last executing test programs:

4m25.239524859s ago: executing program 1 (id=2562):
write$cgroup_netprio_ifpriomap(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
userfaultfd(0x801)
syz_mount_image$msdos(&(0x7f0000000000), &(0x7f00000004c0)='./file0\x00', 0x0, &(0x7f0000000700)=ANY=[], 0xfd, 0x1bf, &(0x7f0000000300)="$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")
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000000c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x3, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x3, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r3}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
mknod(&(0x7f00000001c0)='./bus\x00', 0x8000, 0x9)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
mknod(&(0x7f0000000080)='./bus\x00', 0x1000, 0xc)
open(&(0x7f00000003c0)='./bus\x00', 0x20102, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000005900), 0x0, 0x24008850)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)

4m21.72982158s ago: executing program 1 (id=2567):
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x2, 0x4e20, @multicast1}, 0x10, 0x0}, 0x4000004)
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000580)='./file1\x00', 0x1000840, &(0x7f00000005c0)=ANY=[@ANYBLOB='shortname=mixed,sys_immutable,nfs,iocharset=cp936,shortname=lower,rodir,nocase,codepage=860,shortname=lower,shortname=lower,shortname=win95,uid=', @ANYRESHEX=0x0, @ANYBLOB="2c646973636172642c73686f72746e616d653d77696e39352c756e695f786c6174653d302c0061a98eed20cb46078e5a4a40eed4c77e7462b84482aa7061236bf6bf5f48d7580feb45e35df449cbc10bccc2d8eb7a405ecd33c7efe0552ac1485c1dc47fec07062af9772ce17f7fed7c51b26811fd16e28ca3f29cfad88fc4c5504243392e01cbdde7b5c763979598f95f09b95d2c45628665902b30ddfbf9bbd38185eabec1312bac0ff85a1ffbe2a612f453253bf5fcac7dd1e683bf671e2c5362e5a7"], 0x43, 0x357, &(0x7f0000000140)="$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")
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x7, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x100004}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={0x0, r1}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[], 0x0, 0x5a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x800d1e, &(0x7f0000000280)={[{@errors_remount}, {@nodelalloc}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x100}}, {@block_validity}, {@quota}]}, 0x3, 0x43e, &(0x7f0000000340)="$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")
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000580)=@newlink={0x38, 0x10, 0xa9, 0x0, 0x0, {}, [@IFLA_MTU={0x8, 0x4, 0x7c}, @IFLA_AF_SPEC={0x10, 0x1a, 0x0, 0x1, [@AF_INET6={0xc, 0xa, 0x0, 0x1, [@IFLA_INET6_ADDR_GEN_MODE={0x5, 0x8, 0x1}]}]}]}, 0x38}}, 0x0)
connect$pppl2tp(0xffffffffffffffff, &(0x7f0000000780)=@pppol2tpv3in6={0x18, 0x1, {0x0, r6, 0x0, 0x1, 0x2, 0x1, {0xa, 0x4e21, 0x2, @empty, 0x1fffc00}}}, 0x3a)
sendmsg$nl_xfrm(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000007c0)=@acquire={0x128, 0x17, 0x1, 0x0, 0x0, {{@in6=@ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}, @in=@multicast2, {@in6=@dev, @in6=@remote, 0x0, 0x0, 0x0, 0x80}, {{@in=@local, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x80}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, {}, 0x0, 0x20, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0x0, 0x70bd25}}, 0x128}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="06000000040000000400000002"], 0x50)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000140)={r7, &(0x7f0000000000), 0x0}, 0x20)
mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000440))

4m18.446310039s ago: executing program 1 (id=2570):
r0 = socket$kcm(0x10, 0x2, 0x0)
recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000a40)=[{&(0x7f00000047c0)=""/4060, 0xfdc}, {&(0x7f00000037c0)=""/4069, 0xfe5}, {&(0x7f0000000700)=""/244, 0xf4}, {&(0x7f00000004c0)=""/38, 0x26}], 0x4}, 0x40000100)
sendmsg$inet(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000900)="5c00000012006bab9a3fe3d86e17aa0a046b4877c4aaf68187bae53dca2ba35bda6a876c1d0048007ea608649e7524765f0ef82e3c0000a705259a3651f60a84c9f4d4938037e70e4509c5bb00000000e513aeac9bf2bee150d5fe86", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x20000000)

4m17.03252905s ago: executing program 1 (id=2572):
write$P9_RVERSION(0xffffffffffffffff, 0x0, 0x15)
r0 = socket(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, 0x0, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={0x0}, 0x1, 0x0, 0x0, 0x40810}, 0x4000)
timer_create(0x0, 0x0, &(0x7f0000bbdffc))
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000000c0)=@newsa={0x104, 0x10, 0x7, 0x0, 0x0, {{@in6=@mcast2, @in=@multicast2, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xee00}, {@in6=@mcast1, 0x0, 0x2b}, @in6=@private0, {0x0, 0x0, 0x2}, {0x0, 0x200000, 0x7}, {0x40000, 0x0, 0xae8}, 0x0, 0x0, 0xa, 0x2, 0x0, 0x70}, [@coaddr={0x14, 0xe, @in6=@remote}]}, 0x104}}, 0x0)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000000c0)=ANY=[@ANYBLOB="040100001a0007000000000000000000ff0200"/28, @ANYRES32=0x0, @ANYRES32=0xee00], 0x104}}, 0x0)

4m14.710969695s ago: executing program 1 (id=2574):
socket$nl_route(0x10, 0x3, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000280)={[{@nogrpid}, {@jqfmt_vfsv0}, {@jqfmt_vfsold}, {@debug}, {@nombcache}, {@quota}, {@nolazytime}]}, 0x0, 0x441, &(0x7f0000000d80)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000000800000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
futex(0x0, 0x85, 0x8, 0x0, 0x0, 0xffffff01)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = add_key$keyring(&(0x7f0000000540), &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
r4 = add_key$user(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x0}, &(0x7f00000001c0)="a6", 0x1, r3)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r3, &(0x7f0000000140)='asymmetric\x00', &(0x7f0000000440)=@chain)
keyctl$link(0x8, r4, r3)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000202300800000000000000000850000007b00000095"], &(0x7f00000001c0)='GPL\x00', 0x7, 0x0, 0x0, 0x40f00, 0x49, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

4m13.179630647s ago: executing program 1 (id=2577):
r0 = getpid()
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, 0x0, 0x20000000)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeeb, 0x8031, 0xffffffffffffffff, 0x0)
syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$MAP_LOOKUP_ELEM(0x1, 0x0, 0x0)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
setsockopt$bt_BT_DEFER_SETUP(r3, 0x112, 0xf, 0x0, 0x0)

3m57.672793517s ago: executing program 32 (id=2577):
r0 = getpid()
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, 0x0, 0x20000000)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeeb, 0x8031, 0xffffffffffffffff, 0x0)
syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$MAP_LOOKUP_ELEM(0x1, 0x0, 0x0)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
setsockopt$bt_BT_DEFER_SETUP(r3, 0x112, 0xf, 0x0, 0x0)

1m10.86906574s ago: executing program 0 (id=2896):
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0xcccc0000, 0x1000, &(0x7f0000f15000/0x1000)=nil})
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000000)={0x5, 0x3, 0xffff1000, 0x1000, &(0x7f0000000000/0x1000)=nil})
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)=ANY=[@ANYBLOB="01000000000000000f"])
r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xaece, 0x1)
read(r3, &(0x7f0000000040)=""/8, 0x8)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000040)=ANY=[@ANYBLOB="0100000f"])
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f00000001c0)={[0x6, 0x20000006, 0x84, 0x9, 0x10003, 0x0, 0x400200cc1, 0x9, 0x4, 0x0, 0x0, 0xb, 0x2, 0x0, 0x410, 0x8d], 0xffff1000, 0x2011d2})
ioctl$KVM_RUN(r5, 0xae80, 0x0)

1m10.315115628s ago: executing program 0 (id=2898):
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000002240)=@getpolicy={0x5c, 0x15, 0x1, 0x70bd2c, 0x25dfdbfb, {{@in=@broadcast, @in6=@private2, 0x4e24, 0xa87, 0x4e21, 0x9, 0x2, 0x20, 0x80, 0x2f}, 0x0, 0x2}, [@sec_ctx={0xc, 0x8, {0x8, 0x8, 0x1, 0xff}}]}, 0x5c}, 0x1, 0x0, 0x0, 0x80}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b000000"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x0, 0x0, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0, r3}, 0x18)
add_key$fscrypt_v1(&(0x7f00000003c0), &(0x7f0000000080)={'fscrypt:', @desc2}, &(0x7f00000000c0)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300"}, 0x48, 0xffffffffffffffff)
getgid()
bind$bt_hci(0xffffffffffffffff, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0x810814, &(0x7f0000000000), 0xd, 0x61c, &(0x7f0000000d80)="$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")

1m9.818009315s ago: executing program 0 (id=2899):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020097b1af8ff00000000bfa100000000000007010000b8ffffffb702000000000000b703000000000000"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x26e1, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x10, 0x4, 0x4, 0x2, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000a80)={{r2}, &(0x7f0000000a00), &(0x7f0000000a40)=r1}, 0x20)
openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000300), 0x1, 0x0)
prctl$PR_SET_SECUREBITS(0x1c, 0x2c)
setuid(0xee01)
setgroups(0x0, 0x0)
getgroups(0x1, &(0x7f0000000340)=[<r3=>0xee00])
setregid(0x0, r3)
r4 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_rx_ring(r4, 0x107, 0x5, &(0x7f0000000040)=@req3={0x0, 0x0, 0xfffffffe, 0x0, 0x100}, 0x1c)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="440000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000240012800b0001006272696467650000140002800800040000000000050017"], 0x44}}, 0x0)

1m8.669343282s ago: executing program 0 (id=2901):
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000000140)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

1m8.347648377s ago: executing program 0 (id=2903):
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f00000007c0)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b708000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r3, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, 0x0)
fstat(0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x41, &(0x7f0000000740)={[{@bsdgroups}, {@nodiscard}, {@noblock_validity}, {@grpjquota}, {@grpjquota}, {@noquota}, {@auto_da_alloc}, {@noload}, {@nodiscard}]}, 0x64, 0x50a, &(0x7f0000000200)="$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")
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r5, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x3}, 0x6)
write$bt_hci(r5, &(0x7f0000000040)=ANY=[], 0x6)

1m5.171901374s ago: executing program 0 (id=2907):
write(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x2, 0x4, 0x4, 0x6, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
sync()
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xc, 0x4, 0x4, 0x10000, 0x0, r0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x4000000, 0x3, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
syz_open_procfs(0x0, &(0x7f00000002c0)='environ\x00')

51.104787712s ago: executing program 33 (id=2907):
write(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x2, 0x4, 0x4, 0x6, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
sync()
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xc, 0x4, 0x4, 0x10000, 0x0, r0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x4000000, 0x3, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
syz_open_procfs(0x0, &(0x7f00000002c0)='environ\x00')

29.307789496s ago: executing program 3 (id=2968):
write$P9_RVERSION(0xffffffffffffffff, 0x0, 0x15)
socket(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, 0x0, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
timer_create(0x0, 0x0, &(0x7f0000bbdffc))
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000000c0)=@newsa={0x104, 0x10, 0x7, 0x0, 0x0, {{@in6=@mcast2, @in=@multicast2, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xee00}, {@in6=@mcast1, 0x0, 0x2b}, @in6=@private0, {0x0, 0x0, 0x2}, {0x0, 0x200000, 0x7}, {0x40000, 0x0, 0xae8}, 0x0, 0x0, 0xa, 0x2, 0x0, 0x70}, [@coaddr={0x14, 0xe, @in6=@remote}]}, 0x104}}, 0x0)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000000c0)=ANY=[@ANYBLOB="040100001a0007000000000000000000ff0200"/28, @ANYRES32=0x0, @ANYRES32=0xee00], 0x104}}, 0x0)

28.272857371s ago: executing program 3 (id=2972):
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0xcccc0000, 0x1000, &(0x7f0000f15000/0x1000)=nil})
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000000)={0x5, 0x3, 0xffff1000, 0x1000, &(0x7f0000000000/0x1000)=nil})
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)=ANY=[@ANYBLOB="01000000000000000f"])
r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xaece, 0x1)
read(r3, &(0x7f0000000040)=""/8, 0x8)
r4 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f00000001c0)={[0x6, 0x20000006, 0x84, 0x9, 0x10003, 0x0, 0x400200cc1, 0x9, 0x4, 0x0, 0x0, 0xb, 0x2, 0x0, 0x410, 0x8d], 0xffff1000, 0x2011d2})
ioctl$KVM_RUN(r5, 0xae80, 0x0)

26.091765283s ago: executing program 3 (id=2978):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020097b1af8ff00000000bfa100000000000007010000b8ffffffb702000000000000b703000000000000"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x26e1, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x10, 0x4, 0x4, 0x2, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000a80)={{r2}, &(0x7f0000000a00), &(0x7f0000000a40)=r1}, 0x20)
openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000300), 0x1, 0x0)
prctl$PR_SET_SECUREBITS(0x1c, 0x2c)
setuid(0xee01)
r3 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_rx_ring(r3, 0x107, 0x5, &(0x7f00000000c0)=@req={0x8000, 0xb4f, 0x300, 0x1daf6}, 0x10)
setsockopt$packet_rx_ring(r3, 0x107, 0x5, &(0x7f0000000040)=@req3={0x0, 0x0, 0xfffffffe, 0x0, 0x100}, 0x1c)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="440000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000240012800b0001006272696467650000140002800800040000000000050017"], 0x44}}, 0x0)

23.731934128s ago: executing program 3 (id=2984):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000003005740ed0b0011c3ec000000010902120001000000000904"], 0x0)
syz_usb_control_io(0xffffffffffffffff, 0x0, &(0x7f0000000780)={0x84, &(0x7f0000000000)=ANY=[@ANYBLOB="00000100000022"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$uac1(r0, 0x0, &(0x7f00000004c0)={0x44, &(0x7f0000000000)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)

20.076311592s ago: executing program 3 (id=2988):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000480)={0x0, 0x0, 0x2a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
socket$inet6(0xa, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f00000004c0)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, &(0x7f0000001900)=ANY=[@ANYBLOB="61106800000000006113740000000000bfa00000000000000700000008ffffffd503010017740040950000000000000069163a0000000000bf67000000000000350607000fff07201706000020190000160300000ee60060bf050000000000007b65b0ff000000006507f9ff01000000070700004d83dde4c375000000000000bf54000000000000070400000400f9ffad4301000000000095000000000000001500000000000000950000000000000032ed3c12dc8c27df8ecf264e0f84f9f17d3c30e32f17540faf80250aa20c669a5e12814cb1cea5d4601d295c45a6a0b9bdb7dd399703cac4f6f3be4b369226066812b8e007e733a9a4f1b0af3dda82ee45a010fb94fe9de57b9d8a814261bdb94a05000400c6c60bf70d742a81762bab8395fa64810b5b40d893ea8fe0185473d51b546cad3f1d5ab2af27546e7c955ccefa1f6ab689b555202da2e0ec2871b4a7e65836429a527dc47ebe84a423b6c8d345dc8da3085b0ab71ca1b901627b562ed04ae76002d4519af619e3cca4d69e0dee5eb106774a8f3e6916dfec88158f0200000000c8fb730a5c1bf2b2bb71a629361997a75fd552bdc206438b8ef4901fd03c16dfda44221b235c8ac86d8a297dff0445a15f21dce431e56723888fb126a163f16f920ae2fb494059bba8e3b680324a188076eb685d55c4e9b2ad9bc1172ba7cbebe174aba210d739a018f9bbec63222d20ceddf4d03723f1c932b3a6aa57f1ad2e99e0e67ab93716d20000009f0f53acbb40b4f8e2738270b31562ed834f2af97787f696649a462e7ee4bcf8b07a10fd7ed6735154beb4000000000000000000000000004000bc00f6746a9709e7e78f4ddc211bc3ebe6bd9d42ca0140a7afaab43176e65ec1118d50d1e827f3472f4445d253887a5ad103649afa17690884f800031e03a651bb96589a7e2e509bcc1d161347623cb5e7ac4629c8ab04871bc47287cd31cc43ea0ffb567b40407d000000210000000000000000005f37d8703f37ca364a601ae899a56715a0a62a34c1d926a0f6a5480a55c22fe3a5ac00000000000000000000000500002000000000fb79ea00000000000000000000e4007be511fe32fbc90e2364a55e9bb66ac64423d2d00fea2594e14d90deae46e26c596f84eba90000000000000000fffb0000000082fb0d3cc3aa39ee4b1386bab561cda886fa642994cacd473b543ccb5f0d7b63924f17c67b13631d22a11dc3c693962895496d4f6e9cc54db6c7205a6b06ff7f0000000000007f31d7c8cc5d325c5379b0363ce8bd1f61b007e1ff5f1be1969a1ba791ad46d800000000c7f26a1f37302f3b41eae59809fd05d12f6106f117b062df67d3a6473265dd1410eea68208a3f26b2989b832d8b34a34a4f08b34b3042065acaa10856e858d27adee7daf32903d3fc78700d429a2d4c8b6d803eb83eecfe4c7ff9e6ab5a52e83d089e0b1c23c0f3cdad7a8710e0254f1b11cced7bc3c8da0c44d2ebf9f6f3ff3be4d1458077c2253b0c7c7a1a9fdd63bf910dc20e5cb2a88e59febc47f1212a21f631d22bad050e9856b48ae3a03a497c37758537650fe6db89da3c41fdc3d78e046f6160e1741299e8dc29906870e6431ed1eab5d067a183f064b060a8ec12725d42e3a74863d66bee966b1574f8e01b3f34a267ff0af1cb3f1f815f8989d78854ca4d3116dbc7e2bf2402a75fd7a55733360040855ed5d1c0d634fc5fb38f84d9d87b27f8a5d91217b728f13e3ee20e69e0ffb2780b1a7af137ff7b4c6ea9604faf0453bedf0c5d744b5272b44c23488b2bdbff947c4dfa108cbb88202eeb81f428a5b3c29984864961a57ff52f657a67463d7dbf85ae9321fc2cc17dc4a29b9cba8ded5de8206c812439ab129ae818837ee15620789c524b3baf49a09d8be0fc5beecf153236c19740be9bb7d958d5e87c6c09bf71a894bad62934782cc308e936d7637e07c4a2b4dc87b0da20000d9ef418cf19e7a8c4c328be0ce91798adc2dca87ddd9d064e081383409ed2912c811ae63f03212a5331c2a4ead000000000000000000000000000000000000000000000000001386866b311bd144bc32e059658c9f8342c90c1ade31b78072841b8b5a943d62a44cea6b050c42e3c205fad6a23fb43c93da0f49d911877265e6ee443e37397ecf89021e7f579e8d3a74c12b52938d91e9de07fc8eeeb9505f4a9c26266bf5449484ccc1317c7476"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

18.975813949s ago: executing program 2 (id=2989):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000280)={[{@nogrpid}, {@jqfmt_vfsv0}, {@jqfmt_vfsold}, {@debug}, {@nombcache}, {@quota}, {@nolazytime}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r4}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x18)
syz_open_dev$tty1(0xc, 0x4, 0x1)
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r7, 0x107, 0xf, &(0x7f0000000100)=0x7, 0x4)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000080)={'sit0\x00'})
ioctl$sock_inet6_SIOCSIFADDR(r0, 0x8916, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000000140)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffd2, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x3c)

13.211837664s ago: executing program 2 (id=2995):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sendmsg$MPTCP_PM_CMD_GET_LIMITS(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0xffffffffffffffb4, 0x0, 0x1, 0x0, 0x0, 0x41}, 0x809d)
openat2$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
sendmsg$IEEE802154_ASSOCIATE_REQ(0xffffffffffffffff, &(0x7f00000009c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000500)=ANY=[@ANYBLOB="34000800fdf55c3e9c020a4d7965f055c66db4e580ed97567edacc1b368abc13a51e02bae0488e"], 0x34}, 0x1, 0x0, 0x0, 0x8004}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f320f300f20e06635800000000f22e02b6aa6c8", 0x4a}], 0x1, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20004000}, 0x14)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

12.443993075s ago: executing program 2 (id=2997):
r0 = creat(&(0x7f0000000100)='./bus\x00', 0x0)
r1 = open(&(0x7f0000000780)='./bus\x00', 0x14507e, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000f4)
io_setup(0x7d, &(0x7f0000000600)=<r2=>0x0)
io_submit(r2, 0x2, &(0x7f0000001d00)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, r1, &(0x7f0000000000)="96", 0xfffffe10, 0x0, 0x0, 0x0, r1}, &(0x7f0000000740)={0x0, 0x0, 0x41, 0x3, 0x0, r0, 0x0, 0x0, 0xffffffffffffffff}])

11.039854686s ago: executing program 4 (id=2998):
prlimit64(0x0, 0xe, &(0x7f0000000780)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x4f0c3000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000240)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x4000000000000c5, 0x400)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000000800000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x200000, &(0x7f0000000200), 0x3, 0x570, &(0x7f0000000680)="$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")
openat(0xffffffffffffff9c, 0x0, 0x0, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0)
pwrite64(r4, &(0x7f0000000140)='2', 0xfdef, 0xfecc)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x80000000)

9.146368845s ago: executing program 2 (id=3000):
mkdir(0x0, 0x0)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000180)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15)
r2 = dup(r1)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x80000, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000580)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}})
open$dir(&(0x7f0000000140)='./file0\x00', 0x500, 0x40)

7.797604644s ago: executing program 4 (id=3002):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000040)={'lo\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0xfffffffd, 0x0, {0x0, 0x0, 0x0, r7, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_prio={{0x9}, {0x18, 0x2, {0xf, "0000000000000000000100000e00"}}}]}, 0x48}, 0x1, 0x0, 0x0, 0x4000891}, 0x0)

7.768714945s ago: executing program 2 (id=3003):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x82000, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000340)=@newtaction={0xb4, 0x30, 0xffff, 0x70bd27, 0x0, {}, [{0xa0, 0x1, [@m_police={0x6c, 0x1, 0x0, 0x0, {{0xb}, {0x40, 0x2, 0x0, 0x1, [[@TCA_POLICE_TBF={0x3c, 0x1, {0x10000, 0x0, 0x0, 0x0, 0x0, {0x0, 0x2, 0x0, 0x0, 0xfffe}, {0x0, 0x0, 0x0, 0x0, 0xfffd}}}]]}, {0x4}, {0xc}, {0xc}}}, @m_gact={0x30, 0x2, 0x0, 0x0, {{0x9}, {0x4}, {0x4}, {0xc, 0x3}, {0xc}}}]}]}, 0xb4}}, 0x0)

6.603925362s ago: executing program 2 (id=3005):
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f00000007c0)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
getpid()
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r2, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x41, &(0x7f0000000740)={[{@bsdgroups}, {@nodiscard}, {@noblock_validity}, {@grpjquota}, {@grpjquota}, {@noquota}, {@auto_da_alloc}, {@noload}, {@nodiscard}]}, 0x64, 0x50a, &(0x7f0000000200)="$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")
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)

6.411757855s ago: executing program 3 (id=3006):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5, 0x1000, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000001900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r5 = socket$inet6(0xa, 0x1, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r5, 0x89f1, &(0x7f00000004c0)={'ip6_vti0\x00', &(0x7f0000000740)={'syztnl1\x00', 0x0, 0x29, 0x0, 0x3, 0x0, 0x4e, @local, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x10, 0x7, 0x2, 0x8}})

5.339925641s ago: executing program 4 (id=3008):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020097b1af8ff00000000bfa100000000000007010000b8ffffffb702000000000000b703000000000000"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x26e1, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x10, 0x4, 0x4, 0x2, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000a80)={{r2}, &(0x7f0000000a00), &(0x7f0000000a40)=r1}, 0x20)
openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000300), 0x1, 0x0)
prctl$PR_SET_SECUREBITS(0x1c, 0x2c)
getgroups(0x1, &(0x7f0000000340)=[0xee00])
syz_mount_image$ext4(&(0x7f0000000180)='ext3\x00', &(0x7f00000001c0)='./file0\x00', 0x800714, &(0x7f0000000200)={[{@init_itable_val={'init_itable', 0x3d, 0xffff}}, {@nobh}, {@min_batch_time={'min_batch_time', 0x3d, 0x100000001}}, {@mb_optimize_scan}, {@max_batch_time={'max_batch_time', 0x3d, 0x5}}, {@data_journal}, {@noauto_da_alloc}, {@nobarrier}, {@data_journal}, {@nobarrier}]}, 0xff, 0x497, &(0x7f0000000540)="$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")
syz_usb_connect(0x5, 0x36, &(0x7f00000000c0)={{0x12, 0x1, 0x0, 0x92, 0xec, 0xc6, 0x20, 0x5ac, 0x77c2, 0xeb3a, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x20, 0x0, [{{0x9, 0x4, 0xc4, 0x1, 0x2, 0xff, 0xfd, 0x1, 0x80, [], [{{0x9, 0x5, 0x2, 0x2, 0x210, 0x2}}, {{0x9, 0x5, 0x82, 0x2, 0x200}}]}}]}}]}}, 0x0)

3.130534904s ago: executing program 4 (id=3011):
mkdir(0x0, 0x0)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000180)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15)
r2 = dup(r1)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x80000, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000580)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}})
open$dir(&(0x7f0000000140)='./file0\x00', 0x500, 0x40)

2.507289083s ago: executing program 4 (id=3012):
r0 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000380), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r1, &(0x7f00000021c0)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_INIT(r1, &(0x7f0000000040)={0x50, 0x0, r2, {0x7, 0x1f, 0x0, 0xc92480, 0x2, 0x0, 0xd, 0x0, 0x0, 0x0, 0x10, 0x5}}, 0x50)
syz_fuse_handle_req(r1, &(0x7f000000e3c0)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000d838aae8c05dd22d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x20c01, 0x0)
dup3(r0, r1, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
syz_clone(0x640c7000, 0x0, 0x2f, 0x0, 0x0, 0x0)

2.198238978s ago: executing program 5 (id=3013):
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x48)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xb, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x10000000}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3fe, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000640)='console\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000640)='console\x00', r2}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000040)={'macsec0\x00', @random="06517dc2e6ea"})

1.827891313s ago: executing program 5 (id=3014):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', <r1=>0x0})
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000010100008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000001dc0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x2d)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000014c0)=@bridge_setlink={0x28, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0x8, 0xc, 0x0, 0x0, [@AF_BRIDGE={0x4}]}]}, 0x28}}, 0x0)

1.705193855s ago: executing program 4 (id=3015):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000480)={0x0, 0x0, 0x2a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
socket$inet6(0xa, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f00000004c0)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, &(0x7f0000001900)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

1.541821467s ago: executing program 5 (id=3016):
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x61, 0x14, 0x7c}, [@ldst={0x4}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

1.403689539s ago: executing program 5 (id=3017):
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000000140)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

1.095631894s ago: executing program 5 (id=3018):
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x2, 0x4e20, @multicast1}, 0x10, 0x0}, 0x4000004)
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000580)='./file1\x00', 0x1000840, &(0x7f00000005c0)=ANY=[@ANYBLOB='shortname=mixed,sys_immutable,nfs,iocharset=cp936,shortname=lower,rodir,nocase,codepage=860,shortname=lower,shortname=lower,shortname=win95,uid=', @ANYRESHEX=0x0, @ANYBLOB="2c646973636172642c73686f72746e616d653d77696e39352c756e695f786c6174653d302c0061a98eed20cb46078e5a4a40eed4c77e7462b84482aa7061236bf6bf5f48d7580feb45e35df449cbc10bccc2d8eb7a405ecd33c7efe0552ac1485c1dc47fec07062af9772ce17f7fed7c51b26811fd16e28ca3f29cfad88fc4c5504243392e01cbdde7b5c763979598f95f09b95d2c45628665902b30ddfbf9bbd38185eabec1312bac0ff85a1ffbe2a612f453253bf5fcac7dd1e683bf671e2c5362e5a7"], 0x43, 0x357, &(0x7f0000000140)="$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")
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x7, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x100004}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={0x0, r1}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x800d1e, &(0x7f0000000280)={[{@errors_remount}, {@nodelalloc}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x100}}, {@block_validity}, {@quota}]}, 0x3, 0x43e, &(0x7f0000000340)="$eJzs27tvHEUYAPBv9+yEvLAJ4ZEHYAgIi4cdOwFS0IBAogAJiSaUxnaikEuMYiORKIKAUChRJHpEicRfQAUNAiokWuhRpAilIVAd2rtd38N3ju2cvYH7/aTNzezOZea72bmb3fEGMLDGsn+SiN0R8VtEjDSy7QXGGi83b1ya/fvGpdkkarW3/kzq5f66cWm2KFq8b1eeGU8j0k+TONil3sULF8/MVKvz5/P85NLZ9yYXL1x89vTZmVPzp+bPTR8/fuzo1AvPTz/Xlzjvydp64MOFQ/tfe/vqG7Mnrr7z0zdJEX9HHH0yttrBJ2q1PldXrj0t6WSoxIawLpWIyLpruD7+R6ISzc4biVc/KbVxwKaq5XocvlwD/seSKLsFQDmKH/rs+rfYtm72Ub7rLzUugLK4b+Zb48hQpHmZ4Y7r234ai4gTl//5Mttic+5DAAC0+S6b/zzTbf6Xxv0t5e7O14ZG87WUvRFxb0Tsi4j7IuplH4iIB9dZf+ciycr5T3ptQ4GtUTb/ezFf22qf/xWzvxit5Lk99fiHk5Onq/NH8s9kPIa3Z/mpVer4/pVfP+91rHX+l21Z/cVcMG/HtaHt7e+Zm1mauZ2YW13/OOLAULf4k+WVgCQi9kfEgQ3Wcfqprw/1Onbr+FfRh3Wm2lcRTzb6/3J0xF9IVl+fnLwrqvNHJouzYqWff7nyZq/6byv+Psj6f2fX8385/tGkdb12cf11XPn9s57XNBMbOv+bO7blrx/MLC2dn4rYlrzeaHTr/unme4t8UT6Lf/xw9/G/N5qfxMGIyE7ihyLi4Yh4JO+7RyPisYg4vEr8P778+Lu9jt0J/T/X0f+j7UU6+r+Z2Bade7onKmd++Lb9f2wm1/b9d6yeGs/3rOX7by3t2tjZDAAAAP89aUTsjiSdWE6n6cRE42/498XOtLqwuPT0yYX3z801nhEYjeG0uNM10nI/dCq/rC/y0x35o/l94y8qO+r5idmF6lzZwcOA29Vj/Gf+qJTdOmDTeV4LBpfxD4PL+IfBZfzD4Ooy/neU0Q5g63X7/f+ohHYAW69j/Fv2gwHi+h8Gl/EPg6t1/CcltgPYUos74tYPyUtIrEhEekc0oz+JZJNHwe6yA1x/ouxvJgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgP74NwAA//+7Iehw")
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000580)=@newlink={0x38, 0x10, 0xa9, 0x0, 0x0, {}, [@IFLA_MTU={0x8, 0x4, 0x7c}, @IFLA_AF_SPEC={0x10, 0x1a, 0x0, 0x1, [@AF_INET6={0xc, 0xa, 0x0, 0x1, [@IFLA_INET6_ADDR_GEN_MODE={0x5, 0x8, 0x1}]}]}]}, 0x38}}, 0x0)
connect$pppl2tp(0xffffffffffffffff, &(0x7f0000000780)=@pppol2tpv3in6={0x18, 0x1, {0x0, r6, 0x0, 0x1, 0x2, 0x1, {0xa, 0x4e21, 0x2, @empty, 0x1fffc00}}}, 0x3a)
sendmsg$nl_xfrm(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000007c0)=@acquire={0x128, 0x17, 0x1, 0x0, 0x0, {{@in6=@ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}, @in=@multicast2, {@in6=@dev, @in6=@remote, 0x0, 0x0, 0x0, 0x80}, {{@in=@local, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x80}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, {}, 0x0, 0x20, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0x0, 0x70bd25}}, 0x128}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="06000000040000000400000002"], 0x50)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000140)={r7, &(0x7f0000000000), 0x0}, 0x20)
mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000440))

0s ago: executing program 5 (id=3019):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5, 0x1000, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000001900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
setreuid(0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = socket$inet6(0xa, 0x1, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r5, 0x89f1, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000140)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x800042, &(0x7f0000000000), 0xfc, 0x588, &(0x7f0000000700)="$eJzs3e9rJGcdAPDvbHbz4y6aqH1RhdbDFu6KXnLp2TaI9E4Q3xWU6usz5PZCuE32SDbtJRTJ4R8giNiCb/SVbwT/AEHuTyhCwb4XK8qhVwWLaEfmx+ZXdy7JXXZXk88HnsyzM8/M9/vsbmZnZ55kAjizLkTE9YgYiYgXImKqnF8rS2wXJWv34cO3FrOSRJq+/tckknJe1iyJGEnKdc+Xq40Xk/0misn65tbthVaruVbOnu2s3Jld39y6vLyysNRcaq5evTr38vwr8y/NXzmRfmb9evWbf/rpj375rVd/+5U3/3DjL5d+kOU7WS7v9uOkFc9JI3sudtQjYq0fwYZgpOzPv9JCRbOxAacFAECF7Bj/sxHxpfz4fypG8qO5aqN76knfswMAAABOQnptMv6dRKTH1Dj2GgAAAMCw1PIxsEltphwLMBm12sxMMYb3qThXa7XXO1++1d5YvVmMlZ2ORu3Wcqt5JR9TOxYRjSR7PLdzRqF4/GLeNivJvjHAP5mayJfPLLZbN4dxwgMAAADOoPMHvv//Y6r4/g8AAACcMtPl9NyQ8wAAAAD6Z3rYCQAAAAB99xjf/0f7kQcAAADQF99+7bWspN37X998Y3PjdvuNyzeb67dnVjYWZxbba3dmltrtpVY6FrFy2PZa7fadr8bqxt3ZTnO9M7u+uXVjpb2x2rmxvO8W2AAAAMAAfeaL999PImL7axN5ie61/ZGKFfytAJwatSO2S7MfH/Q3F2Cwqj7mgdOv/ujFhvnCKdYoJsmw8wCG57AdwHhVi3cfK5zjCgAAGIKLn7//fpp88vp/fffcAHBKHfX6P3D6VFz/T6cGnQgwcJXX/w8ZGAD8/2sYAQhn3uHX/yu8my+6fniEND10WwAAQF9N5iWpzZTXAiej9lFaiOloJLeWW80rEfHpiPj9VGMsezyXr5n4owEAAAAAAAAAAAAAAAAAAAAAAAAAOKI0TSJ9DPXHWgsAAAAYhojan5PyPsAXp56fPHh+YDT5KL8V8Mdpmr75s9ffvrvQ6azNZfP/ls8fjYjOO9n80WGcvgAAAAD26N7lP//+/mJjyNkAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAcFp9+PCtxW4ZZNwH34iI6V7x6zGeT8ejERHn/p5Efc96SUSMnED87XsR8XSv+EmWVkyXWRyMX4uIiTyLJ45fK6tV8Z9J07Rn/PNPHB3OtvvZ/ud6r9//WlzIp71//+tFufak8av3f7Wd/d/Iwfj1Yv/3qSPG+MJ7v57d8/B7u9WxYnm99/6vGz+p2P8+1ytY/ZOzvv/dra2q3NJfRFzsfv6kEbEn/t5Ys52VO7Prm1uXl1cWlppLzdWrV+denn9l/qX5K7O3llvN8ufuht9Od6o/fuY3H1fFf3Ah4lwZf7SbU/nBMl1Mvp7spDK6L6fns0qjasu7/vPe3YefK6p7W+dbfXAv4tJzvV//p/Npz+f/5/9Mc/nnQLb8YvmZkGwX9Yjy7RsRz/7qd89W9v/eeFk7/ut/6fCu5174zg//eMSmAMAArG9u3V5otZprfa+8k6bp0RpnR6XVbdLyaKw7J4nYPtgmO4A74V5MRETFov2xJspnNY665acqU/1gImJAr85xK9eO0zgdO9abLdn+H+jgGa6M5m/Ioe6WAACAPtg9+h92JgAAAAAAAAAAAAAAAAAAAHB2DeL/ih2MuT2crgIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPNJ/AwAA//97otHd")

kernel console output (not intermixed with test programs):

513][ T5869] pwc: recv_control_msg error -32 req 02 val 2c00
[  480.326209][   T23] usb 1-1: Using ep0 maxpacket: 8
[  480.338473][T12106] batman_adv: batadv0: Adding interface: batadv_slave_1
[  480.353614][T12106] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  480.381764][ T5869] pwc: recv_control_msg error -32 req 04 val 1000
[  480.393662][   T23] usb 1-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2e.04
[  480.408920][T12106] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  480.424191][   T23] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  480.442361][ T5869] pwc: recv_control_msg error -71 req 04 val 1300
[  480.449666][   T23] usb 1-1: Product: syz
[  480.454294][ T5869] pwc: recv_control_msg error -71 req 04 val 1400
[  480.460987][   T23] usb 1-1: Manufacturer: syz
[  480.465985][ T5869] pwc: recv_control_msg error -71 req 02 val 2000
[  480.474207][   T23] usb 1-1: SerialNumber: syz
[  480.480623][ T5869] pwc: recv_control_msg error -71 req 02 val 2100
[  480.489184][   T23] usb 1-1: config 0 descriptor??
[  480.495331][ T5869] pwc: recv_control_msg error -71 req 04 val 1500
[  480.524441][ T5869] pwc: recv_control_msg error -71 req 02 val 2500
[  480.531500][ T5869] pwc: recv_control_msg error -71 req 02 val 2400
[  480.543154][ T5869] pwc: recv_control_msg error -71 req 02 val 2600
[  480.554563][ T5869] pwc: recv_control_msg error -71 req 02 val 2900
[  480.570215][ T5869] pwc: recv_control_msg error -71 req 02 val 2800
[  480.593751][ T5869] pwc: recv_control_msg error -71 req 04 val 1100
[  480.609191][ T5869] pwc: recv_control_msg error -71 req 04 val 1200
[  480.630280][ T5869] pwc: Registered as video103.
[  480.641891][T12106] hsr_slave_0: entered promiscuous mode
[  480.645305][ T5869] input: PWC snapshot button as /devices/platform/dummy_hcd.2/usb3/3-1/input/input42
[  480.676931][T12106] hsr_slave_1: entered promiscuous mode
[  480.690899][T12106] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  480.701632][T12106] Cannot create hsr debugfs directory
[  480.938321][   T23] usb 1-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  480.948020][ T5869] usb 3-1: USB disconnect, device number 124
[  481.626155][   T23] dvb_usb_rtl28xxu: probe of 1-1:0.0 failed with error -32
[  482.013485][ T5781] Bluetooth: hci0: command tx timeout
[  482.146288][T12106] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  482.192276][ T5869] usb 3-1: new high-speed USB device number 125 using dummy_hcd
[  482.200931][T12106] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  482.216736][T12106] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  482.258174][T12106] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  482.380537][ T5869] usb 3-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  482.401673][ T5869] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  482.439492][ T5869] usb 3-1: config 0 descriptor??
[  482.460047][ T5869] cp210x 3-1:0.0: cp210x converter detected
[  482.660030][ T5869] cp210x 3-1:0.0: failed to get vendor val 0x370b size 1: -121
[  482.676681][ T5869] cp210x 3-1:0.0: querying part number failed
[  482.716153][ T5869] usb 3-1: cp210x converter now attached to ttyUSB0
[  482.755284][ T5819] usb 1-1: USB disconnect, device number 122
[  482.865656][   T28] audit: type=1326 audit(1750514185.453:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12197 comm="syz.0.2615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc65318e929 code=0x7ffc0000
[  482.890335][   T28] audit: type=1326 audit(1750514185.453:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12197 comm="syz.0.2615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc65318e929 code=0x7ffc0000
[  482.920618][   T28] audit: type=1326 audit(1750514185.463:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12197 comm="syz.0.2615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc65318e929 code=0x7ffc0000
[  482.952464][ T5843] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  482.975155][   T28] audit: type=1326 audit(1750514185.463:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12197 comm="syz.0.2615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc65318e929 code=0x7ffc0000
[  483.023962][   T28] audit: type=1326 audit(1750514185.463:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12197 comm="syz.0.2615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc65318e929 code=0x7ffc0000
[  483.064190][   T28] audit: type=1326 audit(1750514185.473:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12197 comm="syz.0.2615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc65318e929 code=0x7ffc0000
[  483.098917][T12106] 8021q: adding VLAN 0 to HW filter on device bond0
[  483.098916][   T28] audit: type=1326 audit(1750514185.483:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12197 comm="syz.0.2615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc65318e929 code=0x7ffc0000
[  483.098964][   T28] audit: type=1326 audit(1750514185.483:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12197 comm="syz.0.2615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc65318e929 code=0x7ffc0000
[  483.161232][   T28] audit: type=1326 audit(1750514185.483:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12197 comm="syz.0.2615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc65318e929 code=0x7ffc0000
[  483.184345][ T5843] usb 4-1: Using ep0 maxpacket: 32
[  483.196133][   T28] audit: type=1326 audit(1750514185.483:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12197 comm="syz.0.2615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc65318e929 code=0x7ffc0000
[  483.200504][ T5843] usb 4-1: config 0 interface 0 altsetting 9 endpoint 0x81 has invalid maxpacket 1040, setting to 1024
[  483.228093][T12106] 8021q: adding VLAN 0 to HW filter on device team0
[  483.239482][ T5843] usb 4-1: config 0 interface 0 has no altsetting 0
[  483.246686][ T5843] usb 4-1: New USB device found, idVendor=056e, idProduct=00ff, bcdDevice= 0.00
[  483.259394][ T5843] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  483.278899][ T5843] usb 4-1: config 0 descriptor??
[  483.287686][T12195] raw-gadget.2 gadget.3: fail, usb_ep_enable returned -22
[  483.340809][ T2949] bridge0: port 1(bridge_slave_0) entered blocking state
[  483.348105][ T2949] bridge0: port 1(bridge_slave_0) entered forwarding state
[  483.368635][T11683] bridge0: port 2(bridge_slave_1) entered blocking state
[  483.375913][T11683] bridge0: port 2(bridge_slave_1) entered forwarding state
[  483.452356][ T5869] usb 1-1: new high-speed USB device number 123 using dummy_hcd
[  483.516286][ T5843] usbhid 4-1:0.0: can't add hid device: -71
[  483.538041][ T5843] usbhid: probe of 4-1:0.0 failed with error -71
[  483.573499][ T5843] usb 4-1: USB disconnect, device number 4
[  483.598293][ T2918] hsr_slave_0: left promiscuous mode
[  483.616286][ T2918] hsr_slave_1: left promiscuous mode
[  483.623964][ T2918] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  483.631662][ T2918] batman_adv: batadv0: Removing interface: batadv_slave_0
[  483.640665][ T2918] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  483.650166][ T2918] batman_adv: batadv0: Removing interface: batadv_slave_1
[  483.658008][ T5869] usb 1-1: config 0 has no interfaces?
[  483.663943][ T5869] usb 1-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  483.673655][ T5869] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  483.682606][ T2918] bridge_slave_1: left allmulticast mode
[  483.687436][ T5869] usb 1-1: config 0 descriptor??
[  483.692140][ T2918] bridge_slave_1: left promiscuous mode
[  483.712237][ T2918] bridge0: port 2(bridge_slave_1) entered disabled state
[  483.725569][ T2918] bridge_slave_0: left allmulticast mode
[  483.738504][ T2918] bridge_slave_0: left promiscuous mode
[  483.752716][ T2918] bridge0: port 1(bridge_slave_0) entered disabled state
[  483.830135][ T2918] veth1_macvtap: left promiscuous mode
[  483.839378][ T2918] veth0_macvtap: left promiscuous mode
[  483.849637][ T2918] veth1_vlan: left promiscuous mode
[  483.856455][ T2918] veth0_vlan: left promiscuous mode
[  483.948834][ T5869] usb 1-1: USB disconnect, device number 123
[  484.452933][T12219] loop3: detected capacity change from 0 to 128
[  484.460305][T12219] EXT4-fs: Ignoring removed nobh option
[  484.485151][T12219] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  484.528196][T12219] ext4 filesystem being mounted at /17/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  484.883272][ T5869] usb 3-1: USB disconnect, device number 125
[  485.085258][ T5869] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  485.198714][ T5869] cp210x 3-1:0.0: device disconnected
[  485.609040][T12231] loop2: detected capacity change from 0 to 256
[  485.658260][T12231] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  485.669231][T12231] exFAT-fs (loop2): Medium has reported failures. Some data may be lost.
[  485.682438][  T787] usb 1-1: new high-speed USB device number 124 using dummy_hcd
[  485.740151][T12231] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  486.301595][  T787] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  486.313687][  T787] usb 1-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  486.337530][  T787] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  486.384088][  T787] usb 1-1: config 0 descriptor??
[  486.405927][  T787] pwc: Askey VC010 type 2 USB webcam detected.
[  486.630145][T11870] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  486.807380][  T787] pwc: recv_control_msg error -32 req 02 val 2b00
[  486.842979][  T787] pwc: recv_control_msg error -32 req 02 val 2700
[  486.859990][  T787] pwc: recv_control_msg error -32 req 02 val 2c00
[  486.893869][  T787] pwc: recv_control_msg error -32 req 04 val 1000
[  486.912297][  T787] pwc: recv_control_msg error -71 req 04 val 1300
[  486.942979][  T787] pwc: recv_control_msg error -71 req 04 val 1400
[  486.956444][  T787] pwc: recv_control_msg error -71 req 02 val 2000
[  486.988670][  T787] pwc: recv_control_msg error -71 req 02 val 2100
[  486.999849][  T787] pwc: recv_control_msg error -71 req 04 val 1500
[  487.031839][  T787] pwc: recv_control_msg error -71 req 02 val 2500
[  487.056357][  T787] pwc: recv_control_msg error -71 req 02 val 2400
[  487.074248][  T787] pwc: recv_control_msg error -71 req 02 val 2600
[  487.106935][  T787] pwc: recv_control_msg error -71 req 02 val 2900
[  487.118131][  T787] pwc: recv_control_msg error -71 req 02 val 2800
[  487.146721][  T787] pwc: recv_control_msg error -71 req 04 val 1100
[  487.158779][  T787] pwc: recv_control_msg error -71 req 04 val 1200
[  487.192856][  T787] pwc: Registered as video103.
[  487.230406][  T787] input: PWC snapshot button as /devices/platform/dummy_hcd.0/usb1/1-1/input/input43
[  487.296662][  T787] usb 1-1: USB disconnect, device number 124
[  487.962291][ T2918] team0 (unregistering): Port device team_slave_1 removed
[  488.398464][ T2918] team0 (unregistering): Port device team_slave_0 removed
[  488.813666][   T54] block nbd0: Possible stuck request ffff888022128000: control (read@0,1024B). Runtime 390 seconds
[  488.832334][   T54] block nbd0: Possible stuck request ffff888022138000: control (read@1024,3072B). Runtime 390 seconds
[  488.994570][ T5843] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  489.044861][ T2918] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  489.129194][ T2918] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  489.182730][   T23] usb 3-1: new high-speed USB device number 126 using dummy_hcd
[  489.206276][ T5843] usb 4-1: Using ep0 maxpacket: 8
[  489.226051][ T5843] usb 4-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2e.04
[  489.239419][ T5843] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  489.266942][ T5843] usb 4-1: Product: syz
[  489.271295][ T5843] usb 4-1: Manufacturer: syz
[  489.280298][ T5843] usb 4-1: SerialNumber: syz
[  489.289576][ T5843] usb 4-1: config 0 descriptor??
[  489.383366][   T23] usb 3-1: Using ep0 maxpacket: 32
[  489.396102][   T23] usb 3-1: config 0 interface 0 altsetting 9 endpoint 0x81 has invalid maxpacket 1040, setting to 1024
[  489.418934][   T23] usb 3-1: config 0 interface 0 has no altsetting 0
[  489.451801][   T23] usb 3-1: New USB device found, idVendor=056e, idProduct=00ff, bcdDevice= 0.00
[  489.462066][   T23] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  489.499893][   T23] usb 3-1: config 0 descriptor??
[  489.508013][T12240] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  489.512332][ T5843] usb 4-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  489.705188][T12245] loop0: detected capacity change from 0 to 512
[  489.734613][T12245] EXT4-fs: Ignoring removed i_version option
[  489.740800][   T23] usbhid 3-1:0.0: can't add hid device: -71
[  489.741120][T12245] EXT4-fs: Ignoring removed nobh option
[  489.751353][   T23] usbhid: probe of 3-1:0.0 failed with error -71
[  489.753391][ T5843] dvb_usb_rtl28xxu: probe of 4-1:0.0 failed with error -32
[  489.789098][T12245] ext4: Unknown parameter 'dont_appraise'
[  490.011439][   T23] usb 3-1: USB disconnect, device number 126
[  490.831086][ T5843] usb 4-1: USB disconnect, device number 5
[  490.995673][T12253] loop3: detected capacity change from 0 to 128
[  491.014572][T12253] EXT4-fs: Ignoring removed nobh option
[  491.124955][T12253] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  491.147828][  T787] usb 3-1: new high-speed USB device number 127 using dummy_hcd
[  491.157863][T12253] ext4 filesystem being mounted at /19/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  491.226761][T12260] loop0: detected capacity change from 0 to 512
[  491.285832][T12260] EXT4-fs: Ignoring removed nobh option
[  491.291496][T12260] ext3: Bad value for 'min_batch_time'
[  491.320858][ T2918] bond0 (unregistering): Released all slaves
[  491.383262][  T787] usb 3-1: config 0 has no interfaces?
[  491.389009][  T787] usb 3-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  491.462494][  T787] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  491.518823][ T5996] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  491.540832][  T787] usb 3-1: config 0 descriptor??
[  492.228058][T11870] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  492.273682][ T5869] usb 1-1: new high-speed USB device number 125 using dummy_hcd
[  492.437665][T12267] loop3: detected capacity change from 0 to 256
[  492.460393][ T5862] usb 3-1: USB disconnect, device number 127
[  492.482734][ T5869] usb 1-1: Using ep0 maxpacket: 32
[  492.506653][ T5869] usb 1-1: config 0 has an invalid interface number: 196 but max is 0
[  492.531387][ T5869] usb 1-1: config 0 has no interface number 0
[  492.538382][T12267] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x89cb6648, utbl_chksum : 0xe619d30d)
[  492.548322][ T5869] usb 1-1: config 0 interface 196 altsetting 1 bulk endpoint 0x2 has invalid maxpacket 528
[  492.612512][ T5869] usb 1-1: config 0 interface 196 has no altsetting 0
[  492.860051][ T5869] usb 1-1: New USB device found, idVendor=05ac, idProduct=77c2, bcdDevice=eb.3a
[  492.872409][ T5869] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  492.880475][ T5869] usb 1-1: Product: syz
[  492.884730][ T5869] usb 1-1: Manufacturer: syz
[  492.889468][ T5869] usb 1-1: SerialNumber: syz
[  492.900813][ T5869] usb 1-1: config 0 descriptor??
[  492.903551][T12106] 8021q: adding VLAN 0 to HW filter on device batadv0
[  492.914634][T12255] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  493.774423][ T5869] ipheth 1-1:0.196: ipheth_get_macaddr: usb_control_msg: -71
[  493.797119][ T5869] ipheth: probe of 1-1:0.196 failed with error -71
[  493.818635][ T5869] usb 1-1: USB disconnect, device number 125
[  495.372785][ T5843] usb 1-1: new high-speed USB device number 126 using dummy_hcd
[  495.381915][T12106] veth0_vlan: entered promiscuous mode
[  495.409135][T12106] veth1_vlan: entered promiscuous mode
[  495.489710][T12106] veth0_macvtap: entered promiscuous mode
[  495.506968][T12106] veth1_macvtap: entered promiscuous mode
[  495.545640][T12106] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  495.558228][T12106] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  495.568554][ T5843] usb 1-1: Using ep0 maxpacket: 32
[  495.569072][T12106] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  495.576113][ T5843] usb 1-1: config 0 interface 0 altsetting 9 endpoint 0x81 has invalid maxpacket 1040, setting to 1024
[  495.584999][T12106] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  495.605749][T12106] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  495.616517][T12106] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  495.627121][ T5843] usb 1-1: config 0 interface 0 has no altsetting 0
[  495.627169][ T5843] usb 1-1: New USB device found, idVendor=056e, idProduct=00ff, bcdDevice= 0.00
[  495.627195][ T5843] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  495.630999][ T5843] usb 1-1: config 0 descriptor??
[  495.634374][T12106] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  495.634396][T12106] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  495.651986][T12293] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  495.694027][T12106] batman_adv: batadv0: Interface activated: batadv_slave_0
[  495.707070][T12106] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  495.717875][T12106] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  495.728045][T12106] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  495.740048][T12106] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  495.750577][T12106] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  495.761132][T12106] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  495.771159][T12106] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  495.781698][T12106] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  495.794445][T12106] batman_adv: batadv0: Interface activated: batadv_slave_1
[  495.834989][T12106] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  495.853180][T12106] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  495.861965][T12106] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  495.892243][T12106] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  495.932908][ T5843] usbhid 1-1:0.0: can't add hid device: -71
[  495.948769][ T5843] usbhid: probe of 1-1:0.0 failed with error -71
[  495.960016][ T5843] usb 1-1: USB disconnect, device number 126
[  496.170259][ T2918] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  496.195783][ T2918] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  496.277337][   T58] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  496.303346][   T58] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  497.520697][ T5843] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  498.634370][ T5843] usb 4-1: config 0 has no interfaces?
[  498.639970][ T5843] usb 4-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  498.660957][ T5843] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  498.697427][ T5843] usb 4-1: config 0 descriptor??
[  498.919878][ T5843] usb 4-1: USB disconnect, device number 6
[  499.102770][ T5869] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[  499.390574][ T5869] usb 3-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  499.529656][ T5869] usb 3-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  499.702570][ T5869] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 66
[  499.742449][ T5869] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  499.835716][ T5869] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  499.880425][ T5869] usb 3-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  499.900362][ T5869] usb 3-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  499.935904][ T5869] usb 3-1: Product: syz
[  499.940164][ T5869] usb 3-1: Manufacturer: syz
[  499.969326][T12349] loop3: detected capacity change from 0 to 512
[  499.988041][ T5869] cdc_wdm 3-1:1.0: skipping garbage
[  500.006847][ T5869] cdc_wdm 3-1:1.0: skipping garbage
[  500.017868][T12352] netlink: 92 bytes leftover after parsing attributes in process `syz.4.2647'.
[  500.027507][T12349] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  500.047977][ T5869] cdc_wdm 3-1:1.0: cdc-wdm0: USB WDM device
[  500.065818][ T5869] cdc_wdm 3-1:1.0: Unknown control protocol
[  500.083832][T12349] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[  500.107094][T12349] System zones: 1-12
[  500.133099][T12349] EXT4-fs (loop3): 1 truncate cleaned up
[  500.170329][T12349] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  500.412489][ T5843] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  500.633296][ T5843] usb 5-1: Using ep0 maxpacket: 32
[  500.645652][ T5843] usb 5-1: config 0 interface 0 altsetting 9 endpoint 0x81 has invalid maxpacket 1040, setting to 1024
[  501.418799][ T5843] usb 5-1: config 0 interface 0 has no altsetting 0
[  501.461730][ T5843] usb 5-1: New USB device found, idVendor=056e, idProduct=00ff, bcdDevice= 0.00
[  501.502546][ T5843] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  501.533792][ T5843] usb 5-1: config 0 descriptor??
[  501.562659][T12357] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  501.676963][T11870] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  501.732892][   T23] usb 3-1: USB disconnect, device number 2
[  501.740886][T12370] loop0: detected capacity change from 0 to 128
[  501.762080][T12370] EXT4-fs: Ignoring removed nobh option
[  501.778652][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  501.794008][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  501.862387][ T5843] usbhid 5-1:0.0: can't add hid device: -71
[  501.868555][ T5843] usbhid: probe of 5-1:0.0 failed with error -71
[  501.883693][T12370] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  501.961306][ T5843] usb 5-1: USB disconnect, device number 2
[  501.992793][T12370] ext4 filesystem being mounted at /55/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  502.808870][T12378] loop2: detected capacity change from 0 to 512
[  503.132087][T12378] EXT4-fs: Ignoring removed mblk_io_submit option
[  503.244532][T12378] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  503.364131][T12378] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[  503.497386][T12378] EXT4-fs (loop2): warning: checktime reached, running e2fsck is recommended
[  503.590578][T12378] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a043c01c, mo2=0102]
[  503.624280][T12378] System zones: 0-2, 18-18, 34-34
[  503.634359][T12378] EXT4-fs warning (device loop2): ext4_update_dynamic_rev:1154: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  503.790616][T12378] EXT4-fs (loop2): 1 truncate cleaned up
[  503.805453][T12378] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  505.284961][T11258] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  505.724982][T12385] loop4: detected capacity change from 0 to 512
[  506.414118][T12385] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  506.475040][T12385] ext4 filesystem being mounted at /4/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  506.632455][ T5862] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  506.678454][T12410] netlink: 92 bytes leftover after parsing attributes in process `syz.3.2656'.
[  506.814966][T12106] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  506.854026][ T5862] usb 3-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[  506.885761][ T5862] usb 3-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  506.923491][ T5862] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  506.950368][ T5862] usb 3-1: Quirk or no altest; falling back to MIDI 1.0
[  507.030341][T12416] loop3: detected capacity change from 0 to 256
[  507.373211][T12416] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x23633d53, utbl_chksum : 0xe619d30d)
[  508.001265][ T5862] snd-usb-audio: probe of 3-1:27.0 failed with error -2
[  509.118019][ T5776] Bluetooth: hci2: command 0x0406 tx timeout
[  509.201124][ T7021] udevd[7021]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  509.612499][ T5862] usb 3-1: USB disconnect, device number 3
[  510.003975][T11495] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  510.199267][T12431] loop4: detected capacity change from 0 to 512
[  510.228951][T12431] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  510.264688][T12431] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[  510.317248][T12431] System zones: 1-12
[  510.349170][T12431] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2244: inode #15: comm syz.4.2662: corrupted in-inode xattr: overlapping e_value 
[  510.377636][T12431] EXT4-fs error (device loop4): ext4_orphan_get:1404: comm syz.4.2662: couldn't read orphan inode 15 (err -117)
[  510.382439][   T27] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  510.390884][ T5862] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  510.419830][T12431] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  510.452710][T12431] futex_wake_op: syz.4.2662 tries to shift op by -1; fix this program
[  510.635488][ T5862] usb 3-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  510.664870][ T5862] usb 3-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  510.683310][ T5869] usb 1-1: new high-speed USB device number 127 using dummy_hcd
[  510.706615][ T5862] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 66
[  510.719810][ T5862] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  510.732533][ T5862] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  510.872738][ T5869] usb 1-1: Using ep0 maxpacket: 32
[  510.883040][   T27] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  510.923553][ T5869] usb 1-1: config 0 interface 0 altsetting 9 endpoint 0x81 has invalid maxpacket 1040, setting to 1024
[  511.066144][   T27] usb 4-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  511.084457][ T5869] usb 1-1: config 0 interface 0 has no altsetting 0
[  511.107389][   T27] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  511.116026][ T5869] usb 1-1: New USB device found, idVendor=056e, idProduct=00ff, bcdDevice= 0.00
[  511.141718][ T5869] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  511.199230][ T5869] usb 1-1: config 0 descriptor??
[  511.206273][   T27] usb 4-1: config 0 descriptor??
[  511.246912][T12434] raw-gadget.2 gadget.0: fail, usb_ep_enable returned -22
[  511.259378][   T27] pwc: Askey VC010 type 2 USB webcam detected.
[  511.383022][ T5862] usb 3-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  511.392475][ T5862] usb 3-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  511.401123][ T5862] usb 3-1: Product: syz
[  511.410007][T12106] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  511.410537][ T5862] usb 3-1: Manufacturer: syz
[  511.450025][ T5862] cdc_wdm 3-1:1.0: skipping garbage
[  511.492307][ T5862] cdc_wdm 3-1:1.0: skipping garbage
[  511.509549][ T5862] cdc_wdm 3-1:1.0: cdc-wdm0: USB WDM device
[  511.515535][ T5869] usbhid 1-1:0.0: can't add hid device: -71
[  511.515681][ T5869] usbhid: probe of 1-1:0.0 failed with error -71
[  511.519325][ T5869] usb 1-1: USB disconnect, device number 127
[  511.542586][ T5862] cdc_wdm 3-1:1.0: Unknown control protocol
[  511.681487][   T27] pwc: recv_control_msg error -32 req 02 val 2b00
[  511.693978][   T27] pwc: recv_control_msg error -32 req 02 val 2700
[  511.723452][   T27] pwc: recv_control_msg error -32 req 02 val 2c00
[  511.935196][   T27] pwc: recv_control_msg error -71 req 04 val 1300
[  511.955932][   T27] pwc: recv_control_msg error -71 req 04 val 1400
[  511.973011][   T27] pwc: recv_control_msg error -71 req 02 val 2000
[  511.982681][   T27] pwc: recv_control_msg error -71 req 02 val 2100
[  512.000548][   T27] pwc: recv_control_msg error -71 req 04 val 1500
[  512.041935][   T27] pwc: recv_control_msg error -71 req 02 val 2500
[  512.073207][   T27] pwc: recv_control_msg error -71 req 02 val 2400
[  512.110936][   T27] pwc: recv_control_msg error -71 req 02 val 2600
[  512.134344][   T27] pwc: recv_control_msg error -71 req 02 val 2900
[  512.163123][   T27] pwc: recv_control_msg error -71 req 02 val 2800
[  512.183500][   T27] pwc: recv_control_msg error -71 req 04 val 1100
[  512.204276][   T27] pwc: recv_control_msg error -71 req 04 val 1200
[  512.359878][    C0] cdc_wdm 3-1:1.0: wdm_int_callback - 4 bytes
[  512.463655][   T27] pwc: Registered as video103.
[  512.482575][   T27] input: PWC snapshot button as /devices/platform/dummy_hcd.3/usb4/4-1/input/input44
[  512.506573][   T27] usb 4-1: USB disconnect, device number 7
[  513.334446][   T23] usb 3-1: USB disconnect, device number 4
[  514.675202][T12480] loop3: detected capacity change from 0 to 128
[  514.692851][T12480] EXT4-fs: Ignoring removed nobh option
[  514.714439][T12480] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  514.755088][T12480] ext4 filesystem being mounted at /33/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  514.822459][ T5779] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  515.120271][T12490] loop0: detected capacity change from 0 to 256
[  515.907909][T12490] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  515.918781][T12490] exFAT-fs (loop0): Medium has reported failures. Some data may be lost.
[  516.135156][T12490] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  516.396171][T11870] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  516.626785][ T5779] usb 3-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[  516.872681][ T5779] usb 3-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  516.881838][ T5779] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  516.897394][ T5779] usb 3-1: Quirk or no altest; falling back to MIDI 1.0
[  516.918643][ T5779] snd-usb-audio: probe of 3-1:27.0 failed with error -2
[  518.052630][ T5843] usb 3-1: USB disconnect, device number 5
[  518.199891][ T7021] udevd[7021]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  518.428788][T12503] loop4: detected capacity change from 0 to 128
[  518.481307][T12503] EXT4-fs: Ignoring removed nobh option
[  518.531215][T12503] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  518.610910][T12503] ext4 filesystem being mounted at /8/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  519.095617][   T54] block nbd0: Possible stuck request ffff888022128000: control (read@0,1024B). Runtime 420 seconds
[  519.106538][   T54] block nbd0: Possible stuck request ffff888022138000: control (read@1024,3072B). Runtime 420 seconds
[  520.021413][ T5843] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  520.269736][T12106] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  520.958010][T12524] loop4: detected capacity change from 0 to 256
[  521.002319][ T5843] usb 1-1: Using ep0 maxpacket: 32
[  521.024042][ T5843] usb 1-1: config 0 interface 0 altsetting 9 endpoint 0x81 has invalid maxpacket 1040, setting to 1024
[  521.072512][ T5843] usb 1-1: config 0 interface 0 has no altsetting 0
[  521.093763][T12524] FAT-fs (loop4): Directory bread(block 64) failed
[  521.100378][T12524] FAT-fs (loop4): Directory bread(block 65) failed
[  521.107363][ T5843] usb 1-1: New USB device found, idVendor=056e, idProduct=00ff, bcdDevice= 0.00
[  521.142259][ T5843] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  521.162868][T12524] FAT-fs (loop4): Directory bread(block 66) failed
[  521.169474][T12524] FAT-fs (loop4): Directory bread(block 67) failed
[  521.195525][ T5843] usb 1-1: config 0 descriptor??
[  521.202056][T12509] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  521.252616][T12524] FAT-fs (loop4): Directory bread(block 68) failed
[  521.259391][T12524] FAT-fs (loop4): Directory bread(block 69) failed
[  521.353656][T12524] FAT-fs (loop4): Directory bread(block 70) failed
[  521.380861][T12524] FAT-fs (loop4): Directory bread(block 71) failed
[  521.405812][T12524] FAT-fs (loop4): Directory bread(block 72) failed
[  521.436487][T12524] FAT-fs (loop4): Directory bread(block 73) failed
[  521.482501][   T23] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  521.720385][   T23] usb 3-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  522.037162][   T23] usb 3-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  522.099351][   T23] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 66
[  522.141264][   T23] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  522.233557][ T5843] usbhid 1-1:0.0: can't add hid device: -71
[  522.260898][ T5843] usbhid: probe of 1-1:0.0 failed with error -71
[  522.282566][ T5843] usb 1-1: USB disconnect, device number 2
[  522.382764][   T23] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  522.397061][   T23] usb 3-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  522.407089][   T23] usb 3-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  522.420051][   T23] usb 3-1: Product: syz
[  522.424455][   T23] usb 3-1: Manufacturer: syz
[  522.437006][   T23] cdc_wdm 3-1:1.0: skipping garbage
[  522.442461][   T23] cdc_wdm 3-1:1.0: skipping garbage
[  522.488302][   T23] cdc_wdm 3-1:1.0: cdc-wdm0: USB WDM device
[  522.598852][T12535] 9pnet_fd: Insufficient options for proto=fd
[  522.860664][   T23] cdc_wdm 3-1:1.0: Unknown control protocol
[  522.986659][T12539] loop3: detected capacity change from 0 to 128
[  523.071267][T12539] EXT4-fs: Ignoring removed nobh option
[  523.165799][T12539] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  523.253076][T12539] ext4 filesystem being mounted at /37/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  524.270156][   T23] usb 3-1: USB disconnect, device number 6
[  524.329019][T11870] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  524.345264][T12533] Bluetooth: hci1: command 0x0406 tx timeout
[  524.352703][ T5843] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  524.557439][ T5843] usb 5-1: Using ep0 maxpacket: 16
[  524.576318][ T5843] usb 5-1: config 0 has an invalid interface number: 105 but max is 0
[  524.602601][ T5843] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  524.643458][ T5843] usb 5-1: config 0 has no interface number 0
[  524.665280][ T5843] usb 5-1: New USB device found, idVendor=046d, idProduct=08d3, bcdDevice= b.28
[  524.702358][ T5843] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  524.727912][ T5843] usb 5-1: Product: syz
[  524.742673][ T5843] usb 5-1: Manufacturer: syz
[  524.764547][ T5843] usb 5-1: SerialNumber: syz
[  524.811378][ T5843] usb 5-1: config 0 descriptor??
[  525.748339][ T5843] usb 5-1: Found UVC 0.00 device syz (046d:08d3)
[  525.765943][ T5843] usb 5-1: No valid video chain found.
[  525.787518][ T5843] usb 5-1: USB disconnect, device number 3
[  525.960635][T12573] loop2: detected capacity change from 0 to 256
[  526.190467][T12573] FAT-fs (loop2): Directory bread(block 64) failed
[  526.224773][T12573] FAT-fs (loop2): Directory bread(block 65) failed
[  526.242572][T12573] FAT-fs (loop2): Directory bread(block 66) failed
[  526.291236][T12573] FAT-fs (loop2): Directory bread(block 67) failed
[  526.319364][T12573] FAT-fs (loop2): Directory bread(block 68) failed
[  526.340797][T12573] FAT-fs (loop2): Directory bread(block 69) failed
[  526.387501][T12573] FAT-fs (loop2): Directory bread(block 70) failed
[  526.425317][T12573] FAT-fs (loop2): Directory bread(block 71) failed
[  526.432112][T12573] FAT-fs (loop2): Directory bread(block 72) failed
[  526.510381][T12573] FAT-fs (loop2): Directory bread(block 73) failed
[  527.344700][T12589] loop4: detected capacity change from 0 to 512
[  527.431432][T12589] EXT4-fs: Ignoring removed nobh option
[  527.470417][T12589] ext3: Bad value for 'min_batch_time'
[  527.690469][T12594] loop0: detected capacity change from 0 to 256
[  527.731700][T12594] FAT-fs (loop0): Directory bread(block 64) failed
[  527.749156][T12594] FAT-fs (loop0): Directory bread(block 65) failed
[  527.759484][T12594] FAT-fs (loop0): Directory bread(block 66) failed
[  527.782306][T12594] FAT-fs (loop0): Directory bread(block 67) failed
[  527.789030][T12594] FAT-fs (loop0): Directory bread(block 68) failed
[  527.802320][ T5843] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  527.830050][T12594] FAT-fs (loop0): Directory bread(block 69) failed
[  527.842499][T12594] FAT-fs (loop0): Directory bread(block 70) failed
[  527.855859][T12594] FAT-fs (loop0): Directory bread(block 71) failed
[  527.872604][T12594] FAT-fs (loop0): Directory bread(block 72) failed
[  527.882861][T12594] FAT-fs (loop0): Directory bread(block 73) failed
[  528.002233][ T5843] usb 4-1: Using ep0 maxpacket: 32
[  528.020050][ T5843] usb 4-1: config 0 interface 0 altsetting 9 endpoint 0x81 has invalid maxpacket 1040, setting to 1024
[  528.033768][ T5843] usb 4-1: config 0 interface 0 has no altsetting 0
[  528.040471][ T5843] usb 4-1: New USB device found, idVendor=056e, idProduct=00ff, bcdDevice= 0.00
[  528.071466][ T5843] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  528.128194][ T5843] usb 4-1: config 0 descriptor??
[  528.174290][T12591] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  528.339384][T12602] 9pnet_fd: Insufficient options for proto=fd
[  528.904287][ T5843] usbhid 4-1:0.0: can't add hid device: -71
[  528.922329][ T5843] usbhid: probe of 4-1:0.0 failed with error -71
[  528.931420][ T5843] usb 4-1: USB disconnect, device number 8
[  529.294234][T12617] netlink: 52 bytes leftover after parsing attributes in process `syz.2.2691'.
[  529.311769][T12617] bridge_slave_0: left allmulticast mode
[  529.321232][T12617] bridge0: port 1(bridge_slave_0) entered disabled state
[  532.906467][T12633] loop3: detected capacity change from 0 to 128
[  533.058890][   T28] kauditd_printk_skb: 5 callbacks suppressed
[  533.058908][   T28] audit: type=1800 audit(1750514235.643:17): pid=12633 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.2695" name="bus" dev="loop3" ino=1048609 res=0 errno=0
[  533.141853][T12638] loop0: detected capacity change from 0 to 512
[  533.223555][T12638] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  533.286785][T12638] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[  533.305065][T12638] System zones: 1-12
[  533.352246][T12638] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2244: inode #15: comm syz.0.2696: corrupted in-inode xattr: overlapping e_value 
[  533.400404][T12638] EXT4-fs error (device loop0): ext4_orphan_get:1404: comm syz.0.2696: couldn't read orphan inode 15 (err -117)
[  533.474602][T12638] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  533.558521][T12638] futex_wake_op: syz.0.2696 tries to shift op by -1; fix this program
[  535.455619][T12656] syz.3.2695: attempt to access beyond end of device
[  535.455619][T12656] loop3: rw=0, sector=121, nr_sectors = 920 limit=128
[  535.475834][T11495] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  535.859142][T12669] loop0: detected capacity change from 0 to 512
[  535.910781][T12669] EXT4-fs: Ignoring removed nobh option
[  535.934344][T12669] ext3: Bad value for 'min_batch_time'
[  536.289217][T12675] loop4: detected capacity change from 0 to 512
[  536.315562][T12675] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  536.346187][T12675] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[  536.354942][T12675] System zones: 1-12
[  536.375758][T12675] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2244: inode #15: comm syz.4.2700: corrupted in-inode xattr: overlapping e_value 
[  536.393428][T12675] EXT4-fs error (device loop4): ext4_orphan_get:1404: comm syz.4.2700: couldn't read orphan inode 15 (err -117)
[  536.428819][T12675] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  536.467826][T12675] futex_wake_op: syz.4.2700 tries to shift op by -1; fix this program
[  537.512367][   T23] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  537.544919][T12106] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  537.722558][   T23] usb 3-1: Using ep0 maxpacket: 32
[  537.743005][   T23] usb 3-1: config 0 interface 0 altsetting 9 endpoint 0x81 has invalid maxpacket 1040, setting to 1024
[  537.762099][   T23] usb 3-1: config 0 interface 0 has no altsetting 0
[  537.769552][   T23] usb 3-1: New USB device found, idVendor=056e, idProduct=00ff, bcdDevice= 0.00
[  537.803869][   T23] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  537.823706][   T23] usb 3-1: config 0 descriptor??
[  537.843006][T12684] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  538.120103][   T23] usbhid 3-1:0.0: can't add hid device: -71
[  538.128338][   T23] usbhid: probe of 3-1:0.0 failed with error -71
[  538.285796][   T23] usb 3-1: USB disconnect, device number 7
[  539.627770][T12724] loop4: detected capacity change from 0 to 512
[  540.054512][T12724] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  540.339951][T12724] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[  540.348730][T12724] System zones: 1-12
[  540.363217][T12724] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2244: inode #15: comm syz.4.2707: corrupted in-inode xattr: overlapping e_value 
[  540.455190][T12724] EXT4-fs error (device loop4): ext4_orphan_get:1404: comm syz.4.2707: couldn't read orphan inode 15 (err -117)
[  540.515396][T12724] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  540.605817][T12724] futex_wake_op: syz.4.2707 tries to shift op by -1; fix this program
[  541.241472][T12106] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  542.622448][ T5819] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  542.826481][ T5819] usb 5-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[  542.862573][ T5819] usb 5-1: config 27 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  542.939353][ T5819] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  543.232280][ T5819] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  543.260075][ T5819] usb 5-1: Quirk or no altest; falling back to MIDI 1.0
[  544.328265][ T5819] snd-usb-audio: probe of 5-1:27.0 failed with error -2
[  544.434200][ T5819] usb 5-1: USB disconnect, device number 4
[  544.508558][ T7021] udevd[7021]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  544.792334][ T5843] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  545.683158][ T5843] usb 3-1: Using ep0 maxpacket: 32
[  545.696494][ T5843] usb 3-1: config 0 interface 0 altsetting 9 endpoint 0x81 has invalid maxpacket 1040, setting to 1024
[  545.723870][ T5843] usb 3-1: config 0 interface 0 has no altsetting 0
[  545.730576][ T5843] usb 3-1: New USB device found, idVendor=056e, idProduct=00ff, bcdDevice= 0.00
[  545.753724][ T5843] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  545.787695][ T5843] usb 3-1: config 0 descriptor??
[  545.807907][T12770] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  546.039608][ T5843] usbhid 3-1:0.0: can't add hid device: -71
[  546.052341][ T5843] usbhid: probe of 3-1:0.0 failed with error -71
[  546.155469][ T5843] usb 3-1: USB disconnect, device number 8
[  546.405507][T12795] loop3: detected capacity change from 0 to 512
[  546.483229][T12795] EXT4-fs: Ignoring removed nobh option
[  546.488880][T12795] ext3: Bad value for 'min_batch_time'
[  547.269011][T12815] loop0: detected capacity change from 0 to 1024
[  547.303945][T12815] EXT4-fs (loop0): Invalid log cluster size: 32
[  547.496142][T12822] loop4: detected capacity change from 0 to 1024
[  547.529281][T12822] EXT4-fs: Ignoring removed nobh option
[  547.548731][T12822] EXT4-fs: Ignoring removed bh option
[  547.585899][T12822] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  547.870934][T12822] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  548.633663][   T28] audit: type=1800 audit(1750514251.203:18): pid=12822 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.2725" name="file1" dev="loop4" ino=15 res=0 errno=0
[  549.110677][T12106] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  549.925733][   T23] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  550.115283][   T23] usb 1-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[  550.250500][   T23] usb 1-1: config 27 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  550.270080][   T23] usb 1-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  550.281226][   T23] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  550.307017][   T23] usb 1-1: Quirk or no altest; falling back to MIDI 1.0
[  550.403769][   T23] snd-usb-audio: probe of 1-1:27.0 failed with error -2
[  550.523767][   T23] usb 1-1: USB disconnect, device number 3
[  550.583055][   T54] block nbd0: Possible stuck request ffff888022128000: control (read@0,1024B). Runtime 450 seconds
[  550.601030][   T54] block nbd0: Possible stuck request ffff888022138000: control (read@1024,3072B). Runtime 450 seconds
[  550.916593][T12851] loop2: detected capacity change from 0 to 512
[  550.929525][T12851] EXT4-fs: Ignoring removed nobh option
[  550.941819][T12851] ext3: Bad value for 'min_batch_time'
[  550.992277][ T5869] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  551.062329][ T5779] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  551.167231][T12857] loop0: detected capacity change from 0 to 512
[  551.176269][T12857] EXT4-fs: Ignoring removed mblk_io_submit option
[  551.184355][T12857] EXT4-fs: Ignoring removed mblk_io_submit option
[  551.200657][T12857] EXT4-fs: Mount option(s) incompatible with ext2
[  551.375843][ T5869] usb 4-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  551.389194][ T5869] usb 4-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  551.401093][ T5869] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 66
[  551.416971][ T5869] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  551.429891][ T5869] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  551.447094][ T5869] usb 4-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  551.456592][ T5779] usb 5-1: Using ep0 maxpacket: 32
[  551.462084][ T5869] usb 4-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  551.470431][ T5869] usb 4-1: Product: syz
[  551.475299][ T5869] usb 4-1: Manufacturer: syz
[  551.481309][ T5779] usb 5-1: config 0 interface 0 altsetting 9 endpoint 0x81 has invalid maxpacket 1040, setting to 1024
[  551.495219][ T5779] usb 5-1: config 0 interface 0 has no altsetting 0
[  551.504525][ T5869] cdc_wdm 4-1:1.0: skipping garbage
[  551.509802][ T5869] cdc_wdm 4-1:1.0: skipping garbage
[  551.515602][ T5779] usb 5-1: New USB device found, idVendor=056e, idProduct=00ff, bcdDevice= 0.00
[  551.526670][ T5869] cdc_wdm 4-1:1.0: cdc-wdm0: USB WDM device
[  551.532843][ T5779] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  551.542575][ T5869] cdc_wdm 4-1:1.0: Unknown control protocol
[  551.553693][ T5779] usb 5-1: config 0 descriptor??
[  551.559953][T12849] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  551.801470][ T5779] usbhid 5-1:0.0: can't add hid device: -71
[  551.816136][ T5779] usbhid: probe of 5-1:0.0 failed with error -71
[  551.832039][ T5779] usb 5-1: USB disconnect, device number 5
[  552.123775][    C0] cdc_wdm 4-1:1.0: wdm_int_callback - 6 bytes
[  552.335819][   T23] usb 4-1: USB disconnect, device number 9
[  552.452004][T12868] loop2: detected capacity change from 0 to 512
[  552.468351][T12868] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  552.499415][T12868] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[  552.508550][T12868] System zones: 1-12
[  552.524455][T12868] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2244: inode #15: comm syz.2.2736: corrupted in-inode xattr: overlapping e_value 
[  552.762854][T12877] loop4: detected capacity change from 0 to 256
[  552.828250][T12877] exFAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  552.839432][T12877] exFAT-fs (loop4): Medium has reported failures. Some data may be lost.
[  552.928857][T12868] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.2736: couldn't read orphan inode 15 (err -117)
[  552.959917][T12877] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  553.491933][T12868] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  553.641967][T12868] futex_wake_op: syz.2.2736 tries to shift op by -1; fix this program
[  554.954687][T11258] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  555.056233][ T5781] Bluetooth: hci3: command 0x0406 tx timeout
[  558.680375][ T5141] udevd[5141]: worker [5894] /devices/virtual/block/nbd0 timeout; kill it
[  558.700923][ T5141] udevd[5141]: seq 10613 '/devices/virtual/block/nbd0' killed
[  560.803123][T12926] loop0: detected capacity change from 0 to 512
[  560.838322][T12926] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  560.938945][T12926] EXT4-fs (loop0): orphan cleanup on readonly fs
[  560.956236][T12926] EXT4-fs error (device loop0): ext4_validate_block_bitmap:439: comm syz.0.2743: bg 0: block 248: padding at end of block bitmap is not set
[  560.979726][  T787] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  560.991536][T12926] Quota error (device loop0): write_blk: dquota write failed
[  560.999641][T12926] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  561.009939][T12926] EXT4-fs error (device loop0): ext4_acquire_dquot:6938: comm syz.0.2743: Failed to acquire dquot type 1
[  561.031804][T12926] EXT4-fs (loop0): 1 truncate cleaned up
[  561.182544][T12926] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  561.375497][  T787] usb 4-1: Using ep0 maxpacket: 32
[  561.526156][  T787] usb 4-1: config 0 interface 0 altsetting 9 endpoint 0x81 has invalid maxpacket 1040, setting to 1024
[  561.587493][  T787] usb 4-1: config 0 interface 0 has no altsetting 0
[  561.631920][  T787] usb 4-1: New USB device found, idVendor=056e, idProduct=00ff, bcdDevice= 0.00
[  561.688009][  T787] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  561.778372][  T787] usb 4-1: config 0 descriptor??
[  561.816900][T12923] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  561.959703][T12933] loop2: detected capacity change from 0 to 512
[  562.021964][T12933] EXT4-fs: Ignoring removed nobh option
[  562.080061][  T787] usbhid 4-1:0.0: can't add hid device: -71
[  562.126822][  T787] usbhid: probe of 4-1:0.0 failed with error -71
[  562.155626][T12933] ext3: Bad value for 'min_batch_time'
[  562.204181][  T787] usb 4-1: USB disconnect, device number 10
[  562.562407][    T8] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  562.808707][    T8] usb 3-1: Using ep0 maxpacket: 32
[  562.873666][    T8] usb 3-1: config 0 has an invalid interface number: 196 but max is 0
[  562.919336][    T8] usb 3-1: config 0 has no interface number 0
[  562.940166][    T8] usb 3-1: config 0 interface 196 altsetting 1 bulk endpoint 0x2 has invalid maxpacket 528
[  562.984459][    T8] usb 3-1: config 0 interface 196 has no altsetting 0
[  563.052529][    T8] usb 3-1: New USB device found, idVendor=05ac, idProduct=77c2, bcdDevice=eb.3a
[  563.084899][    T8] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  563.115522][    T8] usb 3-1: Product: syz
[  563.119777][    T8] usb 3-1: Manufacturer: syz
[  563.126424][T11495] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  563.192333][    T8] usb 3-1: SerialNumber: syz
[  563.217521][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  563.224211][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  563.235178][    T8] usb 3-1: config 0 descriptor??
[  563.242365][T12933] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  564.815640][    T8] ipheth 3-1:0.196: ipheth_get_macaddr: usb_control_msg: -71
[  564.823348][    T8] ipheth: probe of 3-1:0.196 failed with error -71
[  564.845036][    T8] usb 3-1: USB disconnect, device number 9
[  567.327798][T12974] loop2: detected capacity change from 0 to 512
[  567.422553][ T5819] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  567.529303][T12974] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  567.599129][T12974] ext4 filesystem being mounted at /84/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  567.662462][ T5819] usb 5-1: Using ep0 maxpacket: 32
[  567.682545][ T5819] usb 5-1: config 0 interface 0 altsetting 9 endpoint 0x81 has invalid maxpacket 1040, setting to 1024
[  567.740699][ T5819] usb 5-1: config 0 interface 0 has no altsetting 0
[  567.803878][ T5819] usb 5-1: New USB device found, idVendor=056e, idProduct=00ff, bcdDevice= 0.00
[  567.862229][ T5819] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  567.908920][ T5819] usb 5-1: config 0 descriptor??
[  567.960194][T12975] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  568.227462][ T5819] usbhid 5-1:0.0: can't add hid device: -71
[  568.266411][ T5819] usbhid: probe of 5-1:0.0 failed with error -71
[  568.305562][ T5819] usb 5-1: USB disconnect, device number 6
[  568.421423][T11258] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  568.517626][T12991] loop2: detected capacity change from 0 to 512
[  568.547419][T12991] EXT4-fs error (device loop2): ext4_orphan_get:1399: inode #15: comm syz.2.2763: casefold flag without casefold feature
[  568.572927][T12991] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.2763: couldn't read orphan inode 15 (err -117)
[  568.627790][T12991] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  569.249504][T12984] loop0: detected capacity change from 0 to 40427
[  569.376608][T12984] F2FS-fs (loop0): Invalid SB checksum offset: 0
[  569.393286][T12984] F2FS-fs (loop0): Can't find valid F2FS filesystem in 2th superblock
[  569.507847][T12984] F2FS-fs (loop0): invalid crc value
[  569.958792][T13010] loop3: detected capacity change from 0 to 256
[  569.982045][T13010] exFAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  569.993023][T13010] exFAT-fs (loop3): Medium has reported failures. Some data may be lost.
[  570.033037][T13010] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  570.711100][T13012] loop4: detected capacity change from 0 to 512
[  570.852477][T13012] EXT4-fs: Ignoring removed nobh option
[  570.858820][T13012] ext3: Bad value for 'min_batch_time'
[  570.899185][T11258] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  571.781915][T13017] loop0: detected capacity change from 0 to 256
[  571.854270][ T5996] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  571.878890][T13017] FAT-fs (loop0): Directory bread(block 64) failed
[  571.926616][T13017] FAT-fs (loop0): Directory bread(block 65) failed
[  571.981480][T13017] FAT-fs (loop0): Directory bread(block 66) failed
[  572.026838][T13017] FAT-fs (loop0): Directory bread(block 67) failed
[  572.081769][T13017] FAT-fs (loop0): Directory bread(block 68) failed
[  572.110314][T13017] FAT-fs (loop0): Directory bread(block 69) failed
[  572.135721][T13019] loop2: detected capacity change from 0 to 512
[  572.149295][T13017] FAT-fs (loop0): Directory bread(block 70) failed
[  572.177507][T13017] FAT-fs (loop0): Directory bread(block 71) failed
[  572.205451][T13019] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  572.231469][T13017] FAT-fs (loop0): Directory bread(block 72) failed
[  572.238404][ T5157] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  572.262982][T13019] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[  572.271084][T13019] System zones: 1-12
[  572.277020][T13019] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2244: inode #15: comm syz.2.2768: corrupted in-inode xattr: overlapping e_value 
[  572.293015][T13019] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.2768: couldn't read orphan inode 15 (err -117)
[  572.318898][T13017] FAT-fs (loop0): Directory bread(block 73) failed
[  572.332585][T13019] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  572.351082][T13019] futex_wake_op: syz.2.2768 tries to shift op by -1; fix this program
[  572.464237][ T5157] usb 5-1: Using ep0 maxpacket: 32
[  572.483826][ T5157] usb 5-1: config 0 has an invalid interface number: 196 but max is 0
[  572.513909][ T5157] usb 5-1: config 0 has no interface number 0
[  572.540910][ T5157] usb 5-1: config 0 interface 196 altsetting 1 bulk endpoint 0x2 has invalid maxpacket 528
[  572.597444][ T5157] usb 5-1: config 0 interface 196 has no altsetting 0
[  572.628884][ T5157] usb 5-1: New USB device found, idVendor=05ac, idProduct=77c2, bcdDevice=eb.3a
[  572.669447][ T5157] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  572.706946][ T5157] usb 5-1: Product: syz
[  572.734238][ T5157] usb 5-1: Manufacturer: syz
[  572.738918][ T5157] usb 5-1: SerialNumber: syz
[  572.818267][ T5157] usb 5-1: config 0 descriptor??
[  572.852910][T13007] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  573.017391][T13028] 9pnet_fd: Insufficient options for proto=fd
[  573.202548][T13027] loop3: detected capacity change from 0 to 512
[  573.220028][T11258] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  573.285358][T13027] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  573.455534][T13027] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[  573.512476][T13027] System zones: 1-12
[  573.549529][T13027] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2244: inode #15: comm syz.3.2772: corrupted in-inode xattr: overlapping e_value 
[  573.624096][ T5157] ipheth 5-1:0.196: ipheth_get_macaddr: usb_control_msg: -71
[  573.633573][ T5157] ipheth: probe of 5-1:0.196 failed with error -71
[  573.651213][ T5157] usb 5-1: USB disconnect, device number 7
[  573.679998][T13027] EXT4-fs error (device loop3): ext4_orphan_get:1404: comm syz.3.2772: couldn't read orphan inode 15 (err -117)
[  573.730788][T13027] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  573.809240][T13027] futex_wake_op: syz.3.2772 tries to shift op by -1; fix this program
[  574.189868][   T23] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  574.496714][   T23] usb 3-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[  574.544515][   T23] usb 3-1: config 27 interface 0 altsetting 0 has an invalid endpoint with address 0x0, skipping
[  574.587502][   T23] usb 3-1: config 27 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  574.646686][   T23] usb 3-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  574.681664][   T23] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  574.766373][   T23] usb 3-1: Quirk or no altest; falling back to MIDI 1.0
[  574.829415][T11870] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  574.928002][   T23] snd-usb-audio: probe of 3-1:27.0 failed with error -2
[  574.938470][ T7021] udevd[7021]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  574.978692][   T23] usb 3-1: USB disconnect, device number 10
[  575.377899][T13058] loop4: detected capacity change from 0 to 512
[  575.416218][T13058] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  575.518040][T13058] EXT4-fs (loop4): orphan cleanup on readonly fs
[  575.533988][T13058] EXT4-fs error (device loop4): ext4_validate_block_bitmap:439: comm syz.4.2779: bg 0: block 248: padding at end of block bitmap is not set
[  575.555526][T13058] Quota error (device loop4): write_blk: dquota write failed
[  575.563645][T13058] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  575.573866][T13058] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.2779: Failed to acquire dquot type 1
[  575.601131][T13058] EXT4-fs (loop4): 1 truncate cleaned up
[  575.623121][T13058] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  578.040804][T13068] loop2: detected capacity change from 0 to 128
[  578.089301][T13068] EXT4-fs: Ignoring removed nobh option
[  578.137057][T13070] loop3: detected capacity change from 0 to 256
[  578.162534][T13068] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  578.259551][T13068] ext4 filesystem being mounted at /89/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  578.287415][T13070] FAT-fs (loop3): Directory bread(block 64) failed
[  578.317886][T13070] FAT-fs (loop3): Directory bread(block 65) failed
[  578.359164][T13070] FAT-fs (loop3): Directory bread(block 66) failed
[  578.409049][T12106] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  578.425456][T13070] FAT-fs (loop3): Directory bread(block 67) failed
[  578.492439][T13070] FAT-fs (loop3): Directory bread(block 68) failed
[  578.499046][T13070] FAT-fs (loop3): Directory bread(block 69) failed
[  578.552436][T13070] FAT-fs (loop3): Directory bread(block 70) failed
[  578.570985][T13070] FAT-fs (loop3): Directory bread(block 71) failed
[  578.622890][T13070] FAT-fs (loop3): Directory bread(block 72) failed
[  578.639811][T13070] FAT-fs (loop3): Directory bread(block 73) failed
[  579.500212][T13076] 9pnet_fd: Insufficient options for proto=fd
[  579.776120][T11258] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  581.059737][T13088] loop3: detected capacity change from 0 to 512
[  581.099494][T13093] loop4: detected capacity change from 0 to 512
[  581.107628][T13088] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  581.143196][   T54] block nbd0: Possible stuck request ffff888022128000: control (read@0,1024B). Runtime 480 seconds
[  581.155227][   T54] block nbd0: Possible stuck request ffff888022138000: control (read@1024,3072B). Runtime 480 seconds
[  581.172685][T13088] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[  581.180806][T13088] System zones: 1-12
[  581.263667][T13088] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2244: inode #15: comm syz.3.2786: corrupted in-inode xattr: overlapping e_value 
[  581.294644][T13093] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  581.361123][T13088] EXT4-fs error (device loop3): ext4_orphan_get:1404: comm syz.3.2786: couldn't read orphan inode 15 (err -117)
[  581.398803][T13093] ext4 filesystem being mounted at /36/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  581.491242][T13088] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  581.513693][T13099] loop0: detected capacity change from 0 to 512
[  581.573517][T13099] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  581.586350][T13099] ext4 filesystem being mounted at /89/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  581.618347][T13088] futex_wake_op: syz.3.2786 tries to shift op by -1; fix this program
[  582.401222][T11495] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  582.460730][T12106] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  582.568746][T11870] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  582.741041][T13111] loop3: detected capacity change from 0 to 128
[  582.791248][T13111] EXT4-fs: Ignoring removed nobh option
[  583.057644][T13111] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  583.107336][T13111] ext4 filesystem being mounted at /66/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  585.275472][T13138] syz.2.2799 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  585.314857][T11870] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  585.611291][T13143] loop2: detected capacity change from 0 to 256
[  585.708099][T13146] loop4: detected capacity change from 0 to 512
[  585.722920][T13146] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  585.756744][T13145] loop3: detected capacity change from 0 to 512
[  585.783916][T13146] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[  585.807272][T13145] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  585.821116][T13145] ext4 filesystem being mounted at /67/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  585.833257][T13146] System zones: 1-12
[  585.838433][T13146] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2244: inode #15: comm syz.4.2802: corrupted in-inode xattr: overlapping e_value 
[  585.947517][T13146] EXT4-fs error (device loop4): ext4_orphan_get:1404: comm syz.4.2802: couldn't read orphan inode 15 (err -117)
[  586.001452][T13146] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  586.039172][T13154] loop0: detected capacity change from 0 to 512
[  586.057172][T13146] futex_wake_op: syz.4.2802 tries to shift op by -1; fix this program
[  586.107070][T13154] EXT4-fs: Ignoring removed nomblk_io_submit option
[  586.150435][T13154] EXT4-fs (loop0): Test dummy encryption mode enabled
[  586.205244][T13154] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2867: Unable to expand inode 17. Delete some EAs or run e2fsck.
[  586.270851][T13154] EXT4-fs (loop0): 1 truncate cleaned up
[  586.286304][T13154] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  588.665356][T13150] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm ext4lazyinit: bg 0: block 328: padding at end of block bitmap is not set
[  588.735498][T11870] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  588.745699][T12106] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  588.873667][T11495] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  589.176805][T13171] loop3: detected capacity change from 0 to 128
[  589.424976][T13171] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  589.445142][T13171] ext4 filesystem being mounted at /68/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  589.942443][T13175] loop0: detected capacity change from 0 to 128
[  589.949881][T13175] EXT4-fs: Ignoring removed nobh option
[  590.077665][T13175] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  590.186676][T13175] ext4 filesystem being mounted at /93/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  591.899138][T13185] loop4: detected capacity change from 0 to 256
[  591.904565][T11870] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  592.140229][T13185] FAT-fs (loop4): Directory bread(block 64) failed
[  592.167214][T13185] FAT-fs (loop4): Directory bread(block 65) failed
[  592.208075][T13185] FAT-fs (loop4): Directory bread(block 66) failed
[  592.263006][T13185] FAT-fs (loop4): Directory bread(block 67) failed
[  592.312644][T13185] FAT-fs (loop4): Directory bread(block 68) failed
[  592.319266][T13185] FAT-fs (loop4): Directory bread(block 69) failed
[  592.368802][T13185] FAT-fs (loop4): Directory bread(block 70) failed
[  592.410651][T13185] FAT-fs (loop4): Directory bread(block 71) failed
[  592.418503][T13185] FAT-fs (loop4): Directory bread(block 72) failed
[  592.425668][T13185] FAT-fs (loop4): Directory bread(block 73) failed
[  592.468408][T11495] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  592.793507][T13195] gretap0: entered promiscuous mode
[  592.799977][T13195] macsec1: entered promiscuous mode
[  592.814941][T13193] loop3: detected capacity change from 0 to 512
[  592.832559][T13195] macsec1: entered allmulticast mode
[  592.837977][T13195] gretap0: entered allmulticast mode
[  592.895585][T13193] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  592.910088][T13193] ext4 filesystem being mounted at /70/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  593.097652][T13205] loop2: detected capacity change from 0 to 256
[  593.226754][T13205] FAT-fs (loop2): Directory bread(block 64) failed
[  593.249165][T13205] FAT-fs (loop2): Directory bread(block 65) failed
[  593.271172][T13205] FAT-fs (loop2): Directory bread(block 66) failed
[  593.300924][T13205] FAT-fs (loop2): Directory bread(block 67) failed
[  593.321711][T13205] FAT-fs (loop2): Directory bread(block 68) failed
[  593.340434][T13205] FAT-fs (loop2): Directory bread(block 69) failed
[  593.349717][T13205] FAT-fs (loop2): Directory bread(block 70) failed
[  593.362251][T13205] FAT-fs (loop2): Directory bread(block 71) failed
[  593.368972][T13205] FAT-fs (loop2): Directory bread(block 72) failed
[  593.381041][T13205] FAT-fs (loop2): Directory bread(block 73) failed
[  595.174143][T13214] 9pnet_fd: Insufficient options for proto=fd
[  595.293430][T13217] loop0: detected capacity change from 0 to 1024
[  595.516954][T11870] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  595.670702][T13217] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  596.395476][T13223] loop3: detected capacity change from 0 to 128
[  596.466606][T13223] EXT4-fs: Ignoring removed nobh option
[  596.532636][T13223] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  596.614068][T13223] ext4 filesystem being mounted at /71/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  596.647008][T13226] loop2: detected capacity change from 0 to 512
[  596.693272][T13226] EXT4-fs: Ignoring removed nomblk_io_submit option
[  596.761932][T13226] EXT4-fs: Mount option(s) incompatible with ext2
[  597.205420][T11870] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  597.268918][ T5781] Bluetooth: hci0: command 0x0406 tx timeout
[  597.479608][T11495] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  598.053987][T13234] loop3: detected capacity change from 0 to 128
[  598.173595][   T28] audit: type=1800 audit(1750514300.743:19): pid=13234 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.2824" name="bus" dev="loop3" ino=1048616 res=0 errno=0
[  599.406401][T13252] loop4: detected capacity change from 0 to 256
[  599.450839][T13252] FAT-fs (loop4): Directory bread(block 64) failed
[  599.475157][T13252] FAT-fs (loop4): Directory bread(block 65) failed
[  599.483617][T13252] FAT-fs (loop4): Directory bread(block 66) failed
[  599.565846][T13252] FAT-fs (loop4): Directory bread(block 67) failed
[  599.652188][T13252] FAT-fs (loop4): Directory bread(block 68) failed
[  599.942621][   T23] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  599.963289][T13252] FAT-fs (loop4): Directory bread(block 69) failed
[  600.087222][T13252] FAT-fs (loop4): Directory bread(block 70) failed
[  600.174326][T13252] FAT-fs (loop4): Directory bread(block 71) failed
[  600.193329][T13252] FAT-fs (loop4): Directory bread(block 72) failed
[  600.206345][T13252] FAT-fs (loop4): Directory bread(block 73) failed
[  600.222594][   T23] usb 3-1: Using ep0 maxpacket: 32
[  600.237202][   T23] usb 3-1: config 0 has no interfaces?
[  600.272990][   T23] usb 3-1: New USB device found, idVendor=2eca, idProduct=c101, bcdDevice=a6.21
[  600.338664][   T23] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  600.590901][   T23] usb 3-1: Product: syz
[  600.596692][T13234] syz.3.2824: attempt to access beyond end of device
[  600.596692][T13234] loop3: rw=0, sector=121, nr_sectors = 920 limit=128
[  600.608281][T13259] loop0: detected capacity change from 0 to 128
[  600.614385][   T23] usb 3-1: Manufacturer: syz
[  600.620975][   T23] usb 3-1: SerialNumber: syz
[  600.629677][   T23] usb 3-1: config 0 descriptor??
[  600.841297][T13260] 9pnet_fd: Insufficient options for proto=fd
[  601.166840][T13259] EXT4-fs: Ignoring removed nobh option
[  601.219439][T13259] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  601.289947][T13259] ext4 filesystem being mounted at /100/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  601.690421][T13266] loop4: detected capacity change from 0 to 256
[  602.021930][T11495] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  602.688580][   T23] usb 3-1: USB disconnect, device number 11
[  604.554109][T13278] loop0: detected capacity change from 0 to 512
[  604.645758][T13278] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  604.721871][T13278] EXT4-fs (loop0): orphan cleanup on readonly fs
[  604.737848][T13278] EXT4-fs error (device loop0): ext4_validate_block_bitmap:439: comm syz.0.2834: bg 0: block 248: padding at end of block bitmap is not set
[  604.756186][T13278] Quota error (device loop0): write_blk: dquota write failed
[  604.764351][T13278] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  604.774595][T13278] EXT4-fs error (device loop0): ext4_acquire_dquot:6938: comm syz.0.2834: Failed to acquire dquot type 1
[  604.806360][T13278] EXT4-fs (loop0): 1 truncate cleaned up
[  604.823373][T13278] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  605.061627][T13281] af_packet: tpacket_rcv: packet too big, clamped from 74 to 4294967286. macoff=82
[  607.002312][ T5869] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[  607.295265][T11495] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  607.387226][ T5869] usb 4-1: Using ep0 maxpacket: 32
[  607.405879][ T5869] usb 4-1: config 0 interface 0 altsetting 9 endpoint 0x81 has invalid maxpacket 1040, setting to 1024
[  607.424421][ T5869] usb 4-1: config 0 interface 0 has no altsetting 0
[  607.431125][ T5869] usb 4-1: New USB device found, idVendor=056e, idProduct=00ff, bcdDevice= 0.00
[  607.440883][ T5869] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  607.453433][ T5869] usb 4-1: config 0 descriptor??
[  607.458594][T13298] loop0: detected capacity change from 0 to 128
[  607.459368][T13292] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  607.503499][T13298] EXT4-fs: Ignoring removed nobh option
[  607.676165][T13298] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  607.699150][T13298] ext4 filesystem being mounted at /102/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  607.772668][ T5869] usbhid 4-1:0.0: can't add hid device: -71
[  607.782253][ T5869] usbhid: probe of 4-1:0.0 failed with error -71
[  607.795767][ T5869] usb 4-1: USB disconnect, device number 11
[  608.138869][T11495] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  609.362704][    T8] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[  609.441672][T13321] loop4: detected capacity change from 0 to 512
[  609.538157][T13321] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  609.566600][T13321] EXT4-fs (loop4): orphan cleanup on readonly fs
[  609.587679][T13321] EXT4-fs error (device loop4): ext4_validate_block_bitmap:439: comm syz.4.2847: bg 0: block 248: padding at end of block bitmap is not set
[  609.642775][T13321] Quota error (device loop4): write_blk: dquota write failed
[  609.650926][T13321] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  609.661265][T13321] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.2847: Failed to acquire dquot type 1
[  609.684750][T13321] EXT4-fs (loop4): 1 truncate cleaned up
[  609.727315][T13321] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  610.345602][    T8] usb 4-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  610.369349][T13324] loop2: detected capacity change from 0 to 512
[  610.406008][    T8] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  610.467856][    T8] usb 4-1: config 0 descriptor??
[  610.477381][T13324] EXT4-fs: Ignoring removed nobh option
[  610.530153][    T8] cp210x 4-1:0.0: cp210x converter detected
[  610.552239][T13324] ext3: Bad value for 'min_batch_time'
[  610.754231][    T8] usb 4-1: cp210x converter now attached to ttyUSB0
[  611.324559][T13330] syz.0.2850[13330] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  611.325444][T13330] syz.0.2850[13330] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  613.847020][   T54] block nbd0: Possible stuck request ffff888022128000: control (read@0,1024B). Runtime 510 seconds
[  613.870836][   T54] block nbd0: Possible stuck request ffff888022138000: control (read@1024,3072B). Runtime 510 seconds
[  614.585177][    T8] usb 4-1: USB disconnect, device number 12
[  614.637322][T12106] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  614.653108][    T8] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  614.661523][    T8] cp210x 4-1:0.0: device disconnected
[  615.107914][T13341] loop4: detected capacity change from 0 to 512
[  616.279998][T13341] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  616.319496][T13341] EXT4-fs (loop4): orphan cleanup on readonly fs
[  616.345518][T13341] EXT4-fs error (device loop4): ext4_validate_block_bitmap:439: comm syz.4.2851: bg 0: block 248: padding at end of block bitmap is not set
[  616.380211][T13341] Quota error (device loop4): write_blk: dquota write failed
[  616.388424][T13341] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  616.398710][T13341] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.2851: Failed to acquire dquot type 1
[  616.433940][T13341] EXT4-fs (loop4): 1 truncate cleaned up
[  616.616124][T13341] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  617.311763][T13350] loop2: detected capacity change from 0 to 128
[  617.363331][T13350] EXT4-fs: Ignoring removed nobh option
[  617.469118][T13350] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  617.511151][T13350] ext4 filesystem being mounted at /109/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  617.612613][ T5779] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[  617.710439][T11258] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  618.318352][T13357] loop0: detected capacity change from 0 to 512
[  619.872885][ T5779] usb 4-1: Using ep0 maxpacket: 32
[  619.889974][ T5779] usb 4-1: config 0 interface 0 altsetting 9 endpoint 0x81 has invalid maxpacket 1040, setting to 1024
[  619.973634][T13357] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  619.987119][T13357] ext4 filesystem being mounted at /107/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  620.106427][ T5779] usb 4-1: config 0 interface 0 has no altsetting 0
[  620.113387][ T5779] usb 4-1: New USB device found, idVendor=056e, idProduct=00ff, bcdDevice= 0.00
[  620.652186][ T5779] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  620.695404][ T5779] usb 4-1: config 0 descriptor??
[  620.725665][T12106] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  620.796131][ T5779] usb 4-1: can't set config #0, error -71
[  620.853463][ T5779] usb 4-1: USB disconnect, device number 13
[  621.229218][   T28] audit: type=1326 audit(1750514323.813:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13363 comm="syz.3.2859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f352e38e929 code=0x7ffc0000
[  621.330720][T11495] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  621.418042][   T28] audit: type=1326 audit(1750514323.843:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13363 comm="syz.3.2859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=111 compat=0 ip=0x7f352e38e929 code=0x7ffc0000
[  621.591452][   T28] audit: type=1326 audit(1750514323.843:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13363 comm="syz.3.2859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f352e38e929 code=0x7ffc0000
[  621.760580][T13370] loop3: detected capacity change from 0 to 512
[  621.768246][   T28] audit: type=1326 audit(1750514323.843:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13363 comm="syz.3.2859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f352e38e929 code=0x7ffc0000
[  621.810572][T13370] EXT4-fs: Ignoring removed i_version option
[  621.839157][T13370] EXT4-fs: Ignoring removed mblk_io_submit option
[  621.847608][   T28] audit: type=1326 audit(1750514323.853:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13363 comm="syz.3.2859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=141 compat=0 ip=0x7f352e38e929 code=0x7ffc0000
[  621.868365][T13370] ext4: Unknown parameter 'seclabel'
[  622.218901][T13372] serio: Serial port ptm0
[  622.248176][   T28] audit: type=1326 audit(1750514323.863:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13363 comm="syz.3.2859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f352e38e929 code=0x7ffc0000
[  623.072640][   T28] audit: type=1326 audit(1750514323.863:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13363 comm="syz.3.2859" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f352e38e929 code=0x7ffc0000
[  623.396507][T13381] loop3: detected capacity change from 0 to 256
[  623.498708][T13381] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x23633d53, utbl_chksum : 0xe619d30d)
[  624.837649][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  624.844331][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  626.072338][  T787] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  626.422281][  T787] usb 3-1: Using ep0 maxpacket: 32
[  626.430219][  T787] usb 3-1: config 0 interface 0 altsetting 9 endpoint 0x81 has invalid maxpacket 1040, setting to 1024
[  627.838079][  T787] usb 3-1: config 0 interface 0 has no altsetting 0
[  627.844956][  T787] usb 3-1: New USB device found, idVendor=056e, idProduct=00ff, bcdDevice= 0.00
[  627.854208][  T787] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  628.249309][  T787] usb 3-1: config 0 descriptor??
[  628.255341][T13393] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  628.379697][T13408] loop0: detected capacity change from 0 to 128
[  628.415608][T13408] EXT4-fs: Ignoring removed nobh option
[  628.444289][T13408] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  628.463814][T13408] ext4 filesystem being mounted at /111/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  628.513233][  T787] usbhid 3-1:0.0: can't add hid device: -71
[  628.519315][  T787] usbhid: probe of 3-1:0.0 failed with error -71
[  628.546403][T13406] loop3: detected capacity change from 0 to 40427
[  628.555160][  T787] usb 3-1: USB disconnect, device number 12
[  628.558048][T13406] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  628.574611][T13406] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  628.593965][T11495] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  628.597117][T13406] F2FS-fs (loop3): invalid crc value
[  628.624381][T13406] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  628.735673][T13406] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  628.750894][T13406] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  629.144063][T13406] F2FS-fs (loop3): Stopped filesystem due to reason: 0
[  630.198120][T13430] loop2: detected capacity change from 0 to 512
[  630.294841][T13430] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  630.307677][T13430] ext4 filesystem being mounted at /114/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  630.463251][T11258] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  634.109781][T13454] loop3: detected capacity change from 0 to 128
[  634.245528][T13454] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  634.368589][T13454] ext4 filesystem being mounted at /84/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  634.546134][T13460] loop4: detected capacity change from 0 to 512
[  634.574372][T13460] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  634.634147][T13460] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[  634.643271][T13460] System zones: 1-12
[  634.650491][T13460] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2244: inode #15: comm syz.4.2885: corrupted in-inode xattr: overlapping e_value 
[  634.673404][T13460] EXT4-fs error (device loop4): ext4_orphan_get:1404: comm syz.4.2885: couldn't read orphan inode 15 (err -117)
[  634.689243][T13460] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  634.791969][T13465] loop0: detected capacity change from 0 to 256
[  634.888244][T13460] futex_wake_op: syz.4.2885 tries to shift op by -1; fix this program
[  636.772311][ T5779] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  636.781730][T12106] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  637.022733][ T5779] usb 3-1: Using ep0 maxpacket: 32
[  637.043150][ T5779] usb 3-1: config 0 interface 0 altsetting 9 endpoint 0x81 has invalid maxpacket 1040, setting to 1024
[  637.075596][ T5779] usb 3-1: config 0 interface 0 has no altsetting 0
[  637.096051][ T5779] usb 3-1: New USB device found, idVendor=056e, idProduct=00ff, bcdDevice= 0.00
[  637.122309][ T5779] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  637.153863][ T5779] usb 3-1: config 0 descriptor??
[  637.159705][T13458] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  637.420525][ T5779] usbhid 3-1:0.0: can't add hid device: -71
[  637.447294][ T5779] usbhid: probe of 3-1:0.0 failed with error -71
[  637.490516][ T5779] usb 3-1: USB disconnect, device number 13
[  638.460551][T13482] loop2: detected capacity change from 0 to 512
[  638.495201][T13482] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  638.516054][T13482] EXT4-fs (loop2): orphan cleanup on readonly fs
[  638.537347][T13482] EXT4-fs error (device loop2): ext4_validate_block_bitmap:439: comm syz.2.2889: bg 0: block 248: padding at end of block bitmap is not set
[  638.566940][T13482] Quota error (device loop2): write_blk: dquota write failed
[  638.582426][T13482] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  638.592958][T13482] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.2889: Failed to acquire dquot type 1
[  638.622938][T13482] EXT4-fs (loop2): 1 truncate cleaned up
[  638.658805][T13482] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  639.067670][T11258] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  639.161239][T13493] netlink: 92 bytes leftover after parsing attributes in process `syz.0.2894'.
[  639.413221][T13498] pim6reg1: entered promiscuous mode
[  639.430693][T13498] pim6reg1: entered allmulticast mode
[  639.821673][T13503] loop2: detected capacity change from 0 to 256
[  639.902737][T13505] loop0: detected capacity change from 0 to 1024
[  639.922499][T13505] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  639.935821][T13505] JBD2: no valid journal superblock found
[  639.941633][T13505] EXT4-fs (loop0): Could not load journal inode
[  640.080893][ T5996] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  641.476320][T13513] 9pnet_fd: Insufficient options for proto=fd
[  643.813377][T13520] loop0: detected capacity change from 0 to 512
[  643.998098][T13520] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  644.009411][T13520] EXT4-fs (loop0): orphan cleanup on readonly fs
[  644.034944][T13520] EXT4-fs error (device loop0): ext4_validate_block_bitmap:439: comm syz.0.2903: bg 0: block 248: padding at end of block bitmap is not set
[  644.058745][T13520] Quota error (device loop0): write_blk: dquota write failed
[  644.066628][T13520] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  644.076742][T13520] EXT4-fs error (device loop0): ext4_acquire_dquot:6938: comm syz.0.2903: Failed to acquire dquot type 1
[  644.093537][T13520] EXT4-fs (loop0): 1 truncate cleaned up
[  644.135845][T13520] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  644.193171][T13525] netlink: 92 bytes leftover after parsing attributes in process `syz.4.2904'.
[  644.209061][   T54] block nbd0: Possible stuck request ffff888022128000: control (read@0,1024B). Runtime 540 seconds
[  644.220533][   T54] block nbd0: Possible stuck request ffff888022138000: control (read@1024,3072B). Runtime 540 seconds
[  644.878127][T11495] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  645.054906][T11870] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  647.261515][T13553] netlink: 92 bytes leftover after parsing attributes in process `syz.4.2913'.
[  650.536581][T13575] loop4: detected capacity change from 0 to 512
[  650.618520][T13575] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  650.631504][T13575] ext4 filesystem being mounted at /70/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  651.895595][T13578] EXT4-fs error (device loop4): ext4_validate_block_bitmap:439: comm ext4lazyinit: bg 0: block 328: padding at end of block bitmap is not set
[  651.953684][T12106] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  652.122918][T13599] loop4: detected capacity change from 0 to 256
[  652.156466][T13594] syz.3.2922[13594] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  652.156610][T13594] syz.3.2922[13594] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  652.173215][T13594] loop3: detected capacity change from 0 to 128
[  652.194186][T13594] EXT4-fs (loop3): Test dummy encryption mode enabled
[  652.222571][T13594] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  652.239359][T13594] ext4 filesystem being mounted at /89/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  652.480121][T13596] kvm: kvm [13595]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0xff40
[  652.565779][T13596] kvm: kvm [13595]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0xc1) = 0xff40
[  658.915149][T13636] loop2: detected capacity change from 0 to 512
[  658.990809][T13636] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  659.004711][T13636] ext4 filesystem being mounted at /134/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  659.247839][T13630] loop4: detected capacity change from 0 to 40427
[  659.299616][T13630] F2FS-fs (loop4): Found nat_bits in checkpoint
[  659.460361][T13630] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  659.641669][T11258] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  659.977031][T12533] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  660.128206][T12533] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  660.143577][T12533] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  660.529675][T12533] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  660.537806][T12533] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  660.545730][T12533] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  660.769732][T12106] syz-executor: attempt to access beyond end of device
[  660.769732][T12106] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  660.822886][T12106] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  660.860866][T11870] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  663.485743][T12533] Bluetooth: hci4: command tx timeout
[  664.249898][T13669] kvm: kvm [13668]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0x4000002a) = 0x0
[  664.350373][T13647] chnl_net:caif_netlink_parms(): no params data found
[  664.658913][T13681] loop4: detected capacity change from 0 to 256
[  664.722762][T13681] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x23633d53, utbl_chksum : 0xe619d30d)
[  665.612212][T12533] Bluetooth: hci4: command tx timeout
[  665.628538][T13683] loop3: detected capacity change from 0 to 256
[  665.774664][T13683] FAT-fs (loop3): Directory bread(block 64) failed
[  665.817407][T13683] FAT-fs (loop3): Directory bread(block 65) failed
[  665.850293][T13647] bridge0: port 1(bridge_slave_0) entered blocking state
[  665.865173][T13683] FAT-fs (loop3): Directory bread(block 66) failed
[  665.902092][T13647] bridge0: port 1(bridge_slave_0) entered disabled state
[  665.932140][T13683] FAT-fs (loop3): Directory bread(block 67) failed
[  665.938861][T13683] FAT-fs (loop3): Directory bread(block 68) failed
[  665.958397][T13647] bridge_slave_0: entered allmulticast mode
[  665.985992][T13685] loop2: detected capacity change from 0 to 512
[  666.013804][T13647] bridge_slave_0: entered promiscuous mode
[  666.020318][T13683] FAT-fs (loop3): Directory bread(block 69) failed
[  666.051848][T13685] EXT4-fs: Ignoring removed mblk_io_submit option
[  666.059093][T13683] FAT-fs (loop3): Directory bread(block 70) failed
[  666.069408][T13647] bridge0: port 2(bridge_slave_1) entered blocking state
[  666.106608][T13683] FAT-fs (loop3): Directory bread(block 71) failed
[  666.120222][T13647] bridge0: port 2(bridge_slave_1) entered disabled state
[  666.146345][T13685] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  666.157354][T13683] FAT-fs (loop3): Directory bread(block 72) failed
[  666.168332][T13647] bridge_slave_1: entered allmulticast mode
[  666.184160][T13685] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[  666.197818][T13683] FAT-fs (loop3): Directory bread(block 73) failed
[  666.211021][T13647] bridge_slave_1: entered promiscuous mode
[  666.248562][T13685] EXT4-fs (loop2): warning: checktime reached, running e2fsck is recommended
[  666.296705][T13685] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a043c01c, mo2=0102]
[  666.352072][T13685] System zones: 0-2, 18-18, 34-34
[  666.373166][T13647] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  666.386136][T13647] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  666.434357][T13647] team0: Port device team_slave_0 added
[  666.699658][T13685] EXT4-fs warning (device loop2): ext4_update_dynamic_rev:1154: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  666.892117][T13690] 9pnet_fd: Insufficient options for proto=fd
[  667.323482][T13647] team0: Port device team_slave_1 added
[  667.339087][T13685] EXT4-fs (loop2): 1 truncate cleaned up
[  667.346330][T13685] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  667.525336][T12533] Bluetooth: hci4: command tx timeout
[  667.771311][T13695] loop3: detected capacity change from 0 to 512
[  667.781024][T13647] batman_adv: batadv0: Adding interface: batadv_slave_0
[  667.790424][T13695] EXT4-fs: Ignoring removed nobh option
[  667.808554][T13647] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  667.982882][T13696] EXT4-fs error (device loop2): ext4_find_dest_de:2115: inode #2: block 3: comm syz.2.2942: bad entry in directory: inode out of bounds - offset=0, inode=63, rec_len=12, size=4096 fake=1
[  668.522236][T13647] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  668.554866][T13695] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  668.561377][T13647] batman_adv: batadv0: Adding interface: batadv_slave_1
[  668.624421][T13647] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  668.697972][T13647] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  668.731965][T11258] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  668.748662][T13700] loop4: detected capacity change from 0 to 128
[  668.797536][   T28] audit: type=1800 audit(1750514373.467:27): pid=13700 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.2945" name="bus" dev="loop4" ino=1048627 res=0 errno=0
[  668.844585][T11870] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  668.883471][T13647] hsr_slave_0: entered promiscuous mode
[  668.930483][T13647] hsr_slave_1: entered promiscuous mode
[  668.998118][T13647] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  669.025810][T13647] Cannot create hsr debugfs directory
[  669.160824][T13709] loop2: detected capacity change from 0 to 512
[  669.168670][T13709] EXT4-fs: Ignoring removed mblk_io_submit option
[  669.200531][T13709] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  669.250957][T13709] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[  669.303923][T13709] EXT4-fs (loop2): warning: checktime reached, running e2fsck is recommended
[  669.345412][T13709] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a043c01c, mo2=0102]
[  669.372214][T13709] System zones: 0-2, 18-18, 34-34
[  669.383085][T13709] EXT4-fs warning (device loop2): ext4_update_dynamic_rev:1154: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  669.558157][T12533] Bluetooth: hci4: command tx timeout
[  670.249973][T13709] EXT4-fs (loop2): 1 truncate cleaned up
[  670.276575][T13709] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  670.727285][T13721] EXT4-fs error (device loop2): ext4_find_dest_de:2115: inode #2: block 3: comm syz.2.2948: bad entry in directory: inode out of bounds - offset=0, inode=63, rec_len=12, size=4096 fake=1
[  672.162279][T13720] syz.4.2945: attempt to access beyond end of device
[  672.162279][T13720] loop4: rw=0, sector=121, nr_sectors = 920 limit=128
[  672.285578][   T54] block nbd0: Possible stuck request ffff888022128000: control (read@0,1024B). Runtime 570 seconds
[  672.297429][   T54] block nbd0: Possible stuck request ffff888022138000: control (read@1024,3072B). Runtime 570 seconds
[  672.302446][T11258] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  672.401145][T13647] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  672.450570][T13647] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  672.510905][T13647] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  672.536686][T13647] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  673.653460][T13647] 8021q: adding VLAN 0 to HW filter on device bond0
[  673.713667][T13647] 8021q: adding VLAN 0 to HW filter on device team0
[  673.774709][   T58] bridge0: port 1(bridge_slave_0) entered blocking state
[  673.781973][   T58] bridge0: port 1(bridge_slave_0) entered forwarding state
[  673.888097][ T2949] bridge0: port 2(bridge_slave_1) entered blocking state
[  673.895373][ T2949] bridge0: port 2(bridge_slave_1) entered forwarding state
[  673.986748][T13647] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  674.031902][T13647] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  674.384186][T13750] loop3: detected capacity change from 0 to 1024
[  674.706557][T13750] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  676.441962][T13647] 8021q: adding VLAN 0 to HW filter on device batadv0
[  676.880523][T11870] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  676.883327][T13767] loop4: detected capacity change from 0 to 512
[  676.920525][T13767] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  676.968535][T13767] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[  676.985945][T13767] System zones: 1-12
[  676.999884][T13767] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2244: inode #15: comm syz.4.2956: corrupted in-inode xattr: overlapping e_value 
[  677.032031][T13767] EXT4-fs error (device loop4): ext4_orphan_get:1404: comm syz.4.2956: couldn't read orphan inode 15 (err -117)
[  677.047656][T13767] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  677.089887][T13767] futex_wake_op: syz.4.2956 tries to shift op by -1; fix this program
[  677.903881][T13779] kvm: kvm [13778]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0x4000002a) = 0x0
[  678.035152][T13647] veth0_vlan: entered promiscuous mode
[  678.064207][T13647] veth1_vlan: entered promiscuous mode
[  678.120808][T12106] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  678.172860][T13647] veth0_macvtap: entered promiscuous mode
[  678.195692][T13647] veth1_macvtap: entered promiscuous mode
[  678.237464][T13647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  678.290448][T13647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  678.318527][T13647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  678.352454][T13647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  678.378159][T13647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  678.401653][T13647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  678.421180][T13647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  678.439286][T13647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  678.456968][T13647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  678.473691][T13647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  678.517633][T13647] batman_adv: batadv0: Interface activated: batadv_slave_0
[  678.537829][T13647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  678.558554][T13647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  678.579387][T13647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  678.590600][T13647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  678.600880][T13647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  678.612202][T13647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  678.622786][T13647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  678.633524][T13647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  678.643503][T13647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  678.654136][T13647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  678.683929][T13647] batman_adv: batadv0: Interface activated: batadv_slave_1
[  678.699235][T13647] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  678.718324][T13647] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  678.734015][T13647] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  678.753179][T13647] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  679.006241][   T48] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  679.040022][   T48] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  679.076231][   T58] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  679.102545][   T58] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  679.433174][T13812] loop5: detected capacity change from 0 to 256
[  680.208678][T13811] loop2: detected capacity change from 0 to 512
[  680.229548][T13811] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  680.259638][T13812] FAT-fs (loop5): Directory bread(block 64) failed
[  680.275928][T13812] FAT-fs (loop5): Directory bread(block 65) failed
[  680.282656][T13812] FAT-fs (loop5): Directory bread(block 66) failed
[  680.290632][T13811] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[  680.313357][T13811] System zones: 1-12
[  680.323589][T13812] FAT-fs (loop5): Directory bread(block 67) failed
[  680.330301][T13812] FAT-fs (loop5): Directory bread(block 68) failed
[  680.348388][T13811] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2244: inode #15: comm syz.2.2967: corrupted in-inode xattr: overlapping e_value 
[  680.350925][T13812] FAT-fs (loop5): Directory bread(block 69) failed
[  680.374624][T13812] FAT-fs (loop5): Directory bread(block 70) failed
[  680.385038][T13812] FAT-fs (loop5): Directory bread(block 71) failed
[  680.391878][T13812] FAT-fs (loop5): Directory bread(block 72) failed
[  680.398646][T13812] FAT-fs (loop5): Directory bread(block 73) failed
[  680.423531][T13811] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.2967: couldn't read orphan inode 15 (err -117)
[  680.478489][T13811] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  680.516532][T13811] futex_wake_op: syz.2.2967 tries to shift op by -1; fix this program
[  681.684958][T11258] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  681.832364][  T787] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  681.877562][T13825] loop4: detected capacity change from 0 to 512
[  682.060077][T13825] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  682.086819][  T787] usb 6-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  682.130255][  T787] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  682.160009][T13825] ext4 filesystem being mounted at /82/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  682.215912][  T787] usb 6-1: config 0 descriptor??
[  682.265384][  T787] cp210x 6-1:0.0: cp210x converter detected
[  682.652780][  T787] cp210x 6-1:0.0: failed to get vendor val 0x0010 size 3: -32
[  682.692568][  T787] cp210x 6-1:0.0: failed to get vendor val 0x000e size 678: -71
[  682.937626][  T787] cp210x 6-1:0.0: GPIO initialisation failed: -71
[  682.976966][  T787] usb 6-1: cp210x converter now attached to ttyUSB0
[  682.994648][T13840] loop2: detected capacity change from 0 to 512
[  683.003953][T13840] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  683.036037][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  683.042393][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  683.088707][T13840] EXT4-fs (loop2): 1 truncate cleaned up
[  683.096070][T13840] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  683.115916][  T787] usb 6-1: USB disconnect, device number 2
[  683.172421][  T787] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  683.214763][  T787] cp210x 6-1:0.0: device disconnected
[  683.609135][T11258] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  683.629490][T12106] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  684.792902][T13857] loop2: detected capacity change from 0 to 512
[  684.824911][T13857] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  684.848753][T13857] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[  684.864432][T13857] System zones: 1-12
[  684.873938][T13857] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2244: inode #15: comm syz.2.2979: corrupted in-inode xattr: overlapping e_value 
[  684.918634][T13857] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.2979: couldn't read orphan inode 15 (err -117)
[  684.961787][T13857] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  685.030904][T13863] loop5: detected capacity change from 0 to 512
[  685.031799][T13857] futex_wake_op: syz.2.2979 tries to shift op by -1; fix this program
[  685.174580][T13863] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  685.296818][T13863] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[  685.323970][T13863] System zones: 1-12
[  685.334131][T13863] EXT4-fs error (device loop5): ext4_xattr_ibody_find:2244: inode #15: comm syz.5.2980: corrupted in-inode xattr: overlapping e_value 
[  685.388721][T13863] EXT4-fs error (device loop5): ext4_orphan_get:1404: comm syz.5.2980: couldn't read orphan inode 15 (err -117)
[  685.425751][T13863] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  685.730571][T13863] futex_wake_op: syz.5.2980 tries to shift op by -1; fix this program
[  686.114728][T11258] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  686.435079][T13871] loop4: detected capacity change from 0 to 512
[  686.617940][T13647] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  686.710554][T13871] EXT4-fs error (device loop4): ext4_orphan_get:1425: comm syz.4.2981: bad orphan inode 15
[  686.734684][T13871] ext4_test_bit(bit=14, block=18) = 1
[  686.740220][T13871] is_bad_inode(inode)=0
[  686.744669][T13871] NEXT_ORPHAN(inode)=1023
[  686.749088][T13871] max_ino=32
[  686.752379][T13871] i_nlink=0
[  686.781039][T13871] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2983: inode #15: comm syz.4.2981: corrupted xattr block 19: invalid header
[  686.832126][T13871] EXT4-fs warning (device loop4): ext4_evict_inode:272: xattr delete (err -117)
[  686.849464][T13871] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0009-000000000000 r/w without journal. Quota mode: none.
[  686.864577][T13871] ext4 filesystem being mounted at /84/éq‰Y’3aK supports timestamps until 2038-01-19 (0x7fffffff)
[  687.665341][T13874] loop2: detected capacity change from 0 to 256
[  687.862138][T13874] FAT-fs (loop2): Directory bread(block 64) failed
[  687.906218][T13874] FAT-fs (loop2): Directory bread(block 65) failed
[  687.936976][T13874] FAT-fs (loop2): Directory bread(block 66) failed
[  687.973645][T13878] loop5: detected capacity change from 0 to 1024
[  687.980592][ T5819] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[  687.994183][T13874] FAT-fs (loop2): Directory bread(block 67) failed
[  688.040183][T13874] FAT-fs (loop2): Directory bread(block 68) failed
[  688.046802][T13874] FAT-fs (loop2): Directory bread(block 69) failed
[  688.114498][T13874] FAT-fs (loop2): Directory bread(block 70) failed
[  688.121103][T13874] FAT-fs (loop2): Directory bread(block 71) failed
[  688.132822][T13878] EXT4-fs (loop5): Invalid log cluster size: 32
[  688.190357][T13874] FAT-fs (loop2): Directory bread(block 72) failed
[  688.219856][ T5819] usb 4-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  688.235267][T13874] FAT-fs (loop2): Directory bread(block 73) failed
[  688.263231][ T5819] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  688.320425][ T5819] usb 4-1: config 0 descriptor??
[  688.367434][ T5819] cp210x 4-1:0.0: cp210x converter detected
[  688.683498][T12106] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0009-000000000000.
[  688.750738][ T5819] cp210x 4-1:0.0: failed to get vendor val 0x0010 size 3: -32
[  688.794844][ T5819] cp210x 4-1:0.0: failed to get vendor val 0x000e size 678: -71
[  688.842613][ T5819] cp210x 4-1:0.0: GPIO initialisation failed: -71
[  688.882477][ T5819] usb 4-1: cp210x converter now attached to ttyUSB0
[  689.140044][ T5819] usb 4-1: USB disconnect, device number 14
[  689.168134][ T5819] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  689.176569][ T5819] cp210x 4-1:0.0: device disconnected
[  689.302530][T13885] loop4: detected capacity change from 0 to 512
[  689.580297][T13885] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  689.593597][T13885] ext4 filesystem being mounted at /86/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  691.228332][T12106] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  691.328465][T13902] loop2: detected capacity change from 0 to 512
[  691.398280][T13902] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  691.459349][T13902] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[  691.488958][T13902] System zones: 1-12
[  691.553747][T13902] EXT4-fs (loop2): 1 truncate cleaned up
[  691.560758][T13902] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  694.025581][T13910] loop5: detected capacity change from 0 to 40427
[  694.504696][T13910] F2FS-fs (loop5): Found nat_bits in checkpoint
[  694.830033][T13910] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  696.880513][T11258] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  699.258527][T13946] loop5: detected capacity change from 0 to 512
[  699.324985][T13946] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  699.405113][T13946] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[  699.443028][T13946] System zones: 1-12
[  699.466409][T13946] EXT4-fs error (device loop5): ext4_xattr_ibody_find:2244: inode #15: comm syz.5.2999: corrupted in-inode xattr: overlapping e_value 
[  699.658805][T13951] loop4: detected capacity change from 0 to 1024
[  699.956572][T13951] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  700.875836][T13946] EXT4-fs error (device loop5): ext4_orphan_get:1404: comm syz.5.2999: couldn't read orphan inode 15 (err -117)
[  700.982629][T13946] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  701.102507][T13946] futex_wake_op: syz.5.2999 tries to shift op by -1; fix this program
[  702.155048][T13647] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  702.262829][   T54] block nbd0: Possible stuck request ffff888022128000: control (read@0,1024B). Runtime 600 seconds
[  702.276670][   T54] block nbd0: Possible stuck request ffff888022138000: control (read@1024,3072B). Runtime 600 seconds
[  702.310558][T12106] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  702.940120][T13964] netlink: 'syz.2.3003': attribute type 3 has an invalid length.
[  702.950626][T13964] netlink: 'syz.2.3003': attribute type 3 has an invalid length.
[  704.078470][T13980] loop2: detected capacity change from 0 to 512
[  704.541185][T13980] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  704.722837][T13980] EXT4-fs (loop2): orphan cleanup on readonly fs
[  704.748337][T13983] loop5: detected capacity change from 0 to 256
[  704.820260][T13980] EXT4-fs error (device loop2): ext4_validate_block_bitmap:439: comm syz.2.3005: bg 0: block 248: padding at end of block bitmap is not set
[  704.829770][T13986] loop4: detected capacity change from 0 to 512
[  704.846466][T13986] EXT4-fs: Ignoring removed nobh option
[  704.852118][T13986] ext3: Bad value for 'min_batch_time'
[  704.921718][T13980] Quota error (device loop2): write_blk: dquota write failed
[  704.957672][T13983] FAT-fs (loop5): Directory bread(block 64) failed
[  704.978692][T13980] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  705.001736][T13983] FAT-fs (loop5): Directory bread(block 65) failed
[  705.040356][T13983] FAT-fs (loop5): Directory bread(block 66) failed
[  705.046267][T13980] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.3005: Failed to acquire dquot type 1
[  705.048756][T13983] FAT-fs (loop5): Directory bread(block 67) failed
[  705.074703][T13983] FAT-fs (loop5): Directory bread(block 68) failed
[  705.082547][T13983] FAT-fs (loop5): Directory bread(block 69) failed
[  705.091499][T13983] FAT-fs (loop5): Directory bread(block 70) failed
[  705.098585][T13983] FAT-fs (loop5): Directory bread(block 71) failed
[  705.109262][T13983] FAT-fs (loop5): Directory bread(block 72) failed
[  705.116241][T13983] FAT-fs (loop5): Directory bread(block 73) failed
[  705.120219][T13980] EXT4-fs (loop2): 1 truncate cleaned up
[  705.128977][   T27] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  705.158411][T13980] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  705.516262][   T27] usb 5-1: Using ep0 maxpacket: 32
[  705.619087][T13990] 9pnet_fd: Insufficient options for proto=fd
[  705.651533][   T27] usb 5-1: config 0 has an invalid interface number: 196 but max is 0
[  705.707449][   T27] usb 5-1: config 0 has no interface number 0
[  705.859472][   T27] usb 5-1: config 0 interface 196 altsetting 1 bulk endpoint 0x2 has invalid maxpacket 528
[  705.925889][   T27] usb 5-1: config 0 interface 196 has no altsetting 0
[  705.976973][   T27] usb 5-1: New USB device found, idVendor=05ac, idProduct=77c2, bcdDevice=eb.3a
[  706.017215][   T27] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  706.057750][   T27] usb 5-1: Product: syz
[  706.061994][   T27] usb 5-1: Manufacturer: syz
[  706.102862][   T27] usb 5-1: SerialNumber: syz
[  706.131314][   T27] usb 5-1: config 0 descriptor??
[  706.137355][T13986] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  706.389119][   T27] ipheth 5-1:0.196: ipheth_get_macaddr: usb_control_msg: -71
[  706.410284][   T27] ipheth: probe of 5-1:0.196 failed with error -71
[  706.435172][   T27] usb 5-1: USB disconnect, device number 8
[  706.648297][T13995] loop5: detected capacity change from 0 to 512
[  706.677333][T13995] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  706.707144][T13995] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002]
[  706.748933][T13995] System zones: 1-12
[  706.769363][T13995] EXT4-fs error (device loop5): ext4_xattr_ibody_find:2244: inode #15: comm syz.5.3010: corrupted in-inode xattr: overlapping e_value 
[  706.859193][T13995] EXT4-fs error (device loop5): ext4_orphan_get:1404: comm syz.5.3010: couldn't read orphan inode 15 (err -117)
[  706.917541][T13995] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  706.962433][T13995] futex_wake_op: syz.5.3010 tries to shift op by -1; fix this program
[  707.879238][T13647] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  708.081735][T14006] veth1_macvtap: left promiscuous mode
[  708.088361][T14006] macsec0: entered promiscuous mode
[  708.367976][T14010] bridge0: port 1(bridge_slave_0) entered blocking state
[  708.375182][T14010] bridge0: port 1(bridge_slave_0) entered forwarding state
[  709.093918][T14020] loop5: detected capacity change from 0 to 256
[  709.215788][T14020] FAT-fs (loop5): Directory bread(block 64) failed
[  709.237713][T14020] FAT-fs (loop5): Directory bread(block 65) failed
[  709.278054][T14020] FAT-fs (loop5): Directory bread(block 66) failed
[  709.304556][T14020] FAT-fs (loop5): Directory bread(block 67) failed
[  709.330820][T14020] FAT-fs (loop5): Directory bread(block 68) failed
[  709.355727][T14020] FAT-fs (loop5): Directory bread(block 69) failed
[  709.372521][T14020] FAT-fs (loop5): Directory bread(block 70) failed
[  709.396952][T14020] FAT-fs (loop5): Directory bread(block 71) failed
[  709.421283][T14020] FAT-fs (loop5): Directory bread(block 72) failed
[  709.448509][T14020] FAT-fs (loop5): Directory bread(block 73) failed
[  709.857679][T14021] 9pnet_fd: Insufficient options for proto=fd
[  710.714717][T14025] loop5: detected capacity change from 0 to 512
[  710.921191][T14025] EXT4-fs error (device loop5): ext4_orphan_get:1425: comm syz.5.3019: bad orphan inode 15
[  710.960183][T14025] ext4_test_bit(bit=14, block=18) = 1
[  710.965760][T14025] is_bad_inode(inode)=0
[  710.970123][T14025] NEXT_ORPHAN(inode)=1023
[  710.974545][T14025] max_ino=32
[  710.977946][T14025] i_nlink=0
[  710.999093][T14025] EXT4-fs error (device loop5): ext4_xattr_delete_inode:2983: inode #15: comm syz.5.3019: corrupted xattr block 19: invalid header
[  711.016181][T14025] EXT4-fs warning (device loop5): ext4_evict_inode:272: xattr delete (err -117)
[  711.035730][T14025] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0009-000000000000 r/w without journal. Quota mode: none.
[  711.059863][T14025] ext4 filesystem being mounted at /19/éq‰Y’3aK supports timestamps until 2038-01-19 (0x7fffffff)
[  712.797968][T14027] EXT4-fs error (device loop5): ext4_validate_block_bitmap:439: comm ext4lazyinit: bg 0: block 449: padding at end of block bitmap is not set
[  712.833030][   T29] INFO: task udevd:5894 blocked for more than 145 seconds.
[  712.840309][   T29]       Not tainted 6.6.94-syzkaller #0
[  712.897441][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  712.942394][   T29] task:udevd           state:D stack:25424 pid:5894  ppid:5141   flags:0x00004006
[  712.991078][   T29] Call Trace:
[  712.994462][   T29]  <TASK>
[  712.997456][   T29]  __schedule+0x14e2/0x4580
[  713.018732][   T29]  ? asan.module_dtor+0x20/0x20
[  713.024549][   T29]  ? mark_lock+0x94/0x320
[  713.039029][   T29]  ? lock_chain_count+0x20/0x20
[  713.043971][   T29]  ? _raw_spin_lock_irq+0xaf/0xe0
[  713.069879][   T29]  ? _raw_spin_lock_irqsave+0xf0/0xf0
[  713.083413][   T29]  schedule+0xbd/0x170
[  713.087822][   T29]  io_schedule+0x80/0xd0
[  713.092139][   T29]  folio_wait_bit_common+0x6eb/0xf70
[  713.112244][   T29]  ? folio_wait_bit+0x30/0x30
[  713.117010][   T29]  ? _compound_head+0x120/0x120
[  713.139350][   T29]  ? filemap_add_folio+0x192/0x3c0
[  713.144683][   T29]  ? __filemap_get_folio+0x70a/0xbc0
[  713.158483][   T29]  ? blkdev_writepage+0x30/0x30
[  713.163425][   T29]  do_read_cache_folio+0x1c0/0x7e0
[  713.177093][   T29]  ? blkdev_writepage+0x30/0x30
[  713.182039][   T29]  read_part_sector+0xd2/0x350
[  713.195750][   T29]  adfspart_check_POWERTEC+0x8d/0xf00
[  713.201215][   T29]  ? adfspart_check_ADFS+0x660/0x660
[  713.223781][   T29]  ? put_partition+0x350/0x350
[  713.228647][   T29]  ? alloc_pages+0x4dc/0x740
[  713.242651][   T29]  bdev_disk_changed+0x73a/0x1410
[  713.247794][   T29]  ? bdev_resize_partition+0xf0/0xf0
[  713.260980][   T29]  ? iput+0x347/0x920
[  713.265068][   T29]  blkdev_get_whole+0x30d/0x390
[  713.270020][   T29]  blkdev_get_by_dev+0x279/0x600
[  713.289045][   T29]  blkdev_open+0x152/0x360
[  713.293580][   T29]  ? blkdev_mmap+0x1b0/0x1b0
[  713.307670][   T29]  do_dentry_open+0x8c6/0x1500
[  713.313451][   T29]  path_openat+0x274b/0x3190
[  713.335642][   T29]  ? __kasan_slab_alloc+0x6c/0x80
[  713.340773][   T29]  ? entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  713.354089][   T29]  ? verify_lock_unused+0x140/0x140
[  713.359378][   T29]  ? do_filp_open+0x3d0/0x3d0
[  713.364273][   T29]  ? __virt_addr_valid+0x18c/0x540
[  713.369454][   T29]  do_filp_open+0x1c5/0x3d0
[  713.374436][   T29]  ? vfs_tmpfile+0x490/0x490
[  713.379105][   T29]  ? _raw_spin_unlock+0x28/0x40
[  713.385548][   T29]  ? alloc_fd+0x58f/0x630
[  713.389980][   T29]  do_sys_openat2+0x12c/0x1c0
[  713.395030][   T29]  ? do_sys_open+0xe0/0xe0
[  713.399514][   T29]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  713.406757][   T29]  ? lock_chain_count+0x20/0x20
[  713.411924][   T29]  __x64_sys_openat+0x139/0x160
[  713.416861][   T29]  do_syscall_64+0x55/0xb0
[  713.426601][   T29]  ? clear_bhb_loop+0x40/0x90
[  713.431704][   T29]  ? clear_bhb_loop+0x40/0x90
[  713.436448][   T29]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  713.446015][   T29] RIP: 0033:0x7f97c9aa7407
[  713.450791][   T29] RSP: 002b:00007ffd183d0dd0 EFLAGS: 00000202 ORIG_RAX: 0000000000000101
[  713.459606][   T29] RAX: ffffffffffffffda RBX: 00007f97ca172880 RCX: 00007f97c9aa7407
[  713.468900][   T29] RDX: 00000000000a0800 RSI: 0000558cfbed6df0 RDI: ffffffffffffff9c
[  713.481666][   T29] RBP: 0000558cfbec4910 R08: 0000000000000000 R09: 0000000000000000
[  713.492161][   T29] R10: 0000000000000000 R11: 0000000000000202 R12: 0000558cfbedcdb0
[  713.508785][   T29] R13: 0000558cfbedc3c0 R14: 0000000000000000 R15: 0000558cfbedcdb0
[  713.518307][   T29]  </TASK>
[  713.532642][T11258] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  713.537421][T13647] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0009-000000000000.
[  713.550001][   T29] 
[  713.550001][   T29] Showing all locks held in the system:
[  713.559184][   T29] 1 lock held by khungtaskd/29:
[  713.566276][   T29]  #0: ffffffff8cd2f760 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x290
[  713.612840][   T29] 2 locks held by kworker/0:2/787:
[  713.633014][   T29]  #0: ffff888017872538 ((wq_completion)rcu_gp){+.+.}-{0:0}, at: process_scheduled_works+0x957/0x15b0
[  713.668347][   T29]  #1: ffffc900037c7d00 ((work_completion)(&rew->rew_work)){+.+.}-{0:0}, at: process_scheduled_works+0x957/0x15b0
[  713.687700][   T29] 2 locks held by getty/5535:
[  713.696346][   T29]  #0: ffff88802dc140a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  713.714396][   T29]  #1: ffffc9000325e2f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x425/0x1380
[  713.726180][   T29] 1 lock held by udevd/5894:
[  713.739128][   T29]  #0: ffff888140b544c8 (&disk->open_mutex){+.+.}-{3:3}, at: blkdev_get_by_dev+0x121/0x600
[  713.758380][   T29] 1 lock held by syz.0.2907/13533:
[  713.763565][   T29]  #0: ffff888140b544c8 (&disk->open_mutex){+.+.}-{3:3}, at: sync_bdevs+0x1af/0x330
[  713.780228][   T29] 1 lock held by syz.4.3015/14015:
[  713.809147][   T29] 
[  713.812076][   T29] =============================================
[  713.812076][   T29] 
[  713.832348][   T29] NMI backtrace for cpu 0
[  713.836770][   T29] CPU: 0 PID: 29 Comm: khungtaskd Not tainted 6.6.94-syzkaller #0
[  713.844639][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  713.854770][   T29] Call Trace:
[  713.858099][   T29]  <TASK>
[  713.861069][   T29]  dump_stack_lvl+0x16c/0x230
[  713.865804][   T29]  ? show_regs_print_info+0x20/0x20
[  713.871148][   T29]  ? load_image+0x3b0/0x3b0
[  713.875711][   T29]  nmi_cpu_backtrace+0x39b/0x3d0
[  713.880704][   T29]  ? nmi_trigger_cpumask_backtrace+0x2f0/0x2f0
[  713.886933][   T29]  ? _printk+0xd0/0x110
[  713.891144][   T29]  ? load_image+0x3b0/0x3b0
[  713.895701][   T29]  ? load_image+0x3b0/0x3b0
[  713.900257][   T29]  ? arch_trigger_cpumask_backtrace+0x10/0x10
[  713.906387][   T29]  nmi_trigger_cpumask_backtrace+0x17a/0x2f0
[  713.912436][   T29]  watchdog+0xf41/0xf80
[  713.916658][   T29]  ? watchdog+0x1e1/0xf80
[  713.921052][   T29]  kthread+0x2fa/0x390
[  713.925165][   T29]  ? hungtask_pm_notify+0x90/0x90
[  713.930247][   T29]  ? kthread_blkcg+0xd0/0xd0
[  713.934916][   T29]  ret_from_fork+0x48/0x80
[  713.939384][   T29]  ? kthread_blkcg+0xd0/0xd0
[  713.944019][   T29]  ret_from_fork_asm+0x11/0x20
[  713.948850][   T29]  </TASK>
[  713.953703][   T29] Sending NMI from CPU 0 to CPUs 1:
[  713.958967][    C1] NMI backtrace for cpu 1
[  713.958991][    C1] CPU: 1 PID: 13346 Comm: kworker/u4:13 Not tainted 6.6.94-syzkaller #0
[  713.959009][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  713.959019][    C1] Workqueue: events_unbound nsim_dev_trap_report_work
[  713.959046][    C1] RIP: 0010:__lock_acquire+0xfbe/0x7c80
[  713.959075][    C1] Code: eb bb 44 89 e0 25 ff 1f 00 00 41 c1 ec 03 41 81 e4 00 60 00 00 41 09 c4 4c 89 fe 48 c1 ee 20 89 f0 c1 c0 04 41 29 f4 44 31 e0 <44> 01 fe 41 29 c7 89 c1 c1 c1 06 44 31 f9 01 f0 89 ca c1 c2 08 29
[  713.959090][    C1] RSP: 0018:ffffc90013c974a0 EFLAGS: 00000002
[  713.959104][    C1] RAX: 000000007e4d3b16 RBX: 0000000000080743 RCX: ffffffff81670ba0
[  713.959116][    C1] RDX: 0000000000000000 RSI: 000000007fe57bf0 RDI: ffffffff90d85520
[  713.959127][    C1] RBP: ffffc90013c976e8 R08: dffffc0000000000 R09: 1ffffffff21b0aa4
[  713.959140][    C1] R10: dffffc0000000000 R11: fffffbfff21b0aa5 R12: 00000000801a8411
[  713.959155][    C1] R13: ffff88802c240000 R14: ffff88802c240ae0 R15: 7fe57bf0c7125eae
[  713.959168][    C1] FS:  0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[  713.959182][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  713.959192][    C1] CR2: 0000200000cf8030 CR3: 00000000253a6000 CR4: 00000000003506e0
[  713.959207][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  713.959216][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  713.959226][    C1] Call Trace:
[  713.959233][    C1]  <TASK>
[  713.959252][    C1]  ? verify_lock_unused+0x140/0x140
[  713.959277][    C1]  ? chacha_block_generic+0xae/0xda0
[  713.959304][    C1]  ? mark_lock+0x94/0x320
[  713.959323][    C1]  lock_acquire+0x197/0x410
[  713.959340][    C1]  ? debug_check_no_obj_freed+0x13a/0x540
[  713.959375][    C1]  ? read_lock_is_recursive+0x20/0x20
[  713.959399][    C1]  _raw_spin_lock_irqsave+0xa8/0xf0
[  713.959427][    C1]  ? debug_check_no_obj_freed+0x13a/0x540
[  713.959453][    C1]  ? _raw_spin_lock+0x40/0x40
[  713.959482][    C1]  debug_check_no_obj_freed+0x13a/0x540
[  713.959513][    C1]  slab_free_freelist_hook+0xd2/0x1b0
[  713.959533][    C1]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  713.959553][    C1]  ? skb_release_data+0x634/0x800
[  713.959570][    C1]  __kmem_cache_free+0xba/0x1f0
[  713.959588][    C1]  skb_release_data+0x634/0x800
[  713.959609][    C1]  consume_skb+0xb2/0x110
[  713.959626][    C1]  nsim_dev_trap_report_work+0x76f/0xb00
[  713.959660][    C1]  ? process_scheduled_works+0x957/0x15b0
[  713.959682][    C1]  process_scheduled_works+0xa45/0x15b0
[  713.959714][    C1]  ? assign_work+0x400/0x400
[  713.959736][    C1]  ? assign_work+0x39e/0x400
[  713.959757][    C1]  worker_thread+0xa55/0xfc0
[  713.959778][    C1]  ? _raw_spin_unlock_irqrestore+0xae/0x110
[  713.959806][    C1]  ? _raw_spin_unlock+0x40/0x40
[  713.959840][    C1]  kthread+0x2fa/0x390
[  713.959854][    C1]  ? pr_cont_work+0x560/0x560
[  713.959874][    C1]  ? kthread_blkcg+0xd0/0xd0
[  713.959889][    C1]  ret_from_fork+0x48/0x80
[  713.959910][    C1]  ? kthread_blkcg+0xd0/0xd0
[  713.959926][    C1]  ret_from_fork_asm+0x11/0x20
[  713.959958][    C1]  </TASK>
[  714.290207][   T29] Kernel panic - not syncing: hung_task: blocked tasks
[  714.297121][   T29] CPU: 0 PID: 29 Comm: khungtaskd Not tainted 6.6.94-syzkaller #0
[  714.304965][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  714.315049][   T29] Call Trace:
[  714.318451][   T29]  <TASK>
[  714.321408][   T29]  dump_stack_lvl+0x16c/0x230
[  714.326134][   T29]  ? show_regs_print_info+0x20/0x20
[  714.331383][   T29]  ? load_image+0x3b0/0x3b0
[  714.335944][   T29]  panic+0x2c0/0x710
[  714.339884][   T29]  ? schedule_preempt_disabled+0x20/0x20
[  714.345579][   T29]  ? bpf_jit_dump+0xd0/0xd0
[  714.350136][   T29]  ? __irq_work_queue_local+0x13a/0x3b0
[  714.355726][   T29]  ? nmi_trigger_cpumask_backtrace+0x2a4/0x2f0
[  714.361953][   T29]  watchdog+0xf80/0xf80
[  714.366322][   T29]  ? watchdog+0x1e1/0xf80
[  714.370698][   T29]  kthread+0x2fa/0x390
[  714.374972][   T29]  ? hungtask_pm_notify+0x90/0x90
[  714.380043][   T29]  ? kthread_blkcg+0xd0/0xd0
[  714.384679][   T29]  ret_from_fork+0x48/0x80
[  714.389129][   T29]  ? kthread_blkcg+0xd0/0xd0
[  714.393768][   T29]  ret_from_fork_asm+0x11/0x20
[  714.398584][   T29]  </TASK>
[  714.401956][   T29] Kernel Offset: disabled
[  714.406296][   T29] Rebooting in 86400 seconds..