last executing test programs:

14.419777501s ago: executing program 2 (id=1520):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
mount$overlay(0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={[], [], 0x2f})
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@xino_on}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0}, 0x18)
chdir(&(0x7f00000003c0)='./bus\x00')
r3 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r3, &(0x7f0000001fc0)=""/184, 0x20002078)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x0, 0x0, &(0x7f0000000000)='GPL\x00'}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x12, 0x4, &(0x7f0000000700)=ANY=[@ANYBLOB="1800000008000000000000000d0000006b110e000000"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock_addr=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=@newlink={0x3c, 0x10, 0x401, 0x70bd2c, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, 0x17b, 0x4c801}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_MLD_VERSION={0x5, 0x2c, 0x5}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20044081}, 0x20040844)

14.406048911s ago: executing program 1 (id=1521):
getpid()
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, 0x0, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000040)='./file1\x00', 0x3000000, &(0x7f00000003c0)={[{@nolazytime}, {@orlov}, {@acl}, {@norecovery}, {@nojournal_checksum}, {@quota}]}, 0x1, 0x513, &(0x7f0000000c40)="$eJzs3W9rJHcdAPDvTLJp7i41WxU5C7bFVu6K3m7S2DaKtBVEHxXU+jzGZBNCNtmQ3dRLKJriCxBEVPAF+ETwBQjSlyDCgT4XFUX0Th/qjczuRPNnN1mSTfbcfD4w2d9v/n2/vyE7O39+zARwbb0QEW9FxFhEvBwR08X4tBgW8sp+Z75HD99byocksuydvyWRFOMO1pXXxyPiVmeRmIyIr38l4lvJybjN3b31xXq9tl3Uq62NrWpzd+/e2sbiam21tjk3N/va/Ovzr87PZIULtbMcEW986U8/+v7PvvzGrz7z7d8v/OXud/K0vvCxTt4RsXShAD101l1qb4sD+TbavoxgQ5K3pzQ27CwAAOhHfoz/4Yj4ZPv4fzrG2kdzAAAAwCjJ3pyKfyURGQAAADCy0oiYiiStFH0BpiJNK5VOH96Pxs203mi2Pr3S2NlczqdFlKOUrqzVazNFX+FylJK8Plv0sT2ov3KsPhcRz0TED6dvtOuVpUZ9edgXPwAAAOCauPX80fP/f06n7TIAAAAwYso9KwAAAMCocMoPAAAAo8/5PwAAAIy0r779dj5kB+/xXn53d2e98e695VpzvbKxs1RZamxvVVYbjdX2M/s2zlpfvdHY+mxs7tyvtmrNVrW5u7ew0djZbC2sHXkFNgAAAHCFnnn+g98lEbH/+RvtIYrnAAIc8cdhJwAM0tiwEwCGZnzYCQBDUzpzDnsIGHXJGdNPdt7pXCuMX19OPgAAwODd+fjJ+/8TxbSzrw0A/8/09QGA68fdPbi+SuftAXh70JkAw/KhzsdTvab3fHhHH/f/O9cYsuxciQEAAAMz1R6StFIcp09FmlYqEU+3XwtQSlbW6rWZ4vzgt9Olp/L6bHvJ5Mw+wwAAAAAAAAAAAAAAAAAAAAAAAABAR5YlkQEAAAAjLSL9c9J+mn/EnemXpo5eHTj21q+fvvPj+4ut1vZsxETy9+l81EREtH5SjH8l80oAAAAAeAJ0ztOLz9lhZwMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAqHn08L2lg+Eq4/71ixFR7hZ/PCbbn5NRioib/0hi/NBySUSMDSD+/vsRcbtb/CQeZ1lWLrLoFv/GJccvtzdN9/hpRNwaQHy4zj7I9z9vdfv+pfFC+7P792+8GC6q9/4v/e/+b6zH/ufpY/Venn3wi2rP+O9HPDveff9zED/pxD8SIq+82Gcbv/mNvb2uEw6tslv8w7GqrY2tanN3797axuJqbbW2OTc3+9r86/Ovzs9UV9bqteJv1zA/+MQvH5/W/ps94pePtv/E9n+pr9Zn8e8H9x9+pFMpdYt/98Xuv7+3e8RPi9++TxXlfPqdg/J+p3zYcz//zXOntX+5R/snz2j/3b7aH597+Wvf+0PXKSe2BgBwFZq7e+uL9Xpt+5TCZB/zXHHhzScjjQEW4slIY1iF7Lud/8eLreeCi58oZBdZfDwGkMbEie/pWJx3hUnEfr6uPv8hAQCAEfO/g/7T7iABAAAAAAAAAAAAAAAAAAAAl+mcjyWbjIi+Zz4ec384TQUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAONV/AgAA//8FStFZ")
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)

14.220164335s ago: executing program 0 (id=1523):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000030000850000001b000000b700000000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000540)='inet_sock_set_state\x00', r3}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000540)='inet_sock_set_state\x00', r1}, 0x18)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r4, 0x4)

12.979278819s ago: executing program 0 (id=1524):
sendmsg$MPTCP_PM_CMD_GET_LIMITS(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0xffffffffffffffb4, 0x0, 0x1, 0x0, 0x0, 0x41}, 0x809d)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4840}, 0x14)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffeca50000006d000000850000000f00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000380)='kmem_cache_free\x00', r4}, 0x10)
r5 = syz_open_dev$vcsa(&(0x7f00000001c0), 0x1, 0x182)
connect$unix(r5, &(0x7f0000000000)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x20004015}, 0x0)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000001540)={0xd, 0x20000000000000bb, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000756c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb714000008"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
listen(r7, 0x101)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x3, 0x0, 0x0, 0x0, 0xb, 0x0, 0x0, 0x41000, 0x39, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x22, 0x10, &(0x7f0000000340)={0x6, 0x200008, 0x2, 0x20000}, 0x10}, 0x94)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001800010800000000000000850a600000000000000500000014000500200100000000000000000300000000001c00090008000000", @ANYRES32=r6], 0x4c}}, 0x0)
r8 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r8, &(0x7f00000002c0), 0x40000000000009f, 0x0)
r9 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r9, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[@ANYBLOB="2800000010000108000000000000000002000000", @ANYRES32=0x0, @ANYBLOB="b40200000000"], 0x28}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x11, 0x0, 0x0, &(0x7f0000000000)='GPL\x00', 0x2a7, 0x0, 0x0, 0x41000, 0x24, '\x00', 0x0, 0x0, r2, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3bf}, 0x94)

12.92908304s ago: executing program 2 (id=1526):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b000000000000"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000c1010000000000000000000018110000", @ANYRES32=r3, @ANYBLOB], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
r5 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r5, 0x9003000000000000, 0x40, &(0x7f0000000b40)=@raw={'raw\x00', 0x2, 0x3, 0x2c8, 0x0, 0x178, 0x178, 0x178, 0x178, 0x230, 0x230, 0x230, 0x230, 0x230, 0x3, 0x0, {[{{@uncond, 0x0, 0x158, 0x178, 0x0, {}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'kmp\x00', "d9d9e63590ab5471c46924e95540949f0cd7e2b0a94d71d9d944acb7f0a1297674a95b30cee19db4c1725572ba928385b1635c89b58ae9a0e1ea500b26f006da3fa8a134552f7980e92de5a784cd4f46e799e191835d7d5ea776f04bef524e22f0bb6ed4b00f44ceb936943e13fa1caa6b4b159c673db1efa9a08b1ddc74ce6c", 0x43, 0x3}}, @common=@inet=@socket3={{0x28}, 0x51}]}, @unspec=@NOTRACK={0x20}}, {{@uncond, 0x0, 0x98, 0xb8, 0x0, {}, [@common=@inet=@set2={{0x28}}]}, @unspec=@NOTRACK={0x20}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x328)
syz_mount_image$f2fs(&(0x7f0000010600), &(0x7f0000000040)='./file2\x00', 0x4, &(0x7f00000001c0)=ANY=[], 0x1, 0x1061d, &(0x7f0000010640)="$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")
r6 = socket$unix(0x1, 0x1, 0x0)
r7 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r7, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e)
connect$unix(r6, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e)
r8 = syz_usb_connect(0x5, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x141, 0x48, 0x13, 0x44, 0x20, 0x424, 0x7500, 0x69ee, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x10, 0x0, [{{0x9, 0x4, 0xb8, 0x7, 0x2, 0x96, 0xd1, 0xca, 0x0, [], [{{0x9, 0x5, 0x6, 0x2, 0x200, 0xd, 0x0, 0x6}}, {{0x9, 0x5, 0x82, 0x2, 0x200, 0x0, 0x1, 0x10}}]}}]}}]}}, 0x0)
syz_emit_ethernet(0x56, &(0x7f0000000380)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0xd, 0x4, 0x0, 0x0, 0x48, 0x0, 0x0, 0x0, 0x6, 0x0, @private=0xa210104, @local, {[@timestamp_addr={0x44, 0x14, 0xa, 0x1, 0x0, [{@multicast1}, {@multicast2}]}, @generic={0x7, 0x9, "0990e4742f779f"}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x6, 0x5}}}}}}, 0x0)
syz_usb_control_io(r8, 0x0, &(0x7f0000000900)={0x84, &(0x7f00000003c0)=ANY=[@ANYBLOB="001727000000ab"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TDLS_MGMT(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80000800}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="00032cbd7000ffdbdf255200000008000300", @ANYRES32, @ANYBLOB="0800cb00020000000a0006000802ffffff7f000000004800660000000800cb0007000000"], 0x40}, 0x1, 0x0, 0x0, 0x4000}, 0x4800)
syz_usb_control_io$hid(r8, 0x0, &(0x7f0000000680)={0x2c, &(0x7f0000000400)={0x0, 0xe, 0x3, '\"09'}, 0x0, 0x0, 0x0, 0x0})
r10 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000100)='./binderfs/custom1\x00', 0x2, 0x0)
ioctl$BINDER_SET_MAX_THREADS(r10, 0x40046205, &(0x7f0000000140)=0x3)

12.445286389s ago: executing program 1 (id=1528):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0900000005000000080000000f"], 0x50)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x2, 0x4, 0x4, 0x9}, 0x48)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x1c1842, 0x0)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000))
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.swap.current\x00', 0x26e1, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000000c0), 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x2, 0x1, 0x35}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94)
bpf$MAP_LOOKUP_ELEM(0x5, &(0x7f00000000c0)={r2, &(0x7f0000000000), &(0x7f0000000500)=""/64}, 0x20)

12.310530002s ago: executing program 0 (id=1529):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
mount$overlay(0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={[], [], 0x2f})
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@xino_on}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')
r3 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r3, &(0x7f0000001fc0)=""/184, 0x20002078)

8.669294562s ago: executing program 0 (id=1531):
syz_emit_ethernet(0x2ff, &(0x7f00000009c0)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00', 0x2c9, 0x3a, 0x0, @dev, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [{0x0, 0xa, "a741e54006598080a8030000004023493b87aafaff0500ffffffe723732472eefa45ad96579269748e254c1e4a948b580a9bc430d3be27df3e34060000ca0a5c15b37adac15084dbaf736b41e5af1802"}, {0x0, 0x1, "000100000000001995319cff"}, {0x3, 0x18, "fe906d26efe39393fe08f73eabc5977b1190a3a6ad8338f1511cdd10c35d8f6de79fc7fd175f75649fa368a32c829af02d7f44d92324a7051e460a13ddde25a5b85b9d930914625d8a049b4cf0d129806a610ad8477a2499a9a0527f75b655a6653d0363a979acf93f88eea07d68423e90280409de1657275f716a2bf2915d1783e8eb477b0d1170f0ecbdef4c23e1b76e9ab3d2fbe4b34438d2a77577edd0ebed9682b851b380ae0cab282af9d7ebe668177704c5fd4698c934de4731f3f61effc978"}, {0x0, 0xe, "06aa85616177c61bc943afcb84619755403946b0730a18d5c38cf7dcad830f2dc8674b87ba8b58f81ece27975cc39e595e9af90b4fe92a38d25551c2d9ebfc5dfc5a2a501b7e483de3f808895c5f4a1a2367bc591dd8b094822ff0822a18b79f7c5eba31fb68b2d734a6671e27182aee4df2"}, {0x3, 0xb, "d47ae6e8805d4809c20547406b18901b0aeff04c0300f3c75dc2d227a83b89483b1084743475671545e65eb2e9ac946a3f0e2bc4619f91394c02bcfbbb7d71138537d68e2d2c6393a9f3becd1a9f51a948b5b303f4f003"}, {0x2, 0x7, "fcf98a102ec1876d4e6fa3b20519bbaa8a029cee00b8d3485e3b63ed09bdb581c9fe68a356f542b043059ff05932e740e077e1d16212fb"}, {0x0, 0x11, "5e14f0e74d2d42cfb3f27fafb60845f90b6dfc87c6905bbc94d33e1ea71a28105f543e868a8a53b360a9d33e2b1e26eb1d18065daa76ff9f6ae2e1eb3d8bf9c6ab2642c4828288e62afbf03269f1f98aea6a58cf45d7c5fdaabc28676d8800871a6aa54155dea2d995cb22c9924e0ad38c6967052cc7786d779b8353aac33a57d79b05613a12328f6112"}, {}]}}}}}}, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0xa04710, &(0x7f0000000540)={[{@debug}, {@i_version}, {@noblock_validity}, {@abort}, {@mblk_io_submit}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x80222a}}, {@delalloc}, {@test_dummy_encryption}]}, 0xfd, 0x461, &(0x7f0000000bc0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r0, 0x8004587d, &(0x7f0000000080)={@desc={0x1, 0x0, @desc3}})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000840)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
syz_clone(0xa0004000, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = socket(0x1e, 0x80004, 0x0)
r3 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r3, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x7, 0x0, 0x1000004}, 0x10)
r4 = dup3(r3, r2, 0x0)
recvmmsg(r4, &(0x7f0000004580)=[{{0x0, 0x4f, &(0x7f00000003c0)=[{&(0x7f0000000600)=""/179, 0x3514}], 0x1}, 0xffffffff}], 0x1, 0x40000001, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000000000040260933334000000000010902240001000000000904000001030100000921"], 0x0)
syz_usb_control_io(r7, &(0x7f0000000080)={0x2c, &(0x7f0000000100)=ANY=[@ANYBLOB="000002"], 0x0, 0x0, 0x0, 0x0}, 0x0)
r8 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x2)
ioctl$KVM_SET_MP_STATE(r8, 0x4004ae99, 0x0)
syz_kvm_setup_cpu$x86(r6, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, 0x0}], 0x1, 0x60, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r8, 0x4008ae93, &(0x7f00000001c0)=0x1fff)

8.405324457s ago: executing program 1 (id=1532):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
mount$overlay(0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={[], [], 0x2f})
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@xino_on}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0}, 0x18)
chdir(&(0x7f00000003c0)='./bus\x00')
r3 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r3, &(0x7f0000001fc0)=""/184, 0x20002078)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x0, 0x0, &(0x7f0000000000)='GPL\x00'}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x12, 0x4, &(0x7f0000000700)=ANY=[@ANYBLOB="1800000008000000000000000d0000006b110e000000"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock_addr=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=@newlink={0x3c, 0x10, 0x401, 0x70bd2c, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, 0x17b, 0x4c801}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_MLD_VERSION={0x5, 0x2c, 0x5}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20044081}, 0x20040844)

8.397115458s ago: executing program 4 (id=1533):
sendmsg$MPTCP_PM_CMD_GET_LIMITS(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0xffffffffffffffb4, 0x0, 0x1, 0x0, 0x0, 0x41}, 0x809d)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e"], 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f000010a000/0x18000)=nil, &(0x7f0000000240)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326625000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f320f300f20e06635800000000f22e02b6aa6c8", 0x4a}], 0x1, 0x8, 0x0, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4840}, 0x14)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffeca50000006d000000850000000f00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000380)='kmem_cache_free\x00', r3}, 0x10)
r4 = syz_open_dev$vcsa(&(0x7f00000001c0), 0x1, 0x182)
connect$unix(r4, &(0x7f0000000000)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x20004015}, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000001540)={0xd, 0x20000000000000bb, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000756c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb714000008"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
listen(r6, 0x101)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x3, 0x0, 0x0, 0x0, 0xb, 0x0, 0x0, 0x41000, 0x39, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x22, 0x10, &(0x7f0000000340)={0x6, 0x200008, 0x2, 0x20000}, 0x10}, 0x94)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001800010800000000000000850a600000000000000500000014000500200100000000000000000300000000001c00090008000000", @ANYRES32=r5], 0x4c}}, 0x0)
r7 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r7, &(0x7f00000002c0), 0x40000000000009f, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[@ANYBLOB="2800000010000108000000000000000002000000", @ANYRES32=0x0, @ANYBLOB="b40200000000000008001b"], 0x28}}, 0x0)

7.940665196s ago: executing program 2 (id=1535):
getpid()
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7020000140000e5b7030000000700008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000040)='./file1\x00', 0x3000000, &(0x7f00000003c0)={[{@nolazytime}, {@orlov}, {@acl}, {@norecovery}, {@nojournal_checksum}, {@quota}]}, 0x1, 0x513, &(0x7f0000000c40)="$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")
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r4)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r4, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000005c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="796100000000000000007e0000001f00"], 0x1c}, 0x1, 0x0, 0x0, 0x40041}, 0x4000054)

7.280112329s ago: executing program 1 (id=1536):
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
socket$nl_xfrm(0x10, 0x3, 0x6)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2182, 0x0)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/consoles\x00', 0x0, 0x0)
r5 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r5, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r5, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
r6 = syz_genetlink_get_family_id$devlink(&(0x7f0000000180), r4)
sendmsg$DEVLINK_CMD_RATE_NEW(r4, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB, @ANYRES16=r6, @ANYBLOB="000325bd7000fbdbdf254c00000008000300020000000c00a6000b0000000000000011e94d426ab8672287cb7a1e1852af7499ad7fd8814b6d9d69eb85033604eb1f8c02c4cbf07d1c11b0e5ddc29865afd1cb6548c4043c98c977b0bc8dbf7443475122e5added281466aa1b1bd9e8c6101d4ac04630411b461870081de1d92079744fb8201c387a2979efd3621c35df47dd002792deb5b12f15f4d57370b47b56227ceef4d2d3fbe45cc2364b23fbad12ea4115c0db19515fe3139ea8ec852c363e1bfa89940360ab894c74eda4786eefc86439deea6795d0acc4e5926c498bb3a9248"], 0x28}, 0x1, 0x0, 0x0, 0x2000a005}, 0x10)
setsockopt$SO_ATTACH_FILTER(r5, 0x1, 0x1a, &(0x7f0000000140)={0x0, &(0x7f0000000280)}, 0x10)
sendto$inet(r5, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r5, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendto$inet(r5, &(0x7f0000000580), 0x0, 0x10048095, 0x0, 0x0)

7.265130249s ago: executing program 4 (id=1537):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000030000850000001b000000b700000000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000540)='inet_sock_set_state\x00', r3}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000540)='inet_sock_set_state\x00', r1}, 0x18)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r4, 0x4)

6.796219499s ago: executing program 4 (id=1539):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
mount$overlay(0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={[], [], 0x2f})
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@xino_on}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0}, 0x18)
chdir(&(0x7f00000003c0)='./bus\x00')
r3 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r3, &(0x7f0000001fc0)=""/184, 0x20002078)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x12, 0x4, &(0x7f0000000700)=ANY=[@ANYBLOB="1800000008000000000000000d0000006b110e000000"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock_addr=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=@newlink={0x3c, 0x10, 0x401, 0x70bd2c, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, 0x17b, 0x4c801}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_MLD_VERSION={0x5, 0x2c, 0x5}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20044081}, 0x20040844)

6.416725006s ago: executing program 1 (id=1542):
syz_emit_ethernet(0x312, &(0x7f00000009c0)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00', 0x2dc, 0x3a, 0x0, @dev, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [{0x0, 0xa, "a741e54006598080a8030000004023493b87aafaff0500ffffffe723732472eefa45ad96579269748e254c1e4a948b580a9bc430d3be27df3e34060000ca0a5c15b37adac15084dbaf736b41e5af1802"}, {0x0, 0x1, "000100000000001995319cff"}, {0x3, 0x18, "fe906d26efe39393fe08f73eabc5977b1190a3a6ad8338f1511cdd10c35d8f6de79fc7fd175f75649fa368a32c829af02d7f44d92324a7051e460a13ddde25a5b85b9d930914625d8a049b4cf0d129806a610ad8477a2499a9a0527f75b655a6653d0363a979acf93f88eea07d68423e90280409de1657275f716a2bf2915d1783e8eb477b0d1170f0ecbdef4c23e1b76e9ab3d2fbe4b34438d2a77577edd0ebed9682b851b380ae0cab282af9d7ebe668177704c5fd4698c934de4731f3f61effc978"}, {0x0, 0xe, "06aa85616177c61bc943afcb84619755403946b0730a18d5c38cf7dcad830f2dc8674b87ba8b58f81ece27975cc39e595e9af90b4fe92a38d25551c2d9ebfc5dfc5a2a501b7e483de3f808895c5f4a1a2367bc591dd8b094822ff0822a18b79f7c5eba31fb68b2d734a6671e27182aee4df2"}, {0x3, 0xb, "d47ae6e8805d4809c20547406b18901b0aeff04c0300f3c75dc2d227a83b89483b1084743475671545e65eb2e9ac946a3f0e2bc4619f91394c02bcfbbb7d71138537d68e2d2c6393a9f3becd1a9f51a948b5b303f4f003"}, {0x2, 0x7, "fcf98a102ec1876d4e6fa3b20519bbaa8a029cee00b8d3485e3b63ed09bdb581c9fe68a356f542b043059ff05932e740e077e1d16212fb"}, {0x0, 0x13, "5e14f0e74d2d42cfb3f27fafb60845f90b6dfc87c6905bbc94d33e1ea71a28105f543e868a8a53b360a9d33e2b1e26eb1d18065daa76ff9f6ae2e1eb3d8bf9c6ab2642c4828288e62afbf03269f1f98aea6a58cf45d7c5fdaabc28676d8800871a6aa54155dea2d995cb22c9924e0ad38c6967052cc7786d779b8353aac33a57d79b05613a12328f61129017fb632dbf04542188b196e213408c258a6f"}, {}]}}}}}}, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0xa04710, &(0x7f0000000540)={[{@debug}, {@i_version}, {@noblock_validity}, {@abort}, {@mblk_io_submit}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x80222a}}, {@delalloc}, {@test_dummy_encryption}]}, 0xfd, 0x461, &(0x7f0000000bc0)="$eJzs3M9vFFUcAPDvzLb8EmhF/AGi4q9I/EFpQeXgRaOJB01M9IDHWgpBChi2JkIaW43BoyHxbjya+Bd40otRTyZe9W5IiOkF9LRmdma23W13acuWLd3PJ5nue/Pe9r23b97Om3nTBtC3DmY/koidEfFnRAzl0eYMB/OXm/MzE//Oz0wkUau9+09Sz3djfmaizFq+754iciiNSL9IikKaVS9dPjs+NTV5sYiPTJ/7aKR66fILZ86Nn548PXl+7PjxY0dHX35p7MWVNyZJ2ibtyuq6/9MLB/a9+f7VtydOXP3g1++z3DuL9MXtuB1pI7S9eK3VteZ7uhuFbSC7FoWTgVvnYWOoRETWXYP18T8UlVjovKF44/OeVg5YV9m5aWv75LkasIkl0esaAL1RnOdns+vfcrtTc4+N4Pqr+QXQjWRm4uZ8vuUpA41r+cF1vHY9GBEn5v77Jtuii/chAADa+TGb/zyfzzua539pPLAo3+5ibWg4Iu6NiD0RcV9E7I2I+yPqeR+MiIeWlJB2LL91aWjp/Ce9tubGrUA2/3ulWNtqnv816j1cKWK76u0fTE6dmZo8Unwmh2JwaxYf7VDGT6//8VW7tMXzv2zLyi/ngkU9rg203KA7OT49Xp+UdsH1zyL2DyzX/qSxEpBExL6I2L+6X727DJx59rsD7TLduv0dtFlnWo3atxHP5P0/Fy3tLyWd1ydHtsXU5JGR8qhY6rffr7zTrvzban8XZP2/o/n4b80ynMTswnptdfVlXPnry7bXNGs9/rck79X7ZUux75Px6emLoxFbkrfq8ab9YwvvLeNl/tJy439PkZaV83BEZAfxIxHxaEQ8VtT98Yh4IiKe7ND+X1576sOle2tDK2v/+sr6/+Sy7W8c/8NZqFqbzWMLB8KKA5WzP//Qrvx27Z9r5Mj6/1g9dKjYU//+u4WVVnDtnxwAAADcPdL6M/BJergRTtPDh/Nn+PfGjnTqQnX6uVMXPj5/Mn9WfjgG0/JO19Ci+6GjSXnFnsfHinvFZfrR4r7x15XtyamImOtxu4F8nC83/jN/V3pdO2DdrW4dbdu61QO481rHf+dHNoDNpAvP0QB3KeMf+pfxD/1rufE/2xK3FgCbk/M/9C/jH/qX8Q/9y/iHvrSGP+cXEKheuhzphqhGfwXK/9d5B8rq8RcTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABAl/wfAAD//ztj5Wo=")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r0, 0x8004587d, &(0x7f0000000080)={@desc={0x1, 0x0, @desc3}})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000840)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
syz_clone(0xa0004000, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = socket(0x1e, 0x80004, 0x0)
r3 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r3, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x7, 0x0, 0x1000004}, 0x10)
setsockopt$packet_tx_ring(r2, 0x10f, 0x87, 0x0, 0x0)
r4 = dup3(r3, r2, 0x0)
recvmmsg(r4, &(0x7f0000004580)=[{{0x0, 0x4f, &(0x7f00000003c0)=[{&(0x7f0000000600)=""/179, 0x3514}], 0x1}, 0xffffffff}], 0x1, 0x40000001, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000000000040260933334000000000010902240001000000000904000001030100000921"], 0x0)
syz_usb_control_io(r7, &(0x7f0000000080)={0x2c, &(0x7f0000000100)=ANY=[@ANYBLOB="000002"], 0x0, 0x0, 0x0, 0x0}, 0x0)
r8 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x2)
ioctl$KVM_SET_MP_STATE(r8, 0x4004ae99, 0x0)
syz_kvm_setup_cpu$x86(r6, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, 0x0}], 0x1, 0x60, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r8, 0x4008ae93, &(0x7f00000001c0)=0x1fff)

5.918463935s ago: executing program 4 (id=1543):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = socket$inet6(0xa, 0x803, 0x6)
sendmmsg$inet6(r1, &(0x7f00000000c0), 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
close(0x3)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setfsgid(0xee01)
r4 = userfaultfd(0x80001)
ioctl$F2FS_IOC_GET_PIN_FILE(r4, 0x8004f50e, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="19000000040000000400000008"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000001c80)={{r5}, &(0x7f0000001c00), &(0x7f0000001c40)=r6}, 0x20)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x0, 0x0})
io_pgetevents(0x0, 0x3, 0x0, 0x0, 0x0, 0x0)
r7 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000900)=ANY=[@ANYBLOB="6c0100001000130700"/64, @ANYRES32, @ANYRES32=0x0], 0x16c}}, 0x0)

5.448160595s ago: executing program 3 (id=1545):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
mount$overlay(0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={[], [], 0x2f})
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@xino_on}, {@upperdir={'upperdir', 0x3d, './file1'}}]})

5.379374156s ago: executing program 0 (id=1546):
syz_emit_ethernet(0x312, &(0x7f00000009c0)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00', 0x2dc, 0x3a, 0x0, @dev, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [{0x0, 0xa, "a741e54006598080a8030000004023493b87aafaff0500ffffffe723732472eefa45ad96579269748e254c1e4a948b580a9bc430d3be27df3e34060000ca0a5c15b37adac15084dbaf736b41e5af1802"}, {0x0, 0x1, "000100000000001995319cff"}, {0x3, 0x18, "fe906d26efe39393fe08f73eabc5977b1190a3a6ad8338f1511cdd10c35d8f6de79fc7fd175f75649fa368a32c829af02d7f44d92324a7051e460a13ddde25a5b85b9d930914625d8a049b4cf0d129806a610ad8477a2499a9a0527f75b655a6653d0363a979acf93f88eea07d68423e90280409de1657275f716a2bf2915d1783e8eb477b0d1170f0ecbdef4c23e1b76e9ab3d2fbe4b34438d2a77577edd0ebed9682b851b380ae0cab282af9d7ebe668177704c5fd4698c934de4731f3f61effc978"}, {0x0, 0xe, "06aa85616177c61bc943afcb84619755403946b0730a18d5c38cf7dcad830f2dc8674b87ba8b58f81ece27975cc39e595e9af90b4fe92a38d25551c2d9ebfc5dfc5a2a501b7e483de3f808895c5f4a1a2367bc591dd8b094822ff0822a18b79f7c5eba31fb68b2d734a6671e27182aee4df2"}, {0x3, 0xb, "d47ae6e8805d4809c20547406b18901b0aeff04c0300f3c75dc2d227a83b89483b1084743475671545e65eb2e9ac946a3f0e2bc4619f91394c02bcfbbb7d71138537d68e2d2c6393a9f3becd1a9f51a948b5b303f4f003"}, {0x2, 0x7, "fcf98a102ec1876d4e6fa3b20519bbaa8a029cee00b8d3485e3b63ed09bdb581c9fe68a356f542b043059ff05932e740e077e1d16212fb"}, {0x0, 0x13, "5e14f0e74d2d42cfb3f27fafb60845f90b6dfc87c6905bbc94d33e1ea71a28105f543e868a8a53b360a9d33e2b1e26eb1d18065daa76ff9f6ae2e1eb3d8bf9c6ab2642c4828288e62afbf03269f1f98aea6a58cf45d7c5fdaabc28676d8800871a6aa54155dea2d995cb22c9924e0ad38c6967052cc7786d779b8353aac33a57d79b05613a12328f61129017fb632dbf04542188b196e213408c258a6f"}, {}]}}}}}}, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0xa04710, &(0x7f0000000540)={[{@debug}, {@i_version}, {@noblock_validity}, {@abort}, {@mblk_io_submit}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x80222a}}, {@delalloc}, {@test_dummy_encryption}]}, 0xfd, 0x461, &(0x7f0000000bc0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r0, 0x8004587d, &(0x7f0000000080)={@desc={0x1, 0x0, @desc3}})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000840)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
syz_clone(0xa0004000, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = socket(0x1e, 0x80004, 0x0)
r3 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r3, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x7, 0x0, 0x1000004}, 0x10)
setsockopt$packet_tx_ring(r2, 0x10f, 0x87, 0x0, 0x0)
r4 = dup3(r3, r2, 0x0)
recvmmsg(r4, &(0x7f0000004580)=[{{0x0, 0x4f, &(0x7f00000003c0)=[{&(0x7f0000000600)=""/179, 0x3514}], 0x1}, 0xffffffff}], 0x1, 0x40000001, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000000000040260933334000000000010902240001000000000904000001030100000921"], 0x0)
syz_usb_control_io(r7, &(0x7f0000000080)={0x2c, &(0x7f0000000100)=ANY=[@ANYBLOB="000002"], 0x0, 0x0, 0x0, 0x0}, 0x0)
r8 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x2)
ioctl$KVM_SET_MP_STATE(r8, 0x4004ae99, 0x0)
syz_kvm_setup_cpu$x86(r6, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, 0x0}], 0x1, 0x60, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r8, 0x4008ae93, &(0x7f00000001c0)=0x1fff)

5.046469832s ago: executing program 4 (id=1547):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000c1010000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000070000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000059729ec6850000008200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
bind$unix(0xffffffffffffffff, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e)
r4 = syz_usb_connect(0x5, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x141, 0x48, 0x13, 0x44, 0x20, 0x424, 0x7500, 0x69ee, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x10, 0x0, [{{0x9, 0x4, 0xb8, 0x7, 0x2, 0x96, 0xd1, 0xca, 0x0, [], [{{0x9, 0x5, 0x6, 0x2, 0x200, 0xd, 0x0, 0x6}}, {{0x9, 0x5, 0x82, 0x2, 0x200, 0x0, 0x1, 0x10}}]}}]}}]}}, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
syz_usb_control_io$hid(r4, 0x0, &(0x7f0000000680)={0x2c, &(0x7f0000000400)={0x0, 0xe, 0x3, '\"09'}, 0x0, 0x0, 0x0, 0x0})

4.695761059s ago: executing program 2 (id=1548):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x20, 0x0, 0x0)
setsockopt$inet6_int(r1, 0x29, 0x1000000000021, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000300)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed074479000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0xc, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$exfat(&(0x7f0000001500), &(0x7f0000001540)='./file1\x00', 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="6572726f72733d636f6e74696e75652c00a3a2a4e7417e941910c27d130b55ac2d5f7a61e59ec6d5de07239091924c32eeb367d16409d6d3ec1fb755f9a7989ebc4e96918e268f0b7acebf67c07bc4731250f87d27b5e9e61000e70f0c6a4e2432073d0d3e18f864e9ef64637d14e5485f36e53c821cb5898685c055a367ea51b653eff6581710f6c3824bc667bd24219163c60803099f985567be0d978e301b4f6603628606afadb04eee58f42f1853f2e8598a5e250e0f4c9a"], 0x1, 0x14fe, &(0x7f0000002ac0)="$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")
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.bfq.io_serviced_recursive\x00', 0x275a, 0x0)
setxattr(0x0, 0x0, 0x0, 0x0, 0x1)
write$binfmt_script(r4, &(0x7f0000000080), 0x10010)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000005, 0x10012, r4, 0x0)
lstat(&(0x7f0000000280)='./file0\x00', 0x0)
ptrace$ARCH_ENABLE_TAGGED_ADDR(0x1e, 0x0, 0x400000000000003, 0x4002)
r5 = socket$inet6(0xa, 0x3, 0xff)
connect$inet6(r5, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000280)={'veth0_to_batadv\x00'})

4.572904261s ago: executing program 3 (id=1549):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000030000850000001b000000b7000000000000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000540)='inet_sock_set_state\x00', r3}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000540)='inet_sock_set_state\x00', r1}, 0x18)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r4, 0x4)

4.520082613s ago: executing program 3 (id=1550):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7020000140000e5b7030000000700008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000040)='./file1\x00', 0x3000000, &(0x7f00000003c0)={[{@nolazytime}, {@orlov}, {@acl}, {@norecovery}, {@nojournal_checksum}, {@quota}]}, 0x1, 0x513, &(0x7f0000000c40)="$eJzs3W9rJHcdAPDvTLJp7i41WxU5C7bFVu6K3m7S2DaKtBVEHxXU+jzGZBNCNtmQ3dRLKJriCxBEVPAF+ETwBQjSlyDCgT4XFUX0Th/qjczuRPNnN1mSTfbcfD4w2d9v/n2/vyE7O39+zARwbb0QEW9FxFhEvBwR08X4tBgW8sp+Z75HD99byocksuydvyWRFOMO1pXXxyPiVmeRmIyIr38l4lvJybjN3b31xXq9tl3Uq62NrWpzd+/e2sbiam21tjk3N/va/Ovzr87PZIULtbMcEW986U8/+v7PvvzGrz7z7d8v/OXud/K0vvCxTt4RsXShAD101l1qb4sD+TbavoxgQ5K3pzQ27CwAAOhHfoz/4Yj4ZPv4fzrG2kdzAAAAwCjJ3pyKfyURGQAAADCy0oiYiiStFH0BpiJNK5VOH96Pxs203mi2Pr3S2NlczqdFlKOUrqzVazNFX+FylJK8Plv0sT2ov3KsPhcRz0TED6dvtOuVpUZ9edgXPwAAAOCauPX80fP/f06n7TIAAAAwYso9KwAAAMCocMoPAAAAo8/5PwAAAIy0r779dj5kB+/xXn53d2e98e695VpzvbKxs1RZamxvVVYbjdX2M/s2zlpfvdHY+mxs7tyvtmrNVrW5u7ew0djZbC2sHXkFNgAAAHCFnnn+g98lEbH/+RvtIYrnAAIc8cdhJwAM0tiwEwCGZnzYCQBDUzpzDnsIGHXJGdNPdt7pXCuMX19OPgAAwODd+fjJ+/8TxbSzrw0A/8/09QGA68fdPbi+SuftAXh70JkAw/KhzsdTvab3fHhHH/f/O9cYsuxciQEAAAMz1R6StFIcp09FmlYqEU+3XwtQSlbW6rWZ4vzgt9Olp/L6bHvJ5Mw+wwAAAAAAAAAAAAAAAAAAAAAAAABAR5YlkQEAAAAjLSL9c9J+mn/EnemXpo5eHTj21q+fvvPj+4ut1vZsxETy9+l81EREtH5SjH8l80oAAAAAeAJ0ztOLz9lhZwMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAqHn08L2lg+Eq4/71ixFR7hZ/PCbbn5NRioib/0hi/NBySUSMDSD+/vsRcbtb/CQeZ1lWLrLoFv/GJccvtzdN9/hpRNwaQHy4zj7I9z9vdfv+pfFC+7P792+8GC6q9/4v/e/+b6zH/ufpY/Venn3wi2rP+O9HPDveff9zED/pxD8SIq+82Gcbv/mNvb2uEw6tslv8w7GqrY2tanN3797axuJqbbW2OTc3+9r86/Ovzs9UV9bqteJv1zA/+MQvH5/W/ps94pePtv/E9n+pr9Zn8e8H9x9+pFMpdYt/98Xuv7+3e8RPi9++TxXlfPqdg/J+p3zYcz//zXOntX+5R/snz2j/3b7aH597+Wvf+0PXKSe2BgBwFZq7e+uL9Xpt+5TCZB/zXHHhzScjjQEW4slIY1iF7Lud/8eLreeCi58oZBdZfDwGkMbEie/pWJx3hUnEfr6uPv8hAQCAEfO/g/7T7iABAAAAAAAAAAAAAAAAAAAAl+mcjyWbjIi+Zz4ec384TQUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAONV/AgAA//8FStFZ")
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r4)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r4, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000005c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="796100000000000000007e0000001f00"], 0x1c}, 0x1, 0x0, 0x0, 0x40041}, 0x4000054)

3.315654866s ago: executing program 3 (id=1551):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000001240)='./bus\x00', 0x14010, &(0x7f0000001280)=ANY=[@ANYBLOB="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", @ANYRES32], 0x1, 0x11ee, &(0x7f0000003680)="$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")
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, 0x0, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={0x0}, 0x9}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143041, 0x0)
pwritev2(r1, &(0x7f00000001c0)=[{&(0x7f0000000080)}], 0x1, 0xe7b, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r2}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r3 = syz_open_procfs(0x0, &(0x7f0000000200)='net/nf_conntrack\x00')
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r1, 0x89f3, &(0x7f0000007a40)={'sit0\x00', &(0x7f0000007940)={'gre0\x00', <r4=>0x0, 0x10, 0x700, 0x7, 0x0, {{0x1d, 0x4, 0x2, 0x8, 0x74, 0x66, 0x0, 0x6, 0x4, 0x0, @remote, @loopback, {[@end, @timestamp_prespec={0x44, 0x4, 0x21}, @timestamp_addr={0x44, 0xc, 0x5f, 0x1, 0xf, [{@loopback, 0x6}]}, @lsrr={0x83, 0x13, 0x4b, [@multicast2, @private=0xa010102, @broadcast, @dev={0xac, 0x14, 0x14, 0x2}]}, @timestamp_prespec={0x44, 0x3c, 0x9c, 0x3, 0x1, [{@local, 0x1}, {@broadcast, 0x6}, {@local, 0xfffff801}, {@rand_addr=0x64010100, 0x10001}, {@broadcast}, {@loopback, 0x2}, {@local, 0x6}]}]}}}}})
sendmmsg$inet6(r3, &(0x7f0000008040)=[{{&(0x7f0000000300)={0xa, 0x4e21, 0x1ff, @private0, 0xf}, 0x1c, &(0x7f0000000880)=[{&(0x7f00000015c0)="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", 0x1000}, {&(0x7f0000000340)="e777cb5055a3b1805ffdd419e50ace1ca3ed198dff89b015ddbfdcf3826092e8", 0x20}, {&(0x7f0000000380)="1b26078230c6e17e773766ba1c41f4b83a6395a1b6fc8b2fc5010a567a9affe0c41b6fe02d3e70f9a99407c3a01a79f4a4e60d667bcdbc3a142f595d056bfb7e676d51819cce519366e89805ac1fb1186c871cdeba", 0x55}, {&(0x7f0000000400)="5f8054effe0820b624b2653f9e53f682e308bb549afebb6aba257a2e526ea6766a6d96483e2d6755c5876d765b86727ee3459feb3c4d", 0x36}, {&(0x7f00000004c0)="3e8e", 0x2}, {&(0x7f0000000640)="96870c5adac33a5375d3f4d636e5a67313d080b9456e8fedc0dc460e36b5c02dfb69e3237f0d7cbf1ca28b4294f6598858b727957585fa6fc3e4fc1f44d4ebc366e8f756d70233676e6e38eaf4b92e7b3922703d2d8e90acab40a1e7c77c2795c757d87396274f12ae44d90e3ccf0b3924d596d99afad99cd923cd198e1ef9138c0d7fc8fcf00a662c60be23f437b7549a30408790ed0df46d", 0x99}, {&(0x7f0000000700)="a3067cba26f048e83116b4d26f4df91f1385d52e5cfe742f46184dbfd03119e3a4212adea68c7fe4849544f05b8e8cf1a06d0b0064979ab445b87673e983225b518846c51f95f73318dcb196f25885a0ff41592cceeaea6811823cd09a816d8aa6e7e5f97bb1f872164afa120e29171b61d9b1971cd3f2133bf0c9d21dff8edf5bbf76fae42443dd28246f5170e4722de5772f08cac12100a8f5dee8185367d0268d4764cda6f2cbac5bc197f43a", 0xae}, {&(0x7f00000007c0)="15e81d6e03ae11fc8e553ffc489d7220b6aa1cba213471dac989439040fc7860661f941da30ced75cc47b6ff1e014c201c170187e92459ad2d816f6edaab1953fd30cbcf1133dd3a9ea319d5fe40ec86cede12f9a21d626e08b85d4911ed0f0da0db95a031be658b1e3042d1f9fd0ffdd362c9b0bd915c6ff3e67014eb572065d4e80c5c1ec3e69ea1d738a996f2", 0x8e}], 0x8}}, {{0x0, 0x0, &(0x7f0000000a40)=[{&(0x7f0000000500)="99a40bc0537654ae9f923c7fc7b7bfc92afef7b8f62b8a963f92077b0f1666e31944c517ed374e02ee", 0x29}, {&(0x7f0000000900)="b6378de1999178c36aac2a7bb034f91cdc56cd7b5446023af9e98942b2f31efa136c7dc72dfe32c2232abb2a0aec5c38e6d67f342fb848e622453ddddbd4478213b9e3", 0x43}, {&(0x7f0000000980)="b7e8a95b86f679e346fcaf7ea47b5d88d436e1cb12f01ed358c629beed3adb7adf6ab64920d64f322d21931bfd01c78cfaf28c63598b61962a7aa46fb8ae7f9adea89c45546afaf0ed3fc196b3c6670be06e0611880de834a6b54a18346adf4bf1ffb4649eebf8b58b353686ab0739de080c869f47972b574890bf94e104e63e5ee77419dce6c0d6000000000000000000", 0x91}], 0x3, &(0x7f0000000a80)=[@tclass={{0x14, 0x29, 0x43, 0x4}}, @flowinfo={{0x14, 0x29, 0xb, 0x7}}], 0x30}}, {{&(0x7f0000000ac0)={0xa, 0x4e24, 0x3, @empty, 0x2}, 0x1c, &(0x7f0000000b80)=[{&(0x7f0000000b00)="83b55318dda96c15db135f5d13d6bd6967e592e037215cc30dc51d27bcb4c63ab76d50a1041c41ed673099ff79aee26dac9e047c64bf320274fa45dae359158341cb092db664b5c0699c403a85b6bdc7aa6881bc2d7c8f6bdb2302dcb2fab7849e11dabcf894cc52978e98799d09ffcaa0cf7a93cec10de3", 0x78}], 0x1, &(0x7f0000005c80)=ANY=[@ANYBLOB="7800000000000000290000003900f800210c024000000000fc020000000000000000000000000000fe8000000000000000000000000000bbfe8000000000000000000000000000aa00000000000000000000000000000000fe8000000000000000000000000000aafe8000000000000000000000000000aa"], 0x78}}, {{&(0x7f0000000c40)={0xa, 0x4e24, 0x5, @private0, 0x2}, 0x1c, &(0x7f0000001100), 0x0, &(0x7f0000004880)=[@dstopts={{0x100, 0x29, 0x37, {0x73, 0x1c, '\x00', [@calipso={0x7, 0x40, {0x3, 0xe, 0x6, 0x1, [0x0, 0x1, 0x100, 0x1, 0x9, 0x2, 0x3]}}, @hao={0xc9, 0x10, @private2={0xfc, 0x2, '\x00', 0x1}}, @hao={0xc9, 0x10, @private2}, @calipso={0x7, 0x58, {0x0, 0x14, 0x12, 0x2, [0x5, 0xa, 0x4, 0x8000000000000001, 0x0, 0x0, 0x4, 0x6, 0x14000, 0x9]}}, @ra={0x5, 0x2, 0x7ff}, @padn={0x1, 0xa, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @hao={0xc9, 0x10, @local}]}}}, @hoplimit={{0x14, 0x29, 0x34, 0x3}}], 0x118}}, {{0x0, 0x0, &(0x7f0000005b40)=[{&(0x7f00000035c0)="5529f5430682301c15a255a618a822d42ed0bfe2607965e355061cd95bd8c6a29b9de0e685ce4a2a69fa8bc572ec48887c51d7cb5eed9c380773f81227a7b4f0fc44a782cf7d108a158dd5e0ebc38238e906831052021573826698bc59112d450bce3775b0cad7c56c7471de3fd1eec736d2de980b4ec3c6b8499000db597e5fe56cca96e706056b018550006e5d6091fff8f43b4f9b0ab97ef465dfd0f195c5", 0xa0}, {&(0x7f00000011c0)="b4e58d8f42038c239b9d7c45a57811f296f82f6c3202908ededfa478f53a092ea62b0c0bee60776ef07822fa1d0706", 0x2f}, {&(0x7f00000049c0)="c927cff78602fca49a09f720d0628a2c064f34c0ced4212ba7d9f748ac1b20dd9a3b1677d15335ddfefadf11ca1dd8733c759137ac8cfaf84e393a35d15ab989fd3ab61ae76c60fa2fcc8f89025e302460d89f65a2318029ecee3b3dd57626b090380aa74fa7f2bdccc2ccf1f4cef8bb9082", 0x72}, {&(0x7f0000004a40)="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", 0x1000}, {&(0x7f0000005a40)="ddae7c6579a2b751828744c13422b2131c60f26b1b53e3360d68ca2d7e664619943b36b3abfa6b76e79d758166cecc23fcec8b27ad27589bececbe2c99edceb64ef713ea6123b59677e99d71e1a094a1afb8aa907e17770924121ed5eb69f089bcf34bea34cf97bdc2790c9ffc74a7a3a724ced3cc01cd7a5781fc2baf0666c7f555cc9050d0cebc3fede958dd73fe656ad77bcf3bbb8c50aff9cd0f4e83d07e9cced46ec7cbc4ad0b5d7daa6de6c2a187781c7db1adce33cf77da649277a94337a2f51dcec18334cbd093d3150cab630af002ec06261e0869eb2e8510f9bf3fe38cae7b6233273682af7495e35b366dd529463c5cab7cfee9", 0xf9}], 0x5, &(0x7f0000005bc0)=ANY=[@ANYBLOB="1400000000000000290000000800000010000000000000001400000000000000290000000b000000000000090000000080000000000000002900000036000000500c000000000000c2040000003e00010000010005020005040103075000000001120602000800000000000000000101000000000000900d00000000000002000000000000000000000000000000010000000000000000000200"/163], 0xb0}}, {{&(0x7f0000001200)={0xa, 0x4e23, 0xe256, @remote, 0x4}, 0x1c, &(0x7f0000005d40)=[{&(0x7f0000000540)="9c0c763289b4da8c1a568f9665f49594cbe05b0f7701af3a710e81c05ef354fa7f4d3680b1e79d856236b61d994b9ad1580c152dbeaba7ee6de56114d22f471bef1207816fceb09133e975071dbe2a7972d11644e159afd806b376831834b3be959d04807f75f6ccf2b4fd3f18b9563c", 0x70}, {&(0x7f0000005d00)}], 0x2}}, {{&(0x7f0000005d80)={0xa, 0x4e21, 0x101, @dev={0xfe, 0x80, '\x00', 0x34}, 0x5}, 0x1c, &(0x7f0000005f80)=[{&(0x7f0000005dc0)="29976623f2d6b35e04f2f301ee69e7bd699cfba256cdf0417adbe7bf623618611d917dd4e321007cf54a0d7cebe69f5800d254df74e28317ec0d96c5e611cab15e0ee3f47ad312aff961dd4edf31b16d25c0069d609c04f11c139c0201e96c10e4c571f369770bf15e42f248461c6ecc91bbf6342f4e391f25e1c076cb0c89f8345f22a2a942684da281", 0x8a}, {&(0x7f0000005e80)="2b43caf88158a243db20c62b50dd0bcc04a46055569d518e0f1e2a0108cd1b318e1a8622ccbb204e92150a30e79e301496469303ad1fd51658293e42986d8ef935b1bfff9cbecdad3e71", 0x4a}, {&(0x7f0000005f00)="54ef400e4496d290cef8c74a8e83d1aedf841bea06137d04e15c9e932de472c24cc32a457c55a68e968959cef45437fddb231c9fc45b1efdac72cf56e0a360f0f8191ff7d2d2ebeeacf46196b07df0f63e1a", 0x52}], 0x3}}, {{&(0x7f0000005fc0)={0xa, 0x4e20, 0x2, @empty}, 0x1c, &(0x7f0000006640)=[{&(0x7f0000006000)="c06be72f951403e2375bf5d369049a670202145b3b491e3c66eff8323ebaecb8e4551e71b146688230ce71902abd1ff9f0b046b441", 0x35}, {&(0x7f0000006040)}, {&(0x7f0000006140)="5c29b206f9cf8b", 0x7}, {&(0x7f0000006180)="87ddfa5f310530147c80e44d5fef650dde2075e6fa54312d254a4256c55b049974748642af3238342a4d7db0c552a488d1e858b9c58e9c87d7f89e3102a2118e7f8dc622dde3dd6f79d6840401c4d6e372d33796f064982991102c3c0e0cbc5f3497a150afddf7241b561941d9405931ed59ba89406b4e782d9da48a438fa38ed45f81eb82c5f0735313ee9a1be50abc62792702", 0x94}, {&(0x7f0000006240)="7a3ff7ae22008d48f961de8e252856d21efef9d050ace44b557fe6818694e084218a48adb5a5fb4559c2e90cbeb61084e4c4f454cee32059", 0x38}, {&(0x7f0000006280)="99659e752f67641caf16171da82efbab5c1afe119bb7fee32c5d88362d2bf31429af9e546de59ed2e98b5d9fcdc6b1bbf125f7ed217c2184d9e5be38e8372b385aeb556f2017ad3648ba00d4c8705ed54a3717a10d2b16f5e6d2785fbe27cf35df6e7245473b1761a973832e563fefd4ea6d1400d7bb", 0x76}, {&(0x7f0000006300)="9664415dfd4764e3e4948f2945f2a9a4f6942b81f6dc63837d4b31a34313e7033261339eaccf8a393dc2fcf67af16d0d88f1e63e30daadbd6bd8e91294a939df40fe72722c63da28c8c6f0555ae8724f417d95e0d2019a279952975edadaea4ac5aa2f73a67b8dacaca68265a0400b72ee07338f", 0x74}, {&(0x7f0000006400)="5a7401cdef87754985defb47d557b83a4554c984c29cce7a8a318cb4dbdf75702a8ac1be0e738939d6e4da41c415e9c4a4a6c6d6f604e6fa395f1651497ed27d5ec98d553ec88d66cd132155cde870fa3121c76e1ed2da966f1018336683fa7470e98d476ae2e20f01f1ba29fd06aca360ce316d775006547853a5383117fdebc1f0eb062659d1678ea83d1cdd5c899da781f6594c4b2e61647d947df1e6910b390f7b9f", 0xa4}, {&(0x7f00000064c0)="597fc8e3966e9dbb94d1b30661a4d58293cdd72fd1c7d7a1bc6166033e87510e88bc4f4f421615698f277846c49b8ed61e1cddd0efbea47c29e7344b800980204963e630553cd5bd3e8069c58eebbb4ca0517445e725c564c4094e53625d60a2aebe37f2431f1021ab5c59582e2a77bda27579", 0x73}, {&(0x7f0000006540)="73ac2520e327b2101f3b9c413cec7ddad3cc96ed4b0e9aa3cdab7171011c342c19850adb51dd0f91f7d9ae6a983561896020e0a875bf7427b6284c8d9d4800c43f2db736488271e1a20130d55ee403a07a84d22f342875decf233f0d48559d0d9195d5e95278d6630b7c874a55b629b67d49a12ed4d7ef38888d70135d33765aa059801798ef04e13e326d913f2a52e9c9cfa3a0e3485be0a5bfe685e2a30b5f348e11efb92656a3216b6365cf71566b196f00973b504e033280822f37dcfceebc98cf2f6783b9b3a3c26659df4476157b655e08e3515565bf7014cd78694b4be0331d31f3737f2b73ccc055fb38689da8ac8bd099b3a4", 0xf7}], 0xa}}, {{&(0x7f0000006700)={0xa, 0x4e21, 0x7dc9539f, @remote, 0x9}, 0x1c, &(0x7f0000007900), 0x0, &(0x7f0000008500)=[@tclass={{0x14, 0x29, 0x43, 0x2}}, @dstopts_2292={{0x190, 0x29, 0x4, {0x87, 0x2e, '\x00', [@padn={0x1, 0x1, [0x0]}, @pad1, @calipso={0x7, 0x48, {0x0, 0x10, 0x6, 0x10, [0x5, 0x99f, 0x4, 0x4, 0xffff, 0x3ff, 0x2, 0x40]}}, @generic={0x30, 0x8d, "c85641518e3f9eaa96b921a9f3324d264e7e83dcc41ad85e93a17151cb91e6d89a2c255831553cf1250c5a7f1f486604c24c55d6d715776cc84bd91954e011902ade9b03f478c4d223185c19ca0dcad48163deb973a3d607dbc7837fa3cfec2569a112ec77dec5021cd96aa8a433a924c426cac613c5033724a9309d3759ee6b7916c551d32d36c03bd10cf453"}, @generic={0x4, 0x76, "0e668c72f2419d291a133795d81208405e0dd8f9f21e498486910cd897fa0c957f11db335a8980d35dec5460ec1287aa88473626bd2dfabbb791024644247e056edc12d6216923ea75c76f8ad4259e4e62b33ef7eac30b002d9b5d8b009c791407487703119b7e3b95d8e5bea4b5ec92819fcb4d2007"}, @jumbo={0xc2, 0x4, 0x4}, @ra={0x5, 0x2, 0x5}, @jumbo={0xc2, 0x4, 0x3}, @generic={0x9, 0xc, "ba1e4826c844c5be9f4d0592"}]}}}, @rthdr={{0x98, 0x29, 0x39, {0x33, 0x10, 0x0, 0x2, 0x0, [@private2, @local, @private0={0xfc, 0x0, '\x00', 0x1}, @private2, @private2, @mcast1, @local, @remote]}}}, @dontfrag={{0x14, 0x29, 0x3e, 0x3}}, @pktinfo={{0x24, 0x29, 0x32, {@dev={0xfe, 0x80, '\x00', 0x25}, r4}}}], 0x280}}, {{&(0x7f0000007cc0)={0xa, 0x4e23, 0x10001, @private0={0xfc, 0x0, '\x00', 0x1}, 0x7}, 0x1c, &(0x7f0000007fc0)=[{&(0x7f0000007d00)="0fc1eacb10cd71a4dc", 0x9}, {&(0x7f0000007d40)="e54022d82b40975dc5266c98b31d57c5677f29d689de51c4d68ffb94c0ed86dc3912a91597516d5e31b2deb9daef19614c3002cb8b39c183e0819f94c73cfe5cb60704872477452823d9ebc4d2fe793b349e252adbac2a21b105d702d39d5badb7e24e4cada34dc551bf9f51edcfe0cd922c95b28c690a1f330fafdf57f6aef575959ce1456a315727de31", 0x8b}, {&(0x7f0000007e00)="9cea48c2d7cc574628f8b30f225d0e0666d9ceb75606c78e3923bc33e8a7de195efa713164f9c16c37cf0279c8f0efdfeba3a62903fb41fa70c7d443c891bdd9499f8914160476127178a2d79b8fc61a70c8d5ac0dd7cdfa3acf8c98001f4c1630e591aa566aee0b102f1bbd70a2d1e76843db737275895e4fba4027f07dcbdedc96bfdfec43eaf6c59d1d6f3da113d68a655b2ab88dd50306c7935ec6da8e08f987c5e2aec6133690ffdaa6d843ae32f32f7e7d75bb14cc597f16708c6e927b36", 0xc1}, {&(0x7f0000007f00)="06d02a25b8d202339dd7ba2a847d3fc4ccb511963a668ba1dff708ec7556fbfd1e49d183fec16a177c303dc153ba8e0c2a90d665b3d19d1ee3b9908d5d377620f4f94d0efa6ad29ae49e46c65b0eea", 0x4f}, {&(0x7f0000007f80)="ba88d2217436c27852b7fbfcd2438de4dc2018ade8f4cdd7761b82adf520c9553e0f7b2e22c706b1d40fd31d61ce", 0x2e}], 0x5}}], 0xa, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='block_plug\x00', r5}, 0x10)
r6 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
sendfile(r6, r6, 0x0, 0x800000009)

3.274331367s ago: executing program 2 (id=1552):
getpid()
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7020000140000e5b7030000000700008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='sched_switch\x00', r4}, 0x10)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r5)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000005c0)=ANY=[@ANYRES16=r6, @ANYBLOB="796100000000000000007e0000001f00"], 0x1c}, 0x1, 0x0, 0x0, 0x40041}, 0x4000054)

3.258114037s ago: executing program 1 (id=1553):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0)
mount$overlay(0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={[], [], 0x2f})
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@xino_on}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0}, 0x18)
chdir(&(0x7f00000003c0)='./bus\x00')
r2 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r2, &(0x7f0000001fc0)=""/184, 0x20002078)

3.195582998s ago: executing program 3 (id=1554):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7020000140000e5b7030000000700008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='sched_switch\x00', r4}, 0x10)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000040)='./file1\x00', 0x3000000, &(0x7f00000003c0)={[{@nolazytime}, {@orlov}, {@acl}, {@norecovery}, {@nojournal_checksum}, {@quota}]}, 0x1, 0x513, &(0x7f0000000c40)="$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")
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000005c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16, @ANYBLOB="796100000000000000007e0000001f00"], 0x1c}, 0x1, 0x0, 0x0, 0x40041}, 0x4000054)

903.838893ms ago: executing program 2 (id=1555):
openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
socket$packet(0x11, 0x3, 0x300)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'lo\x00'})
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x8080)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="19000000040000000400000008"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000380)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$SIOCGETNODEID(r5, 0x89e1, 0x0)

13.53439ms ago: executing program 3 (id=1556):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
mount$overlay(0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={[], [], 0x2f})
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@xino_on}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')
r3 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r3, &(0x7f0000001fc0)=""/184, 0x20002078)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=@framed={{0x25, 0xa, 0x0, 0x0, 0x1800, 0x61, 0x11, 0x70}, [@initr0]}, &(0x7f0000000000)='GPL\x00'}, 0x80)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=@newlink={0x3c, 0x10, 0x401, 0x70bd2c, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, 0x17b, 0x4c801}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_MLD_VERSION={0x5, 0x2c, 0x5}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20044081}, 0x20040844)

9.9142ms ago: executing program 0 (id=1557):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYRES32], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000011000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000540)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000300)='sys_enter\x00', r1}, 0x10)
bpf$PROG_BIND_MAP(0x23, &(0x7f0000000980), 0xc)

0s ago: executing program 4 (id=1558):
sendmsg$MPTCP_PM_CMD_GET_LIMITS(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0xffffffffffffffb4, 0x0, 0x1, 0x0, 0x0, 0x41}, 0x809d)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4840}, 0x14)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffeca50000006d000000850000000f00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000380)='kmem_cache_free\x00', r4}, 0x10)
r5 = syz_open_dev$vcsa(&(0x7f00000001c0), 0x1, 0x182)
connect$unix(r5, &(0x7f0000000000)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x20004015}, 0x0)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000001540)={0xd, 0x20000000000000bb, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000756c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb714000008"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
listen(r7, 0x101)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x3, 0x0, 0x0, 0x0, 0xb, 0x0, 0x0, 0x41000, 0x39, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x22, 0x10, &(0x7f0000000340)={0x6, 0x200008, 0x2, 0x20000}, 0x10}, 0x94)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001800010800000000000000850a600000000000000500000014000500200100000000000000000300000000001c00090008000000", @ANYRES32=r6], 0x4c}}, 0x0)
r8 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r8, &(0x7f00000002c0), 0x40000000000009f, 0x0)
r9 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r9, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[@ANYBLOB="2800000010000108000000000000000002000000", @ANYRES32=0x0, @ANYBLOB="b40200000000000008"], 0x28}}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x11, 0x0, 0x0, &(0x7f0000000000)='GPL\x00', 0x2a7, 0x0, 0x0, 0x41000, 0x24, '\x00', 0x0, 0x0, r2, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3bf}, 0x94)

kernel console output (not intermixed with test programs):

cryption,,errors=continue. Quota mode: none.
[  229.703355][ T3912] loop3: detected capacity change from 0 to 512
[  229.801745][ T3912] EXT4-fs (loop3): Ignoring removed orlov option
[  229.973609][ T3912] EXT4-fs (loop3): 1 orphan inode deleted
[  229.979523][ T3912] EXT4-fs (loop3): mounted filesystem without journal. Opts: nolazytime,orlov,acl,norecovery,nojournal_checksum,quota,,errors=continue. Quota mode: writeback.
[  229.995858][ T3912] ext4 filesystem being mounted at /230/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  230.073494][ T3912] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1188'.
[  230.313814][ T3893] EXT4-fs (loop0): shut down requested (1)
[  230.858723][ T3925] loop3: detected capacity change from 0 to 128
[  231.178522][ T3911] loop1: detected capacity change from 0 to 8192
[  231.229331][ T3931] loop2: detected capacity change from 0 to 512
[  231.237586][ T3911]  loop1: p1 p2[DM] p4
[  231.241759][ T3911] loop1: p1 size 196608 extends beyond EOD, truncated
[  231.249644][ T3931] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  231.260203][ T3911] loop1: p2 start 4292936063 is beyond EOD, truncated
[  231.268078][ T3911] loop1: p4 size 50331648 extends beyond EOD, truncated
[  231.269131][ T3931] EXT4-fs (loop2): 1 truncate cleaned up
[  231.282850][ T3931] EXT4-fs (loop2): mounted filesystem without journal. Opts: init_itable=0x0000000000000000,jqfmt=vfsold,debug_want_extra_isize=0x000000000000006a,user_xattr,errors=remount-ro,quota,. Quota mode: writeback.
[  231.384870][  T533] udevd[533]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[  231.408182][  T479] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  231.484930][  T340] udevd[340]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[  231.860742][  T479] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  231.921677][  T479] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  232.028175][ T3949] xt_CT: No such helper "netbios-ns"
[  233.738365][ T3952] loop3: detected capacity change from 0 to 512
[  233.851251][ T3953] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1197'.
[  233.924834][ T3952] EXT4-fs (loop3): Ignoring removed orlov option
[  233.963340][  T479] usb 1-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  234.501917][ T3952] EXT4-fs (loop3): 1 orphan inode deleted
[  234.507871][ T3952] EXT4-fs (loop3): mounted filesystem without journal. Opts: nolazytime,orlov,acl,norecovery,nojournal_checksum,quota,,errors=continue. Quota mode: writeback.
[  234.524206][ T3952] ext4 filesystem being mounted at /233/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  234.656393][ T3962] loop2: detected capacity change from 0 to 512
[  234.722629][  T479] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  235.380743][ T3962] EXT4-fs (loop2): Ignoring removed orlov option
[  235.715552][  T479] usb 1-1: config 0 descriptor??
[  235.725240][ T3958] loop4: detected capacity change from 0 to 8192
[  235.733823][ T3962] EXT4-fs (loop2): 1 orphan inode deleted
[  235.739924][ T3962] EXT4-fs (loop2): mounted filesystem without journal. Opts: nolazytime,orlov,acl,norecovery,nojournal_checksum,quota,,errors=continue. Quota mode: writeback.
[  235.756014][ T3962] ext4 filesystem being mounted at /242/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  236.229900][ T3969] loop1: detected capacity change from 0 to 512
[  236.472545][  T479] usb 1-1: can't set config #0, error -71
[  236.481408][  T479] usb 1-1: USB disconnect, device number 9
[  236.546733][ T3969] EXT4-fs (loop1): Ignoring removed orlov option
[  237.226756][ T3969] EXT4-fs (loop1): 1 orphan inode deleted
[  237.232602][ T3969] EXT4-fs (loop1): mounted filesystem without journal. Opts: nolazytime,orlov,acl,norecovery,nojournal_checksum,quota,,errors=continue. Quota mode: writeback.
[  237.248906][ T3969] ext4 filesystem being mounted at /268/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  237.459808][ T3976] loop3: detected capacity change from 0 to 512
[  237.531711][ T3976] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  237.671799][ T3976] EXT4-fs (loop3): 1 truncate cleaned up
[  237.679166][ T3976] EXT4-fs (loop3): mounted filesystem without journal. Opts: init_itable=0x0000000000000000,jqfmt=vfsold,debug_want_extra_isize=0x000000000000006a,user_xattr,errors=remount-ro,quota,. Quota mode: writeback.
[  238.327559][ T3995] xt_socket: unknown flags 0x50
[  239.208200][ T3995] loop1: detected capacity change from 0 to 131072
[  239.341099][ T3995] F2FS-fs (loop1): Wrong CP boundary, start(512) end(1536) blocks(0)
[  239.349246][ T3995] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  239.360763][ T3995] F2FS-fs (loop1): invalid crc value
[  239.415130][ T3996] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[  240.668336][ T3995] F2FS-fs (loop1): Failed to initialize F2FS segment manager (-4)
[  241.318412][ T4012] loop2: detected capacity change from 0 to 512
[  241.365063][ T4007] loop1: detected capacity change from 0 to 8192
[  241.378160][ T4012] EXT4-fs (loop2): Ignoring removed mblk_io_submit option
[  241.390896][ T4012] EXT4-fs (loop2): Test dummy encryption mode enabled
[  241.475444][ T4017] loop4: detected capacity change from 0 to 512
[  241.793040][ T4017] EXT4-fs (loop4): Ignoring removed orlov option
[  242.363367][ T4020] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  242.372214][ T4020] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  242.789641][ T4012] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8802c018, mo2=0103]
[  242.818401][ T4007]  loop1: p1 p2[DM] p4
[  242.822815][ T4007] loop1: p1 size 196608 extends beyond EOD, truncated
[  242.840078][ T4007] loop1: p2 start 4292936063 is beyond EOD, truncated
[  242.844100][ T4012] EXT4-fs error (device loop2): ext4_orphan_get:1401: comm syz.2.1214: inode #13: comm syz.2.1214: iget: illegal inode #
[  242.846964][  T346] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  242.867220][ T4007] loop1: p4 size 50331648 extends beyond EOD, truncated
[  242.869166][ T4017] EXT4-fs (loop4): 1 orphan inode deleted
[  242.880423][ T4017] EXT4-fs (loop4): mounted filesystem without journal. Opts: nolazytime,orlov,acl,norecovery,nojournal_checksum,quota,,errors=continue. Quota mode: writeback.
[  242.896597][ T4017] ext4 filesystem being mounted at /229/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  242.924761][ T4012] EXT4-fs error (device loop2): ext4_orphan_get:1406: comm syz.2.1214: couldn't read orphan inode 13 (err -117)
[  242.945319][ T4012] EXT4-fs (loop2): mounted filesystem without journal. Opts: debug,i_version,noblock_validity,abort,mblk_io_submit,data_err=ignore,max_dir_size_kb=0x000000000080222a,delalloc,test_dummy_encryption,,errors=continue. Quota mode: none.
[  243.020282][  T101]  loop1: p1 p2[DM] p4
[  243.026060][  T101] loop1: p1 size 196608 extends beyond EOD, truncated
[  243.029974][ T4012] EXT4-fs (loop2): shut down requested (1)
[  243.094810][  T101] loop1: p2 start 4292936063 is beyond EOD, truncated
[  243.142316][  T101] loop1: p4 size 50331648 extends beyond EOD, truncated
[  243.180511][  T346] usb 1-1: Using ep0 maxpacket: 32
[  243.254448][ T4032] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  243.263306][ T4032] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  243.529527][ T4031] loop4: detected capacity change from 0 to 8192
[  243.570703][  T346] usb 1-1: config 0 has an invalid interface number: 184 but max is 0
[  243.602211][  T346] usb 1-1: config 0 has no interface number 0
[  243.608326][  T346] usb 1-1: config 0 interface 184 has no altsetting 0
[  243.617673][ T2178] udevd[2178]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[  243.630580][  T533] udevd[533]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[  243.653944][  T340] udevd[340]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[  243.658536][  T533] udevd[533]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[  243.690951][ T4037] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  243.799691][    T6] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  243.810088][  T346] usb 1-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  243.819293][  T346] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  243.827289][  T346] usb 1-1: Product: syz
[  243.831738][  T346] usb 1-1: Manufacturer: syz
[  243.836344][  T346] usb 1-1: SerialNumber: syz
[  243.844980][  T346] usb 1-1: config 0 descriptor??
[  244.876303][  T346] usb 1-1: can't set config #0, error -71
[  244.917930][  T346] usb 1-1: USB disconnect, device number 10
[  245.332434][ T4052] xt_CT: No such helper "netbios-ns"
[  245.339809][ T4054] xt_socket: unknown flags 0x50
[  246.279249][ T4054] loop0: detected capacity change from 0 to 131072
[  246.357750][ T4056] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[  246.368538][ T4057] loop2: detected capacity change from 0 to 512
[  246.377431][ T4054] F2FS-fs (loop0): Wrong CP boundary, start(512) end(1536) blocks(0)
[  246.385574][ T4054] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  246.394893][ T4054] F2FS-fs (loop0): invalid crc value
[  246.410618][ T4054] F2FS-fs (loop0): Found nat_bits in checkpoint
[  246.718311][ T4057] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  246.721855][    T6] usb 3-1: device not accepting address 13, error -71
[  246.741335][ T4054] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  246.748467][ T4054] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e4
[  246.767689][ T4057] EXT4-fs (loop2): 1 truncate cleaned up
[  246.773549][ T4057] EXT4-fs (loop2): mounted filesystem without journal. Opts: init_itable=0x0000000000000000,jqfmt=vfsold,debug_want_extra_isize=0x000000000000006a,user_xattr,errors=remount-ro,quota,. Quota mode: writeback.
[  246.795959][ T4053] F2FS-fs (loop0): checksum invalid, nid = 4, ino_of_node = 4, 8e2acc4a vs. 159afe7
[  246.805925][ T4053] F2FS-fs (loop0): checksum invalid, nid = 4, ino_of_node = 4, 8e2acc4a vs. 159afe7
[  246.886575][ T4072] loop1: detected capacity change from 0 to 8192
[  246.914505][ T4072]  loop1: p1 p2[DM] p4
[  246.927934][ T4072] loop1: p1 size 196608 extends beyond EOD, truncated
[  246.935720][ T4072] loop1: p2 start 4292936063 is beyond EOD, truncated
[  246.943837][ T4072] loop1: p4 size 50331648 extends beyond EOD, truncated
[  247.066196][  T346] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  247.158504][ T4082] loop1: detected capacity change from 0 to 8192
[  247.312675][ T4088] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1231'.
[  247.580337][  T346] usb 1-1: Using ep0 maxpacket: 32
[  247.599359][    T6] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  247.951802][  T335] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  248.009288][  T346] usb 1-1: unable to read config index 0 descriptor/all
[  248.027665][  T346] usb 1-1: can't read configurations, error -71
[  248.066452][    T6] usb 3-1: Using ep0 maxpacket: 32
[  248.164723][ T4097] loop0: detected capacity change from 0 to 8192
[  248.180829][    T6] usb 3-1: config 0 has an invalid interface number: 184 but max is 0
[  248.189010][    T6] usb 3-1: config 0 has no interface number 0
[  248.195115][  T335] usb 4-1: Using ep0 maxpacket: 32
[  248.200490][    T6] usb 3-1: config 0 interface 184 has no altsetting 0
[  248.200545][  T533]  loop0: p1 p2[DM] p4
[  248.211482][  T533] loop0: p1 size 196608 extends beyond EOD, truncated
[  248.218659][  T533] loop0: p2 start 4292936063 is beyond EOD, truncated
[  248.225543][  T533] loop0: p4 size 50331648 extends beyond EOD, truncated
[  248.234392][ T4097]  loop0: p1 p2[DM] p4
[  248.238591][ T4097] loop0: p1 size 196608 extends beyond EOD, truncated
[  248.245780][ T4097] loop0: p2 start 4292936063 is beyond EOD, truncated
[  248.252640][ T4097] loop0: p4 size 50331648 extends beyond EOD, truncated
[  248.313969][  T335] usb 4-1: config 0 has an invalid interface number: 184 but max is 0
[  248.323237][  T479] usb 5-1: new high-speed USB device number 18 using dummy_hcd
[  248.323951][  T335] usb 4-1: config 0 has no interface number 0
[  248.337369][  T335] usb 4-1: config 0 interface 184 has no altsetting 0
[  248.361643][    T6] usb 3-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  248.399344][    T6] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  248.407611][    T6] usb 3-1: Product: syz
[  248.414273][    T6] usb 3-1: Manufacturer: syz
[  248.419868][    T6] usb 3-1: SerialNumber: syz
[  248.433540][  T533] udevd[533]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory
[  248.446304][    T6] usb 3-1: config 0 descriptor??
[  248.467936][  T340] udevd[340]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory
[  248.491179][    T6] smsc75xx v1.0.0
[  248.504450][  T335] usb 4-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  248.513630][  T335] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  248.521898][  T335] usb 4-1: Product: syz
[  248.526298][  T335] usb 4-1: Manufacturer: syz
[  248.530898][  T335] usb 4-1: SerialNumber: syz
[  248.539889][ T4102] netlink: 52 bytes leftover after parsing attributes in process `syz.1.1237'.
[  248.549929][  T335] usb 4-1: config 0 descriptor??
[  248.590511][  T335] smsc75xx v1.0.0
[  248.599401][  T479] usb 5-1: Using ep0 maxpacket: 32
[  248.742567][  T479] usb 5-1: config 0 has an invalid interface number: 184 but max is 0
[  248.751167][  T479] usb 5-1: config 0 has no interface number 0
[  248.758164][  T479] usb 5-1: config 0 interface 184 has no altsetting 0
[  248.924990][    T6] smsc75xx 3-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -61
[  248.942680][  T479] usb 5-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  248.957603][  T479] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  248.966819][  T479] usb 5-1: Product: syz
[  248.971501][  T479] usb 5-1: Manufacturer: syz
[  248.976463][  T479] usb 5-1: SerialNumber: syz
[  248.992047][  T479] usb 5-1: config 0 descriptor??
[  249.031157][  T479] smsc75xx v1.0.0
[  249.167906][    T6] smsc75xx 3-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -61
[  249.178649][    T6] smsc75xx 3-1:0.184 (unnamed net_device) (uninitialized): device not ready in smsc75xx_bind
[  249.206322][  T335] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -61
[  249.498646][ T4106] loop1: detected capacity change from 0 to 512
[  249.533420][  T479] smsc75xx 5-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71
[  249.544334][  T479] smsc75xx 5-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -71
[  249.554678][  T479] smsc75xx 5-1:0.184 (unnamed net_device) (uninitialized): device not ready in smsc75xx_bind
[  249.565103][  T479] smsc75xx: probe of 5-1:0.184 failed with error -71
[  249.572651][ T4106] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  249.589524][  T479] usb 5-1: USB disconnect, device number 18
[  249.601273][ T4106] EXT4-fs (loop1): 1 truncate cleaned up
[  249.607041][ T4106] EXT4-fs (loop1): mounted filesystem without journal. Opts: init_itable=0x0000000000000000,jqfmt=vfsold,debug_want_extra_isize=0x000000000000006a,user_xattr,errors=remount-ro,quota,. Quota mode: writeback.
[  249.662336][    T6] smsc75xx: probe of 3-1:0.184 failed with error -61
[  249.669089][  T335] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -61
[  249.680658][    T6] usb 3-1: USB disconnect, device number 14
[  249.687215][  T335] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): device not ready in smsc75xx_bind
[  249.697448][  T335] smsc75xx: probe of 4-1:0.184 failed with error -61
[  249.705137][  T335] usb 4-1: USB disconnect, device number 10
[  249.959509][ T4115] xt_socket: unknown flags 0x50
[  251.726490][ T4115] loop0: detected capacity change from 0 to 131072
[  251.740386][ T4117] loop1: detected capacity change from 0 to 512
[  252.543548][ T4115] F2FS-fs (loop0): Wrong CP boundary, start(512) end(1536) blocks(0)
[  252.551677][ T4115] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  253.180435][ T4119] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  253.189279][ T4119] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  253.231112][ T4117] EXT4-fs (loop1): Ignoring removed orlov option
[  253.239295][ T4115] F2FS-fs (loop0): invalid crc value
[  253.439590][ T4117] EXT4-fs (loop1): 1 orphan inode deleted
[  253.445365][ T4117] EXT4-fs (loop1): mounted filesystem without journal. Opts: nolazytime,orlov,acl,norecovery,nojournal_checksum,quota,,errors=continue. Quota mode: writeback.
[  253.461835][ T4117] ext4 filesystem being mounted at /279/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  253.481830][ T4115] F2FS-fs (loop0): Found nat_bits in checkpoint
[  253.522753][ T4115] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  253.529857][ T4115] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e4
[  253.733179][ T4130] loop3: detected capacity change from 0 to 512
[  253.879278][ T4111] F2FS-fs (loop0): checksum invalid, nid = 4, ino_of_node = 4, 8e2acc4a vs. 159afe7
[  253.890305][ T4130] EXT4-fs (loop3): Ignoring removed orlov option
[  253.899241][ T4115] F2FS-fs (loop0): checksum invalid, nid = 4, ino_of_node = 4, 8e2acc4a vs. 159afe7
[  254.136309][ T4130] EXT4-fs (loop3): 1 orphan inode deleted
[  254.142108][ T4130] EXT4-fs (loop3): mounted filesystem without journal. Opts: nolazytime,orlov,acl,norecovery,nojournal_checksum,quota,,errors=continue. Quota mode: writeback.
[  254.158534][ T4130] ext4 filesystem being mounted at /241/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  254.229981][ T4130] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1242'.
[  254.686261][ T4140] xt_socket: unknown flags 0x50
[  255.820097][ T4137] loop2: detected capacity change from 0 to 512
[  255.945854][ T4137] EXT4-fs (loop2): Ignoring removed mblk_io_submit option
[  256.039173][ T4140] loop1: detected capacity change from 0 to 131072
[  256.052070][ T4144] overlayfs: missing 'lowerdir'
[  256.393248][ T4137] EXT4-fs (loop2): Test dummy encryption mode enabled
[  256.413676][ T4140] F2FS-fs (loop1): Wrong CP boundary, start(512) end(1536) blocks(0)
[  256.421808][ T4140] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  256.431885][ T4140] F2FS-fs (loop1): invalid crc value
[  256.535350][ T4137] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8802c018, mo2=0103]
[  256.549032][ T4137] EXT4-fs error (device loop2): ext4_orphan_get:1401: comm syz.2.1245: inode #13: comm syz.2.1245: iget: illegal inode #
[  256.656420][ T4137] EXT4-fs error (device loop2): ext4_orphan_get:1406: comm syz.2.1245: couldn't read orphan inode 13 (err -117)
[  256.686395][ T4137] EXT4-fs (loop2): mounted filesystem without journal. Opts: debug,i_version,noblock_validity,abort,mblk_io_submit,data_err=ignore,max_dir_size_kb=0x000000000080222a,delalloc,test_dummy_encryption,,errors=continue. Quota mode: none.
[  256.827003][ T4140] F2FS-fs (loop1): Found nat_bits in checkpoint
[  256.980160][ T4140] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  256.987286][ T4140] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e4
[  257.053724][ T4160] loop0: detected capacity change from 0 to 512
[  257.063931][ T4160] EXT4-fs (loop0): Ignoring removed mblk_io_submit option
[  257.073411][ T4160] EXT4-fs (loop0): Test dummy encryption mode enabled
[  257.085048][ T4160] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8802c018, mo2=0103]
[  257.236294][ T4160] EXT4-fs error (device loop0): ext4_orphan_get:1401: comm syz.0.1249: inode #13: comm syz.0.1249: iget: illegal inode #
[  257.251631][ T4160] EXT4-fs error (device loop0): ext4_orphan_get:1406: comm syz.0.1249: couldn't read orphan inode 13 (err -117)
[  257.400727][ T4160] EXT4-fs (loop0): mounted filesystem without journal. Opts: debug,i_version,noblock_validity,abort,mblk_io_submit,data_err=ignore,max_dir_size_kb=0x000000000080222a,delalloc,test_dummy_encryption,,errors=continue. Quota mode: none.
[  257.635870][  T479] usb 5-1: new high-speed USB device number 19 using dummy_hcd
[  257.876685][  T479] usb 5-1: Using ep0 maxpacket: 32
[  257.980599][ T4160] EXT4-fs (loop0): shut down requested (1)
[  258.018147][ T4169] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1252'.
[  258.038522][  T479] usb 5-1: config 0 has an invalid interface number: 184 but max is 0
[  258.063606][  T479] usb 5-1: config 0 has no interface number 0
[  258.177580][ T4173] loop1: detected capacity change from 0 to 512
[  258.251863][ T4173] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  258.274611][ T4173] EXT4-fs (loop1): 1 truncate cleaned up
[  258.280570][ T4173] EXT4-fs (loop1): mounted filesystem without journal. Opts: init_itable=0x0000000000000000,jqfmt=vfsold,debug_want_extra_isize=0x000000000000006a,user_xattr,errors=remount-ro,quota,. Quota mode: writeback.
[  258.336987][  T479] usb 5-1: config 0 interface 184 has no altsetting 0
[  258.379069][   T30] audit: type=1326 audit(1756971567.817:2141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4180 comm="syz.1.1253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4b92e5be9 code=0x7ffc0000
[  258.402891][   T30] audit: type=1326 audit(1756971567.817:2142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4180 comm="syz.1.1253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff4b92e5be9 code=0x7ffc0000
[  258.435298][   T30] audit: type=1326 audit(1756971567.817:2143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4180 comm="syz.1.1253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4b92e5be9 code=0x7ffc0000
[  258.459615][   T30] audit: type=1326 audit(1756971567.817:2144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4180 comm="syz.1.1253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff4b92e5be9 code=0x7ffc0000
[  258.494805][  T335] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  258.502481][   T30] audit: type=1326 audit(1756971567.817:2145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4180 comm="syz.1.1253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4b92e5be9 code=0x7ffc0000
[  258.526169][   T30] audit: type=1326 audit(1756971567.817:2146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4180 comm="syz.1.1253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7ff4b92e5be9 code=0x7ffc0000
[  258.556358][ T4182] loop2: detected capacity change from 0 to 512
[  258.564198][   T30] audit: type=1326 audit(1756971567.817:2147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4180 comm="syz.1.1253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4b92e5be9 code=0x7ffc0000
[  258.588089][   T30] audit: type=1326 audit(1756971567.817:2148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4180 comm="syz.1.1253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7ff4b92e5be9 code=0x7ffc0000
[  259.019633][   T30] audit: type=1326 audit(1756971567.817:2149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4180 comm="syz.1.1253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4b92e5be9 code=0x7ffc0000
[  259.045913][ T4182] EXT4-fs (loop2): Ignoring removed orlov option
[  259.134888][   T30] audit: type=1326 audit(1756971567.817:2150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4180 comm="syz.1.1253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7ff4b92e5be9 code=0x7ffc0000
[  259.163618][ T4182] EXT4-fs (loop2): 1 orphan inode deleted
[  259.169397][ T4182] EXT4-fs (loop2): mounted filesystem without journal. Opts: nolazytime,orlov,acl,norecovery,nojournal_checksum,quota,,errors=continue. Quota mode: writeback.
[  259.185456][ T4182] ext4 filesystem being mounted at /250/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  259.268289][  T479] usb 5-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  259.280049][ T4191] syz.3.1255[4191] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  259.280454][ T4191] syz.3.1255[4191] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  259.324180][  T479] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  259.386924][  T479] usb 5-1: Product: syz
[  259.391337][  T479] usb 5-1: Manufacturer: syz
[  259.395986][  T479] usb 5-1: SerialNumber: syz
[  259.402503][  T479] usb 5-1: config 0 descriptor??
[  260.413866][  T479] smsc75xx v1.0.0
[  260.433494][ T4199] loop3: detected capacity change from 0 to 512
[  260.515364][ T4201] overlayfs: missing 'lowerdir'
[  260.556569][ T4199] EXT4-fs (loop3): Ignoring removed mblk_io_submit option
[  260.633104][ T4199] EXT4-fs (loop3): Test dummy encryption mode enabled
[  260.643361][  T335] usb 1-1: unable to read config index 0 descriptor/all
[  260.671975][  T335] usb 1-1: can't read configurations, error -71
[  260.807285][ T4199] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8802c018, mo2=0103]
[  260.816463][ T4199] EXT4-fs error (device loop3): ext4_orphan_get:1401: comm syz.3.1258: inode #13: comm syz.3.1258: iget: illegal inode #
[  260.829544][ T4199] EXT4-fs error (device loop3): ext4_orphan_get:1406: comm syz.3.1258: couldn't read orphan inode 13 (err -117)
[  260.841979][ T4199] EXT4-fs (loop3): mounted filesystem without journal. Opts: debug,i_version,noblock_validity,abort,mblk_io_submit,data_err=ignore,max_dir_size_kb=0x000000000080222a,delalloc,test_dummy_encryption,,errors=continue. Quota mode: none.
[  260.885163][ T4199] EXT4-fs (loop3): shut down requested (1)
[  260.914461][  T337] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  260.993868][ T4213] loop0: detected capacity change from 0 to 512
[  261.035125][ T4213] EXT4-fs (loop0): Ignoring removed orlov option
[  261.181771][  T337] usb 2-1: Using ep0 maxpacket: 32
[  261.196643][ T4213] EXT4-fs (loop0): 1 orphan inode deleted
[  261.202550][ T4213] EXT4-fs (loop0): mounted filesystem without journal. Opts: nolazytime,orlov,acl,norecovery,nojournal_checksum,quota,,errors=continue. Quota mode: writeback.
[  261.218969][ T4213] ext4 filesystem being mounted at /81/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  261.333961][  T337] usb 2-1: config 0 has an invalid interface number: 184 but max is 0
[  261.364824][  T337] usb 2-1: config 0 has no interface number 0
[  261.407758][  T337] usb 2-1: config 0 interface 184 has no altsetting 0
[  261.838595][  T337] usb 2-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  261.848003][  T479] smsc75xx 5-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71
[  261.864108][ T4226] loop4: detected capacity change from 0 to 512
[  261.871865][  T337] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  261.880711][  T479] smsc75xx 5-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -71
[  262.056773][  T337] usb 2-1: Product: syz
[  262.061141][  T479] smsc75xx 5-1:0.184 (unnamed net_device) (uninitialized): device not ready in smsc75xx_bind
[  262.071591][  T337] usb 2-1: Manufacturer: syz
[  262.076265][  T337] usb 2-1: SerialNumber: syz
[  262.081845][  T479] smsc75xx: probe of 5-1:0.184 failed with error -71
[  262.140897][ T4226] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  262.249671][  T337] usb 2-1: config 0 descriptor??
[  262.263327][ T4226] EXT4-fs (loop4): 1 truncate cleaned up
[  262.274812][  T479] usb 5-1: USB disconnect, device number 19
[  262.281110][  T337] usb 2-1: can't set config #0, error -71
[  262.286420][ T4226] EXT4-fs (loop4): mounted filesystem without journal. Opts: init_itable=0x0000000000000000,jqfmt=vfsold,debug_want_extra_isize=0x000000000000006a,user_xattr,errors=remount-ro,quota,. Quota mode: writeback.
[  262.288855][  T337] usb 2-1: USB disconnect, device number 9
[  262.373550][ T4236] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1265'.
[  264.341602][ T4247] loop3: detected capacity change from 0 to 512
[  264.384464][ T4247] EXT4-fs (loop3): Ignoring removed orlov option
[  264.560852][ T4247] EXT4-fs (loop3): 1 orphan inode deleted
[  264.566710][ T4247] EXT4-fs (loop3): mounted filesystem without journal. Opts: nolazytime,orlov,acl,norecovery,nojournal_checksum,quota,,errors=continue. Quota mode: writeback.
[  264.583141][ T4247] ext4 filesystem being mounted at /247/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  265.563982][ T4274] overlayfs: failed to resolve './file0': -2
[  265.592906][ T4266] loop2: detected capacity change from 0 to 8192
[  265.682515][ T4275] xt_socket: unknown flags 0x50
[  266.725880][ T4275] loop3: detected capacity change from 0 to 131072
[  266.736723][ T4276] loop1: detected capacity change from 0 to 512
[  266.773383][ T4275] F2FS-fs (loop3): Wrong CP boundary, start(512) end(1536) blocks(0)
[  266.781506][ T4275] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  266.790969][ T4275] F2FS-fs (loop3): invalid crc value
[  266.797284][ T4276] EXT4-fs (loop1): Ignoring removed orlov option
[  267.027182][ T4276] EXT4-fs (loop1): 1 orphan inode deleted
[  267.032998][ T4276] EXT4-fs (loop1): mounted filesystem without journal. Opts: nolazytime,orlov,acl,norecovery,nojournal_checksum,quota,,errors=continue. Quota mode: writeback.
[  267.049419][ T4276] ext4 filesystem being mounted at /286/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  267.082511][ T4275] F2FS-fs (loop3): Found nat_bits in checkpoint
[  267.292087][ T4275] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  267.299182][ T4275] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4
[  267.360258][ T4273] F2FS-fs (loop3): checksum invalid, nid = 4, ino_of_node = 4, 8e2acc4a vs. 159afe7
[  267.370899][ T4273] F2FS-fs (loop3): checksum invalid, nid = 4, ino_of_node = 4, 8e2acc4a vs. 159afe7
[  267.549238][ T4266]  loop2: p1 p2[DM] p4
[  267.553794][ T4266] loop2: p1 size 196608 extends beyond EOD, truncated
[  267.621457][ T4291] loop4: detected capacity change from 0 to 256
[  267.666654][ T4291] exFAT-fs (loop4): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  267.758091][ T4266] loop2: p2 start 4292936063 is beyond EOD, truncated
[  267.772297][ T4266] loop2: p4 size 50331648 extends beyond EOD, truncated
[  267.791591][   T60] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[  267.901269][ T4298] loop0: detected capacity change from 0 to 512
[  267.937029][ T4299] loop1: detected capacity change from 0 to 512
[  267.982041][ T4298] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  268.053613][ T4299] EXT4-fs (loop1): Ignoring removed orlov option
[  268.572957][ T4299] EXT4-fs (loop1): 1 orphan inode deleted
[  268.578773][ T4299] EXT4-fs (loop1): mounted filesystem without journal. Opts: nolazytime,orlov,acl,norecovery,nojournal_checksum,quota,,errors=continue. Quota mode: writeback.
[  268.595195][ T4299] ext4 filesystem being mounted at /287/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  268.712118][ T4298] EXT4-fs (loop0): 1 truncate cleaned up
[  268.869071][ T4298] EXT4-fs (loop0): mounted filesystem without journal. Opts: init_itable=0x0000000000000000,jqfmt=vfsold,debug_want_extra_isize=0x000000000000006a,user_xattr,errors=remount-ro,quota,. Quota mode: writeback.
[  268.917618][ T4306] syz.4.1283[4306] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  268.917719][ T4306] syz.4.1283[4306] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  268.931410][ T4306] loop4: detected capacity change from 0 to 256
[  268.983036][ T4306] exFAT-fs (loop4): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  269.013511][ T4308] loop2: detected capacity change from 0 to 512
[  269.131853][ T4308] EXT4-fs (loop2): too many log groups per flexible block group
[  269.149596][ T4308] EXT4-fs (loop2): failed to initialize mballoc (-12)
[  269.166575][ T4308] EXT4-fs (loop2): mount failed
[  269.218719][   T30] kauditd_printk_skb: 47 callbacks suppressed
[  269.218733][   T30] audit: type=1326 audit(1756971579.198:2198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4318 comm="syz.3.1282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb63fd49be9 code=0x7ffc0000
[  269.320513][   T30] audit: type=1326 audit(1756971579.240:2199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4318 comm="syz.3.1282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb63fd49be9 code=0x7ffc0000
[  269.349945][   T30] audit: type=1326 audit(1756971579.240:2200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4318 comm="syz.3.1282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb63fd49be9 code=0x7ffc0000
[  269.365083][ T4324] loop2: detected capacity change from 0 to 8192
[  269.373614][   T30] audit: type=1326 audit(1756971579.240:2201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4318 comm="syz.3.1282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb63fd49be9 code=0x7ffc0000
[  270.640571][ T4330] loop0: detected capacity change from 0 to 512
[  271.657582][   T30] audit: type=1326 audit(1756971579.240:2202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4318 comm="syz.3.1282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb63fd49be9 code=0x7ffc0000
[  271.690863][ T4330] EXT4-fs (loop0): Ignoring removed orlov option
[  271.826706][   T30] audit: type=1326 audit(1756971579.240:2203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4318 comm="syz.3.1282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb63fd49be9 code=0x7ffc0000
[  271.885706][ T4324]  loop2: p1 p2[DM] p4
[  272.295448][ T4330] EXT4-fs (loop0): 1 orphan inode deleted
[  272.301370][ T4330] EXT4-fs (loop0): mounted filesystem without journal. Opts: nolazytime,orlov,acl,norecovery,nojournal_checksum,quota,,errors=continue. Quota mode: writeback.
[  272.317753][ T4330] ext4 filesystem being mounted at /88/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  272.373780][ T4339] loop1: detected capacity change from 0 to 512
[  272.407479][ T4324] loop2: p1 size 196608 extends beyond EOD, truncated
[  272.432073][ T4339] EXT4-fs (loop1): Ignoring removed orlov option
[  272.453844][ T4340] loop3: detected capacity change from 0 to 128
[  272.558435][   T30] audit: type=1326 audit(1756971579.240:2204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4318 comm="syz.3.1282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb63fd49be9 code=0x7ffc0000
[  272.593989][   T30] audit: type=1326 audit(1756971579.251:2205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4318 comm="syz.3.1282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb63fd49be9 code=0x7ffc0000
[  272.618681][ T4324] loop2: p2 start 4292936063 is beyond EOD, truncated
[  272.627993][ T4339] EXT4-fs (loop1): 1 orphan inode deleted
[  272.633878][ T4339] EXT4-fs (loop1): mounted filesystem without journal. Opts: nolazytime,orlov,acl,norecovery,nojournal_checksum,quota,,errors=continue. Quota mode: writeback.
[  272.637263][ T4324] loop2: p4 size 50331648 extends beyond EOD, 
[  272.649873][ T4339] ext4 filesystem being mounted at /289/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  272.650144][   T30] audit: type=1326 audit(1756971579.251:2206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4318 comm="syz.3.1282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb63fd49be9 code=0x7ffc0000
[  272.697444][ T4324] truncated
[  272.700914][   T30] audit: type=1326 audit(1756971579.251:2207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4318 comm="syz.3.1282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7fb63fd49be9 code=0x7ffc0000
[  272.910591][  T533] udevd[533]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  272.921555][  T340] udevd[340]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[  273.025982][ T4352] loop2: detected capacity change from 0 to 512
[  273.067142][ T4356] loop4: detected capacity change from 0 to 512
[  273.071392][ T4358] loop1: detected capacity change from 0 to 512
[  273.076982][ T4352] EXT4-fs (loop2): Ignoring removed orlov option
[  273.090427][ T4352] EXT4-fs (loop2): 1 orphan inode deleted
[  273.092292][ T4358] EXT4-fs (loop1): Ignoring removed mblk_io_submit option
[  273.096209][ T4352] EXT4-fs (loop2): mounted filesystem without journal. Opts: nolazytime,orlov,acl,norecovery,nojournal_checksum,quota,,errors=continue. Quota mode: writeback.
[  273.103797][ T4358] EXT4-fs (loop1): Test dummy encryption mode enabled
[  273.119458][ T4352] ext4 filesystem being mounted at /259/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  273.126796][ T4348] syz.0.1293[4348] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  273.137731][ T4358] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8802c018, mo2=0103]
[  273.153909][ T4348] syz.0.1293[4348] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  273.157811][ T4352] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1294'.
[  273.165771][ T4356] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  273.181838][ T4358] EXT4-fs error (device loop1): ext4_orphan_get:1401: comm syz.1.1295: inode #13: comm syz.1.1295: iget: illegal inode #
[  273.200819][ T4358] EXT4-fs error (device loop1): ext4_orphan_get:1406: comm syz.1.1295: couldn't read orphan inode 13 (err -117)
[  273.215048][ T4348] loop0: detected capacity change from 0 to 256
[  273.215208][ T4358] EXT4-fs (loop1): mounted filesystem without journal. Opts: debug,i_version,noblock_validity,abort,mblk_io_submit,data_err=ignore,max_dir_size_kb=0x000000000080222a,delalloc,test_dummy_encryption,,errors=continue. Quota mode: none.
[  273.235498][ T4356] EXT4-fs (loop4): 1 truncate cleaned up
[  273.250368][ T4356] EXT4-fs (loop4): mounted filesystem without journal. Opts: init_itable=0x0000000000000000,jqfmt=vfsold,debug_want_extra_isize=0x000000000000006a,user_xattr,errors=remount-ro,quota,. Quota mode: writeback.
[  273.261253][ T4358] EXT4-fs (loop1): shut down requested (1)
[  273.282446][ T4348] exFAT-fs (loop0): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  273.335977][ T4365] loop4: detected capacity change from 0 to 512
[  273.343977][ T4365] EXT4-fs (loop4): Ignoring removed mblk_io_submit option
[  273.351620][ T4365] EXT4-fs (loop4): Test dummy encryption mode enabled
[  273.359153][ T4365] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8802c018, mo2=0103]
[  273.367732][ T4365] EXT4-fs error (device loop4): ext4_orphan_get:1401: comm syz.4.1297: inode #13: comm syz.4.1297: iget: illegal inode #
[  273.380778][ T4365] EXT4-fs error (device loop4): ext4_orphan_get:1406: comm syz.4.1297: couldn't read orphan inode 13 (err -117)
[  273.393465][ T4365] EXT4-fs (loop4): mounted filesystem without journal. Opts: debug,i_version,noblock_validity,abort,mblk_io_submit,data_err=ignore,max_dir_size_kb=0x000000000080222a,delalloc,test_dummy_encryption,,errors=continue. Quota mode: none.
[  273.424897][ T4365] EXT4-fs (loop4): shut down requested (1)
[  273.590538][ T4379] loop0: detected capacity change from 0 to 512
[  273.633884][ T4379] EXT4-fs (loop0): Ignoring removed mblk_io_submit option
[  273.644011][ T4379] EXT4-fs (loop0): Test dummy encryption mode enabled
[  273.651661][ T4379] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8802c018, mo2=0103]
[  273.660452][ T4379] EXT4-fs error (device loop0): ext4_orphan_get:1401: comm syz.0.1299: inode #13: comm syz.0.1299: iget: illegal inode #
[  273.673316][ T4379] EXT4-fs error (device loop0): ext4_orphan_get:1406: comm syz.0.1299: couldn't read orphan inode 13 (err -117)
[  273.677909][  T335] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  273.706338][ T4379] EXT4-fs (loop0): mounted filesystem without journal. Opts: debug,i_version,noblock_validity,abort,mblk_io_submit,data_err=ignore,max_dir_size_kb=0x000000000080222a,delalloc,test_dummy_encryption,,errors=continue. Quota mode: none.
[  273.748394][ T4379] EXT4-fs (loop0): shut down requested (1)
[  273.755648][ T4384] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  273.855294][  T337] usb 5-1: new high-speed USB device number 20 using dummy_hcd
[  274.239843][  T337] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  274.252857][  T337] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  274.268328][  T337] usb 5-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  274.278658][  T337] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  274.315363][  T337] usb 5-1: config 0 descriptor??
[  274.386643][  T337] usbhid 5-1:0.0: couldn't find an input interrupt endpoint
[  274.477818][   T26] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  274.820052][ T4395] syz.3.1302[4395] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  274.820157][ T4395] syz.3.1302[4395] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  274.833911][ T4395] loop3: detected capacity change from 0 to 256
[  274.883762][ T4395] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  274.978851][   T26] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  274.992701][   T26] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  275.005720][   T26] usb 1-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  275.014793][   T26] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  275.023361][   T26] usb 1-1: config 0 descriptor??
[  275.054823][ T4398] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[  275.064114][   T26] usbhid 1-1:0.0: couldn't find an input interrupt endpoint
[  275.077767][  T335] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  275.087943][  T335] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  275.100989][  T335] usb 2-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  275.110075][  T335] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  275.118867][  T335] usb 2-1: config 0 descriptor??
[  275.154357][  T335] usbhid 2-1:0.0: couldn't find an input interrupt endpoint
[  275.645692][ T4402] loop3: detected capacity change from 0 to 8192
[  275.687845][  T533]  loop3: p1 p2[DM] p4
[  275.692046][  T533] loop3: p1 size 196608 extends beyond EOD, truncated
[  275.699388][  T533] loop3: p2 start 4292936063 is beyond EOD, truncated
[  275.706182][  T533] loop3: p4 size 50331648 extends beyond EOD, truncated
[  275.715067][ T4402]  loop3: p1 p2[DM] p4
[  275.719276][ T4402] loop3: p1 size 196608 extends beyond EOD, truncated
[  275.726594][ T4402] loop3: p2 start 4292936063 is beyond EOD, truncated
[  275.733410][ T4402] loop3: p4 size 50331648 extends beyond EOD, truncated
[  275.966596][ T4406] overlayfs: missing 'workdir'
[  276.070608][  T340] udevd[340]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[  276.130636][  T533] udevd[533]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[  276.192266][  T533] udevd[533]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[  276.209345][  T335] usb 5-1: USB disconnect, device number 20
[  276.234180][  T340] udevd[340]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[  276.376822][ T4412] overlayfs: missing 'workdir'
[  276.434354][ T4413] loop4: detected capacity change from 0 to 512
[  276.491520][ T4413] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  276.556509][ T4413] EXT4-fs (loop4): 1 truncate cleaned up
[  276.562382][ T4413] EXT4-fs (loop4): mounted filesystem without journal. Opts: init_itable=0x0000000000000000,jqfmt=vfsold,debug_want_extra_isize=0x000000000000006a,user_xattr,errors=remount-ro,quota,. Quota mode: writeback.
[  276.590849][   T60] usb 1-1: USB disconnect, device number 15
[  276.650523][  T346] usb 2-1: USB disconnect, device number 10
[  276.773827][ T4424] loop1: detected capacity change from 0 to 8192
[  276.817525][ T4421] loop4: detected capacity change from 0 to 8192
[  276.908792][ T4428] loop0: detected capacity change from 0 to 256
[  276.957851][ T4428] exFAT-fs (loop0): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  277.527535][ T4421]  loop4: p1 p2[DM] p4
[  277.531734][ T4421] loop4: p1 size 196608 extends beyond EOD, truncated
[  277.538992][ T4421] loop4: p2 start 4292936063 is beyond EOD, truncated
[  277.545819][ T4421] loop4: p4 size 50331648 extends beyond EOD, truncated
[  277.577442][ T4438] loop1: detected capacity change from 0 to 512
[  277.678998][ T4438] EXT4-fs (loop1): Ignoring removed orlov option
[  277.702796][ T4438] EXT4-fs (loop1): 1 orphan inode deleted
[  277.708602][ T4438] EXT4-fs (loop1): mounted filesystem without journal. Opts: nolazytime,orlov,acl,norecovery,nojournal_checksum,quota,,errors=continue. Quota mode: writeback.
[  277.724621][ T4438] ext4 filesystem being mounted at /292/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  277.726001][ T2178] udevd[2178]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[  277.744345][ T4437] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  277.841622][ T4447] xt_socket: unknown flags 0x50
[  278.819937][ T4447] loop2: detected capacity change from 0 to 131072
[  279.002677][  T533] udevd[533]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[  279.025207][ T4447] F2FS-fs (loop2): Wrong CP boundary, start(512) end(1536) blocks(0)
[  279.033345][ T4447] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  279.050613][ T4447] F2FS-fs (loop2): invalid crc value
[  279.081949][ T4449] loop4: detected capacity change from 0 to 8192
[  279.117271][ T4447] F2FS-fs (loop2): Found nat_bits in checkpoint
[  279.152173][ T4447] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  279.159726][ T4447] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e4
[  279.174898][  T533]  loop4: p1 p2[DM] p4
[  279.179105][  T533] loop4: p1 size 196608 extends beyond EOD, truncated
[  279.192889][ T4446] F2FS-fs (loop2): checksum invalid, nid = 4, ino_of_node = 4, 8e2acc4a vs. 159afe7
[  279.394306][ T4459] loop0: detected capacity change from 0 to 256
[  279.557750][ T4446] F2FS-fs (loop2): checksum invalid, nid = 4, ino_of_node = 4, 8e2acc4a vs. 159afe7
[  279.636917][ T4461] loop1: detected capacity change from 0 to 512
[  279.662554][ T4459] exFAT-fs (loop0): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  279.678892][ T4461] EXT4-fs (loop1): Ignoring removed orlov option
[  279.995226][ T4461] EXT4-fs (loop1): 1 orphan inode deleted
[  280.001171][ T4461] EXT4-fs (loop1): mounted filesystem without journal. Opts: nolazytime,orlov,acl,norecovery,nojournal_checksum,quota,,errors=continue. Quota mode: writeback.
[  280.017761][ T4461] ext4 filesystem being mounted at /293/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  280.035826][  T533] loop4: p2 start 4292936063 is beyond EOD, truncated
[  280.067196][  T533] loop4: p4 size 50331648 extends beyond EOD, truncated
[  280.206484][ T4449]  loop4: p1 p2[DM] p4
[  280.214036][ T4449] loop4: p1 size 196608 extends beyond EOD, truncated
[  280.252829][ T4449] loop4: p2 start 4292936063 is beyond EOD, truncated
[  280.259662][ T4449] loop4: p4 size 50331648 extends beyond EOD, truncated
[  280.334154][ T4472] loop1: detected capacity change from 0 to 512
[  281.012032][ T4476] xt_socket: unknown flags 0x50
[  281.552958][ T4476] loop3: detected capacity change from 0 to 131072
[  281.700150][ T4476] F2FS-fs (loop3): Wrong CP boundary, start(512) end(1536) blocks(0)
[  281.708323][ T4476] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  281.718704][ T4476] F2FS-fs (loop3): invalid crc value
[  281.824428][ T4472] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  281.839778][ T2178] udevd[2178]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[  281.875559][  T533] udevd[533]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[  281.886114][ T4476] F2FS-fs (loop3): Found nat_bits in checkpoint
[  281.928700][ T4485] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1325'.
[  281.938838][ T4476] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  281.946366][ T4476] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4
[  281.991425][ T4472] EXT4-fs (loop1): 1 truncate cleaned up
[  281.998509][ T4472] EXT4-fs (loop1): mounted filesystem without journal. Opts: init_itable=0x0000000000000000,jqfmt=vfsold,debug_want_extra_isize=0x000000000000006a,user_xattr,errors=remount-ro,quota,. Quota mode: writeback.
[  282.019345][ T4467] F2FS-fs (loop3): checksum invalid, nid = 4, ino_of_node = 4, 8e2acc4a vs. 159afe7
[  282.030443][ T4467] F2FS-fs (loop3): checksum invalid, nid = 4, ino_of_node = 4, 8e2acc4a vs. 159afe7
[  282.048987][  T340] udevd[340]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[  282.064492][  T533] udevd[533]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[  282.151673][ T4492] loop2: detected capacity change from 0 to 128
[  282.158227][ T4490] syz.0.1326[4490] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  282.158322][ T4490] syz.0.1326[4490] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  282.172669][ T4490] loop0: detected capacity change from 0 to 256
[  282.215087][ T4490] exFAT-fs (loop0): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  282.297332][    T6] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[  282.314650][ T4497] loop2: detected capacity change from 0 to 8192
[  282.372339][ T4497]  loop2: p1 p2[DM] p4
[  282.376825][ T4497] loop2: p1 size 196608 extends beyond EOD, truncated
[  282.384347][ T4497] loop2: p2 start 4292936063 is beyond EOD, truncated
[  282.391199][ T4497] loop2: p4 size 50331648 extends beyond EOD, truncated
[  282.414304][ T4500] netlink: 84 bytes leftover after parsing attributes in process `syz.1.1329'.
[  282.544950][    T6] usb 4-1: Using ep0 maxpacket: 32
[  282.659347][    T6] usb 4-1: config 0 has an invalid interface number: 184 but max is 0
[  282.662380][ T4507] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  282.668796][    T6] usb 4-1: config 0 has no interface number 0
[  282.686374][    T6] usb 4-1: config 0 interface 184 has no altsetting 0
[  282.724190][ T4506] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[  282.768124][ T4509] loop4: detected capacity change from 0 to 8192
[  282.812817][  T533]  loop4: p1 p2[DM] p4
[  282.817120][  T533] loop4: p1 size 196608 extends beyond EOD, truncated
[  282.824625][  T533] loop4: p2 start 4292936063 is beyond EOD, truncated
[  282.831511][  T533] loop4: p4 size 50331648 extends beyond EOD, truncated
[  282.840323][    T6] usb 4-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  282.849532][    T6] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  282.857593][    T6] usb 4-1: Product: syz
[  282.861850][    T6] usb 4-1: Manufacturer: syz
[  282.866450][    T6] usb 4-1: SerialNumber: syz
[  282.875692][ T4509]  loop4: p1 p2[DM] p4
[  282.881992][ T4509] loop4: p1 size 196608 extends beyond EOD, truncated
[  282.892028][    T6] usb 4-1: config 0 descriptor??
[  282.897395][ T4509] loop4: p2 start 4292936063 is beyond EOD, truncated
[  282.904302][ T4509] loop4: p4 size 50331648 extends beyond EOD, truncated
[  282.926638][    T6] smsc75xx v1.0.0
[  282.936794][   T30] kauditd_printk_skb: 49 callbacks suppressed
[  282.936807][   T30] audit: type=1326 audit(1756971593.614:2257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4510 comm="syz.0.1333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcc47cddbe9 code=0x7ffc0000
[  282.988477][   T30] audit: type=1326 audit(1756971593.614:2258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4510 comm="syz.0.1333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcc47cddbe9 code=0x7ffc0000
[  283.015984][   T30] audit: type=1326 audit(1756971593.645:2259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4510 comm="syz.0.1333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcc47cddbe9 code=0x7ffc0000
[  283.057187][   T30] audit: type=1326 audit(1756971593.645:2260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4510 comm="syz.0.1333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcc47cddbe9 code=0x7ffc0000
[  283.080881][   T30] audit: type=1326 audit(1756971593.645:2261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4510 comm="syz.0.1333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcc47cddbe9 code=0x7ffc0000
[  283.123408][   T30] audit: type=1326 audit(1756971593.645:2262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4510 comm="syz.0.1333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcc47cddbe9 code=0x7ffc0000
[  283.222775][   T30] audit: type=1326 audit(1756971593.645:2263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4510 comm="syz.0.1333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcc47cddbe9 code=0x7ffc0000
[  283.970537][   T30] audit: type=1326 audit(1756971593.645:2264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4510 comm="syz.0.1333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcc47cddbe9 code=0x7ffc0000
[  283.974012][    T6] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): usbnet_get_endpoints failed: -71
[  284.027102][   T30] audit: type=1326 audit(1756971593.645:2265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4510 comm="syz.0.1333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fcc47cddbe9 code=0x7ffc0000
[  284.098116][    T6] smsc75xx: probe of 4-1:0.184 failed with error -71
[  284.107049][    T6] usb 4-1: USB disconnect, device number 12
[  284.116477][   T30] audit: type=1326 audit(1756971593.645:2266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4510 comm="syz.0.1333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcc47cddbe9 code=0x7ffc0000
[  284.141722][ T4519] loop0: detected capacity change from 0 to 512
[  284.217953][ T4519] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  284.232819][ T4524] loop4: detected capacity change from 0 to 8192
[  284.264823][ T4519] EXT4-fs (loop0): 1 truncate cleaned up
[  284.270575][ T4519] EXT4-fs (loop0): mounted filesystem without journal. Opts: init_itable=0x0000000000000000,jqfmt=vfsold,debug_want_extra_isize=0x000000000000006a,user_xattr,errors=remount-ro,quota,. Quota mode: writeback.
[  284.290650][   T26] usb 3-1: new high-speed USB device number 16 using dummy_hcd
[  284.310154][ T4524]  loop4: p1 p2[DM] p4
[  284.314327][ T4524] loop4: p1 size 196608 extends beyond EOD, truncated
[  284.339162][ T4524] loop4: p2 start 4292936063 is beyond EOD, truncated
[  284.421559][ T4524] loop4: p4 size 50331648 extends beyond EOD, truncated
[  284.561635][ T4539] loop0: detected capacity change from 0 to 512
[  284.569136][   T26] usb 3-1: Using ep0 maxpacket: 32
[  284.622415][ T4539] EXT4-fs (loop0): Ignoring removed orlov option
[  284.688524][   T26] usb 3-1: config 0 has an invalid interface number: 184 but max is 0
[  284.809036][   T26] usb 3-1: config 0 has no interface number 0
[  284.920252][   T26] usb 3-1: config 0 interface 184 has no altsetting 0
[  285.018442][ T4539] EXT4-fs (loop0): 1 orphan inode deleted
[  285.024356][ T4539] EXT4-fs (loop0): mounted filesystem without journal. Opts: nolazytime,orlov,acl,norecovery,nojournal_checksum,quota,,errors=continue. Quota mode: writeback.
[  285.040709][ T4539] ext4 filesystem being mounted at /98/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  285.488872][   T26] usb 3-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  285.500644][   T26] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  285.515131][   T26] usb 3-1: Product: syz
[  285.528224][ T4551] loop3: detected capacity change from 0 to 512
[  285.545288][   T26] usb 3-1: Manufacturer: syz
[  285.546780][ T4551] EXT4-fs (loop3): Ignoring removed mblk_io_submit option
[  285.555145][   T26] usb 3-1: SerialNumber: syz
[  285.559747][ T4551] EXT4-fs (loop3): Test dummy encryption mode enabled
[  285.566766][ T4547] loop4: detected capacity change from 0 to 8192
[  285.583920][   T26] usb 3-1: config 0 descriptor??
[  285.589511][ T4551] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8802c018, mo2=0103]
[  285.603461][ T4551] EXT4-fs error (device loop3): ext4_orphan_get:1401: comm syz.3.1344: inode #13: comm syz.3.1344: iget: illegal inode #
[  285.623293][   T26] smsc75xx v1.0.0
[  285.633240][ T4551] EXT4-fs error (device loop3): ext4_orphan_get:1406: comm syz.3.1344: couldn't read orphan inode 13 (err -117)
[  285.645545][ T4551] EXT4-fs (loop3): mounted filesystem without journal. Opts: debug,i_version,noblock_validity,abort,mblk_io_submit,data_err=ignore,max_dir_size_kb=0x000000000080222a,delalloc,test_dummy_encryption,,errors=continue. Quota mode: none.
[  285.667745][ T4554] loop1: detected capacity change from 0 to 8192
[  285.669618][  T340]  loop4: p1 p2[DM] p4
[  285.679133][  T340] loop4: p1 size 196608 extends beyond EOD, truncated
[  285.696730][  T340] loop4: p2 start 4292936063 is beyond EOD, truncated
[  285.703738][ T4551] EXT4-fs (loop3): shut down requested (1)
[  285.709628][  T340] loop4: p4 size 50331648 extends beyond EOD, truncated
[  285.716937][ T2178]  loop1: p1 p2[DM] p4
[  285.721201][ T2178] loop1: p1 size 196608 extends beyond EOD, truncated
[  285.729115][ T2178] loop1: p2 start 4292936063 is beyond EOD, truncated
[  285.740667][ T4547]  loop4: p1 p2[DM] p4
[  285.749782][ T2178] loop1: p4 size 50331648 extends beyond EOD, truncated
[  285.757808][ T4547] loop4: p1 size 196608 extends beyond EOD, truncated
[  285.759116][ T4554]  loop1: p1 p2[DM] p4
[  285.770897][ T4554] loop1: p1 size 196608 extends beyond EOD, truncated
[  285.774315][ T4547] loop4: p2 start 4292936063 is beyond EOD, truncated
[  285.784806][ T4554] loop1: p2 start 4292936063 is beyond EOD, truncated
[  285.785438][ T4547] loop4: p4 size 50331648 extends beyond EOD, truncated
[  285.792916][ T4554] loop1: p4 size 50331648 extends beyond EOD, truncated
[  285.885801][  T333] udevd[333]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[  285.889683][  T340] udevd[340]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[  285.907185][  T337] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[  286.017301][ T4564] loop1: detected capacity change from 0 to 512
[  286.053898][ T4564] EXT4-fs (loop1): Ignoring removed mblk_io_submit option
[  286.054388][ T2178] udevd[2178]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[  286.061804][ T4564] EXT4-fs (loop1): Test dummy encryption mode enabled
[  286.072205][  T340] udevd[340]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[  286.080334][ T4564] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8802c018, mo2=0103]
[  286.136475][  T479] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[  286.154378][ T4567] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  286.259513][ T4564] EXT4-fs error (device loop1): ext4_orphan_get:1401: comm syz.1.1347: inode #13: comm syz.1.1347: iget: illegal inode #
[  286.259631][  T337] usb 1-1: Using ep0 maxpacket: 32
[  286.289854][ T4564] EXT4-fs error (device loop1): ext4_orphan_get:1406: comm syz.1.1347: couldn't read orphan inode 13 (err -117)
[  286.348472][ T4564] EXT4-fs (loop1): mounted filesystem without journal. Opts: debug,i_version,noblock_validity,abort,mblk_io_submit,data_err=ignore,max_dir_size_kb=0x000000000080222a,delalloc,test_dummy_encryption,,errors=continue. Quota mode: none.
[  286.388439][ T4564] EXT4-fs (loop1): shut down requested (1)
[  286.479002][  T337] usb 1-1: config 0 has an invalid interface number: 184 but max is 0
[  286.487266][  T337] usb 1-1: config 0 has no interface number 0
[  286.493555][  T337] usb 1-1: config 0 interface 184 has no altsetting 0
[  286.573876][  T479] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  286.584220][  T479] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  286.597146][  T479] usb 4-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  286.606306][  T479] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  286.615024][  T479] usb 4-1: config 0 descriptor??
[  286.650564][  T479] usbhid 4-1:0.0: couldn't find an input interrupt endpoint
[  286.659634][  T337] usb 1-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  286.668716][  T337] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  286.676748][  T337] usb 1-1: Product: syz
[  286.680952][  T337] usb 1-1: Manufacturer: syz
[  286.685586][  T337] usb 1-1: SerialNumber: syz
[  286.691431][  T337] usb 1-1: config 0 descriptor??
[  286.770123][  T652] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  286.779347][  T337] smsc75xx v1.0.0
[  286.840642][ T4574] loop4: detected capacity change from 0 to 512
[  286.882472][ T4574] EXT4-fs (loop4): Ignoring removed orlov option
[  286.910061][ T4574] EXT4-fs (loop4): 1 orphan inode deleted
[  286.915944][ T4574] EXT4-fs (loop4): mounted filesystem without journal. Opts: nolazytime,orlov,acl,norecovery,nojournal_checksum,quota,,errors=continue. Quota mode: writeback.
[  286.931991][ T4574] ext4 filesystem being mounted at /258/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  287.040420][ T4578] loop2: detected capacity change from 0 to 512
[  287.065741][ T4578] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  287.081597][ T4578] EXT4-fs (loop2): 1 truncate cleaned up
[  287.087373][ T4578] EXT4-fs (loop2): mounted filesystem without journal. Opts: init_itable=0x0000000000000000,jqfmt=vfsold,debug_want_extra_isize=0x000000000000006a,user_xattr,errors=remount-ro,quota,. Quota mode: writeback.
[  287.294769][   T26] smsc75xx 3-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71
[  287.306635][   T26] smsc75xx 3-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -71
[  287.316800][   T26] smsc75xx 3-1:0.184 (unnamed net_device) (uninitialized): device not ready in smsc75xx_bind
[  287.327060][   T26] smsc75xx: probe of 3-1:0.184 failed with error -71
[  287.352959][   T26] usb 3-1: USB disconnect, device number 16
[  287.507472][  T337] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71
[  287.521535][  T337] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -71
[  287.531684][  T337] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): device not ready in smsc75xx_bind
[  287.542076][  T337] smsc75xx: probe of 1-1:0.184 failed with error -71
[  287.552485][  T337] usb 1-1: USB disconnect, device number 16
[  287.585718][ T4589] loop4: detected capacity change from 0 to 512
[  287.604720][ T4589] EXT4-fs (loop4): Ignoring removed orlov option
[  287.606131][  T652] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  287.634362][  T652] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  287.657615][  T652] usb 2-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  287.668490][ T4589] EXT4-fs (loop4): 1 orphan inode deleted
[  287.674355][  T652] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  287.675233][  T652] usb 2-1: config 0 descriptor??
[  287.688552][ T4589] EXT4-fs (loop4): mounted filesystem without journal. Opts: nolazytime,orlov,acl,norecovery,nojournal_checksum,quota,,errors=continue. Quota mode: writeback.
[  287.769000][  T652] usbhid 2-1:0.0: couldn't find an input interrupt endpoint
[  287.820315][ T4589] ext4 filesystem being mounted at /259/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  287.926473][ T4589] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1351'.
[  288.401394][ T4600] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  288.645061][  T652] usb 4-1: USB disconnect, device number 13
[  288.707211][    T6] usb 2-1: USB disconnect, device number 11
[  289.099389][ T4609] overlayfs: missing 'lowerdir'
[  289.154883][ T4610] xt_socket: unknown flags 0x50
[  290.413367][ T4613] netlink: 52 bytes leftover after parsing attributes in process `syz.0.1358'.
[  290.427690][ T4610] loop1: detected capacity change from 0 to 131072
[  290.461986][ T4617] loop0: detected capacity change from 0 to 512
[  290.469841][ T4610] F2FS-fs (loop1): Wrong CP boundary, start(512) end(1536) blocks(0)
[  290.478010][ T4610] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  290.487735][ T4610] F2FS-fs (loop1): invalid crc value
[  290.525107][ T4615] loop3: detected capacity change from 0 to 8192
[  290.532090][ T4610] F2FS-fs (loop1): Found nat_bits in checkpoint
[  290.571467][ T4610] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  290.574605][ T4615]  loop3: p1 p2[DM] p4
[  290.578541][ T4610] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e4
[  290.586028][ T4615] loop3: p1 size 196608 extends beyond EOD, 
[  290.651133][ T4608] F2FS-fs (loop1): checksum invalid, nid = 4, ino_of_node = 4, 8e2acc4a vs. 159afe7
[  290.663335][ T4615] truncated
[  290.667629][ T4617] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  290.671337][ T4615] loop3: p2 start 4292936063 is beyond EOD, 
[  290.679872][ T4608] F2FS-fs (loop1): checksum invalid, nid = 4, ino_of_node = 4, 8e2acc4a vs. 159afe7
[  290.689251][ T4615] truncated
[  290.708224][ T4615] loop3: p4 size 50331648 extends beyond EOD, truncated
[  290.739698][ T4617] EXT4-fs (loop0): 1 truncate cleaned up
[  290.745362][ T4617] EXT4-fs (loop0): mounted filesystem without journal. Opts: init_itable=0x0000000000000000,jqfmt=vfsold,debug_want_extra_isize=0x000000000000006a,user_xattr,errors=remount-ro,quota,. Quota mode: writeback.
[  290.970692][ T4628] xt_socket: unknown flags 0x50
[  291.182757][    T6] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  291.564374][ T4628] loop4: detected capacity change from 0 to 131072
[  291.612782][ T4628] F2FS-fs (loop4): Wrong CP boundary, start(512) end(1536) blocks(0)
[  291.620913][ T4628] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  291.629485][    T6] usb 2-1: Using ep0 maxpacket: 32
[  291.635363][ T4628] F2FS-fs (loop4): invalid crc value
[  291.650808][ T4628] F2FS-fs (loop4): Found nat_bits in checkpoint
[  291.693437][ T4628] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  291.700595][ T4628] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e4
[  291.720161][ T4627] F2FS-fs (loop4): checksum invalid, nid = 4, ino_of_node = 4, 8e2acc4a vs. 159afe7
[  291.730616][ T4627] F2FS-fs (loop4): checksum invalid, nid = 4, ino_of_node = 4, 8e2acc4a vs. 159afe7
[  291.791362][ T4644] overlayfs: failed to resolve './file0': -2
[  291.822032][    T6] usb 2-1: unable to read config index 0 descriptor/all
[  291.833227][    T6] usb 2-1: can't read configurations, error -71
[  292.012653][  T652] usb 5-1: new high-speed USB device number 21 using dummy_hcd
[  292.052091][ T4651] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  292.326732][  T652] usb 5-1: Using ep0 maxpacket: 32
[  292.414045][ T4654] loop3: detected capacity change from 0 to 8192
[  292.456540][ T4650] loop1: detected capacity change from 0 to 8192
[  292.469564][  T652] usb 5-1: config 0 has an invalid interface number: 184 but max is 0
[  292.479943][ T4654]  loop3: p1 p2[DM] p4
[  292.480870][  T652] usb 5-1: config 0 has no interface number 0
[  292.488921][ T4654] loop3: p1 size 196608 extends beyond EOD, truncated
[  292.498294][  T652] usb 5-1: config 0 interface 184 has no altsetting 0
[  292.498326][ T4654] loop3: p2 start 4292936063 is beyond EOD, truncated
[  292.526732][ T4654] loop3: p4 size 50331648 extends beyond EOD, truncated
[  292.534073][  T340]  loop1: p1 p2[DM] p4
[  292.538422][  T340] loop1: p1 size 196608 extends beyond EOD, truncated
[  292.551406][  T340] loop1: p2 start 4292936063 is beyond EOD, truncated
[  292.558370][  T340] loop1: p4 size 50331648 extends beyond EOD, truncated
[  292.567919][ T4650]  loop1: p1 p2[DM] p4
[  292.573079][ T4650] loop1: p1 size 196608 extends beyond EOD, truncated
[  292.590067][ T4650] loop1: p2 start 4292936063 is beyond EOD, truncated
[  292.597254][ T4650] loop1: p4 size 50331648 extends beyond EOD, truncated
[  292.776902][  T340] udevd[340]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[  292.779490][  T533] udevd[533]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[  292.796805][  T652] usb 5-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  292.865765][  T652] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  292.897162][ T4661] loop2: detected capacity change from 0 to 8192
[  292.918967][ T3225] udevd[3225]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[  292.934198][  T340] udevd[340]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[  292.940131][  T652] usb 5-1: Product: syz
[  292.948516][  T652] usb 5-1: Manufacturer: syz
[  293.001434][ T4664] loop0: detected capacity change from 0 to 512
[  293.839722][ T4664] EXT4-fs (loop0): Ignoring removed orlov option
[  293.872665][ T4672] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  294.036457][  T652] usb 5-1: SerialNumber: syz
[  294.128783][ T4674] loop3: detected capacity change from 0 to 512
[  294.169100][  T533] udevd[533]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[  294.177623][  T652] usb 5-1: config 0 descriptor??
[  294.180504][ T4664] EXT4-fs (loop0): 1 orphan inode deleted
[  294.189846][ T4664] EXT4-fs (loop0): mounted filesystem without journal. Opts: nolazytime,orlov,acl,norecovery,nojournal_checksum,quota,,errors=continue. Quota mode: writeback.
[  294.205923][ T4664] ext4 filesystem being mounted at /106/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  294.220162][ T4674] EXT4-fs (loop3): Ignoring removed mblk_io_submit option
[  294.230849][  T340] udevd[340]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[  294.250976][ T4674] EXT4-fs (loop3): Test dummy encryption mode enabled
[  294.266350][  T652] usb 5-1: can't set config #0, error -71
[  294.279892][ T4661]  loop2: p1 p2[DM] p4
[  294.286173][ T4679] loop1: detected capacity change from 0 to 512
[  294.299589][  T652] usb 5-1: USB disconnect, device number 21
[  294.308428][ T4661] loop2: p1 size 196608 extends beyond EOD, truncated
[  294.358273][ T4674] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8802c018, mo2=0103]
[  294.366865][ T4679] EXT4-fs (loop1): Ignoring removed mblk_io_submit option
[  294.374161][ T4679] EXT4-fs (loop1): Test dummy encryption mode enabled
[  294.429907][ T4674] EXT4-fs error (device loop3): ext4_orphan_get:1401: comm syz.3.1375: inode #13: comm syz.3.1375: iget: illegal inode #
[  294.432789][ T4684] loop4: detected capacity change from 0 to 512
[  294.450072][ T4661] loop2: p2 start 4292936063 is beyond EOD, truncated
[  294.457299][ T4661] loop2: p4 size 50331648 extends beyond EOD, truncated
[  294.498776][ T4679] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8802c018, mo2=0103]
[  294.510019][ T4674] EXT4-fs error (device loop3): ext4_orphan_get:1406: comm syz.3.1375: couldn't read orphan inode 13 (err -117)
[  294.522162][ T4679] EXT4-fs error (device loop1): ext4_orphan_get:1401: comm syz.1.1376: inode #13: comm syz.1.1376: iget: illegal inode #
[  294.536616][ T4684] EXT4-fs (loop4): too many log groups per flexible block group
[  294.545983][ T4684] EXT4-fs (loop4): failed to initialize mballoc (-12)
[  294.552795][ T4684] EXT4-fs (loop4): mount failed
[  294.571391][ T4679] EXT4-fs error (device loop1): ext4_orphan_get:1406: comm syz.1.1376: couldn't read orphan inode 13 (err -117)
[  294.579327][ T4674] EXT4-fs (loop3): mounted filesystem without journal. Opts: debug,i_version,noblock_validity,abort,mblk_io_submit,data_err=ignore,max_dir_size_kb=0x000000000080222a,delalloc,test_dummy_encryption,,errors=continue. Quota mode: none.
[  294.597348][ T4679] EXT4-fs (loop1): mounted filesystem without journal. Opts: debug,i_version,noblock_validity,abort,mblk_io_submit,data_err=ignore,max_dir_size_kb=0x000000000080222a,delalloc,test_dummy_encryption,,errors=continue. Quota mode: none.
[  294.642627][ T4674] EXT4-fs (loop3): shut down requested (1)
[  294.650992][ T4679] EXT4-fs (loop1): shut down requested (1)
[  294.876197][ T4705] xt_socket: unknown flags 0x50
[  295.231734][  T346] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[  295.239382][    T6] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[  295.481665][ T4705] loop4: detected capacity change from 0 to 131072
[  295.531532][ T4705] F2FS-fs (loop4): Wrong CP boundary, start(512) end(1536) blocks(0)
[  295.539668][ T4705] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  295.549153][ T4705] F2FS-fs (loop4): invalid crc value
[  295.559379][ T4705] F2FS-fs (loop4): Found nat_bits in checkpoint
[  295.617980][ T4705] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  295.625194][ T4705] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e4
[  295.648517][ T4699] F2FS-fs (loop4): checksum invalid, nid = 4, ino_of_node = 4, 8e2acc4a vs. 159afe7
[  295.658686][ T4699] F2FS-fs (loop4): checksum invalid, nid = 4, ino_of_node = 4, 8e2acc4a vs. 159afe7
[  295.669909][  T346] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  295.673095][ T4714] loop2: detected capacity change from 0 to 512
[  295.680017][    T6] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  295.680044][    T6] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  295.680077][    T6] usb 4-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  295.725858][  T346] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  295.725881][ T4714] EXT4-fs (loop2): Ignoring removed orlov option
[  295.757663][  T346] usb 2-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  295.759869][ T4714] EXT4-fs (loop2): 1 orphan inode deleted
[  295.774659][  T346] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  295.788785][ T4714] EXT4-fs (loop2): mounted filesystem without journal. Opts: nolazytime,orlov,acl,norecovery,nojournal_checksum,quota,,errors=continue. Quota mode: writeback.
[  295.794063][    T6] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  295.815633][ T4714] ext4 filesystem being mounted at /278/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  295.826448][    T6] usb 4-1: config 0 descriptor??
[  295.831727][  T346] usb 2-1: config 0 descriptor??
[  295.870773][  T346] usbhid 2-1:0.0: couldn't find an input interrupt endpoint
[  295.878691][    T6] usbhid 4-1:0.0: couldn't find an input interrupt endpoint
[  295.965497][   T60] usb 5-1: new high-speed USB device number 22 using dummy_hcd
[  296.194115][   T60] usb 5-1: Using ep0 maxpacket: 32
[  296.275438][ T4718] loop0: detected capacity change from 0 to 8192
[  296.308399][   T60] usb 5-1: config 0 has an invalid interface number: 184 but max is 0
[  296.316572][   T60] usb 5-1: config 0 has no interface number 0
[  296.322856][   T60] usb 5-1: config 0 interface 184 has no altsetting 0
[  296.346437][  T533]  loop0: p1 p2[DM] p4
[  296.350764][  T533] loop0: p1 size 196608 extends beyond EOD, truncated
[  296.358472][  T533] loop0: p2 start 4292936063 is beyond EOD, truncated
[  296.365260][  T533] loop0: p4 size 50331648 extends beyond EOD, truncated
[  296.374249][ T4718]  loop0: p1 p2[DM] p4
[  296.379686][ T4718] loop0: p1 size 196608 extends beyond EOD, truncated
[  296.387600][ T4718] loop0: p2 start 4292936063 is beyond EOD, truncated
[  296.394765][ T4718] loop0: p4 size 50331648 extends beyond EOD, truncated
[  296.412727][  T101]  loop0: p1 p2[DM] p4
[  296.416885][  T101] loop0: p1 size 196608 extends beyond EOD, truncated
[  296.424406][  T101] loop0: p2 start 4292936063 is beyond EOD, truncated
[  296.431199][  T101] loop0: p4 size 50331648 extends beyond EOD, truncated
[  296.479439][   T60] usb 5-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  296.491792][   T60] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  296.507459][   T60] usb 5-1: Product: syz
[  296.517155][   T60] usb 5-1: Manufacturer: syz
[  296.526143][   T60] usb 5-1: SerialNumber: syz
[  296.536421][   T60] usb 5-1: config 0 descriptor??
[  296.574989][   T60] smsc75xx v1.0.0
[  296.634139][ T2178] udevd[2178]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory
[  296.645141][  T533] udevd[533]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory
[  296.716226][ T4724] loop0: detected capacity change from 0 to 128
[  296.900213][ T4727] xt_socket: unknown flags 0x50
[  297.295308][ T4727] loop0: detected capacity change from 0 to 131072
[  297.302813][ T4731] xt_CT: No such helper "netbios-ns"
[  297.330128][ T4727] F2FS-fs (loop0): Wrong CP boundary, start(512) end(1536) blocks(0)
[  297.338309][ T4727] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  297.352401][ T4727] F2FS-fs (loop0): invalid crc value
[  297.467030][   T60] smsc75xx 5-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -61
[  297.489586][   T60] smsc75xx 5-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -61
[  297.501426][ T4727] F2FS-fs (loop0): Found nat_bits in checkpoint
[  297.538355][   T60] smsc75xx 5-1:0.184 (unnamed net_device) (uninitialized): device not ready in smsc75xx_bind
[  297.548682][   T60] smsc75xx: probe of 5-1:0.184 failed with error -61
[  297.555697][ T4727] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  297.558019][   T60] usb 2-1: USB disconnect, device number 14
[  297.562806][ T4727] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e4
[  297.569883][    T6] usb 4-1: USB disconnect, device number 14
[  297.602831][ T4727] F2FS-fs (loop0): checksum invalid, nid = 4, ino_of_node = 4, 8e2acc4a vs. 159afe7
[  297.613498][ T4727] F2FS-fs (loop0): checksum invalid, nid = 4, ino_of_node = 4, 8e2acc4a vs. 159afe7
[  297.867408][ T4743] loop3: detected capacity change from 0 to 512
[  297.924425][ T4743] EXT4-fs (loop3): Ignoring removed orlov option
[  298.863663][ T4746] loop2: detected capacity change from 0 to 512
[  298.884771][ T4747] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  298.971996][ T4746] EXT4-fs (loop2): Ignoring removed orlov option
[  301.425887][ T4743] EXT4-fs warning (device loop3): ext4_multi_mount_protect:403: Unable to create kmmpd thread for loop3.
[  301.473969][  T652] usb 1-1: new high-speed USB device number 17 using dummy_hcd
[  301.476482][  T346] usb 5-1: USB disconnect, device number 22
[  301.511501][ T4746] EXT4-fs (loop2): 1 orphan inode deleted
[  301.517256][ T4746] EXT4-fs (loop2): mounted filesystem without journal. Opts: nolazytime,orlov,acl,norecovery,nojournal_checksum,quota,,errors=continue. Quota mode: writeback.
[  301.533265][ T4746] ext4 filesystem being mounted at /280/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  301.551471][ T4745] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1389'.
[  301.679707][ T4756] loop3: detected capacity change from 0 to 8192
[  301.720821][ T4755] loop1: detected capacity change from 0 to 8192
[  301.735670][ T4756]  loop3: p1 p2[DM] p4
[  301.740028][ T4756] loop3: p1 size 196608 extends beyond EOD, truncated
[  301.747458][  T340]  loop1: p1 p2[DM] p4
[  301.751736][  T340] loop1: p1 size 196608 extends beyond EOD, truncated
[  301.781990][  T340] loop1: p2 start 4292936063 is beyond EOD, truncated
[  301.789423][ T4756] loop3: p2 start 4292936063 is beyond EOD, truncated
[  301.796788][  T340] loop1: p4 size 50331648 extends beyond EOD, truncated
[  301.804065][ T4756] loop3: p4 size 50331648 extends beyond EOD, truncated
[  301.914604][ T4755]  loop1: p1 p2[DM] p4
[  301.960590][ T4755] loop1: p1 size 196608 extends beyond EOD, truncated
[  301.995716][ T4762] loop2: detected capacity change from 0 to 512
[  302.128462][ T4762] EXT4-fs (loop2): Ignoring removed orlov option
[  302.277192][ T4755] loop1: p2 start 4292936063 is beyond EOD, truncated
[  302.312782][ T4762] EXT4-fs (loop2): 1 orphan inode deleted
[  302.318622][ T4762] EXT4-fs (loop2): mounted filesystem without journal. Opts: nolazytime,orlov,acl,norecovery,nojournal_checksum,quota,,errors=continue. Quota mode: writeback.
[  302.334942][ T4762] ext4 filesystem being mounted at /281/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  302.991352][ T4755] loop1: p4 size 50331648 extends beyond EOD, truncated
[  303.040401][ T4770] loop4: detected capacity change from 0 to 512
[  303.132014][ T4770] EXT4-fs (loop4): Ignoring removed mblk_io_submit option
[  303.154687][ T4770] EXT4-fs (loop4): Test dummy encryption mode enabled
[  303.218572][ T4770] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8802c018, mo2=0103]
[  303.237846][ T2178] udevd[2178]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[  303.249161][ T3225] udevd[3225]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[  303.262619][  T340] udevd[340]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[  303.273336][  T533] udevd[533]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[  303.285795][ T4778] loop3: detected capacity change from 0 to 512
[  303.293678][ T4770] EXT4-fs error (device loop4): ext4_orphan_get:1401: comm syz.4.1390: inode #13: comm syz.4.1390: iget: illegal inode #
[  303.349845][ T4778] EXT4-fs (loop3): Ignoring removed mblk_io_submit option
[  303.394317][ T4770] EXT4-fs error (device loop4): ext4_orphan_get:1406: comm syz.4.1390: couldn't read orphan inode 13 (err -117)
[  303.413880][ T4778] EXT4-fs (loop3): Test dummy encryption mode enabled
[  303.415579][ T2178] udevd[2178]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[  303.424970][ T4785] loop0: detected capacity change from 0 to 512
[  303.432991][  T533] udevd[533]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[  303.456015][ T4784] loop2: detected capacity change from 0 to 512
[  303.462343][ T4770] EXT4-fs (loop4): mounted filesystem without journal. Opts: debug,i_version,noblock_validity,abort,mblk_io_submit,data_err=ignore,max_dir_size_kb=0x000000000080222a,delalloc,test_dummy_encryption,,errors=continue. Quota mode: none.
[  303.485810][ T4785] EXT4-fs (loop0): Ignoring removed orlov option
[  303.491736][ T4778] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8802c018, mo2=0103]
[  303.536377][ T4778] EXT4-fs error (device loop3): ext4_orphan_get:1401: comm syz.3.1399: inode #13: comm syz.3.1399: iget: illegal inode #
[  303.549223][ T4784] EXT4-fs (loop2): Ignoring removed orlov option
[  303.553986][ T4770] EXT4-fs (loop4): shut down requested (1)
[  303.581606][ T4785] EXT4-fs (loop0): 1 orphan inode deleted
[  303.591665][ T4778] EXT4-fs error (device loop3): ext4_orphan_get:1406: comm syz.3.1399: couldn't read orphan inode 13 (err -117)
[  303.591719][ T4785] EXT4-fs (loop0): mounted filesystem without journal. Opts: nolazytime,orlov,acl,norecovery,nojournal_checksum,quota,,errors=continue. Quota mode: writeback.
[  303.620906][ T4778] EXT4-fs (loop3): mounted filesystem without journal. Opts: debug,i_version,noblock_validity,abort,mblk_io_submit,data_err=ignore,max_dir_size_kb=0x000000000080222a,delalloc,test_dummy_encryption,,errors=continue. Quota mode: none.
[  303.643523][  T652] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[  303.669672][ T4784] EXT4-fs (loop2): 1 orphan inode deleted
[  303.678421][ T4778] EXT4-fs (loop3): shut down requested (1)
[  303.684624][ T4784] EXT4-fs (loop2): mounted filesystem without journal. Opts: nolazytime,orlov,acl,norecovery,nojournal_checksum,quota,,errors=continue. Quota mode: writeback.
[  303.722007][ T4784] ext4 filesystem being mounted at /282/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  303.742089][ T4785] ext4 filesystem being mounted at /115/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  303.870546][  T652] usb 2-1: Using ep0 maxpacket: 32
[  303.975585][  T346] usb 5-1: new high-speed USB device number 23 using dummy_hcd
[  303.984832][  T652] usb 2-1: config 0 has an invalid interface number: 184 but max is 0
[  303.996984][  T652] usb 2-1: config 0 has no interface number 0
[  304.010936][  T652] usb 2-1: config 0 interface 184 has no altsetting 0
[  304.070886][  T335] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[  304.175721][  T652] usb 2-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  304.194764][  T652] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  304.202776][  T652] usb 2-1: Product: syz
[  304.213614][  T652] usb 2-1: Manufacturer: syz
[  304.228195][  T652] usb 2-1: SerialNumber: syz
[  304.233816][  T652] usb 2-1: config 0 descriptor??
[  304.280427][  T652] smsc75xx v1.0.0
[  304.394745][  T346] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  304.413954][  T346] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  304.436699][  T346] usb 5-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  304.456134][  T346] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  304.464279][  T335] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  304.480268][  T335] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  304.499953][  T346] usb 5-1: config 0 descriptor??
[  304.514850][  T335] usb 4-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  304.534400][  T335] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  304.554645][  T335] usb 4-1: config 0 descriptor??
[  304.560662][  T346] usbhid 5-1:0.0: couldn't find an input interrupt endpoint
[  304.604653][  T335] usbhid 4-1:0.0: couldn't find an input interrupt endpoint
[  304.677891][ T4800] loop0: detected capacity change from 0 to 512
[  304.721151][  T652] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71
[  304.732246][  T652] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -71
[  304.741963][  T652] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): device not ready in smsc75xx_bind
[  304.752352][  T652] smsc75xx: probe of 2-1:0.184 failed with error -71
[  304.760015][  T652] usb 2-1: USB disconnect, device number 15
[  304.776731][ T4800] EXT4-fs (loop0): too many log groups per flexible block group
[  304.784585][ T4800] EXT4-fs (loop0): failed to initialize mballoc (-12)
[  304.792847][ T4800] EXT4-fs (loop0): mount failed
[  304.862859][ T4806] loop2: detected capacity change from 0 to 512
[  304.884912][ T4806] EXT4-fs (loop2): Ignoring removed orlov option
[  305.007668][ T4806] EXT4-fs (loop2): 1 orphan inode deleted
[  305.013673][ T4806] EXT4-fs (loop2): mounted filesystem without journal. Opts: nolazytime,orlov,acl,norecovery,nojournal_checksum,quota,,errors=continue. Quota mode: writeback.
[  305.030253][ T4806] ext4 filesystem being mounted at /283/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  305.061320][ T4806] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1401'.
[  305.709537][ T4812] syz.1.1402[4812] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  305.709630][ T4812] syz.1.1402[4812] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  305.785366][ T4812] loop1: detected capacity change from 0 to 256
[  305.873883][ T4812] exFAT-fs (loop1): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  305.951640][ T4815] loop2: detected capacity change from 0 to 512
[  305.958871][  T335] usb 4-1: USB disconnect, device number 15
[  305.975219][ T4815] EXT4-fs (loop2): Ignoring removed mblk_io_submit option
[  305.998198][ T4815] EXT4-fs (loop2): Test dummy encryption mode enabled
[  306.015800][ T4815] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8802c018, mo2=0103]
[  306.024554][ T4815] EXT4-fs error (device loop2): ext4_orphan_get:1401: comm syz.2.1403: inode #13: comm syz.2.1403: iget: illegal inode #
[  306.037506][ T4815] EXT4-fs error (device loop2): ext4_orphan_get:1406: comm syz.2.1403: couldn't read orphan inode 13 (err -117)
[  306.049737][ T4815] EXT4-fs (loop2): mounted filesystem without journal. Opts: debug,i_version,noblock_validity,abort,mblk_io_submit,data_err=ignore,max_dir_size_kb=0x000000000080222a,delalloc,test_dummy_encryption,,errors=continue. Quota mode: none.
[  306.082945][ T4815] EXT4-fs (loop2): shut down requested (1)
[  306.365665][ T4822] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1404'.
[  307.100736][ T4824] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  307.308125][  T346] usb 5-1: USB disconnect, device number 23
[  307.574757][ T4839] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  307.842221][  T335] usb 3-1: new high-speed USB device number 17 using dummy_hcd
[  308.048829][ T4844] loop4: detected capacity change from 0 to 512
[  308.227746][ T4845] overlayfs: failed to resolve './file0': -2
[  311.374060][ T4844] EXT4-fs (loop4): Ignoring removed orlov option
[  311.424998][ T4844] EXT4-fs (loop4): 1 orphan inode deleted
[  311.430827][ T4844] EXT4-fs (loop4): mounted filesystem without journal. Opts: nolazytime,orlov,acl,norecovery,nojournal_checksum,quota,,errors=continue. Quota mode: writeback.
[  311.447074][ T4844] ext4 filesystem being mounted at /265/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  311.448524][  T335] usb 3-1: device descriptor read/all, error -71
[  311.515914][ T4850] loop0: detected capacity change from 0 to 8192
[  311.873467][ T4858] loop3: detected capacity change from 0 to 512
[  311.907795][ T4856] loop2: detected capacity change from 0 to 8192
[  311.967689][  T340]  loop2: p1 p2[DM] p4
[  311.967926][ T4858] EXT4-fs (loop3): too many log groups per flexible block group
[  311.977023][  T340] loop2: p1 size 196608 extends beyond EOD, 
[  311.979881][ T4858] EXT4-fs (loop3): failed to initialize mballoc (-12)
[  311.981512][  T340] truncated
[  311.996073][ T4858] EXT4-fs (loop3): mount failed
[  312.001705][  T340] loop2: p2 start 4292936063 is beyond EOD, truncated
[  312.076980][ T4868] loop0: detected capacity change from 0 to 512
[  312.109861][ T4868] EXT4-fs (loop0): Ignoring removed orlov option
[  312.133116][  T340] loop2: p4 size 50331648 extends beyond EOD, truncated
[  312.379562][ T4868] EXT4-fs (loop0): 1 orphan inode deleted
[  312.385401][ T4868] EXT4-fs (loop0): mounted filesystem without journal. Opts: nolazytime,orlov,acl,norecovery,nojournal_checksum,quota,,errors=continue. Quota mode: writeback.
[  312.401742][ T4868] ext4 filesystem being mounted at /120/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  312.432112][ T4868] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1414'.
[  312.659838][ T4875] syz.1.1417[4875] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  312.660350][ T4875] syz.1.1417[4875] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  312.786043][ T4875] loop1: detected capacity change from 0 to 256
[  312.826736][ T4875] exFAT-fs (loop1): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  312.855857][ T4856]  loop2: p1 p2[DM] p4
[  312.872726][ T4856] loop2: p1 size 196608 extends beyond EOD, truncated
[  312.965776][ T4856] loop2: p2 start 4292936063 is beyond EOD, truncated
[  312.994118][ T4856] loop2: p4 size 50331648 extends beyond EOD, truncated
[  313.055402][ T4880] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1418'.
[  313.452372][ T4888] xt_CT: No such helper "netbios-ns"
[  313.820537][ T4891] xt_socket: unknown flags 0x50
[  313.869002][ T4887] loop4: detected capacity change from 0 to 8192
[  313.887066][ T4885] loop1: detected capacity change from 0 to 8192
[  313.942932][ T2178] udevd[2178]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[  313.961569][  T533] udevd[533]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  314.055358][ T4896] loop2: detected capacity change from 0 to 8192
[  314.279163][ T4891] loop3: detected capacity change from 0 to 131072
[  314.287845][ T4885]  loop1: p1 p2[DM] p4
[  314.292210][ T4887]  loop4: p1 p2[DM] p4
[  314.296394][ T4887] loop4: p1 size 196608 extends beyond EOD, truncated
[  314.303969][ T4885] loop1: p1 size 196608 extends beyond EOD, truncated
[  314.311416][ T4896]  loop2: p1 p2[DM] p4
[  314.316238][ T4887] loop4: p2 start 4292936063 is beyond EOD, truncated
[  314.319962][ T4885] loop1: p2 start 4292936063 is beyond EOD, truncated
[  314.323618][ T4887] loop4: p4 size 50331648 extends beyond EOD, 
[  314.329820][ T4891] F2FS-fs (loop3): Wrong CP boundary, start(512) end(1536) blocks(0)
[  314.344091][ T4891] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  314.352476][ T4885] loop1: p4 size 50331648 extends beyond EOD, truncated
[  314.357965][ T4896] loop2: p1 size 196608 extends beyond EOD, truncated
[  314.359816][ T4887] truncated
[  314.370574][ T4891] F2FS-fs (loop3): invalid crc value
[  314.445810][ T4891] F2FS-fs (loop3): Found nat_bits in checkpoint
[  314.520998][ T4891] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  314.528183][ T4891] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4
[  314.568540][ T4891] F2FS-fs (loop3): checksum invalid, nid = 4, ino_of_node = 4, 8e2acc4a vs. 159afe7
[  314.579509][ T4891] F2FS-fs (loop3): checksum invalid, nid = 4, ino_of_node = 4, 8e2acc4a vs. 159afe7
[  314.612636][ T4896] loop2: p2 start 4292936063 is beyond EOD, truncated
[  314.660900][ T4896] loop2: p4 size 50331648 extends beyond EOD, truncated
[  314.741441][  T333] udevd[333]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[  314.758173][  T534] udevd[534]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[  314.758249][ T2178] udevd[2178]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[  314.784374][  T340] udevd[340]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[  314.833854][  T533] udevd[533]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[  314.843685][   T26] usb 4-1: new high-speed USB device number 16 using dummy_hcd
[  314.856941][ T2178] udevd[2178]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[  314.969180][ T4909] loop1: detected capacity change from 0 to 8192
[  315.170656][  T533] udevd[533]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[  315.252782][   T26] usb 4-1: Using ep0 maxpacket: 32
[  315.267813][ T4914] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1428'.
[  315.315615][ T4922] syz.0.1429[4922] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  315.315703][ T4922] syz.0.1429[4922] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  315.329231][ T4922] loop0: detected capacity change from 0 to 256
[  315.447428][ T4920] overlayfs: failed to resolve './file0': -2
[  315.485069][ T4922] exFAT-fs (loop0): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  315.538142][   T26] usb 4-1: config 0 has an invalid interface number: 184 but max is 0
[  315.546634][   T26] usb 4-1: config 0 has no interface number 0
[  315.564020][   T26] usb 4-1: config 0 interface 184 has no altsetting 0
[  315.631494][ T4926] loop4: detected capacity change from 0 to 512
[  315.659664][ T4926] EXT4-fs (loop4): Ignoring removed mblk_io_submit option
[  315.669084][ T4926] EXT4-fs (loop4): Test dummy encryption mode enabled
[  315.680392][ T4926] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8802c018, mo2=0103]
[  315.689501][ T4926] EXT4-fs error (device loop4): ext4_orphan_get:1401: comm syz.4.1430: inode #13: comm syz.4.1430: iget: illegal inode #
[  315.706432][ T4926] EXT4-fs error (device loop4): ext4_orphan_get:1406: comm syz.4.1430: couldn't read orphan inode 13 (err -117)
[  315.718671][ T4926] EXT4-fs (loop4): mounted filesystem without journal. Opts: debug,i_version,noblock_validity,abort,mblk_io_submit,data_err=ignore,max_dir_size_kb=0x000000000080222a,delalloc,test_dummy_encryption,,errors=continue. Quota mode: none.
[  315.760988][ T4926] EXT4-fs (loop4): shut down requested (1)
[  315.767091][   T26] usb 4-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  315.782448][   T26] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  315.791221][   T26] usb 4-1: Product: syz
[  315.801454][   T26] usb 4-1: Manufacturer: syz
[  315.806270][   T26] usb 4-1: SerialNumber: syz
[  315.938124][   T26] usb 4-1: config 0 descriptor??
[  316.060614][ T4940] xt_socket: unknown flags 0x50
[  317.333286][ T4940] loop2: detected capacity change from 0 to 131072
[  317.340971][ T4931] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1431'.
[  317.381462][ T4940] F2FS-fs (loop2): Wrong CP boundary, start(512) end(1536) blocks(0)
[  317.389606][ T4940] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  317.398773][ T4940] F2FS-fs (loop2): invalid crc value
[  317.433444][   T26] usb 4-1: can't set config #0, error -71
[  317.472994][   T26] usb 4-1: USB disconnect, device number 16
[  317.521894][ T4940] F2FS-fs (loop2): Found nat_bits in checkpoint
[  317.572804][ T4940] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  317.580008][ T4940] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e4
[  317.611413][ T4938] F2FS-fs (loop2): checksum invalid, nid = 4, ino_of_node = 4, 8e2acc4a vs. 159afe7
[  317.621719][ T4938] F2FS-fs (loop2): checksum invalid, nid = 4, ino_of_node = 4, 8e2acc4a vs. 159afe7
[  318.141001][ T4952] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  318.376443][  T346] usb 5-1: new high-speed USB device number 24 using dummy_hcd
[  318.453295][    T6] usb 3-1: new high-speed USB device number 19 using dummy_hcd
[  318.537103][ T4956] syz.3.1434[4956] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  318.537206][ T4956] syz.3.1434[4956] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  318.551073][ T4956] loop3: detected capacity change from 0 to 256
[  318.615511][ T4956] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  318.709743][    T6] usb 3-1: Using ep0 maxpacket: 32
[  318.934140][ T4959] loop1: detected capacity change from 0 to 128
[  318.986012][    T6] usb 3-1: device descriptor read/all, error -71
[  319.148581][ T4966] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  319.557925][ T4971] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  319.645465][ T4974] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  319.928550][ T4973] loop2: detected capacity change from 0 to 8192
[  320.007081][ T4973]  loop2: p1 p2[DM] p4
[  320.016146][ T4977] loop4: detected capacity change from 0 to 1024
[  320.022594][ T4973] loop2: p1 size 196608 extends beyond EOD, truncated
[  320.072975][ T4977] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:476: comm syz.4.1441: Invalid block bitmap block 0 in block_group 0
[  320.100703][ T4973] loop2: p2 start 4292936063 is beyond EOD, truncated
[  320.110458][ T4977] __quota_error: 25 callbacks suppressed
[  320.110474][ T4977] Quota error (device loop4): write_blk: dquota write failed
[  320.133457][ T4973] loop2: p4 size 50331648 extends beyond EOD, truncated
[  320.148192][ T4977] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  320.177536][ T4977] EXT4-fs error (device loop4): ext4_acquire_dquot:6198: comm syz.4.1441: Failed to acquire dquot type 0
[  320.200468][ T4977] EXT4-fs error (device loop4): ext4_free_blocks:6223: comm syz.4.1441: Freeing blocks not in datazone - block = 0, count = 4096
[  320.215436][ T4977] EXT4-fs error (device loop4): ext4_read_inode_bitmap:140: comm syz.4.1441: Invalid inode bitmap blk 0 in block_group 0
[  320.243303][   T10] Quota error (device loop4): remove_tree: Getting block too big (0 >= 9)
[  320.283132][ T4977] EXT4-fs error (device loop4) in ext4_free_inode:362: Corrupt filesystem
[  320.305609][ T4977] EXT4-fs (loop4): 1 orphan inode deleted
[  320.311420][   T10] EXT4-fs error (device loop4): ext4_release_dquot:6234: comm kworker/u4:1: Failed to release dquot type 0
[  320.319859][ T4977] EXT4-fs (loop4): mounted filesystem without journal. Opts: ��; ,errors=continue. Quota mode: writeback.
[  320.349829][ T4981] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1442'.
[  320.431100][  T340] udevd[340]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[  320.436064][ T4987] loop2: detected capacity change from 0 to 8192
[  320.499303][  T533] udevd[533]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  320.517452][ T4992] syz.4.1445[4992] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  320.517560][ T4992] syz.4.1445[4992] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  320.531003][ T4992] loop4: detected capacity change from 0 to 256
[  320.626843][   T26] usb 4-1: new high-speed USB device number 17 using dummy_hcd
[  320.660887][ T2178] udevd[2178]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[  320.662246][  T533] udevd[533]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  320.686843][ T4992] exFAT-fs (loop4): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  320.764638][ T4999] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  320.871921][   T26] usb 4-1: Using ep0 maxpacket: 32
[  321.024405][   T26] usb 4-1: config 0 has an invalid interface number: 184 but max is 0
[  321.065665][   T26] usb 4-1: config 0 has no interface number 0
[  321.073103][ T5001] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1448'.
[  321.076029][   T26] usb 4-1: config 0 interface 184 has no altsetting 0
[  321.284239][ T5008] syz.0.1450[5008] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  321.284312][ T5008] syz.0.1450[5008] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  321.297953][ T5008] loop0: detected capacity change from 0 to 256
[  321.315787][   T26] usb 4-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  321.324885][   T26] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  321.324938][   T26] usb 4-1: Product: syz
[  321.324952][   T26] usb 4-1: Manufacturer: syz
[  321.324990][   T26] usb 4-1: SerialNumber: syz
[  321.325776][   T26] usb 4-1: config 0 descriptor??
[  321.334646][ T5003] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1449'.
[  321.402235][ T5008] exFAT-fs (loop0): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  321.441173][   T26] smsc75xx v1.0.0
[  321.717277][ T5020] loop0: detected capacity change from 0 to 512
[  322.605637][ T5021] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  322.644042][ T5020] EXT4-fs (loop0): Ignoring removed orlov option
[  322.651365][   T26] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -61
[  322.825445][ T5020] EXT4-fs (loop0): 1 orphan inode deleted
[  322.831258][ T5020] EXT4-fs (loop0): mounted filesystem without journal. Opts: nolazytime,orlov,acl,norecovery,nojournal_checksum,quota,,errors=continue. Quota mode: writeback.
[  322.847314][ T5020] ext4 filesystem being mounted at /129/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  322.921981][   T26] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -61
[  322.937131][   T26] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): device not ready in smsc75xx_bind
[  322.948910][   T26] smsc75xx: probe of 4-1:0.184 failed with error -61
[  322.962097][ T5029] loop1: detected capacity change from 0 to 1024
[  322.969734][   T26] usb 4-1: USB disconnect, device number 17
[  323.076264][ T5032] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  323.220150][ T5029] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:476: comm syz.1.1456: Invalid block bitmap block 0 in block_group 0
[  323.304637][ T5029] Quota error (device loop1): write_blk: dquota write failed
[  323.332679][ T5029] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  323.368627][ T5029] EXT4-fs error (device loop1): ext4_acquire_dquot:6198: comm syz.1.1456: Failed to acquire dquot type 0
[  323.389966][ T5029] EXT4-fs error (device loop1): ext4_free_blocks:6223: comm syz.1.1456: Freeing blocks not in datazone - block = 0, count = 4096
[  323.444167][ T5029] EXT4-fs error (device loop1): ext4_read_inode_bitmap:140: comm syz.1.1456: Invalid inode bitmap blk 0 in block_group 0
[  323.457201][ T5029] EXT4-fs error (device loop1) in ext4_free_inode:362: Corrupt filesystem
[  323.465970][  T332] Quota error (device loop1): remove_tree: Getting block too big (0 >= 9)
[  323.474716][ T5029] EXT4-fs (loop1): 1 orphan inode deleted
[  323.480457][ T5029] EXT4-fs (loop1): mounted filesystem without journal. Opts: ��; ,errors=continue. Quota mode: writeback.
[  323.482184][  T332] EXT4-fs error (device loop1): ext4_release_dquot:6234: comm kworker/u4:3: Failed to release dquot type 0
[  323.558488][ T5039] xt_CT: No such helper "netbios-ns"
[  324.057568][ T5046] syz.1.1459[5046] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  324.057666][ T5046] syz.1.1459[5046] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  324.071068][ T5046] loop1: detected capacity change from 0 to 256
[  324.167113][ T5048] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  324.219370][ T5046] exFAT-fs (loop1): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  324.425614][ T5054] loop0: detected capacity change from 0 to 8192
[  324.480818][ T5050] syz.1.1462[5050] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  324.480897][ T5050] syz.1.1462[5050] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  324.493809][ T5050] loop1: detected capacity change from 0 to 256
[  324.937066][ T5062] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1465'.
[  324.958189][ T5050] exFAT-fs (loop1): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  324.980219][ T5054]  loop0: p1 p2[DM] p4
[  325.066082][ T5054] loop0: p1 size 196608 extends beyond EOD, truncated
[  325.073545][ T5054] loop0: p2 start 4292936063 is beyond EOD, truncated
[  325.080387][ T5054] loop0: p4 size 50331648 extends beyond EOD, truncated
[  326.555590][ T5069] loop4: detected capacity change from 0 to 131072
[  326.573006][ T5074] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  326.676355][ T5069] F2FS-fs (loop4): Wrong CP boundary, start(512) end(1536) blocks(0)
[  326.684578][ T5069] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  326.694715][ T5069] F2FS-fs (loop4): invalid crc value
[  326.864354][ T5069] F2FS-fs (loop4): Found nat_bits in checkpoint
[  326.903822][ T5069] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  326.910972][ T5069] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e4
[  326.975214][ T5065] F2FS-fs (loop4): checksum invalid, nid = 4, ino_of_node = 4, 8e2acc4a vs. 159afe7
[  326.985902][ T5065] F2FS-fs (loop4): checksum invalid, nid = 4, ino_of_node = 4, 8e2acc4a vs. 159afe7
[  327.079743][ T5084] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  327.156285][ T5081] loop0: detected capacity change from 0 to 1024
[  327.282045][   T26] usb 5-1: new high-speed USB device number 25 using dummy_hcd
[  327.328711][ T2178] udevd[2178]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory
[  327.340121][  T533] udevd[533]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory
[  327.409055][ T5087] syz.3.1472[5087] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  327.409159][ T5087] syz.3.1472[5087] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  327.422769][ T5087] loop3: detected capacity change from 0 to 256
[  327.423836][ T5088] loop1: detected capacity change from 0 to 8192
[  327.448359][ T5081] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:476: comm syz.0.1470: Invalid block bitmap block 0 in block_group 0
[  327.462096][ T5081] Quota error (device loop0): write_blk: dquota write failed
[  327.469859][ T5081] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  327.473023][ T5087] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  327.480528][ T2178]  loop1: p1 p2[DM] p4
[  327.495765][ T5081] EXT4-fs error (device loop0): ext4_acquire_dquot:6198: comm syz.0.1470: Failed to acquire dquot type 0
[  327.497880][ T2178] loop1: p1 size 196608 extends beyond EOD, truncated
[  327.515617][ T5081] EXT4-fs error (device loop0): ext4_free_blocks:6223: comm syz.0.1470: Freeing blocks not in datazone - block = 0, count = 4096
[  327.521311][ T2178] loop1: p2 start 4292936063 is beyond EOD, truncated
[  327.549156][ T5081] EXT4-fs error (device loop0): ext4_read_inode_bitmap:140: comm syz.0.1470: Invalid inode bitmap blk 0 in block_group 0
[  327.563955][ T2178] loop1: p4 size 50331648 extends beyond EOD, truncated
[  327.572106][  T332] Quota error (device loop0): remove_tree: Getting block too big (0 >= 9)
[  327.581190][ T5081] EXT4-fs error (device loop0) in ext4_free_inode:362: Corrupt filesystem
[  327.591352][  T332] EXT4-fs error (device loop0): ext4_release_dquot:6234: comm kworker/u4:3: Failed to release dquot type 0
[  327.595019][ T5081] EXT4-fs (loop0): 1 orphan inode deleted
[  327.607839][ T5088]  loop1: p1 p2[DM] p4
[  327.608574][ T5081] EXT4-fs (loop0): mounted filesystem without journal. Opts: ��; ,errors=continue. Quota mode: writeback.
[  327.612786][ T5088] loop1: p1 size 196608 extends beyond EOD, 
[  327.624939][   T26] usb 5-1: Using ep0 maxpacket: 32
[  327.641794][ T5088] truncated
[  327.647599][ T5094] loop3: detected capacity change from 0 to 512
[  327.695239][ T5094] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  327.710801][ T5088] loop1: p2 start 4292936063 is beyond EOD, truncated
[  327.717775][ T5088] loop1: p4 size 50331648 extends beyond EOD, truncated
[  327.731958][ T5094] EXT4-fs (loop3): 1 truncate cleaned up
[  327.746795][ T5094] EXT4-fs (loop3): mounted filesystem without journal. Opts: init_itable=0x0000000000000000,jqfmt=vfsold,debug_want_extra_isize=0x000000000000006a,user_xattr,errors=remount-ro,quota,. Quota mode: writeback.
[  327.776158][ T5099] loop0: detected capacity change from 0 to 512
[  327.806240][   T26] usb 5-1: config 0 has an invalid interface number: 184 but max is 0
[  327.814432][   T26] usb 5-1: config 0 has no interface number 0
[  327.870651][   T26] usb 5-1: config 0 interface 184 has no altsetting 0
[  327.882298][ T5099] EXT4-fs (loop0): Ignoring removed mblk_io_submit option
[  327.894349][ T5099] EXT4-fs (loop0): Test dummy encryption mode enabled
[  327.902626][ T5099] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8802c018, mo2=0103]
[  327.911668][  T533] udevd[533]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[  327.911922][  T340] udevd[340]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[  328.463752][ T5108] xt_CT: No such helper "netbios-ns"
[  328.675234][ T5110] xt_socket: unknown flags 0x50
[  329.758081][ T5110] loop3: detected capacity change from 0 to 131072
[  330.771418][ T5099] EXT4-fs: error -4 creating inode table initialization thread
[  330.797894][ T5117] loop1: detected capacity change from 0 to 128
[  330.804381][ T5099] EXT4-fs (loop0): mount failed
[  330.815753][ T5110] F2FS-fs (loop3): Wrong CP boundary, start(512) end(1536) blocks(0)
[  330.823886][ T5110] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  330.833037][ T5110] F2FS-fs (loop3): invalid crc value
[  330.834513][   T26] usb 5-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  330.850325][ T5110] F2FS-fs (loop3): Found nat_bits in checkpoint
[  330.857275][   T26] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  330.872951][   T26] usb 5-1: Product: syz
[  330.882557][   T26] usb 5-1: config 0 descriptor??
[  330.891834][ T5110] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  330.898889][ T5110] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4
[  330.901529][   T26] usb 5-1: can't set config #0, error -71
[  330.924458][ T5109] F2FS-fs (loop3): checksum invalid, nid = 4, ino_of_node = 4, 8e2acc4a vs. 159afe7
[  330.934616][ T5109] F2FS-fs (loop3): checksum invalid, nid = 4, ino_of_node = 4, 8e2acc4a vs. 159afe7
[  330.938560][  T533] udevd[533]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[  330.960644][ T2178] udevd[2178]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[  331.060568][   T26] usb 5-1: USB disconnect, device number 25
[  331.093919][ T5126] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  331.263982][ T5128] loop0: detected capacity change from 0 to 512
[  331.351732][ T5128] EXT4-fs (loop0): Ignoring removed orlov option
[  331.572525][ T5128] EXT4-fs (loop0): 1 orphan inode deleted
[  331.578371][ T5128] EXT4-fs (loop0): mounted filesystem without journal. Opts: nolazytime,orlov,acl,norecovery,nojournal_checksum,quota,,errors=continue. Quota mode: writeback.
[  331.594781][ T5128] ext4 filesystem being mounted at /134/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  332.331893][   T30] audit: type=1326 audit(1756971645.469:2292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5134 comm="syz.0.1484" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcc47cddbe9 code=0x7ffc0000
[  332.423399][   T30] audit: type=1326 audit(1756971645.469:2293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5134 comm="syz.0.1484" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcc47cddbe9 code=0x7ffc0000
[  332.503898][   T30] audit: type=1326 audit(1756971645.500:2294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5134 comm="syz.0.1484" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcc47cddbe9 code=0x7ffc0000
[  333.029470][   T30] audit: type=1326 audit(1756971645.500:2295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5134 comm="syz.0.1484" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcc47cddbe9 code=0x7ffc0000
[  333.304485][   T30] audit: type=1326 audit(1756971645.500:2296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5134 comm="syz.0.1484" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcc47cddbe9 code=0x7ffc0000
[  333.444822][ T5145] loop2: detected capacity change from 0 to 512
[  333.453490][   T30] audit: type=1326 audit(1756971645.500:2297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5134 comm="syz.0.1484" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcc47cddbe9 code=0x7ffc0000
[  333.531239][   T30] audit: type=1326 audit(1756971645.500:2298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5134 comm="syz.0.1484" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcc47cddbe9 code=0x7ffc0000
[  333.555025][   T30] audit: type=1326 audit(1756971645.500:2299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5134 comm="syz.0.1484" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcc47cddbe9 code=0x7ffc0000
[  333.578979][   T30] audit: type=1326 audit(1756971645.500:2300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5134 comm="syz.0.1484" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fcc47cddbe9 code=0x7ffc0000
[  333.603607][   T30] audit: type=1326 audit(1756971645.500:2301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5134 comm="syz.0.1484" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcc47cddbe9 code=0x7ffc0000
[  333.758921][ T5145] EXT4-fs (loop2): too many log groups per flexible block group
[  333.838050][ T5157] xt_CT: No such helper "netbios-ns"
[  334.054880][ T5145] EXT4-fs (loop2): failed to initialize mballoc (-12)
[  334.073796][ T5145] EXT4-fs (loop2): mount failed
[  334.234325][ T5159] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1489'.
[  334.418561][ T5164] syz.1.1490[5164] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  334.419331][ T5164] syz.1.1490[5164] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  334.451955][ T5164] loop1: detected capacity change from 0 to 256
[  334.625131][ T5164] exFAT-fs (loop1): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  334.750348][ T5168] loop0: detected capacity change from 0 to 512
[  334.760366][ T5168] EXT4-fs (loop0): Ignoring removed mblk_io_submit option
[  334.775813][ T5168] EXT4-fs (loop0): Test dummy encryption mode enabled
[  334.784113][ T5168] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8802c018, mo2=0103]
[  334.796199][ T5168] EXT4-fs error (device loop0): ext4_orphan_get:1401: comm syz.0.1492: inode #13: comm syz.0.1492: iget: illegal inode #
[  334.810610][ T5168] EXT4-fs error (device loop0): ext4_orphan_get:1406: comm syz.0.1492: couldn't read orphan inode 13 (err -117)
[  334.823391][ T5168] EXT4-fs (loop0): mounted filesystem without journal. Opts: debug,i_version,noblock_validity,abort,mblk_io_submit,data_err=ignore,max_dir_size_kb=0x000000000080222a,delalloc,test_dummy_encryption,,errors=continue. Quota mode: none.
[  334.847083][ T5172] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1491'.
[  334.919596][ T5168] EXT4-fs (loop0): shut down requested (1)
[  336.401444][ T5185] loop4: detected capacity change from 0 to 8192
[  337.092639][ T5188] xt_socket: unknown flags 0x50
[  337.249651][  T533]  loop4: p1 p2[DM] p4
[  337.254028][  T533] loop4: p1 size 196608 extends beyond EOD, truncated
[  337.262094][  T533] loop4: p2 start 4292936063 is beyond EOD, truncated
[  337.269366][  T533] loop4: p4 size 50331648 extends beyond EOD, truncated
[  337.555499][ T5188] loop1: detected capacity change from 0 to 131072
[  337.572507][ T5194] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  337.676994][ T5188] F2FS-fs (loop1): Wrong CP boundary, start(512) end(1536) blocks(0)
[  337.685138][ T5188] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  337.695989][ T5188] F2FS-fs (loop1): invalid crc value
[  337.702006][   T26] usb 4-1: new high-speed USB device number 19 using dummy_hcd
[  337.812786][ T5185]  loop4: p1 p2[DM] p4
[  337.836935][ T5185] loop4: p1 size 196608 extends beyond EOD, truncated
[  337.846155][ T5188] F2FS-fs (loop1): Found nat_bits in checkpoint
[  337.878099][  T346] usb 1-1: new high-speed USB device number 18 using dummy_hcd
[  337.883163][ T5185] loop4: p2 start 4292936063 is beyond EOD, truncated
[  337.893079][ T5185] loop4: p4 size 50331648 extends beyond EOD, truncated
[  337.893537][ T5188] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  337.907124][ T5188] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e4
[  337.928517][ T5187] F2FS-fs (loop1): checksum invalid, nid = 4, ino_of_node = 4, 8e2acc4a vs. 159afe7
[  337.967277][ T5187] F2FS-fs (loop1): checksum invalid, nid = 4, ino_of_node = 4, 8e2acc4a vs. 159afe7
[  338.001617][  T340] udevd[340]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[  338.033044][  T533] udevd[533]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[  338.078358][  T533] udevd[533]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[  338.093339][  T340] udevd[340]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[  338.094830][   T26] usb 4-1: Using ep0 maxpacket: 32
[  338.445155][ T5214] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  338.504127][   T26] usb 4-1: config 0 has an invalid interface number: 184 but max is 0
[  338.522464][   T26] usb 4-1: config 0 has no interface number 0
[  338.562680][   T26] usb 4-1: config 0 interface 184 has no altsetting 0
[  338.627548][    T6] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[  338.717864][ T5200] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1499'.
[  338.742577][   T26] usb 4-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  338.754332][   T26] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  338.762518][   T26] usb 4-1: Product: syz
[  338.766785][   T26] usb 4-1: Manufacturer: syz
[  338.771626][   T26] usb 4-1: SerialNumber: syz
[  338.894434][   T26] usb 4-1: config 0 descriptor??
[  338.955526][ T5221] syz.2.1504[5221] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  338.956523][ T5221] syz.2.1504[5221] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  339.007514][ T5221] loop2: detected capacity change from 0 to 256
[  339.460793][ T5222] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  339.588300][    T6] usb 2-1: Using ep0 maxpacket: 32
[  340.494246][   T26] smsc75xx v1.0.0
[  340.754337][ T5221] exFAT-fs (loop2): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  340.809047][   T26] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): usbnet_get_endpoints failed: -71
[  340.819277][   T26] smsc75xx: probe of 4-1:0.184 failed with error -71
[  340.912452][    T6] usb 2-1: device descriptor read/all, error -71
[  341.552448][ T5233] xt_CT: No such helper "netbios-ns"
[  341.905847][ T5234] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  342.227718][ T5236] loop2: detected capacity change from 0 to 512
[  342.297063][   T26] usb 4-1: USB disconnect, device number 19
[  342.417392][ T5250] xt_CT: No such helper "netbios-ns"
[  342.659291][ T5236] EXT4-fs (loop2): too many log groups per flexible block group
[  342.670233][ T5244] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1513'.
[  342.702213][ T5236] EXT4-fs (loop2): failed to initialize mballoc (-12)
[  342.731555][ T5236] EXT4-fs (loop2): mount failed
[  342.746777][ T5254] loop1: detected capacity change from 0 to 512
[  342.766704][ T5254] EXT4-fs (loop1): Ignoring removed mblk_io_submit option
[  342.774701][ T5254] EXT4-fs (loop1): Test dummy encryption mode enabled
[  343.045528][ T5262] loop0: detected capacity change from 0 to 512
[  345.822688][ T5254] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8802c018, mo2=0103]
[  345.840503][ T5262] EXT4-fs (loop0): Ignoring removed orlov option
[  345.849243][ T5254] EXT4-fs: error -4 creating inode table initialization thread
[  345.857571][ T5254] EXT4-fs (loop1): mount failed
[  345.865278][ T5262] EXT4-fs (loop0): 1 orphan inode deleted
[  345.871050][ T5262] EXT4-fs (loop0): mounted filesystem without journal. Opts: nolazytime,orlov,acl,norecovery,nojournal_checksum,quota,,errors=continue. Quota mode: writeback.
[  345.887112][ T5262] ext4 filesystem being mounted at /145/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  347.417295][ T5278] xt_socket: unknown flags 0x50
[  347.966764][ T5278] loop4: detected capacity change from 0 to 131072
[  347.974225][ T5278] F2FS-fs (loop4): Wrong CP boundary, start(512) end(1536) blocks(0)
[  347.982363][ T5278] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  347.993809][ T5278] F2FS-fs (loop4): invalid crc value
[  348.160801][ T5278] F2FS-fs (loop4): Found nat_bits in checkpoint
[  348.260883][ T5296] loop1: detected capacity change from 0 to 512
[  349.157443][ T5297] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  349.323303][ T5296] EXT4-fs (loop1): Ignoring removed orlov option
[  349.513260][ T5296] EXT4-fs (loop1): 1 orphan inode deleted
[  349.519028][ T5296] EXT4-fs (loop1): mounted filesystem without journal. Opts: nolazytime,orlov,acl,norecovery,nojournal_checksum,quota,,errors=continue. Quota mode: writeback.
[  349.535086][ T5296] ext4 filesystem being mounted at /331/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  349.669975][ T5309] xt_socket: unknown flags 0x50
[  350.015460][ T5300] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1524'.
[  350.286048][ T5309] loop2: detected capacity change from 0 to 131072
[  350.506320][ T5320] loop3: detected capacity change from 0 to 512
[  351.200561][ T5321] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  353.649552][ T5323] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  353.688368][ T5309] F2FS-fs (loop2): Wrong CP boundary, start(512) end(1536) blocks(0)
[  353.696512][ T5309] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  353.707703][ T5309] F2FS-fs (loop2): invalid crc value
[  353.741900][ T5320] EXT4-fs (loop3): Ignoring removed orlov option
[  353.928715][ T5327] loop0: detected capacity change from 0 to 512
[  354.000461][ T5327] EXT4-fs (loop0): Ignoring removed mblk_io_submit option
[  354.009877][ T5327] EXT4-fs (loop0): Test dummy encryption mode enabled
[  354.020211][ T5309] F2FS-fs (loop2): Found nat_bits in checkpoint
[  354.033951][ T5320] EXT4-fs (loop3): 1 orphan inode deleted
[  354.039763][ T5320] EXT4-fs (loop3): mounted filesystem without journal. Opts: nolazytime,orlov,acl,norecovery,nojournal_checksum,quota,,errors=continue. Quota mode: writeback.
[  354.055749][ T5320] ext4 filesystem being mounted at /291/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  354.063513][ T5309] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  354.073244][ T5309] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e4
[  354.075024][ T5327] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8802c018, mo2=0103]
[  354.112257][ T5327] EXT4-fs error (device loop0): ext4_orphan_get:1401: comm syz.0.1531: inode #13: comm syz.0.1531: iget: illegal inode #
[  354.152251][   T26] usb 3-1: new high-speed USB device number 21 using dummy_hcd
[  354.160858][ T5327] EXT4-fs error (device loop0): ext4_orphan_get:1406: comm syz.0.1531: couldn't read orphan inode 13 (err -117)
[  354.226168][ T5327] EXT4-fs (loop0): mounted filesystem without journal. Opts: debug,i_version,noblock_validity,abort,mblk_io_submit,data_err=ignore,max_dir_size_kb=0x000000000080222a,delalloc,test_dummy_encryption,,errors=continue. Quota mode: none.
[  354.306853][ T5343] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  354.610588][ T5327] EXT4-fs (loop0): shut down requested (1)
[  354.821481][ T5349] xt_CT: No such helper "netbios-ns"
[  355.115591][   T26] usb 3-1: device not accepting address 21, error -71
[  355.665081][    T6] usb 1-1: new high-speed USB device number 19 using dummy_hcd
[  355.699276][ T5366] loop3: detected capacity change from 0 to 8192
[  356.005964][ T5371] loop1: detected capacity change from 0 to 512
[  356.013762][ T5367] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  356.091466][ T5374] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  356.288285][ T5371] EXT4-fs (loop1): Ignoring removed mblk_io_submit option
[  356.323009][ T5371] EXT4-fs (loop1): Test dummy encryption mode enabled
[  356.331034][ T5372] loop2: detected capacity change from 0 to 512
[  356.344608][ T5371] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8802c018, mo2=0103]
[  356.356951][ T5371] EXT4-fs error (device loop1): ext4_orphan_get:1401: comm syz.1.1542: inode #13: comm syz.1.1542: iget: illegal inode #
[  356.370110][ T5371] EXT4-fs error (device loop1): ext4_orphan_get:1406: comm syz.1.1542: couldn't read orphan inode 13 (err -117)
[  356.382445][ T5371] EXT4-fs (loop1): mounted filesystem without journal. Opts: debug,i_version,noblock_validity,abort,mblk_io_submit,data_err=ignore,max_dir_size_kb=0x000000000080222a,delalloc,test_dummy_encryption,,errors=continue. Quota mode: none.
[  356.406519][ T5372] EXT4-fs (loop2): Ignoring removed orlov option
[  356.460910][ T5371] EXT4-fs (loop1): shut down requested (1)
[  356.475087][    T6] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  356.497763][    T6] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  356.511307][    T6] usb 1-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  356.520905][    T6] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  356.543345][    T6] usb 1-1: config 0 descriptor??
[  356.570507][ T5372] EXT4-fs (loop2): 1 orphan inode deleted
[  356.638013][    T6] usbhid 1-1:0.0: couldn't find an input interrupt endpoint
[  356.692329][ T5372] EXT4-fs (loop2): mounted filesystem without journal. Opts: nolazytime,orlov,acl,norecovery,nojournal_checksum,quota,,errors=continue. Quota mode: writeback.
[  356.719236][ T5385] netlink: 124 bytes leftover after parsing attributes in process `syz.4.1543'.
[  356.970413][ T5372] ext4 filesystem being mounted at /312/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  356.989355][    T6] usb 1-1: USB disconnect, device number 19
[  357.035781][ T5372] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1535'.
[  357.084938][ T5391] loop0: detected capacity change from 0 to 512
[  357.131840][  T652] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[  357.143502][ T5391] EXT4-fs (loop0): Ignoring removed mblk_io_submit option
[  357.151631][ T5391] EXT4-fs (loop0): Test dummy encryption mode enabled
[  357.199896][ T5394] overlayfs: failed to resolve './file0': -2
[  357.254184][ T5391] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8802c018, mo2=0103]
[  357.311300][ T5391] EXT4-fs error (device loop0): ext4_orphan_get:1401: comm syz.0.1546: inode #13: comm syz.0.1546: iget: illegal inode #
[  357.408438][ T5391] EXT4-fs error (device loop0): ext4_orphan_get:1406: comm syz.0.1546: couldn't read orphan inode 13 (err -117)
[  357.437040][ T5391] EXT4-fs (loop0): mounted filesystem without journal. Opts: debug,i_version,noblock_validity,abort,mblk_io_submit,data_err=ignore,max_dir_size_kb=0x000000000080222a,delalloc,test_dummy_encryption,,errors=continue. Quota mode: none.
[  357.483715][ T5391] EXT4-fs (loop0): shut down requested (1)
[  357.541440][  T652] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  357.551577][  T652] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  357.564655][  T652] usb 2-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  357.573915][  T652] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  357.582718][  T652] usb 2-1: config 0 descriptor??
[  357.618176][  T652] usbhid 2-1:0.0: couldn't find an input interrupt endpoint
[  357.770036][    T6] usb 5-1: new high-speed USB device number 26 using dummy_hcd
[  357.918676][   T26] usb 1-1: new high-speed USB device number 20 using dummy_hcd
[  357.926828][ T5409] syz.2.1548[5409] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  357.926915][ T5409] syz.2.1548[5409] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  357.953598][ T5409] loop2: detected capacity change from 0 to 256
[  357.986585][ T5409] exFAT-fs (loop2): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  358.008638][    T6] usb 5-1: Using ep0 maxpacket: 32
[  358.095150][ T5411] loop3: detected capacity change from 0 to 512
[  358.180249][ T5411] EXT4-fs (loop3): Ignoring removed orlov option
[  358.273177][ T5411] EXT4-fs (loop3): 1 orphan inode deleted
[  358.279153][ T5411] EXT4-fs (loop3): mounted filesystem without journal. Opts: nolazytime,orlov,acl,norecovery,nojournal_checksum,quota,,errors=continue. Quota mode: writeback.
[  358.295522][ T5411] ext4 filesystem being mounted at /299/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  358.375889][ T5411] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1550'.
[  358.627412][   T26] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  359.041974][   T26] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  359.055163][   T26] usb 1-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  359.064354][   T26] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  359.076080][   T26] usb 1-1: config 0 descriptor??
[  359.123433][   T26] usbhid 1-1:0.0: couldn't find an input interrupt endpoint
[  359.147104][  T652] usb 2-1: USB disconnect, device number 18
[  359.158903][ T5415] loop3: detected capacity change from 0 to 8192
[  359.165361][    T6] usb 5-1: config 0 has an invalid interface number: 184 but max is 0
[  359.177103][    T6] usb 5-1: config 0 has no interface number 0
[  359.191126][    T6] usb 5-1: config 0 interface 184 has no altsetting 0
[  361.268463][ T5425] loop3: detected capacity change from 0 to 512
[  361.504915][ T5425] EXT4-fs (loop3): Ignoring removed orlov option
[  361.688185][ T5425] EXT4-fs (loop3): 1 orphan inode deleted
[  361.693987][ T5425] EXT4-fs (loop3): mounted filesystem without journal. Opts: nolazytime,orlov,acl,norecovery,nojournal_checksum,quota,,errors=continue. Quota mode: writeback.
[  361.710359][ T5425] ext4 filesystem being mounted at /301/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  362.268052][  T652] usb 1-1: USB disconnect, device number 20
[  362.418257][    T6] usb 5-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  362.789111][    T6] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  362.797179][    T6] usb 5-1: Product: syz
[  362.801356][    T6] usb 5-1: Manufacturer: syz
[  362.806747][    T6] usb 5-1: config 0 descriptor??
[  458.054823][    C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[  458.061914][    C0] rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P5433/1:b..l
[  458.069826][    C0] 	(detected by 0, t=10002 jiffies, g=30041, q=187)
[  458.076418][    C0] task:syz.4.1558      state:R  running task     stack:26328 pid: 5433 ppid:   285 flags:0x00004000
[  458.087230][    C0] Call Trace:
[  458.090523][    C0]  <TASK>
[  458.093488][    C0]  __schedule+0xb6e/0x14c0
[  458.097932][    C0]  ? release_firmware_map_entry+0x190/0x190
[  458.103933][    C0]  ? file_remove_privs+0x590/0x590
[  458.109054][    C0]  ? __set_page_dirty_no_writeback+0xff/0x130
[  458.115135][    C0]  preempt_schedule_irq+0x9b/0x110
[  458.120262][    C0]  ? __cond_resched+0xb0/0xb0
[  458.124944][    C0]  irqentry_exit_cond_resched+0x29/0x30
[  458.130494][    C0]  irqentry_exit+0x37/0x40
[  458.134913][    C0]  sysvec_apic_timer_interrupt+0x64/0xc0
[  458.140553][    C0]  asm_sysvec_apic_timer_interrupt+0x1b/0x20
[  458.146544][    C0] RIP: 0010:__rcu_read_unlock+0x0/0xa0
[  458.152011][    C0] Code: b6 04 08 84 c0 75 05 ff 03 5b 5d c3 89 d9 80 e1 07 80 c1 03 38 c1 7c ef 48 89 df e8 0a 68 50 00 eb e5 0f 1f 84 00 00 00 00 00 <55> 48 89 e5 41 57 41 56 53 49 be 00 00 00 00 00 fc ff df 65 48 8b
[  458.171619][    C0] RSP: 0018:ffffc900017d7458 EFLAGS: 00000287
[  458.177695][    C0] RAX: ffffffff819d3e0b RBX: ffff888111d6e5c8 RCX: 0000000000080000
[  458.185679][    C0] RDX: ffffc90003754000 RSI: 0000000000009b2d RDI: 0000000000009b2e
[  458.193658][    C0] RBP: ffffc900017d7670 R08: ffffc900017d78f8 R09: ffffed1022cb8359
[  458.201644][    C0] R10: ffffed1022cb8359 R11: 1ffff11022cb8358 R12: dffffc0000000000
[  458.209620][    C0] R13: ffff888118362780 R14: 000020000009d000 R15: 0000000000000200
[  458.217603][    C0]  ? do_handle_mm_fault+0x18b/0x1d50
[  458.222917][    C0]  ? do_handle_mm_fault+0x191/0x1d50
[  458.228214][    C0]  ? __kasan_check_write+0x14/0x20
[  458.233347][    C0]  ? __this_cpu_preempt_check+0x13/0x20
[  458.238911][    C0]  ? numa_migrate_prep+0xd0/0xd0
[  458.243948][    C0]  ? down_read_trylock+0x341/0x660
[  458.249073][    C0]  ? __init_rwsem+0x1d0/0x1d0
[  458.253763][    C0]  ? __schedule+0xb76/0x14c0
[  458.258377][    C0]  ? __find_vma+0x30/0x150
[  458.262812][    C0]  do_user_addr_fault+0x841/0x1180
[  458.267941][    C0]  ? do_kern_addr_fault+0x80/0x80
[  458.272985][    C0]  ? page_cache_prev_miss+0x270/0x270
[  458.278371][    C0]  ? pagevec_lru_move_fn+0x3ec/0x490
[  458.283716][    C0]  exc_page_fault+0x51/0xb0
[  458.288443][    C0]  asm_exc_page_fault+0x27/0x30
[  458.293312][    C0] RIP: 0010:copy_user_enhanced_fast_string+0xe/0x40
[  458.299910][    C0] Code: 89 d1 c1 e9 03 83 e2 07 f3 48 a5 89 d1 f3 a4 31 c0 0f 01 ca c3 90 90 90 90 90 90 90 0f 01 cb 83 fa 40 0f 82 70 ff ff ff 89 d1 <f3> a4 31 c0 0f 01 ca c3 90 90 90 90 90 90 90 90 90 90 89 d1 83 f8
[  458.319526][    C0] RSP: 0018:ffffc900017d79a8 EFLAGS: 00050206
[  458.325606][    C0] RAX: ffffffff824a5601 RBX: ffff88812bc87000 RCX: 0000000000000080
[  458.333584][    C0] RDX: 0000000000001000 RSI: ffff88812bc87f80 RDI: 000020000009d000
[  458.341596][    C0] RBP: ffffc900017d7a60 R08: dffffc0000000000 R09: ffffed1025791000
[  458.349586][    C0] R10: 0000000000000000 R11: 0000000000000200 R12: 0000000000001000
[  458.357567][    C0] R13: 0000000000001000 R14: ffff8881166270ff R15: 000020000009c080
[  458.365594][    C0]  ? copy_page_to_iter+0x381/0x820
[  458.370729][    C0]  ? copy_page_to_iter+0x3e4/0x820
[  458.375854][    C0]  shmem_file_read_iter+0x4f6/0x830
[  458.381064][    C0]  do_iter_readv_writev+0x491/0x600
[  458.386268][    C0]  ? generic_file_rw_checks+0x2a0/0x2a0
[  458.391820][    C0]  ? __kasan_check_read+0x11/0x20
[  458.396879][    C0]  ? fsnotify_perm+0x269/0x5b0
[  458.401678][    C0]  ? security_file_permission+0x83/0xa0
[  458.407226][    C0]  do_iter_read+0x1fa/0x790
[  458.411760][    C0]  do_preadv+0x1f6/0x330
[  458.416003][    C0]  ? _raw_spin_unlock+0x4d/0x70
[  458.420864][    C0]  ? vfs_writev+0x540/0x540
[  458.425371][    C0]  ? __switch_to_asm+0x3a/0x60
[  458.430140][    C0]  ? irqentry_exit+0x37/0x40
[  458.434739][    C0]  ? __kasan_check_write+0x14/0x20
[  458.439876][    C0]  ? switch_fpu_return+0x15d/0x2c0
[  458.444996][    C0]  __x64_sys_preadv+0x9e/0xb0
[  458.449699][    C0]  x64_sys_call+0x4f8/0x9a0
[  458.454212][    C0]  do_syscall_64+0x4c/0xa0
[  458.458652][    C0]  ? clear_bhb_loop+0x50/0xa0
[  458.463343][    C0]  ? clear_bhb_loop+0x50/0xa0
[  458.468031][    C0]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  458.473941][    C0] RIP: 0033:0x7f540d320be9
[  458.478367][    C0] RSP: 002b:00007f540bd89038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[  458.486790][    C0] RAX: ffffffffffffffda RBX: 00007f540d557fa0 RCX: 00007f540d320be9
[  458.494765][    C0] RDX: 000000000000003e RSI: 00002000000015c0 RDI: 0000000000000005
[  458.502766][    C0] RBP: 00007f540d3a3e19 R08: 0000000000000000 R09: 0000000000000000
[  458.510844][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  458.518908][    C0] R13: 00007f540d558038 R14: 00007f540d557fa0 R15: 00007ffc07182ca8
[  458.526902][    C0]  </TASK>
[  458.529926][    C0] rcu: rcu_preempt kthread starved for 10047 jiffies! g30041 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1
[  458.541117][    C0] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[  458.551094][    C0] rcu: RCU grace-period kthread stack dump:
[  458.556983][    C0] task:rcu_preempt     state:R  running task     stack:28720 pid:   14 ppid:     2 flags:0x00004000
[  458.567763][    C0] Call Trace:
[  458.571056][    C0]  <TASK>
[  458.574004][    C0]  __schedule+0xb6e/0x14c0
[  458.578445][    C0]  ? release_firmware_map_entry+0x190/0x190
[  458.584364][    C0]  ? _raw_spin_unlock_irqrestore+0x5b/0x80
[  458.590180][    C0]  ? __mod_timer+0x7ae/0xb30
[  458.594779][    C0]  schedule+0x11e/0x1e0
[  458.598941][    C0]  schedule_timeout+0x12c/0x2e0
[  458.603792][    C0]  ? console_conditional_schedule+0x30/0x30
[  458.609690][    C0]  ? _raw_spin_lock_irqsave+0xb0/0x110
[  458.615163][    C0]  ? update_process_times+0x200/0x200
[  458.620545][    C0]  ? prepare_to_swait_event+0x308/0x320
[  458.626095][    C0]  rcu_gp_fqs_loop+0x293/0xf60
[  458.630861][    C0]  ? debug_smp_processor_id+0x17/0x20
[  458.636238][    C0]  ? __note_gp_changes+0x4e2/0x9e0
[  458.641357][    C0]  ? rcu_gp_init+0xc00/0xc00
[  458.645949][    C0]  ? _raw_spin_unlock_irq+0x4e/0x70
[  458.651151][    C0]  ? rcu_gp_init+0x9a7/0xc00
[  458.655749][    C0]  rcu_gp_kthread+0x98/0x330
[  458.660348][    C0]  ? wake_nocb_gp+0x1d0/0x1d0
[  458.665054][    C0]  ? __kasan_check_read+0x11/0x20
[  458.670084][    C0]  ? __kthread_parkme+0xac/0x200
[  458.675030][    C0]  ? preempt_count_add+0x90/0x1b0
[  458.680058][    C0]  kthread+0x411/0x500
[  458.684130][    C0]  ? wake_nocb_gp+0x1d0/0x1d0
[  458.688820][    C0]  ? kthread_blkcg+0xd0/0xd0
[  458.693432][    C0]  ret_from_fork+0x1f/0x30
[  458.697871][    C0]  </TASK>
[  458.700895][    C0] rcu: Stack dump where RCU GP kthread last ran:
[  458.707214][    C0] Sending NMI from CPU 0 to CPUs 1:
[  458.712422][    C1] NMI backtrace for cpu 1
[  458.712436][    C1] CPU: 1 PID: 5440 Comm: syz.3.1556 Tainted: G        W         syzkaller #0
[  458.712451][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  458.712461][    C1] RIP: 0010:get_stack_info_noinstr+0x5c/0x130
[  458.712482][    C1] Code: 5b 41 5c 41 5d 41 5e 41 5f 5d c3 48 c7 c7 b4 f2 db 85 e8 27 17 00 00 65 4c 8b 2d c7 91 5f 7b 4d 85 ed 74 6e 4d 39 fd 0f 97 c0 <49> 8d 8d 00 f0 01 00 4c 39 f9 0f 96 c1 08 c1 75 57 4c 89 f8 4c 29
[  458.712494][    C1] RSP: 0018:ffffc900001d0740 EFLAGS: 00000016
[  458.712509][    C1] RAX: 0000000000000001 RBX: ffffc900001d0801 RCX: df49089aea430700
[  458.712520][    C1] RDX: ffffc900001d0828 RSI: ffffffff85dbf2b4 RDI: ffffffff85633860
[  458.712532][    C1] RBP: ffffc900001d0768 R08: dffffc0000000000 R09: ffffc900001d0828
[  458.712543][    C1] R10: fffff5200003a111 R11: 1ffff9200003a105 R12: ffff88810d9ebb40
[  458.712555][    C1] R13: fffffe000004f000 R14: ffffc900001d0828 R15: ffffc900001d0818
[  458.712566][    C1] FS:  00007fb63e7b26c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[  458.712580][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  458.712591][    C1] CR2: 0000001b2d41eff8 CR3: 00000001295d5000 CR4: 00000000003526a0
[  458.712604][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  458.712613][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  458.712623][    C1] Call Trace:
[  458.712628][    C1]  <IRQ>
[  458.712633][    C1]  get_stack_info+0x3a/0xf0
[  458.712649][    C1]  __unwind_start+0x1e2/0x3a0
[  458.712665][    C1]  ? __kernel_text_address+0xa0/0x100
[  458.712680][    C1]  ? stack_trace_save+0xe0/0xe0
[  458.712694][    C1]  arch_stack_walk+0xd6/0x140
[  458.712713][    C1]  stack_trace_save+0x98/0xe0
[  458.712726][    C1]  ? stack_trace_snprint+0xf0/0xf0
[  458.712740][    C1]  ? __stack_depot_save+0x34/0x480
[  458.712762][    C1]  ? memset+0x35/0x40
[  458.712777][    C1]  __kasan_slab_alloc+0xbd/0xf0
[  458.712799][    C1]  slab_post_alloc_hook+0x4f/0x2b0
[  458.712815][    C1]  ? should_failslab+0x9/0x20
[  458.712831][    C1]  ? __sigqueue_alloc+0x137/0x210
[  458.712846][    C1]  kmem_cache_alloc+0xf7/0x260
[  458.712862][    C1]  __sigqueue_alloc+0x137/0x210
[  458.712877][    C1]  __send_signal+0x212/0xc30
[  458.712891][    C1]  ? __kasan_check_write+0x14/0x20
[  458.712907][    C1]  send_signal+0x422/0x580
[  458.712920][    C1]  ? __hrtimer_run_queues+0x97a/0x9e0
[  458.712937][    C1]  do_send_sig_info+0xd6/0x210
[  458.712953][    C1]  group_send_sig_info+0x11a/0x3c0
[  458.712967][    C1]  ? ktime_get+0x12f/0x160
[  458.712980][    C1]  ? __lock_task_sighand+0x100/0x100
[  458.712996][    C1]  do_bpf_send_signal+0x82/0x150
[  458.713013][    C1]  irq_work_run_list+0x169/0x240
[  458.713028][    C1]  ? irq_work_run+0xf0/0xf0
[  458.713044][    C1]  irq_work_run+0x6a/0xf0
[  458.713057][    C1]  __sysvec_irq_work+0x63/0x1a0
[  458.713073][    C1]  sysvec_irq_work+0xa1/0xc0
[  458.713088][    C1]  </IRQ>
[  458.713093][    C1]  <TASK>
[  458.713097][    C1]  asm_sysvec_irq_work+0x1b/0x20
[  458.713113][    C1] RIP: 0010:native_apic_msr_write+0x39/0x50
[  458.713131][    C1] Code: 74 05 83 ff 30 75 12 5d c3 81 ff d0 00 00 00 74 f6 81 ff e0 00 00 00 74 ee c1 ef 04 81 c7 00 08 00 00 89 f9 89 f0 31 d2 0f 30 <66> 90 eb d9 89 f6 31 d2 e8 ca 42 3a 01 5d c3 0f 1f 84 00 00 00 00
[  458.713143][    C1] RSP: 0018:ffffc90000c37c20 EFLAGS: 00000246
[  458.713155][    C1] RAX: 00000000000000f6 RBX: 00000000000000f6 RCX: 000000000000083f
[  458.713165][    C1] RDX: 0000000000000000 RSI: 00000000000000f6 RDI: 000000000000083f
[  458.713174][    C1] RBP: ffffc90000c37c20 R08: dffffc0000000000 R09: ffffed103ee265e7
[  458.713185][    C1] R10: ffffed103ee265e7 R11: 1ffff1103ee265e6 R12: 0000000000000000
[  458.713196][    C1] R13: dffffc0000000001 R14: ffffffff85e629f8 R15: dffffc0000000000
[  458.713210][    C1]  x2apic_send_IPI_self+0x5e/0x70
[  458.713226][    C1]  arch_irq_work_raise+0x86/0xd0
[  458.713242][    C1]  __irq_work_queue_local+0x115/0x190
[  458.713257][    C1]  irq_work_queue+0x9e/0x150
[  458.713271][    C1]  bpf_send_signal_common+0x2b2/0x420
[  458.713287][    C1]  ? trace_raw_output_bpf_trace_printk+0xd0/0xd0
[  458.713305][    C1]  bpf_send_signal+0x19/0x20
[  458.713318][    C1]  bpf_prog_7ba5217f62dcd359+0x38/0x74
[  458.713331][    C1]  bpf_trace_run2+0xb0/0x1b0
[  458.713346][    C1]  ? bpf_trace_run1+0x1b0/0x1b0
[  458.713374][    C1]  ? sched_clock+0x9/0x10
[  458.713387][    C1]  ? sched_clock_cpu+0x18/0x3c0
[  458.713419][    C1]  __bpf_trace_sys_enter+0x62/0x70
[  458.713435][    C1]  trace_sys_enter+0x3d/0x50
[  458.713450][    C1]  syscall_trace_enter+0x118/0x180
[  458.713466][    C1]  syscall_enter_from_user_mode+0x1f/0x30
[  458.713486][    C1]  do_syscall_64+0x24/0xa0
[  458.713504][    C1]  ? clear_bhb_loop+0x50/0xa0
[  458.713521][    C1]  ? clear_bhb_loop+0x50/0xa0
[  458.713540][    C1]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  458.713559][    C1] RIP: 0033:0x7fb63fce5db9
[  458.713572][    C1] Code: 64 c7 00 16 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 90 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 c7 c0 0f 00 00 00 0f 05 <0f> 1f 80 00 00 00 00 48 81 ec 48 01 00 00 49 89 d0 64 48 8b 04 25
[  458.713586][    C1] RSP: 002b:00007fb63e7b1b40 EFLAGS: 00000246 ORIG_RAX: 000000000000000f
[  458.713603][    C1] RAX: ffffffffffffffda RBX: 00007fb63ff80fa8 RCX: 00007fb63fce5db9
[  458.713616][    C1] RDX: 00007fb63e7b1b40 RSI: 00007fb63e7b1c70 RDI: 0000000000000011
[  458.713629][    C1] RBP: 00007fb63ff80fa0 R08: 0000000000000000 R09: 0000000000000000
[  458.713640][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  458.713651][    C1] R13: 00007fb63ff81038 R14: 00007ffc6e7b2780 R15: 00007ffc6e7b2868
[  458.713667][    C1]  </TASK>