last executing test programs:

5.105042199s ago: executing program 0 (id=1880):
ioctl$COMEDI_DEVCONFIG(0xffffffffffffffff, 0x40946400, &(0x7f00000000c0)={'pcl818\x00', [0x8001, 0x9, 0x1, 0x0, 0x1, 0xcc7, 0x8, 0x7, 0xa, 0x100, 0x4be, 0x1, 0x8, 0x1100004, 0x6, 0x4, 0x1, 0x1a449, 0x3, 0x40000003, 0x89, 0x2, 0xf27, 0x6, 0x800b, 0x8, 0x5, 0x2000008, 0x8, 0x10000, 0xfffffff7]})
pread64(0xffffffffffffffff, 0x0, 0x0, 0x7)

4.969545715s ago: executing program 0 (id=1882):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cpuacct.usage_percpu_user\x00', 0x26e1, 0x0)
close(r0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040))
ioctl$SIOCSIFHWADDR(r0, 0x8924, &(0x7f00000001c0)={'dummy0\x00'})

4.816630331s ago: executing program 0 (id=1884):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x1c1)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x80, &(0x7f00000002c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, r1, {0x7, 0x29, 0x9, 0xffffffff9080edc4, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x9}}, 0x50)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x2c)
syz_fuse_handle_req(r0, &(0x7f00000042c0)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001e000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006380)={0x20, 0x0, 0x0, {0x0, 0x1c}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r0, &(0x7f00000063c0)="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", 0x2000, 0x0)
getdents64(r2, 0x0, 0x0)
getdents64(r2, 0x0, 0x0)

3.651212052s ago: executing program 1 (id=1888):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
set_mempolicy(0x3, &(0x7f0000000000)=0x4000000ffb, 0xe)
r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000001440), 0x2202, 0x0)
io_setup(0x104, 0x0)
io_submit(0x0, 0x1, &(0x7f0000000200)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x4, r2, &(0x7f0000000340)="12", 0x1, 0x7fff}])
r3 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$UI_SET_EVBIT(r3, 0x40045564, 0x1)
ioctl$UI_SET_EVBIT(r3, 0x40045564, 0x5)
r4 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x103100, 0x0)
ioctl$SNDCTL_SEQ_RESETSAMPLES(r4, 0x40045109, &(0x7f00000000c0)=0x7a9c7d23)
ioctl$UI_DEV_CREATE(r3, 0x5501)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_NESTED_STATE(r5, 0x4080aebf, &(0x7f0000000580)={{0x0, 0x0, 0x80, {0x4, 0x3000, 0x1}}, "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", "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"})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x74, 0x0, 0x0)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0xe8001, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x2})
ioctl$TUNSETOFFLOAD(r6, 0x400454c9, 0xba98575a95aeb70d)
sendto(0xffffffffffffffff, &(0x7f0000000740), 0x0, 0x8044, 0x0, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_team(r8, 0x8933, &(0x7f0000004700)={'team0\x00', <r9=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000004c00)=@newtfilter={0x24, 0x11, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x74, r9, {}, {}, {0x8, 0x5}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x8881}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000037c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=""/185, 0xb9}}], 0x1, 0x2040000, &(0x7f0000003700)={0x77359400})
ioctl$TUNSETLINK(r6, 0x400454cd, 0x30c)

3.440803031s ago: executing program 0 (id=1890):
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)={0x34, 0x0, 0x1, 0x801, 0x0, 0x0, {0x3, 0x0, 0x1}, [@CTA_FILTER={0x4}, @CTA_SEQ_ADJ_REPLY={0x1c, 0x10, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x1}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x5}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x2}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x80}, 0x1)
r0 = socket$netlink(0x10, 0x3, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
sendmsg$nl_route(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000000c0)=ANY=[@ANYBLOB="3400000013000500010000000000000007000000", @ANYRES32, @ANYBLOB="505204070000000014001a80100005800c000280"], 0x34}, 0x1, 0x0, 0x0, 0x24000000}, 0x60040140)

3.113002675s ago: executing program 0 (id=1893):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
r1 = accept4(r0, 0x0, 0x0, 0x800)
sendmmsg$alg(r1, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926", 0x20}], 0x2}], 0x1, 0x40800)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x3, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2)
ioctl$KVM_SET_CPUID(r4, 0x4008ae8a, &(0x7f00000000c0)=ANY=[@ANYBLOB="020000000000000001000000ff03000006000000a3e60000050000000000000007000000feff"])

2.929495543s ago: executing program 3 (id=1895):
r0 = openat$comedi(0xffffffffffffff9c, 0x0, 0x400, 0x0)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, &(0x7f00000000c0)={'pcl818\x00', [0x8001, 0x9, 0x1, 0x0, 0x1, 0xcc7, 0x8, 0x7, 0xa, 0x100, 0x4be, 0x1, 0x8, 0x1100004, 0x6, 0x4, 0x1, 0x1a449, 0x3, 0x40000003, 0x89, 0x2, 0xf27, 0x6, 0x800b, 0x8, 0x5, 0x2000008, 0x8, 0x10000, 0xfffffff7]})
pread64(r0, 0x0, 0x0, 0x7)

2.887043965s ago: executing program 2 (id=1896):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d0000008500"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000380)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
ioctl$DMA_HEAP_IOCTL_ALLOC(0xffffffffffffffff, 0xc0184800, 0x0)
setfsgid(0xee00)
syz_open_procfs(0x0, &(0x7f00000001c0)='net/igmp6\x00')
socket$nl_rdma(0x10, 0x3, 0x14)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=@newtaction={0x60, 0x30, 0xb, 0x5, 0x0, {}, [{0x4c, 0x1, [@m_ct={0x48, 0x1, 0x0, 0x0, {{0x7}, {0x20, 0x2, 0x0, 0x1, [@TCA_CT_ACTION={0x6, 0x3, 0x19}, @TCA_CT_NAT_IPV6_MIN={0x14, 0xb, @private0}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}]}]}, 0x60}, 0x1, 0x0, 0x0, 0x400c891}, 0x40)

2.886520645s ago: executing program 1 (id=1897):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, 0x0)
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000480)=@newtfilter={0x54, 0x2c, 0xd27, 0x70bd28, 0x8000, {0x0, 0x0, 0x0, r3, {0x7, 0x7}, {}, {0xa}}, [@filter_kind_options=@f_flower={{0xb}, {0x24, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS_MASK={0x8, 0x55, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_ERSPAN={0x4}]}, @TCA_FLOWER_KEY_ENC_OPTS={0x18, 0x54, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_ERSPAN={0x14, 0x3, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_ERSPAN_VER={0x5, 0x1, 0x1}, @TCA_FLOWER_KEY_ENC_OPT_ERSPAN_INDEX={0x8, 0x2, 0x100c}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x22044028}, 0x0)

2.857050556s ago: executing program 3 (id=1898):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x1c1)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x80, &(0x7f00000002c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000080)={0x50, 0x0, r1, {0x7, 0x29, 0x9, 0xffffffff9080edc4, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x9}}, 0x50)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x2c)
syz_fuse_handle_req(r0, &(0x7f00000042c0)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001e000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006380)={0x20, 0x0, 0x0, {0x0, 0x1c}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r0, &(0x7f00000063c0)="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", 0x2000, &(0x7f0000001240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
getdents64(r2, 0x0, 0x0)
getdents64(r2, 0x0, 0x0)

2.77868002s ago: executing program 0 (id=1899):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000340)={0x18, &(0x7f0000000000)=ANY=[@ANYBLOB="200322000000222495989bdbe73f444901dabc7bd815968059ec27"], 0x0, 0x0, 0x0, 0x0}, 0x0)

2.5293874s ago: executing program 1 (id=1900):
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000000)=@mangle={'mangle\x00', 0x64, 0x6, 0x510, 0x2e0, 0xd0, 0x2e0, 0xd0, 0xd0, 0x5a0, 0x5a0, 0x5a0, 0x5a0, 0x5a0, 0x6, 0x0, {[{{@uncond, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE2={0x28, 'NFQUEUE\x00', 0x2, {0x0, 0x5}}}, {{@ipv6={@mcast1, @local, [], [], 'macvtap0\x00', 'ip6tnl0\x00', {}, {}, 0x11}, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@broadcast}}}, {{@ipv6={@mcast2, @loopback, [], [], 'veth0_to_team\x00', 'syzkaller0\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@MARK={0x28}}, {{@uncond, 0x0, 0xa8, 0xd0}, @inet=@DSCP={0x28}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@dev}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x570)
ioctl$vim2m_VIDIOC_REQBUFS(0xffffffffffffffff, 0xc0145608, &(0x7f0000000000)={0x6, 0x1, 0x1, 0x0, 0x3})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x2840, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0)
sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(r2, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x24008009}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

1.829496121s ago: executing program 3 (id=1901):
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)={0x34, 0x0, 0x1, 0x801, 0x0, 0x0, {0x3, 0x0, 0x1}, [@CTA_FILTER={0x4}, @CTA_SEQ_ADJ_REPLY={0x1c, 0x10, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x1}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x5}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x2}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x80}, 0x1)
r0 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000000c0)=ANY=[@ANYBLOB="3400000013000500010000000000000007000000", @ANYRES32=r1, @ANYBLOB="505204070000000014001a80100005800c000280"], 0x34}, 0x1, 0x0, 0x0, 0x24000000}, 0x60040140)

1.713097126s ago: executing program 1 (id=1902):
mkdir(&(0x7f0000000040)='./file0\x00', 0x80)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000000000)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', 0x0, 0x80, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
chdir(&(0x7f0000000440)='./bus\x00')
r0 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000003bc0)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000}, 0x94)
write$P9_RVERSION(r0, &(0x7f0000000c40)=ANY=[], 0x13)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000003c0)={r1, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)=[0x5], 0x0, 0x0, 0x1, 0x1}}, 0x40)

1.712569856s ago: executing program 2 (id=1903):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r1 = syz_open_dev$dri(&(0x7f0000002580), 0x200, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f00000026c0)={0x0, &(0x7f0000002600)=[<r2=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_SETCRTC(r1, 0xc06864a2, &(0x7f0000000180)={0x0, 0x0, r2, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, "427f4d05618664ecb7f952ed7667675bc32afc7ebbfea1deee1e2e520cc38c6a"}})
close_range(r0, 0xffffffffffffffff, 0x0)

1.682360667s ago: executing program 3 (id=1904):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x10000, &(0x7f0000000400))
r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x0, 0x0)
chdir(&(0x7f0000000140)='./bus\x00')
openat$dir(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
mknodat(r0, &(0x7f0000005840)='./file1\x00', 0x8, 0x4)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x98)

1.529549934s ago: executing program 2 (id=1905):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_mgmt(0x0, r0)
sendmsg$NLBL_MGMT_C_PROTOCOLS(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="011b26b67000fddbdf2507"], 0x58}, 0x1, 0x0, 0x0, 0x5}, 0x404c044)
syz_genetlink_get_family_id$nbd(&(0x7f0000000000), r0)

1.509311624s ago: executing program 3 (id=1906):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
set_mempolicy(0x3, &(0x7f0000000000)=0x4000000ffb, 0xe)
r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000001440), 0x2202, 0x0)
io_setup(0x104, 0x0)
io_submit(0x0, 0x1, &(0x7f0000000200)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x4, r2, &(0x7f0000000340)="12", 0x1, 0x7fff}])
r3 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$UI_SET_EVBIT(r3, 0x40045564, 0x1)
ioctl$UI_SET_EVBIT(r3, 0x40045564, 0x5)
r4 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x103100, 0x0)
ioctl$SNDCTL_SEQ_RESETSAMPLES(r4, 0x40045109, &(0x7f00000000c0)=0x7a9c7d23)
ioctl$UI_DEV_CREATE(r3, 0x5501)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_NESTED_STATE(r5, 0x4080aebf, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x74, 0x0, 0x0)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0xe8001, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x2})
ioctl$TUNSETOFFLOAD(r6, 0x400454c9, 0xba98575a95aeb70d)
sendto(0xffffffffffffffff, &(0x7f0000000740), 0x0, 0x8044, 0x0, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_team(r8, 0x8933, &(0x7f0000004700)={'team0\x00', <r9=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000004c00)=@newtfilter={0x24, 0x11, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x74, r9, {}, {}, {0x8, 0x5}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x8881}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000037c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=""/185, 0xb9}}], 0x1, 0x2040000, &(0x7f0000003700)={0x77359400})
ioctl$TUNSETLINK(r6, 0x400454cd, 0x30c)

1.452536587s ago: executing program 1 (id=1907):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f00000000c0)={0xc, 0x0, <r1=>0x0})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = getpid()
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$bt_hci_HCI_TIME_STAMP(r3, 0x0, 0x3, 0x0, 0x0)
sched_setscheduler(r2, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800"], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r6, &(0x7f0000000040)={0x2, 0x4e00, @local}, 0x8)
r7 = socket$inet(0x2, 0x4000000000000001, 0x0)
syz_emit_ethernet(0x2e, &(0x7f0000000700)=ANY=[@ANYBLOB="bbbbbbbbbbbbaaaaaaaaaa4481004c00080600012b0006340009012dfb4580c2000003ac141426ffffffffffff0a0101"], &(0x7f00000007c0)={0x0, 0x1, [0x79, 0x62e, 0x458, 0x4e7]})
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f00000001c0)='./file1\x00', 0x0, &(0x7f0000000900)=ANY=[@ANYBLOB="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"], 0x1, 0x17d, &(0x7f00000004c0)="$eJzsmD9P6lAYxp/TciH35iY6u2giCTBY2qJGBgdmB038FzeJVIIWMdBB2PwUzn4CZ+JC4sfQQZ1ccHNyqGl7gAP+HdTE+PyG9zzv6dvTc94mT5OCEPJrub15uD5LJS90AP+RRELO3+mDGk2pb489Zi4ry+cn5v1Vu7OUH11PAPD9jz8/BqBT0OHJ3PeH707KcQ1aX69DQ0bqTQgYUm9Dw4bUDgS2pN5TdC2oN4zdiusYOzW3FAgzCFYQ7CDkRvfXPRYoKfsTyvVGs7VfdF2n/oXivf51CxoWlf2p76vXG1PpnwUNltQ5CKxKvYBErzdRS5TzT8QG6+vffH4KCoqfJgb+5J8KpBR/iin+kfWqh9lGszVTqRbLTtk5sO3cvDlrmnN2NjSiKL7hf39Df/qnrP/nldq4iOOo6Hl1K4r93I7iS44bD/1PQ3o6yoWcUwm/B+NiKhjSuswJIYQQQgghhBBCCCHk05mECP+CDpF/NmWvhNVPAQAA//94vnZt")
getsockopt$IPT_SO_GET_REVISION_TARGET(r7, 0x0, 0x43, &(0x7f0000000000)={'icmp6\x00'}, &(0x7f00000000c0)=0x1e)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="190000000400000008000000"], 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x9, 0xc, &(0x7f0000000380)=ANY=[@ANYBLOB="3800000000000000000200000000181100004b4d803a", @ANYRES32=r8, @ANYRESHEX=0x0], &(0x7f0000000240)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xfffffe53)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a40)={&(0x7f0000000980)='sys_enter\x00', r9}, 0x10)
r10 = timerfd_create(0x7, 0x0)
timerfd_gettime(r10, &(0x7f0000001200))
r11 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file2\x00', 0x80000, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r7, 0x0, 0x60, &(0x7f0000000ac0)={'filter\x00', 0x7, 0x4, 0x3f0, 0x110, 0x110, 0x110, 0x308, 0x308, 0x308, 0x4, &(0x7f0000000800), {[{{@arp={@dev={0xac, 0x14, 0x14, 0x21}, @rand_addr=0x64010100, 0xffffff00, 0xffffff00, 0x6, 0x6, {@empty, {[0xff, 0x0, 0xff]}}, {@empty, {[0x660934d4dbb84bcc, 0xff, 0xff]}}, 0x2, 0x4, 0x2, 0x600, 0x1, 0x1, 'vcan0\x00', 'xfrm0\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@mac=@broadcast, @mac, @multicast1, @loopback, 0x7, 0x1}}}, {{@uncond, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @empty, @empty, @multicast1, 0x2}}}, {{@arp={@local, @initdev={0xac, 0x1e, 0x0, 0x0}, 0xffffff00, 0xffffffff, 0x4, 0x8, {@mac=@random="15d197f069f5", {[0xff, 0xff, 0x0, 0xff, 0xff, 0xff]}}, {@mac=@multicast, {[0xff, 0xff, 0xff, 0xff, 0x0, 0xff]}}, 0x7, 0x7f, 0x7fff, 0x6, 0x4, 0x6bd, 'batadv_slave_0\x00', 'macvlan1\x00', {0xff}}, 0xc0, 0xe8}, @unspec=@STANDARD={0x28, '\x00', 0x0, 0xfffffffffffffffb}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x440)
ioctl$UI_SET_PROPBIT(r11, 0x4004556e, 0x16)
ioctl$IOMMU_IOAS_ALLOW_IOVAS(r0, 0x3b82, &(0x7f0000000180)={0x20, r1, 0x2, 0x0, &(0x7f00000001c0)=[{0x0, 0x1}, {0x3, 0x5}]})
ioctl$IOMMU_IOAS_UNMAP$ALL(r0, 0x3b86, &(0x7f0000000280)={0x18, r1})
ioctl$IOMMU_IOAS_MAP(r0, 0x3b85, &(0x7f00000002c0)={0x28, 0x7, r1, 0x0, &(0x7f0000000300)='LLLLLLLLLLLLLLLLLLLLLLLLLLLL', 0x1c, 0x2})
ioctl$IOMMU_IOAS_UNMAP(r0, 0x3b86, &(0x7f0000000340)={0x18, r1, 0x2, 0x1c})

1.419752758s ago: executing program 2 (id=1908):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='mounts\x00')
syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x4000, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000140)='ramfs\x00', 0x10, 0x0)
syz_mount_image$fuse(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x400a8, &(0x7f0000000380)=ANY=[], 0x1, 0x0, 0x0)
symlinkat(&(0x7f0000000080)='.\x00', 0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00')
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x104000, 0x0)
mount$bind(&(0x7f0000001a40)='./file0\x00', &(0x7f0000000340)='./file0/file0/../file0\x00', 0x0, 0xa1c08, 0x0)
mount$9p_unix(&(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x12d7498, 0x0)
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f0000000440)='./file0/file0\x00', 0x0, 0x2a05004, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x80, &(0x7f0000000540)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@allow_other}]}})
read$FUSE(r0, &(0x7f0000004180)={0x2020}, 0x2020)

1.315288373s ago: executing program 2 (id=1909):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
prlimit64(0x0, 0x2, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0xe8, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f000000c000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x25, 0x0, 0x0)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

382.292823ms ago: executing program 1 (id=1910):
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0x0, 0x0, &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x94)
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000002480)=[{{0x0, 0x0, &(0x7f0000001780)=[{0x0}, {0x0}], 0x2}}], 0x1, 0x0)
mount$fuse(0x0, &(0x7f0000000280)='./file0\x00', 0x0, 0x100000, 0x0)
write(0xffffffffffffffff, &(0x7f00000000c0)=')', 0x1)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="440000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000240012800b00010076000014000280180001"], 0xfd12}}, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000740)=[{{0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000b40)=ANY=[@ANYBLOB="14000000000000002900000034000000040000000000000014000000000000002900000034000000fdffffff00000000b80000000000000029000000040000000413000000000000fe39f4a4a3142ee1e12b9826287997a6b33d89f3d60da1641d9fe3896c3c1b6c130ef4f01be8f5836d417874540898619050b14420ab124b11de36800a09e12e5f0b6bdcf72f2e0738000000010c7a0180050000000000000009000000000000000400000000000000040000000000000000040000000000000b0000000000000000010005020bf4c910fc020000000000000000000000000000000000000000140000000000000029000000340000000000000000000000180000000000000029000000360000005e000000000000002000000000000000290000003712d9c3ba0000000000000000010000000000001400000000000000290000000b0000000000000200000000380000000000000029000000390000003a04027000000000ff010000000000000000000000000001ff02"], 0x188}}], 0x1, 0x810)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x100, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(0xffffffffffffffff, 0x84, 0x71, &(0x7f0000000680)={0x0, 0x1000}, &(0x7f00000006c0)=0x8)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
r3 = accept4(r2, 0x0, 0x0, 0x800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

82.025446ms ago: executing program 2 (id=1911):
r0 = openat$comedi(0xffffffffffffff9c, 0x0, 0x400, 0x0)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, &(0x7f00000000c0)={'pcl818\x00', [0x8001, 0x9, 0x1, 0x0, 0x1, 0xcc7, 0x8, 0x7, 0xa, 0x100, 0x4be, 0x1, 0x8, 0x1100004, 0x6, 0x4, 0x1, 0x1a449, 0x3, 0x40000003, 0x89, 0x2, 0xf27, 0x6, 0x800b, 0x8, 0x5, 0x2000008, 0x8, 0x10000, 0xfffffff7]})
pread64(r0, 0x0, 0x0, 0x7)

0s ago: executing program 3 (id=1912):
r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, 0x0)
pread64(r0, 0x0, 0x0, 0x7)

kernel console output (not intermixed with test programs):

mware version 0x88 dated _�=&ˆ}��nDT,����w#��������OR�����C���f(
[  268.392835][ T5801] hdpvr 1-1:0.0: untested firmware, the driver might not work.
[  268.429492][ T7497] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  268.769427][ T5790] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  268.891524][ T5801] hdpvr 1-1:0.0: Could not setup controls
[  268.906930][ T5801] hdpvr 1-1:0.0: registering videodev failed
[  268.926154][ T5801] hdpvr: probe of 1-1:0.0 failed with error -71
[  268.937794][ T5801] usb 1-1: USB disconnect, device number 8
[  271.765172][ T5910] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[  272.635262][ T5910] usb 3-1: Using ep0 maxpacket: 16
[  272.653678][ T5910] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  272.666276][ T5910] usb 3-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  272.675966][ T5910] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  272.686973][ T5910] usb 3-1: config 0 descriptor??
[  272.857235][ T7540] loop1: detected capacity change from 0 to 128
[  272.884995][ T7540] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  273.174214][ T5910] mcp2221 0003:04D8:00DD.0003: USB HID v0.05 Device [HID 04d8:00dd] on usb-dummy_hcd.2-1/input0
[  274.232572][ T5910] usb 3-1: USB disconnect, device number 2
[  277.023608][   T27] audit: type=1326 audit(1763675503.723:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7566 comm="syz.2.475" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f721438f749 code=0x0
[  277.655449][ T7583] syzkaller1: tun_chr_ioctl cmd 1074025677
[  277.661511][ T7583] syzkaller1: linktype set to 780
[  283.830678][ T7671] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  283.880302][ T7672] netlink: 4 bytes leftover after parsing attributes in process `syz.0.511'.
[  284.220249][ T7676] loop1: detected capacity change from 0 to 1024
[  284.566544][ T3462] hfsplus: b-tree write err: -5, ino 4
[  286.287352][ T7695] loop1: detected capacity change from 0 to 1024
[  286.314856][ T7695] hfsplus: invalid gid specified
[  286.437186][ T7695] hfsplus: unable to parse mount options
[  287.220267][ T7703] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  287.883261][ T7710] loop3: detected capacity change from 0 to 16
[  287.929801][ T7710] erofs: (device loop3): mounted with root inode @ nid 36.
[  288.026911][ T5108] erofs: (device loop3): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 0] out[9000]
[  288.038573][ T7710] erofs: (device loop3): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[8192]
[  288.051535][ T7710] x_tables: duplicate underflow at hook 1
[  288.062436][   T27] audit: type=1800 audit(1763675514.753:18): pid=7710 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.524" name="file2" dev="loop3" ino=89 res=0 errno=0
[  288.178305][ T7714] loop1: detected capacity change from 0 to 22
[  288.187547][ T7714] MTD: Attempt to mount non-MTD device "/dev/loop1"
[  288.236571][ T7714] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  290.070831][ T7727] overlay: filesystem on ./file0 not supported as upperdir
[  290.507120][ T7733] netlink: 36 bytes leftover after parsing attributes in process `syz.3.531'.
[  291.089879][ T7742] netlink: 132 bytes leftover after parsing attributes in process `syz.0.533'.
[  292.439377][ T7752] loop0: detected capacity change from 0 to 16
[  292.485261][ T7752] erofs: (device loop0): mounted with root inode @ nid 36.
[  292.601098][ T5108] erofs: (device loop0): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 0] out[9000]
[  292.626764][ T7761] erofs: (device loop0): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[8192]
[  292.638074][   T27] audit: type=1800 audit(1763675519.343:19): pid=7761 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.536" name="file2" dev="loop0" ino=89 res=0 errno=0
[  292.657762][ T7761] x_tables: duplicate underflow at hook 1
[  293.565565][ T7770] syzkaller0: entered promiscuous mode
[  293.578867][ T7770] syzkaller0: entered allmulticast mode
[  293.670730][ T7770] tipc: Started in network mode
[  293.711718][ T7770] tipc: Node identity e6f821f65c81, cluster identity 4711
[  293.737918][ T7770] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  293.782658][ T7769] tipc: Resetting bearer <eth:syzkaller0>
[  293.871391][ T7769] tipc: Disabling bearer <eth:syzkaller0>
[  294.623109][ T7775] loop1: detected capacity change from 0 to 4096
[  294.998345][ T7780] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  295.040974][ T7775] NILFS error (device loop1): nilfs_bmap_lookup_at_level: broken bmap (inode number=6)
[  295.184643][ T7775] Remounting filesystem read-only
[  295.290824][ T7775] NILFS error (device loop1): nilfs_bmap_lookup_contig: broken bmap (inode number=2)
[  295.305360][ T7775] NILFS error (device loop1): nilfs_bmap_lookup_contig: broken bmap (inode number=2)
[  295.326315][ T7775] NILFS error (device loop1): nilfs_readdir: bad page in #2
[  295.494636][ T7788] loop2: detected capacity change from 0 to 128
[  295.548445][ T7788] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  295.607243][ T7788] ext4 filesystem being mounted at /135/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  295.946493][ T7797] loop0: detected capacity change from 0 to 22
[  295.959240][ T7797] MTD: Attempt to mount non-MTD device "/dev/loop0"
[  297.255279][ T5108] Bluetooth: hci0: command 0x0c1a tx timeout
[  298.172224][ T7782] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  298.247932][ T7782] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  298.295633][ T7797] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  298.477048][ T7782] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  298.615652][ T7782] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  298.731441][ T5790] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  298.893872][ T7802] loop1: detected capacity change from 0 to 1024
[  298.904774][ T7802] hfsplus: invalid gid specified
[  298.919385][ T7802] hfsplus: unable to parse mount options
[  299.078590][ T7810] loop2: detected capacity change from 0 to 16
[  299.110454][    C1] vcan0: j1939_tp_rxtimer: 0xffff88805d51b800: rx timeout, send abort
[  299.362567][ T7810] erofs: (device loop2): mounted with root inode @ nid 36.
[  299.405403][ T7811] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  299.437130][ T5108] erofs: (device loop2): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 0] out[9000]
[  299.458901][ T7810] erofs: (device loop2): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[8192]
[  299.472606][ T7810] x_tables: duplicate underflow at hook 1
[  299.485193][   T27] audit: type=1800 audit(1763675526.173:20): pid=7810 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.552" name="file2" dev="loop2" ino=89 res=0 errno=0
[  299.611493][    C1] vcan0: j1939_tp_rxtimer: 0xffff88805d51bc00: rx timeout, send abort
[  299.620553][    C1] vcan0: j1939_tp_rxtimer: 0xffff88805d51b800: abort rx timeout. Force session deactivation
[  299.852945][ T7821] loop1: detected capacity change from 0 to 2048
[  299.899485][ T7821] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  299.944455][ T7826] netlink: 4 bytes leftover after parsing attributes in process `syz.3.559'.
[  299.951752][ T7821] ext4 filesystem being mounted at /153/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  300.039955][ T7828] loop2: detected capacity change from 0 to 1024
[  300.056307][ T7828] EXT4-fs: Ignoring removed orlov option
[  300.084352][ T5793] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  300.108536][ T7828] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  300.119794][    C1] vcan0: j1939_tp_rxtimer: 0xffff88805d51bc00: abort rx timeout. Force session deactivation
[  300.185945][ T7828] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  300.296673][ T5108] Bluetooth: hci3: command 0x0c1a tx timeout
[  300.360021][ T5790] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  300.546514][ T5108] Bluetooth: hci1: command 0x0c1a tx timeout
[  300.695927][ T5108] Bluetooth: hci2: command 0x0c1a tx timeout
[  300.933432][ T7847] netlink: 16 bytes leftover after parsing attributes in process `syz.0.565'.
[  300.994293][ T7846] netlink: 4 bytes leftover after parsing attributes in process `syz.1.566'.
[  301.010089][ T7846] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  301.252568][ T7846] batman_adv: batadv0: Removing interface: batadv_slave_1
[  301.417518][ T7854] loop2: detected capacity change from 0 to 32768
[  301.821174][   T27] audit: type=1800 audit(1763675528.483:21): pid=7861 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.569" name="file1" dev="loop2" ino=7 res=0 errno=0
[  302.423779][ T7866] loop1: detected capacity change from 0 to 1024
[  302.513470][ T7866] EXT4-fs: Ignoring removed orlov option
[  302.687490][ T7866] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  302.764825][ T7866] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  303.543894][ T5793] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  304.181537][ T7892] netlink: 16 bytes leftover after parsing attributes in process `syz.2.579'.
[  304.484563][ T7895] loop1: detected capacity change from 0 to 32768
[  304.820170][   T27] audit: type=1800 audit(1763675531.513:22): pid=7900 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.581" name="file1" dev="loop1" ino=7 res=0 errno=0
[  306.904506][ T7924] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  307.935199][   T42] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  308.097572][ T7936] netlink: 16 bytes leftover after parsing attributes in process `syz.0.591'.
[  308.137209][   T42] usb 4-1: Using ep0 maxpacket: 32
[  308.154158][   T42] usb 4-1: config 0 has no interfaces?
[  308.185684][   T42] usb 4-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=51.16
[  308.196246][   T42] usb 4-1: New USB device strings: Mfr=154, Product=2, SerialNumber=3
[  308.204569][   T42] usb 4-1: Product: syz
[  308.260628][   T42] usb 4-1: Manufacturer: syz
[  308.544714][   T42] usb 4-1: SerialNumber: syz
[  308.662848][   T42] usb 4-1: config 0 descriptor??
[  308.990477][   T42] usb 4-1: USB disconnect, device number 6
[  309.057178][ T7953] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  309.114286][ T7949] kvm: pic: non byte read
[  309.122128][ T7949] kvm: pic: level sensitive irq not supported
[  309.122266][ T7949] kvm: pic: non byte read
[  309.139819][ T7949] kvm: pic: level sensitive irq not supported
[  309.139900][ T7949] kvm: pic: non byte read
[  309.152719][ T7949] kvm: pic: level sensitive irq not supported
[  309.152798][ T7949] kvm: pic: non byte read
[  309.167420][ T7949] kvm: pic: non byte read
[  309.172214][ T7949] kvm: pic: non byte read
[  309.178982][ T7949] kvm: pic: non byte read
[  309.183778][ T7949] kvm: pic: non byte read
[  309.189195][ T7949] kvm: pic: non byte read
[  309.194442][ T7949] kvm: pic: non byte read
[  309.199781][ T7949] kvm: pic: level sensitive irq not supported
[  309.365332][ T5782] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  310.324194][ T7969] loop3: detected capacity change from 0 to 512
[  310.336365][ T7969] EXT4-fs: Ignoring removed nomblk_io_submit option
[  310.395223][ T5782] usb 3-1: Using ep0 maxpacket: 16
[  310.407154][ T7969] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2249: inode #15: comm syz.3.604: corrupted in-inode xattr: e_value size too large
[  310.435695][ T7969] EXT4-fs error (device loop3): ext4_orphan_get:1404: comm syz.3.604: couldn't read orphan inode 15 (err -117)
[  310.475266][ T5782] usb 3-1: config 0 interface 0 altsetting 1 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  310.526843][ T5782] usb 3-1: config 0 interface 0 altsetting 1 endpoint 0x81 has invalid wMaxPacketSize 0
[  310.581870][ T5782] usb 3-1: config 0 interface 0 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  310.611884][ T7969] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  311.135352][ T5782] usb 3-1: config 0 interface 0 has no altsetting 0
[  311.142251][ T5782] usb 3-1: New USB device found, idVendor=17ef, idProduct=6047, bcdDevice= 0.00
[  311.151638][ T5782] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  311.168176][ T5782] usb 3-1: config 0 descriptor??
[  311.516758][ T7976] netlink: 220 bytes leftover after parsing attributes in process `syz.0.605'.
[  312.112293][ T5782] lenovo 0003:17EF:6047.0004: hidraw0: USB HID v0.00 Device [HID 17ef:6047] on usb-dummy_hcd.2-1/input0
[  312.159982][ T5792] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  312.252734][   T42] usb 3-1: USB disconnect, device number 3
[  312.371475][ T7982] fido_id[7982]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/report_descriptor': No such file or directory
[  312.457170][ T7988] syzkaller0: entered promiscuous mode
[  312.463021][ T7988] syzkaller0: entered allmulticast mode
[  314.006059][ T7992] block nbd1: shutting down sockets
[  315.219224][ T8008] sd 0:0:1:0: PR command failed: 1026
[  315.254485][ T8008] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  315.335296][ T8016] netlink: 220 bytes leftover after parsing attributes in process `syz.1.617'.
[  315.413352][ T8008] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  316.020462][ T8021] syzkaller0: entered promiscuous mode
[  316.042876][ T8021] syzkaller0: entered allmulticast mode
[  316.098147][ T8025] loop3: detected capacity change from 0 to 1024
[  316.126759][ T8025] EXT4-fs: quotafile must be on filesystem root
[  317.053018][ T8032] loop2: detected capacity change from 0 to 4096
[  317.240648][ T8032] NILFS error (device loop2): nilfs_bmap_lookup_at_level: broken bmap (inode number=6)
[  317.255600][ T8041] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  317.274496][ T8032] Remounting filesystem read-only
[  317.496856][ T1290] ieee802154 phy0 wpan0: encryption failed: -22
[  317.506598][ T1290] ieee802154 phy1 wpan1: encryption failed: -22
[  317.889914][ T8037] block nbd3: shutting down sockets
[  318.582759][ T8047] loop0: detected capacity change from 0 to 32768
[  319.219313][   T27] audit: type=1800 audit(1763675545.893:23): pid=8060 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.628" name="file1" dev="loop0" ino=7 res=0 errno=0
[  319.481769][ T8061] netlink: 220 bytes leftover after parsing attributes in process `syz.1.630'.
[  319.862245][ T8073] loop0: detected capacity change from 0 to 1024
[  319.891507][ T8073] EXT4-fs: quotafile must be on filesystem root
[  322.935345][ T5108] Bluetooth: hci0: command 0x0c1a tx timeout
[  322.936361][ T8079] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  323.596591][ T8079] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  323.602838][ T8079] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  323.609490][ T8079] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  324.263635][ T8103] loop2: detected capacity change from 0 to 32768
[  324.285539][ T5859] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  324.733317][   T27] audit: type=1800 audit(1763675551.373:24): pid=8111 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.641" name="file1" dev="loop2" ino=7 res=0 errno=0
[  325.092410][ T8114] loop3: detected capacity change from 0 to 1024
[  325.109291][ T5108] Bluetooth: hci3: command 0x0c1a tx timeout
[  325.126439][ T8114] EXT4-fs: quotafile must be on filesystem root
[  325.182097][ T5965] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  325.666283][ T5108] Bluetooth: hci2: command 0x0c1a tx timeout
[  325.672388][ T5108] Bluetooth: hci1: command 0x0c1a tx timeout
[  325.686482][ T8120] netlink: 220 bytes leftover after parsing attributes in process `syz.1.645'.
[  326.328287][ T8131] fuse: Bad value for 'fd'
[  328.215234][ T8127] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  328.225333][   T51] Bluetooth: hci0: command 0x0c1a tx timeout
[  328.927608][ T8127] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  328.934544][ T8127] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  328.941464][ T8127] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  329.215275][ T5801] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  330.221662][ T8146] loop0: detected capacity change from 0 to 32768
[  330.305512][   T51] Bluetooth: hci3: command 0x0c1a tx timeout
[  330.785156][   T27] audit: type=1800 audit(1763675557.233:25): pid=8148 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.655" name="file1" dev="loop0" ino=7 res=0 errno=0
[  330.844447][ T5801] usb 2-1: device descriptor read/all, error -71
[  330.939899][   T51] Bluetooth: hci1: command 0x0c1a tx timeout
[  331.067724][   T51] Bluetooth: hci2: command 0x0c1a tx timeout
[  331.183755][ T8150] netlink: 16 bytes leftover after parsing attributes in process `syz.3.656'.
[  331.371159][ T8161] syzkaller0: entered promiscuous mode
[  331.377099][ T8161] syzkaller0: entered allmulticast mode
[  331.686611][ T8168] loop1: detected capacity change from 0 to 22
[  331.697187][ T8168] MTD: Attempt to mount non-MTD device "/dev/loop1"
[  331.713333][ T8168] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  332.767486][ T8180] loop1: detected capacity change from 0 to 16
[  332.786896][ T8180] erofs: (device loop1): mounted with root inode @ nid 36.
[  332.908889][ T8185] x_tables: duplicate underflow at hook 1
[  332.998766][ T8183] loop2: detected capacity change from 0 to 32768
[  333.026966][   T51] erofs: (device loop1): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 0] out[9000]
[  333.045620][ T8184] erofs: (device loop1): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[8192]
[  333.057108][   T27] audit: type=1800 audit(1763675559.763:26): pid=8184 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.666" name="file2" dev="loop1" ino=89 res=0 errno=0
[  333.372416][   T27] audit: type=1800 audit(1763675559.913:27): pid=8183 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.668" name="file1" dev="loop2" ino=7 res=0 errno=0
[  333.669149][ T8190] netlink: 16 bytes leftover after parsing attributes in process `syz.3.670'.
[  334.775378][   T51] Bluetooth: hci0: command 0x0c1a tx timeout
[  334.782655][ T8177] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  335.301436][ T8208] kernel profiling enabled (shift: 8)
[  336.255390][ T8177] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  336.261643][ T8177] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  336.268256][ T8177] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  336.785219][ T8221] netlink: 16 bytes leftover after parsing attributes in process `syz.2.679'.
[  336.796717][ T8214] loop3: detected capacity change from 0 to 32768
[  336.859924][   T51] Bluetooth: hci3: command 0x0c1a tx timeout
[  337.163331][   T27] audit: type=1800 audit(1763675563.863:28): pid=8214 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.677" name="file1" dev="loop3" ino=7 res=0 errno=0
[  337.792421][ T8227] loop0: detected capacity change from 0 to 1024
[  337.837580][ T8227] EXT4-fs: Ignoring removed orlov option
[  337.957252][ T8227] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  338.089340][ T8227] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  338.117322][ T8240] loop1: detected capacity change from 0 to 16
[  338.133871][ T8240] erofs: (device loop1): mounted with root inode @ nid 36.
[  338.207560][   T51] erofs: (device loop1): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 0] out[9000]
[  338.234116][ T8242] erofs: (device loop1): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[8192]
[  338.246660][   T27] audit: type=1800 audit(1763675564.953:29): pid=8242 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.685" name="file2" dev="loop1" ino=89 res=0 errno=0
[  338.266354][ T8242] x_tables: duplicate underflow at hook 1
[  338.295228][   T51] Bluetooth: hci1: command 0x0c1a tx timeout
[  338.301443][   T51] Bluetooth: hci2: command 0x0c1a tx timeout
[  338.374239][ T5791] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  340.135286][   T51] Bluetooth: hci0: command 0x0c1a tx timeout
[  340.141556][ T8237] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  340.942399][ T8237] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  340.950037][ T8237] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  340.956651][ T8237] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  341.155336][ T8258] netlink: 16 bytes leftover after parsing attributes in process `syz.0.690'.
[  342.221374][   T51] Bluetooth: hci3: command 0x0c1a tx timeout
[  342.334712][ T8271] loop0: detected capacity change from 0 to 1024
[  342.385663][ T8271] EXT4-fs: Ignoring removed orlov option
[  342.445130][ T8271] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  342.552756][ T8271] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  342.612754][ T5791] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  342.758933][ T8286] loop3: detected capacity change from 0 to 128
[  342.856986][ T8289] netlink: 16 bytes leftover after parsing attributes in process `syz.0.701'.
[  342.923797][   T27] audit: type=1800 audit(1763675569.623:30): pid=8286 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.702" name="file1" dev="loop3" ino=1048592 res=0 errno=0
[  343.044335][   T51] Bluetooth: hci2: command 0x0c1a tx timeout
[  343.050949][ T5108] Bluetooth: hci1: command 0x0c1a tx timeout
[  344.535254][ T8283] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  344.535321][   T51] Bluetooth: hci0: command 0x0c1a tx timeout
[  344.541897][ T8315] netlink: 16 bytes leftover after parsing attributes in process `syz.0.712'.
[  345.372511][ T8283] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  345.379216][ T8283] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  345.388483][ T8283] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  345.563169][ T8325] loop2: detected capacity change from 0 to 512
[  345.615740][ T8325] EXT4-fs (loop2): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  345.651734][ T8325] EXT4-fs (loop2): shut down requested (1)
[  345.693615][ T5790] EXT4-fs (loop2): unmounting filesystem 00800000-0000-0000-0000-000000000000.
[  346.615135][   T51] Bluetooth: hci3: command 0x0c1a tx timeout
[  347.425180][   T51] Bluetooth: hci2: command 0x0c1a tx timeout
[  347.431316][   T51] Bluetooth: hci1: command 0x0c1a tx timeout
[  348.141484][ T8359] loop1: detected capacity change from 0 to 22
[  348.151618][ T8359] MTD: Attempt to mount non-MTD device "/dev/loop1"
[  348.405953][ T8359] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  349.031620][ T8364] loop1: detected capacity change from 0 to 64
[  349.562833][ T8370] netlink: 16 bytes leftover after parsing attributes in process `syz.2.730'.
[  350.455315][   T51] Bluetooth: hci0: command 0x0c1a tx timeout
[  350.479121][ T8354] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  350.813442][ T8354] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  350.823497][ T8354] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  350.830290][ T8354] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  350.967644][ T8377] syzkaller0: entered promiscuous mode
[  350.974457][ T8377] syzkaller0: entered allmulticast mode
[  350.994036][ T8377] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  351.026353][ T8376] tipc: Resetting bearer <eth:syzkaller0>
[  351.150130][ T8376] tipc: Disabling bearer <eth:syzkaller0>
[  352.535449][   T51] Bluetooth: hci3: command 0x0c1a tx timeout
[  353.003709][   T51] Bluetooth: hci2: command 0x0c1a tx timeout
[  353.009967][   T51] Bluetooth: hci1: command 0x0c1a tx timeout
[  353.831020][ T8409] loop0: detected capacity change from 0 to 256
[  354.543411][ T8420] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  355.374848][ T8414] loop2: detected capacity change from 0 to 4096
[  355.397536][ T8414] ntfs3: loop2: Different NTFS sector size (4096) and media sector size (512).
[  355.623136][ T8414] ntfs3: loop2: failed to convert "c46c" to koi8-r
[  355.895303][ T8406] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  355.919161][ T5108] Bluetooth: hci0: command 0x0c1a tx timeout
[  356.663010][ T8406] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  356.730644][ T8406] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  356.775626][ T8406] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  357.311779][ T8439] loop0: detected capacity change from 0 to 128
[  357.432288][ T8439] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  357.540262][ T8439] ext4 filesystem being mounted at /177/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  357.893059][ T5791] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  357.990864][ T5108] Bluetooth: hci3: command 0x0c1a tx timeout
[  358.786608][ T5108] Bluetooth: hci2: command 0x0c1a tx timeout
[  358.792698][ T5108] Bluetooth: hci1: command 0x0c1a tx timeout
[  359.638044][ T8463] syzkaller0: entered promiscuous mode
[  359.649296][ T8463] syzkaller0: entered allmulticast mode
[  359.673852][ T8463] tipc: Started in network mode
[  359.699323][ T8463] tipc: Node identity 6e2b3acfcd6b, cluster identity 4711
[  359.715490][ T8463] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  359.777491][ T8462] tipc: Resetting bearer <eth:syzkaller0>
[  359.932255][ T8462] tipc: Disabling bearer <eth:syzkaller0>
[  360.406295][ T8471] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  360.414104][ T8471] IPv6: NLM_F_CREATE should be set when creating new route
[  360.421462][ T8471] IPv6: NLM_F_CREATE should be set when creating new route
[  363.591297][ T8504] loop3: detected capacity change from 0 to 1024
[  363.642577][ T8504] hfsplus: invalid gid specified
[  363.687456][ T8504] hfsplus: unable to parse mount options
[  363.821672][ T5804] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  364.944890][ T8516] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  366.879550][ T8542] loop0: detected capacity change from 0 to 256
[  367.177512][ T5859] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  367.194152][ T8545] loop1: detected capacity change from 0 to 16
[  367.208580][ T8545] erofs: (device loop1): mounted with root inode @ nid 36.
[  367.271850][   T51] erofs: (device loop1): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 0] out[9000]
[  367.286022][ T8549] erofs: (device loop1): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[8192]
[  367.300272][   T27] audit: type=1800 audit(1763675594.013:31): pid=8549 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.790" name="file2" dev="loop1" ino=89 res=0 errno=0
[  367.320816][ T8549] x_tables: duplicate underflow at hook 1
[  367.399581][ T5859] usb 3-1: Using ep0 maxpacket: 32
[  367.412393][ T5859] usb 3-1: config 0 has an invalid interface number: 184 but max is 0
[  367.421931][ T5859] usb 3-1: config 0 has no interface number 0
[  367.434684][ T5859] usb 3-1: config 0 interface 184 has no altsetting 0
[  367.451876][ T5859] usb 3-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  367.471853][ T5859] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  367.481149][ T5859] usb 3-1: Product: syz
[  367.485970][ T5859] usb 3-1: Manufacturer: syz
[  367.490751][ T5859] usb 3-1: SerialNumber: syz
[  367.510236][ T5859] usb 3-1: config 0 descriptor??
[  367.527437][ T5859] smsc75xx v1.0.0
[  368.670117][ T5859] smsc75xx 3-1:0.184 (unnamed net_device) (uninitialized): EEPROM read operation timeout
[  368.791962][ T5859] smsc75xx 3-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71
[  369.057470][ T5859] smsc75xx 3-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -71
[  369.068278][ T5859] smsc75xx 3-1:0.184 (unnamed net_device) (uninitialized): device not ready in smsc75xx_reset
[  369.078891][ T5859] smsc75xx 3-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -71
[  369.089177][ T5859] smsc75xx: probe of 3-1:0.184 failed with error -71
[  369.105699][ T5859] usb 3-1: USB disconnect, device number 4
[  369.253252][ T8578] loop1: detected capacity change from 0 to 32768
[  369.711455][   T27] audit: type=1800 audit(1763675596.413:32): pid=8588 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.802" name="file1" dev="loop1" ino=7 res=0 errno=0
[  369.941497][ T8591] loop0: detected capacity change from 0 to 1024
[  370.002858][ T8591] EXT4-fs: Ignoring removed orlov option
[  370.201639][ T8591] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  370.333204][ T8591] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  370.632411][ T5791] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  370.855323][ T5847] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  371.015307][ T5847] usb 3-1: device descriptor read/64, error -71
[  371.295195][ T5847] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  371.455204][ T5847] usb 3-1: device descriptor read/64, error -71
[  371.576248][ T5847] usb usb3-port1: attempt power cycle
[  372.025299][ T5847] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  372.091193][ T5847] usb 3-1: device descriptor read/8, error -71
[  372.307214][ T8624] loop1: detected capacity change from 0 to 1024
[  372.316801][ T8624] EXT4-fs: Ignoring removed orlov option
[  372.375179][ T5847] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  372.375286][ T8624] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  372.405974][ T5847] usb 3-1: device descriptor read/8, error -71
[  372.540593][ T8624] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  372.540814][ T5847] usb usb3-port1: unable to enumerate USB device
[  372.807551][ T5793] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  373.391927][ T8639] loop1: detected capacity change from 0 to 32768
[  373.767561][   T27] audit: type=1800 audit(1763675600.463:33): pid=8641 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.821" name="file1" dev="loop1" ino=7 res=0 errno=0
[  376.595284][   T42] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  376.799583][ T8661] loop3: detected capacity change from 0 to 128
[  376.807241][   T42] usb 1-1: Using ep0 maxpacket: 16
[  376.826741][   T42] usb 1-1: config 0 has no interfaces?
[  376.832310][   T42] usb 1-1: New USB device found, idVendor=05ac, idProduct=024b, bcdDevice= 0.00
[  376.856939][ T8661] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  376.870546][   T42] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  376.887014][   T42] usb 1-1: config 0 descriptor??
[  376.893474][ T8661] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  376.972930][ T8665] loop2: detected capacity change from 0 to 16
[  376.992990][ T8665] erofs: (device loop2): mounted with root inode @ nid 36.
[  377.132325][   T51] erofs: (device loop2): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 0] out[9000]
[  377.150237][ T8668] x_tables: duplicate underflow at hook 1
[  377.174367][ T8667] erofs: (device loop2): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[8192]
[  377.213462][   T42] usb 1-1: USB disconnect, device number 10
[  377.274186][   T27] audit: type=1800 audit(1763675603.893:34): pid=8667 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.829" name="file2" dev="loop2" ino=89 res=0 errno=0
[  378.871463][ T1290] ieee802154 phy0 wpan0: encryption failed: -22
[  378.885079][ T1290] ieee802154 phy1 wpan1: encryption failed: -22
[  384.995919][ T8699] vxcan1: entered allmulticast mode
[  385.456081][ T8704] loop2: detected capacity change from 0 to 32768
[  385.737906][ T8709] loop0: detected capacity change from 0 to 22
[  385.744834][ T8709] MTD: Attempt to mount non-MTD device "/dev/loop0"
[  385.754765][ T8709] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  386.029837][   T27] audit: type=1800 audit(1763675612.703:35): pid=8715 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.840" name="file1" dev="loop2" ino=7 res=0 errno=0
[  386.541993][ T8727] loop3: detected capacity change from 0 to 256
[  386.596245][ T8727] exfat: Deprecated parameter 'namecase'
[  386.669220][ T8727] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xf6e0d861, utbl_chksum : 0xe619d30d)
[  387.532059][ T8737] loop0: detected capacity change from 0 to 512
[  387.575324][ T8737] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  387.635967][ T8737] EXT4-fs (loop0): 1 truncate cleaned up
[  387.679240][ T8737] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  387.957519][ T5791] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  388.069765][ T8748] netlink: 16 bytes leftover after parsing attributes in process `syz.3.853'.
[  388.184285][ T8750] loop0: detected capacity change from 0 to 256
[  390.650842][ T8773] loop2: detected capacity change from 0 to 1024
[  390.702647][ T8773] EXT4-fs: Ignoring removed orlov option
[  390.799087][ T8773] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  390.845040][ T8770] loop0: detected capacity change from 0 to 32768
[  390.995209][ T5782] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  391.050708][ T5790] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  391.205249][ T5782] usb 2-1: Using ep0 maxpacket: 16
[  391.214206][ T5782] usb 2-1: config 0 interface 0 has no altsetting 0
[  391.228577][ T5782] usb 2-1: New USB device found, idVendor=1345, idProduct=3008, bcdDevice= 0.00
[  391.242466][   T27] audit: type=1800 audit(1763675617.953:36): pid=8783 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.863" name="file1" dev="loop0" ino=7 res=0 errno=0
[  391.252460][ T5782] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  391.343076][ T5782] usb 2-1: config 0 descriptor??
[  391.667256][ T8789] loop2: detected capacity change from 0 to 16
[  391.683330][ T8789] erofs: (device loop2): mounted with root inode @ nid 36.
[  391.776538][   T51] erofs: (device loop2): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 0] out[9000]
[  391.789314][ T8791] erofs: (device loop2): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[8192]
[  391.813586][ T8791] x_tables: duplicate underflow at hook 1
[  391.886547][   T27] audit: type=1800 audit(1763675618.513:37): pid=8791 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.869" name="file2" dev="loop2" ino=89 res=0 errno=0
[  392.580941][ T5782] usbhid 2-1:0.0: can't add hid device: -71
[  392.595123][ T5782] usbhid: probe of 2-1:0.0 failed with error -71
[  392.616501][ T5782] usb 2-1: USB disconnect, device number 6
[  393.727355][ T8803] loop2: detected capacity change from 0 to 1024
[  393.735140][ T8803] EXT4-fs: Ignoring removed orlov option
[  393.831635][ T8803] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  393.982777][ T8803] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  394.059966][ T5790] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  394.254346][ T8817] netlink: 16 bytes leftover after parsing attributes in process `syz.3.874'.
[  394.272250][ T8815] netlink: 4 bytes leftover after parsing attributes in process `syz.2.876'.
[  394.951394][ T8815] team0 (unregistering): Port device team_slave_0 removed
[  394.988964][ T8815] team0 (unregistering): Port device team_slave_1 removed
[  395.059091][ T8818] syzkaller1: tun_chr_ioctl cmd 1074025677
[  395.071681][ T8818] syzkaller1: linktype set to 780
[  395.145579][   T23] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  395.365061][   T23] usb 2-1: Using ep0 maxpacket: 16
[  395.377619][   T23] usb 2-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0xF3, skipping
[  395.402464][   T23] usb 2-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  395.421946][   T23] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  395.442184][   T23] usb 2-1: Product: syz
[  395.465512][   T23] usb 2-1: Manufacturer: syz
[  395.470179][   T23] usb 2-1: SerialNumber: syz
[  395.493148][   T23] usb 2-1: config 0 descriptor??
[  395.635186][ T5880] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  395.845052][ T5880] usb 3-1: Using ep0 maxpacket: 32
[  396.652008][ T5880] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  396.675099][ T5880] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  396.695813][ T5880] usb 3-1: New USB device found, idVendor=172f, idProduct=0032, bcdDevice= 0.00
[  396.710406][ T5880] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  396.725518][ T5880] usb 3-1: config 0 descriptor??
[  396.979093][ T8842] loop3: detected capacity change from 0 to 32768
[  397.308131][   T27] audit: type=1800 audit(1763675624.013:38): pid=8845 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.885" name="file1" dev="loop3" ino=7 res=0 errno=0
[  397.377445][ T5880] waltop 0003:172F:0032.0005: item fetching failed at offset 0/2
[  397.401415][ T5880] waltop: probe of 0003:172F:0032.0005 failed with error -22
[  397.593287][ T5880] usb 3-1: USB disconnect, device number 9
[  397.977538][ T5859] usb 2-1: USB disconnect, device number 7
[  398.121099][ T8849] loop1: detected capacity change from 0 to 512
[  398.160424][ T8849] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  398.260785][ T8849] EXT4-fs error (device loop1): ext4_validate_block_bitmap:430: comm syz.1.886: bg 0: block 5: invalid block bitmap
[  398.300733][ T8849] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6637: Corrupt filesystem
[  398.312850][ T8849] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.886: invalid indirect mapped block 3 (level 2)
[  398.330220][ T8849] EXT4-fs (loop1): 2 truncates cleaned up
[  398.429005][ T8849] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  399.127617][ T8858] netlink: 4 bytes leftover after parsing attributes in process `syz.0.888'.
[  399.148425][   T27] audit: type=1800 audit(1763675625.853:39): pid=8849 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.886" name="file2" dev="loop1" ino=16 res=0 errno=0
[  399.354435][ T8862] loop2: detected capacity change from 0 to 16
[  399.389821][ T8862] erofs: (device loop2): mounted with root inode @ nid 36.
[  399.546000][ T8865] x_tables: duplicate underflow at hook 1
[  399.633701][   T51] erofs: (device loop2): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 0] out[9000]
[  399.648579][ T8864] erofs: (device loop2): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[8192]
[  399.667850][   T27] audit: type=1800 audit(1763675626.363:40): pid=8864 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.889" name="file2" dev="loop2" ino=89 res=0 errno=0
[  399.788607][ T5793] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  400.597218][ T8874] loop3: detected capacity change from 0 to 22
[  400.630926][ T8874] MTD: Attempt to mount non-MTD device "/dev/loop3"
[  400.720129][ T8874] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  400.981374][ T8858] team0 (unregistering): Port device team_slave_0 removed
[  401.020645][ T8858] team0 (unregistering): Port device team_slave_1 removed
[  401.098826][ T8881] netlink: 16 bytes leftover after parsing attributes in process `syz.1.891'.
[  401.140988][ T8856] syzkaller1: tun_chr_ioctl cmd 1074025677
[  401.155501][ T8856] syzkaller1: linktype set to 780
[  401.205898][ T8883] genirq: Flags mismatch irq 4. 00000000 (aio_iiro_16) vs. 00000000 (ttyS0)
[  401.389695][ T8885] overlayfs: overlapping lowerdir path
[  401.869599][ T8894] loop0: detected capacity change from 0 to 32768
[  402.294738][   T27] audit: type=1800 audit(1763675629.003:41): pid=8899 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.898" name="file1" dev="loop0" ino=7 res=0 errno=0
[  402.534675][ T8902] loop3: detected capacity change from 0 to 2048
[  402.671855][ T8902] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  402.861233][ T8902] UDF-fs: error (device loop3): udf_verify_fi: directory (ino 1376) has entry at pos 232 with incorrect tag 0
[  403.782280][ T8912] netlink: 4 bytes leftover after parsing attributes in process `syz.3.903'.
[  404.079230][ T8918] overlayfs: overlapping lowerdir path
[  404.377280][ T8912] team0 (unregistering): Port device team_slave_0 removed
[  404.392711][ T8912] team0 (unregistering): Port device team_slave_1 removed
[  404.430456][ T8914] syzkaller1: tun_chr_ioctl cmd 1074025677
[  404.437012][ T8914] syzkaller1: linktype set to 780
[  404.444493][ T8921] netlink: 16 bytes leftover after parsing attributes in process `syz.1.907'.
[  404.552692][   T51] Bluetooth: hci2: ACL packet for unknown connection handle 201
[  404.625472][ T5859] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  404.777787][ T8930] loop2: detected capacity change from 0 to 4096
[  404.802056][ T8930] ntfs3: loop2: Different NTFS sector size (4096) and media sector size (512).
[  404.845337][ T5859] usb 1-1: Using ep0 maxpacket: 32
[  404.866276][ T5859] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  404.895482][ T5859] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  404.914685][ T5859] usb 1-1: New USB device found, idVendor=1e7d, idProduct=2d51, bcdDevice= 0.00
[  404.953174][ T5859] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  404.995592][ T5859] usb 1-1: config 0 descriptor??
[  405.005405][ T8930] ntfs3: loop2: failed to convert "c46c" to koi8-r
[  405.045166][ T8940] overlayfs: failed to resolve './file1/file0': -2
[  405.327565][ T8946] netlink: 16 bytes leftover after parsing attributes in process `syz.3.919'.
[  405.470986][ T5859] koneplus 0003:1E7D:2D51.0006: hidraw0: USB HID v0.00 Device [HID 1e7d:2d51] on usb-dummy_hcd.0-1/input0
[  405.551518][ T8955] loop1: detected capacity change from 0 to 16
[  405.577592][ T8955] erofs: (device loop1): mounted with root inode @ nid 36.
[  405.673333][   T51] erofs: (device loop1): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 0] out[9000]
[  405.689747][ T8957] erofs: (device loop1): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[8192]
[  405.708009][ T8957] x_tables: duplicate underflow at hook 1
[  405.762571][   T27] audit: type=1800 audit(1763675632.403:42): pid=8957 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.920" name="file2" dev="loop1" ino=89 res=0 errno=0
[  406.419610][ T5859] koneplus 0003:1E7D:2D51.0006: couldn't init struct koneplus_device
[  406.444818][ T5859] koneplus 0003:1E7D:2D51.0006: couldn't install mouse
[  406.467127][ T5859] koneplus: probe of 0003:1E7D:2D51.0006 failed with error -32
[  406.498890][ T5859] usb 1-1: USB disconnect, device number 11
[  406.508995][ T8958] netlink: 4 bytes leftover after parsing attributes in process `syz.2.921'.
[  406.529940][ T8958] syzkaller1: tun_chr_ioctl cmd 1074025677
[  406.548856][ T8958] syzkaller1: linktype set to 780
[  406.603846][ T8960] fido_id[8960]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/report_descriptor': No such file or directory
[  407.736683][ T8978] overlayfs: failed to resolve './file1/file0': -2
[  408.078640][ T8995] netdevsim netdevsim1 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[  408.095146][ T8995] netdevsim netdevsim1 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[  408.124426][ T8995] netdevsim netdevsim1 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[  408.164521][ T8995] netdevsim netdevsim1 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[  408.179744][ T8998] fuse: Bad value for 'fd'
[  408.376726][ T9005] loop3: detected capacity change from 0 to 1024
[  408.387683][ T8995] netlink: 68 bytes leftover after parsing attributes in process `syz.1.933'.
[  408.400774][ T9005] hfsplus: invalid gid specified
[  408.410255][ T9005] hfsplus: unable to parse mount options
[  408.434191][ T8997] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  408.451101][ T8997] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  408.589411][ T9010] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  408.609974][ T9012] netlink: 4 bytes leftover after parsing attributes in process `syz.2.936'.
[  408.752202][ T8997] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  408.795615][ T9016] loop0: detected capacity change from 0 to 512
[  408.802595][ T8997] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  408.822025][ T9016] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  408.861085][ T9016] EXT4-fs error (device loop0): ext4_validate_block_bitmap:430: comm syz.0.939: bg 0: block 5: invalid block bitmap
[  408.874371][ T9012] syzkaller1: tun_chr_ioctl cmd 1074025677
[  408.880411][ T9016] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6637: Corrupt filesystem
[  408.880550][ T9012] syzkaller1: linktype set to 780
[  408.912063][ T9016] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.939: invalid indirect mapped block 3 (level 2)
[  408.929807][ T9016] EXT4-fs (loop0): 2 truncates cleaned up
[  408.937252][ T9016] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  409.014700][   T27] audit: type=1800 audit(1763675635.713:43): pid=9016 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.939" name="file2" dev="loop0" ino=16 res=0 errno=0
[  409.058063][ T8997] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  409.072825][ T8997] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  409.203820][ T8997] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  409.220108][ T5791] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  409.225233][ T8997] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  409.517267][ T8997] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 20000 - 0
[  409.531524][ T8997] netdevsim netdevsim1 eth0: set [1, 1] type 2 family 0 port 6081 - 0
[  409.565989][ T8997] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 20000 - 0
[  409.574562][ T8997] netdevsim netdevsim1 eth1: set [1, 1] type 2 family 0 port 6081 - 0
[  409.605171][ T5782] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  409.655406][ T8997] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 20000 - 0
[  409.663772][ T8997] netdevsim netdevsim1 eth2: set [1, 1] type 2 family 0 port 6081 - 0
[  409.698058][ T8997] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 20000 - 0
[  409.711045][ T8997] netdevsim netdevsim1 eth3: set [1, 1] type 2 family 0 port 6081 - 0
[  409.825086][ T5782] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  409.843087][ T5782] usb 1-1: config 0 has no interfaces?
[  409.868163][ T5782] usb 1-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  409.889337][ T5782] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  409.902441][ T5782] usb 1-1: config 0 descriptor??
[  410.053383][ T9032] loop2: detected capacity change from 0 to 1024
[  410.183517][ T9034] fuse: Bad value for 'fd'
[  410.249459][ T9032] hfsplus: xattr searching failed
[  410.298523][ T9032] hfsplus: xattr searching failed
[  410.322333][ T9032] hfsplus: xattr searching failed
[  410.953529][ T9042] netlink: 4 bytes leftover after parsing attributes in process `syz.1.949'.
[  411.138149][ T9047] syzkaller1: tun_chr_ioctl cmd 1074025677
[  411.290792][ T9047] syzkaller1: linktype set to 780
[  411.928545][ T9060] fuse: Bad value for 'fd'
[  412.072818][ T9063] tipc: Started in network mode
[  412.078228][ T9063] tipc: Node identity 0a1593b78d63, cluster identity 4711
[  412.085955][ T9063] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  412.131965][ T9062] tipc: Disabling bearer <eth:syzkaller0>
[  412.329719][ T9073] netlink: 12 bytes leftover after parsing attributes in process `syz.3.960'.
[  412.370201][   T42] usb 1-1: USB disconnect, device number 12
[  412.409208][ T9073] netlink: 12 bytes leftover after parsing attributes in process `syz.3.960'.
[  412.592285][ T9081] loop1: detected capacity change from 0 to 22
[  412.626792][ T9081] MTD: Attempt to mount non-MTD device "/dev/loop1"
[  412.637688][ T9081] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  413.640748][ T9095] loop0: detected capacity change from 0 to 16
[  414.521194][ T9095] erofs: (device loop0): mounted with root inode @ nid 36.
[  414.590309][   T51] erofs: (device loop0): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 0] out[9000]
[  414.603611][ T9095] erofs: (device loop0): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[8192]
[  414.616182][ T9095] x_tables: duplicate underflow at hook 1
[  414.620388][   T27] audit: type=1800 audit(1763675641.323:44): pid=9095 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.967" name="file2" dev="loop0" ino=89 res=0 errno=0
[  414.808252][ T9099] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  414.881840][ T9097] tipc: Disabling bearer <eth:syzkaller0>
[  415.290918][ T9120] loop3: detected capacity change from 0 to 16
[  415.307363][ T9120] erofs: (device loop3): mounted with root inode @ nid 36.
[  415.395338][   T51] erofs: (device loop3): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 0] out[9000]
[  415.408418][ T9122] erofs: (device loop3): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[8192]
[  415.425331][ T9122] x_tables: duplicate underflow at hook 1
[  415.459071][   T27] audit: type=1800 audit(1763675642.123:45): pid=9122 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.975" name="file2" dev="loop3" ino=89 res=0 errno=0
[  416.445267][ T9135] loop1: detected capacity change from 0 to 16
[  416.490467][ T9135] erofs: (device loop1): mounted with root inode @ nid 36.
[  416.603561][   T51] erofs: (device loop1): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 0] out[9000]
[  416.617831][ T9140] erofs: (device loop1): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[8192]
[  416.637104][ T9140] x_tables: duplicate underflow at hook 1
[  416.725568][   T27] audit: type=1800 audit(1763675643.333:46): pid=9140 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.980" name="file2" dev="loop1" ino=89 res=0 errno=0
[  417.681695][ T9126] bridge0: port 2(bridge_slave_1) entered disabled state
[  417.689444][ T9126] bridge0: port 1(bridge_slave_0) entered disabled state
[  417.805682][   T23] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  417.995067][   T23] usb 4-1: Using ep0 maxpacket: 8
[  418.003573][   T23] usb 4-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0xEE, skipping
[  418.024738][   T23] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  418.038435][   T23] usb 4-1: New USB device found, idVendor=187f, idProduct=0200, bcdDevice=6b.ad
[  418.053265][   T23] usb 4-1: New USB device strings: Mfr=55, Product=237, SerialNumber=3
[  418.061988][   T23] usb 4-1: Product: syz
[  418.071231][   T23] usb 4-1: Manufacturer: syz
[  418.076244][   T23] usb 4-1: SerialNumber: syz
[  418.083457][   T23] usb 4-1: config 0 descriptor??
[  418.087328][ T9126] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  418.101168][   T23] smsusb:smsusb_probe: board id=2, interface number 0
[  418.116837][   T23] smsusb:smsusb_probe: Device initialized with return code -19
[  418.157577][ T9126] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  418.373951][ T9126] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  418.383373][ T9126] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  418.392774][ T9126] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  418.402167][ T9126] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  418.563225][ T9133] netlink: 8 bytes leftover after parsing attributes in process `syz.0.981'.
[  418.625662][ T9153] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  418.668110][    T9] usb 4-1: USB disconnect, device number 8
[  418.947835][ T9187] loop1: detected capacity change from 0 to 16
[  418.982322][ T9187] erofs: (device loop1): mounted with root inode @ nid 36.
[  419.076641][   T51] erofs: (device loop1): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 0] out[9000]
[  419.107652][ T9190] erofs: (device loop1): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[8192]
[  419.124713][ T9190] x_tables: duplicate underflow at hook 1
[  419.139938][   T27] audit: type=1800 audit(1763675645.823:47): pid=9190 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.988" name="file2" dev="loop1" ino=89 res=0 errno=0
[  420.033019][ T9197] loop2: detected capacity change from 0 to 16
[  420.053315][ T9197] erofs: (device loop2): mounted with root inode @ nid 36.
[  420.141541][   T51] erofs: (device loop2): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 0] out[9000]
[  420.154454][ T9201] erofs: (device loop2): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[8192]
[  420.173630][ T9201] x_tables: duplicate underflow at hook 1
[  420.196627][   T27] audit: type=1800 audit(1763675646.873:48): pid=9201 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.991" name="file2" dev="loop2" ino=89 res=0 errno=0
[  421.025492][ T9211] netlink: 8 bytes leftover after parsing attributes in process `syz.2.994'.
[  421.216609][ T9219] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  421.264266][ T9222] loop2: detected capacity change from 0 to 256
[  421.308551][ T9222] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x99a53fd9, utbl_chksum : 0xe619d30d)
[  421.485326][ T9227] loop1: detected capacity change from 0 to 16
[  421.509821][ T9227] erofs: (device loop1): mounted with root inode @ nid 36.
[  421.593772][   T51] erofs: (device loop1): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 0] out[9000]
[  421.631592][ T9229] erofs: (device loop1): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[8192]
[  421.654808][ T9229] x_tables: duplicate underflow at hook 1
[  421.676393][   T27] audit: type=1800 audit(1763675648.353:49): pid=9229 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.999" name="file2" dev="loop1" ino=89 res=0 errno=0
[  422.618580][ T9240] loop1: detected capacity change from 0 to 16
[  422.733128][ T9240] erofs: (device loop1): mounted with root inode @ nid 36.
[  422.830758][   T51] erofs: (device loop1): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 0] out[9000]
[  422.844325][ T9242] erofs: (device loop1): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[8192]
[  422.862763][ T9242] x_tables: duplicate underflow at hook 1
[  422.888327][   T27] audit: type=1800 audit(1763675649.563:50): pid=9242 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1003" name="file2" dev="loop1" ino=89 res=0 errno=0
[  424.008376][ T9262] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  424.190651][ T9233] loop3: detected capacity change from 0 to 32768
[  424.272533][ T9271] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1010'.
[  424.310361][ T9233] ocfs2: Mounting device (7,3) on (node local, slot 0) with writeback data mode.
[  424.321165][ T9271] syzkaller1: tun_chr_ioctl cmd 1074025677
[  424.372445][ T9271] syzkaller1: linktype set to 780
[  424.450263][   T27] audit: type=1800 audit(1763675651.153:51): pid=9233 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1001" name="file1" dev="loop3" ino=17058 res=0 errno=0
[  424.552001][ T5792] ocfs2: Unmounting device (7,3) on (node local)
[  424.803967][ T9283] loop0: detected capacity change from 0 to 16
[  424.852392][ T9283] erofs: (device loop0): mounted with root inode @ nid 36.
[  424.891175][ T9283] erofs: (device loop0): z_erofs_extent_lookback: bogus lookback distance 1388 @ lcn 42 of nid 36
[  424.943644][ T9289] erofs: (device loop0): z_erofs_do_map_blocks: invalid logical cluster 0 at nid 36
[  424.959709][ T9283] erofs: (device loop0): z_erofs_read_folio: read error -117 @ 43 of nid 36
[  424.977548][ T9289] syz.0.1016: attempt to access beyond end of device
[  424.977548][ T9289] loop0: rw=0, sector=296, nr_sectors = 8 limit=16
[  425.032617][ T9289] erofs: (device loop0): z_erofs_read_folio: read error -117 @ 0 of nid 36
[  425.063609][ T9289] erofs: (device loop0): erofs_readdir: fail to readdir of logical block 0 of nid 36
[  425.358459][ T9305] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  425.490948][ T9310] loop2: detected capacity change from 0 to 128
[  425.527422][ T9310] FAT-fs (loop2): Unrecognized mount option "dos" or missing value
[  425.602419][ T9310] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1024'.
[  425.755926][ T9310] loop2: detected capacity change from 0 to 4096
[  425.823529][ T9312] loop3: detected capacity change from 0 to 4096
[  425.867963][ T9312] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512).
[  425.939795][ T9320] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1026'.
[  425.968929][ T9321] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  425.982419][ T9320] syzkaller1: tun_chr_ioctl cmd 1074025677
[  425.985932][ T9310] NILFS (loop2): corrupt root inode
[  425.988766][ T9320] syzkaller1: linktype set to 780
[  426.065995][ T9323] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1027'.
[  427.145916][ T9332] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1030'.
[  427.158221][ T9333] loop2: detected capacity change from 0 to 22
[  427.202183][ T9333] MTD: Attempt to mount non-MTD device "/dev/loop2"
[  427.279113][ T9333] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  427.771090][ T9347] loop0: detected capacity change from 0 to 16
[  427.857214][   T42] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  427.985883][ T9347] erofs: (device loop0): mounted with root inode @ nid 36.
[  428.045231][   T42] usb 2-1: Using ep0 maxpacket: 16
[  428.057641][   T42] usb 2-1: config 0 has no interfaces?
[  428.068001][   T51] erofs: (device loop0): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 0] out[9000]
[  428.084887][ T9350] erofs: (device loop0): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[8192]
[  428.103036][ T9350] x_tables: duplicate underflow at hook 1
[  428.123071][   T27] audit: type=1800 audit(1763675654.803:52): pid=9350 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1035" name="file2" dev="loop0" ino=89 res=0 errno=0
[  428.183356][   T42] usb 2-1: New USB device found, idVendor=05ac, idProduct=024b, bcdDevice= 0.00
[  428.419754][   T42] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  428.913065][   T42] usb 2-1: config 0 descriptor??
[  429.341455][ T9357] loop3: detected capacity change from 0 to 4096
[  429.382691][ T9357] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512).
[  429.395511][   T42] usb 2-1: USB disconnect, device number 8
[  429.530803][ T9362] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1039'.
[  429.564353][ T9362] syzkaller1: tun_chr_ioctl cmd 1074025677
[  429.590641][ T9362] syzkaller1: linktype set to 780
[  431.297226][ T9399] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  431.407062][ T9405] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1050'.
[  431.441015][ T9405] syzkaller1: tun_chr_ioctl cmd 1074025677
[  431.449482][ T9405] syzkaller1: linktype set to 780
[  431.556612][ T9141] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  431.639301][   T27] audit: type=1326 audit(1763675658.343:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9409 comm="syz.1.1054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe1a018f749 code=0x7ffc0000
[  431.688278][   T27] audit: type=1326 audit(1763675658.373:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9409 comm="syz.1.1054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe1a018f749 code=0x7ffc0000
[  431.711024][   T27] audit: type=1326 audit(1763675658.373:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9409 comm="syz.1.1054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe1a018f749 code=0x7ffc0000
[  431.748466][   T27] audit: type=1326 audit(1763675658.373:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9409 comm="syz.1.1054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe1a018f749 code=0x7ffc0000
[  431.775119][ T9141] usb 3-1: Using ep0 maxpacket: 16
[  431.775602][   T27] audit: type=1326 audit(1763675658.373:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9409 comm="syz.1.1054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fe1a018f749 code=0x7ffc0000
[  431.804049][ T9141] usb 3-1: config 0 has no interfaces?
[  431.809800][ T9141] usb 3-1: New USB device found, idVendor=05ac, idProduct=024b, bcdDevice= 0.00
[  431.822381][ T9141] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  431.847608][ T9141] usb 3-1: config 0 descriptor??
[  431.905211][   T27] audit: type=1326 audit(1763675658.373:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9409 comm="syz.1.1054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe1a018f749 code=0x7ffc0000
[  431.989427][   T27] audit: type=1326 audit(1763675658.373:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9409 comm="syz.1.1054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe1a018f749 code=0x7ffc0000
[  432.056286][   T27] audit: type=1326 audit(1763675658.373:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9409 comm="syz.1.1054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fe1a018f749 code=0x7ffc0000
[  432.082006][ T9141] usb 3-1: USB disconnect, device number 10
[  432.148318][   T27] audit: type=1326 audit(1763675658.373:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9409 comm="syz.1.1054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe1a018f749 code=0x7ffc0000
[  435.003754][ T9452] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1064'.
[  435.051324][ T9452] syzkaller1: tun_chr_ioctl cmd 1074025677
[  435.065912][ T9452] syzkaller1: linktype set to 780
[  435.495144][   T42] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  435.685128][   T42] usb 2-1: Using ep0 maxpacket: 16
[  435.697983][   T42] usb 2-1: config 0 has no interfaces?
[  435.704000][   T42] usb 2-1: New USB device found, idVendor=05ac, idProduct=024b, bcdDevice= 0.00
[  435.717800][   T42] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  435.741538][   T42] usb 2-1: config 0 descriptor??
[  436.297816][ T9166] usb 2-1: USB disconnect, device number 9
[  436.824273][ T9499] fuse: Bad value for 'fd'
[  436.991235][ T9503] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1079'.
[  438.856497][   T51] Bluetooth: hci3: command 0x0c1a tx timeout
[  438.863514][ T9494] Bluetooth: hci3: Opcode 0x0c1a failed: -110
[  439.249627][ T9494] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  439.256045][ T9494] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  439.471722][   T51] Bluetooth: hci2: unexpected event for opcode 0x2040
[  439.662845][ T9519] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  439.831126][ T9528] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1085'.
[  440.300962][ T1290] ieee802154 phy0 wpan0: encryption failed: -22
[  440.307609][ T1290] ieee802154 phy1 wpan1: encryption failed: -22
[  440.396919][ T9533] fuse: Bad value for 'fd'
[  440.829968][   T27] kauditd_printk_skb: 45 callbacks suppressed
[  440.829987][   T27] audit: type=1326 audit(1763675667.533:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9547 comm="syz.2.1092" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f721438f749 code=0x7ffc0000
[  440.896566][   T27] audit: type=1326 audit(1763675667.533:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9547 comm="syz.2.1092" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f721438f749 code=0x7ffc0000
[  440.935951][ T9166] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  440.944075][ T5108] Bluetooth: hci1: command 0x0c1a tx timeout
[  440.954220][   T27] audit: type=1326 audit(1763675667.573:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9547 comm="syz.2.1092" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f721438f749 code=0x7ffc0000
[  440.979504][   T27] audit: type=1326 audit(1763675667.573:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9547 comm="syz.2.1092" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f721438f749 code=0x7ffc0000
[  441.002435][   T27] audit: type=1326 audit(1763675667.573:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9547 comm="syz.2.1092" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f721438f749 code=0x7ffc0000
[  441.030980][   T27] audit: type=1326 audit(1763675667.573:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9547 comm="syz.2.1092" exe="/root/syz-executor" sig=0 arch=c000003e syscall=427 compat=0 ip=0x7f721438f749 code=0x7ffc0000
[  441.054562][   T27] audit: type=1326 audit(1763675667.573:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9547 comm="syz.2.1092" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f721438f749 code=0x7ffc0000
[  441.125084][ T9166] usb 4-1: Using ep0 maxpacket: 16
[  441.143583][ T9166] usb 4-1: config 0 has no interfaces?
[  441.151294][ T9166] usb 4-1: New USB device found, idVendor=05ac, idProduct=024b, bcdDevice= 0.00
[  441.160779][ T9166] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  441.184871][ T9166] usb 4-1: config 0 descriptor??
[  441.411228][ T9166] usb 4-1: USB disconnect, device number 9
[  441.688280][ T9560] fuse: Bad value for 'fd'
[  443.175458][ T9555] Bluetooth: hci3: Opcode 0x0c1a failed: -110
[  443.181736][ T5108] Bluetooth: hci3: command 0x0c1a tx timeout
[  443.906491][ T9555] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  443.913004][ T9555] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  444.262330][ T9570] loop0: detected capacity change from 0 to 1024
[  444.271096][ T9570] hfsplus: invalid gid specified
[  444.277091][ T9570] hfsplus: unable to parse mount options
[  444.312330][ T8692] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  444.337572][ T9570] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  444.425423][   T42] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  444.433212][ T9141] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  444.625202][ T9141] usb 4-1: Using ep0 maxpacket: 16
[  444.633097][ T9141] usb 4-1: config 0 interface 0 has no altsetting 0
[  444.640192][ T9141] usb 4-1: New USB device found, idVendor=1345, idProduct=3008, bcdDevice= 0.00
[  444.649830][ T9141] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  444.660075][   T42] usb 2-1: Using ep0 maxpacket: 32
[  444.664293][ T9141] usb 4-1: config 0 descriptor??
[  444.679164][   T42] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  444.690469][   T42] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  444.700733][   T42] usb 2-1: New USB device found, idVendor=1e7d, idProduct=2d51, bcdDevice= 0.00
[  444.710079][   T42] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  444.721316][   T42] usb 2-1: config 0 descriptor??
[  445.090334][ T9141] usbhid 4-1:0.0: can't add hid device: -71
[  445.096648][ T9141] usbhid: probe of 4-1:0.0 failed with error -71
[  445.106069][ T9141] usb 4-1: USB disconnect, device number 10
[  445.136404][   T42] usbhid 2-1:0.0: can't add hid device: -71
[  445.143392][   T42] usbhid: probe of 2-1:0.0 failed with error -71
[  445.155952][   T42] usb 2-1: USB disconnect, device number 10
[  445.265370][ T5108] Bluetooth: hci1: command 0x0c1a tx timeout
[  445.744559][ T9588] netlink: 124 bytes leftover after parsing attributes in process `syz.2.1106'.
[  445.975151][ T5108] Bluetooth: hci2: command 0x0c1a tx timeout
[  446.689768][ T9602] loop2: detected capacity change from 0 to 1024
[  446.697794][ T9602] hfsplus: invalid gid specified
[  446.702802][ T9602] hfsplus: unable to parse mount options
[  446.746300][ T8692] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  448.456633][ T9583] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  448.463942][ T9583] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  448.471159][ T9583] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  448.535214][ T5108] Bluetooth: hci3: command 0x0c1a tx timeout
[  450.415073][ T9612] fuse: Bad value for 'fd'
[  450.475130][   T42] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[  450.539639][ T5108] Bluetooth: hci2: command 0x0c1a tx timeout
[  450.539679][   T51] Bluetooth: hci1: command 0x0c1a tx timeout
[  450.685472][ T9624] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1116'.
[  450.998948][ T9633] loop1: detected capacity change from 0 to 1024
[  451.021957][ T9633] hfsplus: invalid gid specified
[  451.037212][ T9633] hfsplus: unable to parse mount options
[  451.047499][ T9638] veth0_to_team: entered promiscuous mode
[  451.086580][ T9633] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  451.261805][ T9642] loop1: detected capacity change from 0 to 2048
[  451.336114][ T9141] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  451.347439][ T9643] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  451.556316][ T9141] usb 3-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[  451.565872][ T9141] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  451.574088][ T9141] usb 3-1: Product: syz
[  451.588584][ T9141] usb 3-1: Manufacturer: syz
[  451.593248][ T9141] usb 3-1: SerialNumber: syz
[  451.603223][ T9141] usb 3-1: config 0 descriptor??
[  451.825197][   T42] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[  452.038961][   T42] usb 4-1: Using ep0 maxpacket: 16
[  452.084885][   T42] usb 4-1: config 0 has no interfaces?
[  452.122748][   T42] usb 4-1: New USB device found, idVendor=05ac, idProduct=024b, bcdDevice= 0.00
[  452.188160][   T42] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  452.321066][   T42] usb 4-1: config 0 descriptor??
[  452.723274][   T42] usb 4-1: USB disconnect, device number 12
[  452.845607][ T9638] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  452.859445][ T9638] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  453.073141][ T9141] usb 3-1: USB disconnect, device number 11
[  453.106260][ T9655] loop1: detected capacity change from 0 to 22
[  453.129067][ T9655] MTD: Attempt to mount non-MTD device "/dev/loop1"
[  453.146901][ T9655] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  453.474732][ T9665] loop1: detected capacity change from 0 to 512
[  453.483105][ T9665] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  453.510291][ T9665] EXT4-fs error (device loop1): ext4_validate_block_bitmap:430: comm syz.1.1132: bg 0: block 5: invalid block bitmap
[  453.524488][ T9665] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6637: Corrupt filesystem
[  453.538868][ T9665] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.1132: invalid indirect mapped block 3 (level 2)
[  453.554784][ T9665] EXT4-fs (loop1): 2 truncates cleaned up
[  453.562233][ T9665] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  453.586692][   T42] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[  453.604330][   T27] audit: type=1800 audit(1763675680.303:114): pid=9665 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1132" name="file2" dev="loop1" ino=16 res=0 errno=0
[  453.722843][ T5793] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  453.785154][   T42] usb 4-1: Using ep0 maxpacket: 16
[  453.794013][   T42] usb 4-1: config 0 interface 0 has no altsetting 0
[  453.807858][   T42] usb 4-1: New USB device found, idVendor=1345, idProduct=3008, bcdDevice= 0.00
[  453.819131][   T42] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  453.832609][   T42] usb 4-1: config 0 descriptor??
[  454.205098][ T9141] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  454.248697][   T42] usbhid 4-1:0.0: can't add hid device: -71
[  454.254778][   T42] usbhid: probe of 4-1:0.0 failed with error -71
[  454.264828][   T42] usb 4-1: USB disconnect, device number 13
[  454.285539][    T9] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  454.407426][ T9141] usb 2-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08
[  454.419414][ T9141] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  454.429513][ T9141] usb 2-1: config 0 descriptor??
[  454.492141][    T9] usb 1-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[  454.501374][    T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  454.509705][    T9] usb 1-1: Product: syz
[  454.513940][    T9] usb 1-1: Manufacturer: syz
[  454.518645][    T9] usb 1-1: SerialNumber: syz
[  454.525753][    T9] usb 1-1: config 0 descriptor??
[  454.647337][ T9141] [drm] vendor descriptor length:6 data:06 5f 00 00 00 00 00 00 00 00 00
[  454.656226][ T9141] [drm:udl_init] *ERROR* Unrecognized vendor firmware descriptor
[  454.776942][   T42] usb 1-1: USB disconnect, device number 13
[  454.897858][ T9141] [drm] Initialized udl 0.0.1 20120220 for 2-1:0.0 on minor 2
[  454.907732][ T9141] [drm] Initialized udl on minor 2
[  455.053715][ T9141] udl 2-1:0.0: [drm] *ERROR* Read EDID byte 0 failed
[  455.069235][ T9141] udl 2-1:0.0: [drm] Cannot find any crtc or sizes
[  455.145142][ T9166] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[  455.246717][ T9682] loop2: detected capacity change from 0 to 1024
[  455.254193][ T9682] EXT4-fs: quotafile must be on filesystem root
[  455.335520][ T9166] usb 4-1: Using ep0 maxpacket: 16
[  455.433197][ T9166] usb 4-1: config 0 has no interfaces?
[  455.461355][ T9166] usb 4-1: New USB device found, idVendor=05ac, idProduct=024b, bcdDevice= 0.00
[  455.500578][ T9166] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  455.654580][ T9166] usb 4-1: config 0 descriptor??
[  455.919718][ T9166] usb 2-1: USB disconnect, device number 11
[  455.935234][    T9] udl 2-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[  455.983291][    T9] udl 2-1:0.0: [drm] Cannot find any crtc or sizes
[  455.984169][   T42] usb 4-1: USB disconnect, device number 14
[  456.107075][ T9687] loop2: detected capacity change from 0 to 512
[  456.127496][ T9687] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  456.173194][ T9687] EXT4-fs error (device loop2): ext4_validate_block_bitmap:430: comm syz.2.1141: bg 0: block 5: invalid block bitmap
[  456.196475][ T9687] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6637: Corrupt filesystem
[  456.207073][ T9687] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #11: comm syz.2.1141: invalid indirect mapped block 3 (level 2)
[  456.224017][ T9687] EXT4-fs (loop2): 2 truncates cleaned up
[  456.235286][ T9687] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  456.321272][   T27] audit: type=1800 audit(1763675683.023:115): pid=9687 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1141" name="file2" dev="loop2" ino=16 res=0 errno=0
[  456.393152][ T5790] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  456.989155][ T9712] loop2: detected capacity change from 0 to 1024
[  456.999921][ T9712] EXT4-fs: quotafile must be on filesystem root
[  457.850039][ T9704] loop3: detected capacity change from 0 to 32768
[  457.992741][ T9719] loop2: detected capacity change from 0 to 512
[  458.047006][ T9719] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  458.441434][ T9719] EXT4-fs error (device loop2): ext4_validate_block_bitmap:430: comm syz.2.1152: bg 0: block 5: invalid block bitmap
[  458.704789][ T9719] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6637: Corrupt filesystem
[  458.766280][ T9719] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #11: comm syz.2.1152: invalid indirect mapped block 3 (level 2)
[  458.861112][ T9719] EXT4-fs (loop2): 2 truncates cleaned up
[  458.898514][ T9719] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  459.144752][ T5790] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  459.265381][   T27] audit: type=1800 audit(1763675685.963:116): pid=9734 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1147" name="file1" dev="loop3" ino=7 res=0 errno=0
[  459.674344][ T9741] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1158'.
[  459.803749][ T9743] loop1: detected capacity change from 0 to 1024
[  459.811645][ T9743] hfsplus: invalid gid specified
[  459.816801][ T9743] hfsplus: unable to parse mount options
[  459.842506][ T9743] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  461.370221][ T9761] loop1: detected capacity change from 0 to 512
[  461.379029][ T9763] loop2: detected capacity change from 0 to 22
[  461.433839][ T9761] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  461.599225][ T9764] loop0: detected capacity change from 0 to 32768
[  461.607929][ T9763] MTD: Attempt to mount non-MTD device "/dev/loop2"
[  461.665316][ T9763] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  461.950615][ T9761] EXT4-fs error (device loop1): ext4_validate_block_bitmap:430: comm syz.1.1165: bg 0: block 5: invalid block bitmap
[  461.968543][ T9761] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6637: Corrupt filesystem
[  461.987875][ T9761] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.1165: invalid indirect mapped block 3 (level 2)
[  462.032275][ T9761] EXT4-fs (loop1): 2 truncates cleaned up
[  462.042717][   T27] audit: type=1800 audit(1763675688.743:117): pid=9774 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1167" name="file1" dev="loop0" ino=7 res=0 errno=0
[  462.074219][ T9761] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  462.360161][ T5793] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  462.591284][ T9783] loop2: detected capacity change from 0 to 16
[  462.643449][ T9783] erofs: (device loop2): mounted with root inode @ nid 36.
[  462.776908][   T51] erofs: (device loop2): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 0] out[9000]
[  462.789712][ T9785] erofs: (device loop2): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[8192]
[  462.802533][ T9786] x_tables: duplicate underflow at hook 1
[  462.849033][   T27] audit: type=1800 audit(1763675689.503:118): pid=9785 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1171" name="file2" dev="loop2" ino=89 res=0 errno=0
[  464.747155][ T9802] loop2: detected capacity change from 0 to 4096
[  464.798882][ T9802] ntfs3: loop2: Different NTFS sector size (4096) and media sector size (512).
[  464.902385][ T9805] loop1: detected capacity change from 0 to 512
[  464.912962][ T9805] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  465.038482][ T9805] EXT4-fs error (device loop1): ext4_validate_block_bitmap:430: comm syz.1.1178: bg 0: block 5: invalid block bitmap
[  465.067612][ T9805] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6637: Corrupt filesystem
[  465.077346][ T9805] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.1178: invalid indirect mapped block 3 (level 2)
[  465.112709][ T9805] EXT4-fs (loop1): 2 truncates cleaned up
[  465.142283][ T9805] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  465.344132][ T5793] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  465.458005][ T9817] loop2: detected capacity change from 0 to 16
[  465.681427][ T9817] erofs: (device loop2): mounted with root inode @ nid 36.
[  465.766137][   T51] erofs: (device loop2): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 0] out[9000]
[  465.780924][ T9821] erofs: (device loop2): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[8192]
[  465.798388][ T9821] x_tables: duplicate underflow at hook 1
[  465.845326][   T27] audit: type=1800 audit(1763675692.503:119): pid=9821 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1182" name="file2" dev="loop2" ino=89 res=0 errno=0
[  466.508818][ T9830] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1185'.
[  466.956522][ T9841] loop2: detected capacity change from 0 to 512
[  466.970273][ T9841] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  466.991680][ T9841] EXT4-fs error (device loop2): ext4_validate_block_bitmap:430: comm syz.2.1191: bg 0: block 5: invalid block bitmap
[  467.009381][ T9841] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6637: Corrupt filesystem
[  467.154779][ T9841] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #11: comm syz.2.1191: invalid indirect mapped block 3 (level 2)
[  467.293475][ T9841] EXT4-fs (loop2): 2 truncates cleaned up
[  467.421325][ T9841] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  467.656955][   T27] audit: type=1800 audit(1763675694.333:120): pid=9841 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1191" name="file2" dev="loop2" ino=16 res=0 errno=0
[  467.852296][ T5790] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  467.997817][ T9853] loop1: detected capacity change from 0 to 16
[  468.112951][ T9853] erofs: (device loop1): mounted with root inode @ nid 36.
[  468.195593][   T51] erofs: (device loop1): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 0] out[9000]
[  468.211251][ T9856] erofs: (device loop1): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[8192]
[  468.229796][ T9856] x_tables: duplicate underflow at hook 1
[  468.252039][   T27] audit: type=1800 audit(1763675694.923:121): pid=9856 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1193" name="file2" dev="loop1" ino=89 res=0 errno=0
[  468.925165][   T42] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  469.062473][ T9864] syzkaller0: entered promiscuous mode
[  469.068313][ T9864] syzkaller0: entered allmulticast mode
[  469.091134][ T9864] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  469.113626][ T9863] tipc: Resetting bearer <eth:syzkaller0>
[  469.151799][   T42] usb 3-1: Using ep0 maxpacket: 16
[  469.164360][   T42] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  469.182686][ T9863] tipc: Disabling bearer <eth:syzkaller0>
[  469.188610][   T42] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  469.205392][   T42] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  469.223551][   T42] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  469.233672][   T42] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  469.247819][   T42] usb 3-1: config 0 descriptor??
[  470.174203][   T42] microsoft 0003:045E:07DA.0007: unknown main item tag 0x2
[  470.356193][   T42] microsoft 0003:045E:07DA.0007: unknown main item tag 0x0
[  470.363508][   T42] microsoft 0003:045E:07DA.0007: unknown main item tag 0x0
[  470.386469][   T42] microsoft 0003:045E:07DA.0007: unknown main item tag 0x0
[  470.393899][   T42] microsoft 0003:045E:07DA.0007: unknown main item tag 0x0
[  470.405864][   T42] microsoft 0003:045E:07DA.0007: unknown main item tag 0x0
[  470.413162][   T42] microsoft 0003:045E:07DA.0007: unknown main item tag 0x0
[  470.425725][   T42] microsoft 0003:045E:07DA.0007: unknown main item tag 0x0
[  470.437978][   T42] microsoft 0003:045E:07DA.0007: unknown main item tag 0x0
[  470.449438][   T42] microsoft 0003:045E:07DA.0007: unknown main item tag 0x0
[  470.479841][   T42] microsoft 0003:045E:07DA.0007: No inputs registered, leaving
[  470.502883][   T42] microsoft 0003:045E:07DA.0007: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.2-1/input0
[  470.529780][   T42] microsoft 0003:045E:07DA.0007: no inputs found
[  470.556408][   T42] microsoft 0003:045E:07DA.0007: could not initialize ff, continuing anyway
[  470.618418][   T42] usb 3-1: USB disconnect, device number 12
[  470.675548][ T9885] fido_id[9885]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/report_descriptor': No such file or directory
[  471.072382][ T9904] syzkaller0: entered promiscuous mode
[  471.085221][ T9904] syzkaller0: entered allmulticast mode
[  471.104694][ T9904] tipc: Started in network mode
[  471.110005][ T9904] tipc: Node identity 76d213b068c9, cluster identity 4711
[  471.118205][ T9904] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  471.129789][ T9903] tipc: Resetting bearer <eth:syzkaller0>
[  471.154086][ T9903] tipc: Disabling bearer <eth:syzkaller0>
[  471.452261][ T9912] overlayfs: missing 'lowerdir'
[  472.033401][ T9927] loop1: detected capacity change from 0 to 22
[  472.040426][ T9927] MTD: Attempt to mount non-MTD device "/dev/loop1"
[  472.047751][ T9927] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  472.185442][ T9933] overlayfs: missing 'lowerdir'
[  472.247346][ T9936] loop3: detected capacity change from 0 to 16
[  472.280358][ T9936] erofs: (device loop3): mounted with root inode @ nid 36.
[  472.362723][   T51] erofs: (device loop3): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 0] out[9000]
[  472.377910][ T9941] erofs: (device loop3): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[8192]
[  472.397454][ T9941] x_tables: duplicate underflow at hook 1
[  472.556240][   T27] audit: type=1800 audit(1763675699.093:122): pid=9941 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1222" name="file2" dev="loop3" ino=89 res=0 errno=0
[  473.664731][ T9958] loop3: detected capacity change from 0 to 1024
[  473.686525][ T9958] EXT4-fs: quotafile must be on filesystem root
[  473.737056][ T9615] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  474.707849][ T9972] loop2: detected capacity change from 0 to 22
[  474.714690][ T9972] MTD: Attempt to mount non-MTD device "/dev/loop2"
[  474.722753][ T9972] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  474.961524][ T9978] overlayfs: missing 'lowerdir'
[  476.813952][T10002] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1244'.
[  478.956190][T10025] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1254'.
[  479.003173][T10022] loop2: detected capacity change from 0 to 4096
[  479.015976][T10022] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512).
[  479.085410][ T9141] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  479.275309][ T9141] usb 1-1: Using ep0 maxpacket: 16
[  479.293927][ T9141] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  479.328665][ T9141] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  479.359535][ T9141] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  479.391853][ T9141] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  479.411368][ T9141] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  479.442521][ T9141] usb 1-1: config 0 descriptor??
[  479.791316][T10035] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1257'.
[  480.473011][ T9141] usbhid 1-1:0.0: can't add hid device: -71
[  480.483011][ T9141] usbhid: probe of 1-1:0.0 failed with error -71
[  480.492625][ T9141] usb 1-1: USB disconnect, device number 14
[  480.823465][T10044] loop0: detected capacity change from 0 to 1024
[  480.870841][T10044] hfsplus: invalid gid specified
[  480.886736][T10044] hfsplus: unable to parse mount options
[  480.925890][T10047] 9pnet_virtio: no channels available for device syz
[  481.011632][ T9615] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  481.803430][T10052] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  481.940492][T10060] loop1: detected capacity change from 0 to 4096
[  481.964588][T10060] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512).
[  482.457677][T10067] netlink: 'syz.2.1267': attribute type 11 has an invalid length.
[  483.348374][T10082] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1272'.
[  483.425286][ T9141] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[  483.615035][ T9141] usb 4-1: Using ep0 maxpacket: 16
[  483.621813][ T9141] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  483.633106][ T9141] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  483.643266][ T9141] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  483.656689][ T9141] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  483.667908][ T9141] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  483.783490][ T9141] usb 4-1: config 0 descriptor??
[  484.502809][ T9141] usbhid 4-1:0.0: can't add hid device: -71
[  484.525865][ T9141] usbhid: probe of 4-1:0.0 failed with error -71
[  484.561817][ T9141] usb 4-1: USB disconnect, device number 15
[  484.681972][T10097] loop0: detected capacity change from 0 to 4096
[  484.704108][T10097] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512).
[  484.982360][T10103] loop2: detected capacity change from 0 to 1024
[  485.006358][T10103] hfsplus: invalid gid specified
[  485.011403][T10103] hfsplus: unable to parse mount options
[  485.054083][T10107] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1281'.
[  485.068774][ T9615] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  485.284085][T10110] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  486.959686][T10127] loop0: detected capacity change from 0 to 4096
[  487.018989][T10127] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512).
[  487.448265][T10137] loop1: detected capacity change from 0 to 22
[  487.455727][T10137] MTD: Attempt to mount non-MTD device "/dev/loop1"
[  487.464143][T10137] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  488.001465][T10148] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1295'.
[  488.035195][T10148] validate_nla: 97 callbacks suppressed
[  488.035214][T10148] netlink: 'syz.2.1295': attribute type 7 has an invalid length.
[  488.073608][T10148] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1295'.
[  488.510832][T10163] bridge0: entered allmulticast mode
[  489.486267][T10168] loop3: detected capacity change from 0 to 4096
[  489.527097][T10168] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512).
[  489.814184][T10179] loop2: detected capacity change from 0 to 22
[  489.821438][T10179] MTD: Attempt to mount non-MTD device "/dev/loop2"
[  489.829199][T10179] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  490.925356][T10188] fuse: Bad value for 'fd'
[  491.867134][   T27] audit: type=1800 audit(1763675718.513:123): pid=10201 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1312" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[  491.907243][T10203] loop3: detected capacity change from 0 to 1024
[  491.976459][T10203] hfsplus: invalid gid specified
[  492.015000][T10203] hfsplus: unable to parse mount options
[  492.293376][T10205] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  492.836026][T10210] fuse: Unknown parameter 'ji.gfOK�5��r�/P��v�]C25+��4�D��@�p2�%L�SR�����r�:]5	��s�E
j���+*`�����|
[  492.836026][T10210] ��y�FW)��ܭ��wWF6 i�����K�^>�T������$ϩuo;��JBᕽ*��m�����8hs��"��(M1��~�Z&xP�@T���md(|��m�1�I�hѩ`u�_0��.��~�nx��
[  492.836026][T10210] U��;<����2Q8
�AzPM#ĖX93ں)�⏚.g�����߈�NE�d���bM��Dp�2^�z�w�4�X�x�3p��$��1K�I�����ׂg
�x�<3'��P>��ڬ��p�R����&�����!a����9���7<1�]<���J-P/03J�i�ۂ"'��z��3�N͚AK*k1��12S��Z����W��˴4�E��2���$'
[  501.747545][ T1290] ieee802154 phy0 wpan0: encryption failed: -22
[  501.754234][ T1290] ieee802154 phy1 wpan1: encryption failed: -22
[  504.154786][T10376] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  505.840725][T10398] loop2: detected capacity change from 0 to 4096
[  505.859044][T10398] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512).
[  506.000612][T10405] fuse: Bad value for 'fd'
[  506.782558][T10415] loop0: detected capacity change from 0 to 22
[  506.790289][T10415] MTD: Attempt to mount non-MTD device "/dev/loop0"
[  506.800869][T10415] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  507.555631][T10429] fuse: Bad value for 'fd'
[  508.059264][T10445] loop0: detected capacity change from 0 to 4096
[  508.205253][T10445] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512).
[  510.371116][T10467] loop0: detected capacity change from 0 to 22
[  510.378598][T10467] MTD: Attempt to mount non-MTD device "/dev/loop0"
[  510.399320][T10467] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  510.695387][ T9141] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  510.881417][ T9141] usb 3-1: device descriptor read/64, error -71
[  511.048958][T10487] loop0: detected capacity change from 0 to 4096
[  511.076052][T10487] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512).
[  511.168423][ T9141] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  511.261523][T10493] loop3: detected capacity change from 0 to 16
[  511.275312][T10493] erofs: (device loop3): mounted with root inode @ nid 36.
[  511.385552][   T51] erofs: (device loop3): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 0] out[9000]
[  511.402130][T10495] erofs: (device loop3): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[8192]
[  511.420069][T10495] x_tables: duplicate underflow at hook 1
[  511.475208][   T27] audit: type=1800 audit(1763675738.123:124): pid=10495 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1418" name="file2" dev="loop3" ino=89 res=0 errno=0
[  512.185035][ T9141] usb 3-1: device descriptor read/64, error -71
[  512.305227][ T9141] usb usb3-port1: attempt power cycle
[  512.765109][ T9141] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[  512.828611][ T9141] usb 3-1: device descriptor read/8, error -71
[  513.105056][ T9141] usb 3-1: new high-speed USB device number 16 using dummy_hcd
[  513.145855][ T9141] usb 3-1: device descriptor read/8, error -71
[  513.205913][T10520] loop1: detected capacity change from 0 to 4096
[  513.227162][T10520] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512).
[  513.295404][ T9141] usb usb3-port1: unable to enumerate USB device
[  514.201303][T10544] syzkaller0: entered promiscuous mode
[  514.207179][T10544] syzkaller0: entered allmulticast mode
[  514.233674][T10544] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  514.243178][T10543] tipc: Resetting bearer <eth:syzkaller0>
[  514.280629][T10543] tipc: Disabling bearer <eth:syzkaller0>
[  514.385213][ T9141] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  514.565982][ T9141] usb 2-1: Using ep0 maxpacket: 8
[  514.574347][ T9141] usb 2-1: config 0 has an invalid interface number: 55 but max is 0
[  514.583141][ T9141] usb 2-1: config 0 has no interface number 0
[  514.591003][ T9141] usb 2-1: config 0 interface 55 altsetting 0 has an invalid endpoint with address 0x80, skipping
[  514.606331][ T9141] usb 2-1: config 0 interface 55 altsetting 0 has an invalid endpoint with address 0xAB, skipping
[  514.619672][ T9141] usb 2-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  514.639612][ T9141] usb 2-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  514.650492][ T9141] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  514.671271][ T9141] usb 2-1: config 0 descriptor??
[  514.687373][ T9141] ldusb 2-1:0.55: Interrupt in endpoint not found
[  514.702691][T10557] loop2: detected capacity change from 0 to 1024
[  514.711376][T10557] hfsplus: invalid gid specified
[  514.716959][T10557] hfsplus: unable to parse mount options
[  514.826870][T10558] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  515.268423][   T42] usb 2-1: USB disconnect, device number 12
[  515.993178][T10578] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1449'.
[  517.241471][T10610] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1460'.
[  517.328005][    T9] usb 4-1: new high-speed USB device number 16 using dummy_hcd
[  517.425254][T10620] binder: BINDER_SET_CONTEXT_MGR already set
[  517.456294][T10620] binder: 10619:10620 ioctl 4018620d 200000000040 returned -16
[  517.517325][    T9] usb 4-1: Using ep0 maxpacket: 32
[  517.524760][    T9] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  517.555336][    T9] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  517.564394][    T9] usb 4-1: New USB device found, idVendor=1e7d, idProduct=2d51, bcdDevice= 0.00
[  517.614689][    T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  517.643830][    T9] usb 4-1: config 0 descriptor??
[  517.689836][T10628] binder: 10627:10628 unknown command 1074553619
[  517.698756][T10628] binder: 10627:10628 ioctl c0306201 200000000040 returned -22
[  518.339835][T10647] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1473'.
[  519.550088][T10680] loop1: detected capacity change from 0 to 22
[  519.560234][T10680] MTD: Attempt to mount non-MTD device "/dev/loop1"
[  519.585414][T10680] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  520.433293][    T9] usb 4-1: USB disconnect, device number 16
[  520.889632][T10697] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1489'.
[  522.076953][T10715] loop3: detected capacity change from 0 to 16
[  522.092925][T10715] erofs: (device loop3): mounted with root inode @ nid 36.
[  522.178573][   T51] erofs: (device loop3): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 0] out[9000]
[  522.191344][T10718] erofs: (device loop3): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[8192]
[  522.209388][T10718] x_tables: duplicate underflow at hook 1
[  522.235306][   T27] audit: type=1800 audit(1763675748.913:125): pid=10718 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1496" name="file2" dev="loop3" ino=89 res=0 errno=0
[  522.822540][ T9166] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  523.046681][ T9166] usb 1-1: Using ep0 maxpacket: 32
[  523.068282][ T9166] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  523.085800][ T9166] usb 1-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  523.099728][ T9166] usb 1-1: New USB device found, idVendor=1e7d, idProduct=2d51, bcdDevice= 0.00
[  523.110694][ T9166] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  523.148902][ T9166] usb 1-1: config 0 descriptor??
[  523.392781][T10732] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1501'.
[  524.955268][    T9] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[  525.175217][ T9166] usb 1-1: USB disconnect, device number 15
[  525.177070][    T9] usb 2-1: no configurations
[  525.191556][    T9] usb 2-1: can't read configurations, error -22
[  525.573499][    T9] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[  525.629947][T10771] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1516'.
[  525.668268][T10770] netlink: 14 bytes leftover after parsing attributes in process `syz.2.1518'.
[  525.714650][T10770] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  525.729742][T10770] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  525.742866][T10770] bond0 (unregistering): Released all slaves
[  525.761535][    T9] usb 2-1: no configurations
[  525.770062][    T9] usb 2-1: can't read configurations, error -22
[  525.780891][    T9] usb usb2-port1: attempt power cycle
[  526.205713][    T9] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[  526.281482][    T9] usb 2-1: no configurations
[  526.321986][    T9] usb 2-1: can't read configurations, error -22
[  526.575752][    T9] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[  526.678596][    T9] usb 2-1: no configurations
[  526.729332][    T9] usb 2-1: can't read configurations, error -22
[  526.755371][    T9] usb usb2-port1: unable to enumerate USB device
[  527.245208][ T9166] usb 3-1: new high-speed USB device number 17 using dummy_hcd
[  527.427140][ T9166] usb 3-1: Using ep0 maxpacket: 32
[  527.434257][ T9166] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  527.444590][ T9166] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  527.457794][ T9166] usb 3-1: New USB device found, idVendor=1e7d, idProduct=2d51, bcdDevice= 0.00
[  527.467177][ T9166] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  527.479096][ T9166] usb 3-1: config 0 descriptor??
[  527.488332][ T9166] usbhid 3-1:0.0: couldn't find an input interrupt endpoint
[  529.052590][T10821] binder: BINDER_SET_CONTEXT_MGR already set
[  529.061960][T10821] binder: 10820:10821 ioctl 4018620d 200000000040 returned -16
[  529.135729][ T9141] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[  529.325732][ T9141] usb 1-1: no configurations
[  529.330410][ T9141] usb 1-1: can't read configurations, error -22
[  529.505212][ T9141] usb 1-1: new high-speed USB device number 17 using dummy_hcd
[  529.705925][ T9141] usb 1-1: no configurations
[  529.710684][ T9141] usb 1-1: can't read configurations, error -22
[  529.725390][ T9141] usb usb1-port1: attempt power cycle
[  530.207720][ T9141] usb 1-1: new high-speed USB device number 18 using dummy_hcd
[  530.500980][ T9166] usb 3-1: USB disconnect, device number 17
[  530.726670][ T9141] usb 1-1: no configurations
[  530.731348][ T9141] usb 1-1: can't read configurations, error -22
[  530.905268][ T9141] usb 1-1: new high-speed USB device number 19 using dummy_hcd
[  530.936361][ T9141] usb 1-1: no configurations
[  530.941040][ T9141] usb 1-1: can't read configurations, error -22
[  530.956998][ T9141] usb usb1-port1: unable to enumerate USB device
[  531.461242][T10863] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  531.465262][   T42] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[  531.484241][T10863] picdev_read: 3 callbacks suppressed
[  531.484260][T10863] kvm: pic: non byte read
[  531.497089][T10863] kvm: pic: level sensitive irq not supported
[  531.497246][T10863] kvm: pic: non byte read
[  531.509128][T10863] kvm: pic: level sensitive irq not supported
[  531.509246][T10863] kvm: pic: non byte read
[  531.524654][T10863] kvm: pic: level sensitive irq not supported
[  531.524798][T10863] kvm: pic: non byte read
[  531.541952][T10863] kvm: pic: level sensitive irq not supported
[  531.542042][T10863] kvm: pic: non byte read
[  531.553964][T10863] kvm: pic: level sensitive irq not supported
[  531.554053][T10863] kvm: pic: non byte read
[  531.567759][T10863] kvm: pic: level sensitive irq not supported
[  531.567847][T10863] kvm: pic: non byte read
[  531.675046][   T42] usb 2-1: Using ep0 maxpacket: 32
[  531.687750][   T42] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  531.705506][   T42] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  531.735281][   T42] usb 2-1: New USB device found, idVendor=1e7d, idProduct=2d51, bcdDevice= 0.00
[  531.744400][   T42] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  531.781576][   T42] usb 2-1: config 0 descriptor??
[  531.793933][   T42] usbhid 2-1:0.0: couldn't find an input interrupt endpoint
[  531.950813][T10879] 9pnet_virtio: no channels available for device syz
[  532.384355][T10897] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1573'.
[  532.421388][T10899] loop2: detected capacity change from 0 to 22
[  532.431959][T10899] MTD: Attempt to mount non-MTD device "/dev/loop2"
[  532.463816][T10899] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  533.575160][ T9166] usb 1-1: new high-speed USB device number 20 using dummy_hcd
[  533.778541][ T9166] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  533.791122][ T9166] usb 1-1: config 0 has no interfaces?
[  533.812195][ T9166] usb 1-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[  533.822367][ T9166] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  533.837793][ T9166] usb 1-1: Product: syz
[  533.842126][ T9166] usb 1-1: Manufacturer: syz
[  533.849326][ T9166] usb 1-1: SerialNumber: syz
[  533.857058][ T9166] usb 1-1: config 0 descriptor??
[  533.939696][T10927] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1584'.
[  534.073171][    T9] usb 1-1: USB disconnect, device number 20
[  534.213476][ T9166] usb 2-1: USB disconnect, device number 17
[  534.727273][   T51] Bluetooth: hci1: unexpected event for opcode 0x202f
[  534.766905][T10952] syzkaller0: entered promiscuous mode
[  534.772456][T10952] syzkaller0: entered allmulticast mode
[  535.485207][ T9166] usb 4-1: new high-speed USB device number 17 using dummy_hcd
[  535.755796][ T9166] usb 4-1: Using ep0 maxpacket: 16
[  535.830940][ T9166] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  535.986160][ T9166] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  536.024662][ T9166] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  536.069449][ T9166] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  536.136328][ T9166] usb 4-1: config 0 descriptor??
[  536.368740][T10984] fuse: Bad value for 'group_id'
[  536.444699][T10986] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1608'.
[  536.481887][T10988] syzkaller0: entered promiscuous mode
[  536.490685][T10988] syzkaller0: entered allmulticast mode
[  537.627781][T11000] block device autoloading is deprecated and will be removed.
[  538.539274][ T9141] usb 4-1: USB disconnect, device number 17
[  538.756687][T11013] fuse: Bad value for 'fd'
[  538.996328][T11015] syzkaller0: entered promiscuous mode
[  539.032884][T11015] syzkaller0: entered allmulticast mode
[  540.225066][ T9141] usb 1-1: new high-speed USB device number 21 using dummy_hcd
[  540.996582][ T9141] usb 1-1: Using ep0 maxpacket: 16
[  541.027274][ T9141] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  541.079477][ T9141] usb 1-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  541.116993][ T9141] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  541.186517][ T9141] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  541.378485][ T9141] usb 1-1: config 0 descriptor??
[  541.736979][T11044] fuse: Bad value for 'fd'
[  542.097650][T11057] fuse: Unknown parameter 'group_id00000000000000000000'
[  543.242818][ T9141] usb 1-1: USB disconnect, device number 21
[  543.384778][T11075] fuse: Unknown parameter '0x0000000000000007'
[  544.270073][T11081] overlayfs: failed to resolve './file1': -2
[  544.532617][T11095] kvm: emulating exchange as write
[  544.819851][T11105] fuse: Unknown parameter 'group_id00000000000000000000'
[  544.824855][T11107] fuse: Unknown parameter '0x0000000000000007'
[  545.977274][T11120] overlayfs: failed to resolve './file1': -2
[  546.166094][T11127] loop3: detected capacity change from 0 to 22
[  546.176170][T11127] MTD: Attempt to mount non-MTD device "/dev/loop3"
[  546.193614][T11127] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  547.267034][T11146] fuse: Unknown parameter '0x0000000000000007'
[  547.553577][T11156] fuse: Bad value for 'user_id'
[  548.973520][T11171] loop2: detected capacity change from 0 to 22
[  548.985572][T11171] MTD: Attempt to mount non-MTD device "/dev/loop2"
[  549.001621][T11171] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  549.854620][T11180] fuse: Unknown parameter '0x0000000000000007'
[  550.806368][T11190] fuse: Bad value for 'user_id'
[  551.095724][T11198] overlayfs: failed to resolve './file1': -2
[  552.158980][T11206] syzkaller0: entered promiscuous mode
[  552.164534][T11206] syzkaller0: entered allmulticast mode
[  552.219018][T11214] fuse: Unknown parameter '0x0000000000000007'
[  552.598591][T11225] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1686'.
[  552.791795][T11226] binder: 11222:11226 ioctl 4018620d 0 returned -22
[  553.491080][T11238] fuse: Unknown parameter '0x0000000000000007'
[  553.527352][T11239] overlayfs: failed to resolve './file1': -2
[  554.592464][T11245] syzkaller0: entered promiscuous mode
[  554.625193][T11245] syzkaller0: entered allmulticast mode
[  554.748372][T11252] binder: 11250:11252 ioctl 4018620d 0 returned -22
[  555.148901][T11264] fuse: Unknown parameter 'fd0x0000000000000007'
[  555.243817][T11266] loop3: detected capacity change from 0 to 22
[  555.254061][T11266] MTD: Attempt to mount non-MTD device "/dev/loop3"
[  555.285178][    T9] usb 1-1: new high-speed USB device number 22 using dummy_hcd
[  555.309700][T11266] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  555.616568][    T9] usb 1-1: Using ep0 maxpacket: 16
[  555.783551][    T9] usb 1-1: unable to read config index 0 descriptor/start: -61
[  555.904815][    T9] usb 1-1: can't read configurations, error -61
[  556.176806][    T9] usb 1-1: new high-speed USB device number 23 using dummy_hcd
[  556.232164][T11276] loop2: detected capacity change from 0 to 16
[  556.533560][T11276] erofs: (device loop2): mounted with root inode @ nid 36.
[  556.663523][   T51] erofs: (device loop2): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 0] out[9000]
[  556.664438][T11278] x_tables: duplicate underflow at hook 1
[  556.955373][   T27] audit: type=1800 audit(1763675783.643:126): pid=11276 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1706" name="file2" dev="loop2" ino=89 res=0 errno=0
[  557.055040][    T9] usb 1-1: Using ep0 maxpacket: 16
[  557.063310][    T9] usb 1-1: unable to read config index 0 descriptor/start: -61
[  557.072161][    T9] usb 1-1: can't read configurations, error -61
[  557.094352][    T9] usb usb1-port1: attempt power cycle
[  557.410606][T11290] binder: 11287:11290 ioctl 4018620d 0 returned -22
[  557.535094][    T9] usb 1-1: new high-speed USB device number 24 using dummy_hcd
[  557.555400][T11294] syzkaller0: entered promiscuous mode
[  557.571217][T11294] syzkaller0: entered allmulticast mode
[  557.582814][    T9] usb 1-1: Using ep0 maxpacket: 16
[  557.607620][T11297] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1712'.
[  557.613034][    T9] usb 1-1: unable to read config index 0 descriptor/start: -61
[  557.640068][    T9] usb 1-1: can't read configurations, error -61
[  557.653211][T11297] syzkaller1: tun_chr_ioctl cmd 1074025677
[  557.658000][T11300] fuse: Unknown parameter 'fd0x0000000000000007'
[  557.665295][T11297] syzkaller1: linktype set to 780
[  557.805245][    T9] usb 1-1: new high-speed USB device number 25 using dummy_hcd
[  557.886368][    T9] usb 1-1: Using ep0 maxpacket: 16
[  557.956621][    T9] usb 1-1: device descriptor read/all, error -71
[  557.985335][    T9] usb usb1-port1: unable to enumerate USB device
[  558.120005][T11311] fuse: Bad value for 'fd'
[  558.261958][T11315] binder: BINDER_SET_CONTEXT_MGR already set
[  558.297229][T11315] binder: 11314:11315 ioctl 4018620d 200000000040 returned -16
[  558.350000][T11320] fuse: Unknown parameter 'fd0x0000000000000007'
[  558.642339][T11334] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1727'.
[  558.662023][T11334] syzkaller1: tun_chr_ioctl cmd 1074025677
[  558.672201][T11334] syzkaller1: linktype set to 780
[  558.699115][T11337] fuse: Bad value for 'fd'
[  558.905061][    T9] usb 1-1: new high-speed USB device number 26 using dummy_hcd
[  559.045478][ T9166] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[  559.093538][T11350] binder: BINDER_SET_CONTEXT_MGR already set
[  559.110565][    T9] usb 1-1: Using ep0 maxpacket: 16
[  559.125054][T11350] binder: 11349:11350 ioctl 4018620d 200000000040 returned -16
[  559.135623][    T9] usb 1-1: config 0 has no interfaces?
[  559.141173][    T9] usb 1-1: New USB device found, idVendor=05ac, idProduct=024b, bcdDevice= 0.00
[  559.156039][    T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  559.171695][    T9] usb 1-1: config 0 descriptor??
[  559.245140][ T9166] usb 2-1: Using ep0 maxpacket: 16
[  559.252267][ T9166] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  559.262739][ T9166] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 9
[  559.275872][ T9166] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  559.285002][ T9166] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  559.295213][ T9166] usb 2-1: config 0 descriptor??
[  559.304135][ T9166] usbhid 2-1:0.0: couldn't find an input interrupt endpoint
[  559.383472][    T9] usb 1-1: USB disconnect, device number 26
[  560.235984][T11372] loop2: detected capacity change from 0 to 16
[  560.256159][T11372] erofs: (device loop2): mounted with root inode @ nid 36.
[  560.334255][   T51] erofs: (device loop2): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 0] out[9000]
[  560.350658][T11374] erofs: (device loop2): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[8192]
[  560.368845][T11374] x_tables: duplicate underflow at hook 1
[  560.465638][   T27] audit: type=1800 audit(1763675787.063:127): pid=11374 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1741" name="file2" dev="loop2" ino=89 res=0 errno=0
[  561.279067][T11380] binder: BINDER_SET_CONTEXT_MGR already set
[  561.291189][T11380] binder: 11378:11380 ioctl 4018620d 200000000040 returned -16
[  561.718306][T11395] fuse: Bad value for 'fd'
[  561.859532][ T9166] usb 4-1: new high-speed USB device number 18 using dummy_hcd
[  562.117004][ T9166] usb 4-1: Using ep0 maxpacket: 16
[  562.188179][ T9166] usb 4-1: config 0 has no interfaces?
[  562.246567][ T9166] usb 4-1: New USB device found, idVendor=05ac, idProduct=024b, bcdDevice= 0.00
[  562.329532][ T9166] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  562.430186][   T42] usb 2-1: USB disconnect, device number 18
[  562.513403][ T9166] usb 4-1: config 0 descriptor??
[  562.685443][T11402] loop1: detected capacity change from 0 to 16
[  562.725402][T11402] erofs: (device loop1): mounted with root inode @ nid 36.
[  562.820331][   T51] erofs: (device loop1): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 0] out[9000]
[  562.834064][T11404] erofs: (device loop1): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[8192]
[  562.859694][T11404] x_tables: duplicate underflow at hook 1
[  562.898481][   T27] audit: type=1800 audit(1763675789.553:128): pid=11404 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1751" name="file2" dev="loop1" ino=89 res=0 errno=0
[  562.967020][   T42] usb 4-1: USB disconnect, device number 18
[  563.480151][ T1290] ieee802154 phy0 wpan0: encryption failed: -22
[  563.486771][ T1290] ieee802154 phy1 wpan1: encryption failed: -22
[  563.702948][T11412] binder: 11409:11412 ioctl c0306201 0 returned -14
[  564.215178][T11430] fuse: Bad value for 'fd'
[  565.222031][T11436] binder: 11435:11436 ioctl c0306201 0 returned -14
[  566.454432][T11461] fuse: Bad value for 'fd'
[  566.495066][    T9] usb 1-1: new high-speed USB device number 27 using dummy_hcd
[  567.365311][T11466] fuse: Bad value for 'fd'
[  567.428592][    T9] usb 1-1: Using ep0 maxpacket: 16
[  567.475757][    T9] usb 1-1: config 0 has no interfaces?
[  567.481332][    T9] usb 1-1: New USB device found, idVendor=05ac, idProduct=024b, bcdDevice= 0.00
[  567.511662][    T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  567.529409][    T9] usb 1-1: config 0 descriptor??
[  567.547120][T11471] binder: 11469:11471 ioctl c0306201 0 returned -14
[  567.627633][T11474] overlayfs: failed to resolve './file0': -2
[  567.756022][    T9] usb 1-1: USB disconnect, device number 27
[  568.086413][T11490] fuse: Invalid rootmode
[  568.950683][T11492] fuse: Bad value for 'fd'
[  569.335205][T11504] overlayfs: failed to resolve './file1': -2
[  569.869113][    T9] usb 3-1: new high-speed USB device number 18 using dummy_hcd
[  569.962291][T11526] fuse: Invalid rootmode
[  570.065494][    T9] usb 3-1: Using ep0 maxpacket: 16
[  570.108386][    T9] usb 3-1: config 0 has no interfaces?
[  570.135387][    T9] usb 3-1: New USB device found, idVendor=05ac, idProduct=024b, bcdDevice= 0.00
[  570.186223][    T9] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  570.292926][    T9] usb 3-1: config 0 descriptor??
[  570.779529][    T9] usb 3-1: USB disconnect, device number 18
[  571.475217][T11533] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  572.032359][T11546] overlayfs: failed to resolve './file1': -2
[  572.118124][T11549] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  572.148417][T11551] 9pnet_virtio: no channels available for device syz
[  572.430927][T11559] fuse: Invalid rootmode
[  573.887579][T11579] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1810'.
[  573.928613][T11581] overlayfs: failed to resolve './file1': -2
[  573.934252][T11573] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  573.935467][T11579] syzkaller1: tun_chr_ioctl cmd 1074025677
[  573.952883][T11579] syzkaller1: linktype set to 780
[  574.523545][T11598] fuse: Bad value for 'rootmode'
[  576.556513][T11624] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1828'.
[  576.576245][T11624] syzkaller1: tun_chr_ioctl cmd 1074025677
[  576.593928][T11624] syzkaller1: linktype set to 780
[  576.878000][T11635] fuse: Bad value for 'rootmode'
[  577.841590][T11642] loop0: detected capacity change from 0 to 16
[  577.874645][T11642] erofs: (device loop0): mounted with root inode @ nid 36.
[  577.963790][   T51] erofs: (device loop0): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 0] out[9000]
[  577.977330][T11646] erofs: (device loop0): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[8192]
[  577.993883][T11646] x_tables: duplicate underflow at hook 1
[  578.073105][   T27] audit: type=1800 audit(1763675804.703:129): pid=11646 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1835" name="file2" dev="loop0" ino=89 res=0 errno=0
[  580.008737][T11674] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1844'.
[  580.096965][T11676] syzkaller1: tun_chr_ioctl cmd 1074025677
[  580.163540][T11676] syzkaller1: linktype set to 780
[  580.481744][T11683] loop0: detected capacity change from 0 to 16
[  580.501013][T11683] erofs: (device loop0): mounted with root inode @ nid 36.
[  580.629388][   T51] erofs: (device loop0): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 0] out[9000]
[  580.654145][T11686] x_tables: duplicate underflow at hook 1
[  580.743169][T11685] erofs: (device loop0): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[8192]
[  580.786335][   T27] audit: type=1800 audit(1763675807.463:130): pid=11685 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1848" name="file2" dev="loop0" ino=89 res=0 errno=0
[  583.860090][T11720] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1860'.
[  583.905847][T11720] syzkaller1: tun_chr_ioctl cmd 1074025677
[  583.938345][T11720] syzkaller1: linktype set to 780
[  584.107570][T11730] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  584.606453][T11748] overlayfs: missing 'lowerdir'
[  584.981517][T11762] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1875'.
[  585.009696][T11762] syzkaller1: tun_chr_ioctl cmd 1074025677
[  585.026115][T11762] syzkaller1: linktype set to 780
[  585.628244][T11779] overlayfs: missing 'lowerdir'
[  587.106153][T11804] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1888'.
[  587.134845][T11804] syzkaller1: tun_chr_ioctl cmd 1074025677
[  587.142552][T11804] syzkaller1: linktype set to 780
[  587.319180][T11811] iommufd_mock iommufd_mock1: Adding to iommu group 0
[  587.339522][T11811] iommufd_mock iommufd_mock2: Adding to iommu group 1
[  587.440722][T11816] overlayfs: missing 'lowerdir'
[  588.115436][    T9] usb 1-1: new high-speed USB device number 28 using dummy_hcd
[  588.365149][    T9] usb 1-1: Using ep0 maxpacket: 16
[  588.443312][    T9] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 9
[  588.503960][    T9] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  588.526952][    T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  588.600500][    T9] usb 1-1: config 0 descriptor??
[  588.657846][    T9] usbhid 1-1:0.0: couldn't find an input interrupt endpoint
[  588.823941][T11844] overlayfs: missing 'lowerdir'
[  589.180847][T11858] loop1: detected capacity change from 0 to 16
[  589.207370][T11858] erofs: (device loop1): mounted with root inode @ nid 36.
[  589.298245][   T51] erofs: (device loop1): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 0] out[9000]
[  589.312869][T11862] erofs: (device loop1): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[8192]
[  589.331876][T11862] x_tables: duplicate underflow at hook 1
[  589.349091][   T27] audit: type=1800 audit(1763675816.033:131): pid=11862 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1907" name="file2" dev="loop1" ino=89 res=0 errno=0
[  590.093130][T11859] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1906'.
[  590.143112][T11859] syzkaller1: tun_chr_ioctl cmd 1074025677
[  590.157867][T11859] syzkaller1: linktype set to 780
[  590.484285][T11876] general protection fault, probably for non-canonical address 0xdffffc0000000005: 0000 [#1] PREEMPT SMP KASAN
[  590.496078][T11876] KASAN: null-ptr-deref in range [0x0000000000000028-0x000000000000002f]
[  590.504525][T11876] CPU: 1 PID: 11876 Comm: syz.3.1912 Not tainted syzkaller #0
[  590.512023][T11876] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  590.522106][T11876] RIP: 0010:pcl818_ai_cancel+0x69/0x3f0
[  590.527703][T11876] Code: 8b 1b 48 89 d8 48 c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 59 96 df f9 48 8b 03 48 89 04 24 49 83 c4 28 4c 89 e0 48 c1 e8 03 <42> 80 3c 28 00 74 08 4c 89 e7 e8 38 96 df f9 4d 8b 24 24 48 83 c3
[  590.547355][T11876] RSP: 0018:ffffc9000377fa80 EFLAGS: 00010206
[  590.553471][T11876] RAX: 0000000000000005 RBX: ffff88801b698e80 RCX: 0000000000080000
[  590.561485][T11876] RDX: ffffc9000d7bb000 RSI: 00000000000007cb RDI: 00000000000007cc
[  590.569489][T11876] RBP: 0000000000000001 R08: ffff88814be9592f R09: 1ffff110297d2b25
[  590.577603][T11876] R10: dffffc0000000000 R11: ffffed10297d2b26 R12: 0000000000000028
[  590.585617][T11876] R13: dffffc0000000000 R14: ffff88814be95800 R15: dffffc0000000000
[  590.593628][T11876] FS:  00007f11c35616c0(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[  590.602605][T11876] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  590.609213][T11876] CR2: 0000001b2ed23ffc CR3: 0000000024713000 CR4: 00000000003526e0
[  590.617224][T11876] Call Trace:
[  590.620532][T11876]  <TASK>
[  590.623490][T11876]  pcl818_detach+0x66/0xd0
[  590.627948][T11876]  comedi_device_detach_locked+0x172/0x710
[  590.633791][T11876]  comedi_unlocked_ioctl+0xccc/0xfe0
[  590.639128][T11876]  ? comedi_poll+0x8c0/0x8c0
[  590.643797][T11876]  ? __fget_files+0x28/0x4d0
[  590.648434][T11876]  ? bpf_lsm_file_ioctl+0x9/0x10
[  590.653411][T11876]  ? security_file_ioctl+0x80/0xa0
[  590.658580][T11876]  ? comedi_poll+0x8c0/0x8c0
[  590.663216][T11876]  __se_sys_ioctl+0xfd/0x170
[  590.667851][T11876]  do_syscall_64+0x55/0xb0
[  590.672320][T11876]  ? clear_bhb_loop+0x40/0x90
[  590.677033][T11876]  ? clear_bhb_loop+0x40/0x90
[  590.681744][T11876]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  590.687667][T11876] RIP: 0033:0x7f11c278f749
[  590.692109][T11876] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  590.711766][T11876] RSP: 002b:00007f11c3561038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  590.720257][T11876] RAX: ffffffffffffffda RBX: 00007f11c29e5fa0 RCX: 00007f11c278f749
[  590.728370][T11876] RDX: 0000000000000000 RSI: 0000000040946400 RDI: 0000000000000003
[  590.736379][T11876] RBP: 00007f11c2813f91 R08: 0000000000000000 R09: 0000000000000000
[  590.744381][T11876] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  590.752387][T11876] R13: 00007f11c29e6038 R14: 00007f11c29e5fa0 R15: 00007ffd1bc0efd8
[  590.760481][T11876]  </TASK>
[  590.763528][T11876] Modules linked in:
[  590.792996][   T42] usb 1-1: USB disconnect, device number 28
[  590.809241][T11876] ---[ end trace 0000000000000000 ]---
[  590.814867][T11876] RIP: 0010:pcl818_ai_cancel+0x69/0x3f0
[  590.821975][T11876] Code: 8b 1b 48 89 d8 48 c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 59 96 df f9 48 8b 03 48 89 04 24 49 83 c4 28 4c 89 e0 48 c1 e8 03 <42> 80 3c 28 00 74 08 4c 89 e7 e8 38 96 df f9 4d 8b 24 24 48 83 c3
[  590.842814][T11876] RSP: 0018:ffffc9000377fa80 EFLAGS: 00010206
[  590.849318][T11876] RAX: 0000000000000005 RBX: ffff88801b698e80 RCX: 0000000000080000
[  590.860215][T11876] RDX: ffffc9000d7bb000 RSI: 00000000000007cb RDI: 00000000000007cc
[  590.869747][T11876] RBP: 0000000000000001 R08: ffff88814be9592f R09: 1ffff110297d2b25
[  590.878003][T11876] R10: dffffc0000000000 R11: ffffed10297d2b26 R12: 0000000000000028
[  590.889155][T11876] R13: dffffc0000000000 R14: ffff88814be95800 R15: dffffc0000000000
[  590.897472][T11876] FS:  00007f11c35616c0(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[  590.907883][T11876] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  590.914560][T11876] CR2: 0000200000001240 CR3: 0000000024713000 CR4: 00000000003526e0
[  590.922821][T11876] Kernel panic - not syncing: Fatal exception
[  590.929190][T11876] Kernel Offset: disabled
[  590.933520][T11876] Rebooting in 86400 seconds..