last executing test programs:

6m26.11592584s ago: executing program 0 (id=374):
syz_open_dev$mouse(&(0x7f00000000c0), 0x0, 0x2042)
syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')

6m25.908544371s ago: executing program 0 (id=378):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000240)='./bus\x00', 0x2008012, &(0x7f0000000300), 0x1, 0x576, &(0x7f0000002380)="$eJzs3c9vHFcdAPDvjH/mR+MEeoAKSIBCQFHW8aaNql5aLiBUVUJUHBCH1Ngby2SdDfG61CYS7t8AEkic4E/ggMQBqScOcOKIxAEQ5YBUIALFSD0Mmtmxs7HXZJP91ex+PtJk5s2bme97u5l9b9+u9wUwsS5ExG5EzEbEmxGxUO5PyiVebS35cffv3V3Zu3d3JYkse+OfSZGf74u2c3KnymvOR8TXvxLx7eRo3M3tnZvL9XrtTplebG7cXtzc3rm8vrG8Vlur3apWry1du/LS1Rerfavr+Y1fvP/l9de+8etfffK93+9+8ft5sU6Xee316KdW1WcO4uSmI+K1QQQbgalyPTvicvBk0oj4SER8prj/F2Kq+N8JAIyzLFuIbKE9DQCMu7QYA0vSSkSkadkJqLTG8J6Nk2m9sdm8dKOxdWu1NVZ2NmbSG+v12pVzc3/8bnHwTJKnl4q8Ir9IVw+lr0bEuYj40dyJIl1ZadRXR9PlAYCJd6q9/Y+I/8ylaaXS1akdPtUDAJ4a86MuAAAwdNp/AJg82n8AmDxdtP/lh/27Ay8LADAc3v8DwOTR/gPA5NH+A8BE+drrr+dLtlf+/vXqW9tbNxtvXV6tbd6sbGytVFYad25X1hqNteI3ezYedb16o3F76YXYenuxWdtsLm5u71zfaGzdal4vftf7em1mKLUCAP6fc+ff/UMSEbsvnyiWaJvLQVsN4y198qP8/hc85aZ6OVkHAZ5qZvuCydVVE150En478LIAo9Hxzfx8x82H/eQxgvieEXyoXPx49+P/5niG8XJoZP+DbFQFAYZuqsPWo70ykLIAw/XE4/9/7m85gOHLsuTwnP+zB1kAwFjq4St82Q/61QkBRupRX+bvy+f/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMGZOR8R3IkkrxVzgaf5vWqlEPBMRZ2MmubFer12JiDNxPiJm5vL00qgLDQD0KP17Us7/dXHh+dOHc2eT/84V64j43k/f+PHby83mnaV8/78O9s/tTx9WfXBeD/MKAgDd+2s3BxXtd7Vct72Rv3/v7sr+MsAyHvH+lw4mH13Zu3e3WFo505FlWRYxX/QlTv47ienynPmIeC4ipvoQf/ediPhYp/onxdjI2XLm0/b4UcZ+Zqjx04fip0Vea50/fB/tQ1lg0rybv/682un+S+NCse58/88Xr1C9K17/5iP2X/v22uJPl5GmOsTP7/kL3cZ44TdfPbIzW2jlvRPx3HSn+MlB/OSY+M93Gf9Pn/jUD185Ji/7WcTF6By/PdZic+P24ub2zuX1jeW12lrtVrV6benalZeuvlhdLMaoF/dHqo/6x8uXznTav3eiVf+Tx8RvPfOnDtV/9uD8z3VZ/59/8Oa3Pv0gOdeel8f/wmc7P//PFhE7P/55m/j5LuMvn/zlsdN35/FXj6n/o57/S13Gf+9vO6tdHgoADMHm9s7N5Xq9dqenjfxdaD+uc2QjL2J3B+93F3sL+pcoNh48LEkk8TjXmY+2PTPHHRPRzQVnBvWoDnxj+qCv2N8rfzO/4pCrk/a9Fk+yEWfLjfuPcVb+LPR06wHj7MFNHxG/G3VpAAAAAAAAAAAAAACATtr/6OfMgP7OadR1BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYHz9LwAA///oMcIc")
symlinkat(&(0x7f0000000080)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000fc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0/file0\x00', 0x154)

6m25.708214705s ago: executing program 0 (id=382):
munmap(&(0x7f0000002000/0x1000)=nil, 0x1000)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='ns\x00')
getdents64(r0, &(0x7f0000000380)=""/57, 0x39)
getdents64(r0, &(0x7f0000001f80)=""/4095, 0xfff)

6m25.638766235s ago: executing program 0 (id=383):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000240)='./file0\x00', 0x800700, &(0x7f0000000580)={[{@grpjquota}, {@stripe={'stripe', 0x3d, 0x3}}, {@norecovery}, {@noinit_itable}, {@init_itable_val={'init_itable', 0x3d, 0x1}}, {@minixdf}, {@usrjquota}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@errors_continue}, {@dioread_lock}, {@noblock_validity}, {@noquota}]}, 0x3, 0x465, &(0x7f0000000f00)="$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")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x10000, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, 0x0)

6m25.597585461s ago: executing program 0 (id=384):
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ff0000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r0 = io_uring_setup(0x1b7b, &(0x7f0000000040)={0x0, 0xc89f, 0xc000, 0x7, 0x20002f7})
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000140)={'syztnl2\x00', &(0x7f0000000000)={'syztnl2\x00', 0x0, 0x0, 0x0, 0x0, 0x5c8c, 0x0, @empty, @mcast1, 0x80, 0x0, 0x0, 0x20000000}})
sendmsg$IPSET_CMD_LIST(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x2d, 0x0, 0x1f, 0x2}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x40}, 0x4)
io_uring_enter(r0, 0x2219, 0x7721, 0x16, 0x0, 0x0)

6m25.308981128s ago: executing program 0 (id=385):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000e40)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x5}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x101, 0x0, 0x0, {0x5}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x44, 0x6, 0xa, 0x401, 0x0, 0x0, {0x5}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x14, 0x4, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @dup={{0x8}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_USERDATA={0x5, 0x7, 0x1, 0x0, "ae"}]}], {0x14}}, 0xb8}}, 0x0)

6m25.239283057s ago: executing program 32 (id=385):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000e40)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x5}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x101, 0x0, 0x0, {0x5}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x44, 0x6, 0xa, 0x401, 0x0, 0x0, {0x5}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x14, 0x4, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @dup={{0x8}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_USERDATA={0x5, 0x7, 0x1, 0x0, "ae"}]}], {0x14}}, 0xb8}}, 0x0)

5m40.677337171s ago: executing program 3 (id=1048):
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000100)=ANY=[@ANYBLOB="b400000000000000791048000000000061002400000000009500000000000000db74589d4b38cc306ac390649f72dea0e50e2317db042855d6c74ff3493c7e31e3f6c643155a8e2e01d50bc3347475750472719cc516fa14b769e7f385ba72c60242263c05ddab05e37efe81b8bffc35cdf2ac0d93263ff755d611c4cca1684b1470af6a83366aa430ad2d700b186da622d6fba70000000000000000000000000200"/173], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x5, '\x00', 0x0, @sk_msg}, 0x48)

5m40.598105199s ago: executing program 3 (id=1049):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000e00)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)=@ipmr_delroute={0x24, 0x19, 0x1, 0x0, 0x0, {0x80, 0x20, 0x0, 0x0, 0xff, 0x11, 0x0, 0x5}, [@RTA_PREFSRC={0x8, 0x7, @broadcast}]}, 0x24}, 0x1, 0x0, 0x0, 0x4}, 0x0)

5m40.484953832s ago: executing program 3 (id=1050):
r0 = syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301)
ioctl$USBDEVFS_CONTROL(r0, 0xc0105500, &(0x7f0000000140)={0x80, 0x6, 0x302, 0xfffd, 0x0, 0xffffe, 0x0})

5m40.477891408s ago: executing program 3 (id=1052):
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f0000000080)='./file0\x00', 0x1000801, &(0x7f00000000c0)=ANY=[@ANYRES16=0x0, @ANYRES32=0x0, @ANYRESOCT], 0x8, 0x1cc, &(0x7f00000006c0)="$eJzsmD/v0kAYx793LeVPjImLg4smkogJlLaocXHAV2AC/tskUglawEAHIHEgLi6+DN+CA5ODm5urDmpi4iCjk8OZa4/25J8yEIm/55Pw9Nu7567PPTTfoSAI4sTy5fOPTy9vXm+WAZxCEVk1/s1Ic7iW/zGnxIdXb/unn81X92N7Pt8E8KZuIFT3QgihzxfVtQme6NvguKz0XTDYSj8Axx2lfTDcV/qxpgd5JQLffjgI2o+6ge/I4MrgyVBbrW8xY2gDkEcXxu/1jybTJ60g8IerIiOWz1mb2lf8oX/mos5xQ+uf/L/uvXg+k/fL3jha/1xwuErXwNBY9gRZ2LadtkQ7/zkz3d/4m/MfgzhT2ZVT3r3857+p2VKNPZYe/oeCaSN5KaRpJSNnF/N366u+HrKwC4c9MpRnr029LxzwXU39U9rLJc2fTJiJf1TD3tPqaDKtdHutjt/x+55Xu+ZccZyrXjUyojju8L9c5E8Fbf/MllyLWRi3wnDojoFw6Cb3Xhw1x228HnyP1vDI/zhKF+M95KtixVa5EaZ+PLpKVTK2Fk8QBEEQBEEQBEEQBEEQBLEX58Gir6BCCKY+iG7CuxVl/woAAP//vphcsA==")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000380), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
listxattr(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)

5m40.390963007s ago: executing program 3 (id=1055):
r0 = socket(0x10, 0x80003, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=@newqdisc={0x40, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {0x0, 0x7}, {0xffff, 0xffff}, {0xd}}, [@qdisc_kind_options=@q_fq={{0x7}, {0x14, 0x2, [@TCA_FQ_FLOW_REFILL_DELAY={0x8, 0x9, 0xffffff80}, @TCA_FQ_QUANTUM={0x8, 0x3, 0xffe00000}]}}]}, 0x40}, 0x1, 0x0, 0x0, 0x6040090}, 0x0)

5m38.857494452s ago: executing program 3 (id=1073):
r0 = socket$inet6(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000100)="5500000020007fafb72d13b2a4a2719302000000030b43026c26236925000400fe7f0200bd2dca8a9848a3c728f138d509000000000100005ae583de0dd7d8319f98af84fda542e318f94b929ade5b175c0a9b2ce9", 0x55}], 0x1}, 0x0)
write(r0, &(0x7f0000000040)="2400000021002551241c0165ff00fc020200000000100f000ee1000c08000b0000000000", 0x24)

5m38.682360682s ago: executing program 33 (id=1073):
r0 = socket$inet6(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000100)="5500000020007fafb72d13b2a4a2719302000000030b43026c26236925000400fe7f0200bd2dca8a9848a3c728f138d509000000000100005ae583de0dd7d8319f98af84fda542e318f94b929ade5b175c0a9b2ce9", 0x55}], 0x1}, 0x0)
write(r0, &(0x7f0000000040)="2400000021002551241c0165ff00fc020200000000100f000ee1000c08000b0000000000", 0x24)

5m30.803361443s ago: executing program 4 (id=1186):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x6, 0x3, &(0x7f0000000480)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x32, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000580)={'veth0_to_team\x00', <r2=>0x0})
r3 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000004c0)={r0, r2, 0x25, 0x0, @void}, 0x10)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000080)={'team_slave_0\x00', <r5=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="20000000110001002cbd70000000000000000000", @ANYRES32=r5], 0x20}}, 0x2000e844)
bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000000)={r3, r0, 0x4, r0}, 0x10)

5m30.68809899s ago: executing program 4 (id=1187):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)=<r1=>0x0)
timer_settime(r1, 0x1, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
syz_mount_image$vfat(&(0x7f0000001200), &(0x7f0000001240)='./file0\x00', 0x2004000, &(0x7f0000000040)=ANY=[@ANYRES64=0x0], 0xfe, 0x1227, &(0x7f00000024c0)="$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")
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='blkio.bfq.io_service_time_recursive\x00', 0x275a, 0x0)
ioctl$EXT4_IOC_GROUP_ADD(r2, 0xc0185879, &(0x7f0000001280)={0x58f5, 0x4ffff, 0x2, 0xfffffffffffffffd, 0x1, 0x0, 0x2401})

5m30.583521296s ago: executing program 4 (id=1189):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r0, 0x8b20, &(0x7f0000000080)={'wlan1\x00', @random='\x00\x00]\x00N\v'})

5m30.428246176s ago: executing program 4 (id=1190):
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x1208002, &(0x7f0000000100)={[{@grpquota}, {@delalloc}, {@resuid}, {@debug}, {@dioread_nolock}, {}, {@nomblk_io_submit}, {@noauto_da_alloc}]}, 0x1, 0x5d8, &(0x7f00000005c0)="$eJzs3c9vFFUcAPDvbH/QUrSFGBUP0sQYSJSWFjDEeICrIQ3+iBcvVloQKdDQGi2aUBK8mBgvxph48iD+F0rkyklPHrx4MiREDUcT18x2pnTb2ZYubacyn0+y9M17O7w33X773r6+NxtAZQ2m/9Qi9kbEdBLRn8wvlnVGVji48Lx7f39yOn0kUa+/8WcSSZaXPz/JvvZlJ/dExM8/JbGnY2W9M3NXzo9PTU1ezo6HZy9MD8/MXTl47sL42cmzkxdHXxo9dvTI0WMjh9q6rqsFeSevv/9h/2djb3/3zT/JyPe/jSVxPF7Nnrj0OjbKYAw2vifJyqK+YxtdWUk6sp+TpS9x0llig1iX/PXrioinoj864v6L1x+fvlZq44BNVU8i6kBFJeIfKiofB+Tv7Ze/D66VMioBtsLdEwsTACvjv3NhbjB6GnMDO+8lsXRaJ4mI9mbmmu2KiNu3xq6fuTV2PTZpHg4oNn8tIp4uiv+kEf8D0RMDjfivNcV/Oi44lX1N819vs/7lU8XiH7bOQvz3rBr/0SL+31kS/++2Wf/g/eR7vU3x39vuJQEAAAAAAEBl3TwRES8W/f2/trj+JwrW//RFxPENqH9w2fHKv//X7mxANUCBuyciXilc/1vLV/8OdGSpxxrrAbqSM+emJg9FxOMRcSC6dqTHI6vUcfDzPV+3KhvM1v/lj7T+29lawKwddzp3NJ8zMT47/rDXDUTcvRbxTOH632Sx/08K+v/098H0A9ax5/kbp1qVrR3/wGapfxuxv7D/v3/XimT1+3MMN8YDw/moYKVnP/7ih1b1txv/bjEBDy/t/3euHv8DydL79cysv47Dc531VmXtjv+7kzcbt5zpzvI+Gp+dvTwS0Z2c7Ehzm/JH199meBTl8ZDHSxr/B55bff6vaPzfGxHzy/7v5K/mPcW5J//t+71Ve4z/oTxp/E+sq/9ff2L0xsCPrep/sP7/SKOvP5DlmP+DBV/lYdrdnF8Qjp1FRVvdXgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4FNQiYlcktaHFdK02NBTRFxFPxM7a1KWZ2RfOXPrg4kRa1vj8/1r+Sb/9C8dJ/vn/A0uOR5cdH46I3RHxZUdv43jo9KWpibIvHgAAAAAAAAAAAAAAAAAAALaJvhb7/1N/dJTdOmDTdZbdAKA0BfH/SxntALae/h+qS/xDdYl/qC7xD9Ul/qG6xD9Ul/iH6hL/AAAAAADwSNm97+avSUTMv9zbeKS6s7KuUlsGbLZa2Q0ASuMWP1Bdlv5AdXmPDyRrlPe0PGmtM1czffohTgYAAAAAAAAAAACAytm/1/5/qCr7/6G67P+H6sr3/+8ruR3A1vMeH4g1dvIX7v9f8ywAAAAAAAAAAAAAYCPNzF05Pz41NXlZ4q3t0YytTNTr9avpT8F2ac//PJEvhd8u7VmWyPf6PdhZ5f1OAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAmv0XAAD//xYSJMU=")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000380), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x40000, 0x0)
mmap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x0, 0x81012, r0, 0x0)

5m30.134215671s ago: executing program 4 (id=1192):
openat$binderfs(0xffffffffffffff9c, 0x0, 0x802, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_RECVMSG={0xa, 0x34, 0x3, 0xffffffffffffffff, 0x0, &(0x7f00000010c0)={0x0, 0x0, 0x0}, 0x0, 0x40000000})
r1 = syz_io_uring_setup(0x487, &(0x7f0000000100)={0x0, 0x59c4, 0x80, 0x1000, 0xc1}, &(0x7f0000000080)=<r2=>0x0, &(0x7f00000001c0)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f00000000c0)={0x1, &(0x7f0000000200)=[{0x30, 0x4, 0x0, 0x2}]}, 0x8)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x0, 0x0, 0xffffffffffffffff, 0x0, r1})
io_uring_enter(r1, 0x749f, 0x4, 0x0, 0x0, 0xfffffffffffffef5)
syz_emit_ethernet(0x4a, 0x0, 0x0)

5m29.515200947s ago: executing program 4 (id=1194):
openat(0xffffffffffffff9c, &(0x7f0000000500)='.\x00', 0x0, 0x0)
setreuid(0xffffffffffffffff, 0xee01)
capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000080)={0x6, 0x6, 0x2, 0x400087, 0xffffffff, 0x40})
syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')

5m29.455957392s ago: executing program 34 (id=1194):
openat(0xffffffffffffff9c, &(0x7f0000000500)='.\x00', 0x0, 0x0)
setreuid(0xffffffffffffffff, 0xee01)
capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000080)={0x6, 0x6, 0x2, 0x400087, 0xffffffff, 0x40})
syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')

3m12.265632482s ago: executing program 5 (id=3337):
r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x8, &(0x7f0000000940)=@framed={{0x18, 0x9}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0xa000000}}]}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000080)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x3163, '\x00', 0x0, 0x0}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r0, <r3=>0xffffffffffffffff}, &(0x7f0000000140), &(0x7f0000000180)=r1}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x6, 0x14, &(0x7f0000001740)=ANY=[@ANYBLOB="1808000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b70300002bb91a008500000008000000bc09000000000000450901000020000095000000000000ab18120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b703000000000000850000000c000000b700000000000000bf9800000000000056090000000000008500000085000000b70000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @xdp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

3m12.195337743s ago: executing program 5 (id=3338):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000001000000018000180140002006e657464657673696d3000000000000005000b000000000008001100"], 0x3c}}, 0x0)

3m12.13591998s ago: executing program 5 (id=3339):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="3c0000001a000100000000000000000002000000000000000000000005001b000600000008000400", @ANYBLOB="08001e"], 0x3c}}, 0x0)

3m12.135613363s ago: executing program 5 (id=3340):
syz_mount_image$udf(&(0x7f0000000000), &(0x7f00000094c0)='./file1\x00', 0x0, &(0x7f0000001940)=ANY=[], 0x1, 0xc25, &(0x7f0000002580)="$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")
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x20048a, &(0x7f00000001c0)={[{@grpjquota}, {@noinit_itable}, {@abort}, {@bsdgroups}]}, 0x12, 0x51a, &(0x7f0000001200)="$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")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x1204001, &(0x7f00000011c0)={[{@lowerdir={'lowerdir', 0x3d, '.'}, 0x3a}], [], 0x2f})
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
lseek(r0, 0x100, 0x4)

3m11.966037266s ago: executing program 5 (id=3343):
mkdir(&(0x7f00000020c0)='./file0\x00', 0x1c8)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002040), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000002080)='./file0\x00', &(0x7f00000020c0), 0x0, &(0x7f0000002100)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
syz_fuse_handle_req(r0, &(0x7f00000021c0)="000000000000000000000000000000000000000000000000000000d455b4da0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fdff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000bd1d8811cd8a942e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400", 0x2000, &(0x7f00000041c0)={&(0x7f00000001c0)={0x50, 0x0, 0x2, {0x7, 0x29, 0x7, 0x2300c29, 0x100, 0x0, 0x1, 0x57, 0x0, 0x0, 0x40, 0x4020}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r0, &(0x7f0000004300)="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", 0x2000, &(0x7f0000008c00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000680)={0x78, 0x0, 0x100000000, {0xf, 0xcbff, 0x0, {0x5, 0x6, 0x3, 0x6c, 0x7, 0x6, 0x1, 0x5, 0x101, 0x1000, 0xfffffffe, 0xffffffffffffffff, 0xffffffffffffffff, 0x3, 0x1}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
fchownat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0xffffffffffffffff, 0x100)

3m11.728327105s ago: executing program 5 (id=3349):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000180)={0x1, &(0x7f0000000140)=[{0x2d, 0x1, 0x4, 0x6}]})

3m11.509728209s ago: executing program 35 (id=3349):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000180)={0x1, &(0x7f0000000140)=[{0x2d, 0x1, 0x4, 0x6}]})

2m30.790415484s ago: executing program 6 (id=4013):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x10)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000680)={{0x14, 0x10, 0x1, 0x0, 0x0, {0xa}}, [@NFT_MSG_NEWRULE={0x80, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x54, 0x4, 0x0, 0x1, [{0x50, 0x1, 0x0, 0x1, @inner={{0xa}, @val={0x40, 0x2, 0x0, 0x1, [@NFTA_INNER_TYPE={0x8, 0x2, 0x1, 0x0, 0x84}, @NFTA_INNER_FLAGS={0x8, 0x3, 0x1, 0x0, 0x7}, @NFTA_INNER_HDRSIZE={0x8, 0x4, 0x1, 0x0, 0xf}, @NFTA_INNER_NUM={0x8}, @NFTA_INNER_EXPR={0x1c, 0x5, 0x0, 0x1, @payload={{0xc}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_PAYLOAD_BASE={0x8, 0x2, 0x1, 0x0, 0x1}]}}}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x3}}}, 0xa8}, 0x1, 0x0, 0x0, 0x4}, 0x0)

2m30.788637455s ago: executing program 6 (id=4015):
bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x1d, 0xc, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000bb000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000ae00000095"], &(0x7f00000002c0)='syzkaller\x00', 0x2, 0x0, 0x0, 0x41000, 0x5e, '\x00', 0x0, @lsm=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)

2m30.653396311s ago: executing program 6 (id=4017):
r0 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r0, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10)
r1 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000300)={0x43, 0x3, 0x3, 0x3}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10)
sendmsg$tipc(r0, &(0x7f0000000400)={&(0x7f00000008c0), 0x58, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x20)
sendmsg$tipc(r0, &(0x7f0000000740)={&(0x7f0000000440)=@nameseq={0x1e, 0x1, 0x1, {0x1, 0x3, 0x3}}, 0x10, &(0x7f0000000640)=[{&(0x7f0000000480)=',', 0x1}], 0x1, 0x0, 0x0, 0x40000}, 0x4)

2m30.626226028s ago: executing program 6 (id=4021):
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$IP_VS_SO_SET_ZERO(r0, 0x0, 0x48f, &(0x7f0000000000)={0x6, @rand_addr=0x64010101, 0x4e22, 0x3, 'wlc\x00', 0x8, 0x8, 0x65}, 0x2c)

2m30.529565544s ago: executing program 6 (id=4025):
syz_mount_image$squashfs(&(0x7f0000000180), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000001180)=ANY=[], 0x1, 0x17c, &(0x7f0000000380)="$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")
r0 = syz_io_uring_setup(0xbdc, &(0x7f0000000640)={0x0, 0xec25, 0x400, 0x1, 0x40000333}, &(0x7f00000006c0)=<r1=>0x0, &(0x7f00000001c0)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000005c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1, 0x0, 0xffff}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz1\x00'}]}, @NFT_MSG_NEWRULE={0x30, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_ID={0x8, 0x9, 0x1, 0x0, 0x3}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0xa4}, 0x1, 0x0, 0x0, 0x80}, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, 0x0)
io_uring_enter(r0, 0x847ba, 0x0, 0xe, 0x0, 0x0)
execveat(0xffffffffffffff9c, &(0x7f0000000280)='./file2\x00', 0x0, 0x0, 0x0)

2m29.655300281s ago: executing program 6 (id=4039):
r0 = syz_open_dev$loop(&(0x7f0000000080), 0x401, 0x800201)
r1 = open(&(0x7f0000000180)='./bus\x00', 0x14507e, 0x0)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f0000000700)={r1, 0x1000, {0x0, 0x0, 0x0, 0x0, 0x100001, 0x0, 0x0, 0x1b, 0x15, "54c870a8634edc745dfa1ab0a34a10a233e6180aa539ec68114b5aba1c98911df5ba72296d56740d56ea4d0434aa3592a4791300", "fc0177a6f3bb16d5d5560f93e0e50bbf206c9d8db97c00040000000000005f8a654e14dc7c4cc6020004003b3acc9f02cd3eac8be657b534bfa1142100696b29", "4921095856cdf9fd8199034f3b870104000009e3c7a181fb1c16c99189819ef4", [0x1, 0x9]}})
ioctl$LOOP_SET_DIRECT_IO(r0, 0x4c08, 0x0)

2m14.555494799s ago: executing program 36 (id=4039):
r0 = syz_open_dev$loop(&(0x7f0000000080), 0x401, 0x800201)
r1 = open(&(0x7f0000000180)='./bus\x00', 0x14507e, 0x0)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f0000000700)={r1, 0x1000, {0x0, 0x0, 0x0, 0x0, 0x100001, 0x0, 0x0, 0x1b, 0x15, "54c870a8634edc745dfa1ab0a34a10a233e6180aa539ec68114b5aba1c98911df5ba72296d56740d56ea4d0434aa3592a4791300", "fc0177a6f3bb16d5d5560f93e0e50bbf206c9d8db97c00040000000000005f8a654e14dc7c4cc6020004003b3acc9f02cd3eac8be657b534bfa1142100696b29", "4921095856cdf9fd8199034f3b870104000009e3c7a181fb1c16c99189819ef4", [0x1, 0x9]}})
ioctl$LOOP_SET_DIRECT_IO(r0, 0x4c08, 0x0)

1m31.943851244s ago: executing program 1 (id=4964):
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f00000000c0)={0x1, @pix={0x5, 0x10009, 0xb5315241, 0x3, 0x0, 0xff, 0x0, 0x6, 0x1, 0x4, 0x0, 0x4}})

1m31.884280658s ago: executing program 1 (id=4966):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x801, 0x0)
ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000380)={{0x0, 0xfff, 0x4b, 0x8009}, 'syz0\x00', 0x3e})
ioctl$UI_DEV_SETUP(r0, 0x5501, 0x0)
r1 = syz_open_dev$evdev(&(0x7f0000000040), 0xfffffffffffffffe, 0x2)
r2 = dup3(r1, r0, 0x80000)
write$FUSE_LSEEK(r2, 0x0, 0x0)

1m31.820050807s ago: executing program 1 (id=4967):
syz_mount_image$udf(&(0x7f0000000000), &(0x7f00000094c0)='./file1\x00', 0x0, &(0x7f0000001940)=ANY=[], 0x1, 0xc25, &(0x7f0000002580)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x80041, 0x40)
write$binfmt_script(r0, &(0x7f0000000080)={'#! ', './file1'}, 0xb)

1m31.713751312s ago: executing program 1 (id=4969):
r0 = semget$private(0x0, 0x7, 0x191)
semtimedop(r0, &(0x7f0000000200)=[{0x0, 0xffff, 0x2000}, {0x4, 0x3, 0x1800}], 0x2, 0x0)
semctl$SETVAL(r0, 0x0, 0x10, &(0x7f0000000080)=0x4)

1m31.583716845s ago: executing program 1 (id=4972):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="010025bd7000fddbdf250500000008000300cd"], 0x1c}, 0x1, 0x0, 0x0, 0x20000065}, 0x104)

1m31.583326061s ago: executing program 1 (id=4974):
quotactl$Q_SYNC(0xffffffff80000100, 0x0, 0x0, 0x0)

1m16.563388594s ago: executing program 37 (id=4974):
quotactl$Q_SYNC(0xffffffff80000100, 0x0, 0x0, 0x0)

2.163372263s ago: executing program 8 (id=6196):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x20, 0x3, &(0x7f0000000200)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x99ec}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000080)={r0, 0x0, 0x2d, 0x0, @val=@netfilter={0xa, 0x1, 0x353a, 0x1}}, 0x20)
memfd_create(&(0x7f0000000000)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xac\xbe\xe1}knh#\xcf)\x0f\xc8\xc0\"\x9cc\x10d\xee\xa9\x8b\x06\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\xcf~\xb90a\xa9\xb2\x04\x1d\xa1\xce\x8b\x19\xea\xef\xe3\x00\x00\x00\x00\x00\x00\x00\x00', 0x0)
syz_emit_ethernet(0x46, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa1780c206050086dd6018232500102c"], 0x0)

2.132177911s ago: executing program 8 (id=6197):
r0 = syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f00000000c0)='mnt\x00', 0x4, &(0x7f0000000000), 0x0, 0x236, &(0x7f0000000300)="$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")
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r0, 0xc0506617, &(0x7f0000000140)={@id={0x2, 0x0, @c}, 0x21, 0x0, '\x00', @c})

2.06160458s ago: executing program 8 (id=6199):
r0 = syz_io_uring_setup(0x49c, &(0x7f0000000400)={0x0, 0x90b2, 0x800, 0x0, 0x284}, &(0x7f0000000180)=<r1=>0x0, &(0x7f00000001c0)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r3 = socket$phonet_pipe(0x23, 0x5, 0x2)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0, 0x0, 0x1})
io_uring_enter(r0, 0x3516, 0x0, 0x4, 0x0, 0x0)

1.941629497s ago: executing program 8 (id=6202):
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
sendto(r0, &(0x7f0000000000)="993e4671da7b0524d07c3d1bbc2aa52eee70a6", 0x13, 0x48010, 0x0, 0x0)

1.833312639s ago: executing program 8 (id=6204):
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000001240)='./file2\x00', 0x14552, &(0x7f0000000b40)=ANY=[], 0xfb, 0x11ff, &(0x7f0000002480)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000040), 0x208e24b)
fstatfs(r0, &(0x7f00000002c0)=""/195)

1.152785041s ago: executing program 2 (id=6217):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x601c2, 0x0)
ftruncate(r0, 0x8800000)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000400)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendfile(r1, r0, 0x0, 0x100000005)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r2 = io_uring_setup(0xcd7, &(0x7f0000000040)={0x0, 0xc8a2, 0xc000, 0x80008, 0xc1})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x34}}, 0xea5bc50b6199d77e)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1600100004"], 0x50)
sendmmsg(0xffffffffffffffff, &(0x7f0000000100)=[{{0x0, 0x2d, &(0x7f00000000c0)=[{&(0x7f0000000000)="1b", 0x40000}], 0x1}}], 0x51, 0x0)
io_uring_enter(r2, 0x2219, 0x7721, 0x16, 0x0, 0x0)

788.069537ms ago: executing program 8 (id=6220):
r0 = userfaultfd(0x1)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r1=>0x0)
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r1, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
ioprio_set$uid(0x3, 0x0, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000080)={0xaa, 0x79})
read(r0, &(0x7f00000002c0)=""/153, 0x99)

352.51951ms ago: executing program 7 (id=6224):
r0 = syz_open_dev$usbfs(&(0x7f0000000240), 0x75, 0x109301)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r0, 0x8108551b, &(0x7f0000002600)={0x0, 0x0, "5a77bd318786aeb879ca62cdab2a02fa560186d85b25a5665a3247e500f61681905db88235f8a5447dd2a2ed6e91626f068881e50f68530c2b21a100efb76cba37ff3111d6847e0c7f719e169a596e5fc008daefba68f6222103472bc55704cdb72b4b996ed82ccb1eaae27969d008ba7d34171113d806726615380fe65a6a0a72e19c2b60bd6276fd8bb6363d10f70da60fd53ded22c87eb2be010e4a62fb73c33424b437bb192c9d06ea6ed04983fe5c5ca033dfce0a82575ef14eee686be0fc58e384f93a13e4e8bbf599394baea3a9ca1864f0a35d6cc38fca32ad6b39905a9727d2001457df7be7e1aefe3635b2ee97c143f28def4b73905ca14d90d1f6"})
ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f00000001c0)=@urb_type_interrupt={0x1, {0x1, 0x1}, 0x3, 0x20, &(0x7f0000002900)="9e", 0x1, 0x205a, 0x1ff, 0x0, 0x96b, 0x6, 0x0})

263.214671ms ago: executing program 7 (id=6225):
r0 = openat$vimc2(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VIDIOC_CROPCAP(r0, 0xc02c563a, &(0x7f0000000040)={0x2, {0x5, 0xffffff81, 0x9dd, 0x4}, {0x1000, 0x8, 0x9, 0x7}, {0x8, 0x100}})

262.799182ms ago: executing program 2 (id=6226):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0xa4}, 0x1, 0x0, 0x0, 0x24000154}, 0x20000050)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000002900)=ANY=[@ANYBLOB="140000001000010000000000000000000a00000a20000000000a01080000000000000000010000090900010073797a3100000000d0000000030a030000000000000000000100000a0900010073797a31000000000900030073797a3000000000a40003006272696467657fc5f7"], 0x118}, 0x1, 0x0, 0x0, 0x24000144}, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2400c000}, 0x20008800)

203.354609ms ago: executing program 7 (id=6227):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e21, 0x679, @ipv4={'\x00', '\xff\xff', @remote}, 0x1}, 0x1c)
sendto$inet6(r0, 0x0, 0x0, 0x4000, &(0x7f0000000040)={0xa, 0x4e22, 0x1, @private1={0xfc, 0x1, '\x00', 0x1}}, 0x1c)

202.870961ms ago: executing program 2 (id=6228):
uname(0xfffffffffffffffc)

133.049469ms ago: executing program 7 (id=6229):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0)
pread64(r0, &(0x7f0000000480)=""/61, 0x3d, 0x7fffffffffffffff)

132.859896ms ago: executing program 2 (id=6230):
r0 = socket(0x10, 0x80003, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'dummy0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_prio={{0x9}, {0x18, 0x2, {0xf, "0000000000000000000100000e00"}}}]}, 0x48}, 0x1, 0x0, 0x0, 0x2000000}, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000140)={0x0, 0xfffffffffffffde7, &(0x7f0000000480)={&(0x7f0000000080)=ANY=[], 0x78}}, 0x0)

83.237649ms ago: executing program 7 (id=6231):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="4800000010000304000000000400000000007400", @ANYRES32=0x0, @ANYBLOB="0000000003120100280012800b000100627269646765000018"], 0x48}, 0x1, 0x0, 0x0, 0x20040884}, 0x0)
r0 = socket(0x400000000010, 0x3, 0x0)
write(r0, &(0x7f0000000040)="3a03000018002551075c0165ff0ffc02802000030004000500e1000c0400070080000900", 0x33a)

82.862064ms ago: executing program 2 (id=6232):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$PPPIOCGFLAGS(r0, 0x8004745a, 0x0)

355.868µs ago: executing program 2 (id=6233):
socket$inet_sctp(0x2, 0x5, 0x84)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
openat$tun(0xffffffffffffff9c, 0x0, 0xc1842, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000580)=@mangle={'mangle\x00', 0x64, 0x6, 0x520, 0x0, 0x360, 0xd0, 0x1a8, 0x360, 0x450, 0x450, 0x450, 0x450, 0x450, 0x6, 0x0, {[{{@ipv6={@empty, @loopback, [], [0x0, 0xffffffff], 'gre0\x00', 'bond0\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@CONNSECMARK={0x28}}, {{@uncond, 0x0, 0xa8, 0xd8}, @common=@unspec=@CONNMARK={0x30}}, {{@uncond, 0x0, 0xa8, 0xd0}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0x360}}, {{@ipv6={@private0={0xfc, 0x0, '\x00', 0x1}, @local, [], [0x0, 0xff, 0x0, 0xff000000], 'pim6reg1\x00', 'vlan1\x00'}, 0x0, 0xa8, 0xe8}, @common=@inet=@LOG={0x40, 'LOG\x00', 0x0, {0x4, 0x0, "b3735369274c086ba4774c94815e4281dda03cdd71707f666f56af320601"}}}, {{@ipv6={@private0={0xfc, 0x0, '\x00', 0x4}, @remote, [0x0, 0xff000000], [], 'tunl0\x00', 'bridge_slave_0\x00', {}, {0xf7d589580f149d60}, 0x0, 0xe}, 0x0, 0xa8, 0xf0}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@multicast2, @ipv6=@mcast1, 0x1c, 0x40, 0x3}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x580)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f0000000100)={0x0, 0x5}, 0x8)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=ANY=[@ANYBLOB="140000001000010024000000000000000000000a64000000060a010400000000000000000200ffff38000480340001800b000100657874686472000024000280050002008900000008000340000000d5080006400000000208000140000007010900010073797a30000000000900020073797a32"], 0x8c}}, 0x8000)
pipe2(&(0x7f0000001040)={0xffffffffffffffff, <r6=>0xffffffffffffffff}, 0x0)
write$P9_RGETLOCK(r6, 0x0, 0xffffff6a)
pipe2(&(0x7f0000000240), 0x0)
r7 = syz_mount_image$btrfs(&(0x7f0000000080), &(0x7f00000015c0)='./file0\x00', 0x4000, &(0x7f0000003a40), 0x0, 0x559e, &(0x7f000000ac40)="$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")
ioctl$BTRFS_IOC_QUOTA_CTL(r7, 0xc0109428, &(0x7f00000001c0)={0x1})
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r8, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000140)={&(0x7f0000000400)=ANY=[@ANYBLOB="3c000000000901020000000000000000030000000800054000000015080005400000000f0900010073797a30000000000900010073797a31000000008eea583c87bac1e4c6c2a7cb8e9537d9525bd6da58b430c3a9804241eeec3b1a65d3e031960693c5f2d0409a290000000097ad7b6fc160584725c9"], 0x3c}, 0x1, 0x0, 0x0, 0x4810}, 0x20000010)
ioctl$BTRFS_IOC_SNAP_CREATE(r7, 0x50009401, &(0x7f0000002600)={{r7}, "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"})
ioctl$BTRFS_IOC_QGROUP_ASSIGN(r7, 0x40189429, &(0x7f0000000100)={0x0, 0xb, 0x7})

0s ago: executing program 7 (id=6234):
syz_mount_image$ext4(&(0x7f00000005c0)='ext4\x00', &(0x7f0000000600)='./file0\x00', 0x10000, &(0x7f0000000640), 0x1, 0x5c5, &(0x7f0000001a00)="$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")
quotactl$Q_SETQUOTA(0xffffffff80000801, &(0x7f0000000080)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000380)={0x2, 0x1, 0x4e0a, 0x0, 0x8000000000000000, 0x40000100000000b, 0xfffffffffffffffd, 0xfffffffffffffffc, 0x4})

kernel console output (not intermixed with test programs):

length: 249 > 4
[  352.700530][ T5952] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  352.864946][T16135] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4268'.
[  352.918238][T16136] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4268'.
[  353.017185][T16130] chnl_net:caif_netlink_parms(): no params data found
[  353.148721][T16130] bridge0: port 1(bridge_slave_0) entered blocking state
[  353.151741][T16130] bridge0: port 1(bridge_slave_0) entered disabled state
[  353.156619][T16130] bridge_slave_0: entered allmulticast mode
[  353.160578][T16130] bridge_slave_0: entered promiscuous mode
[  353.167110][T16130] bridge0: port 2(bridge_slave_1) entered blocking state
[  353.170123][T16130] bridge0: port 2(bridge_slave_1) entered disabled state
[  353.173368][T16130] bridge_slave_1: entered allmulticast mode
[  353.177229][T16130] bridge_slave_1: entered promiscuous mode
[  353.225065][T16130] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  353.231540][T16130] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  353.270190][T16130] team0: Port device team_slave_0 added
[  353.275909][T16130] team0: Port device team_slave_1 added
[  353.301924][T16130] batman_adv: batadv0: Adding interface: batadv_slave_0
[  353.305068][T16130] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  353.315675][T16130] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  353.321536][T16130] batman_adv: batadv0: Adding interface: batadv_slave_1
[  353.325798][T16130] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  353.339643][T16130] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  353.380613][T16130] hsr_slave_0: entered promiscuous mode
[  353.383976][T16130] hsr_slave_1: entered promiscuous mode
[  353.386504][T16130] debugfs: 'hsr0' already exists in 'hsr'
[  353.388354][T16130] Cannot create hsr debugfs directory
[  353.494465][T16169] netlink: 'syz.2.4280': attribute type 2 has an invalid length.
[  353.497075][T16169] netlink: 100 bytes leftover after parsing attributes in process `syz.2.4280'.
[  353.550932][T16173] xt_hashlimit: size too large, truncated to 1048576
[  353.566195][T16130] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  353.572375][T16130] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  353.588622][T16130] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  353.598469][T16130] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  353.621158][T16177] vxcan3: entered allmulticast mode
[  353.662460][T16130] bridge0: port 2(bridge_slave_1) entered blocking state
[  353.665308][T16130] bridge0: port 2(bridge_slave_1) entered forwarding state
[  353.668416][T16130] bridge0: port 1(bridge_slave_0) entered blocking state
[  353.671141][T16130] bridge0: port 1(bridge_slave_0) entered forwarding state
[  353.708202][T16130] 8021q: adding VLAN 0 to HW filter on device bond0
[  353.716735][ T6553] bridge0: port 1(bridge_slave_0) entered disabled state
[  353.719523][ T6553] bridge0: port 2(bridge_slave_1) entered disabled state
[  353.730975][T16130] 8021q: adding VLAN 0 to HW filter on device team0
[  353.755283][ T6553] bridge0: port 1(bridge_slave_0) entered blocking state
[  353.757580][ T6553] bridge0: port 1(bridge_slave_0) entered forwarding state
[  353.764368][ T6553] bridge0: port 2(bridge_slave_1) entered blocking state
[  353.766575][ T6553] bridge0: port 2(bridge_slave_1) entered forwarding state
[  353.913195][T16130] 8021q: adding VLAN 0 to HW filter on device batadv0
[  354.027094][T16130] veth0_vlan: entered promiscuous mode
[  354.031876][T16130] veth1_vlan: entered promiscuous mode
[  354.046825][T16130] veth0_macvtap: entered promiscuous mode
[  354.050764][T16130] veth1_macvtap: entered promiscuous mode
[  354.059075][T16130] batman_adv: batadv0: Interface activated: batadv_slave_0
[  354.065222][T16130] batman_adv: batadv0: Interface activated: batadv_slave_1
[  354.071508][ T5979] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  354.075893][ T5979] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  354.079540][ T5979] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  354.084433][ T5979] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  354.141200][ T6547] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  354.147739][ T6547] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  354.162730][ T6553] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  354.165608][ T6553] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  354.652767][  T911] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  354.742900][ T5952] Bluetooth: hci3: command tx timeout
[  354.802645][  T911] usb 8-1: Using ep0 maxpacket: 8
[  354.814206][  T911] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 13
[  354.820315][  T911] usb 8-1: New USB device found, idVendor=046d, idProduct=08ae, bcdDevice=11.58
[  354.832742][  T911] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  354.836124][  T911] usb 8-1: Product: syz
[  354.837866][  T911] usb 8-1: Manufacturer: syz
[  354.839772][  T911] usb 8-1: SerialNumber: syz
[  354.853905][  T911] usb 8-1: config 0 descriptor??
[  354.859180][  T911] gspca_main: gspca_zc3xx-2.14.0 probing 046d:08ae
[  355.063644][  T911] gspca_zc3xx: reg_w_i err -71
[  355.065305][T16233] fuse: Bad value for 'fd'
[  355.076914][T16233] tmpfs: Unknown parameter 'group_id'
[  355.643536][T16247] netlink: 16 bytes leftover after parsing attributes in process `syz.1.4306'.
[  355.664758][T16249] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4307'.
[  355.692691][  T911] gspca_zc3xx: Unknown sensor - set to TAS5130C
[  355.695280][  T911] gspca_zc3xx 8-1:0.0: probe with driver gspca_zc3xx failed with error -71
[  355.704122][  T911] usb 8-1: USB disconnect, device number 2
[  356.846135][ T5952] Bluetooth: hci3: command tx timeout
[  357.570430][T16279] ip6gretap1: entered promiscuous mode
[  358.902797][ T5952] Bluetooth: hci3: command tx timeout
[  359.663724][T16333] loop7: detected capacity change from 0 to 2048
[  359.714554][T16333] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  359.724479][T16333] ext4 filesystem being mounted at /15/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  359.755508][T16130] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  359.837462][T16350] loop7: detected capacity change from 0 to 512
[  359.869918][T16350] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  359.877987][T16350] ext4 filesystem being mounted at /16/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  359.908678][T16360] mac80211_hwsim hwsim2 wlan0: entered promiscuous mode
[  359.911342][T16360] A link change request failed with some changes committed already. Interface wlan0 may have been left with an inconsistent configuration, please check.
[  359.917888][T16130] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  360.749157][T16395] binder: 16394:16395 ioctl 40046104 0 returned -22
[  360.811249][T16399] netlink: 'syz.7.4370': attribute type 3 has an invalid length.
[  360.814711][T16399] netlink: 'syz.7.4370': attribute type 3 has an invalid length.
[  360.819164][T16399] netlink: 'syz.7.4370': attribute type 10 has an invalid length.
[  360.839649][T16399] 8021q: adding VLAN 0 to HW filter on device team0
[  360.845495][T16399] bond0: (slave team0): Enslaving as an active interface with an up link
[  360.982798][ T5952] Bluetooth: hci3: command tx timeout
[  361.255516][T16413] loop7: detected capacity change from 0 to 512
[  361.291492][T16413] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  361.295608][T16413] ext4 filesystem being mounted at /30/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  361.309798][T16413] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  361.339371][T16130] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  361.426131][T16423] netlink: 64 bytes leftover after parsing attributes in process `syz.7.4378'.
[  361.430386][T16423] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4378'.
[  361.436153][T16425] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  361.438561][T16425] IPv6: NLM_F_CREATE should be set when creating new route
[  362.501358][T16470] loop7: detected capacity change from 0 to 8192
[  362.548230][T16131]  loop7: p1[EZD] p2 p3 p4
[  362.571003][T16131] loop7: p3 start 117772289 is beyond EOD, truncated
[  362.577880][T16131] loop7: p4 size 262144 extends beyond EOD, truncated
[  362.623889][T16470]  loop7: p1[EZD] p2 p3 p4
[  362.627294][T16470] loop7: p3 start 117772289 is beyond EOD, truncated
[  362.629602][T16470] loop7: p4 size 262144 extends beyond EOD, truncated
[  362.706878][T16220] udevd[16220]: inotify_add_watch(7, /dev/loop7p2, 10) failed: No such file or directory
[  362.711528][T16131] udevd[16131]: inotify_add_watch(7, /dev/loop7p1, 10) failed: No such file or directory
[  362.725388][T16234] udevd[16234]: inotify_add_watch(7, /dev/loop7p4, 10) failed: No such file or directory
[  362.743522][T16131] udevd[16131]: inotify_add_watch(7, /dev/loop7p1, 10) failed: No such file or directory
[  362.748780][T16220] udevd[16220]: inotify_add_watch(7, /dev/loop7p2, 10) failed: No such file or directory
[  362.752155][T16234] udevd[16234]: inotify_add_watch(7, /dev/loop7p4, 10) failed: No such file or directory
[  362.972161][T16491] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4407'.
[  363.351638][T16517] loop7: detected capacity change from 0 to 4096
[  363.364224][T16520] NILFS (loop7): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  363.859209][T16535] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4426'.
[  363.887774][T16537] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4427'.
[  363.890701][T16537] netlink: 48 bytes leftover after parsing attributes in process `syz.7.4427'.
[  363.898865][T16537] bridge1: entered allmulticast mode
[  363.964196][T16541] delete_channel: no stack
[  364.101307][T16555] loop7: detected capacity change from 0 to 128
[  364.116527][T16555] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  364.120890][T16555] hpfs: filesystem error: improperly stopped
[  364.124003][T16555] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  364.126669][T16555] hpfs: You really don't want any checks? You are crazy...
[  364.129780][T16555] hpfs: hpfs_map_sector(): read error
[  364.131946][T16555] hpfs: code page support is disabled
[  364.135025][T16555] hpfs: hpfs_map_4sectors(): unaligned read
[  364.137096][T16555] hpfs: hpfs_map_4sectors(): unaligned read
[  364.138950][T16555] hpfs: filesystem error: unable to find root dir
[  364.354133][T16561] loop7: detected capacity change from 0 to 2048
[  364.379388][T16561] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  364.406677][T16130] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  364.682694][ T7923] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  364.832599][ T7923] usb 8-1: Using ep0 maxpacket: 16
[  364.835805][ T7923] usb 8-1: config 0 has an invalid interface number: 1 but max is 0
[  364.838230][ T7923] usb 8-1: config 0 has no interface number 0
[  364.844277][ T7923] usb 8-1: New USB device found, idVendor=04fc, idProduct=1528, bcdDevice=6d.5d
[  364.848044][ T7923] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  364.851188][ T7923] usb 8-1: Product: syz
[  364.852990][ T7923] usb 8-1: Manufacturer: syz
[  364.854883][ T7923] usb 8-1: SerialNumber: syz
[  364.858974][ T7923] usb 8-1: config 0 descriptor??
[  364.864173][ T7923] gspca_main: spca1528-2.14.0 probing 04fc:1528
[  365.206222][T16576] netlink: 108 bytes leftover after parsing attributes in process `syz.2.4445'.
[  365.209100][T16576] netlink: 20 bytes leftover after parsing attributes in process `syz.2.4445'.
[  365.266441][ T7923] gspca_spca1528: reg_w err -71
[  365.284077][ T7923] spca1528 8-1:0.1: probe with driver spca1528 failed with error -71
[  365.288012][ T7923] usb 8-1: USB disconnect, device number 3
[  366.272672][ T6020] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[  366.423044][ T6020] usb 8-1: Using ep0 maxpacket: 16
[  366.436609][ T6020] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  366.440043][ T6020] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  366.446157][ T6020] usb 8-1: New USB device found, idVendor=057e, idProduct=2019, bcdDevice= 0.00
[  366.449481][ T6020] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  366.457300][ T6020] usb 8-1: config 0 descriptor??
[  366.545321][T16616] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4464'.
[  366.894189][ T6020] nintendo 0003:057E:2019.000A: hidraw0: USB HID v80.05 Device [HID 057e:2019] on usb-dummy_hcd.7-1/input0
[  366.954019][ T6020] nintendo 0003:057E:2019.000A: Failed to get joycon info; ret=-38
[  366.957415][ T6020] nintendo 0003:057E:2019.000A: Failed to retrieve controller info; ret=-38
[  366.960924][ T6020] nintendo 0003:057E:2019.000A: Failed to initialize controller; ret=-38
[  366.972019][ T6020] nintendo 0003:057E:2019.000A: probe - fail = -38
[  366.974981][ T6020] nintendo 0003:057E:2019.000A: probe with driver nintendo failed with error -38
[  367.284810][   T10] usb 8-1: USB disconnect, device number 4
[  367.376765][T16662] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4486'.
[  367.381154][T16662] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4486'.
[  367.385122][T16662] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4486'.
[  367.854033][   T34] audit: type=1326 audit(2000000288.928:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16669 comm="syz.7.4489" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f8419acb9 code=0x7ffc0000
[  367.872645][   T34] audit: type=1326 audit(2000000288.928:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16669 comm="syz.7.4489" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f8419acb9 code=0x7ffc0000
[  367.891655][   T34] audit: type=1326 audit(2000000288.938:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16669 comm="syz.7.4489" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f8419acb9 code=0x7ffc0000
[  367.911938][   T34] audit: type=1326 audit(2000000288.938:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16669 comm="syz.7.4489" exe="/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4f8415b58e code=0x7ffc0000
[  367.924573][   T34] audit: type=1326 audit(2000000288.938:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16669 comm="syz.7.4489" exe="/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7f4f8419bfd7 code=0x7ffc0000
[  367.939303][   T34] audit: type=1326 audit(2000000288.938:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16669 comm="syz.7.4489" exe="/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f4f8419acb9 code=0x7ffc0000
[  367.953351][   T34] audit: type=1326 audit(2000000288.938:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16669 comm="syz.7.4489" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f8419acb9 code=0x7ffc0000
[  367.966134][   T34] audit: type=1326 audit(2000000288.938:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16669 comm="syz.7.4489" exe="/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7f4f8419bfd7 code=0x7ffc0000
[  367.986665][   T34] audit: type=1326 audit(2000000288.938:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16669 comm="syz.7.4489" exe="/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f4f8415b58e code=0x7ffc0000
[  368.001340][   T34] audit: type=1326 audit(2000000288.938:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16669 comm="syz.7.4489" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f8419acb9 code=0x7ffc0000
[  368.009363][T16673] loop7: detected capacity change from 0 to 1024
[  368.023713][T16673] EXT4-fs: Ignoring removed orlov option
[  368.034459][T16673] EXT4-fs: Ignoring removed bh option
[  368.068741][T16673] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  368.761516][T16690] overlayfs: failed to clone upperpath
[  368.885097][T16130] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  369.085246][T16710] overlayfs: failed to clone upperpath
[  369.481791][T16744] loop7: detected capacity change from 0 to 256
[  369.491494][T16744] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d)
[  369.604602][T16748] netlink: 12 bytes leftover after parsing attributes in process `syz.7.4522'.
[  370.567026][T16815] netlink: 40 bytes leftover after parsing attributes in process `syz.7.4534'.
[  370.589808][T16815] loop7: detected capacity change from 0 to 2048
[  370.606586][T16815] EXT4-fs (loop7): couldn't mount as ext3 due to feature incompatibilities
[  371.022639][ T6020] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[  371.136596][T16834] delete_channel: no stack
[  371.172650][ T6020] usb 8-1: Using ep0 maxpacket: 32
[  371.186836][ T6020] usb 8-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice=b4.8c
[  371.190452][ T6020] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  371.199128][T16841] xt_cgroup: invalid path, errno=-2
[  371.202891][ T6020] usb 8-1: Product: syz
[  371.208147][ T6020] usb 8-1: Manufacturer: syz
[  371.210058][ T6020] usb 8-1: SerialNumber: syz
[  371.218468][ T6020] usb 8-1: config 0 descriptor??
[  371.225994][ T6020] gspca_main: gspca_topro-2.14.0 probing 06a2:0003
[  371.565128][ T6020] gspca_topro: reg_w err -71
[  371.594478][ T6020] gspca_topro: Sensor soi763a
[  371.635551][ T6020] usb 8-1: USB disconnect, device number 5
[  372.180218][T16877] mkiss: ax0: crc mode is auto.
[  372.219910][T16882] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  372.330583][T16889] loop7: detected capacity change from 0 to 4096
[  372.334820][T16889] EXT4-fs: Ignoring removed oldalloc option
[  372.338062][T16889] EXT4-fs (loop7): Test dummy encryption mode enabled
[  372.351987][T16889] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  372.436156][T16130] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  372.515596][T16904] random: crng reseeded on system resumption
[  372.523867][T16902] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4574'.
[  372.566619][T16908] loop7: detected capacity change from 0 to 1024
[  372.615061][ T3022] hfsplus: b-tree write err: -5, ino 4
[  372.727905][T16921] loop7: detected capacity change from 0 to 512
[  372.766990][T16921] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  372.772158][T16921] ext4 filesystem being mounted at /94/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  372.785888][T16921] EXT4-fs (loop7): shut down requested (1)
[  372.815859][T16130] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  373.257836][T16943] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  373.703201][T16966] ./file0: Can't lookup blockdev
[  373.992731][   T10] usb 8-1: new high-speed USB device number 6 using dummy_hcd
[  374.462687][   T10] usb 8-1: Using ep0 maxpacket: 32
[  374.466537][   T10] usb 8-1: config 47 has an invalid interface number: 59 but max is 0
[  374.469719][   T10] usb 8-1: config 47 has no interface number 0
[  374.472103][   T10] usb 8-1: config 47 interface 59 altsetting 136 endpoint 0xB has invalid maxpacket 975, setting to 64
[  374.477144][   T10] usb 8-1: config 47 interface 59 has no altsetting 0
[  374.482267][   T10] usb 8-1: New USB device found, idVendor=0cf3, idProduct=9375, bcdDevice=5e.30
[  374.486449][   T10] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  374.489669][   T10] usb 8-1: Product: syz
[  374.491317][   T10] usb 8-1: Manufacturer: syz
[  374.493631][   T10] usb 8-1: SerialNumber: syz
[  374.712645][   T10] ath6kl: Failed to submit usb control message: -71
[  374.715157][   T10] ath6kl: unable to send the bmi data to the device: -71
[  374.717937][   T10] ath6kl: Unable to send get target info: -71
[  374.721991][   T10] ath6kl: Failed to init ath6kl core: -71
[  374.729950][   T10] ath6kl_usb 8-1:47.59: probe with driver ath6kl_usb failed with error -71
[  374.741494][   T10] usb 8-1: USB disconnect, device number 6
[  374.910446][T16988] netlink: 68 bytes leftover after parsing attributes in process `syz.2.4609'.
[  374.922642][T16988] netlink: 48 bytes leftover after parsing attributes in process `syz.2.4609'.
[  375.378112][T17018] netlink: 16 bytes leftover after parsing attributes in process `syz.1.4622'.
[  376.211078][T17039] overlayfs: failed to clone lowerpath
[  376.489967][T17057] netlink: 'syz.7.4639': attribute type 1 has an invalid length.
[  376.543551][T17057] bond1: entered promiscuous mode
[  376.555001][T17057] 8021q: adding VLAN 0 to HW filter on device bond1
[  376.585745][T17057] bond1: (slave bridge2): making interface the new active one
[  376.588245][T17057] bridge2: entered promiscuous mode
[  376.590391][T17057] bond1: (slave bridge2): Enslaving as an active interface with an up link
[  376.674876][T17068] netlink: 236 bytes leftover after parsing attributes in process `syz.1.4645'.
[  376.684769][T17069] netlink: 'syz.7.4644': attribute type 2 has an invalid length.
[  377.420562][T17101] netlink: 'syz.7.4657': attribute type 10 has an invalid length.
[  377.436626][T17101] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  377.440201][T17101] team0: Failed to send options change via netlink (err -105)
[  377.443234][T17101] team0: Port device dummy0 added
[  377.450848][T17101] netlink: 'syz.7.4657': attribute type 10 has an invalid length.
[  377.454752][T17101] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  377.467315][T17101] team0: Failed to send options change via netlink (err -105)
[  377.470545][T17101] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  377.475017][T17101] team0: Port device dummy0 removed
[  377.480207][T17101] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  378.423924][T17107] loop7: detected capacity change from 0 to 262144
[  378.427886][T17107] F2FS-fs (loop7): invalid crc value
[  378.456382][T17107] F2FS-fs (loop7): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  378.459559][T17107] F2FS-fs (loop7): Start checkpoint disabled!
[  378.468199][T17107] F2FS-fs (loop7): f2fs_disable_checkpoint() finish, err:0
[  378.471191][T17107] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[  379.363813][T17178] netlink: 132 bytes leftover after parsing attributes in process `syz.1.4691'.
[  379.810290][T17200] sctp: [Deprecated]: syz.2.4701 (pid 17200) Use of struct sctp_assoc_value in delayed_ack socket option.
[  379.810290][T17200] Use struct sctp_sack_info instead
[  380.234485][T17209] loop7: detected capacity change from 0 to 256
[  380.252159][T17209] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0xe3865569, utbl_chksum : 0xe619d30d)
[  380.493140][T17217] xt_bpf: check failed: parse error
[  380.874279][T17229] tmpfs: Bad value for 'mpol'
[  381.378025][T17258] loop7: detected capacity change from 0 to 1024
[  381.403250][T17258] EXT4-fs (loop7): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  381.407627][T17258] EXT4-fs (loop7): ext4_check_descriptors: Checksum for group 0 failed (38281!=20869)
[  381.411504][T17258] EXT4-fs (loop7): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  381.443305][T17258] EXT4-fs error (device loop7): ext4_ext_check_inode:523: inode #3: comm syz.7.4727: pblk 82 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0)
[  381.498993][T17258] EXT4-fs (loop7): no journal found
[  381.502118][T17258] EXT4-fs (loop7): can't get journal size
[  381.520638][T17258] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  381.529935][T17258] EXT4-fs (loop7): ext4_remount: Checksum for group 0 failed (38281!=20869)
[  381.550327][T16130] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  382.581345][T17293] netlink: 32 bytes leftover after parsing attributes in process `syz.2.4739'.
[  382.588081][T17293] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -2
[  382.592010][T17293] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  382.994858][T17302] loop7: detected capacity change from 0 to 1024
[  383.041198][T17302] hfsplus: xattr searching failed
[  383.190474][T17314] loop7: detected capacity change from 0 to 128
[  383.201175][T17314] UDF-fs: error (device loop7): udf_read_tagged: read failed, block=256, location=256
[  383.266895][T17314] UDF-fs: error (device loop7): udf_bitmap_new_block: bitmap for partition 0 corrupted (block 264 marked as free, partition length is 40)
[  383.284469][T17314] UDF-fs: error (device loop7): udf_bitmap_new_block: bitmap for partition 0 corrupted (block 264 marked as free, partition length is 40)
[  383.580618][T17317] netlink: 'syz.2.4749': attribute type 13 has an invalid length.
[  383.646130][T17320] sch_tbf: burst 6 is lower than device gretap0 mtu (1550) !
[  383.786292][ T1363] ieee802154 phy0 wpan0: encryption failed: -22
[  383.788451][ T1363] ieee802154 phy1 wpan1: encryption failed: -22
[  383.874396][T17346] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  383.929533][T17352] tmpfs: Bad value for 'mpol'
[  384.479989][T17374] loop7: detected capacity change from 0 to 32768
[  384.487014][T17374] 
[  384.487014][T17374]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  384.487014][T17374] 
[  384.510594][ T6553] ERROR: (device loop7): diWrite: ixpxd invalid
[  384.510594][ T6553] 
[  384.519370][ T6553] ERROR: (device loop7): txCommit: 
[  384.519370][ T6553] 
[  384.522258][ T6553] jfs_write_inode: jfs_commit_inode failed!
[  384.526638][T16130] 
[  384.526638][T16130]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  384.526638][T16130] 
[  384.531361][T16130] 
[  384.531361][T16130]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  384.531361][T16130] 
[  384.932631][ T7923] usb 8-1: new high-speed USB device number 7 using dummy_hcd
[  385.084167][ T7923] usb 8-1: config 0 has an invalid interface number: 1 but max is 0
[  385.086690][ T7923] usb 8-1: config 0 has no interface number 0
[  385.090443][ T7923] usb 8-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[  385.107856][T17388] openvswitch: netlink: Missing key (keys=2020040, expected=100)
[  385.112947][ T7923] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  385.115421][ T7923] usb 8-1: Product: syz
[  385.116656][ T7923] usb 8-1: Manufacturer: syz
[  385.118212][ T7923] usb 8-1: SerialNumber: syz
[  385.124441][ T7923] usb 8-1: config 0 descriptor??
[  385.131748][T17390] overlayfs: failed to clone upperpath
[  385.329552][ T7923] dvb_usb_ec168 8-1:0.1: probe with driver dvb_usb_ec168 failed with error -71
[  385.344011][ T7923] usb 8-1: USB disconnect, device number 7
[  385.368993][T17413] fuse: Bad value for 'fd'
[  385.453543][T17415] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4796'.
[  386.252888][ T7923] usb 8-1: new high-speed USB device number 8 using dummy_hcd
[  386.404685][ T7923] usb 8-1: config 0 has an invalid interface number: 1 but max is 0
[  386.408061][ T7923] usb 8-1: config 0 has no interface number 0
[  386.410745][ T7923] usb 8-1: New USB device found, idVendor=5bd3, idProduct=317c, bcdDevice= 4.5e
[  386.415316][ T7923] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  386.420534][ T7923] usb 8-1: config 0 descriptor??
[  386.426637][ T7923] usb 8-1: bad CDC descriptors
[  386.635683][ T7923] usb 8-1: USB disconnect, device number 8
[  387.274418][T17446] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4810'.
[  387.375327][T17454] overlayfs: failed to clone upperpath
[  387.553031][ T6020] usb 8-1: new high-speed USB device number 9 using dummy_hcd
[  387.705025][ T6020] usb 8-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  387.710445][ T6020] usb 8-1: config 1 interface 0 has no altsetting 1
[  387.716053][ T6020] usb 8-1: New USB device found, idVendor=0536, idProduct=a4a8, bcdDevice= 0.40
[  387.719796][ T6020] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  387.723350][ T6020] usb 8-1: Product: syz
[  387.725411][ T6020] usb 8-1: Manufacturer: syz
[  387.727330][ T6020] usb 8-1: SerialNumber: syz
[  387.948804][ T6020] usb 8-1: USB disconnect, device number 9
[  388.041602][   T34] kauditd_printk_skb: 57 callbacks suppressed
[  388.041619][   T34] audit: type=1326 audit(2000000309.108:233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17463 comm="syz.1.4819" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9cfcd9acb9 code=0x7ffc0000
[  388.055314][   T34] audit: type=1326 audit(2000000309.108:234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17463 comm="syz.1.4819" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9cfcd9acb9 code=0x7ffc0000
[  388.063103][   T34] audit: type=1326 audit(2000000309.108:235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17463 comm="syz.1.4819" exe="/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f9cfcd9acb9 code=0x7ffc0000
[  388.073011][   T34] audit: type=1326 audit(2000000309.128:236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17463 comm="syz.1.4819" exe="/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f9cfcd94ad7 code=0x7ffc0000
[  388.082434][   T34] audit: type=1326 audit(2000000309.128:237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17463 comm="syz.1.4819" exe="/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f9cfcd3c0d9 code=0x7ffc0000
[  388.091925][   T34] audit: type=1326 audit(2000000309.128:238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17463 comm="syz.1.4819" exe="/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f9cfcd9acb9 code=0x7ffc0000
[  388.100602][   T34] audit: type=1326 audit(2000000309.138:239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17463 comm="syz.1.4819" exe="/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f9cfcd94ad7 code=0x7ffc0000
[  388.107815][   T34] audit: type=1326 audit(2000000309.138:240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17463 comm="syz.1.4819" exe="/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f9cfcd3c0d9 code=0x7ffc0000
[  388.115723][   T34] audit: type=1326 audit(2000000309.138:241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17463 comm="syz.1.4819" exe="/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f9cfcd9acb9 code=0x7ffc0000
[  388.123989][   T34] audit: type=1326 audit(2000000309.138:242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17463 comm="syz.1.4819" exe="/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f9cfcd94ad7 code=0x7ffc0000
[  388.516100][T17472] netlink: 2 bytes leftover after parsing attributes in process `syz.7.4823'.
[  388.519604][T17472] netlink: 2 bytes leftover after parsing attributes in process `syz.7.4823'.
[  389.110591][T17506] loop7: detected capacity change from 0 to 128
[  389.118524][T17506] ufs: You didn't specify the type of your ufs filesystem
[  389.118524][T17506] 
[  389.118524][T17506] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ...
[  389.118524][T17506] 
[  389.118524][T17506] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old
[  389.133954][T17506] ufs: ufs_fill_super(): fragment size 2066844866 is not a power of 2
[  389.627333][T17531] loop7: detected capacity change from 0 to 16
[  389.643927][T17531] erofs (device loop7): mounted with root inode @ nid 36.
[  389.786684][T17543] tipc: Trying to set illegal importance in message
[  389.923883][T17555] openvswitch: netlink: Missing valid actions attribute.
[  389.926787][T17555] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  389.944503][T17557] wg1: entered promiscuous mode
[  389.946555][T17557] wg1: entered allmulticast mode
[  390.661395][T17563] loop7: detected capacity change from 0 to 32768
[  390.669121][T17563] (syz.7.4866,17563,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  390.675061][T17563] (syz.7.4866,17563,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  390.689051][T17563] JBD2: Ignoring recovery information on journal
[  390.724764][T17563] ocfs2: Mounting device (7,7) on (node local, slot 0) with ordered data mode.
[  390.840641][T16130] ocfs2: Unmounting device (7,7) on (node local)
[  392.156921][T17630] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4895'.
[  392.298631][T17640] netlink: 20 bytes leftover after parsing attributes in process `syz.7.4900'.
[  392.846927][T17675] loop7: detected capacity change from 0 to 256
[  392.856441][T17675] exfat: Deprecated parameter 'utf8'
[  392.871482][T17675] exFAT-fs (loop7): failed to read sector(0x100)
[  392.875735][T17675] exFAT-fs (loop7): failed to load upcase table
[  392.877778][T17675] exFAT-fs (loop7): failed to recognize exfat type
[  392.934935][T17677] overlayfs: failed to clone upperpath
[  392.949372][T17677] overlayfs: failed to clone upperpath
[  394.029657][T17713] loop7: detected capacity change from 0 to 8192
[  394.706727][T17757] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4955'.
[  394.710333][T17757] netlink: 24 bytes leftover after parsing attributes in process `syz.2.4955'.
[  394.715338][T17757] netlink: 24 bytes leftover after parsing attributes in process `syz.2.4955'.
[  394.823866][ T6395] usb 8-1: new high-speed USB device number 10 using dummy_hcd
[  394.999371][ T6395] usb 8-1: config index 0 descriptor too short (expected 23569, got 27)
[  395.002487][ T6395] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  395.008418][ T6395] usb 8-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  395.011597][ T6395] usb 8-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  395.014268][ T6395] usb 8-1: Manufacturer: syz
[  395.026389][ T6395] usb 8-1: config 0 descriptor??
[  395.072651][ T6395] rc_core: IR keymap rc-hauppauge not found
[  395.075247][ T6395] Registered IR keymap rc-empty
[  395.078190][ T6395] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.7/usb8/8-1/8-1:0.0/rc/rc0
[  395.095320][ T6395] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.7/usb8/8-1/8-1:0.0/rc/rc0/input11
[  395.264600][    C0] igorplugusb 8-1:0.0: Error: urb status = -32
[  395.267956][ T6395] usb 8-1: USB disconnect, device number 10
[  395.919758][T17816] netlink: 16 bytes leftover after parsing attributes in process `syz.7.4982'.
[  396.016641][T17823] tunl0: Caught tx_queue_len zero misconfig
[  396.196917][T17835] loop7: detected capacity change from 0 to 2048
[  396.213412][T17835] EXT4-fs: Ignoring removed bh option
[  396.246211][T17835] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  396.310563][T16130] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  396.928012][T17881] netlink: 'syz.2.5011': attribute type 11 has an invalid length.
[  397.374618][T17903] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  397.434533][T17905] loop7: detected capacity change from 0 to 8
[  397.487507][T17907] loop7: detected capacity change from 0 to 22
[  397.490706][T17907] MTD: Attempt to mount non-MTD device "/dev/loop7"
[  397.508834][T17907] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  397.521264][T17907] binfmt_misc: register: failed to install interpreter file ./file0
[  397.893271][ T7923] usb 8-1: new full-speed USB device number 11 using dummy_hcd
[  398.044476][ T7923] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x6 has invalid maxpacket 1023, setting to 64
[  398.048785][ T7923] usb 8-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xBA, changing to 0x8A
[  398.054382][ T7923] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0
[  398.060921][ T7923] usb 8-1: New USB device found, idVendor=2294, idProduct=425b, bcdDevice=a2.10
[  398.065463][ T7923] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  398.068690][ T7923] usb 8-1: Product: syz
[  398.070417][ T7923] usb 8-1: Manufacturer: syz
[  398.072310][ T7923] usb 8-1: SerialNumber: syz
[  398.076742][ T7923] usb 8-1: config 0 descriptor??
[  398.079607][T17917] raw-gadget.0 gadget.7: fail, usb_ep_enable returned -22
[  398.083915][ T7923] usb 8-1: ucan: probing device on interface #0
[  398.086574][ T7923] usb 8-1: ucan: invalid in_ep MaxPacketSize
[  398.088971][ T7923] usb 8-1: ucan: probe failed; try to update the device firmware
[  398.289823][ T7923] usb 8-1: USB disconnect, device number 11
[  398.828985][T17936] smc: net device bond0 applied user defined pnetid SYZ2
[  398.840791][T17936] netlink: 14 bytes leftover after parsing attributes in process `syz.7.5036'.
[  398.865992][T17936] smc: removing net device bond0 with user defined pnetid SYZ2
[  398.870576][T17936] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  398.877694][T17936] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  398.884050][T17936] bond0 (unregistering): (slave team0): Releasing backup interface
[  398.889468][T17936] bond0 (unregistering): (slave dummy0): Releasing backup interface
[  398.895362][T17936] bond0 (unregistering): Released all slaves
[  399.742668][ T7923] usb 8-1: new high-speed USB device number 12 using dummy_hcd
[  399.894649][ T7923] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  399.897990][ T7923] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  399.901108][ T7923] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  399.905530][ T7923] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  399.908470][ T7923] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  399.913187][ T7923] usb 8-1: config 0 descriptor??
[  400.190878][T17950] netlink: 228 bytes leftover after parsing attributes in process `syz.2.5043'.
[  400.248092][T17954] overlayfs: failed to clone upperpath
[  400.326676][ T7923] plantronics 0003:047F:FFFF.000B: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.7-1/input0
[  400.415053][T17967] netdevsim netdevsim2 netdevsim0: entered promiscuous mode
[  400.418410][T17967] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  400.430211][T17967] 8021q: adding VLAN 0 to HW filter on device macvlan3
[  400.552176][T17971] netlink: 64 bytes leftover after parsing attributes in process `syz.2.5053'.
[  402.069589][T17994] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5064'.
[  402.317940][ T7923] usb 8-1: USB disconnect, device number 12
[  403.000594][T18024] loop7: detected capacity change from 0 to 512
[  403.023276][T18024] EXT4-fs error (device loop7): ext4_orphan_get:1391: inode #15: comm syz.7.5077: inode has both inline data and extents flags
[  403.030531][T18024] EXT4-fs error (device loop7): ext4_orphan_get:1396: comm syz.7.5077: couldn't read orphan inode 15 (err -117)
[  403.039428][T18024] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  403.085195][T16130] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  403.717008][T18046] netlink: 104 bytes leftover after parsing attributes in process `syz.2.5086'.
[  404.370672][T18060] tmpfs: Bad value for 'mpol'
[  405.364691][T18079] netlink: 1 bytes leftover after parsing attributes in process `syz.7.5101'.
[  405.408660][T18081] netlink: 'syz.7.5102': attribute type 3 has an invalid length.
[  406.413375][T18115] tipc: Failed to remove unknown binding: 66,0,0/0:1681459325/1681459326
[  406.416307][T18115] tipc: Failed to remove unknown binding: 66,0,0/0:1681459325/1681459326
[  407.389693][T18139] loop7: detected capacity change from 0 to 4096
[  407.436457][T18139] ntfs3(loop7): ino=1f, mi_enum_attr
[  407.441446][T18139] ntfs3(loop7): Mark volume as dirty due to NTFS errors
[  407.459540][T18139] ntfs3(loop7): ino=1f, mi_enum_attr
[  407.828290][   T34] kauditd_printk_skb: 241 callbacks suppressed
[  407.828305][   T34] audit: type=1326 audit(2000000328.898:484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18161 comm="syz.2.5137" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f87d979acb9 code=0x0
[  407.906660][T18164] loop7: detected capacity change from 0 to 4096
[  407.914422][T18164] ntfs3(loop7): Different NTFS sector size (1024) and media sector size (512).
[  407.916250][T18166] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  407.932934][T18164] ntfs3(loop7): Mark volume as dirty due to NTFS errors
[  407.938478][T18164] ntfs3(loop7): Failed to load $MFTMirr (-22).
[  408.192850][T18176] loop7: detected capacity change from 0 to 32768
[  408.214224][T18176] ocfs2: Mounting device (7,7) on (node local, slot 0) with ordered data mode.
[  408.222060][T18186] netlink: 92 bytes leftover after parsing attributes in process `syz.2.5148'.
[  408.272063][T16130] ocfs2: Unmounting device (7,7) on (node local)
[  408.490759][T18194] loop7: detected capacity change from 0 to 4096
[  408.504391][T18194] ntfs3(loop7): Failed to initialize $Extend/$Reparse.
[  408.585221][T18198] loop7: detected capacity change from 0 to 16
[  408.588403][T18198] erofs (device loop7): mounted with root inode @ nid 36.
[  408.657558][T18200] loop7: detected capacity change from 0 to 512
[  408.661594][T18200] EXT4-fs: Ignoring removed i_version option
[  408.665933][T18200] EXT4-fs: Ignoring removed oldalloc option
[  408.669198][T18200] EXT4-fs (loop7): Test dummy encryption mode enabled
[  408.686484][T18200] EXT4-fs (loop7): 1 truncate cleaned up
[  408.690146][T18200] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  408.724034][T16130] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  408.784344][T18204] loop7: detected capacity change from 0 to 1024
[  408.787809][T18204] EXT4-fs: Ignoring removed orlov option
[  408.790273][T18204] EXT4-fs: Ignoring removed bh option
[  408.822277][T18204] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  409.269114][T18210] A link change request failed with some changes committed already. Interface dummy0 may have been left with an inconsistent configuration, please check.
[  409.298787][T18212] tc_dump_action: action bad kind
[  409.409518][T18217] netlink: 'syz.2.5160': attribute type 29 has an invalid length.
[  409.414045][T18217] netlink: 'syz.2.5160': attribute type 29 has an invalid length.
[  409.419115][T18217] netlink: 500 bytes leftover after parsing attributes in process `syz.2.5160'.
[  409.452194][T18220] netlink: 'syz.2.5161': attribute type 10 has an invalid length.
[  409.584021][   T34] audit: type=1804 audit(2000000330.648:485): pid=18230 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.5166" name="file0" dev="tmpfs" ino=9799 res=1 errno=0
[  409.707050][T16130] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  409.725856][T18232] x_tables: ip6_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[  409.807468][T18240] netlink: 16 bytes leftover after parsing attributes in process `syz.2.5170'.
[  410.320061][T18275] tipc: Started in network mode
[  410.321706][T18275] tipc: Node identity 4, cluster identity 4711
[  410.324404][T18275] tipc: Node number set to 4
[  410.452432][   T55] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  410.456245][   T34] audit: type=1107 audit(2000000331.528:486): pid=18283 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  410.465257][   T55] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  410.499330][   T55] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  410.505294][   T55] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  410.508150][   T55] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  410.625933][T18282] chnl_net:caif_netlink_parms(): no params data found
[  410.670973][T18282] bridge0: port 1(bridge_slave_0) entered blocking state
[  410.673793][T18282] bridge0: port 1(bridge_slave_0) entered disabled state
[  410.676083][T18282] bridge_slave_0: entered allmulticast mode
[  410.678589][T18282] bridge_slave_0: entered promiscuous mode
[  410.681788][T18282] bridge0: port 2(bridge_slave_1) entered blocking state
[  410.684457][T18282] bridge0: port 2(bridge_slave_1) entered disabled state
[  410.686832][T18282] bridge_slave_1: entered allmulticast mode
[  410.689499][T18282] bridge_slave_1: entered promiscuous mode
[  410.705638][T18282] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  410.710091][T18282] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  410.733565][T18282] team0: Port device team_slave_0 added
[  410.736553][T18282] team0: Port device team_slave_1 added
[  410.750246][T18282] batman_adv: batadv0: Adding interface: batadv_slave_0
[  410.753426][T18282] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  410.761154][T18282] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  410.765592][T18282] batman_adv: batadv0: Adding interface: batadv_slave_1
[  410.767771][T18282] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  410.777053][T18282] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  410.801355][T18282] hsr_slave_0: entered promiscuous mode
[  410.803921][T18282] hsr_slave_1: entered promiscuous mode
[  410.806237][T18282] debugfs: 'hsr0' already exists in 'hsr'
[  410.808027][T18282] Cannot create hsr debugfs directory
[  410.923177][T18282] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  410.928314][T18282] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  410.932387][T18282] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  410.936935][T18282] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  410.955171][T18282] bridge0: port 2(bridge_slave_1) entered blocking state
[  410.957728][T18282] bridge0: port 2(bridge_slave_1) entered forwarding state
[  410.960729][T18282] bridge0: port 1(bridge_slave_0) entered blocking state
[  410.963494][T18282] bridge0: port 1(bridge_slave_0) entered forwarding state
[  410.992160][T18282] 8021q: adding VLAN 0 to HW filter on device bond0
[  411.002465][ T3001] bridge0: port 1(bridge_slave_0) entered disabled state
[  411.006309][ T3001] bridge0: port 2(bridge_slave_1) entered disabled state
[  411.018343][T18282] 8021q: adding VLAN 0 to HW filter on device team0
[  411.029202][ T3001] bridge0: port 1(bridge_slave_0) entered blocking state
[  411.031933][ T3001] bridge0: port 1(bridge_slave_0) entered forwarding state
[  411.038563][ T3001] bridge0: port 2(bridge_slave_1) entered blocking state
[  411.040832][ T3001] bridge0: port 2(bridge_slave_1) entered forwarding state
[  411.163837][T18282] 8021q: adding VLAN 0 to HW filter on device batadv0
[  411.206933][T18317] loop7: detected capacity change from 0 to 4096
[  411.229963][T18321] NILFS (loop7): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  411.301935][T18282] veth0_vlan: entered promiscuous mode
[  411.310382][T18282] veth1_vlan: entered promiscuous mode
[  411.340085][T18282] veth0_macvtap: entered promiscuous mode
[  411.348402][T18282] veth1_macvtap: entered promiscuous mode
[  411.366225][T18282] batman_adv: batadv0: Interface activated: batadv_slave_0
[  411.376700][T18282] batman_adv: batadv0: Interface activated: batadv_slave_1
[  411.387162][   T12] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  411.390516][   T12] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  411.396943][T18327] netlink: 20 bytes leftover after parsing attributes in process `syz.2.5200'.
[  411.405038][   T12] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  411.408570][   T12] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  411.489425][T18218] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  411.496170][T18218] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  411.507936][ T3001] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  411.510868][ T3001] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  411.560889][T18337] loop8: detected capacity change from 0 to 256
[  411.568582][   T10] usb 8-1: new high-speed USB device number 13 using dummy_hcd
[  411.712735][   T10] usb 8-1: Using ep0 maxpacket: 32
[  411.718591][   T10] usb 8-1: config 0 interface 0 has no altsetting 0
[  411.723346][   T10] usb 8-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e
[  411.726616][   T10] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  411.729169][   T10] usb 8-1: Product: syz
[  411.730746][   T10] usb 8-1: Manufacturer: syz
[  411.732320][   T10] usb 8-1: SerialNumber: syz
[  411.735790][   T10] usb 8-1: config 0 descriptor??
[  411.815036][T18347] bridge0: port 3(batadv0) entered blocking state
[  411.817668][T18347] bridge0: port 3(batadv0) entered disabled state
[  411.819964][T18347] batadv0: entered allmulticast mode
[  411.825425][T18347] batadv0: entered promiscuous mode
[  411.827542][T18347] bridge0: port 3(batadv0) entered blocking state
[  411.829901][T18347] bridge0: port 3(batadv0) entered forwarding state
[  411.838726][T18347] batadv0: left allmulticast mode
[  411.840378][T18347] batadv0: left promiscuous mode
[  411.844426][T18347] bridge0: port 3(batadv0) entered disabled state
[  412.146705][   T10] gs_usb 8-1:0.0: Configuring for 1 interfaces
[  412.550291][   T10] gs_usb 8-1:0.0: Disabling termination support for channel 0 (-EPROTO)
[  412.561271][   T10] gs_usb 8-1:0.0: Couldn't get extended bit timing const for channel 0 (-EPROTO)
[  412.567193][   T10] gs_usb 8-1:0.0: probe with driver gs_usb failed with error -71
[  412.575127][   T10] usb 8-1: USB disconnect, device number 13
[  412.583470][   T55] Bluetooth: hci4: command tx timeout
[  413.554960][T18401] loop7: detected capacity change from 0 to 512
[  413.562053][T18401] EXT4-fs (loop7): feature flags set on rev 0 fs, running e2fsck is recommended
[  413.598793][T18401] EXT4-fs error (device loop7): ext4_mb_mark_diskspace_used:4215: comm syz.7.5232: Allocating blocks 41-42 which overlap fs metadata
[  413.609571][T18401] EXT4-fs (loop7): Remounting filesystem read-only
[  413.612000][T18401] Quota error (device loop7): write_blk: dquota write failed
[  413.614867][T18401] Quota error (device loop7): find_free_dqentry: Can't write quota data block 5
[  413.618158][T18401] Quota error (device loop7): write_blk: dquota write failed
[  413.620626][T18401] Quota error (device loop7): qtree_write_dquot: Error -117 occurred while creating quota
[  413.624355][T18401] EXT4-fs (loop7): 1 truncate cleaned up
[  413.626924][T18401] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  413.652648][T16130] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  413.692645][  T911] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[  413.875591][  T911] usb 9-1: config 36 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  413.880035][  T911] usb 9-1: config 36 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  413.890391][  T911] usb 9-1: New USB device found, idVendor=6993, idProduct=b001, bcdDevice=26.29
[  413.895503][  T911] usb 9-1: New USB device strings: Mfr=244, Product=0, SerialNumber=16
[  413.898847][  T911] usb 9-1: Manufacturer: syz
[  413.900453][  T911] usb 9-1: SerialNumber: syz
[  413.921334][T18416] dvmrp6: entered allmulticast mode
[  414.127907][  T911] usbhid 9-1:36.0: couldn't find an input interrupt endpoint
[  414.136552][  T911] usb 9-1: USB disconnect, device number 2
[  414.188648][T18437] overlayfs: failed to resolve './file0': -2
[  414.674936][   T55] Bluetooth: hci4: command tx timeout
[  414.860313][T18459] loop8: detected capacity change from 0 to 32768
[  414.897040][T18464] IPVS: length: 153 != 24
[  414.925138][T18459] XFS (loop8): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  414.961668][T18459] XFS (loop8): Ending clean mount
[  414.970987][T18459] XFS (loop8): Quotacheck needed: Please wait.
[  415.020493][T18459] XFS (loop8): Quotacheck: Done.
[  415.053664][T18282] XFS (loop8): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  415.162965][   T24] usb 8-1: new high-speed USB device number 14 using dummy_hcd
[  415.337639][   T24] usb 8-1: New USB device found, idVendor=0813, idProduct=0001, bcdDevice=3a.08
[  415.343548][   T24] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  415.351078][   T24] usb 8-1: config 0 descriptor??
[  415.355175][   T24] gspca_main: cpia1-2.14.0 probing 0813:0001
[  415.626359][T18498] loop8: detected capacity change from 0 to 32768
[  415.758156][   T24] cpia1 8-1:0.0: unexpected state after lo power cmd: 00
[  415.961255][   T24] gspca_cpia1: usb_control_msg 01, error -32
[  415.965286][   T24] gspca_cpia1: usb_control_msg 01, error -71
[  415.968173][   T24] cpia1 8-1:0.0: only firmware version 1 is supported (got: 0)
[  415.971988][   T24] usb 8-1: USB disconnect, device number 14
[  416.333935][T18506] netlink: 20 bytes leftover after parsing attributes in process `syz.2.5275'.
[  416.627085][T18512] overlayfs: failed to clone upperpath
[  416.760152][   T55] Bluetooth: hci4: command tx timeout
[  416.892100][T18511] loop7: detected capacity change from 0 to 40427
[  416.900944][T18511] F2FS-fs (loop7): build fault injection rate: 25
[  416.906407][T18511] F2FS-fs (loop7): build fault injection type: 0x7698c
[  416.916673][T18511] F2FS-fs (loop7): invalid crc value
[  416.924663][T18511] F2FS-fs (loop7): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_ra_meta_pages+0x20f/0xa00
[  416.936078][T18514] loop8: detected capacity change from 0 to 32768
[  416.937370][T18511] F2FS-fs (loop7): inject page alloc in f2fs_grab_cache_folio of f2fs_ra_meta_pages+0x659/0xa00
[  416.951119][T18514] XFS (loop8): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  416.977867][T18514] XFS (loop8): Ending clean mount
[  417.009599][T18511] F2FS-fs (loop7): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  417.014600][T18511] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[  417.033143][T18511] F2FS-fs (loop7): inject dquot initialize in f2fs_dquot_initialize of f2fs_new_inode+0x525/0xff0
[  417.039028][T18282] XFS (loop8): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  417.065228][T16130] F2FS-fs (loop7): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_submit_page_write+0x591/0x2190
[  417.080082][T16130] F2FS-fs (loop7): invalid blkaddr: 4102, type: 7, run fsck to fix.
[  417.090223][T16130] F2FS-fs (loop7): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_submit_page_write+0x4fb/0x2190
[  417.100448][T16130] F2FS-fs (loop7): invalid blkaddr: 514, type: 10, run fsck to fix.
[  417.148527][T16130] F2FS-fs (loop7): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_submit_page_write+0x4fb/0x2190
[  417.166619][T16130] F2FS-fs (loop7): invalid blkaddr: 512, type: 10, run fsck to fix.
[  417.243028][T18527] TCP: tcp_parse_options: Illegal window scaling value 150 > 14 received
[  417.644151][T18541] IPv6: addrconf: prefix option has invalid lifetime
[  417.826502][T18547] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5288'.
[  417.833163][T18547] netlink: 12 bytes leftover after parsing attributes in process `syz.7.5288'.
[  417.842877][T18547] netlink: 4 bytes leftover after parsing attributes in process `syz.7.5288'.
[  417.855675][   T12] netdevsim netdevsim7 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  417.862389][T18547] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5288'.
[  417.866555][   T12] netdevsim netdevsim7 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  417.869793][T18547] netlink: 12 bytes leftover after parsing attributes in process `syz.7.5288'.
[  417.872481][T18547] netlink: 4 bytes leftover after parsing attributes in process `syz.7.5288'.
[  417.879555][   T12] netdevsim netdevsim7 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  417.885661][   T12] netdevsim netdevsim7 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  418.070810][T18553] loop7: detected capacity change from 0 to 256
[  418.073159][T18553] exfat: Deprecated parameter 'utf8'
[  418.082658][T18553] exfat: Bad value for 'umask'
[  418.542917][T18557] netlink: 20 bytes leftover after parsing attributes in process `syz.2.5292'.
[  418.698621][T18559] netlink: 64 bytes leftover after parsing attributes in process `syz.8.5293'.
[  418.823528][   T55] Bluetooth: hci4: command tx timeout
[  418.860987][T18563] loop8: detected capacity change from 0 to 40427
[  418.865123][T18563] F2FS-fs (loop8): invalid crc value
[  418.896683][T18563] F2FS-fs (loop8): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  418.900204][T18563] F2FS-fs (loop8): Start checkpoint disabled!
[  418.908172][T18563] F2FS-fs (loop8): f2fs_disable_checkpoint() finish, err:0
[  418.910971][T18563] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e6
[  419.525121][T18563] syz.8.5295: attempt to access beyond end of device
[  419.525121][T18563] loop8: rw=2049, sector=53248, nr_sectors = 8 limit=40427
[  419.538949][T18563] CPU: 1 UID: 0 PID: 18563 Comm: syz.8.5295 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  419.538973][T18563] Tainted: [L]=SOFTLOCKUP
[  419.538978][T18563] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  419.538985][T18563] Call Trace:
[  419.538991][T18563]  <TASK>
[  419.538998][T18563]  dump_stack_lvl+0xe8/0x150
[  419.539022][T18563]  f2fs_handle_critical_error+0x37c/0x540
[  419.539045][T18563]  f2fs_write_end_io+0x886/0xb60
[  419.539077][T18563]  __submit_merged_bio+0x256/0x650
[  419.539098][T18563]  f2fs_submit_page_write+0x206a/0x2190
[  419.539137][T18563]  do_write_page+0x40f/0xac0
[  419.539153][T18563]  ? f2fs_encrypt_one_page+0xaf/0x930
[  419.539172][T18563]  f2fs_outplace_write_data+0x11a/0x220
[  419.539189][T18563]  f2fs_do_write_data_page+0x118b/0x16e0
[  419.539219][T18563]  ? f2fs_write_single_data_page+0xa7b/0x16d0
[  419.539240][T18563]  ? __pfx_f2fs_do_write_data_page+0x10/0x10
[  419.539264][T18563]  ? __lock_acquire+0x6b5/0x2cf0
[  419.539284][T18563]  f2fs_write_single_data_page+0xa7b/0x16d0
[  419.539313][T18563]  ? __pfx_f2fs_write_single_data_page+0x10/0x10
[  419.539343][T18563]  ? folio_clear_dirty_for_io+0x573/0x710
[  419.539361][T18563]  ? folio_clear_dirty_for_io+0x1d4/0x710
[  419.539381][T18563]  f2fs_write_data_pages+0x1ac1/0x3360
[  419.539422][T18563]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  419.539450][T18563]  ? kernel_text_address+0xa5/0xe0
[  419.539488][T18563]  ? __lock_acquire+0x6b5/0x2cf0
[  419.539518][T18563]  ? __lock_acquire+0x6b5/0x2cf0
[  419.539552][T18563]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  419.539571][T18563]  do_writepages+0x32e/0x550
[  419.539595][T18563]  ? do_raw_spin_unlock+0x4d/0x210
[  419.539616][T18563]  filemap_write_and_wait_range+0x335/0x3f0
[  419.539638][T18563]  ? __pfx_filemap_write_and_wait_range+0x10/0x10
[  419.539681][T18563]  ? down_write+0x16d/0x200
[  419.539697][T18563]  ? __pfx_down_write+0x10/0x10
[  419.539711][T18563]  ? up_write+0x1ab/0x410
[  419.539757][T18563]  f2fs_insert_range+0x433/0x490
[  419.539782][T18563]  f2fs_fallocate+0x58a/0x970
[  419.539802][T18563]  vfs_fallocate+0x669/0x7e0
[  419.539817][T18563]  ? __fget_files+0x2a/0x420
[  419.539838][T18563]  ? __pfx_vfs_fallocate+0x10/0x10
[  419.539852][T18563]  ? __fget_files+0x2a/0x420
[  419.539875][T18563]  __x64_sys_fallocate+0xc0/0x110
[  419.539894][T18563]  do_syscall_64+0xe2/0xf80
[  419.539905][T18563]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  419.539918][T18563]  ? trace_irq_disable+0x37/0x100
[  419.539939][T18563]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  419.539951][T18563] RIP: 0033:0x7f7a34b9acb9
[  419.539984][T18563] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  419.539994][T18563] RSP: 002b:00007f7a35a56028 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
[  419.540009][T18563] RAX: ffffffffffffffda RBX: 00007f7a34e15fa0 RCX: 00007f7a34b9acb9
[  419.540018][T18563] RDX: 0000000000004000 RSI: 0000000000000020 RDI: 0000000000000005
[  419.540026][T18563] RBP: 00007f7a34c08bf7 R08: 0000000000000000 R09: 0000000000000000
[  419.540035][T18563] R10: 0000000003000000 R11: 0000000000000246 R12: 0000000000000000
[  419.540042][T18563] R13: 00007f7a34e16038 R14: 00007f7a34e15fa0 R15: 00007fffe35bae28
[  419.540065][T18563]  </TASK>
[  419.540184][T18563] F2FS-fs (loop8): Stopped filesystem due to reason: 3
[  420.031422][T18581] netlink: 32 bytes leftover after parsing attributes in process `syz.8.5302'.
[  420.379488][T18603] loop8: detected capacity change from 0 to 256
[  420.386237][T18603] exFAT-fs (loop8): failed to load upcase table (idx : 0x00010000, chksum : 0x544194fd, utbl_chksum : 0xe619d30d)
[  420.466041][T18609] netlink: 32 bytes leftover after parsing attributes in process `syz.7.5316'.
[  420.469087][T18611] tmpfs: Bad value for 'mpol'
[  420.897461][T18638] loop8: detected capacity change from 0 to 128
[  420.922768][T18638] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  420.926949][T18638] hpfs: filesystem error: improperly stopped
[  420.928961][T18638] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  420.931570][T18638] hpfs: You really don't want any checks? You are crazy...
[  420.938675][T18640] binder: 18639:18640 ioctl c0306201 200000000180 returned -14
[  420.941544][T18638] hpfs: hpfs_map_sector(): read error
[  420.953298][T18638] hpfs: code page support is disabled
[  420.955693][T18638] hpfs: hpfs_map_4sectors(): unaligned read
[  420.972392][T18638] hpfs: hpfs_map_4sectors(): unaligned read
[  420.978298][T18638] hpfs: filesystem error: unable to find root dir
[  421.370172][T18656] loop7: detected capacity change from 0 to 32768
[  421.378532][T18656] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop7 (7:7) scanned by syz.7.5337 (18656)
[  421.404562][T18656] BTRFS info (device loop7): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  421.408506][T18656] BTRFS info (device loop7): using crc32c (crc32c-lib) checksum algorithm
[  421.412065][T18656] BTRFS warning (device loop7): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  421.781189][T18656] BTRFS info (device loop7): rebuilding free space tree
[  421.800116][T18656] BTRFS info (device loop7): disabling free space tree
[  421.802577][T18656] BTRFS info (device loop7): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  421.805617][T18656] BTRFS info (device loop7): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  421.813690][T18656] BTRFS info (device loop7): enabling ssd optimizations
[  421.816181][T18656] BTRFS info (device loop7): turning on async discard
[  421.818520][T18656] BTRFS info (device loop7): enabling disk space caching
[  421.821036][T18656] BTRFS info (device loop7): force clearing of disk cache
[  421.824048][T18656] BTRFS info (device loop7): use zstd compression, level 3
[  422.444493][T16130] BTRFS info (device loop7): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  423.531251][T18719] loop7: detected capacity change from 0 to 1024
[  423.559854][T18719] hfsplus: inconsistency in B*Tree (-1,0,1,1,0)
[  423.583862][T18719] hfsplus: failed to load root directory
[  424.851605][T18778] netlink: 'syz.8.5384': attribute type 11 has an invalid length.
[  424.888605][T18781] loop7: detected capacity change from 0 to 128
[  424.891481][T18782] loop8: detected capacity change from 0 to 256
[  424.914969][T18782] FAT-fs (loop8): Directory bread(block 1285) failed
[  424.931234][T18782] FAT-fs (loop8): FAT read failed (blocknr 1281)
[  424.931294][   T34] audit: type=1800 audit(2000000345.998:487): pid=18781 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.5385" name="bus" dev="loop7" ino=1048718 res=0 errno=0
[  424.964990][T18781] syz.7.5385: attempt to access beyond end of device
[  424.964990][T18781] loop7: rw=2049, sector=138, nr_sectors = 2 limit=128
[  425.299293][T18801] loop7: detected capacity change from 0 to 512
[  425.321386][T18801] FAT-fs (loop7): Directory bread(block 199916) failed
[  425.333470][T18801] FAT-fs (loop7): Directory bread(block 199917) failed
[  425.335746][T18801] FAT-fs (loop7): Directory bread(block 199918) failed
[  425.337895][T18801] FAT-fs (loop7): Directory bread(block 199919) failed
[  425.340014][T18801] FAT-fs (loop7): Directory bread(block 199920) failed
[  425.342107][T18801] FAT-fs (loop7): Directory bread(block 199921) failed
[  425.353446][T18801] FAT-fs (loop7): Directory bread(block 199922) failed
[  425.355641][T18801] FAT-fs (loop7): Directory bread(block 199923) failed
[  425.370488][T18801] FAT-fs (loop7): Directory bread(block 199916) failed
[  425.373717][T18801] FAT-fs (loop7): Directory bread(block 199917) failed
[  425.465289][T18811] __nla_validate_parse: 3 callbacks suppressed
[  425.465301][T18811] netlink: 40 bytes leftover after parsing attributes in process `syz.2.5399'.
[  427.357355][T18892] x_tables: unsorted entry at hook 3
[  427.532587][  T911] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[  427.685153][  T911] usb 9-1: config 0 has an invalid interface number: 238 but max is 0
[  427.688489][  T911] usb 9-1: config 0 has no interface number 0
[  427.691023][  T911] usb 9-1: config 0 interface 238 altsetting 0 endpoint 0x4 has invalid wMaxPacketSize 0
[  427.695723][  T911] usb 9-1: config 0 interface 238 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 0
[  427.699559][  T911] usb 9-1: config 0 interface 238 altsetting 0 bulk endpoint 0x88 has invalid maxpacket 128
[  427.713143][  T911] usb 9-1: New USB device found, idVendor=3923, idProduct=718a, bcdDevice=f6.6a
[  427.724135][  T911] usb 9-1: New USB device strings: Mfr=181, Product=147, SerialNumber=160
[  427.728987][  T911] usb 9-1: Product: syz
[  427.730700][  T911] usb 9-1: Manufacturer: syz
[  427.742937][  T911] usb 9-1: SerialNumber: syz
[  427.753813][  T911] usb 9-1: config 0 descriptor??
[  427.756497][T18888] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22
[  427.761758][T18916] loop7: detected capacity change from 0 to 4096
[  427.769977][  T911] ni6501 9-1:0.238: driver 'ni6501' failed to auto-configure device.
[  427.962088][  T784] usb 9-1: USB disconnect, device number 3
[  428.120360][T18925] netlink: 4 bytes leftover after parsing attributes in process `syz.7.5450'.
[  428.124964][T18925] netlink: 'syz.7.5450': attribute type 15 has an invalid length.
[  428.128462][T18925] netlink: 'syz.7.5450': attribute type 18 has an invalid length.
[  428.269535][T18935] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5455'.
[  428.624076][T18963] loop8: detected capacity change from 0 to 512
[  428.815736][T18972] ip6gre0: Caught tx_queue_len zero misconfig
[  429.039519][T18989] vhci_hcd vhci_hcd.0: pdev(7) rhport(0) sockfd(4)
[  429.041494][T18989] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  429.045249][T18989] vhci_hcd vhci_hcd.0: Device attached
[  429.049735][T18990] vhci_hcd: connection closed
[  429.049906][ T5979] vhci_hcd vhci_hcd.7: stop threads
[  429.053802][ T5979] vhci_hcd vhci_hcd.7: release socket
[  429.055451][ T5979] vhci_hcd vhci_hcd.7: disconnect device
[  430.332112][T19023] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5493'.
[  430.912673][  T911] usb 8-1: new high-speed USB device number 15 using dummy_hcd
[  431.065698][  T911] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 129, changing to 11
[  431.070351][  T911] usb 8-1: New USB device found, idVendor=07b5, idProduct=0312, bcdDevice= 0.00
[  431.075816][  T911] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  431.082054][  T911] usb 8-1: config 0 descriptor??
[  431.496827][  T911] megaworld 0003:07B5:0312.000C: unbalanced collection at end of report description
[  431.501313][  T911] megaworld 0003:07B5:0312.000C: parse failed
[  431.505359][  T911] megaworld 0003:07B5:0312.000C: probe with driver megaworld failed with error -22
[  431.702270][ T6013] usb 8-1: USB disconnect, device number 15
[  431.807028][T19056] netlink: del zone limit has 8 unknown bytes
[  431.810524][T19056] netlink: 68 bytes leftover after parsing attributes in process `syz.8.5508'.
[  433.075798][T19087] loop7: detected capacity change from 0 to 16
[  433.085095][T19087] erofs (device loop7): mounted with root inode @ nid 36.
[  433.104127][T19084] loop8: detected capacity change from 0 to 4096
[  433.320230][T19099] loop7: detected capacity change from 0 to 2048
[  433.325979][T19099] NILFS (loop7): broken superblock, retrying with spare superblock (blocksize = 1024)
[  433.329639][T16131] udevd[16131]: incorrect nilfs2 checksum on /dev/loop7
[  433.335311][T19099] NILFS (loop7): mounting unchecked fs
[  433.343923][T16131] udevd[16131]: incorrect nilfs2 checksum on /dev/loop7
[  433.351455][T19099] NILFS (loop7): recovery complete
[  433.364711][T19102] NILFS (loop7): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  433.575198][T19110] 9pnet: p9_errstr2errno: server reported unknown error 
[  433.962991][  T784] usb 8-1: new high-speed USB device number 16 using dummy_hcd
[  434.114275][  T784] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  434.124638][  T784] usb 8-1: New USB device found, idVendor=1e7d, idProduct=2ced, bcdDevice= 0.00
[  434.129883][  T784] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  434.135676][  T784] usb 8-1: config 0 descriptor??
[  434.404366][T19143] overlayfs: overlapping lowerdir path
[  434.643721][  T784] kone 0003:1E7D:2CED.000D: item fetching failed at offset 3/5
[  434.656935][  T784] kone 0003:1E7D:2CED.000D: parse failed
[  434.664913][  T784] kone 0003:1E7D:2CED.000D: probe with driver kone failed with error -22
[  436.149132][ T6013] usb 8-1: USB disconnect, device number 16
[  436.258944][T19166] loop8: detected capacity change from 0 to 512
[  436.263251][T19166] EXT4-fs: Ignoring removed nomblk_io_submit option
[  436.266012][T19166] EXT4-fs: inline encryption not supported
[  436.269211][T19166] EXT4-fs (loop8): blocks per group (95) and clusters per group (32768) inconsistent
[  436.300027][T19166] netlink: 20 bytes leftover after parsing attributes in process `syz.8.5556'.
[  436.632669][  T911] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[  436.792868][  T911] usb 9-1: Using ep0 maxpacket: 8
[  436.804215][  T911] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  436.808367][  T911] usb 9-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xBE, changing to 0x8E
[  436.812266][  T911] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x8E has an invalid bInterval 0, changing to 7
[  436.816122][  T911] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0
[  436.819130][  T911] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  436.829971][  T911] usb 9-1: New USB device found, idVendor=10c5, idProduct=819a, bcdDevice=e4.46
[  436.834832][  T911] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=35
[  436.838163][  T911] usb 9-1: Product: syz
[  436.839815][  T911] usb 9-1: Manufacturer: syz
[  436.841648][  T911] usb 9-1: SerialNumber: syz
[  436.869091][  T911] usb 9-1: config 0 descriptor??
[  437.221183][  T911] radio-si470x 9-1:0.0: DeviceID=0x0000 ChipID=0x0000
[  437.223397][  T911] radio-si470x 9-1:0.0: This driver is known to work with firmware version 12, but the device has firmware version 0.
[  437.238010][T19190] netlink: 21 bytes leftover after parsing attributes in process `syz.2.5566'.
[  437.242170][T19190] gretap0: entered promiscuous mode
[  437.285731][T19192] tmpfs: Bad value for 'grpquota_inode_hardlimit'
[  437.307986][  T911] radio-si470x 9-1:0.0: software version 0, hardware version 0
[  437.310361][  T911] radio-si470x 9-1:0.0: This driver is known to work with hardware version 1, but the device has hardware version 0.
[  437.314777][  T911] radio-si470x 9-1:0.0: If you have some trouble using this driver, please report to V4L ML at linux-media@vger.kernel.org
[  437.542605][  T911] radio-si470x 9-1:0.0: si470x_set_report: usb_control_msg returned -71
[  437.549116][  T911] radio-si470x 9-1:0.0: submitting int urb failed (-90)
[  437.552187][  T911] radio-si470x 9-1:0.0: si470x_set_report: usb_control_msg returned -71
[  437.557310][  T911] radio-si470x 9-1:0.0: probe with driver radio-si470x failed with error -22
[  437.564736][  T911] usb 9-1: USB disconnect, device number 4
[  437.855667][T19202] dns_resolver: Unsupported server list version (0)
[  437.892951][T19204] loop7: detected capacity change from 0 to 16
[  437.897116][T19204] erofs (device loop7): mounted with root inode @ nid 36.
[  437.910194][T19204] VFS: Lookup of '$' in erofs loop7 would have caused loop
[  438.328656][T19208] loop8: detected capacity change from 0 to 32768
[  438.332310][T19208] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop8 (7:8) scanned by syz.8.5574 (19208)
[  438.348781][T19208] BTRFS info (device loop8): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  438.358580][T19208] BTRFS info (device loop8): using sha256 (sha256-lib) checksum algorithm
[  438.505766][T19208] BTRFS info (device loop8): rebuilding free space tree
[  438.528963][T19208] BTRFS info (device loop8): disabling free space tree
[  438.531770][T19208] BTRFS info (device loop8): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  438.542719][T19208] BTRFS info (device loop8): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  438.566284][T19208] BTRFS info (device loop8): turning off barriers
[  438.568901][T19208] BTRFS info (device loop8): force clearing of disk cache
[  438.616584][T19231] loop7: detected capacity change from 0 to 512
[  438.626824][T19231] EXT4-fs: Ignoring removed nobh option
[  438.631444][T19231] EXT4-fs (loop7): orphan cleanup on readonly fs
[  438.641097][T19231] EXT4-fs warning (device loop7): ext4_expand_extra_isize_ea:2858: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  438.648700][T19231] EXT4-fs error (device loop7): ext4_do_update_inode:5616: inode #15: comm syz.7.5578: corrupted inode contents
[  438.663755][T19231] EXT4-fs error (device loop7): ext4_dirty_inode:6501: inode #15: comm syz.7.5578: mark_inode_dirty error
[  438.671612][T19231] EXT4-fs error (device loop7): ext4_do_update_inode:5616: inode #15: comm syz.7.5578: corrupted inode contents
[  438.675812][T19231] EXT4-fs error (device loop7): ext4_xattr_delete_inode:3001: inode #15: comm syz.7.5578: mark_inode_dirty error
[  438.679709][T19231] EXT4-fs error (device loop7): ext4_xattr_delete_inode:3004: inode #15: comm syz.7.5578: mark inode dirty (error -117)
[  438.683778][T19231] EXT4-fs warning (device loop7): ext4_evict_inode:273: xattr delete (err -117)
[  438.685021][T18282] BTRFS info (device loop8): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  438.686566][T19231] EXT4-fs (loop7): 1 orphan inode deleted
[  438.693019][T19231] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  438.793826][T16130] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  439.410643][T19251] loop8: detected capacity change from 0 to 128
[  439.414598][T19251] affs: Invalid blocksize (512, 1024, 2048, 4096 allowed)
[  440.777662][T19276] gtp1: entered promiscuous mode
[  440.787546][T19276] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5596'.
[  440.971496][T19278] loop8: detected capacity change from 0 to 32768
[  441.027465][T19278] XFS (loop8): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  441.065485][T19278] XFS (loop8): Ending clean mount
[  441.099694][T18282] XFS (loop8): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  441.202627][ T6000] usb 8-1: new high-speed USB device number 17 using dummy_hcd
[  441.230566][T19306] netlink: 'syz.2.5607': attribute type 1 has an invalid length.
[  441.274963][T19306] bond7: entered promiscuous mode
[  441.277056][T19306] bond7: entered allmulticast mode
[  441.279388][T19306] 8021q: adding VLAN 0 to HW filter on device bond7
[  441.295868][T19308] erspan2: entered allmulticast mode
[  441.300735][T19308] bond7: (slave erspan2): making interface the new active one
[  441.308080][T19308] erspan2: entered promiscuous mode
[  441.312023][T19308] bond7: (slave erspan2): Enslaving as an active interface with an up link
[  441.340649][T19308] syz.2.5607 (19308) used greatest stack depth: 18456 bytes left
[  441.406128][ T6000] usb 8-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  441.411816][ T6000] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  441.415837][ T6000] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  441.418722][ T6000] usb 8-1: SerialNumber: syz
[  442.124658][ T6000] cdc_ether 8-1:1.0 usb0: register 'cdc_ether' at usb-dummy_hcd.7-1, CDC Ethernet Device, 42:42:42:42:42:42
[  442.512362][  T784] usb 8-1: USB disconnect, device number 17
[  442.523010][  T784] cdc_ether 8-1:1.0 usb0: unregister 'cdc_ether' usb-dummy_hcd.7-1, CDC Ethernet Device
[  443.231989][T19381] overlayfs: failed to resolve './cgroup': -2
[  443.331002][T19385] lo: Caught tx_queue_len zero misconfig
[  443.682273][T19395] vhci_hcd vhci_hcd.0: pdev(8) rhport(0) sockfd(5)
[  443.684735][T19395] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  443.687996][T19395] vhci_hcd vhci_hcd.0: Device attached
[  443.691332][T19395] vhci_hcd vhci_hcd.0: pdev(8) rhport(0) sockfd(7)
[  443.693410][T19395] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  443.699259][T19395] vhci_hcd vhci_hcd.0: Device attached
[  443.705441][T19395] vhci_hcd vhci_hcd.0: pdev(8) rhport(1) sockfd(9)
[  443.707461][T19395] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  443.710093][T19395] vhci_hcd vhci_hcd.0: Device attached
[  443.712988][T19395] vhci_hcd vhci_hcd.0: pdev(8) rhport(2) sockfd(11)
[  443.715044][T19395] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  443.718108][T19395] vhci_hcd vhci_hcd.0: Device attached
[  443.720441][T19395] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  443.725290][T19395] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  443.733831][T19402] vhci_hcd: connection closed
[  443.733863][T19400] vhci_hcd: connection closed
[  443.735638][T19398] vhci_hcd: connection closed
[  443.737420][   T12] vhci_hcd vhci_hcd.8: stop threads
[  443.740670][T19396] vhci_hcd: connection closed
[  443.741818][   T12] vhci_hcd vhci_hcd.8: release socket
[  443.745695][   T12] vhci_hcd vhci_hcd.8: disconnect device
[  443.749527][   T12] vhci_hcd vhci_hcd.8: stop threads
[  443.751257][   T12] vhci_hcd vhci_hcd.8: release socket
[  443.753630][   T12] vhci_hcd vhci_hcd.8: disconnect device
[  443.756009][   T12] vhci_hcd vhci_hcd.8: stop threads
[  443.759277][   T12] vhci_hcd vhci_hcd.8: release socket
[  443.761525][   T12] vhci_hcd vhci_hcd.8: disconnect device
[  443.767236][   T12] vhci_hcd vhci_hcd.8: stop threads
[  443.769408][   T12] vhci_hcd vhci_hcd.8: release socket
[  443.771651][   T12] vhci_hcd vhci_hcd.8: disconnect device
[  444.238416][T19412] __vm_enough_memory: pid: 19412, comm: syz.7.5636, bytes: 21200180731904 not enough memory for the allocation
[  444.843939][ T6013] psmouse serio2: Failed to reset mouse on : -5
[  445.226337][ T1363] ieee802154 phy0 wpan0: encryption failed: -22
[  445.228865][ T1363] ieee802154 phy1 wpan1: encryption failed: -22
[  445.259393][T19441] loop8: detected capacity change from 0 to 512
[  445.283310][T19441] EXT4-fs error (device loop8): ext4_map_blocks:783: inode #2: block 3: comm syz.8.5648: lblock 0 mapped to illegal pblock 3 (length 1)
[  445.296031][T19441] EXT4-fs (loop8): Remounting filesystem read-only
[  445.299183][T19441] EXT4-fs warning (device loop8): dx_probe:791: inode #2: lblock 0: comm syz.8.5648: error -117 reading directory block
[  445.306427][T19441] EXT4-fs (loop8): Cannot turn on journaled quota: type 1: error -117
[  445.310818][T19441] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  445.339658][T18282] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  445.558782][T19453] overlayfs: upper fs does not support file handles, falling back to index=off.
[  446.041988][T19461] netlink: 'syz.2.5656': attribute type 8 has an invalid length.
[  446.164194][T19469] netlink: 32 bytes leftover after parsing attributes in process `syz.2.5660'.
[  446.691548][T19483] loop8: detected capacity change from 0 to 256
[  446.741773][T19483] FAT-fs (loop8): Directory bread(block 64) failed
[  446.744082][T19483] FAT-fs (loop8): Directory bread(block 65) failed
[  446.746510][T19483] FAT-fs (loop8): Directory bread(block 66) failed
[  446.748737][T19483] FAT-fs (loop8): Directory bread(block 67) failed
[  446.750865][T19483] FAT-fs (loop8): Directory bread(block 68) failed
[  446.753095][T19483] FAT-fs (loop8): Directory bread(block 69) failed
[  446.755206][T19483] FAT-fs (loop8): Directory bread(block 70) failed
[  446.757585][T19483] FAT-fs (loop8): Directory bread(block 71) failed
[  446.760099][T19483] FAT-fs (loop8): Directory bread(block 72) failed
[  446.770975][T19483] FAT-fs (loop8): Directory bread(block 73) failed
[  446.784729][T19483] syz.8.5666: attempt to access beyond end of device
[  446.784729][T19483] loop8: rw=8912896, sector=1160, nr_sectors = 4 limit=256
[  446.789814][T19483] syz.8.5666: attempt to access beyond end of device
[  446.789814][T19483] loop8: rw=8388608, sector=1160, nr_sectors = 4 limit=256
[  446.795915][   T34] audit: type=1800 audit(2000000367.868:488): pid=19483 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.8.5666" name="file0" dev="loop8" ino=1048719 res=0 errno=0
[  447.302973][   T55] Bluetooth: hci0: command 0x0406 tx timeout
[  447.334308][T19505] netlink: 12 bytes leftover after parsing attributes in process `syz.8.5677'.
[  447.974135][T19525] netlink: 16 bytes leftover after parsing attributes in process `syz.2.5683'.
[  447.977350][T19525] netlink: 16 bytes leftover after parsing attributes in process `syz.2.5683'.
[  447.984881][T19525] bridge0: the hash_elasticity option has been deprecated and is always 16
[  448.983215][ T6013] misc userio: Buffer overflowed, userio client isn't keeping up
[  449.501355][T19561] delete_channel: no stack
[  449.582641][    T9] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[  449.732755][    T9] usb 9-1: Using ep0 maxpacket: 32
[  449.738492][    T9] usb 9-1: New USB device found, idVendor=1964, idProduct=0001, bcdDevice=d4.15
[  449.741238][    T9] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  449.745090][    T9] usb 9-1: Product: syz
[  449.746408][    T9] usb 9-1: Manufacturer: syz
[  449.747910][    T9] usb 9-1: SerialNumber: syz
[  449.750569][    T9] usb 9-1: config 0 descriptor??
[  449.977411][    T9] RobotFuzz Open Source InterFace, OSIF 9-1:0.0: version d4.15 found at bus 009 address 005
[  450.039745][ T6013] input: PS/2 Generic Mouse as /devices/serio2/input/input13
[  450.278387][ T6013] psmouse serio2: Failed to enable mouse on 
[  450.434269][T19591] loop7: detected capacity change from 0 to 512
[  450.454086][T19591] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  450.458981][T19591] ext4 filesystem being mounted at /379/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  450.503702][T16130] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  450.621391][T19603] IPv6: NLM_F_REPLACE set, but no existing node found!
[  450.664608][   T13] netdevsim netdevsim7 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  450.670919][   T13] netdevsim netdevsim7 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  450.901753][T19616] netlink: 'syz.2.5721': attribute type 4 has an invalid length.
[  451.145650][ T5952] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0
[  451.149270][ T5952] Bluetooth: hci4: Injecting HCI hardware error event
[  451.155452][   T55] Bluetooth: hci4: hardware error 0x00
[  451.302629][T19631] netlink: 4 bytes leftover after parsing attributes in process `syz.7.5728'.
[  451.515428][T19651] xt_CT: You must specify a L4 protocol and not use inversions on it
[  451.672396][T19655] loop7: detected capacity change from 0 to 32768
[  451.676897][T19655] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop7 (7:7) scanned by syz.7.5740 (19655)
[  451.694942][T19655] BTRFS info (device loop7): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  451.698748][T19655] BTRFS info (device loop7): using sha256 (sha256-lib) checksum algorithm
[  451.839242][T19655] BTRFS info (device loop7): enabling ssd optimizations
[  451.841844][T19655] BTRFS info (device loop7): turning on async discard
[  451.850261][T19655] BTRFS info (device loop7): enabling free space tree
[  452.151536][T16130] BTRFS info (device loop7): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  452.360492][T19148] usb 9-1: USB disconnect, device number 5
[  453.222796][   T55] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  456.372168][T19789] trusted_key: encrypted_key: master key parameter is missing
[  456.462034][T19793] loop8: detected capacity change from 0 to 4096
[  456.492783][T19796] NILFS (loop8): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  456.602690][ T6000] usb 8-1: new high-speed USB device number 18 using dummy_hcd
[  456.784123][ T6000] usb 8-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF4, changing to 0x84
[  456.792685][ T6000] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x84 has invalid maxpacket 1023
[  456.796173][ T6000] usb 8-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xBA, changing to 0x8A
[  456.812651][ T6000] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0
[  456.816224][ T6000] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8A has invalid maxpacket 0
[  456.821490][ T6000] usb 8-1: New USB device found, idVendor=2294, idProduct=425b, bcdDevice=a2.10
[  456.832588][ T6000] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  456.835085][ T6000] usb 8-1: Product: syz
[  456.836504][ T6000] usb 8-1: Manufacturer: syz
[  456.837918][ T6000] usb 8-1: SerialNumber: syz
[  456.843088][ T6000] usb 8-1: config 0 descriptor??
[  456.854046][T19785] raw-gadget.0 gadget.7: fail, usb_ep_enable returned -22
[  456.857148][ T6000] usb 8-1: ucan: probing device on interface #0
[  456.859038][ T6000] usb 8-1: ucan: invalid endpoint configuration
[  456.860988][ T6000] usb 8-1: ucan: probe failed; try to update the device firmware
[  456.892690][  T784] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[  457.042587][  T784] usb 9-1: Using ep0 maxpacket: 16
[  457.045731][  T784] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  457.052586][  T784] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  457.059493][  T784] usb 9-1: New USB device found, idVendor=0738, idProduct=1705, bcdDevice= 0.00
[  457.062279][  T784] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  457.079882][  T784] usb 9-1: config 0 descriptor??
[  457.084135][ T6014] usb 8-1: USB disconnect, device number 18
[  457.088602][  T784] usbhid 9-1:0.0: fixing wrong optional hid class descriptors count
[  457.094988][  T784] usbhid 9-1:0.0: can't add hid device: -22
[  457.096904][  T784] usbhid 9-1:0.0: probe with driver usbhid failed with error -22
[  457.290790][ T6014] usb 9-1: USB disconnect, device number 6
[  457.893535][  T784] usb 8-1: new high-speed USB device number 19 using dummy_hcd
[  457.913106][T19827] loop8: detected capacity change from 0 to 4096
[  457.919539][T19827] ntfs3(loop8): Different NTFS sector size (1024) and media sector size (512).
[  457.936228][T19827] ntfs3(loop8): ino=5, mi_enum_attr
[  457.938449][T19827] ntfs3(loop8): Mark volume as dirty due to NTFS errors
[  457.989583][T19829] loop8: detected capacity change from 0 to 64
[  457.994754][T19829] MINIX-fs: bad superblock
[  458.007843][T19829] netlink: 43 bytes leftover after parsing attributes in process `syz.8.5810'.
[  458.045109][  T784] usb 8-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  458.048826][  T784] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  458.054893][  T784] usb 8-1: config 0 descriptor??
[  458.057098][T19831] syz.8.5811: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  458.069979][  T784] cp210x 8-1:0.0: cp210x converter detected
[  458.075682][T19831] CPU: 0 UID: 0 PID: 19831 Comm: syz.8.5811 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  458.075706][T19831] Tainted: [L]=SOFTLOCKUP
[  458.075710][T19831] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  458.075719][T19831] Call Trace:
[  458.075725][T19831]  <TASK>
[  458.075731][T19831]  dump_stack_lvl+0xe8/0x150
[  458.075757][T19831]  warn_alloc+0x249/0x340
[  458.075774][T19831]  ? stack_trace_save+0xa9/0x100
[  458.075796][T19831]  ? __pfx_warn_alloc+0x10/0x10
[  458.075815][T19831]  ? kasan_save_track+0x4f/0x80
[  458.075828][T19831]  ? kasan_save_track+0x3e/0x80
[  458.075840][T19831]  ? __kasan_kmalloc+0x93/0xb0
[  458.075854][T19831]  ? __kmalloc_cache_noprof+0x3d1/0x6e0
[  458.075868][T19831]  ? xskq_create+0x56/0x170
[  458.075885][T19831]  ? xsk_setsockopt+0x54c/0x990
[  458.075899][T19831]  ? do_sock_setsockopt+0x17c/0x1b0
[  458.075912][T19831]  ? __x64_sys_setsockopt+0x13d/0x1b0
[  458.075924][T19831]  ? do_syscall_64+0xe2/0xf80
[  458.075939][T19831]  __vmalloc_node_range_noprof+0x132/0x1730
[  458.075974][T19831]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  458.075993][T19831]  ? __kasan_kmalloc+0x93/0xb0
[  458.076010][T19831]  vmalloc_user_noprof+0xad/0xe0
[  458.076024][T19831]  ? xskq_create+0xbf/0x170
[  458.076041][T19831]  xskq_create+0xbf/0x170
[  458.076060][T19831]  xsk_init_queue+0xad/0x110
[  458.076078][T19831]  xsk_setsockopt+0x54c/0x990
[  458.076096][T19831]  ? __pfx_xsk_setsockopt+0x10/0x10
[  458.076111][T19831]  ? __pfx_aa_sk_perm+0x10/0x10
[  458.076133][T19831]  ? aa_sock_opt_perm+0xff/0x1a0
[  458.076154][T19831]  ? bpf_lsm_socket_setsockopt+0x9/0x20
[  458.076167][T19831]  ? __pfx_xsk_setsockopt+0x10/0x10
[  458.076211][T19831]  do_sock_setsockopt+0x17c/0x1b0
[  458.076229][T19831]  __x64_sys_setsockopt+0x13d/0x1b0
[  458.076246][T19831]  do_syscall_64+0xe2/0xf80
[  458.076258][T19831]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  458.076270][T19831]  ? trace_irq_disable+0x37/0x100
[  458.076291][T19831]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  458.076304][T19831] RIP: 0033:0x7f7a34b9acb9
[  458.076317][T19831] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  458.076329][T19831] RSP: 002b:00007f7a35a56028 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  458.076345][T19831] RAX: ffffffffffffffda RBX: 00007f7a34e15fa0 RCX: 00007f7a34b9acb9
[  458.076353][T19831] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000003
[  458.076361][T19831] RBP: 00007f7a34c08bf7 R08: 0000000000000004 R09: 0000000000000000
[  458.076369][T19831] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[  458.076377][T19831] R13: 00007f7a34e16038 R14: 00007f7a34e15fa0 R15: 00007fffe35bae28
[  458.076398][T19831]  </TASK>
[  458.076403][T19831] Mem-Info:
[  458.179334][T19831] active_anon:29192 inactive_anon:0 isolated_anon:0
[  458.179334][T19831]  active_file:15982 inactive_file:38574 isolated_file:0
[  458.179334][T19831]  unevictable:1768 dirty:163 writeback:0
[  458.179334][T19831]  slab_reclaimable:11733 slab_unreclaimable:93525
[  458.179334][T19831]  mapped:32491 shmem:22722 pagetables:1656
[  458.179334][T19831]  sec_pagetables:0 bounce:0
[  458.179334][T19831]  kernel_misc_reclaimable:0
[  458.179334][T19831]  free:1048219 free_pcp:30729 free_cma:0
[  458.196566][T19831] Node 0 active_anon:62728kB inactive_anon:0kB active_file:36912kB inactive_file:139408kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:85180kB dirty:208kB writeback:0kB shmem:53672kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:8456kB pagetables:2776kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  458.206805][T19831] Node 1 active_anon:54040kB inactive_anon:0kB active_file:27016kB inactive_file:14888kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:44784kB dirty:444kB writeback:0kB shmem:37216kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:5980kB pagetables:3848kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  458.216878][T19831] Node 0 DMA free:15360kB boost:0kB min:240kB low:300kB high:360kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  458.226446][T19831] lowmem_reserve[]: 0 1590 2121 2121 2121
[  458.228343][T19831] Node 0 DMA32 free:1247260kB boost:0kB min:25072kB low:31340kB high:37608kB reserved_highatomic:0KB free_highatomic:0KB active_anon:56320kB inactive_anon:0kB active_file:34564kB inactive_file:3468kB unevictable:0kB writepending:188kB zspages:0kB present:2080636kB managed:1628456kB mlocked:0kB bounce:0kB free_pcp:27432kB local_pcp:19736kB free_cma:0kB
[  458.238689][T19831] lowmem_reserve[]: 0 0 531 531 531
[  458.240378][T19831] Node 0 Normal free:10612kB boost:0kB min:8512kB low:10640kB high:12768kB reserved_highatomic:0KB free_highatomic:0KB active_anon:6408kB inactive_anon:0kB active_file:2348kB inactive_file:135940kB unevictable:3536kB writepending:20kB zspages:0kB present:1572868kB managed:543876kB mlocked:0kB bounce:0kB free_pcp:6372kB local_pcp:3324kB free_cma:0kB
[  458.250798][T19831] lowmem_reserve[]: 0 0 0 0 0
[  458.252335][T19831] Node 1 Normal free:2919644kB boost:0kB min:56280kB low:70348kB high:84416kB reserved_highatomic:0KB free_highatomic:0KB active_anon:54040kB inactive_anon:0kB active_file:27016kB inactive_file:14888kB unevictable:3536kB writepending:444kB zspages:0kB present:3670012kB managed:3594692kB mlocked:0kB bounce:0kB free_pcp:89884kB local_pcp:34808kB free_cma:0kB
[  458.262688][T19831] lowmem_reserve[]: 0 0 0 0 0
[  458.264599][T19831] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  458.269202][T19831] Node 0 DMA32: 307*4kB (UME) 336*8kB (UME) 157*16kB (UME) 232*32kB (UME) 107*64kB (UME) 150*128kB (UME) 76*256kB (UM) 30*512kB (UM) 17*1024kB (M) 4*2048kB (UME) 280*4096kB (UM) = 1247196kB
[  458.276287][T19831] Node 0 Normal: 17*4kB (U) 68*8kB (U) 105*16kB (U) 44*32kB (U) 50*64kB (U) 17*128kB (U) 6*256kB (U) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 10612kB
[  458.281967][T19831] Node 1 Normal: 657*4kB (UME) 479*8kB (UME) 398*16kB (UME) 40*32kB (UE) 163*64kB (UE) 74*128kB (UME) 82*256kB (UME) 47*512kB (UME) 20*1024kB (UME) 13*2048kB (UM) 682*4096kB (UM) = 2919644kB
[  458.289138][T19831] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  458.292846][T19831] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  458.295791][T19831] 77239 total pagecache pages
[  458.297286][T19831] 0 pages in swap cache
[  458.298566][T19831] Free swap  = 124996kB
[  458.299852][T19831] Total swap = 124996kB
[  458.301425][T19831] 1834877 pages RAM
[  458.303324][T19831] 0 pages HighMem/MovableOnly
[  458.305138][T19831] 389281 pages reserved
[  458.306708][T19831] 0 pages cma reserved
[  458.351231][T19833] Device name not specified.
[  458.351231][T19833] 
[  458.470015][  T784] cp210x 8-1:0.0: failed to get vendor val 0x000e size 3: -32
[  458.693659][  T784] usb 8-1: cp210x converter now attached to ttyUSB0
[  458.882420][  T784] usb 8-1: USB disconnect, device number 19
[  458.886488][  T784] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  458.893957][  T784] cp210x 8-1:0.0: device disconnected
[  459.589412][T19889] loop7: detected capacity change from 0 to 16
[  459.612373][T19889] erofs (device loop7): mounted with root inode @ nid 36.
[  459.954062][T19899] loop8: detected capacity change from 0 to 128
[  459.960534][T19899] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  459.971853][T19899] hpfs: filesystem error: improperly stopped
[  459.978375][T19899] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  459.981926][T19899] hpfs: You really don't want any checks? You are crazy...
[  459.985236][T19899] hpfs: hpfs_map_sector(): read error
[  459.986956][T19899] hpfs: code page support is disabled
[  459.988837][T19899] hpfs: hpfs_map_4sectors(): unaligned read
[  459.990873][T19899] hpfs: hpfs_map_4sectors(): unaligned read
[  459.993536][T19899] hpfs: filesystem error: unable to find root dir
[  460.186629][T19901] loop8: detected capacity change from 0 to 40427
[  460.191996][T19901] F2FS-fs (loop8): Invalid log_blocksize (268), supports only 12
[  460.199621][T19901] F2FS-fs (loop8): Can't find valid F2FS filesystem in 1th superblock
[  460.207813][T19901] F2FS-fs (loop8): invalid crc value
[  460.237598][T19901] F2FS-fs (loop8): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  460.283254][T19901] F2FS-fs (loop8): Try to recover 1th superblock, ret: 0
[  460.288597][T19901] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[  460.363800][T19901] F2FS-fs (loop8): Stopped filesystem due to reason: 0
[  460.400077][T19909] netlink: 68 bytes leftover after parsing attributes in process `syz.7.5840'.
[  460.622056][T19916] geneve3: entered promiscuous mode
[  460.631401][T19918] loop7: detected capacity change from 0 to 256
[  460.639369][ T5979] netdevsim netdevsim2 netdevsim0: set [1, 1] type 2 family 0 port 49312 - 0
[  460.740787][T19916] netdevsim netdevsim2 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  460.746825][T19916] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  460.768194][ T5979] netdevsim netdevsim2 netdevsim1: set [1, 1] type 2 family 0 port 49312 - 0
[  460.772635][ T5979] netdevsim netdevsim2 netdevsim2: set [1, 1] type 2 family 0 port 49312 - 0
[  460.881086][   T34] audit: type=1326 audit(2000000381.948:489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19934 comm="syz.7.5852" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f4f8419acb9 code=0x0
[  461.051069][T19940] loop8: detected capacity change from 0 to 164
[  462.397358][T19916] netdevsim netdevsim2 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  462.400769][T19916] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  462.404819][T19916] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 1] type 2 family 0 port 49312 - 0
[  462.479171][T19916] netdevsim netdevsim2 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  462.482377][T19916] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  462.487764][T19916] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 1] type 2 family 0 port 49312 - 0
[  462.560485][T19916] bond0: (slave netdevsim0): Releasing backup interface
[  462.570449][T19916] netdevsim netdevsim2 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  462.574795][T19916] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  462.579299][T19916] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 1] type 2 family 0 port 49312 - 0
[  462.658247][ T5979] netdevsim netdevsim2 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  462.661072][ T5979] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 49312 - 0
[  462.664017][ T5979] netdevsim netdevsim2 eth0: set [1, 1] type 2 family 0 port 6081 - 0
[  462.678654][ T5979] netdevsim netdevsim2 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  462.681315][ T5979] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 49312 - 0
[  462.684076][ T5979] netdevsim netdevsim2 eth1: set [1, 1] type 2 family 0 port 6081 - 0
[  462.697082][ T5979] netdevsim netdevsim2 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  462.700378][ T5979] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 49312 - 0
[  462.703699][ T5979] netdevsim netdevsim2 eth2: set [1, 1] type 2 family 0 port 6081 - 0
[  462.718375][ T5979] netdevsim netdevsim2 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  462.721043][ T5979] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 49312 - 0
[  462.723858][ T5979] netdevsim netdevsim2 eth3: set [1, 1] type 2 family 0 port 6081 - 0
[  463.185223][   T34] audit: type=1326 audit(2000000384.258:490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19989 comm="syz.8.5876" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f7a34b9acb9 code=0x0
[  463.232797][ T6013] usb 8-1: new high-speed USB device number 20 using dummy_hcd
[  463.404394][ T6013] usb 8-1: config 1 has an invalid interface number: 166 but max is 0
[  463.407769][ T6013] usb 8-1: config 1 has no interface number 0
[  463.410369][ T6013] usb 8-1: config 1 interface 166 has no altsetting 0
[  463.413283][ T6013] usb 8-1: New USB device found, idVendor=8086, idProduct=07d3, bcdDevice=7c.42
[  463.417250][ T6013] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  463.431172][ T6013] cdc_subset 8-1:1.166: probe with driver cdc_subset failed with error -22
[  463.635008][ T6013] usb 8-1: USB disconnect, device number 20
[  464.053013][T20017] netlink: 16 bytes leftover after parsing attributes in process `syz.8.5889'.
[  464.061694][T20017] bond0: entered promiscuous mode
[  464.067115][T20017] bond_slave_0: entered promiscuous mode
[  464.069648][T20017] bond_slave_1: entered promiscuous mode
[  464.073880][T20017] bond0: left promiscuous mode
[  464.075729][T20017] bond_slave_0: left promiscuous mode
[  464.077845][T20017] bond_slave_1: left promiscuous mode
[  464.205372][T20021] loop7: detected capacity change from 0 to 128
[  464.218559][T20019] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  464.335217][T20025] loop7: detected capacity change from 0 to 22
[  464.344060][T20025] MTD: Attempt to mount non-MTD device "/dev/loop7"
[  464.350889][T20025] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  464.409077][T20030] loop8: detected capacity change from 0 to 128
[  464.411785][T20030] EXT4-fs (loop8): Test dummy encryption mode enabled
[  464.432430][T20030] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  464.449625][T20030] ext4 filesystem being mounted at /210/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  464.467688][T20035] netlink: 'syz.7.5897': attribute type 10 has an invalid length.
[  464.477313][T20035] team0: Port device dummy0 added
[  464.481149][T20035] netlink: 'syz.7.5897': attribute type 10 has an invalid length.
[  464.489853][T20035] team0: Port device dummy0 removed
[  464.542459][T20030] fscrypt: AES-256-XTS using implementation "xts(ecb(aes-fixed-time))"
[  464.564591][T18282] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  464.634228][T20051] loop7: detected capacity change from 0 to 1024
[  464.638392][T20051] hfsplus: failed to load root directory
[  464.836964][T20069] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  464.952059][  T784] IPVS: starting estimator thread 0...
[  465.027542][T20074] loop8: detected capacity change from 0 to 4096
[  465.106487][T20071] IPVS: using max 84 ests per chain, 201600 per kthread
[  465.223982][T20077] NILFS (loop8): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  465.267726][T20078] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  465.296918][T20074] NILFS (loop8): corrupt root inode
[  465.556191][T20088] loop8: detected capacity change from 0 to 1024
[  465.562413][T20088] EXT4-fs (loop8): ext4_check_descriptors: Checksum for group 0 failed (32298!=35945)
[  465.566896][T20088] EXT4-fs (loop8): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  465.571589][T20088] EXT4-fs (loop8): revision level too high, forcing read-only mode
[  465.574995][T20088] EXT4-fs (loop8): orphan cleanup on readonly fs
[  465.577594][T20088] EXT4-fs error (device loop8): ext4_read_inode_bitmap:167: comm syz.8.5916: Inode bitmap for bg 0 marked uninitialized
[  465.583859][T20088] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  465.599739][T18282] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  465.767052][T20093] loop8: detected capacity change from 0 to 8192
[  465.793224][T20093] NILFS (loop8): unsupported revision (superblock rev.=0.0, current rev.=2.0). Please check the version of mkfs.nilfs(2).
[  467.086911][ T6014] usb 9-1: new high-speed USB device number 7 using dummy_hcd
[  467.242772][ T6014] usb 9-1: Using ep0 maxpacket: 16
[  467.248839][ T6014] usb 9-1: config 0 has an invalid interface number: 34 but max is 0
[  467.252134][ T6014] usb 9-1: config 0 has no interface number 0
[  467.255004][ T6014] usb 9-1: config 0 interface 34 altsetting 0 bulk endpoint 0xA has invalid maxpacket 1023
[  467.258807][ T6014] usb 9-1: config 0 interface 34 altsetting 0 endpoint 0x82 has invalid maxpacket 1104, setting to 1024
[  467.268701][ T6014] usb 9-1: config 0 interface 34 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 1024
[  467.277204][ T6014] usb 9-1: New USB device found, idVendor=0b95, idProduct=772a, bcdDevice=82.73
[  467.280069][ T6014] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  467.283528][ T6014] usb 9-1: Product: syz
[  467.284955][ T6014] usb 9-1: Manufacturer: syz
[  467.286385][ T6014] usb 9-1: SerialNumber: syz
[  467.295331][ T6014] usb 9-1: config 0 descriptor??
[  467.299401][T20098] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22
[  467.302309][T20098] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22
[  467.306179][ T5952] Bluetooth: hci3: command 0x0405 tx timeout
[  467.561288][ T6014] asix 9-1:0.34: probe with driver asix failed with error -71
[  467.590733][ T6014] usb 9-1: USB disconnect, device number 7
[  468.195849][T20141] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  468.282967][T20146] sctp: [Deprecated]: syz.8.5942 (pid 20146) Use of int in maxseg socket option.
[  468.282967][T20146] Use struct sctp_assoc_value instead
[  468.366324][   T34] audit: type=1800 audit(2000000389.438:491): pid=20149 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.8.5943" name="eth0" dev="overlay" ino=49850 res=0 errno=0
[  468.434317][T20151] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5944'.
[  468.670540][T20163] A link change request failed with some changes committed already. Interface bond3 may have been left with an inconsistent configuration, please check.
[  468.781739][T20171] loop8: detected capacity change from 0 to 2048
[  468.812747][T20174] NILFS (loop8): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  468.857659][   T34] audit: type=1800 audit(2000000389.928:492): pid=20171 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.5954" name="file1" dev="loop8" ino=15 res=0 errno=0
[  468.878263][T20171] NILFS error (device loop8): nilfs_bmap_lookup_contig: broken bmap (inode number=15)
[  468.888285][T20171] Remounting filesystem read-only
[  468.915123][T18282] NILFS (loop8): disposed unprocessed dirty file(s) when detaching log writer
[  468.972836][T20167] loop7: detected capacity change from 0 to 32768
[  469.024240][T20167] XFS (loop7): Mounting V5 Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  469.027814][T20184] netlink: 28 bytes leftover after parsing attributes in process `syz.8.5959'.
[  469.031411][T20184] netlink: 28 bytes leftover after parsing attributes in process `syz.8.5959'.
[  469.277185][T20167] XFS (loop7): Ending clean mount
[  469.387254][T16130] XFS (loop7): Unmounting Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  469.434784][T20200] binder: 20199:20200 ioctl c0306201 2000000003c0 returned -14
[  469.831174][T20214] /dev/nullb0: Can't lookup blockdev
[  469.921084][T20216] xt_socket: unknown flags 0x50
[  470.073357][ T6014] usb 8-1: new high-speed USB device number 21 using dummy_hcd
[  470.205052][T20220] sctp: [Deprecated]: syz.2.5972 (pid 20220) Use of int in max_burst socket option deprecated.
[  470.205052][T20220] Use struct sctp_assoc_value instead
[  470.253632][ T6014] usb 8-1: Using ep0 maxpacket: 16
[  470.257807][ T6014] usb 8-1: config 8 has an invalid interface number: 189 but max is 0
[  470.261211][ T6014] usb 8-1: config 8 has no interface number 0
[  470.272063][ T6014] usb 8-1: string descriptor 0 read error: -22
[  470.275957][ T6014] usb 8-1: New USB device found, idVendor=0ace, idProduct=20ff, bcdDevice= 1.01
[  470.279783][ T6014] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  470.289521][ T6014] usb-storage 8-1:8.189: USB Mass Storage device detected
[  470.312895][ T6014] usb-storage 8-1:8.189: device ignored
[  470.489722][ T6014] usb 8-1: USB disconnect, device number 21
[  470.862772][  T784] usb 9-1: new high-speed USB device number 8 using dummy_hcd
[  471.024205][  T784] usb 9-1: Using ep0 maxpacket: 8
[  471.031819][  T784] usb 9-1: config 0 has no interfaces?
[  471.049890][  T784] usb 9-1: New USB device found, idVendor=12d1, idProduct=42f7, bcdDevice=aa.47
[  471.063745][  T784] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  471.092183][  T784] usb 9-1: config 0 descriptor??
[  471.302633][ T6014] usb 8-1: new high-speed USB device number 22 using dummy_hcd
[  471.329579][ T6000] usb 9-1: USB disconnect, device number 8
[  471.465703][ T6014] usb 8-1: config 0 descriptor has 1 excess byte, ignoring
[  471.468573][ T6014] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0
[  471.472469][ T6014] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0xA has an invalid bInterval 0, changing to 7
[  471.482307][ T6014] usb 8-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  471.486378][ T6014] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  471.489619][ T6014] usb 8-1: Product: syz
[  471.491235][ T6014] usb 8-1: Manufacturer: syz
[  471.493179][ T6014] usb 8-1: SerialNumber: syz
[  471.498125][ T6014] usb 8-1: config 0 descriptor??
[  471.504395][ T6014] usb 8-1: 0:0 : invalid sync pipe. is_playback 1, ep 0a, bSynchAddress f8
[  471.726544][ T6014] usb 8-1: USB disconnect, device number 22
[  471.760040][T16234] udevd[16234]: error opening ATTR{/sys/devices/platform/dummy_hcd.7/usb8/8-1/8-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  471.956566][T20248] netlink: 12 bytes leftover after parsing attributes in process `syz.8.5984'.
[  472.265901][T20270] loop7: detected capacity change from 0 to 4096
[  472.268822][T20270] ntfs3(loop7): Failed to load $MFTMirr (-2).
[  472.351003][T20278] netlink: 'syz.8.5999': attribute type 6 has an invalid length.
[  472.363221][T20276] loop7: detected capacity change from 0 to 4096
[  472.548380][T20287] loop8: detected capacity change from 0 to 4096
[  472.555080][T20287] EXT4-fs (loop8): Test dummy encryption mode enabled
[  472.571727][T20287] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0103]
[  472.577154][T20287] System zones: 0-5
[  472.580106][T20287] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  472.589633][T20287] fscrypt: AES-256-CBC-CTS using implementation "cts(cbc(ecb(aes-fixed-time)))"
[  472.617989][T18282] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  473.043216][ T6000] usb 9-1: new high-speed USB device number 9 using dummy_hcd
[  473.192593][ T6000] usb 9-1: Using ep0 maxpacket: 8
[  473.196941][ T6000] usb 9-1: unable to get BOS descriptor or descriptor too short
[  473.201547][ T6000] usb 9-1: config 6 has an invalid interface number: 81 but max is 0
[  473.206880][ T6000] usb 9-1: config 6 has no interface number 0
[  473.210040][ T6000] usb 9-1: config 6 interface 81 has no altsetting 0
[  473.214627][ T6000] usb 9-1: New USB device found, idVendor=061d, idProduct=c1a0, bcdDevice=f7.ec
[  473.218361][ T6000] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  473.221313][ T6000] usb 9-1: Product: syz
[  473.223071][ T6000] usb 9-1: Manufacturer: syz
[  473.225035][ T6000] usb 9-1: SerialNumber: syz
[  473.438235][ T6000] quatech2 9-1:6.81: Quatech 2nd gen USB to Serial Driver converter detected
[  473.441440][ T6000] usb 9-1: qt2_attach - failed to power on unit: -71
[  473.443848][ T6000] quatech2 9-1:6.81: probe with driver quatech2 failed with error -71
[  473.449428][ T6000] usb 9-1: USB disconnect, device number 9
[  474.182380][T20342] loop8: detected capacity change from 0 to 32768
[  474.199652][T20342] JBD2: Ignoring recovery information on journal
[  474.295146][T20342] ocfs2: Mounting device (7,8) on (node local, slot 0) with ordered data mode.
[  474.309638][T20342] (syz.8.6026,20342,0):ocfs2_reflink_ioctl:4418 ERROR: status = -14
[  474.332068][T20346] loop7: detected capacity change from 0 to 4096
[  474.362789][T20346] ntfs3(loop7): Different NTFS sector size (1024) and media sector size (512).
[  474.401911][T20346] ntfs3(loop7): Failed to initialize $Secure::$SDH (-22).
[  474.405515][T18282] ocfs2: Unmounting device (7,8) on (node local)
[  474.413910][T20346] ntfs3(loop7): Failed to initialize $Secure (-22).
[  474.563703][T20352] loop8: detected capacity change from 0 to 256
[  474.579345][T20352] exFAT-fs (loop8): failed to load upcase table (idx : 0x00011e5d, chksum : 0x63a11b78, utbl_chksum : 0xe619d30d)
[  475.015072][  T911] usb 8-1: new high-speed USB device number 23 using dummy_hcd
[  475.162656][  T911] usb 8-1: Using ep0 maxpacket: 8
[  475.169337][  T911] usb 8-1: config 0 has an invalid interface number: 130 but max is 0
[  475.172325][  T911] usb 8-1: config 0 has no interface number 0
[  475.177532][  T911] usb 8-1: New USB device found, idVendor=0403, idProduct=fa78, bcdDevice=71.1b
[  475.181106][  T911] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  475.190788][  T911] usb 8-1: config 0 descriptor??
[  475.206507][  T911] ftdi_sio 8-1:0.130: FTDI USB Serial Device converter detected
[  475.217802][  T911] ftdi_sio ttyUSB0: unknown device type: 0x711b
[  475.429837][ T6000] usb 8-1: USB disconnect, device number 23
[  475.447735][ T6000] ftdi_sio 8-1:0.130: device disconnected
[  476.098966][   T34] audit: type=1326 audit(2000000397.168:493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20400 comm="syz.2.6052" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f87d979acb9 code=0x0
[  476.509440][T20426] netlink: 28 bytes leftover after parsing attributes in process `syz.7.6065'.
[  477.115699][T20443] loop8: detected capacity change from 0 to 512
[  477.118820][T20443] EXT4-fs: Ignoring removed mblk_io_submit option
[  477.123059][T20443] EXT4-fs: Ignoring removed nobh option
[  477.124954][T20443] EXT4-fs: Ignoring removed mblk_io_submit option
[  477.127395][T20443] EXT4-fs (loop8): can't mount with both data=journal and delalloc
[  477.191285][T20447] libceph: resolve '400' (ret=-3): failed
[  477.272750][T20457] netlink: 'syz.8.6078': attribute type 15 has an invalid length.
[  477.280142][T20457] netlink: 'syz.8.6078': attribute type 7 has an invalid length.
[  477.828027][T20470] loop7: detected capacity change from 0 to 40427
[  477.838184][T20470] F2FS-fs (loop7): invalid crc value
[  477.885318][T20470] F2FS-fs (loop7): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  477.889496][T20470] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[  478.033160][ T5952] Bluetooth: hci3: command 0x0405 tx timeout
[  478.381437][T20519] xt_TCPMSS: Only works on TCP SYN packets
[  478.438447][T20526] netlink: 76 bytes leftover after parsing attributes in process `syz.8.6109'.
[  479.030912][  T784] usb 8-1: new high-speed USB device number 24 using dummy_hcd
[  479.182639][  T784] usb 8-1: Using ep0 maxpacket: 32
[  479.192938][  T784] usb 8-1: config index 0 descriptor too short (expected 156, got 27)
[  479.195513][  T784] usb 8-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  479.198693][  T784] usb 8-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  479.201967][  T784] usb 8-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  479.206310][  T784] usb 8-1: config 0 interface 0 has no altsetting 0
[  479.210430][  T784] usb 8-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  479.216537][  T784] usb 8-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  479.219644][  T784] usb 8-1: Product: syz
[  479.221182][  T784] usb 8-1: Manufacturer: syz
[  479.223658][  T784] usb 8-1: SerialNumber: syz
[  479.230267][  T784] usb 8-1: config 0 descriptor??
[  479.235530][  T784] ldusb 8-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  479.245507][  T784] ldusb 8-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  479.449239][T20533] ldusb 8-1:0.0: Write buffer overflow, 64804 bytes dropped
[  479.510780][    T9] usb 8-1: USB disconnect, device number 24
[  479.510976][    C1] ldusb 8-1:0.0: usb_submit_urb failed (-19)
[  479.522845][T20533] ldusb 8-1:0.0: Couldn't submit HID_REQ_SET_REPORT -71
[  479.536429][    T9] ldusb 8-1:0.0: LD USB Device #0 now disconnected
[  479.584093][T20555] netlink: 28 bytes leftover after parsing attributes in process `syz.2.6122'.
[  479.586975][T20555] netlink: 28 bytes leftover after parsing attributes in process `syz.2.6122'.
[  479.598889][T20555] erspan0: entered promiscuous mode
[  479.612209][T20555] hsr1: Slave B (gretap0) is not up; please bring it up to get a fully working HSR network
[  480.301214][T20566] tipc: Invalid UDP bearer configuration
[  480.301256][T20566] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[  480.410799][T20572] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  480.447611][T20574] Bluetooth: MGMT ver 1.23
[  481.026515][T20596] tmpfs: Bad value for 'mpol'
[  481.180318][T20604] IPVS: set_ctl: invalid protocol: 44 100.1.1.1:20002
[  481.194417][T20604] loop8: detected capacity change from 0 to 128
[  481.219513][T20604] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  481.243600][T20604] ext4 filesystem being mounted at /291/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  481.503803][   T34] audit: type=1800 audit(2000000402.568:494): pid=20604 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.6142" name="bus" dev="loop8" ino=12 res=0 errno=0
[  482.068301][T18282] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  482.332236][T20627] xt_hashlimit: size too large, truncated to 1048576
[  482.335990][T20627] xt_hashlimit: invalid rate
[  482.595752][T20635] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  482.930565][T20644] loop7: detected capacity change from 0 to 32768
[  482.978361][T20644] XFS (loop7): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  482.994460][T20644] XFS (loop7): Ending clean mount
[  483.054064][T16130] XFS (loop7): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  483.370636][T20685] loop7: detected capacity change from 0 to 32768
[  483.406943][T20685] btrfs: Deprecated parameter 'usebackuproot'
[  483.408869][T20685] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  483.425044][T20685] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop7 (7:7) scanned by syz.7.6176 (20685)
[  483.432305][T20685] BTRFS info (device loop7): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  483.436654][T20685] BTRFS info (device loop7): using crc32c (crc32c-lib) checksum algorithm
[  483.556400][T20685] BTRFS info (device loop7): rebuilding free space tree
[  483.569080][T20685] BTRFS info (device loop7): setting nodatasum
[  483.571018][T20685] BTRFS info (device loop7): setting nodatacow
[  483.588517][T20685] BTRFS info (device loop7): enabling ssd optimizations
[  483.594213][T20685] BTRFS info (device loop7): disabling tree log
[  483.596470][T20685] BTRFS info (device loop7): turning on flush-on-commit
[  483.599086][T20685] BTRFS info (device loop7): enabling free space tree
[  483.601622][T20685] BTRFS info (device loop7): force clearing of disk cache
[  483.624210][T20685] BTRFS info (device loop7): trying to use backup root at mount time
[  483.691626][T16130] BTRFS info (device loop7): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  483.835944][T20718] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  483.839144][T20718] overlayfs: option "index=on" is useless in a non-upper mount, ignore
[  483.841772][T20718] overlayfs: missing 'lowerdir'
[  484.410220][T20738] m1Ie5n: entered promiscuous mode
[  484.815395][T20750] loop8: detected capacity change from 0 to 128
[  484.823466][T20750] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  484.828154][T20750] ext4 filesystem being mounted at /301/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  484.845207][T18282] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  485.005973][T20762] ieee802154 phy0 wpan0: encryption failed: -22
[  485.138142][T20767] loop8: detected capacity change from 0 to 8192
[  485.598091][T20789] netlink: 8 bytes leftover after parsing attributes in process `syz.7.6212'.
[  486.268985][T20807] loop7: detected capacity change from 0 to 512
[  486.281599][T20807] EXT4-fs: Ignoring removed oldalloc option
[  486.317312][T20807] EXT4-fs error (device loop7): ext4_iget_extra_inode:5072: inode #15: comm syz.7.6221: corrupted in-inode xattr: invalid ea_ino
[  486.335165][T20807] EXT4-fs error (device loop7): ext4_orphan_get:1396: comm syz.7.6221: couldn't read orphan inode 15 (err -117)
[  486.366253][T20807] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  486.457222][T16130] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  486.805573][T20828] dummy0: Caught tx_queue_len zero misconfig
[  486.861618][T20830] netlink: 666 bytes leftover after parsing attributes in process `syz.7.6231'.
[  486.951231][T20835] loop7: detected capacity change from 0 to 512
[  487.072246][T20835] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  487.170667][T20840] xt_CONNSECMARK: invalid mode: 0
[  487.462707][   T35] INFO: task syz-executor:13957 blocked for more than 143 seconds.
[  487.466678][   T35]       Tainted: G             L      syzkaller #0
[  487.469011][   T35] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  487.472085][   T35] task:syz-executor    state:D stack:21304 pid:13957 tgid:13957 ppid:1      task_flags:0x400140 flags:0x00080002
[  487.483436][   T35] Call Trace:
[  487.485905][   T35]  <TASK>
[  487.490105][   T35]  __schedule+0x14ef/0x4fb0
[  487.491988][   T35]  ? lockdep_unlock+0x5d/0xd0
[  487.494628][   T35]  ? __lock_acquire+0x146e/0x2cf0
[  487.496470][   T35]  ? __pfx___schedule+0x10/0x10
[  487.498707][   T35]  ? schedule+0x90/0x360
[  487.500635][   T35]  schedule+0x164/0x360
[  487.507828][   T35]  io_schedule+0x7f/0xd0
[  487.509419][   T35]  folio_wait_bit_common+0x6d8/0xbc0
[  487.511853][   T35]  ? __pfx_folio_wait_bit_common+0x10/0x10
[  487.517166][   T35]  ? __pfx_wake_page_function+0x10/0x10
[  487.519346][   T35]  ? __filemap_get_folio_mpol+0x81/0xb00
[  487.522483][   T35]  __filemap_get_folio_mpol+0x13e/0xb00
[  487.525901][   T35]  truncate_inode_pages_range+0x48b/0xe30
[  487.528167][   T35]  ? stack_depot_save_flags+0x33/0x810
[  487.530459][   T35]  ? __pfx_truncate_inode_pages_range+0x10/0x10
[  487.535137][   T35]  ? lockdep_hardirqs_on+0x7a/0x110
[  487.537225][   T35]  evict+0x631/0xb10
[  487.538618][   T35]  ? __pfx_evict+0x10/0x10
[  487.540469][   T35]  evict_inodes+0x75a/0x7f0
[  487.544185][   T35]  ? __pfx_evict_inodes+0x10/0x10
[  487.546391][   T35]  generic_shutdown_super+0x9a/0x2c0
[  487.548280][   T35]  kill_block_super+0x44/0x90
[  487.549945][   T35]  deactivate_locked_super+0xbc/0x130
[  487.551951][   T35]  cleanup_mnt+0x437/0x4d0
[  487.558373][   T35]  ? _raw_spin_unlock_irq+0x23/0x50
[  487.560815][   T35]  task_work_run+0x1d9/0x270
[  487.562995][   T35]  ? __pfx_task_work_run+0x10/0x10
[  487.565067][   T35]  exit_to_user_mode_loop+0xed/0x480
[  487.566861][   T35]  ? rcu_is_watching+0x15/0xb0
[  487.568554][   T35]  do_syscall_64+0x2b7/0xf80
[  487.570122][   T35]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  487.572489][   T35]  ? trace_irq_disable+0x37/0x100
[  487.610771][   T35]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  487.613402][   T35] RIP: 0033:0x7f0859f9bf17
[  487.615052][   T35] RSP: 002b:00007ffcff074de8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  487.617738][   T35] RAX: 0000000000000000 RBX: 00007f085a00471f RCX: 00007f0859f9bf17
[  487.620347][   T35] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffcff074ea0
[  487.623608][   T35] RBP: 00007ffcff074ea0 R08: 00007ffcff075ea0 R09: 00000000ffffffff
[  487.626216][   T35] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffcff075f30
[  487.628863][   T35] R13: 00007f085a00471f R14: 00000000000524da R15: 00007ffcff075f70
[  487.631438][   T35]  </TASK>
[  487.634558][T16130] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  487.634675][   T35] 
[  487.634675][   T35] Showing all locks held in the system:
[  487.661939][   T35] 1 lock held by pool_workqueue_/3:
[  487.672615][   T35]  #0: ffffffff8e360c78 (rcu_state.exp_mutex){+.+.}-{4:4}, at: synchronize_rcu_expedited+0x2d0/0x770
[  487.676744][   T35] 3 locks held by kworker/0:0/9:
[  487.678696][   T35] 1 lock held by khungtaskd/35:
[  487.680653][   T35]  #0: ffffffff8e35a360 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180
[  487.702595][   T35] 2 locks held by getty/5656:
[  487.704298][   T35]  #0: ffff8881767a40a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  487.707432][   T35]  #1: ffffc9000356e2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x45c/0x13c0
[  487.710587][   T35] 1 lock held by syz-executor/13957:
[  487.712167][   T35]  #0: ffff888102bc00e0 (&type->s_umount_key#99){++++}-{4:4}, at: deactivate_super+0xa9/0xe0
[  487.722657][   T35] 1 lock held by syz.1.4974/17800:
[  487.724393][   T35]  #0: ffff888102bc00e0 (&type->s_umount_key#99){++++}-{4:4}, at: super_lock+0x2d6/0x3d0
[  487.727962][   T35] 
[  487.728960][   T35] =============================================
[  487.728960][   T35] 
[  487.731452][   T35] NMI backtrace for cpu 0
[  487.731462][   T35] CPU: 0 UID: 0 PID: 35 Comm: khungtaskd Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  487.731472][   T35] Tainted: [L]=SOFTLOCKUP
[  487.731475][   T35] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  487.731480][   T35] Call Trace:
[  487.731484][   T35]  <TASK>
[  487.731489][   T35]  dump_stack_lvl+0xe8/0x150
[  487.731502][   T35]  nmi_cpu_backtrace+0x274/0x2d0
[  487.731513][   T35]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  487.731521][   T35]  nmi_trigger_cpumask_backtrace+0x17a/0x300
[  487.731531][   T35]  sys_info+0x135/0x170
[  487.731539][   T35]  watchdog+0xf90/0xfe0
[  487.731551][   T35]  ? watchdog+0x209/0xfe0
[  487.731562][   T35]  kthread+0x726/0x8b0
[  487.731573][   T35]  ? __pfx_watchdog+0x10/0x10
[  487.731583][   T35]  ? __pfx_kthread+0x10/0x10
[  487.731593][   T35]  ? _raw_spin_unlock_irq+0x23/0x50
[  487.731603][   T35]  ? __pfx_kthread+0x10/0x10
[  487.731612][   T35]  ret_from_fork+0x51b/0xa40
[  487.731621][   T35]  ? __pfx_ret_from_fork+0x10/0x10
[  487.731627][   T35]  ? __switch_to+0xc82/0x1410
[  487.731639][   T35]  ? __pfx_kthread+0x10/0x10
[  487.731649][   T35]  ret_from_fork_asm+0x1a/0x30
[  487.731663][   T35]  </TASK>
[  487.731666][   T35] Sending NMI from CPU 0 to CPUs 1:
[  487.776236][    C1] NMI backtrace for cpu 1
[  487.776248][    C1] CPU: 1 UID: 0 PID: 6020 Comm: kworker/1:7 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  487.776258][    C1] Tainted: [L]=SOFTLOCKUP
[  487.776261][    C1] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  487.776265][    C1] Workqueue: rcu_gp process_srcu
[  487.776277][    C1] RIP: 0010:its_return_thunk+0x0/0x10
[  487.776288][    C1] Code: cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc <c3> cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 e9 9b 6f b7 f5 cc
[  487.776294][    C1] RSP: 0018:ffffc900042a78a8 EFLAGS: 00000297
[  487.776299][    C1] RAX: 0000000080000001 RBX: 00000000000036b1 RCX: 0000000000000000
[  487.776304][    C1] RDX: 000000000000013f RSI: ffffffff8be74be0 RDI: 00000000ffffffff
[  487.776309][    C1] RBP: 0000000000000001 R08: ffff88823c642d17 R09: 1ffff110478c85a2
[  487.776313][    C1] R10: dffffc0000000000 R11: ffffffff8b77a860 R12: 0000000000000001
[  487.776317][    C1] R13: 000000000001bcab R14: 0000013f3d369ace R15: 0000000000002dc7
[  487.776322][    C1] FS:  0000000000000000(0000) GS:ffff8882a9924000(0000) knlGS:0000000000000000
[  487.776327][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  487.776331][    C1] CR2: 00007f7a34de1198 CR3: 00000001727ca000 CR4: 00000000000006f0
[  487.776359][    C1] Call Trace:
[  487.776364][    C1]  <TASK>
[  487.776367][    C1]  delay_tsc+0x4e/0xc0
[  487.776377][    C1]  try_check_zero+0x412/0x470
[  487.776386][    C1]  process_srcu+0x2d3/0x1220
[  487.776392][    C1]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  487.776404][    C1]  ? process_scheduled_works+0xa0f/0x17a0
[  487.776411][    C1]  ? process_scheduled_works+0xa0f/0x17a0
[  487.776417][    C1]  process_scheduled_works+0xaec/0x17a0
[  487.776428][    C1]  ? __pfx_process_scheduled_works+0x10/0x10
[  487.776434][    C1]  ? do_raw_spin_lock+0x12b/0x2f0
[  487.776443][    C1]  ? assign_work+0x3d3/0x440
[  487.776450][    C1]  worker_thread+0x89f/0xd90
[  487.776459][    C1]  ? __kthread_parkme+0x7a/0x1f0
[  487.776467][    C1]  kthread+0x726/0x8b0
[  487.776476][    C1]  ? __pfx_worker_thread+0x10/0x10
[  487.776483][    C1]  ? __pfx_kthread+0x10/0x10
[  487.776491][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[  487.776500][    C1]  ? __pfx_kthread+0x10/0x10
[  487.776508][    C1]  ret_from_fork+0x51b/0xa40
[  487.776515][    C1]  ? __pfx_ret_from_fork+0x10/0x10
[  487.776521][    C1]  ? __switch_to+0xc82/0x1410
[  487.776531][    C1]  ? __pfx_kthread+0x10/0x10
[  487.776539][    C1]  ret_from_fork_asm+0x1a/0x30
[  487.776551][    C1]  </TASK>
[  487.963302][   T35] Kernel panic - not syncing: hung_task: blocked tasks
[  487.966044][   T35] CPU: 1 UID: 0 PID: 35 Comm: khungtaskd Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  487.970163][   T35] Tainted: [L]=SOFTLOCKUP
[  487.971849][   T35] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  487.975737][   T35] Call Trace:
[  487.977068][   T35]  <TASK>
[  487.978253][   T35]  vpanic+0x1e0/0x670
[  487.979860][   T35]  panic+0xc5/0xd0
[  487.981402][   T35]  ? __pfx_panic+0x10/0x10
[  487.983050][   T35]  ? preempt_schedule_thunk+0x16/0x30
[  487.984929][   T35]  ? nmi_trigger_cpumask_backtrace+0x2bb/0x300
[  487.987011][   T35]  watchdog+0xfda/0xfe0
[  487.988708][   T35]  ? watchdog+0x209/0xfe0
[  487.990445][   T35]  kthread+0x726/0x8b0
[  487.992103][   T35]  ? __pfx_watchdog+0x10/0x10
[  487.993912][   T35]  ? __pfx_kthread+0x10/0x10
[  487.995706][   T35]  ? _raw_spin_unlock_irq+0x23/0x50
[  487.997660][   T35]  ? __pfx_kthread+0x10/0x10
[  487.999471][   T35]  ret_from_fork+0x51b/0xa40
[  488.001478][   T35]  ? __pfx_ret_from_fork+0x10/0x10
[  488.003568][   T35]  ? __switch_to+0xc82/0x1410
[  488.005474][   T35]  ? __pfx_kthread+0x10/0x10
[  488.007317][   T35]  ret_from_fork_asm+0x1a/0x30
[  488.009200][   T35]  </TASK>
[  488.011308][   T35] Kernel Offset: disabled
[  488.012997][   T35] Rebooting in 86400 seconds..
