last executing test programs:

3m6.985078112s ago: executing program 2 (id=168):
syz_mount_image$fuse(0x0, &(0x7f0000000040)='./bus\x00', 0x3010009, 0x0, 0x1, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x80078b, &(0x7f0000000300)={[{@nodioread_nolock}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@nouid32}, {@resgid}, {@acl}, {@init_itable_val={'init_itable', 0x3d, 0x8d55}}]}, 0x0, 0x486, &(0x7f0000001080)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0)

3m5.56757631s ago: executing program 2 (id=172):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0}, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000380)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
openat$dma_heap(0xffffffffffffff9c, 0x0, 0x230280, 0x0)
r3 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r3, 0x84, 0x7b, &(0x7f00000000c0)={0x0, 0x1}, 0x8)
sendto$inet6(r3, &(0x7f00000005c0)="aa", 0xfdc1, 0x4008881, &(0x7f0000000100)={0xa, 0x4e21, 0x0, @private2, 0x3}, 0x1c)
shutdown(r3, 0x1)
r4 = syz_open_procfs(0x0, 0x0)
fchdir(r4)
syz_clone(0x2180, 0x0, 0x0, 0x0, 0x0, 0x0)

3m3.87115114s ago: executing program 2 (id=176):
mkdir(&(0x7f0000000140)='./control\x00', 0x8)
r0 = inotify_init1(0x800)
inotify_add_watch(r0, &(0x7f0000000180)='./control\x00', 0xa4000960)
rmdir(&(0x7f0000000280)='./control\x00')

3m2.094993651s ago: executing program 2 (id=179):
bind$bt_sco(0xffffffffffffffff, 0x0, 0x0)
listen(0xffffffffffffffff, 0x86a)
syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x210000, &(0x7f0000002f40)={[{@nodelalloc}, {@dioread_lock}, {@barrier_val={'barrier', 0x3d, 0x4}}, {@nolazytime}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@lazytime}, {@errors_remount}, {@stripe={'stripe', 0x3d, 0x5}}, {@bh}, {@init_itable}]}, 0xfc, 0x56f, &(0x7f0000003780)="$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")
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
capset(&(0x7f0000000500)={0x20080522}, &(0x7f0000000200)={0x200002, 0x200003, 0x801, 0x6, 0x7})
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x4000044)
mount$overlay(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000b80), 0x10000, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
unlinkat(0xffffffffffffff9c, &(0x7f0000000300)='./file0/file2\x00', 0x0)
sendmsg$NLBL_UNLABEL_C_STATICADD(0xffffffffffffffff, 0x0, 0x0)
chmod(&(0x7f0000000040)='./file0/file2\x00', 0x0)

2m59.693092625s ago: executing program 2 (id=185):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x82200, 0x0)
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r0, &(0x7f0000000440), 0x10)
connect$vsock_stream(r0, &(0x7f0000000000)={0x28, 0x0, 0x2711, @local}, 0x10)
listen(r0, 0xfffffffe)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_inet6_tcp_SIOCOUTQNSD(r2, 0x894b, &(0x7f0000000080))
connect$vsock_stream(r1, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
accept4$unix(r0, 0x0, 0x0, 0x0)
syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
openat$vimc2(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x2, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f0000000240)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)

2m56.524851914s ago: executing program 2 (id=191):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d0000008500000008"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendto$inet(0xffffffffffffffff, &(0x7f00000000c0)="f461", 0x2, 0x4000010, &(0x7f0000000100)={0x2, 0x4e23, @remote}, 0x10)
r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/pid\x00')
mount_setattr(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000300)={0x1000a4, 0x7a, 0x0, {r1}}, 0x20)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
syz_mount_image$hfs(&(0x7f00000002c0), &(0x7f0000000000)='./file1\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="66696c655f756d61736b3d30303030303030303030303030303030303030303030342c747970653d7763e6ef2c756d61736b3d30303030303030303030303030303030303030303030342c6469725f756d61736b3d30303030303030303030303030303030303030303030352c696f636861727365743d69736f383835392d382c004b35b28f8cad0b105adbf86df7514b180ea1cef9ef09ba2a82127ea3050d7fd500ad048b959efdb75029d8f93d07be1c27524bb0fe77621219a4745cac5531636761ca83f2412d1f607e9a48fcfd9002fb41024932205e2176fc5b"], 0x4, 0x2fe, &(0x7f0000001100)="$eJzs3U1vE0ccx/HfrO3EaaJ0m6Sq1EurtJHaS9S0PVS9uKp87b2nqm3sSBFWEEmQgAsm4oh4Adx5C7wILiDeAHDhxAvIbdHMzq7X9nidCDubhO9HsjWenYf/sE8zK5EVgE/Wn+3XT395Zz9Gqqkm6XcpktSU6pK+1FfN2wfH+8e9bqesoZqrYT9GaU0zVmb3oBuqauu5Gl5sf9W1UszDfCRJ8sebqoNA5dzZHxBJi/48dNubFxzXrIwOri99U1EolSn+G5hTneqOVisMBwBwCfj7f+RvEysuyyiKpC1/27/S9/9Rp1UHMFu/9sayktIKhfu/m90lxu7fz92mwXrPLeHs9ihbJZ4lmMbI7wWlR9bQHMyEV5Vvk5SPJVra269re/eBOpFO1PIKFTbcdyc9dDNTot0MrE1LTG6tob8+S0djZ5RLo5uzkPb2e91FmwjEv36+Hj+eeW5emn9MrCfq5PO/emLsbnJ7Kh7ZU1HDxv/T5BaXXS1bSn7Z32q1oqEiX7hOvvY9eFNG2QyvSIptZg8I+nkEgThPsoTre03DjxXS0e2EOjCDxtdDteL813hd19fGUK2aPxK2d2/2Sh+lzEc2RPPY/G029V7P1C7M/yMb35YKZ2bZpd64kv7ISMezEC5ZdyXjsTtHP099m0fgLZ57bJDO+bTskf7Xb1o9unvvRq3X6x7axH+BxK2VQ+NzGg+lYJn5J2oqKaP+IMfdPO4nyVlbTuYZ/I8zbdBeP/Ice/qECtuzLM+JLno3Xb9EXaFN7RcqOyDnmsimLjNp0E60JmyayzUKl8yRyXa6zxibxOKas/Muk67/3Ezez+rcdcZ+xSXz9PJFpoZa3MlXcMNTwbXQ3GXK2mB58gqu0OPPE9aMbs313Q/S94VMo9IeYxfntWHaeqV/ef4PAAAAAAAAAAAAAAAAAABw1VzE/1ioeowAAAAAAAAAAAAAAAAAAAAAAFx1Z3//79LgTU2hvxHv3v8bT33/79ALgP2Lonj/L1CNDwEAAP//FJB9Ww==")
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000380)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000100)={@private0={0xfc, 0x0, '\x00', 0x1}, 0x9, 0x1, 0x2, 0x2, 0x5, 0x6}, 0x20)
openat$sw_sync_info(0xffffffffffffff9c, &(0x7f0000000080), 0x101400, 0x0)
sendmsg$RDMA_NLDEV_CMD_STAT_GET(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000580)=ANY=[@ANYBLOB="3000000011140125080003000000000008004b00"], 0x30}, 0x1, 0x0, 0x0, 0x20000800}, 0xc4)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x40, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_HOOK={0x14, 0x4, 0x0, 0x1, [@NFTA_HOOK_PRIORITY={0x8}, @NFTA_HOOK_HOOKNUM={0x8}]}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x54, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_EXPRESSIONS={0x2c, 0x4, 0x0, 0x1, [{0x28, 0x1, 0x0, 0x1, @fib={{0x8}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_FIB_FLAGS={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_FIB_DREG={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_FIB_RESULT={0x8, 0x2, 0x1, 0x0, 0x3}]}}}]}]}], {0x14}}, 0xdc}}, 0x0)

2m54.123522828s ago: executing program 32 (id=191):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d0000008500000008"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendto$inet(0xffffffffffffffff, &(0x7f00000000c0)="f461", 0x2, 0x4000010, &(0x7f0000000100)={0x2, 0x4e23, @remote}, 0x10)
r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/pid\x00')
mount_setattr(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000300)={0x1000a4, 0x7a, 0x0, {r1}}, 0x20)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
syz_mount_image$hfs(&(0x7f00000002c0), &(0x7f0000000000)='./file1\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="66696c655f756d61736b3d30303030303030303030303030303030303030303030342c747970653d7763e6ef2c756d61736b3d30303030303030303030303030303030303030303030342c6469725f756d61736b3d30303030303030303030303030303030303030303030352c696f636861727365743d69736f383835392d382c004b35b28f8cad0b105adbf86df7514b180ea1cef9ef09ba2a82127ea3050d7fd500ad048b959efdb75029d8f93d07be1c27524bb0fe77621219a4745cac5531636761ca83f2412d1f607e9a48fcfd9002fb41024932205e2176fc5b"], 0x4, 0x2fe, &(0x7f0000001100)="$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")
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000380)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000100)={@private0={0xfc, 0x0, '\x00', 0x1}, 0x9, 0x1, 0x2, 0x2, 0x5, 0x6}, 0x20)
openat$sw_sync_info(0xffffffffffffff9c, &(0x7f0000000080), 0x101400, 0x0)
sendmsg$RDMA_NLDEV_CMD_STAT_GET(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000580)=ANY=[@ANYBLOB="3000000011140125080003000000000008004b00"], 0x30}, 0x1, 0x0, 0x0, 0x20000800}, 0xc4)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x40, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_HOOK={0x14, 0x4, 0x0, 0x1, [@NFTA_HOOK_PRIORITY={0x8}, @NFTA_HOOK_HOOKNUM={0x8}]}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x54, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_EXPRESSIONS={0x2c, 0x4, 0x0, 0x1, [{0x28, 0x1, 0x0, 0x1, @fib={{0x8}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_FIB_FLAGS={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_FIB_DREG={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_FIB_RESULT={0x8, 0x2, 0x1, 0x0, 0x3}]}}}]}]}], {0x14}}, 0xdc}}, 0x0)

10.860290886s ago: executing program 0 (id=483):
syz_open_dev$vim2m(&(0x7f0000000000), 0x4, 0x2)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x101100, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000180)={0x0, 0xd000})
syz_emit_ethernet(0x3e, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa0f"], 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

10.396691999s ago: executing program 0 (id=487):
syz_mount_image$ocfs2(&(0x7f00000026c0), &(0x7f0000004780)='./file0\x00', 0x200000, &(0x7f0000000340)=ANY=[@ANYBLOB="6a6f75726e616c5f6173796e635f636f6d6d69742c636f686572656e63793d66756c6c2c6572726f72733d636f6e74696e75652c6865617274626561743d6e6f6e652c6572726f72733d636f6e74696e75652c6e6f696e74722c67727071756f74612c001796fa694353e3807803df5ea6fd4d6e6a2613d336eb62b863dcd89e37b45f8bd04199a14c48b3e553e035ab300ba3c60c27682a8ab5656969d829535c0862f6e3a35f15fe4d50c0d5c74631344625d6224c436474bb101ff47a14c51e342ca291c09c35d9d31b06b6b86cb9dccae387b5f1e7c5e1d445d52845a3fa4c77234ea9d37c8a277c85e69a85cc6ffeb225bebbca91b569b80ee303c9a21c58db5d96fb87f1713e0e9b896e37becae2e7a978259a0847e9fb08dcb8b9f84f616463da2507db1b3489769e99"], 0x1, 0x4703, &(0x7f0000004800)="$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")
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1)
rename(&(0x7f0000000600)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000f40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
setxattr$system_posix_acl(&(0x7f0000000700)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000280)='system.posix_acl_access\x00', 0x0, 0x0, 0x0)

9.408073794s ago: executing program 3 (id=491):
syz_mount_image$squashfs(&(0x7f0000000180), &(0x7f0000000000)='./file0\x00', 0x100c408, &(0x7f0000000700)=ANY=[@ANYRES16=0x0, @ANYRESDEC, @ANYRESOCT, @ANYRESDEC, @ANYRES32, @ANYRESHEX, @ANYBLOB="01ce6671a3b30f673148672100038bbb4413ea284b892438cdddda3da4c78d940655fbd68a286059c5766f98f85fb413503eaf8c90a24dda1e09f68cd741168d69dae50652ca7b67c5b0a27ab80ff9afa5000443de8c748e1d5beabee7c1346b215f641ae190d56ea4ab81bacd909929deb5757040e8d5b2752ea779c30f600bd516a68d881e7fc7289826d49e35134a94e27f115c8195a0f152cbd840ffdb008356c72319cceb43ccb1280556efdf0fdf582fd3cfc830dff1787f000000b7400f5aef57b6dcbfde7af6012383adb085c40e4c295c2a3be750a42400e58523d24b8eecd75caabcee22347bdb78b72b400d080a044ebde5d39ad91ff0ef75aa244381cf00cd6fe9b9a92a9968104bf02481022af426853287e521a4e3cfe480f984efcea1359ff932ebd3bc75aefea41074799f3502a7472a6686b4011a41d7f0cfb25b3dc3077b4e8ded17cfff2b1d59bc12f637c36690f5ca91ee999ec138f6ce66522e652939a37435edb78f9ae18489f9d2b73c81609399f0d123f1721171bd72c012623f04d8965d3e5785d057c15798ab36af821c9b308731422ba3858b9895ace14068ea58f8cb6060c205caf209a73628eff5b9270a4a55c2d7fc59a4fe6e023bd424d8b010e2232d1b2e6ca603b466b2c82afff4a8cc469e8664d54769fc97df122b3ff8c34354dad46f900eaf6e72e538c0595caa056984ab8974af7cdae5bde6a12f412fe2a876aa191e78e91fbf780e2f4a20f57d41376b29f990ce63aa6edf622d2203fee37df269abf869d13b175852b775fff70491d1e5d1311b7eef954a101ddb98c5ba2b312528485ece7aff23cc6fee599daea0fca71a5970cf0fc82b49640cc3fabbc401dead4f83aa0c4072a9e98ab5afb790be17961fc073e2f8f800000000000000005089d6db5ad893ee9b22b9250d01980952d0a3e0076c877556fa43f90cb574fd6ad67398ac4d9f8ff4e3ef09f99220928602523adc2289b51328ac152bd7edc66d4e962cbc2d2b0c5f8e48384eff563a10787b0199642385e811504e7168804114842d51f42dd6937515fa64b2fd14ef427072c6556b99171bd00165a9aada7173f001679ac791ee67188c670f583f7b1f8df68b97f4dcb5652f2b13aa941b7ff56c48fb7162e91ef53c70938a92e4bf55d65319f74766a309722f767fc8f3db2a194a2f098336601be2edcbcc9b562f2fc64e2deff9a16e84f1e8bc5fb82c91f4d10e34f5a093fc4fcbdb89342274857c8e6aa8864b3214f51b9e515bf645235007cede80ff5931bff340780a3b43bc0466340c195a515f779d0333dd467bb665508d9c89e18e86d1975e273f937e3bd1", @ANYRES8, @ANYRES32=0x0], 0x1, 0x1e9, &(0x7f0000000500)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x10012, r0, 0x654b3000)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)

9.068881946s ago: executing program 1 (id=492):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$BTRFS_IOC_BALANCE_V2(0xffffffffffffffff, 0xc4009420, &(0x7f0000000540)={0x1, 0x3, {0x61efbc0f, @struct={0x5, 0x4}, 0x0, 0x0, 0x8000000000000001, 0xfffffffffffffff8, 0x6, 0xfffffffffffffff2, 0xa0, @usage=0xfffffffffffffffb, 0xc94, 0x8, [0x4, 0xfffffffffffffff8, 0x7fffffffffffffff, 0x4f, 0x3, 0x80]}, {0x8000000000000001, @struct={0x9, 0x80000001}, 0x0, 0xf, 0x2, 0x4, 0x9, 0xffffffffffffff97, 0x10, @struct={0x1, 0x3}, 0x8000, 0x0, [0x1, 0x7, 0x3, 0x40, 0x9, 0x8000000000000001]}, {0x0, @usage=0x7, 0x0, 0x6c2, 0xb, 0x7, 0x46c89e81, 0x8, 0x4, @struct={0x3, 0xffffffff}, 0xffff8000, 0x9, [0x7, 0x101, 0x2, 0x0, 0x7, 0x3]}, {0x315f, 0x1}})
fsopen(&(0x7f0000000040)='fuseblk\x00', 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0xffffffffffffffa9, 0x0, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000500))
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x6)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8002, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r3 = dup(r1)
ioctl$TIOCL_SETSEL(r3, 0x541c, &(0x7f0000000100)={0x2, {0x2, 0x103, 0x100, 0x551}})
ioctl$TIOCL_SETSEL(r3, 0x541c, &(0x7f0000001900)={0x2, {0x2, 0x107, 0x100, 0x100, 0x1, 0x4000}})
r4 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000040)='/dev/comedi4\x00', 0x181001, 0x0)
ioctl$COMEDI_INSN(r4, 0x8028640c, &(0x7f0000000080)={0xc000003, 0x40000000000001a3, &(0x7f0000000580), 0x0, 0x2})
r5 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r5, 0x5609, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r6=>0x0})
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000840), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_STATION(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="010000000000fddbdf251200000008000300", @ANYRES32=r6, @ANYBLOB="0a00060008021100000100000c00430002"], 0x34}}, 0x20048054)

8.305109871s ago: executing program 3 (id=493):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
openat$sequencer(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000000), 0x2, 0x101102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r3 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x4a183, 0x0)
ioctl$TIOCSETD(r3, 0x5423, 0x0)
ioctl$TCSETS(r3, 0x40204706, &(0x7f00000000c0)={0x1, 0xc8a9, 0x5, 0x8000001, 0x15, "3eccd8f9f24305cfe373487400"})
syz_mount_image$vfat(&(0x7f0000000280), &(0x7f00000002c0)='./file0\x00', 0x10000, 0xffffffffffffffff, 0x0, 0x0, 0x0)
mount(0x0, 0x0, &(0x7f0000000040)='devtmpfs\x00', 0x0, 0x0)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x0, 0x0, 0xffffffffffffffff, 0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000002c0)={0x0}}, 0x0)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0x14, &(0x7f0000000480)=0x102, 0x4)
sendto$packet(0xffffffffffffffff, 0x0, 0x0, 0x200004c0, &(0x7f0000000540)={0x11, 0x0, 0x0, 0x1, 0x9, 0x6, @multicast}, 0x14)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f0000000200)={0x1, [<r4=>0x0]}, &(0x7f0000000080)=0x8)
setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x22, &(0x7f00000000c0)={0xffff, 0x200, 0x5, 0x46, r4}, 0x10)

7.962789663s ago: executing program 1 (id=494):
r0 = syz_open_dev$vim2m(0x0, 0x0, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, 0x0)
ioctl$vim2m_VIDIOC_STREAMOFF(r0, 0x40045612, &(0x7f0000000040)=0x1)
ioctl$vim2m_VIDIOC_QBUF(r0, 0xc058560f, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000180)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = syz_open_dev$midi(&(0x7f0000000000), 0x2, 0x0)
ioctl$SNDRV_RAWMIDI_IOCTL_INFO(r3, 0x40045731, 0xfffffffffffffffe)

7.596147115s ago: executing program 3 (id=495):
socket$netlink(0x10, 0x3, 0x0)
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x7}, 0x1c)
listen(r0, 0xfffffffc)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000000000d00000000080000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000280)='netlink_extack\x00', r2}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000480)='./file0\x00', 0x18000, &(0x7f0000000100)=ANY=[], 0x1, 0x2f4, &(0x7f0000000500)="$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")
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
sendmsg(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000001900)="5500000018007f5f00fe01b2a4a2809302060000ff41fd01040400000a00120002002800000019002d4400009b84136ef75afb83de066a5b00e1baac341b61130000f2ff00000100"/85, 0x55}], 0x1, 0x0, 0x0, 0x7a000000}, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r4, &(0x7f0000000400)={0x0, 0x1802, &(0x7f00000003c0)={&(0x7f00000004c0)={0x30, r5, 0x1, 0x70bd2c, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x1c}}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x3}]}]}, 0x30}, 0x1, 0xff07}, 0x2000000)

6.357751293s ago: executing program 3 (id=497):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
syz_open_procfs$namespace(0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x3, 0x0, &(0x7f0000000100)='GPL\x00', 0xa, 0xb9, &(0x7f0000000640)=""/185, 0x40f00, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000600)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file1\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mknod$loop(&(0x7f0000000180)='./file0\x00', 0x6000, 0x0)
r3 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
r4 = dup2(r3, r3)
ioctl$BLKTRACESETUP(r4, 0xc0481273, &(0x7f0000000240)={'\x00', 0x40, 0xa, 0x1, 0x40000000, 0x10})
ioctl$BLKTRACETEARDOWN(r4, 0x1276, 0x0)
r5 = openat$proc_mixer(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card0/oss_mixer\x00', 0x2002, 0x0)
write$proc_mixer(r5, &(0x7f0000000180)=ANY=[], 0xb8)
openat$proc_mixer(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/asound/card0/oss_mixer\x00', 0x0, 0x0)
r6 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r6, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xe277b000)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_getscheduler(r6)

6.156884484s ago: executing program 0 (id=498):
prlimit64(0x0, 0xe, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext3\x00', &(0x7f0000000040)='./file0\x00', 0x1018e58, &(0x7f00000005c0)={[{@noblock_validity}, {@min_batch_time={'min_batch_time', 0x3d, 0x20005}}, {@data_err_ignore}, {@i_version}, {@nodiscard}, {@inlinecrypt}, {@i_version}]}, 0x6, 0x5fc, &(0x7f0000001000)="$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")
mount$bind(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x21, 0x0)
syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000f00)='.\x00', 0x200026, &(0x7f00000008c0)=ANY=[], 0xb, 0x0, &(0x7f0000000000))
socket(0xa, 0x5, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
renameat2(0xffffffffffffff9c, 0x0, 0xffffffffffffff9c, 0x0, 0x8c)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x6)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet6_int(r1, 0x29, 0x38, 0x0, &(0x7f0000007580))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000840)=ANY=[@ANYBLOB="2c0000004e00010000000000fbdbdf250a00806e180001"], 0x2c}}, 0x4008000)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
r6 = fsopen(&(0x7f0000000100)='cifs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r6, 0x1, &(0x7f0000000000)='\x02\x00\x00\x00\x00', &(0x7f0000000140)='\x00', 0x0)
bind$inet(r5, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
connect$inet(r5, 0x0, 0x0)
sendmmsg$inet(r5, 0x0, 0x0, 0x20000080)

6.156508764s ago: executing program 4 (id=499):
rseq(&(0x7f0000000400), 0x20, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0x8852, &(0x7f0000000000)={[{@dioread_nolock}, {@init_itable_val={'init_itable', 0x3d, 0x4004}}, {@barrier_val={'barrier', 0x3d, 0x4}}]}, 0x43, 0x4e8, &(0x7f0000001080)="$eJzs3E9sVMUfAPDv27bQ8ufH/vjxQ0HUIhpRYgsFhYOJwWjiQRMjJuqxaQtBFmpoSYSgWRKDR0Pi3XjTqwev6oUYTyZe8WhiSIjhApgY17zd93a3292Wlm0X7OeTvO7M+zczO2/ezpvpbgBr1nD6J6mFr0XElogotO4wXHu5ffPixJ2bFyeiXKkc+yOpHnYrjWey08TGLLK3EFH4JGlsaDJz/sKp8VJp6mwWH509/cHozPkLz50czNYcOXLo4IHDL4w9v/RCtUkvLdetnR9P79rx2ntX3pjoz9fnqTWXo1uGY7hdVqqe6nZiPba5KZz09zAjLEl6/afVNVBt/1uiLxaqvPIq5gxYaZVKpbK+8+ZypdWleWuAB1YSvc4B0Bv5B336/Jsv7ToC61am+9FzN47WHoDSct/OlojHqyvzcZCBlufbbhqOiHfLf36RLrFC4xAAAM2+P5r3BFv6f8XazMhf566+lL7+J5tDKUbEfyNia0T8LyK2RcT/I2J7RDwUEQ+3nL8vIioLpN862lxPvz4JVbjepaK2lfb/Xszmthr9vzkZKPZlsc0ReYd5an9EXMp2OH6yNHVggTR+eOWXzzpta+7/pUuaft4XzPJxvb9lgG5yfHZ8WYVt48aliJ39reVP+iOSet0kEbEjInYu4bzFpvDJZ7/eVY8MzN1v8fJXVdrOo3VhnqnyZcTTtfovx5z6b6SYzJmfPD1+YurE1Jmx+vzk6GCUpvaPplfB/rZp/PTz5Tc7pb9o+b/9rfWQVw9/dyxrWfcurf8NTdd/5PO3jfIXk4ikPl87s/Q0Lv/6acdnmuVe/+uSt6vh/Ln0w/HZ2bMHItYlr89fP9Y4No+nr1GulX/vnvbtf2t2TPpOPBIR6UX8aEQ8FrUnxDTvuyPiiYjYU9u17RX548tPvr/88q+stPyTLfe/Ws3Pqf/GfH2nQJLNDdbWDDVv6ju1+9qdDjePu6v/Q9XQ3mzN/PtfmsNkzi2iU07zT7t0zd9deQcBAADg/leIiE1NY0mbolAYGamNAW2LDYXS9MzsvuPT585MptsiijFQyEe6auPBA0k+/llsio+1xA9m48af9w1V4yMT06XJnpYc2Fht80lhJOKdvqb2n/q9O0PMwP3M97Vg7Vqo/aed+O1XVjEzwKq6+8//qx+taEaAVdfU/jt9w7+8jP/7Ah4Anv+BhsV/6Mc9Ax58FW0Z1rQltf99fgQQ/k364616uNDTnACrTf8f1qRFv9d/T4HK+vabBmP+zjG48An7YnnZGGqTVk8Cac+qJ6kPLeeo/NcUSqVnvmq7TxSWdsL10Z06PX6P70b57MyJ7V2/+CvZ/8p3uwa/WZV22i7Qk9sRAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABA1/0TAAD//7us4EY=")
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000240)=@reiserfs_2={0x4b, 0x2, {0xb}}, 0x36f0516f)

5.607349447s ago: executing program 4 (id=500):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
mlock(&(0x7f0000ffe000/0x1000)=nil, 0xffffffffdf001fff)
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
openat$apparmor_thread_exec(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x0)
r6 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0)
getsockname$packet(r6, &(0x7f00000002c0)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700000086d7c0d6c878f064eb", @ANYRES32=r7, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000900)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}]}, 0x30}, 0x1, 0xfffc}, 0x4000800)
sendmsg$nl_route_sched(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000003080)=@delchain={0x34, 0x64, 0xf31, 0xfffffffb, 0x0, {0x0, 0x0, 0x0, r7, {0x0, 0xfff1}, {0xfff3, 0xffff}, {0x6, 0x1b}}, [@filter_kind_options=@f_flower={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x10}, 0x4000000)
sendmsg$nl_route_sched(r3, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0)
write$apparmor_exec(0xffffffffffffffff, 0x0, 0xfffffe3a)
syz_mount_image$squashfs(&(0x7f0000000240), &(0x7f0000000380)='./file0\x00', 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="746872656164733d7065726370752c00eafa5a588fce5f11a7f4ec7c8a74959f80b6535c18397ddd8805cfc782562f7039c4462db2f8afdb6c2c96cab45ebb7d98e69658f5144d52e5c65a0c287513649da089a22815c5953c476f29a663bfa13f59d2e473f98247c8ef7ddd5b9bf6e8340a46d5dfe83d83ff97b6af3609"], 0x0, 0x235, &(0x7f0000000000)="$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")
r8 = socket$inet_udp(0x2, 0x2, 0x0)
r9 = openat$null(0xffffffffffffff9c, &(0x7f00000003c0), 0x480802, 0x0)
ioctl$TUNSETSNDBUF(r9, 0x400454d4, &(0x7f0000000400)=0x401)
setsockopt$IPT_SO_SET_REPLACE(r8, 0x0, 0x40, 0x0, 0x0)

4.106003536s ago: executing program 1 (id=501):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r0, &(0x7f0000000440), 0x10)
connect$vsock_stream(r0, &(0x7f0000000000)={0x28, 0x0, 0x2711, @local}, 0x10)
listen(r0, 0xfffffffe)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_inet6_tcp_SIOCOUTQNSD(r2, 0x894b, &(0x7f0000000080))
connect$vsock_stream(r1, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
openat$vimc2(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x2, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f0000000240)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)

4.009648957s ago: executing program 0 (id=502):
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
fanotify_init(0x8, 0x80000)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$tty1(0xc, 0x4, 0x2)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$kcm(0xa, 0x1, 0x106)
socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
socket$inet6(0xa, 0x3, 0x87)
socket$kcm(0xa, 0x5, 0x0)
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000280)={0x3, 0x2})
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[<r1=>0x0], 0x40000012})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
ioctl$DRM_IOCTL_MODE_ATOMIC(r0, 0xc03864bc, &(0x7f0000000180)={0x300, 0x1, &(0x7f0000000340)=[r1], &(0x7f0000000040)=[0x1], &(0x7f0000000200), &(0x7f00000000c0), 0x0, 0x7f})

3.804935488s ago: executing program 1 (id=503):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
openat$sequencer(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000000), 0x2, 0x101102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r3 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x4a183, 0x0)
ioctl$TIOCSETD(r3, 0x5423, 0x0)
ioctl$TCSETS(r3, 0x40204706, &(0x7f00000000c0)={0x1, 0xc8a9, 0x5, 0x8000001, 0x15, "3eccd8f9f24305cfe373487400"})
syz_mount_image$vfat(&(0x7f0000000280), &(0x7f00000002c0)='./file0\x00', 0x10000, 0xffffffffffffffff, 0x0, 0x0, 0x0)
mount(0x0, 0x0, &(0x7f0000000040)='devtmpfs\x00', 0x0, 0x0)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x0, 0x0, 0xffffffffffffffff, 0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000002c0)={0x0}}, 0x0)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0x14, &(0x7f0000000480)=0x102, 0x4)
sendto$packet(0xffffffffffffffff, 0x0, 0x0, 0x200004c0, &(0x7f0000000540)={0x11, 0x0, 0x0, 0x1, 0x9, 0x6, @multicast}, 0x14)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f0000000200)={0x1, [<r4=>0x0]}, &(0x7f0000000080)=0x8)
setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x22, &(0x7f00000000c0)={0xffff, 0x200, 0x5, 0x46, r4}, 0x10)

3.687813568s ago: executing program 0 (id=504):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
syz_init_net_socket$llc(0x1a, 0x2, 0x0)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
r2 = syz_open_dev$vcsa(&(0x7f0000000000), 0x1, 0x141c02)
writev(r2, &(0x7f0000000c40)=[{0x0}, {&(0x7f00000005c0)="c21cfb", 0x3}, {&(0x7f00000007c0), 0x320}, {&(0x7f0000000900), 0x4000}], 0xe)

3.676118579s ago: executing program 1 (id=505):
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='timerslack_ns\x00')
lseek(r0, 0x10001, 0x1)
syz_mount_image$vfat(&(0x7f0000001200), &(0x7f0000001240)='./file0\x00', 0x2004000, &(0x7f0000000040)=ANY=[@ANYRES64=0x0], 0xfe, 0x1227, &(0x7f00000024c0)="$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")
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x8)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x181402, 0x0)
r1 = syz_open_dev$sndmidi(0x0, 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file1\x00', 0x94)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, 0x0)
mount(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400))
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@nfs_export_on}]})
chdir(&(0x7f00000000c0)='./bus\x00')
r2 = creat(&(0x7f0000000440)='./file0\x00', 0x0)
open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
write$P9_RREADDIR(r2, &(0x7f00000003c0)={0x2a, 0x29, 0x1, {0x200, [{{0x4, 0x4, 0x4}, 0x3, 0xff, 0x7, './file0'}]}}, 0x2a)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x101000, 0x26)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000100)=0x2)
ioctl$TIOCL_SETSEL(0xffffffffffffffff, 0x40087101, 0x0)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r3, 0xc0185879, &(0x7f0000000040)={@id={0x2, 0x0, @auto="aeb6a9f98a7f42a46dd40eab7d1f02a2"}})

3.275665131s ago: executing program 4 (id=506):
socket$netlink(0x10, 0x3, 0x0)
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x7}, 0x1c)
listen(r0, 0xfffffffc)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000000000d00000000080000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000280)='netlink_extack\x00', r2}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
sendmsg(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000001900)="5500000018007f5f00fe01b2a4a2809302060000ff41fd01040400000a00120002002800000019002d4400009b84136ef75afb83de066a5b00e1baac341b61130000f2ff00000100"/85, 0x55}], 0x1, 0x0, 0x0, 0x7a000000}, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r4, &(0x7f0000000400)={0x0, 0x1802, &(0x7f00000003c0)={&(0x7f00000004c0)={0x30, r5, 0x1, 0x70bd2c, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x1c}}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x3}]}]}, 0x30}, 0x1, 0xff07}, 0x2000000)

3.129415772s ago: executing program 1 (id=507):
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file1\x00', 0x8c0, &(0x7f0000000680)=ANY=[@ANYBLOB="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"], 0x1, 0x442d, &(0x7f0000004480)="$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")
r0 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x141)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
r1 = syz_open_dev$MSR(&(0x7f0000000200), 0x0, 0x0)
read$msr(r1, &(0x7f0000002700)=""/102392, 0x18ff8)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./bus\x00', 0x40942, 0x0)
r3 = open(&(0x7f0000000000)='./bus\x00', 0x60142, 0x0)
r4 = open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0)
ftruncate(r4, 0x2007ffb)
sendfile(r3, r4, 0x0, 0x1000000201005)
copy_file_range(r2, 0x0, r0, 0x0, 0xfffffbffa003e458, 0x700000000000000)

2.093802928s ago: executing program 4 (id=508):
rseq(&(0x7f0000000400), 0x20, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0x8852, &(0x7f0000000000)={[{@dioread_nolock}, {@init_itable_val={'init_itable', 0x3d, 0x4004}}, {@barrier_val={'barrier', 0x3d, 0x4}}]}, 0x43, 0x4e8, &(0x7f0000001080)="$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")
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000240)=@reiserfs_2={0x4b, 0x2, {0xb}}, 0x36f0516f)

1.838910819s ago: executing program 0 (id=509):
r0 = syz_open_dev$vim2m(0x0, 0x0, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, 0x0)
ioctl$vim2m_VIDIOC_STREAMOFF(r0, 0x40045612, &(0x7f0000000040)=0x1)
ioctl$vim2m_VIDIOC_QBUF(r0, 0xc058560f, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000180)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = syz_open_dev$midi(&(0x7f0000000000), 0x2, 0x0)
ioctl$SNDRV_RAWMIDI_IOCTL_INFO(r3, 0x40045731, 0xfffffffffffffffe)

1.655871671s ago: executing program 3 (id=510):
sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(0x0, 0x0, 0x0)
ioctl$sock_SIOCSIFBR(0xffffffffffffffff, 0x890c, 0x0)
read$msr(r0, &(0x7f0000002000)=""/102400, 0x19000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
mount$fuse(0x0, 0x0, &(0x7f0000002100), 0x80, &(0x7f00000002c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r3, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB='\x00\x00\x00\x00\x00@\x00\x00Q', @ANYRESDEC=0x0, @ANYBLOB=',\x00'])
read$FUSE(r3, 0x0, 0x0)
syz_fuse_handle_req(r3, 0x0, 0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000018c0)=ANY=[@ANYBLOB="0a000000d2cf00003d360000"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100), &(0x7f0000000180), 0x3, r4}, 0x38)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_int(r5, 0x0, 0x33, &(0x7f0000000040)=0x80000001, 0x4)
listen(r5, 0x0)
setsockopt$inet_int(0xffffffffffffffff, 0x0, 0x33, &(0x7f0000000000)=0x80000000, 0x4)
listen(0xffffffffffffffff, 0x3)
syz_io_uring_setup(0x5092, &(0x7f0000000000)={0x0, 0x3993, 0x8000, 0x2, 0x332}, 0x0, 0x0)

1.460884692s ago: executing program 4 (id=511):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x82200, 0x0)
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r0, &(0x7f0000000440), 0x10)
connect$vsock_stream(r0, &(0x7f0000000000)={0x28, 0x0, 0x2711, @local}, 0x10)
listen(r0, 0xfffffffe)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_inet6_tcp_SIOCOUTQNSD(r2, 0x894b, &(0x7f0000000080))
connect$vsock_stream(r1, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
openat$vimc2(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x2, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f0000000240)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)

852.899175ms ago: executing program 3 (id=512):
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0xb, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
syz_mount_image$f2fs(&(0x7f0000000140), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="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"], 0x2, 0x5505, &(0x7f0000002480)="$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")
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
openat(0xffffffffffffff9c, &(0x7f0000000200)='./bus\x00', 0x183341, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000500)='.\x00', 0x0, 0x0)
ioctl$EXT4_IOC_GET_ES_CACHE(r1, 0xc020660b, &(0x7f0000000040)={0x0, 0x10000002000003})
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$NL80211_CMD_SET_WIPHY_NETNS(0xffffffffffffffff, 0x0, 0x4800)

0s ago: executing program 4 (id=513):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
openat$sequencer(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000000), 0x2, 0x101102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x4a183, 0x0)
ioctl$TIOCSETD(r3, 0x5423, 0x0)
ioctl$TCSETS(r3, 0x40204706, 0x0)
syz_mount_image$vfat(&(0x7f0000000280), &(0x7f00000002c0)='./file0\x00', 0x10000, 0xffffffffffffffff, 0x0, 0x0, 0x0)
mount(0x0, 0x0, &(0x7f0000000040)='devtmpfs\x00', 0x0, 0x0)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x0, 0x0, 0xffffffffffffffff, 0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000002c0)={0x0}}, 0x0)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0x14, &(0x7f0000000480)=0x102, 0x4)
sendto$packet(0xffffffffffffffff, 0x0, 0x0, 0x200004c0, &(0x7f0000000540)={0x11, 0x0, 0x0, 0x1, 0x9, 0x6, @multicast}, 0x14)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f0000000200)={0x1, [<r4=>0x0]}, &(0x7f0000000080)=0x8)
setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x22, &(0x7f00000000c0)={0xffff, 0x200, 0x5, 0x46, r4}, 0x10)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.1.30' (ED25519) to the list of known hosts.
[   69.109105][ T5776] cgroup: Unknown subsys name 'net'
[   69.245461][ T5776] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   70.933383][ T5776] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   71.591453][ T1289] ieee802154 phy0 wpan0: encryption failed: -22
[   71.597867][ T1289] ieee802154 phy1 wpan1: encryption failed: -22
[   72.588550][ T5790] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   72.592416][ T5788] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   72.598501][ T5790] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   72.604434][ T5788] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   72.610919][ T5790] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   72.617847][ T5788] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   72.625225][ T5790] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   72.631900][ T5788] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   72.639042][ T5790] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   72.645485][ T5788] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   72.652186][ T5790] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   72.659289][ T5788] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   72.721427][ T5790] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   72.732194][ T5790] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   72.742091][ T5790] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   72.742498][ T5105] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   72.764614][ T5105] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   72.772568][ T5105] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   72.780158][ T5105] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   72.791634][ T5105] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   72.804447][ T5788] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   72.813117][ T5788] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   72.835137][ T5788] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   72.845585][ T5788] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   73.218935][ T5786] chnl_net:caif_netlink_parms(): no params data found
[   73.296226][ T5785] chnl_net:caif_netlink_parms(): no params data found
[   73.447264][ T5795] chnl_net:caif_netlink_parms(): no params data found
[   73.464543][ T5793] chnl_net:caif_netlink_parms(): no params data found
[   73.474314][ T5785] bridge0: port 1(bridge_slave_0) entered blocking state
[   73.483154][ T5785] bridge0: port 1(bridge_slave_0) entered disabled state
[   73.491198][ T5785] bridge_slave_0: entered allmulticast mode
[   73.498016][ T5785] bridge_slave_0: entered promiscuous mode
[   73.535487][ T5786] bridge0: port 1(bridge_slave_0) entered blocking state
[   73.542810][ T5786] bridge0: port 1(bridge_slave_0) entered disabled state
[   73.550467][ T5786] bridge_slave_0: entered allmulticast mode
[   73.557221][ T5786] bridge_slave_0: entered promiscuous mode
[   73.571592][ T5785] bridge0: port 2(bridge_slave_1) entered blocking state
[   73.578957][ T5785] bridge0: port 2(bridge_slave_1) entered disabled state
[   73.586089][ T5785] bridge_slave_1: entered allmulticast mode
[   73.593877][ T5785] bridge_slave_1: entered promiscuous mode
[   73.613012][ T5786] bridge0: port 2(bridge_slave_1) entered blocking state
[   73.620277][ T5786] bridge0: port 2(bridge_slave_1) entered disabled state
[   73.627411][ T5786] bridge_slave_1: entered allmulticast mode
[   73.634474][ T5786] bridge_slave_1: entered promiscuous mode
[   73.702615][ T5786] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   73.732136][ T5785] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   73.747663][ T5786] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   73.765025][ T5785] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   73.828071][ T5786] team0: Port device team_slave_0 added
[   73.837467][ T5786] team0: Port device team_slave_1 added
[   73.917042][ T5785] team0: Port device team_slave_0 added
[   73.923690][ T5795] bridge0: port 1(bridge_slave_0) entered blocking state
[   73.931072][ T5795] bridge0: port 1(bridge_slave_0) entered disabled state
[   73.938298][ T5795] bridge_slave_0: entered allmulticast mode
[   73.945091][ T5795] bridge_slave_0: entered promiscuous mode
[   73.953704][ T5786] batman_adv: batadv0: Adding interface: batadv_slave_0
[   73.960761][ T5786] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   73.987454][ T5786] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   74.000820][ T5793] bridge0: port 1(bridge_slave_0) entered blocking state
[   74.007959][ T5793] bridge0: port 1(bridge_slave_0) entered disabled state
[   74.015348][ T5793] bridge_slave_0: entered allmulticast mode
[   74.022245][ T5793] bridge_slave_0: entered promiscuous mode
[   74.031041][ T5793] bridge0: port 2(bridge_slave_1) entered blocking state
[   74.038234][ T5793] bridge0: port 2(bridge_slave_1) entered disabled state
[   74.045408][ T5793] bridge_slave_1: entered allmulticast mode
[   74.052999][ T5793] bridge_slave_1: entered promiscuous mode
[   74.062086][ T5785] team0: Port device team_slave_1 added
[   74.074324][ T5795] bridge0: port 2(bridge_slave_1) entered blocking state
[   74.081613][ T5795] bridge0: port 2(bridge_slave_1) entered disabled state
[   74.088944][ T5795] bridge_slave_1: entered allmulticast mode
[   74.096467][ T5795] bridge_slave_1: entered promiscuous mode
[   74.103508][ T5786] batman_adv: batadv0: Adding interface: batadv_slave_1
[   74.110807][ T5786] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   74.136834][ T5786] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   74.222575][ T5785] batman_adv: batadv0: Adding interface: batadv_slave_0
[   74.229805][ T5785] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   74.255785][ T5785] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   74.268122][ T5785] batman_adv: batadv0: Adding interface: batadv_slave_1
[   74.275187][ T5785] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   74.301193][ T5785] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   74.322814][ T5795] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   74.335703][ T5795] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   74.347896][ T5793] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   74.425578][ T5793] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   74.438060][ T5786] hsr_slave_0: entered promiscuous mode
[   74.444786][ T5786] hsr_slave_1: entered promiscuous mode
[   74.455695][ T5795] team0: Port device team_slave_0 added
[   74.498857][ T5795] team0: Port device team_slave_1 added
[   74.507867][ T5785] hsr_slave_0: entered promiscuous mode
[   74.514634][ T5785] hsr_slave_1: entered promiscuous mode
[   74.522149][ T5785] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   74.530416][ T5785] Cannot create hsr debugfs directory
[   74.549927][ T5793] team0: Port device team_slave_0 added
[   74.595887][ T5793] team0: Port device team_slave_1 added
[   74.625456][ T5795] batman_adv: batadv0: Adding interface: batadv_slave_0
[   74.632523][ T5795] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   74.659134][ T5795] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   74.673257][ T5795] batman_adv: batadv0: Adding interface: batadv_slave_1
[   74.680272][ T5795] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   74.706257][ T5795] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   74.718699][   T51] Bluetooth: hci0: command tx timeout
[   74.724423][ T5788] Bluetooth: hci1: command tx timeout
[   74.751872][ T5793] batman_adv: batadv0: Adding interface: batadv_slave_0
[   74.759804][ T5793] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   74.786023][ T5793] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   74.828749][ T5793] batman_adv: batadv0: Adding interface: batadv_slave_1
[   74.835736][ T5793] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   74.862005][ T5793] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   74.878531][ T5788] Bluetooth: hci2: command tx timeout
[   74.948385][ T5788] Bluetooth: hci3: command tx timeout
[   74.970536][ T5793] hsr_slave_0: entered promiscuous mode
[   74.976861][ T5793] hsr_slave_1: entered promiscuous mode
[   74.983736][ T5793] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   74.991761][ T5793] Cannot create hsr debugfs directory
[   75.001467][ T5795] hsr_slave_0: entered promiscuous mode
[   75.007747][ T5795] hsr_slave_1: entered promiscuous mode
[   75.014085][ T5795] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   75.021727][ T5795] Cannot create hsr debugfs directory
[   75.309810][ T5786] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   75.332758][ T5786] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   75.362841][ T5786] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   75.372408][ T5786] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   75.444969][ T5785] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   75.456288][ T5785] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   75.467923][ T5785] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   75.477375][ T5785] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   75.555928][ T5795] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   75.580357][ T5795] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   75.591258][ T5795] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   75.612335][ T5795] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   75.710522][ T5793] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   75.722168][ T5793] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   75.749154][ T5793] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   75.759565][ T5793] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   75.834057][ T5786] 8021q: adding VLAN 0 to HW filter on device bond0
[   75.902901][ T5786] 8021q: adding VLAN 0 to HW filter on device team0
[   75.914029][ T5785] 8021q: adding VLAN 0 to HW filter on device bond0
[   75.928687][ T5795] 8021q: adding VLAN 0 to HW filter on device bond0
[   75.955487][ T1136] bridge0: port 1(bridge_slave_0) entered blocking state
[   75.962968][ T1136] bridge0: port 1(bridge_slave_0) entered forwarding state
[   75.994780][ T5795] 8021q: adding VLAN 0 to HW filter on device team0
[   76.016900][ T5785] 8021q: adding VLAN 0 to HW filter on device team0
[   76.040308][ T2984] bridge0: port 2(bridge_slave_1) entered blocking state
[   76.047407][ T2984] bridge0: port 2(bridge_slave_1) entered forwarding state
[   76.065236][ T2984] bridge0: port 1(bridge_slave_0) entered blocking state
[   76.072676][ T2984] bridge0: port 1(bridge_slave_0) entered forwarding state
[   76.085666][ T2984] bridge0: port 1(bridge_slave_0) entered blocking state
[   76.092803][ T2984] bridge0: port 1(bridge_slave_0) entered forwarding state
[   76.127333][ T2984] bridge0: port 2(bridge_slave_1) entered blocking state
[   76.134485][ T2984] bridge0: port 2(bridge_slave_1) entered forwarding state
[   76.170724][ T3427] bridge0: port 2(bridge_slave_1) entered blocking state
[   76.177824][ T3427] bridge0: port 2(bridge_slave_1) entered forwarding state
[   76.305454][ T5793] 8021q: adding VLAN 0 to HW filter on device bond0
[   76.363729][ T5793] 8021q: adding VLAN 0 to HW filter on device team0
[   76.414879][ T3427] bridge0: port 1(bridge_slave_0) entered blocking state
[   76.422071][ T3427] bridge0: port 1(bridge_slave_0) entered forwarding state
[   76.480459][ T1136] bridge0: port 2(bridge_slave_1) entered blocking state
[   76.487699][ T1136] bridge0: port 2(bridge_slave_1) entered forwarding state
[   76.576751][ T5793] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   76.591521][ T5793] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   76.789108][   T51] Bluetooth: hci0: command tx timeout
[   76.794638][ T5788] Bluetooth: hci1: command tx timeout
[   76.861321][ T5786] 8021q: adding VLAN 0 to HW filter on device batadv0
[   76.886924][ T5785] 8021q: adding VLAN 0 to HW filter on device batadv0
[   76.931965][ T5795] 8021q: adding VLAN 0 to HW filter on device batadv0
[   76.948820][ T5788] Bluetooth: hci2: command tx timeout
[   77.017651][ T5793] 8021q: adding VLAN 0 to HW filter on device batadv0
[   77.030085][ T5788] Bluetooth: hci3: command tx timeout
[   77.034754][ T5786] veth0_vlan: entered promiscuous mode
[   77.050628][ T5785] veth0_vlan: entered promiscuous mode
[   77.076492][ T5786] veth1_vlan: entered promiscuous mode
[   77.094735][ T5795] veth0_vlan: entered promiscuous mode
[   77.112487][ T5785] veth1_vlan: entered promiscuous mode
[   77.151035][ T5795] veth1_vlan: entered promiscuous mode
[   77.172297][ T5786] veth0_macvtap: entered promiscuous mode
[   77.197736][ T5785] veth0_macvtap: entered promiscuous mode
[   77.227083][ T5786] veth1_macvtap: entered promiscuous mode
[   77.237939][ T5785] veth1_macvtap: entered promiscuous mode
[   77.280804][ T5793] veth0_vlan: entered promiscuous mode
[   77.297953][ T5786] batman_adv: batadv0: Interface activated: batadv_slave_0
[   77.306358][ T5795] veth0_macvtap: entered promiscuous mode
[   77.332341][ T5786] batman_adv: batadv0: Interface activated: batadv_slave_1
[   77.346109][ T5785] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   77.358271][ T5785] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   77.375772][ T5785] batman_adv: batadv0: Interface activated: batadv_slave_0
[   77.383913][ T5795] veth1_macvtap: entered promiscuous mode
[   77.401057][ T5793] veth1_vlan: entered promiscuous mode
[   77.413134][ T5785] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   77.423769][ T5785] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   77.436840][ T5785] batman_adv: batadv0: Interface activated: batadv_slave_1
[   77.447042][ T5786] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   77.456801][ T5786] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   77.465850][ T5786] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   77.474757][ T5786] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   77.500622][ T5785] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   77.509967][ T5785] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   77.523473][ T5785] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   77.532540][ T5785] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   77.547040][ T5795] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   77.557604][ T5795] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   77.567997][ T5795] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   77.579480][ T5795] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   77.592165][ T5795] batman_adv: batadv0: Interface activated: batadv_slave_0
[   77.626267][ T5795] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   77.636917][ T5795] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   77.647231][ T5795] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   77.660376][ T5795] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   77.671706][ T5795] batman_adv: batadv0: Interface activated: batadv_slave_1
[   77.731929][ T5795] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   77.742396][ T5795] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   77.752636][ T5795] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   77.762161][ T5795] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   77.793780][ T5793] veth0_macvtap: entered promiscuous mode
[   77.842770][ T5793] veth1_macvtap: entered promiscuous mode
[   77.879210][   T41] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   77.887985][   T41] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   77.891496][ T5793] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   77.910225][ T5793] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   77.921193][ T5793] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   77.932300][ T5793] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   77.942604][ T5793] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   77.953219][ T5793] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   77.964996][ T5793] batman_adv: batadv0: Interface activated: batadv_slave_0
[   78.023920][   T59] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   78.024164][ T5793] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   78.032506][   T59] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   78.044608][   T41] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   78.059100][   T41] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   78.062016][ T5793] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.076551][ T5793] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   78.087510][ T5793] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.097457][ T5793] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   78.108008][ T5793] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.119933][ T5793] batman_adv: batadv0: Interface activated: batadv_slave_1
[   78.167980][ T5793] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   78.176924][ T5793] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   78.186455][ T5793] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   78.195935][ T5793] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   78.224912][ T1136] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   78.240671][ T1136] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   78.325294][   T59] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   78.375776][   T59] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   78.400144][   T41] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   78.422680][   T41] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   78.431283][ T5873] syz.2.3[5873]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[   78.492037][ T1136] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   78.525667][ T1136] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   78.596053][ T5873] loop2: detected capacity change from 0 to 4096
[   78.622111][ T5873] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512).
[   78.655594][ T3427] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   78.693453][ T3427] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   78.868951][ T5788] Bluetooth: hci1: command tx timeout
[   78.874426][ T5788] Bluetooth: hci0: command tx timeout
[   78.901838][ T5881] loop0: detected capacity change from 0 to 1024
[   78.917748][ T5881] hfsplus: unable to parse mount options
[   78.996575][ T5880] loop1: detected capacity change from 0 to 4096
[   79.025894][ T5880] ntfs3: loop1: Different NTFS sector size (4096) and media sector size (512).
[   79.050453][ T5788] Bluetooth: hci2: command tx timeout
[   79.108600][ T5788] Bluetooth: hci3: command tx timeout
[   79.224418][ T5886] loop3: detected capacity change from 0 to 64
[   79.339034][ T5880] ntfs3: loop1: Mark volume as dirty due to NTFS errors
[   79.578781][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   79.665868][ T5890] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4'.
[   80.279406][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   80.288700][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   80.297016][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   80.305829][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   80.314629][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   80.323358][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   80.351622][ T5892] syz.0.6 uses obsolete (PF_INET,SOCK_PACKET)
[   80.768687][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   80.778495][    T0] NOHZ tick-stop error: local softirq work is pending, handler #242!!!
[   80.786850][    T0] NOHZ tick-stop error: local softirq work is pending, handler #242!!!
[   80.948297][ T5788] Bluetooth: hci0: command tx timeout
[   80.953798][ T5788] Bluetooth: hci1: command tx timeout
[   81.109682][ T5788] Bluetooth: hci2: command tx timeout
[   81.189493][ T5788] Bluetooth: hci3: command tx timeout
[   81.359828][ T5898] loop0: detected capacity change from 0 to 8192
[   81.414113][ T5900] loop3: detected capacity change from 0 to 40427
[   81.436977][ T5900] F2FS-fs (loop3): invalid crc value
[   81.453065][ T5900] F2FS-fs (loop3): Found nat_bits in checkpoint
[   81.514378][ T5900] F2FS-fs (loop3): Start checkpoint disabled!
[   81.577399][ T5900] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[   83.185616][ T5915] netlink: 24 bytes leftover after parsing attributes in process `syz.0.10'.
[   83.376800][   T41] kworker/u4:2: attempt to access beyond end of device
[   83.376800][   T41] loop3: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[   83.436470][   T41] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[   83.445070][   T41] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[   83.562200][ T5915] loop0: detected capacity change from 0 to 8
[   83.681375][ T5920] loop2: detected capacity change from 0 to 4096
[   83.720921][ T5920] ntfs3: loop2: Different NTFS sector size (2048) and media sector size (512).
[   83.825302][ T5920] ntfs3: loop2: MFT: r=18, expect seq=1 instead of 0!
[   83.863264][ T5801] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[   83.879246][ T5920] ntfs3: loop2: Mark volume as dirty due to NTFS errors
[   83.940121][ T5920] ntfs3: loop2: Failed to initialize $Extend/$ObjId.
[   84.696747][ T5927] loop3: detected capacity change from 0 to 64
[   84.731849][ T5925] loop2: detected capacity change from 0 to 4096
[   84.773771][ T5925] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512).
[   85.144234][ T5932] loop3: detected capacity change from 0 to 1024
[   85.203489][ T5932] hfsplus: unable to parse mount options
[   85.384467][ T5935] loop2: detected capacity change from 0 to 64
[   85.691947][ T5937] netlink: 24 bytes leftover after parsing attributes in process `syz.2.16'.
[   86.735898][ T5943] mmap: syz.3.19 (5943) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   86.786813][ T5941] loop0: detected capacity change from 0 to 8192
[   87.018330][  T787] cfg80211: failed to load regulatory.db
[   87.990871][ T5950] loop0: detected capacity change from 0 to 40427
[   88.004640][ T5950] F2FS-fs (loop0): invalid crc value
[   88.014753][ T5950] F2FS-fs (loop0): Found nat_bits in checkpoint
[   88.156848][ T5950] F2FS-fs (loop0): Start checkpoint disabled!
[   88.213563][ T5950] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6
[   88.273497][ T5955] loop2: detected capacity change from 0 to 64
[   89.290375][ T5959] loop1: detected capacity change from 0 to 4096
[   89.368103][ T5959] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512).
[   90.600624][   T59] kworker/u4:4: attempt to access beyond end of device
[   90.600624][   T59] loop0: rw=1, sector=45096, nr_sectors = 8 limit=40427
[   90.687636][   T59] kworker/u4:4: attempt to access beyond end of device
[   90.687636][   T59] loop0: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[   90.755563][ T5972] netlink: 24 bytes leftover after parsing attributes in process `syz.3.26'.
[   90.771869][   T59] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[   90.841361][   T59] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[   91.455388][ T5978] loop1: detected capacity change from 0 to 8192
[   92.544434][ T5990] loop0: detected capacity change from 0 to 64
[   92.841805][ T5993] netlink: 24 bytes leftover after parsing attributes in process `syz.0.27'.
[   93.671655][ T5999] loop0: detected capacity change from 0 to 64
[   94.625636][ T6003] loop0: detected capacity change from 0 to 65536
[   94.751958][ T6003] XFS (loop0): Mounting V5 Filesystem 6653b971-41ab-480a-bd7b-5ff79b9409b5
[   95.158177][    C1] sched: RT throttling activated
[   95.362677][ T6003] XFS (loop0): Ending clean mount
[   95.579369][ T5786] XFS (loop0): Unmounting Filesystem 6653b971-41ab-480a-bd7b-5ff79b9409b5
[   95.584804][ T6020] loop1: detected capacity change from 0 to 128
[   96.142811][ T6020] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   96.188531][ T6020] ext4 filesystem being mounted at /7/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   96.370869][ T6020] syz.1.41 (pid 6020) is setting deprecated v1 encryption policy; recommend upgrading to v2.
[   96.631103][ T6020] fscrypt: key with description 'fscrypt:e8dab99234bb312e' has invalid payload
[   96.674446][ T6020] fscrypt: key with description 'fscrypt:e8dab99234bb312e' has invalid payload
[   96.735956][ T6029] process 'syz.3.43' launched './file0' with NULL argv: empty string added
[   97.588542][ T6025] loop0: detected capacity change from 0 to 8192
[   98.603015][ T5795] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   98.693017][ T6040] netlink: 24 bytes leftover after parsing attributes in process `syz.3.45'.
[   99.037114][ T6043] loop0: detected capacity change from 0 to 64
[  100.935974][ T6058] =======================================================
[  100.935974][ T6058] WARNING: The mand mount option has been deprecated and
[  100.935974][ T6058]          and is ignored by this kernel. Remove the mand
[  100.935974][ T6058]          option from the mount to silence this warning.
[  100.935974][ T6058] =======================================================
[  102.065932][ T6060] loop0: detected capacity change from 0 to 2048
[  102.125630][ T6060] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found
[  102.189855][ T6060] UDF-fs: Scanning with blocksize 512 failed
[  102.251217][ T6060] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  102.392795][ T6066] loop2: detected capacity change from 0 to 128
[  102.471710][ T6066] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  102.495033][ T6066] ext4 filesystem being mounted at /15/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  102.529721][ T6070] loop0: detected capacity change from 0 to 64
[  102.563898][ T6064] loop3: detected capacity change from 0 to 8192
[  103.270963][ T6077] fscrypt: key with description 'fscrypt:e8dab99234bb312e' has invalid payload
[  103.280473][ T6077] fscrypt: key with description 'fscrypt:e8dab99234bb312e' has invalid payload
[  105.464182][ T6094] netlink: 24 bytes leftover after parsing attributes in process `syz.0.61'.
[  105.489997][ T5785] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  106.061959][ T6105] loop1: detected capacity change from 0 to 64
[  107.266053][ T6108] loop2: detected capacity change from 0 to 8192
[  109.389431][ T6122] vxcan1: tx drop: invalid da for name 0x0000000000000002
[  112.048373][ T6145] netlink: 24 bytes leftover after parsing attributes in process `syz.2.76'.
[  112.132773][ T6145] loop2: detected capacity change from 0 to 8
[  112.161207][ T6138] loop0: detected capacity change from 0 to 8192
[  112.207555][ T5800] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  114.815331][ T6160] loop3: detected capacity change from 0 to 128
[  114.876147][ T5800] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  115.736080][ T6162] loop2: detected capacity change from 0 to 4096
[  115.811526][ T6162] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512).
[  116.343598][ T6172] tipc: Started in network mode
[  117.121180][ T6172] tipc: Node identity 7a56be729ab3, cluster identity 4711
[  117.168366][ T6172] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  117.235570][ T6174] loop1: detected capacity change from 0 to 8192
[  117.265476][ T6176] syzkaller0: entered promiscuous mode
[  117.272242][ T6176] syzkaller0: entered allmulticast mode
[  117.485456][ T6172] tipc: Resetting bearer <eth:syzkaller0>
[  117.542923][ T6171] tipc: Resetting bearer <eth:syzkaller0>
[  117.622307][ T6171] tipc: Disabling bearer <eth:syzkaller0>
[  117.906375][ T6186] loop0: detected capacity change from 0 to 128
[  117.985497][ T6186] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  118.110646][ T6186] ext4 filesystem being mounted at /25/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  118.271265][ T6189] fscrypt: key with description 'fscrypt:e8dab99234bb312e' has invalid payload
[  118.326251][ T6189] fscrypt: key with description 'fscrypt:e8dab99234bb312e' has invalid payload
[  118.652034][ T6178] loop2: detected capacity change from 0 to 32768
[  118.676820][ T5786] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  118.803329][ T6178] XFS (loop2): Mounting V5 Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  118.952295][ T6178] XFS (loop2): Ending clean mount
[  121.159586][ T6213] loop0: detected capacity change from 0 to 64
[  121.353250][ T5785] XFS (loop2): Unmounting Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  121.373299][ T6216] loop3: detected capacity change from 0 to 64
[  122.945538][ T6229] loop0: detected capacity change from 0 to 256
[  123.074668][ T6229] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  123.113382][ T6224] loop3: detected capacity change from 0 to 8192
[  123.794249][ T6240] netlink: 25 bytes leftover after parsing attributes in process `syz.1.102'.
[  125.059966][ T6246] loop3: detected capacity change from 0 to 64
[  126.183980][ T6256] loop2: detected capacity change from 0 to 64
[  127.637413][ T6263] loop2: detected capacity change from 0 to 8192
[  128.408824][ T6270] loop2: detected capacity change from 0 to 512
[  128.462512][ T6270] EXT4-fs (loop2): orphan cleanup on readonly fs
[  128.505405][ T6273] Zero length message leads to an empty skb
[  128.509728][ T6270] EXT4-fs error (device loop2): ext4_map_blocks:608: inode #11: block 1728053262: comm syz.2.111: lblock 0 mapped to illegal pblock 1728053262 (length 1)
[  128.551056][ T6270] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2872: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  128.683506][ T6270] EXT4-fs error (device loop2): ext4_do_update_inode:5244: inode #15: comm syz.2.111: corrupted inode contents
[  128.716883][ T6270] EXT4-fs error (device loop2): ext4_dirty_inode:6120: inode #15: comm syz.2.111: mark_inode_dirty error
[  128.839210][ T6270] EXT4-fs error (device loop2): ext4_do_update_inode:5244: inode #15: comm syz.2.111: corrupted inode contents
[  128.870017][ T6270] EXT4-fs error (device loop2): ext4_xattr_delete_inode:3017: inode #15: comm syz.2.111: mark_inode_dirty error
[  128.884044][ T6270] EXT4-fs error (device loop2): ext4_xattr_delete_inode:3020: inode #15: comm syz.2.111: mark inode dirty (error -117)
[  128.912019][ T6270] EXT4-fs warning (device loop2): ext4_evict_inode:272: xattr delete (err -117)
[  128.955819][ T6270] EXT4-fs (loop2): 1 orphan inode deleted
[  128.979142][ T6270] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  129.331489][ T6278] loop1: detected capacity change from 0 to 512
[  129.717021][ T6278] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  129.748576][ T6278] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  129.766419][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.782209][ T6278] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.114: invalid indirect mapped block 4294967295 (level 1)
[  129.803866][ T6278] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.114: invalid indirect mapped block 4294967295 (level 1)
[  129.879099][ T6278] EXT4-fs (loop1): 2 truncates cleaned up
[  129.886255][ T6278] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  129.931357][ T6282] loop2: detected capacity change from 0 to 64
[  131.535157][ T6280] EXT4-fs error (device loop1): ext4_validate_block_bitmap:430: comm ext4lazyinit: bg 0: block 5: invalid block bitmap
[  132.220765][ T5795] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.870958][ T6297] loop1: detected capacity change from 0 to 64
[  133.033983][ T1289] ieee802154 phy0 wpan0: encryption failed: -22
[  133.177880][ T1289] ieee802154 phy1 wpan1: encryption failed: -22
[  134.037339][ T6294] loop0: detected capacity change from 0 to 8192
[  135.576893][ T6320] loop3: detected capacity change from 0 to 1024
[  135.645633][ T6320] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  137.719918][ T6333] loop0: detected capacity change from 0 to 128
[  137.784214][ T6333] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  137.908508][ T6333] ext4 filesystem being mounted at /36/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  138.036415][ T6333] fscrypt: key with description 'fscrypt:e8dab99234bb312e' has invalid payload
[  138.046365][ T6333] fscrypt: key with description 'fscrypt:e8dab99234bb312e' has invalid payload
[  138.111260][ T5786] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  138.447573][ T6342] loop2: detected capacity change from 0 to 8192
[  140.510983][ T6353] loop0: detected capacity change from 0 to 4096
[  140.808646][ T6353] EXT4-fs (loop0): Test dummy encryption mode enabled
[  140.845137][ T6353] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[  140.857760][ T6353] System zones: 0-5
[  140.876037][ T6353] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  142.251908][ T6368] loop1: detected capacity change from 0 to 64
[  142.298732][ T5786] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.585542][ T6378] loop0: detected capacity change from 0 to 512
[  143.607940][ T5793] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.626187][ T6378] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  143.788622][ T6378] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  143.905697][ T6378] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.141: invalid indirect mapped block 4294967295 (level 1)
[  144.262096][ T6378] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.141: invalid indirect mapped block 4294967295 (level 1)
[  144.327820][ T6378] EXT4-fs (loop0): 2 truncates cleaned up
[  144.389250][ T6378] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  144.468991][ T6385] loop2: detected capacity change from 0 to 512
[  144.511464][ T6385] EXT4-fs (loop2): orphan cleanup on readonly fs
[  144.630882][ T6385] EXT4-fs error (device loop2): ext4_map_blocks:608: inode #11: block 1728053262: comm syz.2.145: lblock 0 mapped to illegal pblock 1728053262 (length 1)
[  144.711189][ T6385] EXT4-fs error (device loop2): ext4_do_update_inode:5244: inode #15: comm syz.2.145: corrupted inode contents
[  144.816605][ T6385] EXT4-fs error (device loop2): ext4_dirty_inode:6120: inode #15: comm syz.2.145: mark_inode_dirty error
[  144.820896][ T6391] loop1: detected capacity change from 0 to 128
[  145.030612][ T6385] EXT4-fs error (device loop2): ext4_do_update_inode:5244: inode #15: comm syz.2.145: corrupted inode contents
[  145.518565][ T6385] EXT4-fs error (device loop2): ext4_xattr_delete_inode:3017: inode #15: comm syz.2.145: mark_inode_dirty error
[  145.614064][ T6383] EXT4-fs error (device loop0): ext4_validate_block_bitmap:430: comm ext4lazyinit: bg 0: block 5: invalid block bitmap
[  145.716843][ T6391] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  145.812503][ T6391] hpfs: filesystem error: improperly stopped
[  145.818909][ T6385] EXT4-fs error (device loop2): ext4_xattr_delete_inode:3020: inode #15: comm syz.2.145: mark inode dirty (error -117)
[  145.832244][ T6391] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  145.837763][ T5786] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.841208][ T6391] hpfs: You really don't want any checks? You are crazy...
[  145.858498][ T6391] hpfs: hpfs_map_sector(): read error
[  145.863917][ T6391] hpfs: code page support is disabled
[  145.871322][ T6391] hpfs: hpfs_map_4sectors(): unaligned read
[  145.872252][ T6385] EXT4-fs warning (device loop2): ext4_evict_inode:272: xattr delete (err -117)
[  145.877481][ T6391] hpfs: hpfs_map_4sectors(): unaligned read
[  145.906655][ T6385] EXT4-fs (loop2): 1 orphan inode deleted
[  145.920994][ T6385] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  145.970867][ T6391] hpfs: filesystem error: unable to find root dir
[  146.262899][ T6398] loop3: detected capacity change from 0 to 64
[  146.533281][ T6400] hpfs: hpfs_map_4sectors(): unaligned read
[  147.269925][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  147.431846][ T6403] netlink: 4 bytes leftover after parsing attributes in process `syz.0.147'.
[  148.102481][ T6410] loop2: detected capacity change from 0 to 128
[  148.143354][ T6410] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  148.220190][ T6410] ext4 filesystem being mounted at /42/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  150.233923][ T6410] fscrypt: key with description 'fscrypt:e8dab99234bb312e' has invalid payload
[  150.243171][ T6410] fscrypt: key with description 'fscrypt:e8dab99234bb312e' has invalid payload
[  150.365929][ T5785] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  151.320895][ T5852] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  152.619321][ T5852] usb 1-1: Using ep0 maxpacket: 32
[  152.633731][ T5852] usb 1-1: config 0 has an invalid interface number: 184 but max is 0
[  152.652966][ T5852] usb 1-1: config 0 has no interface number 0
[  152.660933][ T5852] usb 1-1: config 0 interface 184 has no altsetting 0
[  152.677659][ T5852] usb 1-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  152.687148][ T5852] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  152.698944][ T5852] usb 1-1: Product: syz
[  152.703164][ T5852] usb 1-1: Manufacturer: syz
[  152.709074][ T5852] usb 1-1: SerialNumber: syz
[  152.737619][ T5852] usb 1-1: config 0 descriptor??
[  152.764074][ T5852] smsc75xx v1.0.0
[  152.862091][ T6431] loop2: detected capacity change from 0 to 512
[  152.890797][ T6431] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  152.932067][ T6431] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  153.781442][ T6431] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #11: comm syz.2.157: invalid indirect mapped block 4294967295 (level 1)
[  153.814530][ T6431] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #11: comm syz.2.157: invalid indirect mapped block 4294967295 (level 1)
[  153.874838][ T6431] EXT4-fs (loop2): 2 truncates cleaned up
[  153.896136][ T6431] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  154.029312][ T6438] loop1: detected capacity change from 0 to 64
[  154.324875][ T5852] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000040: -32
[  154.335826][ T5852] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  155.601470][ T6435] EXT4-fs error (device loop2): ext4_validate_block_bitmap:430: comm ext4lazyinit: bg 0: block 5: invalid block bitmap
[  155.950622][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  156.020139][ T5852] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000010: -71
[  156.132141][ T5852] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to write HW_CFG: -71
[  156.192287][ T5852] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -71
[  156.238686][ T5852] smsc75xx: probe of 1-1:0.184 failed with error -71
[  156.325507][ T5852] usb 1-1: USB disconnect, device number 2
[  157.020718][ T6454] random: crng reseeded on system resumption
[  158.755349][ T6458] loop0: detected capacity change from 0 to 128
[  158.994258][ T6458] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  159.007719][ T6458] ext4 filesystem being mounted at /45/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  159.204952][ T6464] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[  159.306660][ T5786] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  159.760564][ T6467] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  159.838178][ T6467] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  160.132078][ T6469] loop0: detected capacity change from 0 to 128
[  160.215441][ T6472] loop2: detected capacity change from 0 to 512
[  160.223184][ T5801] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  160.980894][ T6472] EXT4-fs (loop2): orphan cleanup on readonly fs
[  161.054997][ T6472] EXT4-fs error (device loop2): ext4_map_blocks:608: inode #11: block 1728053262: comm syz.2.168: lblock 0 mapped to illegal pblock 1728053262 (length 1)
[  161.167005][ T6472] EXT4-fs error (device loop2): ext4_do_update_inode:5244: inode #15: comm syz.2.168: corrupted inode contents
[  161.214216][ T6472] EXT4-fs error (device loop2): ext4_dirty_inode:6120: inode #15: comm syz.2.168: mark_inode_dirty error
[  161.227020][ T6472] EXT4-fs error (device loop2): ext4_do_update_inode:5244: inode #15: comm syz.2.168: corrupted inode contents
[  161.296956][ T6472] EXT4-fs error (device loop2): ext4_xattr_delete_inode:3017: inode #15: comm syz.2.168: mark_inode_dirty error
[  161.325010][ T6472] EXT4-fs error (device loop2): ext4_xattr_delete_inode:3020: inode #15: comm syz.2.168: mark inode dirty (error -117)
[  161.359999][ T6483] loop3: detected capacity change from 0 to 64
[  161.372920][ T6472] EXT4-fs warning (device loop2): ext4_evict_inode:272: xattr delete (err -117)
[  161.389826][ T6472] EXT4-fs (loop2): 1 orphan inode deleted
[  161.396967][ T6472] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  161.609359][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.665902][ T6494] loop0: detected capacity change from 0 to 128
[  163.886169][ T6494] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  164.094443][ T6494] ext4 filesystem being mounted at /48/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  165.060560][ T5786] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  165.135622][ T6507] loop2: detected capacity change from 0 to 1024
[  165.437782][ T6507] EXT4-fs: Ignoring removed bh option
[  165.489623][ T6507] EXT4-fs (loop2): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  165.510359][ T6505] loop3: detected capacity change from 0 to 128
[  165.576348][ T6507] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  165.999356][ T6517] loop1: detected capacity change from 0 to 64
[  167.235422][ T6507] EXT4-fs error (device loop2): ext4_find_dest_de:2115: inode #12: block 7: comm syz.2.179: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=56 fake=0
[  167.287784][ T6507] EXT4-fs (loop2): Remounting filesystem read-only
[  169.904151][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  170.422488][ T6544] loop1: detected capacity change from 0 to 4096
[  170.598510][ T6544] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512).
[  170.770451][ T6548] loop0: detected capacity change from 0 to 128
[  173.547189][ T6554] loop0: detected capacity change from 0 to 8192
[  175.450548][   T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  175.459929][   T51] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  175.467586][   T51] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  175.529677][   T51] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  175.539556][   T51] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  175.547912][   T51] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  176.789254][ T6579] loop3: detected capacity change from 0 to 4096
[  176.810812][ T6579] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512).
[  176.973731][ T6563] chnl_net:caif_netlink_parms(): no params data found
[  177.135793][ T6563] bridge0: port 1(bridge_slave_0) entered blocking state
[  177.162977][ T6563] bridge0: port 1(bridge_slave_0) entered disabled state
[  177.184846][ T6563] bridge_slave_0: entered allmulticast mode
[  177.189732][ T6590] loop3: detected capacity change from 0 to 512
[  177.202402][ T6563] bridge_slave_0: entered promiscuous mode
[  177.227783][ T6563] bridge0: port 2(bridge_slave_1) entered blocking state
[  177.240334][ T6590] EXT4-fs (loop3): orphan cleanup on readonly fs
[  177.252713][ T6563] bridge0: port 2(bridge_slave_1) entered disabled state
[  177.260563][ T6563] bridge_slave_1: entered allmulticast mode
[  177.262387][ T6590] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #11: block 1728053262: comm syz.3.202: lblock 0 mapped to illegal pblock 1728053262 (length 1)
[  177.268018][ T6563] bridge_slave_1: entered promiscuous mode
[  177.353391][ T6590] EXT4-fs error (device loop3): ext4_do_update_inode:5244: inode #15: comm syz.3.202: corrupted inode contents
[  177.376284][ T6590] EXT4-fs error (device loop3): ext4_dirty_inode:6120: inode #15: comm syz.3.202: mark_inode_dirty error
[  177.412147][ T6590] EXT4-fs error (device loop3): ext4_do_update_inode:5244: inode #15: comm syz.3.202: corrupted inode contents
[  177.458518][ T6563] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  177.525028][ T6590] EXT4-fs error (device loop3): ext4_xattr_delete_inode:3017: inode #15: comm syz.3.202: mark_inode_dirty error
[  177.589087][   T51] Bluetooth: hci0: command tx timeout
[  177.590637][ T6563] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  177.642724][ T6590] EXT4-fs error (device loop3): ext4_xattr_delete_inode:3020: inode #15: comm syz.3.202: mark inode dirty (error -117)
[  177.701230][ T6595] loop1: detected capacity change from 0 to 64
[  177.758867][ T6590] EXT4-fs warning (device loop3): ext4_evict_inode:272: xattr delete (err -117)
[  178.063067][ T6590] EXT4-fs (loop3): 1 orphan inode deleted
[  178.204259][ T6590] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  178.252205][ T6563] team0: Port device team_slave_0 added
[  178.279146][ T6563] team0: Port device team_slave_1 added
[  178.413727][ T5793] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  178.492167][ T6563] batman_adv: batadv0: Adding interface: batadv_slave_0
[  178.530118][ T6563] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  178.616557][ T6563] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  178.643838][ T6563] batman_adv: batadv0: Adding interface: batadv_slave_1
[  178.651375][ T6563] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  178.680179][ T6563] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  178.688954][ T6598] loop0: detected capacity change from 0 to 8192
[  178.918895][ T6563] hsr_slave_0: entered promiscuous mode
[  178.925539][ T6563] hsr_slave_1: entered promiscuous mode
[  178.925950][  T786] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  178.940384][ T6563] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  178.947999][ T6563] Cannot create hsr debugfs directory
[  179.163343][  T786] usb 4-1: config 0 has no interfaces?
[  179.206413][  T786] usb 4-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  179.246809][  T786] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  179.297047][  T786] usb 4-1: Product: syz
[  179.329479][  T786] usb 4-1: Manufacturer: syz
[  179.380611][  T786] usb 4-1: SerialNumber: syz
[  179.411065][ T6563] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  179.421031][ T6563] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  179.472890][  T786] usb 4-1: config 0 descriptor??
[  179.500002][ T6563] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  179.534716][ T6563] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  179.668715][   T51] Bluetooth: hci0: command tx timeout
[  179.675720][ T6604] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  179.717927][  T786] usb 4-1: USB disconnect, device number 2
[  179.896451][ T6563] 8021q: adding VLAN 0 to HW filter on device bond0
[  179.975894][ T6563] 8021q: adding VLAN 0 to HW filter on device team0
[  180.003170][   T41] bridge0: port 1(bridge_slave_0) entered blocking state
[  180.010429][   T41] bridge0: port 1(bridge_slave_0) entered forwarding state
[  180.024408][   T41] bridge0: port 2(bridge_slave_1) entered blocking state
[  180.031652][   T41] bridge0: port 2(bridge_slave_1) entered forwarding state
[  180.102461][ T6612] No such timeout policy "syz0"
[  180.154835][ T6613] (null): rxe_set_mtu: Set mtu to 1024
[  180.461950][ T6613] ip6_vti0 speed is unknown, defaulting to 1000
[  180.471873][ T6613] ip6_vti0 speed is unknown, defaulting to 1000
[  180.479152][ T6613] ip6_vti0 speed is unknown, defaulting to 1000
[  180.646182][ T6613] infiniband syz2: set active
[  180.651351][ T6613] infiniband syz2: added ip6_vti0
[  180.657922][ T6613] syz2: rxe_create_cq: returned err = -12
[  180.664156][ T6613] infiniband syz2: Couldn't create ib_mad CQ
[  180.670456][ T6613] infiniband syz2: Couldn't open port 1
[  180.699309][ T6613] RDS/IB: syz2: added
[  180.704040][ T6613] smc: adding ib device syz2 with port count 1
[  180.710764][ T6613] smc:    ib device syz2 port 1 has pnetid 
[  180.765879][ T6613] ip6_vti0 speed is unknown, defaulting to 1000
[  180.784987][  T787] ip6_vti0 speed is unknown, defaulting to 1000
[  180.793787][ T5796] ip6_vti0 speed is unknown, defaulting to 1000
[  180.830163][ T6563] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  180.937862][ T6613] ip6_vti0 speed is unknown, defaulting to 1000
[  181.039003][ T6613] ip6_vti0 speed is unknown, defaulting to 1000
[  181.132894][ T6613] ip6_vti0 speed is unknown, defaulting to 1000
[  181.226196][ T6613] ip6_vti0 speed is unknown, defaulting to 1000
[  181.676110][ T6622] loop0: detected capacity change from 0 to 4096
[  181.691935][ T6622] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512).
[  181.752760][   T51] Bluetooth: hci0: command tx timeout
[  182.179199][ T6563] 8021q: adding VLAN 0 to HW filter on device batadv0
[  183.828644][   T51] Bluetooth: hci0: command tx timeout
[  184.524337][ T6563] veth0_vlan: entered promiscuous mode
[  184.620773][ T6563] veth1_vlan: entered promiscuous mode
[  184.792914][ T6563] veth0_macvtap: entered promiscuous mode
[  184.843584][ T6563] veth1_macvtap: entered promiscuous mode
[  184.929566][ T6563] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  184.948172][ T6563] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  184.968777][ T6563] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  184.979637][ T6563] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  184.992396][ T6563] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  185.038201][ T6563] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  185.068178][ T6563] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  185.088489][ T6563] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  185.120072][ T6563] batman_adv: batadv0: Interface activated: batadv_slave_0
[  185.132898][ T6563] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  185.144334][ T6563] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  185.154643][ T6563] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  185.165445][ T6563] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  185.175592][ T6563] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  185.189792][ T6563] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  185.217595][ T6563] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  185.236208][ T6563] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  185.262160][ T6563] batman_adv: batadv0: Interface activated: batadv_slave_1
[  185.283545][ T6563] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  185.298569][ T6563] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  185.315025][ T6563] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  185.324443][ T6563] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  185.715264][ T6651] loop3: detected capacity change from 0 to 64
[  185.723715][ T1143] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  185.747649][ T1143] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  185.836353][ T6650] loop0: detected capacity change from 0 to 8192
[  185.864968][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  185.899958][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  187.276200][ T6653] loop1: detected capacity change from 0 to 32768
[  187.362858][ T6653] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  187.914529][ T6653] XFS (loop1): Ending clean mount
[  188.057588][ T6653] XFS (loop1): Quotacheck needed: Please wait.
[  190.289860][ T6653] XFS (loop1): Quotacheck: Done.
[  190.327911][ T5795] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  190.690050][ T6693] loop4: detected capacity change from 0 to 8192
[  193.268869][ T6705] loop4: detected capacity change from 0 to 8
[  193.786343][ T6698] loop1: detected capacity change from 0 to 32768
[  193.821273][ T6698] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 scanned by syz.1.226 (6698)
[  193.914673][ T6698] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  193.935727][ T6698] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm
[  193.955878][ T6698] BTRFS info (device loop1): using free space tree
[  194.133694][ T6698] BTRFS info (device loop1): enabling ssd optimizations
[  194.158223][ T6698] BTRFS info (device loop1): auto enabling async discard
[  194.480492][ T1289] ieee802154 phy0 wpan0: encryption failed: -22
[  194.486987][ T1289] ieee802154 phy1 wpan1: encryption failed: -22
[  194.726676][ T6733] loop0: detected capacity change from 0 to 64
[  195.161528][ T5795] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  196.389419][ T6740] loop3: detected capacity change from 0 to 8192
[  196.560475][ T5794] Bluetooth: hci2: command 0x0406 tx timeout
[  196.567090][ T5794] Bluetooth: hci3: command 0x0406 tx timeout
[  196.573213][ T5794] Bluetooth: hci1: command 0x0406 tx timeout
[  198.598487][ T6744] loop1: detected capacity change from 0 to 128
[  201.740447][ T6757] loop1: detected capacity change from 0 to 32768
[  201.798254][ T6757] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop1 scanned by syz.1.238 (6757)
[  201.873432][ T6757] BTRFS info (device loop1): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  201.898358][ T6757] BTRFS info (device loop1): using blake2b (blake2b-256-generic) checksum algorithm
[  201.939218][ T6757] BTRFS info (device loop1): setting incompat feature flag for COMPRESS_ZSTD (0x10)
[  201.963541][ T6757] BTRFS info (device loop1): use zstd compression, level 3
[  201.988282][ T6757] BTRFS info (device loop1): using free space tree
[  202.019118][ T6761] TCP: TCP_TX_DELAY enabled
[  202.388737][ T6757] BTRFS info (device loop1): enabling ssd optimizations
[  202.395721][ T6757] BTRFS info (device loop1): auto enabling async discard
[  202.557892][ T6781] loop0: detected capacity change from 0 to 8
[  202.687984][ T5801] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  203.203177][ T5795] BTRFS info (device loop1): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  204.934842][ T6790] loop1: detected capacity change from 0 to 512
[  205.015133][ T6790] EXT4-fs (loop1): orphan cleanup on readonly fs
[  205.069465][ T6790] EXT4-fs error (device loop1): ext4_map_blocks:608: inode #11: block 1728053262: comm syz.1.244: lblock 0 mapped to illegal pblock 1728053262 (length 1)
[  205.103752][ T6790] EXT4-fs error (device loop1): ext4_do_update_inode:5244: inode #15: comm syz.1.244: corrupted inode contents
[  205.150747][ T6790] EXT4-fs error (device loop1): ext4_dirty_inode:6120: inode #15: comm syz.1.244: mark_inode_dirty error
[  205.198238][ T6797] random: crng reseeded on system resumption
[  206.089324][ T6790] EXT4-fs error (device loop1): ext4_do_update_inode:5244: inode #15: comm syz.1.244: corrupted inode contents
[  206.156824][ T6796] loop0: detected capacity change from 0 to 8192
[  206.200422][ T6790] EXT4-fs error (device loop1): ext4_xattr_delete_inode:3017: inode #15: comm syz.1.244: mark_inode_dirty error
[  206.371555][ T6790] EXT4-fs error (device loop1): ext4_xattr_delete_inode:3020: inode #15: comm syz.1.244: mark inode dirty (error -117)
[  206.434290][ T6790] EXT4-fs warning (device loop1): ext4_evict_inode:272: xattr delete (err -117)
[  206.466712][ T6790] EXT4-fs (loop1): 1 orphan inode deleted
[  206.474388][ T6790] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  206.641130][ T5795] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  206.655095][ T6802] loop4: detected capacity change from 0 to 1024
[  206.723083][ T6802] EXT4-fs: Ignoring removed orlov option
[  206.820240][ T6802] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  206.958967][ T6802] ext4 filesystem being mounted at /12/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  207.664982][ T6802] kAFS: No cell specified
[  207.908960][  T787] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  207.931475][ T6802] EXT4-fs error (device loop4): ext4_lookup:1858: inode #15: comm syz.4.248: inode has both inline data and extents flags
[  208.029688][ T6802] futex_wake_op: syz.4.248 tries to shift op by -1; fix this program
[  208.339394][  T787] usb 2-1: Using ep0 maxpacket: 16
[  208.347084][  T787] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  208.364841][  T787] usb 2-1: New USB device found, idVendor=04b4, idProduct=1002, bcdDevice=58.ab
[  208.397041][  T787] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  208.407203][  T787] usb 2-1: Product: syz
[  208.411735][  T787] usb 2-1: Manufacturer: syz
[  208.417125][  T787] usb 2-1: SerialNumber: syz
[  208.434734][ T6563] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  208.440380][  T787] usb 2-1: config 0 descriptor??
[  209.776344][ T6830] loop3: detected capacity change from 0 to 8
[  209.907819][ T5800] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  210.152183][ T5839] usb 2-1: USB disconnect, device number 2
[  210.813112][ T6832] loop4: detected capacity change from 0 to 32768
[  210.851569][ T6832] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop4 scanned by syz.4.256 (6832)
[  210.913186][ T6838] loop0: detected capacity change from 0 to 512
[  210.941660][ T6832] BTRFS info (device loop4): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  210.992443][ T6838] EXT4-fs error (device loop0): ext4_orphan_get:1399: inode #15: comm syz.0.258: inode has both inline data and extents flags
[  211.026138][ T6832] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm
[  211.062524][ T6832] BTRFS info (device loop4): using free space tree
[  211.072598][ T6838] EXT4-fs error (device loop0): ext4_orphan_get:1404: comm syz.0.258: couldn't read orphan inode 15 (err -117)
[  211.089164][ T6838] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  211.382347][ T6832] BTRFS info (device loop4): enabling ssd optimizations
[  211.416960][ T6832] BTRFS info (device loop4): auto enabling async discard
[  211.433638][ T6857] loop3: detected capacity change from 0 to 8192
[  214.096137][ T5786] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  214.225664][   T27] audit: type=1800 audit(1762040211.878:2): pid=6862 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.261" name="SYSV798dd820" dev="hugetlbfs" ino=0 res=0 errno=0
[  214.393413][ T6563] BTRFS info (device loop4): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  217.925843][ T6882] loop4: detected capacity change from 0 to 1024
[  217.969466][ T6882] EXT4-fs: Ignoring removed orlov option
[  218.117402][ T6886] loop1: detected capacity change from 0 to 512
[  218.176736][ T6888] loop3: detected capacity change from 0 to 4096
[  218.194272][ T6882] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  218.219651][ T6882] ext4 filesystem being mounted at /15/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  218.258901][ T6886] EXT4-fs (loop1): orphan cleanup on readonly fs
[  218.266246][ T6886] EXT4-fs error (device loop1): ext4_map_blocks:608: inode #11: block 1728053262: comm syz.1.267: lblock 0 mapped to illegal pblock 1728053262 (length 1)
[  218.318482][ T6888] NILFS (loop3): invalid segment: Checksum error in segment payload
[  218.347286][ T6895] kAFS: No cell specified
[  218.370976][ T6888] NILFS (loop3): trying rollback from an earlier position
[  218.396094][ T6886] EXT4-fs error (device loop1): ext4_do_update_inode:5244: inode #15: comm syz.1.267: corrupted inode contents
[  218.451443][ T6886] EXT4-fs error (device loop1): ext4_dirty_inode:6120: inode #15: comm syz.1.267: mark_inode_dirty error
[  218.514580][ T6888] NILFS (loop3): recovery complete
[  218.543113][ T6886] EXT4-fs error (device loop1): ext4_do_update_inode:5244: inode #15: comm syz.1.267: corrupted inode contents
[  218.566602][ T6896] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  218.619405][ T6886] EXT4-fs error (device loop1): ext4_xattr_delete_inode:3017: inode #15: comm syz.1.267: mark_inode_dirty error
[  218.652140][ T6886] EXT4-fs error (device loop1): ext4_xattr_delete_inode:3020: inode #15: comm syz.1.267: mark inode dirty (error -117)
[  218.692695][ T6886] EXT4-fs warning (device loop1): ext4_evict_inode:272: xattr delete (err -117)
[  218.737041][ T6888] NILFS error (device loop3): nilfs_readdir: zero-length directory entry
[  218.743464][ T6886] EXT4-fs (loop1): 1 orphan inode deleted
[  218.776630][ T6886] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  218.805253][ T6888] Remounting filesystem read-only
[  218.839633][ T6879] EXT4-fs error (device loop4): ext4_lookup:1858: inode #15: comm syz.4.262: inode has both inline data and extents flags
[  218.955873][ T5795] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  218.980758][ T6879] futex_wake_op: syz.4.262 tries to shift op by -1; fix this program
[  219.103405][ T6899] loop3: detected capacity change from 0 to 512
[  219.203819][ T6563] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  219.228263][ T6899] EXT4-fs error (device loop3): ext4_orphan_get:1399: inode #15: comm syz.3.269: inode has both inline data and extents flags
[  219.304510][ T6899] EXT4-fs error (device loop3): ext4_orphan_get:1404: comm syz.3.269: couldn't read orphan inode 15 (err -117)
[  219.434694][ T6899] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  220.241275][   T27] audit: type=1800 audit(1762040217.898:3): pid=6907 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.271" name="SYSV798dd824" dev="hugetlbfs" ino=0 res=0 errno=0
[  220.708575][ T6908] syz.1.272: attempt to access beyond end of device
[  220.708575][ T6908] nbd1: rw=0, sector=2, nr_sectors = 2 limit=0
[  220.730668][ T6908] syz.1.272: attempt to access beyond end of device
[  220.730668][ T6908] nbd1: rw=0, sector=16, nr_sectors = 2 limit=0
[  221.018023][ T5793] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  222.495836][ T6923] loop4: detected capacity change from 0 to 512
[  222.539308][ T6923] EXT4-fs: Ignoring removed orlov option
[  222.579329][ T6923] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  222.767369][ T6923] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8002c119, mo2=0002]
[  222.810754][ T6923] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2249: inode #15: comm syz.4.278: corrupted in-inode xattr: e_value size too large
[  222.907317][ T6923] EXT4-fs error (device loop4): ext4_orphan_get:1404: comm syz.4.278: couldn't read orphan inode 15 (err -117)
[  222.949033][ T6928] netlink: 24 bytes leftover after parsing attributes in process `syz.0.279'.
[  223.020157][ T6923] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  223.051985][ T6913] loop1: detected capacity change from 0 to 32768
[  223.185124][ T6913] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 scanned by syz.1.275 (6913)
[  223.308963][ T6913] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  223.325776][ T6913] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm
[  223.334775][ T6913] BTRFS info (device loop1): enabling disk space caching
[  223.344176][ T6913] BTRFS info (device loop1): use no compression
[  223.874353][ T6563] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  223.898338][ T6913] BTRFS info (device loop1): force clearing of disk cache
[  223.973559][ T6928] loop0: detected capacity change from 0 to 8
[  224.018681][ T6913] BTRFS info (device loop1): turning on sync discard
[  224.025487][ T6913] BTRFS info (device loop1): disabling disk space caching
[  224.083271][ T6913] workqueue: Failed to create a rescuer kthread for wq "btrfs-worker": -EINTR
[  224.101504][ T6913] workqueue: Failed to create a rescuer kthread for wq "btrfs-delalloc": -EINTR
[  224.128006][ T5801] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  224.159404][ T6913] workqueue: Failed to create a rescuer kthread for wq "btrfs-flush_delalloc": -EINTR
[  224.160240][ T6913] workqueue: Failed to create a rescuer kthread for wq "btrfs-cache": -EINTR
[  224.192826][ T6913] workqueue: Failed to create a rescuer kthread for wq "btrfs-fixup": -EINTR
[  224.294794][ T6913] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio": -EINTR
[  224.407600][ T6913] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-meta": -EINTR
[  224.427083][ T6913] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-write": -EINTR
[  224.437591][ T6913] workqueue: Failed to create a rescuer kthread for wq "btrfs-compressed-write": -EINTR
[  224.451847][ T6913] workqueue: Failed to create a rescuer kthread for wq "btrfs-freespace-write": -EINTR
[  224.462574][ T6913] workqueue: Failed to create a rescuer kthread for wq "btrfs-delayed-meta": -EINTR
[  224.473393][ T6913] workqueue: Failed to create a rescuer kthread for wq "btrfs-qgroup-rescan": -EINTR
[  224.582676][ T6913] BTRFS error (device loop1): open_ctree failed: -12
[  224.739880][ T5800] I/O error, dev loop1, sector 32640 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  225.472431][ T5105] Bluetooth: hci2: ACL packet too small
[  225.620847][ T6958] loop1: detected capacity change from 0 to 512
[  225.858456][ T6958] EXT4-fs error (device loop1): ext4_orphan_get:1399: inode #15: comm syz.1.283: inode has both inline data and extents flags
[  225.928823][ T6958] EXT4-fs error (device loop1): ext4_orphan_get:1404: comm syz.1.283: couldn't read orphan inode 15 (err -117)
[  225.976729][ T6958] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  226.157967][ T6966] netlink: 24 bytes leftover after parsing attributes in process `syz.0.291'.
[  226.545185][ T6966] loop0: detected capacity change from 0 to 8
[  227.042978][ T5795] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  229.085261][ T6987] loop4: detected capacity change from 0 to 128
[  232.581405][ T7014] loop3: detected capacity change from 0 to 512
[  232.650070][ T7014] EXT4-fs (loop3): orphan cleanup on readonly fs
[  232.754956][ T7014] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #11: block 1728053262: comm syz.3.299: lblock 0 mapped to illegal pblock 1728053262 (length 1)
[  232.865146][ T7014] EXT4-fs error (device loop3): ext4_do_update_inode:5244: inode #15: comm syz.3.299: corrupted inode contents
[  233.919642][ T7014] EXT4-fs error (device loop3): ext4_dirty_inode:6120: inode #15: comm syz.3.299: mark_inode_dirty error
[  233.941303][ T7014] EXT4-fs error (device loop3): ext4_do_update_inode:5244: inode #15: comm syz.3.299: corrupted inode contents
[  234.139164][ T7014] EXT4-fs error (device loop3): ext4_xattr_delete_inode:3017: inode #15: comm syz.3.299: mark_inode_dirty error
[  234.177718][ T7014] EXT4-fs error (device loop3): ext4_xattr_delete_inode:3020: inode #15: comm syz.3.299: mark inode dirty (error -117)
[  234.231927][ T7014] EXT4-fs warning (device loop3): ext4_evict_inode:272: xattr delete (err -117)
[  234.261980][ T7014] EXT4-fs (loop3): 1 orphan inode deleted
[  234.293934][ T7014] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  234.520972][ T5793] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  234.611743][ T7031] loop0: detected capacity change from 0 to 8
[  234.701496][ T5800] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  235.054097][ T7036] loop1: detected capacity change from 0 to 128
[  235.933420][ T7035] loop3: detected capacity change from 0 to 8192
[  237.637290][ T7053] netlink: 12 bytes leftover after parsing attributes in process `syz.1.307'.
[  239.653864][ T7069] loop4: detected capacity change from 0 to 1024
[  239.674029][ T7069] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  240.116383][ T7069] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  240.130953][ T7069] EXT4-fs (loop4): orphan cleanup on readonly fs
[  240.141199][ T7069] EXT4-fs error (device loop4): ext4_free_blocks:6676: comm syz.4.311: Freeing blocks not in datazone - block = 0, count = 4096
[  240.674015][ T7069] EXT4-fs (loop4): 1 orphan inode deleted
[  240.772195][ T7080] loop0: detected capacity change from 0 to 1024
[  240.809641][ T7069] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  241.263388][ T7089] (null): rxe_set_mtu: Set mtu to 4096
[  241.273377][ T7089] rdma_rxe: rxe_newlink: failed to add lo
[  241.305558][ T5839] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  241.410479][ T7084] loop1: detected capacity change from 0 to 8192
[  241.560799][ T5839] usb 4-1: unable to get BOS descriptor or descriptor too short
[  241.887383][ T5839] usb 4-1: config 4 has an invalid interface number: 213 but max is 0
[  241.898531][ T6563] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  241.907660][ T5839] usb 4-1: config 4 has no interface number 0
[  241.917345][ T5839] usb 4-1: config 4 interface 213 has no altsetting 0
[  241.920578][ T2984] hfsplus: b-tree write err: -5, ino 4
[  241.932167][ T5839] usb 4-1: New USB device found, idVendor=052b, idProduct=1803, bcdDevice=79.86
[  241.942121][ T5839] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  241.951413][ T5839] usb 4-1: Product: syz
[  241.957602][ T5839] usb 4-1: Manufacturer: syz
[  241.962783][ T5839] usb 4-1: SerialNumber: syz
[  242.045576][ T7094] loop4: detected capacity change from 0 to 512
[  242.072622][ T7094] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  242.118722][ T7094] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  242.172739][ T7094] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.316: invalid indirect mapped block 4294967295 (level 1)
[  242.216497][ T5839] gspca_main: sunplus-2.14.0 probing 052b:1803
[  242.237640][ T5839] gspca_sunplus: reg_r err -71
[  242.258236][ T5839] sunplus: probe of 4-1:4.213 failed with error -71
[  242.310419][ T5839] usb 4-1: USB disconnect, device number 3
[  242.344220][ T7094] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.316: invalid indirect mapped block 4294967295 (level 1)
[  242.424152][ T7094] EXT4-fs (loop4): 2 truncates cleaned up
[  242.433161][ T7094] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  242.701488][ T7104] netlink: 12 bytes leftover after parsing attributes in process `syz.0.317'.
[  243.289626][  T787] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  243.324938][ T6563] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  243.703209][  T787] usb 2-1: Using ep0 maxpacket: 8
[  243.717260][  T787] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  243.735588][  T787] usb 2-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0xBE, skipping
[  243.749267][  T787] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  243.749524][ T5839] usb 1-1: new full-speed USB device number 3 using dummy_hcd
[  243.765936][  T787] usb 2-1: New USB device found, idVendor=10c5, idProduct=819a, bcdDevice=e4.46
[  243.788227][  T787] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=35
[  243.808164][  T787] usb 2-1: Product: syz
[  243.833837][  T787] usb 2-1: Manufacturer: syz
[  243.839089][  T787] usb 2-1: SerialNumber: syz
[  243.864964][  T787] usb 2-1: config 0 descriptor??
[  243.894637][  T787] radio-si470x 2-1:0.0: could not find interrupt in endpoint
[  243.906743][  T787] radio-si470x: probe of 2-1:0.0 failed with error -5
[  243.916425][  T787] usbhid 2-1:0.0: couldn't find an input interrupt endpoint
[  243.981796][ T7117] loop4: detected capacity change from 0 to 2048
[  244.038905][ T5839] usb 1-1: config 0 has an invalid interface number: 251 but max is 0
[  244.055820][ T5839] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  244.079435][ T7117] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  244.094508][ T5839] usb 1-1: config 0 has no interface number 0
[  244.108254][ T5839] usb 1-1: config 0 interface 251 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  244.156974][ T5839] usb 1-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4
[  244.166717][ T5839] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  244.174821][ T5839] usb 1-1: Product: syz
[  244.179430][ T5839] usb 1-1: Manufacturer: syz
[  244.184071][ T5839] usb 1-1: SerialNumber: syz
[  244.193804][ T5839] usb 1-1: config 0 descriptor??
[  244.203080][ T5839] asix: probe of 1-1:0.251 failed with error -22
[  244.418434][  T786] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  244.426113][ T5852] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  244.608290][ T5852] usb 4-1: Using ep0 maxpacket: 8
[  244.618590][ T5852] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  244.629940][  T786] usb 5-1: config index 0 descriptor too short (expected 117, got 102)
[  244.638450][ T5852] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  244.648508][  T786] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  244.658684][ T5852] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  244.668911][ T5852] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  244.682021][ T5852] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  244.691509][ T5852] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  244.703405][  T786] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  244.713672][  T786] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  244.724698][  T786] usb 5-1: Product: syz
[  244.729018][  T786] usb 5-1: Manufacturer: syz
[  244.733681][  T786] usb 5-1: SerialNumber: syz
[  244.752848][  T786] usb 5-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  244.792327][ T5839] usb 5-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  244.926743][ T5852] usb 4-1: GET_CAPABILITIES returned 0
[  244.932442][ T5852] usbtmc 4-1:16.0: can't read capabilities
[  245.324050][  T787] usb 2-1: USB disconnect, device number 3
[  245.342228][ T2198] usb 4-1: USB disconnect, device number 4
[  246.036503][ T5796] usb 5-1: USB disconnect, device number 2
[  246.106195][ T5839] usb 5-1: Service connection timeout for: 256
[  246.109405][ T7125] batman_adv: batadv0: Adding interface: gretap1
[  246.123200][ T5839] ath9k_htc 5-1:1.0: ath9k_htc: Unable to initialize HTC services
[  246.131104][ T7125] batman_adv: batadv0: Interface activated: gretap1
[  246.372600][ T5839] ath9k_htc: Failed to initialize the device
[  246.466475][ T5796] usb 5-1: ath9k_htc: USB layer deinitialized
[  246.699280][ T7133] loop1: detected capacity change from 0 to 64
[  246.919586][ T7132] loop3: detected capacity change from 0 to 8192
[  247.560513][ T7138] loop1: detected capacity change from 0 to 512
[  247.571744][ T7138] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  247.607336][ T7138] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  247.730696][ T7138] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.329: invalid indirect mapped block 4294967295 (level 1)
[  248.120233][ T7138] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.329: invalid indirect mapped block 4294967295 (level 1)
[  248.136537][  T787] usb 1-1: USB disconnect, device number 3
[  248.195314][ T7138] EXT4-fs (loop1): 2 truncates cleaned up
[  248.225716][ T7138] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  248.315266][ T7135] loop4: detected capacity change from 0 to 32768
[  248.365631][ T7135] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 scanned by syz.4.328 (7135)
[  248.640237][ T7135] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  248.768433][ T7135] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm
[  248.805027][ T7135] BTRFS info (device loop4): using free space tree
[  248.914603][ T7154] loop3: detected capacity change from 0 to 512
[  248.952169][ T7149] loop0: detected capacity change from 0 to 4096
[  248.959851][ T7154] EXT4-fs: Ignoring removed i_version option
[  248.965873][ T7154] EXT4-fs: Ignoring removed bh option
[  249.118387][ T7142] EXT4-fs error (device loop1): ext4_validate_block_bitmap:430: comm ext4lazyinit: bg 0: block 5: invalid block bitmap
[  249.173509][ T7170] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  249.211084][ T7154] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  249.254797][ T5795] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  249.283924][ T7135] BTRFS info (device loop4): enabling ssd optimizations
[  249.298933][ T7154] ext4 filesystem being mounted at /82/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  249.327082][ T7135] BTRFS info (device loop4): auto enabling async discard
[  249.543609][ T7135] fs-verity: sha512 using implementation "sha512-avx2"
[  249.560573][ T7174] loop1: detected capacity change from 0 to 512
[  249.613195][ T7135] BTRFS info (device loop4): setting compat-ro feature flag for VERITY (0x4)
[  249.666844][ T5793] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  249.726293][ T7174] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  249.749859][ T7174] ext4 filesystem being mounted at /80/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  249.766850][ T6563] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  249.876376][ T5795] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  249.938252][ T5839] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  250.006060][ T7184] loop3: detected capacity change from 0 to 1024
[  250.034754][ T7184] EXT4-fs: Ignoring removed orlov option
[  250.107988][ T7184] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  250.167046][ T5839] usb 1-1: Using ep0 maxpacket: 8
[  250.248831][ T7184] ext4 filesystem being mounted at /83/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  250.298537][ T5839] usb 1-1: unable to get BOS descriptor or descriptor too short
[  250.340993][ T5839] usb 1-1: config 4 interface 0 has no altsetting 0
[  250.849042][ T5839] usb 1-1: string descriptor 0 read error: -22
[  250.866980][ T5839] usb 1-1: New USB device found, idVendor=058f, idProduct=6610, bcdDevice=48.05
[  250.968317][ T7184] kAFS: No cell specified
[  251.043053][ T5839] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  251.062360][ T5839] usb 1-1: dvb_usb_v2: found a 'Sigmatek DVB-110' in warm state
[  251.121998][ T5839] usb 1-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  251.138719][ T5839] dvbdev: DVB: registering new adapter (Sigmatek DVB-110)
[  251.146255][ T5839] usb 1-1: media controller created
[  251.319836][ T5839] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  252.078340][ T7179] usb 1-1: dvb_usb_au6610: wlen=0, aborting
[  252.215101][ T5839] zl10353_read_register: readreg error (reg=127, ret==0)
[  252.350605][ T7184] EXT4-fs error (device loop3): ext4_lookup:1858: inode #15: comm syz.3.337: inode has both inline data and extents flags
[  252.637698][ T7184] futex_wake_op: syz.3.337 tries to shift op by -1; fix this program
[  252.675618][ T5839] usb 1-1: USB disconnect, device number 4
[  252.847595][ T7201] loop4: detected capacity change from 0 to 8192
[  252.856042][ T5793] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  253.551844][ T7210] loop0: detected capacity change from 0 to 512
[  253.606422][ T7210] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  253.660165][ T7210] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  253.714561][ T7210] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.344: invalid indirect mapped block 4294967295 (level 1)
[  253.818797][ T7211] loop1: detected capacity change from 0 to 128
[  253.843908][ T7210] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.344: invalid indirect mapped block 4294967295 (level 1)
[  253.882747][ T7210] EXT4-fs (loop0): 2 truncates cleaned up
[  253.942704][ T7210] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  255.943083][ T1289] ieee802154 phy0 wpan0: encryption failed: -22
[  255.949569][ T1289] ieee802154 phy1 wpan1: encryption failed: -22
[  256.026111][ T5786] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  257.936395][ T7225] loop1: detected capacity change from 0 to 32768
[  257.991518][ T7225] (syz.1.347,7225,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  258.011007][ T7225] (syz.1.347,7225,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  258.056812][ T7225] JBD2: Ignoring recovery information on journal
[  258.220638][ T7225] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  258.221530][ T7244] loop4: detected capacity change from 0 to 1024
[  258.244187][ T7244] EXT4-fs: Ignoring removed orlov option
[  258.305937][ T7244] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  258.459984][ T7244] ext4 filesystem being mounted at /35/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  258.542937][ T5795] ocfs2: Unmounting device (7,1) on (node local)
[  258.664014][ T7244] kAFS: No cell specified
[  258.971282][ T7244] EXT4-fs error (device loop4): ext4_lookup:1858: inode #15: comm syz.4.352: inode has both inline data and extents flags
[  259.019819][ T7244] futex_wake_op: syz.4.352 tries to shift op by -1; fix this program
[  259.310512][ T6563] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  260.436507][ T7258] loop1: detected capacity change from 0 to 128
[  260.493951][ T7261] loop3: detected capacity change from 0 to 512
[  260.641109][ T7261] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  260.857390][ T7261] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  261.128422][ T7261] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.357: invalid indirect mapped block 4294967295 (level 1)
[  261.296418][ T7265] loop1: detected capacity change from 0 to 512
[  261.326436][ T7261] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.357: invalid indirect mapped block 4294967295 (level 1)
[  261.353856][ T7261] EXT4-fs (loop3): 2 truncates cleaned up
[  261.365478][ T7261] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  261.399200][ T7265] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  261.614432][ T7265] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  261.648035][ T7265] ext4 filesystem being mounted at /89/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  261.846836][ T5793] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  262.018782][ T5795] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  262.137576][ T7279] loop0: detected capacity change from 0 to 1024
[  262.272617][ T7279] EXT4-fs: Ignoring removed orlov option
[  262.307615][ T7281] qrtr: Invalid version 8
[  264.897149][ T7279] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  264.928448][ T7279] ext4 filesystem being mounted at /95/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  265.124493][ T7289] kAFS: No cell specified
[  265.277722][ T7277] EXT4-fs error (device loop0): ext4_lookup:1858: inode #15: comm syz.0.363: inode has both inline data and extents flags
[  266.194178][ T7277] futex_wake_op: syz.0.363 tries to shift op by -1; fix this program
[  266.220178][ T7295] netlink: 'syz.4.365': attribute type 1 has an invalid length.
[  266.231533][ T7288] EXT4-fs error (device loop0): ext4_validate_block_bitmap:439: comm ext4lazyinit: bg 0: block 376: padding at end of block bitmap is not set
[  267.384470][ T7295] 8021q: adding VLAN 0 to HW filter on device bond1
[  267.475118][ T5786] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  267.756402][ T7310] loop0: detected capacity change from 0 to 64
[  267.825008][ T7300] bond1: (slave veth3): Enslaving as an active interface with a down link
[  268.155839][ T7300] netlink: 24 bytes leftover after parsing attributes in process `syz.4.365'.
[  268.171162][ T7315] loop3: detected capacity change from 0 to 512
[  268.196605][ T7315] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  268.219043][ T7315] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  268.291973][ T7315] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.369: invalid indirect mapped block 4294967295 (level 1)
[  268.357515][ T7315] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.369: invalid indirect mapped block 4294967295 (level 1)
[  268.375927][ T7300] bond1: (slave dummy0): making interface the new active one
[  268.380075][ T7315] EXT4-fs (loop3): 2 truncates cleaned up
[  268.392309][ T7315] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  268.407870][ T7300] dummy0: entered promiscuous mode
[  268.421450][ T7300] bond1: (slave dummy0): Enslaving as an active interface with an up link
[  268.860035][ T5793] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  269.346728][ T7330] loop3: detected capacity change from 0 to 128
[  270.257426][ T7337] loop3: detected capacity change from 0 to 2048
[  270.328168][ T7340] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  270.484637][ T7342] qrtr: Invalid version 8
[  274.755982][ T7350] binder: 7348:7350 ioctl c0306201 200000000b40 returned -14
[  275.198373][  T787] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  275.474042][  T787] usb 2-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36
[  275.489073][  T787] usb 2-1: New USB device strings: Mfr=241, Product=2, SerialNumber=3
[  275.513450][  T787] usb 2-1: Product: syz
[  275.517796][  T787] usb 2-1: Manufacturer: syz
[  275.522806][  T787] usb 2-1: SerialNumber: syz
[  275.562572][  T787] usb 2-1: config 0 descriptor??
[  275.569316][ T7362] loop4: detected capacity change from 0 to 512
[  275.578221][ T5870] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  275.591413][  T787] ch341 2-1:0.0: ch341-uart converter detected
[  275.617502][ T7362] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  275.681985][ T7362] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  275.730759][ T7362] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.382: invalid indirect mapped block 4294967295 (level 1)
[  275.750411][ T7362] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.382: invalid indirect mapped block 4294967295 (level 1)
[  275.802955][ T7362] EXT4-fs (loop4): 2 truncates cleaned up
[  275.810591][ T7362] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  275.838424][ T5870] usb 1-1: config index 0 descriptor too short (expected 23569, got 27)
[  275.873998][ T5870] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  275.910696][ T5870] usb 1-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  275.933529][ T5870] usb 1-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  275.985919][ T5870] usb 1-1: Manufacturer: syz
[  276.100077][ T5870] usb 1-1: config 0 descriptor??
[  276.112188][ T6563] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  276.426100][  T787] usb 2-1: failed to send control message: -71
[  276.433111][ T5870] rc_core: IR keymap rc-hauppauge not found
[  276.453353][  T787] ch341-uart: probe of ttyUSB0 failed with error -71
[  276.460159][ T5870] Registered IR keymap rc-empty
[  276.752513][ T5870] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/rc/rc0
[  276.766154][  T787] usb 2-1: USB disconnect, device number 4
[  276.775238][ T5870] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/rc/rc0/input5
[  276.795440][  T787] ch341 2-1:0.0: device disconnected
[  279.262236][ T7376] loop4: detected capacity change from 0 to 8192
[  281.099043][ T7395] qrtr: Invalid version 8
[  282.361379][  T786] usb 1-1: USB disconnect, device number 5
[  283.641830][ T2941] dummy0: left promiscuous mode
[  285.127228][ T7405] loop1: detected capacity change from 0 to 512
[  285.150905][ T7405] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  285.170113][ T7405] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  285.210430][ T7405] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.392: invalid indirect mapped block 4294967295 (level 1)
[  285.237794][ T7405] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.392: invalid indirect mapped block 4294967295 (level 1)
[  285.250545][ T7409] loop0: detected capacity change from 0 to 1764
[  285.279357][ T7405] EXT4-fs (loop1): 2 truncates cleaned up
[  285.293536][ T7405] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  285.373627][ T5801] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  285.446716][ T5795] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  286.275869][ T7417] loop1: detected capacity change from 0 to 8192
[  287.077268][ T7428] loop0: detected capacity change from 0 to 128
[  287.177655][ T5800] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  288.008306][ T5870] usb 1-1: new low-speed USB device number 6 using dummy_hcd
[  288.346661][ T5839] libceph: connect (1)[c::]:6789 error -101
[  288.359895][ T5839] libceph: mon0 (1)[c::]:6789 connect error
[  288.447184][ T5870] usb 1-1: Invalid ep0 maxpacket: 64
[  288.620717][ T5839] libceph: connect (1)[c::]:6789 error -101
[  288.626834][ T5839] libceph: mon0 (1)[c::]:6789 connect error
[  288.639236][ T5870] usb 1-1: new low-speed USB device number 7 using dummy_hcd
[  289.028253][ T5870] usb 1-1: Invalid ep0 maxpacket: 64
[  289.033773][ T5870] usb usb1-port1: attempt power cycle
[  289.148537][ T5852] libceph: connect (1)[c::]:6789 error -101
[  289.155148][ T5852] libceph: mon0 (1)[c::]:6789 connect error
[  289.458489][ T5870] usb 1-1: new low-speed USB device number 8 using dummy_hcd
[  289.510001][ T5870] usb 1-1: Invalid ep0 maxpacket: 64
[  289.650823][ T7456] input: syz0 as /devices/virtual/input/input6
[  289.668332][ T5870] usb 1-1: new low-speed USB device number 9 using dummy_hcd
[  289.718871][ T5870] usb 1-1: Invalid ep0 maxpacket: 64
[  289.748581][ T5870] usb usb1-port1: unable to enumerate USB device
[  289.809505][ T7456] syz.1.404 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  290.068606][ T5839] libceph: connect (1)[c::]:6789 error -101
[  290.083034][ T5839] libceph: mon0 (1)[c::]:6789 connect error
[  290.270553][ T7435] ceph: No mds server is up or the cluster is laggy
[  292.206775][ T7458] loop3: detected capacity change from 0 to 32768
[  292.248893][ T7468] loop0: detected capacity change from 0 to 8192
[  293.375904][ T7458] workqueue: Failed to create a rescuer kthread for wq "ocfs2_wq": -EINTR
[  293.376290][ T7458] (syz.3.407,7458,0):ocfs2_initialize_super:2285 ERROR: status = -12
[  293.460778][ T7458] (syz.3.407,7458,1):ocfs2_fill_super:1178 ERROR: status = -12
[  293.699122][ T7480] binder_alloc: 7478: binder_alloc_buf size 16777216 failed, no address space
[  293.717518][ T7481] loop4: detected capacity change from 0 to 512
[  293.742975][ T7480] binder_alloc: allocated: 0 (num: 0 largest: 0), free: 12288 (num: 1 largest: 12288)
[  293.858941][ T7481] EXT4-fs error (device loop4): ext4_orphan_get:1399: inode #15: comm syz.4.413: inode has both inline data and extents flags
[  293.968230][ T7481] EXT4-fs error (device loop4): ext4_orphan_get:1404: comm syz.4.413: couldn't read orphan inode 15 (err -117)
[  294.028934][ T7481] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  294.209832][ T6563] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  296.976978][ T7489] loop3: detected capacity change from 0 to 32768
[  297.037884][ T7489] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  297.113880][ T7489] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  298.292467][ T7489] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms
[  298.376109][ T5870] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  298.384659][ T5870] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  298.435720][ T7511] loop1: detected capacity change from 0 to 1024
[  298.455294][ T7511] EXT4-fs: Ignoring removed orlov option
[  298.515973][ T7511] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  298.573207][ T5870] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 188ms
[  298.594449][ T5870] gfs2: fsid=syz:syz.0: jid=0: Done
[  298.601128][ T7511] ext4 filesystem being mounted at /105/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  298.611597][ T7489] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  298.653686][ T7489] gfs2: fsid=syz:syz.0: can't create logd thread: -4
[  298.736042][ T7523] kAFS: No cell specified
[  298.948377][   T51] Bluetooth: hci0: command 0x0406 tx timeout
[  298.999307][ T7509] EXT4-fs error (device loop1): ext4_lookup:1858: inode #15: comm syz.1.421: inode has both inline data and extents flags
[  299.060072][ T7509] futex_wake_op: syz.1.421 tries to shift op by -1; fix this program
[  299.404577][ T5795] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  301.130970][ T7541] loop1: detected capacity change from 0 to 256
[  301.167032][ T7541] exfat: Deprecated parameter 'namecase'
[  301.196882][ T7541] exFAT-fs (loop1): Medium has reported failures. Some data may be lost.
[  301.374063][ T7541] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x7f1fc68d, utbl_chksum : 0xe619d30d)
[  304.421857][ T7561] loop0: detected capacity change from 0 to 512
[  304.522450][ T7561] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem
[  304.643881][ T7561] EXT4-fs error (device loop0): ext4_orphan_get:1399: inode #15: comm syz.0.432: iget: bogus i_mode (5)
[  304.694806][ T7561] EXT4-fs error (device loop0): ext4_orphan_get:1404: comm syz.0.432: couldn't read orphan inode 15 (err -117)
[  304.782212][ T7561] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  304.895243][ T7561] ext2 filesystem being mounted at /112/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  306.856016][ T5786] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  308.894696][ T7584] loop1: detected capacity change from 0 to 4096
[  310.949380][ T7596] loop4: detected capacity change from 0 to 1024
[  310.961228][ T7596] EXT4-fs: Ignoring removed orlov option
[  311.094112][ T7596] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  311.129755][ T7596] ext4 filesystem being mounted at /58/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  311.338821][ T7604] kAFS: No cell specified
[  311.622516][ T7604] EXT4-fs error (device loop4): ext4_lookup:1858: inode #15: comm syz.4.440: inode has both inline data and extents flags
[  311.664504][ T7606] loop1: detected capacity change from 0 to 512
[  311.795132][ T7606] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[  311.804148][ T7609] loop0: detected capacity change from 0 to 512
[  311.818291][ T7609] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  311.836936][ T7609] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  311.868476][ T7609] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.443: invalid indirect mapped block 4294967295 (level 1)
[  311.928777][ T7609] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.443: invalid indirect mapped block 4294967295 (level 1)
[  311.970118][ T7604] futex_wake_op: syz.4.440 tries to shift op by -1; fix this program
[  312.004280][ T7609] EXT4-fs (loop0): 2 truncates cleaned up
[  312.011156][ T7606] EXT4-fs error (device loop1): ext4_orphan_get:1399: inode #15: comm syz.1.442: iget: bogus i_mode (5)
[  312.068373][ T7602] EXT4-fs error (device loop4): ext4_validate_block_bitmap:439: comm ext4lazyinit: bg 0: block 376: padding at end of block bitmap is not set
[  312.100597][ T7609] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  312.139739][ T7606] EXT4-fs error (device loop1): ext4_orphan_get:1404: comm syz.1.442: couldn't read orphan inode 15 (err -117)
[  312.248508][ T7606] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  312.264636][ T7606] ext2 filesystem being mounted at /110/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  312.296113][ T6563] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  313.639493][ T7603] loop3: detected capacity change from 0 to 32768
[  313.681513][ T5786] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  314.069415][ T7603] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  314.418931][ T5793] (syz-executor,5793,0):ocfs2_inode_is_valid_to_delete:872 ERROR: Skipping delete of system file 72
[  314.455234][ T7623] loop0: detected capacity change from 0 to 512
[  314.538404][ T7623] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  314.584907][ T5793] ocfs2: Unmounting device (7,3) on (node local)
[  314.621164][ T7623] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.445: invalid indirect mapped block 4294967295 (level 1)
[  314.709416][ T7623] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.445: invalid indirect mapped block 4294967295 (level 1)
[  314.817375][ T7623] EXT4-fs (loop0): 2 truncates cleaned up
[  314.843850][ T7623] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  315.022717][ T7623] EXT4-fs error (device loop0): ext4_get_parent:1906: inode #11: comm syz.0.445: bad parent inode number: 3
[  315.460804][ T5795] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  316.066677][ T5786] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  316.686578][ T7638] loop4: detected capacity change from 0 to 4096
[  317.288897][ T7649] loop4: detected capacity change from 0 to 22
[  317.331045][ T7649] MTD: Attempt to mount non-MTD device "/dev/loop4"
[  317.367819][ T1289] ieee802154 phy0 wpan0: encryption failed: -22
[  317.379526][ T1289] ieee802154 phy1 wpan1: encryption failed: -22
[  317.473833][ T7649] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  318.614030][ T7655] loop3: detected capacity change from 0 to 64
[  320.281728][ T7664] ip6gretap0: entered promiscuous mode
[  320.287839][ T7664] macsec1: entered promiscuous mode
[  320.342337][ T7664] ip6gretap0: left promiscuous mode
[  320.791916][ T7672] loop4: detected capacity change from 0 to 256
[  320.806687][ T7671] loop1: detected capacity change from 0 to 1024
[  320.814630][ T7672] exfat: Deprecated parameter 'namecase'
[  320.844436][ T7672] exFAT-fs (loop4): Medium has reported failures. Some data may be lost.
[  320.870945][ T7671] EXT4-fs: Ignoring removed orlov option
[  321.017596][ T7672] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x7f1fc68d, utbl_chksum : 0xe619d30d)
[  321.097703][ T7671] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  321.175588][ T7671] ext4 filesystem being mounted at /113/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  321.594859][ T7682] kAFS: No cell specified
[  321.893209][ T7682] EXT4-fs error (device loop1): ext4_lookup:1858: inode #15: comm syz.1.459: inode has both inline data and extents flags
[  322.052481][ T7684] futex_wake_op: syz.1.459 tries to shift op by -1; fix this program
[  322.600624][ T5795] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  322.614792][ T7666] loop3: detected capacity change from 0 to 32768
[  322.647538][ T7666] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 scanned by syz.3.458 (7666)
[  322.669338][ T7666] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  322.752113][ T7666] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[  322.783850][ T7666] BTRFS info (device loop3): using free space tree
[  322.944324][ T7666] BTRFS info (device loop3): enabling ssd optimizations
[  322.966252][ T7666] BTRFS info (device loop3): auto enabling async discard
[  323.507672][   T27] audit: type=1800 audit(1762040321.148:4): pid=7707 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.458" name="file1" dev="loop3" ino=260 res=0 errno=0
[  323.803052][ T5793] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  323.824761][ T7713] loop0: detected capacity change from 0 to 512
[  323.848677][ T7713] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  323.898230][ T7713] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  323.952838][ T7713] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.464: invalid indirect mapped block 4294967295 (level 1)
[  324.031302][ T7713] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.464: invalid indirect mapped block 4294967295 (level 1)
[  324.170201][ T7713] EXT4-fs (loop0): 2 truncates cleaned up
[  324.230772][ T7713] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  325.894691][ T7720] loop3: detected capacity change from 0 to 32768
[  325.952471][ T7720] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop3 scanned by syz.3.465 (7720)
[  326.032037][ T7720] BTRFS info (device loop3): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  326.078404][ T7720] BTRFS info (device loop3): using blake2b (blake2b-256-generic) checksum algorithm
[  326.089285][ T7720] BTRFS info (device loop3): setting incompat feature flag for COMPRESS_ZSTD (0x10)
[  326.100165][ T7720] BTRFS info (device loop3): use zstd compression, level 3
[  326.107412][ T7720] BTRFS info (device loop3): using free space tree
[  326.307757][ T7720] BTRFS info (device loop3): enabling ssd optimizations
[  326.342085][ T7720] BTRFS info (device loop3): auto enabling async discard
[  326.355234][ T5786] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  326.402837][ T7747] loop1: detected capacity change from 0 to 256
[  326.466211][   T27] audit: type=1800 audit(1762040324.108:5): pid=7720 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.465" name="file1" dev="loop3" ino=260 res=0 errno=0
[  326.597270][ T7747] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  327.021099][ T5793] BTRFS info (device loop3): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  329.897729][ T7770] loop3: detected capacity change from 0 to 256
[  329.979976][ T7770] exfat: Deprecated parameter 'namecase'
[  330.041536][ T7770] exFAT-fs (loop3): Medium has reported failures. Some data may be lost.
[  330.221702][ T7770] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x7f1fc68d, utbl_chksum : 0xe619d30d)
[  330.345852][ T7775] loop4: detected capacity change from 0 to 1024
[  330.379255][ T7775] EXT4-fs: Ignoring removed i_version option
[  330.417386][ T7775] EXT4-fs: inline encryption not supported
[  330.447814][ T7775] EXT4-fs: Ignoring removed i_version option
[  332.016826][ T7773] loop1: detected capacity change from 0 to 32768
[  335.293236][ T7786] loop3: detected capacity change from 0 to 128
[  336.984452][ T7799] loop4: detected capacity change from 0 to 8192
[  337.024635][ T7802] netlink: 24 bytes leftover after parsing attributes in process `syz.3.486'.
[  337.169732][ T7802] loop3: detected capacity change from 0 to 8
[  337.212273][ T5801] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  337.278551][ T7807] loop1: detected capacity change from 0 to 512
[  337.318317][ T7807] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  337.361820][ T7807] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.479: invalid indirect mapped block 4294967295 (level 1)
[  337.403158][ T7807] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.479: invalid indirect mapped block 4294967295 (level 1)
[  337.428927][ T7807] EXT4-fs (loop1): 2 truncates cleaned up
[  337.436055][ T7807] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  337.584872][ T7807] EXT4-fs error (device loop1): ext4_get_parent:1906: inode #11: comm syz.1.479: bad parent inode number: 3
[  337.726343][ T5795] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  337.900807][ T7816] loop3: detected capacity change from 0 to 8
[  338.062721][ T7816] SQUASHFS error: zlib decompression failed, data probably corrupt
[  338.129293][ T7816] SQUASHFS error: Failed to read block 0x4e8: -5
[  338.162814][   T27] audit: type=1800 audit(1762040335.818:6): pid=7816 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.491" name="file1" dev="loop3" ino=5 res=0 errno=0
[  338.183192][ T7804] loop0: detected capacity change from 0 to 32768
[  338.250577][ T7804] (syz.0.487,7804,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  338.432872][ T7804] (syz.0.487,7804,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  338.464175][ T7821] comedi: No check for data length of config insn id 6 is implemented
[  338.472651][ T7821] comedi: Add a check to check_insn_config_length in drivers/comedi/comedi_fops.c
[  338.482423][ T7821] comedi: Assuming n=419 is correct
[  339.288943][ T7804] JBD2: Ignoring recovery information on journal
[  339.443598][ T7813] loop4: detected capacity change from 0 to 32768
[  339.483630][ T7804] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  340.243492][ T7832] loop3: detected capacity change from 0 to 128
[  340.324247][ T5801] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  340.819880][ T7804] syz.0.487 (7804) used greatest stack depth: 18448 bytes left
[  340.901676][ T7837] loop4: detected capacity change from 0 to 64
[  341.071017][ T5786] ocfs2: Unmounting device (7,0) on (node local)
[  341.119669][ T7841] loop4: detected capacity change from 0 to 512
[  341.156639][ T7841] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  341.244110][ T7841] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.499: invalid indirect mapped block 4294967295 (level 1)
[  341.356831][ T7841] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.499: invalid indirect mapped block 4294967295 (level 1)
[  341.402962][ T7841] EXT4-fs (loop4): 2 truncates cleaned up
[  341.417380][ T7841] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  341.596796][ T6563] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  341.679778][ T7845] loop0: detected capacity change from 0 to 1024
[  341.687257][ T7845] EXT4-fs: Ignoring removed i_version option
[  341.749575][ T7845] EXT4-fs: inline encryption not supported
[  341.755468][ T7845] EXT4-fs: Ignoring removed i_version option
[  342.156565][ T7849] netlink: 24 bytes leftover after parsing attributes in process `syz.4.500'.
[  343.227982][ T7849] loop4: detected capacity change from 0 to 8
[  343.356472][ T5800] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  343.644443][ T7838] ALSA: mixer_oss: invalid OSS volume './file0'
[  343.941519][ T7866] loop1: detected capacity change from 0 to 8192
[  345.215247][ T7874] loop4: detected capacity change from 0 to 512
[  345.237267][ T7874] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  345.303265][ T7874] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.508: invalid indirect mapped block 4294967295 (level 1)
[  345.381875][ T7874] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.508: invalid indirect mapped block 4294967295 (level 1)
[  345.412634][ T7874] EXT4-fs (loop4): 2 truncates cleaned up
[  345.424745][ T7874] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  345.681428][ T6563] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  345.754578][ T7872] loop1: detected capacity change from 0 to 32768
[  346.165552][ T7872] ocfs2: Mounting device (7,1) on (node local, slot 0) with writeback data mode.
[  346.534828][   T27] audit: type=1800 audit(1762040344.168:7): pid=7872 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.507" name="file1" dev="loop1" ino=17058 res=0 errno=0
[  346.961432][ T7893] loop3: detected capacity change from 0 to 40427
[  346.974709][ T7893] F2FS-fs (loop3): invalid crc value
[  346.983352][ T7893] F2FS-fs (loop3): Found nat_bits in checkpoint
[  347.068911][ T7893] F2FS-fs (loop3): Start checkpoint disabled!
[  347.096156][ T7893] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[  347.211000][ T7872] 
[  347.213367][ T7872] ======================================================
[  347.220392][ T7872] WARNING: possible circular locking dependency detected
[  347.227432][ T7872] syzkaller #0 Not tainted
[  347.231868][ T7872] ------------------------------------------------------
[  347.238904][ T7872] syz.1.507/7872 is trying to acquire lock:
[  347.244812][ T7872] ffff888027574608 (sb_internal#4){.+.+}-{0:0}, at: ocfs2_setattr+0x95a/0x1b20
[  347.253835][ T7872] 
[  347.253835][ T7872] but task is already holding lock:
[  347.261218][ T7872] ffff88805e3aa2e0 (&oi->ip_alloc_sem){+.+.}-{3:3}, at: ocfs2_setattr+0x94b/0x1b20
[  347.270572][ T7872] 
[  347.270572][ T7872] which lock already depends on the new lock.
[  347.270572][ T7872] 
[  347.280999][ T7872] 
[  347.280999][ T7872] the existing dependency chain (in reverse order) is:
[  347.290128][ T7872] 
[  347.290128][ T7872] -> #4 (&oi->ip_alloc_sem){+.+.}-{3:3}:
[  347.297992][ T7872]        down_write+0x97/0x1f0
[  347.302801][ T7872]        ocfs2_try_remove_refcount_tree+0xb7/0x320
[  347.309330][ T7872]        ocfs2_xattr_set+0x596/0x11f0
[  347.314729][ T7872]        ocfs2_set_acl+0x4e1/0x590
[  347.319870][ T7872]        ocfs2_iop_set_acl+0x1ab/0x2a0
[  347.325364][ T7872]        vfs_set_acl+0x803/0xa60
[  347.330333][ T7872]        path_setxattr+0x39f/0x550
[  347.335473][ T7872]        __x64_sys_setxattr+0xbb/0xd0
[  347.340877][ T7872]        do_syscall_64+0x55/0xb0
[  347.345846][ T7872]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  347.352286][ T7872] 
[  347.352286][ T7872] -> #3 (&oi->ip_xattr_sem){++++}-{3:3}:
[  347.360138][ T7872]        down_read+0x46/0x2e0
[  347.364855][ T7872]        ocfs2_init_acl+0x2fa/0x720
[  347.370089][ T7872]        ocfs2_mknod+0x12e5/0x20f0
[  347.375226][ T7872]        ocfs2_create+0x196/0x410
[  347.380271][ T7872]        vfs_create+0x1f4/0x360
[  347.385165][ T7872]        do_mknodat+0x3c8/0x4f0
[  347.390040][ T7872]        __x64_sys_mknod+0x8e/0xa0
[  347.395182][ T7872]        do_syscall_64+0x55/0xb0
[  347.400149][ T7872]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  347.406606][ T7872] 
[  347.406606][ T7872] -> #2 (jbd2_handle){++++}-{0:0}:
[  347.413954][ T7872]        start_this_handle+0x1e9d/0x20c0
[  347.419632][ T7872]        jbd2__journal_start+0x2bb/0x5b0
[  347.425296][ T7872]        jbd2_journal_start+0x2a/0x40
[  347.430698][ T7872]        ocfs2_start_trans+0x376/0x6c0
[  347.436281][ T7872]        ocfs2_modify_bh+0xe9/0x470
[  347.441508][ T7872]        ocfs2_local_read_info+0x13fd/0x1770
[  347.447517][ T7872]        dquot_load_quota_sb+0x757/0xb80
[  347.453184][ T7872]        dquot_load_quota_inode+0x2dc/0x5d0
[  347.459104][ T7872]        ocfs2_enable_quotas+0x1c7/0x440
[  347.464765][ T7872]        ocfs2_fill_super+0x3f6d/0x4d90
[  347.470333][ T7872]        mount_bdev+0x22b/0x2d0
[  347.475206][ T7872]        legacy_get_tree+0xea/0x180
[  347.480431][ T7872]        vfs_get_tree+0x8c/0x280
[  347.485394][ T7872]        do_new_mount+0x24b/0xa40
[  347.490445][ T7872]        __se_sys_mount+0x2da/0x3c0
[  347.495754][ T7872]        do_syscall_64+0x55/0xb0
[  347.500721][ T7872]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  347.507165][ T7872] 
[  347.507165][ T7872] -> #1 (&journal->j_trans_barrier){.+.+}-{3:3}:
[  347.515728][ T7872]        down_read+0x46/0x2e0
[  347.520462][ T7872]        ocfs2_start_trans+0x36a/0x6c0
[  347.525970][ T7872]        ocfs2_modify_bh+0xe9/0x470
[  347.531198][ T7872]        ocfs2_local_read_info+0x13fd/0x1770
[  347.537212][ T7872]        dquot_load_quota_sb+0x757/0xb80
[  347.542882][ T7872]        dquot_load_quota_inode+0x2dc/0x5d0
[  347.548814][ T7872]        ocfs2_enable_quotas+0x1c7/0x440
[  347.554473][ T7872]        ocfs2_fill_super+0x3f6d/0x4d90
[  347.560048][ T7872]        mount_bdev+0x22b/0x2d0
[  347.564940][ T7872]        legacy_get_tree+0xea/0x180
[  347.570166][ T7872]        vfs_get_tree+0x8c/0x280
[  347.575128][ T7872]        do_new_mount+0x24b/0xa40
[  347.580186][ T7872]        __se_sys_mount+0x2da/0x3c0
[  347.585403][ T7872]        do_syscall_64+0x55/0xb0
[  347.590371][ T7872]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  347.596811][ T7872] 
[  347.596811][ T7872] -> #0 (sb_internal#4){.+.+}-{0:0}:
[  347.604332][ T7872]        __lock_acquire+0x2ddb/0x7c80
[  347.609730][ T7872]        lock_acquire+0x197/0x410
[  347.614817][ T7872]        ocfs2_start_trans+0x26b/0x6c0
[  347.620310][ T7872]        ocfs2_setattr+0x95a/0x1b20
[  347.625529][ T7872]        notify_change+0xb0d/0xe10
[  347.630648][ T7872]        do_truncate+0x19b/0x220
[  347.635588][ T7872]        do_sys_ftruncate+0x325/0x3d0
[  347.640965][ T7872]        do_syscall_64+0x55/0xb0
[  347.645912][ T7872]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  347.652340][ T7872] 
[  347.652340][ T7872] other info that might help us debug this:
[  347.652340][ T7872] 
[  347.662569][ T7872] Chain exists of:
[  347.662569][ T7872]   sb_internal#4 --> &oi->ip_xattr_sem --> &oi->ip_alloc_sem
[  347.662569][ T7872] 
[  347.675809][ T7872]  Possible unsafe locking scenario:
[  347.675809][ T7872] 
[  347.683260][ T7872]        CPU0                    CPU1
[  347.688626][ T7872]        ----                    ----
[  347.693990][ T7872]   lock(&oi->ip_alloc_sem);
[  347.698590][ T7872]                                lock(&oi->ip_xattr_sem);
[  347.705704][ T7872]                                lock(&oi->ip_alloc_sem);
[  347.712824][ T7872]   rlock(sb_internal#4);
[  347.717166][ T7872] 
[  347.717166][ T7872]  *** DEADLOCK ***
[  347.717166][ T7872] 
[  347.725306][ T7872] 3 locks held by syz.1.507/7872:
[  347.730329][ T7872]  #0: ffff888027574418 (sb_writers#32){.+.+}-{0:0}, at: do_sys_ftruncate+0x281/0x3d0
[  347.739920][ T7872]  #1: ffff88805e3aa658 (&sb->s_type->i_mutex_key#35){+.+.}-{3:3}, at: do_truncate+0x187/0x220
[  347.750284][ T7872]  #2: ffff88805e3aa2e0 (&oi->ip_alloc_sem){+.+.}-{3:3}, at: ocfs2_setattr+0x94b/0x1b20
[  347.760040][ T7872] 
[  347.760040][ T7872] stack backtrace:
[  347.765928][ T7872] CPU: 0 PID: 7872 Comm: syz.1.507 Not tainted syzkaller #0
[  347.773213][ T7872] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  347.783273][ T7872] Call Trace:
[  347.786558][ T7872]  <TASK>
[  347.789499][ T7872]  dump_stack_lvl+0x16c/0x230
[  347.794187][ T7872]  ? load_image+0x3b0/0x3b0
[  347.798696][ T7872]  ? show_regs_print_info+0x20/0x20
[  347.803908][ T7872]  ? print_circular_bug+0x12b/0x1a0
[  347.809113][ T7872]  check_noncircular+0x2bd/0x3c0
[  347.814061][ T7872]  ? print_deadlock_bug+0x5d0/0x5d0
[  347.819266][ T7872]  ? lockdep_lock+0xe0/0x220
[  347.823865][ T7872]  ? _find_first_zero_bit+0xd3/0x100
[  347.829165][ T7872]  __lock_acquire+0x2ddb/0x7c80
[  347.834043][ T7872]  ? lock_chain_count+0x20/0x20
[  347.838911][ T7872]  ? verify_lock_unused+0x140/0x140
[  347.844115][ T7872]  ? asm_sysvec_call_function_single+0x1a/0x20
[  347.850274][ T7872]  ? lockdep_hardirqs_on+0x98/0x150
[  347.855473][ T7872]  ? asm_sysvec_call_function_single+0x1a/0x20
[  347.861634][ T7872]  lock_acquire+0x197/0x410
[  347.866140][ T7872]  ? ocfs2_setattr+0x95a/0x1b20
[  347.871026][ T7872]  ? __might_sleep+0xe0/0xe0
[  347.875627][ T7872]  ? do_raw_spin_lock+0x121/0x2c0
[  347.880661][ T7872]  ? read_lock_is_recursive+0x20/0x20
[  347.886042][ T7872]  ? __rwlock_init+0x150/0x150
[  347.890818][ T7872]  ? do_raw_spin_unlock+0x121/0x230
[  347.896028][ T7872]  ocfs2_start_trans+0x26b/0x6c0
[  347.900979][ T7872]  ? ocfs2_setattr+0x95a/0x1b20
[  347.905888][ T7872]  ? ocfs2_recovery_exit+0x50/0x50
[  347.911037][ T7872]  ? setattr_prepare+0x1e6/0xac0
[  347.915996][ T7872]  ? inode_newsize_ok+0x17d/0x1b0
[  347.921032][ T7872]  ocfs2_setattr+0x95a/0x1b20
[  347.925743][ T7872]  ? ocfs2_extend_allocation+0x1760/0x1760
[  347.931583][ T7872]  ? ktime_get_coarse_real_ts64+0x3a/0x120
[  347.937419][ T7872]  ? seqcount_lockdep_reader_access+0x176/0x1c0
[  347.943686][ T7872]  ? ktime_get_coarse_real_ts64+0x110/0x120
[  347.949605][ T7872]  ? current_time+0x18d/0x270
[  347.954292][ T7872]  ? inode_set_ctime_current+0x2d0/0x2d0
[  347.959935][ T7872]  ? evm_inode_setattr+0x94/0x6a0
[  347.964980][ T7872]  ? bpf_lsm_inode_setattr+0x9/0x10
[  347.970188][ T7872]  ? try_break_deleg+0x79/0x120
[  347.975046][ T7872]  ? ocfs2_extend_allocation+0x1760/0x1760
[  347.980863][ T7872]  notify_change+0xb0d/0xe10
[  347.985463][ T7872]  do_truncate+0x19b/0x220
[  347.989888][ T7872]  ? put_page_bootmem+0x2c0/0x2c0
[  347.994919][ T7872]  ? apparmor_file_truncate+0x23f/0x2d0
[  348.000470][ T7872]  ? rcu_read_lock_bh_held+0xe0/0xe0
[  348.005785][ T7872]  do_sys_ftruncate+0x325/0x3d0
[  348.010644][ T7872]  do_syscall_64+0x55/0xb0
[  348.015080][ T7872]  ? clear_bhb_loop+0x40/0x90
[  348.019783][ T7872]  ? clear_bhb_loop+0x40/0x90
[  348.024468][ T7872]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  348.030373][ T7872] RIP: 0033:0x7ff03c58efc9
[  348.034799][ T7872] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  348.054417][ T7872] RSP: 002b:00007ff03d508038 EFLAGS: 00000246 ORIG_RAX: 000000000000004d
[  348.062840][ T7872] RAX: ffffffffffffffda RBX: 00007ff03c7e5fa0 RCX: 00007ff03c58efc9
[  348.070830][ T7872] RDX: 0000000000000000 RSI: 0000000002007ffb RDI: 0000000000000008
[  348.078826][ T7872] RBP: 00007ff03c611f91 R08: 0000000000000000 R09: 0000000000000000
[  348.086810][ T7872] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  348.094788][ T7872] R13: 00007ff03c7e6038 R14: 00007ff03c7e5fa0 R15: 00007ffed06ec518
[  348.102780][ T7872]  </TASK>
[  348.105948][    C0] vkms_vblank_simulate: vblank timer overrun
[  348.707243][ T3427] kworker/u4:9: attempt to access beyond end of device
[  348.707243][ T3427] loop3: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  348.729676][ T3427] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  348.738107][ T3427] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  349.123047][ T5795] ocfs2: Unmounting device (7,1) on (node local)