last executing test programs:

12m26.55216065s ago: executing program 4 (id=521):
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
keyctl$search(0xa, 0x0, &(0x7f0000000200)='trusted\x00', &(0x7f0000000240)={'syz', 0x3}, 0x0)
connect$unix(r1, 0x0, 0x0)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
select(0x406f205456671cf9, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x5000000}, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x3000000, 0x0, 0x0, 0xffffffffffffffff}, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r3, 0x0, 0x13, &(0x7f0000000100)=0x2, 0x4)
bind$inet(r3, &(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff, 0xf, 0x0, @void}, 0x10)
ioctl$TCSETS(0xffffffffffffffff, 0x5402, &(0x7f0000000140)={0x6, 0x5, 0xfffffffb, 0x3, 0xd, "4e51d01d5236922570b08e53c9119bbedc290f"})
process_vm_readv(r0, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xf, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0xfffffffd}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x1e, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000fcffffff7b8af8ff00000000bfa2000000000000070200000008000000b70400000000000085000000030000009500"/72], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_lookup=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'batadv_slave_0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xfffffffd, {0x0, 0x0, 0x0, r6, {0x0, 0xc}, {0xffff, 0xffff}, {0xffe0, 0x9}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
timerfd_settime(0xffffffffffffffff, 0x1, &(0x7f0000000180), &(0x7f0000000280))
ioperm(0x9, 0x6, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000780)=@newtfilter={0x884, 0x2c, 0xf3f, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r6, {0xb, 0xfff3}, {}, {0x7, 0xffff}}, [@filter_kind_options=@f_flow={{0x9}, {0x854, 0x2, [@TCA_FLOW_POLICE={0x848, 0xa, 0x0, 0x1, [@TCA_POLICE_TBF={0x3c, 0x1, {0x5, 0x8, 0x65, 0x2, 0x4d, {0x1, 0x2, 0x2, 0x3, 0x3, 0x4}, {0x5, 0x0, 0x400, 0xab, 0x0, 0x9}, 0x2, 0x6, 0x8000}}, @TCA_POLICE_RATE={0x404, 0x2, [0x7, 0x7fffffff, 0x8, 0x7ff, 0x3, 0x2, 0x1, 0x401, 0xb9, 0xace, 0x0, 0x1, 0x9, 0x43, 0x7, 0x2, 0x0, 0x1ce00000, 0x7, 0x6, 0x103, 0x3, 0x1c000, 0x1ff, 0x2, 0x6, 0x9b16, 0x6, 0x100, 0x15a, 0xe, 0x40, 0x5, 0x4, 0x80000001, 0x4a, 0x1, 0x8, 0x99a9, 0x340d, 0x3, 0x2, 0x7, 0xd, 0x400, 0xfffffffa, 0x6, 0x100, 0x0, 0x5, 0x5, 0x2, 0xffff0001, 0x2, 0xdd1, 0x9, 0xfb, 0x4, 0xf, 0x324, 0x6, 0x3, 0x6, 0xff, 0x8, 0x401, 0x7fffffff, 0x4, 0x5, 0x800, 0x8261, 0x3, 0x6, 0x8, 0x2, 0x9, 0x4, 0x4, 0x6, 0x5, 0xf, 0x9, 0x38c8, 0x80000001, 0x4, 0xa11, 0x6, 0x8, 0x604, 0xfff, 0xab, 0x7, 0x5, 0x8, 0x1, 0x9, 0x401, 0x0, 0x4, 0x1ff, 0x4, 0x17, 0xffffff7f, 0x7c, 0x4, 0x4, 0xa42, 0xfffffff7, 0x4, 0x5b564ea6, 0xaa32, 0x2, 0x2, 0x4000008, 0x1ff, 0x5, 0x3, 0x7, 0x6, 0xfffff000, 0x12aeb60c, 0x4, 0xbb6, 0x1, 0x3, 0x5, 0x2, 0x3, 0x85, 0x10, 0x1, 0x5, 0x1, 0x10004, 0xb, 0xf65, 0x1d7, 0x9, 0x100, 0x0, 0x0, 0xc2, 0x1, 0x3, 0xffffffff, 0x1ff, 0x1, 0x30bb, 0x7, 0x40, 0xfffffff8, 0x5, 0x2, 0x1, 0x8, 0x8000, 0x5, 0x4, 0x31e, 0xffff8001, 0x6, 0xff, 0xa, 0x1ff, 0x9, 0x7, 0x7, 0x2, 0x412, 0x6, 0xf441, 0x6, 0x1, 0x7, 0x89, 0x3, 0x5, 0x0, 0x9, 0x7, 0x1, 0x4, 0x0, 0x4, 0x4, 0x200, 0x1, 0x720a, 0xff7f, 0xfff, 0x9, 0x7fff, 0x8, 0x3ac8efcb, 0x8, 0xf2c, 0x7, 0x80000000, 0x12, 0xfffff802, 0x2e4, 0x7, 0xfffffff9, 0x400, 0x4, 0x30, 0x10000, 0xfd, 0x4, 0x1, 0x5, 0x7, 0x0, 0x7, 0x47, 0x0, 0x0, 0x1, 0x7, 0x0, 0x8, 0x3, 0x6, 0x0, 0x10001, 0x0, 0xe9, 0x5, 0x1, 0x4, 0xaacc, 0x6f, 0x7fffffff, 0x5, 0x6, 0x2, 0xffff, 0x4, 0x10000, 0x9, 0xe, 0x45e8, 0x9, 0xfffffff8, 0x6, 0x100, 0x5, 0xe, 0x73d, 0x31, 0x3, 0x0, 0x2, 0x3, 0xb70, 0x3]}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0xfffffff7, 0x5, 0x7, 0x4, 0x2, 0x6, 0x1, 0xfb0, 0x8, 0x3, 0x5, 0x3, 0x0, 0x4, 0x9a, 0x9, 0x7, 0xfff, 0x7, 0x40, 0x5, 0x7fff, 0x6c, 0x3, 0x5, 0x7ff, 0x4, 0x2, 0x7, 0x2, 0x83d, 0x2, 0x3b, 0x4, 0x0, 0x4, 0x9, 0xc, 0x1cabbb02, 0x4, 0x4, 0x2, 0x8001, 0x7fff, 0x80000000, 0x10000, 0xffff8906, 0x7fffffff, 0x0, 0x0, 0x9, 0xc0000000, 0x2, 0x6, 0x83, 0x3, 0x10000, 0x3, 0x1, 0x6, 0x0, 0x1, 0x100, 0xcc2, 0x3800, 0x6, 0x18, 0x0, 0xfffffe00, 0x3, 0x6, 0x4, 0x3, 0x7, 0x1, 0xfffffffc, 0x8e4, 0xf5c1, 0x1, 0x5077, 0x3, 0x5, 0x7fff, 0x2, 0x4, 0x2, 0x3, 0x401, 0x6, 0x40, 0x7, 0x95, 0x5, 0x200, 0x1, 0x2, 0x7ff, 0x4, 0x8, 0xb, 0x6, 0x2, 0x0, 0xd266, 0x4, 0x0, 0x10001, 0x2, 0x101, 0x401, 0x200, 0x6, 0x1, 0x4a, 0x8, 0x2, 0xfffffffe, 0x14e, 0x4, 0x3, 0x1, 0x2, 0x94e6, 0xfffffbff, 0x5, 0x2, 0xfffd, 0xc, 0x4, 0x2, 0x40800000, 0x1f, 0x4, 0xffffffff, 0x800, 0x401, 0x3ff, 0x7ff, 0x101, 0x10, 0x5, 0x374, 0xc2f, 0x3, 0xffffff81, 0xfffffff7, 0x6, 0x8000, 0x8, 0x1, 0x1, 0x200, 0xcae, 0xc64, 0xffff, 0x7fff, 0x1, 0x8, 0x3c0, 0x9, 0x0, 0x6d3, 0xfffffff3, 0x9, 0x476b3752, 0xff, 0x0, 0x9, 0x7ff, 0x4, 0x3, 0x4, 0x7, 0x7249, 0x7, 0xffff8001, 0x95f, 0x8, 0x0, 0x1000, 0x800, 0x0, 0xfff, 0xf2, 0x0, 0x3, 0xffff, 0x0, 0x0, 0x8000, 0x9, 0x4, 0xcc6, 0xffe01000, 0x22, 0xd56, 0xfffffff0, 0x3bb8, 0x10, 0x140, 0x81, 0x9, 0x40, 0x2, 0x2, 0x4, 0x3, 0x0, 0x3, 0xf, 0x0, 0xc527, 0x9, 0x8, 0x1, 0xffff86fd, 0x7, 0x2, 0x8, 0x3, 0x9, 0x5, 0x0, 0x4, 0xc12, 0x7f, 0x0, 0x0, 0x80000000, 0x6f3, 0x7, 0x9, 0x7, 0x9, 0x4, 0x2, 0xc9, 0xaf8, 0x3, 0x80000000, 0xad8c, 0x4, 0x2, 0xea9, 0x9a1, 0x5, 0x1, 0x4, 0x8, 0x5, 0x10000, 0x3, 0x7fb, 0xdbbb, 0x4, 0x2]}]}, @TCA_FLOW_KEYS={0x8, 0x1, 0x1}]}}]}, 0x884}, 0x1, 0x0, 0x0, 0x20041090}, 0xd0)

12m25.504523404s ago: executing program 4 (id=526):
r0 = syz_open_dev$usbfs(&(0x7f0000000240), 0xb, 0x101301)
ioctl$USBDEVFS_CLEAR_HALT(r0, 0x80045515, &(0x7f0000000000)={0x0, 0x1})
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = getpid()
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000240)={'\x00', 0x71, 0x6, 0x400, 0x1, 0x7, r1})
sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000000900)={'bridge0\x00', @remote})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040))
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0xe, 0x4, 0x4, 0xb9, 0x0, 0x1}, 0x50)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000180)={r5, &(0x7f0000001380), 0x0, 0x2}, 0x20)

12m24.545016894s ago: executing program 4 (id=531):
kexec_load(0x3, 0x2, &(0x7f00000005c0)=[{0x0, 0x0, 0x5, 0xffffffff}, {&(0x7f0000000340)="8c4e55be89", 0x5, 0x100, 0x9}], 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000002840)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback, 0x20}, 0x1c, 0x0}}], 0x1, 0x14018891)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000003c00)={0x0, 0x0, &(0x7f0000000700)=[{0x0}, {0x0}, {&(0x7f0000000740)}], 0x3}, 0x41)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48001}, 0x4044050)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000540), 0x82, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000280), 0x80, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, 0x0}, 0x20005005)
sendmmsg$alg(r2, &(0x7f0000007640)=[{0x0, 0x0, &(0x7f0000000880)=[{&(0x7f0000000740)}], 0x1, &(0x7f00000008c0)=[@iv={0xb0, 0x117, 0x2, 0x96, "bd19a432ebf20eb0a0ee39d005e869fe74b9842d9c92be0054aa20f9dbfeb8e59fa49c486a1a51c45c98c886185e506d1cf93255718fc79d6b6d1d434c678807c5ab4264c8ba94065d11d8ee27dd16f4a0342bed8a3c79acd4bb1f9f46ef28a63b329e09a86c62f907539c9af6f1b0bc00510c3b27f64245b6f4f80e00bca3c91538839a52c3c393aada6ed6155fa03c988b6658e106"}, @assoc={0x18, 0x117, 0x4, 0x6}], 0xc8, 0x40800}, {0x0, 0x0, &(0x7f0000003900)=[{&(0x7f00000009c0)="c2debd9e2d4617d17e01e704d3576f8b26b757ffa164a105efcaa28e5d52d4383258c148e95e4ee927dab4ba9cdbf4dbf6b0e19f8b7e9a95211ec6aedfd78a09200b7076afabdae9c87c6837e202845b6cf3ac6b728856d66eef286087e0154a40c153e5fe7505615fb53b33f629928c80aeea7fd091180968d44cd4544b6bb4c116f4d6c4c3d148eb273bd4fa76ad8f709ed07bd2a91564fc364f1b971b0e005fe1d24f1b0d7f157b695c625cc39aac2d6f07b11d926c801fb1", 0xba}, {&(0x7f0000000ac0)="3fe4c8a3288f0977", 0x8}, {&(0x7f0000000b40)="86545d2157646172b815818bfd0e1457556266898579380233e0e3853e4a118a5a2bcc52eeea6b2dc4fc32c3f81f9b1d06cd70a1b428c05442", 0x39}, {&(0x7f0000000b80)="0d4842ef613cd072196eae2d74d31c309df1c61a888039b1a23acbea852fb54afae1761845284c6e484aa5154a2b418ffe2ac1d6363010c9d8f2d75a71eb55849202714884c6a0a760f5e028016a68fc07407f5671a5a4a8c9", 0x59}, {&(0x7f0000000c40)="176d6b3905505e2a41391bf6fd66d8ad4ebc86e07694005204b0151bfa8dc581a5be209d8850a950791f10f76de79651272a11f6d7267276ff1596a47826a90a0b74b425d8ff2bbea5c5732f69a908c45b4b348abc24d2cd2031a9508ef8e3594bd12ebc38c466f76d6ff3618471f4f6574e1043766375eb889750ca25429f976089462bf1b689280ebc67640f4534eef4b7ffd85963bc5d8b114670c00f76cbdd722662dce5fc58daf323bf987ef7d646a99794c02b62b30e189691c4be9094ea58e9df52d9dbd9e0fae7a4a130246680b2", 0xd2}, {&(0x7f0000000d40)="7edb39aa76e39c9fc185dd49e1d028ba5e90ec3bb54d3c486f189f406945a495fe7b4ad51446c162f581368e4d711db9add53f7917e1dc55ae9543ea21d63f85d9a5a996f6fa32ead42a9b7e97a7ae1b4a8f76ff9321b4ec76606f9709bb57eda4e8c45e797ff2cabc03a3d03ca57b5239833610ac4306ac2a443c768b9365de67f9f9be49fe7d6f4d71abedeb55ab91ddd31154758fcaa8f25a56126152b9ba46d9bd4cd0d67de6fda9f72a37319681c1750045b363a3b90faecc5b5cbc0a241152a62edc2d081937058931cfb823591b49c610995a895f214c473ef6e1d49051b9198877e4e9", 0xe7}], 0x6, 0x0, 0x0, 0xc0}], 0x2, 0x48040)
r3 = socket$alg(0x26, 0x5, 0x0)
syz_open_dev$dri(&(0x7f0000000180), 0x1, 0xc0400)
bind$alg(r3, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3", 0x5)
r4 = accept4(r3, 0x0, 0x0, 0x800)
sendmmsg$alg(r4, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r4, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="ea7c5828b87d70214008724bcae1ce6577c01031b19698ecb8a7f5183947918ce2cc9dc778dbfff9e28e1a6df7d8f95c3e45768a6786d6325bc0fe4ed394c8ed0edcbb9f917074251a7f5b6b24c52516a68f181592262dfd12b5af7386658c5fb6c36d86d5084624a302a155c0463b6c36e9fc88338b0f66e2713728a21d19d9a33da93d419df63d8a87fa100381ec74de8b7409f4977d3cd7a9f2fb03cec91c4277b39b2c9f227a9b74926a11960d085e2aaf98673d2a67fa95b8d9dcc72ca6181f6b9b2d1c402267e6cfef5599e1520077d9bc472fb5a5db42b1befd498ec7b8d519b12f065323b15280a2540bc7a4ffe508fc12f93707064caf4111e893142f9867b432b1e6258caa2ae081b8b646c25de7f5366a21f9dd257b84546cd316e17b79d22c4bcaf70e8a96d1e502b53c581c75482d1d63f0d5f3fb5bdbb714583f0798e0c4d6c9d99513e91a68a26612053290f15f5a2e06acfa229356e37b4d57697224e9561c0430a67fcb5dea72acc91e60751a5b07eb603548a646f082ce213347b4ee908bd95cc56775330aa09d4f19f48a8cb5d7f6346d82bab8ff019309684bd01eb4d90febe2269cd2a1100130c242a2995ce38638a3bbc9008ac0e820a1e0b9a9511af47aa7f3e30a69589985423f3b4ea98152433bf1aa53a0981f783f11c4cc50f70fe63b2043b74b9cb7da59caedadc1fa1f662831a353969893d4f93b919cda52a1ce2200a0a7895abb293c29d6d197cce98a4df8fc90c582014742a00b4bd09f1fcc5ff5753320d2b5593e657c0fb87a4cfa323ce59111eea806a6e020fb0c4fdd601087811e33e793975b5e9e936c16d243bdea757e0ee4508f5d5b496ed07b6f0f1f46ed752448f30d679b23ba8142d4ab25beb913ee77547866e5d9501a55e9797ba3407f3f4cc11398bdaf3ac4c2e79a5b133a09fcf8ae790bb985fa01daf2758fd8a77fde15a822227dddf64bb2ebc49a56ad025e01c6c59e4818abdf808789d9f87c103cf7f7d21d2a1345b9b7fd66b1cf96002343fbd62f8080d945e70bd93d4bf42b401477abed49065b4a8ccfb9d93724118168de2e8df4f78ccf3b9593f993423a619ef6bd8392a2cfc6424d3687fcdc67d33073db95d856f312b934d05a3c4e967217837920fee73b00757b617d1ef3bfc2e88a8a72f0948263db2c9e7bd491f059b6ee8d0ea3f2193314562910529869b248172bfe0f914f7a91a27c6e9e6c2e3455a7ae765392b48fc959958aa39a5a483b2a6e873ac76f8579515e42f7a3bbc82bcf71edaf12f7b40a2adc74d67ef793988cc8ac788185049e57fb84757bdc700ffde10afc19df290787ed98222f8afb2b6d11944666331350e2914466b398750acae526146373b2cbe1bdd1803e6c920a182a1ad118a3d09313c2ce2703a0a1c09215cab90c35b03b1c795cf704f42dd31ddff6be67bb355977b2e07609c5228299a170308e54705674384fc294cdfa4abf989d3c3bf3eabbbcf52a6a0646bf6db5b61ad027007464fd6fc10490ee2e9190c28ae5cb3733105cb782c0d53e5c79c3e455609d557d824154d01e282788ec8ae7c8a03fcd6cd4e37829b0f921c46d715454d5e1281c641cf0756a2f31b0369ce94e819e6254af95b88bffd7bb2cfe9469d303497fead174839b2789b5aa703176510eab1f46916b3b63f6f5b2df262fe7274a0cee9bd6e115e5f9f48ac1c09e5b3c546ae95b9916a633869854d3ee39d4acb800e876e7fc084ffd79a20fca8331caff657ec89b445c6012ff7eb9531eb1e8c90cdc66b82d6fd608310099503a9dcf50b40d10a3b1ab520477e20ad5f6405cd4b5b36d201e12088d7868c6e94737ea88db6ed5f7df4d31cbd2d0c4f21cdcc3b181f5aae7216dc4c06b2989bb44e5369ba96ce87f3e3abbb530d103a53d7e0b914115c302c935eea7d256a73aa851d84dec6d9112163be8135889c67fa90e796a6f050fba0a6a740618cd513748072daac9f3e25034772cc400a14834afbde835bc9fd7cf1113d67ebe99a3b78907596886ad5a1670ef572c18e26c98fe40194428de339cba7b8efc5fa7faf7512ef6b89a877f3e534fb4512729df686e14aece08fab3b42ea14acde0e18ffe5dc00e74288661c7463e00f3b942cddf3b71e1dcf71989f378b933df099316451cca296a4e117bbeb3b1e552e5a10f9731449ae830de14989049ce818f720e77e78a86c307c80450b26278bc25ee7390ce6d4c4dfc8d39b6b4b1ce6f3865dbdd1d37aedb555288bea9ef95c8600dea1cd10e9e42d15aa804f99a31bfaa5ea52185333d734c766e3bb4a9abf86cf4d840dc188167a25cc3054b65fd7ce053d38518474ab55e59c1ccaf34d57b4cd73b07ed63d754ab3d57dfc0f67bbdb22e33d9f63aa2b36cf0af338794d4acbd1b13669bde67f7bd032f9c6b400e8054a0cff77fc6e0591195b21715e42c881e23156b4ba504d7e1b6eb9c2ec9b9e382d85f7c52bd964d305da9496dbaa022880ddf236730c458f31258d64ae2668aa863b3fe558c7f8cfb3dabf42edcaf2891e9b9462c44153658eae85cd499abd9dca762adf26d9904d28b772b3fc3d066d56261474c944387ac7eb00059025ff25e34b8f7c2986db1ccc4297e1315c3ceeef1b8f98e0500bbb8bb0ab52d80f8c6c8fa5d24b9a05f5350e2fd59af4b9fa9a2b4339b61e208f227ba968d4dbd36246133de2078c6a15dd57754a3537c31d04da545f062dbf9cbaa0840e23974f441a4d5937fec23ff81c193bd951a7bacac8eb6d4705702cbe3c930f27869753ba6026455bbb7742c53644f1646d7545467091a207905f831505f214fbd818aea4455705b5e727850cdcac40620135b8dba85cb0c0f393af252ec082cba5c43385fbc2cc5682bc1994b064e29c8c5a20e7e6d15fbb13e6fd1a86b2fda666fbcd80fd08be00a7423fcafbdd8283bac88ead203bc10d1c1a13ca2fe853fa6cc8991b0476561be085b086b0d0e45f73e59f519342c13f368a37464cb55b8a13846f4cd610536d5c4b8704fcd347abe6712d3de67d7918e6954898f31647a8ea37ecc2e1bb02b1b26e7a60fbb2b0a48efc5795c12d5c4ac8dc4149dea0f2e085422ec69352882622711b74e1e32c7ead2cf3c554e8ff1648e8b66d0dc6997b6304b3b560a33d75aa49476175a386ca721156ea79bdba432d439dbceb0285561abd5d134badd9f38c04fae8fa920edfff15705371c907848c14acdfb0b22a4c7168e1840e8b8a50349dcee5f429b3cb34e30f0f67acf93604792b8574f36ea9409d422621f3c0c7b781fc8e23d1d46f04a9b44f633e5f72cb079fbde66a9745705666c6dab6238628e57ee6cffa8cfad616dac1abe2789c9efccb4fc7e65e490d9a4e49e7ce72a6980e72f70a17649e67de86f86b61a4b6219daefc939b5904e5712ecaf85c98484fc02585b1aa990b95173e4a2907cf877af696e528e6b2b634a4fb7d791cacc8644fa76e062148d411e18f0da5aed22116828cd700a28e8f46bca950550acb4ab05eddeb6b2dac24702cff4de0a3ece393cac879ed2f0c5b9645839cfdb79fb1df87596b14504cba9dddda51edaffcd0214b91b5898ea022774e699aa0caf0f646cc0cb8e8fc8b8be43c23aa7f6bd29fd0615c0b78f3514a52989d7f35ad08a4bd473e61da6657cc2e85d3b2b7d3fb51174a96f27038ddbc87a35e09a668e436aa40146c6a26dca87b39220f139b772719d80aadb752c622bf09acd6846838fb48a8817ba4aa72eaa32e82251b3789969d8518f9aa07cdcb9a355f73f119725c086168aaca262f13cd742e5f06c969a462638a557e15a4f5d43e3242c08f23b00d2b8d57c60d3636abd4068ec03a4be3429b95e41351ab5c58812e552df90c3e6c9d8779aa484e74f073ea9fcdce13b1dff8e7c101b2c6865c5cefe108e3559f520e2bc42c9dc39b57fddb44ca49f2689e10c1381c0740d20cbca46da475c62f513cb08398a5fd5d4f6b13ce839fe149df0d291a8f7267fe90a7e1845dace17cd927c2d1aeffbdc36bb983172ceff025e84b0419645fcc72897b992f5081c78756122391947f08ccd20806cfc2bded705b472fc52e84734e016cbd309aadebbbb4e8bdfed77b1e0b15ce0904838d9e4d64643df66f0353c377e554b428dc0f31189a134cdb8e66d2755e84c2b2409c3d63a81f5f05616baf6a243b09153a4f8289e15a5a4ffb007b0cbeffde25391bb2acd86b453e245643c0fa1dfe5d42e0e3f1c592a00b77f0133adf7989c6c2bf3ddc0b8a2b14f35d33f62f4ee2fc56166372058e997b9abe6bad8aa718f8d87ad095e8f354aaef540840437b5451771266a8358ed75954db52b38bca4a1c8696dca1de03b12627254409f8bb68c94eeaa1a8bcf894482b96e81b9ff5c2383a907537a191aff0bb5b5418ef5670cecca1cfbd41b61879b11a5a5053cd86cf5d61f8c2f7d7ad2034a1801b3b92a79ac3b4343c680008b1ba10577a35173cac6d4dbc1d00e436f238b57093b34d4ea19c225b84a2d6086cc6cf72595b980c88142d268bbf9c8375a93afe75c3583b3b9687368d78147985d209e6d89c335e948c51696a948f01ad062dcf84a99584466e24646b2e441fefb10ef962432f2925d6d98e790acf4ca7d9339a589a537aa3392ec79f34a6544144072ab8248e45ac560a78c70c5afcbf10909299dfcd67981c88780c1340c951e115ffec56d23b9ead6a55024e199238f4b133e3e1e0e84318b5037a3947ae09749c25c7e4887936ecf0ba9a807dfa471ea1f3350b70feb58dc9e2836365ce4db456a341e43410cac1253fe08e79c21fca932716f4c171fc957cb325737b70532d81f0eb2f0a16478c0d934165728f7b29a8a0ff6bc964e99dea26d3efd28336b00c112a26da7a2ea1c21a9688cc3a68293958edf27ae89e5f9b8348af4121028e760cf68c931af92906d27dad4d330df9201b5395ccce0c803806422883667ccb11438d9dbe1901d4ab98d89914b313338486deb6f748053517e2188c479adb1eabb8e8ed5d05bb3f66826fae83bbc5bce3615ee32d937ffbe8846a1156aaf7bf9b9d4189bdf290b3df254077688eeda824d6ea0a452f7e7f915c1a94ee250a3907ec035d7ba7bb0256811f04646ca156b8925506c774df4d4072c02929e985057a5f7ddc1469c7306e6fdb86b810ada1cc96f6bd389597dd27dd656f55c316fb2d56b2d13eddf893722e813934a19778719be99697c365222db64039f9caab1201c430e53df1af8a0321c8759fc33e8204150080979936d0717f6c4c9145fb828389acbb894a4600485e8b105c7165a40e814889343deead6d434a8da60eed1e50aa507ac2793b4a4c5517265f859f223bb4f6cadc6fb53430304baea18189e2b5ddd266c38f5c325ba391a50fcd34060d217c4118889c4275e40a8428099ddfa3cc0d8241c22fc1554318e922f3b1257f2046d70df460c5283a539487583ffca1972a19237b06480e0a56d9e185fe4dc3607666d81ed0d9d9f5c5c568a5a0a87160b6d35c73dae9c6177f2b25d90a2598042f4b43bc765fa86a831c401a01c391a8fdc8f8c742f2322a1b8ef18ec7d82f013893c981f6bd96ec57d8e73e1633ae3970721fcea055ecc836ce3", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

12m22.79664188s ago: executing program 4 (id=535):
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000180)='./bus\x00', 0xe, &(0x7f00000005c0)={[{@barrier_val={'barrier', 0x3d, 0x102}}, {@errors_remount}]}, 0x2, 0x445, &(0x7f0000000b00)="$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")
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x0, &(0x7f0000000240)={[{@dioread_nolock}, {@oldalloc}, {@barrier_val={'barrier', 0x3d, 0x9}}]}, 0xff, 0x4b2, &(0x7f0000000540)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x42, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, 0xffffffffffffffff, &(0x7f00000001c0)={0x70000002})
socket$inet_tcp(0x2, 0x1, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
fsopen(&(0x7f00000003c0)='cgroup2\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000400)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
fstat(0xffffffffffffffff, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./bus\x00', 0x101842, 0x0)
ioctl$EXT4_IOC_MIGRATE(r5, 0x6609)

12m21.648944027s ago: executing program 4 (id=541):
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000002840)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback, 0x20}, 0x1c, 0x0}}], 0x1, 0x14018891)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000003c00)={0x0, 0x0, &(0x7f0000000700)=[{0x0}, {0x0}, {&(0x7f0000000740)}], 0x3}, 0x41)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48001}, 0x4044050)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000540), 0x82, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000280), 0x80, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000000)=[{0x0}, {0x0}], 0x2}, 0x20005005)
sendmmsg$alg(r2, &(0x7f0000007640)=[{0x0, 0x0, &(0x7f0000000880)=[{&(0x7f0000000740)}], 0x1, &(0x7f00000008c0)=[@assoc={0x18, 0x117, 0x4, 0x6}], 0x18, 0x40800}, {0x0, 0x0, &(0x7f0000003900)=[{&(0x7f00000009c0)="c2debd9e2d4617d17e01e704d3576f8b26b757ffa164a105efcaa28e5d52d4383258c148e95e4ee927dab4ba9cdbf4dbf6b0e19f8b7e9a95211ec6aedfd78a09200b7076afabdae9c87c6837e202845b6cf3ac6b728856d66eef286087e0154a40c153e5fe7505615fb53b33f629928c80aeea7fd091180968d44cd4544b6bb4c116f4d6c4c3d148eb273bd4fa76ad8f709ed07bd2a91564fc364f1b971b0e005fe1d24f1b0d7f157b695c625cc39aac2d6f07b11d926c801fb1b98e", 0xbc}, {&(0x7f0000000ac0)="3fe4c8a3288f0977", 0x8}, {&(0x7f0000000b40)="86545d2157646172b815818bfd0e1457556266898579380233e0e3853e4a118a5a2bcc52eeea6b2dc4fc32c3f81f9b1d06cd70a1b428c05442", 0x39}, {&(0x7f0000000b80)="0d4842ef613cd072196eae2d74d31c309df1c61a888039b1a23acbea852fb54afae1761845284c6e484aa5154a", 0x2d}, {&(0x7f0000000c40)="176d6b3905505e2a41391bf6fd66d8ad4ebc86e07694005204b0151bfa8dc581a5be209d8850a950791f10f76de79651272a11f6d7267276ff1596a47826a90a0b74b425d8ff2bbea5c5732f69a908c45b4b348abc24d2cd2031a9508ef8e3594bd12ebc38c466f76d6ff3618471f4f6574e1043766375eb889750ca25429f976089462bf1b689280ebc67640f4534eef4b7ffd85963bc5d8b114670c00f76cbdd722662dce5fc58daf323bf987ef7d646a99794c02b62b30e189691c4be9094ea58e9df52d9dbd9e0fae7a4a130246680b2", 0xd2}, {&(0x7f0000000d40)="7edb39aa76e39c9fc185dd49e1d028ba5e90ec3bb54d3c486f189f406945a495fe7b4ad51446c162f581368e4d711db9add53f7917e1dc55ae9543ea21d63f85d9a5a996f6fa32ead42a9b7e97a7ae1b4a8f76ff9321b4ec76606f9709bb57eda4e8c45e797ff2cabc03a3d03ca57b5239833610ac4306ac2a443c768b9365de67f9f9be49fe7d6f4d71abedeb55ab91ddd31154758fcaa8f25a56126152b9ba46d9bd4cd0d67de6fda9f72a37319681c1750045b363a3b90faecc5b5cbc0a241152a62edc2d081937058931cfb823591b49c610995a895f214c473ef6e1d49051b9198877e4e9", 0xe7}], 0x6, 0x0, 0x0, 0xc0}], 0x2, 0x48040)
r3 = socket$alg(0x26, 0x5, 0x0)
syz_open_dev$dri(&(0x7f0000000180), 0x1, 0xc0400)
bind$alg(r3, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3", 0x5)
r4 = accept4(r3, 0x0, 0x0, 0x800)
sendmmsg$alg(r4, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0x4d}, {&(0x7f00000003c0)}], 0x3, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r4, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="ea7c5828b87d70214008724bcae1ce6577c01031b19698ecb8a7f5183947918ce2cc9dc778dbfff9e28e1a6df7d8f95c3e45768a6786d6325bc0fe4ed394c8ed0edcbb9f917074251a7f5b6b24c52516a68f181592262dfd12b5af7386658c5fb6c36d86d5084624a302a155c0463b6c36e9fc88338b0f66e2713728a21d19d9a33da93d419df63d8a87fa100381ec74de8b7409f4977d3cd7a9f2fb03cec91c4277b39b2c9f227a9b74926a11960d085e2aaf98673d2a67fa95b8d9dcc72ca6181f6b9b2d1c402267e6cfef5599e1520077d9bc472fb5a5db42b1befd498ec7b8d519b12f065323b15280a2540bc7a4ffe508fc12f93707064caf4111e893142f9867b432b1e6258caa2ae081b8b646c25de7f5366a21f9dd257b84546cd316e17b79d22c4bcaf70e8a96d1e502b53c581c75482d1d63f0d5f3fb5bdbb714583f0798e0c4d6c9d99513e91a68a26612053290f15f5a2e06acfa229356e37b4d57697224e9561c0430a67fcb5dea72acc91e60751a5b07eb603548a646f082ce213347b4ee908bd95cc56775330aa09d4f19f48a8cb5d7f6346d82bab8ff019309684bd01eb4d90febe2269cd2a1100130c242a2995ce38638a3bbc9008ac0e820a1e0b9a9511af47aa7f3e30a69589985423f3b4ea98152433bf1aa53a0981f783f11c4cc50f70fe63b2043b74b9cb7da59caedadc1fa1f662831a353969893d4f93b919cda52a1ce2200a0a7895abb293c29d6d197cce98a4df8fc90c582014742a00b4bd09f1fcc5ff5753320d2b5593e657c0fb87a4cfa323ce59111eea806a6e020fb0c4fdd601087811e33e793975b5e9e936c16d243bdea757e0ee4508f5d5b496ed07b6f0f1f46ed752448f30d679b23ba8142d4ab25beb913ee77547866e5d9501a55e9797ba3407f3f4cc11398bdaf3ac4c2e79a5b133a09fcf8ae790bb985fa01daf2758fd8a77fde15a822227dddf64bb2ebc49a56ad025e01c6c59e4818abdf808789d9f87c103cf7f7d21d2a1345b9b7fd66b1cf96002343fbd62f8080d945e70bd93d4bf42b401477abed49065b4a8ccfb9d93724118168de2e8df4f78ccf3b9593f993423a619ef6bd8392a2cfc6424d3687fcdc67d33073db95d856f312b934d05a3c4e967217837920fee73b00757b617d1ef3bfc2e88a8a72f0948263db2c9e7bd491f059b6ee8d0ea3f2193314562910529869b248172bfe0f914f7a91a27c6e9e6c2e3455a7ae765392b48fc959958aa39a5a483b2a6e873ac76f8579515e42f7a3bbc82bcf71edaf12f7b40a2adc74d67ef793988cc8ac788185049e57fb84757bdc700ffde10afc19df290787ed98222f8afb2b6d11944666331350e2914466b398750acae526146373b2cbe1bdd1803e6c920a182a1ad118a3d09313c2ce2703a0a1c09215cab90c35b03b1c795cf704f42dd31ddff6be67bb355977b2e07609c5228299a170308e54705674384fc294cdfa4abf989d3c3bf3eabbbcf52a6a0646bf6db5b61ad027007464fd6fc10490ee2e9190c28ae5cb3733105cb782c0d53e5c79c3e455609d557d824154d01e282788ec8ae7c8a03fcd6cd4e37829b0f921c46d715454d5e1281c641cf0756a2f31b0369ce94e819e6254af95b88bffd7bb2cfe9469d303497fead174839b2789b5aa703176510eab1f46916b3b63f6f5b2df262fe7274a0cee9bd6e115e5f9f48ac1c09e5b3c546ae95b9916a633869854d3ee39d4acb800e876e7fc084ffd79a20fca8331caff657ec89b445c6012ff7eb9531eb1e8c90cdc66b82d6fd608310099503a9dcf50b40d10a3b1ab520477e20ad5f6405cd4b5b36d201e12088d7868c6e94737ea88db6ed5f7df4d31cbd2d0c4f21cdcc3b181f5aae7216dc4c06b2989bb44e5369ba96ce87f3e3abbb530d103a53d7e0b914115c302c935eea7d256a73aa851d84dec6d9112163be8135889c67fa90e796a6f050fba0a6a740618cd513748072daac9f3e25034772cc400a14834afbde835bc9fd7cf1113d67ebe99a3b78907596886ad5a1670ef572c18e26c98fe40194428de339cba7b8efc5fa7faf7512ef6b89a877f3e534fb4512729df686e14aece08fab3b42ea14acde0e18ffe5dc00e74288661c7463e00f3b942cddf3b71e1dcf71989f378b933df099316451cca296a4e117bbeb3b1e552e5a10f9731449ae830de14989049ce818f720e77e78a86c307c80450b26278bc25ee7390ce6d4c4dfc8d39b6b4b1ce6f3865dbdd1d37aedb555288bea9ef95c8600dea1cd10e9e42d15aa804f99a31bfaa5ea52185333d734c766e3bb4a9abf86cf4d840dc188167a25cc3054b65fd7ce053d38518474ab55e59c1ccaf34d57b4cd73b07ed63d754ab3d57dfc0f67bbdb22e33d9f63aa2b36cf0af338794d4acbd1b13669bde67f7bd032f9c6b400e8054a0cff77fc6e0591195b21715e42c881e23156b4ba504d7e1b6eb9c2ec9b9e382d85f7c52bd964d305da9496dbaa022880ddf236730c458f31258d64ae2668aa863b3fe558c7f8cfb3dabf42edcaf2891e9b9462c44153658eae85cd499abd9dca762adf26d9904d28b772b3fc3d066d56261474c944387ac7eb00059025ff25e34b8f7c2986db1ccc4297e1315c3ceeef1b8f98e0500bbb8bb0ab52d80f8c6c8fa5d24b9a05f5350e2fd59af4b9fa9a2b4339b61e208f227ba968d4dbd36246133de2078c6a15dd57754a3537c31d04da545f062dbf9cbaa0840e23974f441a4d5937fec23ff81c193bd951a7bacac8eb6d4705702cbe3c930f27869753ba6026455bbb7742c53644f1646d7545467091a207905f831505f214fbd818aea4455705b5e727850cdcac40620135b8dba85cb0c0f393af252ec082cba5c43385fbc2cc5682bc1994b064e29c8c5a20e7e6d15fbb13e6fd1a86b2fda666fbcd80fd08be00a7423fcafbdd8283bac88ead203bc10d1c1a13ca2fe853fa6cc8991b0476561be085b086b0d0e45f73e59f519342c13f368a37464cb55b8a13846f4cd610536d5c4b8704fcd347abe6712d3de67d7918e6954898f31647a8ea37ecc2e1bb02b1b26e7a60fbb2b0a48efc5795c12d5c4ac8dc4149dea0f2e085422ec69352882622711b74e1e32c7ead2cf3c554e8ff1648e8b66d0dc6997b6304b3b560a33d75aa49476175a386ca721156ea79bdba432d439dbceb0285561abd5d134badd9f38c04fae8fa920edfff15705371c907848c14acdfb0b22a4c7168e1840e8b8a50349dcee5f429b3cb34e30f0f67acf93604792b8574f36ea9409d422621f3c0c7b781fc8e23d1d46f04a9b44f633e5f72cb079fbde66a9745705666c6dab6238628e57ee6cffa8cfad616dac1abe2789c9efccb4fc7e65e490d9a4e49e7ce72a6980e72f70a17649e67de86f86b61a4b6219daefc939b5904e5712ecaf85c98484fc02585b1aa990b95173e4a2907cf877af696e528e6b2b634a4fb7d791cacc8644fa76e062148d411e18f0da5aed22116828cd700a28e8f46bca950550acb4ab05eddeb6b2dac24702cff4de0a3ece393cac879ed2f0c5b9645839cfdb79fb1df87596b14504cba9dddda51edaffcd0214b91b5898ea022774e699aa0caf0f646cc0cb8e8fc8b8be43c23aa7f6bd29fd0615c0b78f3514a52989d7f35ad08a4bd473e61da6657cc2e85d3b2b7d3fb51174a96f27038ddbc87a35e09a668e436aa40146c6a26dca87b39220f139b772719d80aadb752c622bf09acd6846838fb48a8817ba4aa72eaa32e82251b3789969d8518f9aa07cdcb9a355f73f119725c086168aaca262f13cd742e5f06c969a462638a557e15a4f5d43e3242c08f23b00d2b8d57c60d3636abd4068ec03a4be3429b95e41351ab5c58812e552df90c3e6c9d8779aa484e74f073ea9fcdce13b1dff8e7c101b2c6865c5cefe108e3559f520e2bc42c9dc39b57fddb44ca49f2689e10c1381c0740d20cbca46da475c62f513cb08398a5fd5d4f6b13ce839fe149df0d291a8f7267fe90a7e1845dace17cd927c2d1aeffbdc36bb983172ceff025e84b0419645fcc72897b992f5081c78756122391947f08ccd20806cfc2bded705b472fc52e84734e016cbd309aadebbbb4e8bdfed77b1e0b15ce0904838d9e4d64643df66f0353c377e554b428dc0f31189a134cdb8e66d2755e84c2b2409c3d63a81f5f05616baf6a243b09153a4f8289e15a5a4ffb007b0cbeffde25391bb2acd86b453e245643c0fa1dfe5d42e0e3f1c592a00b77f0133adf7989c6c2bf3ddc0b8a2b14f35d33f62f4ee2fc56166372058e997b9abe6bad8aa718f8d87ad095e8f354aaef540840437b5451771266a8358ed75954db52b38bca4a1c8696dca1de03b12627254409f8bb68c94eeaa1a8bcf894482b96e81b9ff5c2383a907537a191aff0bb5b5418ef5670cecca1cfbd41b61879b11a5a5053cd86cf5d61f8c2f7d7ad2034a1801b3b92a79ac3b4343c680008b1ba10577a35173cac6d4dbc1d00e436f238b57093b34d4ea19c225b84a2d6086cc6cf72595b980c88142d268bbf9c8375a93afe75c3583b3b9687368d78147985d209e6d89c335e948c51696a948f01ad062dcf84a99584466e24646b2e441fefb10ef962432f2925d6d98e790acf4ca7d9339a589a537aa3392ec79f34a6544144072ab8248e45ac560a78c70c5afcbf10909299dfcd67981c88780c1340c951e115ffec56d23b9ead6a55024e199238f4b133e3e1e0e84318b5037a3947ae09749c25c7e4887936ecf0ba9a807dfa471ea1f3350b70feb58dc9e2836365ce4db456a341e43410cac1253fe08e79c21fca932716f4c171fc957cb325737b70532d81f0eb2f0a16478c0d934165728f7b29a8a0ff6bc964e99dea26d3efd28336b00c112a26da7a2ea1c21a9688cc3a68293958edf27ae89e5f9b8348af4121028e760cf68c931af92906d27dad4d330df9201b5395ccce0c803806422883667ccb11438d9dbe1901d4ab98d89914b313338486deb6f748053517e2188c479adb1eabb8e8ed5d05bb3f66826fae83bbc5bce3615ee32d937ffbe8846a1156aaf7bf9b9d4189bdf290b3df254077688eeda824d6ea0a452f7e7f915c1a94ee250a3907ec035d7ba7bb0256811f04646ca156b8925506c774df4d4072c02929e985057a5f7ddc1469c7306e6fdb86b810ada1cc96f6bd389597dd27dd656f55c316fb2d56b2d13eddf893722e813934a19778719be99697c365222db64039f9caab1201c430e53df1af8a0321c8759fc33e8204150080979936d0717f6c4c9145fb828389acbb894a4600485e8b105c7165a40e814889343deead6d434a8da60eed1e50aa507ac2793b4a4c5517265f859f223bb4f6cadc6fb53430304baea18189e2b5ddd266c38f5c325ba391a50fcd34060d217c4118889c4275e40a8428099ddfa3cc0d8241c22fc1554318e922f3b1257f2046d70df460c5283a539487583ffca1972a19237b06480e0a56d9e185fe4dc3607666d81ed0d9d9f5c5c568a5a0a87160b6d35c73dae9c6177f2b25d90a2598042f4b43bc765fa86a831c401a01c391a8fdc8f8c742f2322a1b8ef18ec7d82f013893c981f6bd96ec57d8e73e1633ae3970721fcea055ecc836ce3", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

12m20.91295592s ago: executing program 4 (id=544):
syz_usb_connect(0x1, 0x492, 0x0, &(0x7f0000000dc0)={0xa, &(0x7f0000000d00)={0xa, 0x6, 0x310, 0x6, 0x5, 0x97, 0x10, 0x4}, 0x0, 0x0, 0x1, [{0x0, 0x0}]})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r2)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
r4 = socket$unix(0x1, 0x2, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000540)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=@newqdisc={0x6c, 0x24, 0x4ee4e6a52ff56541, 0x1001, 0x25dfdbfd, {0x0, 0x0, 0x0, r6, {0x0, 0xb}, {0xffff, 0xffff}, {0x8}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x40, 0x2, [@TCA_TBF_PRATE64={0xc, 0x5, 0xc2240edb8ac75ac7}, @TCA_TBF_BURST={0x8, 0x6, 0xff}, @TCA_TBF_PARMS={0x28, 0x1, {{0x5a, 0x2, 0x84a, 0x4009, 0x8001, 0x800}, {0x8c, 0x1, 0xfffc, 0x7fff, 0x4, 0xb}, 0x5, 0x35, 0x91f}}]}}]}, 0x6c}, 0x1, 0x0, 0x0, 0x40088c1}, 0x50)
r7 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$nl_route_sched(r7, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000580)=@newqdisc={0x58, 0x24, 0x4ee4e6a52ff56541, 0x70b926, 0x25dfdbfe, {0x0, 0x0, 0x0, r8, {0x0, 0x8}, {0xffff, 0xb}, {0xffff, 0xffe0}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x8, 0x3, 0x6, 0x1, 0x1, 0xd, 0x8, 0xfffffffa, 0x8}}}}]}, 0x58}, 0x1, 0x0, 0x0, 0x40000b0}, 0x4890)
r9 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r10=>0x0})
sendmsg$nl_route_sched(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000480)=@newqdisc={0x34, 0x24, 0x4ee4e6a52ff56561, 0x70bd2c, 0x1, {0x0, 0x0, 0x0, r10, {0x0, 0xd}, {0xb, 0x8}, {0xc, 0xffff}}, [@qdisc_kind_options=@q_codel={{0xa}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x20000080}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"})

12m20.761707586s ago: executing program 32 (id=544):
syz_usb_connect(0x1, 0x492, 0x0, &(0x7f0000000dc0)={0xa, &(0x7f0000000d00)={0xa, 0x6, 0x310, 0x6, 0x5, 0x97, 0x10, 0x4}, 0x0, 0x0, 0x1, [{0x0, 0x0}]})
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r2)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
r4 = socket$unix(0x1, 0x2, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000540)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=@newqdisc={0x6c, 0x24, 0x4ee4e6a52ff56541, 0x1001, 0x25dfdbfd, {0x0, 0x0, 0x0, r6, {0x0, 0xb}, {0xffff, 0xffff}, {0x8}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x40, 0x2, [@TCA_TBF_PRATE64={0xc, 0x5, 0xc2240edb8ac75ac7}, @TCA_TBF_BURST={0x8, 0x6, 0xff}, @TCA_TBF_PARMS={0x28, 0x1, {{0x5a, 0x2, 0x84a, 0x4009, 0x8001, 0x800}, {0x8c, 0x1, 0xfffc, 0x7fff, 0x4, 0xb}, 0x5, 0x35, 0x91f}}]}}]}, 0x6c}, 0x1, 0x0, 0x0, 0x40088c1}, 0x50)
r7 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$nl_route_sched(r7, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000580)=@newqdisc={0x58, 0x24, 0x4ee4e6a52ff56541, 0x70b926, 0x25dfdbfe, {0x0, 0x0, 0x0, r8, {0x0, 0x8}, {0xffff, 0xb}, {0xffff, 0xffe0}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x8, 0x3, 0x6, 0x1, 0x1, 0xd, 0x8, 0xfffffffa, 0x8}}}}]}, 0x58}, 0x1, 0x0, 0x0, 0x40000b0}, 0x4890)
r9 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r10=>0x0})
sendmsg$nl_route_sched(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000480)=@newqdisc={0x34, 0x24, 0x4ee4e6a52ff56561, 0x70bd2c, 0x1, {0x0, 0x0, 0x0, r10, {0x0, 0xd}, {0xb, 0x8}, {0xc, 0xffff}}, [@qdisc_kind_options=@q_codel={{0xa}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x20000080}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"})

11m6.07504095s ago: executing program 1 (id=755):
creat(&(0x7f00000002c0)='./file0\x00', 0x14f)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x80400, 0x0)
ioctl$COMEDI_DEVCONFIG(r3, 0x40946400, 0x0)

11m5.074422662s ago: executing program 1 (id=757):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x1000401, &(0x7f00000000c0)={[{@grpjquota}, {@errors_continue}, {@noblock_validity}]}, 0x1, 0x4ca, &(0x7f0000000500)="$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")
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8f}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x25, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f02ebbeeb, 0xa031, 0xffffffffffffffff, 0xe539e000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0)
sendmsg$nl_route_sched(r1, 0x0, 0x0)
recvfrom(r0, 0x0, 0x0, 0x100, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYRES32], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
r5 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)
r6 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCL_PASTESEL(r6, 0x541c, &(0x7f0000000000))
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
unshare(0x6020400)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x72, 0x0, 0x7fff0000}]})

11m3.688348626s ago: executing program 1 (id=761):
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xe)
pipe2$9p(0x0, 0x80800)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeeb, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
r2 = fsopen(&(0x7f0000001340)='cgroup2\x00', 0x0)
syz_clone(0x2280, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
openat$cgroup_procs(0xffffffffffffffff, &(0x7f00000002c0)='cgroup.procs\x00', 0x2, 0x0)
mremap(&(0x7f000046d000/0x4000)=nil, 0x4000, 0x4000, 0x3, &(0x7f0000058000/0x4000)=nil)
madvise(&(0x7f0000000000/0x400000)=nil, 0x40001e, 0x15)

11m1.663925571s ago: executing program 1 (id=770):
sendmsg$inet(0xffffffffffffffff, &(0x7f0000003c00)={0x0, 0x0, &(0x7f0000000700)=[{0x0}, {0x0}, {&(0x7f0000000740)}], 0x3}, 0x41)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000540), 0x82, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000000)=[{0x0}, {0x0}], 0x2}, 0x20005005)
sendmmsg$alg(0xffffffffffffffff, &(0x7f0000007640)=[{0x0, 0x0, &(0x7f0000000880)=[{&(0x7f0000000740)="bd9c629b909dddebc0508bf412865663aded7919352b141faa7dc00680ce5a44ff1ed1c813c6c1e58e28c509cd269d0e79fff4d2ea4c1da69fa672c4f5eb15788aa929e9f5c94e443cf68a1759ee805958a7c76c8c7f11a39ea32c019c2f2c8cce48d92d659f623081974c0135dc1fe2a057f725", 0x74}], 0x1, &(0x7f00000008c0)=[@iv={0x50, 0x117, 0x2, 0x3c, "bd19a432ebf20eb0a0ee39d005e869fe74b9842d9c92be0054aa20f9dbfeb8e59fa49c486a1a51c45c98c886185e506d1cf93255718fc79d6b6d1d43"}, @assoc={0x18, 0x117, 0x4, 0x6}], 0x68, 0x40800}], 0x1, 0x48040)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3", 0x5)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf8a}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

11m1.337313121s ago: executing program 1 (id=771):
kexec_load(0x3, 0x1, &(0x7f00000005c0)=[{&(0x7f0000000100)="047715ac7141c111fab2fcda5de4dc8b278029bcb1bd17524f177856cac105f463c77e2d2ab44d875217dc82baa911f236f959fb9227524d4fe6b621a19823457d04c399283edbac755852623c82f7206d26e918a2981c8f68476969bf8c4bcd37ba24e4ba1683339879a11b854a7478f898805f327af12eaab8ac918c201b7f93", 0x81, 0x5, 0xffffffff}], 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000003c00)={0x0, 0x0, &(0x7f0000000700)=[{0x0}, {0x0}, {&(0x7f0000000740)}], 0x3}, 0x41)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48001}, 0x4044050)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000540), 0x82, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000280), 0x80, 0x0)
sendmmsg$alg(r2, &(0x7f0000007640)=[{0x0, 0x0, &(0x7f0000000880)=[{&(0x7f0000000740)="bd9c629b909dddebc0508bf412865663aded7919352b141faa7dc00680ce5a44ff1ed1c813c6c1e58e28c509cd269d0e79fff4d2ea4c1da69fa672c4f5eb15788aa929e9f5c94e443cf68a1759ee805958a7c76c8c7f11a39ea32c019c2f2c8cce48d92d659f623081974c0135dc1fe2a057f725", 0x74}], 0x1, &(0x7f00000008c0)=[@iv={0x68, 0x117, 0x2, 0x50, "bd19a432ebf20eb0a0ee39d005e869fe74b9842d9c92be0054aa20f9dbfeb8e59fa49c486a1a51c45c98c886185e506d1cf93255718fc79d6b6d1d434c678807c5ab4264c8ba94065d11d8ee27dd16f4"}, @assoc={0x18, 0x117, 0x4, 0x6}], 0x80, 0x40800}, {0x0, 0x0, &(0x7f0000003900)=[{&(0x7f00000009c0)="c2debd9e2d4617d17e01e704d3576f8b26b757ffa164a105efcaa28e5d52d4383258c148e95e4ee927dab4ba9cdbf4dbf6b0e19f8b7e9a95211ec6aedfd78a09200b7076afabdae9c87c6837e202845b6cf3ac6b728856d66eef286087e0154a40c153e5fe7505615fb53b33f629928c80aeea7fd091180968d44cd4544b6bb4c116f4d6c4c3d148eb273bd4fa76ad8f709ed07bd2a91564fc364f1b971b0e005fe1d24f1b0d7f157b695c625cc39aac2d6f07b11d926c801fb1b98e", 0xbc}, {&(0x7f0000000b40)="86545d2157646172b815818bfd0e1457556266898579380233e0e3853e4a118a5a2bcc52eeea6b2dc4fc32c3f81f9b1d06cd70a1b428c05442", 0x39}, {&(0x7f0000000b80)="0d4842ef613cd072196eae2d74d31c309df1c61a888039b1a23acbea852fb54afae1761845284c6e484aa5154a2b418ffe2ac1d6363010c9d8f2d75a71eb55849202714884c6a0a760f5e028016a68fc07407f5671a5a4a8c91e9d056039df63390376a7359c6fc2059d1e3ffeec1ff0f4c09099e8e61c268324d0fc621f6dc2912e4bd5316ff808ac5126ade9b759e1489c04a517e992d7b56d9df469c0c906000e0f82c089ec12677e7a", 0xab}, {&(0x7f0000000d40)="7edb39aa76e39c9fc185dd49e1d028ba5e90ec3bb54d3c486f189f406945a495fe7b4ad51446c162f581368e4d711db9add53f7917e1dc55ae9543ea21d63f85d9a5a996f6fa32ead42a9b7e97a7ae1b4a8f76ff9321b4ec76606f9709bb57eda4e8c45e797ff2cabc03a3d03ca57b5239", 0x71}], 0x4, 0x0, 0x0, 0xc0}], 0x2, 0x48040)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f00000004c0)=',8Z', 0x3)
r4 = accept4(r3, 0x0, 0x0, 0x800)
sendmmsg$alg(r4, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r4, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

10m59.968002134s ago: executing program 1 (id=775):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
openat$zero(0xffffffffffffff9c, 0x0, 0x40, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f0000001c40), 0x3, 0x571, &(0x7f0000000600)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r3, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)

10m43.092773473s ago: executing program 33 (id=775):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
openat$zero(0xffffffffffffff9c, 0x0, 0x40, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f0000001c40), 0x3, 0x571, &(0x7f0000000600)="$eJzs3c9rHFUcAPDvbJL+1qZQinqQQA9WajdN4o8KQutRtFjQe12SaSjZdEt2U5pYaHuwFy9SBBEL4h/g3WPxH/CvKGihSAl68LIym9lmm2Tzq1uzdT4fmPa9mdl85+2b9/Y7O7tsAIU1kv1Ting1Ir5JIg53bBuMfOPI8n5Lj29MZksSzeZnfyaRZOuazebNfP8k//9gXnklIn79KuJkaW3c+sLiTKVaTefy+mhj9upofWHx1OXZynQ6nV4Zn5g4887E+Pvvvduztr554e/vP73/0Zmvjy999/PDI3eTOBeH8m1Zu3oQ4lZnZSRG8udkKM6t2nGsB8H6SbLbB8CODOTjfCiyOeBwDOSjHvj/y167m0BBJcY/FFQ7D2hf2/foOviF8ejD5Qugte0fXH5vJPa1ro0OLCVPXRll17vDPYifxfjlj3t3syU2eR/iZg/iAbTduh0RpwcH185/ST7/7dzp1pvHG1sdo2ivP7Cb7mf5z1vr5T+lJ/lPrJP/HFxn7O7E5uO/9LAHYbrK8r8P1s1/n0xdwwN57aVWzjeUXLpcTU9HxMsRcSKG9mb1je7nnFl60Oy2rTP/y5YsfjsXzI/j4eDepx8zVWlUnqXNnR7djnhtJf9NYs38v6+V667u/+z5uLDFGMfSe69327Z5+zv1PgNu/hTxxrr9v3JHK9n4/uRo63wYbZ8Va/1159hv3eJvr/29l/X/gY3bP5x03q+tbz/Gj/v+Sbtt2+n5vyf5vFXek6+7Xmk05sYi9iSfrF0/vvLYdr29f9b+E8c3nv/WO//3R8QXW2z/naN3uu7aD/0/ta3+337hwcdf/tAt/tb6/+1W6US+Zivz31YP8FmeOwAAAAAAAOg3pYg4FEmp/KRcKpXLy5/vOBoHStVavXHyUm3+ylS0vis7HEOl5TvdA63Htz8PMZZ/HrZdH19Vn4iIIxHx7cD+Vr08WatO7XbjAQAAAAAAAAAAAAAAAAAAoE8c7PL9/8zvA7t9dMBz5ye/obg2Hf+9+KUnoC95/YfiMv6huIx/KC7jH4rL+IfiMv6huIx/KC7jHwAAAAAAAAAAAAAAAAAAAAAAAAAAAHrqwvnz2dJcenxjMqtPXVuYn6ldOzWV1mfKs/OT5cna3NXydK02XU3Lk7XZzf5etVa7OjYe89dHG2m9MVpfWLw4W5u/0rh4ebYynV5Mh/6TVgEAAAAAAAAAAAAAAAAAAMCLpb6wOFOpVtM5ha6Fs9EXh7HjQrJZL5/NT4YdhRjc/QYqPIfCLk9MAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANDh3wAAAP//hO41Zw==")
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r3, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)

10m5.573747211s ago: executing program 3 (id=906):
socket$unix(0x1, 0x5, 0x0)
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r1=>0x0})
connect$can_bcm(r0, &(0x7f00000000c0)={0x1d, r1}, 0x10)
sendmsg$can_bcm(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)=ANY=[], 0x4640}, 0x2}, 0x0)

10m5.344993939s ago: executing program 3 (id=907):
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
keyctl$search(0xa, 0x0, &(0x7f0000000200)='trusted\x00', &(0x7f0000000240)={'syz', 0x3}, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
select(0x406f205456671cf9, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x5000000}, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x3000000, 0x0, 0x0, 0xffffffffffffffff}, 0x0)
ioctl$TCSETSW2(r1, 0x402c542c, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r2, 0x0, 0x13, &(0x7f0000000100)=0x2, 0x4)
bind$inet(r2, &(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff, 0xf, 0x0, @void}, 0x10)
ioctl$TCSETS(r1, 0x5402, &(0x7f0000000140)={0x6, 0x5, 0xfffffffb, 0x3, 0xd, "4e51d01d5236922570b08e53c9119bbedc290f"})
process_vm_readv(r0, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xf, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0xfffffffd}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x1e, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r3, @ANYBLOB="0000000000000000b7080000fcffffff7b8af8ff00000000bfa2000000000000070200000008000000b70400000000000085000000030000009500"/72], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_lookup=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'batadv_slave_0\x00'})
sendmsg$nl_route_sched(r4, 0x0, 0x0)

10m5.29315979s ago: executing program 3 (id=908):
socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
bpf$PROG_LOAD(0x2, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, 0x0, 0x0)
fsopen(0x0, 0x1)
prlimit64(0x0, 0x2, &(0x7f0000001e40)={0x0, 0x400}, 0x0)
syz_genetlink_get_family_id$team(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
socket$nl_audit(0x10, 0x3, 0x9)
r3 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000c80)={'lo\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000001200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0x4ee4e6a52ff56541, 0x70bd28, 0x4, {0x0, 0x0, 0x0, r6, {}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x1c, 0x2, [@TCA_HTB_INIT={0x18, 0x2, {0x3, 0x80000001}}]}}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x5, 0x7, 0x400, 0x1, 0x1, 0x2, 0xe5, 0x1}}, {0x6, 0x2, [0xccf3]}}]}, @TCA_RATE={0x6, 0x5, {0x0, 0xea}}]}, 0x78}}, 0x20000000)
write$UHID_CREATE2(r3, &(0x7f00000007c0)=ANY=[@ANYBLOB="0b00000073797a31000000dfff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a30000037b35f0a000089b4c45a10000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001"], 0x119)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x8031, r3, 0x1000)

9m50.732523215s ago: executing program 3 (id=950):
r0 = socket$unix(0x1, 0x5, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6a72c000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
ioctl$vim2m_VIDIOC_ENUM_FMT(0xffffffffffffffff, 0xc0405602, 0x0)
syz_open_procfs$pagemap(0x0, &(0x7f0000001080))
madvise(&(0x7f0000cf6000/0x4000)=nil, 0x4000, 0x16)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r4, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r5=>0x0})
connect$can_bcm(r4, &(0x7f00000000c0)={0x1d, r5}, 0x10)
sendmsg$can_bcm(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)=ANY=[@ANYBLOB="0100000003ece1e40ad8871461ab0800", @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=r0, @ANYBLOB="3bf81bb9f9"], 0x20000600}, 0x1, 0x0, 0x0, 0x40000}, 0x1)
sendmsg$can_bcm(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)=ANY=[], 0x4640}, 0x2}, 0x0)

9m48.604260893s ago: executing program 3 (id=953):
kexec_load(0x3, 0x1, &(0x7f00000005c0)=[{&(0x7f0000000100)="047715ac7141c111fab2fcda5de4dc8b278029bcb1bd17524f177856cac105f463c77e2d2ab44d875217dc82baa911f236f959fb9227524d4fe6b621a19823457d04c399283edbac755852623c82f7206d26e918a2981c8f68476969bf8c4bcd37ba24e4ba1683339879a11b854a7478f898805f327af12eaab8ac918c201b7f93", 0x81, 0x5, 0xffffffff}], 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000003c00)={0x0, 0x0, &(0x7f0000000700)=[{0x0}, {0x0}, {&(0x7f0000000740)}], 0x3}, 0x41)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48001}, 0x4044050)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000540), 0x82, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000280), 0x80, 0x0)
sendmmsg$alg(r2, &(0x7f0000007640)=[{0x0, 0x0, &(0x7f0000000880)=[{&(0x7f0000000740)="bd9c629b909dddebc0508bf412865663aded7919352b141faa7dc00680ce5a44ff1ed1c813c6c1e58e28c509cd269d0e79fff4d2ea4c1da69fa672c4f5eb15788aa929e9f5c94e443cf68a1759ee805958a7c76c8c7f11a39ea32c019c2f2c8cce48d92d659f623081974c0135dc1fe2a057f725", 0x74}], 0x1, &(0x7f00000008c0)=[@iv={0x68, 0x117, 0x2, 0x50, "bd19a432ebf20eb0a0ee39d005e869fe74b9842d9c92be0054aa20f9dbfeb8e59fa49c486a1a51c45c98c886185e506d1cf93255718fc79d6b6d1d434c678807c5ab4264c8ba94065d11d8ee27dd16f4"}, @assoc={0x18, 0x117, 0x4, 0x6}], 0x80, 0x40800}, {0x0, 0x0, &(0x7f0000003900)=[{&(0x7f00000009c0)="c2debd9e2d4617d17e01e704d3576f8b26b757ffa164a105efcaa28e5d52d4383258c148e95e4ee927dab4ba9cdbf4dbf6b0e19f8b7e9a95211ec6aedfd78a09200b7076afabdae9c87c6837e202845b6cf3ac6b728856d66eef286087e0154a40c153e5fe7505615fb53b33f629928c80aeea7fd091180968d44cd4544b6bb4c116f4d6c4c3d148eb273bd4fa76ad8f709ed07bd2a91564fc364f1b971b0e005fe1d24f1b0d7f157b695c625cc39aac2d6f07b11d926c801fb1b98e", 0xbc}, {&(0x7f0000000b40)="86545d2157646172b815818bfd0e1457556266898579380233e0e3853e4a118a5a2bcc52eeea6b2dc4fc32c3f81f9b1d06cd70a1b428c05442", 0x39}, {&(0x7f0000000b80)="0d4842ef613cd072196eae2d74d31c309df1c61a888039b1a23acbea852fb54afae1761845284c6e484aa5154a2b418ffe2ac1d6363010c9d8f2d75a71eb55849202714884c6a0a760f5e028016a68fc07407f5671a5a4a8c91e9d056039df63390376a7359c6fc2059d1e3ffeec1ff0f4c09099e8e61c268324d0fc621f6dc2912e4bd5316ff808ac5126ade9b759e1489c04a517e992d7b56d9df469c0c906000e0f82c089ec12677e7a", 0xab}, {&(0x7f0000000d40)="7edb39aa76e39c9fc185dd49e1d028ba5e90ec3bb54d3c486f189f406945a495fe7b4ad51446c162f581368e4d711db9add53f7917e1dc55ae9543ea21d63f85d9a5a996f6fa32ead42a9b7e97a7ae1b4a8f76ff9321b4ec76606f9709bb57eda4e8c45e797ff2cabc03a3d03ca57b5239", 0x71}], 0x4, 0x0, 0x0, 0xc0}], 0x2, 0x48040)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3", 0x5)
r4 = accept4(r3, 0x0, 0x0, 0x800)
sendmmsg$alg(r4, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0x4d}, {0x0}], 0x3, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r4, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

9m47.517749928s ago: executing program 3 (id=960):
socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
bpf$PROG_LOAD(0x2, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, 0x0, 0x0)
fsopen(0x0, 0x1)
prlimit64(0x0, 0x2, &(0x7f0000001e40)={0x0, 0x400}, 0x0)
syz_genetlink_get_family_id$team(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
socket$nl_audit(0x10, 0x3, 0x9)
r3 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000c80)={'lo\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000001200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0x4ee4e6a52ff56541, 0x70bd28, 0x4, {0x0, 0x0, 0x0, r6, {}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x1c, 0x2, [@TCA_HTB_INIT={0x18, 0x2, {0x3, 0x80000001}}]}}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x5, 0x7, 0x400, 0x1, 0x1, 0x2, 0xe5, 0x1}}, {0x6, 0x2, [0xccf3]}}]}, @TCA_RATE={0x6, 0x5, {0x0, 0xea}}]}, 0x78}}, 0x20000000)
write$UHID_CREATE2(r3, &(0x7f00000007c0)=ANY=[@ANYBLOB="0b00000073797a31000000dfff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a30000037b35f0a000089b4c45a10000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001"], 0x119)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x8031, r3, 0x1000)

9m31.380040113s ago: executing program 34 (id=960):
socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
bpf$PROG_LOAD(0x2, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, 0x0, 0x0)
fsopen(0x0, 0x1)
prlimit64(0x0, 0x2, &(0x7f0000001e40)={0x0, 0x400}, 0x0)
syz_genetlink_get_family_id$team(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
socket$nl_audit(0x10, 0x3, 0x9)
r3 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000c80)={'lo\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000001200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=@newqdisc={0x78, 0x24, 0x4ee4e6a52ff56541, 0x70bd28, 0x4, {0x0, 0x0, 0x0, r6, {}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x1c, 0x2, [@TCA_HTB_INIT={0x18, 0x2, {0x3, 0x80000001}}]}}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x5, 0x7, 0x400, 0x1, 0x1, 0x2, 0xe5, 0x1}}, {0x6, 0x2, [0xccf3]}}]}, @TCA_RATE={0x6, 0x5, {0x0, 0xea}}]}, 0x78}}, 0x20000000)
write$UHID_CREATE2(r3, &(0x7f00000007c0)=ANY=[@ANYBLOB="0b00000073797a31000000dfff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a30000037b35f0a000089b4c45a10000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001"], 0x119)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x8031, r3, 0x1000)

5.32875815s ago: executing program 0 (id=2688):
socket$l2tp(0x2, 0x2, 0x73)
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000480)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe2(&(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
splice(r1, 0x0, r3, 0x0, 0x6, 0x0)
splice(r2, 0x0, r1, 0x0, 0x6, 0x3)
close_range(r0, 0xffffffffffffffff, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)

5.226690913s ago: executing program 0 (id=2693):
bind$inet6(0xffffffffffffffff, &(0x7f00000002c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x11, 0xb, &(0x7f00000001c0)=ANY=[@ANYBLOB="18030000000000000000000000000080851000000600000018000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000140)={'syztnl1\x00', &(0x7f0000000080)={'ip6tnl0\x00', <r1=>0x0, 0x4, 0x3, 0xb, 0x79, 0x74, @remote, @ipv4={'\x00', '\xff\xff', @remote}, 0x8, 0x1, 0x9d1, 0xe}})
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r0, 0x89f2, &(0x7f0000000600)={'gretap0\x00', &(0x7f0000000540)={'erspan0\x00', r1, 0x700, 0x8, 0x8001, 0x3, {{0x20, 0x4, 0x0, 0x2, 0x80, 0x64, 0x0, 0x0, 0x29, 0x0, @remote, @broadcast, {[@end, @timestamp_addr={0x44, 0xc, 0xdf, 0x1, 0x8, [{@empty, 0x5}]}, @cipso={0x86, 0x3a, 0x3, [{0x2, 0xa, "4f5edb8487b05391"}, {0x5, 0xd, "0b1d8fe0aec6d8653ac286"}, {0x1, 0xb, "97759a7b512c91a736"}, {0x1, 0x12, "ec89cedf01b54cad80e193ea209092fc"}]}, @generic={0x94, 0xa, "2e5b3621a89cfa92"}, @lsrr={0x83, 0x17, 0xe2, [@broadcast, @rand_addr=0x64010101, @rand_addr=0x64010101, @local, @broadcast]}, @end, @end]}}}}})
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
msgctl$IPC_SET(0x0, 0x1, 0x0)
r3 = syz_open_dev$sg(&(0x7f00000001c0), 0x508d48d4, 0x40902)
ioctl$SCSI_IOCTL_SEND_COMMAND(r3, 0x1, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, 0x0)
bpf$OBJ_GET_MAP(0x7, &(0x7f0000002940)=@o_path={&(0x7f0000002900)='./file0\x00', 0x0, 0x10, r3}, 0x18)
bpf$MAP_LOOKUP_BATCH(0x18, 0x0, 0x0)
bind$can_j1939(0xffffffffffffffff, 0x0, 0x0)
syz_emit_vhci(0x0, 0x7)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x2404c094)
pselect6(0x40, &(0x7f0000000240)={0x0, 0x0, 0xd0, 0x7d, 0x0, 0x8000, 0x4, 0x1}, 0x0, &(0x7f00000002c0)={0x3ff, 0x6, 0xffffffffffffffff, 0x9, 0x0, 0xa, 0x80000006, 0x400}, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0x3d, 0x0, 0x0)
write$cgroup_int(0xffffffffffffffff, 0x0, 0x0)
close(0x3)

4.725480849s ago: executing program 0 (id=2697):
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x0)
execve(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
r0 = socket$inet6(0xa, 0x3, 0x40)
pipe2(&(0x7f0000000040)={<r1=>0xffffffffffffffff}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000100)={'vxcan1\x00'})

4.570982234s ago: executing program 0 (id=2699):
socket$packet(0x11, 0x3, 0x300)
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x20000010}, 0x94)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
pipe2(&(0x7f00000000c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x4000)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x40980, 0x0)
r3 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x0, 0x0)
ioctl$COMEDI_DEVCONFIG(r3, 0x40946400, &(0x7f00000000c0)={'pcl818\x00', [0x100, 0x80000000, 0x2, 0xc, 0x1, 0x5, 0x79, 0x3, 0x80008, 0x0, 0x2, 0x1, 0x7, 0x1, 0x2, 0xfd, 0xfffffffb, 0xd, 0x5, 0x80000000, 0x8, 0x174000, 0x0, 0x20001e58, 0xffffffff, 0xf3a2, 0x3, 0x80000008, 0xa6b5, 0x24a05ffd, 0xffffffff]})
read$FUSE(r3, 0x0, 0x0)
r4 = openat$zero(0xffffffffffffff9c, 0x0, 0x2, 0x0)
sendfile(r4, r4, 0x0, 0x400000000000000)
syz_open_dev$evdev(0x0, 0x4, 0x2)
statx(0xffffffffffffffff, 0x0, 0x400, 0x200, 0x0)
getsockopt$sock_cred(r1, 0x1, 0x11, 0x0, &(0x7f0000000440))
fchownat(r4, 0x0, 0x0, 0x0, 0x1000)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_GET_STATS_CPU(r5, 0x0, 0x4000000)
setsockopt$llc_int(0xffffffffffffffff, 0x10c, 0x3, &(0x7f0000000000)=0x3f, 0x4)
r6 = socket(0x10, 0x2, 0x0)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r6, 0x10e, 0x1, &(0x7f0000000000)=0x1b, 0x4)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
socket$inet6(0xa, 0x5, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040))
listen(0xffffffffffffffff, 0x706)
r7 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000100), 0x6101, 0x0)
sendmsg$IPSET_CMD_FLUSH(r4, &(0x7f0000001500)={0x0, 0x0, 0x0}, 0x0)
fgetxattr(r7, 0x0, 0x0, 0x0)
splice(r5, 0x0, r2, 0x0, 0x6, 0x0)

4.356943032s ago: executing program 7 (id=2702):
r0 = socket(0x10, 0x803, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000100))
r1 = socket(0x1, 0x803, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=@ipv6_newaddr={0x34, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0xa, 0x40, 0x0, 0x0, r2}, [@IFA_LOCAL={0x14, 0x2, @mcast1={0xff, 0x2}}, @IFA_FLAGS={0x8, 0x8, 0x501}]}, 0x34}}, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=@ipv6_newaddr={0x34, 0x14, 0x9535393fea6295a5, 0x0, 0x0, {0xa, 0x68, 0x42, 0xc8, r2}, [@IFA_LOCAL={0x14, 0x2, @mcast1={0xff, 0x2}}, @IFA_FLAGS={0x8, 0x8, 0x706}]}, 0x34}, 0x1, 0x0, 0x0, 0x80}, 0x0)

4.351616312s ago: executing program 7 (id=2703):
syz_usb_connect$uac1(0x3, 0xdc, &(0x7f00000017c0)=ANY=[@ANYBLOB="12010000000000106b1d01014000010203010902ca0003010070000904000000010100000a24010800000201020d24060000030800000000000000240803960c03112d9cd2ce0c240208000103000000ff000924060506020100000924030003030005490c24"], 0x0)

4.224777455s ago: executing program 6 (id=2706):
mknodat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x11c0, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000380), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
lsetxattr$security_ima(&(0x7f0000000300)='./file0\x00', &(0x7f0000000080), &(0x7f00000000c0)=@sha1={0x1, "ca46bb42f431c3e0a36fd25058505cb8e13b6aee"}, 0xfd3f, 0x0)
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000240)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x202, 0x0, 0x8, 0x5, 0x0, 0x0, 0x0, 0x0, 0x6dbf}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f0000008380)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

3.595457116s ago: executing program 5 (id=2711):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
close(r0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a4c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc080003400000001408000c4000000e45400000000c0a010100000000000000000a0000060900020073797a31000000000900010073797a310000000014000380100000800c00018006000100d103000014000000110001"], 0xb4}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000002c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSETELEM={0x40, 0xc, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0x6}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x14, 0x3, 0x0, 0x1, [{0x10, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0xc, 0x1, 0x0, 0x1, [@NFTA_DATA_VALUE={0x5, 0x1, '\x00'}]}]}]}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x3}}}, 0x68}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)

3.432888011s ago: executing program 5 (id=2713):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x80000001, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
r0 = openat$tun(0xffffffffffffff9c, 0x0, 0x1c1342, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x20000, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
syz_clone(0x91a0200, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r3, 0x0, 0x0)
sendmsg$rds(r3, &(0x7f0000000080)={&(0x7f0000000180)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}, 0x0)
r4 = memfd_create(&(0x7f0000000440)='+\x8b\x8a\xa9\x16\x11\x91J\xbc+  \x18\x17\xc2:}\xa3\x9bO\xdd\xdf\xdf\x92\xd5\xed\xb4\x17\xe5\xd6\x9a\xb2\xd8\x9ba\xde\xb2.F\xc0\x99}|\xaf\xd3\x1d\x84[*_\x9f\x9d\xb0rYP\x1b\x9f \xe0\x9cgq\x103\x89\x11\x87Rv\x169\xdf\xe3>B\x04\x00\x00\x00W\xd3\xec\xfb\xdf?\xa2\x90+\xa4!\xb2\xf2\xff\x90\a\xc3\x12\xc4;\xffh\xf1x=\xb9c\xce\x03h\xdap\x88U\x1788\x82\xd7\xfd\x83\x00Sx\x91%\x99_\xfe\xd4c\x83\x86\x0f\xa4a-\xaf\x9e\xd9\xef\xe0)]\x00F\xfa\x03\xbc4\xc4\x9a\v\x03\x8b\xa4\xf3\x8f\xf4\"\'\xd3\a9\x14H}j&~\xe9\x16\x83o\xbd\xab\xcd[\xbd\xcb\x04\xfc\xe7\xe3\x9e?\x12\xf0\xf4\x83M3\xd88\x92?@\v\xe6\xd1\xd2\xe4\xde\xdaUeJ\x9fR\xd1`\xfa\xc8\v\xed\xfd\x0e\xc8\x89W\x847\x88\x82\x94\x14\xe33\xb7H\xc8b\xd6@3F#\xb7\x04C\x8dm\t\x16a\x0fI\xf4\xfe\xf8\x06j\x19Pz\x03\x00\x0f\x98`W\xdb\xc6\"81A\xa4\x8bT\xf1\xcb\xab\xa3\t\xef\xdf&\x0e\xad\x03\x123.\xc2V\xaa\xd5\xf8\xde\x8aV\xa4p{\xcez\xa2\x92 \x00*wLO\f\x97X\x05\x9a\xc2\xe8\x85\x9d\xcb\xc8\xf0\xc4\x01\x03\xe3?\x9f1\xf4\xfb\xa5y`KB\xdf\xae#\x94C\a\x04\xea\xccG\xf2\b\x8f\xf7\xb1\xe96\x90\xf5P\xa4\'\f\xc9\xc5H\x0f;\xd3\xe2\at\x9bJ\xe6\xce\xe3\xa24\x196\xc5Q\xa1K\x95\xd6\xfal\xe9\xd1\\\r&\xb2c\xb3\x8d\xa7\xb7\xa8\x03S\xbd\xdd\b{\xae\f\x10\xc2\xbb\xd0\xdd*\xa3\xb4\fJ\x00X\xab`N; LF\xa5D\xee\xdf\x7f\x80p\xf6o\x1c\xbdXR\xf2\xa0\x81a\xa1\xe1B\x93Xn\xaf\xfc\x05?\xab\xac\x91x\xa8#\xe1\xbeQ\xd1^\x9b\xb9)\xd3\n\xf7(3!\x18\b\xc0\xaampRl\xfdQ\x03\x8c\xd5\xe4\\\xed\x9a\xd1?\xd21\xc8\x90\x1dl|\xd1\x14\xbc3\xe0\x1e\x0e\xe6\x88Y\x99K\x93\x1c@_P\x8c\xc7\x9eZ\xb74KT:\x8a\xdbJ#w\x18\x14\x00\x93\x86\xa5wo\xf6M\xe7D\xf4*\xe3X\x1d\x19\x83\xa7w\xc7+7\x89s\xed\x8a\xd7O\xdd\rhh`\xc0\xa8$\x06pu\xa0\xd0L\x0ez@I\xb8\x83\xb2f\x93j\a0I\xc8l\xe5\x9b\x06\xb5\xac`d\xa3\xcf/\x14\x10\xab\xab\t\xec\xc1c\fA\xee\xdc\xef\xbap@*7\x86\xdf\',\x03Y\xb1$\xf0\xb5}\xf0\x82%)\xdeA\x1ed\x85m\x80\xd2\xcf@\x06}\xea\xe7w`\xa5\x11\x9f\x9b\x9e\x8f\xb7cb\x1a\xe1\xcf\x87\x1c\\\xf5\xc21\xf7\x82C*\xd5;\x00\x00\x00\x00\x03\xba\xe3\xdc\x92\'\x8e\xd5\x7fG\xfd.\x91\x89T\x99t\xd4d,\xd5\x92O\xf1\xafT!Y\x8e\\\xac\xf7\x11R\x05p\x1a\"\r\xe9\xe5\x8b&\x0f\x8c\xfb\xef\xf8\xd5\x18\xde\xeb\xe5\x19\xdd\xebQ8\xc5iS+\x06D\x16\xfe\xf5.\xe5\v\x89\xb0\"\xa3M\xe9\x81\x11P\xdb\xc4\xc2y\x14\x04\x06\xf6\f\xb0\xecz\x8d`\xb5\x9b\xb43\xcc1\xa7\x9e\xa8\xb5\'\xc6MAe\x0f\xd1\xfcG\xc2/\xe8\xe9t\xcaQ\xf1\fI\x1chM\xc1\x92\xe3\xc3\x01M\xc8/\xefJ\xcb\xd0]\f\xff\xf5\x92\xce\x97Z\xea\xe8\x99\xfa\x96\xce\xa7\x02\xad\xa2\xce\x955\xeaNg\x02\xcd\xfd\x1a}.\xd3\"x\x89/8H\xc2\x93B\na)\x86\xa9U\xa0\xb7\x18\xfb\xe9\xd1\x97\xf6\xb8\xebN\xe2\x18\x04[\xabW}\xb1\xffo\xae~=\x9dd\x9f\x92\xd2[\xb8\xb6\x1a\x02c\xa1\xd1H\xb7@\x06\x96s\xef\xee\x92\xfaC\x15+\x84%h1O\xe2\xb8\xd3\x19R\x00\f\n\x1cpEn\xad\xa7IRf\xc65\x15<}\xb8\x05\xe4\xb7\x9e\xf3\xda\xdavzB\xf8qj\x9e\xe4\xbd\x05\xcfx\xb5\x12\t\xe0\xf2\'f\xf4+\xb3\xdeA6\x10O\xdd\x9c\xf7B', 0x7)
r5 = syz_open_dev$vim2m(&(0x7f0000000000), 0x47b, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r5, 0xc008561c, &(0x7f0000000040)={0xf0f080, 0x19})
ioctl$FS_IOC_RESVSP(r4, 0x40305829, 0x0)
r6 = socket(0x15, 0x5, 0x0)
connect$unix(r6, &(0x7f0000000080)=@file={0x2, './file0\x00'}, 0x6e)
getsockname$packet(r6, 0x0, &(0x7f0000000000))
r7 = socket(0x15, 0x5, 0x0)
getsockopt(r7, 0x200000000114, 0x271c, &(0x7f0000c35fff)=""/1, &(0x7f0000000000)=0xf002)
ioctl$DRM_IOCTL_IRQ_BUSID(r2, 0xc0106403, &(0x7f0000000000)={0x0, 0x5, 0xde8, 0x7f})
close(r1)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc(0x0, 0xffffffffffffffff)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})

3.255489476s ago: executing program 6 (id=2715):
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x19, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x50)

2.477711431s ago: executing program 6 (id=2716):
syz_mount_image$vfat(&(0x7f0000000180), &(0x7f00000007c0)='./file0\x00', 0x0, &(0x7f0000000ec0)=ANY=[], 0xfd, 0x1be, &(0x7f0000000280)="$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")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x10000, 0x9b)
r1 = inotify_init1(0x800)
inotify_add_watch(r1, &(0x7f0000000040)='./file0\x00', 0x11000103)
ioctl$FAT_IOCTL_GET_ATTRIBUTES(r0, 0x40047211, &(0x7f00000000c0))

2.352947836s ago: executing program 2 (id=2717):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x3f1cfc188760a1d)
getsockopt$XDP_STATISTICS(r1, 0x11b, 0x7, &(0x7f0000000040), &(0x7f00000000c0)=0x30)
setsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f0000000080)=0x5, 0x4)
r2 = syz_open_dev$video4linux(&(0x7f00000006c0), 0x80000006, 0x28040)
ioctl$VIDIOC_SUBDEV_S_FMT(r2, 0xc0585605, &(0x7f00000000c0)={0x0, 0x0, {0x2000001, 0x4, 0x101c, 0x9, 0x6, 0x4, 0x5, 0x4}})
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = openat$tun(0xffffff9c, &(0x7f0000000100), 0x242000, 0x0)
ioctl$TUNSETOFFLOAD(r4, 0x400454d0, 0x4)
ioctl$BTRFS_IOC_GET_DEV_STATS(r0, 0xc4089434, &(0x7f0000000140)={<r5=>0x0, 0x0, 0x1, [0x6928, 0x40, 0x4a, 0x4, 0xb656], [0x8, 0x8, 0x100000, 0x2, 0x7fff, 0x6, 0x1ff, 0xe, 0xfcdf, 0x4, 0xf4df, 0x1, 0x7, 0xa, 0x1, 0x9, 0x1ff, 0xe6ef, 0x2, 0x6d6, 0x14cd, 0xbc7, 0xef0, 0xff, 0x5, 0x1, 0x81, 0x7, 0x6, 0x0, 0x100, 0x2, 0x1, 0x7, 0x2, 0x6, 0x6, 0x4, 0x9, 0x4, 0x2, 0x9, 0x0, 0x0, 0x0, 0x5, 0x6, 0xf, 0xfffffffffffffff9, 0x1, 0x829, 0xffffffffffffffff, 0x3, 0x4, 0x29cd, 0x2, 0x10001, 0x10000, 0x4, 0x5, 0x0, 0x5b2, 0x10001, 0x6, 0x7, 0x3, 0xc, 0xa, 0x8, 0x9, 0x40, 0x0, 0xfff, 0x8000000000000001, 0xa, 0x8, 0x7, 0x8, 0x6, 0x6, 0xfffffffffffffffa, 0x4, 0x5, 0x2, 0x7, 0xd3, 0x7d, 0x4f, 0x4, 0x1, 0xf1d, 0xe3, 0x5, 0x800, 0x1, 0x1, 0x2, 0x1, 0x9, 0x5, 0xffffffffffffff1d, 0x4, 0x1, 0xb29, 0x9, 0x9, 0x0, 0xf70, 0xff, 0xff, 0x6, 0x6a6, 0x2, 0x5, 0x3ff, 0x4, 0x4cba, 0x100, 0xf, 0x0, 0x7]})
ioctl$BTRFS_IOC_DEV_INFO(r3, 0xd000941e, &(0x7f0000000580)={r5, "6d8f9eded295dacbe98b06880301fdeb"})

2.352408236s ago: executing program 5 (id=2718):
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0xa8442, 0x0)
socket$netlink(0x10, 0x3, 0x14)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000500)=ANY=[@ANYBLOB="380000001800010000000000000000000a000000000000000000000008000400", @ANYRES32=r1, @ANYBLOB="06001500070000000c00168008000100", @ANYRES64=r0], 0x38}}, 0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000500)=ANY=[], 0xa0}}, 0x0)
r2 = socket(0x10, 0x3, 0x0)
sendmmsg(r2, &(0x7f0000000000), 0x4000000000001f2, 0xfff0)

2.336479256s ago: executing program 2 (id=2719):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
setsockopt$sock_int(r0, 0x1, 0x2b, &(0x7f00000000c0)=0x8001, 0xffffffffffffff67)

2.256220868s ago: executing program 6 (id=2720):
socket$nl_xfrm(0x10, 0x3, 0x6)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x2000000000000022, &(0x7f0000000200)=0x1, 0x4)
sendto$inet6(r0, &(0x7f0000000000)='D', 0x1, 0x28004044, &(0x7f0000000140)={0xa, 0x4001, 0xfffc, @loopback, 0xfffffffd}, 0x1c)

2.255971818s ago: executing program 5 (id=2721):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendto$inet6(r0, &(0x7f0000000140)='g', 0x1, 0x2000c0d0, &(0x7f0000000300)={0xa, 0x4e20, 0x6, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x3}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000001ac0)=[{{&(0x7f0000000000)={0xa, 0x4e21, 0x2e1, @private1, 0x7}, 0x1c, &(0x7f00000003c0)=[{&(0x7f0000000080)="f8", 0x1}], 0x1}}], 0x1, 0x8000)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r0, 0x84, 0x7c, &(0x7f0000000380), 0x8)

2.185083971s ago: executing program 2 (id=2722):
r0 = socket$inet6(0xa, 0x3, 0x5)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f00000000c0)={@remote, 0x800, 0x0, 0x0, 0x9}, 0x20)

2.162237531s ago: executing program 7 (id=2723):
unshare(0x26020480)
vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x2)

2.142768482s ago: executing program 5 (id=2724):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000300)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x300000, 0x0, 0x0, 0x0, &(0x7f0000000140))
rmdir(&(0x7f0000000400)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

2.092909284s ago: executing program 6 (id=2725):
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB="9feb01001800000000000000020000000100000c02000000000000000000000d00000000c9ec5598fcd836344868d83500000000000000000000cca08a06a6bc9ccc362be3dae197fd900cb12745e3bf910700bfe414189829553833898d95cbe3"], 0x0, 0x34}, 0x28)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x3, 0x0)
syz_emit_ethernet(0x142, &(0x7f0000000880)={@local, @random="dcf7ff7da780", @void, {@ipv4={0x800, @tcp={{0x43, 0x4, 0x0, 0x0, 0x134, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @dev={0xac, 0x14, 0x14, 0x10}, {[@timestamp_addr={0x44, 0x34, 0xb8, 0x1, 0x9, [{@rand_addr=0x44010101, 0x7f}, {@private=0xa010101}, {@loopback, 0x400}, {@multicast1, 0x3}, {@dev={0xac, 0x14, 0x14, 0x1d}, 0x80000000}, {@broadcast, 0x6}]}, @timestamp_prespec={0x44, 0x14, 0x3f, 0x3, 0x8, [{@local, 0xc44}, {@rand_addr=0x64010102, 0x2}]}, @cipso={0x86, 0x57, 0x3, [{0x6, 0xa, "e51b3a44afcb1f74"}, {0x7, 0x3, "11"}, {0x1, 0x9, "c85910688080ae"}, {0x2, 0xd, "4696abeedb435a281d9b74"}, {0x1, 0x2}, {0x5, 0x12, "caeedee5f02ae65b8d055817ae955f51"}, {0x0, 0x10, "9a962482a00ebc42b097323503b6"}, {0x7, 0xa, "233ab731ed3af938"}]}, @timestamp_prespec={0x44, 0x1c, 0x71, 0x3, 0x3, [{@loopback, 0x6}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x7e27}, {@multicast1, 0x828}]}, @ssrr={0x89, 0x23, 0xad, [@remote, @initdev={0xac, 0x1e, 0x0, 0x0}, @broadcast, @empty, @multicast1, @empty, @private=0xa010100, @private=0xa010100]}, @timestamp_addr={0x44, 0x4, 0x55, 0x1, 0xd}, @timestamp_prespec={0x44, 0x14, 0x53, 0x3, 0x6, [{@remote, 0x200}, {@local, 0x7050}]}]}}, {{0x4e20, 0x0, 0x41424344, 0x41424344, 0x0, 0x6, 0xa, 0x0, 0x0, 0x0, 0x0, {[@md5sig={0x13, 0x12, "b3e480a7613088fd71106c027deb3b11"}]}}}}}}}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
syz_open_dev$vim2m(0x0, 0x0, 0x2)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, 0x0}, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000040)={'batadv0\x00', <r5=>0x0})
sendmsg$BATADV_CMD_GET_TRANSTABLE_LOCAL(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r4, 0x701, 0x70bd2c, 0x25dfdbfe, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x20000000)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), r3)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB="180000000100000000000000801800009500000000000000"], &(0x7f0000000000)='GPL\x00', 0xc, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000000c0)={0x0, 0x1}, 0x1}, 0x94)
r7 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCL_BLANKSCREEN(r7, 0x541c, &(0x7f0000000100))
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nl802154(&(0x7f0000004f80), r8)
sendmsg$NL802154_CMD_SET_CHANNEL(r8, &(0x7f0000005100)={0x0, 0x0, &(0x7f00000050c0)={&(0x7f0000005040)={0x2c, r9, 0x1, 0x70bd2c, 0x25dfdbfc, {}, [@NL802154_ATTR_PAGE={0x5, 0x7, 0x3}, @NL802154_ATTR_CHANNEL={0x5}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000011}, 0x48010)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000002c0)=@bpf_ext={0x1a, 0x3, 0x0, &(0x7f0000000080)='syzkaller\x00', 0x7, 0x0, 0x0, 0x41100, 0x20, '\x00', r5, 0x1c, r0, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x1, r6, 0x0, 0x0, 0x0, 0x10, 0xa6}, 0x94)

2.092735864s ago: executing program 2 (id=2726):
r0 = socket(0x2, 0x80805, 0x0)
sendto$inet(r0, 0x0, 0x0, 0x4000, 0x0, 0x0)

2.055818015s ago: executing program 5 (id=2727):
r0 = syz_open_dev$admmidi(&(0x7f0000000080), 0x16, 0x109000)
ioctl$SNDRV_RAWMIDI_IOCTL_STATUS64(r0, 0xc0385720, &(0x7f0000000100))
openat(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
write$RDMA_USER_CM_CMD_INIT_QP_ATTR(0xffffffffffffffff, &(0x7f0000000200)={0xb, 0x10, 0xfa00, {0x0, 0xffffffffffffffff, 0xfff}}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x4a102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
r3 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$IP_VS_SO_SET_ADD(r2, 0x0, 0x482, &(0x7f0000000180)={0x84, @rand_addr=0x64010101, 0x4e22, 0x3, 'wlc\x00', 0x11, 0x80006, 0x6f}, 0x2c)
setsockopt$IP_VS_SO_SET_ADDDEST(0xffffffffffffffff, 0x0, 0x487, &(0x7f0000000000)={{0x84, @private=0xa010102, 0x4e22, 0x3, 'lc\x00', 0x4, 0x8, 0x77}, {@remote, 0x4e20, 0x2, 0xcd}}, 0x44)
setsockopt$IP_VS_SO_SET_FLUSH(r3, 0x0, 0x485, 0x0, 0x0)
getsockopt$SO_TIMESTAMP(0xffffffffffffffff, 0x1, 0x40, 0x0, 0x0)
socket(0x2, 0x4, 0x0)
socket$inet_sctp(0x2, 0x5, 0x84)
r4 = syz_open_procfs(0x0, &(0x7f0000000040)='net/wireless\x00')
preadv(r4, &(0x7f00000026c0)=[{&(0x7f0000002700)=""/4088, 0xff8}], 0x1, 0xc, 0x20)
prctl$PR_SCHED_CORE(0x3e, 0x80000000, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, 0x0, 0x80200, 0x0)
openat$sysctl(0xffffffffffffff9c, 0x0, 0x1, 0x0)
io_setup(0xc, &(0x7f0000000100)=<r5=>0x0)
r6 = timerfd_create(0x0, 0x0)
io_submit(r5, 0x1, &(0x7f00000009c0)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x5, 0x0, r6, 0x0}])
timerfd_settime(r6, 0x3, &(0x7f0000000080)={{0x0, 0x3938700}, {0x77359400}}, 0x0)
clock_adjtime(0x0, 0x0)
io_setup(0x71, &(0x7f0000000140))

2.045814755s ago: executing program 2 (id=2728):
bind$inet(0xffffffffffffffff, &(0x7f0000000200)={0x2, 0x4e21, @multicast2}, 0x10)
socket$inet_mptcp(0x2, 0x1, 0x106)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x11, 0xb, &(0x7f00000001c0)=ANY=[@ANYBLOB="180300000000000000000000000000808510000006000000180000000000000000000000000200006600020000000000180000000000000000000000000000009500000000000000870300000000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = socket(0x1d, 0x2, 0x6)
execve(&(0x7f0000000040)='./file0\x00', &(0x7f0000000180)={[0x0, &(0x7f0000000140)=')/:\x00']}, &(0x7f0000000400)={[&(0x7f0000000280)='\x00', &(0x7f0000000340)='{,\x00', 0x0]})
ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x1, &(0x7f0000000080)=ANY=[])
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f00000004c0)={'vcan0\x00', <r1=>0x0})
bind$can_j1939(r0, &(0x7f0000000100)={0x1d, r1, 0x8000000000000003, {0x0, 0x0, 0x2}, 0xfd}, 0x18)
sendmsg$nl_route_sched(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000001c0)=@newqdisc={0x24, 0x24, 0x300, 0x70bd26, 0x25dfdbfe, {0x0, 0x0, 0x0, r1, {0x10, 0x9}, {0xf, 0x5}, {0xe, 0xfff2}}}, 0x24}, 0x1, 0x0, 0x0, 0x4004845}, 0x480c5)
close(r0)

1.989212467s ago: executing program 7 (id=2729):
r0 = syz_open_dev$dri(&(0x7f00000008c0), 0xd21, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f00000000c0)=[<r1=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r0, 0xc06864a1, &(0x7f0000000580)={0x0, 0xfffffdf9, r1, <r2=>0x0})
r3 = syz_open_dev$dri(&(0x7f0000000100), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETFB(r3, 0xc01c64ad, &(0x7f00000003c0)={r2})

201.121254ms ago: executing program 0 (id=2730):
syz_emit_ethernet(0x22, &(0x7f0000000980)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, @random="6a2ddcf6177a", @void, {@ipv4={0x8864, @generic={{0x5, 0x4, 0x1, 0x2, 0x14, 0x66, 0x0, 0x6, 0x4, 0x0, @dev={0xac, 0x14, 0x14, 0x32}, @remote}}}}}, 0x0)

137.529516ms ago: executing program 7 (id=2731):
mknod$loop(&(0x7f00000001c0)='.\x02\x00', 0x8d808db06a22b85c, 0x0)

49.041129ms ago: executing program 0 (id=2732):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x800714, &(0x7f0000000000)={[{@grpquota}]}, 0xff, 0x485, &(0x7f0000001040)="$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")
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x122dfb579e447c7a)
mount(&(0x7f0000000440)=@loop={'/dev/loop', 0x0}, &(0x7f0000000200)='./bus\x00', 0x0, 0x1000, 0x0)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x7ffffffffffffffb, 0x3, 0x0, 0x0, 0x17, 0x0, "ef35af413bb901527fe4d0ce5d29c3ee5e5c3676345a41499db7aac63a01000000000000004faa2ae2c084a0ea0000000000007700000c00002000", "036c47c67808200400000000000000335263bdbcef549ba197fce47ddfdd753abd950100002a00ffffffffffffffff00000000e8f20000000200", "b7326736181c208220fffff2ff00000000000000000e00", [0x4]})
write$FUSE_INIT(r0, &(0x7f0000000240)={0x50, 0xfffffffffffffffe, 0x0, {0x7, 0x2d, 0xfffffffd, 0x20000, 0x2, 0x0, 0x9, 0x7, 0x0, 0x0, 0x8, 0x10001}}, 0x50)

47.044279ms ago: executing program 2 (id=2733):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000003c0)={0x30, r1, 0x5, 0x70bd25, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_TX_RATES={0x8, 0x5a, 0x0, 0x1, [@NL80211_BAND_5GHZ={0x4}]}]}, 0x30}}, 0x20000000)

32.579849ms ago: executing program 7 (id=2734):
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="180000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./bus\x00', 0x0, &(0x7f0000000d40)=ANY=[@ANYBLOB="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"], 0x1, 0x2bc, &(0x7f00000015c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x105042, 0x1c3)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
r1 = syz_open_dev$loop(&(0x7f0000000140), 0x8, 0x40)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000200)='/proc/stat\x00', 0x0, 0x0)
ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000440)={0x1, 0x0, [{0x80000008, 0x6, 0xc, 0x2, 0x1, 0x7f, 0xfffffffa}]})
fsopen(&(0x7f0000000080)='binder\x00', 0x0)
ioctl$LOOP_CONFIGURE(r1, 0x4c0a, &(0x7f0000000400)={r0, 0x0, {0x2a00, 0x80010000, 0x0, 0x40000000006, 0x42, 0x0, 0x0, 0x16, 0x11, "fee8a2ab78fc979fd1e00d96072000000ba89de2b7fb0000e6a180b8785d960001000000000041eb8109af00", "2809e8dbe108598948224af54afac115875397bdb22d0000b420a1a93c5240f45f819e0100", "f422741b13103e52f400003fe2000000000000000000000000000000002000", [0x4, 0x2000000000002]}})
ioctl$LOOP_CHANGE_FD(r1, 0x4c06, r2)

0s ago: executing program 6 (id=2735):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000000)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
sched_setscheduler(0x0, 0x1, 0x0)
openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r3 = io_uring_setup(0x3450, &(0x7f0000000080)={0x0, 0x415, 0x0, 0x1, 0x17a})
io_uring_register$IORING_REGISTER_BUFFERS(r3, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r3, 0x10, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0}, 0x20)

kernel console output (not intermixed with test programs):

7445][T10754] EXT4-fs (loop5): Ignoring removed nomblk_io_submit option
[  589.661359][T10754] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=6002c028, mo2=0102]
[  589.674443][T10754] System zones: 0-1, 3-12
[  589.707941][T10754] EXT4-fs (loop5): mounted filesystem without journal. Opts: user_xattr,abort,resuid=0x0000000000000000,user_xattr,discard,errors=remount-ro,debug,noinit_itable,nomblk_io_submit,nodelalloc,inode_readahead_blks=0x0000000000040000,. Quota mode: none.
[  591.662096][T10790] loop2: detected capacity change from 0 to 1024
[  592.227977][T10790] EXT4-fs (loop2): Ignoring removed nomblk_io_submit option
[  592.312934][T10790] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=6002c028, mo2=0102]
[  592.344075][T10790] System zones: 0-1, 3-12
[  592.358127][T10790] EXT4-fs (loop2): mounted filesystem without journal. Opts: user_xattr,abort,resuid=0x0000000000000000,user_xattr,discard,errors=remount-ro,debug,noinit_itable,nomblk_io_submit,nodelalloc,inode_readahead_blks=0x0000000000040000,. Quota mode: none.
[  592.418239][T10801] loop6: detected capacity change from 0 to 512
[  592.612510][T10801] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  592.922898][T10801] EXT4-fs (loop6): 1 truncate cleaned up
[  592.937627][T10801] EXT4-fs (loop6): mounted filesystem without journal. Opts: barrier=0x0000000000000102,errors=remount-ro,. Quota mode: none.
[  593.197783][T10822] loop0: detected capacity change from 0 to 256
[  593.213555][T10822] FAT-fs (loop0): "posix" option is obsolete, not supported now
[  595.616516][ T1433] ieee802154 phy0 wpan0: encryption failed: -22
[  596.654339][T10863] device syzkaller0 entered promiscuous mode
[  596.802475][ T1106] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[  596.935709][T10870] loop6: detected capacity change from 0 to 512
[  596.959125][T10870] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  597.032170][T10870] EXT4-fs (loop6): 1 truncate cleaned up
[  597.047595][T10870] EXT4-fs (loop6): mounted filesystem without journal. Opts: barrier=0x0000000000000102,errors=remount-ro,. Quota mode: none.
[  597.070151][ T1106] usb 3-1: Using ep0 maxpacket: 32
[  597.219473][ T1106] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  598.093532][T10882] loop0: detected capacity change from 0 to 256
[  598.100201][ T1106] usb 3-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  598.110368][ T1106] usb 3-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  598.120569][ T1106] usb 3-1: Product: syz
[  598.124843][ T1106] usb 3-1: Manufacturer: syz
[  598.129727][ T4875] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  598.137461][ T1106] usb 3-1: SerialNumber: syz
[  598.146628][ T1106] usb 3-1: config 0 descriptor??
[  598.203229][T10882] FAT-fs (loop0): "posix" option is obsolete, not supported now
[  598.440392][T10854] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  598.521585][ T1106] hub 3-1:0.0: bad descriptor, ignoring hub
[  598.570214][ T1106] hub: probe of 3-1:0.0 failed with error -5
[  598.619263][ T4875] usb 8-1: Using ep0 maxpacket: 32
[  598.801071][ T4875] usb 8-1: config index 0 descriptor too short (expected 156, got 27)
[  598.859827][ T4875] usb 8-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  599.053443][ T4875] usb 8-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  599.724422][ T4875] usb 8-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  599.738118][ T4875] usb 8-1: config 0 interface 0 has no altsetting 0
[  599.815958][ T4233] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  600.029553][ T4875] usb 8-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  600.038629][ T4875] usb 8-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  600.054127][ T4875] usb 8-1: Product: syz
[  600.058313][ T4875] usb 8-1: Manufacturer: syz
[  600.068253][ T4875] usb 8-1: SerialNumber: syz
[  600.243439][ T4233] usb 7-1: unable to get BOS descriptor or descriptor too short
[  600.469488][ T4624] usb 3-1: USB disconnect, device number 2
[  600.575224][ T4233] usb 7-1: New USB device found, idVendor=1235, idProduct=8204, bcdDevice= 0.40
[  600.784595][ T4875] usb 8-1: config 0 descriptor??
[  600.785304][ T4233] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  600.801053][ T4233] usb 7-1: Product: syz
[  600.805354][ T4233] usb 7-1: Manufacturer: syz
[  600.810061][ T4233] usb 7-1: SerialNumber: syz
[  600.842014][ T4875] usb 8-1: can't set config #0, error -71
[  600.842594][T10903] loop7: detected capacity change from 0 to 256
[  600.871290][ T4875] usb 8-1: USB disconnect, device number 2
[  600.928274][T10903] FAT-fs (loop7): "posix" option is obsolete, not supported now
[  600.954562][T10907] device syzkaller0 entered promiscuous mode
[  601.139220][T10892] udc-core: couldn't find an available UDC or it's busy
[  601.176435][T10892] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  601.352931][ T4624] usb 3-1: new full-speed USB device number 3 using dummy_hcd
[  601.569041][T10892] udc-core: couldn't find an available UDC or it's busy
[  601.617881][T10892] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  601.716543][T10892] udc-core: couldn't find an available UDC or it's busy
[  601.790261][T10892] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  601.816596][ T4624] usb 3-1: device descriptor read/all, error -71
[  602.635761][T10932] udc-core: couldn't find an available UDC or it's busy
[  602.682935][T10931] loop5: detected capacity change from 0 to 512
[  602.879264][T10932] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  602.932170][T10940] overlayfs: missing 'lowerdir'
[  603.473236][T10931] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  603.660942][T10931] EXT4-fs (loop5): 1 truncate cleaned up
[  603.669527][T10931] EXT4-fs (loop5): mounted filesystem without journal. Opts: barrier=0x0000000000000102,errors=remount-ro,. Quota mode: none.
[  603.693142][T10949] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  603.756658][T10952] syzkaller0: tun_chr_ioctl cmd 2147767506
[  604.704875][ T4233] usb 7-1: MIDIStreaming interface descriptor not found
[  605.063328][ T4233] usb 7-1: USB disconnect, device number 2
[  606.222833][ T8450] udevd[8450]: error opening ATTR{/sys/devices/platform/dummy_hcd.6/usb7/7-1/7-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  606.438491][T10992] loop7: detected capacity change from 0 to 512
[  606.800759][T10992] EXT4-fs (loop7): mounted filesystem without journal. Opts: grpjquota=,errors=continue,noblock_validity,,errors=continue. Quota mode: none.
[  609.240049][T11026] loop6: detected capacity change from 0 to 1024
[  609.324391][T11026] EXT4-fs (loop6): Ignoring removed nomblk_io_submit option
[  609.427319][T11032] loop0: detected capacity change from 0 to 256
[  609.434436][T11026] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=6002c028, mo2=0102]
[  609.447779][T11026] System zones: 0-1, 3-12
[  609.478737][T11026] EXT4-fs (loop6): mounted filesystem without journal. Opts: user_xattr,abort,resuid=0x0000000000000000,user_xattr,discard,errors=remount-ro,debug,noinit_itable,nomblk_io_submit,nodelalloc,inode_readahead_blks=0x0000000000040000,. Quota mode: none.
[  609.562787][T11035] loop7: detected capacity change from 0 to 256
[  609.588442][T11032] FAT-fs (loop0): "posix" option is obsolete, not supported now
[  609.631471][T11035] FAT-fs (loop7): "posix" option is obsolete, not supported now
[  613.640117][T11083] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  613.787656][T11091] syzkaller0: tun_chr_ioctl cmd 2147767506
[  614.076596][T11092] uffd: Set unprivileged_userfaultfd sysctl knob to 1 if kernel faults must be handled without obtaining CAP_SYS_PTRACE capability
[  614.786952][ T4233] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  615.390694][ T4233] usb 3-1: unable to get BOS descriptor or descriptor too short
[  615.549658][T11107] syzkaller0: tun_chr_ioctl cmd 2147767506
[  615.706138][ T4233] usb 3-1: New USB device found, idVendor=1235, idProduct=8204, bcdDevice= 0.40
[  615.789085][ T4233] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  615.924072][ T4233] usb 3-1: Product: syz
[  615.992550][ T4233] usb 3-1: Manufacturer: syz
[  616.070700][ T4233] usb 3-1: SerialNumber: syz
[  616.908298][T11097] udc-core: couldn't find an available UDC or it's busy
[  617.035886][T11097] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  617.497552][T11126] loop5: detected capacity change from 0 to 512
[  617.562771][T11126] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  617.593520][T11097] udc-core: couldn't find an available UDC or it's busy
[  617.610624][T11097] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  617.652685][T11097] udc-core: couldn't find an available UDC or it's busy
[  617.663550][T11126] EXT4-fs (loop5): 1 truncate cleaned up
[  617.676817][T11097] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  617.686199][T11126] EXT4-fs (loop5): mounted filesystem without journal. Opts: barrier=0x0000000000000102,errors=remount-ro,. Quota mode: none.
[  618.321067][T11136] udc-core: couldn't find an available UDC or it's busy
[  618.375929][T11136] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  619.788163][ T4233] usb 3-1: MIDIStreaming interface descriptor not found
[  619.859378][ T4233] usb 3-1: USB disconnect, device number 5
[  620.120551][ T8450] udevd[8450]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  624.644603][T11236] loop6: detected capacity change from 0 to 512
[  624.722830][T11236] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  625.073597][T11236] EXT4-fs (loop6): 1 truncate cleaned up
[  625.726260][T11236] EXT4-fs (loop6): mounted filesystem without journal. Opts: max_batch_time=0x0000000000000004,max_batch_time=0x0000000000000002,debug_want_extra_isize=0x000000000000006a,block_validity,errors=remount-ro,nombcache,. Quota mode: none.
[  629.539148][T11304] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  629.826500][T11306] syzkaller0: tun_chr_ioctl cmd 2147767506
[  630.639182][T11319] loop0: detected capacity change from 0 to 256
[  630.740412][T11319] FAT-fs (loop0): "posix" option is obsolete, not supported now
[  632.706086][T11342] loop7: detected capacity change from 0 to 256
[  632.840789][T11342] FAT-fs (loop7): "posix" option is obsolete, not supported now
[  633.367570][T11357] ipt_REJECT: ECHOREPLY no longer supported.
[  633.404783][T11357] IPv6: NLM_F_CREATE should be specified when creating new route
[  635.923162][T11375] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  638.895574][T11408] loop2: detected capacity change from 0 to 512
[  640.248145][T11408] EXT4-fs (loop2): mounted filesystem without journal. Opts: grpjquota=,errors=continue,noblock_validity,,errors=continue. Quota mode: none.
[  640.300362][T11434] loop0: detected capacity change from 0 to 256
[  640.472271][T11434] FAT-fs (loop0): "posix" option is obsolete, not supported now
[  640.580065][T11440] EXT4-fs warning (device loop2): dx_probe:869: inode #2: comm syz.2.1650: Unimplemented hash flags: 0x0001
[  640.591696][T11440] EXT4-fs warning (device loop2): dx_probe:966: inode #2: comm syz.2.1650: Corrupt directory, running e2fsck is recommended
[  641.670308][T11414] bridge0: port 2(bridge_slave_1) entered disabled state
[  641.677618][T11414] bridge0: port 1(bridge_slave_0) entered disabled state
[  646.588896][T11414] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  646.839743][T11488] loop6: detected capacity change from 0 to 512
[  646.854086][T11489] loop0: detected capacity change from 0 to 256
[  646.882438][T11414] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  647.151111][T11489] FAT-fs (loop0): "posix" option is obsolete, not supported now
[  647.369316][T11488] EXT4-fs (loop6): mounted filesystem without journal. Opts: grpjquota=,errors=continue,noblock_validity,,errors=continue. Quota mode: none.
[  647.715336][T11494] EXT4-fs warning (device loop6): dx_probe:869: inode #2: comm syz.6.1667: Unimplemented hash flags: 0x0001
[  647.727023][T11494] EXT4-fs warning (device loop6): dx_probe:966: inode #2: comm syz.6.1667: Corrupt directory, running e2fsck is recommended
[  650.193099][T11507] loop0: detected capacity change from 0 to 256
[  650.377383][T11512] loop2: detected capacity change from 0 to 256
[  650.415358][T11512] FAT-fs (loop2): "posix" option is obsolete, not supported now
[  650.433886][T11507] FAT-fs (loop0): "posix" option is obsolete, not supported now
[  651.393357][T11414] netdevsim netdevsim5 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  651.402491][T11414] netdevsim netdevsim5 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  651.411922][T11414] netdevsim netdevsim5 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  651.420868][T11414] netdevsim netdevsim5 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  652.877829][T11530] loop7: detected capacity change from 0 to 256
[  652.922616][T11530] FAT-fs (loop7): "posix" option is obsolete, not supported now
[  654.151199][T11551] loop5: detected capacity change from 0 to 512
[  654.381376][T11551] EXT4-fs (loop5): mounted filesystem without journal. Opts: grpjquota=,errors=continue,noblock_validity,,errors=continue. Quota mode: none.
[  654.458053][T11562] ipt_REJECT: ECHOREPLY no longer supported.
[  654.996042][T11564] EXT4-fs warning (device loop5): dx_probe:869: inode #2: comm syz.5.1681: Unimplemented hash flags: 0x0001
[  655.007725][T11564] EXT4-fs warning (device loop5): dx_probe:966: inode #2: comm syz.5.1681: Corrupt directory, running e2fsck is recommended
[  657.532756][T11586] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1689'.
[  658.138335][T11603] loop2: detected capacity change from 0 to 512
[  658.385098][T11603] EXT4-fs (loop2): Ignoring removed nobh option
[  658.646836][T11603] EXT4-fs (loop2): orphan cleanup on readonly fs
[  658.856241][T11603] EXT4-fs warning (device loop2): ext4_xattr_inode_get:492: inode #11: comm syz.2.1694: ea_inode file size=1535 entry size=6
[  658.920452][T11603] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2809: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  659.031145][T11603] EXT4-fs error (device loop2): ext4_do_update_inode:5229: inode #15: comm syz.2.1694: corrupted inode contents
[  659.049693][T11607] device syzkaller0 entered promiscuous mode
[  659.067535][T11603] EXT4-fs error (device loop2): ext4_dirty_inode:6077: inode #15: comm syz.2.1694: mark_inode_dirty error
[  659.097290][T11603] EXT4-fs error (device loop2): ext4_do_update_inode:5229: inode #15: comm syz.2.1694: corrupted inode contents
[  659.140455][T11603] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2954: inode #15: comm syz.2.1694: mark_inode_dirty error
[  659.176271][T11603] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2957: inode #15: comm syz.2.1694: mark inode dirty (error -117)
[  659.180174][T11611] loop0: detected capacity change from 0 to 512
[  659.211846][T11603] EXT4-fs warning (device loop2): ext4_evict_inode:304: xattr delete (err -117)
[  659.243882][T11603] EXT4-fs (loop2): 1 orphan inode deleted
[  659.249770][T11603] EXT4-fs (loop2): mounted filesystem without journal. Opts: usrjquota=,acl,debug_want_extra_isize=0x000000000000005c,barrier,nobh,min_batch_time=0x000000000000b656,block_validity,,errors=continue. Quota mode: none.
[  659.291337][T11611] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpjquota=,errors=continue,noblock_validity,,errors=continue. Quota mode: none.
[  659.622171][T11616] ipt_REJECT: ECHOREPLY no longer supported.
[  659.952856][T11618] EXT4-fs warning (device loop0): dx_probe:869: inode #2: comm syz.0.1697: Unimplemented hash flags: 0x0001
[  659.964404][T11618] EXT4-fs warning (device loop0): dx_probe:966: inode #2: comm syz.0.1697: Corrupt directory, running e2fsck is recommended
[  660.700887][T11609] loop7: detected capacity change from 0 to 512
[  660.772465][T11609] EXT4-fs (loop7): Journaled quota options ignored when QUOTA feature is enabled
[  661.041069][T11609] EXT4-fs (loop7): mounted filesystem without journal. Opts: usrjquota=./file0,acl,,errors=continue. Quota mode: writeback.
[  661.077038][T11609] ext4 filesystem being mounted at /123/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  661.220042][ T1433] ieee802154 phy0 wpan0: encryption failed: -22
[  662.123729][T11645] loop2: detected capacity change from 0 to 512
[  662.165645][T11648] loop0: detected capacity change from 0 to 256
[  662.377601][T11645] EXT4-fs (loop2): Ignoring removed nobh option
[  662.400620][T11648] FAT-fs (loop0): "posix" option is obsolete, not supported now
[  662.610003][T11645] EXT4-fs (loop2): orphan cleanup on readonly fs
[  662.764989][T11645] EXT4-fs warning (device loop2): ext4_xattr_inode_get:492: inode #11: comm syz.2.1705: ea_inode file size=1535 entry size=6
[  662.807985][T11645] EXT4-fs error (device loop2): ext4_do_update_inode:5229: inode #15: comm syz.2.1705: corrupted inode contents
[  662.883844][T11645] EXT4-fs error (device loop2): ext4_dirty_inode:6077: inode #15: comm syz.2.1705: mark_inode_dirty error
[  662.970651][T11645] EXT4-fs error (device loop2): ext4_do_update_inode:5229: inode #15: comm syz.2.1705: corrupted inode contents
[  664.472602][T11645] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2954: inode #15: comm syz.2.1705: mark_inode_dirty error
[  664.531124][T11645] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2957: inode #15: comm syz.2.1705: mark inode dirty (error -117)
[  664.567586][T11645] EXT4-fs warning (device loop2): ext4_evict_inode:304: xattr delete (err -117)
[  664.590393][T11645] EXT4-fs (loop2): 1 orphan inode deleted
[  664.596743][T11645] EXT4-fs (loop2): mounted filesystem without journal. Opts: usrjquota=,acl,debug_want_extra_isize=0x000000000000005c,barrier,nobh,min_batch_time=0x000000000000b656,block_validity,,errors=continue. Quota mode: none.
[  665.032696][T11667] ipt_REJECT: ECHOREPLY no longer supported.
[  665.426141][T11672] loop5: detected capacity change from 0 to 256
[  665.586195][T11672] FAT-fs (loop5): "posix" option is obsolete, not supported now
[  665.703215][T11678] loop2: detected capacity change from 0 to 256
[  665.814198][T11678] FAT-fs (loop2): "posix" option is obsolete, not supported now
[  667.659103][T11699] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1715'.
[  668.082081][T11715] loop7: detected capacity change from 0 to 512
[  668.141121][T11715] EXT4-fs (loop7): Ignoring removed nobh option
[  668.191295][T11715] EXT4-fs (loop7): orphan cleanup on readonly fs
[  668.250595][T11715] EXT4-fs warning (device loop7): ext4_xattr_inode_get:492: inode #11: comm syz.7.1721: ea_inode file size=1535 entry size=6
[  668.357885][T11715] EXT4-fs error (device loop7): ext4_do_update_inode:5229: inode #15: comm syz.7.1721: corrupted inode contents
[  668.413452][T11715] EXT4-fs error (device loop7): ext4_dirty_inode:6077: inode #15: comm syz.7.1721: mark_inode_dirty error
[  668.454133][T11715] EXT4-fs error (device loop7): ext4_do_update_inode:5229: inode #15: comm syz.7.1721: corrupted inode contents
[  668.483390][T11715] EXT4-fs error (device loop7): ext4_xattr_delete_inode:2954: inode #15: comm syz.7.1721: mark_inode_dirty error
[  668.554385][T11715] EXT4-fs error (device loop7): ext4_xattr_delete_inode:2957: inode #15: comm syz.7.1721: mark inode dirty (error -117)
[  668.599019][T11715] EXT4-fs warning (device loop7): ext4_evict_inode:304: xattr delete (err -117)
[  668.654729][T11715] EXT4-fs (loop7): 1 orphan inode deleted
[  668.699992][T11715] EXT4-fs (loop7): mounted filesystem without journal. Opts: usrjquota=,acl,debug_want_extra_isize=0x000000000000005c,barrier,nobh,min_batch_time=0x000000000000b656,block_validity,,errors=continue. Quota mode: none.
[  669.821267][T11741] loop2: detected capacity change from 0 to 512
[  670.527835][T11757] loop6: detected capacity change from 0 to 256
[  670.648277][T11757] FAT-fs (loop6): "posix" option is obsolete, not supported now
[  671.634262][T11762] loop7: detected capacity change from 0 to 40427
[  674.108516][T11791] loop7: detected capacity change from 0 to 512
[  674.172315][T11791] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  674.280125][T11781] loop6: detected capacity change from 0 to 40427
[  674.403163][T11781] F2FS-fs (loop6): Invalid log_blocksize (268), supports only 12
[  674.415739][T11781] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  674.431002][T11791] EXT4-fs warning (device loop7): ext4_expand_extra_isize_ea:2809: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  674.462446][T11791] EXT4-fs (loop7): 1 truncate cleaned up
[  674.468280][T11791] EXT4-fs (loop7): mounted filesystem without journal. Opts: max_batch_time=0x0000000000000004,max_batch_time=0x0000000000000002,debug_want_extra_isize=0x000000000000006a,block_validity,errors=remount-ro,nombcache,. Quota mode: none.
[  674.744366][T11781] F2FS-fs (loop6): Found nat_bits in checkpoint
[  675.611179][T11781] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  675.689432][T11781] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  676.138766][T11815] loop5: detected capacity change from 0 to 512
[  676.494367][T11815] EXT4-fs (loop5): Ignoring removed nobh option
[  676.627617][T11815] EXT4-fs (loop5): orphan cleanup on readonly fs
[  676.795166][T11815] EXT4-fs warning (device loop5): ext4_xattr_inode_get:492: inode #11: comm syz.5.1742: ea_inode file size=1535 entry size=6
[  676.810291][T11820] loop0: detected capacity change from 0 to 256
[  676.867789][T11820] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  676.904182][T11815] EXT4-fs warning (device loop5): ext4_expand_extra_isize_ea:2809: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  676.963834][T11820] exFAT-fs (loop0): Medium has reported failures. Some data may be lost.
[  677.017706][T11815] EXT4-fs error (device loop5): ext4_do_update_inode:5229: inode #15: comm syz.5.1742: corrupted inode contents
[  677.031556][T11820] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  677.053180][T11815] EXT4-fs error (device loop5): ext4_dirty_inode:6077: inode #15: comm syz.5.1742: mark_inode_dirty error
[  677.277452][T11815] EXT4-fs error (device loop5): ext4_do_update_inode:5229: inode #15: comm syz.5.1742: corrupted inode contents
[  677.312990][T11815] EXT4-fs error (device loop5): ext4_xattr_delete_inode:2954: inode #15: comm syz.5.1742: mark_inode_dirty error
[  677.393740][T11815] EXT4-fs error (device loop5): ext4_xattr_delete_inode:2957: inode #15: comm syz.5.1742: mark inode dirty (error -117)
[  677.465606][T11815] EXT4-fs warning (device loop5): ext4_evict_inode:304: xattr delete (err -117)
[  677.933405][T11815] EXT4-fs (loop5): 1 orphan inode deleted
[  678.166008][T11815] EXT4-fs (loop5): mounted filesystem without journal. Opts: usrjquota=,acl,debug_want_extra_isize=0x000000000000005c,barrier,nobh,min_batch_time=0x000000000000b656,block_validity,,errors=continue. Quota mode: none.
[  680.038225][T11859] loop2: detected capacity change from 0 to 512
[  680.066539][T11859] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  680.148719][T11859] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2809: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  680.217715][T11859] EXT4-fs (loop2): 1 truncate cleaned up
[  680.223408][T11859] EXT4-fs (loop2): mounted filesystem without journal. Opts: max_batch_time=0x0000000000000004,max_batch_time=0x0000000000000002,debug_want_extra_isize=0x000000000000006a,block_validity,errors=remount-ro,nombcache,. Quota mode: none.
[  682.033197][T11904] loop5: detected capacity change from 0 to 512
[  682.128250][T11904] EXT4-fs (loop5): Ignoring removed nobh option
[  682.161151][T11904] EXT4-fs (loop5): orphan cleanup on readonly fs
[  682.182704][T11904] EXT4-fs warning (device loop5): ext4_xattr_inode_get:492: inode #11: comm syz.5.1764: ea_inode file size=1535 entry size=6
[  682.234381][T11904] EXT4-fs warning (device loop5): ext4_expand_extra_isize_ea:2809: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  682.250556][T11904] EXT4-fs error (device loop5): ext4_do_update_inode:5229: inode #15: comm syz.5.1764: corrupted inode contents
[  682.273533][T11904] EXT4-fs error (device loop5): ext4_dirty_inode:6077: inode #15: comm syz.5.1764: mark_inode_dirty error
[  682.308602][T11915] loop0: detected capacity change from 0 to 256
[  682.319755][T11904] EXT4-fs error (device loop5): ext4_do_update_inode:5229: inode #15: comm syz.5.1764: corrupted inode contents
[  682.354479][T11904] EXT4-fs error (device loop5): ext4_xattr_delete_inode:2954: inode #15: comm syz.5.1764: mark_inode_dirty error
[  682.433996][T11904] EXT4-fs error (device loop5): ext4_xattr_delete_inode:2957: inode #15: comm syz.5.1764: mark inode dirty (error -117)
[  682.473328][T11915] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  682.485142][T11904] EXT4-fs warning (device loop5): ext4_evict_inode:304: xattr delete (err -117)
[  682.515169][T11915] exFAT-fs (loop0): Medium has reported failures. Some data may be lost.
[  682.523811][T11904] EXT4-fs (loop5): 1 orphan inode deleted
[  682.532140][T11904] EXT4-fs (loop5): mounted filesystem without journal. Opts: usrjquota=,acl,debug_want_extra_isize=0x000000000000005c,barrier,nobh,min_batch_time=0x000000000000b656,block_validity,,errors=continue. Quota mode: none.
[  682.576842][T11915] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  685.170509][T11952] loop2: detected capacity change from 0 to 256
[  685.199258][T11953] loop7: detected capacity change from 0 to 512
[  685.377236][T11952] FAT-fs (loop2): "posix" option is obsolete, not supported now
[  687.339939][T11941] loop6: detected capacity change from 0 to 40427
[  687.383292][T11941] F2FS-fs (loop6): Invalid log_blocksize (268), supports only 12
[  687.616761][T11941] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  688.308116][T11941] F2FS-fs (loop6): Failed to start F2FS issue_checkpoint_thread (-12)
[  689.720680][T12008] loop6: detected capacity change from 0 to 256
[  690.365079][T12008] FAT-fs (loop6): "posix" option is obsolete, not supported now
[  690.739632][T12020] loop0: detected capacity change from 0 to 256
[  690.796840][T12022] loop5: detected capacity change from 0 to 512
[  690.951977][T12020] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  690.979814][T12020] exFAT-fs (loop0): Medium has reported failures. Some data may be lost.
[  691.112590][T12020] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  694.646622][T12063] loop0: detected capacity change from 0 to 256
[  694.689757][T12063] FAT-fs (loop0): "posix" option is obsolete, not supported now
[  699.017416][T12102] loop5: detected capacity change from 0 to 512
[  699.407724][T12110] loop6: detected capacity change from 0 to 256
[  699.526780][T12102] EXT4-fs (loop5): Journaled quota options ignored when QUOTA feature is enabled
[  699.543942][T12115] loop2: detected capacity change from 0 to 512
[  699.560409][T12110] FAT-fs (loop6): "posix" option is obsolete, not supported now
[  699.610817][T12102] EXT4-fs (loop5): mounted filesystem without journal. Opts: usrjquota=./file0,acl,,errors=continue. Quota mode: writeback.
[  699.644889][T12102] ext4 filesystem being mounted at /255/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  701.148808][T12132] loop7: detected capacity change from 0 to 256
[  701.416057][T12132] FAT-fs (loop7): Directory bread(block 64) failed
[  701.439340][T12132] FAT-fs (loop7): Directory bread(block 65) failed
[  701.496995][T12132] FAT-fs (loop7): Directory bread(block 66) failed
[  701.503595][T12132] FAT-fs (loop7): Directory bread(block 67) failed
[  701.510456][T12132] FAT-fs (loop7): Directory bread(block 68) failed
[  701.518134][T12132] FAT-fs (loop7): Directory bread(block 69) failed
[  701.686838][T12132] FAT-fs (loop7): Directory bread(block 70) failed
[  701.721911][T12132] FAT-fs (loop7): Directory bread(block 71) failed
[  701.916759][T12132] FAT-fs (loop7): Directory bread(block 72) failed
[  702.084699][T12132] FAT-fs (loop7): Directory bread(block 73) failed
[  705.412097][T12173] loop6: detected capacity change from 0 to 256
[  705.558403][T12182] loop5: detected capacity change from 0 to 512
[  707.507613][T12173] FAT-fs (loop6): Directory bread(block 64) failed
[  707.517158][T12173] FAT-fs (loop6): Directory bread(block 65) failed
[  707.559491][T12173] FAT-fs (loop6): Directory bread(block 66) failed
[  707.687295][T12173] FAT-fs (loop6): Directory bread(block 67) failed
[  707.702235][T12173] FAT-fs (loop6): Directory bread(block 68) failed
[  707.728423][T12173] FAT-fs (loop6): Directory bread(block 69) failed
[  707.740565][T12176] loop2: detected capacity change from 0 to 512
[  707.773172][T12197] loop0: detected capacity change from 0 to 256
[  707.773727][T12173] FAT-fs (loop6): Directory bread(block 70) failed
[  707.953254][T12173] FAT-fs (loop6): Directory bread(block 71) failed
[  708.193653][T12176] EXT4-fs (loop2): Journaled quota options ignored when QUOTA feature is enabled
[  708.307120][T12197] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  708.319725][T12173] FAT-fs (loop6): Directory bread(block 72) failed
[  708.843581][T12197] exFAT-fs (loop0): Medium has reported failures. Some data may be lost.
[  708.853758][T12173] FAT-fs (loop6): Directory bread(block 73) failed
[  708.864396][T12176] EXT4-fs warning (device loop2): ext4_multi_mount_protect:403: Unable to create kmmpd thread for loop2.
[  708.892393][T12197] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  709.120466][T12210] loop5: detected capacity change from 0 to 512
[  711.063106][T12222] loop6: detected capacity change from 0 to 256
[  711.881229][T12222] FAT-fs (loop6): Directory bread(block 64) failed
[  711.908069][T12222] FAT-fs (loop6): Directory bread(block 65) failed
[  711.966213][T12222] FAT-fs (loop6): Directory bread(block 66) failed
[  711.974057][T12222] FAT-fs (loop6): Directory bread(block 67) failed
[  711.995476][T12222] FAT-fs (loop6): Directory bread(block 68) failed
[  712.094790][T12222] FAT-fs (loop6): Directory bread(block 69) failed
[  712.102679][T12222] FAT-fs (loop6): Directory bread(block 70) failed
[  712.146627][T12222] FAT-fs (loop6): Directory bread(block 71) failed
[  712.216037][T12222] FAT-fs (loop6): Directory bread(block 72) failed
[  712.828733][T12231] device syzkaller0 entered promiscuous mode
[  712.842316][T12222] FAT-fs (loop6): Directory bread(block 73) failed
[  713.207454][T12243] loop2: detected capacity change from 0 to 512
[  713.976488][T12243] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  714.017659][T12245] loop7: detected capacity change from 0 to 128
[  714.981790][T12243] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2809: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  715.011364][T12243] EXT4-fs (loop2): 1 truncate cleaned up
[  715.017059][T12243] EXT4-fs (loop2): mounted filesystem without journal. Opts: max_batch_time=0x0000000000000004,max_batch_time=0x0000000000000002,debug_want_extra_isize=0x000000000000006a,block_validity,errors=remount-ro,nombcache,. Quota mode: none.
[  715.435158][T12245] netlink: 536 bytes leftover after parsing attributes in process `syz.7.1847'.
[  717.846067][T12263] loop7: detected capacity change from 0 to 256
[  717.911070][T12263] FAT-fs (loop7): "posix" option is obsolete, not supported now
[  719.323975][T12282] loop2: detected capacity change from 0 to 256
[  719.423061][T12282] FAT-fs (loop2): Directory bread(block 64) failed
[  719.436529][T12282] FAT-fs (loop2): Directory bread(block 65) failed
[  719.443161][T12282] FAT-fs (loop2): Directory bread(block 66) failed
[  719.478166][T12282] FAT-fs (loop2): Directory bread(block 67) failed
[  719.499599][T12282] FAT-fs (loop2): Directory bread(block 68) failed
[  719.506171][T12282] FAT-fs (loop2): Directory bread(block 69) failed
[  719.554233][T12282] FAT-fs (loop2): Directory bread(block 70) failed
[  719.560892][T12282] FAT-fs (loop2): Directory bread(block 71) failed
[  719.585193][T12282] FAT-fs (loop2): Directory bread(block 72) failed
[  719.592915][T12282] FAT-fs (loop2): Directory bread(block 73) failed
[  719.964866][T12294] loop5: detected capacity change from 0 to 512
[  720.798546][T12299] loop7: detected capacity change from 0 to 512
[  720.818600][T12292] device syzkaller0 entered promiscuous mode
[  720.908440][T12299] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  720.956307][T12302] loop2: detected capacity change from 0 to 512
[  721.007301][T12299] EXT4-fs (loop7): 1 truncate cleaned up
[  721.025723][T12299] EXT4-fs (loop7): mounted filesystem without journal. Opts: max_batch_time=0x0000000000000004,max_batch_time=0x0000000000000002,debug_want_extra_isize=0x000000000000006a,block_validity,errors=remount-ro,nombcache,. Quota mode: none.
[  721.797226][T12307] loop6: detected capacity change from 0 to 256
[  721.922153][T12307] FAT-fs (loop6): Directory bread(block 64) failed
[  721.969620][T12307] FAT-fs (loop6): Directory bread(block 65) failed
[  722.004962][T12307] FAT-fs (loop6): Directory bread(block 66) failed
[  722.084853][T12307] FAT-fs (loop6): Directory bread(block 67) failed
[  722.143231][T12307] FAT-fs (loop6): Directory bread(block 68) failed
[  722.202696][T12307] FAT-fs (loop6): Directory bread(block 69) failed
[  722.261273][T12307] FAT-fs (loop6): Directory bread(block 70) failed
[  722.340720][T12307] FAT-fs (loop6): Directory bread(block 71) failed
[  722.402495][T12307] FAT-fs (loop6): Directory bread(block 72) failed
[  722.439515][T12307] FAT-fs (loop6): Directory bread(block 73) failed
[  726.515756][T12367] loop6: detected capacity change from 0 to 512
[  726.865750][ T1433] ieee802154 phy0 wpan0: encryption failed: -22
[  728.264658][T12394] loop2: detected capacity change from 0 to 256
[  728.439904][T12396] loop0: detected capacity change from 0 to 128
[  728.492747][T12394] FAT-fs (loop2): "posix" option is obsolete, not supported now
[  728.642213][T12396] netlink: 536 bytes leftover after parsing attributes in process `syz.0.1881'.
[  728.687354][T12396] loop0: detected capacity change from 0 to 512
[  728.962140][T12396] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpid,nombcache,,errors=continue. Quota mode: writeback.
[  728.975274][T12396] ext4 filesystem being mounted at /404/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  729.094687][T12396] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.1881: bg 0: block 424: padding at end of block bitmap is not set
[  729.114194][T12396] Quota error (device loop0): write_blk: dquota write failed
[  729.121982][T12396] Quota error (device loop0): find_free_dqentry: Can't write quota data block 5
[  729.131799][T12396] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  729.141965][T12396] EXT4-fs error (device loop0): ext4_acquire_dquot:6236: comm syz.0.1881: Failed to acquire dquot type 1
[  732.327700][T12432] loop7: detected capacity change from 0 to 128
[  734.599581][T12439] loop2: detected capacity change from 0 to 128
[  734.837609][T12439] netlink: 536 bytes leftover after parsing attributes in process `syz.2.1892'.
[  735.335029][T12452] loop2: detected capacity change from 0 to 512
[  736.760704][T12466] loop5: detected capacity change from 0 to 256
[  736.981653][T12466] FAT-fs (loop5): Directory bread(block 64) failed
[  737.024757][T12466] FAT-fs (loop5): Directory bread(block 65) failed
[  737.067504][T12466] FAT-fs (loop5): Directory bread(block 66) failed
[  737.101956][T12466] FAT-fs (loop5): Directory bread(block 67) failed
[  737.182216][T12466] FAT-fs (loop5): Directory bread(block 68) failed
[  737.189012][T12466] FAT-fs (loop5): Directory bread(block 69) failed
[  737.200851][T12466] FAT-fs (loop5): Directory bread(block 70) failed
[  737.207576][T12466] FAT-fs (loop5): Directory bread(block 71) failed
[  737.214728][T12466] FAT-fs (loop5): Directory bread(block 72) failed
[  737.226671][T12466] FAT-fs (loop5): Directory bread(block 73) failed
[  738.166141][T12482] loop2: detected capacity change from 0 to 512
[  739.504922][T12503] loop7: detected capacity change from 0 to 512
[  744.561740][T12549] loop2: detected capacity change from 0 to 512
[  747.657360][    T7] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  748.529954][T12596] loop6: detected capacity change from 0 to 512
[  748.560843][T12597] loop0: detected capacity change from 0 to 512
[  749.687949][    T7] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  749.742797][    T7] usb 3-1: config 0 has no interfaces?
[  749.748331][    T7] usb 3-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  749.811876][    T7] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  749.834264][    T7] usb 3-1: config 0 descriptor??
[  749.926129][T12604] loop7: detected capacity change from 0 to 256
[  749.959221][T12604] FAT-fs (loop7): "posix" option is obsolete, not supported now
[  751.357181][    T7] usb 3-1: USB disconnect, device number 6
[  751.368164][T12626] loop5: detected capacity change from 0 to 512
[  752.899298][T12634] loop2: detected capacity change from 0 to 512
[  756.818890][T12676] loop7: detected capacity change from 0 to 512
[  756.906488][T12676] EXT4-fs (loop7): mounted filesystem without journal. Opts: grpjquota=,errors=continue,noblock_validity,,errors=continue. Quota mode: none.
[  756.941391][T12683] loop5: detected capacity change from 0 to 256
[  757.067722][T12683] FAT-fs (loop5): "posix" option is obsolete, not supported now
[  757.267943][T12688] EXT4-fs warning (device loop7): dx_probe:869: inode #2: comm syz.7.1948: Unimplemented hash flags: 0x0001
[  757.279616][T12688] EXT4-fs warning (device loop7): dx_probe:966: inode #2: comm syz.7.1948: Corrupt directory, running e2fsck is recommended
[  757.447386][T12688] EXT4-fs warning (device loop7): dx_probe:869: inode #2: comm syz.7.1948: Unimplemented hash flags: 0x0001
[  757.459161][T12688] EXT4-fs warning (device loop7): dx_probe:966: inode #2: comm syz.7.1948: Corrupt directory, running e2fsck is recommended
[  759.139808][T12696] loop2: detected capacity change from 0 to 256
[  759.447034][T12696] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  759.513033][T12696] exFAT-fs (loop2): Medium has reported failures. Some data may be lost.
[  759.595644][T12696] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  761.171990][T12721] loop5: detected capacity change from 0 to 512
[  761.280170][T12721] EXT4-fs (loop5): Journaled quota options ignored when QUOTA feature is enabled
[  761.423798][T12721] EXT4-fs (loop5): mounted filesystem without journal. Opts: usrjquota=./file0,acl,,errors=continue. Quota mode: writeback.
[  761.457443][T12735] loop6: detected capacity change from 0 to 512
[  761.464357][T12721] ext4 filesystem being mounted at /283/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  762.824946][T12751] loop7: detected capacity change from 0 to 512
[  762.918540][T12755] loop6: detected capacity change from 0 to 256
[  762.976692][T12755] FAT-fs (loop6): "posix" option is obsolete, not supported now
[  764.241947][T12766] loop5: detected capacity change from 0 to 512
[  764.482621][T12772] loop0: detected capacity change from 0 to 256
[  764.634105][T12772] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  764.690827][T12772] exFAT-fs (loop0): Medium has reported failures. Some data may be lost.
[  764.914556][T12772] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  766.552764][T12788] loop6: detected capacity change from 0 to 128
[  766.697348][T12794] loop5: detected capacity change from 0 to 512
[  766.746750][T12788] netlink: 536 bytes leftover after parsing attributes in process `syz.6.1969'.
[  766.761270][T12788] loop6: detected capacity change from 0 to 512
[  766.960196][T12798] loop0: detected capacity change from 0 to 512
[  767.022398][T12788] EXT4-fs (loop6): mounted filesystem without journal. Opts: grpid,nombcache,,errors=continue. Quota mode: writeback.
[  767.035208][T12788] ext4 filesystem being mounted at /221/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  767.052679][T12788] EXT4-fs error (device loop6): ext4_validate_block_bitmap:438: comm syz.6.1969: bg 0: block 424: padding at end of block bitmap is not set
[  767.804479][T12788] Quota error (device loop6): write_blk: dquota write failed
[  767.811961][T12788] Quota error (device loop6): find_free_dqentry: Can't write quota data block 5
[  767.821151][T12788] Quota error (device loop6): qtree_write_dquot: Error -28 occurred while creating quota
[  767.831063][T12788] EXT4-fs error (device loop6): ext4_acquire_dquot:6236: comm syz.6.1969: Failed to acquire dquot type 1
[  769.233374][T12828] loop2: detected capacity change from 0 to 256
[  769.259201][T12828] FAT-fs (loop2): "posix" option is obsolete, not supported now
[  770.078776][T12830] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[  770.119634][T12830] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[  770.203142][T12845] loop2: detected capacity change from 0 to 512
[  771.250025][ T4624] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  771.703118][ T4624] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  771.775803][ T4624] usb 1-1: config 0 has no interfaces?
[  771.880486][ T4624] usb 1-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  771.907373][ T4624] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  771.930869][ T4624] usb 1-1: config 0 descriptor??
[  773.394322][ T5215] usb 1-1: USB disconnect, device number 2
[  773.562313][T12874] loop7: detected capacity change from 0 to 128
[  773.811026][T12874] netlink: 536 bytes leftover after parsing attributes in process `syz.7.1991'.
[  773.856168][T12874] loop7: detected capacity change from 0 to 512
[  774.084393][T12874] EXT4-fs (loop7): mounted filesystem without journal. Opts: grpid,nombcache,,errors=continue. Quota mode: writeback.
[  774.097537][T12874] ext4 filesystem being mounted at /180/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  774.211506][T12874] EXT4-fs error (device loop7): ext4_validate_block_bitmap:438: comm syz.7.1991: bg 0: block 424: padding at end of block bitmap is not set
[  774.228268][T12874] Quota error (device loop7): write_blk: dquota write failed
[  774.235865][T12874] Quota error (device loop7): find_free_dqentry: Can't write quota data block 5
[  774.245444][T12874] Quota error (device loop7): qtree_write_dquot: Error -117 occurred while creating quota
[  774.255697][T12874] EXT4-fs error (device loop7): ext4_acquire_dquot:6236: comm syz.7.1991: Failed to acquire dquot type 1
[  775.587416][T12892] loop7: detected capacity change from 0 to 256
[  775.626082][T12892] FAT-fs (loop7): "posix" option is obsolete, not supported now
[  775.961193][T12901] loop2: detected capacity change from 0 to 512
[  777.254428][T12914] loop0: detected capacity change from 0 to 512
[  778.558099][T12910] loop7: detected capacity change from 0 to 40427
[  778.766293][T12910] F2FS-fs (loop7): Invalid log_blocksize (268), supports only 12
[  778.794686][T12946] loop5: detected capacity change from 0 to 256
[  778.796518][T12910] F2FS-fs (loop7): Can't find valid F2FS filesystem in 1th superblock
[  778.843612][T12910] F2FS-fs (loop7): Found nat_bits in checkpoint
[  778.882381][T12946] FAT-fs (loop5): "posix" option is obsolete, not supported now
[  778.956144][T12910] F2FS-fs (loop7): Try to recover 1th superblock, ret: 0
[  779.021521][T12910] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[  779.991115][T12967] loop2: detected capacity change from 0 to 512
[  781.112068][T12978] loop5: detected capacity change from 0 to 128
[  783.748157][T12976] netlink: 536 bytes leftover after parsing attributes in process `syz.5.2015'.
[  783.762986][T12976] loop5: detected capacity change from 0 to 512
[  783.884101][T12976] EXT4-fs (loop5): mounted filesystem without journal. Opts: grpid,nombcache,,errors=continue. Quota mode: writeback.
[  783.896922][T12976] ext4 filesystem being mounted at /298/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  783.913426][T12976] EXT4-fs error (device loop5): ext4_validate_block_bitmap:438: comm syz.5.2015: bg 0: block 424: padding at end of block bitmap is not set
[  783.930435][T12976] Quota error (device loop5): write_blk: dquota write failed
[  783.933271][T12989] loop2: detected capacity change from 0 to 256
[  783.938079][T12976] Quota error (device loop5): find_free_dqentry: Can't write quota data block 5
[  783.938176][T12976] Quota error (device loop5): qtree_write_dquot: Error -28 occurred while creating quota
[  783.938205][T12976] EXT4-fs error (device loop5): ext4_acquire_dquot:6236: comm syz.5.2015: Failed to acquire dquot type 1
[  784.008461][T12990] netlink: 'syz.0.2017': attribute type 3 has an invalid length.
[  784.199201][T12989] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  784.283205][T12989] exFAT-fs (loop2): Medium has reported failures. Some data may be lost.
[  784.557725][T12989] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  787.237364][T13022] loop2: detected capacity change from 0 to 256
[  787.350980][T13022] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  787.462847][T13022] exFAT-fs (loop2): Medium has reported failures. Some data may be lost.
[  787.503454][T13022] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  788.427822][T13042] input: syz1 as /devices/virtual/input/input5
[  789.865702][ T4182] udevd[4182]: setting owner of /dev/input/event4 to uid=0, gid=104 failed: No such file or directory
[  790.137823][T13049] input: syz1 as /devices/virtual/input/input6
[  792.447308][T13088] input: syz0 as /devices/virtual/input/input7
[  792.509968][ T1433] ieee802154 phy0 wpan0: encryption failed: -22
[  793.030257][ T4237] usb 8-1: new full-speed USB device number 3 using dummy_hcd
[  793.515598][ T4237] usb 8-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 175, changing to 4
[  793.612589][ T4237] usb 8-1: language id specifier not provided by device, defaulting to English
[  793.767788][ T4237] usb 8-1: New USB device found, idVendor=04b4, idProduct=931f, bcdDevice= 0.40
[  793.784130][ T4237] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  793.804354][ T4237] usb 8-1: Product: syz
[  793.813257][ T4237] usb 8-1: Manufacturer: ఉ
[  793.822592][ T4237] usb 8-1: SerialNumber: syz
[  794.248588][ T4237] usb 8-1: Audio class v2/v3 interfaces need an interface association
[  794.277890][ T4237] snd-usb-audio: probe of 8-1:1.0 failed with error -22
[  794.314385][ T4237] usb 8-1: can't set first interface for hiFace device.
[  794.329272][ T4237] snd-usb-hiface: probe of 8-1:1.0 failed with error -5
[  794.376746][ T4237] usb 8-1: can't set first interface for hiFace device.
[  794.395023][ T4237] snd-usb-hiface: probe of 8-1:1.1 failed with error -5
[  794.590439][ T4237] usb 8-1: can't set first interface for hiFace device.
[  794.600246][ T4237] snd-usb-hiface: probe of 8-1:1.2 failed with error -5
[  794.639154][ T4237] usb 8-1: USB disconnect, device number 3
[  794.684448][ T8449] udevd[8449]: error opening ATTR{/sys/devices/platform/dummy_hcd.7/usb8/8-1/8-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  794.951463][T13133] loop6: detected capacity change from 0 to 256
[  795.008064][T13133] FAT-fs (loop6): "posix" option is obsolete, not supported now
[  795.377327][T13142] loop7: detected capacity change from 0 to 256
[  795.452825][T13142] exFAT-fs (loop7): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  795.751681][T13142] exFAT-fs (loop7): Medium has reported failures. Some data may be lost.
[  796.260660][T13142] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  796.330612][T13154] loop0: detected capacity change from 0 to 256
[  796.372420][T13154] FAT-fs (loop0): "posix" option is obsolete, not supported now
[  797.366274][ T4236] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  797.995752][T13163] loop2: detected capacity change from 0 to 256
[  798.042929][T13163] FAT-fs (loop2): "posix" option is obsolete, not supported now
[  798.405728][ T4236] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  798.610816][ T4236] usb 6-1: config 0 has no interfaces?
[  798.642537][T13168] input: syz1 as /devices/virtual/input/input8
[  799.088292][ T4236] usb 6-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  799.110774][ T4236] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  799.187439][ T4236] usb 6-1: config 0 descriptor??
[  799.206778][ T4236] usb 6-1: can't set config #0, error -71
[  799.261569][ T4236] usb 6-1: USB disconnect, device number 2
[  799.300204][T13178] input: syz1 as /devices/virtual/input/input9
[  799.582237][T13192] loop7: detected capacity change from 0 to 512
[  799.726997][T13192] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  799.774520][T13192] EXT4-fs (loop7): 1 truncate cleaned up
[  799.793185][T13192] EXT4-fs (loop7): mounted filesystem without journal. Opts: max_batch_time=0x0000000000000004,max_batch_time=0x0000000000000002,debug_want_extra_isize=0x000000000000006a,block_validity,errors=remount-ro,nombcache,. Quota mode: none.
[  800.548152][T13212] input: syz1 as /devices/virtual/input/input10
[  800.614359][T13206] loop5: detected capacity change from 0 to 128
[  800.770062][T13218] loop0: detected capacity change from 0 to 128
[  800.915333][T13218] netlink: 536 bytes leftover after parsing attributes in process `syz.0.2077'.
[  800.962160][T13218] loop0: detected capacity change from 0 to 512
[  800.988416][T13206] netlink: 536 bytes leftover after parsing attributes in process `syz.5.2075'.
[  801.009198][T13206] loop5: detected capacity change from 0 to 512
[  801.240718][T13206] EXT4-fs (loop5): mounted filesystem without journal. Opts: grpid,nombcache,,errors=continue. Quota mode: writeback.
[  801.253318][T13206] ext4 filesystem being mounted at /311/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  801.313449][T13206] EXT4-fs error (device loop5): ext4_validate_block_bitmap:438: comm syz.5.2075: bg 0: block 424: padding at end of block bitmap is not set
[  801.329406][T13206] Quota error (device loop5): write_blk: dquota write failed
[  801.336948][T13206] Quota error (device loop5): find_free_dqentry: Can't write quota data block 5
[  801.346137][T13206] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota
[  801.356181][T13206] EXT4-fs error (device loop5): ext4_acquire_dquot:6236: comm syz.5.2075: Failed to acquire dquot type 1
[  801.575015][T13218] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpid,nombcache,,errors=continue. Quota mode: writeback.
[  801.587737][T13218] ext4 filesystem being mounted at /444/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  801.951319][T13218] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.2077: bg 0: block 424: padding at end of block bitmap is not set
[  801.967180][T13218] Quota error (device loop0): write_blk: dquota write failed
[  801.974927][T13218] Quota error (device loop0): find_free_dqentry: Can't write quota data block 5
[  801.984021][T13218] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  801.994135][T13218] EXT4-fs error (device loop0): ext4_acquire_dquot:6236: comm syz.0.2077: Failed to acquire dquot type 1
[  802.312566][T13232] device syzkaller0 entered promiscuous mode
[  802.647405][T13232] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  803.472812][T13230] tipc: Resetting bearer <eth:syzkaller0>
[  803.521596][T13230] tipc: Disabling bearer <eth:syzkaller0>
[  803.555015][T13247] loop2: detected capacity change from 0 to 512
[  803.639100][T13247] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  803.708830][T13247] EXT4-fs (loop2): 1 truncate cleaned up
[  803.733729][T13247] EXT4-fs (loop2): mounted filesystem without journal. Opts: max_batch_time=0x0000000000000004,max_batch_time=0x0000000000000002,debug_want_extra_isize=0x000000000000006a,block_validity,errors=remount-ro,nombcache,. Quota mode: none.
[  803.885805][T13258] input: syz1 as /devices/virtual/input/input11
[  804.500785][T13268] loop7: detected capacity change from 0 to 512
[  807.349185][T13296] loop6: detected capacity change from 0 to 128
[  807.596156][T13296] netlink: 536 bytes leftover after parsing attributes in process `syz.6.2092'.
[  807.635373][T13296] loop6: detected capacity change from 0 to 512
[  807.995299][T13296] EXT4-fs (loop6): mounted filesystem without journal. Opts: grpid,nombcache,,errors=continue. Quota mode: writeback.
[  808.008348][T13296] ext4 filesystem being mounted at /242/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  808.089360][T13296] EXT4-fs error (device loop6): ext4_validate_block_bitmap:438: comm syz.6.2092: bg 0: block 424: padding at end of block bitmap is not set
[  808.107600][T13296] Quota error (device loop6): write_blk: dquota write failed
[  808.115159][T13296] Quota error (device loop6): find_free_dqentry: Can't write quota data block 5
[  808.124852][T13296] Quota error (device loop6): qtree_write_dquot: Error -28 occurred while creating quota
[  808.134939][T13296] EXT4-fs error (device loop6): ext4_acquire_dquot:6236: comm syz.6.2092: Failed to acquire dquot type 1
[  808.964733][T13306] input: syz1 as /devices/virtual/input/input12
[  809.306225][T13319] loop0: detected capacity change from 0 to 256
[  809.408821][T13319] FAT-fs (loop0): Directory bread(block 64) failed
[  809.480039][T13319] FAT-fs (loop0): Directory bread(block 65) failed
[  809.766402][T13319] FAT-fs (loop0): Directory bread(block 66) failed
[  810.130603][T13319] FAT-fs (loop0): Directory bread(block 67) failed
[  810.249557][T13319] FAT-fs (loop0): Directory bread(block 68) failed
[  810.256448][T13319] FAT-fs (loop0): Directory bread(block 69) failed
[  810.263074][T13319] FAT-fs (loop0): Directory bread(block 70) failed
[  810.270038][T13319] FAT-fs (loop0): Directory bread(block 71) failed
[  810.276648][T13319] FAT-fs (loop0): Directory bread(block 72) failed
[  810.384400][T13319] FAT-fs (loop0): Directory bread(block 73) failed
[  810.614223][T13335] loop5: detected capacity change from 0 to 512
[  811.104382][T13325] loop6: detected capacity change from 0 to 40427
[  811.200512][T13325] F2FS-fs (loop6): Invalid log_blocksize (268), supports only 12
[  811.219590][T13325] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  811.282413][T13325] F2FS-fs (loop6): Found nat_bits in checkpoint
[  811.516729][T13325] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  811.731476][T13325] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  811.832395][T13355] loop2: detected capacity change from 0 to 128
[  812.045444][T13355] netlink: 536 bytes leftover after parsing attributes in process `syz.2.2106'.
[  812.091088][T13355] loop2: detected capacity change from 0 to 512
[  812.403695][T13355] EXT4-fs (loop2): mounted filesystem without journal. Opts: grpid,nombcache,,errors=continue. Quota mode: writeback.
[  812.416839][T13355] ext4 filesystem being mounted at /458/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  812.515371][T13355] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.2106: bg 0: block 424: padding at end of block bitmap is not set
[  812.534447][T13355] Quota error (device loop2): write_blk: dquota write failed
[  812.541911][T13355] Quota error (device loop2): find_free_dqentry: Can't write quota data block 5
[  812.551679][T13355] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  812.561851][T13355] EXT4-fs error (device loop2): ext4_acquire_dquot:6236: comm syz.2.2106: Failed to acquire dquot type 1
[  813.167209][T13364] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  815.374370][T13379] loop5: detected capacity change from 0 to 512
[  815.489878][T13379] EXT4-fs (loop5): Journaled quota options ignored when QUOTA feature is enabled
[  815.566572][T13379] EXT4-fs (loop5): mounted filesystem without journal. Opts: usrjquota=./file0,acl,,errors=continue. Quota mode: writeback.
[  815.641731][T13379] ext4 filesystem being mounted at /320/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  816.795967][ T1106] usb 1-1: new full-speed USB device number 3 using dummy_hcd
[  817.181833][T13422] loop2: detected capacity change from 0 to 512
[  817.248254][ T1106] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 175, changing to 4
[  817.330452][ T1106] usb 1-1: language id specifier not provided by device, defaulting to English
[  817.413267][T13424] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  818.174701][ T1106] usb 1-1: New USB device found, idVendor=04b4, idProduct=931f, bcdDevice= 0.40
[  818.220188][ T1106] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  818.243401][ T1106] usb 1-1: Product: syz
[  818.247609][ T1106] usb 1-1: Manufacturer: ఉ
[  818.257078][T13430] input: syz1 as /devices/virtual/input/input13
[  818.273831][ T1106] usb 1-1: SerialNumber: syz
[  818.430200][T13441] loop7: detected capacity change from 0 to 512
[  818.433888][T13440] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  818.698339][ T1106] usb 1-1: Audio class v2/v3 interfaces need an interface association
[  818.728912][ T1106] snd-usb-audio: probe of 1-1:1.0 failed with error -22
[  818.772902][ T1106] usb 1-1: can't set first interface for hiFace device.
[  818.785603][ T1106] snd-usb-hiface: probe of 1-1:1.0 failed with error -5
[  818.837096][ T1106] usb 1-1: can't set first interface for hiFace device.
[  818.844080][ T1106] snd-usb-hiface: probe of 1-1:1.1 failed with error -5
[  818.890475][ T1106] usb 1-1: can't set first interface for hiFace device.
[  818.908414][ T1106] snd-usb-hiface: probe of 1-1:1.2 failed with error -5
[  818.949793][ T1106] usb 1-1: USB disconnect, device number 3
[  819.235504][T13449] netlink: 536 bytes leftover after parsing attributes in process `syz.7.2129'.
[  819.281285][T13449] loop7: detected capacity change from 0 to 512
[  819.690256][T13449] EXT4-fs (loop7): mounted filesystem without journal. Opts: grpid,nombcache,,errors=continue. Quota mode: writeback.
[  819.703439][T13449] ext4 filesystem being mounted at /202/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  819.817724][T13449] EXT4-fs error (device loop7): ext4_validate_block_bitmap:438: comm syz.7.2129: bg 0: block 424: padding at end of block bitmap is not set
[  819.835852][T13449] Quota error (device loop7): write_blk: dquota write failed
[  819.843387][T13449] Quota error (device loop7): find_free_dqentry: Can't write quota data block 5
[  819.853419][T13449] Quota error (device loop7): qtree_write_dquot: Error -117 occurred while creating quota
[  820.004737][T13449] EXT4-fs error (device loop7): ext4_acquire_dquot:6236: comm syz.7.2129: Failed to acquire dquot type 1
[  820.629474][ T8449] udevd[8449]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  820.880723][T13466] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  821.876064][T13483] loop0: detected capacity change from 0 to 256
[  821.987380][T13483] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  822.016509][T13483] exFAT-fs (loop0): Medium has reported failures. Some data may be lost.
[  822.065055][T13483] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  822.186602][T13485] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  823.622793][T13507] input: syz1 as /devices/virtual/input/input14
[  823.835555][T13512] input: syz1 as /devices/virtual/input/input15
[  823.859484][   T23] usb 3-1: new full-speed USB device number 7 using dummy_hcd
[  823.897380][T13491] loop6: detected capacity change from 0 to 512
[  823.940519][T13491] EXT4-fs (loop6): Journaled quota options ignored when QUOTA feature is enabled
[  824.042114][T13491] EXT4-fs (loop6): mounted filesystem without journal. Opts: usrjquota=./file0,acl,,errors=continue. Quota mode: writeback.
[  824.143927][T13520] input: syz1 as /devices/virtual/input/input16
[  824.185845][T13491] ext4 filesystem being mounted at /251/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  824.361894][   T23] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 175, changing to 4
[  824.425893][   T23] usb 3-1: language id specifier not provided by device, defaulting to English
[  824.629038][   T23] usb 3-1: New USB device found, idVendor=04b4, idProduct=931f, bcdDevice= 0.40
[  824.644692][   T23] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  824.670362][   T23] usb 3-1: Product: syz
[  824.676784][T13527] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  824.683604][   T23] usb 3-1: Manufacturer: ఉ
[  824.690262][   T23] usb 3-1: SerialNumber: syz
[  825.077888][   T23] usb 3-1: Audio class v2/v3 interfaces need an interface association
[  825.116155][   T23] snd-usb-audio: probe of 3-1:1.0 failed with error -22
[  825.152672][   T23] usb 3-1: can't set first interface for hiFace device.
[  825.162163][   T23] snd-usb-hiface: probe of 3-1:1.0 failed with error -5
[  825.195308][   T23] usb 3-1: can't set first interface for hiFace device.
[  825.204698][   T23] snd-usb-hiface: probe of 3-1:1.1 failed with error -5
[  825.237987][   T23] usb 3-1: can't set first interface for hiFace device.
[  825.246272][   T23] snd-usb-hiface: probe of 3-1:1.2 failed with error -5
[  825.334722][   T23] usb 3-1: USB disconnect, device number 7
[  825.573378][ T8449] udevd[8449]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  826.039162][T13552] loop7: detected capacity change from 0 to 256
[  826.071592][ T4624] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  826.159222][T13553] loop6: detected capacity change from 0 to 128
[  826.332398][T13553] netlink: 536 bytes leftover after parsing attributes in process `syz.6.2156'.
[  826.378700][T13553] loop6: detected capacity change from 0 to 512
[  826.434951][ T4624] usb 3-1: Using ep0 maxpacket: 8
[  826.606779][ T4624] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  826.676362][T13553] EXT4-fs (loop6): mounted filesystem without journal. Opts: grpid,nombcache,,errors=continue. Quota mode: writeback.
[  826.689448][T13553] ext4 filesystem being mounted at /253/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  826.800492][T13553] EXT4-fs error (device loop6): ext4_validate_block_bitmap:438: comm syz.6.2156: bg 0: block 424: padding at end of block bitmap is not set
[  826.819255][T13553] Quota error (device loop6): write_blk: dquota write failed
[  826.826831][T13553] Quota error (device loop6): find_free_dqentry: Can't write quota data block 5
[  826.836579][T13553] Quota error (device loop6): qtree_write_dquot: Error -117 occurred while creating quota
[  826.873115][T13553] EXT4-fs error (device loop6): ext4_acquire_dquot:6236: comm syz.6.2156: Failed to acquire dquot type 1
[  827.027577][T13552] FAT-fs (loop7): Directory bread(block 64) failed
[  827.053706][ T4624] usb 3-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  827.110479][T13552] FAT-fs (loop7): Directory bread(block 65) failed
[  827.124541][ T4624] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[  827.145567][T13552] FAT-fs (loop7): Directory bread(block 66) failed
[  827.170546][T13552] FAT-fs (loop7): Directory bread(block 67) failed
[  827.177267][T13552] FAT-fs (loop7): Directory bread(block 68) failed
[  827.212611][T13552] FAT-fs (loop7): Directory bread(block 69) failed
[  827.246969][T13552] FAT-fs (loop7): Directory bread(block 70) failed
[  827.263302][T13552] FAT-fs (loop7): Directory bread(block 71) failed
[  827.348691][ T4624] usb 3-1: New USB device found, idVendor=0582, idProduct=0025, bcdDevice= 0.40
[  827.369653][ T4624] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  827.400203][T13552] FAT-fs (loop7): Directory bread(block 72) failed
[  827.433453][T13562] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  827.442955][ T4624] usb 3-1: Product: syz
[  827.480551][T13552] FAT-fs (loop7): Directory bread(block 73) failed
[  827.498541][ T4624] usb 3-1: Manufacturer: syz
[  827.503185][ T4624] usb 3-1: SerialNumber: syz
[  828.534661][ T4624] usb 3-1: USB disconnect, device number 8
[  828.564821][T13571] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  830.796676][T13600] loop0: detected capacity change from 0 to 128
[  831.017421][T13600] netlink: 536 bytes leftover after parsing attributes in process `syz.0.2168'.
[  831.063244][T13600] loop0: detected capacity change from 0 to 512
[  831.333011][T13600] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpid,nombcache,,errors=continue. Quota mode: writeback.
[  831.346213][T13600] ext4 filesystem being mounted at /459/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  831.442006][T13600] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.2168: bg 0: block 424: padding at end of block bitmap is not set
[  831.461065][T13600] Quota error (device loop0): write_blk: dquota write failed
[  831.468597][T13600] Quota error (device loop0): find_free_dqentry: Can't write quota data block 5
[  831.478235][T13600] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  831.488339][T13600] EXT4-fs error (device loop0): ext4_acquire_dquot:6236: comm syz.0.2168: Failed to acquire dquot type 1
[  831.647492][T13602] netlink: 'syz.7.2170': attribute type 4 has an invalid length.
[  832.623463][T13628] loop7: detected capacity change from 0 to 512
[  833.701121][T13637] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  833.755733][T13639] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  834.473373][T13657] loop0: detected capacity change from 0 to 128
[  836.191276][T13657] netlink: 536 bytes leftover after parsing attributes in process `syz.0.2182'.
[  836.206273][T13657] loop0: detected capacity change from 0 to 512
[  836.887371][T13661] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  837.426573][T13657] EXT4-fs warning (device loop0): ext4_multi_mount_protect:403: Unable to create kmmpd thread for loop0.
[  837.630462][T13664] input: syz1 as /devices/virtual/input/input17
[  837.658990][T13664] input: failed to attach handler leds to device input17, error: -6
[  838.104104][T13686] loop2: detected capacity change from 0 to 512
[  838.123648][T13689] input: syz1 as /devices/virtual/input/input18
[  838.143222][T13690] loop5: detected capacity change from 0 to 512
[  839.258221][T13701] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  840.754316][ T4237] usb 1-1: new full-speed USB device number 4 using dummy_hcd
[  840.967913][   T23] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  841.213770][ T4237] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 175, changing to 4
[  841.331501][ T4237] usb 1-1: language id specifier not provided by device, defaulting to English
[  841.352690][   T23] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  841.395807][   T23] usb 7-1: config 0 has no interfaces?
[  841.439516][   T23] usb 7-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  841.522694][   T23] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  841.584296][   T23] usb 7-1: config 0 descriptor??
[  841.630539][ T4237] usb 1-1: New USB device found, idVendor=04b4, idProduct=931f, bcdDevice= 0.40
[  841.686390][ T4237] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  841.733589][ T4237] usb 1-1: Product: syz
[  841.786122][ T4237] usb 1-1: Manufacturer: ఉ
[  841.833346][ T4237] usb 1-1: SerialNumber: syz
[  842.250361][ T4237] usb 1-1: Audio class v2/v3 interfaces need an interface association
[  842.276201][T13747] loop7: detected capacity change from 0 to 512
[  842.344346][ T4237] snd-usb-audio: probe of 1-1:1.0 failed with error -22
[  842.410777][ T4237] usb 1-1: can't set first interface for hiFace device.
[  843.328316][ T4237] snd-usb-hiface: probe of 1-1:1.0 failed with error -5
[  843.685233][ T4237] usb 1-1: can't set first interface for hiFace device.
[  843.934394][ T4237] snd-usb-hiface: probe of 1-1:1.1 failed with error -5
[  843.949424][   T23] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  844.013736][ T4237] usb 1-1: can't set first interface for hiFace device.
[  844.054601][ T4237] snd-usb-hiface: probe of 1-1:1.2 failed with error -5
[  844.124109][ T4237] usb 1-1: USB disconnect, device number 4
[  844.206699][ T8449] udevd[8449]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  844.323452][ T1106] usb 7-1: USB disconnect, device number 3
[  844.398314][   T23] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  844.474457][   T23] usb 6-1: config 0 has no interfaces?
[  844.479978][   T23] usb 6-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  844.592848][   T23] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  844.651453][   T23] usb 6-1: config 0 descriptor??
[  845.005790][T13773] loop7: detected capacity change from 0 to 512
[  845.666081][T13777] loop0: detected capacity change from 0 to 512
[  845.894130][T13777] EXT4-fs (loop0): Journaled quota options ignored when QUOTA feature is enabled
[  846.164308][T13777] EXT4-fs (loop0): mounted filesystem without journal. Opts: usrjquota=./file0,acl,,errors=continue. Quota mode: writeback.
[  846.231320][T13777] ext4 filesystem being mounted at /467/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  846.339712][T13793] input: syz1 as /devices/virtual/input/input19
[  846.568130][T13799] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  846.706799][ T4237] usb 6-1: USB disconnect, device number 3
[  847.599301][T13825] loop6: detected capacity change from 0 to 256
[  847.676593][T13825] exFAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  847.927378][T13832] loop2: detected capacity change from 0 to 256
[  847.977012][T13825] exFAT-fs (loop6): Medium has reported failures. Some data may be lost.
[  847.998889][T13825] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  848.158247][T13832] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  848.223274][T13832] exFAT-fs (loop2): Medium has reported failures. Some data may be lost.
[  848.224398][T13834] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  849.087137][T13832] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  850.261265][T13852] device syzkaller0 entered promiscuous mode
[  850.315266][T13852] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  850.398777][T13849] tipc: Resetting bearer <eth:syzkaller0>
[  850.440530][T13849] tipc: Disabling bearer <eth:syzkaller0>
[  850.702962][T12773] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  850.746000][ T1106] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  851.017004][T12773] usb 3-1: Using ep0 maxpacket: 8
[  851.052199][T13867] loop0: detected capacity change from 0 to 512
[  851.174808][T12773] usb 3-1: config 0 has no interfaces?
[  851.180929][T12773] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  851.205218][ T1106] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  851.290715][ T1106] usb 6-1: config 0 has no interfaces?
[  851.312862][T12773] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  851.322686][ T1106] usb 6-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  851.383311][T12773] usb 3-1: config 0 descriptor??
[  851.388438][ T1106] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  851.410776][ T1106] usb 6-1: config 0 descriptor??
[  851.564905][T13867] EXT4-fs (loop0): Journaled quota options ignored when QUOTA feature is enabled
[  851.806293][T13867] EXT4-fs (loop0): mounted filesystem without journal. Opts: usrjquota=./file0,acl,,errors=continue. Quota mode: writeback.
[  851.844873][T13867] ext4 filesystem being mounted at /470/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  851.847742][T13885] input: syz1 as /devices/virtual/input/input20
[  852.198949][ T4624] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[  852.423262][ T1106] usb 7-1: new full-speed USB device number 4 using dummy_hcd
[  852.455436][ T4624] usb 8-1: Using ep0 maxpacket: 8
[  852.583774][ T4624] usb 8-1: config 0 has no interfaces?
[  852.589489][ T4624] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  852.606948][ T4624] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  852.629620][ T4624] usb 8-1: config 0 descriptor??
[  852.713189][T13894] loop0: detected capacity change from 0 to 40427
[  852.736927][T13894] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  852.749827][T13894] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  852.777749][T13894] F2FS-fs (loop0): Found nat_bits in checkpoint
[  852.850915][ T1106] usb 7-1: config 0 has an invalid interface number: 1 but max is 0
[  852.859373][ T1106] usb 7-1: config 0 has no interface number 0
[  852.898625][T13894] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  852.910177][T13894] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  853.075381][ T1106] usb 7-1: New USB device found, idVendor=0b48, idProduct=1003, bcdDevice=7b.54
[  853.089669][ T1106] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  853.107403][ T1106] usb 7-1: Product: syz
[  853.116449][ T1106] usb 7-1: Manufacturer: syz
[  853.126983][ T1106] usb 7-1: SerialNumber: syz
[  853.182288][ T1106] usb 7-1: config 0 descriptor??
[  853.289311][T13900] netlink: 'syz.0.2240': attribute type 3 has an invalid length.
[  853.903475][ T4624] usb 3-1: USB disconnect, device number 9
[  853.948788][ T4236] usb 6-1: USB disconnect, device number 4
[  853.994422][ T1106] usb 7-1: selecting invalid altsetting 1
[  854.005661][ T1106] dvb_ttusb_budget: ttusb_init_controller: error
[  854.012212][ T1106] dvbdev: DVB: registering new adapter (Technotrend/Hauppauge Nova-USB)
[  854.096365][ T1106] DVB: Unable to find symbol stv0299_attach()
[  854.225997][ T1106] DVB: Unable to find symbol tda8083_attach()
[  854.234643][ T1106] dvb_ttusb_budget: no frontend driver found for device [0b48:1003]
[  854.254244][ T1106] usb 7-1: USB disconnect, device number 4
[  854.499701][T13914] input: syz1 as /devices/virtual/input/input21
[  855.011924][ T4236] usb 8-1: USB disconnect, device number 4
[  855.148252][ T4233] usb 6-1: new full-speed USB device number 5 using dummy_hcd
[  855.543890][ T4233] usb 6-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 175, changing to 4
[  855.618761][ T4233] usb 6-1: language id specifier not provided by device, defaulting to English
[  855.697747][T13943] loop6: detected capacity change from 0 to 256
[  855.719780][T13943] exFAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  855.731163][T13943] exFAT-fs (loop6): Medium has reported failures. Some data may be lost.
[  855.757689][ T4233] usb 6-1: New USB device found, idVendor=04b4, idProduct=931f, bcdDevice= 0.40
[  855.766808][ T4233] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  855.786688][T13943] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  855.798947][ T4233] usb 6-1: Product: syz
[  855.803874][ T4233] usb 6-1: Manufacturer: ఉ
[  855.808492][ T4233] usb 6-1: SerialNumber: syz
[  855.821486][T12773] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  856.496676][ T4233] usb 6-1: Audio class v2/v3 interfaces need an interface association
[  856.763534][T12773] usb 3-1: Using ep0 maxpacket: 8
[  856.885100][ T4233] snd-usb-audio: probe of 6-1:1.0 failed with error -22
[  856.908770][T13952] loop0: detected capacity change from 0 to 512
[  856.915315][ T4233] usb 6-1: can't set first interface for hiFace device.
[  856.922831][ T4233] snd-usb-hiface: probe of 6-1:1.0 failed with error -5
[  856.933464][T12773] usb 3-1: config 0 has no interfaces?
[  856.940444][T12773] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  856.973431][T12773] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  857.046774][T12773] usb 3-1: config 0 descriptor??
[  857.095301][ T4233] usb 6-1: can't set first interface for hiFace device.
[  857.104022][ T4233] snd-usb-hiface: probe of 6-1:1.1 failed with error -5
[  857.125197][ T4233] usb 6-1: can't set first interface for hiFace device.
[  857.132182][ T4233] snd-usb-hiface: probe of 6-1:1.2 failed with error -5
[  857.146187][ T4233] usb 6-1: USB disconnect, device number 5
[  857.606855][ T8449] udevd[8449]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  857.885717][ T4237] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[  858.165101][ T4237] usb 8-1: Using ep0 maxpacket: 8
[  858.179885][ T1433] ieee802154 phy0 wpan0: encryption failed: -22
[  858.204103][T13965] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  858.418423][ T4237] usb 8-1: config 0 has no interfaces?
[  858.424410][ T4237] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  858.434794][ T4237] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  858.472649][ T4237] usb 8-1: config 0 descriptor??
[  859.312397][ T4233] usb 3-1: USB disconnect, device number 10
[  859.656837][T13992] loop0: detected capacity change from 0 to 512
[  859.683351][T13993] loop2: detected capacity change from 0 to 512
[  861.101441][T12773] usb 8-1: USB disconnect, device number 5
[  861.761946][T13995] loop5: detected capacity change from 0 to 40427
[  861.780329][T13995] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12
[  861.788720][T13995] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  861.874573][T13995] F2FS-fs (loop5): Found nat_bits in checkpoint
[  861.895286][T14007] device syzkaller0 entered promiscuous mode
[  862.034160][T13995] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  862.052247][T13995] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  862.468127][T14025] netlink: 'syz.5.2270': attribute type 3 has an invalid length.
[  863.315708][T14029] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  863.354272][T14027] device syzkaller0 entered promiscuous mode
[  863.702008][   T26] audit: type=1800 audit(1781089945.629:551): pid=14041 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.2283" name="/" dev="fuse" ino=1 res=0 errno=0
[  863.761301][T12773] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  864.039091][T12773] usb 7-1: Using ep0 maxpacket: 8
[  864.170417][T12773] usb 7-1: config 0 has no interfaces?
[  864.182487][T12773] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  864.270077][T12773] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  864.414379][T12773] usb 7-1: config 0 descriptor??
[  865.786457][T14075] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  865.999855][T14080] device syzkaller0 entered promiscuous mode
[  866.794969][   T23] usb 7-1: USB disconnect, device number 5
[  867.474542][T14098] loop0: detected capacity change from 0 to 512
[  867.882256][T14105] loop5: detected capacity change from 0 to 512
[  867.896658][T12773] usb 8-1: new high-speed USB device number 6 using dummy_hcd
[  868.026567][T14105] EXT4-fs (loop5): Journaled quota options ignored when QUOTA feature is enabled
[  868.122143][T14105] EXT4-fs (loop5): mounted filesystem without journal. Opts: usrjquota=./file0,acl,,errors=continue. Quota mode: writeback.
[  868.135206][T14105] ext4 filesystem being mounted at /358/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  868.302961][T12773] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  868.330500][T12773] usb 8-1: config 0 has no interfaces?
[  868.368647][T12773] usb 8-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  868.409970][T12773] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  868.473794][T12773] usb 8-1: config 0 descriptor??
[  868.531569][T14116] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  868.610777][T14118] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  868.791568][T14124] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  868.801569][ T4233] usb 8-1: USB disconnect, device number 6
[  869.328888][T12773] usb 1-1: new full-speed USB device number 5 using dummy_hcd
[  869.821090][T12773] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 175, changing to 4
[  869.991291][T12773] usb 1-1: language id specifier not provided by device, defaulting to English
[  870.035954][T14152] loop6: detected capacity change from 0 to 512
[  870.162412][T12773] usb 1-1: New USB device found, idVendor=04b4, idProduct=931f, bcdDevice= 0.40
[  870.171628][T12773] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  870.279120][T12773] usb 1-1: Product: syz
[  870.307031][T12773] usb 1-1: Manufacturer: ఉ
[  870.339287][T12773] usb 1-1: SerialNumber: syz
[  870.771372][T12773] usb 1-1: Audio class v2/v3 interfaces need an interface association
[  870.857312][T12773] snd-usb-audio: probe of 1-1:1.0 failed with error -22
[  870.931927][T12773] usb 1-1: can't set first interface for hiFace device.
[  870.971758][T12773] snd-usb-hiface: probe of 1-1:1.0 failed with error -5
[  871.060138][T12773] usb 1-1: can't set first interface for hiFace device.
[  871.120366][T12773] snd-usb-hiface: probe of 1-1:1.1 failed with error -5
[  871.234083][T12773] usb 1-1: can't set first interface for hiFace device.
[  871.284361][T12773] snd-usb-hiface: probe of 1-1:1.2 failed with error -5
[  871.354494][T12773] usb 1-1: USB disconnect, device number 5
[  871.533214][T14172] device syzkaller0 entered promiscuous mode
[  871.664815][T14178] input: syz0 as /devices/virtual/input/input24
[  871.672588][ T8449] udevd[8449]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  874.055597][T14220] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  874.960301][ T1106] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  875.131253][ T4237] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  875.270405][ T1106] usb 3-1: Using ep0 maxpacket: 8
[  875.411877][ T1106] usb 3-1: config 0 has no interfaces?
[  875.417827][ T1106] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  875.458774][ T1106] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  875.511659][ T1106] usb 3-1: config 0 descriptor??
[  875.580199][ T4237] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  875.616052][ T4237] usb 1-1: config 0 has no interfaces?
[  875.668303][ T4237] usb 1-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  875.711333][ T4237] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  875.766159][ T4237] usb 1-1: config 0 descriptor??
[  876.416014][T14258] input: syz0 as /devices/virtual/input/input27
[  876.947539][T14271] loop7: detected capacity change from 0 to 256
[  877.060024][T14271] FAT-fs (loop7): Directory bread(block 64) failed
[  877.098700][T14271] FAT-fs (loop7): Directory bread(block 65) failed
[  877.117157][T14271] FAT-fs (loop7): Directory bread(block 66) failed
[  877.134063][T14271] FAT-fs (loop7): Directory bread(block 67) failed
[  877.149278][T14271] FAT-fs (loop7): Directory bread(block 68) failed
[  877.163197][T14271] FAT-fs (loop7): Directory bread(block 69) failed
[  877.172492][T14271] FAT-fs (loop7): Directory bread(block 70) failed
[  877.179146][T14271] FAT-fs (loop7): Directory bread(block 71) failed
[  877.186281][T14271] FAT-fs (loop7): Directory bread(block 72) failed
[  877.192944][T14271] FAT-fs (loop7): Directory bread(block 73) failed
[  877.768059][   T23] usb 3-1: USB disconnect, device number 11
[  878.207450][ T4233] usb 1-1: USB disconnect, device number 6
[  878.785876][T12773] usb 8-1: new high-speed USB device number 7 using dummy_hcd
[  879.234905][T12773] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  879.304470][T12773] usb 8-1: config 0 has no interfaces?
[  879.345076][T12773] usb 8-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  879.415476][T12773] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  879.526998][T12773] usb 8-1: config 0 descriptor??
[  879.773121][T14303] device syzkaller0 entered promiscuous mode
[  879.783148][T14303] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  879.790911][T14302] tipc: Resetting bearer <eth:syzkaller0>
[  879.820891][T14302] tipc: Disabling bearer <eth:syzkaller0>
[  880.781444][T14316] device syzkaller0 entered promiscuous mode
[  881.604782][ T4233] usb 8-1: USB disconnect, device number 7
[  881.646635][T14331] netlink: 'syz.5.2369': attribute type 4 has an invalid length.
[  882.005995][T14337] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[  882.032913][T14337] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[  882.579303][ T4237] usb 8-1: new high-speed USB device number 8 using dummy_hcd
[  882.804911][T14351] device syzkaller0 entered promiscuous mode
[  883.006866][ T4237] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  883.032362][ T4237] usb 8-1: config 0 has no interfaces?
[  883.062695][ T4237] usb 8-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  883.115368][ T4237] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  883.159410][ T4237] usb 8-1: config 0 descriptor??
[  883.595994][T14373] input: syz0 as /devices/virtual/input/input29
[  883.864041][T14380] input: syz1 as /devices/virtual/input/input30
[  885.475302][ T4236] usb 8-1: USB disconnect, device number 8
[  885.881795][T14409] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  886.000050][T12773] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  886.397569][T12773] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  886.421812][T12773] usb 3-1: config 0 has no interfaces?
[  886.440400][T12773] usb 3-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  886.477246][T12773] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  886.532194][T12773] usb 3-1: config 0 descriptor??
[  888.164184][T14441] device syzkaller0 entered promiscuous mode
[  888.323441][T14444] netlink: 'syz.5.2405': attribute type 4 has an invalid length.
[  888.842167][ T4233] usb 3-1: USB disconnect, device number 12
[  890.134779][T14459] loop6: detected capacity change from 0 to 512
[  890.158380][T14459] EXT4-fs (loop6): Journaled quota options ignored when QUOTA feature is enabled
[  890.262521][T14459] EXT4-fs (loop6): mounted filesystem without journal. Opts: usrjquota=./file0,acl,,errors=continue. Quota mode: writeback.
[  890.284443][T14459] ext4 filesystem being mounted at /313/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  891.652889][T14480] device bridge_slave_0 left promiscuous mode
[  891.679930][T14480] bridge0: port 1(bridge_slave_0) entered disabled state
[  891.745930][T14480] device bridge_slave_1 left promiscuous mode
[  891.785445][T14480] bridge0: port 2(bridge_slave_1) entered disabled state
[  891.825458][T14480] bond0: (slave bond_slave_0): Releasing backup interface
[  891.889438][T14480] bond0: (slave bond_slave_1): Releasing backup interface
[  891.949813][T14480] team0: Port device team_slave_0 removed
[  891.960425][T14480] team0: Port device team_slave_1 removed
[  891.974721][T14480] batman_adv: batadv0: Removing interface: batadv_slave_0
[  892.057599][T14490] loop0: detected capacity change from 0 to 128
[  892.124620][T14480] batman_adv: batadv0: Removing interface: batadv_slave_1
[  892.198154][T14490] netlink: 536 bytes leftover after parsing attributes in process `syz.0.2417'.
[  892.238914][T14490] loop0: detected capacity change from 0 to 512
[  892.403156][T14490] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpid,nombcache,,errors=continue. Quota mode: writeback.
[  892.416117][T14490] ext4 filesystem being mounted at /508/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  892.496236][T14490] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.2417: bg 0: block 424: padding at end of block bitmap is not set
[  892.513196][T14490] Quota error (device loop0): write_blk: dquota write failed
[  892.520722][T14490] Quota error (device loop0): find_free_dqentry: Can't write quota data block 5
[  892.530293][T14490] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  892.540432][T14490] EXT4-fs error (device loop0): ext4_acquire_dquot:6236: comm syz.0.2417: Failed to acquire dquot type 1
[  893.277945][T14495] loop5: detected capacity change from 0 to 512
[  893.425629][ T4236] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  893.810385][ T4236] usb 7-1: Using ep0 maxpacket: 8
[  893.950017][ T4236] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  893.965929][ T4236] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 3
[  894.152515][ T4236] usb 7-1: New USB device found, idVendor=0582, idProduct=0025, bcdDevice= 0.40
[  894.172975][ T4236] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  894.183816][ T4236] usb 7-1: Product: syz
[  894.194634][ T4236] usb 7-1: Manufacturer: syz
[  894.199949][T12773] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  894.205444][ T4236] usb 7-1: SerialNumber: syz
[  894.553095][ T4236] usb 7-1: USB disconnect, device number 6
[  894.697381][T12773] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  894.718631][T12773] usb 1-1: config 0 has no interfaces?
[  894.724171][T12773] usb 1-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  894.776519][T12773] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  894.801722][T12773] usb 1-1: config 0 descriptor??
[  895.074094][T12773] usb 1-1: USB disconnect, device number 7
[  895.682487][T14523] loop7: detected capacity change from 0 to 128
[  895.843239][T14523] netlink: 536 bytes leftover after parsing attributes in process `syz.7.2427'.
[  895.876981][T14523] loop7: detected capacity change from 0 to 512
[  897.001477][T14523] EXT4-fs (loop7): mounted filesystem without journal. Opts: grpid,nombcache,,errors=continue. Quota mode: writeback.
[  897.014038][T14523] ext4 filesystem being mounted at /258/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  897.106904][T14523] EXT4-fs error (device loop7): ext4_validate_block_bitmap:438: comm syz.7.2427: bg 0: block 424: padding at end of block bitmap is not set
[  897.668463][T14523] Quota error (device loop7): write_blk: dquota write failed
[  897.675928][T14523] Quota error (device loop7): find_free_dqentry: Can't write quota data block 5
[  897.685057][T14523] Quota error (device loop7): qtree_write_dquot: Error -28 occurred while creating quota
[  897.694959][T14523] EXT4-fs error (device loop7): ext4_acquire_dquot:6236: comm syz.7.2427: Failed to acquire dquot type 1
[  897.853832][T14536] device syzkaller0 entered promiscuous mode
[  897.997228][T14546] loop0: detected capacity change from 0 to 512
[  898.533657][ T4233] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  898.811394][ T4233] usb 3-1: Using ep0 maxpacket: 8
[  898.971947][ T4233] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  899.012526][ T4233] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  899.228402][ T4233] usb 3-1: New USB device found, idVendor=0582, idProduct=0025, bcdDevice= 0.40
[  899.237473][ T4233] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  899.321726][ T4233] usb 3-1: Product: syz
[  899.346831][ T4233] usb 3-1: Manufacturer: syz
[  899.351474][ T4233] usb 3-1: SerialNumber: syz
[  899.702980][ T4235] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  899.734872][ T4233] usb 3-1: USB disconnect, device number 13
[  899.792166][ T8449] udevd[8449]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  899.997527][ T4235] usb 1-1: Using ep0 maxpacket: 8
[  900.136678][ T4235] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  900.168653][ T4235] usb 1-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  900.177649][ T4235] usb 1-1: Duplicate descriptor for config 1 interface 0 altsetting 0, skipping
[  900.436320][ T4235] usb 1-1: New USB device found, idVendor=0582, idProduct=0025, bcdDevice= 0.40
[  900.477836][ T4235] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  900.510139][ T4235] usb 1-1: Product: syz
[  900.526059][ T4235] usb 1-1: Manufacturer: syz
[  900.547022][ T4235] usb 1-1: SerialNumber: syz
[  900.866845][ T4235] snd-usb-audio: probe of 1-1:1.0 failed with error -22
[  900.917786][ T4235] snd-usb-audio: probe of 1-1:1.1 failed with error -22
[  900.962530][ T4235] usb 1-1: USB disconnect, device number 8
[  901.014847][ T4182] udevd[4182]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.1/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  901.190623][T14587] loop6: detected capacity change from 0 to 512
[  901.197169][T14589] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  901.535352][T14597] device bridge_slave_0 left promiscuous mode
[  901.546088][T14597] bridge0: port 1(bridge_slave_0) entered disabled state
[  901.669689][T14597] device bridge_slave_1 left promiscuous mode
[  901.677236][T14597] bridge0: port 2(bridge_slave_1) entered disabled state
[  902.201960][T14597] bond0: (slave bond_slave_0): Releasing backup interface
[  902.252653][T14597] bond0: (slave bond_slave_1): Releasing backup interface
[  902.404610][T14597] team0: Port device team_slave_0 removed
[  902.414040][T14597] team0: Port device team_slave_1 removed
[  902.420679][T14597] batman_adv: batadv0: Removing interface: batadv_slave_0
[  902.430472][T14597] batman_adv: batadv0: Removing interface: batadv_slave_1
[  903.355911][T14612] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  903.686874][T14617] device syzkaller0 entered promiscuous mode
[  904.056870][T14626] device bridge_slave_0 left promiscuous mode
[  904.063192][T14626] bridge0: port 1(bridge_slave_0) entered disabled state
[  904.072340][T14626] device bridge_slave_1 left promiscuous mode
[  904.078614][T14626] bridge0: port 2(bridge_slave_1) entered disabled state
[  904.104215][T14626] bond0: (slave bond_slave_0): Releasing backup interface
[  904.120869][T14626] bond0: (slave bond_slave_1): Releasing backup interface
[  904.163086][T14626] team0: Port device team_slave_0 removed
[  904.184775][T14626] team0: Port device team_slave_1 removed
[  904.203172][T14626] batman_adv: batadv0: Removing interface: batadv_slave_0
[  904.225460][T14626] batman_adv: batadv0: Removing interface: batadv_slave_1
[  904.887699][T14633] loop2: detected capacity change from 0 to 256
[  904.931890][T14633] FAT-fs (loop2): "posix" option is obsolete, not supported now
[  905.320856][T14637] loop0: detected capacity change from 0 to 128
[  906.669002][T14637] netlink: 536 bytes leftover after parsing attributes in process `syz.0.2459'.
[  906.684401][T14637] loop0: detected capacity change from 0 to 512
[  907.652826][T14637] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpid,nombcache,,errors=continue. Quota mode: writeback.
[  907.665940][T14637] ext4 filesystem being mounted at /516/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  907.815356][T14637] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.2459: bg 0: block 424: padding at end of block bitmap is not set
[  907.922036][T14637] Quota error (device loop0): write_blk: dquota write failed
[  907.930027][T14637] Quota error (device loop0): find_free_dqentry: Can't write quota data block 5
[  907.939251][T14637] Quota error (device loop0): qtree_write_dquot: Error -28 occurred while creating quota
[  907.949222][T14637] EXT4-fs error (device loop0): ext4_acquire_dquot:6236: comm syz.0.2459: Failed to acquire dquot type 1
[  909.198416][ T4235] usb 8-1: new high-speed USB device number 9 using dummy_hcd
[  909.690759][ T4235] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  909.915536][ T4235] usb 8-1: config 0 has no interfaces?
[  909.923004][ T4235] usb 8-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  909.932994][ T4235] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  909.946521][ T4235] usb 8-1: config 0 descriptor??
[  910.028849][T14678] device bridge_slave_0 left promiscuous mode
[  910.042576][T14678] bridge0: port 1(bridge_slave_0) entered disabled state
[  910.065384][T14678] device bridge_slave_1 left promiscuous mode
[  910.071648][T14678] bridge0: port 2(bridge_slave_1) entered disabled state
[  910.141421][T14678] bond0: (slave bond_slave_0): Releasing backup interface
[  910.184050][T14678] bond0: (slave bond_slave_1): Releasing backup interface
[  910.239251][T14678] team0: Port device team_slave_0 removed
[  910.245451][ T4233] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  910.299750][T14678] team0: Port device team_slave_1 removed
[  910.331966][T14678] batman_adv: batadv0: Removing interface: batadv_slave_0
[  910.372628][T14678] batman_adv: batadv0: Removing interface: batadv_slave_1
[  910.715973][ T4233] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  910.726087][ T4233] usb 1-1: config 0 has no interfaces?
[  910.744248][ T4233] usb 1-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  910.759945][ T4233] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  910.780855][ T4233] usb 1-1: config 0 descriptor??
[  911.997678][T12773] usb 8-1: USB disconnect, device number 9
[  912.606020][T14707] loop5: detected capacity change from 0 to 512
[  913.128571][ T4237] usb 1-1: USB disconnect, device number 9
[  915.314960][T14753] loop6: detected capacity change from 0 to 512
[  915.753985][T14759] loop6: detected capacity change from 0 to 512
[  916.200889][T14757] loop0: detected capacity change from 0 to 512
[  916.313983][T14757] EXT4-fs (loop0): Journaled quota options ignored when QUOTA feature is enabled
[  916.512676][T14757] EXT4-fs (loop0): mounted filesystem without journal. Opts: usrjquota=./file0,acl,,errors=continue. Quota mode: writeback.
[  916.554242][T14752] loop7: detected capacity change from 0 to 40427
[  916.567631][T14757] ext4 filesystem being mounted at /523/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  916.602870][T14752] F2FS-fs (loop7): Invalid log_blocksize (268), supports only 12
[  916.677652][T14752] F2FS-fs (loop7): Can't find valid F2FS filesystem in 1th superblock
[  916.754222][T14752] F2FS-fs (loop7): Found nat_bits in checkpoint
[  916.811092][T14779] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  916.859730][T14778] tipc: Disabling bearer <eth:syzkaller0>
[  916.946160][T14752] F2FS-fs (loop7): Try to recover 1th superblock, ret: 0
[  916.959171][T14752] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[  917.353446][T14788] netlink: 'syz.7.2492': attribute type 3 has an invalid length.
[  919.058909][T14812] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  919.749451][ T4233] usb 3-1: new full-speed USB device number 14 using dummy_hcd
[  920.184793][ T4233] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 175, changing to 4
[  920.472328][ T4233] usb 3-1: language id specifier not provided by device, defaulting to English
[  920.616346][ T4233] usb 3-1: New USB device found, idVendor=04b4, idProduct=931f, bcdDevice= 0.40
[  920.632505][ T4233] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  920.640544][ T4233] usb 3-1: Product: syz
[  920.654138][ T4233] usb 3-1: Manufacturer: ఉ
[  920.659065][ T4233] usb 3-1: SerialNumber: syz
[  920.766269][T14843] loop5: detected capacity change from 0 to 512
[  921.082510][ T4233] usb 3-1: Audio class v2/v3 interfaces need an interface association
[  921.729541][ T4233] snd-usb-audio: probe of 3-1:1.0 failed with error -22
[  921.797273][ T4233] usb 3-1: can't set first interface for hiFace device.
[  921.845435][ T4233] snd-usb-hiface: probe of 3-1:1.0 failed with error -5
[  921.877127][T14861] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  921.932291][ T4233] usb 3-1: can't set first interface for hiFace device.
[  921.952162][ T4233] snd-usb-hiface: probe of 3-1:1.1 failed with error -5
[  922.031137][ T4233] usb 3-1: can't set first interface for hiFace device.
[  922.041044][ T4233] snd-usb-hiface: probe of 3-1:1.2 failed with error -5
[  922.078572][ T4233] usb 3-1: USB disconnect, device number 14
[  922.311957][ T8449] udevd[8449]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  923.229228][T14821] ODEBUG: Out of memory. ODEBUG disabled
[  923.830198][ T1433] ieee802154 phy0 wpan0: encryption failed: -22
[  924.368206][T14892] loop7: detected capacity change from 0 to 512
[  924.563766][ T4235] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  924.960986][ T4235] usb 1-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0x19, skipping
[  925.323568][ T4235] usb 1-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  925.365720][ T4235] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  925.403412][T14900] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  925.412998][ T4235] usb 1-1: Product: syz
[  925.417450][ T4235] usb 1-1: Manufacturer: syz
[  925.445372][ T4235] usb 1-1: SerialNumber: syz
[  925.472774][ T4235] usb 1-1: config 0 descriptor??
[  925.586130][ T4235] snd-usb-audio: probe of 1-1:0.0 failed with error -22
[  925.620331][T14821] Set syz1 is full, maxelem 65536 reached
[  925.824652][ T8449] udevd[8449]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  926.679866][ T4235] usb 1-1: USB disconnect, device number 10
[  926.850851][T14923] device syzkaller0 entered promiscuous mode
[  927.610944][T14945] loop7: detected capacity change from 0 to 512
[  928.449814][ T5215] usb 3-1: new full-speed USB device number 15 using dummy_hcd
[  928.557988][T14949] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  928.577575][T14948] tipc: Disabling bearer <eth:syzkaller0>
[  928.619823][T14933] loop5: detected capacity change from 0 to 512
[  928.766179][T14933] EXT4-fs (loop5): Journaled quota options ignored when QUOTA feature is enabled
[  929.015632][T14933] EXT4-fs (loop5): mounted filesystem without journal. Opts: usrjquota=./file0,acl,,errors=continue. Quota mode: writeback.
[  929.083726][T14933] ext4 filesystem being mounted at /405/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  929.422527][ T5215] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 175, changing to 4
[  929.455362][   T26] audit: type=1800 audit(1781090007.158:552): pid=14965 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.2550" name="/" dev="fuse" ino=1 res=0 errno=0
[  929.544644][ T5215] usb 3-1: language id specifier not provided by device, defaulting to English
[  929.737466][ T5215] usb 3-1: New USB device found, idVendor=04b4, idProduct=931f, bcdDevice= 0.40
[  929.768023][ T5215] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  929.790120][ T5215] usb 3-1: Product: syz
[  929.795232][T14972] loop5: detected capacity change from 0 to 512
[  929.806364][ T5215] usb 3-1: Manufacturer: ఉ
[  929.822617][ T5215] usb 3-1: SerialNumber: syz
[  929.888084][T14974] device syzkaller0 entered promiscuous mode
[  929.940514][T14972] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  929.982291][T14972] EXT4-fs (loop5): 1 truncate cleaned up
[  930.031967][T14972] EXT4-fs (loop5): mounted filesystem without journal. Opts: max_batch_time=0x0000000000000004,max_batch_time=0x0000000000000002,debug_want_extra_isize=0x000000000000006a,block_validity,errors=remount-ro,nombcache,. Quota mode: none.
[  930.794970][ T5215] usb 3-1: Audio class v2/v3 interfaces need an interface association
[  930.841872][ T5215] snd-usb-audio: probe of 3-1:1.0 failed with error -22
[  930.901745][ T5215] usb 3-1: can't set first interface for hiFace device.
[  930.926714][ T5215] snd-usb-hiface: probe of 3-1:1.0 failed with error -5
[  930.965766][ T5215] usb 3-1: can't set first interface for hiFace device.
[  930.972753][ T5215] snd-usb-hiface: probe of 3-1:1.1 failed with error -5
[  931.061679][T14990] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  931.071502][ T5215] usb 3-1: can't set first interface for hiFace device.
[  931.080882][ T5215] snd-usb-hiface: probe of 3-1:1.2 failed with error -5
[  931.100567][ T5215] usb 3-1: USB disconnect, device number 15
[  931.129629][T14988] tipc: Disabling bearer <eth:syzkaller0>
[  931.360752][T14999] loop2: detected capacity change from 0 to 512
[  931.367829][ T8449] udevd[8449]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  931.532135][ T4237] usb 1-1: new full-speed USB device number 11 using dummy_hcd
[  932.814638][ T4237] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 175, changing to 4
[  932.878719][ T4237] usb 1-1: language id specifier not provided by device, defaulting to English
[  933.071078][ T4237] usb 1-1: New USB device found, idVendor=04b4, idProduct=931f, bcdDevice= 0.40
[  933.106811][ T4237] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  933.127861][ T4237] usb 1-1: Product: syz
[  933.138022][ T4237] usb 1-1: Manufacturer: ఉ
[  933.153875][ T4237] usb 1-1: SerialNumber: syz
[  933.372615][T15017] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2566'.
[  933.616974][ T4237] usb 1-1: Audio class v2/v3 interfaces need an interface association
[  933.664735][ T4237] snd-usb-audio: probe of 1-1:1.0 failed with error -22
[  933.674267][T15021] device syzkaller0 entered promiscuous mode
[  933.701466][ T4237] usb 1-1: can't set first interface for hiFace device.
[  933.717898][ T4237] snd-usb-hiface: probe of 1-1:1.0 failed with error -5
[  933.756506][ T4237] usb 1-1: can't set first interface for hiFace device.
[  933.789344][ T4237] snd-usb-hiface: probe of 1-1:1.1 failed with error -5
[  933.819013][ T4237] usb 1-1: can't set first interface for hiFace device.
[  933.826839][ T4237] snd-usb-hiface: probe of 1-1:1.2 failed with error -5
[  933.883470][ T4237] usb 1-1: USB disconnect, device number 11
[  933.921482][ T8449] udevd[8449]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  934.188176][T15034] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2571'.
[  934.195786][T15036] loop0: detected capacity change from 0 to 512
[  936.913936][T14982] Set syz1 is full, maxelem 65536 reached
[  937.091908][T15053] device bridge_slave_0 left promiscuous mode
[  937.112423][T15053] bridge0: port 1(bridge_slave_0) entered disabled state
[  937.154775][T15053] device bridge_slave_1 left promiscuous mode
[  937.195636][T15053] bridge0: port 2(bridge_slave_1) entered disabled state
[  937.271964][T15053] bond0: (slave bond_slave_0): Releasing backup interface
[  937.310384][T15053] bond0: (slave bond_slave_1): Releasing backup interface
[  937.371055][T15053] team0: Port device team_slave_0 removed
[  937.430602][T15053] team0: Port device team_slave_1 removed
[  937.471572][T15053] batman_adv: batadv0: Removing interface: batadv_slave_0
[  937.540680][T15053] batman_adv: batadv0: Removing interface: batadv_slave_1
[  938.286168][T15065] device syzkaller0 entered promiscuous mode
[  938.456669][ T4233] usb 3-1: new high-speed USB device number 16 using dummy_hcd
[  938.802106][ T4237] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  938.855297][ T4233] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  938.872631][ T4233] usb 3-1: config 0 has no interfaces?
[  938.890799][ T4233] usb 3-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  938.915629][ T4233] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  938.944218][ T4233] usb 3-1: config 0 descriptor??
[  939.051369][T15079] loop6: detected capacity change from 0 to 512
[  939.083687][T15079] EXT4-fs (loop6): Journaled quota options ignored when QUOTA feature is enabled
[  939.191254][T15079] EXT4-fs (loop6): mounted filesystem without journal. Opts: usrjquota=./file0,acl,,errors=continue. Quota mode: writeback.
[  939.237189][T15079] ext4 filesystem being mounted at /350/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  939.274291][ T4237] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  939.310786][ T4237] usb 1-1: config 0 has no interfaces?
[  939.329899][ T4237] usb 1-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  939.359086][ T4237] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  939.411660][ T4237] usb 1-1: config 0 descriptor??
[  939.521283][T15084] loop7: detected capacity change from 0 to 512
[  939.720606][ T5215] usb 1-1: USB disconnect, device number 12
[  940.224736][T15089] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2585'.
[  940.813738][T15100] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  941.028626][T15105] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  941.166560][T15033] Set syz1 is full, maxelem 65536 reached
[  941.318671][T15111] device syzkaller0 entered promiscuous mode
[  941.359104][ T5215] usb 3-1: USB disconnect, device number 16
[  941.557707][T15119] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  941.693660][T15120] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  942.240574][ T5215] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  942.657203][ T5215] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  942.682496][ T5215] usb 1-1: config 0 has no interfaces?
[  942.706376][ T5215] usb 1-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  942.738096][ T5215] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  942.780102][ T5215] usb 1-1: config 0 descriptor??
[  943.054376][ T5215] usb 1-1: USB disconnect, device number 13
[  943.522173][T15160] device syzkaller0 entered promiscuous mode
[  943.575288][ T4233] usb 8-1: new high-speed USB device number 10 using dummy_hcd
[  943.719106][T15163] device syzkaller0 entered promiscuous mode
[  943.890139][T15165] device syzkaller0 entered promiscuous mode
[  943.959531][T15168] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  943.992201][ T4233] usb 8-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0x19, skipping
[  944.148923][T15174] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  944.216764][ T4233] usb 8-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  944.237256][ T4233] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  944.248034][ T4233] usb 8-1: Product: syz
[  944.259105][ T4233] usb 8-1: Manufacturer: syz
[  944.263755][ T4233] usb 8-1: SerialNumber: syz
[  944.283146][ T4233] usb 8-1: config 0 descriptor??
[  944.341426][ T4233] snd-usb-audio: probe of 8-1:0.0 failed with error -22
[  944.395872][ T8449] udevd[8449]: error opening ATTR{/sys/devices/platform/dummy_hcd.7/usb8/8-1/8-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  944.613061][ T4233] usb 8-1: USB disconnect, device number 10
[  945.755190][T15206] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  946.225474][T12773] usb 3-1: new full-speed USB device number 17 using dummy_hcd
[  946.439127][T15194] loop7: detected capacity change from 0 to 40427
[  946.507905][T15194] F2FS-fs (loop7): Invalid log_blocksize (268), supports only 12
[  946.524899][T15194] F2FS-fs (loop7): Can't find valid F2FS filesystem in 1th superblock
[  946.545207][T15226] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  946.585111][T15194] F2FS-fs (loop7): Found nat_bits in checkpoint
[  946.621077][T12773] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 175, changing to 4
[  946.691982][T15194] F2FS-fs (loop7): Try to recover 1th superblock, ret: 0
[  946.695758][T12773] usb 3-1: language id specifier not provided by device, defaulting to English
[  946.707781][T15194] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[  946.929403][T12773] usb 3-1: New USB device found, idVendor=04b4, idProduct=931f, bcdDevice= 0.40
[  946.940942][T12773] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  946.949165][T12773] usb 3-1: Product: syz
[  946.953546][T12773] usb 3-1: Manufacturer: ఉ
[  946.958157][T12773] usb 3-1: SerialNumber: syz
[  947.047280][T15239] netlink: 'syz.7.2617': attribute type 3 has an invalid length.
[  947.881928][T12773] usb 3-1: Audio class v2/v3 interfaces need an interface association
[  947.943356][T12773] snd-usb-audio: probe of 3-1:1.0 failed with error -22
[  947.963313][T15242] netlink: 'syz.5.2629': attribute type 1 has an invalid length.
[  947.999358][T12773] usb 3-1: can't set first interface for hiFace device.
[  948.007254][T15242] device bond1 entered promiscuous mode
[  948.012916][T12773] snd-usb-hiface: probe of 3-1:1.0 failed with error -5
[  948.021366][T15242] 8021q: adding VLAN 0 to HW filter on device bond1
[  948.063428][T12773] usb 3-1: can't set first interface for hiFace device.
[  948.073086][T15242] bond1: (slave bridge1): making interface the new active one
[  948.088313][T12773] snd-usb-hiface: probe of 3-1:1.1 failed with error -5
[  948.123871][T15242] device bridge1 entered promiscuous mode
[  948.127668][T12773] usb 3-1: can't set first interface for hiFace device.
[  948.141141][T12773] snd-usb-hiface: probe of 3-1:1.2 failed with error -5
[  948.159890][T12773] usb 3-1: USB disconnect, device number 17
[  948.185181][T15242] bond1: (slave bridge1): Enslaving as an active interface with an up link
[  948.248368][ T4569] IPv6: ADDRCONF(NETDEV_CHANGE): bond1: link becomes ready
[  948.270597][T15251] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2631'.
[  948.303898][T15236] loop6: detected capacity change from 0 to 40427
[  948.407346][T15236] F2FS-fs (loop6): Invalid log_blocksize (268), supports only 12
[  948.425995][T15236] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  948.464855][ T8449] udevd[8449]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  948.545799][T15236] F2FS-fs (loop6): Found nat_bits in checkpoint
[  948.684292][T15236] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  948.701920][T15236] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  948.948643][T15244] loop0: detected capacity change from 0 to 40427
[  949.011287][T15244] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  949.036163][T15244] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  949.118714][T15270] netlink: 'syz.6.2627': attribute type 3 has an invalid length.
[  949.208105][T15244] F2FS-fs (loop0): Found nat_bits in checkpoint
[  949.931276][T15244] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  949.951269][T15244] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  950.046595][T15260] loop2: detected capacity change from 0 to 40427
[  950.241430][T15260] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  950.276347][T15260] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  950.351270][T15284] netlink: 'syz.0.2630': attribute type 3 has an invalid length.
[  950.368436][ T4236] usb 8-1: new high-speed USB device number 11 using dummy_hcd
[  951.078686][T15260] F2FS-fs (loop2): Found nat_bits in checkpoint
[  951.306098][T15260] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  951.335072][T15260] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  951.366180][ T4236] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  951.394820][ T4236] usb 8-1: config 0 has no interfaces?
[  951.423401][ T4236] usb 8-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  951.568386][ T4236] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  951.587041][ T4236] usb 8-1: config 0 descriptor??
[  951.704776][T15297] netlink: 'syz.2.2635': attribute type 3 has an invalid length.
[  952.319264][ T4236] usb 8-1: USB disconnect, device number 11
[  952.977640][T15317] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  953.237522][T15340] loop5: detected capacity change from 0 to 512
[  953.256590][T15341] device syzkaller0 entered promiscuous mode
[  953.383078][T15340] EXT4-fs (loop5): mounted filesystem without journal. Opts: grpquota,nombcache,quota,,errors=continue. Quota mode: writeback.
[  953.414003][T15340] ext4 filesystem being mounted at /431/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  953.500225][T15353] loop2: detected capacity change from 0 to 128
[  953.524037][T15355] loop0: detected capacity change from 0 to 16
[  953.608896][T15355] erofs: (device loop0): mounted with root inode @ nid 36.
[  953.622257][T15353] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  953.681233][T15353] ext4 filesystem being mounted at /563/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  953.695588][T15358] loop5: detected capacity change from 0 to 512
[  953.709068][  T146] erofs: (device loop0): z_erofs_lz4_decompress: failed to decompress 4876 in[4096, 0] out[9000]
[  953.748041][T15355] erofs: (device loop0): z_erofs_lz4_decompress: failed to decompress 4876 in[4096, 0] out[8192]
[  953.777568][   T26] audit: type=1800 audit(1781090029.917:553): pid=15355 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.2663" name="file2" dev="loop0" ino=89 res=0 errno=0
[  953.789296][T15355] erofs: (device loop0): z_erofs_lz4_decompress: failed to decompress 4876 in[4096, 0] out[8192]
[  953.832746][T15355] erofs: (device loop0): z_erofs_lz4_decompress: failed to decompress 4876 in[4096, 0] out[8192]
[  953.849477][T15358] EXT4-fs error (device loop5): ext4_iget_extra_inode:4573: inode #15: comm syz.5.2664: corrupted in-inode xattr
[  953.849914][T15358] EXT4-fs error (device loop5): ext4_orphan_get:1411: comm syz.5.2664: couldn't read orphan inode 15 (err -117)
[  953.910143][T15355] erofs: (device loop0): z_erofs_lz4_decompress: failed to decompress 4876 in[4096, 0] out[8192]
[  953.965555][T15358] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  953.979165][T15355] erofs: (device loop0): z_erofs_lz4_decompress: failed to decompress 4876 in[4096, 0] out[8192]
[  954.056071][T15355] erofs: (device loop0): z_erofs_lz4_decompress: failed to decompress 4876 in[4096, 0] out[8192]
[  954.103007][T15367] loop6: detected capacity change from 0 to 512
[  954.143513][T15355] erofs: (device loop0): z_erofs_lz4_decompress: failed to decompress 4876 in[4096, 0] out[8192]
[  954.174818][T15355] erofs: (device loop0): z_erofs_lz4_decompress: failed to decompress 4876 in[4096, 0] out[8192]
[  954.240096][T15367] EXT4-fs (loop6): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  954.241498][T15355] erofs: (device loop0): z_erofs_lz4_decompress: failed to decompress 4876 in[4096, 0] out[8192]
[  954.309099][T15367] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  954.326137][T15367] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a04ee11c, mo2=0102]
[  954.339242][T15367] System zones: 1-12
[  954.345019][T15367] EXT4-fs (loop6): orphan cleanup on readonly fs
[  954.352639][T15355] erofs: (device loop0): z_erofs_lz4_decompress: failed to decompress 4876 in[4096, 0] out[8192]
[  954.388508][T15355] erofs: (device loop0): z_erofs_lz4_decompress: failed to decompress 4876 in[4096, 0] out[8192]
[  954.426102][T15367] EXT4-fs error (device loop6): ext4_free_branches:1030: inode #11: comm syz.6.2667: invalid indirect mapped block 2 (level 2)
[  954.463896][T15377] syz.5.2670 uses obsolete (PF_INET,SOCK_PACKET)
[  954.472114][T15377] device syzkaller1 entered promiscuous mode
[  954.507279][T15367] EXT4-fs (loop6): 1 truncate cleaned up
[  954.512968][T15367] EXT4-fs (loop6): mounted filesystem without journal. Opts: dioread_nolock,nodelalloc,usrquota,noload,abort,errors=continue. Quota mode: writeback.
[  954.755874][T15378] syz.2.2668 (15378) used greatest stack depth: 18512 bytes left
[  954.958382][T15384] input: syz0 as /devices/virtual/input/input31
[  955.112726][T15396] loop5: detected capacity change from 0 to 256
[  955.239295][T15396] exfat: Unknown parameter 'keep_last_dots'
[  955.291929][T15402] loop2: detected capacity change from 0 to 4096
[  956.096524][T15414] loop7: detected capacity change from 0 to 4096
[  956.133778][T15417] loop5: detected capacity change from 0 to 128
[  956.145042][T15414] ntfs3: loop7: Different NTFS' sector size (1024) and media sector size (512)
[  956.397544][T15429] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  956.462129][T15430] program syz.0.2693 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  956.480236][T15429] overlayfs: failed to set xattr on upper
[  956.633488][T15429] overlayfs: ...falling back to index=off,metacopy=off.
[  956.664373][T15441] loop6: detected capacity change from 0 to 512
[  956.755907][T15441] EXT4-fs error (device loop6): ext4_orphan_get:1406: inode #15: comm syz.6.2695: iget: bad i_size value: 38620345925642
[  956.794555][T15441] EXT4-fs error (device loop6): ext4_orphan_get:1411: comm syz.6.2695: couldn't read orphan inode 15 (err -117)
[  956.816174][T15441] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  956.835122][T15441] EXT4-fs error (device loop6): ext4_validate_block_bitmap:429: comm syz.6.2695: bg 0: block 5: invalid block bitmap
[  956.960599][T15441] EXT4-fs (loop6): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[  957.023711][T15441] EXT4-fs (loop6): This should not happen!! Data will be lost
[  957.023711][T15441] 
[  957.036740][T15441] EXT4-fs (loop6): Total free blocks count 0
[  957.043558][T15441] EXT4-fs (loop6): Free/Dirty block details
[  957.049839][T15441] EXT4-fs (loop6): free_blocks=0
[  957.070639][T15441] EXT4-fs (loop6): dirty_blocks=1
[  957.079172][T15441] EXT4-fs (loop6): Block reservation details
[  957.086573][T15441] EXT4-fs (loop6): i_reserved_data_blocks=1
[  957.457526][T15471] EXT4-fs (loop2): mounted filesystem without journal. Opts: usrquota,grpjquota=,nodelalloc,,errors=continue. Quota mode: writeback.
[  957.490568][ T5215] usb 8-1: new high-speed USB device number 12 using dummy_hcd
[  957.502634][T15471] ext4 filesystem being mounted at /569/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  957.798366][ T5215] usb 8-1: Using ep0 maxpacket: 16
[  957.937804][ T5215] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  957.968342][ T5215] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 3
[  958.252649][ T5215] usb 8-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  958.268663][ T5215] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  958.277712][ T5215] usb 8-1: Product: syz
[  958.282339][ T5215] usb 8-1: Manufacturer: syz
[  958.286958][ T5215] usb 8-1: SerialNumber: syz
[  959.065788][T15499] set_capacity_and_notify: 2 callbacks suppressed
[  959.065838][T15499] loop6: detected capacity change from 0 to 128
[  959.102211][ T5215] usb 8-1: 0:2 : does not exist
[  959.107254][ T5215] usb 8-1: unit 6 not found!
[  959.218165][ T5215] usb 8-1: USB disconnect, device number 12
[  959.638804][ T8449] udevd[8449]: error opening ATTR{/sys/devices/platform/dummy_hcd.7/usb8/8-1/8-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  961.520016][T15537] loop0: detected capacity change from 0 to 512
[  961.565483][T15542] loop7: detected capacity change from 0 to 256
[  961.610245][  T146] ==================================================================
[  961.618674][  T146] BUG: KASAN: slab-out-of-bounds in hci_le_meta_evt+0x1333/0x3cb0
[  961.626685][  T146] Read of size 1 at addr ffff8880256c040a by task kworker/u5:0/146
[  961.634636][  T146] 
[  961.637022][  T146] CPU: 1 PID: 146 Comm: kworker/u5:0 Not tainted syzkaller #0
[  961.644478][  T146] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  961.654677][  T146] Workqueue: hci2 hci_rx_work
[  961.659456][  T146] Call Trace:
[  961.662768][  T146]  <TASK>
[  961.665748][  T146]  dump_stack_lvl+0x188/0x250
[  961.670571][  T146]  ? show_regs_print_info+0x20/0x20
[  961.675826][  T146]  ? load_image+0x400/0x400
[  961.680353][  T146]  ? _raw_spin_lock_irqsave+0xbc/0x100
[  961.685910][  T146]  ? mutex_lock_io_nested+0x60/0x60
[  961.691120][  T146]  print_address_description+0x60/0x2d0
[  961.696671][  T146]  ? hci_le_meta_evt+0x1333/0x3cb0
[  961.701786][  T146]  kasan_report+0xdf/0x130
[  961.706359][  T146]  ? hci_le_meta_evt+0x1333/0x3cb0
[  961.711742][  T146]  hci_le_meta_evt+0x1333/0x3cb0
[  961.716707][  T146]  ? hci_remote_host_features_evt+0x290/0x290
[  961.722783][  T146]  ? __mutex_unlock_slowpath+0x1b0/0x6c0
[  961.728428][  T146]  ? mark_lock+0x94/0x320
[  961.732786][  T146]  ? mutex_unlock+0x10/0x10
[  961.737292][  T146]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[  961.743346][  T146]  ? lock_chain_count+0x20/0x20
[  961.748210][  T146]  ? __rwlock_init+0x140/0x140
[  961.752979][  T146]  hci_event_packet+0xe4b/0x1370
[  961.757920][  T146]  ? lockdep_hardirqs_on+0x94/0x140
[  961.763199][  T146]  ? rcu_lock_release+0x20/0x20
[  961.768056][  T146]  ? hci_send_to_monitor+0x9c/0x4a0
[  961.773304][  T146]  hci_rx_work+0x255/0xa10
[  961.777744][  T146]  process_one_work+0x85f/0x1010
[  961.782774][  T146]  ? worker_detach_from_pool+0x240/0x240
[  961.788418][  T146]  ? lockdep_hardirqs_off+0x70/0x100
[  961.793707][  T146]  ? _raw_spin_lock_irq+0xb7/0xf0
[  961.798720][  T146]  ? _raw_spin_lock_irqsave+0x100/0x100
[  961.804268][  T146]  ? wq_worker_running+0x97/0x170
[  961.809280][  T146]  worker_thread+0xaa6/0x1290
[  961.813964][  T146]  kthread+0x436/0x520
[  961.818164][  T146]  ? rcu_lock_release+0x20/0x20
[  961.823001][  T146]  ? kthread_blkcg+0xd0/0xd0
[  961.827581][  T146]  ret_from_fork+0x1f/0x30
[  961.832021][  T146]  </TASK>
[  961.835074][  T146] 
[  961.837384][  T146] Allocated by task 15547:
[  961.841819][  T146]  __kasan_kmalloc+0xb5/0xf0
[  961.846399][  T146]  __alloc_skb+0x22c/0x750
[  961.850859][  T146]  vhci_write+0xbc/0x450
[  961.855144][  T146]  vfs_write+0x745/0xd60
[  961.859401][  T146]  ksys_write+0x152/0x260
[  961.863710][  T146]  do_syscall_64+0x4c/0xa0
[  961.868108][  T146]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  961.873986][  T146] 
[  961.876294][  T146] Last potentially related work creation:
[  961.881984][  T146]  kasan_save_stack+0x35/0x60
[  961.886644][  T146]  kasan_record_aux_stack+0xb8/0x100
[  961.891912][  T146]  kvfree_call_rcu+0x105/0x7d0
[  961.896714][  T146]  cgroup_migrate_finish+0x19f/0x370
[  961.902010][  T146]  cgroup_attach_task+0x549/0x7b0
[  961.907016][  T146]  cgroup_attach_task_all+0xb0/0x140
[  961.912374][  T146]  kvm_vm_worker_thread+0xc8/0x260
[  961.917545][  T146]  kthread+0x436/0x520
[  961.921613][  T146]  ret_from_fork+0x1f/0x30
[  961.926024][  T146] 
[  961.928334][  T146] Second to last potentially related work creation:
[  961.934904][  T146]  kasan_save_stack+0x35/0x60
[  961.939572][  T146]  kasan_record_aux_stack+0xb8/0x100
[  961.944852][  T146]  kvfree_call_rcu+0x105/0x7d0
[  961.949602][  T146]  cgroup_free+0x143/0x1d0
[  961.954011][  T146]  __put_task_struct+0xe3/0x480
[  961.958918][  T146]  rcu_core+0x9d2/0x1670
[  961.963143][  T146]  handle_softirqs+0x339/0x830
[  961.967922][  T146]  run_ksoftirqd+0xa4/0x100
[  961.972405][  T146]  smpboot_thread_fn+0x4f6/0x970
[  961.977326][  T146]  kthread+0x436/0x520
[  961.981389][  T146]  ret_from_fork+0x1f/0x30
[  961.985878][  T146] 
[  961.988182][  T146] The buggy address belongs to the object at ffff8880256c0000
[  961.988182][  T146]  which belongs to the cache kmalloc-1k of size 1024
[  962.002278][  T146] The buggy address is located 10 bytes to the right of
[  962.002278][  T146]  1024-byte region [ffff8880256c0000, ffff8880256c0400)
[  962.016059][  T146] The buggy address belongs to the page:
[  962.021682][  T146] page:ffffea000095b000 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x256c0
[  962.031815][  T146] head:ffffea000095b000 order:3 compound_mapcount:0 compound_pincount:0
[  962.040132][  T146] flags: 0xfff00000010200(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[  962.048109][  T146] raw: 00fff00000010200 0000000000000000 0000000100000001 ffff888016c41dc0
[  962.056811][  T146] raw: 0000000000000000 0000000080100010 00000001ffffffff 0000000000000000
[  962.065384][  T146] page dumped because: kasan: bad access detected
[  962.071790][  T146] page_owner tracks the page as allocated
[  962.077491][  T146] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2a20(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 1183, ts 64926388025, free_ts 64856960339
[  962.095970][  T146]  get_page_from_freelist+0x1bbd/0x1ca0
[  962.101549][  T146]  __alloc_pages+0x1ee/0x480
[  962.106120][  T146]  new_slab+0xc0/0x4b0
[  962.110173][  T146]  ___slab_alloc+0x80a/0xdd0
[  962.114745][  T146]  __kmalloc_node_track_caller+0x1fc/0x3a0
[  962.120625][  T146]  __alloc_skb+0x22c/0x750
[  962.125029][  T146]  inet6_rt_notify+0xdd/0x290
[  962.129760][  T146]  fib6_add+0x1d4d/0x3d40
[  962.134114][  T146]  ip6_route_add+0x86/0x130
[  962.138596][  T146]  addrconf_add_dev+0x295/0x3c0
[  962.143471][  T146]  addrconf_init_auto_addrs+0x6a0/0xb00
[  962.149002][  T146]  addrconf_notify+0xa6b/0xf00
[  962.153749][  T146]  raw_notifier_call_chain+0xcb/0x160
[  962.159103][  T146]  netdev_state_change+0xe0/0x160
[  962.164164][  T146]  linkwatch_do_dev+0x10d/0x160
[  962.169024][  T146]  __linkwatch_run_queue+0x4b1/0x7c0
[  962.174296][  T146] page last free stack trace:
[  962.178955][  T146]  free_unref_page_prepare+0x637/0x6c0
[  962.184413][  T146]  free_unref_page+0x8f/0x2a0
[  962.189087][  T146]  qlist_free_all+0x35/0x90
[  962.193581][  T146]  kasan_quarantine_reduce+0x150/0x160
[  962.199033][  T146]  __kasan_slab_alloc+0x2f/0xd0
[  962.203888][  T146]  slab_post_alloc_hook+0x4c/0x380
[  962.208982][  T146]  kmem_cache_alloc_node+0x12d/0x2d0
[  962.214249][  T146]  __alloc_skb+0xf4/0x750
[  962.218562][  T146]  netlink_sendmsg+0x654/0xbe0
[  962.223394][  T146]  __sys_sendto+0x46d/0x620
[  962.227912][  T146]  __x64_sys_sendto+0xda/0xf0
[  962.232582][  T146]  do_syscall_64+0x4c/0xa0
[  962.236983][  T146]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  962.242877][  T146] 
[  962.245193][  T146] Memory state around the buggy address:
[  962.250812][  T146]  ffff8880256c0300: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  962.258881][  T146]  ffff8880256c0380: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  962.266928][  T146] >ffff8880256c0400: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  962.275076][  T146]                       ^
[  962.279384][  T146]  ffff8880256c0480: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  962.287523][  T146]  ffff8880256c0500: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  962.295573][  T146] ==================================================================
[  962.303620][  T146] Disabling lock debugging due to kernel taint
[  962.318383][  T146] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  962.325600][  T146] CPU: 1 PID: 146 Comm: kworker/u5:0 Tainted: G    B             syzkaller #0
[  962.330822][T15537] EXT4-fs error (device loop0): ext4_orphan_get:1406: inode #15: comm syz.0.2732: inode has both inline data and extents flags
[  962.334446][  T146] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[  962.334460][  T146] Workqueue: hci2 hci_rx_work
[  962.362362][  T146] Call Trace:
[  962.364227][T15537] EXT4-fs error (device loop0): ext4_orphan_get:1411: comm syz.0.2732: couldn't read orphan inode 15 (err -117)
[  962.365644][  T146]  <TASK>
[  962.365653][  T146]  dump_stack_lvl+0x188/0x250
[  962.385115][  T146]  ? show_regs_print_info+0x20/0x20
[  962.390332][  T146]  ? load_image+0x400/0x400
[  962.391905][T15537] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpquota,,errors=continue. Quota mode: writeback.
[  962.394853][  T146]  panic+0x2e5/0x810
[  962.410500][  T146]  ? bpf_jit_dump+0xd0/0xd0
[  962.415032][  T146]  ? _raw_spin_unlock_irqrestore+0x10d/0x120
[  962.421022][  T146]  ? _raw_spin_unlock+0x40/0x40
[  962.425880][  T146]  ? hci_le_meta_evt+0x1333/0x3cb0
[  962.430995][  T146]  check_panic_on_warn+0x80/0xa0
[  962.435954][  T146]  ? hci_le_meta_evt+0x1333/0x3cb0
[  962.441150][  T146]  end_report+0x6d/0xf0
[  962.445308][  T146]  kasan_report+0x102/0x130
[  962.449884][  T146]  ? hci_le_meta_evt+0x1333/0x3cb0
[  962.454985][  T146]  hci_le_meta_evt+0x1333/0x3cb0
[  962.459912][  T146]  ? hci_remote_host_features_evt+0x290/0x290
[  962.465967][  T146]  ? __mutex_unlock_slowpath+0x1b0/0x6c0
[  962.471589][  T146]  ? mark_lock+0x94/0x320
[  962.475907][  T146]  ? mutex_unlock+0x10/0x10
[  962.480399][  T146]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[  962.486368][  T146]  ? lock_chain_count+0x20/0x20
[  962.491209][  T146]  ? __rwlock_init+0x140/0x140
[  962.495961][  T146]  hci_event_packet+0xe4b/0x1370
[  962.500886][  T146]  ? lockdep_hardirqs_on+0x94/0x140
[  962.506076][  T146]  ? rcu_lock_release+0x20/0x20
[  962.510930][  T146]  ? hci_send_to_monitor+0x9c/0x4a0
[  962.516121][  T146]  hci_rx_work+0x255/0xa10
[  962.520528][  T146]  process_one_work+0x85f/0x1010
[  962.525457][  T146]  ? worker_detach_from_pool+0x240/0x240
[  962.531075][  T146]  ? lockdep_hardirqs_off+0x70/0x100
[  962.536348][  T146]  ? _raw_spin_lock_irq+0xb7/0xf0
[  962.541356][  T146]  ? _raw_spin_lock_irqsave+0x100/0x100
[  962.546889][  T146]  ? wq_worker_running+0x97/0x170
[  962.551897][  T146]  worker_thread+0xaa6/0x1290
[  962.556571][  T146]  kthread+0x436/0x520
[  962.560622][  T146]  ? rcu_lock_release+0x20/0x20
[  962.565455][  T146]  ? kthread_blkcg+0xd0/0xd0
[  962.570031][  T146]  ret_from_fork+0x1f/0x30
[  962.574434][  T146]  </TASK>
[  962.577690][  T146] Kernel Offset: disabled
[  962.583592][  T146] Rebooting in 86400 seconds..