last executing test programs:

17.74618796s ago: executing program 2 (id=458):
r0 = socket$l2tp6(0xa, 0x2, 0x73)
connect$l2tp6(r0, &(0x7f0000000440)={0xa, 0x0, 0x1, @mcast2, 0x1}, 0x20)

17.682217698s ago: executing program 2 (id=459):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f00000002c0)='cgroup.threads\x00', 0x2, 0x0)
write$cgroup_pid(r1, &(0x7f0000000c40), 0x12)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0xc, &(0x7f0000000140)=ANY=[@ANYBLOB="1802000000000000000000000000100085000000530000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000009b00000095000000000000007f0cff0a196e6d57113f3eab28c85d691f724ad140108934a3e3efa560dc8db4700e191ff5f03fd7f83f6e1e9aaee2afc55f025e56e0ded37be12657f5e837cfc27b55"], &(0x7f0000000080)='syzkaller\x00'}, 0x88)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r2, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

17.681754093s ago: executing program 2 (id=460):
r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
getsockopt$rose(r0, 0x104, 0x1, 0x0, &(0x7f00000000c0))

17.612528491s ago: executing program 2 (id=461):
syz_mount_image$hfsplus(&(0x7f0000000100), &(0x7f0000000080)='./file1\x00', 0x80, &(0x7f0000000140)={[{@nodecompose}, {@nobarrier}, {@nodecompose}, {@force}, {@nobarrier}, {@type={'type', 0x3d, "aff0aae8"}}, {@nls={'nls', 0x3d, 'iso8859-9'}}]}, 0x44, 0x6ff, &(0x7f0000000500)="$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")
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000)='tracefs\x00', 0x800, 0x0)
mount$bpf(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x5006d, 0x0)
mount$bpf(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x1002c, &(0x7f0000000200)={[{@mode={'mode', 0x3d, 0xf18c}}]})

17.529663309s ago: executing program 2 (id=462):
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r0, &(0x7f00000000c0), 0x10)
sendmsg$can_bcm(r0, &(0x7f0000000180)={&(0x7f0000000040), 0x10, &(0x7f0000000080)={&(0x7f0000000100)={0x5, 0x400, 0x0, {0x77359400}, {0x77359400}, {0x0, 0x0, 0x1}, 0x1, @can={{0x0, 0x0, 0x1}, 0x0, 0x2, 0x0, 0x0, "8d416cfa6fc2313e"}}, 0x48}}, 0x0)

17.270515573s ago: executing program 2 (id=463):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
bind$netlink(r1, &(0x7f0000000100)={0x10, 0x0, 0x25dfdbfd, 0x400}, 0xc)
getsockname$packet(r1, &(0x7f0000000600)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
sendmsg$nl_route(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000040)=@newlink={0x3c, 0x10, 0x40d, 0x70bd2d, 0x0, {0x0, 0x0, 0x0, r2, 0x40004}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bond={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BOND_MODE={0x5, 0x1, 0x4}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40040}, 0x0)

17.146273322s ago: executing program 32 (id=463):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
bind$netlink(r1, &(0x7f0000000100)={0x10, 0x0, 0x25dfdbfd, 0x400}, 0xc)
getsockname$packet(r1, &(0x7f0000000600)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
sendmsg$nl_route(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000040)=@newlink={0x3c, 0x10, 0x40d, 0x70bd2d, 0x0, {0x0, 0x0, 0x0, r2, 0x40004}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bond={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BOND_MODE={0x5, 0x1, 0x4}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40040}, 0x0)

2.437080013s ago: executing program 0 (id=609):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x208, 0x21}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000001850000001b000000b70000000000070095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r1}, 0x18)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
request_key(&(0x7f0000000040)='user\x00', &(0x7f0000001ffb)={'syz', 0x1, 0xc}, &(0x7f0000001fee)='R\x10suse\x00\x1a\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00', 0xffffffffffffffff)

2.31995665s ago: executing program 0 (id=610):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r0, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1c}, 0xd}, 0x1c)
recvmmsg(r0, &(0x7f0000000b40)=[{{0x0, 0x0, &(0x7f0000000840)=[{&(0x7f0000000340)=""/65, 0x41}], 0x1}, 0x9}, {{0x0, 0x0, &(0x7f0000000a00)=[{&(0x7f0000000280)=""/123, 0x7b}], 0x1}, 0xfff}], 0x2, 0x0, 0x0)

2.319751137s ago: executing program 0 (id=611):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x8080, 0x0)
fcntl$lock(r0, 0x5, &(0x7f0000000040)={0x0, 0x0, 0x60d2, 0x7fffffffffffffff})

2.240006293s ago: executing program 0 (id=612):
syz_usb_connect(0x5, 0x36, &(0x7f0000000880)={{0x12, 0x1, 0x310, 0x4b, 0x32, 0xe6, 0x40, 0x110a, 0x1151, 0xce71, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x6, 0x1, 0x20, 0x2, [{{0x9, 0x4, 0x2, 0x5, 0x2, 0xa0, 0x3b, 0xbe, 0x9, [], [{{0x9, 0x5, 0xa, 0x10, 0x40, 0x0, 0x7f, 0x68}}, {{0x9, 0x5, 0x5, 0x2, 0x20, 0x2, 0x7f, 0x10}}]}}]}}]}}, &(0x7f0000000fc0)={0x0, 0x0, 0x0, 0x0})

2.239790694s ago: executing program 3 (id=613):
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f00000004c0)={'vcan0\x00', <r1=>0x0})
connect$can_bcm(r0, &(0x7f00000000c0)={0x1d, r1}, 0x10)
sendmsg$can_bcm(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000380)={0x1, 0x840, 0x0, {}, {0x77359400}, {}, 0x1, @canfd={{}, 0x0, 0x0, 0x0, 0x0, "ef1d62ee7e923b0ad9cda5b28dd4753620a2f0271768a8284c18a4e2b5e44dc77098b18fd964df81213608ec503db52d42f1a78c97322f4ae4c8dc89cf2b1440"}}, 0x80}}, 0x0)
sendmsg$can_bcm(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000240)={0x2, 0x90, 0x80000, {0x77359400}, {}, {}, 0x1, @can={{}, 0x40, 0x5, 0x0, 0x0, "ce2a4fa7a0aa108b"}}, 0x48}}, 0x40884)

2.169547621s ago: executing program 3 (id=614):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00', 0x7c2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00', 0x7c2})
ioctl$TUNDETACHFILTER(r1, 0x401054d6, 0x0)

2.056613847s ago: executing program 3 (id=615):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000300)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(blowfish)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000140)="ad76b6c5", 0x4)
r1 = accept4(r0, 0x0, 0x0, 0x0)
sendmmsg$alg(r1, &(0x7f0000004c00)=[{0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000000)="a9861869a75f66ef7d128ae4230965648a021cdf93508c9706dc1e4d9e1d4c436faf1d2786", 0x25}, {&(0x7f0000000240)="eeb9ff4efd6c", 0x6}, {&(0x7f00000001c0)='z3', 0x2}], 0x3, &(0x7f0000001480)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18, 0x4012}], 0x1, 0x0)
recvmmsg$unix(r1, &(0x7f0000000840)=[{{0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000100)=""/44, 0x2c}], 0x1}}, {{0x0, 0x0, &(0x7f0000000780)=[{&(0x7f00000034c0)=""/4096, 0x1000}], 0x1}}], 0x2, 0x20, 0x0)

1.898499119s ago: executing program 1 (id=618):
syz_mount_image$exfat(&(0x7f0000006c00), &(0x7f0000001b40)='./file0\x00', 0x0, &(0x7f0000000000), 0x80, 0x150f, &(0x7f0000000240)="$eJzs3AuYjtX6MPB1r7UexiS9TXIY1r3uhzcNFkmSQ0IOSZIkSU4JiUmShMSQU9KQhBwnyWEIyWEak8b5fMg5abKlSZKQnJL1XWO3P/u/2/9/3//b+/vs/577d13rep571nvf73re+7nmeZ73uma+7zW6Xov6tZsRkfiHwJ83SUKIGCHEcCHEDUKIQAhRKa5SXM58PgVJ/9ibsH+uR1Ov9QrYtcT9z924/7kb9z934/7nbtz/3I37n7tx/3M37j9judmOuUVv5JF7B3//n5vx9f/fSHa5KV9vKndz7/9GCvc/d+P+527c/9yN+5+7cf9zN+7/v79a/8Uc9z934/4zlptd6++feVzbca3PP8YYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjucN5f5UWQvxl/1qvizHGGGOMMcYYY/88Pu+1XgFjjDHGGGOMMcb+3wMhhRJaBCKPyCtiRD4RK64T+cX1ooC4QUTEjSJO3CQKiptFIVFYFBFFRbwoJooLI1BYQSIUJURJERW3iFLiVpEgSosyoqxwopwoL24TFcTtoqK4Q1QSd4rK4i5RRVQV1UR1cbeoIe4RNUUtUVvcK+qIuqKeqC/uEw3E/aKheEA0Eg+KxuIh0UQ8LJqKR0Qz8ahoLh4TLcTjoqV4QrQSrUUb0Va0+7/Kf1n0E6+I/mKASBIDxSDxqhgshoihYpgYLl4TI8TrYqR4QySLUWK0eFOMEW+JseJtMU6MFxPEO2KimCQmiyliqpgmUsS7Yrp4T8wQ74uZYpaYLeaIVDFXzBMfiPligVgoPhSLxEdisVgiloplIk18LNLFcpEhPhErxKciU6wUq8RqsUasFevEerFBbBSbxGaxRWwV28R2sUN8JnaKXWK32CP2in1iv/hcHBBfiIPiS5Elvvpv5p/7m/zeIECABAkaNOSBPBADMRALsZAf8kMBKAARiEAcxEFBKAiFoBAUgSIQD/FQHIoDAgIBQQkoAVGIQikoBQmQAGWgDDhwUB7KQwW4HSpCRagElaAyVIYqUBWqQnWoDjWgBtSEmlAbakMdqAP1oB7cB/fB/dAQGkIjaASNoTE0gSbQFJpCM2gGzaE5tIAW0BJaQitoBW2gDbSDdtAe2kMH6ACdoBN0hs7QBbpAIiRCN+gG3aE79IAe0BN6Qi/oBb2hD/SBl+FleAVegQFQRw6EQTAIBsNgGArDYBi8BiPgdXgd3oBkGAWj4U14E96CsXAWxsF4mAAToIacBJNhCpCcBimQAtNhOsyAGTATZsEsmAOpMBfmwTyYDwtgAXwIi+Aj+AiWwBJYBmmQBumwHDIgA1bAOciElbAKVsMaWAtrYD1sgPWwCTbDJtgKW2E7bIfP4DPYBbtgD+yBfbAPPofP4Qv4ApIhC7LgEByCw3AYjsARyIZsOApH4Rgcg+NwHE7ACTgJp+A0nIIzcAbOwjk4D+fhIlyES/Bi/LfN95XemCxkDi21zCPzyBgZI2NlrMwv88sCsoCMyIiMk3GyoCwoC8lCsogsIuNlvCwui0uUKEmGsoQsESOEkKVkKZkgE2QZWUY66WR5WV5WkBVkRVlRVpJ3ysryLllFVpUdXXVZXdaQnVxNWUvWlrVlHVlX1pP1ZX3ZQDaQDWVD2Ug2ko1lY9lEPiybyoEwFB6VOZ1pIUdBSzkaWsnWso1sK9+CJ2V7ORY6yI6yk3xajodx0EW2d4nyWdlNTobu8nk5BV6QPeU06CVfkr1lH9lXviz7yQ6uvxwgZ8JAOUjOgcFyiBwqh8n5UFfmdKyefEMmy1FytHxTLoO35Fj5thwnx8sJ8h05UU6Sk+UUOVVOkynyXTldvidnyPflTDlLzpZzZKqcK+fJD+R8uUAulB/KRfIjuVgukUvlMpkmP5bpcrnMkJ/IFfJTmSlXylVytVwj18p1cr3cIDfKTXKz3CK3ym1yu9whP5M75S65W+6Re+U+uV9+Lg/IL+RB+aXMkl/JQ/JP8rD8Wh6R38hs+a08Kr+Tx+T38rj8QZ6QP8qT8pQ8LX+SZ+TP8qw8J8/LC/Ki/EVekr/Ky9JLoUBJpZRWgcqj8qoYlU/FqutUfnW9KqBuUBF1o4pTN6mC6mZVSBVWRVRRFa+KqeLKKFRWkQpVCVVSRdUtqpS6VSWo0qqMKqucKqfKq9tUBXW7qqjuUJXUnaqyuktVUVVVNVVd3a1qqHtUTVVL1Vb3qjqqrqqn6qv7VAN1v2qoHlCN1IOqsXpINVEPq6bqEdVMPaqaq8dUC/W4aqmeUK1Ua9VGtVXt1JOqvXpKdVAdVSf1tOqsnlFdVFeVqJ5V3dRzqrt6XvVQL6ie6kXVS72keqs+qq/6VV1WXvVXA1SSGqgGqVfVYDVEDVXD1HD1mhqhXlcj1RsqWY1So9Wbaox6S41Vb6txaryaoN5RE9UkNVlNUVPVNJWi3lXT1XtqhnpfzVSz1Gw1R6WquWrob5UW/k3+wN+uun+d/97fyR955d23qx3qM7VT7VK71R61V+1T+9V+dUAdUAfVQZWlstQhdUgdVofVEXVEZatsdVQdVcfUMXVcHVcn1Al1Up1SF9RP6oz6WZ1V59Q5dUFdVBfVpd8+A6FBS6201oHOo/PqGJ1Px+rrdH59vS6gb9ARfaOO0zfpgvpmXUgX1kV0UR2vi+ni2mjUVpMOdQldUkf1LbqUvlUn6NK6jC6rnS6ny+vb/uH8P1pfO91Ot9ftdQfdQXfSnXRn3Vl30V10ok7U3XQ33V131z10D91T99S9dC/dW/fWfXVf3U/30/11f52kk/Qg/aoerIfooXqYHq5f0yP0CD1Sj9TJOlmP1qP1GD1Gj9Vj9Tg9Tk/QE/REPVFP1pP1VD1Vp+gUPV1P1zP0DD1Tz9Sz9WydqlP1PD1Pz9fz9UK9UC/Si/RivVgv1Ut1mk7T6TpdZ+gMvUKv0Jl6pV6pV+vVeq1eq9fr9Xqj3qg36816q96qM/UOvUPv1Dv1br1b79V79X69Xx/QB/RBfVBn6Sx9SB/Sh/VhfUQf0dk6Wx/VR/UxfUwf18cHntAn9El9Up/Wp/UZfUaf1Wf1eX1eX9QX9SV9SV/Wl3Nu+wIZyEAHOsgT5AligpggNogN8gf5gwJBgSASRIK4IC4oGNwcFAoKB0WCokF8UCwoHpgAAxtQEAYlgpJBNLglKBXcGiQEpYMyQdnABeWC8sFtQYXg9qBicEdQKbgzqBzcFVQJqgbVgurB3UGN4J6gZlArqB3cG9QJ6gb1gvrBfUGD4P6gYfBA0Ch4MGgcPBQ0CR4OmgaPBM2CR4PmwWNBi+DxoGXwRNAqaB20CdoG7f6p9b0/W/gp198MMElmoBlkXjWDzRAz1Awzw81rZoR53Yw0b5hkM8qMNm+aMeYtM9a8bcaZ8WaCecdMNJPMZDPFTDXTTIp510w375kZ5n0z08wys80ck2rmmnnmAzPfLDALzYdmkfnILDZLzFKzzKSZj026WW4yzCdmhfnUZJqVZpVZbdaYtRduFMJsMBvNJrPZbDFbzTaz3ewwn5mdZpfZbfaYvWaf2W8+NwfMF+ag+dJkma/MIfMnc9h8bY6Yb0y2+dYcNd+ZY+Z7c9z8YE6YH81Jc8qcNj+ZM+Znc9acM+fNBXPR/GIumV/NZeNzbu5zLu+oUWMezIMxGIOxGIv5MT8WwAIYwQjGYRwWxIJYCAthESyC8RiPxbE45iAkLIElMIpRLIWlMAETsAyWQYcOy2N5rIAVsCJWxEpYCStjZayCVbAaVsO78W68B+/BWlgL78V7sS7WxfpYHxtgA2yIDbERNsLG2BibYBNsik2xGTbD5tgcW2ALbIktsRW2wjbYBtthO2yP7bEDdsBO2Ak7Y2fsgl0wEROxG3bD7tgde2AP7Ik9sRf2wt7YG/tiX+yH/bA/9sckTMJBOAgH42AcikNxOA7HETgCR+JITMZkHI2jcQyOwbE4FsfheJyA7+BEnISTcQpOxWmYgik4HafjDJyBM3EmzsbZmIqpOA/n4XycjwtxIS7CRbgYF+NSXIppmIbpmI4ZmIErcAVmYiauwlW4BtfgOlyHG3ADbsJNuAW34DbchjtwB+7Enbgbd+Ne3Iv7cT8ewAN4EA9iFmbhITyEh/EwHsEjmI3ZeBSP4jE8hsfxOJ7AE3gST+JpPI1n8AyexbN4Hs/jRfwFL+GveBk9xlgpYu11Nr+93hawN9gYm8/+dVzEFrXxtpgtbo0tZAv/hxittQm2tC1jy1pny9ny9rbfxVVsVVvNVrd32xr2Hlvzd3EDe79taB+wjeyDtr6977c475W4sX3INrGP26b2CdvMtrbNbVvbwj5uW9onbCvb2raxbW1n+4ztYrvaRPus7Waf+12cbpfbDXaj3WQ32wP2C3veXrDH7Pf2ov3F9rcD7HD7mh1hX7cj7Rs22Y76XTzBvmMn2kl2sp1ip9ppv4tn2zk21c618+wHdr5d8Ls4zX5sF9kMu9gusUvtsitxzpoy7Cd2hf3UZtqVdpVdbdfYtXadXf+/17rabrXb7Ha7335ud9pddrfdY/fafVfinOM4aL+0WfYre9R+Zw/br+0Re9xm22+vxDnHd9z+YE/YH+1Je8qetj/ZM/Zne9aeu3L8Ocf+k/3VXrbeCgKSpEhTQHkoL8VQPoql6yg/XU8F6AaK0I0URzdRQbqZClFhKkJFKZ6KUXEyhGSJKKQSVJKidAuVolspgUpTGSpLjspRebqNKtDtVJHuoEp0J1Wmu6gKVaVqVJ3uphp0D9WkWlSb7qU6VJfqUX26jxrQ/dSQHqBG9CA1poeoCT1MTekRakaPUnN6jFrQ49SSnqBW1JraUFtqR09Se3qKOlBH6kRPU2d6hrpQV0qkZ6kbPUfd6XnqQS9QT3qRetFL1Jv6UF96mfrRK9SfBlASDaRB9CoNpiE0lIbRcHqNRtDrNJLeoGQ7ikbTmzSG3qKx9DaNo/E0gd6hiTSJJtMUmkrTKIXepXNpXYvk3OvNpFk0m+ZQKs2lefQBzacFtJA+pEX0ES2mJbSUllEafUzptJwy6BNaQZ9SJq2kVbSa1tBaWkfraQNtpE20mbbQVtpG22kHfUY7aRftpj20l/bRfvqcDtAXdJC+pCz6ig7Rn+gwfU1H6BvKpm/pKH1Hx+h7Ok4/0An6kU7SKTpNP9EZ+pnO0jk6TxfoIv1Cl+hXukyeRAihDFWowyDME+YNY8J8YWx4XZg/vD4sEN4QRsIbw7jwprBgeHNYKCwcFgmLhvFhsbB4aEIMbUhhGJYIS4bR8JawVHhrmBCWDsuEZUMXlgvLh7eFFcLbw4rhHWGl8M6wcnhXWCWsGj7+YPXw7rBGeE9YM6wV1g7vDeuEdcN6Yf3wvrBBeH/YMHwgbBQ+GFYMHwqbhA+HTcNHwmbho2Hz8LGwRfh42DJ8ImwVtg7bhG3DduGTYfvwqbBD2DHsFD4ddg6fCbuEXcPE8NmwW/jcH84nhQPDQeGr4auh9w+opdFl0bTox9H06PJoRvST6Irop9HM6Mroqujq6Jro2ui66ProhujG6Kbo5uiW6Nbotuj2qPf18woHTjrltAtcHpfXxbh8LtZd5/K7610Bd4OLuBtdnLvJFXQ3u0KusCviirp4V8wVd8ahs45c6Eq4ki7qbnGl3K0uwZV2ZVxZ51w5V961de1cO9fePeU6uI6uk3vaPe2ecc+4rq6re9Z1c8+57u5518O94Hq6F92L7iXX2/Vxfd3Lrp97xfV3A1ySS3KD3CA32A12Q91QN9wNdyPcCDfSjXTJLtmNdqPdGDfGjXVj3Tg3zk1wE9xEN9FNdpPdVDfVpbgUN91NdzPcDDfTzXSz3WyX6lLdPDfPzXfz3UK30C1KWOQWu8VuqVvq0lyaS3fpLsNluBVuhct0mW6VW+XWuDVunVvnNrgNbpPb5La4LW6b2+Z2uB1up9vpdrvdbq/b6/a7/e6AO+AOuoMuy2W5Q+6QO+wOuyPuG5ftvnVH3XfumPveHXc/uBPuR3fSnXKn3U/ujPvZnXXn3Hl3wV10v7hL7ld32XmXEnk3Mj3yXmRG5P3IzMisyOzInEhqZG5kXuSDyPzIgsjCyIeRRZGPIosjSyJLI8siaZGPI+mR5ZGMyCeRFZFPI5mRlZFVkdWRNZG1Ee+L7Qx9CV/SR/0tvpS/1Sf40r6ML+udL+fL+9t8BX+7r+jv8JX8nb6yv8tX8VV9Nf+Eb+Vb+za+rW/nn/Tt/VO+g+/oO/mnfWf/jO/iu/pE/6zv5p/z3f3zvod/wff0L/pe/iXf2/fxff3Lvp9/xff3A3ySH+gH+Vf9YD/ED/XD/HD/mh/hX/cj/Rs+2Y/yo/2bfox/y4/1b/txfryf4N/xE/0kP9lP8VP9NJ/i3/XT/Xt+hn/fz/Sz/Gw/x6f6uX6e/8DP9wv8Qv+hX+Q/8ov9Er/UL/Np/mOf7pf7DP+JX+E/9Zl+pV/lV/s1fq1f59f7DX6j3+Q3+y1+q9/mt/sd/jO/0+/yu/0ev9fv8/v95/6A/8If9F/6LP+VP+T/5A/7r/0R/43P9t/6o/47f8x/74/7H/wJ/6M/6U/50/4nf8b/7M/6c/68v+Av+l/8Jf+rv8x/s8YYY4wx9n9E/cH8wL/zM/nbyDFICHH9rqLZf5kLfttuKfTn7RAZ3zkihHh2QK9H/zLq1ElKSvrtdZlKBCWXCCEiV+vnEVfjlaKTeEYkio6iwt9d3xDZ5yL9Qf3onULEXq18Raz42/q3/yf1n3x6Qnrl8Hzcf1F/iRAJJa/m5BNX46v1K/4n9Qu3/4P15/s6RYgOf5WTX1yNr9YvL54Sz4nE//BKxhhjjDHGGGPsz4bIaj3+6Pk55/k8Xl/NySuuxn/0fM4YY4wxxhhjjLFr74U+fbs+mZjYscf/2J1D/wLLqHmtP4R/gZ0rpxP9O5xRvJOzc61/MzHGGGOMMcb+2f7m+Y0xxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGPXwP+3/wzHGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOM5WL/KwAA//+ARjWI")

1.898137853s ago: executing program 3 (id=619):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
set_mempolicy_home_node(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x1, 0x0)

1.829704586s ago: executing program 3 (id=620):
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0xffa1, &(0x7f0000000500)={&(0x7f00000000c0)=ANY=[], 0x40}}, 0x0)
r0 = socket$inet(0x2, 0x2, 0x1)
connect$inet(r0, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10)
sendmmsg$inet(r0, &(0x7f0000000540)=[{{0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="08001497733f5d3e", 0x6c6d}], 0x5}}, {{0x0, 0x0, &(0x7f0000000440), 0x56}}], 0x2, 0x2004000)

1.82918218s ago: executing program 1 (id=621):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000080)={'batadv_slave_1\x00', <r1=>0x0})
ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f00000002c0)={@mcast2, @private2={0xfc, 0x2, '\x00', 0xfd}, @mcast1, 0x1, 0x6, 0x0, 0x100, 0x4, 0x86020086, r1})

1.758708528s ago: executing program 1 (id=622):
gettid()
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000000)={0x1}, 0x4)
stat(&(0x7f00000003c0)='./file0\x00', &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
stat(0x0, 0x0)
newfstatat(0xffffffffffffff9c, &(0x7f0000000280)='./file0/file0\x00', &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, <r1=>0x0}, 0x0)
setuid(r0)
lchown(0x0, r1, 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002000), 0x2, 0x0)
fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000040)={0x2, 0x0, 0x60d3, 0x6})
socket$unix(0x1, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$kcm(0x10, 0x3, 0x10)
socket(0x10, 0x803, 0x0)
socket$inet_sctp(0x2, 0x1, 0x84)
socket$inet_tcp(0x2, 0x1, 0x0)
socket$nl_rdma(0x10, 0x3, 0x14)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
socket$kcm(0x2, 0xa, 0x2)
socket$inet_mptcp(0x2, 0x1, 0x106)
socket$alg(0x26, 0x5, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000500)=ANY=[@ANYBLOB="380000001800010000000000000000000a000000000000000000000008000400", @ANYRES32=r5, @ANYBLOB="06001500070000000c00168008000100", @ANYRES64=r4], 0x38}}, 0x10)
syz_fuse_handle_req(r2, &(0x7f0000002180), 0x2000, &(0x7f0000004180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r2, &(0x7f00000042c0), 0x2000, 0x0)
syz_fuse_handle_req(r2, &(0x7f00000083c0)="aef2274aaa3571a2f64d4b425e82cc530437d5e8ec036e82837dbc2aa4b8afe833a341bedccccb72d33cc1a3d7063e57d74b579be6be9808e4eec720496335e176424ca94919153fa9d1b8a824a8aaa7f695ed92f9a730b42fed46b1f0be01eefe4dccc11cc7342d03eb81b955a7775db5037357909b5e362a256050cb03b2631d0aeb07d033f4710181432a5af194a814a792b8af68725b453164fdb89f67b1d249d02830bf40bdc17ca9da26f8cd992a34a3cfd7d0794845817b7df920216c1594773aed966964f74288164091dd3d375bbc5cd7e7922c3ba5a45975c20d96383ea037f18b478534d2c3617aafc13bf6190754b1575ad930894969b70771bed2f3b543f00487c3c42512845266b9ca8db1cfae189fda8103e464c55e367c0f8094a76547b7e4e64fc2bf533f3c2b22b11df6497a5f8f08bdc02d8f3d3f57c4330b909f16ee8d669fb473ca1d63cf0dd8c46efa31a3158f35d4011acf331aa79c4c381cb67f702e8eccabd2fe716af9bc2db4096568c0f663f4db02e3895dd12b341762a4d58df7f884d713418354e7f1f918c3760f197c472cd45aae7a6e020f5beb480910b0ebaf6d5056fad8d12abb5527abd7fe2d054dbc98a8062816a885b4f4787668e38609afd1849413881d166004c85b34e0044fadefb5f07d9257bfb42dc247a829b42ad6310cc244f79938ec2148705150c1523b3f4d60c65e280a183a2cceaf2fac6f83baa33d6530b8ad96496a1d250d6cf15f6ebb459c7795b5739a8135a8d83dd29147b3c98e8da3fd45a77b3876f5e6d1bd919c2abdda94f19d68eedef09a8f60f046067a3d63f245df430259ddbee316d721894b0df57e00ff0f192fa3450cdd81175f9d9b861fdf723524202402f3ac4af74f8aae5a9d9dfdeb91d530db93322498b20821e1341c83d0fe213cde72e5c0a420767765cb293da262dd8b4fc34d00d5f80258226498fcede4f039c5e0d9f61e4014fbc6cf78881743720c2b31f1ce76ed507e85cbabf80b8514d49e0eac69009c874777a5280167d5fb50a5e28692d74aa68426a7fe516ddd2ab9046fe58ed3eaac2af6cae309145207b00f123dfb1665462d60885dade812fd47f8742eeb00b3c45fd1464c24d13601878904ae7a75af4c22daaff072cf7168c8d513e277ebbd75d724c5e29d7c99077ffb2ab9951f0c4bebf8d1adf9f21a4539c9ca18a959fd0eebfc36e6fb223306e0a08209295c73f005d7832fd0ad27b9092448f14146759619aa07b387d77ddc050b51b56c9e368bb6d00bba934765f0643998535fb4d6f260e51440ac23e7ecaea37d26598ac28445853d8f9838d305f31b84984e1ba42b1d00bfb1d119a363606853ac84c81db27ef582fc2c917cab33028f26ccd05977ad50b100c35bb05aa1cb9792837d421fdc2e689f40c5dee415cded0f5aec85c415873502e99a76eddaa5b3dc35e4cec27d54b2200ab4eb5035b65ccfd6a31d8d5cd6e63d51265f7ae0ce0224ff6f95c74c7ce8a650ed2c6ae28bd8b29d2f662cdf7999641e341719927cffea1483ad026c705db203e5edea57414e66f8e37fd3aa1303eae825c0ca74e5384dd24c97623fa3a9cc520400000000000077e4a10f689a8cf6c951e3cf9147f7da39f5100323bda84c5b020ff3d2ebdd0f4709c8f3664ac2a9238226568bf3998999662e1456532af383af7cc4aa92b95547e3d6cf79c3853c9eb268764b00f805afaeb840b23de031e7f539c86654159da3d453cb0d1c9380e8be66ad86c634b3be7fd97a58e26c35d1c17cec3813b15737a4f3b984a758a641a2a26933d81bede453efdee6792031f0ce8ab0b2bb7fa9fb76f9ca884ccd3a374d27f87c66a72b45c4f39b132881de49d63a3319ef7a6c249cf7dc3ef1a4e90e25e87d10c4126a89e7d6eb538677ead1fb5ed01e02628ebefe2fd7f9375366c656ec9dfa6a7f497c5d29ad333270b1d2fa2308c2e814234e8610f63485f0ce9d6667c7e219fa0c582631c3ea178bfec63bbaaba4a52a6ec5f66ae727e99f45c9f4098feffca5722e5355b3ec37f8bb9b3dc75f1f550c43e297751a108c392616b6b65c652d9be3b1bad3dba6fdf356eac56b729b94f13a4c2445d1eab9f1670964d23ed3b709813cd9600a9c18d727c74eafcbe71f1a9468947139606c221958b8ae2a8fb63a0ae2f928383ec137f0de15a89684b7706908897e0cdfa52bf14a9432eb1906670471182978c00b49facbb4f95bfa0b8c73fc9e3ba1ecc5294439f931dbffb081fee966bbd30aa690e4afec0afd4afed36c570fabeb738889618448e93976d1de98728dc0ac2cab575e1bb2a72154573955ed99eb86831970c2d7317503d6c50d1493e44e5c731c2b40bbcad04a53bacb983cbe53103d837baa32dd554d28a4903ef173f9d758849ca32bb7df61d13d639d55ae27ffc7ef21e1e15c083c4557a3df8f7afab4beb959698c560fcba9f71012c853ca3b7633f3bda7ce95fdb9926f2a2f5c28688f92064c691958a42ab0c7518a04cdc6545fc1fba9eea43abf80a8b4fb97a8c88c8b60a5c9d57d58bc490c81edb8c9a2fcc4fed5a2478cf3967cbd2018c1c9304abfd712e7845c983f2ea40bd9c5e43694538b32b832627f222fbf4af3d619938358fbfb06b5e56aefb008b8a3dc20407a624cd28752553dd666ebb8bf46ee926593ba792f0ff99cf4f57ad90f6c5749f9f9e68fab43aa2388fc837e1ae135ffaf04f8b99911658ff3513131b08ac08c4e17063a66a448e10f6525557f13aaa697b56d4da690ae734f8a324e3c214bf20eaceb62f91855d9cb5087e0fa7f5b5a3237a0f4db0464cb255a7bf266a0702f3aae88f6cff31ef1e5a3046839fa17b4520232baf8627a39a2e301342199434f522ed8d04072a848a1cf23f5a5dfb8bafe4d1b5d38704ec390cbc38a4c70b2b955c6b1775b7f32e286582dbd3cc093709fef1ae99b0eba278787b709445e93b4ea3b26e077b9c2305049afe0e439cf814f6c7a538067fd499e3cc327df64107900a57254b4b4e0752129baeab2cb155f02b1532be72fe8d9f546cff4423e53cd389084050d62fb12a25bfaecf238e4185543f4b143a59ea52e146f7f1c558222c4d84931b2caec643f744f1a986c5dcb33dffcb52670a193dfe2d27d652bff1d2f2016f2958fca24452e23a5dbfdcd779e660a0715a03aa93004a6747ae505de74a2fa782651083a90326e0fd6b4fde44b65ef43c1a03e71acb13b41278c0a5437ceac64974eb0a2dd3322f3a81a719cd4eed104871fd37985056c79a3ccde7fa91f2efcb941ad931b33aa530447257072ae2f3dcd6b4bdbda976af51107fc0aa493acc2b7300b73baf7b1e6656cc72247f0878ff9cf5eece1179b3ae5b2ff23e01167234225a2bdca47f1bfbf882d9d04614a3b29310c9dbf2daba7a27c6e11230087f67374237e56b366e8b50b6f9d8c10a36c896afb3a414667d3b1d66e796be075ace4a624c0d4ed5f635635e9057ac0d34fe79835dc15482df2f7b8acd72e80b283087bae78f9cb9b91c354be64b1e99a46018f2cbe1abf0732113347c77184f5b64ac0c4c2a5b382c055b0e5b4e36c5b93898be0fb8bc1631e9997404bfc529f56e809824dd6d207bb54d233a209a51b53f545c1002d10815e14f30c8048bf51ca1cdcf99fca0de567f8ff2610b74a130a011d0cd2ed972510f375765f1ffba5ff31ec5d307fdeffa3ef28bb4f0cd64ea525316aae57bc2bd380a9bc19501fc0c802a217ffbc050c401a9d6cfd71fb6ea09490e932888dd23d3071418263b5d8a6bb5b1493f5ecebe76836ec0e013dea22042d9cab060dbcab4648bf59d8b2f01a254b9b4b84f1264c0c8157bee5e534f614e1efc3fd98153fc766afe9aaed148803c80e5606cf32dfbe0c17ae8882ac9ab3f055a4bec8c0ddd01721f6f436eea8a9fca2ce1a14acf96af54b9c0a6535395be965f2d715339f16d7d2aa8d2d9e0e5e76f02070dadcfc8af662742bf808c6c7899c6130a8506ce753ef62c22098b1e3bf6a062e50b55d5be26aaae653c6666b56862aa371815f4dfddd9bb3b2c23a5b0a589d045ca6fcc4f05ac1c50f3e66a06f5d09e1ba202730fa7cf31db93ae5f3d5d448e179afd4edf1469008212448e8d51c9d04287eb00cf81d161d9ff828e14123056633e1d78455e1b43093f3a6110637ee2a60e2fcef644190a2ae00a2530fa156a2b8f422180d6a074a6041eae984387d62202b0bfe0ca538cf4c09761cb69fb90aee57d4c7f403b34bf4283db91066cd84b177d55c2c1e3baf10781f0ed66fac5725b176e93fb4ad0697a27712a437e31481e85ed0d96fb77d801219df80a939e0367889d5ffdc4d6a617c86a6935205689dcdd3b537ce91f4dd7c10427502952dcc3a14c0a5b8a04b5d679a410f7e85c63583c691a2a9dc2fdb0911272f192bde2632d70f32b2c1070f454cc53c06e35e687a4093053c56146565266f22bd34dce87675f9649d8699390d302bb5d5025862d8c3c7f9718e5059ec4025e274e7aaea8f76af3309d56131aafa45ee13119c8c44d54cfab501afd59324926e36b6cd2a04d224aab44d66f05325d4bebdf913cd8b74ccd427bb270b28448d0183f4826f6045a96a0a16343dec9d0605e92747dc2c874608776769239ae399cda45bba6f99e00c483b1f7999327d4daa8176ba13d1f8bea9998d60f7b2c8c3aeefbcd43bcdf5df2897549cb17726fbcf43a7d1f67640f084e9873a7ee9804eb4ea58d49b7d8bdfcde55713a07830009719c15eeda90a2be29cadd63a051097e3dd989a732fedbcdc3fb441641565fa8c22f04111c648aee2dc3feea61da3c2b55c76be3b640537f579684f1c2b2cb00c84eddd2c555dc9e9c660a631ebf0f095bc03530ec034a532a458e217c05797ab0c18582c49dc738dcebd87246b06049e8b186d438809c6a6bc7a10ee3b3494ef781771ed5235cda19ed107a1d647fba8079f73c2a27866126530dc4b531119a99f881d001f6c3ec78128b62d65cedf2a0a505b28b3b1dd27bda7fb5cc9acead0bccfbc9c6c88454dd9ddce793b868dee01232eaf36ea0629b0e3eda2e29c4cfc2b52dcff47cb01846166a1a52893dd9a884e9629cb3d35f438347c63bca391b5826f0a4c71d9b8fe0894678cc08607704471e61063924ae090a34579b118b4cfc6f21a82d100c72c93bc35537ef5e5a4c60327b99b9b488b2f46a16b2cc43715bac5148c0e193c06876d46cc2c6da2b3a1b1b917411503818a12bd0dcb2cff6e1a8339d6d551d64f0ed333eb28e887b0d7ea3e8a03590e264ed6cccc7031420b81ea80e8841b0e02fdd0df7515ab5651245500e7624b996a27380a14d201fdd1ab5f024b866972d8a1b689c88b79f38e914972ad76cfa0489ce2596027abbcf33ca7dc9ffd00ab92286c7d8e815b1a208789fac06f9033f99b40ce219f0f454be714f1ba2302be2ee4d7ee16e66f9dd0f0adc13d45f1360c9b95a48d432f99c7c2cf2bc2b11146ac5ba2581647567035113ddfa32d7d22f41e812e9a090d3188e6ff84b808223be36df09bf74175c6a48b9a2de777b1295f80306eac7a7ac4294c98fa9dfa8c20311369c48aeb7b79226d8f619118eee6225d9a0ebefc2d05bc74009f63226cf8a02e614cc21e630fdd07b4f669c4922e15034f3849502374aaa118fc05d3b23ceb663d7ce97032e79f824025e5eebb11886b4ced0ba2c6b7db3f018255452b345fcace69f504c397b9d5fe6ec27f2b9b173083cd4a202324ffa7e976bc8aea5d6e052407c5662c49470ba9eb64a9c3a7680d385bb9c2164b9338f8764cf63c31d1caa2e2a4699ab84cea5ad693338a14245ec122422800193c580eaee1aa84b8b83451c2095b225aa4171ef8de738e39035357ff22c331262d05cdda4b2c72cbfbd1ecfb692196fb32ac15aebaa20f4cebc65b937d938d71f1f6689a74b379358ac521d6964058154c77e2c1c6db2f8059668fcd812d7c30fb9178dcd26bd0ecefb6c526ce45039d492d5a1002f66c4c884373dafedad232d5cf2137c86a8bbec2d238a3b73e36c73baec8d298a11b3e6b3107a8a9ada848a16596cc33ff2ac298f6b11819784479598df918c36b49acbe7187dc35210431b23c0ed44313567ba9eb646ff633a8d3fbeae67479169910ab45d2f177f6a937cb318b926f80b8c6a439ecae706419686fe838dfd9988fa65909d5b7b4a5666b63aceca65cfda662b6dae88aaebb1b8faa86cbbb24b14acd559a8eb1eab51815964cf3bef6df1f216270d0e6807dde51aeb6ff8e49db5f6b673ca00e9a7966e1e3469ed0d2bd613d31c3b57279ed315d629fb7a6e065ea85d11f6aaf1ac6da1fd81ca2a573d722dbdcfbbfa614d79eb24238711c09508dc50a70e5602fdb768c8449b2131925314fba79de6b1b73a176be70fd08ae7993ea3ef240e51e31025f13d3a866cc24c24d51d5f692932527cbb531c628e422e64d1f33057015467d01ed592c5c3a2f63e9db1fbe4afa9831e23966337899d5426c7ff923adc019a7537414e6eb482c538477e8c2bc61aadd48b90b5771802b914031f126f850371cf5a7706a8e2504ccef712773cbbc773d1f40611aae268898bd9339a832aad1e01b3694fc88450f0eb9d279a1531816ff5f213f375867b987882e9bcc89a997c97189a62d4b84850d3136091e44773432b3cb3e1d31035cd2869bf2e5f89a7a066db6704d9950641ea2b922e2730b3c207e37f61581190111252f33fae16945feccb70f12bc487b1b8996f76b4f81c6d7a8389af76db528711d16150c5cfea9e4936c260b72bc27af1db060c9d62676474fd7f6956e41fca51bb4e0a278c01056225d2e0e9993b50ed503e559d3b519e4c72e48692f52a77cec2d4ffabc24ccca06b25a9efbe22493043eb79ddbebf6e0e3013de77f8c646abeb67e906c6a0af27fae50d88a70abed2a37e30a407095b07682a0892ef96eb18b61f904a9edc0a9ef5c4f365dc27c0442a8f7a89e6553a4dc061c09769fde1fbafea56a194ac24eca91acd2a7d91f802cc21b4a3deec2ff395ac28606e3132c673b0cc0d2eadea0955fb8e57a2ea9bf8861837c93b4b609b1f4822b724a9b31733d47d4cc292352b6cb2bb50b613923749600197b5f4797ac82b79d5c98a7e782c5360506c8e8a7bbefd66ac92a1766a2e0cc8886492f06473224cdebd7a6ad803d1a0fe39d00951f6c7a9b094663d881177386b64f5fc3985bce4a17e9217a1946e84589af2ba56810e15b835484f637650cba1530c5438977af634c75750fd2f77f9dbb0cee56f4b7aaa3b4a34eb1bc93ac11249191d5a8b17478bdad56f80d5d3c531f86ee969ecfaefdc45e5d588cab1f43fe421ea3e3568fc7cf3304e9833ccca469b70da619f1ed0851a2f26297a2c061ccc4270b07d6e81e52d26b60b21de9139a740bb7a7aac550ab0ab0029e8fafd77c4a27fee0f77a660b03c76652c109b6276495d24045f00b7181585404ecdf9bede3288373f602831cc5e8c2510f638ac21328b82152af0322e2a5d91d8ce37b7d3afb9b73f90c086d26fc9d0295c6c42200509dbdb780bd1d50f64867a3208e1b20bd7fcc1681fcb40b588908b51255f0fc4d2b7ba86e8a929305aa1111b237c75087d3de02084e11abc6a20c4c7268b8be1558afb0822120742493bf33c056c332543d2eea4d18e5b0486a669d3624d135e8b432d6bf0e0c72bb2bfcf3b71009396ab6c5e639de506bda4985dba6dc67ca0c25553df48ba9f4c708283bdaa7905f98f1a756d86c94b60db11815332ccbd6b6a7b958ae738efec09597952829843025813a4733f34a1abc3c63979358c43df4165a302ed82988070a0f496aa81c7a0971d85d4f67aa4fa11253a956f8e5af31f31520c8a95c3c4515846d5aa07985126212e3d8b6e6350f0d14294db6655bda90fb2bde863716e584fe85115a79d90a01913fe3f307b8816985ae77ecb73e73734af7cb8c5eed2ecc2009cf8eb43793faad3246cb223a7a88704817b800b0f842c2b46dd17829116883d8d4f8b2e8c55c8bd47d6df9c622a5d0da42a4f3c4c773a9a885565f4989ca81da24ed7430f981100021d7f72dedd572e53941bf34ded3c7a642bc32d46112af9195bb0c2d0e969c04a141001f0399ffa7d896b47eb68ca851fa8c0fe368c945c52658be5cac5f582ed06b20e5f6cdf3d4e948b072c7c451e945f851a77248e883da919ae3e0d76ceaf7fe0b2d718a47dceed35f2a212363c565a1099db238b5140b22bc0dba39c9fd3e1b7cc89cf8326e81f515843db90cd83384c19738ad9cc301ca018c59bb887592ea89ff7d3746083c39bf0eab4a47824a5474600d8655644a64cfe0c2e7694d7be85246af80dc839392a1ddf0b44d5d3568adc814981554c394f2fb4c6b3bcfbddaf875c613fe499df7f9028582130b919abdef0e8948f0685ec5b043948a2ba53a61b7d29180933014e9c25b74297e8bb36afdd8fee7241d00924608bcd6cff45468f8776e5e21fa4e7a2186bd461f26c1b625b2c3ccc0fd9cc808bce477f66adf3d584dce667beaf88ea710df35173cdcdedc11f3c1abe4f2811b298cab8ac795632cf1f8248e5f425ca70836146075a1f2d23699c521837f33f81cc87a3b31fa57164ecb4ee940d6f973b473917871cd193c5d348d5b9705253b0677013fcb7d9f7dd49c452f1cc608f5a2b4ebb74dbb7291098d81b1b059b4c88083a796e9f5a416736030ac5d2f1300d3d70732f6d824985b34ed36240d17b340039826131c9ebcd528c2620b28f0cd8c47971a56f4f1ddfac59910a416d0030417c2f6ff99533f589438bfdd209d38238e8c56b803289084f39a4f21e44c7dbc09a77049adeee5854947fedc1db18a88cb7143a16d7d7a61fa47331aac36407d1191c38c2088d8ca839d0f64f060907c668dfd4cc928c723cfa98a685e28882920e056ee340acbb283d8faeda4265feff032ed47f96ac53ea08aba4a6b6f6a3da53ab6a276c0f66c36409eb738fee985c41a74c841ddbfe093917542ff33a5d20da262e491b20f0a510877a34878ecff576147371c2512c6bc1f1fc0b6a9e9cc0f9fe3b559e9e31b506970841084d5ece3480c37f393574f28743bcf1a3dcd3a9dd5464d73a0c1908ea26e2b3a92556d4cdbcbaad5b4d76a71ecc42d0cb54a8915bd2904dff36f1540cdd64963257b4e4b9a0d4b73f960c5aef98224ad015f1f8ddb083e0a4ad81060772ee1c3c23c320967ddd8f776027e9a9d0a92cf19fdf5c49a2e1e99e3448e6043e42b13afbcc2911d235e4a0f96611374066e2aa0a42406913237ae81fb58a362d99f522084fd529f6b0a5931e2ca99a7f5fa7fea2f1cc5bf2742aff2e1339dc18408c48df52883c46178589b72ba39f63e3a7f40bacefcba8454069a2b8e460f7b6dd0a743850825de3ec26ec302cbfcec692463a179aae128dd9b49160aea4b7f611d5eb21fe16f1584a82b1f7de171ecefb809a09e661e7a078f0ae1229d12b511c88df141cb15461466b0fef51ee93a74517598cd6e8ca6494a528973afa1098a350157fe75cc0be57770fdfc96f17e30fd2ca5fff5e18402ef8a6cc1f65a56b237aed43727bfd1e163a2a60dfe979b3cf9760240ca2f7bfa76b34b2b40fda933829ca6458cdff0230f77dd0a2770e8fbfc16b3d385881cbcb189682b99d351270b63c432b15c4935603e05eef3f384beebd0dd8ea4c2e919f93eb62c11978313ac0973fa8d096195c02954db7bd1db313e040a07ba475181013066f557495b2e9b0fbc205bfa074e7dcdbefa38d178da9658d064655f1412498e2047dbc6e99090835291ab982822476087b694a495ead1879b575a98128b459f9855be802925eda28e65b8dbe7bbe44fea75b41254b5446e60fee32df9d8c676bb4ffd958c82ec3d74ef2eb6c4c36e5c184593ce62c0331ece679e588264ce5b8c4d6507768eb4d31888480219779546d99536312971ef05e8710c6e0d4581253334af6dc3d6ce4fe44f1c96da50af4d1dbd18042bb5e8cd26bb03b6e4d0167f8c1ed7feb94b207865fe6d92d390b5124f17241cf7ff286a83520db99b5380384f666622d547812802e7f5829be08ffbbc51c91c2a532ca9fe3895bc27fa7804b7b41f60fdefe1fbc79c24dda59b91979279695eb785cf3f34c3b18e31b6d07926625d1170cafa1b552304d0696d432c59baefd0c1687bc0a01851d3dad8152994257819ac5a78c7af1f1cbb106a27b759d14cfcbba865a8708b203d2fee5610dd30842f80255c88f36824c26cbc478a79864beaffb1e68eb61ed157935f0d8566029113307f1ee53eafd7b3dd2b90eed86dbf52f62e9755717fa7c209a981776977a7eb43f2fee147b387538273f5801a511eeae1144b661c53dbc2df24a238c1cc5e228f60b740cb9b880e9b5b41147b2310562eb777c6775ae0f295c31a22d445727acf2fadfca2aa12df9bfff626454dfe025ecebe8368cc17707d1293db27fd4f7250adefd2ee8b1886df3771560fdf24075bf90594ce4d2440995625f9c32c4dbb85c2e99371e520fac491f4d6671a55e2cf5c9ad8a9fae6ede963acfa586b5173e46d71efba2e21b2699a0169050ff7544beb5f82ce69666d3d129b8eadb11aa72a56b822c9cc85288cadbb140b1502fd09167e2ced58c738d4b54a67d2544d357b9035382062b6f979dac0943bfba726fe0206ba3d9847e93f22ca284396ede878e4d126ba2a5a8f7deef86bed1e89fba087605fe02be1802c49e9b0cf18e7ab6dce52bf564b099f864e81bb7e559bc1e2c27f85a76af30b7369b7ce61e12a86e4e38a904ebf5dfa692b0af4b70a779becbe35956eae191f241c24295af5bac1d82d1da2d28462f1c02c5fb19840027a28387a158ef241fd57f6b6fe74e6dede537c716b933cdff7d14f697410e74844baad2c6ce57f9fbb4e44ca433dce3c2a2950849dbf9f7d81cd785f684c21877cc61016702850ea48ade29fb91e256ff4432ce6271ef2460b09ceaa2d08170fd12dfa96ece57a5ab7de5c26e276682772c70432d44ff12831a518e1a421c1250e9df750d550723690d28e0454bab415548176c9b5da5a54585366da24fa9093a891dd8c41b1db67897dd3ffd69c724e0a21fd1054c804ed4d3c73d362371b03e65c535c08dd27a29cff93d3e7bd0f68cc4001a8bd347e1dd13604578f3b213421b57c38fc0ff68267a3eaa3746b5ff5ba8eeba07c49f5029b92199c3f7b79df9cd523933af5ae4742166365217ef76291dbdf7946b01600dc59990a3121843d0d96ca43e9c5742e74bbec713dba8362177467aace17f75e3abb446a0f913bd09bf9e8d4ed69d60ffa93615386669c94d729b5e305fb40d7ca7f1f38af98432dcbed49c0b5744333e0622ec76d5a55d39593168d08d206751e49d2328efccb4af7ce62dcdbce35de129451133a0f7334097b0fe70b0372249f2bd3f80964b1086040e0f8971f41c7916a41f588d51438beff4a00550d3703f43639e80aeb9e6f58219f29fdac903cc20387dba5b784507f77918b7d6b94211b77bf280fe3653666cf46bbe6567c", 0x2000, &(0x7f0000000ac0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)={0x90, 0x0, 0x0, {0x2000003, 0x3, 0x6, 0x0, 0x1ff, 0x3, {0x6, 0x4, 0x7, 0x5, 0x100000001, 0x6, 0x3, 0x0, 0x101, 0x6000, 0x5, 0x0, 0x0, 0x801, 0x8}}}, 0x0, 0x0, 0x0, 0x0, 0x0})

1.758156601s ago: executing program 3 (id=623):
openat$sndtimer(0xffffffffffffff9c, 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_TREAD_OLD(0xffffffffffffffff, 0x40045402, &(0x7f0000000240)=0xffffffed)
syz_usb_connect(0x0, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
fanotify_mark(0xffffffffffffffff, 0x90, 0x40100000, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x2)
mount$tmpfs(0x0, &(0x7f0000000540)='./cgroup\x00', &(0x7f0000000180), 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="6d706f6c3d696e7465726c65617661211f376982ef"])
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000140)="d800000019007b29e00212ba0d8105040a601100fe02040b067c55a1bc001400090006990600000015000500fe800000000000000300014002000c0901ac04000bd67f6f94007100a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4b11602b2a10c11ce1b14d6d930dfe1d9d322fe04fb95cae8c9010000730d7a5025ccca262f3d40fad95667e04adcdf634c1f215ce3bb9ad8ffd5e1cace81ed0b7fece0b42a9ecbee5de6ccd40dd601edef3d93452a92307f00000e97031e9f05e9f16e9cb5000000000000", 0xd8}], 0x1, 0x0, 0x0, 0x2663}, 0x4000004)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_INIT(r3, 0x0, 0xc8, &(0x7f0000000000), 0x4)
setsockopt$MRT_ADD_VIF(r3, 0x0, 0xca, &(0x7f0000000080)={0x1, 0x1, 0x5, 0x40008001, @vifc_lcl_addr=@initdev={0xac, 0x1e, 0x0, 0x0}, @dev={0xac, 0x14, 0x14, 0x31}}, 0x10)
setsockopt$MRT_DONE(r3, 0x0, 0xc9, 0x0, 0x0)
sendmmsg(r2, 0x0, 0x0, 0x0)
semctl$IPC_STAT(0x0, 0x0, 0x2, &(0x7f0000000280)=""/199)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'bond0\x00'})
sendmsg$nl_xfrm(r4, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={0x0, 0xc4}}, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, 0x0)

1.674982168s ago: executing program 1 (id=624):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8e}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0/file0\x00'}, 0x6e)
r3 = socket$inet_icmp(0x2, 0x2, 0x1)
sendmmsg$inet(r3, &(0x7f0000000340)=[{{&(0x7f0000000200)={0x2, 0x4e22, @local}, 0x10, &(0x7f00000003c0)=[{&(0x7f0000000400)='\b\x00\x00\x00(\x00\x00\x00', 0x8}], 0x1}}, {{&(0x7f0000000480)={0x11, 0x4e1f, @multicast2}, 0x10, &(0x7f0000000c40)=[{&(0x7f0000000740)="0800d678001fec9e", 0x8}, {0x0}], 0x2}}], 0x2, 0x4000)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000017850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r6)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r6, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r7, @ANYBLOB='ya\x00\x00\x00\x00\x00\x00\x00\x00~'], 0x14}}, 0x4000054)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, 0xffffffffffffffff, 0x0, 0xfffffffffffffffc}, 0x18)

476.939781ms ago: executing program 1 (id=625):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r0, &(0x7f0000000300)=@pppol2tp={0x18, 0x1, {0x0, r1, {0x2, 0x0, @local}, 0x2}}, 0x26)
getpeername(r0, 0x0, &(0x7f0000000180))

366.204811ms ago: executing program 1 (id=626):
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file1\x00', 0x8c0, &(0x7f0000000400)=ANY=[@ANYBLOB="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"], 0x1, 0x4446, &(0x7f00000088c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
fallocate(r0, 0x0, 0x0, 0xffff)
open(&(0x7f00000001c0)='./file1\x00', 0x14927e, 0x20)

300.694712ms ago: executing program 0 (id=627):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_opts(r0, 0x0, 0x8000000000000c, &(0x7f0000000600)='u', 0x1)
setsockopt$inet_opts(r0, 0x0, 0xd, &(0x7f0000000000)="a8", 0x1)
getsockopt$inet_opts(r0, 0x0, 0x9, &(0x7f0000002540)=""/4086, &(0x7f0000000180)=0xff6)

0s ago: executing program 0 (id=628):
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003900)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="1e00000000010000000000009321", @ANYBLOB, @ANYRES32=0x0, @ANYRES32], 0x50)
syz_clone(0x8000, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000040)={0x0, <r5=>0x0})
sched_getparam(r5, &(0x7f00000001c0))
r6 = dup(r4)
write$UHID_INPUT(r6, &(0x7f0000002080)={0x2, {"a2e3ad214fc752f91b450a0787f70e06d038e7ff7fc6e5539b326d078b089b2008385d090890e0878f0e1ac6e70a9b334a959b689a240d5b67f3988f7ef319520100ffe8d178708c523c921b1b5b31320d095d0936cd3b78130daa61d8e809ea882f5802b77f07227227b7ba67e0e78669a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f30e065cd5b91cd0ae193973735b36d5bb6f5dd1c00305d3f46635eb016d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000002335875271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f0841bdb114f6b76383709d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1fe90a56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617601000000be70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d595a40b9f6ff14ac488ec130fb3850a27af9544ae15a7e454dea05918b41243513f000000000000000a3621c56cea8d20fa911a0c41db6ebe8cac64f17679141d54b34bbc9980000000b3309603f1d4ab966203861b5b158b41f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b00005e15c31634e5ae098ce9ee70771aaa18119a867e1088334975e9f73483b6c82fa678ca14ffd9f9db2a7869d85824056526f889af43a605608057228652010400006c632b3570243f989cce3803f465e41e610c2021d653a5520000008213b704a5000000000000008ef9f190bae97909507041d82d6734b849304c27b14dc1db8892fd32d0ad7bc946813591ad8deff4b05f60cea0da7710a80000000000008000bea37ce0d0d4aa202f928f28381aab144a4d429a04a6a2b83c7068ae949ed06e288e810bac9c76600025e19c907f8ea2e2010000008271a1f5f8528f227e79c1389dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4e38a48a76eafc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833c596c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee5325928974d12dad99dac44c3f0008047096a44002bebc2420aed92fa9b6578b4779415d97b9a6d6d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2bed9e53803edf1a4ae3a9737d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df07847754b8400daaa69bf5c8f4ceb360c7e658828163e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f5d6d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034e00000000ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf00500a2690891abf8ab9c015073014d9ef6d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f42355bc7872c827467cfa5c478b095b68441a34cb51682a8ca4d24ad92f243941ed274f12a29ff962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdbe6c4579b5561dc825ab829827945e029efe0703615feb6243378e0610060f02cca4e91b2f001edb3d78fb4b55668dda93ae62fccfcbb2b75a2183c46eb65ca8124e1b4da7fbb77ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43e4fb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e01feffffffffffff83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad94872cb2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7a508ae54b3cd7369d75f2e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c10238e204a67737c3b42aa01b20f7694a00f16e2d0174035a2c22656dc00880acebdbe8ddbd75c2f998d8ac2dfad2ba3a50200000045a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7bcddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4483f8fd777d443e8b40426db6fe2907ac0ca3d2414442e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf463661c953fcad6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439ff158e7cd419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712ea5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9b97474a5966a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185daba3e00a4e73676864ae090d81eaeecf1d0ab378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687fd1602f88df165d884b36ec2b6c25a2f33c715687e9d4afb96d6861aca47da73d6f3dd014e5c5ad8fe995754bd9cf32fce1e31919c4b2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6d594f88a4facfd4c735a20307c737afae5136651b1b9bd522d60399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a37684f4113c48859465c3b415c3432f81da8719539d5bf372aaaea1cc43a6c5cbe59758bfee2916580dac4b008e595f437491d87abed02cefcd9db53d94d02dae17b118e5d6787463183b4b87c105000000302a808d7f5251440613d17ca51055f2f416a44fe180d2d50c312cca7cb14a20dc331f57a9817139a206fc76957227ffff2de20a4b8e3737fbb40100000006376f799eba367e21f94ca598705f5dcb767d6f0900d6b0f6095e53c4c4234d0c1fbe434f6ab8f43c0013ee93b83946ee7759e89d7bdd1a32d7b311711b757fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7ceec7dc808bf653639d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b34449e15e065cc7348663a52190202c7af288a4510de03dab19d26285000000000000007007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f732ae00398e8bd1f4908b7807fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cf255315ab80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c6687f1ab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf6529006c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6522fb5f6ffcdd56fed88935fcb75912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae233a9e02210e62df0546a74b333a1c48f95fd54acb5741258c5488efeee327415cc19451432c6f14c27693102a5bd848d7cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08008897fb411a941f0000005f0db42c0456ec015f08e5247d33ae2d35603ff8454c16f8342856935125102bb6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee458e4cb5e930ed624806c43a006e39336d07c2b80c1c128ad2706f48261f7897484c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da398000000000000000d80a4fe654578376e599aff3565b1d531f30912b9945030b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9c86310e7e65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57079d0fe662a46b7f71cd47744db86c50b704c98ad90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e0691953264d2700c838fa2c7b3425260f59554e502dcea39e3313b0000000000004ca7c12f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe360500000000000000b77940b5f07722e47a08d367e5f84c96ec664b72934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1062dfa13b5c1fa7cfaadba85c7248758f03a755d0be53f8d2a1df0d07b3d5bd3b01faffd0addbed2881a9700af561ac8c7e36bb2fc4c40e9c766c06817bb9957697c9ede7885d94ffb0759be0daf60a842b09eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c1484d2f9c55f49013a3a9a8a2c3e90f39c3dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000210000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000600000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1271e0400", 0x1000}}, 0x1006)

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:10779' (ED25519) to the list of known hosts.
syzkaller login: [   56.554862][ T5830] cgroup: Unknown subsys name 'net'
[   56.670757][ T5830] cgroup: Unknown subsys name 'cpuset'
[   56.676743][ T5830] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   59.341655][ T5830] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   64.884647][   T55] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   64.893597][   T55] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   64.897152][   T55] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   64.900884][   T55] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   64.904219][   T55] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   64.986623][ T5852] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   64.990432][ T5852] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   64.993762][ T5856] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   64.997522][ T5856] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   65.016127][ T5856] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   65.018736][ T5856] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   65.033663][ T5852] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   65.040374][ T5852] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   65.045266][ T5852] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   65.049458][ T5852] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   65.141198][ T5844] chnl_net:caif_netlink_parms(): no params data found
[   65.300030][ T5844] bridge0: port 1(bridge_slave_0) entered blocking state
[   65.302796][ T5844] bridge0: port 1(bridge_slave_0) entered disabled state
[   65.305740][ T5844] bridge_slave_0: entered allmulticast mode
[   65.310278][ T5844] bridge_slave_0: entered promiscuous mode
[   65.323447][ T5844] bridge0: port 2(bridge_slave_1) entered blocking state
[   65.326534][ T5844] bridge0: port 2(bridge_slave_1) entered disabled state
[   65.329550][ T5844] bridge_slave_1: entered allmulticast mode
[   65.333340][ T5844] bridge_slave_1: entered promiscuous mode
[   65.433014][ T5844] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   65.455632][ T5844] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   65.506835][ T5850] chnl_net:caif_netlink_parms(): no params data found
[   65.515230][ T5844] team0: Port device team_slave_0 added
[   65.531179][ T5844] team0: Port device team_slave_1 added
[   65.562751][ T5849] chnl_net:caif_netlink_parms(): no params data found
[   65.592735][ T5844] batman_adv: batadv0: Adding interface: batadv_slave_0
[   65.595042][ T5844] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   65.603578][ T5844] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   65.619452][ T5844] batman_adv: batadv0: Adding interface: batadv_slave_1
[   65.622165][ T5844] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   65.631391][ T5844] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   65.689063][ T5850] bridge0: port 1(bridge_slave_0) entered blocking state
[   65.692090][ T5850] bridge0: port 1(bridge_slave_0) entered disabled state
[   65.695000][ T5850] bridge_slave_0: entered allmulticast mode
[   65.699859][ T5850] bridge_slave_0: entered promiscuous mode
[   65.704416][ T5850] bridge0: port 2(bridge_slave_1) entered blocking state
[   65.708385][ T5850] bridge0: port 2(bridge_slave_1) entered disabled state
[   65.711304][ T5850] bridge_slave_1: entered allmulticast mode
[   65.715092][ T5850] bridge_slave_1: entered promiscuous mode
[   65.766480][ T5850] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   65.785552][ T5850] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   65.802034][ T5844] hsr_slave_0: entered promiscuous mode
[   65.805191][ T5844] hsr_slave_1: entered promiscuous mode
[   65.863903][ T5850] team0: Port device team_slave_0 added
[   65.867090][ T5849] bridge0: port 1(bridge_slave_0) entered blocking state
[   65.870151][ T5849] bridge0: port 1(bridge_slave_0) entered disabled state
[   65.873286][ T5849] bridge_slave_0: entered allmulticast mode
[   65.877594][ T5849] bridge_slave_0: entered promiscuous mode
[   65.882988][ T5850] team0: Port device team_slave_1 added
[   65.926898][ T5849] bridge0: port 2(bridge_slave_1) entered blocking state
[   65.929821][ T5849] bridge0: port 2(bridge_slave_1) entered disabled state
[   65.932728][ T5849] bridge_slave_1: entered allmulticast mode
[   65.937493][ T5849] bridge_slave_1: entered promiscuous mode
[   65.975900][ T5850] batman_adv: batadv0: Adding interface: batadv_slave_0
[   65.978611][ T5850] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   65.988807][ T5850] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   66.015892][ T5850] batman_adv: batadv0: Adding interface: batadv_slave_1
[   66.018103][ T5850] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   66.028035][ T5850] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   66.043542][ T5849] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   66.050764][ T5849] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   66.095689][ T5849] team0: Port device team_slave_0 added
[   66.129406][ T5849] team0: Port device team_slave_1 added
[   66.207691][ T5850] hsr_slave_0: entered promiscuous mode
[   66.210974][ T5850] hsr_slave_1: entered promiscuous mode
[   66.213789][ T5850] debugfs: 'hsr0' already exists in 'hsr'
[   66.216921][ T5850] Cannot create hsr debugfs directory
[   66.219912][ T5849] batman_adv: batadv0: Adding interface: batadv_slave_0
[   66.222643][ T5849] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   66.232697][ T5849] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   66.244992][ T5849] batman_adv: batadv0: Adding interface: batadv_slave_1
[   66.247863][ T5849] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   66.257991][ T5849] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   66.392742][ T5849] hsr_slave_0: entered promiscuous mode
[   66.395056][ T5849] hsr_slave_1: entered promiscuous mode
[   66.399012][ T5849] debugfs: 'hsr0' already exists in 'hsr'
[   66.400826][ T5849] Cannot create hsr debugfs directory
[   66.532767][ T5844] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   66.554256][ T5844] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   66.561766][ T5844] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   66.590634][ T5844] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   66.660727][ T5850] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   66.673540][ T5850] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   66.685346][ T5850] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   66.708199][ T5850] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   66.780546][ T5849] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   66.795134][ T5849] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   66.802318][ T5849] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   66.812923][ T5849] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   66.871594][ T5844] 8021q: adding VLAN 0 to HW filter on device bond0
[   66.912845][ T5844] 8021q: adding VLAN 0 to HW filter on device team0
[   66.917979][   T55] Bluetooth: hci0: command tx timeout
[   66.926291][   T40] bridge0: port 1(bridge_slave_0) entered blocking state
[   66.929405][   T40] bridge0: port 1(bridge_slave_0) entered forwarding state
[   66.962489][   T40] bridge0: port 2(bridge_slave_1) entered blocking state
[   66.965442][   T40] bridge0: port 2(bridge_slave_1) entered forwarding state
[   66.983068][ T5850] 8021q: adding VLAN 0 to HW filter on device bond0
[   67.010314][ T5850] 8021q: adding VLAN 0 to HW filter on device team0
[   67.031788][   T40] bridge0: port 1(bridge_slave_0) entered blocking state
[   67.034635][   T40] bridge0: port 1(bridge_slave_0) entered forwarding state
[   67.045613][ T3621] bridge0: port 2(bridge_slave_1) entered blocking state
[   67.048411][ T3621] bridge0: port 2(bridge_slave_1) entered forwarding state
[   67.076408][   T55] Bluetooth: hci2: command tx timeout
[   67.077400][ T5852] Bluetooth: hci1: command tx timeout
[   67.112730][ T5849] 8021q: adding VLAN 0 to HW filter on device bond0
[   67.170664][ T5849] 8021q: adding VLAN 0 to HW filter on device team0
[   67.206115][ T1090] bridge0: port 1(bridge_slave_0) entered blocking state
[   67.208912][ T1090] bridge0: port 1(bridge_slave_0) entered forwarding state
[   67.223588][ T1090] bridge0: port 2(bridge_slave_1) entered blocking state
[   67.226429][ T1090] bridge0: port 2(bridge_slave_1) entered forwarding state
[   67.348833][ T5844] 8021q: adding VLAN 0 to HW filter on device batadv0
[   67.380515][ T5850] 8021q: adding VLAN 0 to HW filter on device batadv0
[   67.422346][ T5844] veth0_vlan: entered promiscuous mode
[   67.445043][ T5844] veth1_vlan: entered promiscuous mode
[   67.469120][ T5850] veth0_vlan: entered promiscuous mode
[   67.493838][ T5850] veth1_vlan: entered promiscuous mode
[   67.502566][ T5849] 8021q: adding VLAN 0 to HW filter on device batadv0
[   67.518410][ T5844] veth0_macvtap: entered promiscuous mode
[   67.535483][ T5844] veth1_macvtap: entered promiscuous mode
[   67.561291][ T5844] batman_adv: batadv0: Interface activated: batadv_slave_0
[   67.568371][ T5850] veth0_macvtap: entered promiscuous mode
[   67.576730][ T5850] veth1_macvtap: entered promiscuous mode
[   67.584752][ T5844] batman_adv: batadv0: Interface activated: batadv_slave_1
[   67.608844][ T5850] batman_adv: batadv0: Interface activated: batadv_slave_0
[   67.614628][ T5872] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   67.619868][ T5872] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   67.642424][ T5850] batman_adv: batadv0: Interface activated: batadv_slave_1
[   67.647033][ T5872] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   67.651013][ T5872] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   67.653737][ T5849] veth0_vlan: entered promiscuous mode
[   67.662378][   T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   67.669450][ T5872] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   67.673316][ T5872] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   67.681437][ T5872] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   67.693760][ T5849] veth1_vlan: entered promiscuous mode
[   67.792096][ T5849] veth0_macvtap: entered promiscuous mode
[   67.808150][ T5849] veth1_macvtap: entered promiscuous mode
[   67.818956][ T1090] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   67.822260][ T1090] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   67.855066][ T5849] batman_adv: batadv0: Interface activated: batadv_slave_0
[   67.869905][ T1090] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   67.871947][ T5849] batman_adv: batadv0: Interface activated: batadv_slave_1
[   67.872930][ T1090] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   67.899674][   T12] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   67.903652][   T12] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   67.908373][   T12] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   67.911930][   T12] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   67.957734][   T26] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   67.958620][ T1090] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   67.961772][   T26] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   67.964546][ T1090] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   68.047994][   T40] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   68.051099][   T40] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   68.071997][ T5850] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   68.084865][   T40] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   68.096817][   T40] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   68.285354][ T5920] program syz.1.5 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   68.493312][ T5896] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[   68.723217][ T5896] usb 1-1: config 0 has an invalid interface number: 220 but max is 0
[   68.728470][ T5896] usb 1-1: config 0 has an invalid interface descriptor of length 2, skipping
[   68.732667][ T5896] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   68.760948][ T5896] usb 1-1: config 0 has no interface number 0
[   68.764023][ T5896] usb 1-1: config 0 interface 220 altsetting 0 endpoint 0xB has an invalid bInterval 218, changing to 11
[   68.775870][ T5896] usb 1-1: config 0 interface 220 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[   68.785477][ T5896] usb 1-1: New USB device found, idVendor=08ca, idProduct=0010, bcdDevice=48.e3
[   68.791994][ T5896] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   68.871370][ T5896] usb 1-1: config 0 descriptor??
[   68.882290][ T5896] aiptek 1-1:0.220: interface has no int in endpoints, but must have minimum 1
[   68.996534][ T5852] Bluetooth: hci0: command tx timeout
[   69.092566][   T24] usb 1-1: USB disconnect, device number 2
[   69.156337][ T5852] Bluetooth: hci1: command tx timeout
[   69.156490][   T55] Bluetooth: hci2: command tx timeout
[   69.287040][ T5933] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   69.309813][ T5935] netlink: 'syz.1.10': attribute type 1 has an invalid length.
[   69.313105][ T5935] netlink: 'syz.1.10': attribute type 4 has an invalid length.
[   69.320669][ T5935] netlink: 208 bytes leftover after parsing attributes in process `syz.1.10'.
[   69.323924][ T5935] NCSI netlink: No device for ifindex 3088861696
[   70.158507][ T5947] loop1: detected capacity change from 0 to 32768
[   70.168814][ T5947] (syz.1.16,5947,0):ocfs2_check_set_options:1259 ERROR: Group quotas were requested, but this filesystem does not have the feature enabled.
[   70.174038][ T5947] (syz.1.16,5947,0):ocfs2_fill_super:1177 ERROR: status = -22
[   70.268711][ T5964] loop1: detected capacity change from 0 to 256
[   70.441093][ T5968] loop2: detected capacity change from 0 to 16
[   70.443519][ T5968] =======================================================
[   70.443519][ T5968] WARNING: The mand mount option has been deprecated and
[   70.443519][ T5968]          and is ignored by this kernel. Remove the mand
[   70.443519][ T5968]          option from the mount to silence this warning.
[   70.443519][ T5968] =======================================================
[   70.456811][ T5883] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[   70.481163][ T5968] erofs (device loop2): mounted with root inode @ nid 36.
[   70.509482][ T5972] warning: `syz.1.26' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   70.606768][ T5883] usb 1-1: Using ep0 maxpacket: 16
[   70.610486][ T5883] usb 1-1: unable to get BOS descriptor or descriptor too short
[   70.618922][ T5883] usb 1-1: config 0 has an invalid interface number: 51 but max is 0
[   70.622881][ T5883] usb 1-1: config 0 has no interface number 0
[   70.624729][ T5883] usb 1-1: config 0 interface 51 has no altsetting 0
[   70.631430][ T5980] loop1: detected capacity change from 0 to 64
[   70.641422][ T5883] usb 1-1: New USB device found, idVendor=eb1a, idProduct=2710, bcdDevice=83.9c
[   70.644068][ T5883] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   70.658170][ T5883] usb 1-1: Product: syz
[   70.659630][ T5883] usb 1-1: Manufacturer: syz
[   70.666548][ T5883] usb 1-1: SerialNumber: syz
[   70.677065][ T5883] usb 1-1: config 0 descriptor??
[   70.901746][ T5883] em28xx 1-1:0.51: audio device (eb1a:2710): interface 51, class 1
[   70.918321][ T5883] usb 1-1: USB disconnect, device number 3
[   71.048041][ T5983] loop1: detected capacity change from 0 to 32768
[   71.052748][ T5983] btrfs: Unknown parameter 'defcontext'
[   71.080883][   T55] Bluetooth: hci0: command tx timeout
[   71.081644][ T1365] ieee802154 phy0 wpan0: encryption failed: -22
[   71.085306][ T1365] ieee802154 phy1 wpan1: encryption failed: -22
[   71.159246][ T5995] loop2: detected capacity change from 0 to 64
[   71.230412][ T5997] loop2: detected capacity change from 0 to 512
[   71.233198][ T5997] ext4: Unknown parameter 'euid'
[   71.274128][ T5852] Bluetooth: hci1: command tx timeout
[   71.276352][   T55] Bluetooth: hci2: command tx timeout
[   71.868424][ T6010] loop0: detected capacity change from 0 to 40427
[   71.874148][ T6010] F2FS-fs (loop0): build fault injection rate: 771
[   71.895776][ T6010] F2FS-fs (loop0): invalid crc value
[   71.931617][ T6012] loop2: detected capacity change from 0 to 32768
[   71.951647][ T6012] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.44 (6012)
[   71.992439][ T6012] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[   72.002530][ T6010] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[   72.006834][ T6012] BTRFS info (device loop2): using sha256 (sha256-lib) checksum algorithm
[   72.010182][ T6012] BTRFS info (device loop2): using free-space-tree
[   72.015398][ T6010] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[   72.104471][ T5850] syz-executor: attempt to access beyond end of device
[   72.104471][ T5850] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   72.113909][ T5850] CPU: 1 UID: 0 PID: 5850 Comm: syz-executor Not tainted 6.17.0-rc1-syzkaller-00036-gdfc0f6373094-dirty #0 PREEMPT(full) 
[   72.113929][ T5850] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[   72.113937][ T5850] Call Trace:
[   72.113952][ T5850]  <TASK>
[   72.113963][ T5850]  dump_stack_lvl+0x189/0x250
[   72.113995][ T5850]  ? __pfx_dump_stack_lvl+0x10/0x10
[   72.114011][ T5850]  ? __pfx_queue_work_on+0x10/0x10
[   72.114023][ T5850]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[   72.114040][ T5850]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   72.114066][ T5850]  f2fs_handle_critical_error+0x37c/0x540
[   72.114092][ T5850]  f2fs_write_end_io+0x886/0xb60
[   72.114146][ T5850]  __submit_merged_bio+0x27a/0x6a0
[   72.114173][ T5850]  __submit_merged_write_cond+0x255/0x530
[   72.114218][ T5850]  f2fs_write_data_pages+0x261d/0x3000
[   72.114268][ T5850]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[   72.114353][ T5850]  ? __lock_acquire+0xab9/0xd20
[   72.114380][ T5850]  ? do_raw_spin_lock+0x121/0x290
[   72.114406][ T5850]  ? do_raw_spin_unlock+0x4d/0x240
[   72.114421][ T5850]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[   72.114442][ T5850]  do_writepages+0x32e/0x550
[   72.114470][ T5850]  ? do_raw_spin_unlock+0x4d/0x240
[   72.114490][ T5850]  filemap_fdatawrite+0x199/0x240
[   72.114509][ T5850]  ? __pfx_filemap_fdatawrite+0x10/0x10
[   72.114570][ T5850]  ? do_raw_spin_unlock+0x4d/0x240
[   72.114591][ T5850]  f2fs_sync_dirty_inodes+0x31f/0x830
[   72.114616][ T5850]  f2fs_write_checkpoint+0x95a/0x1df0
[   72.114652][ T5850]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[   72.114704][ T5850]  ? f2fs_stop_gc_thread+0x7f/0xb0
[   72.114717][ T5850]  ? kfree+0x18e/0x440
[   72.114734][ T5850]  ? kill_f2fs_super+0x298/0x6c0
[   72.114752][ T5850]  kill_f2fs_super+0x2c3/0x6c0
[   72.114771][ T5850]  ? __pfx_kill_f2fs_super+0x10/0x10
[   72.114783][ T5850]  ? radix_tree_delete_item+0x2b6/0x400
[   72.114806][ T5850]  ? shrinker_free+0x2ce/0x3e0
[   72.114823][ T5850]  deactivate_locked_super+0xbc/0x130
[   72.114842][ T5850]  cleanup_mnt+0x425/0x4c0
[   72.114887][ T5850]  ? lockdep_hardirqs_on+0x9c/0x150
[   72.114907][ T5850]  task_work_run+0x1d4/0x260
[   72.114928][ T5850]  ? __pfx_task_work_run+0x10/0x10
[   72.114943][ T5850]  ? __x64_sys_umount+0x122/0x160
[   72.114970][ T5850]  ? exit_to_user_mode_loop+0x40/0x110
[   72.114997][ T5850]  exit_to_user_mode_loop+0xec/0x110
[   72.115015][ T5850]  do_syscall_64+0x2bd/0x3b0
[   72.115035][ T5850]  ? lockdep_hardirqs_on+0x9c/0x150
[   72.115050][ T5850]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   72.115062][ T5850]  ? exc_page_fault+0x9f/0xf0
[   72.115081][ T5850]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   72.115093][ T5850] RIP: 0033:0x7fa44af8ff17
[   72.115106][ T5850] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[   72.115117][ T5850] RSP: 002b:00007ffcd05171f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[   72.115131][ T5850] RAX: 0000000000000000 RBX: 00007fa44b011c05 RCX: 00007fa44af8ff17
[   72.115140][ T5850] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffcd05172b0
[   72.115147][ T5850] RBP: 00007ffcd05172b0 R08: 0000000000000000 R09: 0000000000000000
[   72.115155][ T5850] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffcd0518340
[   72.115164][ T5850] R13: 00007fa44b011c05 R14: 0000000000011920 R15: 00007ffcd0518380
[   72.115190][ T5850]  </TASK>
[   72.115196][ T5850] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[   72.265212][ T5872] BTRFS info (device loop2): qgroup scan completed (inconsistency flag cleared)
[   72.322702][ T5844] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[   72.699584][ T6046] netlink: 4 bytes leftover after parsing attributes in process `syz.0.50'.
[   73.119368][ T6044] binder: 6040:6044 ioctl c0306201 0 returned -14
[   73.157207][ T5852] Bluetooth: hci0: command tx timeout
[   73.326107][ T5852] Bluetooth: hci1: command tx timeout
[   73.328291][ T5852] Bluetooth: hci2: command tx timeout
[   73.418300][ T5851] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[   73.588144][ T5851] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   73.592380][ T5851] usb 2-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[   73.595828][ T5851] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   73.620248][ T5851] usb 2-1: config 0 descriptor??
[   73.739777][ T6078] syz.2.63 uses obsolete (PF_INET,SOCK_PACKET)
[   73.792800][ T6080] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[   73.847689][ T5851] usbhid 2-1:0.0: can't add hid device: -71
[   73.850071][ T5851] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[   73.868092][ T5851] usb 2-1: USB disconnect, device number 2
[   73.884827][ T6084] netlink: 'syz.2.66': attribute type 1 has an invalid length.
[   73.954507][ T6083] loop0: detected capacity change from 0 to 4096
[   73.980589][ T6088] loop2: detected capacity change from 0 to 8
[   74.005065][ T6083] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[   74.005454][ T6088] SQUASHFS error: xz decompression failed, data probably corrupt
[   74.010737][ T6083] ntfs3(loop0): Failed to load $Extend (-22).
[   74.011345][ T6088] SQUASHFS error: Failed to read block 0x108: -5
[   74.013757][ T6083] ntfs3(loop0): Failed to initialize $Extend.
[   74.019518][ T6088] SQUASHFS error: Unable to read metadata cache entry [106]
[   74.023946][ T6088] SQUASHFS error: Unable to read inode 0x11f
[   74.296079][ T5883] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[   74.328628][ T6103] loop0: detected capacity change from 0 to 256
[   74.373659][ T6103] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d)
[   74.457039][ T5883] usb 2-1: Using ep0 maxpacket: 16
[   74.464545][ T5883] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   74.476323][ T5883] usb 2-1: New USB device found, idVendor=0458, idProduct=5016, bcdDevice= 0.00
[   74.480108][ T5883] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   74.496335][ T5883] usb 2-1: config 0 descriptor??
[   74.537642][ T6098] loop2: detected capacity change from 0 to 32768
[   74.551938][ T6098] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.72 (6098)
[   74.589967][ T6098] BTRFS info (device loop2): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[   74.594047][ T6098] BTRFS info (device loop2): using blake2b (blake2b-256-generic) checksum algorithm
[   74.604492][ T6098] BTRFS info (device loop2): using free-space-tree
[   74.751920][   T33] audit: type=1800 audit(1755548313.042:2): pid=6098 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.72" name="file1" dev="loop2" ino=260 res=0 errno=0
[   74.770394][ T6105] loop0: detected capacity change from 0 to 32768
[   74.774451][ T6105] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1281 transid 8 /dev/loop0 (7:0) scanned by syz.0.75 (6105)
[   74.783032][   T33] audit: type=1804 audit(1755548313.092:3): pid=6098 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.72" name="/newroot/32/file0/file1" dev="loop2" ino=260 res=1 errno=0
[   74.813372][ T5929] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1281 transid 8 /dev/loop0 (7:0) scanned by udevd (5929)
[   74.924196][ T5883] kye 0003:0458:5016.0001: control desc unexpectedly large
[   74.932785][ T5844] BTRFS info (device loop2): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[   74.950747][ T5883] input: HID 0458:5016 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:0458:5016.0001/input/input6
[   75.078268][ T5883] input: HID 0458:5016 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:0458:5016.0001/input/input7
[   75.123079][ T5883] kye 0003:0458:5016.0001: input,hiddev0,hidraw0: USB HID v0.09 Device [HID 0458:5016] on usb-dummy_hcd.1-1/input0
[   75.706553][ T5896] usb 3-1: new full-speed USB device number 2 using dummy_hcd
[   75.757079][ T5851] usb 2-1: USB disconnect, device number 3
[   75.887642][ T5896] usb 3-1: config 0 has an invalid interface number: 46 but max is 0
[   75.896783][ T5896] usb 3-1: config 0 has no interface number 0
[   75.899006][ T5896] usb 3-1: config 0 interface 46 altsetting 0 endpoint 0x2 has invalid maxpacket 512, setting to 64
[   75.917969][ T5896] usb 3-1: New USB device found, idVendor=045a, idProduct=5210, bcdDevice= 1.01
[   75.921253][ T5896] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   75.934516][ T5896] usb 3-1: Product: syz
[   75.937856][ T5896] usb 3-1: Manufacturer: syz
[   75.939610][ T5896] usb 3-1: SerialNumber: syz
[   75.948073][ T5896] usb 3-1: config 0 descriptor??
[   75.950630][ T6133] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[   75.954987][ T5896] ums-karma 3-1:0.46: USB Mass Storage device detected
[   76.007187][ T5896] ums-karma 3-1:0.46: probe with driver ums-karma failed with error -5
[   76.197656][ T6139] loop0: detected capacity change from 0 to 32768
[   76.231434][ T6139] ERROR: (device loop0): dbAlloc: the hint is outside the map
[   76.231434][ T6139] 
[   76.235918][ T6139] ialloc: diAlloc returned -5!
[   76.498985][ T6145] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   76.830085][ T6167] Zero length message leads to an empty skb
[   76.890246][ T6169] bridge0: port 3(syz_tun) entered blocking state
[   76.893063][ T6169] bridge0: port 3(syz_tun) entered disabled state
[   76.895887][ T6169] syz_tun: entered allmulticast mode
[   76.901600][ T6169] syz_tun: entered promiscuous mode
[   76.904769][ T6169] bridge0: port 3(syz_tun) entered blocking state
[   76.907748][ T6169] bridge0: port 3(syz_tun) entered forwarding state
[   77.112116][ T6175] pim6reg: entered allmulticast mode
[   77.295343][ T6173] loop1: detected capacity change from 0 to 32768
[   77.306510][ T6173] (syz.1.91,6173,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[   77.315568][ T6173] (syz.1.91,6173,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[   77.352773][ T6173] JBD2: Ignoring recovery information on journal
[   77.394090][ T6173] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[   77.468800][ T6181] loop0: detected capacity change from 0 to 512
[   77.503782][ T6181] EXT4-fs warning (device loop0): dx_probe:846: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[   77.511285][ T6181] EXT4-fs warning (device loop0): dx_probe:849: Enable large directory feature to access it
[   77.515252][ T6181] EXT4-fs warning (device loop0): dx_probe:934: inode #2: comm syz.0.94: Corrupt directory, running e2fsck is recommended
[   77.525012][ T6181] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -12
[   77.528473][ T6181] EXT4-fs error (device loop0): ext4_iget_extra_inode:5104: inode #15: comm syz.0.94: corrupted in-inode xattr: invalid ea_ino
[   77.534718][ T6181] EXT4-fs (loop0): Remounting filesystem read-only
[   77.542009][ T6181] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   77.589761][ T5849] ocfs2: Unmounting device (7,1) on (node local)
[   77.606723][ T5850] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   77.868523][ T6191] loop1: detected capacity change from 0 to 4096
[   77.899672][ T6192] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[   77.987796][ T5883] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[   78.164318][ T1273] usb 3-1: USB disconnect, device number 2
[   78.188466][ T5883] usb 1-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[   78.192332][ T5883] usb 1-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[   78.205040][ T5883] usb 1-1: config 27 interface 0 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[   78.210547][ T5883] usb 1-1: config 27 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[   78.216639][ T5883] usb 1-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[   78.220874][ T5883] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   78.240268][ T5883] usb 1-1: Quirk or no altset; falling back to MIDI 1.0
[   78.243976][ T5883] usb 1-1: invalid MIDI out EP 0
[   78.392202][ T5883] snd-usb-audio 1-1:27.0: probe with driver snd-usb-audio failed with error -22
[   78.458431][ T5883] usb 1-1: USB disconnect, device number 4
[   78.559044][ T6200] loop1: detected capacity change from 0 to 32768
[   78.583947][   T33] audit: type=1800 audit(1755548316.882:4): pid=6200 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.102" name="file1" dev="loop1" ino=4 res=0 errno=0
[   78.812542][ T6200] ERROR: (device loop1): dbAdjCtl: the maximum free buddy is not the old root
[   78.812542][ T6200] 
[   78.818805][ T6200] ERROR: (device loop1): remounting filesystem as read-only
[   79.033498][ T6212] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[   79.038439][ T6212] overlayfs: "xino" feature enabled using 2 upper inode bits.
[   79.258960][ T6214] sctp: [Deprecated]: syz.0.108 (pid 6214) Use of struct sctp_assoc_value in delayed_ack socket option.
[   79.258960][ T6214] Use struct sctp_sack_info instead
[   79.327684][ T6216] PM: Enabling pm_trace changes system date and time during resume.
[   79.327684][ T6216] PM: Correct system time has to be restored manually after resume.
[   79.693675][ T6224] loop1: detected capacity change from 0 to 1024
[   79.708503][ T6224] hfsplus: failed to load extents file
[   80.240279][ T6240] loop2: detected capacity change from 0 to 128
[   80.260495][ T6240] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   80.266919][ T6240] ext4 filesystem being mounted at /42/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   80.274849][ T6240] fscrypt (loop2, inode 12): Unsupported encryption flags (0xff)
[   80.297420][ T5844] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   80.583747][ T5896] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[   80.665698][ T6252] loop0: detected capacity change from 0 to 256
[   80.720430][ T6252] FAT-fs (loop0): Directory bread(block 64) failed
[   80.722863][ T6252] FAT-fs (loop0): Directory bread(block 65) failed
[   80.732764][ T6252] FAT-fs (loop0): Directory bread(block 66) failed
[   80.744077][ T6252] FAT-fs (loop0): Directory bread(block 67) failed
[   80.750589][ T6252] FAT-fs (loop0): Directory bread(block 68) failed
[   80.753489][ T6252] FAT-fs (loop0): Directory bread(block 69) failed
[   80.756251][ T5896] usb 2-1: Using ep0 maxpacket: 16
[   80.757837][ T6252] FAT-fs (loop0): Directory bread(block 70) failed
[   80.757876][ T6252] FAT-fs (loop0): Directory bread(block 71) failed
[   80.763121][ T5896] usb 2-1: too many configurations: 112, using maximum allowed: 8
[   80.763369][ T6252] FAT-fs (loop0): Directory bread(block 72) failed
[   80.770648][ T6252] FAT-fs (loop0): Directory bread(block 73) failed
[   80.789337][ T5896] usb 2-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[   80.793328][ T5896] usb 2-1: New USB device strings: Mfr=144, Product=246, SerialNumber=0
[   80.797322][ T5896] usb 2-1: Product: syz
[   80.798807][ T5896] usb 2-1: Manufacturer: syz
[   80.821684][ T5896] r8152-cfgselector 2-1: Unknown version 0x0000
[   80.827499][ T5896] r8152-cfgselector 2-1: config 0 descriptor??
[   81.091503][ T5896] r8152-cfgselector 2-1: bad CDC descriptors
[   81.112065][ T5896] r8152-cfgselector 2-1: USB disconnect, device number 4
[   81.890617][ T6263] loop1: detected capacity change from 0 to 4096
[   81.902791][ T6263] ntfs3(loop1): Different NTFS sector size (2048) and media sector size (512).
[   82.172045][ T6280] loop0: detected capacity change from 0 to 128
[   82.188424][ T6280] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   82.192269][ T6280] ext4 filesystem being mounted at /45/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   82.229597][ T5850] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   82.335922][ T5896] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[   82.349890][ T6285] tipc: Started in network mode
[   82.359726][ T6285] tipc: Node identity 4, cluster identity 4711
[   82.362281][ T6285] tipc: Node number set to 4
[   82.386906][ T6274] loop2: detected capacity change from 0 to 32768
[   82.448150][ T6274] ialloc: diAlloc returned -5!
[   82.498973][ T5896] usb 2-1: config 0 has an invalid interface number: 117 but max is 0
[   82.502358][ T5896] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   82.511027][ T5896] usb 2-1: config 0 has no interface number 0
[   82.513562][ T5896] usb 2-1: config 0 interface 117 altsetting 0 endpoint 0x88 has invalid wMaxPacketSize 0
[   82.535486][ T5896] usb 2-1: config 0 interface 117 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   82.544534][ T5896] usb 2-1: New USB device found, idVendor=0afa, idProduct=03e8, bcdDevice=99.d0
[   82.550928][ T5896] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   82.554293][ T5896] usb 2-1: Product: syz
[   82.558587][ T5896] usb 2-1: Manufacturer: syz
[   82.560401][ T5896] usb 2-1: SerialNumber: syz
[   82.570634][ T5896] usb 2-1: config 0 descriptor??
[   82.604577][ T6287] loop0: detected capacity change from 0 to 1024
[   82.643269][ T6287] hfsplus: bad catalog entry type
[   82.682809][ T6289] loop2: detected capacity change from 0 to 128
[   82.684095][   T40] hfsplus: b-tree write err: -5, ino 4
[   82.695736][ T6289] EXT4-fs: Ignoring removed bh option
[   82.719323][ T6289] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   82.735912][ T6289] ext4 filesystem being mounted at /50/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   82.791268][ T5844] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   82.995366][ T5896] usb 2-1: USB disconnect, device number 5
[   83.620106][ T6325] netlink: 28 bytes leftover after parsing attributes in process `syz.2.150'.
[   84.185051][ T6337] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[   84.340962][ T6335] loop1: detected capacity change from 0 to 32768
[   84.360893][ T6335] XFS (loop1): Mounting V5 Filesystem 9f91832a-3b79-45c3-9d6d-ed0bc7357fe4
[   84.424611][ T6335] XFS (loop1): Starting recovery (logdev: internal)
[   84.473519][ T6355] netlink: 36 bytes leftover after parsing attributes in process `syz.2.160'.
[   84.473521][ T6335] XFS (loop1): Ending recovery (logdev: internal)
[   84.496532][ T6357] loop0: detected capacity change from 0 to 1024
[   84.523202][ T5849] XFS (loop1): Unmounting Filesystem 9f91832a-3b79-45c3-9d6d-ed0bc7357fe4
[   84.762719][ T6364] loop0: detected capacity change from 0 to 256
[   84.769868][ T6364] exfat: Deprecated parameter 'utf8'
[   84.771966][ T6364] exfat: Deprecated parameter 'utf8'
[   84.782249][ T6364] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x4d7dfc9d, utbl_chksum : 0xe619d30d)
[   84.964151][   T24] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[   85.046432][ T6374] dlm: no local IP address has been set
[   85.048907][ T6374] dlm: cannot start dlm midcomms -107
[   85.120945][   T24] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   85.130751][   T24] usb 2-1: New USB device found, idVendor=17ef, idProduct=6047, bcdDevice= 0.00
[   85.159961][   T24] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   85.175136][   T24] usb 2-1: config 0 descriptor??
[   85.744905][   T24] lenovo 0003:17EF:6047.0002: hidraw0: USB HID v0.00 Device [HID 17ef:6047] on usb-dummy_hcd.1-1/input0
[   85.929586][ T6393] overlayfs: conflicting options: nfs_export=on,index=off
[   85.992725][ T6395] loop0: detected capacity change from 0 to 512
[   86.007258][ T6395] EXT4-fs (loop0): orphan cleanup on readonly fs
[   86.016065][ T6395] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -13
[   86.020067][ T6395] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters
[   86.031235][ T6395] EXT4-fs error (device loop0): ext4_clear_blocks:876: inode #13: comm syz.0.177: attempt to clear invalid blocks 2 len 1
[   86.041795][ T6395] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #13: comm syz.0.177: invalid indirect mapped block 1819239214 (level 0)
[   86.047582][ T6395] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #13: comm syz.0.177: invalid indirect mapped block 1819239214 (level 1)
[   86.054321][ T6395] EXT4-fs (loop0): 1 truncate cleaned up
[   86.058607][ T6395] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   86.071442][ T6395] EXT4-fs error (device loop0): ext4_lookup:1784: inode #2: comm syz.0.177: 'file1' linked to parent dir
[   86.118656][ T5850] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.182430][   T33] audit: type=1326 audit(1755548580.485:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6401 comm="syz.0.180" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa44af8ebe9 code=0x7ffc0000
[   86.210230][   T33] audit: type=1326 audit(1755548580.485:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6401 comm="syz.0.180" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa44af8ebe9 code=0x7ffc0000
[   86.220575][   T33] audit: type=1326 audit(1755548580.485:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6401 comm="syz.0.180" exe="/syz-executor" sig=0 arch=c000003e syscall=102 compat=0 ip=0x7fa44af8ebe9 code=0x7ffc0000
[   86.243156][   T33] audit: type=1326 audit(1755548580.485:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6401 comm="syz.0.180" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa44af8ebe9 code=0x7ffc0000
[   86.256899][ T6404] netlink: 40 bytes leftover after parsing attributes in process `syz.2.181'.
[   86.265985][   T33] audit: type=1326 audit(1755548580.485:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6401 comm="syz.0.180" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa44af8ebe9 code=0x7ffc0000
[   86.320877][ T6408] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   86.326815][ T6408] batadv_slave_1: entered promiscuous mode
[   86.391070][ T6411] iommufd_mock iommufd_mock0: Adding to iommu group 0
[   86.566612][   T47] cfg80211: failed to load regulatory.db
[   87.132852][ T1273] usb 2-1: USB disconnect, device number 6
[   87.328538][ T6424] loop0: detected capacity change from 0 to 512
[   87.334386][ T6424] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[   87.338448][ T6424] EXT4-fs (loop0): can't mount with commit=, fs mounted w/o journal
[   87.652481][ T5896] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[   87.680353][ T6428] loop1: detected capacity change from 0 to 512
[   87.684773][ T6428] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   87.694054][ T6428] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   87.695991][ T1273] usb 3-1: new full-speed USB device number 3 using dummy_hcd
[   87.704097][ T6428] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=800ec018, mo2=0082]
[   87.711550][ T6428] EXT4-fs (loop1): 1 truncate cleaned up
[   87.719272][ T6428] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   87.812479][ T5896] usb 1-1: Using ep0 maxpacket: 16
[   87.823663][ T5896] usb 1-1: config 1 has an invalid descriptor of length 189, skipping remainder of the config
[   87.828135][ T5896] usb 1-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 18
[   87.839650][ T5849] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.845281][ T5896] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice=f1.40
[   87.852006][ T5896] usb 1-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0
[   87.855813][ T5896] usb 1-1: Product: syz
[   87.857583][ T5896] usb 1-1: Manufacturer: syz
[   87.859885][ T1273] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64
[   87.868623][ T5896] cdc_ether 1-1:1.0: skipping garbage
[   87.870995][ T5896] cdc_ether 1-1:1.0: probe with driver cdc_ether failed with error -22
[   87.873746][ T1273] usb 3-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00
[   87.877746][ T1273] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   87.894033][ T1273] usb 3-1: config 0 descriptor??
[   87.896910][ T6426] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[   88.119568][ T5883] usb 1-1: USB disconnect, device number 5
[   88.412660][ T1273] elan 0003:04F3:0755.0003: hidraw0: USB HID v1.01 Device [HID 04f3:0755] on usb-dummy_hcd.2-1/input0
[   88.589030][ T5896] usb 3-1: USB disconnect, device number 3
[   88.934293][ T6441] netlink: 'syz.0.193': attribute type 12 has an invalid length.
[   88.937337][ T6441] netlink: 'syz.0.193': attribute type 29 has an invalid length.
[   88.940225][ T6441] netlink: 148 bytes leftover after parsing attributes in process `syz.0.193'.
[   89.188853][ T6453] loop1: detected capacity change from 0 to 4096
[   89.195564][ T6453] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512).
[   89.976197][ T6471] loop1: detected capacity change from 0 to 32768
[   90.013086][ T6471] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[   90.104023][ T5849] ocfs2: Unmounting device (7,1) on (node local)
[   90.165864][ T6473] loop2: detected capacity change from 0 to 32768
[   90.183471][ T6473] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.209 (6473)
[   90.223580][ T6473] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   90.227560][ T6473] BTRFS info (device loop2): using crc32c (crc32c-lib) checksum algorithm
[   90.230866][ T6473] BTRFS info (device loop2): using free-space-tree
[   90.333562][ T6480] loop0: detected capacity change from 0 to 32768
[   90.366526][ T6473] BTRFS info (device loop2): rebuilding free space tree
[   90.473643][ T6480] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,metadata_target=invalid label 246,noinodes_use_key_cache,journal_flush_delay=3,journal_reclaim_delay=1000,nocow
[   90.473676][ T6480]   allowing incompatible features above 0.0: (unknown version)
[   90.473685][ T6480]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[   90.494310][ T6480] bcachefs (loop0): Using encoding defined by superblock: utf8-12.1.0
[   90.504006][ T6480] bcachefs (loop0): initializing new filesystem
[   90.529707][ T6480] bcachefs (loop0): going read-write
[   90.549049][ T6480] bcachefs (loop0): marking superblocks
[   90.578120][ T5844] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   90.595998][ T6487] loop1: detected capacity change from 0 to 32768
[   90.651372][ T6480] bcachefs (loop0): initializing freespace
[   90.674810][ T6480] bcachefs (loop0): done initializing freespace
[   90.680037][ T6480] bcachefs (loop0): reading snapshots table
[   90.685423][ T6480] bcachefs (loop0): reading snapshots done
[   90.719826][ T6480] bcachefs (loop0): done starting filesystem
[   90.780926][   T33] audit: type=1800 audit(1755548585.077:10): pid=6480 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.212" name="file1" dev="loop0" ino=4098 res=0 errno=0
[   90.839171][ T6480] syz.0.212 (6480) used greatest stack depth: 17256 bytes left
[   90.855315][ T5850] bcachefs (loop0): shutting down
[   90.857228][ T5850] bcachefs (loop0): going read-only
[   90.859275][ T5850] bcachefs (loop0): finished waiting for writes to stop
[   90.894307][ T5850] bcachefs (loop0): flushing journal and stopping allocators, journal seq 7
[   90.952649][ T5850] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 9
[   90.965733][ T5850] bcachefs (loop0): clean shutdown complete, journal seq 10
[   90.969495][ T5850] bcachefs (loop0): marking filesystem clean
[   91.042346][ T5850] bcachefs (loop0): shutdown complete
[   91.081595][ T6520] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[   91.084464][ T6520] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[   91.255827][ T6528] loop1: detected capacity change from 0 to 512
[   91.277183][ T6528] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   91.288930][   T33] audit: type=1800 audit(1755548585.598:11): pid=6528 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.222" name="file0" dev="loop1" ino=13 res=0 errno=0
[   91.313463][ T5849] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   91.557275][ T6525] loop2: detected capacity change from 0 to 40427
[   91.561888][ T6525] F2FS-fs (loop2): build fault injection rate: 14
[   91.565809][ T6525] F2FS-fs (loop2): build fault injection type: 0x3bfe8c
[   91.572775][ T6525] F2FS-fs (loop2): invalid crc value
[   91.578041][    C1] F2FS-fs (loop2): inject read IO error in f2fs_read_end_io of blk_update_request+0x57e/0xe60
[   91.585909][    C1] F2FS-fs (loop2): inject read IO error in f2fs_read_end_io of blk_update_request+0x57e/0xe60
[   91.638275][ T6525] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[   91.641764][ T6525] F2FS-fs (loop2): inject page alloc in f2fs_grab_cache_folio of __get_meta_folio+0x157/0x4f0
[   91.648796][ T6525] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[   91.670426][ T6525] F2FS-fs (loop2): inject slab alloc in f2fs_kmem_cache_alloc of f2fs_new_node_folio+0x1d9/0xa40
[   91.675733][   T33] audit: type=1800 audit(1755548585.988:12): pid=6525 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.221" name="file1" dev="loop2" ino=10 res=0 errno=0
[   91.688254][ T6525] F2FS-fs (loop2): inject inconsistent footer in sanity_check_node_footer of read_inline_xattr+0x1af/0x320
[   91.695604][ T6525] F2FS-fs (loop2): inconsistent node block, node_type:1, nid:10, node_footer[nid:10,ino:10,ofs:0,cpver:0,blkaddr:0]
[   91.728629][ T5844] syz-executor: attempt to access beyond end of device
[   91.728629][ T5844] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   91.734107][ T5844] CPU: 0 UID: 0 PID: 5844 Comm: syz-executor Not tainted 6.17.0-rc1-syzkaller-00036-gdfc0f6373094-dirty #0 PREEMPT(full) 
[   91.734121][ T5844] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[   91.734127][ T5844] Call Trace:
[   91.734130][ T5844]  <TASK>
[   91.734136][ T5844]  dump_stack_lvl+0x189/0x250
[   91.734158][ T5844]  ? __pfx_dump_stack_lvl+0x10/0x10
[   91.734173][ T5844]  ? __pfx_queue_work_on+0x10/0x10
[   91.734185][ T5844]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[   91.734201][ T5844]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   91.734223][ T5844]  f2fs_handle_critical_error+0x37c/0x540
[   91.734238][ T5844]  f2fs_write_end_io+0x886/0xb60
[   91.734256][ T5844]  __submit_merged_bio+0x27a/0x6a0
[   91.734276][ T5844]  __submit_merged_write_cond+0x255/0x530
[   91.734290][ T5844]  f2fs_write_data_pages+0x261d/0x3000
[   91.734320][ T5844]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[   91.734368][ T5844]  ? __lock_acquire+0xab9/0xd20
[   91.734420][ T5844]  ? do_raw_spin_lock+0x121/0x290
[   91.734446][ T5844]  ? do_raw_spin_unlock+0x4d/0x240
[   91.734462][ T5844]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[   91.734474][ T5844]  do_writepages+0x32e/0x550
[   91.734498][ T5844]  ? do_raw_spin_unlock+0x4d/0x240
[   91.734516][ T5844]  filemap_fdatawrite+0x199/0x240
[   91.734535][ T5844]  ? __pfx_filemap_fdatawrite+0x10/0x10
[   91.734593][ T5844]  ? do_raw_spin_unlock+0x4d/0x240
[   91.734614][ T5844]  f2fs_sync_dirty_inodes+0x31f/0x830
[   91.734642][ T5844]  f2fs_write_checkpoint+0x95a/0x1df0
[   91.734678][ T5844]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[   91.734737][ T5844]  ? kill_f2fs_super+0x298/0x6c0
[   91.734755][ T5844]  kill_f2fs_super+0x2c3/0x6c0
[   91.734766][ T5844]  ? __pfx_kill_f2fs_super+0x10/0x10
[   91.734772][ T5844]  ? radix_tree_delete_item+0x2b6/0x400
[   91.734787][ T5844]  ? shrinker_free+0x2ce/0x3e0
[   91.734797][ T5844]  deactivate_locked_super+0xbc/0x130
[   91.734808][ T5844]  cleanup_mnt+0x425/0x4c0
[   91.734818][ T5844]  ? lockdep_hardirqs_on+0x9c/0x150
[   91.734836][ T5844]  task_work_run+0x1d4/0x260
[   91.734858][ T5844]  ? __pfx_task_work_run+0x10/0x10
[   91.734873][ T5844]  ? __x64_sys_umount+0x122/0x160
[   91.734895][ T5844]  ? exit_to_user_mode_loop+0x40/0x110
[   91.734916][ T5844]  exit_to_user_mode_loop+0xec/0x110
[   91.734933][ T5844]  do_syscall_64+0x2bd/0x3b0
[   91.734950][ T5844]  ? lockdep_hardirqs_on+0x9c/0x150
[   91.734964][ T5844]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   91.734978][ T5844]  ? exc_page_fault+0x9f/0xf0
[   91.734998][ T5844]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   91.735010][ T5844] RIP: 0033:0x7fe66998ff17
[   91.735021][ T5844] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[   91.735030][ T5844] RSP: 002b:00007ffdc01b4348 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[   91.735045][ T5844] RAX: 0000000000000000 RBX: 00007fe669a11c05 RCX: 00007fe66998ff17
[   91.735053][ T5844] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffdc01b4400
[   91.735060][ T5844] RBP: 00007ffdc01b4400 R08: 0000000000000000 R09: 0000000000000000
[   91.735068][ T5844] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffdc01b5490
[   91.735077][ T5844] R13: 00007fe669a11c05 R14: 00000000000165df R15: 00007ffdc01b54d0
[   91.735102][ T5844]  </TASK>
[   91.735108][ T5844] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[   92.077281][ T6544] 9pnet: Could not find request transport: tצUunix
[   92.424916][ T6547] loop2: detected capacity change from 0 to 40427
[   92.437981][ T6547] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[   92.450465][ T6547] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[   92.532565][ T6547] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[   92.541692][ T6547] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[   92.544413][ T6547] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[   92.597381][   T33] audit: type=1800 audit(1755548586.908:13): pid=6547 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.227" name="file1" dev="loop2" ino=10 res=0 errno=0
[   92.600734][ T6547] syz.2.227: attempt to access beyond end of device
[   92.600734][ T6547] loop2: rw=34817, sector=77824, nr_sectors = 128 limit=40427
[   92.685935][ T5844] syz-executor: attempt to access beyond end of device
[   92.685935][ T5844] loop2: rw=2051, sector=77824, nr_sectors = 128 limit=40427
[   92.702192][ T5844] F2FS-fs (loop2): Issue discard(9728, 9728, 16) failed, ret: -5
[   92.767089][ T6549] loop1: detected capacity change from 0 to 32768
[   92.774806][ T6549] BTRFS info: device /dev/loop1 (7:1) using temp-fsid 8ee64e40-a4cc-45f6-9c5e-32976c6874fc
[   92.788090][ T6549] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.228 (6549)
[   92.802219][ T6549] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[   92.807737][ T6549] BTRFS info (device loop1): using sha256 (sha256-lib) checksum algorithm
[   92.812366][ T6549] BTRFS info (device loop1): disk space caching is enabled
[   92.815993][ T6549] BTRFS warning (device loop1): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[   92.877051][ T6549] BTRFS info (device loop1): rebuilding free space tree
[   92.912969][ T6549] BTRFS info (device loop1): disabling free space tree
[   92.915694][ T6549] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[   92.919592][ T6549] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[   92.974087][   T33] audit: type=1800 audit(1755548587.288:14): pid=6549 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.228" name="bus" dev="loop1" ino=263 res=0 errno=0
[   93.063087][ T5849] BTRFS info (device loop1): last unmount of filesystem 8ee64e40-a4cc-45f6-9c5e-32976c6874fc
[   93.439755][ T6591] netlink: 52 bytes leftover after parsing attributes in process `syz.1.235'.
[   93.442612][ T6591] netlink: 52 bytes leftover after parsing attributes in process `syz.1.235'.
[   93.446016][ T6591] netlink: 52 bytes leftover after parsing attributes in process `syz.1.235'.
[   93.548326][ T6577] loop2: detected capacity change from 0 to 32768
[   93.703667][ T6577] bcachefs (loop2): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,foreground_target=invalid label 767,background_target=invalid device 7,nojournal_transaction_names
[   93.703691][ T6577]   allowing incompatible features above 0.0: (unknown version)
[   93.703700][ T6577]   features: 
[   93.777156][ T6577] bcachefs (loop2): Using encoding defined by superblock: utf8-12.1.0
[   93.788587][ T6577] bcachefs (loop2): initializing new filesystem
[   93.808772][ T6577] bcachefs (loop2): going read-write
[   94.376369][ T6577] bcachefs (loop2): marking superblocks
[   94.417984][ T6577] bcachefs (loop2): initializing freespace
[   94.433237][ T6577] bcachefs (loop2): done initializing freespace
[   94.441862][ T6577] bcachefs (loop2): reading snapshots table
[   94.444165][ T6577] bcachefs (loop2): reading snapshots done
[   94.467392][ T6577] bcachefs (loop2): done starting filesystem
[   94.534125][ T6577] syz.2.231 (6577) used greatest stack depth: 16840 bytes left
[   94.559880][ T5844] bcachefs (loop2): shutting down
[   94.564577][ T5844] bcachefs (loop2): going read-only
[   94.570620][ T5844] bcachefs (loop2): finished waiting for writes to stop
[   94.574932][ T5844] bcachefs (loop2): flushing journal and stopping allocators, journal seq 2
[   94.621437][ T5844] bcachefs (loop2): flushing journal and stopping allocators complete, journal seq 3
[   94.635646][ T5844] bcachefs (loop2): clean shutdown complete, journal seq 4
[   94.644281][ T5844] bcachefs (loop2): marking filesystem clean
[   94.681119][ T5844] bcachefs (loop2): shutdown complete
[   94.930060][ T6619] loop0: detected capacity change from 0 to 40427
[   94.937563][ T6619] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[   94.943500][ T6619] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[   95.008801][ T6619] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[   95.015525][ T6619] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[   95.018226][ T6619] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[   95.046513][   T33] audit: type=1800 audit(1755548589.350:15): pid=6619 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.242" name="file1" dev="loop0" ino=10 res=0 errno=0
[   95.052309][ T6619] syz.0.242: attempt to access beyond end of device
[   95.052309][ T6619] loop0: rw=34817, sector=77824, nr_sectors = 128 limit=40427
[   95.099573][ T5850] syz-executor: attempt to access beyond end of device
[   95.099573][ T5850] loop0: rw=2051, sector=77824, nr_sectors = 128 limit=40427
[   95.106118][ T5850] F2FS-fs (loop0): Issue discard(9728, 9728, 16) failed, ret: -5
[   96.610340][ T6634] netlink: 201872 bytes leftover after parsing attributes in process `syz.1.245'.
[   96.615215][ T6634] netlink: zone id is out of range
[   96.617403][ T6634] netlink: zone id is out of range
[   96.619793][ T6634] netlink: zone id is out of range
[   96.622038][ T6634] netlink: zone id is out of range
[   96.624236][ T6634] netlink: zone id is out of range
[   96.626490][ T6634] netlink: zone id is out of range
[   96.630158][ T6634] netlink: zone id is out of range
[   96.632192][ T6634] netlink: zone id is out of range
[   96.634090][ T6634] netlink: zone id is out of range
[   96.635661][ T6634] netlink: zone id is out of range
[   96.765263][ T6636] loop1: detected capacity change from 0 to 512
[   96.800927][ T6636] EXT4-fs (loop1): orphan cleanup on readonly fs
[   96.803568][ T6636] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -13
[   96.862528][ T6636] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters
[   96.879036][ T6636] EXT4-fs error (device loop1): ext4_clear_blocks:876: inode #13: comm syz.1.246: attempt to clear invalid blocks 2 len 1
[   96.904692][ T6636] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #13: comm syz.1.246: invalid indirect mapped block 1819239214 (level 0)
[   96.921954][ T6636] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #13: comm syz.1.246: invalid indirect mapped block 1819239214 (level 1)
[   96.938949][ T6641] syz_tun: entered allmulticast mode
[   96.939596][ T6636] EXT4-fs (loop1): 1 truncate cleaned up
[   96.949377][ T6636] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   96.965267][ T6640] syz_tun: left allmulticast mode
[   96.974919][ T6636] EXT4-fs error (device loop1): __ext4_remount:6736: comm syz.1.246: Abort forced by user
[   96.999520][ T6636] EXT4-fs (loop1): Remounting filesystem read-only
[   97.012419][ T6636] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000.
[   97.056761][ T5849] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.149711][ T6647] loop0: detected capacity change from 0 to 512
[   97.169674][ T6647] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   97.209157][ T6647] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.250: invalid indirect mapped block 4294967295 (level 1)
[   97.221892][ T6647] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.250: invalid indirect mapped block 4294967295 (level 1)
[   97.238750][ T6647] EXT4-fs (loop0): 2 truncates cleaned up
[   97.242469][ T6647] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   97.306910][ T5850] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.420048][ T6657] loop2: detected capacity change from 0 to 4096
[   97.424372][ T6657] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[   97.436276][ T6657] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   97.510701][ T6667] EXT4-fs (loop2): shut down requested (2)
[   97.578336][ T5844] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.929877][ T5883] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[   98.026118][ T6677] mmap: syz.2.261 (6677) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   98.086003][ T6678] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   98.090079][ T5883] usb 1-1: Using ep0 maxpacket: 16
[   98.095228][ T5883] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   98.099845][ T5883] usb 1-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[   98.103601][ T5883] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   98.109623][ T5883] usb 1-1: config 0 descriptor??
[   98.526108][ T5883] mcp2221 0003:04D8:00DD.0004: USB HID v0.05 Device [HID 04d8:00dd] on usb-dummy_hcd.0-1/input0
[   98.938964][   T47] usb 1-1: USB disconnect, device number 6
[   98.996941][   T24] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[   99.150234][   T24] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   99.155027][   T24] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 69, changing to 10
[   99.161645][   T24] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 17408, setting to 1024
[   99.166115][   T24] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   99.173289][   T24] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   99.179373][   T24] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   99.185289][   T24] usb 2-1: config 0 descriptor??
[   99.601205][ T6702] batman_adv: batadv0: Adding interface: dummy0
[   99.604929][ T6702] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   99.620281][ T6702] batman_adv: batadv0: Interface activated: dummy0
[   99.623196][   T24] plantronics 0003:047F:FFFF.0005: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[   99.897095][ T6716] loop0: detected capacity change from 0 to 512
[   99.910616][ T6716] EXT4-fs: Ignoring removed nomblk_io_submit option
[   99.915435][ T6716] EXT4-fs: Ignoring removed i_version option
[   99.975183][ T6716] EXT4-fs (loop0): 1 orphan inode deleted
[   99.990396][ T6716] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  100.080679][ T5850] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  100.150785][   T33] audit: type=1326 audit(1755548594.442:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6723 comm="syz.0.280" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa44af8ebe9 code=0x7ffc0000
[  100.173348][   T33] audit: type=1326 audit(1755548594.452:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6723 comm="syz.0.280" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa44af8ebe9 code=0x7ffc0000
[  100.195687][   T33] audit: type=1326 audit(1755548594.452:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6723 comm="syz.0.280" exe="/syz-executor" sig=0 arch=c000003e syscall=196 compat=0 ip=0x7fa44af8ebe9 code=0x7ffc0000
[  100.212782][   T33] audit: type=1326 audit(1755548594.452:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6723 comm="syz.0.280" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa44af8ebe9 code=0x7ffc0000
[  100.223471][   T33] audit: type=1326 audit(1755548594.452:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6723 comm="syz.0.280" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa44af8ebe9 code=0x7ffc0000
[  100.422551][ T6735] loop2: detected capacity change from 0 to 512
[  100.431888][ T6735] EXT4-fs: Ignoring removed nomblk_io_submit option
[  100.461707][ T6735] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  100.464873][ T6735] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842c01d, mo2=0102]
[  100.472797][ T6735] EXT4-fs (loop2): couldn't mount RDWR because of unsupported optional features (80)
[  100.480116][ T6735] EXT4-fs (loop2): Skipping orphan cleanup due to unknown ROCOMPAT features
[  100.489487][ T6735] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  100.550512][ T5844] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.394074][ T6740] loop2: detected capacity change from 0 to 32768
[  101.411903][ T6740] 
[  101.411903][ T6740]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  101.411903][ T6740] 
[  101.446250][ T6740] ERROR: (device loop2): diWrite: ixpxd invalid
[  101.446250][ T6740] 
[  101.462240][ T6740] ERROR: (device loop2): txCommit: 
[  101.462240][ T6740] 
[  101.472564][ T6740] 
[  101.472564][ T6740]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  101.472564][ T6740] 
[  101.479868][ T6740] 
[  101.479868][ T6740]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  101.479868][ T6740] 
[  101.485190][ T6740] ERROR: (device loop2): diWrite: ixpxd invalid
[  101.485190][ T6740] 
[  101.490590][ T6740] ERROR: (device loop2): txCommit: 
[  101.490590][ T6740] 
[  101.535622][ T5844] 
[  101.535622][ T5844]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  101.535622][ T5844] 
[  101.543907][ T5844] 
[  101.543907][ T5844]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  101.543907][ T5844] 
[  101.759508][    T9] usb 2-1: USB disconnect, device number 7
[  102.778965][ T6763] loop2: detected capacity change from 0 to 24
[  102.943607][ T6776] Bluetooth: MGMT ver 1.23
[  103.180268][ T5851] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  103.294215][ T6797] net_ratelimit: 11 callbacks suppressed
[  103.294233][ T6797] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  103.344823][ T5851] usb 3-1: Using ep0 maxpacket: 16
[  103.351173][ T5851] usb 3-1: config 0 interface 0 has no altsetting 0
[  103.356355][ T5851] usb 3-1: New USB device found, idVendor=5fc9, idProduct=0063, bcdDevice=48.e3
[  103.360016][ T5851] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  103.363278][ T5851] usb 3-1: Product: syz
[  103.374604][ T5851] usb 3-1: Manufacturer: syz
[  103.376556][ T5851] usb 3-1: SerialNumber: syz
[  103.426734][ T5851] usb 3-1: config 0 descriptor??
[  103.914098][ T5851] usb 3-1: USB disconnect, device number 4
[  104.085288][ T6816] loop0: detected capacity change from 0 to 128
[  104.794002][    T9] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  104.954676][    T9] usb 2-1: Using ep0 maxpacket: 32
[  104.970733][    T9] usb 2-1: unable to get BOS descriptor or descriptor too short
[  104.977284][    T9] usb 2-1: config 1 interface 0 altsetting 7 bulk endpoint 0x82 has invalid maxpacket 32
[  104.981116][    T9] usb 2-1: config 1 interface 0 altsetting 7 bulk endpoint 0x3 has invalid maxpacket 32
[  104.986867][    T9] usb 2-1: config 1 interface 0 has no altsetting 0
[  104.994535][    T9] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  104.998474][    T9] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  105.005869][    T9] usb 2-1: Product: syz
[  105.007557][    T9] usb 2-1: Manufacturer: syz
[  105.015625][    T9] usb 2-1: SerialNumber: syz
[  105.022805][ T6821] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  105.030315][ T6821] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  105.268107][    T9] usb 2-1: bad CDC descriptors
[  105.277124][    T9] usb 2-1: USB disconnect, device number 8
[  105.286872][   T65] kworker/u9:3: attempt to access beyond end of device
[  105.286872][   T65] loop0: rw=1, sector=145, nr_sectors = 16 limit=128
[  105.293671][   T65] kworker/u9:3: attempt to access beyond end of device
[  105.293671][   T65] loop0: rw=1, sector=169, nr_sectors = 8 limit=128
[  105.298189][   T65] kworker/u9:3: attempt to access beyond end of device
[  105.298189][   T65] loop0: rw=1, sector=185, nr_sectors = 8 limit=128
[  105.305739][   T65] kworker/u9:3: attempt to access beyond end of device
[  105.305739][   T65] loop0: rw=1, sector=201, nr_sectors = 8 limit=128
[  105.310028][   T65] kworker/u9:3: attempt to access beyond end of device
[  105.310028][   T65] loop0: rw=1, sector=217, nr_sectors = 8 limit=128
[  105.315902][   T65] kworker/u9:3: attempt to access beyond end of device
[  105.315902][   T65] loop0: rw=1, sector=233, nr_sectors = 8 limit=128
[  105.320457][   T65] kworker/u9:3: attempt to access beyond end of device
[  105.320457][   T65] loop0: rw=1, sector=249, nr_sectors = 8 limit=128
[  105.326110][   T65] kworker/u9:3: attempt to access beyond end of device
[  105.326110][   T65] loop0: rw=1, sector=265, nr_sectors = 8 limit=128
[  105.331055][   T65] kworker/u9:3: attempt to access beyond end of device
[  105.331055][   T65] loop0: rw=1, sector=281, nr_sectors = 8 limit=128
[  105.337849][   T65] kworker/u9:3: attempt to access beyond end of device
[  105.337849][   T65] loop0: rw=1, sector=297, nr_sectors = 8 limit=128
[  105.763452][    T9] usb 3-1: new full-speed USB device number 5 using dummy_hcd
[  105.940638][    T9] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  105.966217][    T9] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  105.969981][    T9] usb 3-1: New USB device found, idVendor=10c4, idProduct=8acf, bcdDevice= 0.00
[  105.978274][    T9] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  105.986729][    T9] usb 3-1: config 0 descriptor??
[  106.053511][ T5897] usb 2-1: new full-speed USB device number 9 using dummy_hcd
[  106.237255][ T5897] usb 2-1: too many endpoints for config 253 interface 0 altsetting 0: 255, using maximum allowed: 30
[  106.245294][ T5897] usb 2-1: config 253 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 255
[  106.260632][ T5897] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  106.269150][ T5897] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  106.272710][ T5897] usb 2-1: SerialNumber: syz
[  106.574112][    T9] hid-u2fzero 0003:10C4:8ACF.0006: hidraw0: USB HID v0.00 Device [HID 10c4:8acf] on usb-dummy_hcd.2-1/input0
[  106.588426][    T9] hid-u2fzero 0003:10C4:8ACF.0006: U2F Zero LED initialised
[  106.591259][    T9] hid-u2fzero 0003:10C4:8ACF.0006: U2F Zero RNG initialised
[  106.608345][ T5897] usb 2-1: USB disconnect, device number 9
[  106.621736][ T6131] udevd[6131]: setting mode of /dev/bus/usb/002/009 to 020664 failed: No such file or directory
[  106.627924][ T6131] udevd[6131]: setting owner of /dev/bus/usb/002/009 to uid=0, gid=0 failed: No such file or directory
[  106.689299][    T9] usb 3-1: USB disconnect, device number 5
[  107.642498][    T9] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  107.792477][    T9] usb 2-1: Using ep0 maxpacket: 32
[  107.796804][    T9] usb 2-1: unable to get BOS descriptor or descriptor too short
[  107.801088][    T9] usb 2-1: config 7 has an invalid interface number: 69 but max is 0
[  107.804389][    T9] usb 2-1: config 7 has no interface number 0
[  107.807307][    T9] usb 2-1: config 7 interface 69 has no altsetting 0
[  107.812918][    T9] usb 2-1: New USB device found, idVendor=0bfd, idProduct=0005, bcdDevice=a5.97
[  107.816332][    T9] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  107.819652][    T9] usb 2-1: Product: syz
[  107.821534][    T9] usb 2-1: Manufacturer: syz
[  107.823660][    T9] usb 2-1: SerialNumber: syz
[  107.976994][ T6873] loop0: detected capacity change from 0 to 1024
[  107.982537][ T6873] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  107.999830][ T6873] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm syz.0.338: Invalid block bitmap block 0 in block_group 0
[  108.009637][ T6873] Quota error (device loop0): write_blk: dquota write failed
[  108.013970][ T6873] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  108.018270][ T6873] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.338: Failed to acquire dquot type 0
[  108.024617][ T6873] EXT4-fs error (device loop0): ext4_free_blocks:6696: comm syz.0.338: Freeing blocks not in datazone - block = 0, count = 4096
[  108.048751][    T9] kvaser_usb 2-1:7.69: error -ENODEV: Cannot get usb endpoint(s)
[  108.052619][ T6873] EXT4-fs error (device loop0): ext4_read_inode_bitmap:139: comm syz.0.338: Invalid inode bitmap blk 0 in block_group 0
[  108.055659][    T9] usb 2-1: USB disconnect, device number 10
[  108.065990][ T6873] EXT4-fs error (device loop0) in ext4_free_inode:361: Corrupt filesystem
[  108.069583][ T6873] EXT4-fs (loop0): 1 orphan inode deleted
[  108.075672][   T53] Quota error (device loop0): do_check_range: Getting block 0 out of range 1-8
[  108.080142][   T53] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u9:2: Failed to release dquot type 0
[  108.081285][ T6873] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  108.153838][ T5850] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.464764][ T6890] netlink: 12 bytes leftover after parsing attributes in process `syz.2.344'.
[  108.540362][ T6892] net veth1_virt_wifi : renamed from virt_wifi0
[  108.628223][ T6894] loop2: detected capacity change from 0 to 8
[  108.633346][ T6894] MTD: Attempt to mount non-MTD device "/dev/loop2"
[  108.732880][ T6894] cramfs: Error -3 while decompressing!
[  108.735262][ T6894] cramfs: ffffffff99beb628(26)->ffff88811dad0000(4096)
[  108.737855][ T6894] cramfs: bad data blocksize 3489655184
[  108.740351][ T6894] cramfs: Error -3 while decompressing!
[  108.752549][ T6894] cramfs: ffffffff99beb628(26)->ffff88811dad0000(4096)
[  108.761906][   T33] audit: type=1800 audit(1755548603.076:21): pid=6894 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.346" name="file2" dev="loop2" ino=348 res=0 errno=0
[  108.865879][ T6897] loop2: detected capacity change from 0 to 2048
[  110.562718][ T6942] loop0: detected capacity change from 0 to 32768
[  110.565910][ T6942] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.367 (6942)
[  110.632134][ T6950] ieee802154 phy0 wpan0: encryption failed: -22
[  110.882578][ T6942] BTRFS info (device loop0): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  110.896856][ T6942] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm
[  110.900577][ T6942] BTRFS info (device loop0): disk space caching is enabled
[  110.930863][ T6942] BTRFS warning (device loop0): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  111.368073][ T6942] BTRFS info (device loop0): rebuilding free space tree
[  111.375557][ T6942] BTRFS info (device loop0): disabling free space tree
[  111.381742][ T6942] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  111.385091][ T6942] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  111.440117][ T6942] BTRFS info (device loop0): balance: start -d -m
[  111.449619][ T6942] BTRFS info (device loop0): relocating block group 6881280 flags data|metadata
[  111.474024][ T6942] BTRFS info (device loop0): balance: paused
[  111.658813][ T5850] BTRFS info (device loop0): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  112.571541][    T9] usb 3-1: new full-speed USB device number 6 using dummy_hcd
[  112.586662][ T6999] netlink: 4 bytes leftover after parsing attributes in process `syz.0.383'.
[  112.590383][ T6999] netlink: 6 bytes leftover after parsing attributes in process `syz.0.383'.
[  112.741575][    T9] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xA4, changing to 0x84
[  112.749883][    T9] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid maxpacket 47999, setting to 64
[  112.761844][    T9] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  112.772658][    T9] usb 3-1: New USB device found, idVendor=1bc7, idProduct=1040, bcdDevice=b5.b1
[  112.777475][    T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  112.801185][    T9] usb 3-1: Product: syz
[  112.802912][    T9] usb 3-1: Manufacturer: syz
[  112.805243][    T9] usb 3-1: SerialNumber: syz
[  112.814686][    T9] usb 3-1: config 0 descriptor??
[  112.827693][ T6995] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  112.851461][    T9] option 3-1:0.0: GSM modem (1-port) converter detected
[  113.096686][ T5897] usb 3-1: USB disconnect, device number 6
[  113.134946][ T5897] option 3-1:0.0: device disconnected
[  113.229748][    T9] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  113.381759][    T9] usb 1-1: config index 0 descriptor too short (expected 3133, got 61)
[  113.385214][    T9] usb 1-1: config 0 has an invalid interface number: 156 but max is 1
[  113.512337][    T9] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  113.518817][    T9] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 2
[  113.522844][    T9] usb 1-1: config 0 has no interface number 0
[  113.525793][    T9] usb 1-1: config 0 interface 156 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[  113.530314][    T9] usb 1-1: config 0 interface 156 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  113.534275][    T9] usb 1-1: config 0 interface 156 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  113.539749][    T9] usb 1-1: New USB device found, idVendor=abcd, idProduct=cdee, bcdDevice= 5.b9
[  113.543575][    T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  113.549488][    T9] usb 1-1: config 0 descriptor??
[  113.555014][    T9] gspca_main: spca561-2.14.0 probing abcd:cdee
[  113.755162][ T7015] loop2: detected capacity change from 0 to 2048
[  113.762959][ T7015] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  113.764626][    T9] spca561 1-1:0.156: probe with driver spca561 failed with error -22
[  113.787446][    T9] usb 1-1: Quirk or no altset; falling back to MIDI 1.0
[  113.798676][    T9] usb 1-1: MIDIStreaming interface descriptor not found
[  113.848158][ T7017] program syz.2.391 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  113.905332][    T9] usb 1-1: USB disconnect, device number 7
[  114.148733][ T7028] loop2: detected capacity change from 0 to 64
[  114.191261][ T7028] Trying to free block not in datazone
[  114.193913][ T7028] Trying to free block not in datazone
[  114.203650][ T7028] Trying to free block not in datazone
[  114.219617][ T7028] Trying to free block not in datazone
[  114.222233][ T7028] minix_free_inode: bit 5 already cleared
[  114.477603][ T7044] netlink: 4 bytes leftover after parsing attributes in process `syz.1.404'.
[  114.689571][ T5851] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  114.803364][    T9] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  114.838834][ T5851] usb 1-1: Using ep0 maxpacket: 16
[  114.845709][ T5851] usb 1-1: unable to get BOS descriptor or descriptor too short
[  114.852636][ T5851] usb 1-1: config 3 has an invalid interface number: 200 but max is 0
[  114.855516][ T5851] usb 1-1: config 3 has no interface number 0
[  114.858007][ T5851] usb 1-1: config 3 interface 200 altsetting 128 bulk endpoint 0xF has invalid maxpacket 32
[  114.861324][ T5851] usb 1-1: config 3 interface 200 has no altsetting 0
[  114.866894][ T5851] usb 1-1: New USB device found, idVendor=294b, idProduct=7b59, bcdDevice=52.61
[  114.869798][ T5851] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  114.872321][ T5851] usb 1-1: Product: syz
[  114.873676][ T5851] usb 1-1: Manufacturer: syz
[  114.875220][ T5851] usb 1-1: SerialNumber: syz
[  114.886953][ T7040] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  114.979001][    T9] usb 3-1: Using ep0 maxpacket: 16
[  114.989365][    T9] usb 3-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  114.992843][    T9] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  114.997174][    T9] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  115.006339][    T9] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  115.010599][    T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  115.014118][    T9] usb 3-1: Product: syz
[  115.015994][    T9] usb 3-1: Manufacturer: syz
[  115.017886][    T9] usb 3-1: SerialNumber: syz
[  115.145172][ T5851] usb 1-1: USB disconnect, device number 8
[  115.453431][    T9] usb 3-1: 0:2 : does not exist
[  116.084615][    T9] usb 3-1: 1:0: failed to get current value for ch 0 (-22)
[  116.152197][    T9] usb 3-1: USB disconnect, device number 7
[  116.215836][ T6131] udevd[6131]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  116.243387][   T33] audit: type=1800 audit(1755548610.560:22): pid=7073 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.416" name="bus" dev="overlay" ino=676 res=0 errno=0
[  116.509352][ T7081] syz_tun: entered allmulticast mode
[  117.212003][ T7105] veth1_macvtap: left promiscuous mode
[  117.213816][ T7105] macsec0: entered promiscuous mode
[  117.215703][ T7105] macsec0: entered allmulticast mode
[  117.226420][ T7105] veth1_macvtap: entered promiscuous mode
[  117.230615][ T7105] veth1_macvtap: entered allmulticast mode
[  117.232856][ T7105] macsec0: left promiscuous mode
[  117.235104][ T7105] macsec0: left allmulticast mode
[  117.237163][ T7105] veth1_macvtap: left allmulticast mode
[  117.378275][ T5883] usb 1-1: new full-speed USB device number 9 using dummy_hcd
[  117.564948][ T5883] usb 1-1: config 0 has an invalid interface number: 60 but max is 0
[  117.568311][ T5883] usb 1-1: config 0 has no interface number 0
[  117.581068][ T5883] usb 1-1: config 0 interface 60 altsetting 0 endpoint 0xB has invalid maxpacket 1024, setting to 1023
[  117.596009][ T5883] usb 1-1: New USB device found, idVendor=1b3d, idProduct=01bb, bcdDevice= 0.11
[  117.599552][ T5883] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  117.610506][ T5883] usb 1-1: config 0 descriptor??
[  117.631137][ T5883] ftdi_sio 1-1:0.60: FTDI USB Serial Device converter detected
[  117.639383][ T5883] usb 1-1: Detected SIO
[  117.643100][ T5883] usb 1-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  117.643828][ T7112] loop1: detected capacity change from 0 to 128
[  117.863673][ T5883] usb 1-1: USB disconnect, device number 9
[  117.899854][ T5883] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  117.912772][ T5883] ftdi_sio 1-1:0.60: device disconnected
[  119.000250][ T7117] loop2: detected capacity change from 0 to 32768
[  119.041913][ T7117] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  119.101077][ T7117] XFS (loop2): Ending clean mount
[  119.115672][ T7117] XFS (loop2): Quotacheck needed: Please wait.
[  119.159294][ T7117] XFS (loop2): Quotacheck: Done.
[  119.189968][ T7117] XFS (loop2): User initiated shutdown received.
[  119.192852][ T7117] XFS (loop2): Log I/O Error (0x6) detected at xfs_fs_goingdown+0x71/0x150 (fs/xfs/xfs_fsops.c:476).  Shutting down filesystem.
[  119.198184][ T7117] XFS (loop2): Please unmount the filesystem and rectify the problem(s)
[  119.226083][ T5844] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  120.140951][ T7151] netlink: 24 bytes leftover after parsing attributes in process `syz.0.446'.
[  120.651646][   T33] audit: type=1326 audit(1755548614.972:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7175 comm="syz.0.456" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fa44af8ebe9 code=0x0
[  120.803672][ T7187] loop2: detected capacity change from 0 to 1024
[  120.858368][ T5844] hfsplus: bad catalog entry type
[  120.886814][ T1090] hfsplus: b-tree write err: -5, ino 4
[  121.187225][ T5872] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  121.274034][ T5872] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  121.338783][ T5872] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  121.419915][ T5872] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  121.629494][ T5872] bridge_slave_1: left allmulticast mode
[  121.632898][ T7198] loop0: detected capacity change from 0 to 1024
[  121.647562][ T5872] bridge_slave_1: left promiscuous mode
[  121.650688][ T5872] bridge0: port 2(bridge_slave_1) entered disabled state
[  121.656994][ T5852] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  121.663316][ T5852] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  121.668085][ T5852] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  121.673215][ T5852] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  121.677670][ T5852] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  121.696389][ T5872] bridge_slave_0: left allmulticast mode
[  121.699325][ T5872] bridge_slave_0: left promiscuous mode
[  121.715099][ T5872] bridge0: port 1(bridge_slave_0) entered disabled state
[  121.762037][ T7198] bio_check_eod: 95 callbacks suppressed
[  121.762060][ T7198] syz.0.468: attempt to access beyond end of device
[  121.762060][ T7198] loop0: rw=2049, sector=5778, nr_sectors = 2 limit=1024
[  121.783215][ T7198] Buffer I/O error on dev loop0, logical block 2889, lost async page write
[  122.194688][ T5872] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  122.200605][ T5872] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  122.204423][ T5872] bond0 (unregistering): Released all slaves
[  122.335594][ T7210] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  122.382802][ T7210] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  122.565273][ T7213] netlink: 'syz.1.470': attribute type 17 has an invalid length.
[  122.568418][ T7213] netlink: 148 bytes leftover after parsing attributes in process `syz.1.470'.
[  123.106444][ T5872] hsr_slave_0: left promiscuous mode
[  123.144189][ T5872] hsr_slave_1: left promiscuous mode
[  123.156495][ T5872] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  123.159399][ T5872] batman_adv: batadv0: Removing interface: batadv_slave_0
[  123.182260][ T5872] batman_adv: batadv0: Removing interface: batadv_slave_1
[  123.271536][ T5872] veth1_macvtap: left promiscuous mode
[  123.274214][ T5872] veth0_macvtap: left promiscuous mode
[  123.287599][ T5872] veth1_vlan: left promiscuous mode
[  123.289991][ T5872] veth0_vlan: left promiscuous mode
[  123.381509][ T7253] loop1: detected capacity change from 0 to 4096
[  123.387194][ T7253] ntfs3(loop1): Different NTFS sector size (1024) and media sector size (512).
[  123.412481][ T7253] ntfs3(loop1): $AttrDef is corrupted.
[  123.494148][ T7257] netlink: 28 bytes leftover after parsing attributes in process `syz.0.485'.
[  123.563326][ T7261] process 'syz.0.487' launched '/dev/fd/3' with NULL argv: empty string added
[  123.644088][ T7265] loop1: detected capacity change from 0 to 1764
[  123.774611][ T5852] Bluetooth: hci0: command tx timeout
[  123.822627][ T7265] loop1: detected capacity change from 0 to 32768
[  123.827290][ T7265] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.488 (7265)
[  123.841643][ T7265] BTRFS info (device loop1): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  123.849828][ T7265] BTRFS info (device loop1): using xxhash64 (xxhash64-generic) checksum algorithm
[  123.853201][ T7265] BTRFS info (device loop1): disk space caching is enabled
[  123.856096][ T7265] BTRFS warning (device loop1): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  123.953552][ T7265] BTRFS info (device loop1): rebuilding free space tree
[  123.965961][ T7265] BTRFS info (device loop1): disabling free space tree
[  123.968794][ T7265] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  123.972576][ T7265] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  124.266383][ T5872] team0 (unregistering): Port device team_slave_1 removed
[  124.308514][ T5872] team0 (unregistering): Port device team_slave_0 removed
[  124.457308][ T7282] BTRFS info (device loop1): balance: start -d -m
[  124.468264][ T7282] BTRFS info (device loop1): relocating block group 6881280 flags data|metadata
[  124.496402][ T7282] BTRFS info (device loop1): relocating block group 5242880 flags data|metadata
[  124.590767][ T7282] BTRFS info (device loop1): found 8 extents, stage: move data extents
[  124.626356][ T7282] BTRFS info (device loop1): found 1 extents, stage: update data pointers
[  124.650306][ T7282] BTRFS info (device loop1): balance: ended with status: 0
[  124.831217][ T7200] chnl_net:caif_netlink_parms(): no params data found
[  124.997668][ T7200] bridge0: port 1(bridge_slave_0) entered blocking state
[  125.000926][ T7200] bridge0: port 1(bridge_slave_0) entered disabled state
[  125.006315][ T7200] bridge_slave_0: entered allmulticast mode
[  125.011196][ T7200] bridge_slave_0: entered promiscuous mode
[  125.017802][ T7200] bridge0: port 2(bridge_slave_1) entered blocking state
[  125.020748][ T7200] bridge0: port 2(bridge_slave_1) entered disabled state
[  125.027279][ T7200] bridge_slave_1: entered allmulticast mode
[  125.032420][ T7200] bridge_slave_1: entered promiscuous mode
[  125.075414][ T7200] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  125.091520][ T7200] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  125.129396][ T7200] team0: Port device team_slave_0 added
[  125.134880][ T7200] team0: Port device team_slave_1 added
[  125.157127][ T7200] batman_adv: batadv0: Adding interface: batadv_slave_0
[  125.159810][ T7200] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  125.172194][ T7200] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  125.182694][ T7200] batman_adv: batadv0: Adding interface: batadv_slave_1
[  125.187213][ T7200] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  125.195486][ T5896] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  125.197902][ T7200] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  125.278910][ T7200] hsr_slave_0: entered promiscuous mode
[  125.282077][ T7200] hsr_slave_1: entered promiscuous mode
[  125.345301][ T5896] usb 1-1: Using ep0 maxpacket: 8
[  125.351841][ T5896] usb 1-1: config 0 interface 0 has no altsetting 0
[  125.356363][ T5896] usb 1-1: New USB device found, idVendor=20a0, idProduct=4287, bcdDevice= 0.00
[  125.361444][ T5896] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  125.369499][ T5896] usb 1-1: config 0 descriptor??
[  125.474622][ T7200] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  125.481236][ T7200] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  125.490166][ T7200] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  125.495493][ T7200] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  125.526225][ T7200] bridge0: port 2(bridge_slave_1) entered blocking state
[  125.528922][ T7200] bridge0: port 2(bridge_slave_1) entered forwarding state
[  125.533286][ T7200] bridge0: port 1(bridge_slave_0) entered blocking state
[  125.536278][ T7200] bridge0: port 1(bridge_slave_0) entered forwarding state
[  125.572941][ T7200] 8021q: adding VLAN 0 to HW filter on device bond0
[  125.587478][   T53] bridge0: port 1(bridge_slave_0) entered disabled state
[  125.596081][   T53] bridge0: port 2(bridge_slave_1) entered disabled state
[  125.618937][ T7200] 8021q: adding VLAN 0 to HW filter on device team0
[  125.638786][   T53] bridge0: port 1(bridge_slave_0) entered blocking state
[  125.641489][   T53] bridge0: port 1(bridge_slave_0) entered forwarding state
[  125.655567][   T53] bridge0: port 2(bridge_slave_1) entered blocking state
[  125.658518][   T53] bridge0: port 2(bridge_slave_1) entered forwarding state
[  125.805563][ T5896] hid-u2fzero 0003:20A0:4287.0007: hidraw0: USB HID v0.03 Device [HID 20a0:4287] on usb-dummy_hcd.0-1/input0
[  125.816938][ T7200] 8021q: adding VLAN 0 to HW filter on device batadv0
[  125.832426][ T5896] hid-u2fzero 0003:20A0:4287.0007: NitroKey U2F LED initialised
[  125.839775][ T5896] hid-u2fzero 0003:20A0:4287.0007: NitroKey U2F RNG initialised
[  125.863662][ T5852] Bluetooth: hci0: command tx timeout
[  125.898569][ T7200] veth0_vlan: entered promiscuous mode
[  125.911327][ T7200] veth1_vlan: entered promiscuous mode
[  125.944469][ T7200] veth0_macvtap: entered promiscuous mode
[  125.949475][ T7200] veth1_macvtap: entered promiscuous mode
[  125.962197][ T7200] batman_adv: batadv0: Interface activated: batadv_slave_0
[  125.971034][ T7200] batman_adv: batadv0: Interface activated: batadv_slave_1
[  125.981545][ T5872] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  125.993482][ T5896] usb 1-1: USB disconnect, device number 10
[  125.998302][ T5872] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  126.012211][ T5872] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  126.025991][ T5872] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  126.113792][   T53] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  126.119410][   T53] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  126.140485][   T32] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  126.144156][   T32] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  126.205530][ T7321] netlink: 140 bytes leftover after parsing attributes in process `syz.3.464'.
[  126.310391][ T7326] netlink: 203516 bytes leftover after parsing attributes in process `syz.3.493'.
[  126.317291][ T7326] netlink: 6320 bytes leftover after parsing attributes in process `syz.3.493'.
[  126.439844][ T7335] capability: warning: `syz.3.495' uses deprecated v2 capabilities in a way that may be insecure
[  126.508433][ T7340] netlink: 'syz.3.497': attribute type 1 has an invalid length.
[  126.511011][ T7340] netlink: 172 bytes leftover after parsing attributes in process `syz.3.497'.
[  126.522174][ T7340] netlink: 'syz.3.497': attribute type 1 has an invalid length.
[  126.698643][ T5849] BTRFS info (device loop1): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  126.836263][ T7354] loop3: detected capacity change from 0 to 64
[  126.851418][ T7354] minix: Unknown parameter '.'
[  127.411285][ T7387] bond0: option fail_over_mac: unable to set because the bond device has slaves
[  127.505686][ T7389] block nbd1: shutting down sockets
[  127.664233][ T7401] capability: warning: `syz.0.514' uses 32-bit capabilities (legacy support in use)
[  127.886197][ T7406] loop0: detected capacity change from 0 to 40427
[  127.889736][ T7406] F2FS-fs (loop0): Wrong SSA boundary, start(3584) end(4096) blocks(0)
[  127.892534][ T7406] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  127.896464][ T7406] F2FS-fs (loop0): build fault injection type: 0x6
[  127.900010][ T7406] F2FS-fs (loop0): invalid crc value
[  127.933334][ T7406] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  127.936803][ T5852] Bluetooth: hci0: command tx timeout
[  127.939814][ T7406] F2FS-fs (loop0): Start checkpoint disabled!
[  127.962863][ T7406] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  127.965791][ T7406] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6
[  128.067390][   T40] kworker/u10:2: attempt to access beyond end of device
[  128.067390][   T40] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  128.103013][   T40] CPU: 0 UID: 0 PID: 40 Comm: kworker/u10:2 Not tainted 6.17.0-rc1-syzkaller-00036-gdfc0f6373094-dirty #0 PREEMPT(full) 
[  128.103035][   T40] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  128.103043][   T40] Workqueue: writeback wb_workfn (flush-7:0)
[  128.103066][   T40] Call Trace:
[  128.103071][   T40]  <TASK>
[  128.103078][   T40]  dump_stack_lvl+0x189/0x250
[  128.103098][   T40]  ? __pfx_dump_stack_lvl+0x10/0x10
[  128.103112][   T40]  ? __pfx_queue_work_on+0x10/0x10
[  128.103122][   T40]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  128.103139][   T40]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  128.103162][   T40]  f2fs_handle_critical_error+0x37c/0x540
[  128.103187][   T40]  f2fs_write_end_io+0x886/0xb60
[  128.103214][   T40]  __submit_merged_bio+0x27a/0x6a0
[  128.103238][   T40]  __submit_merged_write_cond+0x255/0x530
[  128.103262][   T40]  f2fs_write_data_pages+0x261d/0x3000
[  128.103308][   T40]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  128.103339][   T40]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[  128.103381][   T40]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[  128.103399][   T40]  ? look_up_lock_class+0x74/0x170
[  128.103425][   T40]  ? trace_f2fs_writepages+0x7f/0x200
[  128.103444][   T40]  ? f2fs_write_node_pages+0x478/0x6e0
[  128.103465][   T40]  ? __pfx_f2fs_write_node_pages+0x10/0x10
[  128.103494][   T40]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  128.103514][   T40]  do_writepages+0x32e/0x550
[  128.103536][   T40]  ? reacquire_held_locks+0x127/0x1d0
[  128.103549][   T40]  ? writeback_sb_inodes+0x384/0x1010
[  128.103573][   T40]  __writeback_single_inode+0x145/0xff0
[  128.103589][   T40]  ? do_raw_spin_unlock+0x4d/0x240
[  128.103617][   T40]  writeback_sb_inodes+0x6c7/0x1010
[  128.103655][   T40]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  128.103731][   T40]  ? rcu_is_watching+0x15/0xb0
[  128.103753][   T40]  wb_writeback+0x43b/0xaf0
[  128.103777][   T40]  ? queue_io+0x3c1/0x590
[  128.103796][   T40]  ? __pfx_wb_writeback+0x10/0x10
[  128.103820][   T40]  ? _raw_spin_unlock_irq+0x23/0x50
[  128.103840][   T40]  wb_workfn+0x409/0xef0
[  128.103867][   T40]  ? __pfx_wb_workfn+0x10/0x10
[  128.103886][   T40]  ? __lock_acquire+0xab9/0xd20
[  128.103914][   T40]  ? process_scheduled_works+0x9ef/0x17b0
[  128.103933][   T40]  ? _raw_spin_unlock_irq+0x23/0x50
[  128.103948][   T40]  ? process_scheduled_works+0x9ef/0x17b0
[  128.103960][   T40]  ? process_scheduled_works+0x9ef/0x17b0
[  128.103974][   T40]  process_scheduled_works+0xae1/0x17b0
[  128.104014][   T40]  ? __pfx_process_scheduled_works+0x10/0x10
[  128.104042][   T40]  worker_thread+0x8a0/0xda0
[  128.104079][   T40]  kthread+0x711/0x8a0
[  128.104098][   T40]  ? __pfx_worker_thread+0x10/0x10
[  128.104111][   T40]  ? __pfx_kthread+0x10/0x10
[  128.104129][   T40]  ? _raw_spin_unlock_irq+0x23/0x50
[  128.104145][   T40]  ? lockdep_hardirqs_on+0x9c/0x150
[  128.104160][   T40]  ? __pfx_kthread+0x10/0x10
[  128.104177][   T40]  ret_from_fork+0x3fc/0x770
[  128.104194][   T40]  ? __pfx_ret_from_fork+0x10/0x10
[  128.104213][   T40]  ? __switch_to_asm+0x39/0x70
[  128.104229][   T40]  ? __switch_to_asm+0x33/0x70
[  128.104244][   T40]  ? __pfx_kthread+0x10/0x10
[  128.104261][   T40]  ret_from_fork_asm+0x1a/0x30
[  128.104292][   T40]  </TASK>
[  128.104299][   T40] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  128.278008][ T7424] input: syz1 as /devices/virtual/input/input11
[  128.393086][ T7414] loop3: detected capacity change from 0 to 32768
[  128.422169][ T7414] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  128.481491][ T7414] XFS (loop3): Ending clean mount
[  128.486800][ T7414] XFS (loop3): Quotacheck needed: Please wait.
[  128.543582][ T7414] XFS (loop3): Quotacheck: Done.
[  128.606001][ T7200] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  128.812842][ T7446] netlink: 6032 bytes leftover after parsing attributes in process `syz.1.531'.
[  128.918140][ T7452] netlink: 116 bytes leftover after parsing attributes in process `syz.0.532'.
[  129.231906][ T5851] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  129.325549][ T7476] loop1: detected capacity change from 0 to 512
[  129.334274][ T7476] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 0 not in group (block 2)!
[  129.337906][ T7476] EXT4-fs (loop1): group descriptors corrupted!
[  129.381722][ T5851] usb 4-1: Using ep0 maxpacket: 16
[  129.386269][ T5851] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  129.390428][ T5851] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  129.394290][ T5851] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  129.394909][ T7468] loop0: detected capacity change from 0 to 40427
[  129.398171][ T5851] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[  129.406240][ T7468] F2FS-fs (loop0): invalid crc value
[  129.428945][ T5851] usb 4-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  129.449066][ T5851] usb 4-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  129.458707][ T5851] usb 4-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  129.461340][ T5851] usb 4-1: Manufacturer: syz
[  129.476016][ T7468] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  129.479929][ T5851] usb 4-1: config 0 descriptor??
[  129.487473][ T7468] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  129.991254][ T5851] rc_core: IR keymap rc-hauppauge not found
[  129.993231][ T5851] Registered IR keymap rc-empty
[  129.995101][ T5851] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  130.011574][ T5852] Bluetooth: hci0: command tx timeout
[  130.014105][ T5851] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  130.032890][ T5851] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0
[  130.042993][ T5850] syz-executor: attempt to access beyond end of device
[  130.042993][ T5850] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  130.050615][ T5850] CPU: 0 UID: 0 PID: 5850 Comm: syz-executor Not tainted 6.17.0-rc1-syzkaller-00036-gdfc0f6373094-dirty #0 PREEMPT(full) 
[  130.050636][ T5850] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  130.050638][ T5851] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0/input12
[  130.050644][ T5850] Call Trace:
[  130.050650][ T5850]  <TASK>
[  130.050657][ T5850]  dump_stack_lvl+0x189/0x250
[  130.050681][ T5850]  ? __pfx_dump_stack_lvl+0x10/0x10
[  130.050697][ T5850]  ? __pfx_queue_work_on+0x10/0x10
[  130.050709][ T5850]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  130.050727][ T5850]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  130.050755][ T5850]  f2fs_handle_critical_error+0x37c/0x540
[  130.050780][ T5850]  f2fs_write_end_io+0x886/0xb60
[  130.050809][ T5850]  __submit_merged_bio+0x27a/0x6a0
[  130.050833][ T5850]  __submit_merged_write_cond+0x255/0x530
[  130.050857][ T5850]  f2fs_write_data_pages+0x261d/0x3000
[  130.050906][ T5850]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  130.050978][ T5850]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  130.050996][ T5850]  ? lockdep_hardirqs_on+0x9c/0x150
[  130.051016][ T5850]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  130.051045][ T5850]  ? __lock_acquire+0xab9/0xd20
[  130.051073][ T5850]  ? do_raw_spin_lock+0x121/0x290
[  130.051100][ T5850]  ? do_raw_spin_unlock+0x4d/0x240
[  130.051134][ T5850]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  130.051157][ T5850]  do_writepages+0x32e/0x550
[  130.051187][ T5850]  ? do_raw_spin_unlock+0x4d/0x240
[  130.051208][ T5850]  filemap_fdatawrite+0x199/0x240
[  130.051227][ T5850]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  130.051290][ T5850]  ? do_raw_spin_unlock+0x4d/0x240
[  130.051311][ T5850]  f2fs_sync_dirty_inodes+0x31f/0x830
[  130.051340][ T5850]  f2fs_write_checkpoint+0x95a/0x1df0
[  130.051377][ T5850]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  130.051443][ T5850]  ? f2fs_stop_gc_thread+0x7f/0xb0
[  130.051457][ T5850]  ? kfree+0x18e/0x440
[  130.051474][ T5850]  ? kill_f2fs_super+0x298/0x6c0
[  130.051493][ T5850]  kill_f2fs_super+0x2c3/0x6c0
[  130.051514][ T5850]  ? __pfx_kill_f2fs_super+0x10/0x10
[  130.051552][ T5850]  ? radix_tree_delete_item+0x2b6/0x400
[  130.051576][ T5850]  ? shrinker_free+0x2ce/0x3e0
[  130.051594][ T5850]  deactivate_locked_super+0xbc/0x130
[  130.051613][ T5850]  cleanup_mnt+0x425/0x4c0
[  130.051629][ T5850]  ? lockdep_hardirqs_on+0x9c/0x150
[  130.051649][ T5850]  task_work_run+0x1d4/0x260
[  130.051670][ T5850]  ? __pfx_task_work_run+0x10/0x10
[  130.051685][ T5850]  ? __x64_sys_umount+0x122/0x160
[  130.051709][ T5850]  ? exit_to_user_mode_loop+0x40/0x110
[  130.051733][ T5850]  exit_to_user_mode_loop+0xec/0x110
[  130.051752][ T5850]  do_syscall_64+0x2bd/0x3b0
[  130.051769][ T5850]  ? lockdep_hardirqs_on+0x9c/0x150
[  130.051785][ T5850]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  130.051799][ T5850]  ? exc_page_fault+0x9f/0xf0
[  130.051816][ T5850]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  130.051829][ T5850] RIP: 0033:0x7fa44af8ff17
[  130.051841][ T5850] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  130.051851][ T5850] RSP: 002b:00007ffcd05171f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  130.051865][ T5850] RAX: 0000000000000000 RBX: 00007fa44b011c05 RCX: 00007fa44af8ff17
[  130.051874][ T5850] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffcd05172b0
[  130.051882][ T5850] RBP: 00007ffcd05172b0 R08: 0000000000000000 R09: 0000000000000000
[  130.051889][ T5850] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffcd0518340
[  130.051896][ T5850] R13: 00007fa44b011c05 R14: 000000000001fb6d R15: 00007ffcd0518380
[  130.051920][ T5850]  </TASK>
[  130.056067][ T5850] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  130.083776][ T5851] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  130.221309][ T5851] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  130.241571][ T5851] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  130.261215][ T5851] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  130.281291][ T5851] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  130.301349][ T5851] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  130.321935][ T5851] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  130.351256][ T5851] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  130.371232][ T5851] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  130.391180][ T5851] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  130.411260][ T5851] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  130.433158][ T5851] mceusb 4-1:0.0: Registered 424242424242 with mce emulator interface version 1
[  130.436202][ T5851] mceusb 4-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[  130.462791][ T5851] usb 4-1: USB disconnect, device number 2
[  130.643569][ T7491] loop0: detected capacity change from 0 to 32768
[  130.646663][ T7491] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.547 (7491)
[  130.664836][ T7491] BTRFS info (device loop0): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  130.678642][ T7491] BTRFS info (device loop0): using blake2b (blake2b-256-generic) checksum algorithm
[  130.685115][ T7491] BTRFS info (device loop0): using free-space-tree
[  130.845164][ T5850] BTRFS info (device loop0): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  131.260337][ T7535] netlink: 8 bytes leftover after parsing attributes in process `syz.3.558'.
[  131.561954][ T7536] loop1: detected capacity change from 0 to 2048
[  131.730888][ T7536] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  131.989223][ T5849] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.503973][ T1365] ieee802154 phy0 wpan0: encryption failed: -22
[  132.506191][ T1365] ieee802154 phy1 wpan1: encryption failed: -22
[  132.555233][ T7565] loop1: detected capacity change from 0 to 512
[  132.570502][ T7567] kAFS: No cell specified
[  132.590540][ T7565] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  132.596821][ T7565] ext4 filesystem being mounted at /193/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  132.621628][ T7565] EXT4-fs warning (device loop1): verify_group_input:137: Cannot add at group 25 (only 1 groups)
[  132.664278][ T5849] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.909002][ T7586] unknown channel width for channel at 909000KHz?
[  132.919754][ T7586] unknown channel width for channel at 909000KHz?
[  132.922419][ T7586] unknown channel width for channel at 909000KHz?
[  132.994999][ T7588] loop3: detected capacity change from 0 to 1764
[  133.031354][ T7590] netlink: 224 bytes leftover after parsing attributes in process `syz.0.581'.
[  133.090469][ T7593] iso9660: Corrupted directory entry in block 2 of inode 1920
[  133.097767][ T7592] syzkaller1: tun_chr_ioctl cmd 1074025675
[  133.115879][ T7592] syzkaller1: persist disabled
[  133.638499][ T7604] loop3: detected capacity change from 0 to 32768
[  133.651459][ T7604] ocfs2: Slot 0 on device (7,3) was already allocated to this node!
[  133.694369][ T7604] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  133.715588][ T7626] PKCS7: Unknown OID: [4] 0.38.35.0.951690.11253
[  133.718540][ T7626] PKCS7: Only support pkcs7_signedData type
[  133.877409][   T12] (kworker/u8:0,12,0):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #72: rec_len % 4 != 0 - offset=312, inode=13845347915746889, rec_len=25793, name_len=214
[  133.925451][ T7604] (syz.3.586,7604,1):ocfs2_rename:1702 ERROR: status = -39
[  133.974179][ T7200] ocfs2: Unmounting device (7,3) on (node local)
[  134.461348][ T7635] netlink: 8 bytes leftover after parsing attributes in process `syz.0.596'.
[  134.834551][ T7644] netlink: 48 bytes leftover after parsing attributes in process `syz.0.600'.
[  135.153027][ T7647] netlink: 8 bytes leftover after parsing attributes in process `syz.0.601'.
[  136.457106][ T7696] loop1: detected capacity change from 0 to 16
[  136.464025][ T7696] MTD: Attempt to mount non-MTD device "/dev/loop1"
[  136.498863][ T5851] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  136.529776][ T7699] loop1: detected capacity change from 0 to 256
[  136.542967][ T7699] exFAT-fs (loop1): failed to read sector(0x800000078)
[  136.547961][ T7699] exFAT-fs (loop1): failed to load upcase table
[  136.555555][ T7699] exFAT-fs (loop1): failed to recognize exfat type
[  136.652061][ T5851] usb 1-1: unable to get BOS descriptor or descriptor too short
[  136.652372][ T7710] tmpfs: Bad value for 'mpol'
[  136.660459][ T5851] usb 1-1: config 6 has an invalid interface number: 2 but max is 0
[  136.662924][ T5851] usb 1-1: config 6 has no interface number 0
[  136.665194][ T5851] usb 1-1: config 6 interface 2 altsetting 5 bulk endpoint 0x5 has invalid maxpacket 32
[  136.673810][ T5851] usb 1-1: config 6 interface 2 has no altsetting 0
[  136.686376][ T5851] usb 1-1: New USB device found, idVendor=110a, idProduct=1151, bcdDevice=ce.71
[  136.691739][ T5851] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  136.694309][ T5851] usb 1-1: Product: syz
[  136.695659][ T5851] usb 1-1: Manufacturer: syz
[  136.697186][ T5851] usb 1-1: SerialNumber: syz
[  136.722214][ T7711] netlink: 'syz.3.623': attribute type 20 has an invalid length.
[  136.742570][ T7678] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  136.789296][ T7711] dvmrp1: entered allmulticast mode
[  136.804699][ T7711] dvmrp1: left allmulticast mode
[  137.084849][ T5851] ti_usb_3410_5052 1-1:6.2: TI USB 3410 1 port adapter converter detected
[  137.091015][ T5851] ti_usb_3410_5052 1-1:6.2: missing endpoints
[  137.109313][ T5851] usb 1-1: USB disconnect, device number 11
[  137.246459][ T7716] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -2
[  137.250511][ T7716] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  138.839405][ T7725] loop1: detected capacity change from 0 to 32768
[  138.904360][ T7725] ocfs2: Mounting device (7,1) on (node local, slot 0) with writeback data mode.
[  138.949088][ T7725] 
[  138.949922][ T7725] ======================================================
[  138.952262][ T7725] WARNING: possible circular locking dependency detected
[  138.954385][ T7725] 6.17.0-rc1-syzkaller-00036-gdfc0f6373094-dirty #0 Not tainted
[  138.957691][ T7725] ------------------------------------------------------
[  138.960271][ T7725] syz.1.626/7725 is trying to acquire lock:
[  138.962169][ T7725] ffff888113884ee0 (&ocfs2_file_ip_alloc_sem_key){++++}-{4:4}, at: ocfs2_try_remove_refcount_tree+0xb6/0x320
[  138.965938][ T7725] 
[  138.965938][ T7725] but task is already holding lock:
[  138.968701][ T7725] ffff888113884f78 (&oi->ip_xattr_sem){++++}-{4:4}, at: ocfs2_try_remove_refcount_tree+0xa4/0x320
[  138.972480][ T7725] 
[  138.972480][ T7725] which lock already depends on the new lock.
[  138.972480][ T7725] 
[  138.975753][ T7725] 
[  138.975753][ T7725] the existing dependency chain (in reverse order) is:
[  138.978804][ T7725] 
[  138.978804][ T7725] -> #4 (&oi->ip_xattr_sem){++++}-{4:4}:
[  138.981185][ T7725]        lock_acquire+0x120/0x360
[  138.982823][ T7725]        down_read+0x46/0x2e0
[  138.984370][ T7725]        ocfs2_init_acl+0x2f9/0x720
[  138.986022][ T7725]        ocfs2_mknod+0x1321/0x2050
[  138.987705][ T7725]        ocfs2_create+0x1a5/0x440
[  138.989488][ T7725]        path_openat+0x14f4/0x3830
[  138.991102][ T7725]        do_filp_open+0x1fa/0x410
[  138.992784][ T7725]        do_sys_openat2+0x121/0x1c0
[  138.994543][ T7725]        __x64_sys_openat+0x138/0x170
[  138.996667][ T7725]        do_syscall_64+0xfa/0x3b0
[  138.998318][ T7725]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  139.000340][ T7725] 
[  139.000340][ T7725] -> #3 (jbd2_handle){++++}-{0:0}:
[  139.002838][ T7725]        lock_acquire+0x120/0x360
[  139.004464][ T7725]        start_this_handle+0x1fa7/0x21c0
[  139.006298][ T7725]        jbd2__journal_start+0x2c1/0x5b0
[  139.008501][ T7725]        jbd2_journal_start+0x2a/0x40
[  139.010309][ T7725]        ocfs2_start_trans+0x376/0x6d0
[  139.012042][ T7725]        ocfs2_modify_bh+0xe8/0x470
[  139.013666][ T7725]        ocfs2_local_read_info+0x1465/0x17e0
[  139.015589][ T7725]        dquot_load_quota_sb+0x791/0xbd0
[  139.017430][ T7725]        dquot_load_quota_inode+0x2e1/0x5d0
[  139.019264][ T7725]        ocfs2_enable_quotas+0x1c6/0x450
[  139.021032][ T7725]        ocfs2_fill_super+0x50fe/0x63c0
[  139.022740][ T7725]        get_tree_bdev_flags+0x40e/0x4d0
[  139.024507][ T7725]        vfs_get_tree+0x92/0x2b0
[  139.025995][ T7725]        do_new_mount+0x2a2/0x9e0
[  139.027773][ T7725]        __se_sys_mount+0x317/0x410
[  139.029634][ T7725]        do_syscall_64+0xfa/0x3b0
[  139.031265][ T7725]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  139.033373][ T7725] 
[  139.033373][ T7725] -> #2 (&journal->j_trans_barrier){.+.+}-{4:4}:
[  139.036376][ T7725]        lock_acquire+0x120/0x360
[  139.038369][ T7725]        down_read+0x46/0x2e0
[  139.039865][ T7725]        ocfs2_start_trans+0x36a/0x6d0
[  139.041551][ T7725]        ocfs2_modify_bh+0xe8/0x470
[  139.043190][ T7725]        ocfs2_local_read_info+0x1465/0x17e0
[  139.045126][ T7725]        dquot_load_quota_sb+0x791/0xbd0
[  139.046911][ T7725]        dquot_load_quota_inode+0x2e1/0x5d0
[  139.048746][ T7725]        ocfs2_enable_quotas+0x1c6/0x450
[  139.050522][ T7725]        ocfs2_fill_super+0x50fe/0x63c0
[  139.052326][ T7725]        get_tree_bdev_flags+0x40e/0x4d0
[  139.054145][ T7725]        vfs_get_tree+0x92/0x2b0
[  139.055715][ T7725]        do_new_mount+0x2a2/0x9e0
[  139.057292][ T7725]        __se_sys_mount+0x317/0x410
[  139.059064][ T7725]        do_syscall_64+0xfa/0x3b0
[  139.060622][ T7725]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  139.062612][ T7725] 
[  139.062612][ T7725] -> #1 (sb_internal#4){.+.+}-{0:0}:
[  139.065020][ T7725]        reacquire_held_locks+0x127/0x1d0
[  139.067107][ T7725]        lock_release+0x1b4/0x3e0
[  139.068805][ T7725]        up_write+0x2d/0x420
[  139.070374][ T7725]        ocfs2_free_alloc_context+0x97/0x1a0
[  139.072473][ T7725]        ocfs2_write_begin_nolock+0x4296/0x4340
[  139.074536][ T7725]        ocfs2_write_begin+0x1bb/0x310
[  139.076404][ T7725]        generic_perform_write+0x2c5/0x900
[  139.078575][ T7725]        ocfs2_file_write_iter+0x157a/0x1d10
[  139.080480][ T7725]        vfs_write+0x5c9/0xb30
[  139.082146][ T7725]        ksys_write+0x145/0x250
[  139.084008][ T7725]        do_syscall_64+0xfa/0x3b0
[  139.085983][ T7725]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  139.088563][ T7725] 
[  139.088563][ T7725] -> #0 (&ocfs2_file_ip_alloc_sem_key){++++}-{4:4}:
[  139.091664][ T7725]        validate_chain+0xb9b/0x2140
[  139.093532][ T7725]        __lock_acquire+0xab9/0xd20
[  139.095438][ T7725]        lock_acquire+0x120/0x360
[  139.097371][ T7725]        down_write+0x96/0x1f0
[  139.099281][ T7725]        ocfs2_try_remove_refcount_tree+0xb6/0x320
[  139.101601][ T7725]        ocfs2_truncate_file+0xda0/0x1420
[  139.103633][ T7725]        ocfs2_setattr+0x1520/0x1b40
[  139.105383][ T7725]        notify_change+0xb36/0xe40
[  139.107020][ T7725]        do_truncate+0x1a4/0x220
[  139.108661][ T7725]        path_openat+0x306c/0x3830
[  139.110251][ T7725]        do_filp_open+0x1fa/0x410
[  139.112054][ T7725]        do_sys_openat2+0x121/0x1c0
[  139.113728][ T7725]        __x64_sys_open+0x11e/0x150
[  139.115766][ T7725]        do_syscall_64+0xfa/0x3b0
[  139.117812][ T7725]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  139.120411][ T7725] 
[  139.120411][ T7725] other info that might help us debug this:
[  139.120411][ T7725] 
[  139.124151][ T7725] Chain exists of:
[  139.124151][ T7725]   &ocfs2_file_ip_alloc_sem_key --> jbd2_handle --> &oi->ip_xattr_sem
[  139.124151][ T7725] 
[  139.129162][ T7725]  Possible unsafe locking scenario:
[  139.129162][ T7725] 
[  139.131789][ T7725]        CPU0                    CPU1
[  139.133583][ T7725]        ----                    ----
[  139.135409][ T7725]   lock(&oi->ip_xattr_sem);
[  139.137024][ T7725]                                lock(jbd2_handle);
[  139.139060][ T7725]                                lock(&oi->ip_xattr_sem);
[  139.141560][ T7725]   lock(&ocfs2_file_ip_alloc_sem_key);
[  139.143682][ T7725] 
[  139.143682][ T7725]  *** DEADLOCK ***
[  139.143682][ T7725] 
[  139.146819][ T7725] 3 locks held by syz.1.626/7725:
[  139.148885][ T7725]  #0: ffff88810ad8c428 (sb_writers#20){.+.+}-{0:0}, at: mnt_want_write+0x41/0x90
[  139.152298][ T7725]  #1: ffff888113885240 (&sb->s_type->i_mutex_key#28){+.+.}-{4:4}, at: do_truncate+0x171/0x220
[  139.155992][ T7725]  #2: ffff888113884f78 (&oi->ip_xattr_sem){++++}-{4:4}, at: ocfs2_try_remove_refcount_tree+0xa4/0x320
[  139.159644][ T7725] 
[  139.159644][ T7725] stack backtrace:
[  139.161769][ T7725] CPU: 1 UID: 0 PID: 7725 Comm: syz.1.626 Not tainted 6.17.0-rc1-syzkaller-00036-gdfc0f6373094-dirty #0 PREEMPT(full) 
[  139.161788][ T7725] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  139.161798][ T7725] Call Trace:
[  139.161804][ T7725]  <TASK>
[  139.161812][ T7725]  dump_stack_lvl+0x189/0x250
[  139.161833][ T7725]  ? __pfx_dump_stack_lvl+0x10/0x10
[  139.161878][ T7725]  ? __pfx__printk+0x10/0x10
[  139.161896][ T7725]  ? print_lock_name+0xde/0x100
[  139.161913][ T7725]  print_circular_bug+0x2ee/0x310
[  139.161930][ T7725]  check_noncircular+0x134/0x160
[  139.161948][ T7725]  validate_chain+0xb9b/0x2140
[  139.161972][ T7725]  __lock_acquire+0xab9/0xd20
[  139.161993][ T7725]  ? ocfs2_try_remove_refcount_tree+0xb6/0x320
[  139.162009][ T7725]  lock_acquire+0x120/0x360
[  139.162028][ T7725]  ? ocfs2_try_remove_refcount_tree+0xb6/0x320
[  139.162050][ T7725]  down_write+0x96/0x1f0
[  139.162062][ T7725]  ? ocfs2_try_remove_refcount_tree+0xb6/0x320
[  139.162076][ T7725]  ? __pfx_down_write+0x10/0x10
[  139.162096][ T7725]  ocfs2_try_remove_refcount_tree+0xb6/0x320
[  139.162111][ T7725]  ? __pfx_ocfs2_try_remove_refcount_tree+0x10/0x10
[  139.162126][ T7725]  ? up_write+0x1c4/0x420
[  139.162140][ T7725]  ocfs2_truncate_file+0xda0/0x1420
[  139.162162][ T7725]  ? __pfx_ocfs2_truncate_file+0x10/0x10
[  139.162179][ T7725]  ? do_raw_spin_unlock+0x4d/0x240
[  139.162195][ T7725]  ? _raw_spin_unlock+0x28/0x50
[  139.162209][ T7725]  ? ocfs2_inode_lock_tracker+0x3ec/0x660
[  139.162225][ T7725]  ? __pfx_ocfs2_inode_lock_tracker+0x10/0x10
[  139.162238][ T7725]  ? ocfs2_rw_lock+0x13a/0x240
[  139.162249][ T7725]  ? __pfx___dquot_initialize+0x10/0x10
[  139.162262][ T7725]  ? __pfx_ocfs2_rw_lock+0x10/0x10
[  139.162273][ T7725]  ? setattr_prepare+0x1e7/0xac0
[  139.162290][ T7725]  ? inode_newsize_ok+0x11b/0x1c0
[  139.162306][ T7725]  ocfs2_setattr+0x1520/0x1b40
[  139.162327][ T7725]  ? __pfx_ocfs2_setattr+0x10/0x10
[  139.162344][ T7725]  ? ktime_get_coarse_real_ts64_mg+0x52/0x1e0
[  139.162360][ T7725]  ? seqcount_lockdep_reader_access+0x175/0x1c0
[  139.162380][ T7725]  ? ktime_get_coarse_real_ts64_mg+0x1be/0x1e0
[  139.162398][ T7725]  ? current_time+0x222/0x370
[  139.162410][ T7725]  ? evm_inode_setattr+0x1b6/0x7d0
[  139.162426][ T7725]  ? __pfx_current_time+0x10/0x10
[  139.162441][ T7725]  ? try_break_deleg+0x79/0x130
[  139.162455][ T7725]  ? __pfx_ocfs2_setattr+0x10/0x10
[  139.162472][ T7725]  notify_change+0xb36/0xe40
[  139.162490][ T7725]  do_truncate+0x1a4/0x220
[  139.162507][ T7725]  ? __pfx_do_truncate+0x10/0x10
[  139.162521][ T7725]  ? apparmor_file_truncate+0x23e/0x2d0
[  139.162543][ T7725]  path_openat+0x306c/0x3830
[  139.162558][ T7725]  ? arch_stack_walk+0xfc/0x150
[  139.162579][ T7725]  ? stack_depot_save_flags+0x40/0x860
[  139.162600][ T7725]  ? __pfx_path_openat+0x10/0x10
[  139.162615][ T7725]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  139.162636][ T7725]  do_filp_open+0x1fa/0x410
[  139.162651][ T7725]  ? __lock_acquire+0xab9/0xd20
[  139.162671][ T7725]  ? __pfx_do_filp_open+0x10/0x10
[  139.162692][ T7725]  ? _raw_spin_unlock+0x28/0x50
[  139.162704][ T7725]  ? alloc_fd+0x64c/0x6c0
[  139.162723][ T7725]  do_sys_openat2+0x121/0x1c0
[  139.162749][ T7725]  ? __se_sys_futex+0x36f/0x400
[  139.162768][ T7725]  ? __pfx_do_sys_openat2+0x10/0x10
[  139.162784][ T7725]  ? __pfx___se_sys_futex+0x10/0x10
[  139.162798][ T7725]  ? rcu_is_watching+0x15/0xb0
[  139.162808][ T7725]  __x64_sys_open+0x11e/0x150
[  139.162818][ T7725]  do_syscall_64+0xfa/0x3b0
[  139.162829][ T7725]  ? lockdep_hardirqs_on+0x9c/0x150
[  139.162864][ T7725]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  139.162873][ T7725]  ? exc_page_fault+0x9f/0xf0
[  139.162883][ T7725]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  139.162892][ T7725] RIP: 0033:0x7f439378ebe9
[  139.162901][ T7725] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  139.162909][ T7725] RSP: 002b:00007f4394693038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[  139.162918][ T7725] RAX: ffffffffffffffda RBX: 00007f43939b5fa0 RCX: 00007f439378ebe9
[  139.162925][ T7725] RDX: 0000000000000020 RSI: 000000000014927e RDI: 00002000000001c0
[  139.162930][ T7725] RBP: 00007f4393811e19 R08: 0000000000000000 R09: 0000000000000000
[  139.162954][ T7725] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  139.162959][ T7725] R13: 00007f43939b6038 R14: 00007f43939b5fa0 R15: 00007fffac10db78
[  139.162969][ T7725]  </TASK>
[  139.163073][    C1] vkms_vblank_simulate: vblank timer overrun
[  139.312986][    C1] vkms_vblank_simulate: vblank timer overrun
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  139.469366][ T5849] ocfs2: Unmounting device (7,1) on (node local)
[  139.659786][ T6006] bridge0: port 3(syz_tun) entered disabled state
[  139.664352][ T6006] syz_tun (unregistering): left allmulticast mode
[  139.670481][ T6006] syz_tun (unregistering): left promiscuous mode
[  139.674349][ T6006] bridge0: port 3(syz_tun) entered disabled state
[  139.689950][ T6218] syz_tun (unregistering): left allmulticast mode
[  139.873283][ T5872] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  139.902476][ T5872] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  139.941774][ T5872] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  139.992629][ T5872] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  140.084575][ T5872] bridge_slave_1: left allmulticast mode
[  140.087180][ T5872] bridge_slave_1: left promiscuous mode
[  140.089470][ T5872] bridge0: port 2(bridge_slave_1) entered disabled state
[  140.093646][ T5872] bridge_slave_0: left allmulticast mode
[  140.095939][ T5872] bridge_slave_0: left promiscuous mode
[  140.099540][ T5872] bridge0: port 1(bridge_slave_0) entered disabled state
[  140.204132][ T5872] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  140.211613][ T5872] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  140.215953][ T5872] bond0 (unregistering): Released all slaves
[  140.271010][ T5872] tipc: Left network mode
[  140.360926][ T5872] hsr_slave_0: left promiscuous mode
[  140.363800][ T5872] hsr_slave_1: left promiscuous mode
[  140.369511][ T5872] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  140.372594][ T5872] batman_adv: batadv0: Removing interface: batadv_slave_0
[  140.376476][ T5872] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  140.379443][ T5872] batman_adv: batadv0: Removing interface: batadv_slave_1
[  140.383361][ T5872] batman_adv: batadv0: Interface deactivated: dummy0
[  140.386849][ T5872] batman_adv: batadv0: Removing interface: dummy0
[  140.392227][ T5872] veth1_macvtap: left promiscuous mode
[  140.394460][ T5872] veth0_macvtap: left promiscuous mode
[  140.398257][ T5872] veth1_vlan: left promiscuous mode
[  140.400451][ T5872] veth0_vlan: left promiscuous mode
[  140.451018][ T5872] pim6reg (unregistering): left allmulticast mode
[  140.557254][ T5872] team0 (unregistering): Port device team_slave_1 removed
[  140.584098][ T5872] team0 (unregistering): Port device team_slave_0 removed
[  140.960453][ T5872] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  141.031403][ T5872] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  141.070871][ T5872] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  141.131061][ T5872] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  141.235791][ T5872] bridge_slave_1: left allmulticast mode
[  141.238400][ T5872] bridge_slave_1: left promiscuous mode
[  141.240774][ T5872] bridge0: port 2(bridge_slave_1) entered disabled state
[  141.245084][ T5872] bridge_slave_0: left allmulticast mode
[  141.250043][ T5872] bridge_slave_0: left promiscuous mode
[  141.252447][ T5872] bridge0: port 1(bridge_slave_0) entered disabled state
[  141.352794][ T5872] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  141.359044][ T5872] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  141.363315][ T5872] bond0 (unregistering): Released all slaves
[  141.493879][ T5872] hsr_slave_0: left promiscuous mode
[  141.497965][ T5872] hsr_slave_1: left promiscuous mode
[  141.500116][ T5872] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  141.503790][ T5872] batman_adv: batadv0: Removing interface: batadv_slave_0
[  141.506633][ T5872] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  141.509374][ T5872] batman_adv: batadv0: Removing interface: batadv_slave_1
[  141.514066][ T5872] veth1_macvtap: left promiscuous mode
[  141.517162][ T5872] veth0_macvtap: left promiscuous mode
[  141.519464][ T5872] veth1_vlan: left promiscuous mode
[  141.521554][ T5872] veth0_vlan: left promiscuous mode
[  141.639433][ T5872] team0 (unregistering): Port device team_slave_1 removed
[  141.659408][ T5872] team0 (unregistering): Port device team_slave_0 removed

VM DIAGNOSIS:
20:19:37  Registers:
info registers vcpu 0

CPU#0
RAX=ffffffff822e4d30 RBX=ffff88801b0d24a8 RCX=dffffc0000000000 RDX=ffff888109021cc0
RSI=0000000000000000 RDI=0000000000000000 RBP=ffff88801b0d2460 RSP=ffffc90003bff950
R8 =ffff88801b0d24ab R9 =1ffff1100361a495 R10=dffffc0000000000 R11=ffffed100361a496
R12=0000000000000001 R13=0000000000000000 R14=0000000000012a0e R15=0000000000000000
RIP=ffffffff81bfafe1 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fe0d6fbe380 ffffffff 00c00000
GS =0000 ffff8880b861c000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fe0d72433f1 CR3=0000000035968000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=0000000000000000 0000000000000000
XMM02=0000000000000000 0000000000000000 XMM03=ffffffffffffffff ffffff0000000000
XMM04=0000000000000000 0000000000000000 XMM05=0000000000000000 0000000000000000
XMM06=0000000000000000 0000000000000000 XMM07=0000000000000000 0000000000000000
XMM08=0000000000000000 0000000000000000 XMM09=0000000000000000 0000000000000000
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=1ffffffff33bdc60 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=00000000000036ae RDI=00000000000036af RBP=ffffffff99dee630 RSP=ffffc9000323e7f0
R8 =ffff888108030237 R9 =1ffff11021006046 R10=dffffc0000000000 R11=ffffffff854efde0
R12=dffffc0000000000 R13=0000000000000000 R14=ffffffff99dee3a0 R15=0000000000000000
RIP=ffffffff854efe57 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f43946936c0 ffffffff 00c00000
GS =0000 ffff8881a3c1c000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007ffd3f63a648 CR3=000000002ce78000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=ffffffff8133c57e ffffffff8133c57e
XMM02=0000000000000000 ffffffff8133c57e XMM03=0000000000000000 0000000000000000
XMM04=0000000000000000 0000000000000000 XMM05=0000000000000000 0000000000000000
XMM06=0000000000000000 0000000000000000 XMM07=0000000000000000 0000041e27b10000
XMM08=0000000000000000 0000000000000000 XMM09=0000000000000000 00007fa44b012fc5
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
