last executing test programs:

8m59.988061697s ago: executing program 3 (id=188):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41100}, 0x94)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r0, 0x0, &(0x7f0000000b00)=""/151}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x52)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_generate\x00', r1}, 0x10)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)

8m59.794514462s ago: executing program 3 (id=189):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
pipe2$9p(&(0x7f00000001c0), 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x161642, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000003800)={&(0x7f0000000340)=ANY=[], 0x0, 0x3a, 0x0, 0x1}, 0x28)
socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x50)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000100)={r2, 0x0, &(0x7f0000000040)=@tcp=r1}, 0x20)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000000)={@multicast1, @local}, 0xc)
r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_NMI(r4, 0xae9a)
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x100000000, 0x0, 0x4, 0x100000, 0x0, 0x2004c8, 0x8000000, 0x0, 0x10001, 0x3, 0x0, 0x5, 0x0, 0x2, 0xffffffffffffffdf], 0x0, 0x200})
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f00000002c0)={[0x4, 0x5, 0x6, 0x4004, 0x2, 0x4, 0xefffffffffffffff, 0x0, 0x0, 0x2000000, 0x0, 0x1c, 0x0, 0xffffffffffffffff, 0x6], 0x0, 0x41901})
ioctl$KVM_RUN(r4, 0xae80, 0x0)

8m56.204375922s ago: executing program 3 (id=193):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x10a)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000001c0)={[], [], 0x2f})
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
r0 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r0, 0x0, 0xffffffffffffff44)

8m55.610441924s ago: executing program 3 (id=195):
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x80, 0x1, 0x28}, 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x0, 0x0, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x18)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, 0x0)
listen(r1, 0x2)

8m54.534326805s ago: executing program 3 (id=198):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000340)={0x14, 0x1, 0x4, 0x3, 0x0, 0x0, {0x5, 0x0, 0x3}}, 0x14}, 0x1, 0x0, 0x0, 0x4004000}, 0x4054)

8m54.414076627s ago: executing program 3 (id=199):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x44, 0x86}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f0000000480), 0x400034f, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000400007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='sched_switch\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0xffffffffffffff3e)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000600), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r4, &(0x7f0000001000)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f0000000000)=ANY=[@ANYBLOB="ec000000", @ANYRES16=r5, @ANYBLOB="01000000000000000000010000000800050001000000140002007767310000000000000000000000000024000300a0cb879a47f5bc644c0e693fa6d031c74a1553b6e901b9ff2f518c78042fb542080005000000000090000880"], 0xec}, 0x1, 0x0, 0x0, 0x4084}, 0x20000010)

8m39.088639489s ago: executing program 32 (id=199):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x44, 0x86}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f0000000480), 0x400034f, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000400007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='sched_switch\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0xffffffffffffff3e)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000600), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r4, &(0x7f0000001000)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f0000000000)=ANY=[@ANYBLOB="ec000000", @ANYRES16=r5, @ANYBLOB="01000000000000000000010000000800050001000000140002007767310000000000000000000000000024000300a0cb879a47f5bc644c0e693fa6d031c74a1553b6e901b9ff2f518c78042fb542080005000000000090000880"], 0xec}, 0x1, 0x0, 0x0, 0x4084}, 0x20000010)

2m23.534565927s ago: executing program 0 (id=1538):
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0xc40a, &(0x7f0000000180)={[{@noblock_validity}, {@dioread_lock}, {@nobh}, {@nojournal_checksum}, {@acl}, {@usrjquota, 0x2e}, {@grpquota}, {@nodiscard}, {@jqfmt_vfsv0}, {@noload}], [], 0x2c}, 0x84, 0x459, &(0x7f0000000900)="$eJzs20tvG1UbAOB3Jknv/ZKvlEsvgKEgIi5Jkxbogg0IpG6QkGBRliFNq1K3QU2QaFXRgFBZov4CYInEL2AFGwSsQGxhj5Aq1A2FBRo09tgYxw527NRp/TzSxOfMjH3e1zMnPjPHDmBolfI/ScSuiPgpIsYjYqR5h1L14eaNy/N/3Lg8n0SWvfpbkj8tfr9xeb62a1I87iwqk2lE+kESB1q0u3Tx0tm5cnnhQlGfXj731vTSxUtPnTk3d3rh9ML52WPHjh6ZefaZ2af7kufuPNb97y4e3Hf89Wsvz5+49sa3n+fx7iq2N+ZRNdFzm6Uo1d+TZo/2/Oqby+7isV2+bE55Xx+NiLFK/x+PkUqtajxeen+gwQEbKsuybOuqtfURwEoG3MGSGHQEwGDUPujz69/acguHHwN3/fnqBVCe981iqW4ZjbTYZ6zh+rbfShFxYuXPj/MlWt6HAADory/z8c+TrcZ/adzTsN//irmhiYj4f0TsiYi7ImJvRNwdUdn33oi4r8v2S0311eOfH7avK7EO5eO/54q5rX+P/2qjv5gYKWq7K/mPJafOlBcOF+/JZIxtzesza7Tx1Ys/ftRuW+P4L1/y9mtjwSKOX0ebbtCdnFue6yXnRtffq9wDvLI6/6Q+E5BExL6I2L+O198WEWce/+xgu+3/nf8aRtcRUJPs04jHqsd/JZryr0nWnp+c3hblhcPTtbNite++v/pKu/Z7yr8P8uO/o+X5X89/Immcr13qvo2rP3/Y9ppmvef/luS1SnlLse6dueXlCzMRW5KV1etn/3lurV7bP89/8lDr/r8n4q9PiucdiIj8JL4/Ih6IiAeL2B+KiIcj4tAa+X/zwiNvrj//jZXnf7Kr4999YeTs11+0a7+z43+0Upos1nTy/6/TAHt57wAAAOB2kVa+A5+kU/Vymk5NVb/Dvzd2pOXFpeUnTi2+ff5k9bvyEzGW1u50jTfcD50p7g3X6rNN9SOV+8ZZlmXbK/Wp+cXyRs2pA53Z2ab/534ZGXR0wIbrah7NL7zgjtKHeXTgNqX/w/DS/2F46f8wvFr1/ysRNwcQCnCL+fyH4aX/w/DS/2F46f8wlHr5Xf9ahT3HN+qV77TCyOYIo+tCpJsijI4KY8XZXl+TbpLAKoWtEdHpzlfiVgU24H9MAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAffJ3AAAA//+7l+jE")
chdir(&(0x7f0000000140)='./file0\x00')
open(&(0x7f0000000040)='.\x02\x00', 0x20840, 0x190)
r0 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r0, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)

2m22.622614304s ago: executing program 0 (id=1542):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0xf)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f00000021c0)='/proc/asound/timers\x00', 0x0, 0x0)
read$FUSE(r4, &(0x7f0000000180)={0x2020}, 0x2024)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bind$bt_sco(r5, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}}, 0xfc48)
listen(r5, 0x0)
syz_mount_image$udf(&(0x7f0000000080), &(0x7f0000000d00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x4000, &(0x7f0000000e00)=ANY=[], 0x2, 0xc36, &(0x7f0000002480)="$eJzs3U9sHNd9B/DfG+2KK6WtmNhRnDQuNm2Ryorl6l9MxSrcVU2zDSDLQijmFoArkVIXpkiCpBrZSAumlx56CFAUPeREoDUKpGhgNEXQI9O6QHLxocipJ6KFjaDogS0CBCgQsJjZt+KKIm1GFClK+nxs6rs7+97sezPrGVnQb18AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABG/9+qFk6fSwx4FALCXLo1+5eRp938AeKJc8f//AAAAAAAAAAAAAACw36Uo4qlIMXtpNY1Xz7saFzv1W7fHhkc273YoVT0PVO3Ln8ap02fOfvHFoXO9vNiZ/pD+D9pn4vXRKxear8zcnJ2bnJ+fnGiOTXeuzUxMbnsPO+2/0fHqADRvvnFr4vr1+ebpF87c9fLtwQ8GPnZ08PzQcyee7bUdGx4ZGV1v0uhvX7vvgXRtVeFxMIo4ESme/+5PUjsiitj5sWjs7bnf6FA1iePVJMaGR6qJTHXa0wvli5d7B6KIaPZ1avWO0ebnImr1PZ3D1loRi+XwywEfL6c3Otuea1+dmmxebs8tdBY6M9OXU3e05XyaUcS5FLEUESsD9+6uHkXUIsW3j6ymqxFxoHccvlAVBm89jmIX57gN5Tib9Yil4hE4Z/vYQBTxWqT46bvH4lq+zlTXms9HvFbm9yPeLvPliFR+MM5GvL/J54hHUy2K+PPy/J9fTRPV9aB3Xbn41eaXp6/P9LXtXVd+wfvDPVeKh3R/OLQh98Y+vzY1ooh2dcVfTff/mx0AAAAAAAAAAAAAAAAAHrRDUcSnI8Wr//ZHVV1xVHXpR84P/f7gL/fXjD/zEfsp274QEYvF9mpyD+bCwMvpckoPuZb4SdaIIv441/9982EPBgAAAAAAAAAAAAAAAAAA4IlWxI8jxUvvHUtL0b+meGf6RvNK++pUd1XY3tq/vTXT19bW1pqpm62c4zkXcy7lXM65kjOK3D9nK+d4zsWcSzmXc67kjAO5f85WzvGcizmXci7nXMkZtdw/ZyvneM7FnEs5l3Ou5Ix9snYvAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMDjpIgifh4pvvX11RQpIloR49HN5YGHPToAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoDSQivhepGj+QevOtlpEpOrfrmPlL2ejdbDMT0RrqMyXo3UhZ7vKWuubD2H87Ew9FfGjSDHQeOfOCc/nv959dudjEG9/Y/3ZZ2rdPNB7cfCDgY8dPXJ+aOTXntnqcdpsAMcvdqZv3W6ODY+MjPZtruV3/0TftsH8vsWDmToRMf/mW2+0p6Ym5+7/QfkR2EH3R+hBqj3OM60/uI/E4/IgavtiGA9n7jwByvv/+5Hit9/7994Nv3v/b8QvdZ/ducPHz/5k/f7/0sYdbfP+X9vYL9//y3v6Zvf/p/q2vZR/N1KvRTQWbs7Wj0Y05t9860TnZvvG5I3J6bMnT35paOhLZ07WD0Y0rnemJvsePZDDBQAAAAAAAAAAAAAAALB3UhG/GynaP1pNzYi4XdVrDZ4feu7EswfiQFVvdVfd9uujVy40X5m5OTs3OT8/OdEcm+5cm5mY3O7bNapyr7HhkV2ZzEc6tMvjP9R4ZWb2zbnOjT9c2PT1w40LV+cX5trXNn85DkUR0erfcrwa8NjwSDXoqU57uup6edNi+l9cPRXxH5Hi2tlm+lzeluv/N1b431X/v7hxR7tU///xvm3le6ZUxM8ixW/9xTPxuWqch+OeY5bb/U2kOH7us7ldHCzb9cbQ/V6BbmVg2fZ/IsU//Pzutr16yKfW257a9oF9RJTn/0ik+N6ffSd+PW+7+/sfNj//hzfuaJfO/9N92w7fVZy+46mTz/+JSPHyU+/Eb+RtH/b9H73v3jiWG9/5fo5dOv+f7Ns2mN/3Nx/M1AEAAAAAAAAAAB5p9VTE30aKH4zU0ot523b+/t/Exh3t0t//+lTftok9WpxmxwcVAAAAAPaJeirix5HixsI7d2qo767/7qv//J31+s/htOHV6s/5fqX63oAH+ed//Qbz+47vfNoAAAAAAAAAAAAAAAAAAACwr6RUxIt5PfXxqp5/Ysv11Jcjxav/9Xxul46W7XrrwA9WvzYuzUyfuDA1NXOtvdC+OjXZHJ1tX5ss+z4dKVb/+rO5b1Gtr95bb767xvv6WuxzkWLk73ptu2ux99Ymf3q97amy7ccjxX/+/d1te+tYf3K97emy7V9Fiq/90+Ztj663PVO2/U6k+OHXmr22h8u2ve9H/dR62xeuzRS7cFYAAAAAAAAAAAAAAAAAAAB40tRTEX8aKf775tKdWv68/n+972nl7W/0rfe/we1qnf/Bav3/rR7fz/r/1fcKLG71rgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8HhKUcRbkWL20mpaHiifdzUudqZv3R4bHtm826FU9TxQtS9/GqdOnzn7xReHzvXyw/s/aJ+O10evXGi+MnNzdm5yfn5yojk23bk2MzG57T3stP9Gx6sD0Lz5xq2J69fnm6dfOHPXy7cHPxj42NHB80PPnXi213ZseGRktK9NrX7f736PtMX2g1HEX0aK57/7k/SDgYgidn4sPuKzs9sOVZM4Xk1ibHikmshUpz29UL54uXcgiohmX6dW7xjtwbnYkVbEYjn8csDHy+mNzrbn2lenJpuX23MLnYXOzPTl1B1tOZ9mFHEuRSxFxMrAvburRxFvRIpvH1lN/zwQcaB3HL5wafQrJ09vPY5iF+e4DeU4m/WIpeIROGf72EAU8Y+R4qfvHot/GYioRfcnPh/xWpnfj3g7uuc7lR+MsxHvb/I54tFUiyL+tzz/51fTuwPl9aB3Xbn41eaXp6/P9LXtXVce+fvDXtrn16ZGFPHD6oq/mv7Vf9cAAAAAAAAAAAAAAAAA+0gRvxopXnrvWKrqg+/UFHembzSvtK9Odcv6erV/vZrptbW1tWbqZivneM7FnEs5l3Ou5Iwi98/ZKrOxtjaeny/mXMq5nHMlZxzI/XO2co7nXMy5lHM550rOqOX+OVs5x3Mu5lzKuZxzJWfsk9o9AAAAAAAAAAAAAAAAAADg8VJU/6T41tdX09pAd33p8ejm8oeuB/p/ezZGds//BwAA//+fEPY8")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='blkio.throttle.io_serviced\x00', 0x275a, 0x0)
symlink(&(0x7f0000000b00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000800)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.stat\x00', 0x275a, 0x0)
creat(&(0x7f00000002c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x61)
rename(&(0x7f00000003c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000f40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
connect$bt_sco(r5, &(0x7f0000000100)={0x1f, @none}, 0x8)
syz_create_resource$binfmt(&(0x7f0000001400)='./file0\x00')
r6 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002040), 0x2, 0x0)
mount$fuse(0x0, 0x0, &(0x7f00000020c0), 0x0, &(0x7f0000002200)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r6, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_i', @ANYRESDEC=0x0, @ANYBLOB="b157e239964a00002c04"])
syz_fuse_handle_req(r6, &(0x7f0000009b40)="de98ee653502c564abeb97fc678bde22efebcf99c2d89952950acc703a3c6268a54c8b1bd1ee165c82980cd315b55a070dc41deeb2d4c1842d936a0bcde5fd7ed6031fdd9cb58ebfe8261528f097f309813b5722c24a1af8e6bc6ddaef7e85d2659690154bc5e6ee73c3fe7176509ad7b30e1098fc9873db91d3c1816825e710374de8d40693578b598922d9c523cfff93a630f121251d17ad40bce021d7fd57945fe2a186618a40b5f3995a9f0ceaa3e22b57e4f68e53fffeb5474fb83afaf5cde6b0aaf5cf0313ede442ddf1df6c280921e43d80dddfd005969272e1719b37fd8f749fcde83f8201826b4cf5b1c1da394568aa7d8833dd11309f46422b0152ede5ab29b17bc1ae80147346155b20a98d6fc2650bec3fe73327c45cad1b38f7c983cd070556a8f8ed5d58e1052f6436fad905099d18fb3e62c2c36a1c2209a94c820e30e5234e77be3beb4cd183015d281e7bf39cdcf0f1e541211c75d64a49b55ba4c2c444bef36d98df66bea814bab91ed65386d6a491a6295c24dbaf752a5e7a856e0dfe46a6f9e718ca3919c6f8978b0fd65c9e389114e5afd8e9e2a575b854463b63f46d08795f0f1d0d48d6d610fd74e9238de32ee3fa2ffef550336341803c083ac1d749be6c5440bbe4bd3bc3015bcde2b4e2160ba266d281a9641f74d9348fb6fa8550d1e8a8362999452e40b75c412cfa77ab8e1aaf1a9e83c855ec9b7ada38690f0d2e59f67a1f3babbcda8011595ea720816c24726b833beaca0a9d11e7b99373601d27d18c9e29940503d3a12149fdc4fe0065c3d023d6e7712eb853df19f2b4b886e08d61629288ff16c2597d7fae5bfc8b41f92fc325ffe0f61683b1f661409bdd7c3d88a854f8393484f4669b5d9654fd3a0819a32110b9064539a7419c332629b3fc71da35b783ef7c693842ce83733a63f2e6af37989cfcb768ab8cea5d21b82a0e9f6fdcec26b0107708867dec54c4e739fe9b931b3c6da013bfae097c57f1e16ba54f9028e672511938a0ad9d681d7feebc65a2f5f588abd66261393f3ba02d7b2cf650a9f7c6a4ca55b4d41132908dc9c90e26f0da8e2259e3a2b63b2d9e27754e278827ab80438070698c690ec375a9aeb4193079a28a2a062961ba0e65af01644af063f3ebefda92c4986379f7b099b2fd3960929578736f09887fc5816cb1b982e5b121b79662d1674dd0c6e82627cf8c63e576e5c1eb0af9415ddc10ff880e8ae3ce8c4fb87b8f9d364974c2a1d8eba4e04bc2bc018bfabc435683b2551c0e4908570b930c4fd7c03ddb95e9ec1d1994e3df0305fdac4e5b914641ae25b0c469b194c0bb78ab04887cdc4262da468475b926a18254d23b4c44705aeca34ef8a7b04dd55a43f39996529a23804e054655c5ba8661f7c02737e7539650364928d62b9b8d80988232009acb54214f06640e9bc6614c0ce02e4a22dc8b91a0aad711e4fd01d7020b7c7185e41e27ce266b9f5aec682cbd4bba3240d6277b17b564937254f37afe580cba0b78c6b0cc81830eaf10d7cc1f7e918d49e935629fe6c24b4368a04af1b99f6981340ee031874f3d4b3a9ebc31719b3b775bfe1fdfa0460a3820bff6f61b49b11ac2ca00836a0c4a74aed92a619f34231196669b942e761538e64f965d23d4f7814256e876263fe5307985c4e6eb69c974f66276764e80ab1de3f5c55e7b2cfdb78dd183a85473e968918ad73f29a266c818b9bf9f62eed86df25b2577bb6d98e3996e94f5bdf119b869541a94eb3536c979c3d77cc0df7c0c48a902ca2f03f5ba5a8ef9431cf95f6fc89744e8440e1d5ebb837e30ef7541fbc27672c31566ac3676a173cb9e466a2d206ba1ebc2b985eddcd6ff937375fbc8415eba46f5ec68cfa9f3a669d41b078867dd9f5160ba45fa4719f32cf877d4b7a6d77c977533659f7c7ac22c68f5e93c1df6c2a3d45b55a4afd3355680aed864f6bbe13da2da28a4851f73c88e555f3bb1c34a21fc45ab6c28287902e8b5fcae6899c804f364cd878a8d1734462bb075cb7bc709cc2c5d7747c4c29a2fa9259752301c26b852b7993adf889d45dbe39094c9b7b168756e5b939ed10bb6df57b8f5e14352cfc7d8b03cda5b978b06cf2430af5db17177b1ef664bc4b00307f970c4fc606a6bab72125f62b0f59655c35b104da7af188a953cfc09b3aa0785abf330830fefedcc8bf9a11d5dc4b5642f679d45cb44fe61ab1d906345c1c345f6b8027bae9585580c20115d2504d9c83ab54ea2557b6d2dd3bc65fa29f091aa46a215e77621836154104e6969fa9107139a19f2e45cc6bf55422a0e1a6d037ad9e63df5f9cd2045e13ac2d6a15bc12008c4cd23782df7d41bfecc0037292d22c7b42f2cc1a22db7502332d9f4fa85f7640c8635b9469681adb6bcec2dfdf6926f1815156d80a835ae918527f549ea6df45f350f618dc1f3ca139759be28e35013034f8bbfd3fa1a8f302594213c18015305911f42e287f2d86f17d76f8a0ea03fb574c60c808669f9f4454fc2eaf0e93873f688e34bd3341f6874d5d8fe754172a751d6ab23dc1642220e7fb1071df0ee3c7e07c338915494a3b360bdc0b38ed221c2c2bc86b29744448b255802b3ddfe600c1d0f9acabb2185e4e9dae5e456d5825f516c857f63e72e4a5f3d45eaf11a0e3a5ad0ba30a0bf0f94cc99586fd202d6118bb6f9c272f6cbe39dd9b8b36ea7fa51dfe0bb87a633be11c16a14d1bce8492387696e195fa3c5f172690b4434aa2e91ce7d225d73b1983d2605ec725aae0ae402cd2f79fc202a307f1896f3dfcf8c0fd8b841dcfeda5d65bb7d76f7c2d2eb1b164c0368e9984f320a224d7d438bc5c699acbc18a587b7589e960af114afbc9f59243646557962fc2e0cb5b5bf160a313bcfd9ade3e140b808e9f19415808aa312ae9c9e8bcd5a47fc721eda59d10670088714984a71d5c0df8b68e675a8e31ec15a92ff6a04d17e0ef849c782b302d11f742efe6486ab904fd65c0aac4ec25c6d877b453dce80e894de703aa8b1e5d00701850f149fe437fd0944cb95e54a924a49bd86bb9a602cf2904fbd9e399f1cdcd0b45b6d8f872e285f9dfeaa26aa760074651393c6451b36c643dd0b7236ec7803d69cec1b09bf1b63fbb68ad7c01507f00083b184ff01a62096f386f4c8fdc85e93eecf3f4b384aec1c10ccc60d8109a6d887bd389c3406163f9600879f0e944443d783e8644f69344f6f44f7bbf1883cda7369c9b9904d991c01552135f158a0bbb7f40c354f292c034824d82c209ebc770f5b756768ae51d45f8875b59904a07090689e65b40625566eed5d209130db812f287b966ae21ba46a3a7a3a0360a4e284d8d91ba9ed9806ea063827c8dda0fa98f758cbfa523ac645421f444a40b95bb065a64256c19354b1ad5002bb7b2add9b5236ad64e9052734b9d263515683db121b5e4dc1eab244dd8fc0fc62d962834ba0b21aad872b127afc0a33c7869a3f213519aa2ef51bab9ab28ed18859fd8239841a6668fc614dedd099121ae6c220a143c119cb9bff9068f65d0554b4c12105e59a22e91203a08ab8c718ec62c42d7ebb7b495e9e1be8fb7e4aab2777025da37b48d9d7b97578841a73898a6eab994e250106e096390c77b0600537be881ab7d81e3cb468bf1fe318b1e804d8df9875e9b8da22e6244997317391cce608085a28b8d070d654a29afab324ba3eecf427b6dfd43501ec0db919f71a932897eb37fe3bd64ab5a34ec60011696298b74ddd7a3710d3e444cedcc5cdc357f9dd58e67dc0ed3fc8df6dad82b3c00b4290c3280c28f78df052ec9cdd9df025abe8834616eddd5bb93379c69092911cd60761e7d14b426a83e335bfc8bf67a14e01df7cefb6023f0c6556534b975ed889de0d96d968526372402ce3d21a2c5c64a449dc3ba4ee0b5ceabc2fa29679e225681c8e946dc94b48af024bb1633e1860c7d8c14500967f24e2f8f46db537232a4e9f4abf8408f53bb52b035bdb89917a6f2f4bd22403ad002c2d936b785ecd965177e9f6235787a185d0eca92532f1aab16756ae86ece13925ba4a1fd08125102ae08c428d073aa426c4e792b5a4acf618605df1707021ce1eed62da4ee87334e34edf43338a0076b8ec739e2c31071e10c6a853e19fbf25b8a356527a67c8f7696dc184e374f4641f4e5b0aa345f1e6c4bfeba3a392d9a994bc271717a051c98d6c5b1f3296caf4c01d80ffb75b6fbdd0a0583f9d4695a44a2878df0c09a85aaab14522320cc3d2611603a34e52da03677a60cc87cc3c689975e5b5366c82e040b6643b8865d8bea0c84cef9ff85245a8b4bc41af1a50775b29fe55e42ac4b29fe80ddaf02e8c9bd07cab823f3d9021ac88236525ec045688a2fc9c6df66f549b10720cebf09ead919524f071cd128fb7575c84190c698b420f89b3c11195b5d83022d1f7e48afc21203995caf8f9286dcd5bd51b65c1af1caadf5a1b3f12579066855ff851075adb959dc3e086a7fb4e9a27fe80e8f3c0959b042486310ae7b785b0612e0385e36f50d4cae3474dd000c3957955534b4907b9480e2e5d83dedbeb76cb78d893c5b64dd51e31abc8e8b4c56b96f67c4b6e43861d91681af3270aae1a8f50712bd97326ee46a2640285b2902f051071d5a3400e99b76459956ac6908688c314bd8e54365383a65b186a6386cc5218e41e0b386759de81bccf5aa68f8608831a9d33ad1af2bdbd8579c5921cd8c3dd2f3bf1f123c742e118c76e2f43618bb7885e44826b7417c9ca5a139d774c16fbf74c8969c038ba6a54f27bab46ecc94d6455188d8dc1edf1da715c8d9976226877096df4158eeecced2248c7b88de0dd11a076db1f06bae4adba8286dc39aa62a55233886e011622ae1cf97238914a55078a78908145295777dbbc4e0d34364e0f3daa9eba6fa54c085777b18c0523818ff8710dee4bfeb3db549c3f38dde73b99a7b1b219282407a4e0ab3794089e21f6f2045ab6254ac3703903edb302fb2f0f97e47cca7969ad6b5b6cf27314137a04d5f4f29c193cfc5540592ab1342a1a9cbd514a7b4d6b23f724a5d7bfa6ffe8e3d9de29b8661139f179a0fafecf234f19bee75c25faffc765e02377d83e0ad0a0029c08f5c71595bc1b2fe88f0fe958f3f1f8ba6821ab834cab9bc902b2d47bd4b5ed52b5b0d7b3bc999b2f68879be39ddcb0428ce3a617b68c11459b746651f413d9e9a098cd2b5c0fcfd0ea1db2cde1672818d7bc73b053015692f9e9259a0153e3c9ac5e73e3343dd350cfbcaa57be93cc881a35063aec2db4ed71df2b1bd90b5ecbd84f399d4530c5450d622188423e151cec49673dc633e503c497d53843f4824750dc09abae9f2f465e92888715b6879f5edbab7bcd58f0899e1430ffb5f3063450945cb0fb3b5c3088ed6966c54dddae3aab489a80341b45a17cac02ae62749f209a7e16ecdfd86b43569c7b34511c65474acf2b2c18834e158e20957bf2320e4a6b9d63caea93b3a7dd4f7ba54443aba1ac2b6f2b27e1bf6f17d3fd1582462e0debc7069bb70e219654cbb99adfed54ab94329382163f2ab6710bb581d189cb3449a02c917c1f2d1d5f51958ce605fdb0e37ae5f3cb3f123276d43b2c26ea948dee863e0b679ecddf0fe41ce78bbca30167c9c7d6b0e9193c98090facd7205a490727e1ac49bb4d639348a32546007459c61c27bf8df87dd2ed3f3228b8193422a72d15f848bac13c6ffa7b8a767cf04866feb7c7a81267d7a8e890128d4709e4873223578aa7febdd562403c6092c0a3f6e0650772ede935ab6ef95e375bcbfa395e23ef1d73532388b845a95f158dc845a123f798176c73e177926d39abd38a910d40653006375110be2f2c5f6efc87b31908be36dd07c8ba5853519a37dfc4dea981af855293f49a3270bb67cdc17b780fbf2a418fcec8953dae927909a6bbbdce230d23113efad9c02474682dafc63311050cb4f3f86c282ff29728eefac5c678360122b4ce221bcec82d24e053b63972d2e9a631a180b48bb8d2d4de7254d91a856071df51a1d87ca7eb5d19ac3def1fdd6ebd8f57c2c9e43cb6ff2fa00d27f279368f5ee29a84ba219a51d1f0f1965781164edbb3aa6209fbce6d40284fbb4a33f59bf9e1248100a623de16613eebc11f510b7718dde9f13b4c9b2b6a10dd932696cdb7fa4b5733b0377453471462762457d42038ebf8c0fb392ca7656ad1f050c326de75fffc698c48f5d809ae360ddb9856b9a54b811073233294bf91e46414441b6665f432201da12e49718b0d7929b6cbcbf310a09ce0d22f07ee5cfa8ffb9f03acd224641171ffafdf50f18be8fa3c907226cc1a6f3b16a776781a6396dbf09f689ad6bba4d537dad490a6f036a45ee3e224e6f519e44b7352ee3e7d3f0d89f8c7c8f54b6d2698c0298a07866c9d9ca09c96c2ac8efd7974294df6dd1bb0598debadb6135e7123bbfddf84870de54476a291586fc0e64784e65fdf78d462e8b51cbac38e7ff1878b11418f188220e3deb5367a2d90ad7d44395f6965cc6d680c59daac268c16814d1085302d0453b48e4a8ae78b8a5b6951a875ef42776f6d11955da7e5734a72b61cefcc6889b8f8d58db51ee78d7b1a8ffebd90e15a64654054767aaec24dd3b5f338b572496c8731049c10622b7f54fdfa43aaea316946291fee7bc9e64640e8bccf33fd1e8693b67020b49cf77faaaa8269e2fecc4e2b43c8c3378a4a9b9b85a4fe2c346c5512cda631542e0ff5706eba996f4f72e629b076d6be1966d44b1835ce664e3c6a4f18c68f5e32f900a0a167e547d5aa79c0aede966f83d00366a623ef8107e328654c8558d5e606f69a12b6c2a6fcbe0e08f945c4ad2738ed0b28d79c98514abe0819569c6e4f4751c665fd651aaa9ee392c330560ef6d57c0a97f0764f88433b2bf7641ba391634316b0ee1dac23a63be21270e50ea1ac24ac3b429a0b46c38dbd48c540bfb1e141b8b3df6caa179c7e54f2b7b1371e8eb05a30f13da95200ab70dc58325f6bea0ee9fe1f04154998df393f2b4ff4431363f3a7450fa5210e883d67620ae63cc41f72e74e26a0244de1ac722b6f1c1d293f7483b331a0efda65a4e4e9144547fe6dce2f4535e29048b07079329b63754bb124b9e046a6e97929b1f4a387765bf93804530791c9f649db6efbebebf46fa4f9af7ff2587130d0e70a32d4aab1dfbee6aadd1f3e5317e3d4c8cde75b1479bc3dd16ea35db3dca11cf1eb1d2bbac60b83605e171619d85fd4b6d0e24be8db76df12efef05eb87473b832e59f3039df44ef034e5e7546b399cc817a41b2f020286ff139072a5b909ebb185a3c955cf88f4a9929b2112e0a9ab43da0288ce3ea268ccc9f46f852d387f5d0a2831dfc8cb0bf593905ba376c069b8c9b70558ec826c5bf9835031199c4c6d84c913da7e9e7db49c1d34511d917b9ad3c40af0598737d58fd61b8f2adc46b73a284957a99943cf73414412fa5440a5f85b63c20794d122c267fba72bfcd0e2741642fd8ff5a0ae1ffd8b30d852c053d0e31f505ca13a21c0223a8ee77cdd92de1b9f87ebee4ea332e9d4573d7efb2ad3f50c35fb7a596c4edb4b72bf6df5a16ffe3c8a236f2cab8c0712ac26c2cbcc68c1dc45209b579c952c7d645642aeed7d60407ee2dc168179d536da950108e962c5c976d3a05bf5142466ee38939ee94e707a0135f99c99b5d6376f63c711e4f64950f08dbc931c812f34735d9eb1c5997770d8159068cdca2e0f192311ca438d613728b544d6a3e50ae0e4e6b1eb611ce55a96bb2f991d49173073d8547f5ede69d8b587a34bb8f637297a15ab4fc45f1384bbd19b3feab5fb81322ba831386eeb6067e55af374c1b1eb9613a6c41dfe2bbbcfad157dd042c67c44400b350f0dc40a8611f2e947f32ea3ac3f609027b5dbc95b157c13216fe7c35edcc82950bd4e38bcb02b63d2576489c331a222e013e73b5333694889b184bedbbb6fdd6fd40a62b1d5d494e68cd2aefc264f74bf70ef38373e599faaa326f574ae32b1aad86854af22db8c9673d14666aa7c0c3bbe0d76a835ba4b391552777ed20c5c6cd0aa84f3be73ca0a3c128914107fb8fc02220317fb111cf13398480cd3325582a7e55f4c4ef5a258bcd01a97615e95f89c8064d41d04340b88cd5f4b1d827a030637145d98422facadbbbce97dc3060402a7bfa73d7b4dde53184a0923c0ee29c6e8e2c35e396808df2481af6aab053b619fcb2833f14f87051c5461567c5f8dd40383a7521971775493f896e18c78bad8219f88258ea686652780c03ebafb63ecbfcb23e24d52a2f88a77ed3b2280637807a5e155f4fad7149b76841772471a3b77aa42e8058c0af1ac2be9d88b5152851708f1a77582b3e31702864ee6a244a38f3f95d9797a60cddeb5ddf08cc48fc677f03f9e717ebe7f472883e5a6a7df31ca4272228f26991460c537ebc8aecb6a0c34a763eb1f57124fbfafd6db4c21bedf6723b252aeb21eb1fd9f4f811fd3e2e764422964761b2ef3aaaf986a48f7be66f6387578f9492feebc97dfbc6bc97380394a5635dbe582e52a1fb18ea8fc4e53974c63d198cf0d878ba8a8d58688a037c0f753c7073337ef3da4c134ef939c98c8806d09943591e6013a1342de7c722f993fd7eb36ba8e8407d1ea60eb5724b0d6262c70469dbd8ea1956b8d7f5a77707a9cbe2137079e7abda3966c5bee4fd86e8a3c4969bc88ff328a2adc8f4546f647575866d5ced16df06bf40d9a5f178f9d19e490bd76e187c441e7de0e571f6cea5512ec9bea48903d91a519dc82defe34a06b0244d623090b5a250786bbc66c1e76db6b18d81ed33c81a7c93782d5cdbe0a7cf7d1ab29c04be6ff4a9bbc10f716a67d52fd52d91425abd2002cf83c3797861db5fbeaec745a552ca4a50604340f2cf2c1b10e9ba76c8ea43b283c73f774f8be213f17f70cf93b9f6a8bab1f516a935e80c3cc6756945edafd572e6e00840eedf61fc40351869f03562d8c13006de585a1141c02f1311fbc8e45e4b3878c32810698e4764a6e8495f165eefee35714a1794f9ab50897c5565ab745425933d9d6272a172c1f2a274f9ca7bc8e1b01a27b8bd06fd9dc61880789696348c99e9a70c9dd2a62ca04d1f86dc87380b618c2a78b16229d614702fce242fa17ea90cda2648f9375bf7e78b4267d558983e08a9566d95871998d23cc6d22c23370ae067b677609844abc140df81cbd9addbf657fffaab5c22c479acca18f3e4b508cf01ff7b2ca308ff116389790f26f2c7635f89c747a5bc66f61de575653069349a89fd7e3dd785266b7bccf16eb8b4a8a86751de60d33e17d64f6e4e0f9d13a16d243ad7364114db7ad011f094c4debf20a39e35e7eeb440bbe8811db2857b965edd1e2675ceb1bc9a1691f123dedb341962fbbe539485d2241b0409adce2587d035187a0dd5a62076ac4eb5c3e2f4455569b6eac0fc16155da1774cbe505dc92e2087585a7846bae699bef32e3c5ec2356dd4433ed29d4b03ff7b38f7b3cb96b92874eefda6c2e0e326214e40f14cc2ef80e1cd3fe226257a423b8ff5bb368b87ac7066c5136487775b5b122a858334c37f6a3f53d758c3c866e2e79daf9aeab36a59eddbae2fa5b6d20973014196ef0a4cde1373c7297833e6f1e46828f4a42eebd829dd4f17999abe285218ed5dc6007b21bceb588a213b29dbb1ab1a79b41a12df26fe35f0cf6a310c9e50cf10d71ad5960626e4efec211032ec4ae52512001362ba4108d86eb774d2d4d0364cbb1dae68f03a774e328c2dc09899ee80c05ac2a8e3ba905b0b3b7a08a3df20b505901123e7dc0a15db48d09c84189ca4345c23c2010c12cc35287fad30211cab9631e148a7c1e8bfab61ced30e098d1c3cf7b6a7fbd8288dfdc48044d0d47c17f129f6b5d751af1984d395ab1b08ccca3e7309a89a8a36dfc3fb82d2a4269bffc32571438d04a7b98137b46ae1fea1bd9ea64f99e2f0c5f12ed84886b10bbd511993b0447036c4e57b9dae6d5bdad6aa3f2d12e62471194e43111613b8b6944c2baf1f539ea14dd76c356bfef7e3d4b6fb91f6d321a796a4bce5a4c6a5caaf0f3eccd914dea21ae909be7ba486075ff6139e7e351fdd7e98013ba51ff0248852398c734f245ffd7fde8cacfa4805496ad7350b1c96d7bf9da9be492f2f414e973937ac9109b6e8b8315aa9b81840f2c21239caf85a28f0e590bb6ad12148e75bd4d7ea69a9ffb053781db98d5fb5aca30a734017be7683a559c203c006ecd4b135afe3650b906e0aa208c889f2af09f3f8263260c3bd07cf8021124b6f0e0d021f9839e47996905c3d7562df810484552de3bcc9ae054b62a01af6a7991e4d63f30c7a92d8b58e01052e53818e64d7540a3208af321709a5d891ceecae5d27a999b00ed01616a73ec8854ca61973ed1fd3d82f8628b215c55eb7908e297d77098a7b0c362709005a7d13c89c54556589b2a926c6e08cc1c0afebc7eeb5d7ae4ef0507c91b8e706e6dbf83d898819192c812554ad1c6377871a8ca50f1325630f7b5266b807ef61d0c8d399fada49cb02a14c16d39f4fa7b81272573808e761c9dce7cfd12f4f18dd06b0ee471c166e095bf84aa4aaa2d82f1afcf09e5d960257c0a8dc404225b4b62187829c59e57da50bf848d72fabfb69362c117c6913541f84095a2a4ccdd2d30860cd96640bb2315e435a4af08c62c584ad129300adb02a871f3c548b96c4f6c47efdf4a1163a8a5ba9b4766b01437bc5957324660a8cd87df0f7e000d1309e896e3ce9f57b17562c9368a95a4cf66b3a5b57f0cca563b045452bbc8ad07b96fd0322728ccb3b05bfda14ef36ecfa2f32c5aa899811a67f2d62ed970db5723d6e4e4913c98c81ed6c03469112c23549f7e20be6401c6544db9078f34e6a4ad3cc868bace2e7ec6ea17225986f9e941ec67d9a3fc57958f9df8a60f585aa38b1769e26ed3f68dd85685b2cefae9dd72a18abc0de6b94689785df377ef4a812a6abc7f738a396f0e99ccbc5731801c36e746ab6b1dda88ca6ecb899528e18543cb3dfd439cd5be566594f01a4533da3638e6331fedf5b67870938ad044aa0dfdae33e3a6258ad40baadd726eacb1f3c1eb8d83ef4e185d7603a4f1eb006d90bf5849e2f65d37ffe750eb061bbad08a0c0cfabb9abf7f27d36ee5687d23feaa923e09d2ae905410a9193f21ed9b1d6331bb1f3babb90da2f2e023a6ceda4b4fe0f5d864738ee7f65a0b136021fbe076b4adf2d3af760e1361bad7ae35cb7ca010ddf4488255a2d3c492d0b26a1a5643f998b5d04a52a59f176d9bda85c916ff901329f09fe953b030b92f6415172476ad89d3e8cdcb4eda7dde5d4fcd5d6a584a312563558e784b0f9bcea7c53d26c3f2d3350c70a5e06a67c4c0373dd6279e29c320e6580fba8ab2df3039c289235c066af1b07dd112f25b25e292020f36c1aba246cba4e054d64b38f53ed57a712dffad7d3dc97f86af511638a2779107fc55da63b6498ea5f3ae36883163e5bf2324211a61a9889278f828e58daae797fdba9218d322da7aa23db7a48a00", 0x2000, 0x0)

2m20.590986265s ago: executing program 0 (id=1548):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x3)
ioctl$GIO_UNIMAP(r0, 0x4b66, &(0x7f00000001c0)={0x0, 0x0})

2m20.295826461s ago: executing program 0 (id=1549):
syz_mount_image$hfsplus(&(0x7f00000003c0), &(0x7f0000000100)='./file0\x00', 0x201048c, &(0x7f0000000300)=ANY=[], 0xfd, 0x644, &(0x7f0000000cc0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./bus\x00', 0x141842, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r1 = open(&(0x7f0000000240)='./bus\x00', 0x1c7102, 0x1)
sendmsg$nl_route(r0, 0x0, 0x20004000)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x28011, r1, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080))

2m18.997775206s ago: executing program 0 (id=1555):
socket$key(0xf, 0x3, 0x2)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r0 = getpid()
setitimer(0x2, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000180)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="01000000040000000400000008"], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000015000000181100", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x13, 0x13, &(0x7f0000000080)=ANY=[@ANYRES32, @ANYBLOB], 0x0, 0x2, 0xde, &(0x7f0000000340)=""/222, 0x0, 0x8, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
socket$nl_audit(0x10, 0x3, 0x9)
r5 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCETHTOOL(r5, 0x8946, &(0x7f0000000080)={'bridge0\x00', &(0x7f0000000040)=@ethtool_link_settings={0x4c, 0x0, 0x3, 0x2, 0x8, 0x0, 0x9, 0x0, 0x0, 0x3, [0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4], [0x9, 0xffffffc0]}})
r6 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r6, 0xae60)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, &(0x7f0000000680)=ANY=[@ANYBLOB, @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = syz_kvm_setup_syzos_vm$x86(r6, &(0x7f0000bff000/0x400000)=nil)
syz_kvm_add_vcpu$x86(r7, &(0x7f0000000000)={0x0, &(0x7f0000000a80)=[@cpuid={0x14, 0x18, {0xc, 0x9}}, @rdmsr={0x32, 0x18, {0xb6d}}, @rdmsr={0x32, 0x18, {0x82d}}, @code={0xa, 0x64, {"4d0fc7ac847500000066baf80cb89473bf81ef66bafc0cedb9800000c00f3235000800000f30440f20c0350f000000440f22c0c462dd9374de00430f3566430fc7b0474a008b0f790cbc66ba4300ed360f20a7"}}, @cpuid={0x14, 0x18, {0xb3ce, 0x2}}, @cpuid={0x14, 0x18, {0x9, 0x7}}, @uexit={0x0, 0x18, 0xb}, @wr_crn={0x46, 0x20, {0x2}}, @wr_crn={0x46, 0x20, {0x2, 0x2}}, @wr_crn={0x46, 0x20, {0x4, 0x5}}, @uexit={0x0, 0x18, 0xb7bc}, @wr_crn={0x46, 0x20, {0x4, 0xfffffffffffffff9}}, @cpuid={0x14, 0x18, {0x6, 0x5}}, @wrmsr={0x1e, 0x20, {0x295, 0x1}}], 0x1c4})
ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000240)=@arm64={0x8, 0xe7, 0x9, '\x00', 0x5})

2m17.626676603s ago: executing program 0 (id=1561):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
ioctl$sock_SIOCINQ(r0, 0x541b, &(0x7f0000000180))

2m17.305895679s ago: executing program 33 (id=1561):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
ioctl$sock_SIOCINQ(r0, 0x541b, &(0x7f0000000180))

7.959744313s ago: executing program 4 (id=2202):
r0 = socket$nl_route(0x10, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = fsopen(&(0x7f0000000040)='fuseblk\x00', 0x0)
read(r1, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400010bce)
r2 = syz_open_dev$MSR(&(0x7f0000000380), 0x0, 0x0)
setsockopt$bt_BT_FLUSHABLE(0xffffffffffffffff, 0x112, 0x8, &(0x7f0000000000)=0x3, 0x4)
mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x110, r0, 0x425c0000)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_emit_ethernet(0x46, &(0x7f0000000000)={@broadcast, @random="ec57bf96e780", @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "120008", 0x10, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x8, 0x0, 0x2}}}}}}, 0x0)
syz_emit_ethernet(0x4e, &(0x7f0000000200)={@link_local, @multicast, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "010448", 0x18, 0x3a, 0xff, @remote, @local, {[], @ndisc_na={0x88, 0x0, 0x0, 0x0, '\x00', @remote}}}}}}, 0x0)
r3 = socket$unix(0x1, 0x2, 0x0)
setsockopt$sock_int(r3, 0x1, 0x10, &(0x7f0000000000)=0x2, 0x4)
connect$unix(r3, &(0x7f00000004c0)=@file={0x1, './file0\x00'}, 0x6e)
connect$unix(r3, &(0x7f0000000300)=@abs={0x1, 0x0, 0x4e22}, 0x6e)
r4 = socket(0x10, 0x3, 0x0)
write(r4, &(0x7f0000000080)="140000001a004f7fb3e45f2024d2f1c9fb470000", 0x14)
sendto$inet6(r4, &(0x7f00000003c0)="773b7a8a0594caaf9dadf7e6d773fa85f87475c1482bdcd94f7232039edc49370a6f771dfcfcb4a7f3d07555783a5e334109308e20d79521fd6c327c4f7e08081f0c959278f342a22701a5d4e3cf3fe0074dd2b376249aff4ade487c9927e293b4bd28c18d603374fd736657b90a768936c7cd021f1ac5f29cda121c0b0c5b9f84bb8072becd2583006249", 0x8b, 0x40, &(0x7f00000000c0)={0xa, 0x4e22, 0x26, @loopback, 0x40}, 0x1c)
recvmmsg(r4, &(0x7f0000005c80), 0x1b, 0x10122, 0x0)
mlockall(0x7)
syz_mount_image$squashfs(&(0x7f0000000040), &(0x7f0000000240)='./file0\x00', 0x210c00, &(0x7f0000001480)=ANY=[], 0x1, 0x1ab, &(0x7f00000009c0)="$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")

5.938365313s ago: executing program 6 (id=2211):
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000280)='./file1\x00', 0x2008000, &(0x7f0000000000)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000"], 0x1, 0x2bc, &(0x7f0000000440)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000440)='./file0\x00', 0x1810714, &(0x7f0000000200)={[{@journal_dev={'journal_dev', 0x3d, 0xcd29}}, {@noblock_validity}, {@init_itable_val={'init_itable', 0x3d, 0x1002}}, {@journal_dev={'journal_dev', 0x3d, 0x2}}, {@oldalloc}, {@jqfmt_vfsold}, {@usrjquota, 0x5}, {@min_batch_time}, {@nodiscard}]}, 0x1, 0x451, &(0x7f0000000d00)="$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")
inotify_init()
r3 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r3, &(0x7f0000000080)={0x10, 0x0, 0x25dfdbfe, 0x80201469}, 0xc)
r4 = syz_open_procfs(0x0, &(0x7f0000000200)='net/netlink\x00')
read$msr(r4, &(0x7f0000000040)=""/59, 0xffb5)

5.420096523s ago: executing program 2 (id=2213):
sendmsg$MPTCP_PM_CMD_GET_LIMITS(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0xffffffffffffffb4, 0x0, 0x1, 0x0, 0x0, 0x41}, 0x809d)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = getpid()
r3 = syz_pidfd_open(r2, 0x0)
setns(r3, 0x24020000)
syz_kvm_add_vcpu$x86(0x0, &(0x7f0000000140)={0x0, 0x0, 0x2b2})
umount2(&(0x7f0000000040)='.\x00', 0x2)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r4, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r4, 0x0)
preadv(r4, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
write$cgroup_pressure(r4, &(0x7f0000000280)={'some', 0x20, 0x23, 0x20, 0xed9d}, 0x2f)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000499000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f320f300f20e06635800000000f22e02b6aa6c8", 0x4a}], 0x1, 0x0, 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20004840}, 0x14)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x0, 0x0, &(0x7f0000000000)='GPL\x00', 0x2a7, 0x0, 0x0, 0x40f00, 0x24, '\x00', 0x0, 0x0, r4, 0x8, 0x0, 0x0, 0x10, &(0x7f00000002c0)={0x2, 0x9, 0x5, 0xb}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3ff}, 0x94)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

5.192071208s ago: executing program 4 (id=2215):
r0 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
ioctl$USBDEVFS_SUBMITURB(r0, 0x802c550a, &(0x7f0000000180)=@urb_type_iso={0x0, {0x1, 0x1}, 0x0, 0x2, 0x0, 0x0, 0x7172, 0xa8b, 0x0, 0x0, 0xfffffffe, 0x0})

3.382455564s ago: executing program 4 (id=2219):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x40, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f00000002c0)={0x3cd3c7a703facd57, 0x0, [0x8000000000000001, 0x1000000000000, 0x5, 0xe, 0xffff, 0xffffffffffffffff, 0xb1f, 0xd]})
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000280)=[@text16={0x10, 0x0}], 0x1, 0x72, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000200)=[@textreal={0x8, 0x0}], 0x1, 0x10, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

3.341615374s ago: executing program 6 (id=2220):
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
write$cgroup_subtree(0xffffffffffffffff, 0x0, 0x33)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000140)={0xffffffffffffffff, 0x58, &(0x7f00000000c0)}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_deliver\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x52)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000130000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0xffffbfff, 0x1, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000810018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00'}, 0x10)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={0x0, &(0x7f0000000040)=""/155, 0x1000000, 0x9b, 0x1}, 0x20)

3.05020498s ago: executing program 2 (id=2225):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000400)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f00090581", @ANYRES8], 0x0)
syz_usb_control_io(r0, &(0x7f0000000b00)={0x2c, &(0x7f0000000040)=ANY=[], 0x0, 0x0, 0x0, 0x0}, 0x0)
r1 = syz_open_dev$hiddev(&(0x7f0000000080), 0x0, 0x0)
ioctl$HIDIOCGUSAGE(r1, 0xd01c4813, &(0x7f00000000c0)={0x2, 0x992bbab7691145f5, 0x0, 0x8df5, 0xfffffffd, 0x2})

3.013678961s ago: executing program 6 (id=2226):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xf, &(0x7f0000000440)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x1}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00', r1}, 0x10)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180500000000c800000000004b64ffec850000007d000000850000002a00000095"], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='\v\x00\x00'], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1, 0xc, 0x0, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x4e, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$FS_IOC_READ_VERITY_METADATA(0xffffffffffffffff, 0xc0286687, &(0x7f0000000100)={0x1, 0x7, 0x6f, &(0x7f0000000400)=""/111})
clock_gettime(0x0, &(0x7f0000003000))
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000))
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file2\x00', 0x101042, 0x40)
symlinkat(&(0x7f0000000000)='.\x00', 0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00')
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
linkat(0xffffffffffffff9c, &(0x7f00000006c0)='./file2\x00', 0xffffffffffffff9c, &(0x7f0000000700)='./file7\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000340)='./bus\x00', &(0x7f0000000b80), 0x200008, &(0x7f0000000380)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file1'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@index_on}, {@metacopy_on}]})
syz_mount_image$fuse(&(0x7f00000001c0), &(0x7f0000000240)='./bus\x00', 0x322020, &(0x7f0000000240)=ANY=[], 0x1, 0x0, 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000780)='./file7\x00', 0xffffffffffffff9c, &(0x7f00000007c0)='./file1\x00', 0x0)
openat(0xffffffffffffff9c, 0x0, 0x42, 0x0)
ptrace$ARCH_SHSTK_STATUS(0x1e, r3, 0x0, 0x5005)
socket$key(0xf, 0x3, 0x2)

2.939814992s ago: executing program 4 (id=2227):
bpf$MAP_CREATE(0x0, &(0x7f0000000ac0)=ANY=[@ANYBLOB="0f00000004000000080000000b000000000000", @ANYBLOB="0000ecffffffffffffff000000000000000000ef", @ANYRES32=0x0, @ANYRESDEC, @ANYBLOB="0602810000000000000046c705929108621e4b5372df01356cc0c044b813db55a22e75c23ccd33c504a3ac73371e4b463d603f82261e69d235bb09b0848fb7a047078de5b5ea523ec20d2b158d51ff249fdb262032e55554e1e14bce341ea4659d932a723bd8db01823f59ad262729113e0d9d78429baa7ba5552746e18edace64977ab0e1a281e930e4e1ca9ab0c1511324bcc64852cacabfc98fdfa26b627b55d4c9e9de4ca212c58712fbfb65e32c3b0a9ef14d101a1465d4af931f465c51b8fb27a613b683b284f9d4949c1f689e76464b78f90cbaf67e5906ae791f08dec473cb08496c629453d9a336"], 0x50)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r0=>0xffffffffffffffff})
keyctl$KEYCTL_MOVE(0x1e, 0x0, 0xfffffffffffffffe, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYRES16=r0, @ANYBLOB="e7c5cb6f236908b08f0ef1a3e006cc06dee258f03c58c9967b35299df4746cd21d50d40432ab2ebd46d0dfd5cc8a44dfd4047be439d70a43c9a7e573fbfad269c35bfe170d1834d9c3bddc0569985a367ee3690c1aa6e53dae874bfe59c29d24350c7486e76af7781337f839aef7ae1bc6e26f074b80c5b15bd25058548d4fdedaac8cb547a73ff3f7dc4f7870666d1cf23d215147e8a67899aff7322546e15266e69bfc9537be63e42f3f61ceec637b5e302035562b6d6612f5bf52abdd4a331684e47f9a493e10325e5c29226e8e1b625fbf4574629f342193c8"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r1, <r2=>0xffffffffffffffff}, 0x0, &(0x7f0000000380)=r0}, 0x20)
pipe(&(0x7f0000000180)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = socket$inet_udp(0x2, 0x2, 0x0)
close(r5)
socket$key(0xf, 0x3, 0x2)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x204c801)
r6 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r6, 0x0, 0x0)
write$binfmt_misc(r4, &(0x7f0000000040)="63e8638dc24afd7841025f8b673d6861c19fd219891dd51573954e9b701f58d6738a1a02a47501198a948cde96fe", 0x2e)
splice(r3, 0x0, r5, 0x0, 0x4ffe6, 0x8)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000300)={r2, &(0x7f00000002c0), &(0x7f0000000400)=""/212}, 0x20)
creat(&(0x7f00000001c0)='./file0\x00', 0x8)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r7=>0xffffffffffffffff})
r8 = syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f00000000c0)='mnt\x00', 0x4, &(0x7f0000000000), 0x0, 0x236, &(0x7f0000000300)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000640)='mnt/encrypted_dir\x00', 0x0)
r9 = openat(r8, &(0x7f0000000140)='./file0\x00', 0x40, 0x193)
ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r9, 0xc0506617, &(0x7f0000000580)={@id={0x2, 0x0, @a}, 0x40, 0x0, '\x00', @a})
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r10 = openat(0xffffffffffffff9c, &(0x7f0000000680)='mnt/encrypted_dir\x00', 0x800, 0x0)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r10, 0x800c6613, &(0x7f00000006c0)=@v2={0x2, @aes256, 0x0, '\x00', @a})
syz_mount_image$vfat(&(0x7f00000001c0), &(0x7f0000000200)='./file0\x00', 0x145406, 0x0, 0x44, 0x0, &(0x7f0000000000))
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY_ALL_USERS(r10, 0xc0406619, &(0x7f0000000080)={@id={0x2, 0x0, @a}})
connect$unix(r7, &(0x7f0000000300)=@file={0x1, './file0\x00'}, 0x6e)

2.640752228s ago: executing program 1 (id=2228):
socketpair$unix(0x1, 0x2, 0x0, 0x0)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x42202)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000280)={0x0, 0x0, 0x0, 'queue1\x00'})
write$sndseq(r0, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32}], 0xffc8)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f0000000180)={0x217, @time={0x65757100, 0x8000008}, 0x0, {}, 0x67, 0x2})
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./bus\x00', 0xc0d6, &(0x7f00000000c0)={[{@noload}, {@discard}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x3}}, {@errors_remount}, {@lazytime}, {@minixdf}, {@noquota}, {@usrjquota}]}, 0x1, 0x45b, &(0x7f0000000b00)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x88040, 0x0)

2.470127961s ago: executing program 1 (id=2229):
write(0xffffffffffffffff, &(0x7f0000000000)='$\x00', 0x2)
r0 = socket(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = getpid()
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
sendmmsg$unix(r6, &(0x7f0000002380)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000002300)=[@rights={{0x14, 0x1, 0x1, [r5]}}, @cred={{0x1c, 0x1, 0x2, {r4}}}], 0x38, 0x4000080}}], 0x1, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=@gettaction={0x28, 0x5a, 0x1, 0x0, 0x0, {}, [@action_dump_flags=@TCA_ROOT_FLAGS={0xc, 0x2, {0x1}}, @action_dump_flags=@TCA_ROOT_TIME_DELTA={0x8}]}, 0x28}}, 0x0)

2.317358855s ago: executing program 6 (id=2230):
r0 = syz_open_procfs(0x0, &(0x7f0000000200)='net/netlink\x00')
read$msr(r0, &(0x7f0000000040)=""/59, 0xffb5)

2.215062237s ago: executing program 5 (id=2231):
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f00000002c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@allow_other}]}}, 0x0, 0x0, 0x0)
statfs(&(0x7f0000000080)='./file0\x00', 0x0)

2.211166667s ago: executing program 4 (id=2232):
syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000040)='./file1\x00', 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="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", @ANYRESHEX=0x0, @ANYRESHEX], 0xf, 0x2a4, &(0x7f00000001c0)="$eJzs3T9rc2UUAPBzkzSNOqSIiyJ4QQen0rq6NEoFsZMSQR002BYkCYUWAlYwduoncPR7+BFcXPwGgqvg1g6VKzf33ia16R/65k3h7e83nd7nnvOc3KckU06+eXPY3z1I4uTsz2i1kqhtxVacJ7EWtaj8FI0AAF4c51kW/2QPyWzUFt8NALAMxed/4bF7AQCW47Mvvvyks7Oz/WmatuL19umom0TE8HTULdY7+/FdDGIvNqIdFxHZpSL+6OOd7WikubV4ZzgedfPM4de/l/U7f0dM8jejHWvz8zfTwmX+y1V3aXT2V6o/2vHa/Pz3/p8fw3F0m/Hu2zP9r0c7/vg2DmIQu5HnTvN/3EzTD7Ofz374Kt8mz09q0V2d3DeV1Zd0JAAAAAAAAAAAAAAAAAAAAAAAPAHraZoU43sm83vyS5P5OaNu/WKyvp5WZuf7jKv5QElVqJgPlEU5omecxS/VfJ2NNE2z8sZpfiPeaPhhAQAAAAAAAAAAAAAAAAAAAMgdfX/c7w0Ge4cLCappANXX+h9aZ2vmyltx3O/Vby64ev+9ZqcN5L3eenM0GrGgx3JX8FLez8Irr04P9/MogupgFrrXqx8URY/7vbRcqh5yv5fctVerOrhfZ5ea8ayNZZN/iYvs6pm2Llu9mtVc0NNovjJ36d8sy+5X5/2/ijMqrySTERv3232lDOa+wDxoXT+L324ueONbRn0hbzwAAAAAAAAAAAAAAAAAAMA10y/9zlk8uTW19tyaAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAlm/7+fxW0IuLqlWvBuEy+7Z4yaMbh0SO/RAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAJ6A/wIAAP//4ipOSw==")
r0 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
r1 = getpid()
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, 0x0, 0x0, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
sendmmsg$inet(r4, &(0x7f0000001480)=[{{&(0x7f0000000100)={0x2, 0x7e20, @local}, 0x10, 0x0}, 0xffffffff}], 0x47506a3973972019, 0x2000c044)
ftruncate(r0, 0x2007ffc)
r5 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000bc0)='./binderfs/binder0\x00', 0x800, 0x0)
ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f0000000d40)={0x14, 0x0, &(0x7f0000000c00)=[@increfs_done={0x40106308, 0x3}], 0x0, 0x0, 0x0})
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x107842, 0x0)
sendfile(r6, r6, 0x0, 0x80000000)

1.653060707s ago: executing program 5 (id=2233):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000040), 0x4)
syz_emit_ethernet(0x1fa, &(0x7f00000004c0)=ANY=[@ANYBLOB="ffffffffffff00000000000086dd665ff63e01c433"], 0x0)

1.50656377s ago: executing program 2 (id=2234):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
bind$bt_l2cap(r0, &(0x7f0000000000), 0xe)

1.423314502s ago: executing program 6 (id=2235):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000700), r0)
sendmsg$ETHTOOL_MSG_LINKINFO_SET(r0, &(0x7f0000000900)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f0000000840)={0x20, r1, 0x109, 0x4, 0x25dfdbfd, {}, [@ETHTOOL_A_LINKINFO_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x80)

1.422352172s ago: executing program 1 (id=2236):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$bt_hci_HCI_DATA_DIR(r0, 0x0, 0x1, &(0x7f0000000200), 0x4)

1.258360805s ago: executing program 1 (id=2237):
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
write$cgroup_subtree(0xffffffffffffffff, 0x0, 0x33)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000140)={0xffffffffffffffff, 0x58, &(0x7f00000000c0)}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_deliver\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x52)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000130000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0xffffbfff, 0x1, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000810018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00'}, 0x10)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={0x0, &(0x7f0000000040)=""/155, 0x1000000, 0x9b, 0x1}, 0x20)

1.195036496s ago: executing program 2 (id=2238):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000180)="420fc7bc4898580000640f01c50f01c566baf80cb864c95782ef66bafc0cec67670f1b0166b8fb008ec046d9c3c442b90a2c81c442812852fcc744240012000000c74424020b000000ff1c24", 0x4c}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000240)={[0x5836, 0x5, 0x7, 0xe51, 0x1, 0x5479, 0x103d, 0x6, 0x0, 0x32a, 0xfffffffffffffffe, 0xffffffff, 0x1, 0x40000000009, 0x5, 0x6a], 0x2000, 0x808d6})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_FRAME(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f0000000080)={0x24, 0x0, 0x1, 0x0, 0x4000, {{0x2}, {@val={0x8, 0x3, r5}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}]]}, 0x24}}, 0x80)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

1.186387467s ago: executing program 5 (id=2239):
r0 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000300), 0x2)
ioctl$UDMABUF_CREATE_LIST(r0, 0x40087543, &(0x7f0000000080)=ANY=[@ANYBLOB="0000ac000001"])

1.119908698s ago: executing program 6 (id=2240):
r0 = open(0x0, 0x10000, 0x4)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=@base={0xe, 0x7fff, 0xe, 0x9, 0x2000, 0xffffffffffffffff, 0x4, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x1, 0x5}, 0x50)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000c00)='/proc/vmallocinfo\x00', 0x0, 0x0)
r4 = openat$null(0xffffffffffffff9c, &(0x7f0000000040), 0x2a801, 0x0)
sendfile(r4, r3, 0x0, 0xfffffffc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000740)={0x11, 0x0, 0x0, &(0x7f0000000240)='syzkaller\x00', 0xf, 0x0, 0x0, 0x41000, 0x28, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000002c0)={0x7, 0x1}, 0x8, 0x10, &(0x7f0000000340)={0x2, 0xf, 0x47, 0x80000001}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000600)=[r1, r2, r4], 0x0, 0x10, 0x8}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
fsetxattr$trusted_overlay_opaque(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_SET_MP_STATE(0xffffffffffffffff, 0x4004ae99, &(0x7f00000000c0)=0x8)
syz_80211_inject_frame(&(0x7f0000000300)=@device_b, &(0x7f0000000600)=ANY=[], 0x36)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_INTERFACE(0xffffffffffffffff, 0x0, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_CONNECT(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000480)=ANY=[], 0x28}}, 0x0)

1.050833249s ago: executing program 1 (id=2241):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x18)
quotactl$Q_GETNEXTQUOTA(0xffffffff80000900, &(0x7f0000000040)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)

1.04244505s ago: executing program 2 (id=2242):
bpf$MAP_CREATE(0x0, &(0x7f0000000ac0)=ANY=[@ANYBLOB="0f00000004000000080000000b000000000000", @ANYBLOB="0000ecffffffffffffff000000000000000000ef", @ANYRES32=0x0, @ANYRESDEC, @ANYBLOB="0602810000000000000046c705929108621e4b5372df01356cc0c044b813db55a22e75c23ccd33c504a3ac73371e4b463d603f82261e69d235bb09b0848fb7a047078de5b5ea523ec20d2b158d51ff249fdb262032e55554e1e14bce341ea4659d932a723bd8db01823f59ad262729113e0d9d78429baa7ba5552746e18edace64977ab0e1a281e930e4e1ca9ab0c1511324bcc64852cacabfc98fdfa26b627b55d4c9e9de4ca212c58712fbfb65e32c3b0a9ef14d101a1465d4af931f465c51b8fb27a613b683b284f9d4949c1f689e76464b78f90cbaf67e5906ae791f08dec473cb08496c629453d9a336"], 0x50)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r0=>0xffffffffffffffff})
keyctl$KEYCTL_MOVE(0x1e, 0x0, 0xfffffffffffffffe, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYRES16=r0, @ANYBLOB="e7c5cb6f236908b08f0ef1a3e006cc06dee258f03c58c9967b35299df4746cd21d50d40432ab2ebd46d0dfd5cc8a44dfd4047be439d70a43c9a7e573fbfad269c35bfe170d1834d9c3bddc0569985a367ee3690c1aa6e53dae874bfe59c29d24350c7486e76af7781337f839aef7ae1bc6e26f074b80c5b15bd25058548d4fdedaac8cb547a73ff3f7dc4f7870666d1cf23d215147e8a67899aff7322546e15266e69bfc9537be63e42f3f61ceec637b5e302035562b6d6612f5bf52abdd4a331684e47f9a493e10325e5c29226e8e1b625fbf4574629f342193c8"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r1, <r2=>0xffffffffffffffff}, 0x0, &(0x7f0000000380)=r0}, 0x20)
pipe(&(0x7f0000000180)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = socket$inet_udp(0x2, 0x2, 0x0)
close(r5)
socket$key(0xf, 0x3, 0x2)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x204c801)
r6 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r6, 0x0, 0x0)
write$binfmt_misc(r4, &(0x7f0000000040)="63e8638dc24afd7841025f8b673d6861c19fd219891dd51573954e9b701f58d6738a1a02a47501198a948cde96fe", 0x2e)
splice(r3, 0x0, r5, 0x0, 0x4ffe6, 0x8)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000300)={r2, &(0x7f00000002c0), &(0x7f0000000400)=""/212}, 0x20)
creat(&(0x7f00000001c0)='./file0\x00', 0x8)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r7=>0xffffffffffffffff})
r8 = syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f00000000c0)='mnt\x00', 0x4, &(0x7f0000000000), 0x0, 0x236, &(0x7f0000000300)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000640)='mnt/encrypted_dir\x00', 0x0)
r9 = openat(r8, &(0x7f0000000140)='./file0\x00', 0x40, 0x193)
ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r9, 0xc0506617, &(0x7f0000000580)={@id={0x2, 0x0, @a}, 0x40, 0x0, '\x00', @a})
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r10 = openat(0xffffffffffffff9c, &(0x7f0000000680)='mnt/encrypted_dir\x00', 0x800, 0x0)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r10, 0x800c6613, &(0x7f00000006c0)=@v2={0x2, @aes256, 0x0, '\x00', @a})
syz_mount_image$vfat(&(0x7f00000001c0), &(0x7f0000000200)='./file0\x00', 0x145406, 0x0, 0x44, 0x0, &(0x7f0000000000))
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY_ALL_USERS(r10, 0xc0406619, &(0x7f0000000080)={@id={0x2, 0x0, @a}})
connect$unix(r7, &(0x7f0000000300)=@file={0x1, './file0\x00'}, 0x6e)

966.629601ms ago: executing program 5 (id=2243):
unshare(0x2c020400)
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
poll(&(0x7f0000000080)=[{r0, 0x1}], 0x1, 0x9)

862.943903ms ago: executing program 2 (id=2244):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f00000006c0)=@raw={'raw\x00', 0x4001, 0x3, 0x3e8, 0x0, 0x0, 0x148, 0x0, 0x148, 0x350, 0x240, 0x240, 0x350, 0x240, 0x7fffffe, 0x0, {[{{@ip={@private=0xa010102, @local, 0x0, 0x0, 'ip6gretap0\x00', 'nicvf0\x00', {}, {}, 0x88, 0x3, 0x10}, 0x0, 0xf8, 0x158, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'wg1\x00', {0x0, 0x0, 0x1ff, 0x100000, 0x0, 0xed, 0x10000007}}}, @common=@unspec=@connmark={{0x30}, {0xfffffff9, 0x8}}]}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x0, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, 0x85d, 0xf, [0x10, 0x32, 0x1e, 0x32, 0x2b, 0x25, 0x3f, 0x17, 0x19, 0x22, 0x2c, 0x3d, 0x7, 0x3f, 0x1e, 0x31], 0x0, 0x2, 0x2}}}, {{@ip={@rand_addr=0x64010101, @local, 0xff, 0x0, 'tunl0\x00', 'lo\x00', {0xff}, {}, 0x2e, 0x3, 0x4}, 0x0, 0x190, 0x1f8, 0x0, {}, [@common=@inet=@recent0={{0xf8}, {0x8, 0x9, 0x1, 0x1, 'syz1\x00', 0x2}}, @inet=@rpfilter={{0x28}, {0x8}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0xfff, 0x7e, 0x1c, 'netbios-ns\x00', 'syz0\x00', {0x3}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x448)
syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x800008, &(0x7f0000000140)={[{@init_itable}, {@nodioread_nolock}, {@discard}, {@jqfmt_vfsv0}]}, 0x4, 0x515, &(0x7f00000040c0)="$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")
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
sendto$inet(r1, &(0x7f0000000580)="17", 0x1d4c, 0x10048095, 0x0, 0x0)

777.292194ms ago: executing program 5 (id=2245):
r0 = syz_open_procfs(0x0, &(0x7f0000000200)='net/netlink\x00')
read$msr(r0, &(0x7f0000000040)=""/59, 0xffb5)

86.552838ms ago: executing program 4 (id=2246):
unshare(0x22020600)
syz_mount_image$vfat(&(0x7f0000000100), &(0x7f0000000180)='./file1\x00', 0x1218898, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0xa, 0x2c2, &(0x7f00000008c0)="$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")
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
sendmsg$NL80211_CMD_JOIN_OCB(0xffffffffffffffff, 0x0, 0x4000000)
sendto$packet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, 0x0)
mount$bind(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x1425, 0x0)
mount$bind(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x21, 0x0)

43.175879ms ago: executing program 1 (id=2247):
sched_setscheduler(0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r1, 0x0, 0x40, &(0x7f0000000580)=@filter={'filter\x00', 0xe, 0x4, 0x260, 0xffffffff, 0x218, 0x218, 0x218, 0xffffffff, 0xffffffff, 0x300, 0x300, 0x300, 0xffffffff, 0x4, 0x0, {[{{@uncond, 0x0, 0x70, 0x98}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xfffffffffffffffd}}, {{@ip={@empty, @multicast2, 0xffffffff, 0xb6d38718de514620, 'veth0\x00', 'vlan0\x00', {}, {}, 0x29, 0x0, 0x2a}, 0x0, 0x70, 0x98}, @REJECT={0x28, 'REJECT\x00', 0x0, {0x5}}}, {{@ip={@remote, @rand_addr=0x64010101, 0xff, 0xff000000, 'bridge_slave_0\x00', 'veth1_virt_wifi\x00', {0xff}, {0xff}, 0x1, 0x1, 0x1e}, 0x0, 0x70, 0x98}, @REJECT={0x28, 'REJECT\x00', 0x0, {0x2}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x2c0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000180)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, 0x0, 0x0, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r5 = socket(0x400000000010, 0x3, 0x0)
r6 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000380)=@newqdisc={0x84, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r7, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_codel={{0xa}, {0x54, 0x2, [@TCA_CODEL_ECN={0x8, 0x4, 0x1}, @TCA_CODEL_INTERVAL={0x8, 0x3, 0x83f}, @TCA_CODEL_INTERVAL={0x8, 0x3, 0x9}, @TCA_CODEL_ECN={0x8}, @TCA_CODEL_INTERVAL={0x8, 0x3, 0x1ff}, @TCA_CODEL_INTERVAL={0x8}, @TCA_CODEL_LIMIT={0x8, 0x2, 0xd363}, @TCA_CODEL_CE_THRESHOLD={0x8, 0x5, 0x1000}, @TCA_CODEL_TARGET={0x8}, @TCA_CODEL_INTERVAL={0x8, 0x3, 0x1}]}}]}, 0x84}}, 0x8050)

0s ago: executing program 5 (id=2248):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000000)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
timer_create(0x7, &(0x7f0000000280)={0x0, 0x21}, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f00000001c0))
pipe2$watch_queue(&(0x7f00000000c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x80)
read$watch_queue(r3, &(0x7f0000000440)=""/235, 0xeb)
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r4, &(0x7f0000000140)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
r5 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r5, &(0x7f0000000080)=[{&(0x7f0000000200)="a10100001500add427323b470c45b45602067fffffff81004e22000d00ff0028925aa80020007b00090080000efffeffe809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee00000000000000000200000000", 0x1a1}], 0x1)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
rename(0x0, 0x0)
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={0xffffffffffffffff, 0x0, 0x4, 0x8, &(0x7f00000002c0)='\x00\x00\x00\x00', &(0x7f0000000300)=""/8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

kernel console output (not intermixed with test programs):

 using dummy_hcd
[  402.907645][ T4376] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  402.946171][ T4376] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  402.983840][ T4376] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  402.999273][ T4376] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  403.008992][ T4376] usb 1-1: Product: syz
[  403.021470][ T4376] usb 1-1: Manufacturer: syz
[  403.027513][ T4376] usb 1-1: SerialNumber: syz
[  403.393428][ T4376] usb 1-1: 0:2 : does not exist
[  403.417936][ T4376] usb 1-1: 5:0: failed to get current value for ch 0 (-22)
[  404.131160][ T4376] usb 1-1: USB disconnect, device number 7
[  404.399985][ T8233] overlayfs: overlapping lowerdir path
[  406.043692][ T8258] can: request_module (can-proto-0) failed.
[  407.799605][ T4401] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  408.318314][ T8293] xt_l2tp: missing protocol rule (udp|l2tpip)
[  408.763315][ T8300] can: request_module (can-proto-0) failed.
[  408.794844][ T4401] usb 3-1: Using ep0 maxpacket: 8
[  408.882476][ T4401] usb 3-1: unable to get BOS descriptor or descriptor too short
[  408.909971][ T4401] usb 3-1: config 0 has an invalid interface number: 88 but max is 0
[  408.925218][ T4401] usb 3-1: config 0 has no interface number 0
[  408.931969][ T4401] usb 3-1: config 0 interface 88 altsetting 8 endpoint 0x86 has an invalid bInterval 0, changing to 7
[  408.966431][ T4401] usb 3-1: config 0 interface 88 altsetting 8 endpoint 0x86 has invalid wMaxPacketSize 0
[  409.141714][ T4401] usb 3-1: config 0 interface 88 has no altsetting 0
[  409.162198][ T4401] usb 3-1: string descriptor 0 read error: -22
[  409.174334][ T4401] usb 3-1: New USB device found, idVendor=0460, idProduct=0004, bcdDevice=96.31
[  409.197297][ T4401] usb 3-1: New USB device strings: Mfr=1, Product=84, SerialNumber=3
[  409.384280][ T4401] usb 3-1: config 0 descriptor??
[  409.698891][ T4401] input: USB Acecad Flair Tablet 0460:0004 as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.88/input/input6
[  410.053640][ T4401] usb 3-1: USB disconnect, device number 3
[  410.636879][ T8334] loop4: detected capacity change from 0 to 1024
[  410.647388][ T8334] EXT4-fs: Ignoring removed bh option
[  410.653097][ T8334] EXT4-fs: inline encryption not supported
[  411.015652][ T8334] EXT4-fs error (device loop4): ext4_map_blocks:635: inode #3: block 2: comm syz.4.1044: lblock 2 mapped to illegal pblock 2 (length 1)
[  411.032230][ T8334] __quota_error: 22 callbacks suppressed
[  411.032270][ T8334] Quota error (device loop4): qtree_write_dquot: dquota write failed
[  411.046525][ T8334] EXT4-fs error (device loop4): ext4_map_blocks:635: inode #3: block 48: comm syz.4.1044: lblock 0 mapped to illegal pblock 48 (length 1)
[  411.068629][ T8334] Quota error (device loop4): v2_write_file_info: Can't write info structure
[  411.077731][ T8334] EXT4-fs error (device loop4): ext4_acquire_dquot:6816: comm syz.4.1044: Failed to acquire dquot type 0
[  411.092591][ T8334] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5915: Corrupt filesystem
[  411.108128][ T8334] EXT4-fs error (device loop4): ext4_evict_inode:279: inode #11: comm syz.4.1044: mark_inode_dirty error
[  411.121361][ T8334] EXT4-fs warning (device loop4): ext4_evict_inode:282: couldn't mark inode dirty (err -117)
[  411.132019][ T8334] EXT4-fs (loop4): 1 orphan inode deleted
[  411.137980][ T8334] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  411.206840][ T5326] EXT4-fs error (device loop4): ext4_map_blocks:635: inode #3: block 1: comm kworker/u4:23: lblock 1 mapped to illegal pblock 1 (length 1)
[  411.234020][ T4401] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  411.471543][ T5326] Quota error (device loop4): remove_tree: Can't read quota data block 1
[  411.517869][ T5326] EXT4-fs error (device loop4): ext4_release_dquot:6852: comm kworker/u4:23: Failed to release dquot type 0
[  411.604867][ T4401] usb 1-1: Using ep0 maxpacket: 8
[  411.614025][ T4401] usb 1-1: unable to get BOS descriptor or descriptor too short
[  411.663940][ T4401] usb 1-1: config 0 has an invalid interface number: 93 but max is 0
[  411.723791][ T4401] usb 1-1: config 0 has no interface number 0
[  411.759787][ T4401] usb 1-1: config 0 interface 93 has no altsetting 0
[  411.797322][ T4401] usb 1-1: New USB device found, idVendor=3285, idProduct=06b3, bcdDevice=64.3f
[  411.852756][ T4401] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  411.894042][ T4401] usb 1-1: Product: syz
[  411.919362][ T4401] usb 1-1: Manufacturer: syz
[  411.951737][ T4401] usb 1-1: SerialNumber: syz
[  411.984392][ T4401] usb 1-1: config 0 descriptor??
[  412.550934][ T4267] EXT4-fs (loop4): unmounting filesystem.
[  412.575029][ T4401] usb 1-1: USB disconnect, device number 8
[  412.584910][ T4267] EXT4-fs error (device loop4): __ext4_get_inode_loc:4507: comm syz-executor: Invalid inode table block 1 in block_group 0
[  412.624154][ T4267] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5915: Corrupt filesystem
[  412.665039][ T4267] EXT4-fs error (device loop4): ext4_quota_off:7122: inode #3: comm syz-executor: mark_inode_dirty error
[  413.380393][ T8353] can: request_module (can-proto-0) failed.
[  413.854658][   T14] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  414.068444][   T14] usb 3-1: config 1 has an invalid descriptor of length 100, skipping remainder of the config
[  414.095593][   T14] usb 3-1: config 1 interface 0 altsetting 8 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[  414.143085][   T14] usb 3-1: config 1 interface 0 has no altsetting 0
[  414.164290][   T14] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  414.190177][   T14] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  414.209061][   T14] usb 3-1: Product: syz
[  414.227054][   T14] usb 3-1: Manufacturer: syz
[  414.249345][   T14] usb 3-1: SerialNumber: syz
[  414.901112][   T14] usb 3-1: bad CDC descriptors
[  414.914941][   T14] usb 3-1: USB disconnect, device number 4
[  414.978725][ T8399] xt_l2tp: missing protocol rule (udp|l2tpip)
[  416.639932][ T8413] can: request_module (can-proto-0) failed.
[  418.065678][   T14] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  418.254971][   T14] usb 5-1: Using ep0 maxpacket: 16
[  418.270844][   T14] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  418.319163][   T14] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  418.419656][   T14] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  418.469119][   T14] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  418.515257][   T14] usb 5-1: Product: syz
[  418.544337][   T14] usb 5-1: Manufacturer: syz
[  418.568947][   T14] usb 5-1: SerialNumber: syz
[  418.872447][   T14] usb 5-1: 0:2 : does not exist
[  418.881417][ T8428] fuse: Bad value for 'fd'
[  418.897738][   T14] usb 5-1: 5:0: failed to get current value for ch 0 (-22)
[  419.006917][   T14] usb 5-1: USB disconnect, device number 5
[  419.231968][  T127] usb 2-1: new full-speed USB device number 5 using dummy_hcd
[  419.267447][ T4256] udevd[4256]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  419.426961][  T127] usb 2-1: config 8 has an invalid interface number: 196 but max is 0
[  419.465091][  T127] usb 2-1: config 8 has no interface number 0
[  419.471382][  T127] usb 2-1: config 8 interface 196 has no altsetting 0
[  419.524365][  T127] usb 2-1: New USB device found, idVendor=19d2, idProduct=0144, bcdDevice=10.0a
[  419.533803][  T127] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  419.542069][  T127] usb 2-1: Product: syz
[  419.546380][  T127] usb 2-1: Manufacturer: syz
[  419.551000][  T127] usb 2-1: SerialNumber: syz
[  419.791072][  T127] cdc_acm 2-1:8.196: More than one union descriptor, skipping ...
[  419.820604][  T127] usb 2-1: USB disconnect, device number 5
[  423.162020][ T8461] netlink: 157 bytes leftover after parsing attributes in process `syz.2.1084'.
[  423.241618][ T8466] fuse: Bad value for 'fd'
[  423.454608][   T14] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  423.555323][ T4376] usb 6-1: new full-speed USB device number 7 using dummy_hcd
[  423.666367][   T14] usb 5-1: Using ep0 maxpacket: 32
[  423.690752][   T14] usb 5-1: config 0 has an invalid interface number: 214 but max is 0
[  423.771039][ T4376] usb 6-1: New USB device found, idVendor=057e, idProduct=200e, bcdDevice= 0.00
[  423.792441][   T14] usb 5-1: config 0 has no interface number 0
[  423.855229][ T4376] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  423.893610][   T14] usb 5-1: config 0 interface 214 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 16
[  423.997794][ T4376] usb 6-1: config 0 descriptor??
[  424.014425][   T14] usb 5-1: config 0 interface 214 has no altsetting 0
[  424.208004][ T8474] can: request_module (can-proto-0) failed.
[  424.651376][   T14] usb 5-1: string descriptor 0 read error: -71
[  424.663561][   T14] usb 5-1: New USB device found, idVendor=07c9, idProduct=000e, bcdDevice=5d.4f
[  424.774693][   T14] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  424.788266][ T4376] usbhid 6-1:0.0: can't add hid device: -71
[  424.794451][ T4376] usbhid: probe of 6-1:0.0 failed with error -71
[  424.859664][   T14] usb 5-1: config 0 descriptor??
[  424.878679][ T4376] usb 6-1: USB disconnect, device number 7
[  424.931694][   T14] usb 5-1: can't set config #0, error -71
[  424.978929][   T14] usb 5-1: USB disconnect, device number 6
[  425.542255][ T8507] fuse: Bad value for 'fd'
[  426.679183][ T8521] loop1: detected capacity change from 0 to 512
[  427.444669][ T8524] can: request_module (can-proto-0) failed.
[  427.792380][ T8530] netlink: 'syz.4.1103': attribute type 12 has an invalid length.
[  428.274798][   T14] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  428.492643][   T14] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  428.593513][   T14] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3
[  428.706264][   T14] usb 6-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  428.802811][   T14] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  428.879967][   T14] usb 6-1: SerialNumber: syz
[  429.299030][   T14] usb 6-1: 0:2 : does not exist
[  429.354628][   T14] usb 6-1: USB disconnect, device number 8
[  430.563196][ T4256] udevd[4256]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  430.644629][ T4309] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  430.793379][ T8561] loop5: detected capacity change from 0 to 512
[  430.869735][ T4309] usb 1-1: Using ep0 maxpacket: 32
[  430.877982][ T4256] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  431.042704][ T4309] usb 1-1: config 0 has an invalid interface number: 67 but max is 0
[  431.057435][ T4309] usb 1-1: config 0 has no interface number 0
[  431.090219][ T4309] usb 1-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[  431.137295][ T4309] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  431.149383][ T4309] usb 1-1: Product: syz
[  431.153647][ T4309] usb 1-1: Manufacturer: syz
[  431.168241][ T4309] usb 1-1: SerialNumber: syz
[  431.186215][ T4309] usb 1-1: config 0 descriptor??
[  431.224334][ T4309] smsc95xx v2.0.0
[  431.254710][ T8562] can: request_module (can-proto-0) failed.
[  431.360088][ T8575] IPVS: set_ctl: invalid protocol: 0 0.0.0.0:20002
[  431.607695][ T4309] smsc95xx 1-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -32
[  431.633668][ T4309] smsc95xx 1-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  431.788789][ T8582] rtc_cmos 00:00: Alarms can be up to one day in the future
[  432.747095][ T4401] rtc_cmos 00:00: Alarms can be up to one day in the future
[  432.757302][ T4401] rtc_cmos 00:00: Alarms can be up to one day in the future
[  432.765485][ T4401] rtc_cmos 00:00: Alarms can be up to one day in the future
[  432.773729][ T4401] rtc_cmos 00:00: Alarms can be up to one day in the future
[  432.781758][ T4401] rtc rtc0: __rtc_set_alarm: err=-22
[  432.929941][ T4309] smsc95xx 1-1:0.67 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000014: -71
[  432.943049][ T4309] smsc95xx: probe of 1-1:0.67 failed with error -71
[  432.957703][ T8592] netlink: 'syz.4.1120': attribute type 4 has an invalid length.
[  432.967614][ T4309] usb 1-1: USB disconnect, device number 9
[  435.215258][ T8618] can: request_module (can-proto-0) failed.
[  435.438823][ T8630] loop2: detected capacity change from 0 to 128
[  435.831395][ T8630] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  437.254785][ T4274] Bluetooth: hci4: command 0x1003 tx timeout
[  437.264422][ T4280] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  438.467605][ T8670] capability: warning: `syz.1.1144' uses deprecated v2 capabilities in a way that may be insecure
[  440.003391][ T8688] loop2: detected capacity change from 0 to 128
[  440.184056][ T8678] can: request_module (can-proto-0) failed.
[  440.740164][ T8688] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  441.558172][ T1276] ieee802154 phy0 wpan0: encryption failed: -22
[  441.565482][ T1276] ieee802154 phy1 wpan1: encryption failed: -22
[  442.097257][ T8709] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  444.246210][ T8728] can: request_module (can-proto-0) failed.
[  444.856657][ T8761] loop1: detected capacity change from 0 to 128
[  444.873840][ T4401] usb 3-1: new full-speed USB device number 5 using dummy_hcd
[  444.998500][ T8761] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  445.232505][ T4401] usb 3-1: too many endpoints for config 253 interface 0 altsetting 0: 255, using maximum allowed: 30
[  445.380433][ T4401] usb 3-1: config 253 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  445.453366][ T4401] usb 3-1: config 253 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 255
[  445.543851][ T4401] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  445.565071][ T8765] fuse: Bad value for 'fd'
[  445.616263][ T4401] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  445.665402][ T4401] usb 3-1: SerialNumber: syz
[  446.351613][ T4401] rndis_wlan 3-1:253.0: RNDIS init failed, -71
[  446.395084][ T4401] rndis_wlan: probe of 3-1:253.0 failed with error -71
[  446.586039][ T4401] rndis_host 3-1:253.0: RNDIS init failed, -71
[  446.593447][ T4401] rndis_host: probe of 3-1:253.0 failed with error -71
[  446.619417][ T4401] usb 3-1: USB disconnect, device number 5
[  448.396956][ T8782] can: request_module (can-proto-0) failed.
[  448.552530][ T8792] overlayfs: unrecognized mount option "verity=on" or missing value
[  448.893986][ T8800] netlink: 'syz.2.1183': attribute type 4 has an invalid length.
[  452.503512][ T8825] can: request_module (can-proto-0) failed.
[  455.844096][ T8874] loop1: detected capacity change from 0 to 512
[  456.282858][ T8883] netlink: 5 bytes leftover after parsing attributes in process `syz.5.1208'.
[  456.293677][ T8885] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[  457.025022][ T6973] usb 2-1: new full-speed USB device number 7 using dummy_hcd
[  457.366969][ T6973] usb 2-1: New USB device found, idVendor=057e, idProduct=200e, bcdDevice= 0.00
[  457.406759][ T6973] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  457.432722][ T6973] usb 2-1: config 0 descriptor??
[  457.556319][ T8909] loop2: detected capacity change from 0 to 512
[  457.602870][ T4281] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  459.214805][ T4309] usb 5-1: new full-speed USB device number 7 using dummy_hcd
[  459.407496][ T4309] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64
[  459.423281][ T4309] usb 5-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00
[  459.432891][ T4309] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  459.458895][ T4309] usb 5-1: config 0 descriptor??
[  459.464740][ T8933] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  459.686641][ T6973] usbhid 2-1:0.0: can't add hid device: -71
[  459.692671][ T6973] usbhid: probe of 2-1:0.0 failed with error -71
[  459.712875][ T6973] usb 2-1: USB disconnect, device number 7
[  459.903119][ T4309] elan 0003:04F3:0755.0001: unknown main item tag 0x0
[  459.921452][ T4309] elan 0003:04F3:0755.0001: unknown main item tag 0x0
[  459.940115][ T4309] elan 0003:04F3:0755.0001: unknown main item tag 0x0
[  459.947902][ T4309] elan 0003:04F3:0755.0001: unknown main item tag 0x0
[  459.960167][ T4309] elan 0003:04F3:0755.0001: unknown main item tag 0x0
[  459.982903][ T4309] elan 0003:04F3:0755.0001: hidraw0: USB HID v1.01 Device [HID 04f3:0755] on usb-dummy_hcd.4-1/input0
[  460.088455][ T8956] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  460.110608][ T8933] binder: 8932:8933 ioctl 4010942a 0 returned -22
[  460.120910][ T4309] usb 5-1: USB disconnect, device number 7
[  460.302992][ T8952] fido_id[8952]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.4/usb5/report_descriptor': No such file or directory
[  460.594874][ T4324] usb 1-1: new full-speed USB device number 10 using dummy_hcd
[  460.871480][ T4324] usb 1-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  460.975900][ T4324] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  461.211193][ T8969] loop1: detected capacity change from 0 to 512
[  461.229809][ T8970] binder: 8967:8970 ioctl 4018620d 0 returned -22
[  461.239628][ T4324] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  461.474609][ T4324] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  462.264159][ T4324] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  462.272612][ T4324] usb 1-1: Product: syz
[  462.277758][ T4324] usb 1-1: Manufacturer: syz
[  462.282376][ T4324] usb 1-1: SerialNumber: syz
[  462.319933][ T8980] usb usb8: usbfs: process 8980 (syz.1.1241) did not claim interface 0 before use
[  462.594856][ T6973] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  462.630892][ T4343] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  462.700900][ T4324] usb 1-1: 0:2 : does not exist
[  462.720316][ T4324] usb 1-1: USB disconnect, device number 10
[  462.727169][ T4309] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  462.741915][ T4256] udevd[4256]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  462.776374][ T6973] usb 5-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0xFF, skipping
[  462.787745][ T6973] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  462.801360][ T6973] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  462.810708][ T6973] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  462.819286][ T4343] usb 2-1: Using ep0 maxpacket: 16
[  462.826731][ T4343] usb 2-1: config 0 interface 0 altsetting 91 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  462.838295][ T4343] usb 2-1: config 0 interface 0 altsetting 91 endpoint 0x81 has invalid wMaxPacketSize 0
[  462.849146][ T6973] usb 5-1: config 0 descriptor??
[  462.858151][ T6973] usbhid 5-1:0.0: couldn't find an input interrupt endpoint
[  462.865826][ T4343] usb 2-1: config 0 interface 0 has no altsetting 0
[  462.872768][ T4343] usb 2-1: New USB device found, idVendor=04f2, idProduct=1236, bcdDevice= 0.00
[  462.883187][ T4343] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  462.899467][ T4343] usb 2-1: config 0 descriptor??
[  462.924658][ T4309] usb 3-1: Using ep0 maxpacket: 16
[  462.931888][ T4309] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  462.946611][ T4309] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  462.959885][ T4309] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  462.969346][ T4309] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  462.978044][ T4309] usb 3-1: Product: syz
[  462.982344][ T4309] usb 3-1: Manufacturer: syz
[  462.987060][ T4309] usb 3-1: SerialNumber: syz
[  463.313035][ T4343] chicony 0003:04F2:1236.0002: item fetching failed at offset 5/7
[  463.323105][ T4309] usb 3-1: 0:2 : does not exist
[  463.331480][ T4309] usb 3-1: 5:0: failed to get current value for ch 0 (-22)
[  463.355820][ T4343] chicony 0003:04F2:1236.0002: Chicony hid parse failed: -22
[  463.362030][ T4309] usb 3-1: USB disconnect, device number 6
[  463.373893][ T4343] chicony: probe of 0003:04F2:1236.0002 failed with error -22
[  463.570606][ T4343] usb 2-1: USB disconnect, device number 8
[  463.856895][ T4281] udevd[4281]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  465.027054][ T9027] binder_alloc: binder_alloc_mmap_handler: 9026 200000ffa000-200000ffd000 already mapped failed -16
[  465.387405][ T4309] usb 5-1: USB disconnect, device number 8
[  465.993193][ T9043] fuse: root generation should be zero
[  466.202091][ T9055] kvm: emulating exchange as write
[  466.672978][ T9066] usb usb8: usbfs: interface 0 claimed by hub while 'syz.0.1273' resets device
[  466.714852][ T4343] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  466.774329][ T9068] overlayfs: failed to clone upperpath
[  466.940045][ T4343] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  466.958436][ T4343] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  467.033427][ T4343] usb 2-1: New USB device found, idVendor=1e7d, idProduct=2cf6, bcdDevice= 0.00
[  467.053252][ T4343] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  467.097658][ T4343] usb 2-1: config 0 descriptor??
[  467.673283][ T9076] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  467.961319][ T9084] binder: 9063:9084 ioctl c0306201 0 returned -14
[  468.480289][ T4324] usb 1-1: new full-speed USB device number 11 using dummy_hcd
[  468.567522][ T4343] pyra 0003:1E7D:2CF6.0003: item fetching failed at offset 3/7
[  468.577179][ T4343] pyra 0003:1E7D:2CF6.0003: parse failed
[  468.582907][ T4343] pyra: probe of 0003:1E7D:2CF6.0003 failed with error -22
[  468.696228][ T4324] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  468.722113][ T4324] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  468.770651][ T4324] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 512, setting to 64
[  468.822612][ T4324] usb 1-1: config 1 interface 1 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  468.868262][    T7] usb 2-1: USB disconnect, device number 9
[  468.881596][ T4324] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  468.942673][ T4324] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  468.967256][ T4324] usb 1-1: Product: syz
[  468.981171][ T4324] usb 1-1: Manufacturer: syz
[  468.990743][ T4324] usb 1-1: SerialNumber: syz
[  469.000218][ T9086] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[  469.012629][ T4324] cdc_mbim 1-1:1.0: skipping garbage
[  470.176662][ T9110] fuse: Bad value for 'fd'
[  470.262237][ T4324] cdc_mbim 1-1:1.0: bind() failure
[  470.287884][ T4324] cdc_ncm: probe of 1-1:1.1 failed with error -71
[  470.297229][ T4324] cdc_mbim: probe of 1-1:1.1 failed with error -71
[  470.308452][ T4324] usbtest: probe of 1-1:1.1 failed with error -71
[  470.327628][ T4324] usb 1-1: USB disconnect, device number 11
[  474.704905][ T9173] overlayfs: failed to clone upperpath
[  475.762902][ T9182] overlayfs: failed to clone upperpath
[  476.976943][ T9212] overlayfs: failed to clone upperpath
[  481.214710][ T4309] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  481.409195][ T4309] usb 1-1: Using ep0 maxpacket: 32
[  481.419445][ T4309] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  481.450442][ T4309] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  481.527867][ T4309] usb 1-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  481.569124][ T4309] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  481.599969][ T4309] usb 1-1: config 0 descriptor??
[  481.647716][ T4309] hub 1-1:0.0: USB hub found
[  481.850116][ T4309] hub 1-1:0.0: config failed, hub doesn't have any ports! (err -19)
[  482.271332][ T4309] usbhid 1-1:0.0: can't add hid device: -71
[  482.284246][ T4309] usbhid: probe of 1-1:0.0 failed with error -71
[  482.355386][ T4309] usb 1-1: USB disconnect, device number 12
[  483.229051][ T9307] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  484.199817][ T4401] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  484.310387][ T4401] hid-generic 0000:0000:0000.0004: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  485.850004][ T9397] overlayfs: failed to clone upperpath
[  486.007572][ T9393] netlink: 1311 bytes leftover after parsing attributes in process `syz.1.1388'.
[  486.688174][ T9408] 9pnet_fd: Insufficient options for proto=fd
[  487.218742][ T9422] overlayfs: workdir and upperdir must reside under the same mount
[  487.364826][ T4401] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  487.631191][ T4401] usb 1-1: config index 0 descriptor too short (expected 45, got 36)
[  487.732074][ T4401] usb 1-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0xFF, skipping
[  487.852587][ T4401] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  488.038716][ T4401] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  488.138364][ T4401] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  488.175846][ T4401] usb 1-1: config 0 descriptor??
[  488.181917][ T9418] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  488.365223][ T4401] usbhid 1-1:0.0: couldn't find an input interrupt endpoint
[  488.458423][ T9440] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  488.675050][ T4274] Bluetooth: hci4: command 0x1003 tx timeout
[  488.683155][ T4280] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  490.764721][ T4324] usb 1-1: USB disconnect, device number 13
[  491.299541][ T9479] loop4: detected capacity change from 0 to 2048
[  491.372398][ T9479] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  491.881079][ T9487] ip6t_rpfilter: unknown options
[  492.750611][ T9485] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  492.910380][ T9492] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=640 (1280 ns) > initial count (34 ns). Using initial count to start timer.
[  494.633219][ T9512] loop0: detected capacity change from 0 to 512
[  494.985348][ T9512] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  495.058796][ T9521] loop2: detected capacity change from 0 to 512
[  495.083808][ T9521] EXT4-fs: Ignoring removed oldalloc option
[  495.113012][ T4266] EXT4-fs (loop0): unmounting filesystem.
[  495.113037][ T9521] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  495.183455][ T9521] EXT4-fs (loop2): 1 truncate cleaned up
[  495.191359][ T9521] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  496.065368][ T4265] EXT4-fs (loop2): unmounting filesystem.
[  496.094993][ T9531] loop0: detected capacity change from 0 to 128
[  496.108505][ T9531] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  496.339282][ T9542] loop0: detected capacity change from 0 to 128
[  499.988757][ T9585] loop4: detected capacity change from 0 to 1024
[  500.064159][ T9583] loop0: detected capacity change from 0 to 256
[  500.085747][ T9581] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  500.126118][ T9583] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  500.468250][ T9594] overlayfs: failed to clone upperpath
[  500.893629][ T9596] loop4: detected capacity change from 0 to 256
[  501.309854][ T9607] loop0: detected capacity change from 0 to 512
[  501.552614][ T9607] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  502.051790][ T9607] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  502.115785][ T9607] ext4 filesystem being mounted at /277/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  502.499374][ T9621] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  502.820699][ T4266] EXT4-fs (loop0): unmounting filesystem.
[  503.177241][ T9632] overlayfs: failed to clone upperpath
[  506.078467][ T9664] loop4: detected capacity change from 0 to 512
[  506.196124][ T9668] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1479'.
[  506.247624][ T9664] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  506.257044][ T9664] ext4 filesystem being mounted at /271/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  506.844864][ T1276] ieee802154 phy0 wpan0: encryption failed: -22
[  506.851297][ T1276] ieee802154 phy1 wpan1: encryption failed: -22
[  506.928198][ T4267] EXT4-fs (loop4): unmounting filesystem.
[  507.863932][ T9684] loop2: detected capacity change from 0 to 512
[  507.913534][ T9688] loop4: detected capacity change from 0 to 1024
[  507.960779][ T9688] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  507.974790][ T9684] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  508.027548][ T9684] ext4 filesystem being mounted at /295/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  508.088864][ T9688] ext4 filesystem being mounted at /272/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  509.694681][   T27] audit: type=1800 audit(1756923650.042:415): pid=9688 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1481" name="file1" dev="loop4" ino=15 res=0 errno=0
[  509.755756][ T9688] EXT4-fs error (device loop4): ext4_map_blocks:745: inode #15: comm syz.4.1481: lblock 0 mapped to illegal pblock 0 (length 6)
[  509.825933][ T4265] EXT4-fs (loop2): unmounting filesystem.
[  509.859029][ T9706] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  509.906771][ T9688] EXT4-fs error (device loop4): ext4_ext_remove_space:2930: inode #15: comm syz.4.1481: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0)
[  510.126830][ T9714] loop0: detected capacity change from 0 to 2048
[  510.136614][ T9717] loop2: detected capacity change from 0 to 1024
[  510.164423][ T9714] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  510.194700][ T9717] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  510.283988][ T9719] ip6t_rpfilter: unknown options
[  510.527643][ T9717] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  510.881937][ T4267] EXT4-fs (loop4): unmounting filesystem.
[  510.921799][ T4265] EXT4-fs (loop2): unmounting filesystem.
[  511.509550][ T9733] overlayfs: failed to clone upperpath
[  513.000778][ T9734] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1497'.
[  514.589107][ T9764] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  514.629544][ T9761] loop0: detected capacity change from 0 to 4096
[  514.700036][ T9761] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  514.933177][ T4266] EXT4-fs (loop0): unmounting filesystem.
[  522.591129][ T9841] loop2: detected capacity change from 0 to 512
[  522.626122][ T9841] EXT4-fs: Ignoring removed i_version option
[  522.647126][ T9841] EXT4-fs: Ignoring removed mblk_io_submit option
[  522.675607][ T9841] EXT4-fs: Ignoring removed mblk_io_submit option
[  522.722027][ T9841] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  522.790204][ T9841] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c118, mo2=0002]
[  522.824594][ T9841] System zones: 1-12
[  522.869191][ T9841] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2195: inode #15: comm syz.2.1530: corrupted in-inode xattr
[  522.914958][ T9841] EXT4-fs error (device loop2): ext4_orphan_get:1405: comm syz.2.1530: couldn't read orphan inode 15 (err -117)
[  522.955687][ T9841] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  523.181963][ T4265] EXT4-fs (loop2): unmounting filesystem.
[  523.462846][ T9856] loop2: detected capacity change from 0 to 512
[  523.543652][ T9856] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  523.600604][ T9862] loop0: detected capacity change from 0 to 512
[  523.607827][ T9862] EXT4-fs: Ignoring removed nobh option
[  523.614105][ T9856] ext4 filesystem being mounted at /307/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  523.674269][ T9864] loop4: detected capacity change from 0 to 512
[  523.742071][ T9856] EXT4-fs error (device loop2): ext4_lookup:1858: inode #12: comm syz.2.1535: iget: bad i_size value: 2533274857506816
[  523.773139][ T9862] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2
[  523.859774][ T9869] overlayfs: failed to clone upperpath
[  523.892527][ T9862] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz.0.1538: invalid indirect mapped block 2683928664 (level 1)
[  524.134927][ T9864] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  524.317295][ T9864] ext4 filesystem being mounted at /283/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  524.334777][ T9862] EXT4-fs (loop0): 1 truncate cleaned up
[  524.354829][ T9862] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  524.494935][ T4265] EXT4-fs (loop2): unmounting filesystem.
[  524.640179][ T9873] raw_sendmsg: syz.1.1539 forgot to set AF_INET. Fix it!
[  524.685777][ T4266] EXT4-fs (loop0): unmounting filesystem.
[  524.742604][ T4267] EXT4-fs (loop4): unmounting filesystem.
[  525.902896][ T9893] loop0: detected capacity change from 0 to 2048
[  526.313429][ T9893] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  526.349179][ T9894] loop4: detected capacity change from 0 to 2048
[  526.447865][ T9894] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  526.768059][ T9895] loop2: detected capacity change from 0 to 8192
[  526.818289][ T9895]  loop2: p1 p2 p4 < >
[  526.840482][ T9895] loop2: partition table partially beyond EOD, truncated
[  526.936015][ T9895] loop2: p1 start 16777216 is beyond EOD, truncated
[  526.956740][ T9895] loop2: p2 size 515840 extends beyond EOD, truncated
[  527.093232][ T9906] loop0: detected capacity change from 0 to 1024
[  527.864613][ T9906] hfsplus: inconsistency in B*Tree (128,1,255,1,0)
[  527.871722][ T9906] hfsplus: xattr searching failed
[  528.194112][ T4266] hfsplus: inconsistency in B*Tree (128,1,255,1,0)
[  528.238449][ T4266] hfsplus: xattr search failed
[  528.338182][ T4266] hfsplus: inconsistency in B*Tree (128,1,255,1,0)
[  528.354421][ T4266] hfsplus: xattr search failed
[  528.376659][ T4266] syz-executor: attempt to access beyond end of device
[  528.376659][ T4266] loop0: rw=0, sector=917504, nr_sectors = 2 limit=1024
[  528.474868][ T4271] Bluetooth: hci5: command 0x0405 tx timeout
[  528.741745][ T4266] buffer_io_error: 23 callbacks suppressed
[  528.741908][ T4266] Buffer I/O error on dev loop0, logical block 458752, async page read
[  528.886453][ T4376] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  528.895700][ T4266] hfsplus: unable to mark blocks free: error -5
[  528.901985][ T4266] hfsplus: can't free extent
[  528.908482][ T4266] hfsplus: inconsistency in B*Tree (128,1,255,1,0)
[  528.915338][ T4266] hfsplus: xattr search failed
[  528.920921][ T4266] syz-executor: attempt to access beyond end of device
[  528.920921][ T4266] loop0: rw=0, sector=917504, nr_sectors = 2 limit=1024
[  528.948448][ T9838] udevd[9838]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[  528.964349][ T4266] Buffer I/O error on dev loop0, logical block 458752, async page read
[  528.985509][ T4266] hfsplus: unable to mark blocks free: error -5
[  528.991817][ T4266] hfsplus: can't free extent
[  529.008505][ T9865] udevd[9865]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory
[  529.036610][ T4266] hfsplus: inconsistency in B*Tree (128,1,255,1,0)
[  529.071436][ T4266] hfsplus: xattr search failed
[  529.079946][ T4266] hfsplus: inconsistency in B*Tree (128,1,255,1,0)
[  529.084645][ T4376] usb 5-1: Using ep0 maxpacket: 32
[  529.087259][ T4266] hfsplus: xattr search failed
[  529.105655][ T4376] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  529.105711][ T4266] hfsplus: inconsistency in B*Tree (128,1,255,1,0)
[  529.132445][ T4376] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  529.147726][ T4266] hfsplus: xattr search failed
[  529.153115][ T4266] hfsplus: inconsistency in B*Tree (128,1,255,1,0)
[  529.169278][ T4376] usb 5-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  529.178732][ T4266] hfsplus: xattr search failed
[  529.179005][ T4376] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  529.201623][ T4376] usb 5-1: config 0 descriptor??
[  529.216766][ T4376] hub 5-1:0.0: USB hub found
[  529.281514][ T9927] pit: kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  529.368151][ T9927] kvm: pic: level sensitive irq not supported
[  529.368536][ T9927] kvm: pic: non byte read
[  529.380057][ T9927] kvm: pic: level sensitive irq not supported
[  529.380120][ T9927] kvm: pic: non byte read
[  529.391732][ T9927] kvm: pic: level sensitive irq not supported
[  529.391875][ T9927] kvm: pic: non byte read
[  529.413172][ T4376] hub 5-1:0.0: 1 port detected
[  529.680871][ T5330] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  529.693425][ T9933] ipt_CLUSTERIP: Please specify destination IP
[  529.831652][ T4376] usb 5-1: USB disconnect, device number 9
[  529.879538][ T5330] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  530.011016][ T5330] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  530.163854][ T5330] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  530.645059][   T14] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  530.690280][ T4274] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  530.701299][ T4274] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  530.710598][ T4274] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  530.722929][ T4274] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  530.800522][ T9955] Cannot find del_set index 0 as target
[  530.866577][ T4274] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  530.918047][ T4274] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  531.309324][   T14] usb 3-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[  531.336463][   T14] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  531.368500][   T14] usb 3-1: config 0 descriptor??
[  532.354940][   T14] usb 3-1: Cannot set autoneg
[  532.359775][   T14] MOSCHIP usb-ethernet driver: probe of 3-1:0.0 failed with error -71
[  532.391231][   T14] usb 3-1: USB disconnect, device number 7
[  532.418156][ T9953] chnl_net:caif_netlink_parms(): no params data found
[  532.612406][ T9953] bridge0: port 1(bridge_slave_0) entered blocking state
[  532.633619][ T9953] bridge0: port 1(bridge_slave_0) entered disabled state
[  532.659141][ T9953] device bridge_slave_0 entered promiscuous mode
[  532.731116][ T9953] bridge0: port 2(bridge_slave_1) entered blocking state
[  532.741159][ T9953] bridge0: port 2(bridge_slave_1) entered disabled state
[  532.763229][ T9953] device bridge_slave_1 entered promiscuous mode
[  533.077959][ T4274] Bluetooth: hci2: command 0x0409 tx timeout
[  533.197473][ T9953] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  533.696664][ T9953] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  533.987856][ T9999] loop2: detected capacity change from 0 to 512
[  534.116841][ T9999] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  534.144815][ T9999] ext4 filesystem being mounted at /317/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  534.160247][T10006] loop4: detected capacity change from 0 to 256
[  534.181655][T10006] exFAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  534.223650][ T9953] team0: Port device team_slave_0 added
[  534.268346][T10006] exFAT-fs (loop4): Medium has reported failures. Some data may be lost.
[  534.399125][T10006] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  534.590180][ T5330] device hsr_slave_0 left promiscuous mode
[  534.602168][ T5330] device hsr_slave_1 left promiscuous mode
[  534.623327][ T5330] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  534.636802][ T5330] batman_adv: batadv0: Removing interface: batadv_slave_0
[  534.664006][ T5330] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  534.678027][ T5330] batman_adv: batadv0: Removing interface: batadv_slave_1
[  534.739388][ T5330] device veth1_macvtap left promiscuous mode
[  534.754791][ T5330] device veth0_macvtap left promiscuous mode
[  534.771415][ T5330] device veth1_vlan left promiscuous mode
[  534.781509][ T5330] device veth0_vlan left promiscuous mode
[  534.869110][T10016] loop4: detected capacity change from 0 to 512
[  534.922411][T10016] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  534.941126][T10016] ext4 filesystem being mounted at /298/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  535.094668][ T4271] Bluetooth: hci2: command 0x041b tx timeout
[  535.150241][ T4267] EXT4-fs (loop4): unmounting filesystem.
[  536.307769][T10036] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  536.912269][T10038] loop4: detected capacity change from 0 to 256
[  537.269663][T10038] syz.4.1594: attempt to access beyond end of device
[  537.269663][T10038] loop4: rw=2049, sector=256, nr_sectors = 68 limit=256
[  537.555569][ T4271] Bluetooth: hci2: command 0x040f tx timeout
[  538.105595][T10042] syz.4.1594: attempt to access beyond end of device
[  538.105595][T10042] loop4: rw=2049, sector=260, nr_sectors = 4 limit=256
[  538.151767][T10042] Buffer I/O error on dev loop4, logical block 65, lost async page write
[  538.184244][T10042] syz.4.1594: attempt to access beyond end of device
[  538.184244][T10042] loop4: rw=2049, sector=264, nr_sectors = 16 limit=256
[  538.550855][ T5330] team0 (unregistering): Port device team_slave_1 removed
[  538.660644][ T5330] team0 (unregistering): Port device team_slave_0 removed
[  538.719648][ T5330] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  538.850403][ T5330] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  539.574705][ T4271] Bluetooth: hci2: command 0x0419 tx timeout
[  540.561223][T10067] loop4: detected capacity change from 0 to 2048
[  540.603828][T10067] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  540.974624][ T9650] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  541.060863][ T5330] bond0 (unregistering): Released all slaves
[  541.095025][ T9953] team0: Port device team_slave_1 added
[  541.109612][T10011] netlink: 'syz.2.1583': attribute type 12 has an invalid length.
[  541.126451][T10044] netlink: 'syz.1.1595': attribute type 16 has an invalid length.
[  541.134367][T10044] netlink: 'syz.1.1595': attribute type 17 has an invalid length.
[  541.147775][T10044] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  541.155322][T10044] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  541.156254][ T9650] usb 5-1: New USB device found, idVendor=1235, idProduct=000e, bcdDevice=f0.ee
[  541.164985][T10044] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  541.179423][T10044] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  541.189566][ T9650] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  541.223267][ T9650] usb 5-1: config 0 descriptor??
[  541.246845][ T4265] EXT4-fs (loop2): unmounting filesystem.
[  541.291470][ T9650] snd-usb-audio: probe of 5-1:0.0 failed with error -2
[  541.408847][ T9953] batman_adv: batadv0: Adding interface: batadv_slave_0
[  541.424281][ T9865] udevd[9865]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  541.461831][ T9953] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  541.522455][ T9953] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  541.538224][ T9953] batman_adv: batadv0: Adding interface: batadv_slave_1
[  541.547411][ T9953] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  541.635664][T10076] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  541.814793][  T127] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  541.855172][ T9953] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  542.064929][  T127] usb 3-1: Using ep0 maxpacket: 8
[  542.085918][  T127] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  542.264656][  T127] usb 3-1: New USB device found, idVendor=0e8d, idProduct=2000, bcdDevice=21.c6
[  542.304516][  T127] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  542.345562][T10078] overlayfs: failed to clone upperpath
[  542.352431][  T127] usb 3-1: config 0 descriptor??
[  542.367276][  T127] cdc_acm 3-1:0.0: skipping garbage
[  542.372708][  T127] cdc_acm 3-1:0.0: invalid descriptor buffer length
[  542.577519][ T4401] usb 5-1: USB disconnect, device number 10
[  542.626953][ T9953] device hsr_slave_0 entered promiscuous mode
[  542.686437][ T9953] device hsr_slave_1 entered promiscuous mode
[  542.727806][ T9953] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  542.763023][ T9953] Cannot create hsr debugfs directory
[  543.202730][ T4341] usb 3-1: USB disconnect, device number 8
[  543.244171][ T9953] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  543.299452][ T9953] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  543.323077][ T9953] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  543.365371][ T9953] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  543.628006][ T9953] 8021q: adding VLAN 0 to HW filter on device bond0
[  544.244021][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  544.258227][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  544.268242][T10083] overlayfs: failed to clone upperpath
[  544.345847][ T9953] 8021q: adding VLAN 0 to HW filter on device team0
[  544.378600][ T4715] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  544.435082][ T4715] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  544.489013][ T4715] bridge0: port 1(bridge_slave_0) entered blocking state
[  544.496212][ T4715] bridge0: port 1(bridge_slave_0) entered forwarding state
[  544.539407][ T4715] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  544.556131][T10111] loop2: detected capacity change from 0 to 16
[  544.566623][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  544.590007][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  544.605361][T10111] erofs: (device loop2): mounted with root inode @ nid 36.
[  544.645781][   T75] bridge0: port 2(bridge_slave_1) entered blocking state
[  544.652976][   T75] bridge0: port 2(bridge_slave_1) entered forwarding state
[  544.774703][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  544.817447][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  544.843358][T10115] loop2: detected capacity change from 0 to 256
[  544.846072][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  544.872189][T10117] overlayfs: failed to clone upperpath
[  544.886769][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  544.901775][T10115] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x18b10316, utbl_chksum : 0xe619d30d)
[  544.925615][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  544.934022][T10115] exFAT-fs (loop2): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  544.953790][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  544.975828][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  545.018064][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  545.045258][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  545.071152][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  545.128309][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  545.171829][ T9953] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  545.530359][T10129] loop2: detected capacity change from 0 to 128
[  545.597560][T10129] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  547.415953][ T5328] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  547.424061][ T5328] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  547.496955][ T9953] 8021q: adding VLAN 0 to HW filter on device batadv0
[  547.865858][T10144] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1624'.
[  548.559436][T10152] overlayfs: failed to clone upperpath
[  548.996614][T10164] xt_NFQUEUE: number of total queues is 0
[  549.694720][ T5328] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  549.736503][ T5328] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  549.772231][T10172] loop4: detected capacity change from 0 to 128
[  549.831329][ T5330] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  550.455881][T10172] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  550.480843][ T5330] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  550.499082][T10172] ext4 filesystem being mounted at /310/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  550.543528][ T9953] device veth0_vlan entered promiscuous mode
[  550.569699][T10181] overlayfs: failed to clone upperpath
[  550.585557][ T5330] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  550.593513][ T5330] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  550.620681][ T9953] device veth1_vlan entered promiscuous mode
[  550.714398][ T9953] device veth0_macvtap entered promiscuous mode
[  550.725427][T10172] kvm: pic: non byte write
[  550.735193][ T5330] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  550.761805][ T5330] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  550.801533][ T5330] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  550.827159][ T5330] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  550.836347][ T5330] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  550.847352][ T9953] device veth1_macvtap entered promiscuous mode
[  550.883191][ T9953] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  550.906772][ T9953] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  550.935094][ T9953] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  550.960489][ T9953] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  550.980390][T10190] loop2: detected capacity change from 0 to 128
[  550.980916][ T9953] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  551.014476][ T9953] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  551.036803][ T9953] batman_adv: batadv0: Interface activated: batadv_slave_0
[  551.054509][T10190] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  551.073766][ T5330] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  551.083004][ T5330] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  551.115210][ T9953] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  551.146861][ T9953] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  551.164009][ T9953] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  551.184344][ T9953] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  551.199952][ T9953] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  551.210919][ T9953] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  551.228417][ T4267] EXT4-fs (loop4): unmounting filesystem.
[  551.243760][ T9953] batman_adv: batadv0: Interface activated: batadv_slave_1
[  551.288788][ T5330] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  551.300845][ T5330] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  551.346373][ T9953] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  551.381241][ T9953] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  551.411182][ T9953] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  551.437336][ T9953] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  551.627935][ T5330] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  551.652039][ T5330] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  552.169639][ T5330] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  552.218926][ T5330] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  552.247908][ T5328] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  552.260321][ T5328] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  554.047822][T10227] loop6: detected capacity change from 0 to 128
[  555.734298][T10250] overlayfs: failed to clone upperpath
[  557.297345][T10276] overlayfs: failed to clone upperpath
[  557.895487][T10281] loop4: detected capacity change from 0 to 256
[  557.980348][T10281] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x76936814, utbl_chksum : 0xe619d30d)
[  558.284765][ T4310] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  558.517048][ T4310] usb 7-1: Using ep0 maxpacket: 16
[  558.548462][ T4310] usb 7-1: config 0 has no interfaces?
[  558.660230][ T4310] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  558.744388][ T4310] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  558.766721][T10289] loop4: detected capacity change from 0 to 256
[  558.770849][ T4310] usb 7-1: SerialNumber: syz
[  558.868845][ T4310] usb 7-1: config 0 descriptor??
[  558.892993][T10289] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  559.118641][T10274] loop6: detected capacity change from 0 to 256
[  559.173293][T10295] loop2: detected capacity change from 0 to 8192
[  559.312113][ T9650] usb 7-1: USB disconnect, device number 2
[  559.664572][T10309] overlayfs: failed to clone upperpath
[  559.744372][T10311] overlayfs: failed to clone upperpath
[  560.045889][ T4310] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  560.182684][T10319] overlayfs: failed to clone upperpath
[  560.318188][ T4310] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  560.516255][ T4310] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  560.653688][ T4310] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  560.841403][T10327] netlink: 156 bytes leftover after parsing attributes in process `syz.1.1685'.
[  561.122139][ T4310] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  561.153465][ T4310] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  561.201419][ T4310] usb 5-1: config 0 descriptor??
[  561.700299][T10332] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  561.730344][T10334] loop6: detected capacity change from 0 to 1024
[  561.786935][T10334] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  561.814386][T10334] ext4 filesystem being mounted at /13/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  561.935645][ T4310] plantronics 0003:047F:FFFF.0005: unknown main item tag 0xe
[  561.943113][ T4310] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[  561.981785][ T4310] plantronics 0003:047F:FFFF.0005: No inputs registered, leaving
[  562.002470][ T4310] plantronics 0003:047F:FFFF.0005: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[  562.120677][ T9953] EXT4-fs (loop6): unmounting filesystem.
[  562.308439][ T4310] usb 5-1: USB disconnect, device number 11
[  564.174114][T10363] overlayfs: failed to clone upperpath
[  565.570975][T10382] loop2: detected capacity change from 0 to 512
[  565.615587][T10382] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock
[  565.677357][T10382] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock
[  565.691432][T10382] EXT4-fs (loop2): ext4_check_descriptors: Inode table for group 1 overlaps superblock
[  565.716072][T10382] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  565.744636][T10382] [EXT4 FS bs=4096, gc=2, bpg=35, ipg=32, mo=e041e01c, mo2=0000]
[  565.752596][T10382] EXT4-fs (loop2): failed to initialize system zone (-117)
[  565.794036][T10390] loop4: detected capacity change from 0 to 16
[  565.803215][T10382] EXT4-fs (loop2): mount failed
[  565.827256][T10390] erofs: (device loop4): mounted with root inode @ nid 36.
[  565.973365][T10392] loop6: detected capacity change from 0 to 2048
[  566.063449][T10392] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  566.326944][T10404] loop4: detected capacity change from 0 to 512
[  566.467922][   T27] audit: type=1326 audit(1756923706.782:416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10398 comm="syz.2.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa05df8ebe9 code=0x7ffc0000
[  566.585716][T10404] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  566.881164][   T27] audit: type=1326 audit(1756923706.782:417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10398 comm="syz.2.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa05df8ebe9 code=0x7ffc0000
[  566.903672][   T27] audit: type=1326 audit(1756923706.792:418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10398 comm="syz.2.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa05df8ebe9 code=0x7ffc0000
[  567.054328][   T27] audit: type=1326 audit(1756923706.792:419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10398 comm="syz.2.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa05df8ebe9 code=0x7ffc0000
[  567.128576][T10404] EXT4-fs (loop4): 1 orphan inode deleted
[  567.179454][T10404] EXT4-fs (loop4): 1 truncate cleaned up
[  567.204529][T10404] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  567.213189][   T27] audit: type=1326 audit(1756923706.792:420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10398 comm="syz.2.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa05df8ebe9 code=0x7ffc0000
[  567.236519][T10392] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1097: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  567.269939][T10404] EXT4-fs error (device loop4): ext4_lookup:1858: inode #15: comm syz.4.1708: iget: bad extra_isize 46 (inode size 256)
[  567.294092][T10392] EXT4-fs (loop6): Delayed block allocation failed for inode 18 at logical offset 4 with max blocks 6 with error 28
[  567.321446][   T27] audit: type=1326 audit(1756923706.792:421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10398 comm="syz.2.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7fa05df8ebe9 code=0x7ffc0000
[  567.353500][T10392] EXT4-fs (loop6): This should not happen!! Data will be lost
[  567.353500][T10392] 
[  567.363495][T10404] EXT4-fs (loop4): Remounting filesystem read-only
[  567.375852][T10392] EXT4-fs (loop6): Total free blocks count 0
[  567.393922][   T27] audit: type=1326 audit(1756923706.792:422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10398 comm="syz.2.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa05df8ebe9 code=0x7ffc0000
[  567.450867][T10392] EXT4-fs (loop6): Free/Dirty block details
[  567.472080][T10392] EXT4-fs (loop6): free_blocks=2415919104
[  567.495909][T10392] EXT4-fs (loop6): dirty_blocks=1008
[  567.532520][T10392] EXT4-fs (loop6): Block reservation details
[  567.538709][   T27] audit: type=1326 audit(1756923706.792:423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10398 comm="syz.2.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa05df8ebe9 code=0x7ffc0000
[  567.541767][T10392] EXT4-fs (loop6): i_reserved_data_blocks=63
[  567.703884][ T4267] EXT4-fs (loop4): unmounting filesystem.
[  567.964523][   T27] audit: type=1326 audit(1756923706.792:424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10398 comm="syz.2.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa05df8ebe9 code=0x7ffc0000
[  567.995321][ T1276] ieee802154 phy0 wpan0: encryption failed: -22
[  568.002026][ T1276] ieee802154 phy1 wpan1: encryption failed: -22
[  568.073818][   T27] audit: type=1326 audit(1756923706.792:425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10398 comm="syz.2.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa05df8ebe9 code=0x7ffc0000
[  568.302719][   T50] EXT4-fs (loop6): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 6 with error 28
[  568.530638][T10427] loop4: detected capacity change from 0 to 1024
[  568.545325][T10427] EXT4-fs: Ignoring removed bh option
[  568.905444][T10427] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  569.169948][T10432] loop6: detected capacity change from 0 to 128
[  569.289078][T10432] FAT-fs (loop6): bogus number of FAT structure
[  569.345546][T10432] FAT-fs (loop6): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[  569.424584][T10432] FAT-fs (loop6): Can't find a valid FAT filesystem
[  570.137355][ T4267] EXT4-fs (loop4): unmounting filesystem.
[  573.721745][T10484] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1734'.
[  573.764959][   T14] usb 5-1: new full-speed USB device number 12 using dummy_hcd
[  574.416726][   T14] usb 5-1: unable to get BOS descriptor or descriptor too short
[  574.435217][   T14] usb 5-1: not running at top speed; connect to a high speed hub
[  574.449165][   T14] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  574.465950][   T14] usb 5-1: config 1 interface 0 altsetting 4 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  574.479319][   T14] usb 5-1: config 1 interface 0 has no altsetting 0
[  574.492379][   T14] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  574.507873][   T14] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  574.516487][   T14] usb 5-1: Product: syz
[  574.520673][   T14] usb 5-1: Manufacturer: syz
[  574.528906][   T14] usb 5-1: SerialNumber: syz
[  574.572926][   T14] cdc_ether 5-1:1.0: skipping garbage
[  574.581518][   T14] usb 5-1: bad CDC descriptors
[  575.331438][ T4341] usb 5-1: USB disconnect, device number 12
[  575.389972][T10504] loop6: detected capacity change from 0 to 128
[  575.425955][T10504] FAT-fs (loop6): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  575.449051][T10505] overlayfs: failed to clone upperpath
[  575.468875][T10504] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  576.358183][T10507] loop2: detected capacity change from 0 to 512
[  576.424589][T10507] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  576.440511][ T4550] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  576.550579][T10507] EXT4-fs (loop2): orphan cleanup on readonly fs
[  576.582778][T10507] __quota_error: 19 callbacks suppressed
[  576.582798][T10507] Quota error (device loop2): do_check_range: Getting block 196613 out of range 1-5
[  576.674854][T10507] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0
[  576.692913][T10507] EXT4-fs error (device loop2): ext4_acquire_dquot:6816: comm syz.2.1742: Failed to acquire dquot type 1
[  576.727935][T10507] EXT4-fs (loop2): 1 truncate cleaned up
[  576.811997][T10507] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  578.902423][T10507] EXT4-fs error (device loop2): ext4_lookup:1862: inode #2: comm syz.2.1742: deleted inode referenced: 12
[  578.974800][T10516] EXT4-fs error (device loop2): ext4_lookup:1862: inode #2: comm syz.2.1742: deleted inode referenced: 12
[  578.999212][T10507] EXT4-fs error (device loop2): ext4_lookup:1862: inode #2: comm syz.2.1742: deleted inode referenced: 12
[  581.489572][T10557] loop4: detected capacity change from 0 to 512
[  581.533190][T10557] EXT4-fs: Ignoring removed nobh option
[  581.543002][T10557] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  581.616921][T10557] EXT4-fs error (device loop4): ext4_orphan_get:1400: inode #15: comm syz.4.1757: iget: bad i_size value: 38620345925642
[  581.647213][T10557] EXT4-fs error (device loop4): ext4_orphan_get:1405: comm syz.4.1757: couldn't read orphan inode 15 (err -117)
[  581.683541][T10557] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  581.693229][ T4265] EXT4-fs (loop2): unmounting filesystem.
[  581.842263][   T27] audit: type=1800 audit(1756923722.212:445): pid=10557 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1757" name="file1" dev="loop4" ino=19 res=0 errno=0
[  581.853771][T10557] EXT4-fs error (device loop4): ext4_validate_block_bitmap:429: comm syz.4.1757: bg 0: block 5: invalid block bitmap
[  582.075029][T10557] EXT4-fs (loop4): Delayed block allocation failed for inode 19 at logical offset 0 with max blocks 64 with error 28
[  584.004546][T10557] EXT4-fs (loop4): This should not happen!! Data will be lost
[  584.004546][T10557] 
[  584.194559][T10557] EXT4-fs (loop4): Total free blocks count 0
[  584.200609][T10557] EXT4-fs (loop4): Free/Dirty block details
[  584.321808][T10557] EXT4-fs (loop4): free_blocks=0
[  584.347853][T10557] EXT4-fs (loop4): dirty_blocks=64
[  584.384807][T10557] EXT4-fs (loop4): Block reservation details
[  584.405533][T10557] EXT4-fs (loop4): i_reserved_data_blocks=64
[  584.520696][ T4267] EXT4-fs (loop4): unmounting filesystem.
[  584.645989][T10600] loop4: detected capacity change from 0 to 128
[  584.772373][T10604] loop6: detected capacity change from 0 to 512
[  584.842610][T10604] EXT4-fs error (device loop6): __ext4_fill_super:5404: inode #2: comm syz.6.1773: iget: checksum invalid
[  584.865070][T10604] EXT4-fs (loop6): get root inode failed
[  584.870814][T10604] EXT4-fs (loop6): mount failed
[  585.289871][T10620] input: syz1 as /devices/virtual/input/input7
[  586.381319][T10634] loop2: detected capacity change from 0 to 512
[  586.406996][T10634] EXT4-fs (loop2): Test dummy encryption mode enabled
[  586.469445][T10634] EXT4-fs error (device loop2): ext4_orphan_get:1400: inode #11: comm syz.2.1783: iget: bad extra_isize 31 (inode size 256)
[  586.483593][T10629] loop4: detected capacity change from 0 to 8192
[  586.486817][T10634] EXT4-fs error (device loop2): ext4_orphan_get:1405: comm syz.2.1783: couldn't read orphan inode 11 (err -117)
[  586.532678][T10634] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  586.555888][T10629]  loop4: p1 p2
[  586.559424][T10629] loop4: partition table partially beyond EOD, truncated
[  586.575042][T10629] loop4: p1 start 16777216 is beyond EOD, truncated
[  586.602121][T10629] loop4: p2 size 515840 extends beyond EOD, truncated
[  586.784779][ T4401] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  586.857803][ T9650] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  586.951356][ T9865] udevd[9865]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory
[  587.334806][ T4401] usb 7-1: Using ep0 maxpacket: 8
[  587.566313][ T4343] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  587.610122][ T4401] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  588.131587][T10634] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1783'.
[  588.139211][ T4401] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  588.151278][ T4401] usb 7-1: New USB device found, idVendor=046d, idProduct=c343, bcdDevice= 0.00
[  588.160922][ T4401] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  588.181160][ T4401] usb 7-1: config 0 descriptor??
[  588.182313][ T9650] usb 3-1: unable to get BOS descriptor or descriptor too short
[  588.284642][ T9650] usb 3-1: unable to read config index 0 descriptor/start: -71
[  588.292301][ T9650] usb 3-1: can't read configurations, error -71
[  588.334549][ T4343] usb 5-1: Using ep0 maxpacket: 32
[  588.342390][ T4343] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 32
[  588.386431][ T4343] usb 5-1: New USB device found, idVendor=0499, idProduct=1010, bcdDevice= a.f5
[  588.398157][ T4343] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  588.418060][ T4343] usb 5-1: Product: syz
[  588.422451][ T4343] usb 5-1: Manufacturer: syz
[  588.427643][ T4343] usb 5-1: SerialNumber: syz
[  588.443528][ T4343] usb 5-1: config 0 descriptor??
[  588.450107][T10673] fuse: Bad value for 'fd'
[  588.451382][T10653] raw-gadget.2 gadget.4: fail, usb_ep_enable returned -22
[  588.628256][ T4401] logitech-hidpp-device 0003:046D:C343.0006: item fetching failed at offset 5/7
[  588.642909][ T4401] logitech-hidpp-device 0003:046D:C343.0006: hidpp_probe:parse failed
[  588.651566][ T4401] logitech-hidpp-device: probe of 0003:046D:C343.0006 failed with error -22
[  588.733937][ T4265] EXT4-fs (loop2): unmounting filesystem.
[  588.885351][T10684] ptrace attach of "./syz-executor exec"[5261] was attempted by "                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              
[  588.913399][ T4376] usb 7-1: USB disconnect, device number 3
[  589.316360][T10688] loop2: detected capacity change from 0 to 2048
[  589.341622][T10688] UDF-fs: error (device loop2): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  589.359002][ T9650] usb 5-1: USB disconnect, device number 13
[  589.388874][T10688] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  589.518012][T10688] UDF-fs: error (device loop2): udf_verify_fi: directory (ino 1376) has entry where CRC length (0) does not match entry length (44)
[  589.586653][T10693] loop6: detected capacity change from 0 to 512
[  590.380717][ T9838] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  590.445588][T10700] fuse: Bad value for 'fd'
[  590.594944][T10707] loop4: detected capacity change from 0 to 512
[  590.692095][T10707] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  590.803043][T10707] EXT4-fs (loop4): 1 truncate cleaned up
[  590.832497][T10707] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  590.960462][ T4267] EXT4-fs (loop4): unmounting filesystem.
[  591.170882][T10725] loop6: detected capacity change from 0 to 2048
[  591.210754][T10725] UDF-fs: warning (device loop6): udf_load_vrs: No anchor found
[  591.725398][T10725] UDF-fs: Scanning with blocksize 512 failed
[  591.897151][T10725] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  592.094170][T10741] fuse: Bad value for 'fd'
[  592.248940][T10745] netlink: 'syz.2.1826': attribute type 13 has an invalid length.
[  592.335100][T10747] pit: kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  592.450516][T10745] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  592.461351][T10749] loop2: detected capacity change from 0 to 1024
[  592.529912][T10745] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  592.590707][T10749] hfsplus: invalid btree extent records (0 size)
[  592.613640][T10749] hfsplus: failed to load extents file
[  592.672184][T10759] loop6: detected capacity change from 0 to 128
[  593.044086][T10768] netlink: 316 bytes leftover after parsing attributes in process `syz.5.1834'.
[  593.285621][T10766] ipt_CLUSTERIP: Please specify destination IP
[  594.021957][T10781] overlayfs: failed to resolve './file1': -2
[  594.780606][T10798] loop4: detected capacity change from 0 to 1764
[  596.164325][T10809] overlayfs: failed to resolve './file1': -2
[  597.429707][T10831] loop4: detected capacity change from 0 to 256
[  597.694175][T10835] loop4: detected capacity change from 0 to 2048
[  597.833751][T10835] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  597.873016][T10835] ext4 filesystem being mounted at /347/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  597.899155][T10846] overlayfs: failed to resolve './file1': -2
[  598.963353][T10858] loop6: detected capacity change from 0 to 1024
[  598.987804][T10859] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1865'.
[  598.996864][T10859] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1865'.
[  599.001509][   T27] audit: type=1800 audit(1756923739.372:446): pid=10835 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1859" name="file0" dev="loop4" ino=13 res=0 errno=0
[  599.005935][T10859] netlink: 5 bytes leftover after parsing attributes in process `syz.5.1865'.
[  599.119631][T10858] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  599.162725][T10858] EXT4-fs error (device loop6): ext4_lookup:1858: comm syz.6.1867: inode #12: comm syz.6.1867: iget: illegal inode #
[  599.223164][T10858] EXT4-fs (loop6): Remounting filesystem read-only
[  599.261282][ T4267] EXT4-fs (loop4): unmounting filesystem.
[  599.391811][ T9953] EXT4-fs (loop6): unmounting filesystem.
[  599.560807][T10880] loop2: detected capacity change from 0 to 512
[  599.581109][T10880] EXT4-fs: inline encryption not supported
[  599.588527][T10880] EXT4-fs: Ignoring removed oldalloc option
[  599.630394][T10880] ext3: Unknown parameter 'smackfsfloor'
[  599.676540][T10880] fuse: Bad value for 'fd'
[  599.985199][T10890] overlayfs: failed to resolve './file0': -2
[  601.587075][T10914] 9pnet_fd: Insufficient options for proto=fd
[  602.429046][T10938] device sit0 left promiscuous mode
[  602.450337][T10938] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  602.458810][T10938] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  602.486102][T10938] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  603.399161][T10950] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  603.433469][T10954] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1900'.
[  603.449785][T10950] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  603.598731][T10965] loop2: detected capacity change from 0 to 512
[  603.700549][T10965] EXT4-fs error (device loop2): ext4_xattr_inode_iget:404: comm syz.2.1902: inode #1: comm syz.2.1902: iget: illegal inode #
[  603.718264][T10965] EXT4-fs error (device loop2): ext4_xattr_inode_iget:409: comm syz.2.1902: error while reading EA inode 1 err=-117
[  603.752568][T10965] EXT4-fs (loop2): 1 orphan inode deleted
[  603.767336][T10965] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  603.869461][ T4265] EXT4-fs (loop2): unmounting filesystem.
[  603.939282][T10979] loop2: detected capacity change from 0 to 256
[  603.967771][T10979] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  604.009417][T10979] exFAT-fs (loop2): Medium has reported failures. Some data may be lost.
[  604.065646][T10979] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  606.873862][T11020] loop4: detected capacity change from 0 to 1024
[  606.966650][T11025] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  606.974097][T11025] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  607.012309][T11025] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  608.130484][T11043] cgroup: Unknown subsys name 'context'
[  608.993819][T11058] loop4: detected capacity change from 0 to 764
[  609.045945][T11058] rock: directory entry would overflow storage
[  609.088253][T11058] rock: sig=0x4654, size=5, remaining=4
[  609.988477][T11074] loop4: detected capacity change from 0 to 1024
[  611.726925][ T5330] hfsplus: b-tree write err: -5, ino 4
[  611.951961][T11091] loop4: detected capacity change from 0 to 2048
[  611.986776][T11091] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=3932051, location=3932051
[  612.036523][T11091] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  613.498986][T11117] loop6: detected capacity change from 0 to 1024
[  614.185312][ T4271] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci2/hci2:201'
[  614.195490][ T4271] CPU: 0 PID: 4271 Comm: kworker/u5:2 Not tainted syzkaller #0
[  614.203055][ T4271] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  614.213132][ T4271] Workqueue: hci2 hci_rx_work
[  614.217849][ T4271] Call Trace:
[  614.221149][ T4271]  <TASK>
[  614.224189][ T4271]  dump_stack_lvl+0x168/0x22e
[  614.228884][ T4271]  ? show_regs_print_info+0x12/0x12
[  614.234108][ T4271]  ? load_image+0x3b0/0x3b0
[  614.238640][ T4271]  sysfs_create_dir_ns+0x252/0x280
[  614.243775][ T4271]  ? hci_rx_work+0x3eb/0xd40
[  614.248396][ T4271]  ? sysfs_warn_dup+0xa0/0xa0
[  614.253103][ T4271]  ? do_raw_spin_unlock+0x11d/0x230
[  614.258334][ T4271]  kobject_add_internal+0x6b8/0xc80
[  614.263543][ T4271]  kobject_add+0x152/0x210
[  614.267971][ T4271]  ? kobject_init+0x1d0/0x1d0
[  614.272648][ T4271]  ? klist_children_get+0x50/0x50
[  614.277739][ T4271]  ? get_device_parent+0x121/0x3f0
[  614.282871][ T4271]  device_add+0x483/0xfb0
[  614.287204][ T4271]  ? kmem_cache_free+0xf7/0x290
[  614.292057][ T4271]  hci_conn_add_sysfs+0xd1/0x1e0
[  614.296995][ T4271]  le_conn_complete_evt+0xd1d/0x1320
[  614.302287][ T4271]  ? hci_le_big_info_adv_report_evt+0x310/0x310
[  614.308655][ T4271]  ? __mutex_unlock_slowpath+0x19e/0x6a0
[  614.314392][ T4271]  ? skb_pull_data+0xf7/0x200
[  614.319078][ T4271]  hci_le_conn_complete_evt+0x183/0x440
[  614.324635][ T4271]  ? hci_remote_host_features_evt+0x270/0x270
[  614.330710][ T4271]  hci_event_packet+0x791/0x1210
[  614.335652][ T4271]  ? bis_list+0x280/0x280
[  614.339977][ T4271]  ? _raw_spin_unlock_irqrestore+0xaa/0x100
[  614.345876][ T4271]  ? kcov_remote_start+0x4c7/0x7e0
[  614.350978][ T4271]  ? __show_mem+0x160/0x308
[  614.355475][ T4271]  ? hci_send_to_monitor+0x9c/0x4a0
[  614.360671][ T4271]  hci_rx_work+0x3eb/0xd40
[  614.365094][ T4271]  ? _raw_spin_unlock+0x40/0x40
[  614.370155][ T4271]  ? process_one_work+0x7a1/0x1160
[  614.375362][ T4271]  process_one_work+0x898/0x1160
[  614.380399][ T4271]  ? worker_detach_from_pool+0x240/0x240
[  614.386037][ T4271]  ? _raw_spin_lock_irq+0xab/0xe0
[  614.391059][ T4271]  ? _raw_spin_lock_irqsave+0xf0/0xf0
[  614.396467][ T4271]  ? kthread_data+0x4b/0xc0
[  614.400971][ T4271]  worker_thread+0xaa2/0x1250
[  614.405660][ T4271]  kthread+0x29d/0x330
[  614.409726][ T4271]  ? worker_clr_flags+0x1a0/0x1a0
[  614.414742][ T4271]  ? kthread_blkcg+0xd0/0xd0
[  614.419326][ T4271]  ret_from_fork+0x1f/0x30
[  614.423749][ T4271]  </TASK>
[  614.427905][ T4271] kobject_add_internal failed for hci2:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  614.444169][ T4271] Bluetooth: hci2: failed to register connection device
[  614.713330][T11131] loop2: detected capacity change from 0 to 2048
[  614.797284][T11131] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  614.872971][T11137] pit: kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  615.227888][T11147] loop2: detected capacity change from 0 to 1024
[  615.248636][T11147] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (32298!=35945)
[  615.329055][T11147] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  615.342352][T11147] EXT4-fs (loop2): orphan cleanup on readonly fs
[  615.357272][T11147] EXT4-fs error (device loop2): ext4_read_inode_bitmap:168: comm syz.2.1965: Inode bitmap for bg 0 marked uninitialized
[  615.372679][T11147] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  615.424676][  T129] usb 7-1: new full-speed USB device number 4 using dummy_hcd
[  616.212611][ T4265] EXT4-fs (loop2): unmounting filesystem.
[  616.285105][  T129] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64
[  616.321821][  T129] usb 7-1: New USB device found, idVendor=1b96, idProduct=000e, bcdDevice= 0.00
[  616.394227][T11163] Cannot find del_set index 0 as target
[  616.429560][T11163] Bluetooth: MGMT ver 1.22
[  616.435792][T11163] Bluetooth: hci0: load_link_keys: expected 3 bytes, got 7 bytes
[  616.614583][ T4271] Bluetooth: hci2: command 0x0405 tx timeout
[  616.875830][  T129] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  616.886027][  T129] usb 7-1: config 0 descriptor??
[  616.906836][T11144] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  617.208257][T11172] loop2: detected capacity change from 0 to 512
[  617.227098][T11172] EXT4-fs: Ignoring removed i_version option
[  617.234185][T11172] ext4: Unknown parameter 'noacl'
[  617.413943][  T129] ntrig 0003:1B96:000E.0007: hidraw0: USB HID vff.fa Device [HID 1b96:000e] on usb-dummy_hcd.6-1/input0
[  617.460804][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  617.539388][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  617.564589][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  617.611533][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  617.640483][  T129] usb 7-1: USB disconnect, device number 4
[  617.656914][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  617.664353][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  617.683307][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  617.719292][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  617.727424][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  617.742132][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  617.749961][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  617.758398][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  617.784354][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  617.792152][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  617.803143][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  617.820257][T11187] fido_id[11187]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.6/usb7/report_descriptor': No such file or directory
[  617.824756][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  617.868832][    C1] IPv4: Oversized IP packet from 127.0.0.1
[  617.882802][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  617.896933][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  617.905217][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  617.915715][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  617.918111][T11193] ipt_CLUSTERIP: Please specify destination IP
[  617.923135][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  617.923158][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  617.923177][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  617.923194][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  617.923212][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  617.970778][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  617.978770][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  617.986371][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  617.994252][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  618.001946][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  618.019563][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  618.030541][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  618.044001][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  618.051746][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  618.065812][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  618.073476][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  618.081384][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  618.090137][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  618.097860][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  618.110917][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  618.118825][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  618.132010][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  618.140058][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  618.320231][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  618.328282][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  618.336613][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  618.344042][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  618.352006][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  618.359732][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  618.374549][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  618.383306][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  618.963210][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  619.053794][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  619.061335][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  619.068890][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  619.076373][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  619.083890][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  619.091384][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  619.104089][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  619.111621][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  619.120093][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  619.127632][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  619.135936][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  619.143354][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  619.150913][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  619.158558][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  619.166076][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  619.173498][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  619.184489][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  619.192194][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  619.204186][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  619.224534][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  619.232070][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  619.254481][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  619.261943][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  619.284506][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  619.291975][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  619.314519][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  619.321984][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  619.338845][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  619.354512][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  619.361954][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  619.384516][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  619.391971][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  619.414513][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  619.421960][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  619.432128][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  619.439629][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  619.447667][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  619.455143][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  619.462555][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  619.470120][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  619.482478][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  619.500398][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  619.511267][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  619.529146][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  619.558587][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  619.578677][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  619.599505][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  619.607622][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  619.621914][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  619.629784][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  619.642678][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  620.365511][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  620.373504][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  620.381451][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  620.389035][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  620.396518][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  620.404105][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  620.411599][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  620.420108][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  620.427605][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  620.440021][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  620.454589][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  620.462038][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  620.482458][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  620.640774][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  620.648777][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  620.656798][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  620.664222][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  620.672143][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  620.679620][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  620.687075][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  620.694539][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  620.701944][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.378657][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.386471][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.394141][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.401622][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.409135][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.416612][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.424015][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.436393][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.443858][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.452449][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.459917][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.467397][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.474896][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.482397][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.490293][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.497795][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.505533][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.513301][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.520798][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.528291][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.535790][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.543201][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.550936][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.563505][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.573226][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.581188][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.602076][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.609577][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.617345][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.634384][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.642006][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.664544][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.671993][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.689583][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.703476][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.724653][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.734165][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.753177][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.761004][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.780000][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.791819][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.801759][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.809519][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.817516][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.825504][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.833259][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.854523][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.872200][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.879760][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.891505][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.900599][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.913715][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.923574][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.944508][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.952034][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.969621][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.979804][T11235] 9pnet_fd: Insufficient options for proto=fd
[  621.986400][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  621.993829][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  622.002429][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  622.019317][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  622.026876][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  622.034300][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  622.046475][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  622.053899][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  622.063684][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  622.074135][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  622.081875][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  622.089451][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  622.096898][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  622.104929][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  622.112455][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  622.119952][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  622.127428][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  622.135045][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  622.142464][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  622.149965][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  622.157448][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  622.164910][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  622.172324][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  622.179928][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  622.187395][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  622.194854][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  622.202253][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  622.210116][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  622.217596][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  622.225057][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  622.232464][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  622.239954][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  622.247553][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  622.255039][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  622.262465][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  622.270015][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  622.277482][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  622.284951][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  622.292436][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  622.300064][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  622.307961][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  622.315647][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  622.323050][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  622.330542][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  622.337987][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  622.345559][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  622.352959][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  622.360432][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  622.367921][   T14] hid-generic 0006:0400:0009.0008: unknown main item tag 0x0
[  622.376779][   T14] hid-generic 0006:0400:0009.0008: hidraw0: VIRTUAL HID v0.01 Device [syz1] on syz1
[  622.498394][T11239] fido_id[11239]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  622.984731][ T4401] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  623.222660][ T4401] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  623.318928][ T4401] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  623.346439][ T4401] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  623.372414][ T4401] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  623.381897][ T4401] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  623.401017][ T4401] usb 3-1: config 0 descriptor??
[  623.556428][T11260] loop4: detected capacity change from 0 to 256
[  623.601558][T11260] exFAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  623.653061][T11260] exFAT-fs (loop4): Medium has reported failures. Some data may be lost.
[  623.674613][T11260] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  623.827666][ T4401] plantronics 0003:047F:FFFF.0009: No inputs registered, leaving
[  623.866104][ T4401] plantronics 0003:047F:FFFF.0009: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  624.114669][ T4401] usb 3-1: USB disconnect, device number 11
[  625.031717][T11285] loop2: detected capacity change from 0 to 2048
[  625.087773][T11285] UDF-fs: error (device loop2): udf_process_sequence: Primary Volume Descriptor not found!
[  625.116612][T11285] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  626.063746][T11302] loop2: detected capacity change from 0 to 16
[  626.081555][T11302] erofs: (device loop2): mounted with root inode @ nid 36.
[  626.300240][T11308] binder: 11307:11308 ioctl 400c620e 2000000001c0 returned -22
[  626.737478][T11323] loop2: detected capacity change from 0 to 128
[  626.758209][T11323] FAT-fs (loop2): Unrecognized mount option "00000000000000000000004" or missing value
[  627.909062][T11341] loop2: detected capacity change from 0 to 8
[  629.422355][ T1276] ieee802154 phy0 wpan0: encryption failed: -22
[  629.432787][ T1276] ieee802154 phy1 wpan1: encryption failed: -22
[  629.619201][T11376] I/O error, dev loop11, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 2
[  629.631553][T11376] SQUASHFS error: Failed to read block 0x0: -5
[  629.750456][   T27] audit: type=1326 audit(1756923770.114:447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11381 comm="syz.5.2049" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd14bd8ebe9 code=0x0
[  629.842050][T11384] loop2: detected capacity change from 0 to 1024
[  629.867674][T11384] hfsplus: unable to parse mount options
[  631.704526][   T14] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  631.791680][T11408] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2058'.
[  631.820456][T11408] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2058'.
[  631.906320][   T14] usb 3-1: config 220 has an invalid interface number: 76 but max is 2
[  631.925217][   T14] usb 3-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[  631.943013][   T14] usb 3-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[  631.974143][   T14] usb 3-1: config 220 has no interface number 2
[  631.989479][   T14] usb 3-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[  632.018222][   T14] usb 3-1: config 220 interface 0 has no altsetting 0
[  632.033359][   T14] usb 3-1: config 220 interface 76 has no altsetting 0
[  632.049068][   T14] usb 3-1: config 220 interface 1 has no altsetting 0
[  632.074878][   T14] usb 3-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  632.077748][T11424] netlink: 'syz.5.2064': attribute type 11 has an invalid length.
[  632.086268][   T14] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  632.101001][   T14] usb 3-1: Product: syz
[  632.106425][   T14] usb 3-1: Manufacturer: syz
[  632.111457][   T14] usb 3-1: SerialNumber: syz
[  633.296492][   T14] usb 3-1: Found UVC 7.01 device syz (8086:0b07)
[  633.303097][   T14] usb 3-1: No valid video chain found.
[  633.313343][   T14] usb 3-1: selecting invalid altsetting 0
[  633.364224][   T14] usb 3-1: selecting invalid altsetting 0
[  633.370946][   T14] usbtest: probe of 3-1:220.1 failed with error -22
[  633.986941][   T14] usb 3-1: USB disconnect, device number 12
[  634.415447][T11459] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  635.503883][T11476] loop4: detected capacity change from 0 to 1764
[  635.523548][T11474] loop2: detected capacity change from 0 to 512
[  635.542215][T11474] UDF-fs: warning (device loop2): udf_load_vrs: No VRS found
[  635.703018][T11474] UDF-fs: Scanning with blocksize 512 failed
[  635.869792][T11474] UDF-fs: warning (device loop2): udf_load_vrs: No VRS found
[  636.060678][T11474] UDF-fs: Scanning with blocksize 1024 failed
[  636.138076][T11474] UDF-fs: warning (device loop2): udf_load_vrs: No VRS found
[  636.154050][T11474] UDF-fs: Scanning with blocksize 2048 failed
[  636.217988][T11474] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  636.330805][T11474] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  636.369779][T11481] loop6: detected capacity change from 0 to 512
[  636.411451][T11485] loop4: detected capacity change from 0 to 128
[  636.457615][T11485] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  636.465662][T11481] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  636.480809][T11485] ext4 filesystem being mounted at /388/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  636.514703][T11481] ext4 filesystem being mounted at /76/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  636.670237][ T9953] EXT4-fs (loop6): unmounting filesystem.
[  636.691822][ T4267] EXT4-fs (loop4): unmounting filesystem.
[  636.736204][T11493] loop2: detected capacity change from 0 to 2048
[  636.777885][T11493] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  636.795340][T11493] ext4 filesystem being mounted at /390/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  637.035476][T11503] loop6: detected capacity change from 0 to 1024
[  637.066188][T11503] EXT4-fs: Ignoring removed orlov option
[  637.078443][T11503] EXT4-fs: Ignoring removed nomblk_io_submit option
[  637.152832][T11503] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  637.230026][T11512] loop4: detected capacity change from 0 to 512
[  637.274586][ T9953] EXT4-fs (loop6): unmounting filesystem.
[  637.308519][T11512] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  637.354666][T11512] ext4 filesystem being mounted at /390/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  637.444728][   T27] audit: type=1800 audit(1756923777.804:448): pid=11493 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2089" name="file0" dev="loop2" ino=13 res=0 errno=0
[  637.488780][   T27] audit: type=1800 audit(1756923777.804:449): pid=11504 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2089" name="file0" dev="loop2" ino=13 res=0 errno=0
[  637.601598][T11518] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  637.829271][ T4265] EXT4-fs (loop2): unmounting filesystem.
[  637.842047][ T4267] EXT4-fs (loop4): unmounting filesystem.
[  638.298249][T11534] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2098'.
[  638.952876][ T4341] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  639.156800][ T4341] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  639.169152][ T4341] usb 7-1: config 0 has no interfaces?
[  639.175162][ T4341] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  639.184931][ T4341] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  639.221156][ T4341] usb 7-1: config 0 descriptor??
[  639.240263][   T14] usb 5-1: new low-speed USB device number 14 using dummy_hcd
[  639.426357][   T14] usb 5-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[  639.432606][ T4341] usb 7-1: USB disconnect, device number 5
[  639.440481][   T14] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  639.457857][   T14] usb 5-1: config 0 descriptor??
[  639.946541][T11571] overlayfs: failed to clone upperpath
[  640.507586][T11577] loop2: detected capacity change from 0 to 128
[  640.589498][T11577] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  640.602777][T11577] ext4 filesystem being mounted at /395/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  640.736672][ T4265] EXT4-fs (loop2): unmounting filesystem.
[  641.249420][   T14] asix 5-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[  641.254912][ T4341] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  641.261518][   T14] asix 5-1:0.0 (unnamed net_device) (uninitialized): Failed to send software reset: ffffffb9
[  641.278003][   T14] asix: probe of 5-1:0.0 failed with error -71
[  641.300175][   T14] usb 5-1: USB disconnect, device number 14
[  641.966436][ T4341] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  641.978395][ T4341] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  641.988587][ T4341] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  642.001923][ T4341] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  642.011243][ T4341] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  642.061173][ T4341] usb 3-1: config 0 descriptor??
[  642.073241][ T4341] hub 3-1:0.0: USB hub found
[  642.241887][T11617] loop4: detected capacity change from 0 to 1024
[  642.277589][ T4341] hub 3-1:0.0: 14 ports detected
[  642.288878][ T4341] hub 3-1:0.0: insufficient power available to use all downstream ports
[  642.916853][T11593] loop2: detected capacity change from 0 to 512
[  642.999032][T11593] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  643.038219][T11593] ext4 filesystem being mounted at /396/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  643.280116][ T4341] usb 3-1: USB disconnect, device number 13
[  644.239962][   T27] audit: type=1326 audit(1756923784.614:450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11646 comm="syz.4.2137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea6a78ebe9 code=0x7ffc0000
[  644.284799][ T4265] EXT4-fs (loop2): unmounting filesystem.
[  644.323877][   T27] audit: type=1326 audit(1756923784.634:451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11646 comm="syz.4.2137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea6a78ebe9 code=0x7ffc0000
[  644.419699][   T27] audit: type=1326 audit(1756923784.634:452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11646 comm="syz.4.2137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fea6a78ebe9 code=0x7ffc0000
[  644.520358][   T27] audit: type=1326 audit(1756923784.634:453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11646 comm="syz.4.2137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea6a78ebe9 code=0x7ffc0000
[  644.614184][   T27] audit: type=1326 audit(1756923784.634:454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11646 comm="syz.4.2137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea6a78ebe9 code=0x7ffc0000
[  644.650686][   T27] audit: type=1326 audit(1756923784.634:455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11646 comm="syz.4.2137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=101 compat=0 ip=0x7fea6a78ebe9 code=0x7ffc0000
[  644.674246][   T27] audit: type=1326 audit(1756923784.634:456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11646 comm="syz.4.2137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea6a78ebe9 code=0x7ffc0000
[  644.701924][   T27] audit: type=1326 audit(1756923784.634:457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11646 comm="syz.4.2137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea6a78ebe9 code=0x7ffc0000
[  644.750966][   T27] audit: type=1326 audit(1756923784.644:458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11646 comm="syz.4.2137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=101 compat=0 ip=0x7fea6a78ebe9 code=0x7ffc0000
[  644.781003][   T27] audit: type=1326 audit(1756923784.644:459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11646 comm="syz.4.2137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea6a78ebe9 code=0x7ffc0000
[  648.730714][T11708] loop4: detected capacity change from 0 to 1024
[  648.949159][T11711] loop2: detected capacity change from 0 to 1024
[  649.522041][T11711] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  649.617523][T11711] ext4 filesystem being mounted at /400/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  649.821500][ T4604] hfsplus: b-tree write err: -5, ino 4
[  649.932495][T11722] overlayfs: failed to clone upperpath
[  650.456023][T11726] loop4: detected capacity change from 0 to 512
[  650.511250][T11711] EXT4-fs error (device loop2): __ext4_get_inode_loc:4507: comm syz.2.2160: Invalid inode table block 0 in block_group 0
[  650.547053][T11711] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5915: Corrupt filesystem
[  650.561970][T11711] EXT4-fs error (device loop2): ext4_setent:3695: inode #2: comm syz.2.2160: mark_inode_dirty error
[  650.625683][T11726] EXT4-fs error (device loop4): ext4_do_update_inode:5254: inode #16: comm syz.4.2162: corrupted inode contents
[  650.629211][T11725] overlayfs: failed to clone upperpath
[  650.652363][T11726] EXT4-fs error (device loop4): ext4_dirty_inode:6119: inode #16: comm syz.4.2162: mark_inode_dirty error
[  650.738255][T11726] EXT4-fs error (device loop4): ext4_do_update_inode:5254: inode #16: comm syz.4.2162: corrupted inode contents
[  650.815229][T11726] EXT4-fs error (device loop4): __ext4_ext_dirty:202: inode #16: comm syz.4.2162: mark_inode_dirty error
[  650.834818][ T5330] EXT4-fs error (device loop2): __ext4_get_inode_loc:4507: comm kworker/u4:25: Invalid inode table block 0 in block_group 0
[  650.848705][T11726] EXT4-fs error (device loop4): ext4_do_update_inode:5254: inode #16: comm syz.4.2162: corrupted inode contents
[  650.917787][T11726] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem
[  650.936901][ T4265] EXT4-fs (loop2): unmounting filesystem.
[  650.965169][T11726] EXT4-fs error (device loop4): ext4_do_update_inode:5254: inode #16: comm syz.4.2162: corrupted inode contents
[  651.005315][T11726] EXT4-fs error (device loop4): ext4_truncate:4312: inode #16: comm syz.4.2162: mark_inode_dirty error
[  651.105602][T11726] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem
[  651.182220][T11726] EXT4-fs (loop4): 1 truncate cleaned up
[  651.190144][T11726] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  651.301957][ T5330] __quota_error: 118 callbacks suppressed
[  651.302027][ T5330] Quota error (device loop4): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  651.375788][T11726] ext4 filesystem being mounted at /401/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  651.610733][ T5330] EXT4-fs error (device loop4): ext4_release_dquot:6852: comm kworker/u4:25: Failed to release dquot type 1
[  651.785756][T11742] loop2: detected capacity change from 0 to 256
[  651.909037][ T4267] EXT4-fs (loop4): unmounting filesystem.
[  651.960391][T11748] loop6: detected capacity change from 0 to 512
[  651.984078][T11748] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  652.080386][T11748] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  652.154730][T11748] ext4 filesystem being mounted at /89/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  652.245236][T11754] loop4: detected capacity change from 0 to 1024
[  652.272362][T11748] EXT4-fs error (device loop6): __ext4_new_inode:1285: comm syz.6.2170: failed to insert inode 16: doubly allocated?
[  652.333378][T11754] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  652.456542][T11754] ext4 filesystem being mounted at /402/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  652.525955][ T9953] EXT4-fs (loop6): unmounting filesystem.
[  652.700088][T11767] loop2: detected capacity change from 0 to 512
[  652.713411][T11767] EXT4-fs: Ignoring removed oldalloc option
[  652.723231][ T4267] EXT4-fs (loop4): unmounting filesystem.
[  652.725656][T11767] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  652.751661][T11767] EXT4-fs (loop2): orphan cleanup on readonly fs
[  652.783736][T11767] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2818: Unable to expand inode 11. Delete some EAs or run e2fsck.
[  652.800165][T11767] EXT4-fs (loop2): 1 truncate cleaned up
[  652.806160][T11767] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  652.828002][T11767] binfmt_misc: register: failed to install interpreter file ./file1
[  652.861107][ T4265] EXT4-fs (loop2): unmounting filesystem.
[  653.089204][T11781] loop4: detected capacity change from 0 to 128
[  653.508539][T11781] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  653.647172][T11781] ext4 filesystem being mounted at /403/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  653.780611][T11793] loop6: detected capacity change from 0 to 256
[  653.792265][T11798] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2185'.
[  653.829108][ T9937] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  654.340899][T11798] loop2: detected capacity change from 0 to 512
[  654.435987][ T4267] EXT4-fs (loop4): unmounting filesystem.
[  654.510050][T11798] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  654.586453][T11798] EXT4-fs error (device loop2): ext4_orphan_get:1426: comm syz.2.2185: bad orphan inode 16
[  654.656027][T11798] ext4_test_bit(bit=15, block=4) = 0
[  654.692672][T11798] EXT4-fs (loop2): 1 orphan inode deleted
[  654.698894][T11798] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  654.768540][ T4265] EXT4-fs (loop2): unmounting filesystem.
[  657.312074][ T4271] Bluetooth: hci2: command 0x0406 tx timeout
[  657.345169][T11834] loop4: detected capacity change from 0 to 128
[  658.901397][T11834] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  659.040446][T11834] ext4 filesystem being mounted at /406/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  659.229393][T11845] loop6: detected capacity change from 0 to 512
[  659.280075][T11845] EXT4-fs: Ignoring removed nobh option
[  659.300371][ T4267] EXT4-fs (loop4): unmounting filesystem.
[  659.436540][T11845] EXT4-fs (loop6): Cannot turn on journaled quota: type 0: error -2
[  659.492305][T11845] EXT4-fs error (device loop6): ext4_free_branches:1030: inode #13: comm syz.6.2198: invalid indirect mapped block 2683928664 (level 1)
[  659.577337][T11845] EXT4-fs (loop6): 1 truncate cleaned up
[  659.583144][T11845] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  661.012639][   T27] audit: type=1800 audit(1756923801.384:578): pid=11845 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.2198" name="file0" dev="loop6" ino=13 res=0 errno=0
[  661.093281][T11873] loop2: detected capacity change from 0 to 128
[  661.124257][T11873] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  661.161610][T11873] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  661.749898][ T9953] EXT4-fs (loop6): unmounting filesystem.
[  661.778921][T11859] loop4: detected capacity change from 0 to 8
[  661.791374][T11859] SQUASHFS error: zlib decompression failed, data probably corrupt
[  661.799743][T11859] SQUASHFS error: Failed to read block 0x9b: -5
[  661.806040][T11859] SQUASHFS error: Unable to read metadata cache entry [99]
[  661.813243][T11859] SQUASHFS error: Unable to read inode 0x127
[  661.855781][ T9865] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  662.012317][T11881] loop6: detected capacity change from 0 to 128
[  662.025704][T11881] FAT-fs (loop6): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  662.162504][T11886] usb usb8: usbfs: process 11886 (syz.4.2215) did not claim interface 0 before use
[  662.174577][T11881] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  663.931112][T11883] kvm [11882]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x186) = 0x200000000
[  664.443382][T11916] loop4: detected capacity change from 0 to 128
[  664.524167][T11916] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  664.563423][T11916] ext4 filesystem being mounted at /410/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  665.044079][ T4267] EXT4-fs (loop4): unmounting filesystem.
[  665.160504][T11930] netlink: 'syz.1.2229': attribute type 2 has an invalid length.
[  665.705389][T11934] loop4: detected capacity change from 0 to 256
[  665.718842][   T27] audit: type=1800 audit(1756923806.094:579): pid=11934 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.2232" name="file1" dev="loop4" ino=1048678 res=0 errno=0
[  665.980545][T11943] FAT-fs (loop4): error, clusters badly computed (0 != 128)
[  665.990233][T11943] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  666.000786][   T27] audit: type=1800 audit(1756923806.374:580): pid=11943 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.2232" name="file1" dev="loop4" ino=1048678 res=0 errno=0
[  666.022776][T11943] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  666.242157][T11953] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  666.461342][T11961] ipt_CLUSTERIP: Please specify destination IP
[  667.252273][T11968] loop4: detected capacity change from 0 to 256
[  667.568989][    C0] ------------[ cut here ]------------
[  667.574870][    C0] WARNING: CPU: 0 PID: 11973 at net/mac80211/tx.c:4944 __ieee80211_beacon_get+0x1952/0x1f50
[  667.585056][    C0] Modules linked in:
[  667.589028][    C0] CPU: 0 PID: 11973 Comm: syz.5.2248 Not tainted syzkaller #0
[  667.596713][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  667.607002][    C0] RIP: 0010:__ieee80211_beacon_get+0x1952/0x1f50
[  667.613444][    C0] Code: ff ff ff e8 00 41 e4 f7 0f 0b 48 8b 7c 24 20 e8 44 ae 7f fe e9 dd e9 ff ff e8 ea 40 e4 f7 0f 0b e9 f1 ee ff ff e8 de 40 e4 f7 <0f> 0b e9 61 f2 ff ff e8 d2 40 e4 f7 48 c7 c7 f0 7a fa 8d 4c 89 f6
[  667.633160][    C0] RSP: 0018:ffffc900000078a0 EFLAGS: 00010246
[  667.639350][    C0] RAX: ffffffff899c8f42 RBX: 0000000000000000 RCX: ffff888018ee9dc0
[  667.647432][    C0] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000
[  667.655538][    C0] RBP: ffffc90000007aa8 R08: ffff888018ee9dc0 R09: 0000000000000003
[  667.663588][    C0] R10: 0000000000000007 R11: 0000000000000100 R12: 1ffff92000000f2c
[  667.671712][    C0] R13: dffffc0000000000 R14: ffff88805504a258 R15: ffff88807acfae00
[  667.679807][    C0] FS:  00007fd149fd56c0(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[  667.688893][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  667.695672][    C0] CR2: 00002000001e2030 CR3: 0000000038df1000 CR4: 00000000003506f0
[  667.703736][    C0] DR0: 0000000000009000 DR1: 0000000000000000 DR2: 0000000000000000
[  667.711812][    C0] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[  667.720033][    C0] Call Trace:
[  667.723421][    C0]  <IRQ>
[  667.726372][    C0]  ? verify_lock_unused+0x140/0x140
[  667.731662][    C0]  ? __ieee80211_beacon_get+0xad/0x1f50
[  667.737314][    C0]  ? ieee80211_beacon_get_template+0x40/0x40
[  667.743393][    C0]  ieee80211_beacon_get_tim+0x5b/0x4d0
[  667.748967][    C0]  mac80211_hwsim_beacon_tx+0x21c/0xae0
[  667.754635][    C0]  ? read_lock_is_recursive+0x10/0x10
[  667.760134][    C0]  __iterate_interfaces+0x243/0x500
[  667.765446][    C0]  ? mac80211_hwsim_vendor_cmd_test+0x2b0/0x2b0
[  667.771778][    C0]  ? ieee80211_iterate_active_interfaces_atomic+0x26/0x170
[  667.779119][    C0]  ? mac80211_hwsim_vendor_cmd_test+0x2b0/0x2b0
[  667.785511][    C0]  ieee80211_iterate_active_interfaces_atomic+0xd7/0x170
[  667.792631][    C0]  mac80211_hwsim_beacon+0xb7/0x1b0
[  667.798089][    C0]  __hrtimer_run_queues+0x554/0xd60
[  667.803373][    C0]  ? hw_scan_work+0xf30/0xf30
[  667.808176][    C0]  ? hrtimer_interrupt+0x9c0/0x9c0
[  667.813383][    C0]  ? ktime_get_update_offsets_now+0x3ce/0x3e0
[  667.819623][    C0]  hrtimer_run_softirq+0x183/0x2a0
[  667.825037][    C0]  handle_softirqs+0x2a1/0x920
[  667.829905][    C0]  ? __irq_exit_rcu+0x12f/0x220
[  667.834880][    C0]  ? do_softirq+0x200/0x200
[  667.839476][    C0]  ? irqtime_account_irq+0xb2/0x1b0
[  667.844817][    C0]  __irq_exit_rcu+0x12f/0x220
[  667.849616][    C0]  ? irq_exit_rcu+0x20/0x20
[  667.854153][    C0]  irq_exit_rcu+0x5/0x20
[  667.858536][    C0]  sysvec_apic_timer_interrupt+0xa0/0xc0
[  667.864259][    C0]  </IRQ>
[  667.867284][    C0]  <TASK>
[  667.870296][    C0]  asm_sysvec_apic_timer_interrupt+0x16/0x20
[  667.876390][    C0] RIP: 0010:_raw_spin_unlock_irqrestore+0xa5/0x100
[  667.882991][    C0] Code: 74 05 e8 fe d1 65 f7 48 c7 44 24 20 00 00 00 00 9c 8f 44 24 20 f6 44 24 21 02 75 4b f7 c3 00 02 00 00 74 01 fb bf 01 00 00 00 <e8> c6 5b 36 f7 65 8b 05 e7 14 e1 75 85 c0 74 3c 48 c7 04 24 0e 36
[  667.902718][    C0] RSP: 0018:ffffc900034275a0 EFLAGS: 00000206
[  667.908908][    C0] RAX: b1a48ea826bfd900 RBX: 0000000000000a06 RCX: b1a48ea826bfd900
[  667.917117][    C0] RDX: dffffc0000000000 RSI: ffffffff8a8c0300 RDI: 0000000000000001
[  667.925197][    C0] RBP: ffffc90003427630 R08: dffffc0000000000 R09: fffffbfff215c25e
[  667.933241][    C0] R10: fffffbfff215c25e R11: 1ffffffff215c25d R12: dffffc0000000000
[  667.941320][    C0] R13: 0000000000000000 R14: ffff888056ac2ec0 R15: 1ffff92000684eb4
[  667.949402][    C0]  ? _raw_spin_unlock+0x40/0x40
[  667.954343][    C0]  ? __wake_up_common+0x2a4/0x4e0
[  667.959479][    C0]  __wake_up_sync_key+0x11b/0x180
[  667.964611][    C0]  ? __wake_up_locked_key_bookmark+0x20/0x20
[  667.970651][    C0]  ? sock_load_diag_module+0x130/0x130
[  667.976240][    C0]  __unix_dgram_recvmsg+0x498/0xd70
[  667.981479][    C0]  ? unix_unhash+0x10/0x10
[  667.986056][    C0]  ? mark_lock+0x94/0x320
[  667.990470][    C0]  ? unix_dgram_recvmsg+0xa9/0xd0
[  667.995696][    C0]  ? unix_dgram_sendmsg+0x16c0/0x16c0
[  668.001157][    C0]  ____sys_recvmsg+0x292/0x580
[  668.006051][    C0]  ? __sys_recvmsg_sock+0x40/0x40
[  668.011186][    C0]  ? import_iovec+0x6f/0xa0
[  668.015797][    C0]  ___sys_recvmsg+0x1b2/0x510
[  668.020556][    C0]  ? __sys_recvmsg+0x270/0x270
[  668.025440][    C0]  ? __lock_acquire+0x7c50/0x7c50
[  668.030539][    C0]  ? __might_fault+0xc2/0x120
[  668.035303][    C0]  ? __might_fault+0xa6/0x120
[  668.040085][    C0]  do_recvmmsg+0x359/0x7d0
[  668.044603][    C0]  ? __sys_recvmmsg+0x280/0x280
[  668.049581][    C0]  ? __up_read+0x27c/0x660
[  668.054172][    C0]  __x64_sys_recvmmsg+0x18d/0x240
[  668.059313][    C0]  ? do_recvmmsg+0x7d0/0x7d0
[  668.063986][    C0]  ? lockdep_hardirqs_on+0x94/0x140
[  668.069289][    C0]  do_syscall_64+0x4c/0xa0
[  668.073792][    C0]  ? clear_bhb_loop+0x60/0xb0
[  668.078651][    C0]  ? clear_bhb_loop+0x60/0xb0
[  668.083413][    C0]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  668.089449][    C0] RIP: 0033:0x7fd14bd8ebe9
[  668.094158][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  668.114122][    C0] RSP: 002b:00007fd149fd5038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  668.122664][    C0] RAX: ffffffffffffffda RBX: 00007fd14bfc6090 RCX: 00007fd14bd8ebe9
[  668.130765][    C0] RDX: 0000000000010106 RSI: 00002000000000c0 RDI: 0000000000000003
[  668.138842][    C0] RBP: 00007fd14be11e19 R08: 0000000000000000 R09: 0000000000000000
[  668.146925][    C0] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  668.154982][    C0] R13: 00007fd14bfc6128 R14: 00007fd14bfc6090 R15: 00007fffef0ea658
[  668.162988][    C0]  </TASK>
[  668.166087][    C0] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  668.173463][    C0] CPU: 0 PID: 11973 Comm: syz.5.2248 Not tainted syzkaller #0
[  668.181026][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  668.191178][    C0] Call Trace:
[  668.194452][    C0]  <IRQ>
[  668.197286][    C0]  dump_stack_lvl+0x168/0x22e
[  668.201962][    C0]  ? memcpy+0x3c/0x60
[  668.205941][    C0]  ? show_regs_print_info+0x12/0x12
[  668.211131][    C0]  ? load_image+0x3b0/0x3b0
[  668.215633][    C0]  panic+0x2c9/0x710
[  668.219523][    C0]  ? bpf_jit_dump+0xd0/0xd0
[  668.224024][    C0]  __warn+0x2f8/0x4f0
[  668.227993][    C0]  ? __ieee80211_beacon_get+0x1952/0x1f50
[  668.233716][    C0]  ? __ieee80211_beacon_get+0x1952/0x1f50
[  668.239426][    C0]  report_bug+0x2ba/0x4f0
[  668.243833][    C0]  ? __ieee80211_beacon_get+0x1952/0x1f50
[  668.249633][    C0]  handle_bug+0x3a/0x70
[  668.253806][    C0]  exc_invalid_op+0x16/0x40
[  668.258299][    C0]  asm_exc_invalid_op+0x16/0x20
[  668.263224][    C0] RIP: 0010:__ieee80211_beacon_get+0x1952/0x1f50
[  668.269541][    C0] Code: ff ff ff e8 00 41 e4 f7 0f 0b 48 8b 7c 24 20 e8 44 ae 7f fe e9 dd e9 ff ff e8 ea 40 e4 f7 0f 0b e9 f1 ee ff ff e8 de 40 e4 f7 <0f> 0b e9 61 f2 ff ff e8 d2 40 e4 f7 48 c7 c7 f0 7a fa 8d 4c 89 f6
[  668.289138][    C0] RSP: 0018:ffffc900000078a0 EFLAGS: 00010246
[  668.295307][    C0] RAX: ffffffff899c8f42 RBX: 0000000000000000 RCX: ffff888018ee9dc0
[  668.303455][    C0] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000
[  668.311415][    C0] RBP: ffffc90000007aa8 R08: ffff888018ee9dc0 R09: 0000000000000003
[  668.319377][    C0] R10: 0000000000000007 R11: 0000000000000100 R12: 1ffff92000000f2c
[  668.327344][    C0] R13: dffffc0000000000 R14: ffff88805504a258 R15: ffff88807acfae00
[  668.335316][    C0]  ? __ieee80211_beacon_get+0x1952/0x1f50
[  668.341080][    C0]  ? verify_lock_unused+0x140/0x140
[  668.346358][    C0]  ? __ieee80211_beacon_get+0xad/0x1f50
[  668.351903][    C0]  ? ieee80211_beacon_get_template+0x40/0x40
[  668.357905][    C0]  ieee80211_beacon_get_tim+0x5b/0x4d0
[  668.363395][    C0]  mac80211_hwsim_beacon_tx+0x21c/0xae0
[  668.368957][    C0]  ? read_lock_is_recursive+0x10/0x10
[  668.374330][    C0]  __iterate_interfaces+0x243/0x500
[  668.379518][    C0]  ? mac80211_hwsim_vendor_cmd_test+0x2b0/0x2b0
[  668.385836][    C0]  ? ieee80211_iterate_active_interfaces_atomic+0x26/0x170
[  668.393023][    C0]  ? mac80211_hwsim_vendor_cmd_test+0x2b0/0x2b0
[  668.399252][    C0]  ieee80211_iterate_active_interfaces_atomic+0xd7/0x170
[  668.406265][    C0]  mac80211_hwsim_beacon+0xb7/0x1b0
[  668.411452][    C0]  __hrtimer_run_queues+0x554/0xd60
[  668.416653][    C0]  ? hw_scan_work+0xf30/0xf30
[  668.421336][    C0]  ? hrtimer_interrupt+0x9c0/0x9c0
[  668.426436][    C0]  ? ktime_get_update_offsets_now+0x3ce/0x3e0
[  668.432501][    C0]  hrtimer_run_softirq+0x183/0x2a0
[  668.437604][    C0]  handle_softirqs+0x2a1/0x920
[  668.442363][    C0]  ? __irq_exit_rcu+0x12f/0x220
[  668.447213][    C0]  ? do_softirq+0x200/0x200
[  668.451709][    C0]  ? irqtime_account_irq+0xb2/0x1b0
[  668.456913][    C0]  __irq_exit_rcu+0x12f/0x220
[  668.461592][    C0]  ? irq_exit_rcu+0x20/0x20
[  668.466094][    C0]  irq_exit_rcu+0x5/0x20
[  668.470328][    C0]  sysvec_apic_timer_interrupt+0xa0/0xc0
[  668.475953][    C0]  </IRQ>
[  668.478872][    C0]  <TASK>
[  668.481790][    C0]  asm_sysvec_apic_timer_interrupt+0x16/0x20
[  668.487847][    C0] RIP: 0010:_raw_spin_unlock_irqrestore+0xa5/0x100
[  668.494339][    C0] Code: 74 05 e8 fe d1 65 f7 48 c7 44 24 20 00 00 00 00 9c 8f 44 24 20 f6 44 24 21 02 75 4b f7 c3 00 02 00 00 74 01 fb bf 01 00 00 00 <e8> c6 5b 36 f7 65 8b 05 e7 14 e1 75 85 c0 74 3c 48 c7 04 24 0e 36
[  668.514040][    C0] RSP: 0018:ffffc900034275a0 EFLAGS: 00000206
[  668.520106][    C0] RAX: b1a48ea826bfd900 RBX: 0000000000000a06 RCX: b1a48ea826bfd900
[  668.528071][    C0] RDX: dffffc0000000000 RSI: ffffffff8a8c0300 RDI: 0000000000000001
[  668.536032][    C0] RBP: ffffc90003427630 R08: dffffc0000000000 R09: fffffbfff215c25e
[  668.543992][    C0] R10: fffffbfff215c25e R11: 1ffffffff215c25d R12: dffffc0000000000
[  668.551951][    C0] R13: 0000000000000000 R14: ffff888056ac2ec0 R15: 1ffff92000684eb4
[  668.559968][    C0]  ? _raw_spin_unlock+0x40/0x40
[  668.564829][    C0]  ? __wake_up_common+0x2a4/0x4e0
[  668.569849][    C0]  __wake_up_sync_key+0x11b/0x180
[  668.574866][    C0]  ? __wake_up_locked_key_bookmark+0x20/0x20
[  668.580837][    C0]  ? sock_load_diag_module+0x130/0x130
[  668.586293][    C0]  __unix_dgram_recvmsg+0x498/0xd70
[  668.591493][    C0]  ? unix_unhash+0x10/0x10
[  668.595942][    C0]  ? mark_lock+0x94/0x320
[  668.600277][    C0]  ? unix_dgram_recvmsg+0xa9/0xd0
[  668.605301][    C0]  ? unix_dgram_sendmsg+0x16c0/0x16c0
[  668.610667][    C0]  ____sys_recvmsg+0x292/0x580
[  668.615466][    C0]  ? __sys_recvmsg_sock+0x40/0x40
[  668.620493][    C0]  ? import_iovec+0x6f/0xa0
[  668.625019][    C0]  ___sys_recvmsg+0x1b2/0x510
[  668.629734][    C0]  ? __sys_recvmsg+0x270/0x270
[  668.634514][    C0]  ? __lock_acquire+0x7c50/0x7c50
[  668.639668][    C0]  ? __might_fault+0xc2/0x120
[  668.644335][    C0]  ? __might_fault+0xa6/0x120
[  668.649005][    C0]  do_recvmmsg+0x359/0x7d0
[  668.653416][    C0]  ? __sys_recvmmsg+0x280/0x280
[  668.658274][    C0]  ? __up_read+0x27c/0x660
[  668.662777][    C0]  __x64_sys_recvmmsg+0x18d/0x240
[  668.667890][    C0]  ? do_recvmmsg+0x7d0/0x7d0
[  668.672478][    C0]  ? lockdep_hardirqs_on+0x94/0x140
[  668.677671][    C0]  do_syscall_64+0x4c/0xa0
[  668.682077][    C0]  ? clear_bhb_loop+0x60/0xb0
[  668.686743][    C0]  ? clear_bhb_loop+0x60/0xb0
[  668.691407][    C0]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  668.697294][    C0] RIP: 0033:0x7fd14bd8ebe9
[  668.701713][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  668.721396][    C0] RSP: 002b:00007fd149fd5038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  668.729803][    C0] RAX: ffffffffffffffda RBX: 00007fd14bfc6090 RCX: 00007fd14bd8ebe9
[  668.737764][    C0] RDX: 0000000000010106 RSI: 00002000000000c0 RDI: 0000000000000003
[  668.745724][    C0] RBP: 00007fd14be11e19 R08: 0000000000000000 R09: 0000000000000000
[  668.753683][    C0] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  668.761654][    C0] R13: 00007fd14bfc6128 R14: 00007fd14bfc6090 R15: 00007fffef0ea658
[  668.769635][    C0]  </TASK>
[  668.773067][    C0] Kernel Offset: disabled
[  668.777453][    C0] Rebooting in 86400 seconds..