last executing test programs:

8m47.169099578s ago: executing program 1 (id=698):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r2, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xb}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x0, 0x2}}}]}, 0x38}}, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
r4 = socket$kcm(0x11, 0x3, 0x0)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r5)
socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
r7 = socket(0x400000000010, 0x3, 0x0)
r8 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r9=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001300)=@newtfilter={0xe8c, 0x2c, 0xd27, 0x30bd29, 0x25dfdc00, {0x0, 0x0, 0x0, r9, {0x5, 0x4}, {}, {0x8}}, [@filter_kind_options=@f_matchall={{0xd}, {0xe58, 0x2, [@TCA_MATCHALL_ACT={0xe54, 0x2, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe20, 0x2, {{{0x9, 0x0, 0x1, 0xc, 0x1}, 0x4, 0x46}, [{0x7, 0x7, 0x40, 0x3, 0x0, 0x1}, {0x3edee688, 0x0, 0xfffffffd, 0x10, 0x5c56b80f, 0x5}, {0x8, 0x4, 0x1, 0x6, 0xf, 0x8001}, {0x4, 0xffffffff, 0x0, 0x8000, 0xffff, 0x9}, {0x0, 0x7, 0xb, 0xffffff81, 0x7fff, 0x4}, {0x1000, 0x81, 0xcec4, 0x1, 0x1, 0x7f}, {0x401, 0x2, 0x8, 0xfffffff7, 0x0, 0x7}, {0x2, 0x1, 0x1000, 0x4, 0x9, 0xa}, {0x8, 0x2, 0xf3320, 0x80000000, 0x9, 0x8}, {0x5, 0x2, 0x5, 0x5, 0x80000001}, {0x3, 0x2, 0x5, 0x3, 0x2, 0x5}, {0xfffffff5, 0x5, 0x6, 0x3, 0x8, 0x200}, {0x0, 0x2, 0x1, 0xc, 0xc61, 0x4}, {0x4, 0x1, 0x2, 0x8, 0xdad, 0xae}, {0x9, 0x4, 0xfff, 0x0, 0x90400000}, {0x7267, 0xe, 0xffffffff, 0x4, 0x3, 0x5}, {0x10000, 0x6, 0x80, 0xfffffff7, 0x20000009, 0x4}, {0x0, 0x7, 0xfa, 0x6, 0x3a00, 0xfffffffe}, {0xa00, 0x9, 0x0, 0x6, 0x7fff, 0x7ff}, {0x42, 0x10, 0x7, 0x10001, 0x2a}, {0x1, 0x2, 0x7fffffff, 0x1, 0x3, 0x7f}, {0x6326e196, 0x200, 0x9, 0x1, 0x6, 0x7}, {0xc8, 0x1, 0x1, 0x8, 0x4, 0x1d}, {0x13f, 0xd, 0x7fff00, 0x7f, 0x7ff, 0xffff}, {0xe, 0x2, 0x2, 0x0, 0x8, 0x6}, {0x5, 0x3, 0x53, 0x4, 0x400000, 0x1}, {0x0, 0xfff, 0x40, 0xfffffffc, 0x6, 0xcb03}, {0x6, 0x0, 0x80000000, 0x5, 0x8, 0x101}, {0xffffffff, 0x7fff, 0x20000000, 0x0, 0x1, 0x8}, {0x625321fa, 0x101, 0x0, 0xe0000000, 0x2, 0x1}, {0x5, 0x8001, 0x7000, 0x7, 0x61ae, 0x80000000}, {0x2, 0x6, 0x5, 0x2, 0x7fffffff, 0x2}, {0x5, 0x2, 0x8, 0x1907, 0x2, 0x3}, {0x8, 0x2, 0x1, 0x1, 0xffff, 0x6}, {0x8, 0x7, 0x6, 0x3, 0x8, 0x6}, {0x2, 0x2, 0x1, 0x200, 0x5}, {0x6, 0x7, 0x7, 0x100, 0x4, 0x3}, {0x100, 0x2, 0x80000001, 0x10, 0xfffffffa, 0xf}, {0xa9, 0xd12, 0xffffffff, 0xa, 0x6, 0x1d}, {0x41, 0x6, 0x0, 0x3, 0x1000, 0x5}, {0x6, 0x800, 0x4, 0x7, 0x1, 0x8001}, {0x4, 0x2, 0xfc0, 0xf898, 0x8001, 0x6}, {0x1, 0x3e, 0x98, 0x0, 0x3ff, 0x101}, {0x3ff, 0x2, 0x6, 0xfffffffb, 0x3ff, 0xa}, {0x7, 0x2, 0x3135, 0x1, 0x9, 0xcf}, {0xfffffffd, 0xf, 0x0, 0x8, 0xebb, 0x4}, {0xc, 0x5, 0x1, 0x6, 0x8}, {0x9, 0x3, 0x4, 0x1, 0x1ff, 0x80000000}, {0x6, 0x7, 0x8b, 0xfb, 0x80, 0x6}, {0x9, 0x80000000, 0xffffffff, 0xfffffa84, 0x6, 0x7f}, {0x1, 0xb, 0xbc, 0x5c, 0x6, 0x5}, {0x7, 0xfe, 0x0, 0x8, 0x5, 0x10}, {0x8, 0x4, 0x4, 0xfffffffb, 0x200, 0xcff}, {0x2, 0x8, 0x7, 0x8, 0x9, 0x35}, {0x0, 0x9, 0x0, 0xa, 0x3, 0xfe}, {0x8, 0x3, 0x0, 0x3c86, 0x56a5, 0x5}, {0xe4, 0x47, 0xffff, 0xd0, 0x2, 0x80000001}, {0x0, 0xa, 0x62, 0x10000, 0x6, 0xfffffff8}, {0x3, 0x4, 0x8d47, 0x710, 0x3c70}, {0x40, 0x7f, 0xd0, 0x0, 0xff, 0x8}, {0x2, 0xacd, 0x75ad, 0x7, 0x9, 0xff}, {0x80, 0x6, 0x10001, 0x1ff, 0x81, 0x12}, {0x0, 0x7a53, 0x5, 0x7, 0x8, 0x3}, {0x7, 0x1000000, 0xfffffff8, 0x9, 0x8, 0x40}, {0xfffffffe, 0x0, 0x6, 0x7fff, 0x80000001, 0x40}, {0x588f, 0x5, 0x7, 0x10001, 0xffffffff, 0x1}, {0x8, 0x4, 0x1c, 0x6, 0x3e, 0x9}, {0x2, 0x7, 0x5, 0x3, 0x8, 0x3}, {0xc, 0xc, 0x1be, 0x8, 0x9, 0x3}, {0x0, 0x7, 0xd94, 0x7, 0x9, 0x2}, {0x4, 0x6, 0x4, 0x3, 0x7, 0xffff}, {0x7, 0xc27, 0x2, 0xc614, 0x5, 0x5}, {0x5, 0x9, 0x7, 0x9, 0x0, 0x4}, {0xbc7, 0x4, 0xf08b, 0x6, 0x9, 0x23}, {0x6, 0x2, 0x6f, 0xea78, 0x9925, 0xb6d}, {0x5, 0xc9, 0x4, 0x0, 0x89, 0x14}, {0x8, 0x3, 0x9da, 0x800, 0xfffffffc, 0xe7e8}, {0x10000, 0x40, 0x5, 0xd0, 0xa9, 0x47a8}, {0x8, 0x3ff, 0x4, 0x3, 0x0, 0x9}, {0x48, 0xc, 0x3ff, 0x4, 0x800, 0xe}, {0x4, 0x1, 0x3, 0x4, 0x1000, 0xda30}, {0x1, 0xffff, 0x8001, 0x98, 0xfffffff8, 0x7}, {0x81, 0x1, 0x2, 0x7, 0xbc9, 0x28000000}, {0x7, 0xada, 0x1, 0x6, 0xfffffffe, 0xb030}, {0x9f, 0x761, 0xf95c, 0x2, 0x86, 0x5}, {0xd3, 0xffff, 0x6, 0xc424, 0x9, 0x4}, {0x5, 0xffffff6e, 0x7fff, 0x3, 0xd, 0x2}, {0x621, 0x2, 0x0, 0x9, 0x3, 0x4854}, {0x3, 0x6, 0x8, 0x1, 0x9, 0xa72}, {0x5, 0x4, 0x6, 0xfffffffa, 0x9, 0x3}, {0x0, 0xfffffff8, 0x8, 0x320, 0x5}, {0x6, 0x3, 0x200, 0x6, 0x1ff, 0x8}, {0x7ff, 0x5, 0x4, 0x4, 0x5, 0x800}, {0xfa4a, 0x5, 0x6, 0xa, 0x5, 0x2}, {0x8, 0x7, 0x5, 0x2, 0x6, 0x80000001}, {0x2, 0xa, 0x2, 0x7, 0x4, 0x5}, {0x9, 0x7, 0x4, 0x9eb, 0xa, 0x8}, {0x2, 0x4, 0x7, 0xffffffff, 0x3, 0x401}, {0x3ff, 0x2, 0x8, 0x3ff, 0xfffffffb, 0x1}, {0x0, 0x0, 0x0, 0xfffff55e, 0x8, 0x6}, {0x1, 0x7fff, 0x8, 0x4, 0x7ff, 0x6}, {0x8, 0x0, 0x0, 0xfffffffd, 0xfff, 0x40}, {0x9, 0x1, 0xa792, 0x5, 0x1ff}, {0xd94b, 0x5, 0x2, 0xff, 0x4f, 0x7ff}, {0xdbc, 0x80000000, 0x5d, 0x3, 0xfffffffc}, {0x8, 0x3, 0x67, 0x8, 0xbdf, 0xf7}, {0x4c0f, 0xfff, 0x0, 0xb, 0x8, 0x100}, {0x400, 0x9, 0x0, 0x4, 0x9, 0x1b}, {0x48fd4449, 0x2, 0x5, 0x4, 0x7f, 0xfffffffc}, {0x7ff, 0x5, 0x3, 0x5c93, 0xc, 0x6}, {0x8, 0x2c2d000, 0x9, 0x2, 0x1, 0x2}, {0xffffffff, 0x8076, 0x7f, 0xffffffc0, 0x7, 0x8001}, {0x0, 0x1, 0x7, 0x200, 0x5}, {0x78, 0x2d, 0x4, 0x4, 0x80000001, 0xe9}, {0x0, 0x6, 0x0, 0x255c, 0x9, 0x1000}, {0x200000, 0x200, 0x6, 0xfffffffd, 0x0, 0x6}, {0x77b, 0x0, 0x2, 0x1e8a, 0x1a, 0x4}, {0x1000, 0x4, 0x0, 0x2, 0x0, 0x1}, {0x7ff, 0x5, 0x5, 0x6, 0x6, 0x2000009}, {0x4, 0x800, 0xea2, 0x8000, 0x0, 0x40}, {0x9, 0x200, 0x539, 0x1, 0xb, 0x7}, {0x2, 0x2, 0x87, 0x7, 0xfffffffe, 0x1}, {0x1e7, 0x2, 0x6, 0x9bb, 0x3, 0x7}, {0x7, 0x3ff, 0xe322, 0x2, 0x4, 0xc}, {0xfffffffa, 0x2, 0x93, 0xfffffffa, 0x10001, 0x40}, {0x7, 0x9bc, 0x800, 0x9, 0x7, 0x3851}, {0xfffffffe, 0x101, 0x3, 0x1, 0x7, 0x4}, {0x5, 0x0, 0xb0, 0xa, 0x5, 0x5}], [{0x4}, {0x3}, {0x2}, {0x3}, {}, {}, {0x1, 0x1}, {0x1}, {0x2}, {0x4}, {0x3, 0x1}, {0x6}, {0x0, 0x1}, {0x7}, {0x1}, {0x4, 0x1}, {0x4}, {0x5, 0x1}, {0x3, 0x1}, {0x7}, {}, {0x2}, {0x1}, {0x5}, {0x5, 0x1}, {0x3}, {}, {0x3, 0x1}, {0x5, 0x1}, {}, {0x0, 0x1}, {0x4, 0x1}, {0x2, 0x2}, {0x5}, {}, {0x3, 0x1}, {0x3}, {0x4}, {}, {}, {0x3, 0x1}, {0x1}, {0x1}, {0x3}, {0x1}, {}, {0x3}, {0x5}, {0x5, 0x1}, {0x1}, {0x0, 0x1}, {0x1}, {0x5}, {0x1, 0x1}, {}, {0x1}, {0x2, 0x1}, {0x4, 0x1}, {0x1}, {0x0, 0x1}, {0x5, 0x1}, {0x2}, {}, {0x1, 0x1}, {0x1, 0x1}, {0x4}, {0x0, 0x1}, {0x3}, {0x2, 0x1}, {0x1}, {}, {0x5}, {0x1}, {}, {}, {0x4, 0x1}, {0x1}, {0x0, 0x1}, {0x4}, {0x3}, {0x2}, {0x4, 0x1}, {}, {0x5, 0x1}, {0x3, 0x1}, {0x4}, {0x5}, {0x4}, {0x3}, {0x1, 0x1}, {0x4, 0x1}, {0x1}, {0x4, 0x1}, {0x3, 0x1}, {0x7, 0x1}, {0x1, 0xd9d493184d3ac47}, {}, {0x2}, {0x4}, {0x1, 0x1}, {0x4, 0x1}, {0x5, 0x1}, {0x1}, {0x0, 0x1}, {0x5}, {0x3, 0x1}, {0xc49612a26cceaca7}, {0x0, 0xa5bbafc9e2acde54}, {0x5, 0x1}, {0x1}, {0x1}, {0x4, 0x1}, {0x3, 0x1}, {0x1, 0x1}, {0x1, 0x1}, {}, {0x1, 0x1}, {0x5, 0x1}, {0x5, 0x1}, {0x3, 0x1}, {0x0, 0x1}, {0x2}, {0x4, 0x2}, {0x5}, {0x2}, {0x5, 0x1}, {0x3, 0x1}, {0x2, 0x1}]}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}]}]}}]}, 0xe8c}, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$kcm(r4, &(0x7f0000000000)={&(0x7f0000000380)=@xdp={0x2c, 0x0, r6, 0x3e}, 0x80, &(0x7f00000001c0)=[{&(0x7f0000000180)="27030200084014000e00002fb96dffff1144ee163cddcb000000800000827600000000000000", 0x26}, {&(0x7f0000000780)="f058050000007f8f", 0x4000}], 0x2}, 0x5)

8m45.348255153s ago: executing program 1 (id=701):
r0 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r1 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2c, 0x25dddbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xffff}, {0xffff, 0xffff}, {0x1, 0xd}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
r4 = socket(0x400000000010, 0x3, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=@newtfilter={0x44, 0x2c, 0xd27, 0x70bd2d, 0x25dfdbfc, {0x0, 0x0, 0x0, r6, {0xfff1, 0xfff3}, {}, {0x3, 0x9}}, [@filter_kind_options=@f_flower={{0xb}, {0x14, 0x2, [@TCA_FLOWER_KEY_ETH_TYPE={0x6, 0x8, 0x8100}, @TCA_FLOWER_KEY_VLAN_ID={0x6, 0x17, 0x91d}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x24000810}, 0x20084084)

8m44.310108007s ago: executing program 1 (id=706):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x14b302, 0x8c)
pwritev2(r3, &(0x7f0000000100)=[{&(0x7f0000000080)="7f", 0x1}], 0x1, 0x5412, 0x0, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000003ec0)={0x2020}, 0x2020)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f00000000c0)=0x7, 0x6fecb1)

8m43.006731545s ago: executing program 1 (id=709):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000280)='./file0\x00', 0x2800000, &(0x7f00000001c0)={[{@debug}, {@journal_dev={'journal_dev', 0x3d, 0x4ce9}}, {@inlinecrypt}, {@abort}, {@errors_continue}, {@errors_continue}, {@delalloc}, {@barrier}]}, 0xfe, 0xbda, &(0x7f0000001080)="$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")
quotactl$Q_QUOTAON(0xffffffff80000201, &(0x7f0000000180)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x9)
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='cgroup.stat\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x28011, r0, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="2c0000000001010400000000000000000a0000001800018006000340000300000c0002800500"], 0x2c}, 0x1, 0x0, 0x0, 0x80040}, 0x0)
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./bus\x00', &(0x7f0000000140), 0x8, &(0x7f0000000180)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})

8m39.924384956s ago: executing program 1 (id=719):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x14b302, 0x8c)
pwritev2(r3, &(0x7f0000000100)=[{&(0x7f0000000080)="7f", 0x1}], 0x1, 0x5412, 0x0, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000003ec0)={0x2020}, 0x2020)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f00000000c0)=0x7, 0x6fecb1)

8m37.099711773s ago: executing program 1 (id=727):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x19, 0x0, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'lo\x00', <r4=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000005c0)=@newqdisc={0x30, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0x5}, {0xfff1, 0xffff}, {0x4}}, [@qdisc_kind_options=@q_clsact={0xb}]}, 0x30}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={0x0}, 0x1, 0x0, 0x0, 0x4c014}, 0x20044000)
mmap(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x1000002, 0x10110, r2, 0xbe28b000)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x8000, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000002480)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40002003, 0x0)
syz_mount_image$erofs(&(0x7f0000000000), &(0x7f00000001c0)='./file1\x00', 0x4, &(0x7f0000000300)=ANY=[@ANYBLOB="00ea2eb34e7ea51c9446c55a2d1e0be39af9faf44ad59cb6ad1c94490d970e811439edddc71c9b18946b559ce53bee0a1abe562fc3f3898e5826eda1962cf6e3c4c0ade52151923a70b46eacfc1aaaebcf156e549e884bcabc1333f344f31cd30cd93cb2814e0dbc24a7a107e295e86e09283c825fe177c89c6385f68f2c843cffffffff15539bab6142ceed9265ba989d1a283fc4ffc83f3a7a6c746823e656ad78f3b5a336cdbd83dad59e0debb36b4ea5e658e253f01637cc03f704a08019f95b92fffffffff8dd21552d6967ab1b01e5d52a5793eb179deee4572770a5197127b090287bca2a4eaa1705b42c16968d0201d3ba3cc8000000657ea095f152b1b6a1e6ad8d24ad17f649ccc23d4ecbcdb5620cc48f95f563c2230f859d196e6c4f00b8e3a7b01fcb1d79dcc09b7a854ec8c31dd27ff9b4a2864e1dcaf719d20b56769d51228ecc1915fb8c8b598c11b3c296b05f9c5355fc6f19a7b28f5ae9a0d0804ccc5716cfac0246ddffa2f12077a02a959aa1b74373c38b2bcc90743b80666eae25dea73e127263b8fdbc64fe862b994ca8473d00000000000000009cf153dc0bf708", @ANYRESHEX=0x0], 0x1, 0x194, &(0x7f0000000640)="$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")
read$FUSE(0xffffffffffffffff, &(0x7f0000003f00)={0x2020}, 0x2020)
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x8c40, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], 0x2, 0x30e, &(0x7f00000006c0)="$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")
r5 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00')
preadv(r5, &(0x7f0000000040)=[{&(0x7f00000024c0)=""/4127, 0x101f}], 0x1, 0x4000, 0x0)
setregid(0xffffffffffffffff, 0x0)
setgroups(0x51, 0x0)
setreuid(0xee01, 0x0)

8m35.892135876s ago: executing program 32 (id=727):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x19, 0x0, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'lo\x00', <r4=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000005c0)=@newqdisc={0x30, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0x5}, {0xfff1, 0xffff}, {0x4}}, [@qdisc_kind_options=@q_clsact={0xb}]}, 0x30}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={0x0}, 0x1, 0x0, 0x0, 0x4c014}, 0x20044000)
mmap(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x1000002, 0x10110, r2, 0xbe28b000)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x8000, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000002480)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40002003, 0x0)
syz_mount_image$erofs(&(0x7f0000000000), &(0x7f00000001c0)='./file1\x00', 0x4, &(0x7f0000000300)=ANY=[@ANYBLOB="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", @ANYRESHEX=0x0], 0x1, 0x194, &(0x7f0000000640)="$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")
read$FUSE(0xffffffffffffffff, &(0x7f0000003f00)={0x2020}, 0x2020)
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x8c40, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], 0x2, 0x30e, &(0x7f00000006c0)="$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")
r5 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00')
preadv(r5, &(0x7f0000000040)=[{&(0x7f00000024c0)=""/4127, 0x101f}], 0x1, 0x4000, 0x0)
setregid(0xffffffffffffffff, 0x0)
setgroups(0x51, 0x0)
setreuid(0xee01, 0x0)

8m31.885966534s ago: executing program 3 (id=744):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000480), 0x60040, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000640)="430fc73f0f2390b9800000c00f3235010000000f300f20d835080000000f22d8c4e18173f53866baf80cb83879e487ef66bafc0cec66b88e008ec02d1aa80000460f1c460041ae", 0x47}], 0x1, 0x74, 0x0, 0x0)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x0, 0x0, &(0x7f0000000240))
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, 0x1, 0x2}, 0x28)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
setrlimit(0xf, &(0x7f0000000000)={0x1, 0x5})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x4, &(0x7f0000000180)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x61}]}, &(0x7f0000000200)='GPL\x00', 0x1000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

8m30.675079508s ago: executing program 3 (id=747):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sendmsg$inet6(0xffffffffffffffff, &(0x7f0000000880)={&(0x7f0000000000)={0xa, 0x4e20, 0x2, @mcast1, 0x9}, 0x1c, &(0x7f0000000240)=[{&(0x7f00000001c0)="8000e8beec9dbc", 0x7}], 0x1, &(0x7f0000000040)=[@pktinfo={{0x24, 0x29, 0x32, {@mcast1}}}], 0x28}, 0xc000)
socket$inet(0x2, 0x2, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r3 = fsopen(&(0x7f0000000040)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
r4 = fsmount(r3, 0x0, 0x4)
r5 = openat$cgroup_ro(r4, &(0x7f0000001100)='cpu.stat\x00', 0x5000000, 0x0)
read$char_usb(r5, &(0x7f00000001c0)=""/218, 0xda)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x12, 0x4, &(0x7f00000005c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, @cgroup_sock_addr=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x200a017, 0x0, 0x1, 0x0, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000300), 0xffffffffffffffff)
r6 = socket$nl_route(0x10, 0x3, 0x0)
openat$ptp0(0xffffffffffffff9c, 0x0, 0x80, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newlink={0x2c, 0x10, 0x801, 0x2000004, 0xfffffffd, {0x0, 0x0, 0x0, 0x0, 0x0, 0x42005}, [@IFLA_XDP={0x4}, @IFLA_GROUP={0x8, 0x1b, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x1}, 0x0)

8m29.404096673s ago: executing program 3 (id=749):
r0 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$kcm(0x11, 0x3, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r2)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000880)=@newqdisc={0x70, 0x24, 0x4ee4e6a52ff56541, 0x1, 0x25dfdbfd, {0x0, 0x0, 0x0, r4, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x44, 0x2, [@TCA_TBF_PARMS={0x28, 0x1, {{0x5a, 0x2, 0x84d, 0x9, 0x1, 0x800}, {0x8c, 0x1, 0xfffc, 0x7fff, 0x2, 0xb}, 0x5, 0x34, 0x91f}}, @TCA_TBF_PRATE64={0xc, 0x5, 0xc2240edb8ac75ac7}, @TCA_TBF_RATE64={0xc, 0x4, 0xdd31e353c9fd1eb}]}}]}, 0x70}, 0x1, 0x0, 0x0, 0x40088c1}, 0x50)
sendmsg$nl_route_sched(r3, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70b926, 0x25dfdc01, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xb}, {0xe}}, [@qdisc_kind_options=@q_qfg={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x2400c061}, 0x4890)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
sendmsg$kcm(r1, &(0x7f00000000c0)={&(0x7f0000000380)=@xdp={0x2c, 0xdd86, r4, 0x3e}, 0x80, &(0x7f0000000280)=[{&(0x7f0000000900)='l', 0x1}], 0x1}, 0x4)

8m26.949500051s ago: executing program 3 (id=754):
syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x210000, &(0x7f0000002f40)={[{@nobarrier}, {@dioread_lock}, {@barrier_val={'barrier', 0x3d, 0x4}}, {@nolazytime}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@lazytime}, {@errors_remount}, {@stripe={'stripe', 0x3d, 0x10}}, {@bh}, {@init_itable}]}, 0xfc, 0x56f, &(0x7f0000003780)="$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")
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000040)={[{@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@volatile}]})
syz_mount_image$fuse(&(0x7f0000000300), &(0x7f0000000280)='./file0\x00', 0x8814a0, &(0x7f0000000240)=ANY=[], 0x1, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x8042, 0x0)
openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x143042, 0x34)
open(&(0x7f0000000200)='./file1\x00', 0x4027e, 0x17c)

8m25.660991058s ago: executing program 3 (id=758):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sendmsg$inet6(0xffffffffffffffff, &(0x7f0000000880)={&(0x7f0000000000)={0xa, 0x4e20, 0x2, @mcast1, 0x9}, 0x1c, &(0x7f0000000240)=[{&(0x7f00000001c0)="8000e8beec9dbc", 0x7}], 0x1, &(0x7f0000000040)=[@pktinfo={{0x24, 0x29, 0x32, {@mcast1}}}], 0x28}, 0xc000)
socket$inet(0x2, 0x2, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r3 = fsopen(&(0x7f0000000040)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
r4 = fsmount(r3, 0x0, 0x4)
r5 = openat$cgroup_ro(r4, &(0x7f0000001100)='cpu.stat\x00', 0x5000000, 0x0)
read$char_usb(r5, &(0x7f00000001c0)=""/218, 0xda)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x12, 0x4, &(0x7f00000005c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, @cgroup_sock_addr=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x200a017, 0x0, 0x1, 0x0, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000300), 0xffffffffffffffff)
r6 = socket$nl_route(0x10, 0x3, 0x0)
openat$ptp0(0xffffffffffffff9c, 0x0, 0x80, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newlink={0x2c, 0x10, 0x801, 0x2000004, 0xfffffffd, {0x0, 0x0, 0x0, 0x0, 0x0, 0x42005}, [@IFLA_XDP={0x4}, @IFLA_GROUP={0x8, 0x1b, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x1}, 0x0)

8m20.320129296s ago: executing program 3 (id=768):
r0 = syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f00000000c0)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x5c, 0x2, 0x1, 0x7, 0xe0, 0xe8, "", {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5}, {0x5, 0x24, 0xf, 0x1, 0x4, 0xfffe, 0x6}, {0x6, 0x24, 0x1a, 0x0, 0x2}}, {{0x9, 0x5, 0x81, 0x3, 0x20}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x3ff}}, {{0x9, 0x5, 0x3, 0x2, 0x3ff, 0x1, 0xfe, 0x5}}}}}}}]}}, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, &(0x7f00000015c0)={0x44, 0x0, 0x0, 0x0, &(0x7f0000000000)={0x20, 0x80, 0x1c, {0xf, 0x1, 0xb614, 0x6000, 0xa, 0x87, 0x7, 0x7, 0x308, 0x1, 0xe9, 0x2}}, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$cdc_ncm(r0, &(0x7f0000000200)={0x14, &(0x7f0000000140)={0x40, 0xc, 0x2, {0x2, 0x27}}, &(0x7f00000001c0)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, &(0x7f0000000080)={0x14, 0x0, &(0x7f0000000040)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0)

8m19.850849171s ago: executing program 33 (id=768):
r0 = syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f00000000c0)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x5c, 0x2, 0x1, 0x7, 0xe0, 0xe8, "", {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5}, {0x5, 0x24, 0xf, 0x1, 0x4, 0xfffe, 0x6}, {0x6, 0x24, 0x1a, 0x0, 0x2}}, {{0x9, 0x5, 0x81, 0x3, 0x20}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x3ff}}, {{0x9, 0x5, 0x3, 0x2, 0x3ff, 0x1, 0xfe, 0x5}}}}}}}]}}, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, &(0x7f00000015c0)={0x44, 0x0, 0x0, 0x0, &(0x7f0000000000)={0x20, 0x80, 0x1c, {0xf, 0x1, 0xb614, 0x6000, 0xa, 0x87, 0x7, 0x7, 0x308, 0x1, 0xe9, 0x2}}, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$cdc_ncm(r0, &(0x7f0000000200)={0x14, &(0x7f0000000140)={0x40, 0xc, 0x2, {0x2, 0x27}}, &(0x7f00000001c0)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, &(0x7f0000000080)={0x14, 0x0, &(0x7f0000000040)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0)

7m26.273425331s ago: executing program 6 (id=881):
r0 = socket$inet6(0xa, 0x3, 0x7)
sendmmsg$inet6(r0, &(0x7f0000004580)=[{{&(0x7f0000000080)={0xa, 0x0, 0x0, @mcast2}, 0x1c, 0x0, 0x0, &(0x7f0000000380)=ANY=[], 0x28}}], 0x1, 0x0)

7m25.901617631s ago: executing program 6 (id=884):
r0 = syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000e00)=ANY=[@ANYBLOB], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000480)={0x2c, &(0x7f0000000200)={0x0, 0x4, 0xaa, {0xaa, 0x30, "36e9c4866c0ab8b6e5d4a64a0fcf9b719fb6f8770d6f67b84df3f5ca8ce151c2d4ac304a3b063f4756a66055c1156a57935b01b67d5295ea7b07b049104d9b2d4ca325be3fea184e484ec818d6f8a6cd851dbcc1f1d3cb6d4b2b0abfab42357676c304aade7a612fc274546ba9b727f3879ed747366fdde41ccd6df0dd6c04c3051036e3826f41af14157a368e06412cc95e0f0f60ca351acfc7bc47fb8fa79e77a8a8525b992876"}}, 0x0, 0x0, 0x0, 0x0}, 0x0)

7m22.708169378s ago: executing program 6 (id=893):
r0 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'syzkaller0\x00'})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)
r3 = socket(0x400000000010, 0x3, 0x0)
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=@newtfilter={0x44, 0x2c, 0xd27, 0x70bd2d, 0x25dfdbfc, {0x0, 0x0, 0x0, r5, {0xfff1, 0xfff3}, {}, {0x3, 0x9}}, [@filter_kind_options=@f_flower={{0xb}, {0x14, 0x2, [@TCA_FLOWER_KEY_ETH_TYPE={0x6, 0x8, 0x8100}, @TCA_FLOWER_KEY_VLAN_ID={0x6, 0x17, 0x91d}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x24000810}, 0x20084084)

7m21.209126805s ago: executing program 6 (id=898):
syz_mount_image$ext4(&(0x7f00000005c0)='ext4\x00', &(0x7f0000000840)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc0ed000e, &(0x7f00000001c0)={[{@min_batch_time={'min_batch_time', 0x3d, 0x9}}, {@jqfmt_vfsv0}, {@grpjquota}, {@noload}, {@grpjquota_path={'grpjquota', 0x3d, '.\x02'}}, {@noblock_validity}, {@resgid}, {@bsdgroups}, {@errors_continue}, {@nodelalloc}]}, 0xfa, 0x491, &(0x7f0000000f00)="$eJzs3M9vFFUcAPDvTLulgNiK+AMEqaKR+KOl5YccvGg04aCJiR4wnmpbSKVQQ2sihGj1gEdD4p149S8wnvRi1IsmXvVuSIjhAuJlzezM0NLutlu6ZQv7+SS7fW/mte99Z+btvJk33QA61kD2lkQ8EBF/RkRfnr29wED+48a1C2P/XrswlkS1+s4/Sa3c9WsXxsqi5e9tzTPVapHfVKfei+9HjE5NTZwt8kOzpz8amjl3/qXJ06MnJ05OnBk5evTQwT09R0YOtyTOLK7ruz6d3r3z2HuX3ho7fumDX5I08rhjURytMpBv3bqebXVlbbZtQTrpzt57i9ze3+bX1DsSaKeuiMh2V6XW//uiKzbfWtcXb3zR1sYB66parVaX+VSeqwL3sSTa3QKgPcoTfXb9W77u0tBjQ7j6an4BlMV9o3jla7ojzRN7K4uub1tpICKOz928nL1ine5DAAAs9EM2/nmx3vgvjUfzRE/29mAxh9IfEQ9FxPaIeDgidkTEIxG1so9FxOOrrH/xDMnS8U965Y6Da0I2/nulmNu6ffyXlkX6u4rctlr8leTE5NTEgWKb7I/KphOTycTwMnX8+PofXzVaVxv/lYPxuZuXs/rLsWDRjivdi27QjY/Ojq4l5oWufh6xq7te/EltXiCKeb2dEbHrDuuYfL674bqF49/jdeNfRuM/27TqNxHP5ft/LhbFX0oazk8Ov3xk5PBQb0xNHBgqj4qlfv394tuN6l9T/C2Q7f8tdY//W/H3J70RM+fOn6rN186svo6Lf33Z8Jpm5fhvO/6PbSuO/57k3dqCnmLFJ6Ozs2eHI3qSN5cuH5n/a2W+LJ/Fv39f/f6/Pea3xBMRsTsi9kTEk9lFYdH2pyLi6YjYt0z8P7/2zIerj7/+XfnKMvXciSz+8ZX2fyzc/6tPdJ366fuV4++NiEb7/1Attb9Y0sznX7MNXMu2AwAAgHtF/gx8kg7Op5PBwfwZ/h2xJZ2anpl94cT0x2fG82fl+6OSlne6+hbcDx0u7g2X+ZFF+YPFfeOvuzbX8oNj01Pj7Q4eOtzWJf0/TbP+n/m7q92tA9ZdC+bRgHuU/g+dS/+HzpSs2P9b/cgRsJE4/0Pnqtf/P2tYevC7dW0McFc5/0PnaqL/z+U/Go8KgHuT8z90Lv0fOlLD/41P1/Qv/y1N7Pk2b+tyZf4rvkJlo7T5/k9EuiGacf8nupv+MotGicrSvlzty/tUtmRT3d9q68cSAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABAy/wfAAD//3gk5XA=")
mkdirat(0xffffffffffffff9c, 0x0, 0x1c1)
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000500)='./bus\x00', &(0x7f0000000440), 0x8, &(0x7f0000000300)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000003, 0x28011, r0, 0x1000)
preadv(r0, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0)

7m20.073349955s ago: executing program 6 (id=907):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
close(r0)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000006ffc)=0x4000000000000200, 0xe50fb6c50bc849c9)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route_sched(r3, 0x0, 0x0)
getsockname$packet(r3, &(0x7f0000000380)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000180)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffff00f687000000", @ANYRES32=r4, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000400)=@newqdisc={0x50, 0x24, 0xe0b, 0x70bd28, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}, {0xffe0, 0xd064db0e491fa98f}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x20, 0x2, [@TCA_CAKE_INGRESS={0x8, 0xf, 0x1}, @TCA_CAKE_BASE_RATE64={0xc, 0x2, 0x81}, @TCA_CAKE_MEMORY={0x8, 0xa, 0x842}]}}]}, 0x50}, 0x1, 0x0, 0x0, 0x40}, 0x4000080)
bind$packet(r1, &(0x7f0000000040)={0x11, 0x0, r4, 0x1, 0x0, 0x6, @remote}, 0x14)
sendto$inet6(r1, 0x0, 0x0, 0x880, 0x0, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000000)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x28}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)

7m17.485362949s ago: executing program 6 (id=917):
pipe(0x0)
vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x1)
bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x0, 0x1, 0xc}]}, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
syz_emit_ethernet(0x3a, &(0x7f0000000740)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x3, 0x0, 0x0, 0x5, 0x0, @dev, @private=0xa010100, {[@generic={0x82, 0x2}, @noop]}}, {{0x1, 0x0, 0x41424344, 0x41424344, 0x0, 0x6, 0x5}}}}}}, 0x0)
clock_gettime(0x0, 0x0)
setsockopt$SO_VM_SOCKETS_CONNECT_TIMEOUT_OLD(0xffffffffffffffff, 0x28, 0x6, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x0)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000540)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_KEY(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB='|\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010829bd7000000000000b00000008000300", @ANYRES32=r2, @ANYBLOB="60005080110001004abee339084eeef16f162471f40000000800030001ac0f00050002"], 0x7c}, 0x1, 0x0, 0x0, 0x4}, 0x0)

7m16.749011958s ago: executing program 34 (id=917):
pipe(0x0)
vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x1)
bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x0, 0x1, 0xc}]}, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
syz_emit_ethernet(0x3a, &(0x7f0000000740)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x3, 0x0, 0x0, 0x5, 0x0, @dev, @private=0xa010100, {[@generic={0x82, 0x2}, @noop]}}, {{0x1, 0x0, 0x41424344, 0x41424344, 0x0, 0x6, 0x5}}}}}}, 0x0)
clock_gettime(0x0, 0x0)
setsockopt$SO_VM_SOCKETS_CONNECT_TIMEOUT_OLD(0xffffffffffffffff, 0x28, 0x6, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x0)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000540)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_KEY(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB='|\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010829bd7000000000000b00000008000300", @ANYRES32=r2, @ANYBLOB="60005080110001004abee339084eeef16f162471f40000000800030001ac0f00050002"], 0x7c}, 0x1, 0x0, 0x0, 0x4}, 0x0)

4m13.677080668s ago: executing program 0 (id=1273):
bind$netlink(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xc, 0xf}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8001}, 0x20008850)
sendmsg$nl_route_sched(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000940)=@newtfilter={0x24, 0x2c, 0xd27, 0x70bd28, 0xfffff000, {0x0, 0x0, 0x0, r4, {0xf000, 0xffff}, {}, {0x7, 0xa}}}, 0x24}, 0x1, 0x0, 0x0, 0x80}, 0x20000800)
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000900)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000580)=@newtfilter={0x34, 0x2c, 0xd27, 0x70bd2d, 0xfffff000, {0x0, 0x0, 0x0, r6, {0xf000, 0xffff}, {}, {0x7, 0xa}}, [@filter_kind_options=@f_route={{0xa}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x80}, 0x20000800)

4m11.683268561s ago: executing program 0 (id=1278):
syz_mount_image$ext4(&(0x7f0000000100)='ext3\x00', &(0x7f0000000340)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x4000804, &(0x7f0000002900)={[{@orlov}, {@grpid}, {@usrjquota}, {@grpid}, {@noload}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x3}}, {@init_itable_val={'init_itable', 0x3d, 0x9}}, {@init_itable}, {@bsdgroups}, {@grpid}, {@norecovery}]}, 0xfe, 0x499, &(0x7f0000002e80)="$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")
syz_mount_image$vfat(&(0x7f0000000b00), &(0x7f00000005c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x181d011, 0x0, 0x40, 0x0, &(0x7f0000000140))
r0 = openat$ttyS3(0xffffffffffffff9c, 0x0, 0x109000, 0x0)
ioctl$TIOCMBIS(r0, 0x5416, 0xfffffffffffffffc)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0x10, &(0x7f0000000480)={[{@stripe={'stripe', 0x3d, 0x5}}]}, 0x5, 0x7eb, &(0x7f00000004c0)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = fsopen(&(0x7f0000001340)='cgroup2\x00', 0x0)
fsmount(r4, 0x0, 0x80)
r5 = socket$netlink(0x10, 0x3, 0x0)
writev(r5, &(0x7f00000000c0)=[{&(0x7f0000000080)="290000001e00190f00003fffffffda060200000000e80001dd0008040d0008000c0000000005000000", 0x29}], 0x1)
write$cgroup_pid(0xffffffffffffffff, &(0x7f0000001c00), 0x12)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x30000c6, &(0x7f0000000200), 0x1, 0x569, &(0x7f00000002c0)="$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")
r6 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x11, 0x800000000004, @tid=r6}, &(0x7f0000bbdffc)=<r7=>0x0)
fcntl$lock(0xffffffffffffffff, 0x26, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x1})
timer_settime(r7, 0x1, &(0x7f0000000040)={{0x77359400}}, 0x0)
open(&(0x7f0000000200)='./file1\x00', 0x4827e, 0x0)

4m4.725120283s ago: executing program 0 (id=1286):
socket$inet_tcp(0x2, 0x1, 0x0)
gettid()
timer_create(0x0, 0x0, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/cpuinfo\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x20000023896)

4m4.621494618s ago: executing program 0 (id=1287):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r1=>0x0})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=@base={0x11, 0x4, 0x4, 0x5, 0x0, 0x1}, 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000003c0)={r3, r1}, 0x14)
syz_emit_ethernet(0x1116, &(0x7f0000005e40)=ANY=[], 0x0)

4m4.192310521s ago: executing program 0 (id=1291):
r0 = syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000e00)=ANY=[@ANYBLOB="1201000000000040de28021100000000000109022400010000d00009040004010300000009210100f90122050009058103"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000480)={0x2c, &(0x7f0000000200)={0x0, 0x4, 0x80, {0x80, 0x30, "36e9c4866c0ab8b6e5d4a64a0fcf9b719fb6f8770d6f67b84df3f5ca8ce151c2d4ac304a3b063f4756a66055c1156a57935b01b67d5295ea7b07b049104d9b2d4ca325be3fea184e484ec818d6f8a6cd851dbcc1f1d3cb6d4b2b0abfab42357676c304aade7a612fc274546ba9b727f3879ed747366fdde41ccd6df0dd6c"}}, 0x0, 0x0, 0x0, 0x0}, 0x0)

4m2.914184317s ago: executing program 0 (id=1295):
r0 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
bind$inet(r0, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
recvmmsg(r0, &(0x7f0000001740)=[{{0x0, 0x0, &(0x7f0000001400)=[{&(0x7f0000000400)=""/4096, 0x10c4}], 0x1}}], 0x4000210, 0x2, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[], 0xc4}}, 0x0)

3m47.65907398s ago: executing program 35 (id=1295):
r0 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
bind$inet(r0, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
recvmmsg(r0, &(0x7f0000001740)=[{{0x0, 0x0, &(0x7f0000001400)=[{&(0x7f0000000400)=""/4096, 0x10c4}], 0x1}}], 0x4000210, 0x2, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[], 0xc4}}, 0x0)

20.3927024s ago: executing program 4 (id=1936):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="09000000010000004200000040"], 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeee, 0x8031, 0xffffffffffffffff, 0x4000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100), &(0x7f0000000340), 0x3ff, r0}, 0x38)

16.921585981s ago: executing program 4 (id=1955):
r0 = open(&(0x7f00000000c0)='.\x00', 0x101000, 0x190)
getdents(r0, &(0x7f00000004c0)=""/179, 0xb3)

16.674200303s ago: executing program 4 (id=1957):
socket$inet_udp(0x2, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000005c0)={{}, &(0x7f0000000540), &(0x7f0000000580)}, 0x20)
r3 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r3, 0x29, 0x2e, &(0x7f0000000540)={0x1, {{0xa, 0x0, 0x0, @mcast1, 0x6}}, {{0xa, 0xfffe, 0x3fe00, @initdev={0xfe, 0x88, '\x00', 0xfe, 0x0}, 0x3}}}, 0x108)
setsockopt$inet6_group_source_req(r3, 0x29, 0x2e, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x3, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x2, @loopback}}}, 0x108)
write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000940)=r0, 0x12)
socket$netlink(0x10, 0x3, 0x8000000004)
close(r3)

15.540713312s ago: executing program 4 (id=1958):
socket(0x1, 0x80802, 0x0)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
ioctl$SECCOMP_IOCTL_NOTIF_SEND(r0, 0xc0182101, 0x0)
r1 = syz_io_uring_setup(0xf01, &(0x7f0000000080)={0x0, 0x0, 0x80, 0x3, 0xca}, &(0x7f0000000100)=<r2=>0x0, 0x0, &(0x7f00000005c0)=<r3=>0x0)
syz_io_uring_submit(r2, 0x0, r3, &(0x7f0000000000)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x0, 0x4004, @fd_index=0x4, 0xfffffffffffffffd, 0x0, 0x0, 0x12, 0x1, {0x2}})
io_uring_enter(r1, 0x742f, 0x77ae, 0x1, 0x0, 0x0)

14.41743368s ago: executing program 4 (id=1962):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x11, &(0x7f0000000100)={[{@noblock_validity}, {@stripe={'stripe', 0x3d, 0x2}}, {@norecovery}, {@min_batch_time={'min_batch_time', 0x3d, 0x71d}}, {@abort}]}, 0x1, 0x610, &(0x7f0000000a40)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f0000000880)=ANY=[@ANYBLOB="000000004c900200000000000300010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000010009000000000000ffffffffffffffff00000000000000000800000000000000000000000000000000000000000000000000000000000000ffffffff"])

13.327100317s ago: executing program 4 (id=1964):
socket$inet6_sctp(0xa, 0x5, 0x84)
socket(0x1, 0x803, 0x0)
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000001300)={0x38, 0x1403, 0x1, 0x70bd26, 0x25dfdbff, "", [{{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'gre0\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x20000040}, 0x4008010)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
connect$inet(r1, 0x0, 0x0)
sendmmsg(r1, &(0x7f0000007fc0), 0x800001d, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000280)=ANY=[@ANYBLOB="1c0000001500010320000000000000000c0000000800040001"], 0x1c}}, 0x4000000)
sendmsg$nl_route(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=@newlink={0x28, 0x10, 0x1, 0x70bd25, 0x25dfdbf9, {0x0, 0x0, 0x0, 0x0, 0x48815, 0x40103}, [@IFLA_GROUP={0x8}]}, 0x28}, 0x1, 0x0, 0x0, 0x40801}, 0x4000000)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000300), 0x8)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x2, 0x13, &(0x7f0000000080)=ANY=[@ANYRESDEC=0x0, @ANYRES32, @ANYBLOB="00000000000000006608000000000000180000000000000000000000000000009500000000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a00000000000085000000060000009500000000000000"], &(0x7f0000000000)='GPL\x00', 0x2, 0xde, &(0x7f00000001c0)=""/222, 0x40f00, 0x8}, 0x94)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='devices.list\x00', 0x275a, 0x0)
write$cgroup_subtree(r4, &(0x7f0000000500)=ANY=[], 0x32600)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000b00), r5)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$wireguard(&(0x7f0000000200), 0xffffffffffffffff)
r7 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000c80)={'lo\x00'})
sendmsg$ETHTOOL_MSG_FEATURES_SET(r5, &(0x7f0000002540)={0x0, 0x0, &(0x7f0000002500)={&(0x7f0000000c80)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="010046bd7000020000000c000000180001801400020076657468305f746f5f626f6e6400000018000380140003800c000180080001"], 0x44}, 0x1, 0x0, 0x0, 0x4040084}, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x8, 0x8010, r5, 0xb9730000)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2000001, 0x10010, r1, 0xffffc000)
socket$kcm(0x2, 0x8, 0x2)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$gtp(&(0x7f00000006c0), r8)
sendmsg$GTP_CMD_ECHOREQ(r8, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000700)={0x1c, r9, 0x1, 0x70bd2a, 0x25dfdbff, {}, [@GTPA_FAMILY={0x5, 0xd, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4800}, 0x8010)

10.95469308s ago: executing program 8 (id=1966):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[], 0x48)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000180)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeee, 0x8031, 0xffffffffffffffff, 0x4000)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000240)={0x0, <r2=>0x0}, &(0x7f0000000280)=0x5)
setuid(r2)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x8, 0xe, &(0x7f0000000900)=ANY=[@ANYRESHEX], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000080), 0x8}, 0x94)

10.518179283s ago: executing program 8 (id=1969):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r2, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xb}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x0, 0x2}}}]}, 0x38}}, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
r4 = socket$kcm(0x11, 0x3, 0x0)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r5)
socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, 0x0)
r6 = socket(0x400000000010, 0x3, 0x0)
r7 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001300)=@newtfilter={0xe8c, 0x2c, 0xd27, 0x30bd29, 0x25dfdc00, {0x0, 0x0, 0x0, r8, {0x5, 0x4}, {}, {0x8}}, [@filter_kind_options=@f_matchall={{0xd}, {0xe58, 0x2, [@TCA_MATCHALL_ACT={0xe54, 0x2, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe20, 0x2, {{{0x9, 0x0, 0x1, 0xc, 0x1}, 0x4, 0x46}, [{0x7, 0x7, 0x40, 0x3, 0x0, 0x1}, {0x3edee688, 0x0, 0xfffffffd, 0x10, 0x5c56b80f, 0x5}, {0x8, 0x4, 0x1, 0x6, 0xf, 0x8001}, {0x4, 0xffffffff, 0x0, 0x8000, 0xffff, 0x9}, {0x0, 0x7, 0xb, 0xffffff81, 0x7fff, 0x4}, {0x1000, 0x81, 0xcec4, 0x1, 0x1, 0x7f}, {0x401, 0x2, 0x8, 0xfffffff7, 0x0, 0x7}, {0x2, 0x1, 0x1000, 0x4, 0x9, 0xa}, {0x8, 0x2, 0xf3320, 0x80000000, 0x9, 0x8}, {0x5, 0x2, 0x5, 0x5, 0x80000001}, {0x3, 0x2, 0x5, 0x3, 0x2, 0x5}, {0xfffffff5, 0x5, 0x6, 0x3, 0x8, 0x200}, {0x0, 0x2, 0x1, 0xc, 0xc61, 0x4}, {0x4, 0x1, 0x2, 0x8, 0xdad, 0xae}, {0x9, 0x4, 0xfff, 0x0, 0x90400000}, {0x7267, 0xe, 0xffffffff, 0x4, 0x3, 0x5}, {0x10000, 0x6, 0x80, 0xfffffff7, 0x20000009, 0x4}, {0x0, 0x7, 0xfa, 0x6, 0x3a00, 0xfffffffe}, {0xa00, 0x9, 0x0, 0x6, 0x7fff, 0x7ff}, {0x42, 0x10, 0x7, 0x10001, 0x2a}, {0x1, 0x2, 0x7fffffff, 0x1, 0x3, 0x7f}, {0x6326e196, 0x200, 0x9, 0x1, 0x6, 0x7}, {0xc8, 0x1, 0x1, 0x8, 0x4, 0x1d}, {0x13f, 0xd, 0x7fff00, 0x7f, 0x7ff, 0xffff}, {0xe, 0x2, 0x2, 0x0, 0x8, 0x6}, {0x5, 0x3, 0x53, 0x4, 0x400000, 0x1}, {0x0, 0xfff, 0x40, 0xfffffffc, 0x6, 0xcb03}, {0x6, 0x0, 0x80000000, 0x5, 0x8, 0x101}, {0xffffffff, 0x7fff, 0x20000000, 0x0, 0x1, 0x8}, {0x625321fa, 0x101, 0x0, 0xe0000000, 0x2, 0x1}, {0x5, 0x8001, 0x7000, 0x7, 0x61ae, 0x80000000}, {0x2, 0x6, 0x5, 0x2, 0x7fffffff, 0x2}, {0x5, 0x2, 0x8, 0x1907, 0x2, 0x3}, {0x8, 0x2, 0x1, 0x1, 0xffff, 0x6}, {0x8, 0x7, 0x6, 0x3, 0x8, 0x6}, {0x2, 0x2, 0x1, 0x200, 0x5}, {0x6, 0x7, 0x7, 0x100, 0x4, 0x3}, {0x100, 0x2, 0x80000001, 0x10, 0xfffffffa, 0xf}, {0xa9, 0xd12, 0xffffffff, 0xa, 0x6, 0x1d}, {0x41, 0x6, 0x0, 0x3, 0x1000, 0x5}, {0x6, 0x800, 0x4, 0x7, 0x1, 0x8001}, {0x4, 0x2, 0xfc0, 0xf898, 0x8001, 0x6}, {0x1, 0x3e, 0x98, 0x0, 0x3ff, 0x101}, {0x3ff, 0x2, 0x6, 0xfffffffb, 0x3ff, 0xa}, {0x7, 0x2, 0x3135, 0x1, 0x9, 0xcf}, {0xfffffffd, 0xf, 0x0, 0x8, 0xebb, 0x4}, {0xc, 0x5, 0x1, 0x6, 0x8}, {0x9, 0x3, 0x4, 0x1, 0x1ff, 0x80000000}, {0x6, 0x7, 0x8b, 0xfb, 0x80, 0x6}, {0x9, 0x80000000, 0xffffffff, 0xfffffa84, 0x6, 0x7f}, {0x1, 0xb, 0xbc, 0x5c, 0x6, 0x5}, {0x7, 0xfe, 0x0, 0x8, 0x5, 0x10}, {0x8, 0x4, 0x4, 0xfffffffb, 0x200, 0xcff}, {0x2, 0x8, 0x7, 0x8, 0x9, 0x35}, {0x0, 0x9, 0x0, 0xa, 0x3, 0xfe}, {0x8, 0x3, 0x0, 0x3c86, 0x56a5, 0x5}, {0xe4, 0x47, 0xffff, 0xd0, 0x2, 0x80000001}, {0x0, 0xa, 0x62, 0x10000, 0x6, 0xfffffff8}, {0x3, 0x4, 0x8d47, 0x710, 0x3c70}, {0x40, 0x7f, 0xd0, 0x0, 0xff, 0x8}, {0x2, 0xacd, 0x75ad, 0x7, 0x9, 0xff}, {0x80, 0x6, 0x10001, 0x1ff, 0x81, 0x12}, {0x0, 0x7a53, 0x5, 0x7, 0x8, 0x3}, {0x7, 0x1000000, 0xfffffff8, 0x9, 0x8, 0x40}, {0xfffffffe, 0x0, 0x6, 0x7fff, 0x80000001, 0x40}, {0x588f, 0x5, 0x7, 0x10001, 0xffffffff, 0x1}, {0x8, 0x4, 0x1c, 0x6, 0x3e, 0x9}, {0x2, 0x7, 0x5, 0x3, 0x8, 0x3}, {0xc, 0xc, 0x1be, 0x8, 0x9, 0x3}, {0x0, 0x7, 0xd94, 0x7, 0x9, 0x2}, {0x4, 0x6, 0x4, 0x3, 0x7, 0xffff}, {0x7, 0xc27, 0x2, 0xc614, 0x5, 0x5}, {0x5, 0x9, 0x7, 0x9, 0x0, 0x4}, {0xbc7, 0x4, 0xf08b, 0x6, 0x9, 0x23}, {0x6, 0x2, 0x6f, 0xea78, 0x9925, 0xb6d}, {0x5, 0xc9, 0x4, 0x0, 0x89, 0x14}, {0x8, 0x3, 0x9da, 0x800, 0xfffffffc, 0xe7e8}, {0x10000, 0x40, 0x5, 0xd0, 0xa9, 0x47a8}, {0x8, 0x3ff, 0x4, 0x3, 0x0, 0x9}, {0x48, 0xc, 0x3ff, 0x4, 0x800, 0xe}, {0x4, 0x1, 0x3, 0x4, 0x1000, 0xda30}, {0x1, 0xffff, 0x8001, 0x98, 0xfffffff8, 0x7}, {0x81, 0x1, 0x2, 0x7, 0xbc9, 0x28000000}, {0x7, 0xada, 0x1, 0x6, 0xfffffffe, 0xb030}, {0x9f, 0x761, 0xf95c, 0x2, 0x86, 0x5}, {0xd3, 0xffff, 0x6, 0xc424, 0x9, 0x4}, {0x5, 0xffffff6e, 0x7fff, 0x3, 0xd, 0x2}, {0x621, 0x2, 0x0, 0x9, 0x3, 0x4854}, {0x3, 0x6, 0x8, 0x1, 0x9, 0xa72}, {0x5, 0x4, 0x6, 0xfffffffa, 0x9, 0x3}, {0x0, 0xfffffff8, 0x8, 0x320, 0x5}, {0x6, 0x3, 0x200, 0x6, 0x1ff, 0x8}, {0x7ff, 0x5, 0x4, 0x4, 0x5, 0x800}, {0xfa4a, 0x5, 0x6, 0xa, 0x5, 0x2}, {0x8, 0x7, 0x5, 0x2, 0x6, 0x80000001}, {0x2, 0xa, 0x2, 0x7, 0x4, 0x5}, {0x9, 0x7, 0x4, 0x9eb, 0xa, 0x8}, {0x2, 0x4, 0x7, 0xffffffff, 0x3, 0x401}, {0x3ff, 0x2, 0x8, 0x3ff, 0xfffffffb, 0x1}, {0x0, 0x0, 0x0, 0xfffff55e, 0x8, 0x6}, {0x1, 0x7fff, 0x8, 0x4, 0x7ff, 0x6}, {0x8, 0x0, 0x0, 0xfffffffd, 0xfff, 0x40}, {0x9, 0x1, 0xa792, 0x5, 0x1ff}, {0xd94b, 0x5, 0x2, 0xff, 0x4f, 0x7ff}, {0xdbc, 0x80000000, 0x5d, 0x3, 0xfffffffc}, {0x8, 0x3, 0x67, 0x8, 0xbdf, 0xf7}, {0x4c0f, 0xfff, 0x0, 0xb, 0x8, 0x100}, {0x400, 0x9, 0x0, 0x4, 0x9, 0x1b}, {0x48fd4449, 0x2, 0x5, 0x4, 0x7f, 0xfffffffc}, {0x7ff, 0x5, 0x3, 0x5c93, 0xc, 0x6}, {0x8, 0x2c2d000, 0x9, 0x2, 0x1, 0x2}, {0xffffffff, 0x8076, 0x7f, 0xffffffc0, 0x7, 0x8001}, {0x0, 0x1, 0x7, 0x200, 0x5}, {0x78, 0x2d, 0x4, 0x4, 0x80000001, 0xe9}, {0x0, 0x6, 0x0, 0x255c, 0x9, 0x1000}, {0x200000, 0x200, 0x6, 0xfffffffd, 0x0, 0x6}, {0x77b, 0x0, 0x2, 0x1e8a, 0x1a, 0x4}, {0x1000, 0x4, 0x0, 0x2, 0x0, 0x1}, {0x7ff, 0x5, 0x5, 0x6, 0x6, 0x2000009}, {0x4, 0x800, 0xea2, 0x8000, 0x0, 0x40}, {0x9, 0x200, 0x539, 0x1, 0xb, 0x7}, {0x2, 0x2, 0x87, 0x7, 0xfffffffe, 0x1}, {0x1e7, 0x2, 0x6, 0x9bb, 0x3, 0x7}, {0x7, 0x3ff, 0xe322, 0x2, 0x4, 0xc}, {0xfffffffa, 0x2, 0x93, 0xfffffffa, 0x10001, 0x40}, {0x7, 0x9bc, 0x800, 0x9, 0x7, 0x3851}, {0xfffffffe, 0x101, 0x3, 0x1, 0x7, 0x4}, {0x5, 0x0, 0xb0, 0xa, 0x5, 0x5}], [{0x4}, {0x3}, {0x2}, {0x3}, {}, {}, {0x1, 0x1}, {0x1}, {0x2}, {0x4}, {0x3, 0x1}, {0x6}, {0x0, 0x1}, {0x7}, {0x1}, {0x4, 0x1}, {0x4}, {0x5, 0x1}, {0x3, 0x1}, {0x7}, {}, {0x2}, {0x1}, {0x5}, {0x5, 0x1}, {0x3}, {}, {0x3, 0x1}, {0x5, 0x1}, {}, {0x0, 0x1}, {0x4, 0x1}, {0x2, 0x2}, {0x5}, {}, {0x3, 0x1}, {0x3}, {0x4}, {}, {}, {0x3, 0x1}, {0x1}, {0x1}, {0x3}, {0x1}, {}, {0x3}, {0x5}, {0x5, 0x1}, {0x1}, {0x0, 0x1}, {0x1}, {0x5}, {0x1, 0x1}, {}, {0x1}, {0x2, 0x1}, {0x4, 0x1}, {0x1}, {0x0, 0x1}, {0x5, 0x1}, {0x2}, {}, {0x1, 0x1}, {0x1, 0x1}, {0x4}, {0x0, 0x1}, {0x3}, {0x2, 0x1}, {0x1}, {}, {0x5}, {0x1}, {}, {}, {0x4, 0x1}, {0x1}, {0x0, 0x1}, {0x4}, {0x3}, {0x2}, {0x4, 0x1}, {}, {0x5, 0x1}, {0x3, 0x1}, {0x4}, {0x5}, {0x4}, {0x3}, {0x1, 0x1}, {0x4, 0x1}, {0x1}, {0x4, 0x1}, {0x3, 0x1}, {0x7, 0x1}, {0x1, 0xd9d493184d3ac47}, {}, {0x2}, {0x4}, {0x1, 0x1}, {0x4, 0x1}, {0x5, 0x1}, {0x1}, {0x0, 0x1}, {0x5}, {0x3, 0x1}, {0xc49612a26cceaca7}, {0x0, 0xa5bbafc9e2acde54}, {0x5, 0x1}, {0x1}, {0x1}, {0x4, 0x1}, {0x3, 0x1}, {0x1, 0x1}, {0x1, 0x1}, {}, {0x1, 0x1}, {0x5, 0x1}, {0x5, 0x1}, {0x3, 0x1}, {0x0, 0x1}, {0x2}, {0x4, 0x2}, {0x5}, {0x2}, {0x5, 0x1}, {0x3, 0x1}, {0x2, 0x1}]}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}]}]}}]}, 0xe8c}, 0x1, 0x0, 0x0, 0x10}, 0x0)
setsockopt$sock_attach_bpf(r4, 0x107, 0xf, &(0x7f0000000600), 0x56)
sendmsg$kcm(r4, &(0x7f0000000000)={&(0x7f0000000380)=@xdp={0x2c, 0x0, 0x0, 0x3e}, 0x80, &(0x7f00000001c0)=[{&(0x7f0000000180)="27030200084014000e00002fb96dffff1144ee163cddcb000000800000827600000000000000", 0x26}, {&(0x7f0000000780)="f058050000007f8f", 0x4000}], 0x2}, 0x5)

10.499708864s ago: executing program 2 (id=1970):
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xe, 0x6, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x71, 0x11, 0x6e}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x7d}, @exit={0x95, 0x0, 0x33}], {0x95, 0x0, 0x5a5}}, 0x0, 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x6}, 0x94)

10.231010828s ago: executing program 2 (id=1972):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0))
socket$packet(0x11, 0x3, 0x300)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x62181)
write$sndseq(r0, &(0x7f0000000080)=[{0x84, 0x74, 0x0, 0x0, @time={0xd, 0x3}, {0xfd}, {0x7}, @raw32={[0x2, 0x66704740, 0x8000000]}}, {0x2, 0xff, 0x5, 0x83, @tick=0x1, {0xfd, 0x9}, {0x3, 0xd3}, @raw32={[0x1, 0x5, 0x1a8b]}}, {0xc, 0x6, 0x4, 0xf, @time={0x3, 0x8}, {0x3, 0x7}, {0x4, 0x8}, @connect={{0x3, 0x4}, {0x3, 0x8}}}, {0x40, 0x4, 0x3, 0xff, @tick=0x7, {0x8b, 0x3}, {0x81, 0xb}, @time=@time={0x2, 0x6}}], 0x70)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
unshare(0x4040600)

8.982647612s ago: executing program 8 (id=1974):
r0 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'veth1_to_bond\x00', <r1=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000600)=@newtfilter={0x44, 0x2c, 0xd27, 0x30bd28, 0x25dfdbfd, {0x0, 0x0, 0x0, r1, {0x0, 0xfff1}, {}, {0x2, 0xfff1}}, [@filter_kind_options=@f_flower={{0xb}, {0x14, 0x2, [@TCA_FLOWER_KEY_ENC_UDP_SRC_PORT={0x6}, @TCA_FLOWER_KEY_ENC_IPV4_SRC={0x8, 0x1b, @remote}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x4}, 0x4000800)

8.810613072s ago: executing program 5 (id=1975):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
clock_gettime(0x2, &(0x7f0000000040))
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSIFDSTADDR(r3, 0x891b, &(0x7f0000000000)={'lo\x00', {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0xa}}})
r4 = socket$netlink(0x10, 0x3, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x42)
writev(r4, &(0x7f00000000c0), 0x0)
creat(&(0x7f0000000280)='./file0\x00', 0x108)
r5 = syz_open_procfs(0x0, &(0x7f00000193c0)='net/igmp6\x00')
pread64(r5, &(0x7f0000019400)=""/102344, 0xfffffcbb, 0x1c2a)
quotactl$Q_SYNC(0xffffffff80000102, 0x0, 0x0, 0x0)

8.769638684s ago: executing program 2 (id=1976):
r0 = socket(0x2, 0x3, 0xff)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10)
connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @multicast1}, 0x10)
sendmmsg$unix(r0, &(0x7f0000000b40)=[{{0x0, 0x0, &(0x7f0000000740), 0x0, &(0x7f0000000ac0)=[@cred={{0x1c}}, @cred={{0x1c}}], 0x40, 0x4004}}], 0x1, 0x20000000)

8.768975574s ago: executing program 8 (id=1977):
syz_emit_ethernet(0x6a, &(0x7f0000000000)={@multicast, @multicast, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x5c, 0x0, 0x4002, 0x5, 0x11, 0x0, @empty, @empty}, {0x4e24, 0x0, 0x48, 0x0, @wg=@cookie={0x3, 0x4, "96597d00c5c0577eec4f99e3a24dd89fb66655d7b05291cb", "af6af5116bf52dbb91d30ae25aab828a961858f6c338a29f34c53e0526788e16"}}}}}}, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1342, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000300), 0xffffffffffffffff)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c6572"], 0x38}, 0x1, 0x0, 0x0, 0x4}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
writev(r0, &(0x7f00000001c0)=[{&(0x7f0000000040)="89e7ee0c7cdad9b4b47380c988cafb", 0x2a}, {&(0x7f0000000340)="448b7cff000000000000", 0xa}, {&(0x7f0000000100)="301ed9f9a338ef93c403155b88695211f0", 0x11}], 0x3)

8.65338241s ago: executing program 7 (id=1978):
syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x8413, &(0x7f0000000240)={[{@norecovery}, {}, {@nodioread_nolock}, {@acl}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1}}, {@noblock_validity}, {@usrjquota}, {@jqfmt_vfsv0}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x1000}}, {@resgid}, {@sysvgroups}]}, 0x18, 0x56a, &(0x7f0000000780)="$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")
openat(0xffffffffffffff9c, &(0x7f00000002c0)='.\x00', 0x80, 0x8c)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x10008, &(0x7f0000000000)={[{@nombcache}, {@nogrpid}]}, 0xff, 0x49e, &(0x7f0000000f40)="$eJzs3M9vFFUcAPDvbH/Qyo9WRBQEraCR+KOlBZWDBzSaeNDERA94rG1BZKGG1gRIo8UYPBoS78ajiX+BNy9GPRgTr5p4NCREe6F4qpmdGbpsd0u3tF3pfj7Jdt/bmd33vjPv7b6Z15kA2tZA+ieJ2BYRv0dEX5a9fYWB7Gl+bmbs5tzMWBILC2//nVTWuzE3M1asWrxva545VIoofZbE8WRpuVMXL50ZLZcnzuf5oemzHw5NXbz03Omzo6cmTk2cGzl27OiR4RdfGHl+TeJM47qx9+PJfXtef/fqm2Mnrr7307dptXbvz5ZXx3FHN+sEVMdAutX+WaioXfZkE3W/F2yvSiedLawITemIiHR3dVX6f190xOLO64vXPm1p5YB1lf42bWm8eHYB2MSSaHUNgNYofujT49/isUFDj/+F6y9HdOfp+bmZsflb8XdGKX+9ax3LH4iIE7P/fpU+otnzEAAAq1AZ2zxbb/xXit2V52yuY0c+h9IfEfdHxM6IeCAidkXEgxGVdR+KiIezNy/0rbD8gZr80vFP6VrdOq+RdPz3UtXYb74q/vypvyPPba/E35WcPF2eOJxvk0PRtSXNDy9Txvev/vZFo2XV47/0kZZfjAXzClzrrDlBNz46PbpWG+H65Yi9nfXiT27NBKQtYE9E7G3uo3cUidNPf7Ov0Up3jn8ZazDPtPB1xFPZ/p+NmvgLyfLzk0M9UZ44PFS0iqV+/vXKW43Kv6v418D1A49kicX9X7NGVUMrlyfOTzVfxpU/Pm94TLPa9t+dvFOZs/7l/ey1C6PT0+eHI7qTNyr54piu8vrI4nsvjE73pvli/bT9HzpYv//vzN+T7v90K6WNeH9EPBoRj+V1fzwiDkTEwWXi//GVJz5YJv4kkmjd/r8cMV73++9W++9PqufrV5HoOPPDd41mzFe2/4/GbOW7NlP5/ruDlVbwLjcfAAAA3BNKEbEtktJglh7YFqXS4GD2P/y74r5SeXJq+pmTkx+dG8+uEeiPrlJxpquv6nzocDKbf2KWH8nPFRfLj+Tnjb/s6K3kB8cmy+Mtjh3a3dbb+38U/T/1V0erawesO9drQfuq7f+lFtUD2Hgr+f13LACb0+39vyf909uqugAby/E/tK96/f+TmrzxP2xOS/v/n3VuWQdsRsb/0L70f2hf+j+0pWYu54/jjRb1REQztwUoLhZY/V0FelZ8hX+7JIo7XqxnWb1x6Ux3/kqUWhRpR5ONbVMk0h6zsYUu3kMFAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgXvZfAAAA//8hId5P")
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_mount_image$fuse(0x0, 0x0, 0x432300c, 0x0, 0x21, 0x0, 0x0)
chdir(0x0)
r3 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCETHTOOL(r3, 0x8946, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x40001, 0x0)
sendmsg$tipc(r1, &(0x7f0000000400)={&(0x7f00000001c0)=@name={0x1e, 0x2, 0x0, {{0x1, 0x4}, 0x1}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x20008040}, 0x4000000)
mkdir(&(0x7f0000000040)='./file0\x00', 0x5)

7.790464175s ago: executing program 5 (id=1979):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[], 0x48)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000180)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeee, 0x8031, 0xffffffffffffffff, 0x4000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, 0x0, 0x0)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000240)={0x0, <r4=>0x0}, &(0x7f0000000280)=0x5)
setuid(r4)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x8, 0xe, &(0x7f0000000900)=ANY=[@ANYRESHEX], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000080), 0x8}, 0x94)

7.778998586s ago: executing program 2 (id=1980):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000500)=@newlink={0x3c, 0x10, 0x1, 0x70bd25, 0x25dfdbf9, {0x0, 0x0, 0x0, 0x0, 0x68815, 0x40103}, [@IFLA_GROUP={0x8}, @IFLA_VFINFO_LIST={0x14, 0x16, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, [@IFLA_VF_TX_RATE={0xc, 0x3, {0x1, 0x6}}]}]}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40801}, 0x10)

6.788762757s ago: executing program 5 (id=1981):
syz_mount_image$ext4(&(0x7f0000000100)='ext3\x00', &(0x7f0000000340)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x4000804, &(0x7f0000002900)={[{@orlov}, {@grpid}, {@usrjquota}, {@grpid}, {@noload}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x3}}, {@init_itable_val={'init_itable', 0x3d, 0x9}}, {@init_itable}, {@bsdgroups}, {@grpid}, {@norecovery}]}, 0xfe, 0x499, &(0x7f0000002e80)="$eJzs3MtvFdUfAPDvTG8f8PtBK+IDBKmikfhoaXnIwo1GExaamOgC46q2hVQKNbQmQohWF7g0JO6N/4VxpRujbjRxq3tDQgwbUDdj5nHLbXtvH7TlBu7nk9z2nDunc853Zs70zJy5N4CONZj/SCL+HxG/R0R/mV1cYLD8devG5fG/b1weTyLL3vorKcrdvHF5vF60/nf/KzNZVuV7m9R75d2IsenpyQtVfnju3AfDsxcvvTB1buzM5JnJ86MnThw9sr/n+OixTYkzj+vm3o9n9u05+c7VN8ZPXX3vp6QWZdyxJI7NMlhu3aae3uzK2mxHQ7rYsAsO/HI73exIoJ26IiLfXd1F/++Prti2sKw/XvusrY0DtlSWZdkKZ+X5DLiPJdHuFgDtUV0CFNe/9dddHH603fWXywugPO5b1atcUou0TBzoXnJ9u5kGI+LU/D9f5a/YovsQAACNvsvHP883G/+l8XCZ6Ml/7KzmUAYi4oGI2BURD0bE7oh4KKIo+0hEPLrO+pfOkCwf/6TX7ji4NcjHfy9Vc1uLx39pvchAV5XbUcTfnZyemp48XG2TQ9Hde3oqmRxZoY7vX/3ti1bLGsd/+Suvvz4WrNpxrdbbt+hvJsbmxjYUdIPrn0bsrUXc6o4l8SdRn8ZJImJPROy9wzqmnq3WlHUtW7Z6/Cuo3WGDGmRfRzxT7v/5WBJ/XdJyfnLkxeOjx4b7Ynry8HD9qFju51+vvNmq/rXHP7/xYJvI9//2psf/QvwDSV/E7MVLZ4v52tn113Hlj89bXtOs7fhfyJzcUR3/PcnbxRs91YKPxubmLoxE9CSvL1p/8f7o8ny9fB7/oYPN+/+uuL0lHouIfRGxPyIezy8Kq7Y/ERFPRsTBFeL/8ZWn3l9//HdnrjSPf2K1/R+N+3/9ia6zP3y7evz5Oa7V/j9apA5V76zl/LfWBm5k2wEAAMC9Ii2egU/SoaRWpdN0aKh8hn93bE+nZ2bnnjs98+H5ifJZ+YHoTut3uvob7oeOVPeGBxrWPdCw/Eh13/jLrm1Ffmh8ZnqijXEDZT8v+v/CuaDs/7k/l9+uB+435Txa2u5mAG2wvnl0owK4n2zCczTAPSjR/6Gj6f/QuZr1/09alh76ZksbA9xV/v9D56r1rVqk+vRZ61EBcG/y/x86l/4PHanlZ+PTDX3kfyFRP7VsdD2rJf6tvs9wC6vosMTOVcpE2u4Wdkii1uzLLPJ+tZE1Z/1lv8zf6W1app1nJQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgM3zXwAAAP//ckjejw==")
syz_mount_image$vfat(&(0x7f0000000b00), &(0x7f00000005c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x181d011, 0x0, 0x40, 0x0, &(0x7f0000000140))
r0 = openat$ttyS3(0xffffffffffffff9c, 0x0, 0x109000, 0x0)
ioctl$TIOCMBIS(r0, 0x5416, 0xfffffffffffffffc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = fsopen(&(0x7f0000001340)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
fsmount(r4, 0x0, 0x80)
r5 = socket$netlink(0x10, 0x3, 0x0)
writev(r5, &(0x7f00000000c0)=[{&(0x7f0000000080)="290000001e00190f00003fffffffda060200000000e80001dd0008040d0008000c0000000005000000", 0x29}], 0x1)
write$cgroup_pid(0xffffffffffffffff, &(0x7f0000001c00), 0x12)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x30000c6, &(0x7f0000000200), 0x1, 0x569, &(0x7f00000002c0)="$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")
r6 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x11, 0x800000000004, @tid=r6}, &(0x7f0000bbdffc)=<r7=>0x0)
fcntl$lock(0xffffffffffffffff, 0x26, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x1})
timer_settime(r7, 0x1, &(0x7f0000000040)={{0x77359400}}, 0x0)
open(&(0x7f0000000200)='./file1\x00', 0x4827e, 0x0)

5.348665801s ago: executing program 7 (id=1982):
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xe, 0x6, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x71, 0x11, 0x6e}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x7d}, @exit={0x95, 0x0, 0x33}], {0x95, 0x0, 0x5a5}}, 0x0, 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x6}, 0x94)

5.229572878s ago: executing program 7 (id=1983):
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0xffffffffffffffff}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
semop(0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
sendmmsg$inet(r1, &(0x7f0000000800)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000003500)}}], 0x2, 0xc085)
bind$inet(r3, &(0x7f0000000200)={0x2, 0x4e20, @empty}, 0x10)
setsockopt$inet_mtu(r3, 0x0, 0xa, &(0x7f0000000180)=0x4, 0x4)
connect$inet(r3, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x18}}, 0x10)
setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f0000000040)='sit0\x00', 0x10)
setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, 0x0, 0x0)
setsockopt$IP_VS_SO_SET_FLUSH(0xffffffffffffffff, 0x0, 0x485, 0x0, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
close(0x3)
ftruncate(r4, 0x2000009)
sendfile(r3, r4, 0x0, 0x7ffff004)
socket$inet_icmp_raw(0x2, 0x3, 0x1)

4.501178936s ago: executing program 7 (id=1984):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r2, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xb}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x0, 0x2}}}]}, 0x38}}, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
r4 = socket$kcm(0x11, 0x3, 0x0)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r5)
socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, 0x0)
r6 = socket(0x400000000010, 0x3, 0x0)
r7 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001300)=@newtfilter={0xe8c, 0x2c, 0xd27, 0x30bd29, 0x25dfdc00, {0x0, 0x0, 0x0, r8, {0x5, 0x4}, {}, {0x8}}, [@filter_kind_options=@f_matchall={{0xd}, {0xe58, 0x2, [@TCA_MATCHALL_ACT={0xe54, 0x2, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe20, 0x2, {{{0x9, 0x0, 0x1, 0xc, 0x1}, 0x4, 0x46}, [{0x7, 0x7, 0x40, 0x3, 0x0, 0x1}, {0x3edee688, 0x0, 0xfffffffd, 0x10, 0x5c56b80f, 0x5}, {0x8, 0x4, 0x1, 0x6, 0xf, 0x8001}, {0x4, 0xffffffff, 0x0, 0x8000, 0xffff, 0x9}, {0x0, 0x7, 0xb, 0xffffff81, 0x7fff, 0x4}, {0x1000, 0x81, 0xcec4, 0x1, 0x1, 0x7f}, {0x401, 0x2, 0x8, 0xfffffff7, 0x0, 0x7}, {0x2, 0x1, 0x1000, 0x4, 0x9, 0xa}, {0x8, 0x2, 0xf3320, 0x80000000, 0x9, 0x8}, {0x5, 0x2, 0x5, 0x5, 0x80000001}, {0x3, 0x2, 0x5, 0x3, 0x2, 0x5}, {0xfffffff5, 0x5, 0x6, 0x3, 0x8, 0x200}, {0x0, 0x2, 0x1, 0xc, 0xc61, 0x4}, {0x4, 0x1, 0x2, 0x8, 0xdad, 0xae}, {0x9, 0x4, 0xfff, 0x0, 0x90400000}, {0x7267, 0xe, 0xffffffff, 0x4, 0x3, 0x5}, {0x10000, 0x6, 0x80, 0xfffffff7, 0x20000009, 0x4}, {0x0, 0x7, 0xfa, 0x6, 0x3a00, 0xfffffffe}, {0xa00, 0x9, 0x0, 0x6, 0x7fff, 0x7ff}, {0x42, 0x10, 0x7, 0x10001, 0x2a}, {0x1, 0x2, 0x7fffffff, 0x1, 0x3, 0x7f}, {0x6326e196, 0x200, 0x9, 0x1, 0x6, 0x7}, {0xc8, 0x1, 0x1, 0x8, 0x4, 0x1d}, {0x13f, 0xd, 0x7fff00, 0x7f, 0x7ff, 0xffff}, {0xe, 0x2, 0x2, 0x0, 0x8, 0x6}, {0x5, 0x3, 0x53, 0x4, 0x400000, 0x1}, {0x0, 0xfff, 0x40, 0xfffffffc, 0x6, 0xcb03}, {0x6, 0x0, 0x80000000, 0x5, 0x8, 0x101}, {0xffffffff, 0x7fff, 0x20000000, 0x0, 0x1, 0x8}, {0x625321fa, 0x101, 0x0, 0xe0000000, 0x2, 0x1}, {0x5, 0x8001, 0x7000, 0x7, 0x61ae, 0x80000000}, {0x2, 0x6, 0x5, 0x2, 0x7fffffff, 0x2}, {0x5, 0x2, 0x8, 0x1907, 0x2, 0x3}, {0x8, 0x2, 0x1, 0x1, 0xffff, 0x6}, {0x8, 0x7, 0x6, 0x3, 0x8, 0x6}, {0x2, 0x2, 0x1, 0x200, 0x5}, {0x6, 0x7, 0x7, 0x100, 0x4, 0x3}, {0x100, 0x2, 0x80000001, 0x10, 0xfffffffa, 0xf}, {0xa9, 0xd12, 0xffffffff, 0xa, 0x6, 0x1d}, {0x41, 0x6, 0x0, 0x3, 0x1000, 0x5}, {0x6, 0x800, 0x4, 0x7, 0x1, 0x8001}, {0x4, 0x2, 0xfc0, 0xf898, 0x8001, 0x6}, {0x1, 0x3e, 0x98, 0x0, 0x3ff, 0x101}, {0x3ff, 0x2, 0x6, 0xfffffffb, 0x3ff, 0xa}, {0x7, 0x2, 0x3135, 0x1, 0x9, 0xcf}, {0xfffffffd, 0xf, 0x0, 0x8, 0xebb, 0x4}, {0xc, 0x5, 0x1, 0x6, 0x8}, {0x9, 0x3, 0x4, 0x1, 0x1ff, 0x80000000}, {0x6, 0x7, 0x8b, 0xfb, 0x80, 0x6}, {0x9, 0x80000000, 0xffffffff, 0xfffffa84, 0x6, 0x7f}, {0x1, 0xb, 0xbc, 0x5c, 0x6, 0x5}, {0x7, 0xfe, 0x0, 0x8, 0x5, 0x10}, {0x8, 0x4, 0x4, 0xfffffffb, 0x200, 0xcff}, {0x2, 0x8, 0x7, 0x8, 0x9, 0x35}, {0x0, 0x9, 0x0, 0xa, 0x3, 0xfe}, {0x8, 0x3, 0x0, 0x3c86, 0x56a5, 0x5}, {0xe4, 0x47, 0xffff, 0xd0, 0x2, 0x80000001}, {0x0, 0xa, 0x62, 0x10000, 0x6, 0xfffffff8}, {0x3, 0x4, 0x8d47, 0x710, 0x3c70}, {0x40, 0x7f, 0xd0, 0x0, 0xff, 0x8}, {0x2, 0xacd, 0x75ad, 0x7, 0x9, 0xff}, {0x80, 0x6, 0x10001, 0x1ff, 0x81, 0x12}, {0x0, 0x7a53, 0x5, 0x7, 0x8, 0x3}, {0x7, 0x1000000, 0xfffffff8, 0x9, 0x8, 0x40}, {0xfffffffe, 0x0, 0x6, 0x7fff, 0x80000001, 0x40}, {0x588f, 0x5, 0x7, 0x10001, 0xffffffff, 0x1}, {0x8, 0x4, 0x1c, 0x6, 0x3e, 0x9}, {0x2, 0x7, 0x5, 0x3, 0x8, 0x3}, {0xc, 0xc, 0x1be, 0x8, 0x9, 0x3}, {0x0, 0x7, 0xd94, 0x7, 0x9, 0x2}, {0x4, 0x6, 0x4, 0x3, 0x7, 0xffff}, {0x7, 0xc27, 0x2, 0xc614, 0x5, 0x5}, {0x5, 0x9, 0x7, 0x9, 0x0, 0x4}, {0xbc7, 0x4, 0xf08b, 0x6, 0x9, 0x23}, {0x6, 0x2, 0x6f, 0xea78, 0x9925, 0xb6d}, {0x5, 0xc9, 0x4, 0x0, 0x89, 0x14}, {0x8, 0x3, 0x9da, 0x800, 0xfffffffc, 0xe7e8}, {0x10000, 0x40, 0x5, 0xd0, 0xa9, 0x47a8}, {0x8, 0x3ff, 0x4, 0x3, 0x0, 0x9}, {0x48, 0xc, 0x3ff, 0x4, 0x800, 0xe}, {0x4, 0x1, 0x3, 0x4, 0x1000, 0xda30}, {0x1, 0xffff, 0x8001, 0x98, 0xfffffff8, 0x7}, {0x81, 0x1, 0x2, 0x7, 0xbc9, 0x28000000}, {0x7, 0xada, 0x1, 0x6, 0xfffffffe, 0xb030}, {0x9f, 0x761, 0xf95c, 0x2, 0x86, 0x5}, {0xd3, 0xffff, 0x6, 0xc424, 0x9, 0x4}, {0x5, 0xffffff6e, 0x7fff, 0x3, 0xd, 0x2}, {0x621, 0x2, 0x0, 0x9, 0x3, 0x4854}, {0x3, 0x6, 0x8, 0x1, 0x9, 0xa72}, {0x5, 0x4, 0x6, 0xfffffffa, 0x9, 0x3}, {0x0, 0xfffffff8, 0x8, 0x320, 0x5}, {0x6, 0x3, 0x200, 0x6, 0x1ff, 0x8}, {0x7ff, 0x5, 0x4, 0x4, 0x5, 0x800}, {0xfa4a, 0x5, 0x6, 0xa, 0x5, 0x2}, {0x8, 0x7, 0x5, 0x2, 0x6, 0x80000001}, {0x2, 0xa, 0x2, 0x7, 0x4, 0x5}, {0x9, 0x7, 0x4, 0x9eb, 0xa, 0x8}, {0x2, 0x4, 0x7, 0xffffffff, 0x3, 0x401}, {0x3ff, 0x2, 0x8, 0x3ff, 0xfffffffb, 0x1}, {0x0, 0x0, 0x0, 0xfffff55e, 0x8, 0x6}, {0x1, 0x7fff, 0x8, 0x4, 0x7ff, 0x6}, {0x8, 0x0, 0x0, 0xfffffffd, 0xfff, 0x40}, {0x9, 0x1, 0xa792, 0x5, 0x1ff}, {0xd94b, 0x5, 0x2, 0xff, 0x4f, 0x7ff}, {0xdbc, 0x80000000, 0x5d, 0x3, 0xfffffffc}, {0x8, 0x3, 0x67, 0x8, 0xbdf, 0xf7}, {0x4c0f, 0xfff, 0x0, 0xb, 0x8, 0x100}, {0x400, 0x9, 0x0, 0x4, 0x9, 0x1b}, {0x48fd4449, 0x2, 0x5, 0x4, 0x7f, 0xfffffffc}, {0x7ff, 0x5, 0x3, 0x5c93, 0xc, 0x6}, {0x8, 0x2c2d000, 0x9, 0x2, 0x1, 0x2}, {0xffffffff, 0x8076, 0x7f, 0xffffffc0, 0x7, 0x8001}, {0x0, 0x1, 0x7, 0x200, 0x5}, {0x78, 0x2d, 0x4, 0x4, 0x80000001, 0xe9}, {0x0, 0x6, 0x0, 0x255c, 0x9, 0x1000}, {0x200000, 0x200, 0x6, 0xfffffffd, 0x0, 0x6}, {0x77b, 0x0, 0x2, 0x1e8a, 0x1a, 0x4}, {0x1000, 0x4, 0x0, 0x2, 0x0, 0x1}, {0x7ff, 0x5, 0x5, 0x6, 0x6, 0x2000009}, {0x4, 0x800, 0xea2, 0x8000, 0x0, 0x40}, {0x9, 0x200, 0x539, 0x1, 0xb, 0x7}, {0x2, 0x2, 0x87, 0x7, 0xfffffffe, 0x1}, {0x1e7, 0x2, 0x6, 0x9bb, 0x3, 0x7}, {0x7, 0x3ff, 0xe322, 0x2, 0x4, 0xc}, {0xfffffffa, 0x2, 0x93, 0xfffffffa, 0x10001, 0x40}, {0x7, 0x9bc, 0x800, 0x9, 0x7, 0x3851}, {0xfffffffe, 0x101, 0x3, 0x1, 0x7, 0x4}, {0x5, 0x0, 0xb0, 0xa, 0x5, 0x5}], [{0x4}, {0x3}, {0x2}, {0x3}, {}, {}, {0x1, 0x1}, {0x1}, {0x2}, {0x4}, {0x3, 0x1}, {0x6}, {0x0, 0x1}, {0x7}, {0x1}, {0x4, 0x1}, {0x4}, {0x5, 0x1}, {0x3, 0x1}, {0x7}, {}, {0x2}, {0x1}, {0x5}, {0x5, 0x1}, {0x3}, {}, {0x3, 0x1}, {0x5, 0x1}, {}, {0x0, 0x1}, {0x4, 0x1}, {0x2, 0x2}, {0x5}, {}, {0x3, 0x1}, {0x3}, {0x4}, {}, {}, {0x3, 0x1}, {0x1}, {0x1}, {0x3}, {0x1}, {}, {0x3}, {0x5}, {0x5, 0x1}, {0x1}, {0x0, 0x1}, {0x1}, {0x5}, {0x1, 0x1}, {}, {0x1}, {0x2, 0x1}, {0x4, 0x1}, {0x1}, {0x0, 0x1}, {0x5, 0x1}, {0x2}, {}, {0x1, 0x1}, {0x1, 0x1}, {0x4}, {0x0, 0x1}, {0x3}, {0x2, 0x1}, {0x1}, {}, {0x5}, {0x1}, {}, {}, {0x4, 0x1}, {0x1}, {0x0, 0x1}, {0x4}, {0x3}, {0x2}, {0x4, 0x1}, {}, {0x5, 0x1}, {0x3, 0x1}, {0x4}, {0x5}, {0x4}, {0x3}, {0x1, 0x1}, {0x4, 0x1}, {0x1}, {0x4, 0x1}, {0x3, 0x1}, {0x7, 0x1}, {0x1, 0xd9d493184d3ac47}, {}, {0x2}, {0x4}, {0x1, 0x1}, {0x4, 0x1}, {0x5, 0x1}, {0x1}, {0x0, 0x1}, {0x5}, {0x3, 0x1}, {0xc49612a26cceaca7}, {0x0, 0xa5bbafc9e2acde54}, {0x5, 0x1}, {0x1}, {0x1}, {0x4, 0x1}, {0x3, 0x1}, {0x1, 0x1}, {0x1, 0x1}, {}, {0x1, 0x1}, {0x5, 0x1}, {0x5, 0x1}, {0x3, 0x1}, {0x0, 0x1}, {0x2}, {0x4, 0x2}, {0x5}, {0x2}, {0x5, 0x1}, {0x3, 0x1}, {0x2, 0x1}]}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}]}]}}]}, 0xe8c}, 0x1, 0x0, 0x0, 0x10}, 0x0)
setsockopt$sock_attach_bpf(r4, 0x107, 0xf, &(0x7f0000000600), 0x56)
sendmsg$kcm(r4, &(0x7f0000000000)={&(0x7f0000000380)=@xdp={0x2c, 0x0, 0x0, 0x3e}, 0x80, &(0x7f00000001c0)=[{&(0x7f0000000180)="27030200084014000e00002fb96dffff1144ee163cddcb000000800000827600000000000000", 0x26}, {&(0x7f0000000780)="f058050000007f8f", 0x4000}], 0x2}, 0x5)

2.443162733s ago: executing program 2 (id=1985):
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
r1 = socket(0x840000000002, 0x3, 0xff)
getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f0000000400)={{{@in6=@loopback, @in=@multicast1}}, {{@in=@local}, 0x0, @in=@initdev}}, &(0x7f0000000500)=0xe8)
r2 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0x840, &(0x7f0000000380), 0x0, 0x543, &(0x7f0000001200)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
getdents(r2, &(0x7f0000000100)=""/43, 0x2b)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40042, 0x1)
signalfd4(0xffffffffffffffff, &(0x7f0000000000)={[0xfffffffffffffff7]}, 0x8, 0x80000)
syz_open_dev$tty1(0xc, 0x4, 0x1)
r6 = syz_open_procfs(0x0, &(0x7f0000000040)='map_files\x00')
getdents(r6, &(0x7f0000000f40)=""/243, 0xf3)
bind$802154_raw(r0, 0x0, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r6, 0x6, 0x13, &(0x7f00000005c0)=0xffffffffffffffff, 0x4)
mremap(&(0x7f0000005000/0x4000)=nil, 0x4000, 0x1000, 0x3, &(0x7f0000003000/0x1000)=nil)

2.427153354s ago: executing program 5 (id=1986):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSIFDSTADDR(r3, 0x891b, &(0x7f0000000000)={'lo\x00', {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0xa}}})
sched_setaffinity(r0, 0x8, &(0x7f00000002c0)=0x2)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000300)='/proc/bus/input/devices\x00', 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000000c0)={'hsr0\x00'})
r4 = socket$netlink(0x10, 0x3, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0xe, 0x7fff0000}]})
r5 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x42)
fsync(r5)
writev(r4, &(0x7f00000000c0), 0x0)
creat(&(0x7f0000000280)='./file0\x00', 0x108)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x20000023896)
r6 = syz_open_procfs(0x0, &(0x7f00000193c0)='net/igmp6\x00')
pread64(r6, &(0x7f0000019400)=""/102344, 0xfffffcbb, 0x1c2a)
quotactl$Q_SYNC(0xffffffff80000102, 0x0, 0x0, 0x0)

2.370300907s ago: executing program 7 (id=1987):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0))
socket$packet(0x11, 0x3, 0x300)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x62181)
write$sndseq(r0, &(0x7f0000000080)=[{0x84, 0x74, 0x0, 0x0, @time={0xd, 0x3}, {0xfd}, {0x7}, @raw32={[0x2, 0x66704740, 0x8000000]}}, {0x2, 0xff, 0x5, 0x83, @tick=0x1, {0xfd, 0x9}, {0x3, 0xd3}, @raw32={[0x1, 0x5, 0x1a8b]}}, {0xc, 0x6, 0x4, 0xf, @time={0x3, 0x8}, {0x3, 0x7}, {0x4, 0x8}, @connect={{0x3, 0x4}, {0x3, 0x8}}}, {0x40, 0x4, 0x3, 0xff, @tick=0x7, {0x8b, 0x3}, {0x81, 0xb}, @time=@time={0x2, 0x6}}], 0x70)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
unshare(0x4040600)

2.369483287s ago: executing program 8 (id=1988):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000400)=@newlink={0x68, 0x10, 0x1, 0x70bd2c, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, 0x2b24d, 0x11a24}, [@IFLA_IFNAME={0x14, 0x3, 'netdevsim0\x00'}, @IFLA_VFINFO_LIST={0x34, 0x16, 0x0, 0x1, [{0x30, 0x1, 0x0, 0x1, [@IFLA_VF_VLAN_LIST={0x2c, 0xc, 0x0, 0x1, [{0x14, 0x1, {0x3ff, 0x6fb, 0xffffffff, 0x88a8}}, {0x14, 0x1, {0xe39, 0x3f, 0xd, 0x8100}}]}]}]}]}, 0x68}, 0x1, 0x0, 0x0, 0x408c1}, 0x0)

1.972669797s ago: executing program 8 (id=1989):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000040)='./file1\x00', 0x21081e, &(0x7f00000001c0)={[{@grpquota}, {@nogrpid}, {@quota}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101e42, 0x33)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000005c0)=0x400)
r1 = io_uring_setup(0xf08, 0x0)
io_uring_register$IORING_REGISTER_FILES(r1, 0x20, 0x0, 0x0)
pwritev2(r0, &(0x7f0000000cc0)=[{&(0x7f0000000240)=';', 0xffffffbc}], 0x1, 0xfff, 0xc, 0x4)
ioctl$EXT4_IOC_MIGRATE(r0, 0x6609)

1.765512608s ago: executing program 7 (id=1990):
r0 = syz_usb_connect(0x5, 0x64, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000cb8be7406d04230807000102030109025200010000000009044000000e0100390a240108"], 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000200)={0x24, 0x0, &(0x7f0000000140)={0x0, 0x3, 0x1d, @string={0x1d, 0x3, "e5c5b110ff010000000000000dce64b67d4e7052a264b6607b7530"}}, &(0x7f00000005c0), 0x0}, 0x0)
syz_usb_control_io$printer(r0, &(0x7f0000000880)={0x14, 0x0, &(0x7f0000000a00)={0x0, 0x3, 0x14, @string={0x14, 0x3, "d2a7c993ef2c435eeecdf8e32879569c6a9d"}}}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
inotify_init1(0x80000)
r2 = socket$netlink(0x10, 0x3, 0xf)
sendmsg$netlink(r2, &(0x7f0000001e00)={0x0, 0x0, &(0x7f0000001d80)=[{&(0x7f0000000b40)={0x30, 0x2e, 0x503, 0x70bd29, 0x0, "", [@nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @u32=0x3}, @typed={0x8, 0x0, 0x0, 0x0, @fd}, @typed={0xc, 0xf, 0x0, 0x0, @u64}]}]}, 0x30}], 0x1}, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f00000000c0)=0x1, 0x4)
syz_emit_ethernet(0x4a, &(0x7f00000007c0)={@link_local, @dev, @val={@void}, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "f53a04", 0x10, 0x3a, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x1, 0x8, 0x7, 0xb, 0x2}}}}}}, 0x0)
connect$inet(0xffffffffffffffff, &(0x7f00000006c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2}}, 0x10)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000a80)=[{{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000180)="a4", 0xffa6}], 0x1}}], 0x1, 0x24044c45)
ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f0000000040)=0x8)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff8000}]})
close_range(r3, 0xffffffffffffffff, 0x0)

1.214401347s ago: executing program 5 (id=1991):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[], 0x48)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000180)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeee, 0x8031, 0xffffffffffffffff, 0x4000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, 0x0, 0x0)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000240)={0x0, <r4=>0x0}, &(0x7f0000000280)=0x5)
setuid(r4)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x8, 0xe, &(0x7f0000000900)=ANY=[@ANYRESHEX], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000080), 0x8}, 0x94)

164.911581ms ago: executing program 2 (id=1992):
syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x8413, &(0x7f0000000240)={[{@norecovery}, {}, {@nodioread_nolock}, {@acl}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1}}, {@noblock_validity}, {@usrjquota}, {@jqfmt_vfsv0}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x1000}}, {@resgid}, {@sysvgroups}]}, 0x18, 0x56a, &(0x7f0000000780)="$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")
openat(0xffffffffffffff9c, &(0x7f00000002c0)='.\x00', 0x80, 0x8c)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x10008, &(0x7f0000000000)={[{@nombcache}, {@nogrpid}]}, 0xff, 0x49e, &(0x7f0000000f40)="$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")
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_mount_image$fuse(0x0, 0x0, 0x432300c, 0x0, 0x21, 0x0, 0x0)
chdir(0x0)
r3 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCETHTOOL(r3, 0x8946, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280), 0x40001, 0x0)
sendmsg$tipc(r1, &(0x7f0000000400)={&(0x7f00000001c0)=@name={0x1e, 0x2, 0x0, {{0x1, 0x4}, 0x1}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x20008040}, 0x4000000)
mkdir(&(0x7f0000000040)='./file0\x00', 0x5)

0s ago: executing program 5 (id=1993):
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xe, 0x6, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x71, 0x11, 0x6e}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x7d}, @exit={0x95, 0x0, 0x33}], {0x95, 0x0, 0x5a5}}, &(0x7f0000000080)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x6}, 0x94)

kernel console output (not intermixed with test programs):

pt filesystem
[  496.277220][ T9345] EXT4-fs (loop4): 1 truncate cleaned up
[  496.283289][ T9345] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  496.326153][ T9345] EXT4-fs error (device loop4): ext4_find_dest_de:2115: inode #2: block 13: comm syz.4.1181: bad entry in directory: directory entry too close to block end - offset=76, inode=16, rec_len=940, size=1024 fake=0
[  496.442090][ T4268] EXT4-fs (loop4): unmounting filesystem.
[  500.039930][ T4611] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  500.249989][ T4611] usb 3-1: device descriptor read/64, error -71
[  500.532484][ T4611] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  500.758039][ T4611] usb 3-1: device descriptor read/64, error -71
[  500.926678][ T4611] usb usb3-port1: attempt power cycle
[  501.370273][ T4611] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  501.431942][ T4611] usb 3-1: device descriptor read/8, error -71
[  501.620507][ T1273] ieee802154 phy0 wpan0: encryption failed: -22
[  501.627410][ T1273] ieee802154 phy1 wpan1: encryption failed: -22
[  501.709762][ T4611] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  501.764444][ T4611] usb 3-1: device descriptor read/8, error -71
[  501.914822][ T4611] usb usb3-port1: unable to enumerate USB device
[  504.055242][ T9377] loop2: detected capacity change from 0 to 512
[  504.132135][ T9380] binder: BINDER_SET_CONTEXT_MGR already set
[  504.155058][ T9377] EXT4-fs error (device loop2): ext4_xattr_inode_iget:401: inode #12: comm syz.2.1189: missing EA_INODE flag
[  504.160102][ T9380] binder: 9378:9380 ioctl 4018620d 200000004a80 returned -16
[  504.260209][ T9377] EXT4-fs error (device loop2): ext4_xattr_inode_iget:406: comm syz.2.1189: error while reading EA inode 12 err=-117
[  504.283350][ T9377] EXT4-fs (loop2): 1 orphan inode deleted
[  504.338990][ T9377] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  505.601673][ T9397] loop7: detected capacity change from 0 to 512
[  505.697040][ T9397] EXT4-fs: Ignoring removed orlov option
[  505.704577][ T4271] EXT4-fs (loop2): unmounting filesystem.
[  505.767124][ T9397] EXT4-fs (loop7): mounting ext3 file system using the ext4 subsystem
[  506.031455][ T9397] EXT4-fs error (device loop7): ext4_iget_extra_inode:4763: inode #15: comm syz.7.1194: corrupted in-inode xattr
[  506.086858][ T9397] EXT4-fs error (device loop7): ext4_orphan_get:1410: comm syz.7.1194: couldn't read orphan inode 15 (err -117)
[  506.137047][ T9397] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[  507.148724][ T9415] EXT4-fs error (device loop7): ext4_iget_extra_inode:4763: inode #15: comm syz.7.1194: corrupted in-inode xattr
[  513.586973][ T9413] netlink: 'syz.7.1194': attribute type 8 has an invalid length.
[  513.745108][ T8108] EXT4-fs (loop7): unmounting filesystem.
[  513.864450][ T9433] sch_tbf: burst 0 is lower than device syzkaller0 mtu (1500) !
[  513.975489][ T9441] loop4: detected capacity change from 0 to 512
[  513.999022][ T9441] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  514.043871][ T9441] EXT4-fs error (device loop4): mb_free_blocks:1839: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt.
[  514.068801][ T9441] EXT4-fs error (device loop4): ext4_do_update_inode:5279: inode #11: comm syz.4.1202: corrupted inode contents
[  514.093928][ T9441] EXT4-fs error (device loop4): ext4_dirty_inode:6156: inode #11: comm syz.4.1202: mark_inode_dirty error
[  514.112377][ T9441] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.1202: invalid indirect mapped block 1 (level 1)
[  514.131865][ T9433] device syzkaller0 entered promiscuous mode
[  514.137733][ T9441] EXT4-fs error (device loop4): ext4_do_update_inode:5279: inode #11: comm syz.4.1202: corrupted inode contents
[  514.139354][ T9441] EXT4-fs error (device loop4) in ext4_orphan_del:303: Corrupt filesystem
[  514.165111][ T9441] EXT4-fs error (device loop4): ext4_do_update_inode:5279: inode #11: comm syz.4.1202: corrupted inode contents
[  514.218050][ T9441] EXT4-fs error (device loop4): ext4_truncate:4325: inode #11: comm syz.4.1202: mark_inode_dirty error
[  514.276660][ T9441] EXT4-fs error (device loop4) in ext4_process_orphan:345: Corrupt filesystem
[  514.295656][ T9441] EXT4-fs (loop4): 1 truncate cleaned up
[  514.317612][ T9441] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  514.374343][ T9441] EXT4-fs error (device loop4): ext4_find_dest_de:2115: inode #2: block 13: comm syz.4.1202: bad entry in directory: directory entry too close to block end - offset=76, inode=16, rec_len=940, size=1024 fake=0
[  514.535363][ T4268] EXT4-fs (loop4): unmounting filesystem.
[  514.761344][ T9459] loop5: detected capacity change from 0 to 512
[  514.799087][ T9459] EXT4-fs error (device loop5): ext4_xattr_inode_iget:401: inode #12: comm syz.5.1207: missing EA_INODE flag
[  514.828820][ T9459] EXT4-fs error (device loop5): ext4_xattr_inode_iget:406: comm syz.5.1207: error while reading EA inode 12 err=-117
[  514.865205][ T9459] EXT4-fs (loop5): 1 orphan inode deleted
[  514.884052][ T9459] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  515.139381][   T22] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[  515.751469][   T22] usb 5-1: config 0 has an invalid interface number: 64 but max is 0
[  515.779293][   T22] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  515.809746][   T22] usb 5-1: config 0 has no interface number 0
[  515.849373][   T22] usb 5-1: New USB device found, idVendor=046d, idProduct=0823, bcdDevice= 0.07
[  515.873351][   T22] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  515.897733][   T22] usb 5-1: Product: syz
[  515.908764][   T22] usb 5-1: Manufacturer: syz
[  515.913945][   T22] usb 5-1: SerialNumber: syz
[  515.922450][   T22] usb 5-1: config 0 descriptor??
[  515.992721][ T7165] EXT4-fs (loop5): unmounting filesystem.
[  518.505275][   T22] usb 5-1: USB disconnect, device number 17
[  520.296978][ T9479] netlink: 'syz.0.1212': attribute type 8 has an invalid length.
[  522.573348][ T9524] loop7: detected capacity change from 0 to 512
[  522.609178][ T9524] EXT4-fs error (device loop7): ext4_xattr_inode_iget:401: inode #12: comm syz.7.1222: missing EA_INODE flag
[  522.638406][ T9524] EXT4-fs error (device loop7): ext4_xattr_inode_iget:406: comm syz.7.1222: error while reading EA inode 12 err=-117
[  522.653319][ T9524] EXT4-fs (loop7): 1 orphan inode deleted
[  522.662035][ T9524] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  522.799536][ T4693] usb 5-1: new full-speed USB device number 18 using dummy_hcd
[  523.731409][ T4693] usb 5-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  523.774570][ T8108] EXT4-fs (loop7): unmounting filesystem.
[  523.789825][ T4693] usb 5-1: config 0 interface 0 altsetting 4 endpoint 0x81 has invalid wMaxPacketSize 0
[  524.009500][ T9541] sch_tbf: peakrate 11 is lower than or equals to rate 996173156578218475 !
[  524.562038][ T4693] usb 5-1: config 0 interface 0 has no altsetting 0
[  524.569080][ T4693] usb 5-1: New USB device found, idVendor=28de, idProduct=1102, bcdDevice= 0.00
[  524.578369][ T4693] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  524.617671][ T4693] usb 5-1: config 0 descriptor??
[  524.686676][ T9546] device syzkaller0 entered promiscuous mode
[  525.056359][ T4693] hid-steam 0003:28DE:1102.000B: hidraw0: USB HID v0.01 Device [HID 28de:1102] on usb-dummy_hcd.4-1/input0
[  525.257371][ T4693] usb 5-1: USB disconnect, device number 18
[  525.289843][ T9565] autofs4:pid:9565:autofs_fill_super: called with bogus options
[  532.018697][ T9633] loop5: detected capacity change from 0 to 512
[  532.066710][ T9633] EXT4-fs: Ignoring removed orlov option
[  532.108693][ T9633] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[  532.159902][ T4311] usb 8-1: new full-speed USB device number 6 using dummy_hcd
[  532.173673][ T9633] EXT4-fs error (device loop5): ext4_iget_extra_inode:4763: inode #15: comm syz.5.1245: corrupted in-inode xattr
[  532.189713][ T4610] usb 5-1: new high-speed USB device number 19 using dummy_hcd
[  532.198020][ T9633] EXT4-fs error (device loop5): ext4_orphan_get:1410: comm syz.5.1245: couldn't read orphan inode 15 (err -117)
[  532.271502][ T9633] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  532.361744][ T4311] usb 8-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  532.394797][ T4311] usb 8-1: config 0 interface 0 altsetting 4 endpoint 0x81 has invalid wMaxPacketSize 0
[  532.409917][ T4610] usb 5-1: Using ep0 maxpacket: 32
[  532.422256][ T4610] usb 5-1: config index 0 descriptor too short (expected 29220, got 36)
[  532.443446][ T4311] usb 8-1: config 0 interface 0 has no altsetting 0
[  532.471535][ T4610] usb 5-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  532.473477][ T4311] usb 8-1: New USB device found, idVendor=28de, idProduct=1102, bcdDevice= 0.00
[  532.545694][ T4311] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  532.593677][ T4311] usb 8-1: config 0 descriptor??
[  532.699079][ T4610] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  532.719533][ T4610] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 81
[  532.728774][ T4610] usb 5-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  532.777798][ T4610] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  532.808308][ T9650] netlink: 'syz.5.1245': attribute type 8 has an invalid length.
[  532.888349][ T9650] EXT4-fs error (device loop5): ext4_iget_extra_inode:4763: inode #15: comm syz.5.1245: corrupted in-inode xattr
[  533.158886][ T4610] usb 5-1: config 0 descriptor??
[  533.401533][ T4610] usb 5-1: USB disconnect, device number 19
[  533.450918][ T7165] EXT4-fs (loop5): unmounting filesystem.
[  533.523090][ T4311] hid-steam 0003:28DE:1102.000C: hidraw0: USB HID v0.01 Device [HID 28de:1102] on usb-dummy_hcd.7-1/input0
[  533.721233][   T22] usb 8-1: USB disconnect, device number 6
[  533.820152][ T9665] loop5: detected capacity change from 0 to 512
[  533.827919][ T9658] fido_id[9658]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.7/usb8/report_descriptor': No such file or directory
[  534.020307][ T9665] EXT4-fs error (device loop5): ext4_xattr_inode_iget:401: inode #12: comm syz.5.1250: missing EA_INODE flag
[  534.059716][ T4610] usb 5-1: new high-speed USB device number 20 using dummy_hcd
[  534.077085][ T9665] EXT4-fs error (device loop5): ext4_xattr_inode_iget:406: comm syz.5.1250: error while reading EA inode 12 err=-117
[  534.165176][ T9665] EXT4-fs (loop5): 1 orphan inode deleted
[  534.205253][ T9665] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  534.269713][ T4610] usb 5-1: Using ep0 maxpacket: 32
[  534.279859][ T4610] usb 5-1: config index 0 descriptor too short (expected 29220, got 36)
[  534.348037][ T4610] usb 5-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  534.541861][ T4610] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  534.552918][ T4610] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 81
[  534.564923][ T4610] usb 5-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  534.575086][ T4610] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  534.592143][ T4610] usb 5-1: config 0 descriptor??
[  535.533558][ T4311] usb 5-1: USB disconnect, device number 20
[  535.572916][ T7165] EXT4-fs (loop5): unmounting filesystem.
[  535.859690][ T4355] usb 8-1: new high-speed USB device number 7 using dummy_hcd
[  536.061663][ T4355] usb 8-1: config 0 has an invalid interface number: 64 but max is 0
[  536.084910][ T4355] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  536.166348][ T4355] usb 8-1: config 0 has no interface number 0
[  536.205793][ T4355] usb 8-1: New USB device found, idVendor=046d, idProduct=0823, bcdDevice= 0.07
[  536.245753][ T4355] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  536.269606][ T4355] usb 8-1: Product: syz
[  536.279835][ T4355] usb 8-1: Manufacturer: syz
[  536.293298][ T4355] usb 8-1: SerialNumber: syz
[  536.333642][ T4355] usb 8-1: config 0 descriptor??
[  537.945124][ T4355] usb 8-1: USB disconnect, device number 7
[  538.228558][ T9709] loop2: detected capacity change from 0 to 512
[  538.279163][ T9709] EXT4-fs: Ignoring removed orlov option
[  538.330481][ T9709] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  538.386289][ T9709] EXT4-fs error (device loop2): ext4_iget_extra_inode:4763: inode #15: comm syz.2.1259: corrupted in-inode xattr
[  538.420217][ T9709] EXT4-fs error (device loop2): ext4_orphan_get:1410: comm syz.2.1259: couldn't read orphan inode 15 (err -117)
[  538.448411][ T9709] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  539.235709][ T9718] EXT4-fs error (device loop2): ext4_iget_extra_inode:4763: inode #15: comm syz.2.1259: corrupted in-inode xattr
[  540.236051][ T4606] usb 6-1: new full-speed USB device number 5 using dummy_hcd
[  540.451185][ T4606] usb 6-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  540.468803][ T4606] usb 6-1: config 0 interface 0 altsetting 4 endpoint 0x81 has invalid wMaxPacketSize 0
[  540.479019][ T4606] usb 6-1: config 0 interface 0 has no altsetting 0
[  540.486022][ T4606] usb 6-1: New USB device found, idVendor=28de, idProduct=1102, bcdDevice= 0.00
[  540.504381][ T4606] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  540.547971][ T4606] usb 6-1: config 0 descriptor??
[  540.978056][ T4606] hid-steam 0003:28DE:1102.000D: hidraw0: USB HID v0.01 Device [HID 28de:1102] on usb-dummy_hcd.5-1/input0
[  541.184861][ T4606] usb 6-1: USB disconnect, device number 5
[  542.116190][ T4606] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  542.230116][ T9716] netlink: 'syz.2.1259': attribute type 8 has an invalid length.
[  542.369812][ T4606] usb 6-1: Using ep0 maxpacket: 32
[  542.377552][ T4606] usb 6-1: config index 0 descriptor too short (expected 29220, got 36)
[  542.387503][ T4271] EXT4-fs (loop2): unmounting filesystem.
[  542.421037][ T4606] usb 6-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  542.592195][ T9730] loop7: detected capacity change from 0 to 512
[  542.649817][ T4606] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  542.660686][ T4606] usb 6-1: config 0 has 0 interfaces, different from the descriptor's value: 81
[  542.671701][ T4606] usb 6-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  542.682005][ T4606] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  542.692631][ T4606] usb 6-1: config 0 descriptor??
[  542.727516][ T9730] EXT4-fs (loop7): mounting ext2 file system using the ext4 subsystem
[  542.736820][ T9733] tmpfs: Unknown parameter ''
[  542.918721][   T22] usb 6-1: USB disconnect, device number 6
[  543.267573][ T9730] EXT4-fs error (device loop7): mb_free_blocks:1839: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt.
[  543.364868][ T9730] EXT4-fs error (device loop7): ext4_do_update_inode:5279: inode #11: comm syz.7.1266: corrupted inode contents
[  543.414382][ T9730] EXT4-fs error (device loop7): ext4_dirty_inode:6156: inode #11: comm syz.7.1266: mark_inode_dirty error
[  543.441401][ T9730] EXT4-fs error (device loop7): ext4_free_branches:1030: inode #11: comm syz.7.1266: invalid indirect mapped block 1 (level 1)
[  543.483353][ T9730] EXT4-fs error (device loop7): ext4_do_update_inode:5279: inode #11: comm syz.7.1266: corrupted inode contents
[  543.514347][ T9730] EXT4-fs error (device loop7) in ext4_orphan_del:303: Corrupt filesystem
[  543.529830][   T22] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  543.545173][ T9730] EXT4-fs error (device loop7): ext4_do_update_inode:5279: inode #11: comm syz.7.1266: corrupted inode contents
[  543.589976][ T9730] EXT4-fs error (device loop7): ext4_truncate:4325: inode #11: comm syz.7.1266: mark_inode_dirty error
[  543.620007][ T9730] EXT4-fs error (device loop7) in ext4_process_orphan:345: Corrupt filesystem
[  543.646220][ T9730] EXT4-fs (loop7): 1 truncate cleaned up
[  543.675959][ T9730] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[  543.749736][   T22] usb 6-1: Using ep0 maxpacket: 32
[  543.765342][ T9730] EXT4-fs error (device loop7): ext4_find_dest_de:2115: inode #2: block 13: comm syz.7.1266: bad entry in directory: directory entry too close to block end - offset=76, inode=16, rec_len=940, size=1024 fake=0
[  543.787289][   T22] usb 6-1: config index 0 descriptor too short (expected 29220, got 36)
[  543.813815][   T22] usb 6-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  543.842805][   T22] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  543.882859][   T22] usb 6-1: config 0 has 0 interfaces, different from the descriptor's value: 81
[  543.922995][   T22] usb 6-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  543.951718][   T22] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  543.992092][   T22] usb 6-1: config 0 descriptor??
[  544.018531][ T8108] EXT4-fs (loop7): unmounting filesystem.
[  544.256694][ T9763] loop7: detected capacity change from 0 to 512
[  544.476165][ T9763] Quota error (device loop7): v2_read_file_info: Block with free entry 5 out of range (1, 0).
[  544.538019][ T9763] EXT4-fs warning (device loop7): ext4_enable_quotas:7093: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  544.628907][ T9763] EXT4-fs (loop7): mount failed
[  544.705480][   T22] usb 5-1: new high-speed USB device number 21 using dummy_hcd
[  544.930003][ T9773] netlink: 68 bytes leftover after parsing attributes in process `syz.0.1272'.
[  545.151554][   T22] usb 5-1: config 0 has an invalid interface number: 64 but max is 0
[  545.185366][   T22] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  545.358843][   T22] usb 5-1: config 0 has no interface number 0
[  545.396966][   T22] usb 5-1: New USB device found, idVendor=046d, idProduct=0823, bcdDevice= 0.07
[  545.454663][   T22] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  545.497473][   T22] usb 5-1: Product: syz
[  545.521996][   T22] usb 5-1: Manufacturer: syz
[  545.547761][   T22] usb 5-1: SerialNumber: syz
[  545.620338][   T22] usb 5-1: config 0 descriptor??
[  545.739982][ T4606] usb 6-1: USB disconnect, device number 7
[  547.259417][   T22] usb 5-1: USB disconnect, device number 21
[  547.752748][ T9808] loop2: detected capacity change from 0 to 512
[  547.858087][ T9808] EXT4-fs error (device loop2): ext4_xattr_inode_iget:401: inode #12: comm syz.2.1279: missing EA_INODE flag
[  547.995933][ T9808] EXT4-fs error (device loop2): ext4_xattr_inode_iget:406: comm syz.2.1279: error while reading EA inode 12 err=-117
[  548.491915][ T9818] loop4: detected capacity change from 0 to 512
[  548.519278][ T9808] EXT4-fs (loop2): 1 orphan inode deleted
[  548.574255][ T9808] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  548.583721][ T9818] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  548.840987][ T9818] EXT4-fs error (device loop4): mb_free_blocks:1839: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt.
[  548.879015][ T9821] tmpfs: Unknown parameter ''
[  548.937667][ T9818] EXT4-fs error (device loop4): ext4_do_update_inode:5279: inode #11: comm syz.4.1280: corrupted inode contents
[  548.967514][ T9818] EXT4-fs error (device loop4): ext4_dirty_inode:6156: inode #11: comm syz.4.1280: mark_inode_dirty error
[  549.007126][ T9818] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.1280: invalid indirect mapped block 1 (level 1)
[  549.099552][ T9818] EXT4-fs error (device loop4): ext4_do_update_inode:5279: inode #11: comm syz.4.1280: corrupted inode contents
[  549.202173][ T9818] EXT4-fs error (device loop4) in ext4_orphan_del:303: Corrupt filesystem
[  549.224774][ T9818] EXT4-fs error (device loop4): ext4_do_update_inode:5279: inode #11: comm syz.4.1280: corrupted inode contents
[  549.231786][ T4271] EXT4-fs (loop2): unmounting filesystem.
[  549.259552][ T9818] EXT4-fs error (device loop4): ext4_truncate:4325: inode #11: comm syz.4.1280: mark_inode_dirty error
[  549.344705][ T9818] EXT4-fs error (device loop4) in ext4_process_orphan:345: Corrupt filesystem
[  549.369165][ T9818] EXT4-fs (loop4): 1 truncate cleaned up
[  549.405669][ T9818] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  549.477066][ T9818] EXT4-fs error (device loop4): ext4_find_dest_de:2115: inode #2: block 13: comm syz.4.1280: bad entry in directory: directory entry too close to block end - offset=76, inode=16, rec_len=940, size=1024 fake=0
[  549.642687][ T4268] EXT4-fs (loop4): unmounting filesystem.
[  550.272567][   T22] usb 5-1: new high-speed USB device number 22 using dummy_hcd
[  550.512476][   T22] usb 5-1: config 0 has an invalid interface number: 64 but max is 0
[  550.521013][   T22] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  550.544219][   T22] usb 5-1: config 0 has no interface number 0
[  550.579732][   T22] usb 5-1: New USB device found, idVendor=046d, idProduct=0823, bcdDevice= 0.07
[  550.589124][   T22] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  550.597758][   T22] usb 5-1: Product: syz
[  550.602509][   T22] usb 5-1: Manufacturer: syz
[  550.607292][   T22] usb 5-1: SerialNumber: syz
[  550.614677][   T22] usb 5-1: config 0 descriptor??
[  551.587369][   T22] usb 5-1: USB disconnect, device number 22
[  553.281930][ T4689] usb 5-1: new high-speed USB device number 23 using dummy_hcd
[  553.487546][ T4689] usb 5-1: Using ep0 maxpacket: 32
[  553.525253][ T4689] usb 5-1: config index 0 descriptor too short (expected 29220, got 36)
[  553.534033][ T4689] usb 5-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  553.543016][ T4689] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  553.553227][ T4689] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 81
[  553.562866][ T4689] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  553.576337][ T4689] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 18
[  553.589682][ T4689] usb 5-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  553.598783][ T4689] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  553.618422][ T4689] usb 5-1: config 0 descriptor??
[  553.849564][ T4355] usb 5-1: USB disconnect, device number 23
[  554.223143][ T9815] netlink: 'syz.0.1278': attribute type 8 has an invalid length.
[  554.549587][ T4355] usb 5-1: new high-speed USB device number 24 using dummy_hcd
[  554.742244][ T4355] usb 5-1: Using ep0 maxpacket: 32
[  554.764442][ T4355] usb 5-1: config index 0 descriptor too short (expected 29220, got 36)
[  554.890918][ T4610] usb 8-1: new high-speed USB device number 8 using dummy_hcd
[  554.905974][ T4355] usb 5-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  555.052925][ T4355] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  555.136889][ T4610] usb 8-1: config 0 has an invalid interface number: 64 but max is 0
[  555.199256][ T4610] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  555.257154][ T4355] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 81
[  555.465306][ T4610] usb 8-1: config 0 has no interface number 0
[  555.502813][ T4355] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  555.551975][ T4610] usb 8-1: New USB device found, idVendor=046d, idProduct=0823, bcdDevice= 0.07
[  555.571670][ T4355] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 18
[  555.605314][ T4610] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  555.630187][ T4610] usb 8-1: Product: syz
[  555.635726][ T4355] usb 5-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  555.653262][ T9884] loop2: detected capacity change from 0 to 512
[  555.659718][ T4610] usb 8-1: Manufacturer: syz
[  555.664458][ T4610] usb 8-1: SerialNumber: syz
[  555.669977][ T4355] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  555.697882][ T4610] usb 8-1: config 0 descriptor??
[  555.716304][ T9884] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[  555.734479][ T4355] usb 5-1: config 0 descriptor??
[  555.808320][ T9884] EXT4-fs error (device loop2): mb_free_blocks:1839: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt.
[  555.834382][ T9884] EXT4-fs error (device loop2): ext4_do_update_inode:5279: inode #11: comm syz.2.1292: corrupted inode contents
[  555.854013][ T9884] EXT4-fs error (device loop2): ext4_dirty_inode:6156: inode #11: comm syz.2.1292: mark_inode_dirty error
[  555.869747][ T9884] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #11: comm syz.2.1292: invalid indirect mapped block 1 (level 1)
[  555.890518][ T9884] EXT4-fs error (device loop2): ext4_do_update_inode:5279: inode #11: comm syz.2.1292: corrupted inode contents
[  555.946433][ T9884] EXT4-fs error (device loop2) in ext4_orphan_del:303: Corrupt filesystem
[  555.966335][ T9884] EXT4-fs error (device loop2): ext4_do_update_inode:5279: inode #11: comm syz.2.1292: corrupted inode contents
[  555.984752][ T9884] EXT4-fs error (device loop2): ext4_truncate:4325: inode #11: comm syz.2.1292: mark_inode_dirty error
[  555.996729][ T9884] EXT4-fs error (device loop2) in ext4_process_orphan:345: Corrupt filesystem
[  556.012344][ T9884] EXT4-fs (loop2): 1 truncate cleaned up
[  556.018164][ T9884] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  556.054570][ T9884] EXT4-fs error (device loop2): ext4_find_dest_de:2115: inode #2: block 13: comm syz.2.1292: bad entry in directory: directory entry too close to block end - offset=76, inode=16, rec_len=940, size=1024 fake=0
[  556.237036][ T4271] EXT4-fs (loop2): unmounting filesystem.
[  557.072975][ T9908] loop5: detected capacity change from 0 to 512
[  557.122576][ T9908] EXT4-fs: Ignoring removed orlov option
[  557.186375][ T9908] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[  557.299420][ T4689] usb 8-1: USB disconnect, device number 8
[  557.335515][ T9908] EXT4-fs error (device loop5): ext4_iget_extra_inode:4763: inode #15: comm syz.5.1297: corrupted in-inode xattr
[  557.410970][ T9908] EXT4-fs error (device loop5): ext4_orphan_get:1410: comm syz.5.1297: couldn't read orphan inode 15 (err -117)
[  557.461679][ T9908] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  557.496977][ T4693] usb 5-1: USB disconnect, device number 24
[  558.057747][ T9919] netlink: 'syz.5.1297': attribute type 8 has an invalid length.
[  558.161389][ T9919] EXT4-fs error (device loop5): ext4_iget_extra_inode:4763: inode #15: comm syz.5.1297: corrupted in-inode xattr
[  558.687277][ T7165] EXT4-fs (loop5): unmounting filesystem.
[  559.875035][ T9954] loop5: detected capacity change from 0 to 512
[  560.083787][ T9954] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[  560.202680][ T9954] EXT4-fs error (device loop5): mb_free_blocks:1839: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt.
[  560.229637][ T9954] EXT4-fs error (device loop5): ext4_do_update_inode:5279: inode #11: comm syz.5.1306: corrupted inode contents
[  560.259546][ T4311] usb 5-1: new full-speed USB device number 25 using dummy_hcd
[  560.298992][ T9954] EXT4-fs error (device loop5): ext4_dirty_inode:6156: inode #11: comm syz.5.1306: mark_inode_dirty error
[  560.319991][ T9954] EXT4-fs error (device loop5): ext4_free_branches:1030: inode #11: comm syz.5.1306: invalid indirect mapped block 1 (level 1)
[  560.349739][ T9954] EXT4-fs error (device loop5): ext4_do_update_inode:5279: inode #11: comm syz.5.1306: corrupted inode contents
[  560.373432][ T9954] EXT4-fs error (device loop5) in ext4_orphan_del:303: Corrupt filesystem
[  560.384523][ T9954] EXT4-fs error (device loop5): ext4_do_update_inode:5279: inode #11: comm syz.5.1306: corrupted inode contents
[  560.397725][ T9954] EXT4-fs error (device loop5): ext4_truncate:4325: inode #11: comm syz.5.1306: mark_inode_dirty error
[  560.414204][ T9954] EXT4-fs error (device loop5) in ext4_process_orphan:345: Corrupt filesystem
[  560.441544][ T4311] usb 5-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  560.453366][ T9954] EXT4-fs (loop5): 1 truncate cleaned up
[  560.459083][ T9954] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  560.478329][ T4311] usb 5-1: config 0 interface 0 altsetting 4 endpoint 0x81 has invalid wMaxPacketSize 0
[  560.519328][ T4311] usb 5-1: config 0 interface 0 has no altsetting 0
[  560.526417][ T4311] usb 5-1: New USB device found, idVendor=28de, idProduct=1102, bcdDevice= 0.00
[  560.559655][ T4689] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  560.567690][ T4311] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  560.607783][ T4311] usb 5-1: config 0 descriptor??
[  560.633672][ T7165] EXT4-fs (loop5): unmounting filesystem.
[  560.760688][ T4689] usb 3-1: config 0 has an invalid interface number: 64 but max is 0
[  560.784064][ T4689] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  560.809859][ T4689] usb 3-1: config 0 has no interface number 0
[  560.841128][ T4689] usb 3-1: New USB device found, idVendor=046d, idProduct=0823, bcdDevice= 0.07
[  560.859652][ T4689] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  560.878355][ T4689] usb 3-1: Product: syz
[  560.888518][ T4689] usb 3-1: Manufacturer: syz
[  560.898685][ T4689] usb 3-1: SerialNumber: syz
[  560.922076][ T4689] usb 3-1: config 0 descriptor??
[  561.036533][ T4311] hid-steam 0003:28DE:1102.000E: unknown main item tag 0x3
[  561.075477][ T4311] hid-steam 0003:28DE:1102.000E: hidraw0: USB HID v0.01 Device [HID 28de:1102] on usb-dummy_hcd.4-1/input0
[  561.087468][ T4693] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  561.249341][ T4324] usb 5-1: USB disconnect, device number 25
[  561.269750][ T4693] usb 6-1: Using ep0 maxpacket: 32
[  561.277391][ T4693] usb 6-1: config index 0 descriptor too short (expected 29220, got 36)
[  561.316832][ T4693] usb 6-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  561.347464][ T4693] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  561.388786][ T4693] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 81
[  561.409735][ T4693] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  561.439565][ T4693] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 18
[  561.473352][ T4693] usb 6-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  561.503919][ T4693] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  561.528130][ T9970] fido_id[9970]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.4/usb5/report_descriptor': No such file or directory
[  561.549287][ T4693] usb 6-1: config 0 descriptor??
[  561.800669][ T4606] usb 6-1: USB disconnect, device number 8
[  561.983363][   T22] usb 3-1: USB disconnect, device number 14
[  562.419837][ T4606] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  562.682535][ T4606] usb 6-1: Using ep0 maxpacket: 32
[  562.699969][ T4606] usb 6-1: config index 0 descriptor too short (expected 29220, got 36)
[  562.721474][ T4606] usb 6-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  562.746389][ T4606] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  562.772021][ T4606] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 81
[  562.803656][ T4606] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  562.827125][ T4606] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 18
[  562.867512][ T4606] usb 6-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  562.898265][ T4606] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  562.927877][ T4606] usb 6-1: config 0 descriptor??
[  563.063950][ T1273] ieee802154 phy0 wpan0: encryption failed: -22
[  563.070375][ T1273] ieee802154 phy1 wpan1: encryption failed: -22
[  564.305732][ T9999] loop2: detected capacity change from 0 to 512
[  564.341521][ T9999] EXT4-fs: Ignoring removed orlov option
[  564.377911][ T9999] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  564.448229][ T9999] EXT4-fs error (device loop2): ext4_iget_extra_inode:4763: inode #15: comm syz.2.1313: corrupted in-inode xattr
[  564.549648][ T9999] EXT4-fs error (device loop2): ext4_orphan_get:1410: comm syz.2.1313: couldn't read orphan inode 15 (err -117)
[  564.573148][ T9999] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  564.743684][ T4606] usb 6-1: USB disconnect, device number 9
[  564.995005][T10013] binder_alloc: 10012: binder_alloc_buf, no vma
[  565.072791][T10015] netlink: 'syz.2.1313': attribute type 8 has an invalid length.
[  565.193514][T10015] EXT4-fs error (device loop2): ext4_iget_extra_inode:4763: inode #15: comm syz.2.1313: corrupted in-inode xattr
[  565.914496][ T4271] EXT4-fs (loop2): unmounting filesystem.
[  566.650160][ T4605] usb 8-1: new high-speed USB device number 9 using dummy_hcd
[  571.485402][T10056] loop7: detected capacity change from 0 to 512
[  571.541057][T10056] EXT4-fs: Ignoring removed orlov option
[  571.579700][T10056] EXT4-fs (loop7): mounting ext3 file system using the ext4 subsystem
[  571.616971][T10056] EXT4-fs error (device loop7): ext4_iget_extra_inode:4763: inode #15: comm syz.7.1330: corrupted in-inode xattr
[  571.672523][T10056] EXT4-fs error (device loop7): ext4_orphan_get:1410: comm syz.7.1330: couldn't read orphan inode 15 (err -117)
[  571.719968][T10056] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[  572.252448][T10067] netlink: 'syz.7.1330': attribute type 8 has an invalid length.
[  572.369176][T10067] EXT4-fs error (device loop7): ext4_iget_extra_inode:4763: inode #15: comm syz.7.1330: corrupted in-inode xattr
[  572.877123][ T8108] EXT4-fs (loop7): unmounting filesystem.
[  574.053156][T10076] loop2: detected capacity change from 0 to 512
[  574.136242][ T4282] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  574.146881][T10076] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[  574.159831][ T4282] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  574.170667][ T4282] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  574.180275][ T4282] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  574.189693][ T4282] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  574.199342][ T4282] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  574.230518][T10076] EXT4-fs error (device loop2): mb_free_blocks:1839: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt.
[  574.299917][T10076] EXT4-fs error (device loop2): ext4_do_update_inode:5279: inode #11: comm syz.2.1333: corrupted inode contents
[  574.372583][T10076] EXT4-fs error (device loop2): ext4_dirty_inode:6156: inode #11: comm syz.2.1333: mark_inode_dirty error
[  574.414029][T10076] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #11: comm syz.2.1333: invalid indirect mapped block 1 (level 1)
[  574.480372][T10076] EXT4-fs error (device loop2): ext4_do_update_inode:5279: inode #11: comm syz.2.1333: corrupted inode contents
[  574.579339][T10076] EXT4-fs error (device loop2) in ext4_orphan_del:303: Corrupt filesystem
[  574.614516][T10076] EXT4-fs error (device loop2): ext4_do_update_inode:5279: inode #11: comm syz.2.1333: corrupted inode contents
[  574.690172][T10076] EXT4-fs error (device loop2): ext4_truncate:4325: inode #11: comm syz.2.1333: mark_inode_dirty error
[  574.728098][T10076] EXT4-fs error (device loop2) in ext4_process_orphan:345: Corrupt filesystem
[  574.738532][T10076] EXT4-fs (loop2): 1 truncate cleaned up
[  574.753326][T10076] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  575.125631][   T22] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  576.519782][ T4282] Bluetooth: hci5: command 0x0409 tx timeout
[  577.476925][ T4271] EXT4-fs (loop2): unmounting filesystem.
[  577.562930][T10081] chnl_net:caif_netlink_parms(): no params data found
[  578.271111][    T9] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  578.579474][ T4282] Bluetooth: hci5: command 0x041b tx timeout
[  579.083405][T10117] loop7: detected capacity change from 0 to 512
[  579.124554][T10121] loop2: detected capacity change from 0 to 512
[  579.132133][T10121] EXT4-fs: Ignoring removed orlov option
[  579.152779][T10121] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  579.297015][T10117] EXT4-fs error (device loop7): ext4_xattr_inode_iget:401: inode #12: comm syz.7.1340: missing EA_INODE flag
[  579.437641][T10117] EXT4-fs error (device loop7): ext4_xattr_inode_iget:406: comm syz.7.1340: error while reading EA inode 12 err=-117
[  579.619059][T10117] EXT4-fs (loop7): 1 orphan inode deleted
[  579.682732][T10117] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  579.925744][    T9] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  579.942210][T10121] EXT4-fs error (device loop2): ext4_iget_extra_inode:4763: inode #15: comm syz.2.1341: corrupted in-inode xattr
[  579.989228][T10121] EXT4-fs error (device loop2): ext4_orphan_get:1410: comm syz.2.1341: couldn't read orphan inode 15 (err -117)
[  580.041490][T10121] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  580.299724][T10131] tmpfs: Unknown parameter ''
[  580.649571][ T4282] Bluetooth: hci5: command 0x040f tx timeout
[  580.725313][ T8108] EXT4-fs (loop7): unmounting filesystem.
[  581.202531][T10138] EXT4-fs error (device loop2): ext4_iget_extra_inode:4763: inode #15: comm syz.2.1341: corrupted in-inode xattr
[  581.591842][    T9] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  581.660605][T10081] bridge0: port 1(bridge_slave_0) entered blocking state
[  581.668054][T10081] bridge0: port 1(bridge_slave_0) entered disabled state
[  581.718326][T10081] device bridge_slave_0 entered promiscuous mode
[  581.759364][T10137] netlink: 'syz.2.1341': attribute type 8 has an invalid length.
[  581.767592][T10081] bridge0: port 2(bridge_slave_1) entered blocking state
[  581.813109][T10081] bridge0: port 2(bridge_slave_1) entered disabled state
[  581.824840][T10148] loop4: detected capacity change from 0 to 512
[  581.843008][T10081] device bridge_slave_1 entered promiscuous mode
[  581.873098][T10148] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  581.918686][ T4271] EXT4-fs (loop2): unmounting filesystem.
[  581.953059][T10142] device batadv_slave_0 entered promiscuous mode
[  581.979775][T10144] device batadv_slave_0 left promiscuous mode
[  582.036100][T10148] EXT4-fs error (device loop4): mb_free_blocks:1839: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt.
[  582.059636][T10148] EXT4-fs error (device loop4): ext4_do_update_inode:5279: inode #11: comm syz.4.1347: corrupted inode contents
[  582.123874][T10081] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  582.137076][T10148] EXT4-fs error (device loop4): ext4_dirty_inode:6156: inode #11: comm syz.4.1347: mark_inode_dirty error
[  582.204407][T10148] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.1347: invalid indirect mapped block 1 (level 1)
[  582.276520][    T9] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  582.325281][T10081] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  582.344964][T10148] EXT4-fs error (device loop4): ext4_do_update_inode:5279: inode #11: comm syz.4.1347: corrupted inode contents
[  582.436752][T10148] EXT4-fs error (device loop4) in ext4_orphan_del:303: Corrupt filesystem
[  582.460308][T10148] EXT4-fs error (device loop4): ext4_do_update_inode:5279: inode #11: comm syz.4.1347: corrupted inode contents
[  582.551698][T10148] EXT4-fs error (device loop4): ext4_truncate:4325: inode #11: comm syz.4.1347: mark_inode_dirty error
[  582.584122][T10081] team0: Port device team_slave_0 added
[  582.617537][T10148] EXT4-fs error (device loop4) in ext4_process_orphan:345: Corrupt filesystem
[  582.643199][T10081] team0: Port device team_slave_1 added
[  582.673361][T10148] EXT4-fs (loop4): 1 truncate cleaned up
[  582.682525][T10148] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  582.729647][ T4282] Bluetooth: hci5: command 0x0419 tx timeout
[  583.206011][T10081] batman_adv: batadv0: Adding interface: batadv_slave_0
[  583.599463][T10081] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  583.771922][ T4268] EXT4-fs (loop4): unmounting filesystem.
[  583.787819][T10081] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  583.854105][T10186] 9pnet_fd: Insufficient options for proto=fd
[  583.882329][T10183] loop5: detected capacity change from 0 to 512
[  583.956142][T10188] loop4: detected capacity change from 0 to 512
[  584.018251][T10081] batman_adv: batadv0: Adding interface: batadv_slave_1
[  584.020184][T10183] Quota error (device loop5): v2_read_file_info: Block with free entry 5 out of range (1, 0).
[  584.039538][T10081] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  584.070123][T10183] EXT4-fs warning (device loop5): ext4_enable_quotas:7093: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  584.086185][T10183] EXT4-fs (loop5): mount failed
[  584.094728][T10188] EXT4-fs error (device loop4): ext4_xattr_inode_iget:401: inode #12: comm syz.4.1355: missing EA_INODE flag
[  584.122303][T10081] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  584.143285][T10188] EXT4-fs error (device loop4): ext4_xattr_inode_iget:406: comm syz.4.1355: error while reading EA inode 12 err=-117
[  584.289092][T10188] EXT4-fs (loop4): 1 orphan inode deleted
[  584.356947][T10188] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  584.396132][T10081] device hsr_slave_0 entered promiscuous mode
[  585.050611][T10205] tmpfs: Unknown parameter ''
[  585.523000][ T4268] EXT4-fs (loop4): unmounting filesystem.
[  585.550078][T10081] device hsr_slave_1 entered promiscuous mode
[  585.634026][T10208] loop5: detected capacity change from 0 to 512
[  585.667543][T10081] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  585.696414][T10208] EXT4-fs: Ignoring removed orlov option
[  585.711421][T10081] Cannot create hsr debugfs directory
[  585.750445][T10208] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[  585.876689][T10208] EXT4-fs error (device loop5): ext4_iget_extra_inode:4763: inode #15: comm syz.5.1358: corrupted in-inode xattr
[  585.919355][    T9] tipc: Left network mode
[  585.963149][T10208] EXT4-fs error (device loop5): ext4_orphan_get:1410: comm syz.5.1358: couldn't read orphan inode 15 (err -117)
[  586.000291][T10208] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  586.539995][T10223] EXT4-fs error (device loop5): ext4_iget_extra_inode:4763: inode #15: comm syz.5.1358: corrupted in-inode xattr
[  586.607024][T10222] netlink: 'syz.5.1358': attribute type 8 has an invalid length.
[  586.915621][ T7165] EXT4-fs (loop5): unmounting filesystem.
[  587.728016][T10241] loop5: detected capacity change from 0 to 512
[  587.797900][T10241] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[  587.844743][T10241] EXT4-fs error (device loop5): mb_free_blocks:1839: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt.
[  587.939332][T10241] EXT4-fs error (device loop5): ext4_do_update_inode:5279: inode #11: comm syz.5.1364: corrupted inode contents
[  587.961994][T10241] EXT4-fs error (device loop5): ext4_dirty_inode:6156: inode #11: comm syz.5.1364: mark_inode_dirty error
[  588.009797][T10241] EXT4-fs error (device loop5): ext4_free_branches:1030: inode #11: comm syz.5.1364: invalid indirect mapped block 1 (level 1)
[  588.056452][T10241] EXT4-fs error (device loop5): ext4_do_update_inode:5279: inode #11: comm syz.5.1364: corrupted inode contents
[  588.096491][T10241] EXT4-fs error (device loop5) in ext4_orphan_del:303: Corrupt filesystem
[  588.130111][T10241] EXT4-fs error (device loop5): ext4_do_update_inode:5279: inode #11: comm syz.5.1364: corrupted inode contents
[  588.191130][T10241] EXT4-fs error (device loop5): ext4_truncate:4325: inode #11: comm syz.5.1364: mark_inode_dirty error
[  588.271894][T10241] EXT4-fs error (device loop5) in ext4_process_orphan:345: Corrupt filesystem
[  588.310040][T10241] EXT4-fs (loop5): 1 truncate cleaned up
[  588.336507][T10241] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  588.566615][ T7165] EXT4-fs (loop5): unmounting filesystem.
[  588.704999][T10256] device syzkaller0 entered promiscuous mode
[  588.752880][T10081] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  589.880944][T10291] binder: BINDER_SET_CONTEXT_MGR already set
[  589.887085][T10291] binder: 10290:10291 ioctl 4018620d 200000004a80 returned -16
[  593.113665][T10298] loop5: detected capacity change from 0 to 512
[  593.130597][T10298] EXT4-fs: Ignoring removed orlov option
[  593.179070][T10298] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[  593.244670][T10298] EXT4-fs error (device loop5): ext4_iget_extra_inode:4763: inode #15: comm syz.5.1373: corrupted in-inode xattr
[  593.264035][T10298] EXT4-fs error (device loop5): ext4_orphan_get:1410: comm syz.5.1373: couldn't read orphan inode 15 (err -117)
[  593.287457][T10298] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  593.311990][T10081] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  593.341032][T10081] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  593.499647][T10081] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  593.674312][T10309] EXT4-fs error (device loop5): ext4_iget_extra_inode:4763: inode #15: comm syz.5.1373: corrupted in-inode xattr
[  593.691554][T10308] loop4: detected capacity change from 0 to 512
[  593.721735][T10308] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  593.740741][T10308] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock
[  593.764262][T10303] netlink: 'syz.5.1373': attribute type 8 has an invalid length.
[  593.808374][T10308] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock
[  593.829730][T10308] EXT4-fs (loop4): ext4_check_descriptors: Inode table for group 1 overlaps superblock
[  593.859851][T10308] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  593.876960][T10308] EXT4-fs (loop4): orphan cleanup on readonly fs
[  593.898646][T10308] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.1374: bg 0: block 34: padding at end of block bitmap is not set
[  593.922665][T10308] Quota error (device loop4): write_blk: dquota write failed
[  593.967307][T10308] Quota error (device loop4): qtree_write_dquot: Error -28 occurred while creating quota
[  594.009978][T10308] EXT4-fs error (device loop4): ext4_acquire_dquot:6841: comm syz.4.1374: Failed to acquire dquot type 1
[  594.085429][T10308] EXT4-fs (loop4): 1 truncate cleaned up
[  594.096280][ T7165] EXT4-fs (loop5): unmounting filesystem.
[  594.139940][T10308] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  594.527986][T10323] EXT4-fs error (device loop4): ext4_lookup:1862: inode #2: comm syz.4.1374: deleted inode referenced: 12
[  595.104931][ T4268] EXT4-fs (loop4): unmounting filesystem.
[  595.114821][    T9] bond0: (slave wlan1): Releasing backup interface
[  595.168303][T10333] loop7: detected capacity change from 0 to 512
[  595.216758][T10333] EXT4-fs (loop7): mounting ext2 file system using the ext4 subsystem
[  595.336192][T10333] EXT4-fs error (device loop7): mb_free_blocks:1839: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt.
[  595.433384][T10333] EXT4-fs error (device loop7): ext4_do_update_inode:5279: inode #11: comm syz.7.1378: corrupted inode contents
[  595.582414][T10333] EXT4-fs error (device loop7): ext4_dirty_inode:6156: inode #11: comm syz.7.1378: mark_inode_dirty error
[  595.595885][T10081] 8021q: adding VLAN 0 to HW filter on device bond0
[  595.657730][T10333] EXT4-fs error (device loop7): ext4_free_branches:1030: inode #11: comm syz.7.1378: invalid indirect mapped block 1 (level 1)
[  595.713450][ T6160] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  595.738882][ T6160] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  595.809659][T10341] binder: BINDER_SET_CONTEXT_MGR already set
[  595.815899][T10341] binder: 10339:10341 ioctl 4018620d 200000004a80 returned -16
[  595.849283][T10081] 8021q: adding VLAN 0 to HW filter on device team0
[  595.877625][T10333] EXT4-fs error (device loop7): ext4_do_update_inode:5279: inode #11: comm syz.7.1378: corrupted inode contents
[  595.901619][ T6160] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  595.938546][ T6160] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  595.960041][T10333] EXT4-fs error (device loop7) in ext4_orphan_del:303: Corrupt filesystem
[  596.010022][ T6160] bridge0: port 1(bridge_slave_0) entered blocking state
[  596.017211][ T6160] bridge0: port 1(bridge_slave_0) entered forwarding state
[  596.038555][T10333] EXT4-fs error (device loop7): ext4_do_update_inode:5279: inode #11: comm syz.7.1378: corrupted inode contents
[  596.086634][ T6160] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  596.263541][ T6160] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  596.307095][T10333] EXT4-fs error (device loop7): ext4_truncate:4325: inode #11: comm syz.7.1378: mark_inode_dirty error
[  596.481785][ T6160] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  596.576708][T10333] EXT4-fs error (device loop7) in ext4_process_orphan:345: Corrupt filesystem
[  596.694999][ T6160] bridge0: port 2(bridge_slave_1) entered blocking state
[  596.702280][ T6160] bridge0: port 2(bridge_slave_1) entered forwarding state
[  596.797096][T10333] EXT4-fs (loop7): 1 truncate cleaned up
[  596.885862][T10333] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[  597.128246][ T8108] EXT4-fs (loop7): unmounting filesystem.
[  597.286144][ T6160] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  597.326366][ T6160] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  597.362805][ T6160] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  597.419541][ T6160] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  597.565053][    T9] device hsr_slave_0 left promiscuous mode
[  597.607261][    T9] device hsr_slave_1 left promiscuous mode
[  597.642764][    T9] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  597.712596][    T9] batman_adv: batadv0: Removing interface: batadv_slave_0
[  597.767166][    T9] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  597.822059][    T9] batman_adv: batadv0: Removing interface: batadv_slave_1
[  597.856956][    T9] device bridge_slave_1 left promiscuous mode
[  597.915084][    T9] bridge0: port 2(bridge_slave_1) entered disabled state
[  597.976433][    T9] device bridge_slave_0 left promiscuous mode
[  597.988919][    T9] bridge0: port 1(bridge_slave_0) entered disabled state
[  598.173249][    T9] device veth1_macvtap left promiscuous mode
[  598.198905][    T9] device veth0_macvtap left promiscuous mode
[  598.219854][    T9] device veth1_vlan left promiscuous mode
[  598.237007][    T9] device veth0_vlan left promiscuous mode
[  600.022625][    T9] team0 (unregistering): Port device team_slave_1 removed
[  600.190905][    T9] team0 (unregistering): Port device team_slave_0 removed
[  600.383965][    T9] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  600.582904][    T9] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  601.091317][    T9] bond0 (unregistering): Released all slaves
[  601.238693][ T6160] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  601.247540][ T6160] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  601.257161][ T6160] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  601.273448][ T6160] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  601.307349][ T6160] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  601.325263][T10081] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  601.337843][T10081] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  601.393252][ T6160] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  601.410443][ T6160] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  601.748424][T10429] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1396'.
[  601.916647][T10429] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1396'.
[  603.151374][T10442] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1399'.
[  603.828401][ T6172] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  603.851267][ T6172] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  603.886616][T10081] 8021q: adding VLAN 0 to HW filter on device batadv0
[  606.460425][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  606.479659][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  606.533608][ T6160] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  606.580721][ T6160] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  606.621299][ T6160] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  606.650481][ T6160] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  606.722772][T10081] device veth0_vlan entered promiscuous mode
[  606.785031][T10081] device veth1_vlan entered promiscuous mode
[  606.850660][T10519] loop7: detected capacity change from 0 to 512
[  606.904963][T10519] EXT4-fs (loop7): mounting ext2 file system using the ext4 subsystem
[  606.919335][ T6160] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  606.942083][ T6160] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  606.961936][ T6160] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  606.970319][T10519] EXT4-fs error (device loop7): mb_free_blocks:1839: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt.
[  607.026491][ T6160] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  607.042933][T10519] EXT4-fs error (device loop7): ext4_do_update_inode:5279: inode #11: comm syz.7.1415: corrupted inode contents
[  607.058014][T10519] EXT4-fs error (device loop7): ext4_dirty_inode:6156: inode #11: comm syz.7.1415: mark_inode_dirty error
[  607.079610][T10519] EXT4-fs error (device loop7): ext4_free_branches:1030: inode #11: comm syz.7.1415: invalid indirect mapped block 1 (level 1)
[  607.110581][T10519] EXT4-fs error (device loop7): ext4_do_update_inode:5279: inode #11: comm syz.7.1415: corrupted inode contents
[  607.133556][T10081] device veth0_macvtap entered promiscuous mode
[  607.150469][T10519] EXT4-fs error (device loop7) in ext4_orphan_del:303: Corrupt filesystem
[  607.180638][T10081] device veth1_macvtap entered promiscuous mode
[  607.190564][T10519] EXT4-fs error (device loop7): ext4_do_update_inode:5279: inode #11: comm syz.7.1415: corrupted inode contents
[  607.232558][T10519] EXT4-fs error (device loop7): ext4_truncate:4325: inode #11: comm syz.7.1415: mark_inode_dirty error
[  607.261318][T10081] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  607.285276][T10519] EXT4-fs error (device loop7) in ext4_process_orphan:345: Corrupt filesystem
[  607.304276][T10081] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  607.335467][T10081] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  607.355571][T10519] EXT4-fs (loop7): 1 truncate cleaned up
[  607.366882][T10081] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  607.377201][T10519] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[  607.402864][T10081] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  607.435853][T10081] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  607.498325][T10081] batman_adv: batadv0: Interface activated: batadv_slave_0
[  607.536135][ T6194] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  607.570208][ T6194] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  607.615087][ T6194] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  607.650665][ T6194] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  607.677577][ T8108] EXT4-fs (loop7): unmounting filesystem.
[  607.697427][T10525] device syzkaller0 entered promiscuous mode
[  607.727487][T10081] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  607.774334][T10081] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  607.809542][T10081] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  607.839532][T10081] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  607.859850][T10081] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  607.889143][T10081] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  607.921210][T10081] batman_adv: batadv0: Interface activated: batadv_slave_1
[  608.490001][ T4610] usb 8-1: new high-speed USB device number 10 using dummy_hcd
[  608.679669][ T4610] usb 8-1: device descriptor read/64, error -71
[  608.969835][ T4610] usb 8-1: new high-speed USB device number 11 using dummy_hcd
[  609.169683][ T4610] usb 8-1: device descriptor read/64, error -71
[  609.300736][ T4610] usb usb8-port1: attempt power cycle
[  609.709887][ T4610] usb 8-1: new high-speed USB device number 12 using dummy_hcd
[  609.812804][ T4610] usb 8-1: device descriptor read/8, error -71
[  610.170212][ T4610] usb 8-1: new high-speed USB device number 13 using dummy_hcd
[  610.231799][ T4610] usb 8-1: device descriptor read/8, error -71
[  610.350355][ T4610] usb usb8-port1: unable to enumerate USB device
[  610.861924][T10081] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  610.872166][T10081] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  610.881294][T10081] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  610.911144][T10081] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  611.012149][ T6160] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  611.040592][ T6160] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  611.791322][ T6184] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  611.799258][ T6184] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  611.944304][ T6190] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  611.996180][ T6190] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  612.052912][ T6190] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  612.104594][ T6190] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  612.946570][T10573] loop4: detected capacity change from 0 to 512
[  613.004175][T10573] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  613.020967][T10565] 8021q: adding VLAN 0 to HW filter on device bond0
[  613.089665][T10573] EXT4-fs error (device loop4): mb_free_blocks:1839: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt.
[  613.125114][T10565] team0: Port device bond0 added
[  613.180609][T10573] EXT4-fs error (device loop4): ext4_do_update_inode:5279: inode #11: comm syz.4.1428: corrupted inode contents
[  613.252142][T10573] EXT4-fs error (device loop4): ext4_dirty_inode:6156: inode #11: comm syz.4.1428: mark_inode_dirty error
[  613.297293][T10585] device syzkaller0 entered promiscuous mode
[  613.310524][T10573] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.1428: invalid indirect mapped block 1 (level 1)
[  613.384329][T10573] EXT4-fs error (device loop4): ext4_do_update_inode:5279: inode #11: comm syz.4.1428: corrupted inode contents
[  613.474577][T10573] EXT4-fs error (device loop4) in ext4_orphan_del:303: Corrupt filesystem
[  613.522822][T10573] EXT4-fs error (device loop4): ext4_do_update_inode:5279: inode #11: comm syz.4.1428: corrupted inode contents
[  613.595118][T10573] EXT4-fs error (device loop4): ext4_truncate:4325: inode #11: comm syz.4.1428: mark_inode_dirty error
[  613.665204][T10573] EXT4-fs error (device loop4) in ext4_process_orphan:345: Corrupt filesystem
[  613.725860][T10573] EXT4-fs (loop4): 1 truncate cleaned up
[  613.745625][T10573] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  613.904103][T10599] 9pnet_fd: Insufficient options for proto=fd
[  614.862875][ T4268] EXT4-fs (loop4): unmounting filesystem.
[  614.900716][T10601] device syzkaller0 entered promiscuous mode
[  615.070860][T10606] netlink: 8 bytes leftover after parsing attributes in process `syz.8.1435'.
[  615.141088][T10606] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  615.216203][T10612] loop5: detected capacity change from 0 to 2048
[  615.243967][T10612] EXT4-fs: Ignoring removed nomblk_io_submit option
[  615.340523][T10612] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  615.539904][   T27] audit: type=1804 audit(1776727627.449:20): pid=10612 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.5.1437" name="/newroot/134/file1/bus" dev="loop5" ino=18 res=1 errno=0
[  615.596194][T10614] bridge: RTM_DELNEIGH with unconfigured vlan 9 on bridge0
[  616.144004][ T7165] EXT4-fs (loop5): unmounting filesystem.
[  616.991709][T10660] 9pnet_fd: Insufficient options for proto=fd
[  617.158500][T10666] loop4: detected capacity change from 0 to 512
[  617.187339][T10666] EXT4-fs: Ignoring removed bh option
[  617.228112][T10666] EXT4-fs: Mount option(s) incompatible with ext2
[  619.051533][T10698] device syzkaller0 entered promiscuous mode
[  619.123310][T10701] loop5: detected capacity change from 0 to 512
[  619.239784][T10701] EXT4-fs error (device loop5): ext4_xattr_inode_iget:401: inode #12: comm syz.5.1462: missing EA_INODE flag
[  619.301939][T10707] loop7: detected capacity change from 0 to 512
[  619.329588][T10701] EXT4-fs error (device loop5): ext4_xattr_inode_iget:406: comm syz.5.1462: error while reading EA inode 12 err=-117
[  619.346548][T10709] loop4: detected capacity change from 0 to 512
[  619.353453][T10701] EXT4-fs (loop5): 1 orphan inode deleted
[  619.359261][T10701] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  619.378982][T10701] EXT4-fs error (device loop5): ext4_check_dx_root:2266: inode #2: comm syz.5.1462: Corrupt dir, invalid name_len for '.', running e2fsck is recommended
[  619.402883][T10709] EXT4-fs error (device loop4): ext4_xattr_inode_iget:401: inode #12: comm syz.4.1463: missing EA_INODE flag
[  619.406335][T10707] EXT4-fs: Ignoring removed orlov option
[  619.470887][T10707] EXT4-fs (loop7): mounting ext3 file system using the ext4 subsystem
[  619.514708][T10707] EXT4-fs error (device loop7): ext4_iget_extra_inode:4763: inode #15: comm syz.7.1464: corrupted in-inode xattr
[  619.567828][T10709] EXT4-fs error (device loop4): ext4_xattr_inode_iget:406: comm syz.4.1463: error while reading EA inode 12 err=-117
[  619.617744][T10707] EXT4-fs error (device loop7): ext4_orphan_get:1410: comm syz.7.1464: couldn't read orphan inode 15 (err -117)
[  619.676402][ T7165] EXT4-fs (loop5): unmounting filesystem.
[  619.709936][T10709] EXT4-fs (loop4): 1 orphan inode deleted
[  619.715941][T10709] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  619.746941][T10707] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[  619.763666][T10716] loop2: detected capacity change from 0 to 1024
[  619.996717][T10716] EXT4-fs: Ignoring removed bh option
[  620.141530][T10716] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  620.519934][T10732] tmpfs: Unknown parameter ''
[  620.531729][T10733] netlink: 'syz.7.1464': attribute type 8 has an invalid length.
[  620.556572][T10733] EXT4-fs error (device loop7): ext4_iget_extra_inode:4763: inode #15: comm syz.7.1464: corrupted in-inode xattr
[  622.876295][ T8108] EXT4-fs (loop7): unmounting filesystem.
[  624.160343][ T4271] EXT4-fs (loop2): unmounting filesystem.
[  624.520990][ T1273] ieee802154 phy0 wpan0: encryption failed: -22
[  624.536904][ T1273] ieee802154 phy1 wpan1: encryption failed: -22
[  625.770981][T10764] device syzkaller0 entered promiscuous mode
[  626.260464][T10782] loop8: detected capacity change from 0 to 512
[  626.290317][T10782] EXT4-fs: Ignoring removed orlov option
[  626.340847][T10782] EXT4-fs (loop8): mounting ext3 file system using the ext4 subsystem
[  626.433101][T10782] EXT4-fs error (device loop8): ext4_iget_extra_inode:4763: inode #15: comm syz.8.1480: corrupted in-inode xattr
[  626.500007][T10782] EXT4-fs error (device loop8): ext4_orphan_get:1410: comm syz.8.1480: couldn't read orphan inode 15 (err -117)
[  626.551705][ T4268] EXT4-fs (loop4): unmounting filesystem.
[  626.655588][T10782] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[  626.815938][T10788] loop5: detected capacity change from 0 to 512
[  626.923361][T10788] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  626.962907][T10788] EXT4-fs (loop5): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock
[  627.091881][T10788] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock
[  627.226595][T10796] netlink: 'syz.8.1480': attribute type 8 has an invalid length.
[  627.251812][T10796] EXT4-fs error (device loop8): ext4_iget_extra_inode:4763: inode #15: comm syz.8.1480: corrupted in-inode xattr
[  627.290675][T10788] EXT4-fs (loop5): ext4_check_descriptors: Inode table for group 1 overlaps superblock
[  627.565014][T10788] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  627.579325][T10788] EXT4-fs (loop5): orphan cleanup on readonly fs
[  627.608909][T10788] EXT4-fs error (device loop5): ext4_validate_block_bitmap:438: comm syz.5.1482: bg 0: block 34: padding at end of block bitmap is not set
[  627.737797][T10788] Quota error (device loop5): write_blk: dquota write failed
[  627.749555][T10788] Quota error (device loop5): qtree_write_dquot: Error -28 occurred while creating quota
[  627.772492][T10081] EXT4-fs (loop8): unmounting filesystem.
[  627.829732][T10788] EXT4-fs error (device loop5): ext4_acquire_dquot:6841: comm syz.5.1482: Failed to acquire dquot type 1
[  627.921964][T10788] EXT4-fs (loop5): 1 truncate cleaned up
[  627.929617][ T4610] usb 5-1: new high-speed USB device number 26 using dummy_hcd
[  627.951276][T10788] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  628.395284][T10822] EXT4-fs error (device loop5): ext4_lookup:1862: inode #2: comm syz.5.1482: deleted inode referenced: 12
[  628.651275][ T7165] EXT4-fs (loop5): unmounting filesystem.
[  630.844853][T10856] loop5: detected capacity change from 0 to 512
[  630.873819][T10856] EXT4-fs: Ignoring removed nobh option
[  630.963091][T10856] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  631.183026][T10856] EXT4-fs (loop5): 1 truncate cleaned up
[  631.192310][T10856] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  632.286762][T10882] loop2: detected capacity change from 0 to 512
[  632.323696][T10885] loop7: detected capacity change from 0 to 512
[  632.349708][ T7165] EXT4-fs (loop5): unmounting filesystem.
[  632.352088][T10885] EXT4-fs (loop7): mounting ext2 file system using the ext4 subsystem
[  632.426186][T10882] EXT4-fs error (device loop2): ext4_do_update_inode:5279: inode #16: comm syz.2.1501: corrupted inode contents
[  632.462407][T10885] EXT4-fs error (device loop7): mb_free_blocks:1839: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt.
[  632.482725][T10882] EXT4-fs error (device loop2): ext4_dirty_inode:6156: inode #16: comm syz.2.1501: mark_inode_dirty error
[  632.509533][ T4355] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[  632.532566][T10885] EXT4-fs error (device loop7): ext4_do_update_inode:5279: inode #11: comm syz.7.1500: corrupted inode contents
[  632.585679][T10892] loop5: detected capacity change from 0 to 512
[  632.594009][T10882] EXT4-fs error (device loop2): ext4_do_update_inode:5279: inode #16: comm syz.2.1501: corrupted inode contents
[  632.608073][T10885] EXT4-fs error (device loop7): ext4_dirty_inode:6156: inode #11: comm syz.7.1500: mark_inode_dirty error
[  632.628085][T10882] EXT4-fs error (device loop2): __ext4_ext_dirty:202: inode #16: comm syz.2.1501: mark_inode_dirty error
[  632.657881][T10885] EXT4-fs error (device loop7): ext4_free_branches:1030: inode #11: comm syz.7.1500: invalid indirect mapped block 1 (level 1)
[  632.682943][T10882] EXT4-fs error (device loop2): ext4_do_update_inode:5279: inode #16: comm syz.2.1501: corrupted inode contents
[  632.695938][T10892] Quota error (device loop5): v2_read_file_info: Block with free entry 5 out of range (1, 0).
[  632.712619][ T4355] usb 9-1: Using ep0 maxpacket: 32
[  632.719852][T10885] EXT4-fs error (device loop7): ext4_do_update_inode:5279: inode #11: comm syz.7.1500: corrupted inode contents
[  632.732034][T10882] EXT4-fs error (device loop2) in ext4_orphan_del:303: Corrupt filesystem
[  632.751336][ T4355] usb 9-1: config index 0 descriptor too short (expected 29220, got 36)
[  632.769655][T10892] EXT4-fs warning (device loop5): ext4_enable_quotas:7093: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  632.772894][T10885] EXT4-fs error (device loop7) in ext4_orphan_del:303: Corrupt filesystem
[  632.789974][ T4355] usb 9-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  632.802706][T10882] EXT4-fs error (device loop2): ext4_do_update_inode:5279: inode #16: comm syz.2.1501: corrupted inode contents
[  632.851109][T10892] EXT4-fs (loop5): mount failed
[  632.859790][ T4355] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 81
[  632.895159][ T4355] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  632.906154][T10882] EXT4-fs error (device loop2): ext4_truncate:4325: inode #16: comm syz.2.1501: mark_inode_dirty error
[  632.931265][T10885] EXT4-fs error (device loop7): ext4_do_update_inode:5279: inode #11: comm syz.7.1500: corrupted inode contents
[  632.959022][ T4355] usb 9-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  632.969318][T10882] EXT4-fs error (device loop2) in ext4_process_orphan:345: Corrupt filesystem
[  633.006396][ T4355] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  633.030407][T10882] EXT4-fs (loop2): 1 truncate cleaned up
[  633.036156][T10882] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  633.045629][T10885] EXT4-fs error (device loop7): ext4_truncate:4325: inode #11: comm syz.7.1500: mark_inode_dirty error
[  633.066860][ T4355] usb 9-1: config 0 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[  633.087877][ T6190] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  633.098130][T10882] ext4 filesystem being mounted at /327/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  633.115732][ T4355] usb 9-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  633.136685][T10885] EXT4-fs error (device loop7) in ext4_process_orphan:345: Corrupt filesystem
[  633.169716][T10885] EXT4-fs (loop7): 1 truncate cleaned up
[  633.175488][T10885] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[  633.184663][ T6190] EXT4-fs error (device loop2): ext4_release_dquot:6877: comm kworker/u4:31: Failed to release dquot type 1
[  633.194377][ T4355] usb 9-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  633.229545][ T4355] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  633.279058][ T4355] usb 9-1: config 0 descriptor??
[  633.326018][T10882] EXT4-fs (loop2): re-mounted. Quota mode: writeback.
[  633.373026][T10902] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[  633.466091][ T8108] EXT4-fs (loop7): unmounting filesystem.
[  633.595979][ T4355] usblp 9-1:0.0: usblp0: USB Bidirectional printer dev 3 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  633.619237][T10902] EXT4-fs (loop2): re-mounted. Quota mode: writeback.
[  633.631524][ T4355] usb 9-1: USB disconnect, device number 3
[  633.645766][ T4355] usblp0: removed
[  633.768290][T10882] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  633.900598][T10882] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  634.004673][T10882] EXT4-fs error (device loop2): ext4_acquire_dquot:6841: comm syz.2.1501: Failed to acquire dquot type 1
[  634.128647][ T4355] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[  634.275161][ T4271] EXT4-fs (loop2): unmounting filesystem.
[  634.329889][ T4355] usb 9-1: Using ep0 maxpacket: 32
[  634.340516][ T4355] usb 9-1: config index 0 descriptor too short (expected 29220, got 36)
[  634.379727][ T4355] usb 9-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  634.388624][ T4355] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 81
[  634.448707][ T4355] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  634.479131][ T4355] usb 9-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  634.547085][ T4355] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  634.593150][ T4355] usb 9-1: config 0 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[  634.657326][ T4355] usb 9-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  634.694116][ T4355] usb 9-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  634.749548][ T4355] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  634.825057][ T4355] usb 9-1: config 0 descriptor??
[  635.059573][ T4355] usblp 9-1:0.0: usblp0: USB Bidirectional printer dev 4 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  635.099022][T10944] loop2: detected capacity change from 0 to 512
[  635.109814][ T4355] usb 9-1: USB disconnect, device number 4
[  635.135790][T10945] loop5: detected capacity change from 0 to 512
[  635.138324][ T4355] usblp0: removed
[  635.162041][T10945] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  635.170741][T10944] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  635.229738][T10947] device syzkaller0 entered promiscuous mode
[  635.301601][T10944] EXT4-fs (loop2): 1 truncate cleaned up
[  635.307363][T10944] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  636.416091][T10966] loop4: detected capacity change from 0 to 512
[  636.443922][ T4271] EXT4-fs (loop2): unmounting filesystem.
[  636.478665][T10966] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  636.546679][T10966] EXT4-fs error (device loop4): mb_free_blocks:1839: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt.
[  636.602307][T10966] EXT4-fs error (device loop4): ext4_do_update_inode:5279: inode #11: comm syz.4.1516: corrupted inode contents
[  636.646263][T10970] loop2: detected capacity change from 0 to 512
[  636.665684][T10966] EXT4-fs error (device loop4): ext4_dirty_inode:6156: inode #11: comm syz.4.1516: mark_inode_dirty error
[  636.708397][T10966] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.1516: invalid indirect mapped block 1 (level 1)
[  636.740396][T10966] EXT4-fs error (device loop4): ext4_do_update_inode:5279: inode #11: comm syz.4.1516: corrupted inode contents
[  636.757792][T10972] loop5: detected capacity change from 0 to 512
[  636.770166][T10970] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  636.779283][T10970] ext4 filesystem being mounted at /329/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  636.783797][T10966] EXT4-fs error (device loop4) in ext4_orphan_del:303: Corrupt filesystem
[  636.804633][T10966] EXT4-fs error (device loop4): ext4_do_update_inode:5279: inode #11: comm syz.4.1516: corrupted inode contents
[  636.828941][T10966] EXT4-fs error (device loop4): ext4_truncate:4325: inode #11: comm syz.4.1516: mark_inode_dirty error
[  636.859670][T10966] EXT4-fs error (device loop4) in ext4_process_orphan:345: Corrupt filesystem
[  636.880709][T10966] EXT4-fs (loop4): 1 truncate cleaned up
[  636.915212][T10966] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  636.945953][T10972] Quota error (device loop5): v2_read_file_info: Block with free entry 5 out of range (1, 0).
[  636.959816][ T4271] EXT4-fs (loop2): unmounting filesystem.
[  637.052174][T10972] EXT4-fs warning (device loop5): ext4_enable_quotas:7093: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  637.099129][ T4268] EXT4-fs (loop4): unmounting filesystem.
[  637.114577][T10972] EXT4-fs (loop5): mount failed
[  637.848721][T10982] sctp: failed to load transform for md5: -2
[  638.253453][ T4611] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  638.480154][ T4611] usb 6-1: Using ep0 maxpacket: 32
[  638.513957][ T4611] usb 6-1: config index 0 descriptor too short (expected 29220, got 36)
[  638.726605][ T4611] usb 6-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  638.982037][ T4611] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 81
[  638.991455][ T4611] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  639.001543][ T4611] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  639.011651][ T4611] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  639.021850][ T4611] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[  639.032055][ T4611] usb 6-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  639.045805][ T4611] usb 6-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  639.056515][ T4611] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  639.066831][ T4611] usb 6-1: config 0 descriptor??
[  639.288398][ T4611] usblp 6-1:0.0: usblp0: USB Bidirectional printer dev 11 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  639.315207][ T4611] usb 6-1: USB disconnect, device number 11
[  639.331200][ T4611] usblp0: removed
[  639.607149][T11027] loop7: detected capacity change from 0 to 512
[  639.649289][T11027] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  639.676438][T11027] EXT4-fs (loop7): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock
[  639.697852][T11027] EXT4-fs (loop7): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock
[  639.753348][T11027] EXT4-fs (loop7): ext4_check_descriptors: Inode table for group 1 overlaps superblock
[  639.799187][T11027] EXT4-fs (loop7): revision level too high, forcing read-only mode
[  639.870376][T11027] EXT4-fs (loop7): orphan cleanup on readonly fs
[  639.876347][ T4611] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[  639.934399][T11027] EXT4-fs error (device loop7): ext4_validate_block_bitmap:438: comm syz.7.1532: bg 0: block 34: padding at end of block bitmap is not set
[  640.008769][T11027] Quota error (device loop7): write_blk: dquota write failed
[  640.027012][T11030] loop4: detected capacity change from 0 to 512
[  640.033760][T11027] Quota error (device loop7): qtree_write_dquot: Error -28 occurred while creating quota
[  640.075765][T11027] EXT4-fs error (device loop7): ext4_acquire_dquot:6841: comm syz.7.1532: Failed to acquire dquot type 1
[  640.080589][ T4611] usb 6-1: Using ep0 maxpacket: 32
[  640.120911][ T4611] usb 6-1: config index 0 descriptor too short (expected 29220, got 36)
[  640.135642][T11027] EXT4-fs (loop7): 1 truncate cleaned up
[  640.149632][ T4611] usb 6-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  640.158344][ T4611] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 81
[  640.178936][ T4611] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  640.199513][ T4611] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  640.202207][T11030] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  640.209226][ T4611] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  640.209254][ T4611] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[  640.209280][ T4611] usb 6-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  640.251266][ T4611] usb 6-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  640.260475][ T4611] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  640.278998][ T4611] usb 6-1: config 0 descriptor??
[  640.300028][T11027] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  640.319668][T11030] ext4 filesystem being mounted at /304/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  640.643698][ T4611] usblp 6-1:0.0: usblp0: USB Bidirectional printer dev 12 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  640.670531][ T4611] usb 6-1: USB disconnect, device number 12
[  640.680131][ T4611] usblp0: removed
[  640.695405][ T4268] EXT4-fs (loop4): unmounting filesystem.
[  640.712234][T11035] EXT4-fs error (device loop7): ext4_lookup:1862: inode #2: comm syz.7.1532: deleted inode referenced: 12
[  640.951198][ T8108] EXT4-fs (loop7): unmounting filesystem.
[  643.925674][T11051] loop8: detected capacity change from 0 to 512
[  643.998264][T11051] EXT4-fs (loop8): mounting ext3 file system using the ext4 subsystem
[  644.061473][T11051] EXT4-fs (loop8): 1 truncate cleaned up
[  644.077855][T11051] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[  644.257763][T10081] EXT4-fs (loop8): unmounting filesystem.
[  646.501417][T11037] bridge0: port 3(hsr0) entered blocking state
[  646.507746][T11037] bridge0: port 3(hsr0) entered disabled state
[  646.523232][T11037] device hsr0 entered promiscuous mode
[  646.530133][T11037] bridge0: port 3(hsr0) entered blocking state
[  646.536437][T11037] bridge0: port 3(hsr0) entered forwarding state
[  646.979607][T11069] loop2: detected capacity change from 0 to 512
[  647.465206][T11069] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  647.732526][T11069] ext4 filesystem being mounted at /332/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  647.845784][T11076] netlink: 56 bytes leftover after parsing attributes in process `syz.7.1545'.
[  647.887109][ T4271] EXT4-fs (loop2): unmounting filesystem.
[  649.019690][ T4689] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[  649.219608][ T4689] usb 9-1: Using ep0 maxpacket: 32
[  650.086799][ T4689] usb 9-1: config index 0 descriptor too short (expected 29220, got 36)
[  650.098149][ T4689] usb 9-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  650.107439][ T4689] usb 9-1: config 0 has 1 interface, different from the descriptor's value: 81
[  650.116541][ T4689] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  650.126457][ T4689] usb 9-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  650.136766][ T4689] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  650.164747][ T4689] usb 9-1: config 0 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[  650.209687][ T4689] usb 9-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  650.253739][ T4689] usb 9-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  650.283378][ T4689] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  650.318635][ T4689] usb 9-1: config 0 descriptor??
[  650.344953][T11110] binder: 11109:11110 ioctl 4018620d 0 returned -22
[  650.540282][ T4689] usblp 9-1:0.0: usblp0: USB Bidirectional printer dev 5 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  650.585978][ T4689] usb 9-1: USB disconnect, device number 5
[  650.650279][ T4689] usblp0: removed
[  650.665331][T11115] loop2: detected capacity change from 0 to 512
[  650.883288][T11115] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  650.944384][T11115] ext4 filesystem being mounted at /335/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  651.803176][T11129] netlink: 100 bytes leftover after parsing attributes in process `syz.4.1560'.
[  651.843791][ T4271] EXT4-fs (loop2): unmounting filesystem.
[  651.901907][ T4689] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[  653.683956][T11156] loop4: detected capacity change from 0 to 512
[  653.692816][T11156] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  653.801563][T11156] EXT4-fs error (device loop4): ext4_orphan_get:1431: comm syz.4.1569: bad orphan inode 131083
[  653.851950][T11163] binder: 11161:11163 ioctl 4018620d 0 returned -22
[  653.859059][T11156] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  653.955502][T11156] EXT4-fs error (device loop4): ext4_map_blocks:637: inode #2: block 12: comm syz.4.1569: lblock 0 mapped to illegal pblock 12 (length 1)
[  654.041862][T11156] EXT4-fs warning (device loop4): htree_dirblock_to_tree:1083: inode #2: lblock 0: comm syz.4.1569: error -117 reading directory block
[  654.190806][ T4689] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[  654.307163][T11170] loop8: detected capacity change from 0 to 512
[  654.322680][ T4268] EXT4-fs (loop4): unmounting filesystem.
[  655.137762][T11170] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[  655.164005][T11170] ext4 filesystem being mounted at /29/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  655.488743][T10081] EXT4-fs (loop8): unmounting filesystem.
[  655.850414][ T4693] usb 5-1: new high-speed USB device number 27 using dummy_hcd
[  656.059741][T11192] loop8: detected capacity change from 0 to 128
[  656.119581][ T4693] usb 5-1: Using ep0 maxpacket: 32
[  656.127311][ T4693] usb 5-1: config index 0 descriptor too short (expected 29220, got 36)
[  656.154571][ T4693] usb 5-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  656.183749][ T4693] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 81
[  656.209493][ T4693] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  656.239477][ T4693] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  656.261725][T11195] device syzkaller0 entered promiscuous mode
[  656.270196][ T4693] usb 5-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  656.359554][ T4693] usb 5-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  656.404100][ T4693] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  656.598264][T11191] syz.8.1576: attempt to access beyond end of device
[  656.598264][T11191] loop8: rw=2049, sector=138, nr_sectors = 112 limit=128
[  656.620488][ T4693] usb 5-1: config 0 descriptor??
[  656.876229][ T4693] usblp 5-1:0.0: usblp0: USB Bidirectional printer dev 27 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  656.912812][ T4693] usb 5-1: USB disconnect, device number 27
[  656.926952][ T4693] usblp0: removed
[  658.005149][T11210] loop2: detected capacity change from 0 to 512
[  658.040509][T11210] EXT4-fs: Ignoring removed orlov option
[  658.071166][T11210] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  658.158217][T11210] EXT4-fs error (device loop2): ext4_iget_extra_inode:4763: inode #15: comm syz.2.1580: corrupted in-inode xattr
[  658.227649][T11210] EXT4-fs error (device loop2): ext4_orphan_get:1410: comm syz.2.1580: couldn't read orphan inode 15 (err -117)
[  658.276900][T11210] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  658.575667][T11222] EXT4-fs error (device loop2): ext4_iget_extra_inode:4763: inode #15: comm syz.2.1580: corrupted in-inode xattr
[  660.374536][T11234] loop7: detected capacity change from 0 to 512
[  660.471200][T11234] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  660.486964][T11234] ext4 filesystem being mounted at /114/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  660.585305][ T8108] EXT4-fs (loop7): unmounting filesystem.
[  660.949636][ T4692] usb 8-1: new high-speed USB device number 14 using dummy_hcd
[  661.168069][ T4692] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  661.178609][ T4692] usb 8-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21
[  661.192078][ T4692] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  661.201495][ T4692] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  661.225257][ T4692] usb 8-1: config 0 descriptor??
[  661.248446][ T4692] usbhid 8-1:0.0: couldn't find an input interrupt endpoint
[  662.624511][T11210] netlink: 'syz.2.1580': attribute type 8 has an invalid length.
[  662.678502][ T4271] EXT4-fs (loop2): unmounting filesystem.
[  663.144754][T11256] loop4: detected capacity change from 0 to 256
[  663.530251][ T4692] usb 3-1: new high-speed USB device number 16 using dummy_hcd
[  664.025768][  T127] usb 8-1: USB disconnect, device number 14
[  664.189835][ T4692] usb 3-1: Using ep0 maxpacket: 32
[  664.207824][ T4692] usb 3-1: config index 0 descriptor too short (expected 29220, got 36)
[  664.236286][ T4692] usb 3-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  664.261008][ T4692] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 81
[  664.284954][ T4692] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  664.321544][ T4692] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  664.351521][ T4692] usb 3-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  664.384155][ T4692] usb 3-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  664.411113][ T4692] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  664.434135][ T4692] usb 3-1: config 0 descriptor??
[  664.658019][ T4692] usblp 3-1:0.0: usblp0: USB Bidirectional printer dev 16 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  664.683049][ T4692] usb 3-1: USB disconnect, device number 16
[  664.701691][ T4692] usblp0: removed
[  666.024258][T11289] device syzkaller0 entered promiscuous mode
[  666.538402][T11307] netlink: 204 bytes leftover after parsing attributes in process `syz.7.1603'.
[  666.909607][   T14] usb 5-1: new high-speed USB device number 28 using dummy_hcd
[  667.866632][T11322] loop7: detected capacity change from 0 to 512
[  667.964960][T11322] EXT4-fs: Ignoring removed nobh option
[  668.017777][T11322] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  668.156465][T11322] EXT4-fs (loop7): 1 truncate cleaned up
[  668.162420][T11322] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[  668.219977][ T8108] EXT4-fs (loop7): unmounting filesystem.
[  668.413518][T11329] netlink: 16 bytes leftover after parsing attributes in process `syz.7.1607'.
[  668.439945][T11329] netlink: 16 bytes leftover after parsing attributes in process `syz.7.1607'.
[  670.019648][   T14] usb 5-1: device descriptor read/64, error -71
[  670.291548][   T14] usb 5-1: new high-speed USB device number 29 using dummy_hcd
[  670.513629][   T14] usb 5-1: Using ep0 maxpacket: 32
[  670.521357][   T14] usb 5-1: config index 0 descriptor too short (expected 29220, got 36)
[  670.532022][   T14] usb 5-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  670.542866][   T14] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 81
[  670.552893][   T14] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  670.563077][   T14] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  670.573314][   T14] usb 5-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  670.595653][   T14] usb 5-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  670.606731][   T14] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  670.623522][   T14] usb 5-1: config 0 descriptor??
[  670.840851][   T14] usblp 5-1:0.0: usblp0: USB Bidirectional printer dev 29 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  670.876297][   T14] usb 5-1: USB disconnect, device number 29
[  670.908081][   T14] usblp0: removed
[  671.429621][T11348] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1611'.
[  671.745671][T11355] loop4: detected capacity change from 0 to 256
[  672.075281][T11361] loop4: detected capacity change from 0 to 164
[  672.579513][ T4355] usb 5-1: new high-speed USB device number 30 using dummy_hcd
[  672.791401][ T4355] usb 5-1: config 0 has an invalid interface number: 64 but max is 0
[  672.815572][ T4355] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  672.826943][ T4355] usb 5-1: config 0 has no interface number 0
[  672.895281][ T4355] usb 5-1: New USB device found, idVendor=046d, idProduct=0823, bcdDevice= 0.07
[  672.904870][ T4355] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  672.913566][ T4355] usb 5-1: Product: syz
[  672.917810][ T4355] usb 5-1: Manufacturer: syz
[  672.922879][ T4355] usb 5-1: SerialNumber: syz
[  672.953517][ T4355] usb 5-1: config 0 descriptor??
[  673.991899][ T4355] usb 5-1: USB disconnect, device number 30
[  674.715031][T11371] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1621'.
[  675.289509][ T4610] usb 3-1: new high-speed USB device number 17 using dummy_hcd
[  675.487070][ T4610] usb 3-1: config 0 has an invalid interface number: 64 but max is 0
[  675.506857][ T4610] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  675.544481][ T4610] usb 3-1: config 0 has no interface number 0
[  675.594699][ T4610] usb 3-1: New USB device found, idVendor=046d, idProduct=0823, bcdDevice= 0.07
[  675.649685][ T4610] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  675.657807][ T4610] usb 3-1: Product: syz
[  675.697513][ T4610] usb 3-1: Manufacturer: syz
[  675.712933][ T4610] usb 3-1: SerialNumber: syz
[  675.740206][ T4610] usb 3-1: config 0 descriptor??
[  675.902912][T11409] netlink: 12 bytes leftover after parsing attributes in process `syz.8.1631'.
[  677.360652][ T4610] usb 3-1: USB disconnect, device number 17
[  678.268357][T11437] loop2: detected capacity change from 0 to 1764
[  678.479425][    T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!!
[  678.499431][    T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!!
[  678.509427][    T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!!
[  678.519425][    T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!!
[  678.529432][    T0] NOHZ tick-stop error: local softirq work is pending, handler #82!!!
[  678.539426][    T0] NOHZ tick-stop error: local softirq work is pending, handler #82!!!
[  678.549431][    T0] NOHZ tick-stop error: local softirq work is pending, handler #82!!!
[  678.559428][    T0] NOHZ tick-stop error: local softirq work is pending, handler #82!!!
[  678.569425][    T0] NOHZ tick-stop error: local softirq work is pending, handler #82!!!
[  678.579432][    T0] NOHZ tick-stop error: local softirq work is pending, handler #182!!!
[  678.970229][T11437] iso9660: Corrupted directory entry in block 2 of inode 1920
[  679.294787][T11443] loop4: detected capacity change from 0 to 512
[  679.546161][T11443] EXT4-fs error (device loop4): ext4_orphan_get:1405: inode #15: comm syz.4.1641: inode has both inline data and extents flags
[  679.679918][T11443] EXT4-fs error (device loop4): ext4_orphan_get:1410: comm syz.4.1641: couldn't read orphan inode 15 (err -117)
[  679.743296][T11443] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  679.942398][   T27] audit: type=1800 audit(1776727691.909:21): pid=11463 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1641" name="file1" dev="loop4" ino=18 res=0 errno=0
[  680.143056][ T4268] EXT4-fs (loop4): unmounting filesystem.
[  681.104973][T11493] loop4: detected capacity change from 0 to 512
[  681.205999][T11493] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  681.252489][T11495] loop5: detected capacity change from 0 to 512
[  681.341219][T11495] Quota error (device loop5): v2_read_file_info: Block with free entry 5 out of range (1, 0).
[  681.377303][T11495] EXT4-fs warning (device loop5): ext4_enable_quotas:7093: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  681.411412][T11493] EXT4-fs error (device loop4): xattr_find_entry:297: inode #15: comm syz.4.1655: corrupted xattr entries
[  681.430322][T11493] EXT4-fs (loop4): 1 truncate cleaned up
[  681.445714][T11493] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  681.470716][T11495] EXT4-fs (loop5): mount failed
[  682.645887][ T4268] EXT4-fs (loop4): unmounting filesystem.
[  684.405602][T11553] netlink: 'syz.5.1666': attribute type 4 has an invalid length.
[  685.933020][ T1273] ieee802154 phy0 wpan0: encryption failed: -22
[  685.939524][ T1273] ieee802154 phy1 wpan1: encryption failed: -22
[  686.228143][T11572] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1671'.
[  690.170902][T11641] loop8: detected capacity change from 0 to 512
[  690.296439][T11641] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[  690.319961][T11641] ext4 filesystem being mounted at /54/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  690.603425][T10081] EXT4-fs (loop8): unmounting filesystem.
[  691.380293][T11662] xt_hashlimit: size too large, truncated to 1048576
[  691.394456][T11662] xt_NFQUEUE: number of queues (65529) out of range (got 65536)
[  694.134098][T11689] loop4: detected capacity change from 0 to 512
[  694.207953][T11689] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  694.289146][T11689] EXT4-fs (loop4): 1 truncate cleaned up
[  694.319667][T11689] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  694.572163][ T4268] EXT4-fs (loop4): unmounting filesystem.
[  694.826814][T11703] loop4: detected capacity change from 0 to 512
[  694.917340][T11703] EXT4-fs warning (device loop4): read_mmp_block:115: Error -74 while reading MMP block 17
[  695.044919][T11709] loop2: detected capacity change from 0 to 512
[  695.171456][T11709] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  695.191726][T11709] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock
[  695.336469][T11709] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock
[  695.369456][T11709] EXT4-fs (loop2): ext4_check_descriptors: Inode table for group 1 overlaps superblock
[  695.476778][T11709] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  695.490672][T11709] EXT4-fs (loop2): orphan cleanup on readonly fs
[  695.656821][T11709] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.1705: bg 0: block 34: padding at end of block bitmap is not set
[  696.157038][T11709] Quota error (device loop2): write_blk: dquota write failed
[  696.226578][T11709] Quota error (device loop2): qtree_write_dquot: Error -28 occurred while creating quota
[  696.329512][T11709] EXT4-fs error (device loop2): ext4_acquire_dquot:6841: comm syz.2.1705: Failed to acquire dquot type 1
[  696.394851][T11709] EXT4-fs (loop2): 1 truncate cleaned up
[  696.419866][T11709] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  696.616687][T11731] EXT4-fs error (device loop2): ext4_lookup:1862: inode #2: comm syz.2.1705: deleted inode referenced: 12
[  696.759175][ T4271] EXT4-fs (loop2): unmounting filesystem.
[  698.249535][   T48] Bluetooth: hci5: command 0x0406 tx timeout
[  698.335701][T11751] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1714'.
[  698.404692][   T27] audit: type=1326 audit(1776727710.369:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11748 comm="syz.7.1714" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f53a6b9c819 code=0x0
[  699.106887][T11760] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1715'.
[  700.606212][T11786] loop2: detected capacity change from 0 to 512
[  700.655763][T11786] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  700.706002][T11786] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock
[  700.726374][T11786] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock
[  700.779449][T11786] EXT4-fs (loop2): ext4_check_descriptors: Inode table for group 1 overlaps superblock
[  700.808012][T11786] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  700.853141][T11786] EXT4-fs (loop2): orphan cleanup on readonly fs
[  700.901718][T11786] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.1722: bg 0: block 34: padding at end of block bitmap is not set
[  701.047366][T11786] Quota error (device loop2): write_blk: dquota write failed
[  701.058631][T11786] Quota error (device loop2): qtree_write_dquot: Error -28 occurred while creating quota
[  701.079599][T11786] EXT4-fs error (device loop2): ext4_acquire_dquot:6841: comm syz.2.1722: Failed to acquire dquot type 1
[  701.190632][T11786] EXT4-fs (loop2): 1 truncate cleaned up
[  701.250009][T11786] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  701.440592][T11798] EXT4-fs error (device loop2): ext4_lookup:1862: inode #2: comm syz.2.1722: deleted inode referenced: 12
[  701.602341][ T4271] EXT4-fs (loop2): unmounting filesystem.
[  701.747762][T11627] Set syz1 is full, maxelem 65536 reached
[  706.812049][T11872] loop8: detected capacity change from 0 to 512
[  706.823772][T11872] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  706.921654][T11872] EXT4-fs (loop8): 1 truncate cleaned up
[  706.927354][T11872] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[  706.975181][T11876] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  707.008409][T11876] device batadv_slave_0 entered promiscuous mode
[  707.101272][T10081] EXT4-fs (loop8): unmounting filesystem.
[  708.770436][T11905] loop2: detected capacity change from 0 to 512
[  708.833592][T11905] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  708.864727][T11905] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock
[  708.890542][T11905] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock
[  708.956146][T11905] EXT4-fs (loop2): ext4_check_descriptors: Inode table for group 1 overlaps superblock
[  708.967536][T11905] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  708.986107][T11905] EXT4-fs (loop2): orphan cleanup on readonly fs
[  708.994928][T11905] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.1752: bg 0: block 34: padding at end of block bitmap is not set
[  709.016644][T11905] Quota error (device loop2): write_blk: dquota write failed
[  709.024432][T11905] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  709.034806][T11905] EXT4-fs error (device loop2): ext4_acquire_dquot:6841: comm syz.2.1752: Failed to acquire dquot type 1
[  709.047408][T11910] loop8: detected capacity change from 0 to 512
[  709.047742][T11905] EXT4-fs (loop2): 1 truncate cleaned up
[  709.060264][T11905] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  709.257410][T11910] Quota error (device loop8): v2_read_file_info: Block with free entry 5 out of range (1, 0).
[  709.298566][T11910] EXT4-fs warning (device loop8): ext4_enable_quotas:7093: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  709.397678][T11910] EXT4-fs (loop8): mount failed
[  709.730891][T11922] loop4: detected capacity change from 0 to 1024
[  709.743884][T11922] EXT4-fs: Ignoring removed orlov option
[  709.837625][T11922] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a002c018, mo2=0002]
[  709.876954][T11922] System zones: 0-1, 3-12
[  709.905699][T11922] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  709.920199][T11921] EXT4-fs error (device loop2): ext4_lookup:1862: inode #2: comm syz.2.1752: deleted inode referenced: 12
[  710.138247][ T4268] EXT4-fs (loop4): unmounting filesystem.
[  710.669609][ T4693] usb 5-1: new high-speed USB device number 31 using dummy_hcd
[  713.670721][ T4271] EXT4-fs (loop2): unmounting filesystem.
[  716.571500][T11988] loop2: detected capacity change from 0 to 512
[  716.596900][T11988] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  716.876070][T11988] EXT4-fs (loop2): 1 truncate cleaned up
[  716.895901][T11988] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  717.703539][T12002] loop8: detected capacity change from 0 to 512
[  717.833424][ T4271] EXT4-fs (loop2): unmounting filesystem.
[  717.941722][T12002] Quota error (device loop8): v2_read_file_info: Block with free entry 5 out of range (1, 0).
[  717.999601][T12002] EXT4-fs warning (device loop8): ext4_enable_quotas:7093: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  718.020205][T12002] EXT4-fs (loop8): mount failed
[  718.267242][T10312] I/O error, dev loop8, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  721.011021][T12050] bridge: RTM_DELNEIGH with unconfigured vlan 9 on bridge0
[  721.535124][T12059] binder: 12055:12059 ioctl 4018620d 0 returned -22
[  723.179470][   T22] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[  725.249579][ T4693] usb 9-1: new high-speed USB device number 7 using dummy_hcd
[  725.463362][ T4693] usb 9-1: config 0 has an invalid interface number: 64 but max is 0
[  725.489510][ T4693] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  725.536785][ T4693] usb 9-1: config 0 has no interface number 0
[  725.556272][ T4693] usb 9-1: New USB device found, idVendor=046d, idProduct=0823, bcdDevice= 0.07
[  725.586132][ T4693] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  725.645173][ T4693] usb 9-1: Product: syz
[  725.659576][ T4693] usb 9-1: Manufacturer: syz
[  725.674614][ T4693] usb 9-1: SerialNumber: syz
[  725.741899][ T4693] usb 9-1: config 0 descriptor??
[  727.139291][ T4608] usb 9-1: USB disconnect, device number 7
[  727.559922][ T4355] usb 3-1: new high-speed USB device number 18 using dummy_hcd
[  728.319480][ T4355] usb 3-1: Using ep0 maxpacket: 32
[  728.331132][ T4355] usb 3-1: config index 0 descriptor too short (expected 29220, got 36)
[  728.357676][ T4355] usb 3-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  728.389920][ T4355] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 81
[  728.399112][ T4355] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  728.409414][   T22] usb 6-1: device descriptor read/64, error -110
[  728.439516][ T4355] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  728.489459][ T4355] usb 3-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  728.539573][ T4355] usb 3-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  728.549012][ T4355] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  728.621129][ T4355] usb 3-1: config 0 descriptor??
[  728.679603][   T22] usb 6-1: new high-speed USB device number 14 using dummy_hcd
[  728.849705][   T22] usb 6-1: device descriptor read/64, error -32
[  728.881012][ T4355] usblp 3-1:0.0: usblp0: USB Bidirectional printer dev 18 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  728.967821][ T4355] usb 3-1: USB disconnect, device number 18
[  728.989789][   T22] usb usb6-port1: attempt power cycle
[  729.044493][ T4355] usblp0: removed
[  729.399636][   T22] usb 6-1: new high-speed USB device number 15 using dummy_hcd
[  729.439895][   T22] usb 6-1: device descriptor read/8, error -32
[  729.479439][ T4355] usb 3-1: new high-speed USB device number 19 using dummy_hcd
[  729.671476][ T4355] usb 3-1: Using ep0 maxpacket: 32
[  729.680311][ T4355] usb 3-1: config index 0 descriptor too short (expected 29220, got 36)
[  729.709450][   T22] usb 6-1: new high-speed USB device number 16 using dummy_hcd
[  729.727030][ T4355] usb 3-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  729.739932][   T22] usb 6-1: device descriptor read/8, error -32
[  729.784100][ T4355] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 81
[  729.815414][ T4355] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  730.009660][   T22] usb usb6-port1: unable to enumerate USB device
[  730.016534][ T4355] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  730.026580][ T4355] usb 3-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  730.040638][ T4355] usb 3-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  730.056990][ T4355] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  730.075766][ T4355] usb 3-1: config 0 descriptor??
[  730.915295][ T4355] usb 3-1: can't set config #0, error -71
[  730.923527][ T4355] usb 3-1: USB disconnect, device number 19
[  732.375182][T12187] loop2: detected capacity change from 0 to 512
[  732.473454][T12187] EXT4-fs error (device loop2): ext4_xattr_inode_iget:401: inode #12: comm syz.2.1819: missing EA_INODE flag
[  732.536039][T12187] EXT4-fs error (device loop2): ext4_xattr_inode_iget:406: comm syz.2.1819: error while reading EA inode 12 err=-117
[  732.621639][T12187] EXT4-fs (loop2): 1 orphan inode deleted
[  732.627490][T12187] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  732.881387][T12200] binder: 12199:12200 ioctl c0306201 0 returned -14
[  733.485239][T12211] device syzkaller0 entered promiscuous mode
[  733.720952][T12216] tmpfs: Unknown parameter ''
[  734.558993][ T4693] usb 6-1: new high-speed USB device number 17 using dummy_hcd
[  734.769535][ T4693] usb 6-1: Using ep0 maxpacket: 32
[  734.781591][ T4693] usb 6-1: config index 0 descriptor too short (expected 29220, got 36)
[  734.809491][ T4693] usb 6-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  734.829295][ T4693] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 81
[  734.849034][ T4693] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  734.869635][ T4693] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  734.889475][ T4693] usb 6-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  734.919422][ T4693] usb 6-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  734.938934][ T4693] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  734.960178][ T4693] usb 6-1: config 0 descriptor??
[  735.175616][ T4693] usblp 6-1:0.0: usblp0: USB Bidirectional printer dev 17 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  735.202032][ T4693] usb 6-1: USB disconnect, device number 17
[  735.240264][ T4693] usblp0: removed
[  735.399557][ T4271] EXT4-fs (loop2): unmounting filesystem.
[  735.789576][ T4693] usb 6-1: new high-speed USB device number 18 using dummy_hcd
[  736.018345][ T4693] usb 6-1: Using ep0 maxpacket: 32
[  736.031138][ T4693] usb 6-1: config index 0 descriptor too short (expected 29220, got 36)
[  736.060976][ T4693] usb 6-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  736.070472][ T4693] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 81
[  736.094075][ T4693] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  736.114476][ T4693] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  736.125547][ T4693] usb 6-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  736.146663][ T4693] usb 6-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  736.158871][ T4693] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  736.216060][ T4693] usb 6-1: config 0 descriptor??
[  736.430824][ T4693] usblp 6-1:0.0: usblp0: USB Bidirectional printer dev 18 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  736.641656][ T4692] usb 6-1: USB disconnect, device number 18
[  736.675132][ T4692] usblp0: removed
[  740.928568][T12290] binder: 12289:12290 ioctl c0306201 0 returned -14
[  742.545966][T12247] device syzkaller0 entered promiscuous mode
[  742.568036][T12277] netlink: 'syz.7.1839': attribute type 8 has an invalid length.
[  742.846307][T12312] netlink: 'syz.5.1849': attribute type 6 has an invalid length.
[  742.989630][T12317] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  745.653168][T12354] device syzkaller0 entered promiscuous mode
[  747.374675][ T1273] ieee802154 phy0 wpan0: encryption failed: -22
[  747.384158][ T1273] ieee802154 phy1 wpan1: encryption failed: -22
[  751.589300][T12370] netlink: 'syz.7.1860': attribute type 8 has an invalid length.
[  756.245150][T12435] device syzkaller0 entered promiscuous mode
[  756.447608][T12448] loop4: detected capacity change from 0 to 512
[  756.531953][T12448] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  759.903563][T12504] device syzkaller0 entered promiscuous mode
[  760.549600][   T14] usb 3-1: new high-speed USB device number 20 using dummy_hcd
[  760.751520][   T14] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  760.775367][   T14] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  760.809815][   T14] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  760.851449][   T14] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  760.879459][   T14] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  760.917750][   T14] usb 3-1: config 0 descriptor??
[  761.547282][   T14] usbhid 3-1:0.0: can't add hid device: -71
[  761.563308][   T14] usbhid: probe of 3-1:0.0 failed with error -71
[  761.582272][T12536] loop8: detected capacity change from 0 to 512
[  761.604719][T12536] EXT4-fs: Ignoring removed orlov option
[  761.613058][T12536] EXT4-fs (loop8): mounting ext3 file system using the ext4 subsystem
[  761.616918][   T14] usb 3-1: USB disconnect, device number 20
[  761.680426][T12536] EXT4-fs error (device loop8): ext4_iget_extra_inode:4763: inode #15: comm syz.8.1903: corrupted in-inode xattr
[  761.713886][T12536] EXT4-fs error (device loop8): ext4_orphan_get:1410: comm syz.8.1903: couldn't read orphan inode 15 (err -117)
[  761.752624][T12536] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[  761.847308][T12545] tipc: Enabling of bearer <eth:syzkall> rejected, failed to enable media
[  762.003128][T12545] device syzkaller0 entered promiscuous mode
[  763.842038][T12562] EXT4-fs error (device loop8): ext4_iget_extra_inode:4763: inode #15: comm syz.8.1903: corrupted in-inode xattr
[  767.629536][T12561] netlink: 'syz.8.1903': attribute type 8 has an invalid length.
[  767.812793][T12588] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1910'.
[  768.034977][T12590] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1910'.
[  768.367739][T10081] EXT4-fs (loop8): unmounting filesystem.
[  770.530383][   T14] usb 3-1: new high-speed USB device number 21 using dummy_hcd
[  771.489438][   T14] usb 3-1: config 0 has an invalid interface number: 64 but max is 0
[  771.512382][   T14] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  771.559652][   T14] usb 3-1: config 0 has no interface number 0
[  771.615670][   T14] usb 3-1: New USB device found, idVendor=046d, idProduct=0823, bcdDevice= 0.07
[  771.695819][   T14] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  771.723958][   T14] usb 3-1: Product: syz
[  771.741621][   T14] usb 3-1: Manufacturer: syz
[  771.764364][   T14] usb 3-1: SerialNumber: syz
[  771.788157][   T14] usb 3-1: config 0 descriptor??
[  771.817379][T12643] tipc: Enabling of bearer <eth:syzkall> rejected, failed to enable media
[  771.965940][T12643] device syzkaller0 entered promiscuous mode
[  772.494374][ T4355] usb 3-1: USB disconnect, device number 21
[  778.514632][T12673] netlink: 'syz.7.1924': attribute type 8 has an invalid length.
[  778.979235][T12712] netlink: 'syz.8.1939': attribute type 1 has an invalid length.
[  779.035102][T12712] 8021q: adding VLAN 0 to HW filter on device bond1
[  779.122937][T12716] bond1: (slave gretap1): making interface the new active one
[  779.142863][T12716] bond1: (slave gretap1): Enslaving as an active interface with an up link
[  779.153985][ T6190] IPv6: ADDRCONF(NETDEV_CHANGE): bond1: link becomes ready
[  779.278131][T12722] loop8: detected capacity change from 0 to 512
[  779.314976][T12722] EXT4-fs (loop8): mounting ext2 file system using the ext4 subsystem
[  779.353669][T12722] EXT4-fs error (device loop8): ext4_validate_block_bitmap:429: comm syz.8.1942: bg 0: block 104: invalid block bitmap
[  779.385110][T12722] EXT4-fs error (device loop8) in ext4_mb_clear_bb:6180: Corrupt filesystem
[  779.397290][T12722] EXT4-fs error (device loop8): ext4_free_branches:1030: inode #11: comm syz.8.1942: invalid indirect mapped block 1 (level 1)
[  779.414885][T12722] EXT4-fs (loop8): 1 truncate cleaned up
[  779.420826][T12722] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[  780.054262][T10081] EXT4-fs (loop8): unmounting filesystem.
[  780.971519][T12737] tipc: Enabling of bearer <eth:syzkall> rejected, failed to enable media
[  781.016042][T12737] device syzkaller0 entered promiscuous mode
[  781.581660][T12750] loop8: detected capacity change from 0 to 512
[  781.608502][T12750] EXT4-fs: Ignoring removed bh option
[  781.628242][T12750] EXT4-fs: inline encryption not supported
[  781.644553][T12750] EXT4-fs (loop8): feature flags set on rev 0 fs, running e2fsck is recommended
[  781.700513][T12750] EXT4-fs warning (device loop8): ext4_update_dynamic_rev:1086: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  781.730250][T12750] EXT4-fs error (device loop8): ext4_validate_block_bitmap:438: comm syz.8.1952: bg 0: block 248: padding at end of block bitmap is not set
[  781.763912][T12750] Quota error (device loop8): write_blk: dquota write failed
[  781.777943][T12750] Quota error (device loop8): qtree_write_dquot: Error -28 occurred while creating quota
[  781.788560][T12750] EXT4-fs error (device loop8): ext4_acquire_dquot:6841: comm syz.8.1952: Failed to acquire dquot type 1
[  781.816023][T12750] EXT4-fs (loop8): 1 truncate cleaned up
[  781.825244][T12750] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[  781.992432][T10081] EXT4-fs (loop8): unmounting filesystem.
[  784.724972][T12783] loop4: detected capacity change from 0 to 1024
[  784.751777][T12783] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  784.782757][T12783] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  784.835716][T12783] EXT4-fs error (device loop4): ext4_get_journal_inode:5762: inode #5: comm syz.4.1962: unexpected bad inode w/o EXT4_IGET_BAD
[  784.875729][T12783] EXT4-fs (loop4): no journal found
[  784.881153][T12783] EXT4-fs (loop4): can't get journal size
[  785.112398][T12783] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  785.336414][T12783] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.1962: bg 0: block 32: padding at end of block bitmap is not set
[  785.725382][ T4268] EXT4-fs (loop4): unmounting filesystem.
[  787.987434][T12759] netlink: 'syz.7.1948': attribute type 8 has an invalid length.
[  788.019077][T12791] gre0 speed is unknown, defaulting to 1000
[  788.054627][T12792] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  788.123491][T12792] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  788.235484][T12791] gre0 speed is unknown, defaulting to 1000
[  788.284215][T12791] gre0 speed is unknown, defaulting to 1000
[  788.662637][T12806] device syzkaller0 entered promiscuous mode
[  788.707709][T12809] loop5: detected capacity change from 0 to 512
[  788.738925][T12791] infiniband syz1: set active
[  788.790728][T12791] infiniband syz1: added gre0
[  788.802030][T12809] Quota error (device loop5): v2_read_file_info: Block with free entry 5 out of range (1, 0).
[  788.825042][T12791] rdma_rxe: unable to create cq
[  788.828185][T12809] EXT4-fs warning (device loop5): ext4_enable_quotas:7093: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  788.875025][T12809] EXT4-fs (loop5): mount failed
[  788.880284][ T4355] gre0 speed is unknown, defaulting to 1000
[  789.139602][T12791] infiniband syz1: Couldn't create ib_mad CQ
[  789.314158][T12791] infiniband syz1: Couldn't open port 1
[  790.261594][T12791] RDS/IB: syz1: added
[  790.310463][T12791] smc: adding ib device syz1 with port count 1
[  790.330168][T12791] smc:    ib device syz1 port 1 has pnetid 
[  790.353485][   T14] gre0 speed is unknown, defaulting to 1000
[  790.401887][T12791] gre0 speed is unknown, defaulting to 1000
[  791.351095][T12835] device syzkaller0 entered promiscuous mode
[  792.297449][T12847] loop5: detected capacity change from 0 to 512
[  792.305560][T12847] EXT4-fs: Ignoring removed orlov option
[  792.312089][T12847] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[  792.371885][T12847] EXT4-fs error (device loop5): ext4_iget_extra_inode:4763: inode #15: comm syz.5.1981: corrupted in-inode xattr
[  792.384697][T12847] EXT4-fs error (device loop5): ext4_orphan_get:1410: comm syz.5.1981: couldn't read orphan inode 15 (err -117)
[  792.397180][T12847] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  792.912317][T12852] EXT4-fs error (device loop5): ext4_iget_extra_inode:4763: inode #15: comm syz.5.1981: corrupted in-inode xattr
[  796.475968][T12842] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  796.505669][T12851] netlink: 'syz.5.1981': attribute type 8 has an invalid length.
[  796.519665][T12791] gre0 speed is unknown, defaulting to 1000
[  796.632469][ T7165] EXT4-fs (loop5): unmounting filesystem.
[  796.877541][T12873] loop2: detected capacity change from 0 to 512
[  796.895151][T12791] gre0 speed is unknown, defaulting to 1000
[  797.265894][T12873] Quota error (device loop2): v2_read_file_info: Block with free entry 5 out of range (1, 0).
[  797.455520][T12873] EXT4-fs warning (device loop2): ext4_enable_quotas:7093: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  797.730599][T12873] EXT4-fs (loop2): mount failed
[  797.816606][T12884] loop8: detected capacity change from 0 to 512
[  797.914911][T12791] gre0 speed is unknown, defaulting to 1000
[  798.947283][T12898] loop2: detected capacity change from 0 to 512
[  798.980492][T12898] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  799.021415][T12898] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock
[  799.049663][T12898] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock
[  799.061823][T12884] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[  799.075618][T12898] EXT4-fs (loop2): ext4_check_descriptors: Inode table for group 1 overlaps superblock
[  799.087095][T12884] ext4 filesystem being mounted at /114/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  799.112157][T12898] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  799.147776][T12898] EXT4-fs (loop2): orphan cleanup on readonly fs
[  799.172168][T12884] 
[  799.173957][T12898] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.1992: bg 0: block 34: padding at end of block bitmap is not set
[  799.174569][T12884] ======================================================
[  799.174578][T12884] WARNING: possible circular locking dependency detected
[  799.202912][T12884] syzkaller #0 Not tainted
[  799.207455][T12884] ------------------------------------------------------
[  799.214516][T12884] syz.8.1989/12884 is trying to acquire lock:
[  799.220658][T12884] ffff888071905228 (&dquot->dq_lock){+.+.}-{3:3}, at: dquot_commit+0x5a/0x410
[  799.229624][T12884] 
[  799.229624][T12884] but task is already holding lock:
[  799.237019][T12884] ffff8880743cbeb8 (&ei->i_data_sem/2){++++}-{3:3}, at: ext4_truncate+0x999/0x1240
[  799.246412][T12884] 
[  799.246412][T12884] which lock already depends on the new lock.
[  799.246412][T12884] 
[  799.256852][T12884] 
[  799.256852][T12884] the existing dependency chain (in reverse order) is:
[  799.262134][T12898] Quota error (device loop2): write_blk: dquota write failed
[  799.265896][T12884] 
[  799.265896][T12884] -> #2 (&ei->i_data_sem/2){++++}-{3:3}:
[  799.281163][T12884]        down_write+0x36/0x60
[  799.285913][T12884]        ext4_map_blocks+0x910/0x1b70
[  799.291350][T12884]        ext4_getblk+0x1cc/0x6f0
[  799.296355][T12884]        ext4_bread+0x26/0x170
[  799.301177][T12884]        ext4_quota_write+0x236/0x580
[  799.306613][T12884]        find_free_dqentry+0x673/0xc20
[  799.312226][T12884]        do_insert_tree+0x70d/0x1040
[  799.317573][T12884]        do_insert_tree+0x9eb/0x1040
[  799.322915][T12884]        do_insert_tree+0x9eb/0x1040
[  799.328345][T12884]        do_insert_tree+0x9eb/0x1040
[  799.333695][T12884]        qtree_write_dquot+0x49d/0x5d0
[  799.339219][T12884]        v2_write_dquot+0x108/0x190
[  799.344487][T12884]        dquot_acquire+0x2d5/0x520
[  799.348249][T12898] Quota error (device loop2): qtree_write_dquot: Error -28 occurred while creating quota
[  799.349721][T12884]        ext4_acquire_dquot+0x2d9/0x4a0
[  799.349752][T12884]        dqget+0x778/0xeb0
[  799.349772][T12884]        __dquot_initialize+0x3c3/0xcd0
[  799.375247][T12884]        ext4_process_orphan+0x54/0x300
[  799.380859][T12884]        ext4_orphan_cleanup+0xbeb/0x1420
[  799.386635][T12884]        ext4_fill_super+0x6ee3/0x78c0
[  799.392148][T12884]        get_tree_bdev+0x3f1/0x610
[  799.397314][T12884]        vfs_get_tree+0x88/0x270
[  799.402313][T12884]        do_new_mount+0x24a/0xa40
[  799.407390][T12884]        __se_sys_mount+0x2e3/0x3d0
[  799.412634][T12884]        do_syscall_64+0x4c/0xa0
[  799.417635][T12884]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  799.424106][T12884] 
[  799.424106][T12884] -> #1 (&s->s_dquot.dqio_sem){++++}-{3:3}:
[  799.432249][T12884]        down_read+0x42/0x2d0
[  799.434523][T12898] EXT4-fs error (device loop2): ext4_acquire_dquot:6841: comm syz.2.1992: Failed to acquire dquot type 1
[  799.436977][T12884]        v2_read_dquot+0x4a/0x110
[  799.437007][T12884]        dquot_acquire+0x152/0x520
[  799.458470][T12884]        ext4_acquire_dquot+0x2d9/0x4a0
[  799.464285][T12884]        dqget+0x778/0xeb0
[  799.468841][T12884]        __dquot_initialize+0x3c3/0xcd0
[  799.474437][T12884]        ext4_process_orphan+0x54/0x300
[  799.480179][T12884]        ext4_orphan_cleanup+0xbeb/0x1420
[  799.485965][T12884]        ext4_fill_super+0x6ee3/0x78c0
[  799.491557][T12884]        get_tree_bdev+0x3f1/0x610
[  799.496724][T12884]        vfs_get_tree+0x88/0x270
[  799.501731][T12884]        do_new_mount+0x24a/0xa40
[  799.506809][T12884]        __se_sys_mount+0x2e3/0x3d0
[  799.512058][T12884]        do_syscall_64+0x4c/0xa0
[  799.513628][T12898] EXT4-fs (loop2): 1 truncate cleaned up
[  799.517044][T12884]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  799.517078][T12884] 
[  799.517078][T12884] -> #0 (&dquot->dq_lock){+.+.}-{3:3}:
[  799.536902][T12884]        __lock_acquire+0x2d07/0x7d10
[  799.542340][T12884]        lock_acquire+0x1bb/0x4a0
[  799.547426][T12884]        __mutex_lock+0x12d/0xaf0
[  799.552505][T12884]        dquot_commit+0x5a/0x410
[  799.557486][T12884]        ext4_write_dquot+0x1f0/0x360
[  799.562906][T12884]        mark_all_dquot_dirty+0xf9/0x400
[  799.568580][T12884]        __dquot_free_space+0x7ec/0xbc0
[  799.574179][T12884]        ext4_free_blocks+0x1bf3/0x26a0
[  799.579784][T12884]        ext4_ext_remove_space+0x225f/0x44c0
[  799.585901][T12884]        ext4_ext_truncate+0x211/0x370
[  799.591417][T12884]        ext4_truncate+0xa23/0x1240
[  799.596677][T12884]        ext4_setattr+0x11f8/0x1b50
[  799.601937][T12884]        notify_change+0xc74/0xf40
[  799.607148][T12884]        do_truncate+0x1ac/0x240
[  799.612144][T12884]        path_openat+0x2861/0x2ee0
[  799.617317][T12884]        do_filp_open+0x1f1/0x430
[  799.622389][T12884]        do_sys_openat2+0x150/0x4b0
[  799.627643][T12884]        __x64_sys_openat+0x135/0x160
[  799.633073][T12884]        do_syscall_64+0x4c/0xa0
[  799.638063][T12884]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  799.644531][T12884] 
[  799.644531][T12884] other info that might help us debug this:
[  799.644531][T12884] 
[  799.654797][T12884] Chain exists of:
[  799.654797][T12884]   &dquot->dq_lock --> &s->s_dquot.dqio_sem --> &ei->i_data_sem/2
[  799.654797][T12884] 
[  799.668511][T12884]  Possible unsafe locking scenario:
[  799.668511][T12884] 
[  799.676003][T12884]        CPU0                    CPU1
[  799.681413][T12884]        ----                    ----
[  799.686807][T12884]   lock(&ei->i_data_sem/2);
[  799.691450][T12884]                                lock(&s->s_dquot.dqio_sem);
[  799.698865][T12884]                                lock(&ei->i_data_sem/2);
[  799.706044][T12884]   lock(&dquot->dq_lock);
[  799.710686][T12884] 
[  799.710686][T12884]  *** DEADLOCK ***
[  799.710686][T12884] 
[  799.718863][T12884] 5 locks held by syz.8.1989/12884:
[  799.724101][T12884]  #0: ffff888029278460 (sb_writers#4){.+.+}-{0:0}, at: mnt_want_write+0x3d/0x90
[  799.733508][T12884]  #1: ffff8880743cc030 (&sb->s_type->i_mutex_key#9){++++}-{3:3}, at: do_truncate+0x198/0x240
[  799.743857][T12884]  #2: ffff8880743cc1d0 (mapping.invalidate_lock#2){++++}-{3:3}, at: ext4_setattr+0xfb3/0x1b50
[  799.754287][T12884]  #3: ffff8880743cbeb8 (&ei->i_data_sem/2){++++}-{3:3}, at: ext4_truncate+0x999/0x1240
[  799.764318][T12884]  #4: ffffffff8cc74a48 (dquot_srcu){....}-{0:0}, at: __dquot_free_space+0x174/0xbc0
[  799.771247][T12791] gre0 speed is unknown, defaulting to 1000
[  799.773860][T12884] 
[  799.773860][T12884] stack backtrace:
[  799.773885][T12884] CPU: 1 PID: 12884 Comm: syz.8.1989 Not tainted syzkaller #0
[  799.793207][T12884] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  799.803323][T12884] Call Trace:
[  799.806657][T12884]  <TASK>
[  799.809630][T12884]  dump_stack_lvl+0x188/0x24e
[  799.814372][T12884]  ? load_image+0x400/0x400
[  799.819019][T12884]  ? show_regs_print_info+0x12/0x12
[  799.824282][T12884]  ? print_circular_bug+0x12b/0x1a0
[  799.829543][T12884]  check_noncircular+0x296/0x330
[  799.834540][T12884]  ? add_chain_block+0x940/0x940
[  799.839528][T12884]  ? lockdep_lock+0xf1/0x1f0
[  799.844172][T12884]  ? mark_lock+0x94/0x320
[  799.848561][T12884]  ? _find_first_zero_bit+0xcf/0x100
[  799.853897][T12884]  __lock_acquire+0x2d07/0x7d10
[  799.858818][T12884]  ? check_path+0x21/0x40
[  799.863199][T12884]  ? check_noncircular+0x189/0x330
[  799.868371][T12884]  ? verify_lock_unused+0x140/0x140
[  799.873634][T12884]  ? add_chain_block+0x940/0x940
[  799.878628][T12884]  ? lockdep_lock+0xf1/0x1f0
[  799.883280][T12884]  ? lockdep_unlock+0x142/0x2e0
[  799.888186][T12884]  ? mark_lock+0x94/0x320
[  799.892577][T12884]  lock_acquire+0x1bb/0x4a0
[  799.897225][T12884]  ? dquot_commit+0x5a/0x410
[  799.901864][T12884]  ? __might_sleep+0xd0/0xd0
[  799.906623][T12884]  ? read_lock_is_recursive+0x10/0x10
[  799.912063][T12884]  __mutex_lock+0x12d/0xaf0
[  799.916622][T12884]  ? dquot_commit+0x5a/0x410
[  799.921266][T12884]  ? __might_sleep+0xd0/0xd0
[  799.925898][T12884]  ? dquot_commit+0x5a/0x410
[  799.930530][T12884]  ? mutex_lock_nested+0x10/0x10
[  799.935526][T12884]  ? ext4_journal_check_start+0x17e/0x240
[  799.941378][T12884]  dquot_commit+0x5a/0x410
[  799.945839][T12884]  ext4_write_dquot+0x1f0/0x360
[  799.950734][T12884]  mark_all_dquot_dirty+0xf9/0x400
[  799.955896][T12884]  __dquot_free_space+0x7ec/0xbc0
[  799.961065][T12884]  ? __dquot_free_space+0x174/0xbc0
[  799.966316][T12884]  ? ext4_free_blocks+0x18de/0x26a0
[  799.971572][T12884]  ext4_free_blocks+0x1bf3/0x26a0
[  799.976660][T12884]  ? ext4_mb_discard_preallocations_should_retry+0x710/0x710
[  799.984089][T12884]  ? __ext4_journal_ensure_credits+0x2c/0x450
[  799.990241][T12884]  ? ext4_inode_journal_mode+0x18f/0x460
[  799.995962][T12884]  ext4_ext_remove_space+0x225f/0x44c0
[  800.001491][T12884]  ? ext4_da_release_space+0x133/0x5d0
[  800.006995][T12884]  ? ext4_ext_index_trans_blocks+0xf0/0xf0
[  800.012938][T12884]  ext4_ext_truncate+0x211/0x370
[  800.017930][T12884]  ext4_truncate+0xa23/0x1240
[  800.022669][T12884]  ? __ext4_mark_inode_dirty+0x770/0x770
[  800.028364][T12884]  ? unmap_mapping_range+0x91/0x100
[  800.033608][T12884]  ext4_setattr+0x11f8/0x1b50
[  800.038391][T12884]  ? ext4_write_inode+0x5e0/0x5e0
[  800.043549][T12884]  notify_change+0xc74/0xf40
[  800.048192][T12884]  do_truncate+0x1ac/0x240
[  800.052665][T12884]  ? put_page_bootmem+0x2c0/0x2c0
[  800.057744][T12884]  ? ima_bprm_check+0x200/0x200
[  800.062637][T12884]  ? bpf_lsm_path_truncate+0x5/0x10
[  800.067897][T12884]  path_openat+0x2861/0x2ee0
[  800.072558][T12884]  ? do_filp_open+0x430/0x430
[  800.077293][T12884]  do_filp_open+0x1f1/0x430
[  800.081842][T12884]  ? vfs_tmpfile+0x480/0x480
[  800.086485][T12884]  ? _raw_spin_unlock+0x24/0x40
[  800.091382][T12884]  ? alloc_fd+0x58f/0x630
[  800.095771][T12884]  do_sys_openat2+0x150/0x4b0
[  800.100514][T12884]  ? do_sys_open+0xe0/0xe0
[  800.105066][T12884]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[  800.111278][T12884]  ? lock_chain_count+0x20/0x20
[  800.116187][T12884]  __x64_sys_openat+0x135/0x160
[  800.121108][T12884]  do_syscall_64+0x4c/0xa0
[  800.125600][T12884]  ? clear_bhb_loop+0x60/0xb0
[  800.130426][T12884]  ? clear_bhb_loop+0x60/0xb0
[  800.135162][T12884]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  800.141157][T12884] RIP: 0033:0x7f3e0399c819
[  800.145638][T12884] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  800.165475][T12884] RSP: 002b:00007f3e048d0028 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  800.173986][T12884] RAX: ffffffffffffffda RBX: 00007f3e03c15fa0 RCX: 00007f3e0399c819
[  800.182043][T12884] RDX: 0000000000101e42 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  800.190063][T12884] RBP: 00007f3e03a32c91 R08: 0000000000000000 R09: 0000000000000000
[  800.198088][T12884] R10: 0000000000000033 R11: 0000000000000246 R12: 0000000000000000
[  800.206472][T12884] R13: 00007f3e03c16038 R14: 00007f3e03c15fa0 R15: 00007ffe57382308
[  800.214499][T12884]  </TASK>
[  800.293080][T12898] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  800.356981][T10081] EXT4-fs (loop8): unmounting filesystem.
[  800.559715][T12907] EXT4-fs error (device loop2): ext4_lookup:1862: inode #2: comm syz.2.1992: deleted inode referenced: 12
[  800.815581][ T4271] EXT4-fs (loop2): unmounting filesystem.
[  808.821871][ T1273] ieee802154 phy0 wpan0: encryption failed: -22
[  808.828481][ T1273] ieee802154 phy1 wpan1: encryption failed: -22