last executing test programs:

12m18.8589069s ago: executing program 32 (id=162):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x60083, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f00000000c0)={0xc, 0x0, <r1=>0x0})
ioctl$IOMMU_IOAS_MAP(r0, 0x3b85, &(0x7f0000000440)={0x28, 0x5, r1, 0x0, &(0x7f0000000480)='L', 0x1, 0x400000001})
ioctl$IOMMU_IOAS_UNMAP(r0, 0x3b86, &(0x7f0000000000)={0x18, r1, 0x0, 0x10001})

12m6.041268516s ago: executing program 3 (id=269):
syz_mount_image$erofs(&(0x7f0000000340), &(0x7f0000000580)='./file0\x00', 0x2000000, &(0x7f00000004c0)=ANY=[], 0x2, 0x222, &(0x7f0000000800)="$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")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000000)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
listxattr(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)

12m5.821210289s ago: executing program 3 (id=272):
r0 = socket(0x2b, 0x1, 0x1)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @local, 0x3}, 0x1c)
sendmsg$TIPC_CMD_GET_NODES(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x4}, 0x20040000)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x989680}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, 0x0)

12m5.563171898s ago: executing program 3 (id=275):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000000)={0x400000100002f, {0x1, 0x100, 0x484, 0x4, 0x3, 0xfffffffd}})

12m5.295960986s ago: executing program 33 (id=275):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000000)={0x400000100002f, {0x1, 0x100, 0x484, 0x4, 0x3, 0xfffffffd}})

10m13.630959778s ago: executing program 34 (id=1297):
r0 = fsopen(&(0x7f00000000c0)='nilfs2\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000000)='source', &(0x7f0000000040), 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x8, 0x0, 0x0, 0x0)

10m11.518438844s ago: executing program 35 (id=1315):
r0 = socket$can_raw(0x1d, 0x3, 0x1)
getsockopt$CAN_RAW_LOOPBACK(r0, 0x65, 0x3, 0x0, &(0x7f0000002a00))

8m21.542102675s ago: executing program 36 (id=2702):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000006c0)=ANY=[@ANYBLOB="3c0000001800010000000000000000000a00000000000000000200000c00090008000080", @ANYRES32, @ANYBLOB="140005"], 0x3c}}, 0x0)

6m40.153705702s ago: executing program 37 (id=3995):
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xd, 0x6, &(0x7f0000000500)=ANY=[@ANYBLOB="05000000000000007111da00000000008510000002000000850000000000000095000000000000009500b0059d350000f8eb70c3d9330b16491e095815635bf7490c180e3be703966bd8fdc277008531ccb9d9ae8dc9e78d9dc5311486fd1d2bfab99b08b4d46852f103d4ed539d04b034d645e2ea69674b1749efdc6a03ab8d5c3d2a2ed722271db8f4b166d4a579abbfc27974"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x6}, 0x70)

6m23.550006555s ago: executing program 7 (id=4206):
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/unix\x00')
socket$l2tp6(0xa, 0x2, 0x73)
socket$l2tp6(0xa, 0x2, 0x73)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0xc4)
close_range(r0, 0xffffffffffffffff, 0x0)

6m23.231443678s ago: executing program 7 (id=4208):
r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
read$FUSE(r0, &(0x7f0000000040)={0x2020}, 0x2020)
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000002140)={0x1})
write$FUSE_NOTIFY_RESEND(r0, &(0x7f0000002080)={0x14}, 0x14)

6m22.975163306s ago: executing program 7 (id=4210):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000000), &(0x7f0000002280)=0x3)

6m22.767291898s ago: executing program 7 (id=4212):
syz_mount_image$vfat(&(0x7f0000000280), &(0x7f00000002c0)='./file0\x00', 0x2bc3c1f, 0xffffffffffffffff, 0x7, 0x0, 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000440)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(0x0, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x2125099, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000500)='./file0/../file0\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000080)='./file0/file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x1000, 0x0)

6m22.553327364s ago: executing program 7 (id=4215):
r0 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r0, &(0x7f0000000000)={0x2a, 0x2}, 0xc)
bind$qrtr(r0, &(0x7f0000000040)={0x2a, 0x1, 0x4000}, 0xc)

6m22.182204788s ago: executing program 7 (id=4218):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000a80)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x65, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000002c0)='contention_begin\x00', r0, 0x0, 0xd}, 0x18)
sendmsg$TIPC_NL_MON_GET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x14}}, 0x0)
r1 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
connect$unix(r1, &(0x7f0000000100)=@abs={0x27}, 0x6e)

6m21.99683211s ago: executing program 38 (id=4218):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000a80)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x65, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000002c0)='contention_begin\x00', r0, 0x0, 0xd}, 0x18)
sendmsg$TIPC_NL_MON_GET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x14}}, 0x0)
r1 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
connect$unix(r1, &(0x7f0000000100)=@abs={0x27}, 0x6e)

6m18.541813202s ago: executing program 9 (id=4252):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000000c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})
read$FUSE(r0, &(0x7f0000006380)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000004200)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x2066012}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f00000042c0)="000000000000000000000000000000000000000000000000000000000000000090c400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000542d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ea8286a2fba523440000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000633956a1000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000007d6ab715107fa1820000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f6ffffffffffffff0000000000000e000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e1ffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f4000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000286071480000000000b13bc1e6d970884f00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000060000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f3ffffffffffffff00", 0x2000, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x80)
getdents64(r2, 0x0, 0x0)
write$FUSE_NOTIFY_DELETE(r0, &(0x7f0000000080)={0x2a, 0x6, 0x0, {0x1, 0x200000000000, 0x1, 0x2, '\x00', 0x8}}, 0x2a)
syz_fuse_handle_req(r0, &(0x7f00000021c0)="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", 0x2000, &(0x7f0000000800)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000001040)=ANY=[@ANYBLOB="b00000000000000000000000000000000000000000200000000000000000000000000000000000000200000000000000000020000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000c0000000000000", @ANYRES32=0x0, @ANYRES32=r0, @ANYBLOB="0021000000000000467700000000000000000000000000000000000001"], 0x0, 0x0, 0x0})

6m17.992322076s ago: executing program 9 (id=4254):
r0 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='.\x00', 0x0, 0x0)
fchown(r0, 0x0, 0xee01)
fchmodat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0xfffffed3)
capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x2})
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1d4e, 0x103)

6m17.744718084s ago: executing program 9 (id=4257):
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file1\x00', 0x8c0, &(0x7f0000000100)=ANY=[@ANYBLOB="61636c2c6865617274626561743d6e6f6e652c6469725f726573765f6c6576656c3d30303030303030303030300010303030303030332c636f6c6572656e63793d66756c6c2c7072656665727265645f736c6f743d30303030303030303030303030303030303030312c6c6f63616c666c686572656e6379000000000000000061636c2c0000000000000000"], 0x1, 0x441f, &(0x7f0000004500)="$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")

6m16.806840341s ago: executing program 9 (id=4263):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000580)='./file1\x00', 0x800040, &(0x7f00000001c0), 0x1, 0x597, &(0x7f0000000b80)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x161842, 0xb2)
ioctl$EXT4_IOC_GET_ES_CACHE(0xffffffffffffffff, 0xc020662a, &(0x7f0000000140)={0x6, 0xb600, 0x0, 0x0, 0x1, 0x0, [{0x0, 0xde, 0xfbc, '\x00', 0x3080}]})
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FIEMAP(r0, 0xc020660b, &(0x7f0000000140)=ANY=[])

6m16.606275528s ago: executing program 9 (id=4268):
r0 = userfaultfd(0x80001)
r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
mmap$dsp(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x3, 0x12, r1, 0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000140))
ioctl$UFFDIO_COPY(r0, 0xc028aa05, &(0x7f0000000040)={&(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000000/0x3000)=nil, 0x3000})

6m15.09256195s ago: executing program 9 (id=4282):
syz_usb_connect(0x5, 0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="12014101afb4f2102505a0a4f12b010203010902240001fe00c0000904eb02027f9c1f0009050605"], 0x0)

6m14.891335637s ago: executing program 39 (id=4282):
syz_usb_connect(0x5, 0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="12014101afb4f2102505a0a4f12b010203010902240001fe00c0000904eb02027f9c1f0009050605"], 0x0)

3m0.299380647s ago: executing program 8 (id=7035):
syz_mount_image$exfat(&(0x7f0000000240), &(0x7f0000000040)='./file2\x00', 0x3000cd0, &(0x7f0000000440)=ANY=[], 0x1, 0x150f, &(0x7f0000000e80)="$eJzs3Au0TlX3MPA511qbQy5Pkvuea26e5LJIklCSXJIkCck9IUmSJEkccktCEnI9Se4h93TScb9fck86eSVJEhIS1jeO9Hl737fRe/t/+v5n/sbY46x59p7zmfvM8Zxn7z3GOd92GVqtYfXK9ZgZ/h361wX+8iURABIAYAAAZAeAAADK5CiTI21/Jo2J/9aLiP8h9adf7Q7E1STzT99k/umbzD99k/mnbzL/9E3mn77J/NM3mb8Q6drMvNfKln43ef7//zn1nyTL53+6gL+3Q+b/v43+l46W+advMv/0Teafvsn8058rt2DBVe1DXH3y/k/fZP5CpGv/9WfK689e7Wfasv0LmxBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEII8f/AWX+FAYBf11e7LyGEEEIIIYQQQvz3+PevdgdCCCGEEEIIIYT4n4egQIOBADJARkiATJAZroEskBWyQXaIwbWQA66DnHA95ILckAfyQj7IDwUgBAILDBEUhEIQhxugMNwIRaAoFIPi4KAElISboBTcDKXhFigDt0JZuA3KQflLr5nmTqgEd0FluBuqQFWoBtXhHqgB90JNuA9qwf1QGx6AOvAg1IWHoB7UhwbwMDSER6ARNIYm0BSaQXNo8Qf5Sdn/Uf6L0B1egh7QExKhF/SGl6EP9IV+0B8GwCswEF6FQfAaDIYhMBReh2HwBgyHN2EEjIRR8BaMhjEwFsbBeJgASfA2TIR3YBK8+0hWmAJTYRpMhxkwE96DWTAb5sD7MBfmwXxIyrQQFsFi+ACWwIeQDB/BUvgYUmAZLIcVsBJWwWpYA2thHayHDbARNsFm2AJb4RPYBtthB+yEXbAb9sCnsBc+g33wOaTiF/9i/pnf5kNXBARUqNCgwQyYARMwATNjZsyCWTAbZsMYxjAH5sCcmBNzYS7Mg3kwEfNhASyAhISMjAWxIMYxjoWxMBbBIlgMi6FDhyWxJJbCC9770lgGy2BZLIvlsDyWx9vxdqyIFbESVsLKWBmrYBWshtXwHrwH78WaWBNrYS2sjbWxDtbBulgX62E9bIANsCE2xEbYCJtgE2yGzbAFtsCW2BJbYStsg22wLbbFdtgO22N77IAdsCN2xE7YCTtjZ+yCXbArvoAv4Iv4Ir6EL2FPrKJ6YW/sjX2wD/bD/tgfX8GB+Cq+iq/hYByCQ/F1fB3fwOF4GkfgSByFo7CiGoNjcRyymoBJmIQZYSJOwkk4GafgFJyG03EGzsSZOAtn42x8H+fiPJyHC3ABLsLFuBiX4IeYjMm4FM9gCi7D5bgCV+IqXIlrcC2uwfW4AdfjJtyEW3ALfoKf4HbcjjtxJ+7G3fgpfoqf4Wc4GFMxFffjfjyAB/AgHsRDeAgP42E8gkfwKB7FY3gMj+MJPIkn8BSewtN4Bs8CwDk8h+fxPF7Ei2lvfpXGKKMyqAwqQSWozCqzyqKyqGwqm4qpmMqhcqicKqfKpXKpPCqPyqfyqQKqgCJFilWkCqqCKq7iqrAqrIqoIqqYKqaccqqkKqlKqVKqtCqtyqhbVVl1myqnyqvW7nZ1u6qo2rhK6i5VWVVWVVRVVU1VV9VVDVVD1VQ1VS1VS9VWtVUd9aCqq3phP6yv0ibTUA3BRmooNlFNVTPVXL2Bj6qWaji2Uq1VG/W4GokjsJ1q6dqrp1QHNRY7qmfUOHxWdVYTsIt6XnVVL6hu6kXVXbVyPVRPNRl7qd5qGvZRfVU/1V/NwqoqbWLV1GvqxYxD1FD1ulqEb6jh6k01Qo1Uo9RbarQao8aqcWq8mqCS1NtqonpHTVLvqslqipqqpqnpaoaaqd5Ts9RsNUe9r+aqeRrUArVQLVKL1QdqifpQJauP1FL1sUpRy9RytUKtVKvUarVGrVXr1Hq1QW1Um9RmtUVtVZ+obWq72qF2ql1qt9qjPlV71Wdqn/pcpaov1H71F3VAfakOqq/UIfW1Oqy+UUfUt+qo+k4dU9+r4+qEOql+UKfUj+q0OqPOqp/UOfWzOq8uqIvKK9Coldba6EBn0Bl1gs6kM+trdBadVWfT2XVMX6tz6Ot0Tn29zqVz6zwmr86n8+sCOtSkrWYd6YK6kI7rG3RhfaMuoovqYrq4drqELqlv0qX0zbq0vkWX0bfqsvo2XU6X1xU86Dt0RX2nrqTv0pX13bqKrqqr6er6Hl1D36tr6vt0LX2/rq0f0HX0g7qufkjX0/V1A/2wbqgf0Y10Y91EN9XNdHPdQj+qW+rHdCvdWrfRj+u2+gndTj+p2+undAf9tO6on9Gd9LO6s35Od9HP6676Bd1NX9AXtdc9dE+dqHvp3vpl3Uf31f10fz1Av6IH6lf1IP2aHqyH6KH6dT1Mv6GH6zf1CD1Sj9Jv6dF6jB6rx+nxeoJO0m/rifodPUm/qyfrKXqqnqan6xm63+VKc/6J/Hf+Qf6gS6++RW/Vn+hterveoXfqXXq33qP36L16r96n9+lUnar36/36gD6gD+qD+pA+pA/rw/qIPqKP6qP6mD6mj+sT+if9gz6lf9Sn9Rl9Rv+kz+lz+vzlnwEYNMpoY0xgMpiMJsFkMpnNNSaLyWqymewmZq41Ocx1Jqe53uQyuU0ek9fkM/lNARMaMtawiUxBU8jEzQ2msLnRFDFFTTFT3DhTwpQ0N/3H+X/UXwvTwrQ0LU0r08q0MW1MW9PWtDPtTHvT3nQwHUxH09F0Mp1MZ9PZdDFdTFfT1XQz3Ux30930MD1Mokk0vc3Lpo/pa/qZ/maAecUMNAPNIDPIDDaDzVAz1Awzw8xwM9yMMCPMKDPKjDajzVgz1ow3402Sz24mmolmkplkJpvJZuqA7Ga6mW5mmplmlpll5pg5Zq6Za+ab+WahWWgWm8VmiVlikk2yWWqWmhSzzCwzK8wKs8qsMmvMGrPOrDMbzAazyWwyKWar2Wq2mW1mh9lhdpldZo/ZY/aavWaf2WdSTarZb/abA+aAOWgOmkPmkDlsDpsj5og5ao6aY+aYOW6Om5PmpDllTpnT5rQ5a86ac+acOW/Om4vmYtplX6ACFZjABBmCDEFCkBBkDjIHWYIsQbYgWxALYkGOIEeQM7g+yBXkDvIEeYN8Qf6gQBAGFNiAgygoGBQK4sENQeHgxqBIUDQoFhQPXFAiKBncFJQKbg5KB7cEZYJbg7LBbUG5oHxQIbg9uCOoGNwZVAruCioHdwdVgqpBtaB6cE9QI7g3qBncF9QK7g9qBw8EdYIHg7rBQ0G9oH7QIHg4aBg8EjQKGgdNgqZBs6B50OK/Wt/707kfcz3CnmFi2CvsHb4c9gn7hv3C/uGA8JVwYPhqOCh8LRwcDgmHhq+Hw8I3wuHhm+GIcGQ4KnwrHB2OCceG48Lx4YQwKXw7nBi+E04K3w0nh1PCqcG0cHo4I5wZvhfOCmeHc8L3w7nhvHB+uCBcGC4K8ZdLYkgOPwqXhh+HKeGycHm4IlwZrgpXh2vCteG6cH24IdwYbioz8JdDw23h9nBHuDPcFe4O94SfhnvDz8J94edhavhFuD/8S3gg/DI8GH4VHgq/Dg+H34RHwm/Do+F34bHw+/B4eCI8Gf4Qngp/DE+HZ8Kz4U/hufDn8Hx4IbwY+rSL+7SPdzJkKANloARKoMyUmbJQFspG2ShGMcpBOSgn5aRclIvyUB7KR/moQMYClIaJqSAVpDjFqTAVpiJUhIpRMXLkqCSVpFJUikpTaSpDZagslaVyVI4qUAW6g+6gO+lOuovuorvpbqpKVak6VacaVINqUk2qRbWoNtWmOlSH6lJdqkf1qAE1oIbUkBpRI2pCTagZNaMW1IJaUktqRa2oDbWhttSW2lE7ak/tqQN1oI7UkTpRJ+pMnakLdaGu1JW6UTfqTt2pB/WgREqk3tSb+lAf6kf9aAANoIE0kAbRIBpMg2koDaVhNIyG03AaQSNpFL1Fo2kMjaVxNJ4mUBIl0USaSJNoEk2myTSVptJ0mk4zaSbNolk0h+bQXJpL82k+LaSFtJgW0xJaQsmUTEtpKaVQCi2n5bSSVtJqWk1raS2tp/W0kTbSZtpMW2krbaNttIN20C7aRXtoD+2lvbSP9lEqpdJ+2k8H6AAdpIN0iA7RYTpMR+gIHaWjdIyO0XE6TifpJJ2iU3SaTtNZOkvn6Gc6TxfoInlKsJlsZnuNzWKz2mw2u/3bOI/Na/PZ/LaADW0um/s3MVlri9iitpgtbp0tYUvam/4uLmfL2wr2dnuHrWjvtJVsOZsJ/jquYe+1Ne19tpa931a39/wmrm0fsHXsI7aubWzr2aa2gW1uG9pHbCPb2DaxTW0z29y2tU/YdvZJ294+ldDBPv3XsU2Ll9gP7Vq7zq63G+xe+5k9a3+yR+y39pz92fawPe0A+4odaF+1g+xrdrAd8tsYwI6yb9nRdowda8fZ8XbC38VT7TQ73c6wM+17dpad/XfxYvuBnWuT7Xy7wC60iy7FaT0l24/sUvuxTbHL7HK7wq60q+xqu+b/9rrCbrKb7Ra7x35qt9ntdofdaXfZ3ZfitPPYZz+3qfYLe9h+Yw/YL+1Be9Qesl9fitPO76j9zh6z39vj9kQvsD/YU/ZHe9qeuXT+aef+g71gL1pvgZEVazYccAbOyAmciTPzNZyFs3I2zs4xvpZz8HWck6/nXJyb83Bezsf5uQCHTGyZOeKCXIjjfAMX5hu5CBflYlycHZfgknwTl+KbuTTfwmX4Vi7Lt3E5Ls8V+Ha+gyvynVyJ7+LKfDdX4apcjavzPVyD7+WafB/X4vu5Nj/AdfhBrssPcT2uzw34YW7Ij3AjbsxNuCk34+bcgh/llvwYt+LW3IYf57b8BLfjJ7k9P8Ud+GnuyM9wJ36WO/Nz3IWf5678AnfjF7k7v8Q9uCcnci/uzS9zH+7L/bg/D+BXeCC/yoP4NR7MQ3gov87D+A0ezm/yCB7Jo/gtHs1jeCyP4/E8gZP4bZ7I7/Akfpcn8xSeytN4Os/gmfwez+LZPIff57k8j+fzAl7Ii3gxf8BL+ENO5o94KX/MKbyMl/MKXsmreDWv4bW8jtfzBt7Im3gzb+Gt/Alv4+28g3fyLt7Ne/hT3suf8T7+nFP5C97Pf+ED/CUf5K/4EH/Nh/kbPsLf8lH+jo/x93ycT/BJ/oFP8Y98ms/wWf6Jz/HPfJ4v8EX2DBFGKtKRiYIoQ5QxSogyRZmja6IsUdYoW5Q9ikXXRjmi66Kc0fVRrih3lCfKG+WL8kcFojCiyEYcRVHBqFAUj26ICkc3RkWiolGxqHjkohJRyeimqFR0c1Q6uiUqE90alY1ui8pF5aMK0e3RHVHF6M6oUnRXVDm6O6oSVY2qRdWje6Ia0b1Rzei+qFZ0f1Q6eiCqEz0Y1Y0eiupF9aMG0cNRw+iRqFHUOGoSNY2aRc2jFtGjUcvosahV1DpqEz0etY2eiNpFT0bto6eiDtHTV/YXDX75NP2b/YlRr0hffkJ2n14YXxRfHP8gviT+YTw5/lF8afzjeEp8WXx5fEV8ZXxVfHV8TXxtfF18fXxDfGN8U3xzfEvc++oZwWHajTAYF7gMLqNLcJlcZneNy+Kyumwuu4u5a10Od53L6a53uVxul8fldflcflfAhY6cdewiV9AVcnF3gyvsbnRFXFFXzBV3zpVwJV1z18K1cC3dY66Va+3auMfd4+4J94R7MuFy466je8Z1cs+6zu4595x73nV1L7hu7kXX3b3kerieLtElut6ut+vj+rh+rp8b4Aa4gW6gG+QGucFusBvqhrphbpgb7oa7EW6EG+VGudFutBvrxrrxbrxLckluopvoJrlJbrKb7Ka6qW66m+5muplulpvl5rg5bq6b6+a7+W6hW+gWu8VuiVvikl2yW+qWuhSX4pa75W6lW+lWu9VurVvr1rv1bqPb6Da7zW6r2+q2uW1uh9vhdrldbo/b4/a6vW6f2+dSXarb7/a7A+6AO+i+cofc1+6w+8Ydcd+6o+47d8x97467E+6k8/qU+9GddmfcWfeTO+d+dufdBXfReZcUezs2MfZObFLs3djk2JTY1Ni02PTYjNjM2HuxWbHZsTmx92NzY/Ni82MLYgtji2KLYx/ElsQ+jCXHPootjX0cS4ktiy2PrYitjK2KeZ9/W+QL+kI+7m/whf2Nvogv6ov54t75Er6kv8mX8jf70v4WX8bf6sv623w5X95X8I19E9/UN/PNfQv/qG/pH/OtfGvfxj/u2/onfDv/pG/vn/Id/NO+o3/Gd/LP+s7+Od/FPz/v8pR9d/+S7+F7+kTfy/f2L/s+vq/v5/v7Af4VP9C/6gf51/xgP8QP9a/7Yf4NP9y/6Uf4kX6Uf8uP9mP8WD/Oj/cTfJJ/20/07/hJ/l0/2U/xU/00P93P8DP9e36Wn+3n+Pf9XD/Pz/cL/EK/yC/2H/gl/kOf7D/yS/3HPsUv88v9Cr/Sr/Kr/Rq/1q/z6/0Gv9Fv8pv9Fr/Vf+K3+e1+h9/pd/ndfo//1O/1n/l9/nOf6r/w+/1f/AH/pT/ov/KH/Nf+sP/GH/Hf+qP+O3/Mf++P+xP+pP/Bn/I/+tP+jD/rf/Ln/M/+vL/gL8rfrAkhhBBC/FP0H+zv9Q++py5vaXoDQNbteQ/9bc2NuX5Z91V7O8QA4KmeXepf3jJA/cTExMvHpmgICi0AgNiV/AxwJV4GbeAJaA+todQ/7K+vqnDpuu+v6tev/zf147cCZAbI9GtO2u3Rr/GV+jf/Tv3GH/Dv1l8GKRohvgCgSKErOWmFf42v1C/9O/V3t/39+pf6z/RlEkCrv8rJAlfiK/VLwmPwNLT/zZFCCCGEEEIIIcQv+qpzXf/g/vPS/Xk+89u8X+M/uj//A5X+0/6FEEIIIYQQQgjxx559oduTj7Zv37rT/+ZFxj9HG3+CBQLAn6ANWfz5F1f7N5MQQgghhBDiv+3KRf/V7kQIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhEi//v3/EKb+6YOv9jkKIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQV9v/CQAA///tMlSc")
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000680)='./file1\x00', 0x804051, 0x0, 0x1, 0x0, &(0x7f0000000d40))

3m0.29901762s ago: executing program 8 (id=7037):
pipe2$9p(0x0, 0x1880)

3m0.298721378s ago: executing program 8 (id=7038):
r0 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000001c0)=@newqdisc={0x48, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_prio={{0x9}, {0x18, 0x2, {0x10, "00000000100000001000000000001010"}}}]}, 0x48}}, 0x0)

3m0.106698617s ago: executing program 8 (id=7041):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x11)
mount(0x0, &(0x7f0000000180)='./file0/../file0\x00', &(0x7f0000000000)='binfmt_misc\x00', 0xc00, 0x0)
chroot(&(0x7f0000000100)='./file0\x00')
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f00000003c0)='./file0\x00', 0x0, 0x2a05004, 0x0)
pivot_root(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f0000000240)='./file0/../file0\x00')
pivot_root(&(0x7f0000000140)='./file0\x00', &(0x7f00000000c0)='./file0/../file0\x00')

3m0.106572483s ago: executing program 8 (id=7042):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00', 0x7c2})
ioctl$TUNATTACHFILTER(r0, 0x401054d5, 0x0)

2m59.463383412s ago: executing program 8 (id=7044):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x4, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=<r1=>r0, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000000000000850000008600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000008000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000280)='consume_skb\x00', r3}, 0x10)
r4 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="c0", 0x1}], 0x1}, 0x0)

2m59.349619815s ago: executing program 40 (id=7044):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x4, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=<r1=>r0, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000000000000850000008600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000008000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000280)='consume_skb\x00', r3}, 0x10)
r4 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="c0", 0x1}], 0x1}, 0x0)

2m52.282111862s ago: executing program 3 (id=7045):
syz_mount_image$exfat(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f00000003c0)={[{@errors_remount}, {@gid}, {@iocharset={'iocharset', 0x3d, 'cp850'}}, {@fmask={'fmask', 0x3d, 0x8c1}}, {@iocharset={'iocharset', 0x3d, 'macinuit'}}, {@errors_continue}, {@keep_last_dots}, {@errors_remount}, {@errors_continue}, {@iocharset={'iocharset', 0x3d, 'ascii'}}, {@namecase}]}, 0x1, 0x1531, &(0x7f0000001f80)="$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")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x109041, 0x0)

2m52.077118505s ago: executing program 3 (id=7094):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000240)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x802, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x10000000000)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000100)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x70, 0x18, &(0x7f00000002c0)={@ptr={0x70742a85, 0xfffffffe, 0x0, 0x0, 0x0, 0xb}, @ptr={0x70742a85, 0x0, 0x0, 0xf0, 0x1, 0x7}, @fda={0x66646185, 0x5, 0x1, 0x14}}, &(0x7f0000000600)={0x0, 0x28, 0x50}}, 0x1000}], 0x0, 0x0, 0x0})

2m50.283413746s ago: executing program 3 (id=7102):
r0 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001440)=ANY=[@ANYBLOB="1c0000005e0021a5553f8c6b23cbff070000e5373526a01edb"], 0x1c}}, 0x0)
recvmmsg$unix(r0, &(0x7f0000002380)=[{{0x0, 0x0, &(0x7f0000001340)=[{&(0x7f00000002c0)=""/4096, 0x1020}], 0x1}}], 0x8, 0x34000, 0x0)

2m50.15273286s ago: executing program 41 (id=7102):
r0 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001440)=ANY=[@ANYBLOB="1c0000005e0021a5553f8c6b23cbff070000e5373526a01edb"], 0x1c}}, 0x0)
recvmmsg$unix(r0, &(0x7f0000002380)=[{{0x0, 0x0, &(0x7f0000001340)=[{&(0x7f00000002c0)=""/4096, 0x1020}], 0x1}}], 0x8, 0x34000, 0x0)

2m25.779068935s ago: executing program 1 (id=7418):
syz_usb_connect$cdc_ecm(0x3, 0x67, &(0x7f0000002d00)={{0x12, 0x1, 0x110, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x55, 0x1, 0x1, 0xa, 0x90, 0x4, [{{0x9, 0x4, 0x0, 0x3, 0x2, 0x2, 0x6, 0x0, 0x5, {{0x5}, {0x5, 0x24, 0x0, 0x5}, {0xd, 0x24, 0xf, 0x1, 0x2, 0xf, 0x8}, [@mdlm_detail={0x5, 0x24, 0x13, 0x80, "e1"}, @mdlm={0x15, 0x24, 0x12, 0x7ff}]}, {[], {{0x9, 0x5, 0x82, 0x2, 0x40, 0x9, 0x4, 0xd}}, {{0x9, 0x5, 0x3, 0x2, 0x20, 0x9, 0x8, 0x1}}}}}]}}]}}, 0x0)

2m24.359415259s ago: executing program 1 (id=7423):
syz_mount_image$ext4(&(0x7f0000000740)='ext4\x00', &(0x7f0000000640)='./file1\x00', 0x0, &(0x7f0000000080), 0x3, 0x4d1, &(0x7f0000001080)="$eJzs3dFrW9cZAPDvynbiJM7sbHvIwpaFLcMJWyQ7XhKzh8yDsT0FlmXvnmfLxli2jCUnsQnDYX/AYGxraZ/61JdCn0uh5E9oC4H2vZTSEtokfWihrYrkqyZxZVsmlpVYvx8c33PuvfL3HQsd69x7uTeAjnUqIsYioisizkZEf7o+k5ZYWy/V/R7cvzVZLUlUKtc+TSJJ19V/V5Iuj6Qv642Iv/454h/J9+OWVlbnJgqF/FLazpXnF3OlldVzs/MTM/mZ/MLYyPDF0UujF0aHdq2vl//40f///eqfLr/1mxsfjH9y5p/VtPrSbY/3oxlrTe633vWe2t+irjsilnYS7BnWlfanp92JAADQlOp3/B9GxC8i4uFL7c4GAAAAaIXK7/viqySiAgAAAOxbmdo1sEkmm14L0BeZTDa7fg3vj+NwplAslX89XVxemFq/VnYgejLTs4X8UHqt8ED0JNX2cK3+qH1+Q3skIo5FxH/7D9Xa2cliYardBz8AAACgQxzZMP//vH99/g8AAADsMwPtTgAAAABoOfN/AAAA2P82nf8n3XubCAAAANAKf7lypVoq9edfT11fWZ4rXj83lS/NZeeXJ7OTxaXF7EyxOFO7Z9/8dr+vUCwu/jYWlm/myvlSOVdaWR2fLy4vlMdrz/Uez3tONAAAAOy9Yz+/834SEWu/O1QrVQfSbU3M1cdamx3QSpmd7Z60Kg9g73W1OwGgbba5wPedn+5VIsCecz4e2GZi/78N7R0eNgAAAJ4Fgz95qvP/zgfCc8xEHjqX8//QudzgCzqX8//Q4Q5uv0vvZhve3uVcAACAlumrlSSTTc8F9kUmk81GHK09FqAnmZ4t5Ici4gcR8V5/z8Fqe7jdSQMAAAAAAAAAAAAAAAAAAAAAAADAc6ZSSaICAAAA7GsRmY+T9EH+g/2n+zYeHziQfNFfW0bEjZevvXBzolxeGq6u/+y79eUX0/Xn23EEAwAAANioPk+vz+MBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYDc9uH9rsl72Mu69P0TEQKP43dFbW/a+0R8Rhx8m0f3Y65KI6NqF+Gu3I+J4o/hJNa0YSLPYGD8TEYfaHP/ILsSHTnanOv6MNfr8ZeJUbdn489edlqd179Rm41+mPv7VxrlG49/RJmOcuPt6btP4tyNOdDcef+rxk6ccf//+t9XVzbZVXokYbPj/J3kiVq48v5grrayem52fmMnP5BdGRoYvjl4avTA6lJueLeTTnw1j/Odnb36zVf8PbxJ/YJv+n26y/1/fvXn/R1vEP/PLjfG/rL3/x7eIX/3b/yr9P1DdPlivr63XH3fytXdPbtX/qU36v937f6bJ/p+9+q8Pm9wVANgDpZXVuYlCIb+k8lxWeryDKltVrqYf9B2/vM0DEwAAsOsefelvdyYAAAAAAAAAAAAAAAAAAADQuVp+E7KDT95ZoLd9XQUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA2NK3AQAA///VO9QU")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
quotactl_fd$Q_SETQUOTA(r0, 0xffffffff80000300, 0x0, 0x0)

2m24.167532874s ago: executing program 1 (id=7424):
mmap(&(0x7f0000004000/0x4000)=nil, 0x4000, 0x0, 0x2172, 0xffffffffffffffff, 0x0)
r0 = socket$unix(0x1, 0x5, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r2=>0x0})
connect$can_bcm(r1, &(0x7f00000000c0)={0x1d, r2}, 0x10)
sendmsg$can_bcm(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)=ANY=[@ANYBLOB="0100000003ece1e40ad8871461ab0800", @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=r0, @ANYBLOB="3bf81bb9f9"], 0x20000600}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

2m23.942869085s ago: executing program 1 (id=7426):
mkdirat(0xffffffffffffff9c, &(0x7f0000001a40)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000480)='./file0\x00', &(0x7f0000000380)='devtmpfs\x00', 0x4000, 0x0)
chroot(&(0x7f0000000100)='./file0\x00')
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f00000003c0)='./file0\x00', 0x0, 0x2a05004, 0x0)
pivot_root(&(0x7f0000000140)='./file0/file0\x00', &(0x7f0000000240)='./file0\x00')

2m23.874609325s ago: executing program 1 (id=7429):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000240)={0x40, r1, 0x9, 0x0, 0x25dfdbfe, {0x7}, [@MPTCP_PM_ATTR_ADDR={0x2c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e21}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @remote}]}]}, 0x40}, 0x1, 0x0, 0x0, 0x45040}, 0x0)

2m23.622457935s ago: executing program 1 (id=7434):
r0 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000180)={'veth0_virt_wifi\x00', &(0x7f0000000100)=@ethtool_cmd={0xa, 0xf, 0x80, 0x3, 0x1, 0x9, 0x80, 0x6, 0x3, 0x63, 0x9, 0x7, 0x1, 0x3, 0x7, 0x8001, [0x0, 0x7]}})

2m23.423940349s ago: executing program 42 (id=7434):
r0 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000180)={'veth0_virt_wifi\x00', &(0x7f0000000100)=@ethtool_cmd={0xa, 0xf, 0x80, 0x3, 0x1, 0x9, 0x80, 0x6, 0x3, 0x63, 0x9, 0x7, 0x1, 0x3, 0x7, 0x8001, [0x0, 0x7]}})

1m42.943788022s ago: executing program 0 (id=7948):
r0 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000680), 0x121300, 0x0)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000000)=0x81)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f00000006c0)=0xff)

1m42.937673038s ago: executing program 0 (id=7951):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0x2, 0x4, 0x4, 0x8, 0x0, 0x1}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000800)=ANY=[@ANYBLOB="0d00000023000000040000000200000040000000", @ANYRES32=r0], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000a00)={{r1}, &(0x7f0000000980), &(0x7f00000009c0)=r0}, 0x20)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f00000007c0)={r1, &(0x7f0000000680), 0x0}, 0x20)

1m42.847559202s ago: executing program 0 (id=7953):
getrandom(&(0x7f0000000000)=""/64, 0x40, 0x1)

1m42.783525287s ago: executing program 0 (id=7955):
syz_mount_image$exfat(&(0x7f00000001c0), &(0x7f0000000000)='./bus\x00', 0x800, &(0x7f0000000200)=ANY=[@ANYBLOB="6572726f72733d72656d6f756e742d726f2c6b6565705f6c6173745f646f74732c696f636861727365743d63703835302c7379735f747a2c696f636861727365743d69736f383835392d31352c6572726f72733d636f6e74696e75652c74696d655f6f66667365743d3078303030303030303030303030303030382c6572726f72733d72656d6f756e742d726f2c6572726f72733d636f6e74696e75652c646d61736b3d30303030303030303030303030303030303030303031332c646973636172642c646973636172642c00e0669f62a389f94dcc2fda2101686c10656f728020f5a616130a1fc56df99c298f3ad694c74a629be0af8c838281"], 0x1, 0x152a, &(0x7f0000003000)="$eJzs3AucTtX6OPDnWWvtMSS9TXIZ1lrP5k1imSTJJUkuSZIkSW4JSZMcSUgMuSUNSch1SC5DSC4Tk8b9fr8kJEmTJCG5Jev/Ef7qVL/T+Z1+x/mceb6fz/5Yz6z9rP287/Ne9t6YbzoOqtageuV6RAT/ErzwRxIAxAJAPwC4BgACACgdVzru/Hx2iUn/2kHYX+vh1CtdAbuSuP9ZG/c/a+P+Z23c/6yN+5+1cf+zNu5/1sb9Zywr2zg1/7W8Zd2N7///96vzhzP8/f9fJLPE6C9Wl7i+E0DMn03h/mdt3P//WsGf2Yn7n7Vx/7Oq2CtdAPsPwO//rCDbH85w/7M27j9jWdmVvv98pTeIZO3n4Eq//hhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMZQ2n/GUKAC6Nr3RdjDHGGGOMMcYY++v4bFe6AsYYY4wxxhhjjP3fQxAgQUEAMZANYiE75AABAFdDLrgGInAtxMF1kBuuhzyQF/JBfoiHAlAQNBiwQBBCISgMUbgBisCNUBRugmJQHByUgAS4GUrCLVAKboXScBuUgduhLJSD8lAB7oCKcCdUgrugMtwNVaAqVIPqcA/UgHuhJtwHteB+qA0PQB14EOrCQ1APHob68Ag0gEehITwGjaAxNIGm0Ox/lf8idIWXoBt0hyToAT3hZegFvaEP9IV+8Ar0h1dhALwGyTAQBsHrMBjegCHwJgyFYTAc3oIRMBJGwWgYA2MhBcbBeHgbJsA7MBEmwWSYAqkwFabBuzAdZsBMeA9mwfswG+bAXJgHafABzIcFkA4fwkL4CDJgESyGJbAUlsFyWAErYRWshjWwFtbBetgAG2ETbIYtsBW2wXb4GHbAJ7ATdsFu+BT2wGf/ZP7Jv8vvhICAAgUqVBiDMRiLsZgDc2BOzIm5MBdGMIJxGIe5MTfmwTyYD/NhPMZjQSyIBg0SEhbCQhjFKBbBIlgUi2IxLIYOHSZgApbEW7AUlsLSWBrLYBksi+WwHFbAClgRK2IlrISVsTJWwSpYDavhPXgP9sCaWBNrYS2sjbUv3Z7CelgP62N9bIANsCE2xEbYCJtgE2yGzbA5NscW2AJbYStsja2xDbbBREzEttgW22E7bI/tsQN2wI7YETthZ+yc+WI2wJfwJeyOVUQP7Ik9sRcmZ+uDfbEvvoL98VV8FV/DZByIg/B1fB3fwCF4AofiMByOw7GiGImjcDSSGIspmILjcTxOwAk4ESfhJJyCqTgVp+E0nI4zcAa+h7PwfXwf5+AcnIdpmIbzcQGmYzouxJOYgYtwMS7BpbgMl+IKXIkrcDWuwdW4DtfhBtyAm3ATbsEtuA234ceoAPAT3IW7MBn34B7ci3txH+7D/bgfMzETD+ABPIgH8RAewsN4GI/gUTyGR/E4HscTeBJP4Sk8g2fwLD4f/1X9j29alQziPCWUiBExIlbEihwih8gpcopcIpeIiIiIE3Eit8gt8og8Ip/IJ+JFvCgoCgojjCARxgCAiIqoKCKKiKKiqCgmigknnEgQCaKkKClKiVKitLhNlBG3i7KinGjpKogKoqJo5SqJu0RlUVlUEVVFNVFdVBc1RA1RU9QUtUQtUVvUFnXEg6Ku6IF98GFxvjMNxEBsKAZhI9FYyIufYM3FEGwhWopW4kkxDIdiG9HcJYpnRFsxCtuJv4nR+JzoIMZiR/GC6CQ6iy7iRdFVtHDdRHcxEXuInmIK9hK9RR/RV0zHquI9nJW9mnhNJIuBYpB4XczDN8QQ8aYYKoaJ4eItMUKMFKPEaDFGjBUpYpwYL94WE8Q7YqKYJCaLKSJVTBXTxLtiupghZor3xCzxvpgt5oi5Yp5IEx+I+WKBSBcfioXiI5EhFonFYolYKpaJ5WKFWClWidVijVgr1on1YoPYKDaJzWKL2Cq2ie3iY7FDfCJ2il1it/hU7BGfib3ic7FPfCH2iy9FpvhKHBBfi4PiG3FIfCsOi+/EEXFUHBPfi+PiB3FCnBSnxGlxRvwozoqfxDnhBUiUQkqpZCBjZDYZK7PLHPIqmVMGF5/da2WcvE7mltfLPDKvzCfzy3hZQBaUWhppJclQFpKFZVTeIIvIG2VReZMsJotLJ0vIBHmzLClvkaXkrbK0vE2WkbfLsrKcLC8ryDtkRXmnhMiFY1SRVWU1WV3eI5PgXllT3idryftlbfmArCMflHXlQ7KefFjWl4/IBvJR2VA+JhvJxrKJbCqbycdlc/mEbCFbylbySdlaPiXbyKdlonxGtpX+4kvkOdlBPi87yhdkJ9lZdpE/yXPSy26yu4QeIHvKl2Uv2Vv2kX1lP/mK7C9flQPkazJZDpSD5OtysHxDDpFvyqFymBwu35Ij5Eg5So6WY+RYmSLHyfHybTlBviMnyklyspwiU+VU2efiSjOl/If5b/9O/oCfj75BbpSb5Ga5RW6V2+R2+bHcIXfInXKn3C13yz1yj9wr98p9cp/cL/fLTJkpD8gD8qA8KA/JQ/KwPCyPyKPytPxeHpc/yBPypDwpT8sz8ow8e/E5AIVKKKmUClSMyqZiVXaVQ12lcqqrVS51jYqoa1Wcuk7lVterPCqvyqfyq3hVQBVUWhllFalQFVKFVVTdgBdfMKqYKq6cKqES1M3/TL4qom5URdVNv8q/VF/SH9TXTDVTzVVz1UK1UK1UK9VatVZtVBuVqBJVW9VWtVPtVHvVXnVQHVRH1VF1Up1UF9VFdVVdVTfVTSWpJNVTvax6qd6qj+qr+qlXVH/VXw1QA1SySlaD1CA1WA1WQ9QQNVQNVcPVcDVCjVCj1Cg1Ro1RKSpFjVfj1QQ1QU1UE9VkNVmlqlQ1TU1T09V0NVPNVLPULDVbzVZz1VyVptLUfDVfpat0tVAtVBlqkVqklqglaplaplaoFWqVWqXWqDVqnVqnMtRGtVFtVpvVVrVVbVfb1Q61Q+1UO9VutVvtUXvUXrVX7VP71H61X2WqTHVAHVAH1UF1SB1Sh9VhdUQdUcfUMXVcHVcn1Al1Sp1SZ9QZdVadVefUufOnfYEIRKACFcQEMUFsEBvkCHIEOYOcQa4gVxAJIkFcEBfkDq4P8gR5g3xB/iA+KBAUDHRgAhuIi02PBjcERYIbg6LBTUGxoHjgghJBQnBzUDK4JSgV3BqUDm4LygS3B2WDckH5oEJwR1AxuDOoFNwVVA7uDqoEVYNqQfXgnqBGcG9QM7gvqBXcH9QOHgjqBA8GdYOHgnrBw0H94JGgQfBo0DB4LGgUNA6aBE2DZn/p+t6fyPuE66a76yTdQ/fUL+teurfuo/vqfvoV3V+/qgfo13SyHqgH6df1YP2GHqLf1EP1MD1cv6VH6JF6lB6tx+ixOkWP0+P123qCfkdP1JP0ZD1Fp+qpepp+V0/XM/RM/Z6epd/Xs/UcPVfP02n6Az1fL9Dp+kO9UH+kM/QivVgv0Uv1Mr1cr9Ar9Sq9Wq/Ra/U6vV5v0Bv1Jr1Zb9Fb9Ta9XX+sd+hP9E69S+/Wn+o9+jO9V3+u9+kv9H79pc7UX+kD+mt9UH+jD+lv9WH9nT6ij+pj+nt9XP+gT+iT+pQ+rc/oH/VZ/ZM+p/35k/vzX+9GGWViTIyJNbEmh8lhcpqcJpfJZSImYuJMnMltcps8Jo/JZ/KZeBNvCpqC5jwyZAqZQiZqoqaIKWKKmqKmmClmnHEmwSSYkqakKWVKmdKmtCljypiypqwpb8qbO8wd5k5zp7nL3GXuNnebqqaqqW6qmxqmhqlpappappapbWqbOqaOqWvqmnqmnqlv6psGpoFpaBqaRqaRaWKamGammWlumpsWpoVpZVqZ1qa1aWPamESTaNqatqadaWfam/amg+lgOpqOppPpZLqYLqar6Wq6mW4mySSZnqan6WV6mT6mj+ln+pn+pr8ZYAaYZJNsBplBZrAZbIaYIWaoGWaGnz9RNSPNKDPajDFjTYpJMePNeDPBTDATzUQz2Uw2qSbVTDPTzHQz3cw0M80sM8vMNrPNXDPXpJk0M9/MN+km3Sw0C02GyTCLzWKz1Cw1y81ys9KsNKvNarMW1pr1Zr3ZaDaazWaz2Wq2mu1mu9lhdpidZqfZbXabPWaP2Wv2mn1mn9lv9ptMk2kOmAPmoDloDplD5rA5bI6YI+aYOWaOm+PmhDlhTplT5ozJe/H70ptYm93msFfZnPZqm8teY/8+zmfz23hbwBa02uaxeX8VG2ttUXuTLWaLW2dL2AR782/isracLW8r2DtsRXunrfSbuIa919a099la9n5b3d7zq7i2fcDWsY/auogAtrGtb5vaBvZR29A+ZhvZxraJbWpb26dsG/u0TbTP2Lb22d/E8+0Cu9KusqvtGrvT7rKn7Gl70H5jz9gfbTfb3fazr9j+9lU7wL5mk+3A38TD7Vt2hB1pR9nRdowd+5t4sp1iU+1UO82+a6fbGb+J0+wHdpZNt7PtHDvXzvs5Pl9Tuv3QLrQf2QwbwGK7xC61y+xyu+L/17rErrPr7Qa7w35iN9stdqvdZrdfOhG2u+xu+6ndYz+zB+zXdp/9wu63h2ym/ern+PzjO2S/tYftd/aIPWqP2e/tcfuD+jl3ZC8A+6P93v5kz1lvgZCAJCkKKIayUSxlpxx0FeWkqykXXUMRupbi6DrKTddTHspL+Sg/xVMBKkiaDFkiCqkQFaYo3UCXyitGxclRCUqgm6kk3UKl6FYqTbdRGbqdylI5Kk8V6A6qSHdSJbqLKtPdVIWqUjWqTvdQDbqXatJ9VIvup9r0ANWhB6kuPUT16GGqT49QA3qUGtJj1IgaUxNqSs3ocWpOT1ALakmt6ElqTU9RG3qaEukZakvPUjv6G7Wn56gDPU8d6QXqRJ2pC71IXekl6kbdKYl6UE96mXpRb+pDfakfvUL96VUaQK9RMg2kQfQ6DaY3aAi9SUNpGA2nt2gEjaRRNJrG0FhKoXE0nt6mCfQOTaRJNJmmUCpNpWn0Lk2nGTST3qNZ9D7Npjk0l+ZRGn1A82kBpdOHtJA+ogxaRItpCS2lZbScVtBKWkWraQ2tpXW0njbQRtpEm2kLbaVttJ0+ph30Ce2kXbSbPqU99Bntpc9pH31B++lLyqSv6AB9TQfpGzpE3/ru9B0doaN0jL6n4/QDnaCTdIpO0xn6kc7ST3SOPEGIoQhlqMIgjAmzhbFh9jBHeFWYM7w6zBVeE0bCa8O48Lowd3h9mCfMG+YL84fxYYGwYKhDE9qQwjAsFBYOo+ENYZHwxrBoiGGxsHjowhJhQnhzWDK8JSwV3hqWDm8Ly4S3h2XDcuGj91cI7wgrhneGlcK7wsrh3WGVsGpYLawe3hPWCO8Na4b3hbXC+8NS4QNhnfDBsG74UFgvfDisHz4SNggfDRuGj4WNwsZhk7Bp2Cx8PGwePhG2CFuGrcInw9bhU2Gb8OkwMXwmbBs++/P8Awv+eD4p7BH2DF8OXw69v0/Ojc6LpkU/iM6PLoimRz+MLox+FM2ILoouji6JLo0uiy6ProiujK6Kro6uia6Nrouuj26Iel89Gzh0wkmnXOBiXDYX67K7HO4ql9Nd7XK5a1zEXevi3HUut7ve5XF5XT6X38W7Aq6g084468iFrpAr7KLuBlfE3eiKuptcMVfcOVfCJbimrplr5pq7J1wL19K1ck+6J91T7in3tHvaPePaumddO/c319495zq4593z7gXXyXV2XdyLrqsbl+vCezLJ9XQ9XS/Xy/VxfVw/18/1d/3dADfAJbtkN8gNcoPdYDfEDXFD3VA33A13I9wIN8qNcmPcGJfiUtx4N95NcBPcRDfRTXaTXapLddPcNDfdTXcVZ1w4ymw32811c12aS3Pz3flzxnS30C10GS7DLXaL3VK31C13y91Kt9KtdqvdWrfWrXfr3Ua30W12m91Wt9Vtd9vdDrfD7fTXXFjU7XF73V63z+1z+92XLtN95Q64r91B94075L51h9137og76o65791x94M74U66U+60O+N+dGfdT+6c8y4lMi4yPvJ2ZELkncjEyKTI5MiUSGpkamRa5N3I9MiMyMzIe5FZkfcjsyNzInMj8yJpkQ8i8yMLIumRDyMLIx9FMiKLIosjSyJLI8si3hfYHPpCvrCP+ht8EX+jL+pv8sV8ce98CZ/gb/Yl/S2+lL/Vl/a3+TL+dl/Wl/Pl/WO+kW/sm/imvpl/3Df3T/gWvqVv5Z/0rf1Tvo1/2if6Z3xb/6xv5//m2/vnfAf/vO/oX/CdfGffxb/ou/qXfDff3Sf5Hr6nf9n38r19H9/X9/Ov+P7+VT/Av+aT/UA/yL/uB/s3/BD/ph/qh/nhMW/5EZcukWGsT/Hj/Hj/tp/g3/ET/SQ/2U/xqX6qn+bf9dP9DD/Tv+dn+ff9bD/Hz/XzfJr/wM/3C3y6/9Av9B/5DL/o0k1lv9yv8Cv9Kr/ar/Fr/Tq/3m/wG/0mv9lv8Vv9Nr/df+x3+E/8Tr/L7/af+j3+M7/Xf+73+S/8fv+lz/Rf+QP+a3/Qf+MP+W/9Yf+dP+KP+mP+e3/c/+BP+JP+lD/tz/gf/Vn/kz/H/2eNMcYYY+xPGXd5KH49c+F2fo/fyRG/2LknAFy9JX/mL+fPn1GuzXNh3FvEt44AwDPdOz58aatSJSkp6eK+GRKCwnMALv1N0HkxcDleBK3gKUiEllDyd+vvLTqfoX+wfvQ2gBy/yImFy/Hl9T8HwKTfWf/xJ4fPLxOeivsf1p8DULTw5ZzscDleBK1+vr/SEkr9Qf15m/+y/tjfrp/9ixSAFr/IyQmX48v1J8AT8Cwk/mpPxhhjjDHGGGPsgt6ifPtL15+X/sXn712fx6vLOdngcvyPrs8ZY4wxxhhjjDF25T3XucvTjycmtmz/zw8q/a+y/vSgIfxfrcyD3x14D3DpJwoA/sUFAc4P5L/zUWz6txwr+eJb5++nlp72AfxntPKvGFzhDybGGGOMMcbYX+7ySf+vf66uVEGMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxlgW9O/4dWJX+jEyxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjV9r/CwAA///UxgMC")
mount(0x0, &(0x7f0000000640)='./file0/../file0\x00', &(0x7f0000000080)='configfs\x00', 0x0, 0x0)

1m42.662811071s ago: executing program 0 (id=7958):
openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000080), 0x2)
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r1, 0x84, 0x83, &(0x7f0000000080)=@assoc_value={<r2=>0x0}, &(0x7f0000000300)=0x8)
getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(r0, 0x84, 0x1b, &(0x7f00000003c0)={r2}, &(0x7f0000000180)=0x8)

1m42.43736639s ago: executing program 0 (id=7962):
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000), 0x8502, 0x0)
write$sndseq(r0, 0x0, 0x0)

1m42.299304811s ago: executing program 43 (id=7962):
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000), 0x8502, 0x0)
write$sndseq(r0, 0x0, 0x0)

47.569822436s ago: executing program 4 (id=8767):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x12, &(0x7f00000007c0)=0xffffffff, 0x4)

47.460354104s ago: executing program 4 (id=8768):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000280)=0x2, 0x4)
recvmsg(r0, &(0x7f00000006c0)={0x0, 0x0, 0x0}, 0x142)

47.460187661s ago: executing program 4 (id=8769):
capset(&(0x7f0000000100)={0x20080522}, &(0x7f0000000140)={0x0, 0x0, 0x3, 0x80, 0xfffffffb})
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0x14)

47.353799699s ago: executing program 4 (id=8770):
syz_mount_image$hfsplus(&(0x7f00000001c0), &(0x7f0000000980)='./file1\x00', 0xc8, &(0x7f0000000a00)=ANY=[], 0x1, 0x6ac, &(0x7f0000001380)="$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")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x109041, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0)
open_tree(0xffffffffffffffff, &(0x7f0000000100)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
bpf$BPF_PROG_DETACH(0x8, 0x0, 0x20)
add_key$user(&(0x7f00000003c0), 0x0, &(0x7f0000000940)="a6c13c6a7c8c0074e36a3b54e9ce669b3b032f120a3cf850c51871f3c5", 0x1d, 0x0)
mount$bind(&(0x7f0000000040)='./file0/file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x81105a, 0x0)
mount$bind(&(0x7f0000000880)='./file0/../file0\x00', &(0x7f0000000440)='./file0/file0\x00', 0x0, 0x3bdc51, 0x0)
mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f0000000080)='./file0/file0/file0\x00', 0x0, 0x887008, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r0, &(0x7f0000006b40)={0x2020}, 0x206e)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000040)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
setsockopt$ALG_SET_AEAD_AUTHSIZE(r1, 0x117, 0x5, 0x0, 0x800000000000003)
syz_io_uring_setup(0x3, &(0x7f0000000580)={0x0, 0xc7c9, 0x1, 0x1, 0x57}, &(0x7f0000000240), 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000fdff00000000000000000000180900000020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0xe, '\x00', 0x0, @fallback=0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0x200000b, 0x8c4b815a5465c2b2, 0xffffffffffffffff, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'sha512\x00'}, 0x58)
r2 = syz_open_dev$radio(0x0, 0x1, 0x2)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
ioctl$VIDIOC_G_MODULATOR(r2, 0xc0445636, 0x0)
syz_genetlink_get_family_id$nl802154(0x0, 0xffffffffffffffff)
sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000640), 0x0, 0x0)

47.278169855s ago: executing program 4 (id=8771):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB="300000003c000701fcffffff00000000017c0000100036800c00020008000000007000000c000180060206"], 0x30}, 0x1, 0x0, 0x0, 0x488c0}, 0xc000)

47.150335885s ago: executing program 4 (id=8774):
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000003c0)=ANY=[@ANYBLOB="60000000190001002abd7000fcdbdf251d01020005000d0004"], 0x60}}, 0x0)
sendmmsg(r0, &(0x7f0000000000), 0x4000000000001f2, 0x0)

47.044151406s ago: executing program 44 (id=8774):
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000003c0)=ANY=[@ANYBLOB="60000000190001002abd7000fcdbdf251d01020005000d0004"], 0x60}}, 0x0)
sendmmsg(r0, &(0x7f0000000000), 0x4000000000001f2, 0x0)

2.795511307s ago: executing program 5 (id=9425):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x4011, &(0x7f0000000040)={[{@journal_dev={'journal_dev', 0x3d, 0x5}}, {@dioread_lock}, {@journal_checksum}, {@noblock_validity}, {@commit={'commit', 0x3d, 0x5a5c}}, {@dioread_nolock}]}, 0x0, 0x64a, &(0x7f0000002380)="$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")

2.63779217s ago: executing program 5 (id=9428):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_VENDOR(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000001b40)={&(0x7f0000000400)={0x24, r0, 0x62c21a4ade68aba1, 0x0, 0x2, {{0x32}, {@val={0x8, 0x1, 0x2e}, @val={0x8, 0x3, r2}, @void}}}, 0x24}, 0x1, 0x0, 0x0, 0x48d4}, 0x40010)

2.534509703s ago: executing program 5 (id=9429):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2000006, 0x31, 0xffffffffffffffff, 0xd0fb6000)
r0 = syz_open_procfs$pagemap(0x0, &(0x7f0000000240))
ioctl$PAGEMAP_SCAN(r0, 0xc0606610, &(0x7f00000004c0)={0x60, 0x0, &(0x7f000023d000/0x4000)=nil, &(0x7f00004fa000/0x4000)=nil, 0x0, &(0x7f00000021c0), 0x4f, 0x3})

2.534352588s ago: executing program 5 (id=9430):
r0 = syz_usb_connect(0x2, 0x24, &(0x7f0000000640)=ANY=[@ANYBLOB="12010000d972a440b72040155ab7010203010902120001000000000904800000ff"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
syz_usb_control_io$printer(r0, 0x0, &(0x7f0000000480)={0x34, &(0x7f0000000200)={0x40, 0x2e, 0x3, "000baa"}, 0x0, 0x0, 0x0, 0x0, 0x0})

1.042021802s ago: executing program 2 (id=9449):
syz_mount_image$nilfs2(&(0x7f0000000ec0), &(0x7f0000000080)='./file0\x00', 0x0, &(0x7f0000000400)=ANY=[], 0x1, 0xf04, &(0x7f0000000f40)="$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")
rmdir(&(0x7f0000000000)='./file0\x00')

965.711327ms ago: executing program 2 (id=9450):
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000200)=0x80000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000280)={@local})
ioctl$IOCTL_VMCI_DATAGRAM_SEND(r0, 0x7ab, &(0x7f00000000c0)={&(0x7f00000005c0)={{@any, 0x4}, {@local, 0x4}, 0x400, "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"}, 0x418, 0x10})

965.573792ms ago: executing program 2 (id=9451):
r0 = syz_open_procfs$pagemap(0x0, &(0x7f0000001080))
madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0xe)
madvise(&(0x7f0000cf6000/0x4000)=nil, 0x4000, 0x16)
ioctl$PAGEMAP_SCAN(r0, 0xc0606610, &(0x7f0000000140)={0x60, 0x0, &(0x7f0000001000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, 0x4, &(0x7f00000004c0)=[{0x800000000}], 0x1, 0xbff, 0x1e, 0x0, 0xc, 0x1})

965.448055ms ago: executing program 2 (id=9452):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000100)={0x64, 0x2, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_CADT_FLAGS={0x8, 0x11}, @IPSET_ATTR_BUCKETSIZE={0x5, 0x15, 0x2}]}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_TYPENAME={0x16, 0x3, 'hash:net,port,net\x00'}]}, 0x64}}, 0x0)

871.28302ms ago: executing program 2 (id=9453):
prlimit64(0x0, 0xe, &(0x7f0000000740)={0x8, 0x8b}, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r0, 0x7, &(0x7f00000000c0)={0x1})
r1 = gettid()
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r2, 0x26, &(0x7f00000000c0)={0x0, 0x1, 0x8000000000003, 0x10000})
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000000040)=<r3=>0x0)
timer_settime(r3, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x26, &(0x7f0000000000)={0x1})
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = syz_open_dev$MSR(&(0x7f0000000080), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$kcm(0x2d, 0x2, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
bpf$BPF_PROG_ATTACH(0x8, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0)

539.12501ms ago: executing program 5 (id=9454):
creat(&(0x7f0000000940)='./file0\x00', 0x30)
mount$tmpfs(0x0, &(0x7f0000000c80)='./file0\x00', &(0x7f0000000cc0), 0x4, &(0x7f0000000d00)={[{@usrquota_inode_hardlimit={'usrquota_inode_hardlimit', 0x3d, [0x39, 0x65]}}]})

454.636185ms ago: executing program 5 (id=9455):
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x1000, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x60842, 0x4)
fcntl$setstatus(r0, 0x4, 0x42000)
read$FUSE(r0, &(0x7f0000001440)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_STATFS(r0, &(0x7f0000000200)={0x60, 0x0, r1, {{0x9, 0x5, 0x5, 0x2, 0x400069a, 0xae, 0x2400000, 0x800}}}, 0xfffffec2)

217.489115ms ago: executing program 6 (id=9457):
syz_mount_image$msdos(&(0x7f0000000000), &(0x7f0000000240)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x2000c8, &(0x7f00000005c0)=ANY=[@ANYBLOB='codepage=874,nodots,dots,tz=UTC,dots,nodots,codepage=862,dots,dots,check=strict,allow_utime=000000000000000000001,sys_immutable,nodots,nfs,quiet,dots,nodots,nodots,debug,usefree,tz=UTC,flush,nodots,\x00'], 0xfd, 0x1bf, &(0x7f0000000940)="$eJzs3TGL02AYB/Cn9bzmnG4TRCHg4nSon+BEThADgtJBJ4XT5SqCt0SX9mP4Af0A0qmLRGrSxkaHWmxS6++39En/edvnHZp26ZNXN99dnL+/fPvl+udIkl70T+M0Zr04jn4sTAIA2CezooivRanrXgCAdqzx/f+t5ZYAgC17/uLlkwdZdvYsTZOI6SQf5sPyscwfPc7O7qY/HNerpnk+vLLM76XN3w7z/Gpcq/L75fp0NT+MO7fLfJ49fJo18kGcb3frAAAAAAAAAAAAAAAAAAAAAADQmVuRLvx2vs/JSTM/qvLy6Kf5QI35PQdx46A6rMcDFeM2NgUAAAAAAAAAAAAAAAAAAAD/mMuPny5ej0ZvPtTFICJWn/mTole98IbL2y76sRNtKP5qke5GG6MNPwWHEbGtxmZFUax1cn2NGHR1cQIAAAAAAAAAAAAAAAAAgP9M/affX7Oki4YAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoAP1/f83KMYRscbJyzc76nSrAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA7LHvAQAA///DgjXa")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0)
r1 = inotify_init1(0x800)
inotify_add_watch(r1, &(0x7f0000000040)='.\x00', 0x24000420)
ioctl$FAT_IOCTL_GET_ATTRIBUTES(r0, 0x40047211, &(0x7f00000000c0))

154.232584ms ago: executing program 6 (id=9458):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="05000000040000000800000001"], 0x48)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000200)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000140), &(0x7f00000001c0)='%pI4   \x00'}, 0x20)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000001800)={r1, &(0x7f0000000280)="96", &(0x7f00000017c0)=@tcp6, 0x2}, 0x20)

154.083461ms ago: executing program 6 (id=9459):
syz_mount_image$minix(&(0x7f0000000140), &(0x7f0000000040)='./file0\x00', 0x804008, &(0x7f0000000100)=ANY=[], 0x5a, 0x214, &(0x7f000003f100)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
truncate(&(0x7f0000000900)='./file1\x00', 0x3000000)
pwrite64(r0, &(0x7f0000000140)='2', 0xfdef, 0x8000c61)

86.59069ms ago: executing program 6 (id=9460):
r0 = socket(0x23, 0x5, 0x0)
setsockopt$SO_J1939_SEND_PRIO(r0, 0x6b, 0x3, 0x0, 0x0)

1.117162ms ago: executing program 6 (id=9461):
r0 = syz_init_net_socket$ax25(0x3, 0x3, 0xcf)
r1 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000000), 0x2)
ioctl$UDMABUF_CREATE(r1, 0x40187542, &(0x7f0000000080)={r0, 0x1, 0x8000, 0x10000})

852.117µs ago: executing program 6 (id=9462):
lsetxattr$system_posix_acl(&(0x7f00000001c0)='.\x00', &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000140)={{}, {}, [], {0x2}, [{0x8, 0x7}], {0x2}, {0x2, 0x7}}, 0x2c, 0x2)

0s ago: executing program 2 (id=9463):
r0 = shmget$private(0x0, 0x3000, 0x2, &(0x7f0000ffd000/0x3000)=nil)
shmat(r0, &(0x7f0000ffc000/0x3000)=nil, 0x4000)
shmctl$IPC_RMID(r0, 0x0)
remap_file_pages(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0)

kernel console output (not intermixed with test programs):

batman_adv: batadv0: Interface activated: batadv_slave_0
[  727.841342][T25508] batman_adv: batadv0: Interface activated: batadv_slave_1
[  727.849254][T13027] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  727.853189][T13027] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  727.861814][T13027] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  727.867796][T13027] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  727.948099][ T1094] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  727.951672][ T1094] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  727.968625][ T3585] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  727.972735][ T3585] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  728.300485][T25580] loop4: detected capacity change from 0 to 1024
[  728.361171][T25580] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  728.401434][T25580] EXT4-fs error (device loop4): ext4_free_blocks:6696: comm syz.4.7987: Freeing blocks not in datazone - block = 0, count = 16
[  728.513903][T24228] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  728.616706][ T5850] Bluetooth: hci2: command tx timeout
[  729.146703][   T33] kauditd_printk_skb: 9 callbacks suppressed
[  729.146721][   T33] audit: type=1800 audit(691.608:250): pid=25612 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.8001" name="file1" dev="tmpfs" ino=18051 res=0 errno=0
[  729.439281][T25624] overlayfs: failed to resolve './file1': -2
[  729.980503][T25631] loop4: detected capacity change from 0 to 32768
[  730.008025][T25631] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  730.190362][T25631] XFS (loop4): Ending clean mount
[  730.203186][T25651] loop6: detected capacity change from 0 to 2048
[  730.276132][T25651]  loop6: p4 < >
[  730.306426][T24228] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  730.815303][ T5850] Bluetooth: hci2: command tx timeout
[  730.930737][T25666] 9pnet: Could not find request transport: fd0x000000000000000b
[  730.966414][T25674] loop4: detected capacity change from 0 to 256
[  730.994709][T25674] FAT-fs (loop4): Directory bread(block 64) failed
[  731.015130][T25674] FAT-fs (loop4): Directory bread(block 65) failed
[  731.017724][T25674] FAT-fs (loop4): Directory bread(block 66) failed
[  731.024141][T25674] FAT-fs (loop4): Directory bread(block 67) failed
[  731.026489][T25674] FAT-fs (loop4): Directory bread(block 68) failed
[  731.036735][T25674] FAT-fs (loop4): Directory bread(block 69) failed
[  731.039738][T25674] FAT-fs (loop4): Directory bread(block 70) failed
[  731.042425][T25674] FAT-fs (loop4): Directory bread(block 71) failed
[  731.045202][T25674] FAT-fs (loop4): Directory bread(block 72) failed
[  731.048118][T25674] FAT-fs (loop4): Directory bread(block 73) failed
[  732.734042][T25700] loop4: detected capacity change from 0 to 32768
[  732.775906][T25700] JBD2: Ignoring recovery information on journal
[  732.814089][T25700] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  732.868728][T24228] ocfs2: Unmounting device (7,4) on (node local)
[  732.913159][T25722] netlink: 32 bytes leftover after parsing attributes in process `syz.6.8044'.
[  733.023916][T25732] loop4: detected capacity change from 0 to 1024
[  733.027536][T25732] EXT4-fs: Ignoring removed oldalloc option
[  733.039032][ T5850] Bluetooth: hci2: command tx timeout
[  733.053779][T25732] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  733.081938][T25741] netlink: 20 bytes leftover after parsing attributes in process `syz.2.8052'.
[  733.097300][T24228] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  733.169688][T25745] netlink: 12 bytes leftover after parsing attributes in process `syz.4.8053'.
[  733.447701][   T10] usb 7-1: new high-speed USB device number 13 using dummy_hcd
[  733.605380][   T10] usb 7-1: Using ep0 maxpacket: 8
[  733.609392][   T10] usb 7-1: config 0 has an invalid interface number: 151 but max is 1
[  733.612774][   T10] usb 7-1: config 0 has no interface number 1
[  733.615563][   T10] usb 7-1: config 0 interface 151 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  733.620396][   T10] usb 7-1: config 0 interface 151 altsetting 0 has an endpoint descriptor with address 0xA3, changing to 0x83
[  733.626375][   T10] usb 7-1: config 0 interface 151 altsetting 0 endpoint 0x83 has invalid maxpacket 64466, setting to 1024
[  733.631256][   T10] usb 7-1: config 0 interface 151 altsetting 0 bulk endpoint 0x83 has invalid maxpacket 1024
[  733.635567][   T10] usb 7-1: config 0 interface 151 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  733.641698][   T10] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xC9, changing to 0x89
[  733.645967][   T10] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid wMaxPacketSize 0
[  733.650027][   T10] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x89 has invalid maxpacket 0
[  733.656763][   T10] usb 7-1: New USB device found, idVendor=0499, idProduct=500a, bcdDevice=e7.b7
[  733.660635][   T10] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  733.663967][   T10] usb 7-1: Product: syz
[  733.665890][   T10] usb 7-1: Manufacturer: syz
[  733.667899][   T10] usb 7-1: SerialNumber: syz
[  733.673503][   T10] usb 7-1: config 0 descriptor??
[  733.676650][T25726] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  733.682534][   T10] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[  733.690884][   T10] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[  733.710326][   T10] snd-usb-audio 7-1:0.0: probe with driver snd-usb-audio failed with error -12
[  733.898691][   T10] usb 7-1: USB disconnect, device number 13
[  734.582262][T25788] overlayfs: failed to clone upperpath
[  734.781249][   T10] usb 5-1: new full-speed USB device number 18 using dummy_hcd
[  734.943652][   T10] usb 5-1: config 0 has an invalid interface number: 133 but max is 0
[  734.950227][   T10] usb 5-1: config 0 has no interface number 0
[  734.954649][   T10] usb 5-1: New USB device found, idVendor=06cd, idProduct=0121, bcdDevice=dd.3d
[  734.957685][   T10] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  734.960671][   T10] usb 5-1: Product: syz
[  734.962534][   T10] usb 5-1: Manufacturer: syz
[  734.968133][   T10] usb 5-1: SerialNumber: syz
[  734.971922][   T10] usb 5-1: config 0 descriptor??
[  735.193672][   T10] keyspan 5-1:0.133: Keyspan 1 port adapter converter detected
[  735.199495][   T10] keyspan 5-1:0.133: found no endpoint descriptor for endpoint 81
[  735.203000][   T10] keyspan 5-1:0.133: found no endpoint descriptor for endpoint 1
[  735.206271][   T10] keyspan 5-1:0.133: found no endpoint descriptor for endpoint 2
[  735.211863][   T10] usb 5-1: Keyspan 1 port adapter converter now attached to ttyUSB0
[  735.217428][   T10] usb 5-1: USB disconnect, device number 18
[  735.224443][   T10] keyspan_1 ttyUSB0: Keyspan 1 port adapter converter now disconnected from ttyUSB0
[  735.228952][   T10] keyspan 5-1:0.133: device disconnected
[  735.263921][ T5850] Bluetooth: hci2: command tx timeout
[  735.326480][ T5880] usb 7-1: new high-speed USB device number 14 using dummy_hcd
[  735.508139][ T5880] usb 7-1: Using ep0 maxpacket: 16
[  735.515315][ T5880] usb 7-1: config 0 has an invalid interface number: 8 but max is 0
[  735.518603][ T5880] usb 7-1: config 0 has no interface number 0
[  735.521655][ T5880] usb 7-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  735.532017][ T5880] usb 7-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[  735.535473][T25813] A link change request failed with some changes committed already. Interface U9 may have been left with an inconsistent configuration, please check.
[  735.536037][ T5880] usb 7-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[  735.549689][ T5880] usb 7-1: Product: syz
[  735.551388][ T5880] usb 7-1: SerialNumber: syz
[  735.555481][ T5880] usb 7-1: config 0 descriptor??
[  735.560559][ T5880] cm109 7-1:0.8: invalid payload size 123, expected 4
[  735.567386][ T5880] input: CM109 USB driver as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.8/input/input37
[  735.598383][   T33] audit: type=1326 audit(697.641:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25814 comm="syz.2.8087" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fe397d8ebe9 code=0x0
[  736.007780][    C1] cm109 7-1:0.8: cm109_urb_irq_callback: urb status -71
[  736.007892][ T5893] usb 7-1: USB disconnect, device number 14
[  736.010760][    C1] cm109 7-1:0.8: cm109_submit_ctl: usb_submit_urb (urb_ctl) failed -19
[  736.050796][ T5893] cm109 7-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19
[  736.882692][T17263] hid-generic 0000:0000:0000.001A: unknown main item tag 0x0
[  736.895970][T25840] loop6: detected capacity change from 0 to 1024
[  736.899463][T17263] hid-generic 0000:0000:0000.001A: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  737.190162][T25853] loop6: detected capacity change from 0 to 32768
[  737.198965][T25853] XFS (loop6): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  737.235889][T25853] XFS (loop6): Ending clean mount
[  737.242565][T25853] XFS (loop6): Quotacheck needed: Please wait.
[  737.291035][T25853] XFS (loop6): Quotacheck: Done.
[  737.380853][T25508] XFS (loop6): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  737.673834][T25882] loop6: detected capacity change from 0 to 128
[  737.678168][T25882] EXT4-fs: Ignoring removed nomblk_io_submit option
[  737.687309][T25882] EXT4-fs: Ignoring removed nomblk_io_submit option
[  737.693971][T25882] EXT4-fs (loop6): Test dummy encryption mode enabled
[  737.713721][T25882] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  737.758251][T25508] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  737.867872][T25891] loop6: detected capacity change from 0 to 128
[  737.873147][T25891] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  737.921278][T25508] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  738.054207][T25898] syz_tun: entered allmulticast mode
[  738.059482][T25898] netlink: 8 bytes leftover after parsing attributes in process `syz.6.8119'.
[  740.754301][ T5850] Bluetooth: hci0: unexpected event for opcode 0x0804
[  741.274358][T25974] loop6: detected capacity change from 0 to 32768
[  741.300604][T25974] ocfs2: Mounting device (7,6) on (node local, slot 0) with writeback data mode.
[  741.362530][T25508] ocfs2: Unmounting device (7,6) on (node local)
[  741.405458][T25984] loop4: detected capacity change from 0 to 8192
[  741.551872][T25996] netlink: 'syz.4.8161': attribute type 1 has an invalid length.
[  741.596818][T26000] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  741.816128][T26028] loop6: detected capacity change from 0 to 128
[  741.819138][T26028] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=256, location=256
[  741.823664][T26028] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  741.954090][T26036] loop6: detected capacity change from 0 to 256
[  741.957772][T26036] MINIX-fs: mounting file system with errors, running fsck is recommended
[  741.962281][T26026] loop4: detected capacity change from 0 to 40427
[  741.968860][T26026] F2FS-fs (loop4): build fault injection rate: 771
[  741.973485][T26026] F2FS-fs (loop4): invalid crc value
[  742.042431][T26026] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  742.047264][T26026] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  742.073640][T26026] syz.4.8175: attempt to access beyond end of device
[  742.073640][T26026] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  742.122778][T24228] syz-executor: attempt to access beyond end of device
[  742.122778][T24228] loop4: rw=2049, sector=45104, nr_sectors = 8 limit=40427
[  742.129345][T24228] CPU: 0 UID: 0 PID: 24228 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  742.129364][T24228] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  742.129372][T24228] Call Trace:
[  742.129376][T24228]  <TASK>
[  742.129381][T24228]  dump_stack_lvl+0x189/0x250
[  742.129401][T24228]  ? __pfx_dump_stack_lvl+0x10/0x10
[  742.129415][T24228]  ? __pfx_queue_work_on+0x10/0x10
[  742.129428][T24228]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  742.129445][T24228]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  742.129470][T24228]  f2fs_handle_critical_error+0x37c/0x540
[  742.129494][T24228]  f2fs_write_end_io+0x886/0xb60
[  742.129554][T24228]  __submit_merged_bio+0x27a/0x6a0
[  742.129577][T24228]  __submit_merged_write_cond+0x255/0x530
[  742.129600][T24228]  f2fs_write_data_pages+0x261d/0x3000
[  742.129652][T24228]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  742.129717][T24228]  ? folios_put_refs+0x559/0x640
[  742.129739][T24228]  ? __pfx_folios_put_refs+0x10/0x10
[  742.129750][T24228]  ? rcu_is_watching+0x15/0xb0
[  742.129768][T24228]  ? __lock_acquire+0xab9/0xd20
[  742.129800][T24228]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  742.129819][T24228]  do_writepages+0x32e/0x550
[  742.129845][T24228]  ? do_raw_spin_unlock+0x4d/0x240
[  742.129864][T24228]  filemap_fdatawrite+0x199/0x240
[  742.129885][T24228]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  742.129941][T24228]  ? do_raw_spin_unlock+0x4d/0x240
[  742.129959][T24228]  f2fs_sync_dirty_inodes+0x31f/0x830
[  742.129985][T24228]  f2fs_write_checkpoint+0x95a/0x1df0
[  742.130018][T24228]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  742.130065][T24228]  ? f2fs_stop_gc_thread+0x7f/0xb0
[  742.130077][T24228]  ? kfree+0x18e/0x440
[  742.130093][T24228]  ? kill_f2fs_super+0x298/0x6c0
[  742.130110][T24228]  kill_f2fs_super+0x2c3/0x6c0
[  742.130128][T24228]  ? __pfx_kill_f2fs_super+0x10/0x10
[  742.130138][T24228]  ? radix_tree_delete_item+0x2b6/0x400
[  742.130161][T24228]  ? shrinker_free+0x2ce/0x3e0
[  742.130177][T24228]  deactivate_locked_super+0xbc/0x130
[  742.130194][T24228]  cleanup_mnt+0x425/0x4c0
[  742.130208][T24228]  ? lockdep_hardirqs_on+0x9c/0x150
[  742.130228][T24228]  task_work_run+0x1d4/0x260
[  742.130248][T24228]  ? __pfx_task_work_run+0x10/0x10
[  742.130262][T24228]  ? __x64_sys_umount+0x122/0x160
[  742.130283][T24228]  ? exit_to_user_mode_loop+0x40/0x110
[  742.130304][T24228]  exit_to_user_mode_loop+0xec/0x110
[  742.130326][T24228]  do_syscall_64+0x2bd/0x3b0
[  742.130342][T24228]  ? lockdep_hardirqs_on+0x9c/0x150
[  742.130358][T24228]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  742.130369][T24228]  ? exc_page_fault+0x9f/0xf0
[  742.130386][T24228]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  742.130398][T24228] RIP: 0033:0x7f5cde98ff17
[  742.130411][T24228] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  742.130421][T24228] RSP: 002b:00007fff27635ed8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  742.130435][T24228] RAX: 0000000000000000 RBX: 00007f5cdea11c05 RCX: 00007f5cde98ff17
[  742.130444][T24228] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff27635f90
[  742.130451][T24228] RBP: 00007fff27635f90 R08: 0000000000000000 R09: 0000000000000000
[  742.130459][T24228] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fff27637020
[  742.130467][T24228] R13: 00007f5cdea11c05 R14: 00000000000abcef R15: 00007fff27637060
[  742.130490][T24228]  </TASK>
[  742.130495][T24228] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  742.143980][T26045] loop6: detected capacity change from 0 to 256
[  742.266171][T26045] FAT-fs (loop6): bogus sectors per cluster 0
[  742.268230][T26045] FAT-fs (loop6): Can't find a valid FAT filesystem
[  742.401574][T26051] netlink: 16 bytes leftover after parsing attributes in process `syz.4.8185'.
[  742.966316][T26058] loop4: detected capacity change from 0 to 32768
[  742.979368][T26058] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.8190 (26058)
[  742.991534][T26058] BTRFS info (device loop4): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  742.996155][T26058] BTRFS info (device loop4): using sha256 (sha256-lib) checksum algorithm
[  743.065849][T26074] netlink: 16 bytes leftover after parsing attributes in process `syz.2.8192'.
[  743.104966][T26058] BTRFS info (device loop4): rebuilding free space tree
[  743.127764][T26058] BTRFS info (device loop4): enabling ssd optimizations
[  743.130999][T26058] BTRFS info (device loop4): turning on sync discard
[  743.138145][T26058] BTRFS info (device loop4): enabling free space tree
[  743.141004][T26058] BTRFS info (device loop4): force clearing of disk cache
[  743.144214][T26058] BTRFS info (device loop4): enabling auto defrag
[  743.146971][T26058] BTRFS info (device loop4): max_inline set to 0
[  743.200320][T26085] netlink: 'syz.2.8195': attribute type 24 has an invalid length.
[  743.218548][   T33] audit: type=1800 audit(704.769:252): pid=26086 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.8190" name="file1" dev="loop4" ino=260 res=0 errno=0
[  743.311616][T26088] netlink: 'syz.2.8196': attribute type 32 has an invalid length.
[  743.439290][T24228] BTRFS info (device loop4): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  744.589596][T26145] netlink: 28 bytes leftover after parsing attributes in process `syz.2.8223'.
[  744.670699][T17263] usb 7-1: new full-speed USB device number 15 using dummy_hcd
[  744.885761][T17263] usb 7-1: config 0 has an invalid interface number: 128 but max is 0
[  744.895658][T17263] usb 7-1: config 0 has no interface number 0
[  744.901815][T17263] usb 7-1: config 0 interface 128 altsetting 6 endpoint 0x5 has invalid maxpacket 1024, setting to 1023
[  744.913377][T17263] usb 7-1: config 0 interface 128 altsetting 6 endpoint 0xF has invalid maxpacket 512, setting to 64
[  744.925337][T17263] usb 7-1: config 0 interface 128 altsetting 6 endpoint 0x6 has invalid maxpacket 1023, setting to 64
[  744.930373][T17263] usb 7-1: config 0 interface 128 has no altsetting 0
[  744.945089][T17263] usb 7-1: New USB device found, idVendor=10c5, idProduct=819a, bcdDevice=95.91
[  744.952386][T17263] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  744.955788][T17263] usb 7-1: Product: syz
[  744.957556][T17263] usb 7-1: Manufacturer: syz
[  744.959606][T17263] usb 7-1: SerialNumber: syz
[  744.963663][T17263] usb 7-1: config 0 descriptor??
[  744.969670][T17263] radio-si470x 7-1:0.128: could not find interrupt in endpoint
[  744.972793][T17263] radio-si470x 7-1:0.128: probe with driver radio-si470x failed with error -5
[  744.976761][T17263] usbhid 7-1:0.128: couldn't find an input interrupt endpoint
[  745.097812][ T5850] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[  745.104277][ T5850] Bluetooth: hci0: Injecting HCI hardware error event
[  745.111095][ T5850] Bluetooth: hci0: hardware error 0x00
[  745.197062][   T10] usb 7-1: USB disconnect, device number 15
[  745.321157][T26157] vivid-003: disconnect
[  745.328092][T26156] vivid-003: reconnect
[  745.347427][T26159] netdevsim netdevsim2: Direct firmware load for @ failed with error -2
[  745.351239][T26159] netdevsim netdevsim2: Falling back to sysfs fallback for: @
[  746.302366][T26184] loop4: detected capacity change from 0 to 1024
[  746.314304][T26184] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  746.435154][T26191] autofs: Bad value for 'fd'
[  746.866215][T26195] loop4: detected capacity change from 0 to 32768
[  746.885519][T26195] bcachefs (loop4): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,fix_errors=ask,norecovery,nojournal_transaction_names,read_only
[  746.885532][T26195]   allowing incompatible features above 0.0: (unknown version)
[  746.885538][T26195]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  746.898640][T26195] bcachefs (loop4): Using encoding defined by superblock: utf8-12.1.0
[  746.901324][T26195] bcachefs (loop4): recovering from clean shutdown, journal seq 10
[  746.904002][T26195] bcachefs (loop4): Doing compatible version upgrade from 1.7: mi_btree_bitmap to 1.28: inode_has_case_insensitive
[  746.904002][T26195]   running recovery passes: check_allocations,check_extents_to_backpointers,check_inodes
[  746.925165][T26195] bcachefs (loop4): btree node read error at btree lru level 0/0
[  746.925212][T26195]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 28f61e078e70b95c written 16 min_key 0:196608:0 durability: 1 ptr: 0:28:0 gen 0
[  746.925218][T26195]   loop4 node offset 0/16: incorrect min_key: got POS_MIN should be 0:196608:0
[  746.925224][T26195]   loop4 btree validate error
[  746.925228][T26195]   flagging btree lru lost data
[  746.925232][T26195]   running recovery pass check_topology (2), currently at recovery_pass_empty (0)
[  746.925237][T26195]   running recovery pass check_lrus (14), currently at recovery_pass_empty (0)
[  746.925242][T26195]   running recovery pass check_backpointers_to_extents (16), currently at recovery_pass_empty (0)
[  746.925247][T26195]   running recovery pass check_alloc_info (13), currently at recovery_pass_empty (0)
[  746.925253][T26195]   ret btree_node_read_err_bad_node
[  746.958197][T26195] bcachefs (loop4): error reading btree root btree=lru level=0: btree_node_read_error, fixing
[  746.963136][T26195] bcachefs (loop4): btree node read error at btree freespace level 0/0
[  746.963149][T26195]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq e81e1ed936acf3df written 32 min_key POS_MIN durability: 1 ptr: 0:29:0 gen 0
[  746.963159][T26195]   loop4 node offset 0/32 bset u64s 0: invalid bkey format: field 4 too large: 0 + 4294967296 > 4294967295
[  746.963169][T26195]   u64s 3 fields 64:0, 64:0, 32:0, 0:0, 0:4294967296, 0:0
[  746.963177][T26195]   loop4 btree validate error
[  746.963184][T26195]   flagging btree freespace lost data
[  746.963190][T26195]   ret btree_node_read_err_bad_node
[  746.966865][T26200] netlink: 8 bytes leftover after parsing attributes in process `syz.6.8248'.
[  746.970486][T26195] bcachefs (loop4): error reading btree root btree=freespace level=0: btree_node_read_error, fixing
[  746.974665][T26195] bcachefs (loop4): check_topology... done
[  746.995790][T26195] bcachefs (loop4): accounting_read... done
[  747.002805][T26195] bcachefs (loop4): alloc_read... done
[  747.004756][T26195] bcachefs (loop4): snapshots_read... done
[  747.006854][T26195] bcachefs (loop4): Fixed errors, running fsck a second time to verify fs is clean
[  747.010450][T26195] bcachefs (loop4): done starting filesystem
[  747.044990][T26200] : entered promiscuous mode
[  747.077768][T26200] : left promiscuous mode
[  747.151152][T24228] bcachefs (loop4): shutting down
[  747.196576][T24228] bcachefs (loop4): shutdown complete
[  747.323274][ T5850] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  748.282879][T26255] netlink: 'syz.4.8275': attribute type 17 has an invalid length.
[  748.289478][T26255] netlink: 148 bytes leftover after parsing attributes in process `syz.4.8275'.
[  748.548917][T26271] bridge1: entered promiscuous mode
[  748.551325][T26271] bridge1: entered allmulticast mode
[  748.770045][   T33] audit: type=1326 audit(709.960:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26282 comm="syz.4.8288" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5cde98ebe9 code=0x0
[  749.894888][T26293] loop4: detected capacity change from 0 to 32768
[  752.726342][T26361] loop4: detected capacity change from 0 to 47
[  752.952137][T26385] openvswitch: netlink: IP tunnel dst address not specified
[  753.431713][T26423] loop6: detected capacity change from 0 to 16
[  753.440704][T26423] erofs (device loop6): mounted with root inode @ nid 36.
[  753.452689][T26423] erofs (device loop6): bogus lookback distance 1388 @ lcn 42 of nid 36
[  753.453199][T26424] loop4: detected capacity change from 0 to 4096
[  753.463285][T26423] erofs (device loop6): read error -117 @ 43 of nid 36
[  753.469246][T26424] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  753.483670][T26424] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  753.534379][T24228] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  753.648726][T26434] loop4: detected capacity change from 0 to 2048
[  753.654560][T26434] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  753.937021][   T33] audit: type=1326 audit(714.796:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26457 comm="syz.2.8367" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe397d8ebe9 code=0x50000
[  753.965044][   T33] audit: type=1326 audit(714.796:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26457 comm="syz.2.8367" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe397d8ebe9 code=0x50000
[  753.988703][   T33] audit: type=1326 audit(714.796:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26457 comm="syz.2.8367" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe397d8ebe9 code=0x50000
[  754.009036][   T33] audit: type=1326 audit(714.796:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26457 comm="syz.2.8367" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe397d8ebe9 code=0x50000
[  754.027964][   T33] audit: type=1326 audit(714.796:258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26457 comm="syz.2.8367" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe397d8ebe9 code=0x50000
[  754.047102][   T33] audit: type=1326 audit(714.796:259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26457 comm="syz.2.8367" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe397d8ebe9 code=0x50000
[  754.065249][   T33] audit: type=1326 audit(714.796:260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26457 comm="syz.2.8367" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe397d8ebe9 code=0x50000
[  754.085004][   T33] audit: type=1326 audit(714.796:261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26457 comm="syz.2.8367" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe397d8ebe9 code=0x50000
[  754.114467][   T33] audit: type=1326 audit(714.796:262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26457 comm="syz.2.8367" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe397d8ebe9 code=0x50000
[  754.147788][   T33] audit: type=1326 audit(714.796:263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26457 comm="syz.2.8367" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe397d8ebe9 code=0x50000
[  754.177075][   T33] audit: type=1326 audit(714.796:264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26457 comm="syz.2.8367" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe397d8ebe9 code=0x50000
[  754.205131][T26454] loop4: detected capacity change from 0 to 32768
[  754.210219][   T33] audit: type=1326 audit(714.796:265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26457 comm="syz.2.8367" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe397d8ebe9 code=0x50000
[  754.233077][   T33] audit: type=1326 audit(714.796:266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26457 comm="syz.2.8367" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe397d8ebe9 code=0x50000
[  754.252833][   T33] audit: type=1326 audit(714.796:267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26457 comm="syz.2.8367" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe397d8ebe9 code=0x50000
[  754.271029][   T33] audit: type=1326 audit(714.796:268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26457 comm="syz.2.8367" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe397d8ebe9 code=0x50000
[  754.290755][   T33] audit: type=1326 audit(714.796:269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26457 comm="syz.2.8367" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe397d8ebe9 code=0x50000
[  754.300835][   T33] audit: type=1326 audit(714.796:270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26457 comm="syz.2.8367" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe397d8ebe9 code=0x50000
[  754.500377][   T33] audit: type=1326 audit(714.796:271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26457 comm="syz.2.8367" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe397d8ebe9 code=0x50000
[  754.514951][T26454] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  754.517802][   T33] audit: type=1326 audit(714.796:272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26457 comm="syz.2.8367" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe397d8ebe9 code=0x50000
[  754.677687][T26454] XFS (loop4): Ending clean mount
[  754.681385][T26454] XFS (loop4): Quotacheck needed: Please wait.
[  754.705717][T26454] XFS (loop4): Quotacheck: Done.
[  754.726252][T24228] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  755.091824][T26489] hub 9-0:1.0: USB hub found
[  755.098134][T26489] hub 9-0:1.0: 1 port detected
[  755.570527][T26501] program syz.6.8381 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  755.893891][T26509] netlink: 'syz.6.8385': attribute type 10 has an invalid length.
[  755.953932][T26517] netlink: 108 bytes leftover after parsing attributes in process `syz.2.8389'.
[  757.163282][T26565] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  757.229429][T26570] loop4: detected capacity change from 0 to 1024
[  757.272813][T26570] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  757.312533][T24228] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  757.486434][T26589] loop6: detected capacity change from 0 to 4096
[  758.326516][T26616] openvswitch: netlink: Tunnel attr 5 has unexpected len 4 expected 0
[  759.632936][T26650] openvswitch: netlink: Multiple metadata blocks provided
[  760.110372][T26663] overlayfs: failed to clone upperpath
[  760.600989][T26677] loop6: detected capacity change from 0 to 2048
[  760.628002][T26677] UDF-fs: warning (device loop6): udf_load_vrs: No anchor found
[  760.632686][T26677] UDF-fs: Scanning with blocksize 512 failed
[  760.666268][T26677] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  761.095332][   T47] usb 7-1: new high-speed USB device number 16 using dummy_hcd
[  761.165613][  T793] usb 5-1: new high-speed USB device number 19 using dummy_hcd
[  761.262391][   T47] usb 7-1: Using ep0 maxpacket: 16
[  761.265718][   T47] usb 7-1: config 0 has an invalid interface number: 249 but max is 0
[  761.269004][   T47] usb 7-1: config 0 has no interface number 0
[  761.271070][   T47] usb 7-1: config 0 interface 249 altsetting 2 bulk endpoint 0x1 has invalid maxpacket 64
[  761.276675][   T47] usb 7-1: config 0 interface 249 has no altsetting 0
[  761.280973][   T47] usb 7-1: New USB device found, idVendor=16ca, idProduct=1502, bcdDevice= 5.c1
[  761.284575][   T47] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  761.287507][   T47] usb 7-1: Product: syz
[  761.288888][   T47] usb 7-1: Manufacturer: syz
[  761.291204][   T47] usb 7-1: SerialNumber: syz
[  761.294662][   T47] usb 7-1: config 0 descriptor??
[  761.297328][T26688] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  761.301762][   T47] aircable 7-1:0.249: aircable converter detected
[  761.308446][   T47] usb 7-1: aircable converter now attached to ttyUSB0
[  761.329571][  T793] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  761.333544][  T793] usb 5-1: New USB device found, idVendor=041e, idProduct=2801, bcdDevice= 0.00
[  761.336620][  T793] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  761.340602][  T793] usb 5-1: config 0 descriptor??
[  761.523441][   T47] usb 7-1: USB disconnect, device number 16
[  761.529657][   T47] aircable ttyUSB0: aircable converter now disconnected from ttyUSB0
[  761.533576][   T47] aircable 7-1:0.249: device disconnected
[  761.779622][  T793] prodikeys 0003:041E:2801.001B: item fetching failed at offset 3/7
[  761.783622][  T793] prodikeys 0003:041E:2801.001B: hid parse failed
[  761.786674][  T793] prodikeys 0003:041E:2801.001B: probe with driver prodikeys failed with error -22
[  761.991862][   T47] usb 5-1: USB disconnect, device number 19
[  762.102427][T26714] netlink: 'syz.6.8473': attribute type 2 has an invalid length.
[  762.105606][T26714] netlink: 1184 bytes leftover after parsing attributes in process `syz.6.8473'.
[  762.272336][T26725] loop6: detected capacity change from 0 to 256
[  762.459201][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  763.400031][ T5914] usb 5-1: new high-speed USB device number 20 using dummy_hcd
[  763.517936][  T793] usb 7-1: new high-speed USB device number 17 using dummy_hcd
[  763.561766][ T5914] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 16
[  763.569284][ T5914] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 64
[  763.579704][ T5914] usb 5-1: New USB device found, idVendor=0a46, idProduct=9621, bcdDevice=4f.32
[  763.583309][ T5914] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  763.586093][ T5914] usb 5-1: Product: syz
[  763.587505][ T5914] usb 5-1: Manufacturer: syz
[  763.589048][ T5914] usb 5-1: SerialNumber: syz
[  763.593649][ T5914] usb 5-1: config 0 descriptor??
[  763.596191][T26761] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  763.599362][T26761] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  763.678019][  T793] usb 7-1: Using ep0 maxpacket: 16
[  763.682501][  T793] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  763.686441][  T793] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  763.692406][  T793] usb 7-1: New USB device found, idVendor=1781, idProduct=0898, bcdDevice= 0.00
[  763.696257][  T793] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  763.703834][  T793] usb 7-1: config 0 descriptor??
[  763.712286][  T793] pxrc 7-1:0.0: Could not find endpoint
[  763.715678][  T793] usbhid 7-1:0.0: couldn't find an input interrupt endpoint
[  763.717170][T26779] netlink: 16178 bytes leftover after parsing attributes in process `syz.2.8504'.
[  763.821412][T26761] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  763.824620][T26761] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  763.933877][   T47] usb 7-1: USB disconnect, device number 17
[  764.261461][ T5914] dm9601: No valid MAC address in EEPROM, using 00:00:00:00:00:00
[  764.317143][T26802] netlink: 14528 bytes leftover after parsing attributes in process `syz.2.8515'.
[  764.692600][ T5914] dm9601 5-1:0.0 (unnamed net_device) (uninitialized): Error reading chip ID
[  764.703218][ T5914] usb 5-1: USB disconnect, device number 20
[  764.720219][T26827] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8525'.
[  764.723316][T26827] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8525'.
[  765.383206][T26855] loop4: detected capacity change from 0 to 2048
[  765.393453][T26855] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  765.564365][T26851] overlayfs: failed to clone upperpath
[  765.662948][T26861] netlink: 24 bytes leftover after parsing attributes in process `syz.2.8539'.
[  765.762604][ T5914] usb 5-1: new high-speed USB device number 21 using dummy_hcd
[  765.927547][ T5914] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  765.932314][ T5914] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 8
[  765.946528][ T5914] usb 5-1: New USB device found, idVendor=0499, idProduct=103e, bcdDevice=4e.18
[  765.950658][ T5914] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  765.954131][ T5914] usb 5-1: Product: syz
[  765.958540][ T5914] usb 5-1: Manufacturer: syz
[  765.961998][ T5914] usb 5-1: SerialNumber: syz
[  765.967015][ T5914] usb 5-1: config 0 descriptor??
[  766.186724][ T5914] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  766.403826][ T5880] usb 5-1: USB disconnect, device number 21
[  766.619649][T26865] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  766.695763][T26885] netlink: 12 bytes leftover after parsing attributes in process `syz.6.8551'.
[  766.866550][T26903] loop6: detected capacity change from 0 to 24
[  766.976542][T26911] loop4: detected capacity change from 0 to 16
[  766.979115][T26911] MTD: Attempt to mount non-MTD device "/dev/loop4"
[  767.038542][T26919] loop4: detected capacity change from 0 to 2048
[  767.041397][T26919] EXT4-fs: Ignoring removed mblk_io_submit option
[  767.043577][T26919] EXT4-fs: Ignoring removed bh option
[  767.069413][T26919] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  767.075354][   T33] kauditd_printk_skb: 16 callbacks suppressed
[  767.075366][   T33] audit: type=1800 audit(727.087:289): pid=26919 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.8568" name="file1" dev="loop4" ino=15 res=0 errno=0
[  767.081895][T26919] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  767.093678][T26919] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 2 with error 28
[  767.099629][T26919] EXT4-fs (loop4): This should not happen!! Data will be lost
[  767.099629][T26919] 
[  767.103543][T26919] EXT4-fs (loop4): Total free blocks count 0
[  767.106031][T26919] EXT4-fs (loop4): Free/Dirty block details
[  767.108427][T26919] EXT4-fs (loop4): free_blocks=2415919104
[  767.112147][T26919] EXT4-fs (loop4): dirty_blocks=16
[  767.113945][T26919] EXT4-fs (loop4): Block reservation details
[  767.116420][T26919] EXT4-fs (loop4): i_reserved_data_blocks=1
[  767.134379][T24228] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  767.169144][T26931] loop4: detected capacity change from 0 to 512
[  767.179170][T26931] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  767.191806][T26931] EXT4-fs (loop4): shut down requested (2)
[  767.193792][   T33] audit: type=1800 audit(727.190:290): pid=26931 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.8572" name="file1" dev="loop4" ino=15 res=0 errno=0
[  767.214466][T24228] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  767.223270][T22199] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  767.229410][T22199] Quota error (device loop4): write_blk: dquota write failed
[  767.232644][T22199] Quota error (device loop4): remove_free_dqentry: Can't write block (5) with free entries
[  767.237270][T22199] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  767.241380][T22199] Quota error (device loop4): write_blk: dquota write failed
[  767.243902][T22199] Quota error (device loop4): free_dqentry: Can't move quota data block (5) to free list
[  767.248003][T22199] EXT4-fs (loop4): Quota write (off=8, len=24) cancelled because transaction is not started
[  767.252377][T22199] Quota error (device loop4): v2_write_file_info: Can't write info structure
[  767.272438][ T5914] usb 7-1: new high-speed USB device number 18 using dummy_hcd
[  767.300272][T26936] loop4: detected capacity change from 0 to 256
[  767.394672][T26941] ieee802154 phy0 wpan0: encryption failed: -90
[  767.430288][ T5914] usb 7-1: Using ep0 maxpacket: 8
[  767.433809][ T5914] usb 7-1: config 179 has an invalid interface number: 65 but max is 0
[  767.437216][ T5914] usb 7-1: config 179 has no interface number 0
[  767.439850][ T5914] usb 7-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  767.444745][ T5914] usb 7-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[  767.449400][ T5914] usb 7-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  767.454993][ T5914] usb 7-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[  767.460245][ T5914] usb 7-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  767.466351][ T5914] usb 7-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  767.469615][ T5914] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  767.473395][T26916] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  767.694663][T26957] netlink: 16 bytes leftover after parsing attributes in process `syz.4.8583'.
[  767.700128][ T5850] Bluetooth: hci2: connection err: -111
[  767.701602][ T5914] usb 7-1: USB disconnect, device number 18
[  767.702521][    C0] xpad 7-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[  767.702540][    C0] xpad 7-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  767.928406][T26969] loop4: detected capacity change from 0 to 512
[  767.937510][T26969] EXT4-fs error (device loop4): ext4_read_inode_bitmap:139: comm syz.4.8589: Invalid inode bitmap blk 4 in block_group 0
[  767.944125][T26969] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  768.090736][T24228] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  768.183985][T26982] Unsupported ieee802154 address type: 0
[  768.284270][T26989] netlink: 12 bytes leftover after parsing attributes in process `syz.6.8596'.
[  768.393790][T26995] loop6: detected capacity change from 0 to 1764
[  768.402559][T26995] iso9660: Corrupted directory entry in block 2 of inode 1920
[  769.061009][T27007] loop6: detected capacity change from 0 to 256
[  769.082501][T27007] FAT-fs (loop6): Directory bread(block 64) failed
[  769.085181][T27007] FAT-fs (loop6): Directory bread(block 65) failed
[  769.088492][T27007] FAT-fs (loop6): Directory bread(block 66) failed
[  769.091359][T27007] FAT-fs (loop6): Directory bread(block 67) failed
[  769.094679][T27007] FAT-fs (loop6): Directory bread(block 68) failed
[  769.097376][T27007] FAT-fs (loop6): Directory bread(block 69) failed
[  769.100293][T27007] FAT-fs (loop6): Directory bread(block 70) failed
[  769.107268][T27007] FAT-fs (loop6): Directory bread(block 71) failed
[  769.115221][T27007] FAT-fs (loop6): Directory bread(block 72) failed
[  769.117936][T27007] FAT-fs (loop6): Directory bread(block 73) failed
[  769.675527][ T5914] usb 7-1: new high-speed USB device number 19 using dummy_hcd
[  769.846639][ T5914] usb 7-1: Using ep0 maxpacket: 8
[  769.852864][ T5914] usb 7-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2e.04
[  769.856816][ T5914] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  769.863018][ T5914] usb 7-1: Product: syz
[  769.864832][ T5914] usb 7-1: Manufacturer: syz
[  769.866885][ T5914] usb 7-1: SerialNumber: syz
[  769.871124][ T5914] usb 7-1: config 0 descriptor??
[  770.089698][ T5914] usb 7-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  770.738612][ T5914] dvb_usb_rtl28xxu 7-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[  770.743740][ T5914] usb 7-1: USB disconnect, device number 19
[  772.564774][T27084] loop6: detected capacity change from 0 to 32768
[  772.628226][T27084] bcachefs (loop6): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,foreground_target=invalid label 767,background_target=invalid device 7,nojournal_transaction_names
[  772.628238][T27084]   allowing incompatible features above 0.0: (unknown version)
[  772.628243][T27084]   features: 
[  772.639877][T27084] bcachefs (loop6): Using encoding defined by superblock: utf8-12.1.0
[  772.642584][T27084] bcachefs (loop6): initializing new filesystem
[  772.649950][T27084] bcachefs (loop6): going read-write
[  772.660436][T27084] bcachefs (loop6): marking superblocks
[  772.665392][T27084] bcachefs (loop6): initializing freespace
[  772.669260][T27084] bcachefs (loop6): done initializing freespace
[  772.672400][T27084] bcachefs (loop6): reading snapshots table
[  772.674272][T27084] bcachefs (loop6): reading snapshots done
[  772.695938][T27104] bridge_slave_0: left allmulticast mode
[  772.698121][T27104] bridge_slave_0: left promiscuous mode
[  772.701918][T27104] bridge0: port 1(bridge_slave_0) entered disabled state
[  772.712858][T27104] bridge_slave_1: left allmulticast mode
[  772.715158][T27104] bridge_slave_1: left promiscuous mode
[  772.715264][T27084] bcachefs (loop6): done starting filesystem
[  772.718135][T27104] bridge0: port 2(bridge_slave_1) entered disabled state
[  772.765129][T27104] bond0: (slave bond_slave_0): Releasing backup interface
[  772.784793][T27104] bond0: (slave bond_slave_1): Releasing backup interface
[  772.803975][T27104] team0: Port device team_slave_0 removed
[  772.831057][T27104] team0: Port device team_slave_1 removed
[  772.834620][T27104] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  772.838046][T27104] batman_adv: batadv0: Removing interface: batadv_slave_0
[  772.854276][T27104] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  772.857260][T27104] batman_adv: batadv0: Removing interface: batadv_slave_1
[  772.876298][T25508] bcachefs (loop6): shutting down
[  772.884424][T25508] bcachefs (loop6): going read-only
[  772.886180][T25508] bcachefs (loop6): finished waiting for writes to stop
[  772.908558][T25508] bcachefs (loop6): flushing journal and stopping allocators, journal seq 3
[  772.979419][T25508] bcachefs (loop6): flushing journal and stopping allocators complete, journal seq 3
[  772.987254][T25508] bcachefs (loop6): clean shutdown complete, journal seq 4
[  772.993043][T25508] bcachefs (loop6): marking filesystem clean
[  773.009907][T25508] bcachefs (loop6): shutdown complete
[  773.191697][T27118] netlink: 'syz.2.8651': attribute type 13 has an invalid length.
[  773.241361][T27118] veth1_macvtap: left allmulticast mode
[  773.287672][T27118] team0: left promiscuous mode
[  773.291655][T27118] geneve0: left promiscuous mode
[  773.319459][T13027] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  773.327626][T13027] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  773.332741][T13027] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  773.336992][T13027] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  773.959554][T27146] batadv_slave_0: left promiscuous mode
[  773.961989][T27146] batadv_slave_0: left allmulticast mode
[  773.965743][T27146] macsec0: left promiscuous mode
[  773.967803][T27146] macsec0: left allmulticast mode
[  773.970550][T27146] ip6gre1: left promiscuous mode
[  773.973799][T27146] bridge2: left promiscuous mode
[  773.976290][T27146] ip6tnl2: left promiscuous mode
[  773.978349][T27146] bond0: left promiscuous mode
[  773.979868][T27146] ip6gretap1: left promiscuous mode
[  773.981741][T27146] macvlan2: left promiscuous mode
[  773.984828][T27146] bond0: left allmulticast mode
[  773.986863][T27146] ip6gretap1: left allmulticast mode
[  773.988765][T27146] veth5: left allmulticast mode
[  773.990855][T27146] macvlan2: left allmulticast mode
[  773.993019][T27146] veth5: left promiscuous mode
[  773.997866][T27146] bond5: left promiscuous mode
[  773.999539][T27146] bond5: left allmulticast mode
[  774.001995][T27146] bridge5: left promiscuous mode
[  774.004204][T27146] geneve2: left promiscuous mode
[  774.006560][  T793] usb 5-1: new high-speed USB device number 22 using dummy_hcd
[  774.137543][T27150] netlink: 8 bytes leftover after parsing attributes in process `syz.2.8666'.
[  774.168342][  T793] usb 5-1: config 0 has no interfaces?
[  774.170326][  T793] usb 5-1: New USB device found, idVendor=1d50, idProduct=6089, bcdDevice=d0.1d
[  774.173326][  T793] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  774.181086][  T793] usb 5-1: config 0 descriptor??
[  774.403883][ T5914] usb 5-1: USB disconnect, device number 22
[  774.461384][T27168] loop6: detected capacity change from 0 to 4096
[  774.465351][T27168] ntfs3(loop6): Different NTFS sector size (1024) and media sector size (512).
[  774.479829][T27168] ntfs3(loop6): Failed to load $Extend (-22).
[  774.481841][T27168] ntfs3(loop6): Failed to initialize $Extend.
[  775.333775][    C0] vkms_vblank_simulate: vblank timer overrun
[  775.523142][   T47] usb 5-1: new full-speed USB device number 23 using dummy_hcd
[  775.559720][T27200] tmpfs: Bad value for 'size'
[  775.696169][   T47] usb 5-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  775.700498][   T47] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  775.717557][   T47] usb 5-1: config 0 descriptor??
[  775.730795][   T47] cp210x 5-1:0.0: cp210x converter detected
[  775.962387][   T47] cp210x 5-1:0.0: failed to get vendor val 0x370b size 1: -121
[  775.966084][   T47] cp210x 5-1:0.0: querying part number failed
[  775.985764][   T47] usb 5-1: cp210x converter now attached to ttyUSB0
[  776.184804][   T47] usb 5-1: USB disconnect, device number 23
[  776.228841][   T47] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  776.249741][   T47] cp210x 5-1:0.0: device disconnected
[  776.797962][T27227] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  776.944678][T27240] dvmrp0: entered allmulticast mode
[  778.119890][T27280] loop4: detected capacity change from 0 to 16
[  778.128165][T27280] MTD: Attempt to mount non-MTD device "/dev/loop4"
[  778.444585][T27294] loop4: detected capacity change from 0 to 8
[  778.454817][T27294] cramfs: Error -5 while decompressing!
[  778.457692][T27294] cramfs: ffffffff99bf0668(26)->ffff888047aaa000(4096)
[  778.463530][T27294] cramfs: Error -5 while decompressing!
[  778.467618][T27294] cramfs: ffffffff99bf0682(26)->ffff888047aa9000(4096)
[  778.470678][T27294] cramfs: Error -3 while decompressing!
[  778.473128][T27294] cramfs: ffffffff99bf069c(16)->ffff88803e739000(4096)
[  778.479562][T27294] cramfs: Error -5 while decompressing!
[  778.482220][T27294] cramfs: ffffffff99bf0668(26)->ffff888047aaa000(4096)
[  779.001785][   T47] usb 5-1: new full-speed USB device number 24 using dummy_hcd
[  779.185979][   T47] usb 5-1: unable to get BOS descriptor or descriptor too short
[  779.189190][   T47] usb 5-1: not running at top speed; connect to a high speed hub
[  779.193640][   T47] usb 5-1: config 14 has an invalid interface number: 90 but max is 0
[  779.196911][   T47] usb 5-1: config 14 has no interface number 0
[  779.199358][   T47] usb 5-1: config 14 interface 90 has no altsetting 0
[  779.206528][   T47] usb 5-1: New USB device found, idVendor=041e, idProduct=400a, bcdDevice=8c.6a
[  779.210213][   T47] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  779.214147][   T47] usb 5-1: Product: syz
[  779.215739][   T47] usb 5-1: Manufacturer: syz
[  779.217310][   T47] usb 5-1: SerialNumber: syz
[  779.379799][T27319] overlayfs: failed to clone upperpath
[  779.465507][   T47] gspca_main: spca500-2.14.0 probing 041e:400a
[  779.484844][   T47] usb 5-1: USB disconnect, device number 24
[  779.672347][T27309] loop6: detected capacity change from 0 to 131072
[  779.676329][T27309] F2FS-fs (loop6): Wrong CP boundary, start(512) end(1536) blocks(0)
[  779.679728][T27309] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  779.687255][T27309] F2FS-fs (loop6): invalid crc value
[  779.743280][T27309] F2FS-fs (loop6): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  779.748544][T27309] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  779.751444][T27309] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e4
[  779.786358][   T33] audit: type=1800 audit(738.976:291): pid=27309 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.8737" name="file2" dev="loop6" ino=8 res=0 errno=0
[  779.946356][T27341] netlink: 'syz.2.8751': attribute type 1 has an invalid length.
[  779.950576][T27341] netlink: 'syz.2.8751': attribute type 1 has an invalid length.
[  780.211727][T27352] ip6gre1: entered allmulticast mode
[  780.242838][T27354] netlink: 16186 bytes leftover after parsing attributes in process `syz.4.8757'.
[  780.316624][T27358] loop6: detected capacity change from 0 to 128
[  780.551225][T27372] loop4: detected capacity change from 0 to 512
[  780.563790][T27372] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  780.609872][T24228] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  780.830807][T27387] loop4: detected capacity change from 0 to 1024
[  780.839979][T27378] loop6: detected capacity change from 0 to 40427
[  780.846284][T27378] F2FS-fs (loop6): invalid crc value
[  780.875556][T24228] hfsplus: bad catalog entry type
[  780.891831][T24228] hfsplus: bad catalog entry type
[  780.947256][ T5934] hfsplus: b-tree write err: -5, ino 4
[  780.951598][T27378] F2FS-fs (loop6): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  780.959189][T27378] F2FS-fs (loop6): Start checkpoint disabled!
[  780.978642][T27378] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e6
[  781.300147][   T33] audit: type=1326 audit(740.398:292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27401 comm="syz.6.8777" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5dd2d8ebe9 code=0x0
[  781.332059][ T5237] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  781.344846][ T5237] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  781.351826][ T5237] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  781.357881][ T5237] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  781.361607][ T5237] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  781.486858][T27407] chnl_net:caif_netlink_parms(): no params data found
[  781.568840][T27407] bridge0: port 1(bridge_slave_0) entered blocking state
[  781.571628][T27407] bridge0: port 1(bridge_slave_0) entered disabled state
[  781.579814][T27407] bridge_slave_0: entered allmulticast mode
[  781.583743][T27407] bridge_slave_0: entered promiscuous mode
[  781.588923][T27407] bridge0: port 2(bridge_slave_1) entered blocking state
[  781.592017][T27407] bridge0: port 2(bridge_slave_1) entered disabled state
[  781.595183][T27407] bridge_slave_1: entered allmulticast mode
[  781.603957][T27407] bridge_slave_1: entered promiscuous mode
[  781.643494][T27424] netlink: 8 bytes leftover after parsing attributes in process `syz.2.8783'.
[  781.652162][T27407] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  781.660416][T27407] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  781.696923][T27407] team0: Port device team_slave_0 added
[  781.701640][T27407] team0: Port device team_slave_1 added
[  781.736621][T27407] batman_adv: batadv0: Adding interface: batadv_slave_0
[  781.739590][T27407] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  781.750325][T27407] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  781.757812][T27407] batman_adv: batadv0: Adding interface: batadv_slave_1
[  781.760744][T27407] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  781.772213][T27407] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  781.823648][T27407] hsr_slave_0: entered promiscuous mode
[  781.827004][T27407] hsr_slave_1: entered promiscuous mode
[  781.829973][T27407] debugfs: 'hsr0' already exists in 'hsr'
[  781.832807][T27407] Cannot create hsr debugfs directory
[  782.112139][T27439] netlink: 12 bytes leftover after parsing attributes in process `syz.2.8789'.
[  782.772516][T27407] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  782.788158][T27407] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  782.794408][T27407] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  782.801070][T27407] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  782.945001][T27407] 8021q: adding VLAN 0 to HW filter on device bond0
[  782.963398][T27407] 8021q: adding VLAN 0 to HW filter on device team0
[  782.976920][ T3585] bridge0: port 1(bridge_slave_0) entered blocking state
[  782.979886][ T3585] bridge0: port 1(bridge_slave_0) entered forwarding state
[  782.994939][ T5934] bridge0: port 2(bridge_slave_1) entered blocking state
[  782.998027][ T5934] bridge0: port 2(bridge_slave_1) entered forwarding state
[  783.182481][T27407] 8021q: adding VLAN 0 to HW filter on device batadv0
[  783.338908][T27407] veth0_vlan: entered promiscuous mode
[  783.345994][T27407] veth1_vlan: entered promiscuous mode
[  783.371878][T27407] veth0_macvtap: entered promiscuous mode
[  783.378296][T27407] veth1_macvtap: entered promiscuous mode
[  783.393419][T27407] batman_adv: batadv0: Interface activated: batadv_slave_0
[  783.401241][T27407] batman_adv: batadv0: Interface activated: batadv_slave_1
[  783.416874][   T13] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  783.420620][ T5878] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  783.425301][ T5878] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  783.429147][ T5878] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  783.552989][   T27] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  783.556914][   T27] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  783.585207][ T5850] Bluetooth: hci1: command tx timeout
[  783.592263][T27467] netlink: 13 bytes leftover after parsing attributes in process `syz.2.8794'.
[  783.600047][T22199] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  783.603392][T22199] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  783.974710][T27488] loop6: detected capacity change from 0 to 256
[  783.978134][T27488] exfat: Deprecated parameter 'namecase'
[  783.980981][T27488] exfat: Deprecated parameter 'utf8'
[  783.985294][T27488] exFAT-fs (loop6): bogus fat length
[  783.987508][T27488] exFAT-fs (loop6): failed to read boot sector
[  783.990299][T27488] exFAT-fs (loop6): failed to recognize exfat type
[  784.034308][   T10] usb 6-1: new high-speed USB device number 36 using dummy_hcd
[  784.195213][   T10] usb 6-1: Using ep0 maxpacket: 32
[  784.208690][   T10] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  784.223302][   T10] usb 6-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80
[  784.236321][   T10] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  784.239767][   T10] usb 6-1: Product: syz
[  784.241567][   T10] usb 6-1: Manufacturer: syz
[  784.243491][   T10] usb 6-1: SerialNumber: syz
[  784.251870][   T10] usb 6-1: config 0 descriptor??
[  784.259426][   T10] usb 6-1: bad CDC descriptors
[  784.273126][   T10] usb 6-1: unsupported MDLM descriptors
[  784.359125][T27490] loop6: detected capacity change from 0 to 40427
[  784.364262][T27490] F2FS-fs (loop6): Image doesn't support compression
[  784.368769][T27490] F2FS-fs (loop6): build fault injection type: 0x2
[  784.373276][T27490] F2FS-fs (loop6): invalid crc value
[  784.440695][T27490] F2FS-fs (loop6): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  784.445250][T27490] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  784.477712][ T5913] usb 6-1: USB disconnect, device number 36
[  784.549575][T27513] 9pnet_fd: Insufficient options for proto=fd
[  785.513345][T27529] Bluetooth: hci0: invalid length 0, exp 2 for type 20
[  785.808037][ T5850] Bluetooth: hci1: command tx timeout
[  785.932487][T27556] netlink: 348 bytes leftover after parsing attributes in process `syz.6.8833'.
[  785.946646][   T47] usb 6-1: new high-speed USB device number 37 using dummy_hcd
[  785.990947][T27560] syz_tun: left allmulticast mode
[  786.118082][T27568] geneve0: left allmulticast mode
[  786.118586][   T47] usb 6-1: Using ep0 maxpacket: 32
[  786.125574][T27568] team0: Port device geneve0 removed
[  786.133054][   T47] usb 6-1: New USB device found, idVendor=04e2, idProduct=1403, bcdDevice=1c.b2
[  786.136796][   T47] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  786.136883][T27568] bond0: (slave ip6gretap1): Releasing backup interface
[  786.150881][   T47] usb 6-1: Product: syz
[  786.152723][   T47] usb 6-1: Manufacturer: syz
[  786.155042][   T47] usb 6-1: SerialNumber: syz
[  786.160607][T27568] bond0: (slave veth5): Releasing backup interface
[  786.161209][   T47] usb 6-1: config 0 descriptor??
[  786.166832][T27568] bond4: left allmulticast mode
[  786.168247][   T47] xr_serial 6-1:0.0: invalid descriptor buffer length
[  786.169013][T27568] bond4: left promiscuous mode
[  786.176032][T27568] bridge0: port 1(bond4) entered disabled state
[  786.182027][T27568] bond0: (slave macvlan2): Releasing backup interface
[  786.393285][   T47] usb 6-1: USB disconnect, device number 37
[  786.395556][   T10] usb 7-1: new high-speed USB device number 20 using dummy_hcd
[  786.555926][   T10] usb 7-1: Using ep0 maxpacket: 8
[  786.560382][   T10] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x73, changing to 0x3
[  786.565331][   T10] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  786.573572][   T10] usb 7-1: New USB device found, idVendor=0e9c, idProduct=0000, bcdDevice=5b.1e
[  786.577925][   T10] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  786.581075][   T10] usb 7-1: Product: syz
[  786.583545][   T10] usb 7-1: Manufacturer: syz
[  786.585426][   T10] usb 7-1: SerialNumber: syz
[  786.590803][   T10] usb 7-1: config 0 descriptor??
[  786.595957][   T10] streamzap 7-1:0.0: streamzap_probe: endpoint doesn't match input device 0203
[  786.819445][  T793] usb 7-1: USB disconnect, device number 20
[  787.295249][T27585] input input40: cannot allocate more than FF_MAX_EFFECTS effects
[  787.377502][T27589] netlink: 20 bytes leftover after parsing attributes in process `syz.5.8848'.
[  787.770857][ T5914] usb 6-1: new high-speed USB device number 38 using dummy_hcd
[  787.937050][ T5914] usb 6-1: Using ep0 maxpacket: 32
[  787.941242][ T5914] usb 6-1: config 0 interface 0 altsetting 128 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  787.960984][ T5914] usb 6-1: config 0 interface 0 altsetting 128 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  787.965201][ T5914] usb 6-1: config 0 interface 0 has no altsetting 0
[  787.983873][ T5914] usb 6-1: New USB device found, idVendor=056a, idProduct=0094, bcdDevice= 0.00
[  787.986791][ T5914] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  787.994386][T27605] netlink: 12 bytes leftover after parsing attributes in process `syz.2.8855'.
[  787.997333][T27605] netlink: 12 bytes leftover after parsing attributes in process `syz.2.8855'.
[  788.010967][ T5914] usb 6-1: config 0 descriptor??
[  788.015071][T27605] netlink: 50 bytes leftover after parsing attributes in process `syz.2.8855'.
[  788.031686][ T5850] Bluetooth: hci1: command tx timeout
[  788.466315][ T5914] wacom 0003:056A:0094.001C: ignoring exceeding usage max
[  788.484571][ T1364] ieee802154 phy0 wpan0: encryption failed: -22
[  788.486723][ T1364] ieee802154 phy1 wpan1: encryption failed: -22
[  788.496182][ T5914] wacom 0003:056A:0094.001C: Using device in hidraw-only mode
[  788.517593][ T5914] wacom 0003:056A:0094.001C: hidraw0: USB HID v0.05 Device [HID 056a:0094] on usb-dummy_hcd.5-1/input0
[  788.696950][ T5914] usb 6-1: USB disconnect, device number 38
[  788.826896][T27626] pimreg: entered allmulticast mode
[  788.830833][T27626] pimreg: left allmulticast mode
[  790.318939][ T5850] Bluetooth: hci1: command tx timeout
[  790.436664][T27648] loop5: detected capacity change from 0 to 8
[  790.445916][T27648] netlink: 8 bytes leftover after parsing attributes in process `syz.5.8874'.
[  790.450215][T27648] openvswitch: netlink: nsh attr 2656 is out of range max 3
[  790.453388][T27648] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  790.801333][T27654] netlink: 'syz.2.8876': attribute type 83 has an invalid length.
[  793.084730][T27701] netlink: 8 bytes leftover after parsing attributes in process `syz.5.8898'.
[  793.098550][T27701] netlink: 8 bytes leftover after parsing attributes in process `syz.5.8898'.
[  793.217003][T27703] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  793.847991][T27732] trusted_key: encrypted_key: keyword 'update' not allowed when called from .instantiate method
[  793.868657][   T10] usb 6-1: new full-speed USB device number 39 using dummy_hcd
[  794.027133][   T13] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  794.038554][   T10] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64
[  794.046082][   T10] usb 6-1: New USB device found, idVendor=045e, idProduct=009d, bcdDevice= 0.00
[  794.062976][   T10] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  794.080551][   T10] usb 6-1: config 0 descriptor??
[  794.083336][T27720] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  794.176016][   T13] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  794.204231][T27744] overlayfs: failed to clone lowerpath
[  794.267713][   T13] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  794.407357][   T13] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  794.533595][   T10] microsoft 0003:045E:009D.001D: unknown main item tag 0x0
[  794.536574][   T10] microsoft 0003:045E:009D.001D: unknown main item tag 0x0
[  794.546562][   T10] microsoft 0003:045E:009D.001D: unknown main item tag 0x0
[  794.548999][   T10] microsoft 0003:045E:009D.001D: unknown main item tag 0x0
[  794.551658][   T10] microsoft 0003:045E:009D.001D: unknown main item tag 0x0
[  794.563845][   T10] microsoft 0003:045E:009D.001D: hidraw0: USB HID v1.01 Device [HID 045e:009d] on usb-dummy_hcd.5-1/input0
[  794.568307][   T10] microsoft 0003:045E:009D.001D: no inputs found
[  794.570803][   T10] microsoft 0003:045E:009D.001D: could not initialize ff, continuing anyway
[  794.779235][T23368] usb 6-1: USB disconnect, device number 39
[  794.928899][   T13] dvmrp0 (unregistering): left allmulticast mode
[  795.099270][   T10] usb 7-1: new high-speed USB device number 21 using dummy_hcd
[  795.260284][   T13] bond0 (unregistering): Released all slaves
[  795.271007][T27779] netlink: 12 bytes leftover after parsing attributes in process `syz.2.8935'.
[  795.286611][   T10] usb 7-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[  795.289627][   T10] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  795.292472][   T10] usb 7-1: Product: syz
[  795.293896][   T10] usb 7-1: Manufacturer: syz
[  795.296134][   T10] usb 7-1: SerialNumber: syz
[  795.299425][   T10] usb 7-1: config 0 descriptor??
[  795.349554][T27783] netlink: 36 bytes leftover after parsing attributes in process `syz.2.8936'.
[  795.568376][   T47] usb 7-1: USB disconnect, device number 21
[  795.650469][T27799] netlink: 'syz.2.8943': attribute type 3 has an invalid length.
[  795.657481][   T13] hsr_slave_0: left promiscuous mode
[  795.660125][   T13] hsr_slave_1: left promiscuous mode
[  795.664251][T27799] netlink: 132 bytes leftover after parsing attributes in process `syz.2.8943'.
[  795.688004][   T13] veth1_macvtap: left promiscuous mode
[  795.693923][   T13] veth0_macvtap: left promiscuous mode
[  795.700661][   T13] veth1_vlan: left promiscuous mode
[  795.702611][   T13] veth0_vlan: left promiscuous mode
[  796.255235][T27812] loop6: detected capacity change from 0 to 4096
[  796.259173][T27812] ntfs3(loop6): Different NTFS sector size (1024) and media sector size (512).
[  796.353369][T27812] ntfs3(loop6): ino=0, attr_set_size
[  796.382972][T27813] ntfs3(loop6): ino=0, attr_set_size
[  797.565646][T27804] vxcan1: entered allmulticast mode
[  797.956943][   T13] IPVS: stop unused estimator thread 0...
[  798.039792][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  798.817108][T27840] loop6: detected capacity change from 0 to 32768
[  798.859765][T27840] XFS (loop6): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  798.889956][T27840] XFS (loop6): Ending clean mount
[  798.913089][T27838] loop5: detected capacity change from 0 to 32768
[  798.918519][T27838] (syz.5.8961,27838,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  798.924320][T27838] (syz.5.8961,27838,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  798.946977][T27838] (syz.5.8961,27838,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xcfdff595, computed 0xefed4a20. Applying ECC.
[  798.952909][T25508] XFS (loop6): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  798.957805][T27838] JBD2: Ignoring recovery information on journal
[  799.001204][T27838] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[  799.086141][T27838] (syz.5.8961,27838,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x2c7b5077, computed 0x28030c75. Applying ECC.
[  799.092774][T27838] (syz.5.8961,27838,0):ocfs2_block_check_validate:416 ERROR: Fixed CRC32 failed: stored: 0x2c7b5077, computed 0x28d1d8ae
[  799.098230][T27838] (syz.5.8961,27838,0):ocfs2_read_quota_phys_block:160 ERROR: status = -5
[  799.102212][T27838] (syz.5.8961,27838,0):ocfs2_quota_read:201 ERROR: status = -5
[  799.105475][T27838] Quota error (device loop5): find_next_id: Can't read quota tree block 5
[  799.109318][T27838] (syz.5.8961,27838,0):ocfs2_get_next_id:921 ERROR: status = -5
[  799.202602][T27407] ocfs2: Unmounting device (7,5) on (node local)
[  799.378357][T27862] loop6: detected capacity change from 0 to 1024
[  799.391703][T27862] hfsplus: invalid btree extent records (0 size)
[  799.394573][T27862] hfsplus: failed to load catalog file
[  799.830929][T27885] loop5: detected capacity change from 0 to 512
[  799.852963][T27885] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  799.904587][T27885] Quota error (device loop5): do_check_range: Getting dqdh_next_free 4294967294 out of range 0-8
[  799.919524][T27885] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota
[  799.924498][T27885] EXT4-fs error (device loop5): ext4_acquire_dquot:6937: comm syz.5.8977: Failed to acquire dquot type 0
[  799.990795][T27407] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  800.088966][T27894] loop5: detected capacity change from 0 to 4096
[  800.099297][T27894] ntfs3(loop5): Mark volume as dirty due to NTFS errors
[  800.106263][T27894] ntfs3(loop5): Failed to load $Extend (-22).
[  800.108610][T27894] ntfs3(loop5): Failed to initialize $Extend.
[  800.342762][T27901] loop5: detected capacity change from 0 to 128
[  800.350221][T27901] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a84ec018, mo2=0002]
[  800.353005][T27901] System zones: 1-3, 19-19, 35-36
[  800.355629][T27901] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  800.362311][T27901] EXT4-fs warning (device loop5): verify_group_input:137: Cannot add at group 9 (only 1 groups)
[  800.384837][T27407] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  800.637086][T27919] netlink: 'syz.5.8990': attribute type 1 has an invalid length.
[  800.640572][T27919] netlink: 'syz.5.8990': attribute type 1 has an invalid length.
[  800.766092][T27930] loop6: detected capacity change from 0 to 8
[  800.768715][T27930] MTD: Attempt to mount non-MTD device "/dev/loop6"
[  800.782982][T27930] cramfs: Error -3 while decompressing!
[  800.791374][T27930] cramfs: ffffffff99bec668(26)->ffff888119a03000(4096)
[  800.794520][T27930] cramfs: Error -3 while decompressing!
[  800.798930][T27930] cramfs: ffffffff99bec682(26)->ffff88811abcc000(4096)
[  800.802026][T27930] cramfs: Error -3 while decompressing!
[  800.804477][T27930] cramfs: ffffffff99bec69c(16)->ffff88811abcf000(4096)
[  800.809372][T27930] cramfs: Error -3 while decompressing!
[  800.816181][T27930] cramfs: ffffffff99bec668(26)->ffff888119a03000(4096)
[  801.058360][T27952] netlink: 4 bytes leftover after parsing attributes in process `syz.5.9006'.
[  801.180337][T27958] netlink: 512 bytes leftover after parsing attributes in process `syz.5.9009'.
[  801.305190][T27968] loop5: detected capacity change from 0 to 1024
[  801.318939][T27970] netlink: 'syz.6.9015': attribute type 1 has an invalid length.
[  801.321699][T27970] netlink: 224 bytes leftover after parsing attributes in process `syz.6.9015'.
[  801.432935][T27984] loop5: detected capacity change from 0 to 128
[  802.537571][T28040] netdevsim netdevsim2: Direct firmware load for ./file0/file1 failed with error -2
[  802.543625][T28040] netdevsim netdevsim2: Falling back to sysfs fallback for: ./file0/file1
[  802.667333][T28050] loop5: detected capacity change from 0 to 2048
[  802.672711][T28050] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  803.083821][   T47] usb 6-1: new high-speed USB device number 40 using dummy_hcd
[  803.254596][   T47] usb 6-1: Using ep0 maxpacket: 8
[  803.258634][   T47] usb 6-1: config 0 has an invalid interface number: 52 but max is 0
[  803.262181][   T47] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  803.267482][   T47] usb 6-1: config 0 has no interface number 0
[  803.270018][   T47] usb 6-1: config 0 interface 52 altsetting 1 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  803.274775][   T47] usb 6-1: config 0 interface 52 altsetting 1 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  803.279480][   T47] usb 6-1: config 0 interface 52 altsetting 1 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  803.284003][   T47] usb 6-1: config 0 interface 52 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  803.286703][ T5914] usb 7-1: new high-speed USB device number 22 using dummy_hcd
[  803.289286][   T47] usb 6-1: config 0 interface 52 has no altsetting 0
[  803.294608][   T47] usb 6-1: New USB device found, idVendor=06cb, idProduct=0007, bcdDevice= 8.00
[  803.298558][   T47] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  803.303968][   T47] usb 6-1: config 0 descriptor??
[  803.457714][ T5914] usb 7-1: Using ep0 maxpacket: 16
[  803.464137][ T5914] usb 7-1: config 6 has an invalid interface number: 43 but max is 0
[  803.467186][ T5914] usb 7-1: config 6 has an invalid interface association descriptor of length 2, skipping
[  803.472145][ T5914] usb 7-1: config 6 has no interface number 0
[  803.474718][ T5914] usb 7-1: config 6 interface 43 altsetting 170 endpoint 0xC has invalid maxpacket 512, setting to 64
[  803.490123][ T5914] usb 7-1: config 6 interface 43 has no altsetting 0
[  803.504840][ T5914] usb 7-1: string descriptor 0 read error: -71
[  803.508111][ T5914] usb 7-1: New USB device found, idVendor=2304, idProduct=023b, bcdDevice=7b.5c
[  803.512720][ T5914] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  803.518139][ T5914] usb 7-1: rejected 1 configuration due to insufficient available bus power
[  803.523029][ T5914] usb 7-1: no configuration chosen from 1 choice
[  803.526587][ T5914] usb 7-1: USB disconnect, device number 22
[  803.528512][   T47] input: USB Synaptics Device 06cb:0007 (Stick) as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.52/input/input41
[  803.742776][ T5914] usb 6-1: USB disconnect, device number 40
[  804.343598][T28104] netlink: 'syz.5.9079': attribute type 1 has an invalid length.
[  804.405123][T28096] loop6: detected capacity change from 0 to 32768
[  804.446187][T28096] JBD2: Ignoring recovery information on journal
[  804.481048][T28096] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode.
[  804.529583][T28096] OCFS2: ERROR (device loop6): int ocfs2_claim_suballoc_bits(struct ocfs2_alloc_context *, handle_t *, u32, u32, struct ocfs2_suballoc_result *): Chain allocator dinode 73 has 4294901761 used bits but only 0 total
[  804.540142][T28096] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  804.544630][T28096] OCFS2: File system is now read-only.
[  804.546951][T28096] (syz.6.9075,28096,1):ocfs2_claim_suballoc_bits:2063 ERROR: status = -30
[  804.552974][T28096] (syz.6.9075,28096,0):ocfs2_claim_metadata:2088 ERROR: status = -30
[  804.556342][T28096] (syz.6.9075,28096,0):ocfs2_claim_metadata:2101 ERROR: status = -30
[  804.561317][T28096] (syz.6.9075,28096,0):ocfs2_dx_dir_attach_index:2336 ERROR: status = -30
[  804.565491][T28096] (syz.6.9075,28096,0):ocfs2_expand_inline_dir:3029 ERROR: status = -30
[  804.568932][T28096] (syz.6.9075,28096,0):ocfs2_extend_dir:3211 ERROR: status = -30
[  804.580637][T28096] (syz.6.9075,28096,1):ocfs2_prepare_dir_for_insert:4316 ERROR: status = -30
[  804.590875][T28096] (syz.6.9075,28096,1):ocfs2_mknod:301 ERROR: status = -30
[  804.597308][T28096] (syz.6.9075,28096,0):ocfs2_mknod:505 ERROR: status = -30
[  804.600464][T28096] (syz.6.9075,28096,0):ocfs2_mkdir:661 ERROR: status = -30
[  804.642547][T25508] ocfs2: Unmounting device (7,6) on (node local)
[  804.686448][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.706261][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.709859][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.712327][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.714787][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.717541][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.720761][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.725606][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.728216][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.730949][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.733465][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.736070][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.740040][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.743594][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.746180][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.748791][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.757119][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.761163][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.763795][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.766646][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.769661][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.775372][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.778181][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.781093][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.785487][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.789259][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.789557][T28128] netlink: 'syz.2.9091': attribute type 11 has an invalid length.
[  804.793412][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.799492][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.804318][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.809110][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.811477][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.813919][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.825623][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.829589][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.832045][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.834471][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.837940][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.840541][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.847538][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.850479][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.853106][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.855739][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.859828][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.862599][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.865888][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.871538][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.875025][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.876949][T28136] netlink: 12 bytes leftover after parsing attributes in process `syz.2.9094'.
[  804.878089][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.885017][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.885240][T28136] netlink: 16 bytes leftover after parsing attributes in process `syz.2.9094'.
[  804.887927][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.895023][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.898085][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.902455][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.905057][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.907707][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.910755][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.913827][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.916793][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.919589][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.923355][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.926226][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.929111][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.932196][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.937451][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.940116][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.942704][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.945857][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.948708][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.951378][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.954194][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.963055][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.965972][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.968837][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.971563][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.974741][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.977979][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.980514][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.983191][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.985798][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.988585][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.991229][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.993870][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.996551][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  804.999632][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.003679][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.006780][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.010840][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.013899][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.016588][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.020509][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.023758][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.026954][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.030815][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.033632][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.036109][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.040210][   T10] usb 7-1: new high-speed USB device number 23 using dummy_hcd
[  805.046854][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.046889][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.049886][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.061663][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.064108][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.066624][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.069159][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.071705][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.075956][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.078712][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.081580][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.086912][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.090986][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.094731][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.098723][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.104369][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.108252][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.112066][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.115163][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.118340][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.121578][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.124383][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.127492][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.130274][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.133024][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.135665][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.139300][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.141951][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.144504][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.147030][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.149656][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.152236][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.154797][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.158058][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.160790][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.163469][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.166312][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.169227][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.172197][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.174948][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.177630][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.180600][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.183256][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.185989][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.188663][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.192959][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.195650][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.198270][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.201473][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.204510][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.207165][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.210005][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.212985][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.215657][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.218316][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.221307][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.224292][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.227295][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.230003][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.233118][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.233240][   T10] usb 7-1: config 17 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  805.243291][   T10] usb 7-1: config 17 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  805.246910][   T10] usb 7-1: config 17 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  805.250784][   T10] usb 7-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00
[  805.254917][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.254941][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.257405][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.260197][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.263264][   T10] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  805.268960][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.268983][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.273073][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.276668][T28130] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  805.283092][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.283114][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.285751][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.288378][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.291199][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.294491][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.298113][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.304337][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.317538][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.321848][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.325117][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.328555][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.332693][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.335968][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.339394][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.342558][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.345601][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.348274][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.351599][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.354901][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.358256][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.361525][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.364626][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.367803][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.371276][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.374520][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.377641][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.380880][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.384286][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.387378][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.390642][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.393947][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.397116][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.400353][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.403709][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.406978][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.411255][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.414571][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.417768][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.420929][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.424348][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.427798][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.431061][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.434402][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.437865][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.441358][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.443913][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.446394][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.449063][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.451986][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.454687][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.457319][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.460250][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.462889][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.465462][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.468064][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.470611][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.473163][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.475720][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.478390][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.480940][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.484247][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.486811][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.489358][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.491834][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.494375][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.498561][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.504340][   T10] aiptek 7-1:17.0: Aiptek using 400 ms programming speed
[  805.504780][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.510637][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.513899][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.514495][   T10] input: Aiptek as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:17.0/input/input42
[  805.517813][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.523652][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.527304][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.530121][   T10] usb 7-1: USB disconnect, device number 23
[  805.530491][    C0] aiptek 7-1:17.0: aiptek_irq - usb_submit_urb failed with result -19
[  805.530631][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.539323][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.543134][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.546277][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.550246][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.553613][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.556799][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.559749][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.562918][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.567708][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.571087][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  805.577647][T28124] llcp: llcp_sock_recvmsg: Recv datagram failed state 5 -11 0
[  806.131418][T28154] loop6: detected capacity change from 0 to 4096
[  806.198403][T28148] loop5: detected capacity change from 0 to 40427
[  806.202338][T28148] F2FS-fs (loop5): Wrong SSA boundary, start(3584) end(4096) blocks(0)
[  806.206826][T28148] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  806.210577][T28148] F2FS-fs (loop5): build fault injection type: 0x6
[  806.215010][T28148] F2FS-fs (loop5): invalid crc value
[  806.270229][T28148] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  806.274529][T28148] F2FS-fs (loop5): Start checkpoint disabled!
[  806.286791][T28161] netlink: 'syz.6.9104': attribute type 1 has an invalid length.
[  806.291299][T28148] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  806.292758][T28161] netlink: 8 bytes leftover after parsing attributes in process `syz.6.9104'.
[  806.294258][T28148] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6
[  806.321289][T28148] syz.5.9098: attempt to access beyond end of device
[  806.321289][T28148] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  806.349378][ T5934] kworker/u9:5: attempt to access beyond end of device
[  806.349378][ T5934] loop5: rw=2049, sector=45104, nr_sectors = 8 limit=40427
[  806.368171][ T5934] CPU: 0 UID: 0 PID: 5934 Comm: kworker/u9:5 Not tainted syzkaller #0 PREEMPT(full) 
[  806.368209][ T5934] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  806.368217][ T5934] Workqueue: writeback wb_workfn (flush-7:5)
[  806.368239][ T5934] Call Trace:
[  806.368245][ T5934]  <TASK>
[  806.368251][ T5934]  dump_stack_lvl+0x189/0x250
[  806.368271][ T5934]  ? __pfx_dump_stack_lvl+0x10/0x10
[  806.368286][ T5934]  ? __pfx_queue_work_on+0x10/0x10
[  806.368297][ T5934]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  806.368313][ T5934]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  806.368336][ T5934]  f2fs_handle_critical_error+0x37c/0x540
[  806.368359][ T5934]  f2fs_write_end_io+0x886/0xb60
[  806.368383][ T5934]  __submit_merged_bio+0x27a/0x6a0
[  806.368405][ T5934]  __submit_merged_write_cond+0x255/0x530
[  806.368449][ T5934]  f2fs_write_data_pages+0x261d/0x3000
[  806.368492][ T5934]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  806.368520][ T5934]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[  806.368563][ T5934]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[  806.368589][ T5934]  ? trace_f2fs_writepages+0x7f/0x200
[  806.368606][ T5934]  ? f2fs_write_node_pages+0x478/0x6e0
[  806.368625][ T5934]  ? __pfx_f2fs_write_node_pages+0x10/0x10
[  806.368652][ T5934]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  806.368669][ T5934]  do_writepages+0x32e/0x550
[  806.368689][ T5934]  ? reacquire_held_locks+0x127/0x1d0
[  806.368701][ T5934]  ? writeback_sb_inodes+0x384/0x1010
[  806.368722][ T5934]  __writeback_single_inode+0x145/0xff0
[  806.368736][ T5934]  ? do_raw_spin_unlock+0x4d/0x240
[  806.368753][ T5934]  writeback_sb_inodes+0x6c7/0x1010
[  806.368786][ T5934]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  806.368831][ T5934]  ? rcu_is_watching+0x15/0xb0
[  806.368851][ T5934]  wb_writeback+0x43b/0xaf0
[  806.368872][ T5934]  ? queue_io+0x361/0x590
[  806.368889][ T5934]  ? __pfx_wb_writeback+0x10/0x10
[  806.368909][ T5934]  ? _raw_spin_unlock_irq+0x23/0x50
[  806.368929][ T5934]  wb_workfn+0x409/0xef0
[  806.368950][ T5934]  ? __pfx_wb_workfn+0x10/0x10
[  806.368967][ T5934]  ? __lock_acquire+0xab9/0xd20
[  806.368992][ T5934]  ? process_scheduled_works+0x9ef/0x17b0
[  806.369008][ T5934]  ? _raw_spin_unlock_irq+0x23/0x50
[  806.369022][ T5934]  ? process_scheduled_works+0x9ef/0x17b0
[  806.369033][ T5934]  ? process_scheduled_works+0x9ef/0x17b0
[  806.369045][ T5934]  process_scheduled_works+0xae1/0x17b0
[  806.369077][ T5934]  ? __pfx_process_scheduled_works+0x10/0x10
[  806.369102][ T5934]  worker_thread+0x8a0/0xda0
[  806.369116][ T5934]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  806.369138][ T5934]  ? __kthread_parkme+0x7b/0x200
[  806.369158][ T5934]  kthread+0x711/0x8a0
[  806.369176][ T5934]  ? __pfx_worker_thread+0x10/0x10
[  806.369188][ T5934]  ? __pfx_kthread+0x10/0x10
[  806.369204][ T5934]  ? _raw_spin_unlock_irq+0x23/0x50
[  806.369217][ T5934]  ? lockdep_hardirqs_on+0x9c/0x150
[  806.369232][ T5934]  ? __pfx_kthread+0x10/0x10
[  806.369247][ T5934]  ret_from_fork+0x3fc/0x770
[  806.369263][ T5934]  ? __pfx_ret_from_fork+0x10/0x10
[  806.369280][ T5934]  ? __switch_to_asm+0x39/0x70
[  806.369293][ T5934]  ? __switch_to_asm+0x33/0x70
[  806.369306][ T5934]  ? __pfx_kthread+0x10/0x10
[  806.369321][ T5934]  ret_from_fork_asm+0x1a/0x30
[  806.369349][ T5934]  </TASK>
[  806.369555][ T5934] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  806.870004][T28175] loop6: detected capacity change from 0 to 32768
[  806.890216][T28175] XFS (loop6): Mounting V5 Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  806.900185][T28197] loop5: detected capacity change from 0 to 256
[  806.904751][T28197] FAT-fs (loop5): Directory bread(block 1285) failed
[  806.918816][T28175] XFS (loop6): Ending clean mount
[  806.926762][T28197] FAT-fs (loop5): Directory bread(block 1285) failed
[  806.929798][T28197] FAT-fs (loop5): FAT read failed (blocknr 1281)
[  806.939410][T28197] FAT-fs (loop5): Directory bread(block 1285) failed
[  806.942814][T28197] FAT-fs (loop5): Directory bread(block 1285) failed
[  806.945287][T28197] FAT-fs (loop5): Directory bread(block 1285) failed
[  806.948037][T28197] FAT-fs (loop5): Directory bread(block 1285) failed
[  806.950278][T28197] FAT-fs (loop5): Directory bread(block 1285) failed
[  806.952489][T28197] FAT-fs (loop5): Directory bread(block 1285) failed
[  806.957012][T28197] FAT-fs (loop5): Directory bread(block 1285) failed
[  807.016915][T28208] overlayfs: failed to resolve './file1': -2
[  807.066616][T25508] XFS (loop6): Unmounting Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  807.391472][T28231] tmpfs: Bad value for 'mpol'
[  807.411182][T28229] loop6: detected capacity change from 0 to 4096
[  807.650210][ T5879] netdevsim netdevsim5 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  807.653998][ T5879] netdevsim netdevsim5 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  807.657544][ T5879] netdevsim netdevsim5 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  807.681117][ T5878] netdevsim netdevsim5 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  807.698078][   T33] audit: type=1326 audit(765.083:293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28246 comm="syz.5.9140" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbaec78ebe9 code=0x7ffc0000
[  807.718243][   T33] audit: type=1326 audit(765.083:294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28246 comm="syz.5.9140" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbaec78ebe9 code=0x7ffc0000
[  807.753412][   T33] audit: type=1326 audit(765.102:295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28246 comm="syz.5.9140" exe="/syz-executor" sig=0 arch=c000003e syscall=74 compat=0 ip=0x7fbaec78ebe9 code=0x7ffc0000
[  807.773290][   T33] audit: type=1326 audit(765.102:296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28246 comm="syz.5.9140" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbaec78ebe9 code=0x7ffc0000
[  807.784839][   T33] audit: type=1326 audit(765.102:297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28246 comm="syz.5.9140" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbaec78ebe9 code=0x7ffc0000
[  807.943298][T28262] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  807.954451][T28262] block device autoloading is deprecated and will be removed.
[  808.479448][T28269] loop6: detected capacity change from 0 to 40427
[  808.485252][T28269] F2FS-fs (loop6): Invalid log_blocksize (268), supports only 12
[  808.488150][T28269] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  808.531047][T28269] F2FS-fs (loop6): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  808.540854][T28269] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  808.543866][T28269] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  808.800093][T28287] overlayfs: workdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[  808.890675][T28293] loop6: detected capacity change from 0 to 2048
[  808.896572][T28293] UDF-fs: error (device loop6): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  808.903179][T28293] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  809.170360][T28310] netlink: 203516 bytes leftover after parsing attributes in process `syz.6.9166'.
[  809.178074][T28310] openvswitch: netlink: ufid size 3068 bytes exceeds the range (1, 16)
[  809.183167][T28310] openvswitch: netlink: Duplicate key (type 0).
[  809.250180][T28316] netlink: 48 bytes leftover after parsing attributes in process `syz.6.9169'.
[  809.401972][ T5913] usb 6-1: new high-speed USB device number 41 using dummy_hcd
[  809.589401][ T5913] usb 6-1: config 0 has an invalid interface number: 120 but max is 0
[  809.592117][ T5913] usb 6-1: config 0 has no interface number 0
[  809.594546][ T5913] usb 6-1: config 0 interface 120 has no altsetting 0
[  809.600146][ T5913] usb 6-1: New USB device found, idVendor=13d8, idProduct=0010, bcdDevice=8f.72
[  809.603121][ T5913] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  809.607960][ T5913] usb 6-1: Product: syz
[  809.609380][ T5913] usb 6-1: Manufacturer: syz
[  809.610920][ T5913] usb 6-1: SerialNumber: syz
[  809.615921][ T5913] usb 6-1: config 0 descriptor??
[  809.693418][ T5914] usb 7-1: new high-speed USB device number 24 using dummy_hcd
[  809.849954][ T5913] comedi comedi5: could not switch to alternate setting 1
[  809.854284][ T5913] usbduxfast 6-1:0.120: driver 'usbduxfast' failed to auto-configure device.
[  809.859867][ T5913] usb 6-1: USB disconnect, device number 41
[  809.861313][ T5914] usb 7-1: Using ep0 maxpacket: 16
[  809.866614][ T5914] usb 7-1: config index 0 descriptor too short (expected 65038, got 27)
[  809.870052][ T5914] usb 7-1: config 0 has too many interfaces: 150, using maximum allowed: 32
[  809.882795][ T5914] usb 7-1: config 0 descriptor has 1 excess byte, ignoring
[  809.885758][ T5914] usb 7-1: config 0 has 0 interfaces, different from the descriptor's value: 150
[  809.889496][ T5914] usb 7-1: New USB device found, idVendor=0499, idProduct=8206, bcdDevice=f4.55
[  809.893218][ T5914] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  809.898824][ T5914] usb 7-1: config 0 descriptor??
[  810.126139][ T5913] usb 7-1: USB disconnect, device number 24
[  810.604203][T28347] loop5: detected capacity change from 0 to 32768
[  810.607646][T28347] BTRFS: device fsid 3a375e4e-b156-4d76-a2ad-16e198ce1409 devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.9183 (28347)
[  810.620338][T28347] BTRFS info (device loop5): first mount of filesystem 3a375e4e-b156-4d76-a2ad-16e198ce1409
[  810.624767][T28347] BTRFS info (device loop5): using xxhash64 (xxhash64-generic) checksum algorithm
[  810.660709][T28347] BTRFS info (device loop5): enabling ssd optimizations
[  810.664788][T28347] BTRFS info (device loop5): enabling free space tree
[  810.716205][T28347] BTRFS info (device loop5): setting incompat feature flag for COMPRESS_LZO (0x8)
[  810.774377][T27407] BTRFS info (device loop5): last unmount of filesystem 3a375e4e-b156-4d76-a2ad-16e198ce1409
[  811.724157][T28390] netlink: 12 bytes leftover after parsing attributes in process `syz.5.9194'.
[  811.739350][T28390] netlink: 12 bytes leftover after parsing attributes in process `syz.5.9194'.
[  812.550583][T28408] loop5: detected capacity change from 0 to 128
[  812.553884][T28408] zonefs: Unexpected value for 'explicit-open'
[  812.678240][T28414] loop5: detected capacity change from 0 to 16
[  813.447282][T28420] loop5: detected capacity change from 0 to 32768
[  813.452082][T28420] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.9209 (28420)
[  813.461598][T28420] BTRFS info (device loop5): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  813.466197][T28420] BTRFS info (device loop5): using sha256 (sha256-lib) checksum algorithm
[  813.529685][T28420] BTRFS info (device loop5): enabling ssd optimizations
[  813.538984][T28420] BTRFS info (device loop5): enabling free space tree
[  813.593964][T27407] BTRFS info (device loop5): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  813.601904][T28439] loop6: detected capacity change from 0 to 2048
[  813.628750][T28439]  loop6: p1 p2 p3 < > p4 < p5 p6 >
[  813.630663][T28439] loop6: partition table partially beyond EOD, truncated
[  813.633481][T28439] loop6: p1 start 458755 is beyond EOD, truncated
[  813.642980][T28439] loop6: p2 start 16908804 is beyond EOD, truncated
[  813.657237][T28439] loop6: p3 start 4284289 is beyond EOD, truncated
[  813.670512][T28439] loop6: p5 start 458755 is beyond EOD, truncated
[  813.672776][T28439] loop6: p6 start 16908804 is beyond EOD, truncated
[  813.920451][T28453] netlink: 36 bytes leftover after parsing attributes in process `syz.2.9218'.
[  814.102532][T28474] 9pnet_fd: Insufficient options for proto=fd
[  814.144203][T28475] loop6: detected capacity change from 0 to 8192
[  814.537369][T28497] loop5: detected capacity change from 0 to 4096
[  814.567681][T28497] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  814.637284][T27407] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  815.290344][T28529] netlink: 13 bytes leftover after parsing attributes in process `syz.2.9251'.
[  815.294230][T28529] netlink: 'syz.2.9251': attribute type 3 has an invalid length.
[  815.296820][T28529] netlink: 2 bytes leftover after parsing attributes in process `syz.2.9251'.
[  815.380624][ T5913] usb 6-1: new high-speed USB device number 42 using dummy_hcd
[  815.462919][   T33] audit: type=1326 audit(772.342:298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28536 comm="syz.2.9254" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe397d8ebe9 code=0x0
[  815.538047][ T5913] usb 6-1: Using ep0 maxpacket: 16
[  815.544801][ T5913] usb 6-1: unable to get BOS descriptor or descriptor too short
[  815.555873][ T5913] usb 6-1: config 13 has an invalid interface number: 50 but max is 0
[  815.559271][ T5913] usb 6-1: config 13 has no interface number 0
[  815.574696][ T5913] usb 6-1: config 13 interface 50 altsetting 167 bulk endpoint 0x8 has invalid maxpacket 16
[  815.580761][ T5913] usb 6-1: config 13 interface 50 has no altsetting 0
[  815.591817][ T5913] usb 6-1: New USB device found, idVendor=1aca, idProduct=b28e, bcdDevice=92.32
[  815.603220][ T5913] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  815.606629][ T5913] usb 6-1: Product: syz
[  815.608362][ T5913] usb 6-1: Manufacturer: syz
[  815.616854][ T5913] usb 6-1: SerialNumber: syz
[  815.623711][T28524] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  815.737692][T28549] xt_limit: Overflow, try lower: 604147548/4200216962
[  815.851856][ T5913] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  815.860816][ T5913] usb 6-1: MIDIStreaming interface descriptor not found
[  815.878127][ T5913] usb 6-1: USB disconnect, device number 42
[  816.046684][T28570] loop6: detected capacity change from 0 to 32768
[  816.049273][T28570] XFS: attr2 mount option is deprecated.
[  816.061579][T28570] XFS (loop6): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  816.081219][T28570] XFS (loop6): Ending clean mount
[  816.093355][T28570] XFS (loop6): Quotacheck needed: Please wait.
[  816.129348][T28570] XFS (loop6): Quotacheck: Done.
[  816.151460][T25508] XFS (loop6): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  816.380801][T28585] netlink: 830 bytes leftover after parsing attributes in process `syz.6.9271'.
[  816.579879][T28602] loop5: detected capacity change from 0 to 64
[  816.670823][T28607] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  816.806359][T28620] netlink: 8 bytes leftover after parsing attributes in process `syz.5.9287'.
[  816.809751][T28620] sch_fq: defrate 4294967295 ignored.
[  817.580360][  T793] usb 7-1: new high-speed USB device number 25 using dummy_hcd
[  817.745379][  T793] usb 7-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config
[  817.749988][  T793] usb 7-1: New USB device found, idVendor=041e, idProduct=4007, bcdDevice=5d.18
[  817.753918][  T793] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  817.762739][  T793] gspca_main: stv0680-2.14.0 probing 041e:4007
[  818.536205][T28684] 9pnet_fd: Insufficient options for proto=fd
[  818.896566][T28703] loop5: detected capacity change from 0 to 128
[  818.902071][T28703] EXT4-fs: Ignoring removed nobh option
[  818.911805][  T793] gspca_stv0680: usb_control_msg error 0, request = 0x88, error = -32
[  818.929336][  T793] stv0680 7-1:4.0: STV(e): camera ping failed!!
[  818.941470][  T793] gspca_stv0680: usb_control_msg error 0, request = 0x80, error = -71
[  818.949532][T28703] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  818.954348][  T793] stv0680 7-1:4.0: last error: 0,  command = 0x0
[  818.965759][  T793] usb 7-1: USB disconnect, device number 25
[  819.979477][T28721] loop6: detected capacity change from 0 to 256
[  820.170743][T28722] exFAT-fs (loop6): start_clu is invalid cluster(0x400)
[  820.202535][T27407] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  820.276462][ T5237] Bluetooth: hci1: command 0x0405 tx timeout
[  820.348530][   T10] libceph: connect (1)[c::]:6789 error -101
[  820.354117][   T10] libceph: mon0 (1)[c::]:6789 connect error
[  820.384085][   T33] audit: type=1326 audit(776.953:299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28723 comm="syz.5.9333" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fbaec78ebe9 code=0x0
[  820.493667][T28724] ceph: No mds server is up or the cluster is laggy
[  821.348363][T28746] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  821.488183][T28756] loop5: detected capacity change from 0 to 64
[  821.502108][T28756] BFS-fs: bfs_fill_super(): loop5 is unclean, continuing
[  821.512994][T28756] BFS-fs: bfs_iget(): Bad inode number loop5:00000002
[  821.534995][T28759] netlink: 32 bytes leftover after parsing attributes in process `syz.6.9345'.
[  821.753726][T28763] loop5: detected capacity change from 0 to 8192
[  822.118709][T28775] loop5: detected capacity change from 0 to 4096
[  822.125121][T28775] EXT4-fs (loop5): Test dummy encryption mode enabled
[  822.132714][T28775] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  822.175858][T27407] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  822.493654][T28798] netlink: 'syz.2.9367': attribute type 5 has an invalid length.
[  822.721366][T28820] loop6: detected capacity change from 0 to 2048
[  822.749361][T28825] loop5: detected capacity change from 0 to 512
[  822.754059][T28820] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  822.785623][T28825] EXT4-fs: Ignoring removed nomblk_io_submit option
[  822.822235][T28825] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  822.828263][   T33] audit: type=1800 audit(779.236:300): pid=28825 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.9380" name="file1" dev="loop5" ino=15 res=0 errno=0
[  822.863161][T27407] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  822.976497][T28836] netlink: 40 bytes leftover after parsing attributes in process `syz.5.9383'.
[  823.168968][T28839] overlayfs: failed to create directory ./bus/index (errno: 28); mounting read-only
[  823.173602][T28839] overlayfs: try deleting index dir or mounting with '-o index=off' to disable inodes index.
[  823.367681][T27105] block nbd5: Receive control failed (result -32)
[  823.407523][T28840] block nbd5: shutting down sockets
[  823.478553][T28845] loop5: detected capacity change from 0 to 1024
[  823.495138][T28845] EXT4-fs (loop5): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  823.541780][T27407] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  823.956483][T25508] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  824.058305][T28861] team_slave_0: entered promiscuous mode
[  824.060955][T28861] team_slave_1: entered promiscuous mode
[  824.068377][T28861] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  824.238141][T28877] netlink: 16 bytes leftover after parsing attributes in process `syz.6.9399'.
[  824.507871][T28886] overlayfs: failed to clone upperpath
[  824.541267][T28879] loop5: detected capacity change from 0 to 32768
[  824.583239][T28879] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  824.627505][T28879] XFS (loop5): Ending clean mount
[  824.643707][T28898] loop6: detected capacity change from 0 to 256
[  824.650439][T28879] XFS (loop5): Quotacheck needed: Please wait.
[  824.727852][T28879] XFS (loop5): Quotacheck: Done.
[  824.768912][T27407] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  824.921019][T28906] loop6: detected capacity change from 0 to 2048
[  824.949842][T28906] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  824.983288][T28908] netlink: 64 bytes leftover after parsing attributes in process `syz.2.9410'.
[  825.223150][T28923] netlink: 20 bytes leftover after parsing attributes in process `syz.5.9417'.
[  825.385441][T28936] delete_channel: no stack
[  825.414262][T28939] loop5: detected capacity change from 0 to 1024
[  825.419813][T28939] EXT4-fs (loop5): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  825.425102][T28939] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (31873!=20869)
[  825.442709][T28939] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  825.447223][T28939] EXT4-fs (loop5): filesystem has both journal inode and journal device!
[  825.456786][T28941] netdevsim netdevsim6 netdevsim0: entered allmulticast mode
[  825.762828][T28959] loop6: detected capacity change from 0 to 2048
[  825.960070][ T5913] usb 6-1: new full-speed USB device number 43 using dummy_hcd
[  826.082668][T28962] loop6: detected capacity change from 0 to 40427
[  826.086536][T28962] F2FS-fs (loop6): Invalid log_blocksize (268), supports only 12
[  826.090930][T28962] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  826.157017][T28962] F2FS-fs (loop6): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  826.161298][T28962] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  826.163655][T28962] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  826.181288][ T5913] usb 6-1: config 0 has an invalid interface number: 128 but max is 0
[  826.184132][ T5913] usb 6-1: config 0 has no interface number 0
[  826.188759][ T5913] usb 6-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[  826.192463][ T5913] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  826.195022][ T5913] usb 6-1: Product: syz
[  826.197122][ T5913] usb 6-1: Manufacturer: syz
[  826.198800][ T5913] usb 6-1: SerialNumber: syz
[  826.208607][ T5913] usb 6-1: config 0 descriptor??
[  826.411236][   T33] audit: type=1326 audit(782.594:301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28974 comm="syz.2.9442" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe397d8ebe9 code=0x7ffc0000
[  826.599151][   T33] audit: type=1326 audit(782.594:302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28974 comm="syz.2.9442" exe="/syz-executor" sig=0 arch=c000003e syscall=122 compat=0 ip=0x7fe397d8ebe9 code=0x7ffc0000
[  826.606327][   T33] audit: type=1326 audit(782.594:303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28974 comm="syz.2.9442" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe397d8ebe9 code=0x7ffc0000
[  826.613232][   T33] audit: type=1326 audit(782.603:304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28974 comm="syz.2.9442" exe="/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fe397d8ebe9 code=0x7ffc0000
[  826.620434][   T33] audit: type=1326 audit(782.603:305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28974 comm="syz.2.9442" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe397d8ebe9 code=0x7ffc0000
[  826.627723][   T33] audit: type=1326 audit(782.603:306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28974 comm="syz.2.9442" exe="/syz-executor" sig=0 arch=c000003e syscall=20 compat=0 ip=0x7fe397d8ebe9 code=0x7ffc0000
[  826.634594][   T33] audit: type=1326 audit(782.603:307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28974 comm="syz.2.9442" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe397d8ebe9 code=0x7ffc0000
[  826.642162][   T33] audit: type=1326 audit(782.603:308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28974 comm="syz.2.9442" exe="/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fe397d8ebe9 code=0x7ffc0000
[  826.649775][   T33] audit: type=1326 audit(782.603:309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28974 comm="syz.2.9442" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe397d8ebe9 code=0x7ffc0000
[  826.716898][T28984] netlink: 124 bytes leftover after parsing attributes in process `syz.6.9444'.
[  826.745884][T28986] loop6: detected capacity change from 0 to 256
[  826.749782][T28986] exFAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  826.755282][T28986] exFAT-fs (loop6): Medium has reported failures. Some data may be lost.
[  826.762899][T28986] exFAT-fs (loop6): failed to load upcase table (idx : 0x0000ff98, chksum : 0xc64c1d22, utbl_chksum : 0xe619d30d)
[  826.815988][ T5913] usb 6-1: Firmware: major: 0, minor: 11, hardware type: UNKNOWN (170)
[  827.042183][ T5913] usb 6-1: failed to fetch extended address, random address set
[  827.045110][ T5913] usb 6-1: atusb_probe: initialization failed, error = -524
[  827.058822][ T5913] atusb 6-1:0.128: probe with driver atusb failed with error -524
[  827.064289][ T5913] usb 6-1: USB disconnect, device number 43
[  827.629206][ T1090] wlan1: Trigger new scan to find an IBSS to join
[  827.653605][T29006] tmpfs: User quota inode hardlimit too large.
[  827.942537][T29015] loop6: detected capacity change from 0 to 256
[  828.042074][T29019] loop6: detected capacity change from 0 to 64
[  828.064697][T29019] minix_free_block (loop6:1): bit already cleared
[  828.067479][T29019] minix_free_block (loop6:4): bit already cleared
[  828.071200][T29019] minix_free_block (loop6:3): bit already cleared
[  828.074075][T29019] minix_free_block (loop6:2): bit already cleared
[  828.076689][T29019] minix_free_block (loop6:1): bit already cleared
[  828.226751][T29030] ==================================================================
[  828.229387][T29030] BUG: KASAN: slab-use-after-free in xfrm_alloc_spi+0x570/0xf30
[  828.232078][T29030] Read of size 4 at addr ffff88812a2589c4 by task syz.2.9465/29030
[  828.235113][T29030] 
[  828.236617][T29030] CPU: 0 UID: 0 PID: 29030 Comm: syz.2.9465 Not tainted syzkaller #0 PREEMPT(full) 
[  828.236630][T29030] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  828.236636][T29030] Call Trace:
[  828.236640][T29030]  <TASK>
[  828.236645][T29030]  dump_stack_lvl+0x189/0x250
[  828.236659][T29030]  ? __kasan_check_byte+0x12/0x40
[  828.236672][T29030]  ? __pfx_dump_stack_lvl+0x10/0x10
[  828.236682][T29030]  ? lock_release+0x4b/0x3e0
[  828.236694][T29030]  ? __virt_addr_valid+0x4a5/0x5c0
[  828.236704][T29030]  print_report+0xca/0x240
[  828.236712][T29030]  ? xfrm_alloc_spi+0x570/0xf30
[  828.236720][T29030]  kasan_report+0x118/0x150
[  828.236730][T29030]  ? xfrm_alloc_spi+0x570/0xf30
[  828.236738][T29030]  xfrm_alloc_spi+0x570/0xf30
[  828.236745][T29030]  ? xfrm_alloc_spi+0x2a0/0xf30
[  828.236755][T29030]  ? __pfx_xfrm_alloc_spi+0x10/0x10
[  828.236763][T29030]  ? xfrm_find_acq+0x87/0xa0
[  828.236771][T29030]  xfrm_alloc_userspi+0x70b/0xc90
[  828.236782][T29030]  ? apparmor_capable+0x137/0x1b0
[  828.236791][T29030]  ? __pfx_xfrm_alloc_userspi+0x10/0x10
[  828.236800][T29030]  ? __nla_parse+0x40/0x60
[  828.236811][T29030]  xfrm_user_rcv_msg+0x7a3/0xab0
[  828.236820][T29030]  ? __pfx_xfrm_user_rcv_msg+0x10/0x10
[  828.236833][T29030]  ? __pfx___mutex_trylock_common+0x10/0x10
[  828.236841][T29030]  ? rcu_is_watching+0x15/0xb0
[  828.236849][T29030]  ? trace_contention_end+0x39/0x120
[  828.236856][T29030]  ? __mutex_lock+0x335/0x1350
[  828.236869][T29030]  netlink_rcv_skb+0x208/0x470
[  828.236881][T29030]  ? __pfx_xfrm_user_rcv_msg+0x10/0x10
[  828.236888][T29030]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  828.236900][T29030]  ? netlink_deliver_tap+0x2e/0x1b0
[  828.236909][T29030]  ? netlink_deliver_tap+0x2e/0x1b0
[  828.236919][T29030]  xfrm_netlink_rcv+0x79/0x90
[  828.236927][T29030]  netlink_unicast+0x82f/0x9e0
[  828.236937][T29030]  ? __pfx_netlink_unicast+0x10/0x10
[  828.236946][T29030]  ? netlink_sendmsg+0x642/0xb30
[  828.236955][T29030]  ? skb_put+0x11b/0x210
[  828.236964][T29030]  netlink_sendmsg+0x805/0xb30
[  828.236975][T29030]  ? __pfx_netlink_sendmsg+0x10/0x10
[  828.236986][T29030]  ? aa_sock_msg_perm+0xf1/0x1d0
[  828.236992][T29030]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  828.237000][T29030]  ? __pfx_netlink_sendmsg+0x10/0x10
[  828.237010][T29030]  __sock_sendmsg+0x21c/0x270
[  828.237020][T29030]  ____sys_sendmsg+0x505/0x830
[  828.237028][T29030]  ? __pfx_____sys_sendmsg+0x10/0x10
[  828.237036][T29030]  ? import_iovec+0x74/0xa0
[  828.237045][T29030]  ___sys_sendmsg+0x21f/0x2a0
[  828.237052][T29030]  ? __pfx____sys_sendmsg+0x10/0x10
[  828.237064][T29030]  ? __fget_files+0x2a/0x420
[  828.237070][T29030]  ? __fget_files+0x3a0/0x420
[  828.237078][T29030]  __x64_sys_sendmsg+0x19b/0x260
[  828.237085][T29030]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  828.237094][T29030]  ? rcu_is_watching+0x15/0xb0
[  828.237101][T29030]  ? do_syscall_64+0xbe/0x3b0
[  828.237112][T29030]  do_syscall_64+0xfa/0x3b0
[  828.237121][T29030]  ? lockdep_hardirqs_on+0x9c/0x150
[  828.237130][T29030]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  828.237137][T29030]  ? exc_page_fault+0x9f/0xf0
[  828.237145][T29030]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  828.237153][T29030] RIP: 0033:0x7fe397d8ebe9
[  828.237160][T29030] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  828.237167][T29030] RSP: 002b:00007fe398bc4038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  828.237176][T29030] RAX: ffffffffffffffda RBX: 00007fe397fb5fa0 RCX: 00007fe397d8ebe9
[  828.237182][T29030] RDX: 0000000000000000 RSI: 0000200000000280 RDI: 0000000000000003
[  828.237186][T29030] RBP: 00007fe397e11e19 R08: 0000000000000000 R09: 0000000000000000
[  828.237191][T29030] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  828.237195][T29030] R13: 00007fe397fb6038 R14: 00007fe397fb5fa0 R15: 00007ffeefed5e68
[  828.237202][T29030]  </TASK>
[  828.237205][T29030] 
[  828.373016][T29030] Allocated by task 28592:
[  828.374514][T29030]  kasan_save_track+0x3e/0x80
[  828.376070][T29030]  __kasan_slab_alloc+0x6c/0x80
[  828.378063][T29030]  kmem_cache_alloc_noprof+0x1c1/0x3c0
[  828.380461][T29030]  xfrm_state_alloc+0x24/0x2f0
[  828.382579][T29030]  xfrm_add_acquire+0xf7/0xb20
[  828.384658][T29030]  xfrm_user_rcv_msg+0x7a3/0xab0
[  828.386810][T29030]  netlink_rcv_skb+0x208/0x470
[  828.388758][T29030]  xfrm_netlink_rcv+0x79/0x90
[  828.390717][T29030]  netlink_unicast+0x82f/0x9e0
[  828.392316][T29030]  netlink_sendmsg+0x805/0xb30
[  828.393932][T29030]  __sock_sendmsg+0x21c/0x270
[  828.395620][T29030]  ____sys_sendmsg+0x505/0x830
[  828.397223][T29030]  ___sys_sendmsg+0x21f/0x2a0
[  828.399280][T29030]  __x64_sys_sendmsg+0x19b/0x260
[  828.401460][T29030]  do_syscall_64+0xfa/0x3b0
[  828.403193][T29030]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  828.405548][T29030] 
[  828.406391][T29030] Freed by task 28592:
[  828.407821][T29030]  kasan_save_track+0x3e/0x80
[  828.409825][T29030]  kasan_save_free_info+0x46/0x50
[  828.411898][T29030]  __kasan_slab_free+0x5b/0x80
[  828.413801][T29030]  kmem_cache_free+0x18f/0x400
[  828.415671][T29030]  xfrm_add_acquire+0x9cc/0xb20
[  828.417597][T29030]  xfrm_user_rcv_msg+0x7a3/0xab0
[  828.419342][T29030]  netlink_rcv_skb+0x208/0x470
[  828.421268][T29030]  xfrm_netlink_rcv+0x79/0x90
[  828.422864][T29030]  netlink_unicast+0x82f/0x9e0
[  828.424613][T29030]  netlink_sendmsg+0x805/0xb30
[  828.426367][T29030]  __sock_sendmsg+0x21c/0x270
[  828.428226][T29030]  ____sys_sendmsg+0x505/0x830
[  828.430242][T29030]  ___sys_sendmsg+0x21f/0x2a0
[  828.432281][T29030]  __x64_sys_sendmsg+0x19b/0x260
[  828.434457][T29030]  do_syscall_64+0xfa/0x3b0
[  828.436434][T29030]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  828.438950][T29030] 
[  828.440008][T29030] The buggy address belongs to the object at ffff88812a258900
[  828.440008][T29030]  which belongs to the cache xfrm_state of size 928
[  828.445574][T29030] The buggy address is located 196 bytes inside of
[  828.445574][T29030]  freed 928-byte region [ffff88812a258900, ffff88812a258ca0)
[  828.451209][T29030] 
[  828.452278][T29030] The buggy address belongs to the physical page:
[  828.455040][T29030] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff88812a258900 pfn:0x12a258
[  828.459129][T29030] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  828.462616][T29030] flags: 0x57ff00000000040(head|node=1|zone=2|lastcpupid=0x7ff)
[  828.465494][T29030] page_type: f5(slab)
[  828.467039][T29030] raw: 057ff00000000040 ffff888104f42280 dead000000000122 0000000000000000
[  828.470208][T29030] raw: ffff88812a258900 00000000800e000a 00000000f5000000 0000000000000000
[  828.473369][T29030] head: 057ff00000000040 ffff888104f42280 dead000000000122 0000000000000000
[  828.476926][T29030] head: ffff88812a258900 00000000800e000a 00000000f5000000 0000000000000000
[  828.480440][T29030] head: 057ff00000000002 ffffea0004a89601 00000000ffffffff 00000000ffffffff
[  828.483337][T29030] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000004
[  828.486931][T29030] page dumped because: kasan: bad access detected
[  828.489355][T29030] page_owner tracks the page as allocated
[  828.491819][T29030] page last allocated via order 2, migratetype Unmovable, gfp_mask 0x52820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 21487, tgid 21478 (syz.8.6329), ts 598496917433, free_ts 584290186104
[  828.499681][T29030]  post_alloc_hook+0x240/0x2a0
[  828.501335][T29030]  get_page_from_freelist+0x21e4/0x22c0
[  828.503570][T29030]  __alloc_frozen_pages_noprof+0x181/0x370
[  828.506050][T29030]  alloc_pages_mpol+0x232/0x4a0
[  828.508011][T29030]  allocate_slab+0x8a/0x370
[  828.509709][T29030]  ___slab_alloc+0xbeb/0x1410
[  828.511705][T29030]  kmem_cache_alloc_noprof+0x283/0x3c0
[  828.513894][T29030]  xfrm_state_alloc+0x24/0x2f0
[  828.515552][T29030]  xfrm_state_find+0x37d4/0x5400
[  828.517459][T29030]  xfrm_resolve_and_create_bundle+0x768/0x2f80
[  828.519948][T29030]  xfrm_lookup_with_ifid+0x2a7/0x1a70
[  828.522094][T29030]  xfrm_lookup_route+0x3c/0x1c0
[  828.523951][T29030]  udp_sendmsg+0x142e/0x2170
[  828.525638][T29030]  __sock_sendmsg+0x19c/0x270
[  828.527209][T29030]  ____sys_sendmsg+0x52d/0x830
[  828.528874][T29030]  ___sys_sendmsg+0x21f/0x2a0
[  828.530563][T29030] page last free pid 15 tgid 15 stack trace:
[  828.532692][T29030]  __free_frozen_pages+0xbc4/0xd30
[  828.534393][T29030]  __tlb_remove_table+0x2d2/0x3b0
[  828.536151][T29030]  tlb_remove_table_rcu+0x85/0x100
[  828.537892][T29030]  rcu_core+0xcab/0x1770
[  828.539425][T29030]  handle_softirqs+0x286/0x870
[  828.541041][T29030]  run_ksoftirqd+0x9b/0x100
[  828.542631][T29030]  smpboot_thread_fn+0x542/0xa60
[  828.544349][T29030]  kthread+0x711/0x8a0
[  828.545825][T29030]  ret_from_fork+0x3fc/0x770
[  828.547503][T29030]  ret_from_fork_asm+0x1a/0x30
[  828.549352][T29030] 
[  828.550348][T29030] Memory state around the buggy address:
[  828.552685][T29030]  ffff88812a258880: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  828.555951][T29030]  ffff88812a258900: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  828.559236][T29030] >ffff88812a258980: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  828.562091][T29030]                                            ^
[  828.564130][T29030]  ffff88812a258a00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  828.566811][T29030]  ffff88812a258a80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  828.569471][T29030] ==================================================================
[  828.572319][T29030] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  828.574831][T29030] CPU: 0 UID: 0 PID: 29030 Comm: syz.2.9465 Not tainted syzkaller #0 PREEMPT(full) 
[  828.577947][T29030] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  828.581296][T29030] Call Trace:
[  828.582428][T29030]  <TASK>
[  828.583444][T29030]  dump_stack_lvl+0x99/0x250
[  828.584987][T29030]  ? __asan_memcpy+0x40/0x70
[  828.586522][T29030]  ? __pfx_dump_stack_lvl+0x10/0x10
[  828.588233][T29030]  ? __pfx__printk+0x10/0x10
[  828.589767][T29030]  vpanic+0x281/0x750
[  828.591061][T29030]  ? __pfx_vpanic+0x10/0x10
[  828.592590][T29030]  ? irqentry_exit+0x74/0x90
[  828.594258][T29030]  panic+0xb9/0xc0
[  828.595834][T29030]  ? __pfx_panic+0x10/0x10
[  828.597683][T29030]  ? _raw_spin_unlock_irqrestore+0xa8/0x110
[  828.599963][T29030]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  828.602453][T29030]  ? xfrm_alloc_spi+0x570/0xf30
[  828.604353][T29030]  check_panic_on_warn+0x89/0xb0
[  828.606175][T29030]  ? xfrm_alloc_spi+0x570/0xf30
[  828.607857][T29030]  end_report+0x78/0x160
[  828.609282][T29030]  kasan_report+0x129/0x150
[  828.610799][T29030]  ? xfrm_alloc_spi+0x570/0xf30
[  828.612421][T29030]  xfrm_alloc_spi+0x570/0xf30
[  828.614047][T29030]  ? xfrm_alloc_spi+0x2a0/0xf30
[  828.615902][T29030]  ? __pfx_xfrm_alloc_spi+0x10/0x10
[  828.617845][T29030]  ? xfrm_find_acq+0x87/0xa0
[  828.619595][T29030]  xfrm_alloc_userspi+0x70b/0xc90
[  828.621382][T29030]  ? apparmor_capable+0x137/0x1b0
[  828.623047][T29030]  ? __pfx_xfrm_alloc_userspi+0x10/0x10
[  828.625257][T29030]  ? __nla_parse+0x40/0x60
[  828.626958][T29030]  xfrm_user_rcv_msg+0x7a3/0xab0
[  828.628604][T29030]  ? __pfx_xfrm_user_rcv_msg+0x10/0x10
[  828.630426][T29030]  ? __pfx___mutex_trylock_common+0x10/0x10
[  828.632389][T29030]  ? rcu_is_watching+0x15/0xb0
[  828.634040][T29030]  ? trace_contention_end+0x39/0x120
[  828.636199][T29030]  ? __mutex_lock+0x335/0x1350
[  828.638188][T29030]  netlink_rcv_skb+0x208/0x470
[  828.639917][T29030]  ? __pfx_xfrm_user_rcv_msg+0x10/0x10
[  828.641765][T29030]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  828.643797][T29030]  ? netlink_deliver_tap+0x2e/0x1b0
[  828.645727][T29030]  ? netlink_deliver_tap+0x2e/0x1b0
[  828.647616][T29030]  xfrm_netlink_rcv+0x79/0x90
[  828.649190][T29030]  netlink_unicast+0x82f/0x9e0
[  828.650998][T29030]  ? __pfx_netlink_unicast+0x10/0x10
[  828.653167][T29030]  ? netlink_sendmsg+0x642/0xb30
[  828.655257][T29030]  ? skb_put+0x11b/0x210
[  828.657100][T29030]  netlink_sendmsg+0x805/0xb30
[  828.659193][T29030]  ? __pfx_netlink_sendmsg+0x10/0x10
[  828.661313][T29030]  ? aa_sock_msg_perm+0xf1/0x1d0
[  828.663260][T29030]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  828.665301][T29030]  ? __pfx_netlink_sendmsg+0x10/0x10
[  828.667525][T29030]  __sock_sendmsg+0x21c/0x270
[  828.669527][T29030]  ____sys_sendmsg+0x505/0x830
[  828.671548][T29030]  ? __pfx_____sys_sendmsg+0x10/0x10
[  828.673683][T29030]  ? import_iovec+0x74/0xa0
[  828.675594][T29030]  ___sys_sendmsg+0x21f/0x2a0
[  828.677521][T29030]  ? __pfx____sys_sendmsg+0x10/0x10
[  828.679652][T29030]  ? __fget_files+0x2a/0x420
[  828.681675][T29030]  ? __fget_files+0x3a0/0x420
[  828.683678][T29030]  __x64_sys_sendmsg+0x19b/0x260
[  828.685738][T29030]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  828.687975][T29030]  ? rcu_is_watching+0x15/0xb0
[  828.689961][T29030]  ? do_syscall_64+0xbe/0x3b0
[  828.691874][T29030]  do_syscall_64+0xfa/0x3b0
[  828.693727][T29030]  ? lockdep_hardirqs_on+0x9c/0x150
[  828.695831][T29030]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  828.698262][T29030]  ? exc_page_fault+0x9f/0xf0
[  828.700166][T29030]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  828.702564][T29030] RIP: 0033:0x7fe397d8ebe9
[  828.704425][T29030] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  828.712387][T29030] RSP: 002b:00007fe398bc4038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  828.715974][T29030] RAX: ffffffffffffffda RBX: 00007fe397fb5fa0 RCX: 00007fe397d8ebe9
[  828.719202][T29030] RDX: 0000000000000000 RSI: 0000200000000280 RDI: 0000000000000003
[  828.722426][T29030] RBP: 00007fe397e11e19 R08: 0000000000000000 R09: 0000000000000000
[  828.725828][T29030] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  828.729271][T29030] R13: 00007fe397fb6038 R14: 00007fe397fb5fa0 R15: 00007ffeefed5e68
[  828.732735][T29030]  </TASK>
[  828.734861][T29030] Kernel Offset: disabled
[  828.736734][T29030] Rebooting in 86400 seconds..

VM DIAGNOSIS:
22:45:14  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000020 RBX=0000000000000020 RCX=0000000000000000 RDX=00000000000003f8
RSI=00000000000013da RDI=00000000000013db RBP=00000000000003f8 RSP=ffffc90009b269f0
R8 =ffff888107cd8237 R9 =1ffff11020f9b046 R10=dffffc0000000000 R11=ffffffff854f3ac0
R12=dffffc0000000000 R13=ffffffff99afa8c3 R14=ffffffff99def420 R15=0000000000000000
RIP=ffffffff854f3b3c RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fe398bc46c0 ffffffff 00c00000
GS =0000 ffff8880b861b000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000200000000280 CR3=00000000293ee000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=0000000000000000 0000000000000000
XMM02=00007fbaec987498 00007fbaec987470 XMM03=00007fbaec9874a8 00007fbaec9874a0
XMM04=00007fbaed4ed100 00007fbaec987460 XMM05=00007fbaec987478 00007fbaec9874c0
XMM06=00007fbaec9874b8 00007fbaec9874b0 XMM07=00007fbaec9874a8 00007fbaec9874a0
XMM08=6161616161616161 6161616161616161 XMM09=0000000000000000 00007fbaec812fc5
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=ffffffff88e3eb08 RBX=0000000000000000 RCX=0000000000000002 RDX=ffff88810dfb9cc0
RSI=0000000000000001 RDI=0000000000000000 RBP=ffffc90009a6fcf8 RSP=ffffc90009a6fb18
R8 =ffff8881140796a3 R9 =1ffff1102280f2d4 R10=dffffc0000000000 R11=ffffed102280f2d5
R12=1ffff9200134df7c R13=ffff888114074c10 R14=dffffc0000000000 R15=0000000000000001
RIP=ffffffff8b7c90e0 RFL=00000297 [--S-APC] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f5dd3ca86c0 ffffffff 00c00000
GS =0000 ffff8881a3c1b000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000000000000002 CR3=0000000039476000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=0000000000000000 0000000000000000
XMM02=00007f5dd2f87498 00007f5dd2f87470 XMM03=00007f5dd2f874a8 00007f5dd2f874a0
XMM04=00007f5dd3aed100 00007f5dd2f87460 XMM05=00007f5dd2f87478 00007f5dd2f874c0
XMM06=00007f5dd2f874b8 00007f5dd2f874b0 XMM07=00007f5dd2f874a8 00007f5dd2f874a0
XMM08=6161616161616161 6161616161616161 XMM09=0000000000000000 00007f5dd2e12fc5
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
