.452957][ T4178] usb 2-1: New USB device strings: Mfr=83, Product=5, SerialNumber=10
[ 1525.461364][ T4178] usb 2-1: Product: syz
[ 1525.466284][ T4178] usb 2-1: Manufacturer: syz
[ 1525.470958][ T4178] usb 2-1: SerialNumber: syz
[ 1525.490275][ T4178] usb 2-1: config 0 descriptor??
[ 1525.495414][ T4204] usb 4-1: Using ep0 maxpacket: 16
[ 1525.634764][ T4204] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1525.654712][ T4204] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1525.684504][ T4204] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[ 1525.724680][ T4204] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[ 1525.757684][ T4204] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1525.786741][ T4178] usb 2-1: selecting invalid altsetting 1
[ 1525.816645][ T4204] usb 4-1: config 0 descriptor??
[ 1525.839443][ T4178] snd-usb-audio: probe of 2-1:0.0 failed with error -22
[ 1525.880729][ T4178] usb 2-1: USB disconnect, device number 63
[ 1525.889328][T32154] udevd[32154]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1526.524688][T11356] usb 10-1: new high-speed USB device number 12 using dummy_hcd
[ 1526.544745][ T4204] usbhid 4-1:0.0: can't add hid device: -71
[ 1526.550827][ T4204] usbhid: probe of 4-1:0.0 failed with error -71
[ 1526.586876][ T4204] usb 4-1: USB disconnect, device number 72
[ 1526.794551][T11356] usb 10-1: Using ep0 maxpacket: 32
[ 1526.914616][T11356] usb 10-1: unable to get BOS descriptor or descriptor too short
[ 1526.984594][T11356] usb 10-1: unable to read config index 0 descriptor/start: -71
[ 1527.007724][T11356] usb 10-1: can't read configurations, error -71
[ 1528.161736][T11789] loop6: detected capacity change from 0 to 128
[ 1528.328949][T11789] vfat filesystem being mounted at /303/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2107-12-31 (0x10391447e)
[ 1528.587629][T11810] loop9: detected capacity change from 0 to 1024
[ 1528.654750][T27250] usb 2-1: new high-speed USB device number 64 using dummy_hcd
[ 1528.697967][T11810] EXT4-fs (loop9): Test dummy encryption mode enabled
[ 1528.766498][T11810] EXT4-fs (loop9): mounted filesystem without journal. Opts: test_dummy_encryption,i_version,noblock_validity,commit=0x0000000000000005,noinit_itable,max_batch_time=0x0000000000000000,abort,auto_da_alloc,lazytime,noauto_da_alloc,block_validity,,errors=continue. Quota mode: writeback.
[ 1529.010047][   T26] audit: type=1326 audit(3925392808.310:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11826 comm="syz.0.13276" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5037d8cdd9 code=0x0
[ 1529.146537][   T26] audit: type=1326 audit(3925392808.450:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11826 comm="syz.0.13276" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=31 arch=c000003e syscall=230 compat=0 ip=0x7f5037d4d60e code=0x0
[ 1529.214699][T27250] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1529.226953][T27250] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1529.245907][T27250] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1529.262147][T27250] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1529.292451][T27250] usb 2-1: config 0 descriptor??
[ 1529.411285][T27250] usbhid 2-1:0.0: couldn't find an input interrupt endpoint
[ 1530.313527][T11847] loop3: detected capacity change from 0 to 1024
[ 1530.503273][T11847] EXT4-fs (loop3): Ignoring removed orlov option
[ 1530.576405][T11847] EXT4-fs (loop3): mounted filesystem without journal. Opts: block_validity,bsddf,sysvgroups,norecovery,debug_want_extra_isize=0x0000000000000080,orlov,nogrpid,noauto_da_alloc,norecovery,,errors=continue. Quota mode: none.
[ 1531.003972][T11871] loop3: detected capacity change from 0 to 16
[ 1531.066138][T11871] erofs: (device loop3): mounted with root inode @ nid 36.
[ 1531.519230][ T8449] usb 2-1: USB disconnect, device number 64
[ 1532.801576][T11910] loop3: detected capacity change from 0 to 2048
[ 1532.921960][T11910] UDF-fs: error (device loop3): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[ 1532.967442][T11910] UDF-fs: error (device loop3): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[ 1532.999536][T11910] UDF-fs: error (device loop3): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[ 1533.029148][T11910] UDF-fs: warning (device loop3): udf_load_vrs: No anchor found
[ 1533.092084][T11910] UDF-fs: Scanning with blocksize 512 failed
[ 1533.135452][T11910] UDF-fs: error (device loop3): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[ 1533.199498][T11930] loop6: detected capacity change from 0 to 128
[ 1533.216462][T11910] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1533.291568][T11930] vfat filesystem being mounted at /306/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2107-12-31 (0x10391447e)
[ 1533.324682][T10855] usb 2-1: new high-speed USB device number 65 using dummy_hcd
[ 1533.732454][   T26] audit: type=1326 audit(3925392812.970:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11938 comm="syz.3.13304" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb81e6f1dd9 code=0x0
[ 1534.537468][   T26] audit: type=1326 audit(3925392813.670:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11938 comm="syz.3.13304" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=31 arch=c000003e syscall=230 compat=0 ip=0x7fb81e6b260e code=0x0
[ 1534.724762][T10855] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1534.745406][T10855] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1534.764553][T10855] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1534.814570][T10855] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1534.871396][T10855] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1534.906629][T10855] usb 2-1: config 0 descriptor??
[ 1536.303703][T11979] loop9: detected capacity change from 0 to 1024
[ 1536.314746][T10855] usbhid 2-1:0.0: can't add hid device: -71
[ 1536.320795][T10855] usbhid: probe of 2-1:0.0 failed with error -71
[ 1536.354695][T10855] usb 2-1: USB disconnect, device number 65
[ 1536.363540][T11980] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1536.405902][T11980] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1536.464535][T11979] EXT4-fs (loop9): Test dummy encryption mode enabled
[ 1536.475183][T11980] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[ 1536.569661][T11979] EXT4-fs (loop9): mounted filesystem without journal. Opts: test_dummy_encryption,i_version,noblock_validity,commit=0x0000000000000005,noinit_itable,max_batch_time=0x0000000000000000,abort,auto_da_alloc,lazytime,noauto_da_alloc,block_validity,,errors=continue. Quota mode: writeback.
[ 1538.684984][   T26] audit: type=1326 audit(3925392817.990:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12030 comm="syz.3.13325" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb81e6f1dd9 code=0x0
[ 1538.963203][   T26] audit: type=1326 audit(3925392818.020:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12030 comm="syz.3.13325" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=31 arch=c000003e syscall=230 compat=0 ip=0x7fb81e6b260e code=0x0
[ 1542.133220][T12098] loop6: detected capacity change from 0 to 2048
[ 1542.573022][T12131] loop9: detected capacity change from 0 to 1024
[ 1542.780521][   T26] audit: type=1326 audit(3925392822.080:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12138 comm="syz.6.13355" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb492731dd9 code=0x0
[ 1542.923975][   T26] audit: type=1326 audit(3925392822.130:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12138 comm="syz.6.13355" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=31 arch=c000003e syscall=230 compat=0 ip=0x7fb4926f260e code=0x0
[ 1543.144191][T27250] usb 2-1: new high-speed USB device number 66 using dummy_hcd
[ 1543.848600][T12158] loop3: detected capacity change from 0 to 128
[ 1544.013839][T12158] vfat filesystem being mounted at /62/file1 supports timestamps until 2107-12-31 (0x10391447e)
[ 1544.111763][T12162] loop9: detected capacity change from 0 to 4096
[ 1544.197826][T12162] EXT4-fs (loop9): Test dummy encryption mode enabled
[ 1544.214873][T12162] EXT4-fs (loop9): Ignoring removed oldalloc option
[ 1544.254934][T27250] usb 2-1: config 0 has an invalid interface number: 255 but max is 0
[ 1544.263276][T27250] usb 2-1: config 0 has no interface number 0
[ 1544.289303][T12162] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=b842c01c, mo2=0002]
[ 1544.292852][T27250] usb 2-1: too many endpoints for config 0 interface 255 altsetting 255: 255, using maximum allowed: 30
[ 1544.309258][T27250] usb 2-1: config 0 interface 255 altsetting 255 has 0 endpoint descriptors, different from the interface descriptor's value: 255
[ 1544.324656][T27250] usb 2-1: config 0 interface 255 has no altsetting 0
[ 1544.331494][T27250] usb 2-1: New USB device found, idVendor=0bda, idProduct=0177, bcdDevice=7d.0b
[ 1544.337409][T12162] System zones: 
[ 1544.351028][T27250] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1544.352016][T12162] 0-5
[ 1544.368402][T27250] usb 2-1: config 0 descriptor??
[ 1544.389481][T12162] 
[ 1544.415388][T12162] EXT4-fs (loop9): mounted filesystem without journal. Opts: debug,stripe=0x0000000000000061,grpid,test_dummy_encryption=v1,data_err=abort,oldalloc,acl,journal_ioprio=0x0000000000000000,resuid=0x0000000000000000,,errors=continue. Quota mode: writeback.
[ 1544.441312][T27250] ums-realtek 2-1:0.255: USB Mass Storage device detected
[ 1544.656885][ T4204] usb 2-1: USB disconnect, device number 66
[ 1544.822297][T12191] loop3: detected capacity change from 0 to 2048
[ 1545.955075][ T1417] ieee802154 phy0 wpan0: encryption failed: -22
[ 1545.961690][ T1417] ieee802154 phy1 wpan1: encryption failed: -22
[ 1546.239108][ T1108] usb 4-1: new high-speed USB device number 73 using dummy_hcd
[ 1546.484827][ T1108] usb 4-1: Using ep0 maxpacket: 16
[ 1546.635425][ T1108] usb 4-1: config 0 has no interfaces?
[ 1546.795908][ T1108] usb 4-1: New USB device found, idVendor=0596, idProduct=0001, bcdDevice= 5.f5
[ 1546.908042][ T1108] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1546.965930][ T1108] usb 4-1: Product: syz
[ 1546.996964][ T1108] usb 4-1: Manufacturer: syz
[ 1547.030587][ T1108] usb 4-1: SerialNumber: syz
[ 1547.104300][ T1108] usb 4-1: config 0 descriptor??
[ 1547.370439][ T8448] usb 4-1: USB disconnect, device number 73
[ 1547.473327][   T26] audit: type=1326 audit(3925392826.770:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12254 comm="syz.9.13383" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f051d423dd9 code=0x0
[ 1547.551524][   T26] audit: type=1326 audit(3925392826.820:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12254 comm="syz.9.13383" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=31 arch=c000003e syscall=230 compat=0 ip=0x7f051d3e460e code=0x0
[ 1548.494786][T12272] loop3: detected capacity change from 0 to 128
[ 1548.607366][T12272] vfat filesystem being mounted at /67/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2107-12-31 (0x10391447e)
[ 1548.751374][T12282] netlink: 20 bytes leftover after parsing attributes in process `syz.1.13389'.
[ 1548.976365][T12288] netlink: 36 bytes leftover after parsing attributes in process `syz.1.13391'.
[ 1549.079441][T12294] attempt to access beyond end of device
[ 1549.079441][T12294] loop3: rw=2049, want=156, limit=128
[ 1549.164785][   T26] audit: type=1800 audit(3925392828.350:111): pid=12294 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.13387" name="file1" dev="loop3" ino=1049262 res=0 errno=0
[ 1550.054640][ T8448] usb 1-1: new high-speed USB device number 17 using dummy_hcd
[ 1550.314789][ T8448] usb 1-1: Using ep0 maxpacket: 16
[ 1550.435472][ T8448] usb 1-1: config 0 has no interfaces?
[ 1550.595531][ T8448] usb 1-1: New USB device found, idVendor=0596, idProduct=0001, bcdDevice= 5.f5
[ 1550.690497][ T8448] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1550.762159][ T8448] usb 1-1: Product: syz
[ 1550.790175][ T8448] usb 1-1: Manufacturer: syz
[ 1550.825802][ T8448] usb 1-1: SerialNumber: syz
[ 1550.876978][ T8448] usb 1-1: config 0 descriptor??
[ 1550.899772][T12330] netlink: 20 bytes leftover after parsing attributes in process `syz.9.13402'.
[ 1551.165890][ T8448] usb 1-1: USB disconnect, device number 17
[ 1551.173594][T12347] loop9: detected capacity change from 0 to 1024
[ 1551.194496][ T4204] usb 7-1: new full-speed USB device number 18 using dummy_hcd
[ 1551.244524][ T8230] hfsplus: b-tree write err: -5, ino 25
[ 1551.250328][ T8230] hfsplus: b-tree write err: -5, ino 4
[ 1551.265929][T12347] hfsplus: bad catalog entry type
[ 1551.286878][ T8230] hfsplus: b-tree write err: -5, ino 2
[ 1551.366842][T21894] hfsplus: b-tree write err: -5, ino 2
[ 1551.424497][ T4204] usb 7-1: device descriptor read/64, error -71
[ 1551.844663][ T8448] usb 10-1: new full-speed USB device number 14 using dummy_hcd
[ 1552.185119][ T8448] usb 10-1: not running at top speed; connect to a high speed hub
[ 1552.315624][ T8448] usb 10-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1552.454779][ T8448] usb 10-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[ 1552.504224][ T8448] usb 10-1: config 1 has no interface number 1
[ 1552.533993][ T8448] usb 10-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[ 1552.594629][ T8448] usb 10-1: config 1 interface 2 altsetting 1 endpoint 0x2 has an invalid bInterval 0, changing to 4
[ 1552.616684][ T4204] usb 7-1: new full-speed USB device number 19 using dummy_hcd
[ 1552.714790][ T8448] usb 10-1: config 1 interface 2 altsetting 1 endpoint 0x2 has invalid wMaxPacketSize 0
[ 1552.824841][ T4204] usb 7-1: device descriptor read/64, error -71
[ 1553.135054][ T8448] usb 10-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1553.242927][ T8448] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1553.456171][ T8448] usb 10-1: Product: syz
[ 1553.676262][ T8448] usb 10-1: Manufacturer: syz
[ 1553.681165][ T8448] usb 10-1: SerialNumber: syz
[ 1553.822632][ T4204] usb usb7-port1: attempt power cycle
[ 1554.129013][ T8448] usb 10-1: USB disconnect, device number 14
[ 1554.354714][ T2286] usb 4-1: new high-speed USB device number 74 using dummy_hcd
[ 1554.407617][T32154] udevd[32154]: error opening ATTR{/sys/devices/platform/dummy_hcd.9/usb10/10-1/10-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1554.604644][ T2286] usb 4-1: Using ep0 maxpacket: 16
[ 1554.727398][ T2286] usb 4-1: config 0 has an invalid interface number: 214 but max is 0
[ 1554.827254][ T2286] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1555.127958][ T2286] usb 4-1: config 0 has no interface number 0
[ 1555.374913][ T2286] usb 4-1: New USB device found, idVendor=0596, idProduct=0001, bcdDevice= 5.f5
[ 1555.395330][ T2286] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1555.437893][T12446] tap0: tun_chr_ioctl cmd 35108
[ 1555.442592][ T2286] usb 4-1: Product: syz
[ 1555.463638][ T2286] usb 4-1: Manufacturer: syz
[ 1555.475043][ T2286] usb 4-1: SerialNumber: syz
[ 1555.499656][ T2286] usb 4-1: config 0 descriptor??
[ 1555.762471][ T4178] usb 4-1: USB disconnect, device number 74
[ 1556.794535][ T2286] usb 10-1: new full-speed USB device number 15 using dummy_hcd
[ 1556.984618][ T2286] usb 10-1: device descriptor read/64, error -71
[ 1557.116878][ T4204] usb 7-1: new full-speed USB device number 21 using dummy_hcd
[ 1557.255693][ T2286] usb 10-1: new full-speed USB device number 16 using dummy_hcd
[ 1557.474725][ T2286] usb 10-1: device descriptor read/64, error -71
[ 1557.606206][ T2286] usb usb10-port1: attempt power cycle
[ 1558.024526][ T2286] usb 10-1: new full-speed USB device number 17 using dummy_hcd
[ 1558.114914][ T2286] usb 10-1: device descriptor read/8, error -71
[ 1558.194691][ T4204] usb 7-1: not running at top speed; connect to a high speed hub
[ 1558.284739][ T4204] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1558.324595][ T4204] usb 7-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[ 1558.372240][ T4204] usb 7-1: config 1 has no interface number 1
[ 1558.388796][ T4204] usb 7-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[ 1558.419302][ T4204] usb 7-1: config 1 interface 2 altsetting 1 endpoint 0x2 has an invalid bInterval 0, changing to 4
[ 1558.440548][ T4204] usb 7-1: config 1 interface 2 altsetting 1 endpoint 0x2 has invalid wMaxPacketSize 0
[ 1558.451643][T12511] trusted_key: encrypted_key: master key parameter 's' is invalid
[ 1558.530165][ T2286] usb 10-1: new full-speed USB device number 18 using dummy_hcd
[ 1558.624804][ T2286] usb 10-1: device descriptor read/8, error -71
[ 1558.755255][ T2286] usb usb10-port1: unable to enumerate USB device
[ 1559.494686][ T4204] usb 7-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1559.521154][ T4204] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1559.549725][ T4204] usb 7-1: Product: syz
[ 1559.554089][ T4204] usb 7-1: Manufacturer: syz
[ 1559.569148][ T4204] usb 7-1: SerialNumber: syz
[ 1559.609284][T11358] usb 2-1: new high-speed USB device number 67 using dummy_hcd
[ 1559.786469][T12530] loop3: detected capacity change from 0 to 4096
[ 1559.866800][T12530] EXT4-fs (loop3): Mount option "data_err=ignore" incompatible with ext2
[ 1559.895441][ T4204] usb 7-1: USB disconnect, device number 21
[ 1559.925256][T11358] usb 2-1: Using ep0 maxpacket: 16
[ 1560.084929][T11358] usb 2-1: config 0 has an invalid interface number: 214 but max is 0
[ 1560.093261][T11358] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1560.122691][T11358] usb 2-1: config 0 has no interface number 0
[ 1560.183232][T32154] udevd[32154]: error opening ATTR{/sys/devices/platform/dummy_hcd.6/usb7/7-1/7-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1560.204797][ T8448] usb 10-1: new high-speed USB device number 19 using dummy_hcd
[ 1560.295018][T11358] usb 2-1: New USB device found, idVendor=0596, idProduct=0001, bcdDevice= 5.f5
[ 1560.315020][T11358] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1560.323092][T11358] usb 2-1: Product: syz
[ 1560.368889][T11358] usb 2-1: Manufacturer: syz
[ 1560.379765][T11358] usb 2-1: SerialNumber: syz
[ 1560.414626][T11358] usb 2-1: config 0 descriptor??
[ 1560.514684][ T1108] usb 7-1: new full-speed USB device number 22 using dummy_hcd
[ 1560.574833][ T8448] usb 10-1: config 0 has an invalid interface number: 2 but max is 0
[ 1560.588391][ T8448] usb 10-1: config 0 has no interface number 0
[ 1560.613743][ T8448] usb 10-1: New USB device found, idVendor=0bda, idProduct=0177, bcdDevice=7d.0b
[ 1560.654926][ T8448] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1560.671371][ T8448] usb 10-1: config 0 descriptor??
[ 1560.703612][ T8449] usb 2-1: USB disconnect, device number 67
[ 1560.737223][ T8448] ums-realtek 10-1:0.2: USB Mass Storage device detected
[ 1560.874723][ T1108] usb 7-1: config 0 has no interfaces?
[ 1560.880293][ T1108] usb 7-1: New USB device found, idVendor=1e7d, idProduct=319c, bcdDevice= 0.00
[ 1560.918885][ T1108] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1560.940374][T11358] usb 10-1: USB disconnect, device number 19
[ 1560.967136][ T1108] usb 7-1: config 0 descriptor??
[ 1561.211987][T12545] 
[ 1561.214396][T12545] =====================================================
[ 1561.221343][T12545] WARNING: SOFTIRQ-safe -> SOFTIRQ-unsafe lock order detected
[ 1561.228827][T12545] syzkaller #0 Not tainted
[ 1561.233263][T12545] -----------------------------------------------------
[ 1561.240215][T12545] syz.6.13460/12545 [HC0[0]:SC0[0]:HE0:SE1] is trying to acquire:
[ 1561.248060][T12545] ffff88807a6f7de0 (&new->fa_lock){....}-{2:2}, at: kill_fasync+0x16d/0x490
[ 1561.257083][T12545] 
[ 1561.257083][T12545] and this task is already holding:
[ 1561.264474][T12545] ffff888063770028 (&client->buffer_lock){..-.}-{2:2}, at: evdev_pass_values+0xcb/0xab0
[ 1561.274337][T12545] which would create a new lock dependency:
[ 1561.280334][T12545]  (&client->buffer_lock){..-.}-{2:2} -> (&new->fa_lock){....}-{2:2}
[ 1561.288481][T12545] 
[ 1561.288481][T12545] but this new dependency connects a SOFTIRQ-irq-safe lock:
[ 1561.297958][T12545]  (&client->buffer_lock){..-.}-{2:2}
[ 1561.297996][T12545] 
[ 1561.297996][T12545] ... which became SOFTIRQ-irq-safe at:
[ 1561.311102][T12545]   lock_acquire+0x19e/0x400
[ 1561.315821][T12545]   _raw_spin_lock+0x2a/0x40
[ 1561.320506][T12545]   evdev_pass_values+0xcb/0xab0
[ 1561.325555][T12545]   evdev_events+0x1c0/0x2f0
[ 1561.330165][T12545]   input_pass_values+0x87e/0x1210
[ 1561.335454][T12545]   input_handle_event+0xbe0/0x1490
[ 1561.340684][T12545]   input_event+0x88/0xb0
[ 1561.345161][T12545]   hidinput_hid_event+0x1184/0x19a0
[ 1561.350578][T12545]   hid_process_event+0x4b7/0x620
[ 1561.355642][T12545]   hid_report_raw_event+0xdde/0x1640
[ 1561.361054][T12545]   hid_input_report+0x424/0x4e0
[ 1561.366017][T12545]   hid_irq_in+0x435/0x690
[ 1561.370524][T12545]   __usb_hcd_giveback_urb+0x35f/0x520
[ 1561.376030][T12545]   dummy_timer+0x880/0x30b0
[ 1561.380771][T12545]   call_timer_fn+0x17b/0x540
[ 1561.385531][T12545]   __run_timers+0x53e/0x800
[ 1561.390895][T12545]   run_timer_softirq+0x63/0xf0
[ 1561.395780][T12545]   handle_softirqs+0x339/0x830
[ 1561.400808][T12545]   __irq_exit_rcu+0x13b/0x230
[ 1561.405695][T12545]   irq_exit_rcu+0x5/0x20
[ 1561.410058][T12545]   sysvec_apic_timer_interrupt+0xa0/0xc0
[ 1561.415838][T12545]   asm_sysvec_apic_timer_interrupt+0x16/0x20
[ 1561.421935][T12545]   lock_release+0x5a4/0x8a0
[ 1561.426556][T12545]   batadv_nc_worker+0x25b/0x5c0
[ 1561.431632][T12545]   process_one_work+0x85f/0x1010
[ 1561.436735][T12545]   worker_thread+0xaa6/0x1290
[ 1561.441566][T12545]   kthread+0x436/0x520
[ 1561.445723][T12545]   ret_from_fork+0x1f/0x30
[ 1561.450278][T12545] 
[ 1561.450278][T12545] to a SOFTIRQ-irq-unsafe lock:
[ 1561.457289][T12545]  (tasklist_lock){.+.+}-{2:2}
[ 1561.457313][T12545] 
[ 1561.457313][T12545] ... which became SOFTIRQ-irq-unsafe at:
[ 1561.469943][T12545] ...
[ 1561.469949][T12545]   lock_acquire+0x19e/0x400
[ 1561.477126][T12545]   _raw_read_lock+0x32/0x40
[ 1561.481719][T12545]   do_wait+0x293/0xac0
[ 1561.485872][T12545]   kernel_wait+0xd3/0x1c0
[ 1561.490285][T12545]   call_usermodehelper_exec_work+0xb5/0x220
[ 1561.496263][T12545]   process_one_work+0x85f/0x1010
[ 1561.501376][T12545]   worker_thread+0xaa6/0x1290
[ 1561.506173][T12545]   kthread+0x436/0x520
[ 1561.510415][T12545]   ret_from_fork+0x1f/0x30
[ 1561.514935][T12545] 
[ 1561.514935][T12545] other info that might help us debug this:
[ 1561.514935][T12545] 
[ 1561.525194][T12545] Chain exists of:
[ 1561.525194][T12545]   &client->buffer_lock --> &new->fa_lock --> tasklist_lock
[ 1561.525194][T12545] 
[ 1561.538315][T12545]  Possible interrupt unsafe locking scenario:
[ 1561.538315][T12545] 
[ 1561.546632][T12545]        CPU0                    CPU1
[ 1561.552000][T12545]        ----                    ----
[ 1561.557466][T12545]   lock(tasklist_lock);
[ 1561.561709][T12545]                                local_irq_disable();
[ 1561.568457][T12545]                                lock(&client->buffer_lock);
[ 1561.575831][T12545]                                lock(&new->fa_lock);
[ 1561.582598][T12545]   <Interrupt>
[ 1561.586051][T12545]     lock(&client->buffer_lock);
[ 1561.591085][T12545] 
[ 1561.591085][T12545]  *** DEADLOCK ***
[ 1561.591085][T12545] 
[ 1561.599234][T12545] 7 locks held by syz.6.13460/12545:
[ 1561.604721][T12545]  #0: ffff888025c1e110 (&evdev->mutex){+.+.}-{3:3}, at: evdev_write+0x17c/0x490
[ 1561.613866][T12545]  #1: ffff888146afe230 (&dev->event_lock#2){-.-.}-{2:2}, at: input_inject_event+0x9e/0x2c0
[ 1561.624059][T12545]  #2: ffffffff8c31eb20 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire+0x5/0x30
[ 1561.633457][T12545]  #3: ffffffff8c31eb20 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire+0x5/0x30
[ 1561.642770][T12545]  #4: ffffffff8c31eb20 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire+0x5/0x30
[ 1561.652202][T12545]  #5: ffff888063770028 (&client->buffer_lock){..-.}-{2:2}, at: evdev_pass_values+0xcb/0xab0
[ 1561.662399][T12545]  #6: ffffffff8c31eb20 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire+0x5/0x30
[ 1561.671720][T12545] 
[ 1561.671720][T12545] the dependencies between SOFTIRQ-irq-safe lock and the holding lock:
[ 1561.682125][T12545] -> (&client->buffer_lock){..-.}-{2:2} {
[ 1561.687861][T12545]    IN-SOFTIRQ-W at:
[ 1561.691841][T12545]                     lock_acquire+0x19e/0x400
[ 1561.698008][T12545]                     _raw_spin_lock+0x2a/0x40
[ 1561.704159][T12545]                     evdev_pass_values+0xcb/0xab0
[ 1561.710659][T12545]                     evdev_events+0x1c0/0x2f0
[ 1561.716810][T12545]                     input_pass_values+0x87e/0x1210
[ 1561.723489][T12545]                     input_handle_event+0xbe0/0x1490
[ 1561.730250][T12545]                     input_event+0x88/0xb0
[ 1561.736147][T12545]                     hidinput_hid_event+0x1184/0x19a0
[ 1561.743001][T12545]                     hid_process_event+0x4b7/0x620
[ 1561.749591][T12545]                     hid_report_raw_event+0xdde/0x1640
[ 1561.756530][T12545]                     hid_input_report+0x424/0x4e0
[ 1561.763029][T12545]                     hid_irq_in+0x435/0x690
[ 1561.769010][T12545]                     __usb_hcd_giveback_urb+0x35f/0x520
[ 1561.776035][T12545]                     dummy_timer+0x880/0x30b0
[ 1561.782279][T12545]                     call_timer_fn+0x17b/0x540
[ 1561.788520][T12545]                     __run_timers+0x53e/0x800
[ 1561.794674][T12545]                     run_timer_softirq+0x63/0xf0
[ 1561.801119][T12545]                     handle_softirqs+0x339/0x830
[ 1561.807620][T12545]                     __irq_exit_rcu+0x13b/0x230
[ 1561.813948][T12545]                     irq_exit_rcu+0x5/0x20
[ 1561.819840][T12545]                     sysvec_apic_timer_interrupt+0xa0/0xc0
[ 1561.827131][T12545]                     asm_sysvec_apic_timer_interrupt+0x16/0x20
[ 1561.834767][T12545]                     lock_release+0x5a4/0x8a0
[ 1561.840952][T12545]                     batadv_nc_worker+0x25b/0x5c0
[ 1561.847468][T12545]                     process_one_work+0x85f/0x1010
[ 1561.854060][T12545]                     worker_thread+0xaa6/0x1290
[ 1561.860390][T12545]                     kthread+0x436/0x520
[ 1561.866111][T12545]                     ret_from_fork+0x1f/0x30
[ 1561.872185][T12545]    INITIAL USE at:
[ 1561.876082][T12545]                    lock_acquire+0x19e/0x400
[ 1561.882152][T12545]                    _raw_spin_lock+0x2a/0x40
[ 1561.888216][T12545]                    evdev_pass_values+0xcb/0xab0
[ 1561.894635][T12545]                    evdev_events+0x1c0/0x2f0
[ 1561.900899][T12545]                    input_pass_values+0x87e/0x1210
[ 1561.907508][T12545]                    input_handle_event+0xb3f/0x1490
[ 1561.914195][T12545]                    input_inject_event+0x1b9/0x2c0
[ 1561.920807][T12545]                    evdev_write+0x35b/0x490
[ 1561.926793][T12545]                    vfs_write+0x30b/0xd60
[ 1561.932684][T12545]                    ksys_write+0x152/0x260
[ 1561.938596][T12545]                    do_syscall_64+0x4c/0xa0
[ 1561.944578][T12545]                    entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1561.952039][T12545]  }
[ 1561.954535][T12545]  ... key      at: [<ffffffff9663f380>] evdev_open.__key.22+0x0/0x20
[ 1561.962755][T12545] 
[ 1561.962755][T12545] the dependencies between the lock to be acquired
[ 1561.962764][T12545]  and SOFTIRQ-irq-unsafe lock:
[ 1561.976293][T12545]   -> (tasklist_lock){.+.+}-{2:2} {
[ 1561.981598][T12545]      HARDIRQ-ON-R at:
[ 1561.985755][T12545]                         lock_acquire+0x19e/0x400
[ 1561.992264][T12545]                         _raw_read_lock+0x32/0x40
[ 1561.998785][T12545]                         do_wait+0x293/0xac0
[ 1562.004854][T12545]                         kernel_wait+0xd3/0x1c0
[ 1562.011178][T12545]                         call_usermodehelper_exec_work+0xb5/0x220
[ 1562.019071][T12545]                         process_one_work+0x85f/0x1010
[ 1562.026014][T12545]                         worker_thread+0xaa6/0x1290
[ 1562.032697][T12545]                         kthread+0x436/0x520
[ 1562.038761][T12545]                         ret_from_fork+0x1f/0x30
[ 1562.045194][T12545]      SOFTIRQ-ON-R at:
[ 1562.049349][T12545]                         lock_acquire+0x19e/0x400
[ 1562.055852][T12545]                         _raw_read_lock+0x32/0x40
[ 1562.062356][T12545]                         do_wait+0x293/0xac0
[ 1562.068424][T12545]                         kernel_wait+0xd3/0x1c0
[ 1562.074755][T12545]                         call_usermodehelper_exec_work+0xb5/0x220
[ 1562.082651][T12545]                         process_one_work+0x85f/0x1010
[ 1562.089712][T12545]                         worker_thread+0xaa6/0x1290
[ 1562.096657][T12545]                         kthread+0x436/0x520
[ 1562.102730][T12545]                         ret_from_fork+0x1f/0x30
[ 1562.109149][T12545]      INITIAL USE at:
[ 1562.113230][T12545]                        lock_acquire+0x19e/0x400
[ 1562.119645][T12545]                        _raw_write_lock_irq+0xab/0xf0
[ 1562.126498][T12545]                        copy_process+0x236f/0x3e20
[ 1562.133136][T12545]                        kernel_clone+0x23f/0x990
[ 1562.139555][T12545]                        kernel_thread+0xfa/0x160
[ 1562.145998][T12545]                        rest_init+0x21/0x330
[ 1562.152074][T12545]                        start_kernel+0x489/0x540
[ 1562.158528][T12545]                        secondary_startup_64_no_verify+0xb1/0xbb
[ 1562.166334][T12545]      INITIAL READ USE at:
[ 1562.170839][T12545]                             lock_acquire+0x19e/0x400
[ 1562.177691][T12545]                             _raw_read_lock+0x32/0x40
[ 1562.184539][T12545]                             do_wait+0x293/0xac0
[ 1562.191490][T12545]                             kernel_wait+0xd3/0x1c0
[ 1562.198164][T12545]                             call_usermodehelper_exec_work+0xb5/0x220
[ 1562.206489][T12545]                             process_one_work+0x85f/0x1010
[ 1562.213783][T12545]                             worker_thread+0xaa6/0x1290
[ 1562.220920][T12545]                             kthread+0x436/0x520
[ 1562.227363][T12545]                             ret_from_fork+0x1f/0x30
[ 1562.234475][T12545]    }
[ 1562.237143][T12545]    ... key      at: [<ffffffff8c00a058>] tasklist_lock+0x18/0x40
[ 1562.245041][T12545]    ... acquired at:
[ 1562.249012][T12545]    _raw_read_lock+0x32/0x40
[ 1562.253695][T12545]    send_sigio+0xd2/0x330
[ 1562.258110][T12545]    kill_fasync+0x20a/0x490
[ 1562.262708][T12545]    lease_break_callback+0x22/0x30
[ 1562.267989][T12545]    __break_lease+0x4a1/0x12b0
[ 1562.272845][T12545]    vfs_truncate+0x1fb/0x2f0
[ 1562.277552][T12545]    do_sys_truncate+0xf2/0x1c0
[ 1562.282421][T12545]    do_syscall_64+0x4c/0xa0
[ 1562.287018][T12545]    entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1562.293099][T12545] 
[ 1562.295472][T12545]  -> (&f->f_owner.lock){...-}-{2:2} {
[ 1562.300963][T12545]     IN-SOFTIRQ-R at:
[ 1562.305033][T12545]                       lock_acquire+0x19e/0x400
[ 1562.311369][T12545]                       _raw_read_lock_irqsave+0xb8/0x100
[ 1562.318563][T12545]                       send_sigurg+0x25/0x390
[ 1562.324718][T12545]                       sk_send_sigurg+0x6b/0xc0
[ 1562.331131][T12545]                       tcp_urg+0x2bc/0xb20
[ 1562.337038][T12545]                       tcp_rcv_established+0xac2/0x1ce0
[ 1562.344057][T12545]                       tcp_v4_do_rcv+0x44b/0x9b0
[ 1562.350491][T12545]                       tcp_v4_rcv+0x26d8/0x2d10
[ 1562.356835][T12545]                       ip_protocol_deliver_rcu+0x3ad/0x770
[ 1562.364163][T12545]                       ip_local_deliver_finish+0x1d5/0x320
[ 1562.371449][T12545]                       NF_HOOK+0x303/0x390
[ 1562.377344][T12545]                       NF_HOOK+0x303/0x390
[ 1562.383241][T12545]                       __netif_receive_skb+0xcc/0x290
[ 1562.390153][T12545]                       process_backlog+0x370/0x790
[ 1562.396810][T12545]                       __napi_poll+0xc0/0x430
[ 1562.403164][T12545]                       net_rx_action+0x4d4/0xa10
[ 1562.409576][T12545]                       handle_softirqs+0x339/0x830
[ 1562.416165][T12545]                       do_softirq+0x142/0x210
[ 1562.422317][T12545]                       __local_bh_enable_ip+0x180/0x1c0
[ 1562.429337][T12545]                       sk_stream_wait_memory+0x6e5/0xe60
[ 1562.436446][T12545]                       tcp_sendmsg_locked+0x1d02/0x3320
[ 1562.443467][T12545]                       tcp_sendmsg+0x2b/0x40
[ 1562.449531][T12545]                       __sys_sendto+0x46d/0x620
[ 1562.455925][T12545]                       __x64_sys_sendto+0xda/0xf0
[ 1562.462426][T12545]                       do_syscall_64+0x4c/0xa0
[ 1562.468665][T12545]                       entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1562.476385][T12545]     INITIAL USE at:
[ 1562.480363][T12545]                      lock_acquire+0x19e/0x400
[ 1562.486604][T12545]                      _raw_write_lock_irq+0xab/0xf0
[ 1562.493460][T12545]                      __f_setown+0x37/0x330
[ 1562.499462][T12545]                      generic_setlease+0xec1/0x12f0
[ 1562.506154][T12545]                      fcntl_setlease+0x262/0x330
[ 1562.512573][T12545]                      do_fcntl+0x11a/0x1360
[ 1562.518552][T12545]                      __se_sys_fcntl+0xcc/0x190
[ 1562.524878][T12545]                      do_syscall_64+0x4c/0xa0
[ 1562.531028][T12545]                      entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1562.538682][T12545]     INITIAL READ USE at:
[ 1562.543098][T12545]                           lock_acquire+0x19e/0x400
[ 1562.549776][T12545]                           _raw_read_lock_irqsave+0xb8/0x100
[ 1562.557230][T12545]                           send_sigurg+0x25/0x390
[ 1562.563733][T12545]                           sk_send_sigurg+0x6b/0xc0
[ 1562.570405][T12545]                           tcp_urg+0x2bc/0xb20
[ 1562.576664][T12545]                           tcp_rcv_established+0xac2/0x1ce0
[ 1562.584036][T12545]                           tcp_v4_do_rcv+0x44b/0x9b0
[ 1562.590797][T12545]                           __release_sock+0x1e1/0x450
[ 1562.597650][T12545]                           release_sock+0x5b/0x1b0
[ 1562.604242][T12545]                           sk_stream_wait_memory+0x6e5/0xe60
[ 1562.611697][T12545]                           tcp_sendmsg_locked+0x1d02/0x3320
[ 1562.619069][T12545]                           tcp_sendmsg+0x2b/0x40
[ 1562.625484][T12545]                           __sys_sendto+0x46d/0x620
[ 1562.632160][T12545]                           __x64_sys_sendto+0xda/0xf0
[ 1562.639010][T12545]                           do_syscall_64+0x4c/0xa0
[ 1562.645598][T12545]                           entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1562.653659][T12545]   }
[ 1562.656243][T12545]   ... key      at: [<ffffffff96342b00>] __alloc_file.__key+0x0/0x10
[ 1562.664441][T12545]   ... acquired at:
[ 1562.668334][T12545]    _raw_read_lock_irqsave+0xb8/0x100
[ 1562.673792][T12545]    send_sigio+0x2f/0x330
[ 1562.678214][T12545]    kill_fasync+0x20a/0x490
[ 1562.682806][T12545]    splice_file_to_pipe+0x24e/0x330
[ 1562.688368][T12545]    do_sendfile+0x592/0xeb0
[ 1562.692960][T12545]    __se_sys_sendfile64+0x141/0x1a0
[ 1562.698258][T12545]    do_syscall_64+0x4c/0xa0
[ 1562.702861][T12545]    entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1562.709019][T12545] 
[ 1562.711342][T12545] -> (&new->fa_lock){....}-{2:2} {
[ 1562.716470][T12545]    INITIAL USE at:
[ 1562.720363][T12545]                    lock_acquire+0x19e/0x400
[ 1562.726433][T12545]                    _raw_write_lock_irq+0xab/0xf0
[ 1562.732935][T12545]                    fasync_remove_entry+0xf0/0x1c0
[ 1562.739786][T12545]                    lease_modify+0x1a2/0x390
[ 1562.745860][T12545]                    locks_remove_file+0x52f/0xec0
[ 1562.752363][T12545]                    __fput+0x18d/0x930
[ 1562.757915][T12545]                    task_work_run+0x125/0x1a0
[ 1562.764076][T12545]                    exit_to_user_mode_loop+0x10f/0x130
[ 1562.771189][T12545]                    exit_to_user_mode_prepare+0xee/0x180
[ 1562.778334][T12545]                    syscall_exit_to_user_mode+0x16/0x40
[ 1562.785458][T12545]                    do_syscall_64+0x58/0xa0
[ 1562.791435][T12545]                    entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1562.798976][T12545]    INITIAL READ USE at:
[ 1562.803304][T12545]                         lock_acquire+0x19e/0x400
[ 1562.809821][T12545]                         _raw_read_lock_irqsave+0xb8/0x100
[ 1562.817116][T12545]                         kill_fasync+0x16d/0x490
[ 1562.823530][T12545]                         splice_file_to_pipe+0x24e/0x330
[ 1562.830639][T12545]                         do_sendfile+0x592/0xeb0
[ 1562.837055][T12545]                         __se_sys_sendfile64+0x141/0x1a0
[ 1562.844160][T12545]                         do_syscall_64+0x4c/0xa0
[ 1562.850568][T12545]                         entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1562.858497][T12545]  }
[ 1562.861015][T12545]  ... key      at: [<ffffffff96343780>] fasync_insert_entry.__key+0x0/0x20
[ 1562.869715][T12545]  ... acquired at:
[ 1562.873524][T12545]    _raw_read_lock_irqsave+0xb8/0x100
[ 1562.878985][T12545]    kill_fasync+0x16d/0x490
[ 1562.883599][T12545]    evdev_pass_values+0x54b/0xab0
[ 1562.888728][T12545]    evdev_events+0x1c0/0x2f0
[ 1562.893401][T12545]    input_pass_values+0x87e/0x1210
[ 1562.898621][T12545]    input_handle_event+0xb3f/0x1490
[ 1562.903910][T12545]    input_inject_event+0x1b9/0x2c0
[ 1562.909124][T12545]    evdev_write+0x35b/0x490
[ 1562.913720][T12545]    vfs_write+0x30b/0xd60
[ 1562.918139][T12545]    ksys_write+0x152/0x260
[ 1562.922640][T12545]    do_syscall_64+0x4c/0xa0
[ 1562.927230][T12545]    entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1562.933299][T12545] 
[ 1562.935637][T12545] 
[ 1562.935637][T12545] stack backtrace:
[ 1562.941526][T12545] CPU: 1 PID: 12545 Comm: syz.6.13460 Not tainted syzkaller #0
[ 1562.949078][T12545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1562.959234][T12545] Call Trace:
[ 1562.962514][T12545]  <TASK>
[ 1562.965449][T12545]  dump_stack_lvl+0x188/0x250
[ 1562.970163][T12545]  ? load_image+0x400/0x400
[ 1562.974678][T12545]  ? show_regs_print_info+0x20/0x20
[ 1562.979877][T12545]  ? load_image+0x400/0x400
[ 1562.984378][T12545]  ? print_shortest_lock_dependencies+0xf0/0x160
[ 1562.990822][T12545]  __lock_acquire+0x6688/0x7d10
[ 1562.995713][T12545]  ? verify_lock_unused+0x140/0x140
[ 1563.000949][T12545]  ? verify_lock_unused+0x140/0x140
[ 1563.006155][T12545]  ? do_raw_spin_unlock+0x11d/0x230
[ 1563.011354][T12545]  lock_acquire+0x19e/0x400
[ 1563.015861][T12545]  ? kill_fasync+0x16d/0x490
[ 1563.020474][T12545]  ? read_lock_is_recursive+0x10/0x10
[ 1563.025854][T12545]  _raw_read_lock_irqsave+0xb8/0x100
[ 1563.031165][T12545]  ? kill_fasync+0x16d/0x490
[ 1563.035763][T12545]  ? _raw_read_lock+0x40/0x40
[ 1563.040442][T12545]  ? do_raw_spin_lock+0x128/0x2f0
[ 1563.045468][T12545]  kill_fasync+0x16d/0x490
[ 1563.049891][T12545]  evdev_pass_values+0x54b/0xab0
[ 1563.054833][T12545]  ? evdev_pass_values+0x581/0xab0
[ 1563.060050][T12545]  evdev_events+0x1c0/0x2f0
[ 1563.064554][T12545]  ? evdev_event+0xe0/0xe0
[ 1563.068972][T12545]  input_pass_values+0x87e/0x1210
[ 1563.074023][T12545]  ? read_lock_is_recursive+0x10/0x10
[ 1563.079414][T12545]  input_handle_event+0xb3f/0x1490
[ 1563.084531][T12545]  input_inject_event+0x1b9/0x2c0
[ 1563.089559][T12545]  evdev_write+0x35b/0x490
[ 1563.093982][T12545]  ? evdev_read+0xb90/0xb90
[ 1563.098483][T12545]  ? end_current_label_crit_section+0x14b/0x170
[ 1563.104822][T12545]  ? common_file_perm+0x171/0x1c0
[ 1563.109852][T12545]  ? fsnotify_perm+0x5d/0x560
[ 1563.114586][T12545]  ? security_file_permission+0x75/0xa0
[ 1563.120225][T12545]  ? evdev_read+0xb90/0xb90
[ 1563.124728][T12545]  vfs_write+0x30b/0xd60
[ 1563.128974][T12545]  ? file_end_write+0x250/0x250
[ 1563.133827][T12545]  ? __fget_files+0x40f/0x480
[ 1563.138518][T12545]  ? __fdget_pos+0x1e2/0x370
[ 1563.143111][T12545]  ? ksys_write+0x71/0x260
[ 1563.147530][T12545]  ksys_write+0x152/0x260
[ 1563.151863][T12545]  ? __ia32_sys_read+0x80/0x80
[ 1563.156626][T12545]  ? lockdep_hardirqs_on+0x94/0x140
[ 1563.161826][T12545]  do_syscall_64+0x4c/0xa0
[ 1563.166243][T12545]  ? clear_bhb_loop+0x30/0x80
[ 1563.170925][T12545]  ? clear_bhb_loop+0x30/0x80
[ 1563.175601][T12545]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1563.181498][T12545] RIP: 0033:0x7fb492731dd9
[ 1563.185916][T12545] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1563.205526][T12545] RSP: 002b:00007fb49098b028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1563.213943][T12545] RAX: ffffffffffffffda RBX: 00007fb4929aafa0 RCX: 00007fb492731dd9
[ 1563.221920][T12545] RDX: 0000000000001068 RSI: 0000200000000040 RDI: 0000000000000005
[ 1563.229895][T12545] RBP: 00007fb4927c7d69 R08: 0000000000000000 R09: 0000000000000000
[ 1563.237868][T12545] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1563.245845][T12545] R13: 00007fb4929ab038 R14: 00007fb4929aafa0 R15: 00007ffc124e3408
[ 1563.253908][T12545]  </TASK>
[ 1563.632385][T27250] usb 7-1: USB disconnect, device number 22
[ 1564.472104][T21878] device hsr_slave_0 left promiscuous mode
[ 1564.479219][T21878] device hsr_slave_1 left promiscuous mode
[ 1564.488061][T21878] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1564.537390][T21878] team0 (unregistering): Port device team_slave_1 removed
[ 1564.549725][T21878] team0 (unregistering): Port device team_slave_0 removed
[ 1564.565451][T21878] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1564.579223][T21878] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1564.634912][T21878] bond0 (unregistering): Released all slaves