last executing test programs:

9.305734701s ago: executing program 3 (id=579):
syz_mount_image$fuse(&(0x7f0000000040), 0x0, 0x0, &(0x7f00000004c0)=ANY=[@ANYRESDEC=0x0, @ANYBLOB], 0x0, 0x0, 0x0)
ioctl$BTRFS_IOC_RM_DEV(0xffffffffffffffff, 0x5000940b, &(0x7f0000000a80)={{}, "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"})
syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000012ea2a400a09001287240000000109021200010000000009040000000f"], 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={0x0}}, 0x24000884)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000080)="440f20c0350b000000440f22c0360f09c4217d700c9d0000000028b8010000000f01c166b82e000f00d80f20d835080000000f22d82e0f019885000000b9b1060000b86f8d0000ba0000000066b8b5008ec036363ef3420f51a600000000b9e30b0000b8f233278fba000000000f30", 0x6f}], 0x1, 0x13, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x21)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000161000/0x18000)=nil, &(0x7f0000005700)=[@text64={0x40, 0x0}], 0x1, 0x5b, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

9.204794576s ago: executing program 0 (id=581):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r3, 0x6, 0x24, 0x0, 0x0)
shutdown(r3, 0x0)
r4 = syz_open_dev$sndpcmc(&(0x7f0000000480), 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_INFO(r4, 0x81204101, 0x0)

8.086742253s ago: executing program 0 (id=584):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000640)='./file1\x00', 0x3014850, &(0x7f0000000240), 0x3, 0x4e6, &(0x7f0000001240)="$eJzs3d9rXFkdAPDvnSRt2qZNqj7UgrVoJS3amaSxbfChRhB9Kljre4zJJIRMMiEzaZtQJMU/QBB/oU8+6YPgswjSP0GEgr6LLLuU3bbLsg+7O8tM7mzT2ZlkQpNMmvl84PTec+7N/Z4z0zkz557LvQF0rYsRMRERPRFxJSIG0/JMmmJjM1X3e/7s4XQ1JVGp3H03iSQtqx8rSZen0j/rj4gf/zDiZ8nn45bW1hemCoX8SprPlReXc6W19avzi1Nz+bn80sTY6I3xm+PXx0f2rK23vv/Wb3/55x/c+ue37v9v8p3LP69WayDdtrUd7dhoc7/NpvfVXou63ohY2U2wQ6wnbU9fpysCAEBbqr/xvxARX4uIF39o3OpXHQAAABwFle8OxEdJRKVSqZyplwEAAABHSqZ2DWySyabXAgxEJpPNbl7D+6U4mSkUS+VvzhZXl2Y2r5Udir7M7HwhP5JeKzwUfUk1P1pbf5m/1pAfi4izEfHrwRO1fHa6WJjp8LkPAAAA6BanGsb/7w9ujv8BAACAI2ao0xUAAAAA9p3xPwAAABx9Lcf/Se/BVgQAAADYDz+6fbuaKvXnX8/cW1tdKN67OpMvLWQXV6ez08WV5excsThXu2ff4k7HKxSLy9+OpdUHuXK+VM6V1tYnF4urS+XJ2nO9J/OeKAgAAAAH7+xXH/83iYiN75yopapj6bY2xuoT+1s7YD9ldrd7sl/1AA5eT6crAHSMC3yhe5mPB3YY2P+mIb/L0wYAAMBhMPzl15r/Nx8IbzADeehe5v+he5n/h+5l/h+63PGdd+lvteFfbRzfWUIAADgUBmopyWTTucCByGSy2YjTtccC9CWz84X8SESciYj/DPYdr+ZHO11pAAAAAAAAAAAAAAAAAAAAAAAAAHjDVCpJVAAAAIAjLSLzdpI+omt48NJA4/mBY8mHg7VlRNz/493fPZgql1dGq+XvfVZe/n1afq0TZzAAAACARvVxen0cDwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB76fmzh9P1dJBxn34vIoaaxe+N/tqy/++DEXHyRRK9W/4uiYiePYi/8SgizjWLn1SrFUMfbNaiMX4mIk4cRPxoHf/UHsSHbva42v9MNPv8ZeJibdn889ebptf19GKr/i9T7/9q/Vyz/u90mzHOP/lbrmX8RxHne5v3P/X4yWv2vz/9yfp6q22VP0UMN/3+SV6JlSsvLudKa+tX5xen5vJz+aWxsdEb4zfHr4+P5GbnC/n036YxfvWVf3yyXftPtog/tEP7L7XZ/o+fPHj2xW3iX/568/f/3Dbxq6/9N9Lvger24fr6xub6Vhf++u8LDUXHtsafadH+nd7/y222/8qdX/y/zV0BgANQWltfmCoU8itWjuxK7wHEqv9/OiRN7uqVv2wtuZO+Mbs+Tuf6JAAAYH+8/NHf6ZoAAAAAAAAAAAAAAAAAAABA93rlpl89EbHXdyM7/uqdBfo711QAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgG19GgAA//9UPsbW")
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x2a0471a, &(0x7f00000000c0)={[{@quota}, {@bsdgroups}, {@nouid32}, {@errors_remount}, {@jqfmt_vfsv1}, {@oldalloc}, {@stripe={'stripe', 0x3d, 0x5}}]}, 0x2, 0x46b, &(0x7f0000000580)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000600)='./file1\x00', 0x101042, 0x103)
pwrite64(r1, &(0x7f0000000000)='2', 0x1, 0x4fed0)
pwrite64(r0, &(0x7f0000000140)='\x00', 0x1, 0x313c)
fallocate(r0, 0x3, 0x1, 0x8000c62)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x20024090)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f00000003c0)={0x80d8, 0x0, 0x0, 0xffffffff})

7.70515667s ago: executing program 1 (id=586):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
r1 = syz_pidfd_open(0x0, 0x0)
pidfd_send_signal(r1, 0x0, &(0x7f0000000140)={0x0, 0x4, 0x7fffffff}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21}, 0x0)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN_UNNAMED(0x11, &(0x7f0000000340), 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
pipe(&(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
splice(r3, 0x0, r5, 0x0, 0x7, 0x0)
openat$cgroup_int(r4, &(0x7f0000000380)='hugetlb.2MB.rsvd.limit_in_bytes\x00', 0x2, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0)
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r6, 0x29, 0x40, &(0x7f0000000540)=@raw={'raw\x00', 0x3c1, 0x3, 0x328, 0x0, 0x2b8, 0xb0000010, 0x0, 0x5c8f0200, 0x258, 0x3a8, 0x3a8, 0x258, 0x3a8, 0x3, 0x0, {[{{@ipv6={@private1, @local, [], [], 'vlan1\x00', 'veth0_to_team\x00'}, 0x0, 0x118, 0x160, 0x700, {}, [@inet=@rpfilter={{0x28}, {0x4}}, @common=@unspec=@limit={{0x48}, {0x0, 0x3}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x1, 0x400, 0x1c, 0xfffffff9, 'syz1\x00', {0x80}}}}, {{@uncond, 0x0, 0xd0, 0xf8, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@NFQUEUE1={0x28, 'NFQUEUE\x00', 0x1, {0x7, 0xffff}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x388)

7.592018564s ago: executing program 0 (id=588):
socket$nl_xfrm(0x10, 0x3, 0x6)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x9}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000b40)=ANY=[@ANYBLOB, @ANYBLOB="000000000a00020000000000000000000800090002"], 0x30}}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, 0x0, 0x0, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000180)={'wlan1\x00'})
sendmsg$nl_route_sched(r4, 0x0, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x88440, 0x0)
r5 = openat(0xffffffffffffff9c, 0x0, 0x103040, 0x142)
fcntl$setlease(r5, 0x400, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x88040, 0x0)
fcntl$getflags(r6, 0x401)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/cpuinfo\x00', 0x0, 0x0)
unshare(0x26000400)
socketpair(0x1, 0x1, 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
sendmsg$inet(r8, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r7, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000580), 0x100}, 0x0)
select(0x2a, 0x0, 0x0, &(0x7f0000000400)={0xfefdffffffffffff, 0x1, 0x2, 0x300}, &(0x7f0000000440)={0x0, 0x2710})

7.353881035s ago: executing program 2 (id=591):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'ctr-aes-aesni\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r1 = accept4(r0, 0x0, 0x0, 0x800)
sendmmsg$alg(r1, &(0x7f0000003800)=[{0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000002600)="f2479823179f00d311d54df36a51019507", 0x11}], 0x1, 0x0, 0x0, 0x44040}], 0x1, 0x40800)
recvmsg(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000f40)=""/92, 0x5c}], 0x1}, 0x40002020)

7.24789647s ago: executing program 3 (id=592):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
uname(0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, 0x0, &(0x7f00000002c0)}, 0x20)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_emit_ethernet(0x4e, &(0x7f0000000340)={@local, @empty, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "a24b9f", 0x18, 0x2b, 0x1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @local, {[], {0x0, 0x4e20, 0x18, 0x0, @wg=@data}}}}}}, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000001240)='./file2\x00', 0x14552, &(0x7f0000000b40)=ANY=[], 0x1, 0x120d, &(0x7f0000001280)="$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")
mkdir(&(0x7f0000000140)='./control\x00', 0x5)
rmdir(&(0x7f0000000100)='./control\x00')

6.177890665s ago: executing program 3 (id=594):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r3, 0x6, 0x24, 0x0, 0x0)
shutdown(r3, 0x0)
r4 = syz_open_dev$sndpcmc(&(0x7f0000000480), 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_INFO(r4, 0x81204101, 0x0)

5.984049734s ago: executing program 2 (id=595):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000000180)='./bus\x00', 0x301242f, 0x0, 0x1, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x20, 0x10, &(0x7f0000000580)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x73cea2d47785b264, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000280)='sched_switch\x00', r3}, 0x18)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
openat$binder_debug(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000200)='./bus\x00', &(0x7f0000000b80), 0x200008, &(0x7f0000000300)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './cgroup'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@xino_on}]})
syz_mount_image$fuse(&(0x7f0000000540), &(0x7f0000000000)='./bus\x00', 0x322020, &(0x7f0000000580)=ANY=[], 0x3, 0x0, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cgroup.kill\x00', 0x275a, 0x0)
fstat(r4, 0x0)
pipe2$9p(0x0, 0x0)

4.955893277s ago: executing program 3 (id=596):
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
write$UHID_CREATE2(r0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0b00000073797a31000000dfff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a30000037b35f0a000089b4c45a10000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001"], 0x119)
syz_mount_image$hfsplus(&(0x7f00000000c0), &(0x7f0000000080)='./file1\x00', 0x80, &(0x7f0000000300)=ANY=[@ANYBLOB='nobarrier,gid=', @ANYRESHEX=0x0, @ANYBLOB="2c6465636f6d706f73652c666f7263652c666f7263652c756d61736b3d30303030303030303030303030303030303030303031302c6e6c733d64656661756c742c00d4023937168c6a03faba6a3338c76bbb2cc123a1966858d8147d2c8f6696a3afb73a4233a7d6d17cbf793d9f3d5dc088fadadfdb7688c6a99fb22e09bb9b1fbe01fd94fae1e35f93fdbc2d26ac49430c71a16ad073e2416238a4b5f8c9877c553b2690fd7148fad9a9579680000d1a5caad58758c05f80c742dfc96510890d6ab62c3d6bc97ea00353e76f0f436500c88ef1b3ec52d6d1b6189c2c09e76160176ee4c21e9bcebdcac3565569f673575a04183f4095c2743d1547baa170a07fb5b39c0af610bbf13953ecb5e354858f41aa5b7bf2fbde", @ANYRESDEC, @ANYRESDEC], 0x44, 0x705, &(0x7f0000000480)="$eJzs3U9sHGfdB/DvrNdrbyq5bpu0fV8hxWpEBA0kdkxJkJAIFUI5VCgSl15N4jRWnDSyXZREiLhA4QgnlAOHoiocekI9IIE4IMoZCYkryj0S94gDRrM7u95d22tvk9ghfD7SeJ6Zef785teZZ3dnG22A/1nn3874eoqcP/HWzXL7/r355fv35q91ykkmktSSenuV4npSfJqcS3vJ/5U7q+6KncZ548Hvf3X87sfz7a16tbTq14a127QxZIT1aslMkrFqPaL6Tv1dzJtb+rszUtdFN+4yYcc6iYODtrHF+ijN93DfAk+7O8nY+Db7p5NDSSar9wGpZofaPof32I00ywEAAMDTaWy3Cs8/zMPczNT+hAMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADPhqL9m4FFtdQ65ZkUnd//b1T7So3GAcc73Jd2Of7B5X0KBAAAAAAAAACeiE+qL+6PPszD3MxUZ/9G0frO/7XWxuHW3+fyXlazmJWczM0sZC1rWclcMj7V02Hj5sLa2src1pa/TNlyY2PjTtXydJLpLS1P78NJAwAAAAAAAMCz60c5n6mDDgIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHoVyVh71VoOd8rTqdWTTCZplPXWkz92yk+75pBjf9rHOAAAAOCAdD4aTxX/bhc2itZn/pdbn/sn816uZy1LWctyFnOp9Syg/am/9rf1+eX79+avlcvWjr/5z5HiaPWYZCzv7zDybKvGkW6L8/l2vpsTmcmFrGQp389C1rKYmTTLk8hCikw3208vpjtxbh/vub6tC4OxHR3YfrUVSTOXs9SK7WQuNtJ+bNI6h3LMV3tG+10jGRjx/TI7xTcqe8zRpZ7/Xr+onstUNp7fYx9PxnTrzMe7GZlNs9qXvDA89yNeJ4MjzaXWfQZ1eHOUcnNwpE7OvzdKzg9V6zLXP+3P+eM24qO0wUycTq26+pKX+3N+4/N3X+xv/MW///nCldr1q1cur554gqf0KGZ2qzDeKQxmYr4nE68Mv/qqTCyXmVjfeybGB3dM7rXlk9WostGaivY4W36rVVrIaz2X4Lu5lMWcyWzmcjaz+VpOZ757hZXLkb681uev9eekda/Vts5vw57EHvtCT6Wf7VJ5f5V5eaEnr70z3XTrWLXn3M8z23P1vTj86hv5VaAc//+rcjnGj7uvOE+DvkxUc3MnupeGZ+LXG+Xf1eXrV1euLNzY43jHq3V5237QPzd/tPeoB1/dH4fyeiln3Hprq5WTZud6KY+91I22P1+N6huXdrvalmNHusemM5WlfGfHO7VRvYfb2lP72Cu9x/6xOXM2qvc3nWN973LybpZb70IG7DpVA7AvJrqlQ68fajQfNP/a/LD5k+aV5luTb06cnfhcI+N/qf9h7Le139S+XryeD/PDTB1owAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8IxYvXX76sLy8uJKt5DJwT2PWmjsONbwQmq71rn33N46zHQyfKyiKjQe77mPWvjoUHJwo7cLzQzs6fzC0qP2/EmSIXUajxx8MfI1NnKhzMNj6bDzw2mtPRtjIzSvd1ptX6ee1clcXSjq29xxE5t3QaavLiz/a6OveTO3uz0fzHwE7J9Ta9dunFq9dfvLS9cW3ll8Z/H66bNnzp6Z/+rcV05dXlpenG3/PegogSdh9dbtsYOOAQAAAAAAAAAAABhN9X//r33mf8xQ36VOY2V1+5GP7vepAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAP+lzr+d8fUUmZs9OVtu3783v1wunfJmzXqSWpLiB0nxaXIu7SXTPd0VO43zxoPUjt/9eH6zr3qnfm1Yu71Zr5bMJBmr1rub2Kabrf1d7Olv/TOFV3TPsEzYsU7i4KD9JwAA//9Xl/Jw")
r1 = syz_open_dev$hidraw(&(0x7f00000004c0), 0x0, 0x14a042)
r2 = dup(r1)
write$FUSE_WRITE(r2, &(0x7f0000000040)={0x18, 0x0, 0x0, {0x6}}, 0x18)

4.853727252s ago: executing program 4 (id=597):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000002c0)={'wlan0\x00'})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000000)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000000)='sched_switch\x00', r4}, 0x10)
fallocate(0xffffffffffffffff, 0x0, 0x3, 0x800000)
syz_open_dev$loop(&(0x7f0000000180), 0x7fffffff, 0x2a901)
syz_mount_image$vfat(&(0x7f0000000780), &(0x7f0000000000)='./bus\x00', 0x90, &(0x7f0000000140)=ANY=[], 0x6, 0x2d7, &(0x7f0000000340)="$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")
r5 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
ftruncate(r5, 0x81fd)
write$cgroup_subtree(r5, &(0x7f0000000140)=ANY=[], 0xc)

4.575945694s ago: executing program 1 (id=598):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0xe, &(0x7f00000016c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000b80)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffedf, 0x10, &(0x7f0000000040)}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r3, 0x0, 0x4a, 0x109, &(0x7f0000000140)="cb74445b7d4c0b24676c6c71ae37efcedaf40242309766deb4e793f90000000000000000dbc856cbc664650634231454ca2d8034c4ca29e0d99c3b6615e91835a600c08f989af45438a5", &(0x7f0000000cc0)=""/265, 0xcb95, 0x0, 0x103, 0x194, &(0x7f0000000980)="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", &(0x7f00000007c0)="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", 0x2, 0x0, 0x3ff}, 0x50)

4.539683085s ago: executing program 2 (id=599):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), r0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000340)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_DEL_NAN_FUNCTION(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000380)={0x1c, r1, 0x1, 0x70bd27, 0x25dfdbff, {{}, {@val={0x8, 0x3, r2}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x4040000}, 0x4800)

3.221018992s ago: executing program 1 (id=600):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x3804402, &(0x7f00000005c0)={[{@mblk_io_submit}, {@abort}, {@resuid}, {@oldalloc}, {@discard}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x7b1}}, {@nolazytime}, {@noinit_itable}, {@nomblk_io_submit}, {@nodelalloc}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x400}}]}, 0x1, 0x55f, &(0x7f0000000c80)="$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")
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xa, 0x4, 0x0, &(0x7f0000000380)='GPL\x00', 0x5}, 0x94)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f0000000380)=ANY=[])

3.167989834s ago: executing program 3 (id=601):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000240)={[{@minixdf}, {}, {@barrier_val={'barrier', 0x3d, 0x9}}, {@commit={'commit', 0x3d, 0x5}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@dioread_nolock}, {@nodelalloc}, {@noblock_validity}, {@nomblk_io_submit}]}, 0xfe, 0x566, &(0x7f00000015c0)="$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")
quotactl$Q_QUOTAON(0xffffffff80000201, &(0x7f0000000180)=@loop={'/dev/loop', 0x0}, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x9)
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x28011, r0, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000400)={0xa, 0x4e23, 0x0, @mcast2}, 0x1c)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000001f40)=ANY=[@ANYBLOB="000000004c900200060000000300010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000020000000000000ffffffffffd9ffff00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff"])

3.136007645s ago: executing program 4 (id=602):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@newsa={0x13c, 0x10, 0x713, 0x0, 0x25dfdbfc, {{@in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @in6=@dev={0xfe, 0x80, '\x00', 0x1a}, 0x0, 0x0, 0x4e21, 0x2, 0x2, 0x0, 0x0, 0x6c, 0x0, 0xee00}, {@in6=@private1, 0xfe, 0x32}, @in6=@ipv4={'\x00', '\xff\xff', @remote}, {0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x543}, {0x4, 0x7fffffffffffffff}, {}, 0x70bd2c, 0x3500, 0xa, 0x0, 0x0, 0x50}, [@algo_aead={0x4c, 0x12, {{'rfc4106(gcm(aes))\x00'}, 0x0, 0x60}}]}, 0x13c}, 0x1, 0x0, 0x0, 0x4000880}, 0x0)

3.0407281s ago: executing program 2 (id=603):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x3, 0x4, &(0x7f0000000000)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x23}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r0, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000240)="b9ff03316844268cb89e14f00800", 0x0, 0x9, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

2.987975412s ago: executing program 0 (id=604):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
uname(0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, 0x0, &(0x7f00000002c0)}, 0x20)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_emit_ethernet(0x4e, &(0x7f0000000340)={@local, @empty, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "a24b9f", 0x18, 0x2b, 0x1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @local, {[], {0x0, 0x4e20, 0x18, 0x0, @wg=@data}}}}}}, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000001240)='./file2\x00', 0x14552, &(0x7f0000000b40)=ANY=[], 0x1, 0x120d, &(0x7f0000001280)="$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")
mkdir(&(0x7f0000000140)='./control\x00', 0x5)
rmdir(&(0x7f0000000100)='./control\x00')

2.936395164s ago: executing program 4 (id=605):
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r0, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_opts(r1, 0x0, 0xd, &(0x7f0000000140)='!', 0x1)

2.879818957s ago: executing program 4 (id=606):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x6, 0x31, 0xffffffffffffffff, 0x2000)
syz_mount_image$ext4(&(0x7f0000000140)='ext2\x00', &(0x7f0000000080)='./file0\x00', 0x0, &(0x7f0000000000), 0xfd, 0x477, &(0x7f0000000880)="$eJzs3M9vVEUcAPDv2/7gt62IP0CUKhobjS0tqBw8gNHEgyYmesBjbQsiCzW0GiFEVw94NCTejUcT/wJPejHqycSr3g0JMVxAvTzzdt9rd5fddSlbF9zPJ1k68+YtM9+dN7szb7oNYGBNZP8kEdsj4teIGKtlG0+YqP24fvXC/J9XL8wnkaav/5FUz7t29cJ8cWrxvG1FptJ4vN7yufOn5srlxbN5fnrl9LvTy+fOP33y9NyJxROLZ2YPHz50cOa5Z2ef6UmcWZuu7flwae/ul9+89Or8sUtv/fh1UsTfEMf73f+nmzuWTrQ4NlQkHu++ljvCjrp0MtzHhnBT3o6IrLtGquN/LIZirfPG4qVP+to4YEOlaZpual9cSYH/sST63QKgP/LP+SSiMp+tgevX84PgytHaAiiL+3r+qJUMRyk/Z6RpfdtL2WrrWOWvL7JHNN1PAQDYCN8erf0s5n5r849Sw138I/ne0HhE3B0ROyPinojYFRH3RsR9EXF/RDxQ95xW+z7NmjdJbpz/lC6vK7AuZfO/5/O9rcb5XzH7i/GhPLejGv9IcvxkefFARNwVEZMxsinLz3So47sXf/msXdlE3fwve2T1F3PBvB2Xh5tu0C3MrczdSsz1rnwcsWe4VfzJ6k5A1o+7I2LPvvXVcfLJr/a2K/v3+DvowT5T+mXEE7X+r0RT/IWk8/7k9OYoLx6YLq6KG/3088XX2tV/S/H3QNb/W1te/6vxjyf1+7XLN1/Hxd8+bbum6fL6H61/Tnb9jyZvVNNFwQdzKytnZyJGk1fy40fy4431Vc+bXTs/i39yf+vxvzPWXokHIyK7iB+KiIcjYl/e9kci4tGI2N8h/h9eeOyd9ce/sbL4F26q/9smir3tG4qGTn3/TbWk6KzxDvEn0aL/D1VTk/mRbt7/Orb07K1czQAAAHDnKUXE9khKU6vpUmlqqvb78rtia6m8tLzy1PGl984s1L4jMB4jpeJO19jq/dCozOTL+uL+6GxT/mB+3/jzoS3V/NT8Unmh38HDgNvWZvxnfh/qd+uADef7WjC41jv+0zT9qMdNAf5jPv9hcBn/MLhajP8tTfkOfyMAuJO1+vy3sIfBYP4Pg8v4h8Fl/MPgMv5hIOXfhB/u5gv+G5bI3n/6V3s3iWhoYZr2qRmjt8erUU1EqW+1xzqfPtmnV+zv/I9t3h4d12Wi3+9MAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAvfFPAAAA//89VeJz")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB="180000000000000000000000000000007112150000000000950000000000000048b76933a13341bf8f52e613fd8a67b1baa7ca90af374e9d1253b63faa82853319cff8dc6ea8bd3dd222ed5947c89515aad3206ea99e3476618aa25b4df4dc7314818a62f2d958f9fec8a2abd65b1532358a22c4315b144bc3cd3632efcbce03ff44c62b66bdc3a7552aaf358a3bbb143a0a212fd7c47edb56e2c567896e9948a919d1c993af24c83435df4ffab3a7998d7fa2ff6579e1ca25f04e9da99dffbfea64871a3a40a6961b917319731aace101488c22b9495739e2eb2aa674333618cab1f9521466242e04ff3148667f2960e59f"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x80)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/fib_triestat\x00')
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
read$FUSE(r1, &(0x7f0000006280)={0x2020}, 0x2020)
sched_setaffinity(0x0, 0x0, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
truncate(&(0x7f00000000c0)='./file1\x00', 0x6e3)
preadv2(r0, &(0x7f0000000380)=[{0x0}], 0x1, 0xb, 0x5, 0x8)

2.864960807s ago: executing program 2 (id=607):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r3, 0x6, 0x24, 0x0, 0x0)
recvmmsg(r3, 0x0, 0x0, 0x0, 0x0)
r4 = syz_open_dev$sndpcmc(&(0x7f0000000480), 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_INFO(r4, 0x81204101, 0x0)

1.946309347s ago: executing program 1 (id=608):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000780), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000440)={0x28, r1, 0x5, 0x0, 0x25dfdbf9, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_CONFIG={0xc, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_FORWARDING={0x5, 0x13, 0x1}]}]}, 0x28}}, 0x0)

1.898561368s ago: executing program 0 (id=609):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000000180)='./bus\x00', 0x301242f, 0x0, 0x1, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x20, 0x10, &(0x7f0000000580)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x73cea2d47785b264, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r2, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000280)='sched_switch\x00', r3}, 0x18)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
openat$binder_debug(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000200)='./bus\x00', &(0x7f0000000b80), 0x200008, &(0x7f0000000300)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './cgroup'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@xino_on}]})
syz_mount_image$fuse(&(0x7f0000000540), &(0x7f0000000000)='./bus\x00', 0x322020, &(0x7f0000000580)=ANY=[], 0x3, 0x0, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cgroup.kill\x00', 0x275a, 0x0)
fstat(r4, 0x0)
pipe2$9p(0x0, 0x0)

1.755522785s ago: executing program 3 (id=610):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0xe, &(0x7f00000016c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000b80)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffedf, 0x10, &(0x7f0000000040)}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r3, 0x0, 0x4a, 0x109, &(0x7f0000000140)="cb74445b7d4c0b24676c6c71ae37efcedaf40242309766deb4e793f90000000000000000dbc856cbc664650634231454ca2d8034c4ca29e0d99c3b6615e91835a600c08f989af45438a5", &(0x7f0000000cc0)=""/265, 0xcb95, 0x0, 0x103, 0x194, &(0x7f0000000980)="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", &(0x7f00000007c0)="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", 0x2, 0x0, 0x3ff}, 0x50)

815.704535ms ago: executing program 2 (id=611):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x5e, &(0x7f0000000240)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x1}}, {@resuid={'resuid', 0x3d, 0xee01}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6c}}, {@lazytime}, {@errors_remount}, {@nodiscard}]}, 0x3, 0x44a, &(0x7f00000006c0)="$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")
timer_create(0x2, &(0x7f0000533fa0)={0x0, 0x21, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000040))
connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0x1003, @private0={0xfc, 0x0, '\x00', 0x1}, 0xfffffffe}, 0x1c)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
ioctl$KVM_SET_SREGS2(r2, 0x4140aecd, &(0x7f0000000140)={{0x4000, 0xffff1000, 0xf000, 0x9, 0x7f, 0xe7, 0x81, 0xff, 0x0, 0xb, 0x0, 0xb}, {0xd000, 0x2, 0xf, 0x3, 0x5, 0x7, 0x46, 0x6, 0x1, 0x4, 0xfa, 0xf8}, {0xf000, 0x8000000, 0xb, 0x6, 0x10, 0x7d, 0x4, 0x13, 0x5, 0x4, 0x92, 0x80}, {0x10000, 0xeeef0000, 0xc, 0x7, 0x3f, 0x7, 0x2, 0x0, 0x3, 0x29, 0xd, 0x9}, {0xeeee8000, 0xdddd0000, 0xf, 0x9, 0x5, 0x2, 0xa, 0xf1, 0x2, 0x6e, 0x0, 0x8}, {0x0, 0x3000, 0xe, 0x2, 0x7, 0x2, 0x5, 0x5, 0x1, 0xd, 0x6, 0xa}, {0x10000, 0xdddd0000, 0x9b9e07098192d94c, 0x0, 0x1b, 0x6, 0x6, 0x26, 0x8, 0x6, 0xff, 0x6}, {0x1, 0x2000, 0xd, 0xe, 0x13, 0x3e, 0x3, 0x0, 0x7f, 0x1, 0x0, 0x8}, {0x100000, 0x5}, {0x80a0000, 0xff81}, 0x80000003, 0x0, 0x6000, 0x2071, 0x1, 0xa800, 0x8000900, 0x1, [0x6, 0x2, 0x1, 0x1]})

731.559999ms ago: executing program 4 (id=612):
r0 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'lo\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=@ipv6_newaddr={0x40, 0x14, 0x9535393fea6295b5, 0x70bd2a, 0x25dfdbff, {0xa, 0x17, 0x0, 0xff, r1}, [@IFA_ADDRESS={0x14, 0x1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, @IFA_CACHEINFO={0x14, 0x6, {0x7fff, 0x94a, 0x8001, 0x6}}]}, 0x40}, 0x1, 0x0, 0x0, 0x2004c041}, 0x0)

360.831894ms ago: executing program 1 (id=613):
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000640)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="0037021bedbb64438700015590344280068dd3e19506e447de11c73c7e87e80bc9f6db88f4c7c476620624acc57cf1006c56351aa685d3d4a30fff5b7297caefde7ae479", @ANYRES32, @ANYRES32], 0x18, 0x50}}], 0x1, 0x404c040)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x101100, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x4)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000016000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x4e, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000180)={0x0, 0xd000})
syz_emit_ethernet(0x3e, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa0f7f"], 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000600)=[{{0x0, 0x0, 0x0}}], 0x43, 0x4000)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

360.485064ms ago: executing program 4 (id=614):
r0 = gettid()
timer_create(0x1, &(0x7f0000533fa0)={0x0, 0x11, 0x4, @tid=r0}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(&(0x7f0000000bc0)='ext4\x00', &(0x7f0000000240)='./file1\x00', 0x4000, &(0x7f00000000c0), 0x2, 0xbb8, &(0x7f00000017c0)="$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")
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000680))
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000cc0)={'syz1\x00', {0xfff9, 0x2, 0x240, 0x9b99}, 0x37, [0xfffffffc, 0x8, 0x5, 0x9, 0x8, 0x155f, 0x6, 0x5, 0x25cd, 0x1, 0xa4, 0xa, 0xa2b9, 0x6, 0x7, 0xe4, 0x6, 0xfc000000, 0x3, 0xbbf, 0x4a732f64, 0x8, 0x9, 0xd, 0x4, 0x12a3, 0x6, 0x1, 0x2, 0x4, 0x7, 0x81, 0x8a, 0x79, 0x2, 0x4, 0x0, 0x91, 0x4, 0x4, 0x7, 0x2, 0x5, 0x401, 0x7ff7, 0x5, 0xa7, 0x81, 0x9, 0xf9a2, 0x80000001, 0xff, 0x0, 0x2, 0x2, 0x2, 0x1, 0x1, 0x7ff, 0x4, 0x4007f, 0xffffffff, 0x6, 0x6], [0x9, 0x3, 0x6, 0x9, 0x4, 0xc66, 0xa8a9, 0x20000073, 0x8e, 0xd50, 0x7, 0x5, 0x2, 0x809, 0x4, 0xa, 0x1000, 0x0, 0x200b398, 0x400000, 0x0, 0x2, 0x1c, 0x7, 0x1, 0x2, 0x3, 0x8, 0xffffff7d, 0x400, 0x6, 0x4c2336d3, 0x4, 0x0, 0xfffffff8, 0x401, 0x46, 0xf1, 0x4, 0xab00040, 0x5, 0x6, 0x2, 0x5, 0x3ff, 0x1ff, 0x1, 0x7fff, 0x4, 0x1cb, 0x1, 0x4, 0x6, 0x438, 0x2, 0x9, 0x95, 0x7fffffff, 0x4, 0xfffffff9, 0x1, 0x1000, 0xfffff801, 0x5], [0x2, 0x1, 0xffff, 0x3, 0x2, 0x2e6bf783, 0x80000001, 0x5, 0x5, 0x491, 0x8d3, 0x200006, 0x8, 0x4400, 0x2, 0x400, 0x41, 0x6, 0xee4b, 0x7, 0x5, 0x8000003, 0x5, 0x9, 0x0, 0x3, 0x9, 0x3, 0xc7, 0xfff, 0x10000a, 0x8000, 0x400, 0x3e55, 0xff, 0xd3, 0x8, 0x3437, 0x3, 0x9, 0xfd, 0x601, 0x101, 0xdd80, 0x60a2, 0x7f, 0x9d26, 0x10000, 0x8, 0x2, 0x2, 0x6, 0x8000, 0xf45, 0x3, 0xd500, 0x8, 0x77, 0x9, 0x4, 0x10000, 0x1, 0x8, 0x1], [0xa772, 0x1, 0x5, 0x1afa, 0xbfc, 0x8, 0x7c81, 0x7f, 0x55, 0x40, 0xff, 0x5, 0x7fffffff, 0x7, 0xe, 0x9, 0x81, 0x3, 0x9d86, 0xd, 0xfffffff7, 0x8, 0x40f1, 0x2, 0x3, 0x6, 0x80008001, 0x7777, 0x1, 0x2, 0x100, 0xd8ce, 0x7fffffff, 0x9, 0xc, 0x32d, 0x3, 0x1ff, 0x2000003, 0xffffffff, 0x10000, 0x0, 0x8004, 0x7fff, 0x3, 0x6, 0xf, 0xe, 0x5337, 0x26d, 0x6, 0xfffffff9, 0x4, 0xfffffff9, 0x9, 0x4, 0x463f, 0x4, 0xdab, 0x3, 0x8, 0x14000, 0x1, 0x9]}, 0x45c)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000000)={[0x35, 0xfff, 0x0, 0x180, 0x2, 0x14, 0xf0, 0xd, 0x7fffffffffffe, 0x7, 0x5, 0x100000000000003, 0xfffffffffffffffe, 0x45, 0x4, 0xbdb], 0x10000, 0x304})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x8001)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000880)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05000000000400000000010000000900010073797a30000000002c000000030a01020000000000000000010000000900010073797a30000000000900030073797a310000000030000000060a010400000000000000000100000008000b4000000000040004800900010073797a3000000000040007401400000011"], 0xa4}}, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
r5 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r6 = dup(r5)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f00000000c0)="c20000361e0f01c3660fd2eff30f10f1b961020000b80e000000ba000000000f30b98d0200000f320b99f3530000660f6af7c4e2f91d20", 0x37}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r7, 0xae80, 0x0)

287.770808ms ago: executing program 0 (id=615):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0xa442, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0)={[0x8abb, 0x857, 0x80020007, 0x804, 0x3, 0x1, 0x120000, 0x5, 0x0, 0x8, 0xa6, 0x2, 0x0, 0x102, 0x3, 0xffffffffffffffff], 0x8000000, 0x149602})
memfd_create(&(0x7f0000000000)='Y\xff\xff\x00\x00\x00\x00\x00K\xb2\x02\x80B\xe9\xe8\xcc\xde\x06\x00l\xa8\x1aJ\xaf\xb2M\xba\xb8_\x05U\xcd<|>\x9e\xec^\x0e\xbe\x18+-\x9b\x893\x02\x00\xa6\x1f+\xb3\xc5\x90z5\xe0\xdfi\xb7\x9f\xb4QW\xc9\xc9\x92\x03\t\x00\x00\x00\x00\x00\xb2\x0f\xee\xbe\f8\xcc\x7f\x00\x00\x00Z\x81\x00\x00\x00\x00\x18I\x13\xf1\xa2x\x04\x81R\xd45R\xae\x05\x00\x00\x00\x00\x00\x00\x00_M^dQ:\xbc\xafq\x88\x19nSF|;]\xe1A\x8c\x8a\x98\xd7|\xdcLF\r\xb1\xfd\xbf!\xc7u\xccP\xdd\x13~\x89\xcf\x85\xca\xa0%\xc6\xc7\x11\x00\x00\x00\x00\x00\x00\x00?M9\\\av~\'\xd9\xb0\xacdya]8\x9d\xb7\v\xf39\xc5{\x9c!\x0f/\xb8o8\xb9\x8d\x19\xe2\xca\x01y\x83\xe7\ng\x87\xd93<u\xbe\xeag\xd2\x04e\xf2s\xde}o#\x90\xda\x9cs,r\xfd:\xcb\xc7\vTmPZJ\xac\x8b\xd0\xc0\xbcRK\xcb\x1e8\xce\xbd[N\xb0\xb4<\xeb\x86[\xec\x8f\x14\n\x83\x9e&\\\xb7!\xed\xa0\xc3,\x90m\x0f\x00\x00\x00\x00\x00\x00\xff\xd0\xb3\x94\x00\x00\x00\x00\x00\x00\x00\x9dH\xf8\xffRo\xa3W\xe1\xed\x8eS\xaeX\x93\x7f\xd3\xb9\x84Q\x9c\"\xd9\xf5\xe4e\xf9\xcam\xe3\x03\xe4\xad\xd5&A\x02\xc8\xa9\xfe\xcb\x87\xd9\xd3\x8c\f\xc08T~\xc4\xbd\x90?\x1f\x9c\x9b0\x19 \x9f\xd1p`\xc0/\x00u\x19\x1d\xac\xe8%\xb7\t\x9f4\xbb\x89\xe9\xc1\x81\xb0\xd6\xf7\x90\x1f\x94\x01M.\x16\x05\x16\xb9\xe9\xdc~\xd3-s\xe6;\x94\x1c^\x06\xdav;\xccD\x95sj\xe0\xd5\xbeS\xac\xe5N\xea\x9eyl[[\xce5\xee\x05\x9c\x96\xabJ^c\xf7\x19\xb4\xd8\xe4\x87\x9dp\xea?/\xcb\x9a\xaa5\'Q\fuG\x81\x8a@\x97M=v\xfe\a\xabp\xf3\x93\x9d\x7f@9\xc0\xd2\xf1\x00\x10\x00\x00\x00\x00\x00\x00\x82\x13\xb2\xa9\xef\xa5\xf8\x8bk\xb3\x9ev\x92\x0e\xd1\x1f\x17Dx[\xad\xb0\x9d/\x96\xe42mO\x9fh\xea\xf3\x14\xcd\x96\x89_)\x1b\xe2\xd6\b\x94b\xaf;\x92T\xafz\x94\x9fG\xfb\xfd|$k\x03\xd7;\x9ay\xee\xf9W?\xb3\xf9\xf8I.E4\xc3eWq\xfa\":$\xd0\x17Q\x94\xf5\xe5mk\x8e&\xf1;#z\xef*\xce\x99\x04\xb9\x90\xbc\xc9#-\x8di\xae\xc5\xdf\x13\xd2K\x8b\xf5\f\xb2x\xdd\xd5\xb4\xa9^~O<\x12\xe3\xc3P|7\xc4\xc8\xb1r0Z\x98\x87^\xc8C\x1b\x96\xb4lsyF\xc5\xbc\xffOE\xe9\xd70\xe7\xfep\x83\xa7\xa1\xd9\xe4\xba\x92\x17\xbf\xe0\xe1\x01\xb7\x8b\x18j\x19n\xc8\xff\xe9\xf4\xf4\xcf a\xd7_w\x0f\x9dF\xae\xccA-/\x83\xabU\xd5\xbf8\xa4O\xb4\xef\xc8\xccH\xd1=\xbe\xbex\xb5-\x05\x01\x11\xfa\xcf\x1dm\xb5X\xe9\xb5O\x15\xc7;Lb\xce\x1a\xcc\x98\xe8\xe9e\xe0\xc2N\xe7\xd7\x1d\x92\x87F8\x9e\xf7\xdd\xdaW\xf5X\x80\xa0f\xceo\xd8\x7f\xc0\x96\bSB\xce&\x04$\xc3\xe31U\x84\x82\xf0{i\x1d\x02\x10\xc6C\x01^\xcf\x93?w\x01\x84\xa0\xd6\xa2\x10\xa4\xfcG\xabD\xd6dGZ\xb2Cx\x1b\xfdD9\x17\xe6\xcauM\xe3\x05)\xe2\x03\xe2j$F1n@\xde\n9t.[\xad\xb5\f<o\xdb\xa4\x90\xc4\xd0I\xa6\x96\xa1\x00\xbb\xdd\x94\x00t/1YekG\x7f\xbdrI\x1e\x8a4=\xa2\xe9\x82<\x9e|\xf5\xa4\x05#\x7f\xa8\x01\x00\x82ih\xf9?\x03Q\xf5\xc4\x95\x99 \xa7v~:$\x02O\xe3\xaa\x1f\x00\xebh\'\xd2q\x10\x1e\x94n\xd7w\xb1\xc8G\x89\xf4\x8ct\xf9R\x85\x1b8OE\x04\x9a\xd8\x80\x10x\xbf\n0\b,r\xc6r\xf7=\xfe\xc1\x16\xe6\xee\xbb:-h\xba\x8b\x14\x9a?\x8e\x03;\xe5\x04\xd8\xa9\x9a\x7f|\xadU\xafe\x87V.i4$6U,R\x9b\n{\'\xfe1\xc4\xb09\x96{\xc0e\xa1\xe7\xa9\xb4\x1a\n\xf5\xd7zuvz\x972\xd4\xfb\x13u2\xab\x18\x01~r\xbbcW!)\xf4\x9b\x1dI\x9ex;\xb2\xe3I\xbd\x16T\xb75\xa6\a\xb7\xa1\x8d\xc9\x12\xb1\xbd\xbc\xd9c\xe9\xe6k\xee\x06\x83\xf4\xab\x18\x038\x8f\xc9^\x0f\xab\xea&P\b\xef#\xf6\xc3\xfc\xd4\xa0\xfd\x15N\xd3\xa0\x80\x9f\bU\xa63\xf6\xc9\xecZ`\xa4\xa0(\xf9\x98B\xaf\xde*\x91\xddk\xa1`d\xf0\x97\xc9e\xc1\"EC\x9a?x\x89\x8d\xb3\xfaF}\x82D\xf8\f\xf1`\x90D\xd1|%(\xd8\t\xea\x00C\xce\x7fo+?v\xee\xc6bL\x1d\xbe\x84p\x8d\xa3\xec\xf7\xe0\xfe\x8c=<\xf2\x1f@\xe66E\xa7\x9c\xd3\xb6\xf5\xe0\x14\xb8\xd4`\x85\xe3;|\xf8\xf2\xd9)\x0e\xd0\xff\xa5K\xf3\xf1\xc4\x18\xf4Z\xdci\x91\x84\xe8\xb7\x10\x90\xbc\xect\x14\xdfR\xe2\x80\xf8a\x92\xb2R\xdf0\xcaQ\xdf\x87\xbdjp\x1ch3h\xcf<\x82\x97\xa5s/m\xb2\x1dd\xf7\xfc\xf5\xa9\x1d\xd34{\xcc\x1f\t,i\x16\x82\xad\x8e\xb6\x17\x0f\xaa\x85^/w\xbb~\xff\xce\x92\x90\x83\n\xe5\x14\x95\x92|\xfe-S%\x91i\xafh\x97z\x00@K\xbb\xc2\fcD\xff\xdcl\xa1\xfaR\xbc\xd0k\\\x92\x19a6Sv\x05%{\xe2\xe9\xf1\xddRB$8\xb0q9\xa1g&\x17\xe5P\xef\xb1<\xb6\xe2\xb2\xc06^\x0f4\xba\x10\xba\x00\x00\x00\x00\x00\x00\x00\x00\xef\xba\"\xb7\xc7~T\xc4Ei\xfdk\xa9\"F\xa9C\xa0\xd3\xa0\x1b\xbf\x13\xfb\x14S<\xa6\n5\x86\x9e\xb2=8\'g`\x8f\xa8\x027\xbd\xb5s\xe9dti\xc0\xbd\\H\xe5v\xdd\x0fP\x8b+-\x02i\x8eZU\xa8YB\xfc\xc2R7\xe9\x11\x06\x1aRd\xa93\xa1\\\xf4_s\xf7\xe8+\xbdg\x13\xaea\x04\xd8\x82\xf6\x90\xaf1\x86b\x81J\xb7E\xb0\xe2\xd6\x93S\xb3\x98\xcb\xf9\xde=\xd6T\x8d\xea\xab\xa9Z!\xd3-\xa6_\xc4\xa4\xb6+\x89\xdc]O<g\x06~\x12W\x86\x06\xba\x15#\xa7Q\xffa\x926>\xf0y\xd6\xb0\xf2\x9f\xa7\xcf\xad\x86\\\xec\xec\xd6\x9d\bT\xcd\xa2\xea', 0x8)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000140)=@arm64={0x6, 0xd1, 0x0, '\x00', 0x1})
ioctl$KVM_SET_MP_STATE(r2, 0x4004ae99, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

0s ago: executing program 1 (id=616):
r0 = dup(0xffffffffffffffff)
write$UHID_INPUT(r0, 0x0, 0x0)
sendmsg$MPTCP_PM_CMD_GET_LIMITS(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x41}, 0x809d)
socket$igmp(0x2, 0x3, 0x2)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r3, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r3, 0x0)
symlink(0x0, &(0x7f0000000000)='./file0\x00')
preadv(r3, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f326635004000000f300f20e06635800000000f22e0f30fa6c8", 0x50}], 0x1, 0x0, 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

kernel console output (not intermixed with test programs):

517][ T4639] erofs: (device loop0): mounted with root inode @ nid 36.
[  110.018230][ T4644] loop4: detected capacity change from 0 to 256
[  110.062185][ T4644] exfat: Deprecated parameter 'utf8'
[  110.128759][ T4644] exfat: Deprecated parameter 'namecase'
[  110.149802][ T4647] netlink: 'syz.3.69': attribute type 4 has an invalid length.
[  110.149939][ T4644] exfat: Deprecated parameter 'utf8'
[  111.065801][ T4644] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d)
[  111.082140][ T4648] bridge0: port 3(gretap0) entered blocking state
[  111.089073][ T4648] bridge0: port 3(gretap0) entered disabled state
[  111.099239][ T4648] device gretap0 entered promiscuous mode
[  111.106328][ T4648] bridge0: port 3(gretap0) entered blocking state
[  111.113136][ T4648] bridge0: port 3(gretap0) entered forwarding state
[  111.411079][ T4654] loop2: detected capacity change from 0 to 512
[  111.448173][ T4654] EXT4-fs: Ignoring removed bh option
[  111.473540][ T4312] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  111.521887][ T4312] hid-generic 0000:0000:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  111.532007][ T4654] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  111.534971][ T4658] loop3: detected capacity change from 0 to 2048
[  111.544799][ T4657] loop0: detected capacity change from 0 to 1024
[  111.561284][ T4654] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[  111.636164][ T4654] EXT4-fs (loop2): warning: mounting unchecked fs, running e2fsck is recommended
[  111.671923][ T4654] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e018, mo2=0006]
[  111.700800][ T4658] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  111.739985][ T4654] System zones: 0-2, 18-18, 34-35
[  111.929786][ T4654] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  111.952504][ T4661] fido_id[4661]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  112.558105][ T4670] loop1: detected capacity change from 0 to 256
[  112.639682][ T4398] hfsplus: b-tree write err: -5, ino 4
[  112.674079][   T26] kauditd_printk_skb: 20 callbacks suppressed
[  112.674096][   T26] audit: type=1800 audit(1764274155.438:97): pid=4654 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.71" name="file1" dev="overlay" ino=15 res=0 errno=0
[  112.705738][ T4670] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe3865569, utbl_chksum : 0xe619d30d)
[  112.754828][ T4644] syz.4.68: attempt to access beyond end of device
[  112.754828][ T4644] loop4: rw=0, sector=34359738488, nr_sectors = 8 limit=256
[  112.758452][   T26] audit: type=1800 audit(1764274155.498:98): pid=4672 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.68" name="file1" dev="loop4" ino=1048605 res=0 errno=0
[  113.003827][ T4319] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  113.027678][ T4269] EXT4-fs (loop2): unmounting filesystem.
[  113.038718][ T4678] loop3: detected capacity change from 0 to 128
[  113.302413][   T26] audit: type=1800 audit(1764274156.068:99): pid=4678 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.77" name="bus" dev="loop3" ino=1048607 res=0 errno=0
[  113.303409][ T4319] usb 1-1: Using ep0 maxpacket: 16
[  113.428715][ T4319] usb 1-1: config 0 interface 0 has no altsetting 0
[  113.444300][ T4319] usb 1-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  113.464184][ T4319] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  113.475441][ T4319] usb 1-1: config 0 descriptor??
[  114.435023][ T4674] loop0: detected capacity change from 0 to 16
[  114.549198][ T4674] erofs: (device loop0): mounted with root inode @ nid 36.
[  114.846615][ T4674] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  114.863764][ T4674] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  114.875748][ T4319] hid (null): unknown global tag 0xe
[  115.102161][ T4703] loop3: detected capacity change from 0 to 512
[  115.111821][ T4336] usb 1-1: USB disconnect, device number 4
[  115.143714][ T4703] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  115.196485][ T4703] EXT4-fs (loop3): 1 orphan inode deleted
[  115.210600][ T4703] EXT4-fs (loop3): 1 truncate cleaned up
[  115.226210][ T4703] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  115.371396][ T4703] EXT4-fs (loop3): shut down requested (1)
[  115.401140][ T4703] EXT4-fs warning (device loop3): ext4_empty_dir:3147: inode #2: comm syz.3.86: directory missing '.'
[  115.629593][ T4274] EXT4-fs (loop3): unmounting filesystem.
[  118.767514][ T4755] loop4: detected capacity change from 0 to 128
[  119.145044][ T4755] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  119.156303][ T4755] ext4 filesystem being mounted at /27/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  119.807484][ T4762] Zero length message leads to an empty skb
[  119.818930][ T4768] loop3: detected capacity change from 0 to 128
[  120.172199][   T26] audit: type=1800 audit(1764274162.848:100): pid=4768 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.107" name="bus" dev="loop3" ino=1048608 res=0 errno=0
[  120.856166][ T4275] EXT4-fs (loop4): unmounting filesystem.
[  121.047378][ T4785] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  121.105829][ T4785] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  121.107568][ T4788] loop4: detected capacity change from 0 to 1024
[  121.181013][ T4775] kvm [4774]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0x800
[  121.226483][ T4791] loop0: detected capacity change from 0 to 1024
[  121.235206][ T4788] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  121.268704][ T4775] kvm [4774]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x11e) = 0x800
[  121.282589][ T4791] Bluetooth: MGMT ver 1.22
[  121.296004][ T4788] ext4 filesystem being mounted at /28/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  121.309601][ T4775] kvm [4774]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x186) = 0x800
[  121.330547][ T4791] hfsplus: invalid catalog entry type in lookup
[  121.362658][ T4788] EXT4-fs error (device loop4): ext4_lookup:1858: inode #15: comm syz.4.113: inode has both inline data and extents flags
[  121.517546][ T4430] hfsplus: b-tree write err: -5, ino 4
[  121.576073][ T4275] EXT4-fs (loop4): unmounting filesystem.
[  121.672245][ T4800] loop0: detected capacity change from 0 to 1024
[  121.714324][ T4800] EXT4-fs: inline encryption not supported
[  121.739444][ T4800] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  122.023208][ T4800] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  124.500482][ T4827] loop2: detected capacity change from 0 to 128
[  127.605221][ T4827] EXT4-fs: error -4 creating inode table initialization thread
[  127.614313][ T4827] EXT4-fs (loop2): mount failed
[  128.196235][ T4264] EXT4-fs (loop0): unmounting filesystem.
[  128.393976][ T4828] loop4: detected capacity change from 0 to 8192
[  128.488438][ T4840] loop0: detected capacity change from 0 to 1024
[  128.513197][ T4840] EXT4-fs: Ignoring removed mblk_io_submit option
[  128.535961][ T4840] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  128.724858][ T4847] loop2: detected capacity change from 0 to 512
[  128.727199][ T4840] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  128.871249][ T4847] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  129.570028][ T4847] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2196: inode #15: comm syz.2.131: corrupted in-inode xattr
[  129.993711][ T4851] usb 1-1: new low-speed USB device number 5 using dummy_hcd
[  130.239667][ T4851] usb 1-1: config 0 has an invalid interface number: 63 but max is 0
[  130.261150][ T4847] EXT4-fs (loop2): Remounting filesystem read-only
[  130.328014][ T4847] EXT4-fs (loop2): 1 truncate cleaned up
[  130.334129][ T4847] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  130.360805][ T4851] usb 1-1: config 0 has no interface number 0
[  130.394579][ T4851] usb 1-1: config 0 interface 63 has no altsetting 0
[  130.411775][ T4851] usb 1-1: New USB device found, idVendor=1039, idProduct=2110, bcdDevice=4f.b1
[  130.458567][ T4851] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  130.486122][ T4851] usb 1-1: config 0 descriptor??
[  130.582828][ T4858] loop3: detected capacity change from 0 to 164
[  130.957386][ T4269] EXT4-fs (loop2): unmounting filesystem.
[  131.885522][ T4851] usb 1-1: string descriptor 0 read error: -71
[  131.908773][ T4851] usb 1-1: [ueagle-atm] ADSL device founded vid (0X1039) pid (0X2110) Rev (0X4FB1): Eagle I
[  132.216779][ T4264] EXT4-fs (loop0): unmounting filesystem.
[  132.600806][ T4874] loop4: detected capacity change from 0 to 512
[  132.722555][ T4874] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  132.817652][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  132.824087][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  132.927045][ T4874] EXT4-fs (loop4): 1 truncate cleaned up
[  132.992062][ T4874] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  133.088376][ T4851] ueagle-atm 1-1:0.63: usbatm_usb_probe: bind failed: -19!
[  133.154232][ T4851] usb 1-1: Found UVC 0.00 device <unnamed> (1039:2110)
[  133.211533][ T4851] usb 1-1: No valid video chain found.
[  133.281499][ T4851] usb 1-1: USB disconnect, device number 5
[  134.349192][ T4888] loop2: detected capacity change from 0 to 128
[  134.379711][ T4887] loop1: detected capacity change from 0 to 1024
[  134.660368][   T26] audit: type=1800 audit(1764274177.428:101): pid=4888 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.141" name="bus" dev="loop2" ino=1048610 res=0 errno=0
[  135.401252][ T4901] loop2: detected capacity change from 0 to 16
[  135.467800][ T4901] erofs: (device loop2): mounted with root inode @ nid 36.
[  135.505961][ T4283] erofs: (device loop2): z_erofs_lz4_decompress_mem: failed to decompress -41 in[4096, 0] out[9000]
[  135.522939][ T4901] erofs: (device loop2): z_erofs_lz4_decompress_mem: failed to decompress -41 in[4096, 0] out[8192]
[  135.605410][   T26] audit: type=1800 audit(1764274178.378:102): pid=4901 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.145" name="file2" dev="loop2" ino=89 res=0 errno=0
[  135.635303][ T4275] EXT4-fs (loop4): unmounting filesystem.
[  135.885846][ T4904] loop4: detected capacity change from 0 to 1024
[  135.920716][ T4908] loop2: detected capacity change from 0 to 512
[  135.996785][ T4908] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  136.108441][ T4908] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  136.108550][ T4908] ext4 filesystem being mounted at /33/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  136.251855][ T4913] loop4: detected capacity change from 0 to 512
[  136.252703][ T4913] ext4: Unknown parameter 'context'
[  136.272086][ T4269] EXT4-fs (loop2): unmounting filesystem.
[  137.240242][ T4933] loop3: detected capacity change from 0 to 1024
[  137.286604][ T4933] EXT4-fs: Ignoring removed nomblk_io_submit option
[  137.379795][ T4937] loop2: detected capacity change from 0 to 1024
[  137.421790][ T4933] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  137.540622][ T4935] loop1: detected capacity change from 0 to 1024
[  137.603893][ T4933] EXT4-fs: Remounting fs w/o journal so ignoring data_err option
[  137.663962][ T4933] EXT4-fs (loop3): re-mounted. Quota mode: none.
[  137.756554][ T4941] EXT4-fs (loop3): re-mounted. Quota mode: none.
[  137.767416][ T4466] hfsplus: b-tree write err: -5, ino 4
[  137.957296][ T4274] EXT4-fs (loop3): unmounting filesystem.
[  137.968921][ T4944] loop2: detected capacity change from 0 to 16
[  138.008246][ T4944] erofs: (device loop2): mounted with root inode @ nid 36.
[  138.246805][ T4949] loop3: detected capacity change from 0 to 128
[  138.272194][ T4411] hfsplus: b-tree write err: -5, ino 4
[  138.308453][ T4949] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256
[  138.463822][ T4951] loop0: detected capacity change from 0 to 128
[  138.509757][ T4954] UDF-fs: error (device loop3): udf_bitmap_new_block: bitmap for partition 0 corrupted (block 264 marked as free, partition length is 40)
[  138.591668][ T4958] UDF-fs: error (device loop3): udf_bitmap_new_block: bitmap for partition 0 corrupted (block 264 marked as free, partition length is 40)
[  138.736443][ T4954] UDF-fs: error (device loop3): udf_bitmap_new_block: bitmap for partition 0 corrupted (block 264 marked as free, partition length is 40)
[  140.371082][ T4969] loop4: detected capacity change from 0 to 2048
[  140.628032][ T4969] UDF-fs: error (device loop4): udf_process_sequence: Primary Volume Descriptor not found!
[  140.953099][ T4969] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  141.489891][ T4977] loop4: detected capacity change from 0 to 16
[  141.520904][ T4977] erofs: (device loop4): mounted with root inode @ nid 36.
[  141.953319][    T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!!
[  141.962155][    T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!!
[  141.983321][    T0] NOHZ tick-stop error: local softirq work is pending, handler #82!!!
[  142.004659][    T0] NOHZ tick-stop error: local softirq work is pending, handler #82!!!
[  142.021176][    T0] NOHZ tick-stop error: local softirq work is pending, handler #82!!!
[  142.029983][    T0] NOHZ tick-stop error: local softirq work is pending, handler #182!!!
[  142.049174][    T0] NOHZ tick-stop error: local softirq work is pending, handler #182!!!
[  142.061171][    T0] NOHZ tick-stop error: local softirq work is pending, handler #182!!!
[  142.072029][    T0] NOHZ tick-stop error: local softirq work is pending, handler #182!!!
[  142.088236][    T0] NOHZ tick-stop error: local softirq work is pending, handler #182!!!
[  143.683425][ T4998] loop2: detected capacity change from 0 to 164
[  143.854254][ T4312] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  144.103504][ T4312] usb 2-1: Using ep0 maxpacket: 16
[  144.420470][ T4312] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  144.486958][ T4312] usb 2-1: config 0 has no interfaces?
[  144.499395][ T4312] usb 2-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  144.748966][ T4312] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  144.766800][ T4386] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  144.815906][ T4312] usb 2-1: config 0 descriptor??
[  144.843794][ T4312] usb 2-1: can't set config #0, error -71
[  144.880656][ T5005] loop3: detected capacity change from 0 to 512
[  144.887846][ T4312] usb 2-1: USB disconnect, device number 2
[  145.020689][ T5005] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  145.043613][ T5005] ext4 filesystem being mounted at /37/file5 supports timestamps until 2038-01-19 (0x7fffffff)
[  146.129715][ T5011] loop0: detected capacity change from 0 to 2048
[  146.250104][ T5011] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=3932051, location=3932051
[  146.358349][ T5021] usb usb7: usbfs: process 5021 (syz.3.180) did not claim interface 0 before use
[  146.423337][ T5011] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  146.757281][ T5027] loop4: detected capacity change from 0 to 512
[  146.764744][ T5027] EXT4-fs: Ignoring removed orlov option
[  146.770679][ T5027] EXT4-fs: Ignoring removed i_version option
[  146.827094][ T5027] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: comm syz.4.185: inode #1: comm syz.4.185: iget: illegal inode #
[  146.842208][ T5027] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.185: error while reading EA inode 1 err=-117
[  146.858855][ T5027] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: comm syz.4.185: inode #1: comm syz.4.185: iget: illegal inode #
[  146.873333][ T5027] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.185: error while reading EA inode 1 err=-117
[  146.887518][ T5027] EXT4-fs (loop4): 1 orphan inode deleted
[  146.894171][ T5027] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  146.901286][ T4274] EXT4-fs (loop3): unmounting filesystem.
[  146.993837][ T5032] overlayfs: missing 'lowerdir'
[  147.960050][ T4275] EXT4-fs (loop4): unmounting filesystem.
[  148.341642][ T5047] loop1: detected capacity change from 0 to 256
[  148.378405][ T5047] exfat: Bad value for 'uid'
[  148.386833][ T5053] loop4: detected capacity change from 0 to 512
[  148.767750][ T5053] EXT4-fs (loop4): Test dummy encryption mode enabled
[  148.919577][ T5053] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  149.294510][ T5053] EXT4-fs (loop4): 1 truncate cleaned up
[  149.349648][ T5053] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  149.422377][ T5053] EXT4-fs (loop4): re-mounted. Quota mode: writeback.
[  149.532331][ T4275] EXT4-fs (loop4): unmounting filesystem.
[  150.680571][ T5082] overlayfs: missing 'lowerdir'
[  151.550492][ T5085] loop0: detected capacity change from 0 to 1024
[  151.696844][ T5089] loop3: detected capacity change from 0 to 512
[  151.701984][ T5081] loop2: detected capacity change from 0 to 8192
[  151.720121][ T5089] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  151.803573][ T5089] EXT4-fs (loop3): 1 truncate cleaned up
[  151.812217][ T5089] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  152.080127][ T5101] loop4: detected capacity change from 0 to 512
[  152.107896][ T5101] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  152.232594][ T5101] EXT4-fs (loop4): 1 truncate cleaned up
[  152.252432][ T5101] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  152.261485][ T4355] usb 2-1: new full-speed USB device number 3 using dummy_hcd
[  152.312884][ T4274] EXT4-fs (loop3): unmounting filesystem.
[  152.446371][ T5109] loop2: detected capacity change from 0 to 1024
[  152.473155][ T4355] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64
[  152.523049][ T4355] usb 2-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00
[  152.556550][ T5111] loop3: detected capacity change from 0 to 2048
[  152.584482][ T4355] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  153.085577][ T5111] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  153.349787][ T5111] ext4 filesystem being mounted at /43/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  153.475838][ T5120] hfsplus: invalid extended attribute record
[  153.574534][ T4275] EXT4-fs (loop4): unmounting filesystem.
[  153.687002][ T4355] usb 2-1: config 0 descriptor??
[  153.694685][ T5099] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  153.698303][ T5014] hfsplus: b-tree write err: -5, ino 4
[  153.869073][ T4274] EXT4-fs (loop3): unmounting filesystem.
[  153.935280][ T5128] overlayfs: missing 'lowerdir'
[  154.629771][ T4355] elan 0003:04F3:0755.0004: hidraw0: USB HID v1.01 Device [HID 04f3:0755] on usb-dummy_hcd.1-1/input0
[  154.776726][ T4355] usb 2-1: USB disconnect, device number 3
[  154.890404][ T5139] loop2: detected capacity change from 0 to 16
[  154.982234][ T5139] erofs: (device loop2): mounted with root inode @ nid 36.
[  155.806265][ T5140] fido_id[5140]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory
[  156.703708][ T4355] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  156.929707][ T4355] usb 2-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  156.995158][ T5159] loop2: detected capacity change from 0 to 256
[  157.037167][ T4355] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  157.091858][ T5161] loop3: detected capacity change from 0 to 512
[  157.114168][ T4355] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  157.157566][ T4355] usb 2-1: SerialNumber: syz
[  157.215570][ T5161] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  157.239261][ T5161] ext4 filesystem being mounted at /46/file0/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  157.285247][ T5167] loop0: detected capacity change from 0 to 256
[  157.356474][ T5161] EXT4-fs error (device loop3): ext4_do_update_inode:5268: inode #2: comm syz.3.225: corrupted inode contents
[  157.374341][ T5167] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  157.423381][ T5167] exFAT-fs (loop0): Medium has reported failures. Some data may be lost.
[  157.436538][ T5161] EXT4-fs error (device loop3): ext4_dirty_inode:6133: inode #2: comm syz.3.225: mark_inode_dirty error
[  157.471026][ T5167] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  157.491633][ T5161] EXT4-fs error (device loop3): ext4_do_update_inode:5268: inode #2: comm syz.3.225: corrupted inode contents
[  157.536322][ T5161] EXT4-fs error (device loop3): __ext4_ext_dirty:202: inode #2: comm syz.3.225: mark_inode_dirty error
[  157.680920][ T5177] overlayfs: missing 'lowerdir'
[  158.197399][ T5179] loop2: detected capacity change from 0 to 512
[  158.444696][ T5179] EXT4-fs: Ignoring removed i_version option
[  158.451825][ T5155] loop1: detected capacity change from 0 to 512
[  158.486471][ T5179] EXT4-fs: Ignoring removed bh option
[  158.561544][ T5183] loop4: detected capacity change from 0 to 16
[  158.601827][ T5183] erofs: (device loop4): mounted with root inode @ nid 36.
[  158.641699][ T5155] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  158.663198][ T5179] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  158.707097][ T5155] ext4 filesystem being mounted at /31/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  158.741482][ T4274] EXT4-fs (loop3): unmounting filesystem.
[  158.753557][ T5155] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1097: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  158.760261][ T5179] ext4 filesystem being mounted at /54/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  158.799266][ T5155] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 2 with error 28
[  158.832279][ T5155] EXT4-fs (loop1): This should not happen!! Data will be lost
[  158.832279][ T5155] 
[  158.842869][ T5155] EXT4-fs (loop1): Total free blocks count 0
[  158.851149][ T5188] loop0: detected capacity change from 0 to 2048
[  158.942218][ T5155] EXT4-fs (loop1): Free/Dirty block details
[  158.959196][ T5188] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  158.986921][ T5155] EXT4-fs (loop1): free_blocks=65280
[  158.992346][ T5155] EXT4-fs (loop1): dirty_blocks=2
[  158.997954][ T5155] EXT4-fs (loop1): Block reservation details
[  159.004410][ T5155] EXT4-fs (loop1): i_reserved_data_blocks=2
[  159.032075][ T5180] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 2 with max blocks 1 with error 28
[  159.063691][ T5188] ext4 filesystem being mounted at /44/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  159.261715][ T5188] EXT4-fs (loop0): re-mounted. Quota mode: none.
[  159.381813][ T4264] EXT4-fs (loop0): unmounting filesystem.
[  159.401689][ T4269] EXT4-fs (loop2): unmounting filesystem.
[  160.114860][ T4355] cdc_ether: probe of 2-1:1.0 failed with error -71
[  160.137743][ T5216] loop2: detected capacity change from 0 to 1024
[  160.149284][ T4355] usb 2-1: USB disconnect, device number 4
[  160.180312][ T5216] EXT4-fs (loop2): Test dummy encryption mode enabled
[  160.209373][ T5216] EXT4-fs (loop2): can't mount with journal_checksum, fs mounted w/o journal
[  160.986564][ T5222] overlayfs: missing 'lowerdir'
[  163.377957][ T5253] netlink: 12 bytes leftover after parsing attributes in process `syz.3.247'.
[  164.434917][ T5257] loop4: detected capacity change from 0 to 256
[  164.520093][ T5257] exFAT-fs (loop4): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18d7c, utbl_chksum : 0xe619d30d)
[  164.681619][ T5257] exFAT-fs (loop4): hint_cluster is invalid (17)
[  164.813553][ T4337] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  164.830318][ T5264] loop0: detected capacity change from 0 to 2048
[  164.908898][ T5270] loop2: detected capacity change from 0 to 512
[  164.934620][ T5264] UDF-fs: bad mount option "lastblock=00000000000000000008" or missing value
[  165.004062][ T5270] EXT4-fs: Ignoring removed oldalloc option
[  165.010982][ T4337] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  165.039561][ T4337] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  165.060260][ T5273] loop4: detected capacity change from 0 to 512
[  165.069732][ T4337] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  165.130047][ T4337] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  165.292292][ T4337] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  165.305923][ T5273] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  165.526107][ T5270] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  165.608521][ T5273] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  165.746259][ T4337] usb 2-1: config 0 descriptor??
[  165.791578][ T5270] ext4 filesystem being mounted at /59/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  165.950254][ T5273] ext4 filesystem being mounted at /59/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  166.008268][ T5270] EXT4-fs (loop2): shut down requested (1)
[  166.074760][ T5283] loop0: detected capacity change from 0 to 512
[  166.153242][ T4269] EXT4-fs (loop2): unmounting filesystem.
[  166.194868][ T5283] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  166.204712][ T5283] ext4 filesystem being mounted at /49/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  166.229572][ T4275] EXT4-fs (loop4): unmounting filesystem.
[  166.369151][ T4337] plantronics 0003:047F:FFFF.0005: No inputs registered, leaving
[  166.419827][ T4337] plantronics 0003:047F:FFFF.0005: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[  166.511676][ T5283] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5929: Out of memory
[  166.531586][ T5291] loop4: detected capacity change from 0 to 1024
[  166.562023][ T4337] usb 2-1: USB disconnect, device number 5
[  166.606811][ T5283] EXT4-fs (loop0): Remounting filesystem read-only
[  166.693532][ T5283] EXT4-fs error (device loop0): ext4_dirty_inode:6133: inode #4: comm syz.0.256: mark_inode_dirty error
[  166.801275][ T5283] EXT4-fs (loop0): Remounting filesystem read-only
[  166.817943][ T5293] fido_id[5293]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory
[  167.070614][ T5283] EXT4-fs warning (device loop0): ext4_read_block_bitmap_nowait:486: Cannot get buffer for block bitmap - block_group = 0, block_bitmap = 3209618085
[  167.560235][ T5283] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5929: Out of memory
[  167.640558][ T5283] EXT4-fs (loop0): Remounting filesystem read-only
[  167.681144][ T5283] EXT4-fs error (device loop0): ext4_dirty_inode:6133: inode #4: comm syz.0.256: mark_inode_dirty error
[  167.790174][ T5283] EXT4-fs (loop0): Remounting filesystem read-only
[  167.828174][ T5283] Quota error (device loop0): write_blk: dquota write failed
[  167.878707][ T5283] Quota error (device loop0): find_free_dqentry: Can't write quota data block 5
[  167.999346][ T5283] Quota error (device loop0): qtree_write_dquot: Error -12 occurred while creating quota
[  168.122970][ T5283] EXT4-fs error (device loop0): ext4_acquire_dquot:6809: comm syz.0.256: Failed to acquire dquot type 1
[  168.155921][ T5283] EXT4-fs (loop0): Remounting filesystem read-only
[  169.613926][ T4264] EXT4-fs (loop0): unmounting filesystem.
[  169.642870][ T4264] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5929: Out of memory
[  169.672456][ T4264] EXT4-fs (loop0): Remounting filesystem read-only
[  169.692491][ T4264] EXT4-fs error (device loop0): ext4_quota_off:7115: inode #4: comm syz-executor: mark_inode_dirty error
[  169.705669][ T4264] EXT4-fs (loop0): Remounting filesystem read-only
[  169.706528][ T5314] loop2: detected capacity change from 0 to 16
[  169.723446][ T4357] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  169.728922][ T5314] erofs: (device loop2): mounted with root inode @ nid 36.
[  169.802701][ T5314] erofs: (device loop2): z_erofs_readahead: readahead error at page 2 @ nid 89
[  169.818412][ T5314] syz.2.264: attempt to access beyond end of device
[  169.818412][ T5314] loop2: rw=524288, sector=524296, nr_sectors = 8 limit=16
[  169.844836][ T5314] erofs: (device loop2): z_erofs_lz4_decompress_mem: failed to decompress -5 in[4096, 0] out[4096]
[  169.864876][   T26] audit: type=1800 audit(1764274212.638:103): pid=5314 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.264" name="file2" dev="loop2" ino=89 res=0 errno=0
[  169.867240][ T5317] loop1: detected capacity change from 0 to 512
[  169.934289][ T4357] usb 5-1: Using ep0 maxpacket: 16
[  169.946084][ T4357] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 8
[  169.982603][ T4357] usb 5-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 6.00
[  170.018407][ T5317] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  170.033164][ T4357] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  170.048731][ T4357] usb 5-1: Product: syz
[  170.048805][ T5317] ext4 filesystem being mounted at /35/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  170.053056][ T4357] usb 5-1: Manufacturer: syz
[  170.075966][ T4357] usb 5-1: SerialNumber: syz
[  170.100860][ T4357] usb 5-1: config 0 descriptor??
[  170.118380][ T4357] ftdi_sio 5-1:0.0: FTDI USB Serial Device converter detected
[  170.139889][ T4357] usb 5-1: Detected FT232R
[  170.317236][ T4273] EXT4-fs (loop1): unmounting filesystem.
[  170.372622][ T4357] ftdi_sio ttyUSB0: Unable to read latency timer: -32
[  171.204270][ T5333] loop1: detected capacity change from 0 to 512
[  171.205003][ T5336] xt_NFQUEUE: number of queues (8) out of range (got 65537)
[  171.218920][ T4357] usb 5-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  171.229943][ T4357] usb 5-1: USB disconnect, device number 2
[  171.257114][ T4357] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  171.283535][ T5333] EXT4-fs (loop1): VFS: Can't find ext4 filesystem
[  171.291183][ T4357] ftdi_sio 5-1:0.0: device disconnected
[  171.673075][ T5347] loop1: detected capacity change from 0 to 512
[  171.721319][ T5347] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[  171.993224][ T5347] EXT4-fs error (device loop1): ext4_validate_block_bitmap:429: comm syz.1.274: bg 0: block 104: invalid block bitmap
[  172.316765][ T5347] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6165: Corrupt filesystem
[  172.466594][ T5347] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.274: invalid indirect mapped block 1 (level 1)
[  172.766085][ T5361] loop4: detected capacity change from 0 to 1024
[  172.775944][ T5347] EXT4-fs (loop1): 1 truncate cleaned up
[  172.781656][ T5347] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  172.864733][ T5361] syz.4.277: attempt to access beyond end of device
[  172.864733][ T5361] loop4: rw=2057, sector=262, nr_sectors = 65274 limit=1024
[  172.929270][   T26] audit: type=1800 audit(1764274215.698:104): pid=5347 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.274" name="file1" dev="loop1" ino=18 res=0 errno=0
[  172.993164][ T5361] syz.4.277: attempt to access beyond end of device
[  172.993164][ T5361] loop4: rw=1, sector=262, nr_sectors = 2048 limit=1024
[  173.933975][ T5361] syz.4.277: attempt to access beyond end of device
[  173.933975][ T5361] loop4: rw=1, sector=2310, nr_sectors = 2048 limit=1024
[  173.969505][ T4273] EXT4-fs (loop1): unmounting filesystem.
[  174.101247][ T5361] syz.4.277: attempt to access beyond end of device
[  174.101247][ T5361] loop4: rw=1, sector=4358, nr_sectors = 2048 limit=1024
[  174.212555][ T5361] syz.4.277: attempt to access beyond end of device
[  174.212555][ T5361] loop4: rw=1, sector=6406, nr_sectors = 2048 limit=1024
[  174.318304][ T5361] syz.4.277: attempt to access beyond end of device
[  174.318304][ T5361] loop4: rw=1, sector=8454, nr_sectors = 2048 limit=1024
[  174.394154][ T5361] syz.4.277: attempt to access beyond end of device
[  174.394154][ T5361] loop4: rw=1, sector=10502, nr_sectors = 2048 limit=1024
[  174.428037][ T5359] loop2: detected capacity change from 0 to 8192
[  174.456404][ T5361] syz.4.277: attempt to access beyond end of device
[  174.456404][ T5361] loop4: rw=1, sector=12550, nr_sectors = 2048 limit=1024
[  174.480927][ T5361] syz.4.277: attempt to access beyond end of device
[  174.480927][ T5361] loop4: rw=1, sector=14598, nr_sectors = 2048 limit=1024
[  175.445196][ T5361] can: request_module (can-proto-3) failed.
[  175.878180][ T5381] netlink: 64 bytes leftover after parsing attributes in process `syz.0.283'.
[  175.962877][ T5381] loop0: detected capacity change from 0 to 16
[  177.823691][ T5388] netlink: 12 bytes leftover after parsing attributes in process `syz.2.280'.
[  178.809663][ T5381] erofs: (device loop0): erofs_read_inode: unsupported chunk format ffff of nid 36
[  179.105846][ T5391] loop1: detected capacity change from 0 to 128
[  179.161673][ T5391] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  179.235827][ T5391] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  179.509213][ T5399] loop4: detected capacity change from 0 to 512
[  179.531400][ T5399] EXT4-fs (loop4): orphan cleanup on readonly fs
[  179.561466][ T5399] EXT4-fs error (device loop4): ext4_do_update_inode:5268: inode #15: comm syz.4.286: corrupted inode contents
[  179.578133][ T5399] EXT4-fs error (device loop4) in ext4_orphan_del:301: Corrupt filesystem
[  179.691915][ T5399] EXT4-fs error (device loop4): ext4_do_update_inode:5268: inode #15: comm syz.4.286: corrupted inode contents
[  179.893837][ T5399] EXT4-fs error (device loop4): ext4_evict_inode:327: inode #15: comm syz.4.286: mark_inode_dirty error
[  179.996977][ T5415] loop1: detected capacity change from 0 to 128
[  180.046509][ T5399] EXT4-fs (loop4): 1 orphan inode deleted
[  180.088452][ T5399] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  180.283044][ T5417] loop0: detected capacity change from 0 to 512
[  180.672174][ T5417] EXT4-fs (loop0): 1 truncate cleaned up
[  180.688989][ T5417] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  180.714362][ T4275] EXT4-fs (loop4): unmounting filesystem.
[  180.847239][   T26] audit: type=1800 audit(1764274223.528:105): pid=5417 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.292" name="file1" dev="loop0" ino=15 res=0 errno=0
[  181.064718][ T5417] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.292: bg 0: block 465: padding at end of block bitmap is not set
[  181.129434][ T5424] netlink: 44 bytes leftover after parsing attributes in process `syz.4.294'.
[  181.186248][ T5417] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 30 with max blocks 454 with error 28
[  181.199396][ T5424] netlink: 16 bytes leftover after parsing attributes in process `syz.4.294'.
[  181.276587][ T5417] EXT4-fs (loop0): This should not happen!! Data will be lost
[  181.276587][ T5417] 
[  181.327777][ T5417] EXT4-fs (loop0): Total free blocks count 0
[  181.348929][ T5417] EXT4-fs (loop0): Free/Dirty block details
[  181.379492][ T5417] EXT4-fs (loop0): free_blocks=0
[  181.424446][ T5417] EXT4-fs (loop0): dirty_blocks=455
[  181.429815][ T5417] EXT4-fs (loop0): Block reservation details
[  181.477201][ T5417] EXT4-fs (loop0): i_reserved_data_blocks=455
[  181.503425][ T4357] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  181.600293][ T5014] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  182.010138][ T5295] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  182.052176][ T5430] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  182.062367][ T5430] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  182.110672][ T4357] usb 4-1: Using ep0 maxpacket: 16
[  182.154143][ T4357] usb 4-1: config 0 interface 0 altsetting 16 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  182.455607][ T4357] usb 4-1: config 0 interface 0 altsetting 16 endpoint 0x81 has invalid wMaxPacketSize 0
[  182.506551][ T4357] usb 4-1: config 0 interface 0 altsetting 16 has 1 endpoint descriptor, different from the interface descriptor's value: 28
[  182.561560][ T4357] usb 4-1: config 0 interface 0 has no altsetting 0
[  182.588365][ T4357] usb 4-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  182.618361][ T4357] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  182.661809][ T4357] usb 4-1: config 0 descriptor??
[  183.082776][ T5447] loop0: detected capacity change from 0 to 1024
[  183.126326][ T4357] hid (null): nested delimiters
[  183.131434][ T4357] hid (null): invalid report_count 1497372927
[  183.342031][ T4357] usb 4-1: USB disconnect, device number 3
[  183.393716][ T4422] hfsplus: b-tree write err: -5, ino 8
[  183.574860][ T5455] loop0: detected capacity change from 0 to 512
[  183.679792][ T5455] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  183.796696][ T5455] EXT4-fs (loop0): 1 truncate cleaned up
[  183.839117][ T5455] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  184.213714][ T4320] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  184.239274][ T4264] EXT4-fs (loop0): unmounting filesystem.
[  184.526014][ T5469] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  184.535048][ T5469] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  184.573677][ T4320] usb 2-1: Using ep0 maxpacket: 16
[  184.761127][ T4320] usb 2-1: config 0 interface 0 has no altsetting 0
[  184.925059][ T4320] usb 2-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  185.247487][ T4320] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  185.337272][ T4320] usb 2-1: config 0 descriptor??
[  185.359622][ T5476] loop0: detected capacity change from 0 to 164
[  185.397405][ T5475] loop2: detected capacity change from 0 to 8
[  185.409040][ T4386] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  185.523734][ T5475] process 'syz.2.312' launched './file1' with NULL argv: empty string added
[  185.589271][ T5462] loop1: detected capacity change from 0 to 16
[  185.644284][ T5462] erofs: (device loop1): mounted with root inode @ nid 36.
[  185.674473][   T26] audit: type=1326 audit(1764274228.448:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5481 comm="syz.3.314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa62678f749 code=0x7ffc0000
[  185.705626][ T5483] loop3: detected capacity change from 0 to 512
[  185.713593][ T5483] EXT4-fs: Ignoring removed orlov option
[  185.719379][ T5483] EXT4-fs: Ignoring removed i_version option
[  185.734960][   T26] audit: type=1326 audit(1764274228.448:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5481 comm="syz.3.314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa62678f749 code=0x7ffc0000
[  185.792100][ T5483] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: comm syz.3.314: inode #1: comm syz.3.314: iget: illegal inode #
[  185.806714][ T5483] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.314: error while reading EA inode 1 err=-117
[  185.808468][ T5478] loop4: detected capacity change from 0 to 8192
[  185.820962][ T5483] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: comm syz.3.314: inode #1: comm syz.3.314: iget: illegal inode #
[  185.846481][ T5483] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.314: error while reading EA inode 1 err=-117
[  185.868310][ T5483] EXT4-fs (loop3): 1 orphan inode deleted
[  185.874889][ T5483] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  185.900291][   T26] audit: type=1326 audit(1764274228.468:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5481 comm="syz.3.314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa62678f749 code=0x7ffc0000
[  185.930676][ T4320] hid (null): unknown global tag 0xe
[  185.947381][ T5487] loop0: detected capacity change from 0 to 512
[  185.978965][ T5478]  loop4: p1 p2 < p5 p6 p7 p8 p9 p10 p11 p12 p13 p14 p15 p16 p17 p18 p19 p20 p21 p22 p23 p24 p25 p26 p27 p28 p29 p30 p31 p32 p33 p34 p35 p36 p37 p38 p39 p40 p41 p42 p43 p44 p45 p46 p47 p48 p49 p50 p51 p52 p53 p54 p55 p56 p57 p58 p59 p60 p61 p62 p63 p64 p65 p66 p67 p68 p69 p70 p71 p72 p73 p74 p75 p76 p77 p78 p79 p80 p81 p82 p83 p84 p85 p86 p87 p88 p89 p90 p91 p92 p93 p94 p95 p96 p97 p98 p99 p100 p101 p102 p103 p104 p105 p106 p107 p108 p109 p110 p111 p112 p113 p114 p115 p116 p117 p118 p119 p120 p121 p122 p123 p124 p125 p126 p127 p128 p129 p130 p131 p132 p133 p134 p135 p136 p137 p138 p139 p140 p141 p142 p143 p144 p145 p146 p147 p148 p149 p150 p151 p152 p153 p154 p155 p156 p157 p158 p159 p160 p161 p162 p163 p164 p165 p166 p167 p168 p169 p170 p171 p172 p173 p174 p175 p176 p177 p178 p179 p180 p181 p182 p183 p184 p185 p186 p187 p188 p189 p190 p191 p192 p193 p194 p195 p196 p197 p198 p199 p200 p201 p202 p203 p204 p205 p206 p207 p208 p209 p210 p211 p212 p213 p214 p215 p2
[  185.979071][ T5478] loop4: partition table partially beyond EOD, 
[  186.073854][ T5489] loop2: detected capacity change from 0 to 128
[  186.099800][   T26] audit: type=1326 audit(1764274228.468:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5481 comm="syz.3.314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa62678f749 code=0x7ffc0000
[  186.124078][   T26] audit: type=1326 audit(1764274228.468:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5481 comm="syz.3.314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa62678f749 code=0x7ffc0000
[  186.146786][ T5487] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  186.170163][ T5489] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  186.186867][ T5478] truncated
[  186.200557][ T4357] usb 2-1: USB disconnect, device number 6
[  186.224494][   T26] audit: type=1326 audit(1764274228.468:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5481 comm="syz.3.314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fa62678f749 code=0x7ffc0000
[  186.230021][ T5478] loop4: p1 start 16777216 is beyond EOD, truncated
[  186.308000][ T5478] loop4: p5 start 16777216 is beyond EOD, truncated
[  186.314751][ T5478] loop4: p6 start 16777216 is beyond EOD, truncated
[  186.321568][ T5478] loop4: p7 start 16777216 is beyond EOD, truncated
[  186.328625][ T5478] loop4: p8 start 16777216 is beyond EOD, truncated
[  186.343693][ T5478] loop4: p9 start 16777216 is beyond EOD, truncated
[  186.350719][ T5478] loop4: p10 start 16777216 is beyond EOD, truncated
[  186.359955][ T5478] loop4: p11 start 16777216 is beyond EOD, truncated
[  186.369309][ T5478] loop4: p12 start 16777216 is beyond EOD, truncated
[  186.374189][ T5487] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  186.376253][ T5478] loop4: p13 start 16777216 is beyond EOD, truncated
[  186.390599][   T26] audit: type=1326 audit(1764274228.468:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5481 comm="syz.3.314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fa62678f783 code=0x7ffc0000
[  186.392056][ T5478] loop4: p14 start 16777216 is beyond EOD, truncated
[  186.392080][ T5478] loop4: p15 start 16777216 is beyond EOD, 
[  186.448569][ T5487] ext4 filesystem being mounted at /62/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  186.469254][ T4274] EXT4-fs (loop3): unmounting filesystem.
[  186.480455][   T26] audit: type=1326 audit(1764274228.468:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5481 comm="syz.3.314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fa62678e1ff code=0x7ffc0000
[  186.481593][ T5478] truncated
[  186.525413][   T26] audit: type=1326 audit(1764274228.478:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5481 comm="syz.3.314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fa62678f7d7 code=0x7ffc0000
[  186.548362][   T26] audit: type=1326 audit(1764274228.478:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5481 comm="syz.3.314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fa62678df90 code=0x7ffc0000
[  186.574440][   T26] audit: type=1326 audit(1764274228.478:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5481 comm="syz.3.314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fa62678f34b code=0x7ffc0000
[  186.654420][   T26] audit: type=1326 audit(1764274228.478:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5481 comm="syz.3.314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fa62678e3aa code=0x7ffc0000
[  186.663747][ T5478] loop4: p16 start 16777216 is beyond EOD, truncated
[  186.776043][ T5478] loop4: p17 start 16777216 is beyond EOD, truncated
[  186.814026][ T5478] loop4: p18 start 16777216 is beyond EOD, truncated
[  186.842685][ T5478] loop4: p19 start 16777216 is beyond EOD, truncated
[  186.855505][ T5478] loop4: p20 start 16777216 is beyond EOD, truncated
[  186.933820][ T5478] loop4: p21 start 16777216 is beyond EOD, truncated
[  186.940593][ T5478] loop4: p22 start 16777216 is beyond EOD, truncated
[  186.982326][ T5478] loop4: p23 start 16777216 is beyond EOD, truncated
[  186.994934][ T4264] EXT4-fs (loop0): unmounting filesystem.
[  187.019880][ T5478] loop4: p24 start 16777216 is beyond EOD, truncated
[  187.027398][ T5478] loop4: p25 start 16777216 is beyond EOD, truncated
[  187.034222][ T5478] loop4: p26 start 16777216 is beyond EOD, truncated
[  187.041034][ T5478] loop4: p27 start 16777216 is beyond EOD, truncated
[  187.055028][ T5478] loop4: p28 start 16777216 is beyond EOD, truncated
[  187.062048][ T5478] loop4: p29 start 16777216 is beyond EOD, truncated
[  187.083031][ T5478] loop4: p30 start 16777216 is beyond EOD, truncated
[  187.090987][ T5478] loop4: p31 start 16777216 is beyond EOD, truncated
[  187.098686][ T5478] loop4: p32 start 16777216 is beyond EOD, truncated
[  187.163542][ T5478] loop4: p33 start 16777216 is beyond EOD, truncated
[  187.348039][ T5478] loop4: p34 start 16777216 is beyond EOD, truncated
[  187.542336][ T5478] loop4: p35 start 16777216 is beyond EOD, truncated
[  187.927299][ T5478] loop4: p36 start 16777216 is beyond EOD, truncated
[  187.934381][ T5478] loop4: p37 start 16777216 is beyond EOD, truncated
[  187.941524][ T5478] loop4: p38 start 16777216 is beyond EOD, truncated
[  187.984241][ T5478] loop4: p39 start 16777216 is beyond EOD, truncated
[  188.043514][ T5478] loop4: p40 start 16777216 is beyond EOD, truncated
[  188.050483][ T5478] loop4: p41 start 16777216 is beyond EOD, truncated
[  188.057722][ T5478] loop4: p42 start 16777216 is beyond EOD, truncated
[  188.173363][ T5478] loop4: p43 start 16777216 is beyond EOD, truncated
[  188.180305][ T5478] loop4: p44 start 16777216 is beyond EOD, truncated
[  188.198850][ T5511] loop2: detected capacity change from 0 to 512
[  188.222309][ T5478] loop4: p45 start 16777216 is beyond EOD, truncated
[  188.245820][ T5511] EXT4-fs: Ignoring removed bh option
[  188.252968][ T5478] loop4: p46 start 16777216 is beyond EOD, truncated
[  188.271975][ T5511] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  188.272947][ T5478] loop4: p47 start 16777216 is beyond EOD, truncated
[  188.335319][ T5478] loop4: p48 start 16777216 is beyond EOD, truncated
[  188.355057][ T5478] loop4: p49 start 16777216 is beyond EOD, truncated
[  188.460924][ T5478] loop4: p50 start 16777216 is beyond EOD, truncated
[  188.473141][ T5511] EXT4-fs (loop2): 1 truncate cleaned up
[  188.550524][ T5511] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  188.564116][ T5478] loop4: p51 start 16777216 is beyond EOD, truncated
[  188.658011][ T5478] loop4: p52 start 16777216 is beyond EOD, truncated
[  188.744582][ T5478] loop4: p53 start 16777216 is beyond EOD, truncated
[  188.922215][ T5478] loop4: p54 start 16777216 is beyond EOD, truncated
[  188.955665][ T5478] loop4: p55 start 16777216 is beyond EOD, truncated
[  188.962508][ T5478] loop4: p56 start 16777216 is beyond EOD, truncated
[  189.063488][ T5478] loop4: p57 start 16777216 is beyond EOD, truncated
[  189.079110][ T5478] loop4: p58 start 16777216 is beyond EOD, truncated
[  189.090339][ T5478] loop4: p59 start 16777216 is beyond EOD, truncated
[  189.097490][ T5478] loop4: p60 start 16777216 is beyond EOD, truncated
[  189.104694][ T5478] loop4: p61 start 16777216 is beyond EOD, truncated
[  189.111710][ T5478] loop4: p62 start 16777216 is beyond EOD, truncated
[  189.119369][ T5478] loop4: p63 start 16777216 is beyond EOD, truncated
[  189.174961][ T5478] loop4: p64 start 16777216 is beyond EOD, truncated
[  189.185363][ T4269] EXT4-fs (loop2): unmounting filesystem.
[  189.232543][ T5478] loop4: p65 start 16777216 is beyond EOD, truncated
[  189.263050][ T5478] loop4: p66 start 16777216 is beyond EOD, truncated
[  189.288235][ T5478] loop4: p67 start 16777216 is beyond EOD, truncated
[  189.323481][ T5478] loop4: p68 start 16777216 is beyond EOD, truncated
[  189.350028][ T5478] loop4: p69 start 16777216 is beyond EOD, truncated
[  189.363599][ T5478] loop4: p70 start 16777216 is beyond EOD, truncated
[  189.370726][ T5478] loop4: p71 start 16777216 is beyond EOD, truncated
[  189.383942][ T5478] loop4: p72 start 16777216 is beyond EOD, truncated
[  189.391108][ T5478] loop4: p73 start 16777216 is beyond EOD, truncated
[  189.411367][ T5478] loop4: p74 start 16777216 is beyond EOD, truncated
[  189.429756][ T5520] loop3: detected capacity change from 0 to 256
[  189.438929][ T5478] loop4: p75 start 16777216 is beyond EOD, truncated
[  189.462989][ T5520] exFAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  189.480252][ T5478] loop4: p76 start 16777216 is beyond EOD, truncated
[  189.504230][ T5478] loop4: p77 start 16777216 is beyond EOD, truncated
[  189.525836][ T5520] exFAT-fs (loop3): Medium has reported failures. Some data may be lost.
[  189.545217][ T5478] loop4: p78 start 16777216 is beyond EOD, truncated
[  189.567441][ T5478] loop4: p79 start 16777216 is beyond EOD, truncated
[  189.579483][ T5520] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  189.611489][ T5478] loop4: p80 start 16777216 is beyond EOD, truncated
[  189.629837][ T5478] loop4: p81 start 16777216 is beyond EOD, truncated
[  189.683434][ T5478] loop4: p82 start 16777216 is beyond EOD, truncated
[  189.728214][ T5478] loop4: p83 start 16777216 is beyond EOD, truncated
[  189.763501][ T5478] loop4: p84 start 16777216 is beyond EOD, truncated
[  189.790111][ T5478] loop4: p85 start 16777216 is beyond EOD, truncated
[  189.822243][ T5478] loop4: p86 start 16777216 is beyond EOD, truncated
[  189.839940][ T5478] loop4: p87 start 16777216 is beyond EOD, truncated
[  189.851524][ T5523] loop1: detected capacity change from 0 to 2048
[  189.870263][ T5478] loop4: p88 start 16777216 is beyond EOD, truncated
[  189.898970][ T5478] loop4: p89 start 16777216 is beyond EOD, truncated
[  189.930936][ T5478] loop4: p90 start 16777216 is beyond EOD, truncated
[  189.971097][ T5478] loop4: p91 start 16777216 is beyond EOD, truncated
[  189.994629][ T5523] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  190.002317][ T5478] loop4: p92 start 16777216 is beyond EOD, truncated
[  190.010951][ T5478] loop4: p93 start 16777216 is beyond EOD, truncated
[  190.083533][ T5478] loop4: p94 start 16777216 is beyond EOD, truncated
[  190.090496][ T5478] loop4: p95 start 16777216 is beyond EOD, truncated
[  190.139748][ T5478] loop4: p96 start 16777216 is beyond EOD, truncated
[  190.208805][ T5478] loop4: p97 start 16777216 is beyond EOD, truncated
[  190.240615][ T5478] loop4: p98 start 16777216 is beyond EOD, truncated
[  190.315921][ T5478] loop4: p99 start 16777216 is beyond EOD, truncated
[  190.322992][ T5478] loop4: p100 start 16777216 is beyond EOD, truncated
[  190.335560][ T5478] loop4: p101 start 16777216 is beyond EOD, truncated
[  190.342930][ T5478] loop4: p102 start 16777216 is beyond EOD, truncated
[  190.351232][ T5478] loop4: p103 start 16777216 is beyond EOD, truncated
[  190.360944][ T5478] loop4: p104 start 16777216 is beyond EOD, truncated
[  190.380679][ T5478] loop4: p105 start 16777216 is beyond EOD, truncated
[  190.430296][ T5478] loop4: p106 start 16777216 is beyond EOD, truncated
[  190.448913][ T5478] loop4: p107 start 16777216 is beyond EOD, truncated
[  190.465089][ T5478] loop4: p108 start 16777216 is beyond EOD, truncated
[  190.491943][ T5531] loop0: detected capacity change from 0 to 128
[  190.538841][ T5531] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  190.572585][ T5531] ext4 filesystem being mounted at /64/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  190.651655][ T5478] loop4: p109 start 16777216 is beyond EOD, truncated
[  190.659141][ T5478] loop4: p110 start 16777216 is beyond EOD, truncated
[  190.667553][ T5478] loop4: p111 start 16777216 is beyond EOD, truncated
[  190.675062][ T5478] loop4: p112 start 16777216 is beyond EOD, truncated
[  190.683079][ T5478] loop4: p113 start 16777216 is beyond EOD, truncated
[  190.718670][ T5478] loop4: p114 start 16777216 is beyond EOD, truncated
[  190.725795][ T5478] loop4: p115 start 16777216 is beyond EOD, truncated
[  191.735386][ T5478] loop4: p116 start 16777216 is beyond EOD, truncated
[  191.770737][ T5478] loop4: p117 start 16777216 is beyond EOD, truncated
[  191.812366][ T5478] loop4: p118 start 16777216 is beyond EOD, truncated
[  191.862841][ T5478] loop4: p119 start 16777216 is beyond EOD, truncated
[  191.881734][ T5478] loop4: p120 start 16777216 is beyond EOD, truncated
[  191.888879][ T5478] loop4: p121 start 16777216 is beyond EOD, truncated
[  191.900474][ T5478] loop4: p122 start 16777216 is beyond EOD, truncated
[  191.902505][ T4264] EXT4-fs (loop0): unmounting filesystem.
[  191.907930][ T5478] loop4: p123 start 16777216 is beyond EOD, truncated
[  191.907957][ T5478] loop4: p124 start 16777216 is beyond EOD, truncated
[  191.907974][ T5478] loop4: p125 start 16777216 is beyond EOD, truncated
[  191.907999][ T5478] loop4: p126 start 16777216 is beyond EOD, truncated
[  191.942361][ T5478] loop4: p127 start 16777216 is beyond EOD, truncated
[  191.949781][ T5478] loop4: p128 start 16777216 is beyond EOD, truncated
[  191.956638][ T5478] loop4: p129 start 16777216 is beyond EOD, truncated
[  191.964228][ T5478] loop4: p130 start 16777216 is beyond EOD, truncated
[  191.971321][ T5478] loop4: p131 start 16777216 is beyond EOD, truncated
[  191.978412][ T5478] loop4: p132 start 16777216 is beyond EOD, truncated
[  191.985658][ T5478] loop4: p133 start 16777216 is beyond EOD, truncated
[  191.993108][ T5478] loop4: p134 start 16777216 is beyond EOD, truncated
[  192.000565][ T5478] loop4: p135 start 16777216 is beyond EOD, truncated
[  192.007867][ T5478] loop4: p136 start 16777216 is beyond EOD, truncated
[  192.014848][ T5478] loop4: p137 start 16777216 is beyond EOD, truncated
[  192.023362][ T5478] loop4: p138 start 16777216 is beyond EOD, truncated
[  192.030892][ T5478] loop4: p139 start 16777216 is beyond EOD, truncated
[  192.038601][ T5478] loop4: p140 start 16777216 is beyond EOD, truncated
[  192.045564][ T5478] loop4: p141 start 16777216 is beyond EOD, truncated
[  192.052473][ T5478] loop4: p142 start 16777216 is beyond EOD, truncated
[  192.059445][ T5478] loop4: p143 start 16777216 is beyond EOD, truncated
[  192.082101][ T5478] loop4: p144 start 16777216 is beyond EOD, truncated
[  192.110119][ T5478] loop4: p145 start 16777216 is beyond EOD, truncated
[  192.121167][ T5478] loop4: p146 start 16777216 is beyond EOD, truncated
[  192.327820][ T5549] loop0: detected capacity change from 0 to 256
[  192.349183][ T5549] exFAT-fs (loop0): bogus allocation bitmap size(need : 2, cur : 256)
[  193.811501][ T5478] loop4: p147 start 16777216 is beyond EOD, truncated
[  193.942780][ T5478] loop4: p148 start 16777216 is beyond EOD, truncated
[  193.950083][ T5478] loop4: p149 start 16777216 is beyond EOD, truncated
[  193.957049][ T5478] loop4: p150 start 16777216 is beyond EOD, truncated
[  193.965786][ T5478] loop4: p151 start 16777216 is beyond EOD, truncated
[  193.972895][ T5478] loop4: p152 start 16777216 is beyond EOD, truncated
[  193.980202][ T5478] loop4: p153 start 16777216 is beyond EOD, truncated
[  193.988238][ T5478] loop4: p154 start 16777216 is beyond EOD, truncated
[  193.995454][ T5478] loop4: p155 start 16777216 is beyond EOD, truncated
[  194.002344][ T5478] loop4: p156 start 16777216 is beyond EOD, truncated
[  194.033454][ T5478] loop4: p157 start 16777216 is beyond EOD, truncated
[  194.040306][ T5478] loop4: p158 start 16777216 is beyond EOD, truncated
[  194.098242][ T5478] loop4: p159 start 16777216 is beyond EOD, truncated
[  194.139714][ T5478] loop4: p160 start 16777216 is beyond EOD, truncated
[  196.222412][ T5478] loop4: p161 start 16777216 is beyond EOD, truncated
[  196.230153][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  196.243156][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  196.279904][ T5478] loop4: p162 start 16777216 is beyond EOD, truncated
[  196.317223][ T5563] loop1: detected capacity change from 0 to 256
[  196.462282][ T5478] loop4: p163 start 16777216 is beyond EOD, truncated
[  196.471465][ T5478] loop4: p164 start 16777216 is beyond EOD, truncated
[  196.480258][ T5478] loop4: p165 start 16777216 is beyond EOD, truncated
[  196.487496][ T5478] loop4: p166 start 16777216 is beyond EOD, truncated
[  196.494955][ T5563] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  196.507616][ T5478] loop4: p167 start 16777216 is beyond EOD, truncated
[  196.514907][ T5563] exFAT-fs (loop1): Medium has reported failures. Some data may be lost.
[  196.523923][ T5478] loop4: p168 start 16777216 is beyond EOD, truncated
[  196.543500][ T5478] loop4: p169 start 16777216 is beyond EOD, truncated
[  196.550441][ T5478] loop4: p170 start 16777216 is beyond EOD, truncated
[  196.575624][ T5563] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  196.594775][ T5478] loop4: p171 start 16777216 is beyond EOD, truncated
[  196.605606][ T5478] loop4: p172 start 16777216 is beyond EOD, truncated
[  196.613066][ T5478] loop4: p173 start 16777216 is beyond EOD, truncated
[  196.621506][ T5478] loop4: p174 start 16777216 is beyond EOD, truncated
[  196.630134][ T5568] loop2: detected capacity change from 0 to 1024
[  196.630739][ T5478] loop4: p175 start 16777216 is beyond EOD, truncated
[  196.646154][ T5478] loop4: p176 start 16777216 is beyond EOD, truncated
[  196.655856][ T5478] loop4: p177 start 16777216 is beyond EOD, truncated
[  196.662690][ T5478] loop4: p178 start 16777216 is beyond EOD, truncated
[  196.670653][ T5478] loop4: p179 start 16777216 is beyond EOD, truncated
[  196.713383][ T5478] loop4: p180 start 16777216 is beyond EOD, truncated
[  196.730271][ T5478] loop4: p181 start 16777216 is beyond EOD, truncated
[  196.747569][ T5478] loop4: p182 start 16777216 is beyond EOD, truncated
[  196.803334][ T5478] loop4: p183 start 16777216 is beyond EOD, truncated
[  196.870406][ T5478] loop4: p184 start 16777216 is beyond EOD, truncated
[  196.882681][ T5478] loop4: p185 start 16777216 is beyond EOD, truncated
[  196.910731][ T5478] loop4: p186 start 16777216 is beyond EOD, truncated
[  196.960724][ T5478] loop4: p187 start 16777216 is beyond EOD, truncated
[  196.968241][ T5478] loop4: p188 start 16777216 is beyond EOD, truncated
[  197.007729][ T5478] loop4: p189 start 16777216 is beyond EOD, truncated
[  197.029415][ T5478] loop4: p190 start 16777216 is beyond EOD, truncated
[  197.040792][ T5572] loop3: detected capacity change from 0 to 512
[  197.051443][ T5478] loop4: p191 start 16777216 is beyond EOD, truncated
[  197.061495][ T5478] loop4: p192 start 16777216 is beyond EOD, truncated
[  197.065484][ T5574] loop1: detected capacity change from 0 to 1024
[  197.072064][ T5478] loop4: p193 start 16777216 is beyond EOD, truncated
[  197.114154][ T5574] hfsplus: failed to load attributes file
[  197.152478][ T5478] loop4: p194 start 16777216 is beyond EOD, truncated
[  197.180575][ T5572] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  197.196424][ T5572] ext4 filesystem being mounted at /72/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  197.207021][ T5478] loop4: p195 start 16777216 is beyond EOD, truncated
[  197.222812][ T5478] loop4: p196 start 16777216 is beyond EOD, truncated
[  197.235829][ T5478] loop4: p197 start 16777216 is beyond EOD, truncated
[  197.242894][ T5478] loop4: p198 start 16777216 is beyond EOD, truncated
[  197.251907][ T5478] loop4: p199 start 16777216 is beyond EOD, truncated
[  197.259209][ T5478] loop4: p200 start 16777216 is beyond EOD, truncated
[  197.266577][ T5478] loop4: p201 start 16777216 is beyond EOD, truncated
[  197.274070][ T5478] loop4: p202 start 16777216 is beyond EOD, truncated
[  197.281319][ T5478] loop4: p203 start 16777216 is beyond EOD, truncated
[  197.288746][ T5478] loop4: p204 start 16777216 is beyond EOD, truncated
[  197.296307][ T5478] loop4: p205 start 16777216 is beyond EOD, truncated
[  197.303772][ T5478] loop4: p206 start 16777216 is beyond EOD, truncated
[  197.311126][ T5478] loop4: p207 start 16777216 is beyond EOD, truncated
[  197.319617][ T5478] loop4: p208 start 16777216 is beyond EOD, truncated
[  197.327854][ T5478] loop4: p209 start 16777216 is beyond EOD, truncated
[  197.335202][ T5478] loop4: p210 start 16777216 is beyond EOD, truncated
[  197.342156][ T5478] loop4: p211 start 16777216 is beyond EOD, truncated
[  197.350116][ T5478] loop4: p212 start 16777216 is beyond EOD, truncated
[  197.357471][ T5478] loop4: p213 start 16777216 is beyond EOD, truncated
[  197.365927][ T5478] loop4: p214 start 16777216 is beyond EOD, truncated
[  197.372918][ T5478] loop4: p215 start 16777216 is beyond EOD, truncated
[  197.380458][ T5478] loop4: p216 start 16777216 is beyond EOD, truncated
[  197.392287][ T5478] loop4: p217 start 16777216 is beyond EOD, truncated
[  197.410267][ T5478] loop4: p218 start 16777216 is beyond EOD, truncated
[  197.470947][ T5478] loop4: p219 start 16777216 is beyond EOD, truncated
[  197.478127][ T5478] loop4: p220 start 16777216 is beyond EOD, truncated
[  197.484980][ T5478] loop4: p221 start 16777216 is beyond EOD, truncated
[  197.491776][ T5478] loop4: p222 start 16777216 is beyond EOD, truncated
[  197.506104][ T5478] loop4: p223 start 16777216 is beyond EOD, truncated
[  197.682659][ T5478] loop4: p224 start 16777216 is beyond EOD, truncated
[  197.917995][ T5478] loop4: p225 start 16777216 is beyond EOD, truncated
[  197.953314][ T5478] loop4: p226 start 16777216 is beyond EOD, truncated
[  197.980978][ T5478] loop4: p227 start 16777216 is beyond EOD, truncated
[  198.001347][ T5478] loop4: p228 start 16777216 is beyond EOD, truncated
[  198.023378][ T5478] loop4: p229 start 16777216 is beyond EOD, truncated
[  198.051910][ T5478] loop4: p230 start 16777216 is beyond EOD, truncated
[  198.069821][ T5478] loop4: p231 start 16777216 is beyond EOD, truncated
[  198.090193][ T5478] loop4: p232 start 16777216 is beyond EOD, truncated
[  198.112622][ T5478] loop4: p233 start 16777216 is beyond EOD, truncated
[  198.160497][ T5478] loop4: p234 start 16777216 is beyond EOD, truncated
[  198.188233][ T4871] usb 2-1: new full-speed USB device number 7 using dummy_hcd
[  198.196180][ T5478] loop4: p235 start 16777216 is beyond EOD, truncated
[  198.199740][ T4320] usb 3-1: new full-speed USB device number 3 using dummy_hcd
[  198.219638][ T4274] EXT4-fs (loop3): unmounting filesystem.
[  198.229071][ T5478] loop4: p236 start 16777216 is beyond EOD, truncated
[  198.236208][ T5478] loop4: p237 start 16777216 is beyond EOD, truncated
[  198.244340][ T5478] loop4: p238 start 16777216 is beyond EOD, truncated
[  198.251416][ T5478] loop4: p239 start 16777216 is beyond EOD, truncated
[  198.258374][ T5478] loop4: p240 start 16777216 is beyond EOD, truncated
[  198.259864][ T4284] Bluetooth: hci0: command 0x0406 tx timeout
[  198.265329][ T5478] loop4: p241 start 16777216 is beyond EOD, truncated
[  198.265356][ T5478] loop4: p242 start 16777216 is beyond EOD, truncated
[  198.265374][ T5478] loop4: p243 start 16777216 is beyond EOD, truncated
[  198.265392][ T5478] loop4: p244 start 16777216 is beyond EOD, truncated
[  198.265410][ T5478] loop4: p245 start 16777216 is beyond EOD, truncated
[  198.265428][ T5478] loop4: p246 start 16777216 is beyond EOD, 
[  198.271463][ T4284] Bluetooth: hci2: command 0x0406 tx timeout
[  198.278736][ T5478] truncated
[  198.285604][ T4283] Bluetooth: hci1: command 0x0406 tx timeout
[  198.292555][ T5478] loop4: p247 start 16777216 is beyond EOD, 
[  198.299479][ T4283] Bluetooth: hci3: command 0x0406 tx timeout
[  198.323554][ T5478] truncated
[  198.348000][ T5478] loop4: p248 start 16777216 is beyond EOD, truncated
[  198.369760][ T5478] loop4: p249 start 16777216 is beyond EOD, truncated
[  198.410047][ T5478] loop4: p250 start 16777216 is beyond EOD, truncated
[  198.419227][ T4320] usb 3-1: New USB device found, idVendor=056e, idProduct=4010, bcdDevice=20.1c
[  198.423559][ T5478] loop4: p251 start 16777216 is beyond EOD, truncated
[  198.438830][ T4320] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  198.439620][ T4871] usb 2-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  198.467057][ T4320] usb 3-1: config 0 descriptor??
[  198.477915][ T5478] loop4: p252 start 16777216 is beyond EOD, truncated
[  198.489638][ T4871] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 512, setting to 64
[  198.491244][ T5478] loop4: p253 start 16777216 is beyond EOD, truncated
[  198.509325][ T5593] loop3: detected capacity change from 0 to 764
[  198.515060][ T5478] loop4: p254 start 16777216 is beyond EOD, truncated
[  198.524035][ T4871] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  198.543887][ T5478] loop4: p255 start 16777216 is beyond EOD, truncated
[  198.557405][ T4871] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  198.572800][ T4871] usb 2-1: Product: syz
[  198.748000][ T4871] usb 2-1: Manufacturer: syz
[  198.752873][ T4871] usb 2-1: SerialNumber: syz
[  198.776751][ T4871] cdc_ncm 2-1:1.0: skipping garbage
[  198.980367][ T5585] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  199.149138][ T5295] udevd[5295]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory
[  199.173037][ T4386] udevd[4386]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[  199.480525][ T5600] loop0: detected capacity change from 0 to 512
[  199.552057][ T5600] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  199.568051][ T5600] ext4 filesystem being mounted at /70/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  199.651583][ T5602] loop3: detected capacity change from 0 to 2048
[  199.832614][ T5585] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  199.835567][ T5602] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  200.052194][ T4871] cdc_ncm 2-1:1.0: bind() failure
[  200.158233][ T4871] cdc_ncm: probe of 2-1:1.1 failed with error -71
[  200.367376][ T4871] cdc_mbim: probe of 2-1:1.1 failed with error -71
[  200.399680][ T4871] usbtest: probe of 2-1:1.1 failed with error -71
[  200.428610][ T4871] usb 2-1: USB disconnect, device number 7
[  200.504840][ T4274] EXT4-fs (loop3): unmounting filesystem.
[  200.595843][ T4264] EXT4-fs (loop0): unmounting filesystem.
[  200.808222][ T4320] pegasus 3-1:0.0: can't reset MAC
[  200.813999][ T4320] pegasus: probe of 3-1:0.0 failed with error -5
[  200.869732][ T4320] usb 3-1: USB disconnect, device number 3
[  201.535543][ T5622] loop1: detected capacity change from 0 to 1024
[  201.569147][ T5627] loop0: detected capacity change from 0 to 1024
[  201.647396][ T5622] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  201.710427][ T5622] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e854c02c, mo2=0103]
[  201.772385][ T5622] System zones: 0-1, 3-36
[  201.801709][ T5622] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  201.907966][ T5622] EXT4-fs error (device loop1): __ext4_remount:6618: comm syz.1.358: Abort forced by user
[  201.974355][ T5622] EXT4-fs (loop1): re-mounted. Quota mode: writeback.
[  202.134511][ T4273] EXT4-fs (loop1): unmounting filesystem.
[  202.137282][ T5636] loop0: detected capacity change from 0 to 256
[  202.196550][ T5636] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  202.244134][ T5636] exFAT-fs (loop0): Medium has reported failures. Some data may be lost.
[  202.275239][ T5636] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  202.603909][ T5646] usb usb6: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  203.524539][ T5655] loop4: detected capacity change from 0 to 1024
[  203.558350][ T5655] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (7780!=20869)
[  203.566706][ T5660] loop2: detected capacity change from 0 to 512
[  203.626640][ T5660] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  203.780172][ T5655] EXT4-fs (loop4): invalid journal inode
[  203.803848][ T5660] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2196: inode #15: comm syz.2.368: corrupted in-inode xattr
[  204.064756][ T5660] EXT4-fs (loop2): Remounting filesystem read-only
[  204.123196][ T5660] EXT4-fs (loop2): 1 truncate cleaned up
[  204.272690][ T5660] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  204.679511][ T4269] EXT4-fs (loop2): unmounting filesystem.
[  204.900511][ T5676] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  204.911527][ T5676] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  204.921226][ T5676] overlayfs: missing 'lowerdir'
[  205.713762][ T5668] syzkaller0: default qdisc (pfifo_fast) fail, fallback to noqueue
[  205.751011][ T5668] device syzkaller0 entered promiscuous mode
[  205.899604][ T5680] loop2: detected capacity change from 0 to 512
[  205.923158][ T5680] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[  205.997870][ T5680] EXT4-fs error (device loop2): ext4_validate_block_bitmap:429: comm syz.2.375: bg 0: block 104: invalid block bitmap
[  206.127304][ T5680] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6165: Corrupt filesystem
[  206.168964][ T5680] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #11: comm syz.2.375: invalid indirect mapped block 1 (level 1)
[  206.233523][ T5680] EXT4-fs (loop2): 1 truncate cleaned up
[  206.243758][ T5680] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  206.288133][   T26] kauditd_printk_skb: 19 callbacks suppressed
[  206.288159][   T26] audit: type=1800 audit(1764274249.058:137): pid=5680 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.375" name="file1" dev="loop2" ino=18 res=0 errno=0
[  207.256107][ T4269] EXT4-fs (loop2): unmounting filesystem.
[  207.522652][ T5696] loop0: detected capacity change from 0 to 256
[  207.557831][ T5696] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  207.612871][ T5696] exFAT-fs (loop0): Medium has reported failures. Some data may be lost.
[  207.843540][ T4319] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  208.032326][ T5696] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x640de592, utbl_chksum : 0xe619d30d)
[  208.073430][ T4319] usb 3-1: Using ep0 maxpacket: 16
[  208.088648][ T4319] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  208.257991][ T5702] loop3: detected capacity change from 0 to 128
[  208.311337][ T4319] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  208.358513][ T4319] usb 3-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  208.375728][ T5702] FAT-fs (loop3): error, corrupted directory (invalid entries)
[  208.383162][ T4319] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  208.403456][ T5702] FAT-fs (loop3): Filesystem has been set read-only
[  208.432607][ T4319] usb 3-1: config 0 descriptor??
[  208.632540][ T5705] loop0: detected capacity change from 0 to 512
[  208.653143][ T5707] loop3: detected capacity change from 0 to 1024
[  208.665925][ T5705] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  210.132886][ T5705] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2196: inode #15: comm syz.0.383: corrupted in-inode xattr
[  210.186502][ T5705] EXT4-fs (loop0): Remounting filesystem read-only
[  210.200156][ T5705] EXT4-fs (loop0): 1 truncate cleaned up
[  210.208047][ T5705] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  210.507718][ T5715] loop3: detected capacity change from 0 to 8192
[  211.229828][ T4871] usb 3-1: USB disconnect, device number 4
[  211.303759][ T5719] loop4: detected capacity change from 0 to 1024
[  211.311321][ T5719] hfsplus: unable to parse mount options
[  211.348693][ T5722] loop2: detected capacity change from 0 to 512
[  211.364053][ T5722] EXT4-fs: Ignoring removed bh option
[  211.383204][ T5722] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  211.408077][ T5297] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  211.434448][ T5722] EXT4-fs (loop2): 1 truncate cleaned up
[  211.449361][ T5722] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  211.544314][ T4264] EXT4-fs (loop0): unmounting filesystem.
[  211.672211][ T5297] udevd[5297]: failed to send result of seq 11872 to main daemon: Connection refused
[  211.777696][ T5730] loop0: detected capacity change from 0 to 512
[  211.789368][ T5730] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem
[  211.810762][ T5730] EXT4-fs error (device loop0): ext4_validate_block_bitmap:429: comm syz.0.389: bg 0: block 104: invalid block bitmap
[  211.829953][ T5730] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6165: Corrupt filesystem
[  211.840129][ T5730] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.389: invalid indirect mapped block 1 (level 1)
[  211.863124][ T5730] EXT4-fs (loop0): 1 truncate cleaned up
[  211.870401][ T5730] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  211.879946][ T4337] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  211.902830][   T26] audit: type=1800 audit(1764274254.668:138): pid=5730 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.389" name="file1" dev="loop0" ino=18 res=0 errno=0
[  211.922165][ T4269] EXT4-fs (loop2): unmounting filesystem.
[  212.663341][   T22] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  212.837022][ T4264] EXT4-fs (loop0): unmounting filesystem.
[  212.891610][ T4337] usb 4-1: Using ep0 maxpacket: 16
[  212.933089][ T4337] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  212.950191][ T4337] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  212.960896][ T4337] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  212.985369][ T4337] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  213.000804][ T4337] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  213.050538][ T4337] usb 4-1: config 0 descriptor??
[  213.235311][   T22] usb 5-1: config 1 interface 0 altsetting 127 bulk endpoint 0x81 has invalid maxpacket 64
[  213.246486][   T22] usb 5-1: config 1 interface 0 altsetting 127 bulk endpoint 0x2 has invalid maxpacket 32
[  213.257726][   T22] usb 5-1: config 1 interface 0 has no altsetting 0
[  213.285619][   T22] usb 5-1: New USB device found, idVendor=0bda, idProduct=8150, bcdDevice= 0.40
[  213.295576][   T22] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  213.311383][   T22] usb 5-1: Product: syz
[  213.318956][   T22] usb 5-1: Manufacturer: syz
[  213.328031][   T22] usb 5-1: SerialNumber: syz
[  213.345286][ T5732] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  213.352780][ T5732] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  213.478640][ T4337] microsoft 0003:045E:07DA.0008: unknown main item tag 0x0
[  213.497365][ T4337] microsoft 0003:045E:07DA.0008: ignoring exceeding usage max
[  213.672689][ T5746] loop2: detected capacity change from 0 to 512
[  213.683694][ T4337] microsoft 0003:045E:07DA.0008: No inputs registered, leaving
[  213.704250][ T4337] microsoft 0003:045E:07DA.0008: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.3-1/input0
[  213.723628][ T5746] EXT4-fs (loop2): Test dummy encryption mode enabled
[  213.731022][ T4337] microsoft 0003:045E:07DA.0008: no inputs found
[  213.737942][ T5746] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  213.748328][ T4337] microsoft 0003:045E:07DA.0008: could not initialize ff, continuing anyway
[  213.781613][ T5746] EXT4-fs error (device loop2): ext4_orphan_get:1426: comm syz.2.393: bad orphan inode 131083
[  213.812090][ T5746] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  213.908643][ T4337] usb 4-1: USB disconnect, device number 4
[  213.910255][ T4269] EXT4-fs (loop2): unmounting filesystem.
[  215.308604][ T5764] loop3: detected capacity change from 0 to 256
[  215.322750][ T5764] exFAT-fs (loop3): bogus allocation bitmap size(need : 2, cur : 256)
[  216.882363][ T5756] netlink: 8 bytes leftover after parsing attributes in process `syz.2.397'.
[  216.987029][   T22] rtl8150 5-1:1.0: couldn't reset the device
[  217.015683][   T22] rtl8150: probe of 5-1:1.0 failed with error -5
[  217.059211][   T22] usb 5-1: USB disconnect, device number 3
[  217.070303][ T5767] loop4: detected capacity change from 0 to 1024
[  217.171879][ T5769] loop2: detected capacity change from 0 to 512
[  217.243532][ T5769] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[  217.245914][ T5772] loop3: detected capacity change from 0 to 512
[  217.260446][ T5772] EXT4-fs: Ignoring removed bh option
[  217.289473][ T5773] loop1: detected capacity change from 0 to 128
[  217.301912][ T5772] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  217.308264][ T5769] EXT4-fs error (device loop2): ext4_validate_block_bitmap:429: comm syz.2.402: bg 0: block 104: invalid block bitmap
[  217.325078][ T5769] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6165: Corrupt filesystem
[  217.340224][ T5772] EXT4-fs (loop3): 1 truncate cleaned up
[  217.353410][ T5769] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #11: comm syz.2.402: invalid indirect mapped block 1 (level 1)
[  217.377512][ T5772] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  217.405368][ T5769] EXT4-fs (loop2): 1 truncate cleaned up
[  217.411396][ T5769] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  217.548732][   T26] audit: type=1800 audit(1764274260.198:139): pid=5769 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.402" name="file1" dev="loop2" ino=18 res=0 errno=0
[  217.621583][   T26] audit: type=1800 audit(1764274260.348:140): pid=5773 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.403" name="bus" dev="loop1" ino=1048637 res=0 errno=0
[  218.068418][ T4274] EXT4-fs (loop3): unmounting filesystem.
[  218.161147][ T5784] netlink: 12 bytes leftover after parsing attributes in process `syz.1.406'.
[  218.182983][ T5785] loop4: detected capacity change from 0 to 512
[  218.242833][ T5785] EXT4-fs error (device loop4): ext4_read_inode_bitmap:140: comm syz.4.405: Invalid inode bitmap blk 4 in block_group 0
[  218.316070][ T5785] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  218.330413][ T4269] EXT4-fs (loop2): unmounting filesystem.
[  218.411106][ T5785] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1097: group 0, block bitmap and bg descriptor inconsistent: 7969 vs 220 free clusters
[  219.556846][ T4275] EXT4-fs (loop4): unmounting filesystem.
[  219.628842][ T5798] loop2: detected capacity change from 0 to 512
[  219.828844][ T5800] loop1: detected capacity change from 0 to 256
[  219.869121][ T5800] exFAT-fs (loop1): bogus allocation bitmap size(need : 2, cur : 256)
[  219.931526][ T5805] binder: 5804:5805 ioctl c018620c 2000000001c0 returned -1
[  219.957009][ T5798] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  219.983779][ T5798] ext4 filesystem being mounted at /95/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  219.987586][ T5806] loop4: detected capacity change from 0 to 1024
[  220.040829][ T5806] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  220.129920][ T5814] loop0: detected capacity change from 0 to 512
[  220.214889][ T5814] EXT4-fs (loop0): Test dummy encryption mode enabled
[  220.225554][   T26] audit: type=1800 audit(1764274262.998:141): pid=5806 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.410" name="bus" dev="loop4" ino=18 res=0 errno=0
[  220.228754][ T5820] loop3: detected capacity change from 0 to 128
[  220.265742][ T5806] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:3836: comm syz.4.410: Allocating blocks 385-513 which overlap fs metadata
[  220.282348][ T5806] EXT4-fs (loop4): pa ffff8880743669a0: logic 16, phys. 129, len 24
[  220.291007][ T5806] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:4876: group 0, free 0, pa_free 8
[  220.402850][ T5814] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  221.184530][   T26] audit: type=1800 audit(1764274263.368:142): pid=5820 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.416" name="bus" dev="loop3" ino=1048639 res=0 errno=0
[  221.243899][ T5777] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1097: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  221.305727][ T4275] Trying to write to read-only block-device loop4
[  221.308223][ T4269] EXT4-fs (loop2): unmounting filesystem.
[  221.327629][ T4275] Trying to write to read-only block-device loop4
[  221.342129][ T4275] Trying to write to read-only block-device loop4
[  221.359518][ T4275] Trying to write to read-only block-device loop4
[  221.382909][ T4275] Trying to write to read-only block-device loop4
[  221.399814][ T4275] Trying to write to read-only block-device loop4
[  221.414300][ T4275] Trying to write to read-only block-device loop4
[  221.428364][ T4275] Trying to write to read-only block-device loop4
[  221.450778][ T4275] Trying to write to read-only block-device loop4
[  221.453550][ T5829] loop2: detected capacity change from 0 to 512
[  221.460321][ T4275] Trying to write to read-only block-device loop4
[  221.476956][ T4264] EXT4-fs (loop0): unmounting filesystem.
[  221.482300][ T5829] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[  221.488908][ T4275] EXT4-fs (loop4): unmounting filesystem.
[  221.512045][ T5829] EXT4-fs error (device loop2): ext4_validate_block_bitmap:429: comm syz.2.419: bg 0: block 104: invalid block bitmap
[  221.530992][ T5829] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6165: Corrupt filesystem
[  221.541418][ T5829] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #11: comm syz.2.419: invalid indirect mapped block 1 (level 1)
[  221.543154][ T5831] loop3: detected capacity change from 0 to 512
[  221.560969][ T5829] EXT4-fs (loop2): 1 truncate cleaned up
[  221.567244][ T5829] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  221.580176][   T26] audit: type=1800 audit(1764274264.358:143): pid=5829 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.419" name="file1" dev="loop2" ino=18 res=0 errno=0
[  221.680879][ T5831] EXT4-fs: Ignoring removed i_version option
[  221.731107][ T5831] EXT4-fs: Ignoring removed bh option
[  221.798692][ T5831] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  221.823767][ T5831] ext4 filesystem being mounted at /90/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  222.332616][ T5845] input: syz1 as /devices/virtual/input/input11
[  222.897569][ T4269] EXT4-fs (loop2): unmounting filesystem.
[  223.093696][ T5850] loop4: detected capacity change from 0 to 256
[  223.101557][ T5850] /dev/loop4: Can't open blockdev
[  223.129235][ T5854] loop2: detected capacity change from 0 to 256
[  223.142303][ T5854] exFAT-fs (loop2): bogus allocation bitmap size(need : 2, cur : 256)
[  223.243497][   T14] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  223.266035][ T4274] EXT4-fs (loop3): unmounting filesystem.
[  223.281148][ T5858] loop2: detected capacity change from 0 to 128
[  223.447073][   T14] usb 1-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  223.470381][ T5863] loop1: detected capacity change from 0 to 1024
[  223.483225][   T14] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  223.504787][   T14] usb 1-1: config 0 descriptor??
[  223.515053][ T5863] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  223.524055][ T5863] ext4 filesystem being mounted at /63/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  223.526303][   T14] cp210x 1-1:0.0: cp210x converter detected
[  223.615434][ T5873] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.430: bg 0: block 112: padding at end of block bitmap is not set
[  223.634648][ T5873] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 32 with max blocks 696 with error 117
[  223.644155][ T4411] EXT4-fs error (device loop1): ext4_map_blocks:745: inode #15: comm kworker/u4:9: lblock 0 mapped to illegal pblock 0 (length 6)
[  223.650469][ T5873] EXT4-fs (loop1): This should not happen!! Data will be lost
[  223.650469][ T5873] 
[  223.692522][ T4411] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 6 with error 117
[  223.694539][ T5874] loop3: detected capacity change from 0 to 512
[  223.719675][ T4411] EXT4-fs (loop1): This should not happen!! Data will be lost
[  223.719675][ T4411] 
[  223.730148][   T14] usb 1-1: cp210x converter now attached to ttyUSB0
[  223.740270][ T5863] EXT4-fs error (device loop1): ext4_ext_remove_space:2930: inode #15: comm syz.1.430: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0)
[  223.798340][ T5874] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  223.844312][ T5874] ext4 filesystem being mounted at /92/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  223.863323][ T4320] usb 3-1: new full-speed USB device number 5 using dummy_hcd
[  223.875774][ T4411] EXT4-fs error (device loop1): ext4_map_blocks:745: inode #15: block 8: comm kworker/u4:9: lblock 8 mapped to illegal pblock 8 (length 8)
[  223.926873][   T14] usb 1-1: USB disconnect, device number 6
[  223.944540][ T4411] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117
[  223.957975][   T14] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  223.969198][   T26] audit: type=1804 audit(1764274266.748:144): pid=5874 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.432" name="/newroot/92/file1/file2" dev="loop3" ino=16 res=1 errno=0
[  223.981704][ T4411] EXT4-fs (loop1): This should not happen!! Data will be lost
[  223.981704][ T4411] 
[  224.004692][   T14] cp210x 1-1:0.0: device disconnected
[  224.046466][ T4320] usb 3-1: config 16 has an invalid interface number: 50 but max is 0
[  224.063553][ T4320] usb 3-1: config 16 has no interface number 0
[  224.067936][ T4411] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 728 with max blocks 8 with error 28
[  224.072490][ T4320] usb 3-1: New USB device found, idVendor=046d, idProduct=08c2, bcdDevice=d4.71
[  224.090699][ T4411] EXT4-fs (loop1): This should not happen!! Data will be lost
[  224.090699][ T4411] 
[  224.119458][ T4320] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  224.129441][ T4411] EXT4-fs (loop1): Total free blocks count 0
[  224.136325][ T4320] usb 3-1: Product: syz
[  224.136347][ T4320] usb 3-1: Manufacturer: syz
[  224.158986][ T4320] usb 3-1: SerialNumber: syz
[  224.262130][ T5879] loop4: detected capacity change from 0 to 1024
[  224.273977][ T5879] EXT4-fs: Ignoring removed nomblk_io_submit option
[  224.281275][ T5879] /dev/loop4: Can't open blockdev
[  224.584735][ T4320] usb 3-1: Found UVC 0.00 device syz (046d:08c2)
[  224.712052][ T5886] input: syz1 as /devices/virtual/input/input12
[  225.176378][ T4320] usb 3-1: No valid video chain found.
[  225.184487][ T4320] usb 3-1: USB disconnect, device number 5
[  225.488418][ T5898] loop0: detected capacity change from 0 to 512
[  225.587306][ T5897] loop1: detected capacity change from 0 to 256
[  225.648105][ T5897] exFAT-fs (loop1): bogus allocation bitmap size(need : 2, cur : 256)
[  226.461568][ T5898] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  226.473501][ T5898] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c000e128, mo2=0002]
[  226.496717][ T5898] EXT4-fs (loop0): orphan cleanup on readonly fs
[  226.512065][ T5898] Quota error (device loop0): v2_read_header: Failed header read: expected=8 got=0
[  226.522128][ T5898] EXT4-fs warning (device loop0): ext4_enable_quotas:7061: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  226.577048][ T5898] EXT4-fs (loop0): Cannot turn on quotas: error -22
[  226.601463][ T5898] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.436: bg 0: block 40: padding at end of block bitmap is not set
[  226.631847][ T5906] loop2: detected capacity change from 0 to 256
[  226.648252][ T5898] EXT4-fs (loop0): Remounting filesystem read-only
[  226.670901][ T5898] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6165: Corrupt filesystem
[  226.686941][ T5898] EXT4-fs (loop0): Remounting filesystem read-only
[  226.694429][ T5898] EXT4-fs (loop0): 1 truncate cleaned up
[  226.700810][ T5898] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  226.779877][ T5907] loop1: detected capacity change from 0 to 512
[  226.819963][ T5907] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  226.901554][ T4264] EXT4-fs (loop0): unmounting filesystem.
[  226.942892][ T5907] EXT4-fs (loop1): orphan cleanup on readonly fs
[  226.965700][ T5907] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.439: bg 0: block 248: padding at end of block bitmap is not set
[  226.986965][ T5907] Quota error (device loop1): write_blk: dquota write failed
[  226.995549][ T5907] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  227.005866][ T5907] EXT4-fs error (device loop1): ext4_acquire_dquot:6809: comm syz.1.439: Failed to acquire dquot type 1
[  227.024917][ T5907] EXT4-fs (loop1): 1 truncate cleaned up
[  227.044708][ T5907] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  227.063668][ T4274] EXT4-fs (loop3): unmounting filesystem.
[  227.164537][ T5922] loop0: detected capacity change from 0 to 1024
[  227.260470][ T4273] EXT4-fs (loop1): unmounting filesystem.
[  227.407852][ T5933] loop3: detected capacity change from 0 to 1024
[  227.416101][ T5933] EXT4-fs: Ignoring removed nomblk_io_submit option
[  227.467492][ T5933] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  227.611500][ T5942] loop2: detected capacity change from 0 to 2048
[  227.686624][ T5944] loop1: detected capacity change from 0 to 256
[  227.705580][ T5944] exFAT-fs (loop1): bogus allocation bitmap size(need : 2, cur : 256)
[  227.714441][ T4320] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  227.768343][ T5942] UDF-fs: warning (device loop2): udf_load_vrs: No anchor found
[  227.781851][ T5942] UDF-fs: Scanning with blocksize 512 failed
[  227.797054][ T5942] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  227.844158][ T5947] loop1: detected capacity change from 0 to 512
[  227.873619][ T5947] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  227.881869][ T5947] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002]
[  227.897074][ T5947] System zones: 0-1, 15-15, 18-18, 34-34
[  227.907513][ T5947] EXT4-fs (loop1): orphan cleanup on readonly fs
[  227.915074][ T5947] Quota error (device loop1): v2_read_header: Failed header read: expected=8 got=0
[  227.925772][ T5947] EXT4-fs warning (device loop1): ext4_enable_quotas:7061: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  227.942437][ T5947] EXT4-fs (loop1): Cannot turn on quotas: error -22
[  227.952909][ T4320] usb 1-1: config 220 has an invalid interface number: 76 but max is 2
[  227.955025][   T11] bio_check_eod: 24 callbacks suppressed
[  227.955038][   T11] kworker/u4:1: attempt to access beyond end of device
[  227.955038][   T11] loop2: rw=1, sector=2048, nr_sectors = 2 limit=2048
[  227.968052][   T11] Buffer I/O error on dev loop2, logical block 1024, lost async page write
[  227.988868][ T4320] usb 1-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[  227.989847][   T11] kworker/u4:1: attempt to access beyond end of device
[  227.989847][   T11] loop2: rw=1, sector=2048, nr_sectors = 2 limit=2048
[  227.999513][ T4320] usb 1-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[  228.012918][   T11] Buffer I/O error on dev loop2, logical block 1024, lost async page write
[  228.030263][ T5947] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.451: bg 0: block 40: padding at end of block bitmap is not set
[  228.032166][   T11] kworker/u4:1: attempt to access beyond end of device
[  228.032166][   T11] loop2: rw=1, sector=2050, nr_sectors = 2 limit=2048
[  228.060455][   T11] Buffer I/O error on dev loop2, logical block 1025, lost async page write
[  228.069624][   T11] kworker/u4:1: attempt to access beyond end of device
[  228.069624][   T11] loop2: rw=1, sector=2050, nr_sectors = 2 limit=2048
[  228.083524][   T11] Buffer I/O error on dev loop2, logical block 1025, lost async page write
[  228.090187][ T4320] usb 1-1: config 220 has no interface number 2
[  228.092377][   T11] kworker/u4:1: attempt to access beyond end of device
[  228.092377][   T11] loop2: rw=1, sector=2052, nr_sectors = 2 limit=2048
[  228.109065][ T5947] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6165: Corrupt filesystem
[  228.121190][   T11] Buffer I/O error on dev loop2, logical block 1026, lost async page write
[  228.121626][ T4320] usb 1-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[  228.136261][   T11] kworker/u4:1: attempt to access beyond end of device
[  228.136261][   T11] loop2: rw=1, sector=2052, nr_sectors = 2 limit=2048
[  228.144576][ T4320] usb 1-1: config 220 interface 0 has no altsetting 0
[  228.165016][ T5947] EXT4-fs (loop1): 1 truncate cleaned up
[  228.166021][   T11] Buffer I/O error on dev loop2, logical block 1026, lost async page write
[  228.170779][ T5947] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  228.174893][ T4320] usb 1-1: config 220 interface 76 has no altsetting 0
[  228.192726][   T11] kworker/u4:1: attempt to access beyond end of device
[  228.192726][   T11] loop2: rw=1, sector=2054, nr_sectors = 2 limit=2048
[  228.196583][ T4320] usb 1-1: config 220 interface 1 has no altsetting 0
[  228.222566][   T11] Buffer I/O error on dev loop2, logical block 1027, lost async page write
[  228.233530][   T11] kworker/u4:1: attempt to access beyond end of device
[  228.233530][   T11] loop2: rw=1, sector=2054, nr_sectors = 2 limit=2048
[  228.254706][   T11] Buffer I/O error on dev loop2, logical block 1027, lost async page write
[  228.273916][   T11] kworker/u4:1: attempt to access beyond end of device
[  228.273916][   T11] loop2: rw=1, sector=2056, nr_sectors = 2 limit=2048
[  228.293142][   T11] Buffer I/O error on dev loop2, logical block 1028, lost async page write
[  228.304797][   T11] kworker/u4:1: attempt to access beyond end of device
[  228.304797][   T11] loop2: rw=1, sector=2056, nr_sectors = 2 limit=2048
[  228.318972][   T11] Buffer I/O error on dev loop2, logical block 1028, lost async page write
[  228.329950][ T4320] usb 1-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  228.343190][ T4320] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  228.354063][ T4320] usb 1-1: Product: syz
[  228.358263][ T4320] usb 1-1: Manufacturer: syz
[  228.363040][ T4320] usb 1-1: SerialNumber: syz
[  228.402252][ T4274] EXT4-fs (loop3): unmounting filesystem.
[  228.452875][ T4273] EXT4-fs (loop1): unmounting filesystem.
[  228.558763][ T5954] netlink: 8 bytes leftover after parsing attributes in process `syz.3.453'.
[  228.600800][ T4320] usb 1-1: selecting invalid altsetting 0
[  228.656476][ T5960] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  228.691557][ T4320] usb 1-1: Found UVC 7.01 device syz (8086:0b07)
[  228.710734][ T5961] netlink: 8 bytes leftover after parsing attributes in process `syz.3.453'.
[  228.792018][ T4320] usb 1-1: No valid video chain found.
[  228.970642][ T4320] usb 1-1: selecting invalid altsetting 0
[  229.022284][ T4320] usbtest: probe of 1-1:220.1 failed with error -22
[  229.204493][ T4320] usb 1-1: USB disconnect, device number 7
[  229.511420][ T5961] bridge0: port 1(bridge_slave_0) entered disabled state
[  229.646679][ T5967] netlink: 8 bytes leftover after parsing attributes in process `syz.2.456'.
[  230.058017][ T5983] loop4: detected capacity change from 0 to 512
[  230.070270][ T5983] /dev/loop4: Can't open blockdev
[  230.746480][ T5982] loop2: detected capacity change from 0 to 1024
[  230.749589][ T5977] loop0: detected capacity change from 0 to 1024
[  230.757112][ T5982] EXT4-fs: Ignoring removed i_version option
[  230.784826][ T5981] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  230.794716][ T5982] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  230.899428][ T5982] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  230.903946][ T5981] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  230.948485][ T5990] loop4: detected capacity change from 0 to 128
[  230.964367][ T5981] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  231.000517][ T4269] EXT4-fs (loop2): unmounting filesystem.
[  231.022520][ T5992] loop1: detected capacity change from 0 to 1024
[  231.030597][ T5992] EXT4-fs: Ignoring removed nomblk_io_submit option
[  231.085283][ T5992] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  231.127583][ T5996] loop2: detected capacity change from 0 to 512
[  231.135401][ T5996] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  231.408106][ T4398] hfsplus: b-tree write err: -5, ino 3
[  231.411009][ T6000] loop3: detected capacity change from 0 to 256
[  231.440168][ T6000] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x205ab87c, utbl_chksum : 0xe619d30d)
[  231.947493][ T6009] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  232.060493][ T4273] EXT4-fs (loop1): unmounting filesystem.
[  232.231575][ T6007] loop4: detected capacity change from 0 to 256
[  233.802762][ T6007] loop4: detected capacity change from 0 to 512
[  233.842752][ T6019] loop0: detected capacity change from 0 to 736
[  233.853846][ T6024] loop3: detected capacity change from 0 to 8
[  233.899659][ T6024] SQUASHFS error: zlib decompression failed, data probably corrupt
[  233.909145][ T6024] SQUASHFS error: Failed to read block 0x4de: -5
[  233.927485][ T6024] SQUASHFS error: zlib decompression failed, data probably corrupt
[  233.953570][ T6024] SQUASHFS error: Failed to read block 0x4df: -5
[  233.971033][ T6024] SQUASHFS error: zlib decompression failed, data probably corrupt
[  233.980999][ T6024] SQUASHFS error: Failed to read block 0x4e0: -5
[  234.007753][ T6024] SQUASHFS error: zlib decompression failed, data probably corrupt
[  234.031690][ T6024] SQUASHFS error: Failed to read block 0x4de: -5
[  234.059827][   T26] audit: type=1800 audit(1764274276.828:145): pid=6024 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.474" name="file1" dev="loop3" ino=5 res=0 errno=0
[  234.113518][ T4357] usb 3-1: new full-speed USB device number 6 using dummy_hcd
[  234.133164][ T6029] device syzkaller0 entered promiscuous mode
[  234.203170][ T6034] loop0: detected capacity change from 0 to 1024
[  234.221476][ T4344] hfsplus: b-tree write err: -5, ino 4
[  234.393427][ T4320] usb 5-1: new full-speed USB device number 4 using dummy_hcd
[  234.469094][ T6041] loop1: detected capacity change from 0 to 1024
[  234.477709][ T4357] usb 3-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  234.491937][ T6041] EXT4-fs: Ignoring removed nomblk_io_submit option
[  234.498861][ T4357] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[  234.525321][ T4357] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  234.550003][ T4357] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  234.569339][ T4357] usb 3-1: Product: syz
[  234.589774][ T4357] usb 3-1: Manufacturer: syz
[  234.596549][ T4357] usb 3-1: SerialNumber: syz
[  234.607414][ T4357] cdc_ncm 3-1:1.0: skipping garbage
[  234.613928][ T6041] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  234.675216][ T4320] usb 5-1: New USB device found, idVendor=056e, idProduct=4010, bcdDevice=20.1c
[  234.807448][ T6051] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  237.420928][ T4273] EXT4-fs (loop1): unmounting filesystem.
[  237.553545][ T4320] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  237.574670][ T4320] usb 5-1: config 0 descriptor??
[  237.582555][ T4357] cdc_ncm 3-1:1.0: bind() failure
[  237.608050][ T4357] cdc_ncm 3-1:1.1: CDC Union missing and no IAD found
[  237.620188][ T4320] usb 5-1: can't set config #0, error -71
[  237.637168][ T4320] usb 5-1: USB disconnect, device number 4
[  237.647473][ T4357] cdc_ncm 3-1:1.1: bind() failure
[  237.848294][ T6065] loop0: detected capacity change from 0 to 4096
[  237.849918][ T4357] usb 3-1: USB disconnect, device number 6
[  237.855107][ T6068] loop1: detected capacity change from 0 to 2048
[  237.870529][ T6065] EXT4-fs: Ignoring removed nomblk_io_submit option
[  237.880197][ T6065] EXT4-fs (loop0): Test dummy encryption mode enabled
[  237.884497][ T6068] UDF-fs: error (device loop1): udf_process_sequence: Primary Volume Descriptor not found!
[  237.889326][ T6065] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[  237.905969][ T6065] System zones: 0-5
[  237.912452][ T6068] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  238.036486][ T6065] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  238.719242][ T6065] EXT4-fs (loop0): re-mounted. Quota mode: writeback.
[  238.891540][ T6083] netlink: 16 bytes leftover after parsing attributes in process `syz.1.490'.
[  238.919645][ T4264] EXT4-fs (loop0): unmounting filesystem.
[  239.143029][ T6088] loop4: detected capacity change from 0 to 512
[  239.159099][ T6088] /dev/loop4: Can't open blockdev
[  239.557533][ T6087] device wlan0 entered promiscuous mode
[  239.669606][ T6087] A link change request failed with some changes committed already. Interface wlan0 may have been left with an inconsistent configuration, please check.
[  241.153106][ T6105] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  241.278073][ T4355] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  241.473352][ T4355] usb 4-1: Using ep0 maxpacket: 8
[  241.481688][ T4355] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  241.519380][ T4355] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  241.550938][ T4355] usb 4-1: New USB device found, idVendor=046a, idProduct=0027, bcdDevice= 0.00
[  241.570871][ T4355] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  241.611728][ T4355] usb 4-1: config 0 descriptor??
[  241.666775][   T14] usb 5-1: new full-speed USB device number 5 using dummy_hcd
[  242.239971][   T14] usb 5-1: config 1 has an invalid interface number: 105 but max is 0
[  242.253066][   T14] usb 5-1: config 1 has no interface number 0
[  242.260203][   T14] usb 5-1: config 1 interface 105 has no altsetting 0
[  242.277131][   T14] usb 5-1: New USB device found, idVendor=20f4, idProduct=e05a, bcdDevice=6c.6d
[  242.287537][   T14] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  242.296030][   T14] usb 5-1: Product: syz
[  242.300480][   T14] usb 5-1: Manufacturer: syz
[  242.309313][   T14] usb 5-1: SerialNumber: syz
[  242.442238][ T4355] cherry 0003:046A:0027.0009: unknown main item tag 0x5
[  242.455050][ T4355] cherry 0003:046A:0027.0009: unknown main item tag 0x0
[  242.469245][ T4355] cherry 0003:046A:0027.0009: unknown main item tag 0x0
[  242.484865][ T4355] cherry 0003:046A:0027.0009: unknown main item tag 0x0
[  242.499558][ T4355] cherry 0003:046A:0027.0009: unknown main item tag 0x0
[  242.513325][ T4355] cherry 0003:046A:0027.0009: unknown main item tag 0x0
[  242.528452][ T4355] cherry 0003:046A:0027.0009: unknown main item tag 0x0
[  242.542364][ T4355] cherry 0003:046A:0027.0009: unknown main item tag 0x0
[  242.559162][ T4355] cherry 0003:046A:0027.0009: unknown main item tag 0x0
[  242.573370][ T4355] cherry 0003:046A:0027.0009: unknown main item tag 0x0
[  242.590981][ T4355] cherry 0003:046A:0027.0009: unknown main item tag 0x0
[  242.601121][ T4355] cherry 0003:046A:0027.0009: unknown main item tag 0x4
[  242.641284][ T4355] cherry 0003:046A:0027.0009: unknown main item tag 0x3
[  242.678702][ T4355] cherry 0003:046A:0027.0009: unknown main item tag 0x0
[  242.693608][ T4355] cherry 0003:046A:0027.0009: unknown main item tag 0x0
[  242.708797][ T4355] cherry 0003:046A:0027.0009: unknown main item tag 0x0
[  242.709227][ T6131] loop1: detected capacity change from 0 to 512
[  242.725802][ T4355] cherry 0003:046A:0027.0009: unknown main item tag 0x0
[  242.740755][ T4355] cherry 0003:046A:0027.0009: unknown main item tag 0x0
[  242.753434][ T4355] cherry 0003:046A:0027.0009: unknown main item tag 0x0
[  242.770852][ T4355] cherry 0003:046A:0027.0009: unknown main item tag 0x0
[  242.772117][ T6131] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  242.781018][ T4355] cherry 0003:046A:0027.0009: unknown main item tag 0x0
[  242.817989][ T4355] cherry 0003:046A:0027.0009: unknown main item tag 0x0
[  242.829237][ T6131] EXT4-fs (loop1): 1 truncate cleaned up
[  242.833107][ T4355] cherry 0003:046A:0027.0009: unknown main item tag 0x0
[  242.851951][ T6131] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  242.861190][ T4355] cherry 0003:046A:0027.0009: unknown main item tag 0x0
[  242.875058][ T4355] cherry 0003:046A:0027.0009: unknown main item tag 0x0
[  242.916569][ T4355] cherry 0003:046A:0027.0009: unknown main item tag 0x0
[  242.953596][ T4355] cherry 0003:046A:0027.0009: unknown main item tag 0x0
[  242.981295][ T4355] cherry 0003:046A:0027.0009: unknown main item tag 0x0
[  243.001694][ T4355] cherry 0003:046A:0027.0009: unknown main item tag 0x0
[  243.021907][ T4355] cherry 0003:046A:0027.0009: unknown main item tag 0x0
[  243.048136][ T4355] cherry 0003:046A:0027.0009: unknown main item tag 0x0
[  243.071427][ T4355] cherry 0003:046A:0027.0009: unknown main item tag 0x0
[  243.091802][ T4355] cherry 0003:046A:0027.0009: unknown main item tag 0x0
[  243.108114][ T4355] cherry 0003:046A:0027.0009: unknown main item tag 0x0
[  243.118067][ T4355] cherry 0003:046A:0027.0009: unknown main item tag 0x0
[  243.120653][ T6140] loop0: detected capacity change from 0 to 128
[  243.130972][ T4355] cherry 0003:046A:0027.0009: unknown main item tag 0x0
[  243.153359][ T4355] cherry 0003:046A:0027.0009: unknown main item tag 0x0
[  243.182930][ T4355] cherry 0003:046A:0027.0009: unknown main item tag 0x0
[  243.213336][ T4355] cherry 0003:046A:0027.0009: unknown main item tag 0x0
[  243.243602][ T4355] cherry 0003:046A:0027.0009: hidraw0: USB HID v0.00 Device [HID 046a:0027] on usb-dummy_hcd.3-1/input0
[  243.258326][ T4355] usb 4-1: USB disconnect, device number 5
[  243.287011][ T4273] EXT4-fs (loop1): unmounting filesystem.
[  244.219077][   T14] aqc111 5-1:1.105 (unnamed net_device) (uninitialized): Failed to read(0x1) reg index 0x0001: -71
[  244.289264][   T14] aqc111 5-1:1.105 (unnamed net_device) (uninitialized): Failed to read(0x1) reg index 0x0001: -71
[  244.461717][ T6154] loop1: detected capacity change from 0 to 256
[  244.574375][ T6154] exFAT-fs (loop1): bogus allocation bitmap size(need : 2, cur : 256)
[  244.635898][ T6155] syz.3.517 (6155): /proc/6153/oom_adj is deprecated, please use /proc/6153/oom_score_adj instead.
[  244.651698][   T14] aqc111 5-1:1.105 eth1: register 'aqc111' at usb-dummy_hcd.4-1, USB-C 3.1 to 5GBASE-T Ethernet Adapter, 2e:ad:91:46:cd:fa
[  244.879261][   T14] usb 5-1: USB disconnect, device number 5
[  245.003033][ T4283] Bluetooth: hci4: link tx timeout
[  245.011207][ T4283] Bluetooth: hci4: killing stalled connection 11:aa:aa:aa:aa:aa
[  245.071122][   T14] aqc111 5-1:1.105 eth1: unregister 'aqc111' usb-dummy_hcd.4-1, USB-C 3.1 to 5GBASE-T Ethernet Adapter
[  247.063422][ T4283] Bluetooth: hci4: command 0x0406 tx timeout
[  247.386479][   T14] aqc111 5-1:1.105 eth1 (unregistered): Failed to write(0x1) reg index 0x0002: -19
[  247.423508][   T14] aqc111 5-1:1.105 eth1 (unregistered): Failed to write(0x1) reg index 0x0002: -19
[  247.453914][   T14] aqc111 5-1:1.105 eth1 (unregistered): Failed to write(0x61) reg index 0x0000: -19
[  247.598046][ T6177] loop1: detected capacity change from 0 to 128
[  247.662815][ T6177] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  247.732812][ T6177] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  247.822696][ T4344] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  247.887991][ T6182] loop4: detected capacity change from 0 to 1024
[  247.906396][ T6182] EXT4-fs: Ignoring removed nomblk_io_submit option
[  247.919445][ T6182] /dev/loop4: Can't open blockdev
[  250.811284][ T6203] loop4: detected capacity change from 0 to 8192
[  250.890763][ T6217] loop3: detected capacity change from 0 to 2048
[  251.087792][ T6217] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  251.821117][ T6223] loop2: detected capacity change from 0 to 512
[  252.032472][ T6227] loop4: detected capacity change from 0 to 16
[  252.048777][ T6227] /dev/loop4: Can't open blockdev
[  253.486571][ T6223] EXT4-fs (loop2): Test dummy encryption mode enabled
[  253.494245][ T6223] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  253.510071][ T6223] EXT4-fs (loop2): 1 truncate cleaned up
[  253.523371][ T6223] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  253.947797][ T6237] loop3: detected capacity change from 0 to 2048
[  253.955689][ T4255] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  254.024086][ T6241] loop0: detected capacity change from 0 to 128
[  254.032964][ T6241] EXT4-fs (loop0): Test dummy encryption mode enabled
[  254.050625][ T6239] loop1: detected capacity change from 0 to 1024
[  254.077037][ T6239] EXT4-fs: Ignoring removed nomblk_io_submit option
[  254.100107][ T6223] fscrypt: AES-256-CTS-CBC using implementation "cts-cbc-aes-aesni"
[  254.187586][ T6241] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  254.198896][ T6241] ext4 filesystem being mounted at /111/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  254.221486][ T6239] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  254.242614][ T4269] EXT4-fs (loop2): unmounting filesystem.
[  254.602416][ T4273] EXT4-fs (loop1): unmounting filesystem.
[  254.649444][ T6241] fscrypt: AES-256-XTS using implementation "xts-aes-aesni"
[  254.695393][   T26] audit: type=1800 audit(1764274297.468:146): pid=6248 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.544" name="file1" dev="loop0" ino=12 res=0 errno=0
[  254.915900][ T6271] loop3: detected capacity change from 0 to 128
[  254.974415][ T6271] EXT4-fs: Ignoring removed nobh option
[  255.118725][ T4264] EXT4-fs (loop0): unmounting filesystem.
[  255.135016][ T6271] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  255.185159][ T6271] ext4 filesystem being mounted at /114/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  255.508886][ T4274] EXT4-fs (loop3): unmounting filesystem.
[  255.750327][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  255.767674][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  255.923928][   T27] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  256.217260][   T27] usb 5-1: config 220 has an invalid interface number: 76 but max is 2
[  256.236488][   T27] usb 5-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[  256.283292][   T27] usb 5-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[  256.324754][   T27] usb 5-1: config 220 has no interface number 2
[  256.374553][   T27] usb 5-1: config 220 interface 1 altsetting 5 bulk endpoint 0x1 has invalid maxpacket 8
[  256.431324][   T27] usb 5-1: config 220 interface 1 altsetting 5 has 1 endpoint descriptor, different from the interface descriptor's value: 12
[  256.462859][ T6288] loop3: detected capacity change from 0 to 16
[  256.465863][   T27] usb 5-1: config 220 interface 0 has no altsetting 0
[  256.486884][   T27] usb 5-1: config 220 interface 76 has no altsetting 0
[  256.489826][ T6288] erofs: (device loop3): mounted with root inode @ nid 36.
[  256.499240][   T27] usb 5-1: config 220 interface 1 has no altsetting 0
[  256.823988][ T6291] loop0: detected capacity change from 0 to 8192
[  257.015323][   T27] usb 5-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  257.129993][   T27] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  257.193208][ T6292] loop2: detected capacity change from 0 to 512
[  257.231533][   T27] usb 5-1: Product: syz
[  257.366022][   T27] usb 5-1: Manufacturer: syz
[  257.371067][ T6292] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  257.390164][   T27] usb 5-1: SerialNumber: syz
[  257.484177][ T6292] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  257.490437][ T6297] loop0: detected capacity change from 0 to 8
[  257.507530][ T6292] ext4 filesystem being mounted at /128/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  257.617937][   T27] usb 5-1: Found UVC 7.01 device syz (8086:0b07)
[  257.642744][   T27] usb 5-1: No valid video chain found.
[  257.661975][   T27] usb 5-1: selecting invalid altsetting 0
[  257.683647][ T4851] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  257.723119][   T27] usb 5-1: selecting invalid altsetting 0
[  257.753006][   T27] usbtest: probe of 5-1:220.1 failed with error -22
[  258.034996][   T27] usb 5-1: USB disconnect, device number 6
[  258.354148][   T26] audit: type=1326 audit(1764274301.088:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6296 comm="syz.0.557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7477b8f749 code=0x7fc00000
[  258.440832][ T6304] loop1: detected capacity change from 0 to 256
[  258.584938][ T6306] loop4: detected capacity change from 0 to 1024
[  258.621420][ T6306] EXT4-fs: Ignoring removed nomblk_io_submit option
[  258.637583][ T4269] EXT4-fs (loop2): unmounting filesystem.
[  258.665389][ T4851] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  258.679989][ T6306] /dev/loop4: Can't open blockdev
[  258.684220][ T4851] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  258.703436][ T4851] usb 4-1: New USB device found, idVendor=046d, idProduct=c24f, bcdDevice= 0.00
[  258.712825][ T4851] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  258.744920][ T4851] usb 4-1: config 0 descriptor??
[  259.879819][ T6321] bridge0: port 1(bridge_slave_0) entered forwarding state
[  259.889010][ T4851] logitech 0003:046D:C24F.000A: hidraw0: USB HID v0.00 Device [HID 046d:c24f] on usb-dummy_hcd.3-1/input0
[  259.900716][ T4851] logitech 0003:046D:C24F.000A: no inputs found
[  259.912046][ T4851] usb 4-1: USB disconnect, device number 6
[  260.098683][ T6325] loop2: detected capacity change from 0 to 1024
[  263.135450][ T6399] loop4: detected capacity change from 0 to 512
[  263.187172][ T6399] /dev/loop4: Can't open blockdev
[  263.211035][ T6400] loop0: detected capacity change from 0 to 1024
[  263.230332][ T6400] EXT4-fs: inline encryption not supported
[  263.259025][ T6400] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  263.450224][ T6400] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  263.584209][ T6410] loop1: detected capacity change from 0 to 8192
[  263.591562][ T6410] FAT-fs (loop1): Unrecognized mount option "" or missing value
[  263.605588][ T6406] loop2: detected capacity change from 0 to 2048
[  263.629000][ T6400] EXT4-fs (loop0): changing journal_checksum during remount not supported; ignoring
[  263.642934][ T6406] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  263.658507][ T6406] ext4 filesystem being mounted at /133/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  263.809374][ T6400] EXT4-fs (loop0): re-mounted. Quota mode: none.
[  263.859175][ T6406] fs-verity: sha512 using implementation "sha512-avx2"
[  263.935935][ T4264] EXT4-fs (loop0): unmounting filesystem.
[  263.973862][ T4269] EXT4-fs (loop2): unmounting filesystem.
[  264.017440][ T6417] loop4: detected capacity change from 0 to 2048
[  264.048976][ T6417] /dev/loop4: Can't open blockdev
[  264.217490][ T6420] loop0: detected capacity change from 0 to 4096
[  264.272974][ T6420] EXT4-fs (loop0): Test dummy encryption mode enabled
[  264.298204][ T6420] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[  264.310977][ T6420] System zones: 0-5
[  264.322061][ T6420] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  264.433317][ T4871] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  264.528647][ T4264] EXT4-fs (loop0): unmounting filesystem.
[  264.636438][ T6430] loop4: detected capacity change from 0 to 128
[  264.643460][ T4871] usb 3-1: Using ep0 maxpacket: 8
[  264.650405][ T4871] usb 3-1: config 0 has an invalid interface number: 31 but max is 0
[  264.659006][ T4871] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  264.669511][ T4871] usb 3-1: config 0 has no interface number 0
[  264.691937][ T4871] usb 3-1: New USB device found, idVendor=046d, idProduct=08c3, bcdDevice=6b.16
[  264.731753][ T4871] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  264.750303][ T4871] usb 3-1: Product: syz
[  264.760450][ T4355] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  264.768525][ T4871] usb 3-1: Manufacturer: syz
[  264.819189][ T4871] usb 3-1: SerialNumber: syz
[  264.854423][ T4871] usb 3-1: config 0 descriptor??
[  264.998443][ T4355] usb 4-1: New USB device found, idVendor=090a, idProduct=1200, bcdDevice=24.87
[  265.097775][ T4871] usb 3-1: Found UVC 0.04 device syz (046d:08c3)
[  265.118737][ T4871] usb 3-1: No valid video chain found.
[  265.162094][ T4355] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  265.363113][ T4355] usb 4-1: config 0 descriptor??
[  265.470268][ T4355] usb-storage 4-1:0.0: USB Mass Storage device detected
[  265.531268][ T4871] usb 3-1: USB disconnect, device number 7
[  265.738625][ T6440] loop4: detected capacity change from 0 to 512
[  265.754680][ T6440] /dev/loop4: Can't open blockdev
[  265.766928][ T6442] loop0: detected capacity change from 0 to 512
[  265.813930][ T6442] EXT4-fs error (device loop0): __ext4_fill_super:5397: inode #2: comm syz.0.584: inode has both inline data and extents flags
[  265.831013][ T6442] EXT4-fs (loop0): get root inode failed
[  265.837493][ T6442] EXT4-fs (loop0): mount failed
[  265.875068][  T127] usb 4-1: USB disconnect, device number 7
[  265.948332][ T6442] loop0: detected capacity change from 0 to 512
[  265.982359][ T6442] EXT4-fs: Ignoring removed oldalloc option
[  266.001813][ T6442] EXT4-fs (loop0): 1 truncate cleaned up
[  266.008988][ T6442] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  266.014373][ T6448] loop2: detected capacity change from 0 to 256
[  266.113936][ T6448] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  266.125467][ T6448] exFAT-fs (loop2): Medium has reported failures. Some data may be lost.
[  266.159362][ T4264] EXT4-fs (loop0): unmounting filesystem.
[  266.192634][ T6448] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  266.209399][ T6456] xt_NFQUEUE: number of queues (65535) out of range (got 65541)
[  266.342219][ T6458] loop4: detected capacity change from 0 to 2048
[  266.618369][ T6468] loop4: detected capacity change from 0 to 512
[  267.074203][ T6470] loop3: detected capacity change from 0 to 8192
[  267.532263][ T6468] /dev/loop4: Can't open blockdev
[  267.690451][ T6468] loop4: detected capacity change from 0 to 1024
[  267.743953][ T6468] EXT4-fs: Ignoring removed nomblk_io_submit option
[  267.781544][ T6468] /dev/loop4: Can't open blockdev
[  267.945944][ T6481] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  268.972684][  T127] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[  269.006406][ T6484] loop3: detected capacity change from 0 to 1024
[  269.229371][ T6490] loop4: detected capacity change from 0 to 256
[  270.394135][  T127] hid-generic 0000:0000:0000.000B: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  270.554843][ T4541] hfsplus: b-tree write err: -5, ino 4
[  270.672755][ T6498] loop1: detected capacity change from 0 to 1024
[  270.706077][ T6498] EXT4-fs: Ignoring removed mblk_io_submit option
[  270.712651][ T6498] EXT4-fs: Ignoring removed oldalloc option
[  270.712807][ T6500] loop3: detected capacity change from 0 to 1024
[  270.724128][ T6498] EXT4-fs: Ignoring removed nomblk_io_submit option
[  270.751515][ T6500] EXT4-fs: Ignoring removed nomblk_io_submit option
[  270.775153][ T6500] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  270.779059][ T6498] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  270.864968][ T6500] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  271.213855][ T6514] loop0: detected capacity change from 0 to 8192
[  271.756565][ T4273] EXT4-fs (loop1): unmounting filesystem.
[  271.820929][ T6517] loop4: detected capacity change from 0 to 512
[  271.843383][ T6517] /dev/loop4: Can't open blockdev
[  272.893758][ T6526] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  273.084024][ T4274] EXT4-fs (loop3): unmounting filesystem.
[  273.262223][ T6532] loop2: detected capacity change from 0 to 512
[  273.293854][ T6532] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  273.429065][ T6532] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2196: inode #15: comm syz.2.611: corrupted in-inode xattr
[  273.506103][ T6532] EXT4-fs (loop2): Remounting filesystem read-only
[  273.515655][ T6532] EXT4-fs (loop2): 1 truncate cleaned up
[  273.521380][ T6532] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  273.802047][ T6544] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=2993500019 (2993500019 ns) > initial count (2279559626 ns). Using initial count to start timer.
[  273.947411][ T6544] ------------[ cut here ]------------
[  273.953207][ T6544] WARNING: CPU: 1 PID: 6544 at arch/x86/kvm/x86.c:11235 kvm_arch_vcpu_ioctl_run+0x1e9e/0x2390
[  273.963981][ T6544] Modules linked in:
[  273.968085][ T6544] CPU: 1 PID: 6544 Comm: syz.0.615 Not tainted syzkaller #0
[  273.975780][ T6544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  273.986085][ T6544] RIP: 0010:kvm_arch_vcpu_ioctl_run+0x1e9e/0x2390
[  273.992580][ T6544] Code: e8 c7 3b c1 00 e9 4e ef ff ff 44 89 f9 80 e1 07 38 c1 0f 8c db e5 ff ff 4c 89 ff e8 8c 3b c1 00 e9 ce e5 ff ff e8 b2 0c 71 00 <0f> 0b e9 da fc ff ff 44 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c ae eb
[  274.012508][ T6544] RSP: 0018:ffffc9001d2ffc48 EFLAGS: 00010283
[  274.018860][ T6544] RAX: ffffffff810fc9ae RBX: ffff88804f7ecf80 RCX: 0000000000080000
[  274.027054][ T6544] RDX: ffffc900059f9000 RSI: 00000000000003cc RDI: 00000000000003cd
[  274.035125][ T6544] RBP: ffff88801db6c000 R08: dffffc0000000000 R09: fffffbfff215c470
[  274.043149][ T6544] R10: fffffbfff215c470 R11: 1ffffffff215c46f R12: ffff88804f7ed274
[  274.051350][ T6544] R13: ffff88804f7ed058 R14: dffffc0000000000 R15: 0000000000000000
[  274.059592][ T6544] FS:  00007f747895d6c0(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[  274.068598][ T6544] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  274.075261][ T6544] CR2: 000000110c3d8e74 CR3: 0000000029572000 CR4: 00000000003526e0
[  274.083479][ T6544] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  274.091497][ T6544] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  274.099566][ T6544] Call Trace:
[  274.102871][ T6544]  <TASK>
[  274.106280][ T6544]  ? mutex_lock_nested+0x10/0x10
[  274.111442][ T6544]  ? kvm_arch_vcpu_ioctl_run+0x139/0x2390
[  274.117819][ T6544]  kvm_vcpu_ioctl+0x887/0xb80
[  274.122765][ T6544]  ? xa_release+0x50/0x50
[  274.127549][ T6544]  ? __fget_files+0x28/0x4d0
[  274.132279][ T6544]  ? bpf_lsm_file_ioctl+0x5/0x10
[  274.137337][ T6544]  ? security_file_ioctl+0x7c/0xa0
[  274.142754][ T6544]  ? xa_release+0x50/0x50
[  274.147319][ T6544]  __se_sys_ioctl+0xfa/0x170
[  274.152240][ T6544]  do_syscall_64+0x4c/0xa0
[  274.156975][ T6544]  ? clear_bhb_loop+0x60/0xb0
[  274.161215][ T6553] kvm [6552]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0x100000000
[  274.161675][ T6544]  ? clear_bhb_loop+0x60/0xb0
[  274.174997][ T6544]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  274.175721][ T6553] kvm [6552]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc1) = 0x4000
[  274.180918][ T6544] RIP: 0033:0x7f7477b8f749
[  274.180944][ T6544] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  274.180961][ T6544] RSP: 002b:00007f747895d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  274.180987][ T6544] RAX: ffffffffffffffda RBX: 00007f7477de5fa0 RCX: 00007f7477b8f749
[  274.181002][ T6544] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  274.236186][ T6553] kvm [6552]: vcpu0, guest rIP: 0x1be Unhandled WRMSR(0xc2) = 0x4000
[  274.238781][ T6544] RBP: 00007f7477c13f91 R08: 0000000000000000 R09: 0000000000000000
[  274.255529][ T6544] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  274.259651][ T6553] kvm [6552]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x11e) = 0x0
[  274.263669][ T6544] R13: 00007f7477de6038 R14: 00007f7477de5fa0 R15: 00007fff0b66e5b8
[  274.263709][ T6544]  </TASK>
[  274.263720][ T6544] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  274.263730][ T6544] CPU: 1 PID: 6544 Comm: syz.0.615 Not tainted syzkaller #0
[  274.263748][ T6544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  274.263757][ T6544] Call Trace:
[  274.263765][ T6544]  <TASK>
[  274.263771][ T6544]  dump_stack_lvl+0x168/0x22e
[  274.263796][ T6544]  ? memcpy+0x3c/0x60
[  274.263819][ T6544]  ? show_regs_print_info+0x12/0x12
[  274.263838][ T6544]  ? load_image+0x3b0/0x3b0
[  274.263872][ T6544]  panic+0x2c9/0x710
[  274.263896][ T6544]  ? bpf_jit_dump+0xd0/0xd0
[  274.263930][ T6544]  __warn+0x2f8/0x4f0
[  274.263952][ T6544]  ? kvm_arch_vcpu_ioctl_run+0x1e9e/0x2390
[  274.263978][ T6544]  ? kvm_arch_vcpu_ioctl_run+0x1e9e/0x2390
[  274.264000][ T6544]  report_bug+0x2ba/0x4f0
[  274.264021][ T6544]  ? kvm_arch_vcpu_ioctl_run+0x1e9e/0x2390
[  274.264049][ T6544]  handle_bug+0x3a/0x70
[  274.264069][ T6544]  exc_invalid_op+0x16/0x40
[  274.264090][ T6544]  asm_exc_invalid_op+0x16/0x20
[  274.264106][ T6544] RIP: 0010:kvm_arch_vcpu_ioctl_run+0x1e9e/0x2390
[  274.264136][ T6544] Code: e8 c7 3b c1 00 e9 4e ef ff ff 44 89 f9 80 e1 07 38 c1 0f 8c db e5 ff ff 4c 89 ff e8 8c 3b c1 00 e9 ce e5 ff ff e8 b2 0c 71 00 <0f> 0b e9 da fc ff ff 44 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c ae eb
[  274.264150][ T6544] RSP: 0018:ffffc9001d2ffc48 EFLAGS: 00010283
[  274.264168][ T6544] RAX: ffffffff810fc9ae RBX: ffff88804f7ecf80 RCX: 0000000000080000
[  274.264181][ T6544] RDX: ffffc900059f9000 RSI: 00000000000003cc RDI: 00000000000003cd
[  274.264193][ T6544] RBP: ffff88801db6c000 R08: dffffc0000000000 R09: fffffbfff215c470
[  274.264205][ T6544] R10: fffffbfff215c470 R11: 1ffffffff215c46f R12: ffff88804f7ed274
[  274.264218][ T6544] R13: ffff88804f7ed058 R14: dffffc0000000000 R15: 0000000000000000
[  274.264236][ T6544]  ? kvm_arch_vcpu_ioctl_run+0x1e9e/0x2390
[  274.264262][ T6544]  ? kvm_arch_vcpu_ioctl_run+0x1e9e/0x2390
[  274.264280][ T6544]  ? mutex_lock_nested+0x10/0x10
[  274.264306][ T6544]  ? kvm_arch_vcpu_ioctl_run+0x139/0x2390
[  274.264332][ T6544]  kvm_vcpu_ioctl+0x887/0xb80
[  274.264355][ T6544]  ? xa_release+0x50/0x50
[  274.264382][ T6544]  ? __fget_files+0x28/0x4d0
[  274.264414][ T6544]  ? bpf_lsm_file_ioctl+0x5/0x10
[  274.264435][ T6544]  ? security_file_ioctl+0x7c/0xa0
[  274.264455][ T6544]  ? xa_release+0x50/0x50
[  274.264471][ T6544]  __se_sys_ioctl+0xfa/0x170
[  274.264494][ T6544]  do_syscall_64+0x4c/0xa0
[  274.264510][ T6544]  ? clear_bhb_loop+0x60/0xb0
[  274.264527][ T6544]  ? clear_bhb_loop+0x60/0xb0
[  274.264546][ T6544]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  274.264562][ T6544] RIP: 0033:0x7f7477b8f749
[  274.264578][ T6544] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  274.264591][ T6544] RSP: 002b:00007f747895d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  274.264609][ T6544] RAX: ffffffffffffffda RBX: 00007f7477de5fa0 RCX: 00007f7477b8f749
[  274.264622][ T6544] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  274.264632][ T6544] RBP: 00007f7477c13f91 R08: 0000000000000000 R09: 0000000000000000
[  274.264643][ T6544] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  274.264653][ T6544] R13: 00007f7477de6038 R14: 00007f7477de5fa0 R15: 00007fff0b66e5b8
[  274.264680][ T6544]  </TASK>
[  274.272302][ T6544] Kernel Offset: disabled
[  274.612395][ T6544] Rebooting in 86400 seconds..