last executing test programs:

7m23.832311387s ago: executing program 32 (id=667):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00"/13], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000340)=ANY=[@ANYBLOB="12010000000000406c256d0000000000000109022400010000000009040000010300000009210000000122050009058103"], 0x0)
syz_usb_control_io$hid(r1, 0x0, 0x0)
syz_usb_control_io(r1, &(0x7f0000000000)={0x2c, &(0x7f0000000300)=ANY=[@ANYBLOB="000005"], 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io$hid(r1, 0x0, 0x0)
syz_usb_control_io(r1, &(0x7f0000000140)={0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="000002"], 0x0, 0x0, 0x0, 0x0}, 0x0)

6m1.788450111s ago: executing program 3 (id=1484):
r0 = openat$apparmor_thread_exec(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0)
write$apparmor_exec(r0, &(0x7f0000000500)=ANY=[@ANYBLOB='stack :'], 0x11)
lsm_get_self_attr(0x65, 0x0, &(0x7f00000002c0), 0x0)

6m1.665865085s ago: executing program 3 (id=1485):
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000040)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x28, 0x28, 0x2, [@func_proto={0x0, 0x0, 0x0, 0xd, 0xa}, @func_proto={0x0, 0x2, 0x0, 0xd, 0x0, [{0x4, 0x5}, {0x9, 0x3}]}]}}, &(0x7f0000000f40)=""/4089, 0x42, 0xff9, 0x1}, 0x28)

6m1.598882462s ago: executing program 3 (id=1486):
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xffffffff7ffffffd]}, 0x0, 0x8)
timer_create(0x3, 0x0, &(0x7f0000044000)=<r0=>0x0)
timer_settime(0x0, 0x236bd4336e4642df, &(0x7f0000000300)={{0x0, 0x1}, {0x0, 0xe4c}}, 0x0)
timer_delete(r0)

6m1.598577401s ago: executing program 3 (id=1487):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000140), 0x1, 0x4fa, &(0x7f0000000ac0)="$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")
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000100)='./file1\x00', 0x0, 0x5000, 0x0)
r0 = open(&(0x7f0000000140)='./file1\x00', 0x100, 0x110)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x8005, 0x0, 0x0, 0x15, 0x0, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cb19976d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc10700", "64885973ff030000000000000000d01cd3160000ffffff7f0000000000002000", [0x200]})

6m1.422244106s ago: executing program 3 (id=1488):
r0 = syz_mount_image$btrfs(&(0x7f0000000000), &(0x7f00000015c0)='./file0\x00', 0x0, &(0x7f0000001600), 0x0, 0x559e, &(0x7f0000005680)="$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")
r1 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$BTRFS_IOC_SUBVOL_SETFLAGS(r0, 0x4008941a, &(0x7f0000000140)=0x2)
ioctl$BTRFS_IOC_SEND(r0, 0x40489426, &(0x7f0000000180)={{r1}, 0x1, &(0x7f00000000c0)=[0x5], 0x9, 0xd, 0x1})

6m1.172643105s ago: executing program 3 (id=1489):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='iocharset=cp857,time_offset=0x0000000000000003,errors=remount-ro,fmask=00000000000000000000006,iocharset=cp862,allow_utime=00000000000000000077777,namecase=1,dmask=00000000000000000000201,utf8,dmask=000000000000\x00'/224], 0x1, 0x1543, &(0x7f0000000500)="$eJzs3AucTlX3OPC19t5nDImnSS7D3nsdnuSySZJckuSSJJUkyS0hSfJKQmIISRqSkFyGJIaQXCYmjfv9fklokjRJkltuyf5/Jubn7Vf9e2+/1/t5Z30/n/Ox15yz9lnnWfOc55wzZr7rNqx2kzo1GhER/FPw4j8JABALAIMAIC8ABABQIa5CXOb6nBIT/rmdsH+th5KvdAXsSuL+Z2/c/+yN+5+9cf+zN+5/9sb9z964/9kb95+x7Gzz9ELX8JJ9F37+n+2kj/2fIX/+/xfJKDPuq7VlrusOEPO3pnD/szfu/3+t4G/ZiPufvXH/s6vYK10A+w/A7//sIMcfruH+Z2/cf8aysyv9/PlKLxD5D3sNjuS82Jh/1/EzxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGP/Bmf8ZQoAssZXui7GGGOMMcYYY4z96/gcV7oCxhhjjDHGGGOM/d9DECBBQQAxkANiISfkAgEAV0MeyAsRuAbi4FrIB9dBfigABaEQxENhKAIaDFggCKEoFIMoXA/F4QYoASWhFJQGB2WgLNwI5eAmKA83QwW4BSrCrVAJKkMVqAq3QTW4HarDHVAD7oSaUAtqQx24C+rC3VAP7oH6cC80gPvgfngAGsKD0AgegsbwMDSBR6ApPArNoDm0gJbQ6h/KfwF6wYvQG/pAAvSFfvAS9IcBMBBehkHwCgyGV2EIvAaJMBSGweswHN6AEfAmjIRRMBregjHwNoyFcTAeJkASTIRJ8A5MhndhCrwHU2EaJMN0mAHvw0yYBbPhA5gDH8JcmAfzYQGkwEewEBZBKnwMi+ETSIMlsBSWwXJYASthFayGNbAW1sF62AAbYRNshi2wFbbBdtgBO+FT2AWfwW7YA3vhc0iHL/7O/NP/K787AgIKFKhQYQzGYCzGYi7MhbkxN+bBPBjBCMZhHObDfJgf82NBLIjxGI9FsAgaNEhIWBSLYhSjWByLYwksgaWwFDp0WBbLYjm8CctjeayAFbAiVsRKWBkrY1WsitWwGlbH6lgDa2BNrIm1sTbehXdhX6yH9bA+1scG2CDr8RQ2wkbYGBtjE2yCTbEpNsNm2AJbYCtsha2xNbbBNtgO22F7bI8dsAN2xI7YCTthZ+yMXbALdsWu2A27YXfsgT0yXsgB+CK+iH2wpuiL/bAf9sfEHAPxZXwZX8HB+Cq+iq9hIg7FYfg6vo5v4Ag8hSNxFI7G0VhNvI1jcRySmIBJmISTcBJOxsmYWeh7OA2TcTrOwBk4E2fhLPwA5+CH+CHOw3m4AFMwBRfiIkzFVFyMpzENl+BSXIbLcQUux1W4GlfhWlyHa3EDbsBNuAm34BbchttwB+7AT1EB4Ge4B/dgIqZjOu7Dfbgf9+MBPIAZmIEH8SAewkN4GA/jETyCR/EYHsdjeBJP4ik8jWfwDJ7Dc3gen4v/pvGnJdckgsikhBIxIkbEiliRS+QSuUVukUfkEREREXEiTuQT+UR+kV8UFAVFvIgXRUQRYYQRJMIYABBRERXFRXFRQpQQpUQp4YQTZUVZUU6UE+VFeVFB3CIqiltFJVFZtHVVRVVRTbRz1cUdooaoIWqKWqK2qCPqiLqirqgn6on6or5oIBqI+8UDoqHoiwPxIZHZmSZiKDYVw7CZaC7kpTNYazEC24i2op14QozCkdhBtHYdxdOikxiLncVfxDh8VnQVE7CbeF50Fz1ET/GC6CXauN6ij5iCfUU/MQ37iwFioHhZzMRa4gOck7O2eE0kiqFimHhdLMA3xAjxphgpRonR4i0xRrwtxopxYryYIJLERDFJvCMmi3eFEO+JqWKaSBbTxQzxvpgpZonZ4gMxR3wo5op5Yr5YIFLER2KhWCRSxcdisfhEpIklYqlYJpaLFWKlWCVWizVirVgn1osNYqPYJDaLLWKriIXtYofYKT4Vu8RnYrfYI/aKz0W6+ELsE1+K/eIrcUB8LTLEN+Kg+FYcEt+Jw+J7cUT8II6KY+K4OCFOih/FKXFanBFnxTnxkzgvfhYXhBcgUQoppZKBjJE5ZKzMKXPJq2RuGVx6da+RcfJamU9eJ/PLArKgLCTjZWFZRGpppJUkQ1lUFpNReb0sLm+QJWRJWUqWlk6WkWXljbKcvEmWlzfLCvIWWVHeKivJyrKKrCpvk9Xk7RIiF/dRU9aStWUdeZdMgLtlPXmPrC/vlQ3kffJ++YBsKB+UjeRDsrF8WDaRj8im8lHZTDaXLWRL2Uo+JlvLx2Ub2Va2k0/I9vJJ2UE+JTvKp2Un6S99izwru8rnZDf5vOwue8ie8md5QXrZW/aR0BdkP/mS7C8HyIGxACBfkYPlq3KIfE0myqFymHxdDpdvyBHyTTlSjpKj5VtyjHxbjpXj5Hg5QSbJiXKSfEdOlu/KKfI9OVVOk8lyuhwoB/0y02wp/zT/nd/JH/LL3jfJzXKL3Cq3ye1yh9wpP5W75C65W+6We+VemS7T5T65T+6X++UBeUBmyAx5UB6Uh+QheVgelkfkEXlUHpNn5Ql5Uv4oT8nT8rQ8K8/Jc/L8pdcAFCqhpFIqUDEqh4pVOVUudZXKra5WeVReFVHXqDh1rcqnrlP5VQFVUBVS8aqwKqK0MsoqUqEqqoqpqLoeL33DqFKqtHKqjCqrbvwlP+tHDH+Sr4qrG1QJVfJX+Vn1JfxBfa1UK9VatVZtVBvVTrVT7VV71UF1UB1VR9VJdVKdVWfVRXVRXVVX1U11U91Vd9VT9VS9VC/VW/VWCSpB9VMvqf5qgBqoXlaD1CtqsBqshqghKlElqmFqmBquhqsRaoQaqUaq0Wq0GqPGqLFqrBqvxqsklaQmqUlqspqspqgpaqqaqpJVspqhZqiZaqaarWarOWqOmqvmqvlqvkpRKWqhWqhSVaparBarNLVELVHL1DK1Qq1Qq9QqtUatUevUOrVBbVBparParLaqrWq72q52qp1ql9qldovdaq/aq9JVutqn9qn9ar86oA6oDJWhDqqD6pA6pA6rw+qIOqKOqqPquDquTqqT6pQ6pc6oM+qcOqfOq/PqgrqQedkXiEAEKlBBTBATxAaxQa4gV5A7yB3kCfIEkSASxAVxQb7guiB/UCAoGBQK4oPCQZFAByawgbjU22hwfVA8uCEoEZQMSgWlAxeUCcoGNwblgpuC8sHNQYXglqBicGtQKagcVAmqBrcF1YLbg+rBHUGN4M6gZlArqB3UCe4K6gZ3B/ViIagf3Bs0CO4L7g8eCBoGDwaNgoeCxsHDQZPgkaBp8GjQLGgetAhaBq3+kfmDe/5gfu9PFXjc9dZ9dILuq/vpl3R/PUAP1C/rQfoVPVi/qofo13SiHqqH6df1cP2GHqHf1CP1KD1av6XH6Lf1WD1Oj9cTdJKeqCfpd/Rk/a6eot/TU/U0nayn6xn6fT1Tz9Kz9Qd6jv5Qz9Xz9Hy9QKfoj/RCvUin6o/1Yv2JTtNL9FK9TC/XK/RKvUqv1mv0Wr1Or9cb9Ea9SW/WW/RWvU1v1zv0Tv2p3qU/07v1Hr1Xf67T9Rd6n/5S79df6QP6a52hv9EH9bf6kP5OH9bf6yP6B31UH9PH9Ql9Uv+oT+nT+ow+q8/pn/R5/bO+oH3mxX3mx7tRRpkYE2NiTazJZXKZ8pDb5DF5TMRETJyJM/lMPpPf5DcFTUETb+JNEVPEZCJDpqgpaqImaoqb4qaEKWFKmVLGGWfKmrKmnClnypvypoKpYCqaiqaSqWSqmCrmNnObud3cbu4wd5g7zZ2mlqll6pg6pq6pa+qZeqa+qW8amAbmfnO/aWgamkamkWlsGpsmpolpapqaZqaZaWFamFamlWltWps2po1pZ9qZ9qa96WA6mI6mo+lkOpnOprPpYrqYrqar6Wa6me6mu+lpeppeppfpbXqbBJNg+pl+pr/pbwaagWaQGWQGm8FmiBliEk2iGWaGmeFmuBlhRpiRZpQZnXmSM2+bsWacGW8mmCSTZCaZSWaymWymmClmqplqkk2ymWFmmJlmppltZps5Zo6Za+aa+Wa+STEpZqFZaFJNqllsFps0k2aWmqVmuVluVpqVZrVZbdaatWY9rDcbzUaz2Ww2W81Ws91sNzvNTrPL7DK7zW6z1+w16Sbd7DP7zH6z3xwwB0yGyTAHzUFzyBwyh81hc8QcMUfNUXPcHDcnzUlzypwyZ8wZc84UuPR56U3WyTy3vdrmsXltrM1pc9mr7MU468qrsC1itc1vC9iCtpCNtxdjY60tYUvaUra0dbaMLWtv/E1cyVa2VWxVe5utZm+31X8T17V323r2Hlvf3mvr2Lt+FTew99nMq5OGiAC2uW1sW9om9hHb1D5qm9nmtoVtadvbJ20H+5TtaJ+2newzv4kX2kV2tV1j19p1drfdY8/Ys/aQ/c6esz/Z3raPHWRfsYPtq3aIfc0m2qG/iUfbt+wY+7Yda8fZ8XbCb+KpdppNttPtDPu+nWln/SZOsR/ZOTbVzrXz7Hy74Jc4s6ZU+7FdbD+xaTaApXaZXW5X2JV2VVatPq/dYDfaTXaX/cxutdvsdrvD7sxqh91j99rPbbr9wh6039r99it7wB62GfabX+LM4ztsv7dH7A/2qD1mj9sT9qT9UWVlZx77CfuzvWC9BUICkqQooBjKQbGUk3LRVZSbrqY8lJcidA3F0bWUj66j/FSAClIhiqfCVIQ0GbJEFFJRKkZRup6yyitFpclRGSpLN1I5uonK081UgW6hinQrVaLKVIWq0m1UjW6n6nQH1aA7qSbVotpUh+6iunQ31aN7qD7dSw3oPrqfHqCG9CA1ooeoMT1MTegRakqPUjNqTi2oJbWix6g1PU5tqC21oyeoPT1JHegp6khPUyd6hjrTX6gLPUtd6TnqRs9Td+pBPekF6kUvUm/qQwnUl/rRS9SfBtBAepkG0Ss0mF6lIfQaJdJQGkav03B6g0bQmzSSRtFoeovG0Ns0lsbReJpASTSRJtE7NJnepSn0Hk2laZRM02kGvU8zaRbNpg9oDn1Ic2kezacFlEIf0UJaRKn0MS2mTyiNltBSWkbLaQWtpFW0mtbQWlpH62kDbaRNtJm20FbaRttpB+2kT2kXfUa7aQ/tpc8pnb4gpC9pP31FB+hryqBv6CB9S4foOzpM3/s+9AMdpWN0nE7QSfqRTtFpOkNn6Rz9ROfpZ7pAniDEUIQyVGEQxoQ5wtgwZ5grvCrMHV4d5gnzhpHwmjAuvDbMF14X5g8LhAXDQmF8WDgsEurQhDakMAyLhsXCaHh9WDy8ISwRlgxLhaVDF5YJy4Y3huXCm8Ly4c1hhfCWsGJ4a1gprBw+cm/V8LawWnh7WD28I6wR3hnWDGuFtcM64V1h3fDusF54T1g/vDcsH94X3h8+EDYMHwwbhQ+FjcOHwybhI2HT8NGwWdg8bBG2DFuFj4Wtw8fDNmHbsF34RNg+fDLsED4VdgyfDjuFz/yy/r5Ff7w+Iewb9gtfCl8Kvb9Hzo8uiKZEP4oujC6KpkY/ji6OfhJNiy6JLo0uiy6ProiujK6Kro6uia6Nrouuj26IboxuinpfJwc4dMJJp1zgYlwOF+tyulzuKpfbXe3yuLwu4q5xce5al89d5/K7Aq6gK+TiXWFXxGlnnHXkQlfUFXNRd70r7m5wJVxJV8qVds6VcWVdS9fKtXKt3eOujWvr2rkn3BPuSfeke8o95Z52ndwzrrP7i+vinnVd3XPuOfe86+56uJ7uBdfLTcxz8T2Z4Po5n6O/6+8GuoFukBvkBrvBbogb4hJdohvmhrnhbrgb4Ua4kW6kG+1GuzFujBvrxrrxbrxLcklukpvkJrvJboqb4qa6qS7ZJbsZboab6Wa6arMu7mWum+vmu/kuxaW4hS7zmjHVLXaLXZpLc0vdUrfcLXcr3Uq32q12a91at96tdxvdRrfZbXZb3Va33W13O91Ot8vtcrt93ouTunS3z+1z+91+d8B97TLcN+6g+9Ydct+5w+57d8T94I66Y+64O+FOuh/dKXfanXFn3Tn3kzvvfnYXnHdJkYmRSZF3IpMj70amRN6LTI1MiyRHpkdmRN6PzIzMisyOfBCZE/kwMjcyLzI/siCSEvkosjCyKJIa+TiyOPJJJC2yJLI0siyyPLIi4n3hraEv6ov5qL/eF/c3+BK+pC/lS3vny/iy/kZfzt/ky/ubfQV/i6/ob/WVfGVfxT/qm/nmvoVv6Vv5x3xr/7hv49v6dv4J394/6Tv4p3xH/7Tv5J/xnf1ffBf/rO/qn/Pd/PO+u+/he/oXfC//ou/t+/gE39f38y/5/n6AH+hf9oP8K36wf9UP8a/5RD/UD/Ov++H+DT/Cv+lH+lF+dMxbfkzWLTJM8El+op/k3/GT/bt+in/PT/XTfLKf7mf49/1MP8vP9h/4Of5DP9fP8/P9Ap/iP/IL/SKf6j/2i/0nPs0vyXqo7Ff6VX61X+PX+nV+vd/gN/pNfrPf4rf6bX673+F3+k/9Lv+Z3+33+L3+c5/uv/D7/Jd+v//KH/Bf+wz/jT/ov/WH/Hf+sP/eH/E/+KP+mD/uT/iT/kd/yp/2Z/xZf87/5M/7n/0F/p01xhhjjLG/ycTLQ/HrNRefAPX9nRzxVxv3A4CrtxXK+Ov1mVeU6/NfHA8Q8e0jAPB0n24PZS01ayYkJFzaNk1CUGweQNZPgjLFwOV4CbSDJ6EjtIVyv1v/ANHjHP3J/NFbAHL9VU4sXI4vz/8lACb8zvyPPTF6YcXwTNz/Z/55ACWKXc7JCZfjJdDul+crbaH8H9RfoPWf1J/zqySANn+Vkxsux5frLwuPwzPQ8VdbMsYYY4wxxhhjFw0QVbpk3X9m/Y/P37s/j1eXc3LA5fjP7s8ZY4wxxhhjjDF25T3bo+dTj3Xs2LbL3z+o/ufbqMtfyf337qIp/KOF8eAfGngP8D+NA4B/ckKAzIH8dx7Fln/LvhIvvXX+96rlZ30A/xmt/FcMrvCJiTHGGGOMMfYvd/mi/9dfV1eqIMYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjLBv6Z//GG/wNf6XvSh8jY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxdqX9vwAAAP//0V/4pQ==")
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000001180)=ANY=[@ANYBLOB="12010000090003206d0414c34000ffff000109022400010400a000090400000103010100093700086ce8220100090581"], 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x14, &(0x7f0000000dc0)=ANY=[@ANYBLOB="00020c0000000c0002"], 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000900)={0x84, 0x0, 0x0, 0x0, &(0x7f0000000500)={0x20, 0x0, 0x68}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)

6m1.038172359s ago: executing program 33 (id=1489):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='iocharset=cp857,time_offset=0x0000000000000003,errors=remount-ro,fmask=00000000000000000000006,iocharset=cp862,allow_utime=00000000000000000077777,namecase=1,dmask=00000000000000000000201,utf8,dmask=000000000000\x00'/224], 0x1, 0x1543, &(0x7f0000000500)="$eJzs3AucTlX3OPC19t5nDImnSS7D3nsdnuSySZJckuSSJJUkyS0hSfJKQmIISRqSkFyGJIaQXCYmjfv9fklokjRJkltuyf5/Jubn7Vf9e2+/1/t5Z30/n/Ox15yz9lnnWfOc55wzZr7rNqx2kzo1GhER/FPw4j8JABALAIMAIC8ABABQIa5CXOb6nBIT/rmdsH+th5KvdAXsSuL+Z2/c/+yN+5+9cf+zN+5/9sb9z964/9kb95+x7Gzz9ELX8JJ9F37+n+2kj/2fIX/+/xfJKDPuq7VlrusOEPO3pnD/szfu/3+t4G/ZiPufvXH/s6vYK10A+w/A7//sIMcfruH+Z2/cf8aysyv9/PlKLxD5D3sNjuS82Jh/1/EzxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGP/Bmf8ZQoAssZXui7GGGOMMcYYY4z96/gcV7oCxhhjjDHGGGOM/d9DECBBQQAxkANiISfkAgEAV0MeyAsRuAbi4FrIB9dBfigABaEQxENhKAIaDFggCKEoFIMoXA/F4QYoASWhFJQGB2WgLNwI5eAmKA83QwW4BSrCrVAJKkMVqAq3QTW4HarDHVAD7oSaUAtqQx24C+rC3VAP7oH6cC80gPvgfngAGsKD0AgegsbwMDSBR6ApPArNoDm0gJbQ6h/KfwF6wYvQG/pAAvSFfvAS9IcBMBBehkHwCgyGV2EIvAaJMBSGweswHN6AEfAmjIRRMBregjHwNoyFcTAeJkASTIRJ8A5MhndhCrwHU2EaJMN0mAHvw0yYBbPhA5gDH8JcmAfzYQGkwEewEBZBKnwMi+ETSIMlsBSWwXJYASthFayGNbAW1sF62AAbYRNshi2wFbbBdtgBO+FT2AWfwW7YA3vhc0iHL/7O/NP/K787AgIKFKhQYQzGYCzGYi7MhbkxN+bBPBjBCMZhHObDfJgf82NBLIjxGI9FsAgaNEhIWBSLYhSjWByLYwksgaWwFDp0WBbLYjm8CctjeayAFbAiVsRKWBkrY1WsitWwGlbH6lgDa2BNrIm1sTbehXdhX6yH9bA+1scG2CDr8RQ2wkbYGBtjE2yCTbEpNsNm2AJbYCtsha2xNbbBNtgO22F7bI8dsAN2xI7YCTthZ+yMXbALdsWu2A27YXfsgT0yXsgB+CK+iH2wpuiL/bAf9sfEHAPxZXwZX8HB+Cq+iq9hIg7FYfg6vo5v4Ag8hSNxFI7G0VhNvI1jcRySmIBJmISTcBJOxsmYWeh7OA2TcTrOwBk4E2fhLPwA5+CH+CHOw3m4AFMwBRfiIkzFVFyMpzENl+BSXIbLcQUux1W4GlfhWlyHa3EDbsBNuAm34BbchttwB+7AT1EB4Ge4B/dgIqZjOu7Dfbgf9+MBPIAZmIEH8SAewkN4GA/jETyCR/EYHsdjeBJP4ik8jWfwDJ7Dc3gen4v/pvGnJdckgsikhBIxIkbEiliRS+QSuUVukUfkEREREXEiTuQT+UR+kV8UFAVFvIgXRUQRYYQRJMIYABBRERXFRXFRQpQQpUQp4YQTZUVZUU6UE+VFeVFB3CIqiltFJVFZtHVVRVVRTbRz1cUdooaoIWqKWqK2qCPqiLqirqgn6on6or5oIBqI+8UDoqHoiwPxIZHZmSZiKDYVw7CZaC7kpTNYazEC24i2op14QozCkdhBtHYdxdOikxiLncVfxDh8VnQVE7CbeF50Fz1ET/GC6CXauN6ij5iCfUU/MQ37iwFioHhZzMRa4gOck7O2eE0kiqFimHhdLMA3xAjxphgpRonR4i0xRrwtxopxYryYIJLERDFJvCMmi3eFEO+JqWKaSBbTxQzxvpgpZonZ4gMxR3wo5op5Yr5YIFLER2KhWCRSxcdisfhEpIklYqlYJpaLFWKlWCVWizVirVgn1osNYqPYJDaLLWKriIXtYofYKT4Vu8RnYrfYI/aKz0W6+ELsE1+K/eIrcUB8LTLEN+Kg+FYcEt+Jw+J7cUT8II6KY+K4OCFOih/FKXFanBFnxTnxkzgvfhYXhBcgUQoppZKBjJE5ZKzMKXPJq2RuGVx6da+RcfJamU9eJ/PLArKgLCTjZWFZRGpppJUkQ1lUFpNReb0sLm+QJWRJWUqWlk6WkWXljbKcvEmWlzfLCvIWWVHeKivJyrKKrCpvk9Xk7RIiF/dRU9aStWUdeZdMgLtlPXmPrC/vlQ3kffJ++YBsKB+UjeRDsrF8WDaRj8im8lHZTDaXLWRL2Uo+JlvLx2Ub2Va2k0/I9vJJ2UE+JTvKp2Un6S99izwru8rnZDf5vOwue8ie8md5QXrZW/aR0BdkP/mS7C8HyIGxACBfkYPlq3KIfE0myqFymHxdDpdvyBHyTTlSjpKj5VtyjHxbjpXj5Hg5QSbJiXKSfEdOlu/KKfI9OVVOk8lyuhwoB/0y02wp/zT/nd/JH/LL3jfJzXKL3Cq3ye1yh9wpP5W75C65W+6We+VemS7T5T65T+6X++UBeUBmyAx5UB6Uh+QheVgelkfkEXlUHpNn5Ql5Uv4oT8nT8rQ8K8/Jc/L8pdcAFCqhpFIqUDEqh4pVOVUudZXKra5WeVReFVHXqDh1rcqnrlP5VQFVUBVS8aqwKqK0MsoqUqEqqoqpqLoeL33DqFKqtHKqjCqrbvwlP+tHDH+Sr4qrG1QJVfJX+Vn1JfxBfa1UK9VatVZtVBvVTrVT7VV71UF1UB1VR9VJdVKdVWfVRXVRXVVX1U11U91Vd9VT9VS9VC/VW/VWCSpB9VMvqf5qgBqoXlaD1CtqsBqshqghKlElqmFqmBquhqsRaoQaqUaq0Wq0GqPGqLFqrBqvxqsklaQmqUlqspqspqgpaqqaqpJVspqhZqiZaqaarWarOWqOmqvmqvlqvkpRKWqhWqhSVaparBarNLVELVHL1DK1Qq1Qq9QqtUatUevUOrVBbVBparParLaqrWq72q52qp1ql9qldovdaq/aq9JVutqn9qn9ar86oA6oDJWhDqqD6pA6pA6rw+qIOqKOqqPquDquTqqT6pQ6pc6oM+qcOqfOq/PqgrqQedkXiEAEKlBBTBATxAaxQa4gV5A7yB3kCfIEkSASxAVxQb7guiB/UCAoGBQK4oPCQZFAByawgbjU22hwfVA8uCEoEZQMSgWlAxeUCcoGNwblgpuC8sHNQYXglqBicGtQKagcVAmqBrcF1YLbg+rBHUGN4M6gZlArqB3UCe4K6gZ3B/ViIagf3Bs0CO4L7g8eCBoGDwaNgoeCxsHDQZPgkaBp8GjQLGgetAhaBq3+kfmDe/5gfu9PFXjc9dZ9dILuq/vpl3R/PUAP1C/rQfoVPVi/qofo13SiHqqH6df1cP2GHqHf1CP1KD1av6XH6Lf1WD1Oj9cTdJKeqCfpd/Rk/a6eot/TU/U0nayn6xn6fT1Tz9Kz9Qd6jv5Qz9Xz9Hy9QKfoj/RCvUin6o/1Yv2JTtNL9FK9TC/XK/RKvUqv1mv0Wr1Or9cb9Ea9SW/WW/RWvU1v1zv0Tv2p3qU/07v1Hr1Xf67T9Rd6n/5S79df6QP6a52hv9EH9bf6kP5OH9bf6yP6B31UH9PH9Ql9Uv+oT+nT+ow+q8/pn/R5/bO+oH3mxX3mx7tRRpkYE2NiTazJZXKZ8pDb5DF5TMRETJyJM/lMPpPf5DcFTUETb+JNEVPEZCJDpqgpaqImaoqb4qaEKWFKmVLGGWfKmrKmnClnypvypoKpYCqaiqaSqWSqmCrmNnObud3cbu4wd5g7zZ2mlqll6pg6pq6pa+qZeqa+qW8amAbmfnO/aWgamkamkWlsGpsmpolpapqaZqaZaWFamFamlWltWps2po1pZ9qZ9qa96WA6mI6mo+lkOpnOprPpYrqYrqar6Wa6me6mu+lpeppeppfpbXqbBJNg+pl+pr/pbwaagWaQGWQGm8FmiBliEk2iGWaGmeFmuBlhRpiRZpQZnXmSM2+bsWacGW8mmCSTZCaZSWaymWymmClmqplqkk2ymWFmmJlmppltZps5Zo6Za+aa+Wa+STEpZqFZaFJNqllsFps0k2aWmqVmuVluVpqVZrVZbdaatWY9rDcbzUaz2Ww2W81Ws91sNzvNTrPL7DK7zW6z1+w16Sbd7DP7zH6z3xwwB0yGyTAHzUFzyBwyh81hc8QcMUfNUXPcHDcnzUlzypwyZ8wZc84UuPR56U3WyTy3vdrmsXltrM1pc9mr7MU468qrsC1itc1vC9iCtpCNtxdjY60tYUvaUra0dbaMLWtv/E1cyVa2VWxVe5utZm+31X8T17V323r2Hlvf3mvr2Lt+FTew99nMq5OGiAC2uW1sW9om9hHb1D5qm9nmtoVtadvbJ20H+5TtaJ+2newzv4kX2kV2tV1j19p1drfdY8/Ys/aQ/c6esz/Z3raPHWRfsYPtq3aIfc0m2qG/iUfbt+wY+7Yda8fZ8XbCb+KpdppNttPtDPu+nWln/SZOsR/ZOTbVzrXz7Hy74Jc4s6ZU+7FdbD+xaTaApXaZXW5X2JV2VVatPq/dYDfaTXaX/cxutdvsdrvD7sxqh91j99rPbbr9wh6039r99it7wB62GfabX+LM4ztsv7dH7A/2qD1mj9sT9qT9UWVlZx77CfuzvWC9BUICkqQooBjKQbGUk3LRVZSbrqY8lJcidA3F0bWUj66j/FSAClIhiqfCVIQ0GbJEFFJRKkZRup6yyitFpclRGSpLN1I5uonK081UgW6hinQrVaLKVIWq0m1UjW6n6nQH1aA7qSbVotpUh+6iunQ31aN7qD7dSw3oPrqfHqCG9CA1ooeoMT1MTegRakqPUjNqTi2oJbWix6g1PU5tqC21oyeoPT1JHegp6khPUyd6hjrTX6gLPUtd6TnqRs9Td+pBPekF6kUvUm/qQwnUl/rRS9SfBtBAepkG0Ss0mF6lIfQaJdJQGkav03B6g0bQmzSSRtFoeovG0Ns0lsbReJpASTSRJtE7NJnepSn0Hk2laZRM02kGvU8zaRbNpg9oDn1Ic2kezacFlEIf0UJaRKn0MS2mTyiNltBSWkbLaQWtpFW0mtbQWlpH62kDbaRNtJm20FbaRttpB+2kT2kXfUa7aQ/tpc8pnb4gpC9pP31FB+hryqBv6CB9S4foOzpM3/s+9AMdpWN0nE7QSfqRTtFpOkNn6Rz9ROfpZ7pAniDEUIQyVGEQxoQ5wtgwZ5grvCrMHV4d5gnzhpHwmjAuvDbMF14X5g8LhAXDQmF8WDgsEurQhDakMAyLhsXCaHh9WDy8ISwRlgxLhaVDF5YJy4Y3huXCm8Ly4c1hhfCWsGJ4a1gprBw+cm/V8LawWnh7WD28I6wR3hnWDGuFtcM64V1h3fDusF54T1g/vDcsH94X3h8+EDYMHwwbhQ+FjcOHwybhI2HT8NGwWdg8bBG2DFuFj4Wtw8fDNmHbsF34RNg+fDLsED4VdgyfDjuFz/yy/r5Ff7w+Iewb9gtfCl8Kvb9Hzo8uiKZEP4oujC6KpkY/ji6OfhJNiy6JLo0uiy6ProiujK6Kro6uia6Nrouuj26IboxuinpfJwc4dMJJp1zgYlwOF+tyulzuKpfbXe3yuLwu4q5xce5al89d5/K7Aq6gK+TiXWFXxGlnnHXkQlfUFXNRd70r7m5wJVxJV8qVds6VcWVdS9fKtXKt3eOujWvr2rkn3BPuSfeke8o95Z52ndwzrrP7i+vinnVd3XPuOfe86+56uJ7uBdfLTcxz8T2Z4Po5n6O/6+8GuoFukBvkBrvBbogb4hJdohvmhrnhbrgb4Ua4kW6kG+1GuzFujBvrxrrxbrxLcklukpvkJrvJboqb4qa6qS7ZJbsZboab6Wa6arMu7mWum+vmu/kuxaW4hS7zmjHVLXaLXZpLc0vdUrfcLXcr3Uq32q12a91at96tdxvdRrfZbXZb3Va33W13O91Ot8vtcrt93ouTunS3z+1z+91+d8B97TLcN+6g+9Ydct+5w+57d8T94I66Y+64O+FOuh/dKXfanXFn3Tn3kzvvfnYXnHdJkYmRSZF3IpMj70amRN6LTI1MiyRHpkdmRN6PzIzMisyOfBCZE/kwMjcyLzI/siCSEvkosjCyKJIa+TiyOPJJJC2yJLI0siyyPLIi4n3hraEv6ov5qL/eF/c3+BK+pC/lS3vny/iy/kZfzt/ky/ubfQV/i6/ob/WVfGVfxT/qm/nmvoVv6Vv5x3xr/7hv49v6dv4J394/6Tv4p3xH/7Tv5J/xnf1ffBf/rO/qn/Pd/PO+u+/he/oXfC//ou/t+/gE39f38y/5/n6AH+hf9oP8K36wf9UP8a/5RD/UD/Ov++H+DT/Cv+lH+lF+dMxbfkzWLTJM8El+op/k3/GT/bt+in/PT/XTfLKf7mf49/1MP8vP9h/4Of5DP9fP8/P9Ap/iP/IL/SKf6j/2i/0nPs0vyXqo7Ff6VX61X+PX+nV+vd/gN/pNfrPf4rf6bX673+F3+k/9Lv+Z3+33+L3+c5/uv/D7/Jd+v//KH/Bf+wz/jT/ov/WH/Hf+sP/eH/E/+KP+mD/uT/iT/kd/yp/2Z/xZf87/5M/7n/0F/p01xhhjjLG/ycTLQ/HrNRefAPX9nRzxVxv3A4CrtxXK+Ov1mVeU6/NfHA8Q8e0jAPB0n24PZS01ayYkJFzaNk1CUGweQNZPgjLFwOV4CbSDJ6EjtIVyv1v/ANHjHP3J/NFbAHL9VU4sXI4vz/8lACb8zvyPPTF6YcXwTNz/Z/55ACWKXc7JCZfjJdDul+crbaH8H9RfoPWf1J/zqySANn+Vkxsux5frLwuPwzPQ8VdbMsYYY4wxxhhjFw0QVbpk3X9m/Y/P37s/j1eXc3LA5fjP7s8ZY4wxxhhjjDF25T3bo+dTj3Xs2LbL3z+o/ufbqMtfyf337qIp/KOF8eAfGngP8D+NA4B/ckKAzIH8dx7Fln/LvhIvvXX+96rlZ30A/xmt/FcMrvCJiTHGGGOMMfYvd/mi/9dfV1eqIMYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjLBv6Z//GG/wNf6XvSh8jY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxdqX9vwAAAP//0V/4pQ==")
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000001180)=ANY=[@ANYBLOB="12010000090003206d0414c34000ffff000109022400010400a000090400000103010100093700086ce8220100090581"], 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x14, &(0x7f0000000dc0)=ANY=[@ANYBLOB="00020c0000000c0002"], 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000900)={0x84, 0x0, 0x0, 0x0, &(0x7f0000000500)={0x20, 0x0, 0x68}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)

5m28.259999747s ago: executing program 2 (id=1783):
bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x3, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000630123000000000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

5m13.17730807s ago: executing program 2 (id=1783):
bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x3, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000630123000000000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

5m13.099488736s ago: executing program 2 (id=1845):
socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r3 = socket$can_bcm(0x1d, 0x2, 0x2)
close_range(r3, r3, 0x0)
io_setup(0x9, &(0x7f0000000240)=<r4=>0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r5, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r5, &(0x7f0000000200)={0xa, 0x0, 0x2, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r5, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r5, 0x6, 0x14, &(0x7f0000000080)=0x1, 0x4)
setsockopt$inet6_tcp_TLS_TX(r5, 0x11a, 0x1, &(0x7f0000000140)=@gcm_128={{0x303}, "87ee8ac6c46dad33", "2607080d7f4fcf00fd4ef2dece6c7c58", '\x00', '#\x00'}, 0x28)
sendmsg$inet(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000300)="1761d5", 0x3}], 0x1}, 0x0)
setsockopt$inet6_tcp_TLS_TX(r5, 0x11a, 0x2, &(0x7f0000000680)=@gcm_128={{0x303}, "000037d7009400", "c0b6c5b29ca2b838d41ac2fc7ddf972d", "e9be1eae", "bb10000000000001"}, 0x28)
io_submit(r4, 0x1, &(0x7f0000000100)=[&(0x7f00000002c0)={0x400000, 0x0, 0x0, 0x0, 0x0, r3, &(0x7f0000000200)="05", 0x1}])

5m11.505497011s ago: executing program 2 (id=1849):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=@ipv6_newroute={0x30, 0x18, 0x1ef, 0x0, 0x0, {}, [@RTA_GATEWAY={0x14, 0x5, @loopback={0x2000000, 0x2}}]}, 0x30}, 0x1, 0x11}, 0x0)

5m11.429497015s ago: executing program 2 (id=1850):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_DEL(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="380000001214010002000000fcdbdf0508004b0013000000080001c0"], 0x38}, 0x1, 0x0, 0x0, 0x804}, 0x80)

5m11.429196665s ago: executing program 2 (id=1851):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000200)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0xfffffffffffffffe)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000001a40)=""/102392, 0x18ff8)
ioctl$DRM_IOCTL_GET_CLIENT(0xffffffffffffffff, 0xc0286405, 0x0)
syz_open_procfs(0x0, 0x0)
mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x200000000004, 0x0)
io_uring_setup(0x177f, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @loopback, 0xfffffffd}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f00000001c0)=@gcm_256={{0x304}, "6ae04425ace3f60c", "acba84f0a6731f234db1cc7f3f382ad796bd667cb12ea99509873931d2873103", "0f9dafb4", "ec3fff9afd96e6c0"}, 0x38)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4)
writev(r1, &(0x7f0000000080)=[{&(0x7f00000002c0)="ec", 0xfdef}], 0x1)
shutdown(r1, 0x1)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)

4m56.339857538s ago: executing program 34 (id=1851):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000200)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0xfffffffffffffffe)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000001a40)=""/102392, 0x18ff8)
ioctl$DRM_IOCTL_GET_CLIENT(0xffffffffffffffff, 0xc0286405, 0x0)
syz_open_procfs(0x0, 0x0)
mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x200000000004, 0x0)
io_uring_setup(0x177f, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @loopback, 0xfffffffd}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f00000001c0)=@gcm_256={{0x304}, "6ae04425ace3f60c", "acba84f0a6731f234db1cc7f3f382ad796bd667cb12ea99509873931d2873103", "0f9dafb4", "ec3fff9afd96e6c0"}, 0x38)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4)
writev(r1, &(0x7f0000000080)=[{&(0x7f00000002c0)="ec", 0xfdef}], 0x1)
shutdown(r1, 0x1)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)

4m37.283497868s ago: executing program 5 (id=2057):
r0 = syz_init_net_socket$ax25(0x3, 0x2, 0x0)
getsockopt$ax25_int(r0, 0x101, 0x3, &(0x7f0000000000), &(0x7f0000000100)=0x4)

4m37.271879552s ago: executing program 5 (id=2058):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000300)={@in={{0x2, 0x4e22, @multicast2}}, 0x0, 0x0, 0xb, 0x0, "f6a7346a1ca3caf66200f0e70b995efa20d5ddc09c0bc0c88e00bdea5e6998967d569964c8b68dae57dea91c0e3ef03a96483bcaaa5ab222d1993083e8e3619fbbff30da0288a8b78a3f921c40fdc06a"}, 0xd8)
setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000400)={@in={{0x2, 0x4e20, @multicast2}}, 0x0, 0x0, 0x0, 0x0, "698e86252c563a2eb894ac1de863c527984bfa5ff139aeeef086eed112e6f0ffba88c7d0888990f99dc2416c1cbccf99d18464a65c3587c97aee9217b992893cebfc606ada5e14e782e63da22a6fe97d"}, 0xd8)
setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000001c0)={@in={{0x2, 0x4e20, @multicast2}}, 0x0, 0x0, 0x0, 0x0, "f6458f5dce812b9bef6dfd6a024e48c070287c1a02ff37122221178c5eb9fefc9712655b257de87936d391a75e740d2875bd0814b73c57aaf87eb5a05188b46a2f53f1a865528508f3585c3857199fa4"}, 0xd8)

4m37.094857074s ago: executing program 5 (id=2059):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
write$uinput_user_dev(r0, &(0x7f0000000ec0)={'syz0\x00', {0x0, 0x0, 0x0, 0x9}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff, 0x0, 0x0, 0x0, 0x5, 0x7, 0x0, 0x0, 0x0, 0x5, 0x1, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff], [0x0, 0x0, 0x8, 0xb17, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff, 0x0, 0x0, 0x0, 0x2, 0x0, 0x9, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd, 0x1000, 0x0, 0xf, 0x0, 0x2, 0x0, 0x0, 0x0, 0xfffffffe, 0x4, 0x1, 0x0, 0x0, 0x0, 0xfffffffd, 0xfffffffd, 0x0, 0xfffffffa, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0xe], [0x5, 0x0, 0x4, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xfffffffc, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0xe, 0x1, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000, 0x0, 0x3ff00, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x4], [0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc045, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x80, 0x0, 0x3, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x200000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x4, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5]}, 0x45c)
ioctl$UI_DEV_CREATE(r0, 0x5501)
ioctl$UI_SET_PHYS(r0, 0x4008556c, 0x0)

4m36.956056466s ago: executing program 5 (id=2061):
r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000440)='ns/pid_for_children\x00')
ioctl$NS_GET_USERNS(r0, 0x8004b708, 0x0)

4m36.84686156s ago: executing program 5 (id=2064):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r0)
sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)={0x48, r1, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x3}, @NLBL_CIPSOV4_A_TAGLST={0x24, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x1}, {0x5}, {0x5, 0x3, 0x5}, {0x5, 0x3, 0x80}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x2}]}, 0x48}, 0x1, 0x0, 0x0, 0x20008086}, 0x0)

4m36.846415379s ago: executing program 5 (id=2065):
gettid()
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
creat(&(0x7f0000000240)='./file0/bus\x00', 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r1, &(0x7f0000f5dfe4)={0xa, 0x4e20}, 0x1c)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2000007, 0x31, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0xc2, &(0x7f00000002c0)={@local, @link_local, @void, {@ipv4={0x800, @udp={{0x6, 0x4, 0x0, 0x0, 0xb4, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty, {[@end]}}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "7b4b143b7461fd777b1c012bd14efb9f49fcdb8f080c26a04883ad5c8c82b8af", "584cbf2649a50f2dbc43efa8698dfa871c51852e4451b57d037ad3c045942824251d7d17b5191584cdd4fbe40a27424d", "bcfd56f1373669caaa2f19935e6996c7096ffe4f3a4745a8f762b964", {"9a3bfbc1f39cb307b3472eb9cdb042d2", "643fcbb2c5a57df67d544af6e8dafe09"}}}}}}}, 0x0)
recvmmsg(r1, &(0x7f0000001580)=[{{0x0, 0x0, &(0x7f0000001440)=[{0x0}, {&(0x7f0000003ec0)=""/4096, 0x1000}], 0x2}, 0x7}], 0x1, 0x0, 0x0)

4m26.520976356s ago: executing program 1 (id=2147):
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000d00)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00}, 0x48)

4m26.426135388s ago: executing program 1 (id=2149):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
readahead(0xffffffffffffffff, 0x1de, 0x6)

4m26.334655214s ago: executing program 1 (id=2151):
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000080)=0xa0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f00000002c0)={@hyper})
r1 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r1, 0x7a7, &(0x7f0000000080)=0xa0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r1, 0x7a0, &(0x7f00000002c0)={@hyper, 0x1})
close(0x3)

4m26.246233432s ago: executing program 1 (id=2153):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000100)={0xc, 0x0, <r1=>0x0})
ioctl$IOMMU_TEST_OP_ADD_RESERVED(r0, 0x3ba0, &(0x7f0000000280)={0x48, 0x1, r1, 0x0, 0x1, 0xb97d})
ioctl$IOMMU_TEST_OP_ADD_RESERVED(r0, 0x3ba0, &(0x7f0000001140)={0x48, 0x1, r1, 0x0, 0x6, 0x1})
ioctl$IOMMU_IOAS_MAP$PAGES(r0, 0x3b85, &(0x7f0000000080)={0x28, 0x2, r1, 0x0, &(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1})

4m26.024320443s ago: executing program 1 (id=2156):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000500)=ANY=[@ANYBLOB="300000006800010003001000fdffff7f00000000000000000c0002000100000015abd3040b0002"], 0x30}, 0x1, 0x0, 0x0, 0x4008018}, 0x4000080)

4m25.867465802s ago: executing program 1 (id=2158):
syz_io_uring_setup(0x542, &(0x7f0000000440)={0x0, 0xa016, 0x400, 0x2, 0xfe}, &(0x7f0000000400)=<r0=>0x0, &(0x7f0000000100)=<r1=>0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x5, 0x1ff003, 0x81, 0x7f, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x40000000}, 0x48)
sendmsg$IPCTNL_MSG_CT_DELETE(r3, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)=ANY=[@ANYBLOB="e40000000201010800000000000000000a000000d00001800c000280050001000000000014000180080001000000000008000200000000002c00018014000300ff01000000000000000000000000000114000400ff01000e0000000000000000000000010c000680050001000000000047000280050001000100000006000340000000"], 0xe4}, 0x1, 0x0, 0x0, 0x2048014}, 0x0)
fcntl$getownex(r4, 0x10, 0x0)
ptrace$peek(0x1, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x41, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x9, 0x5, 0x0, &(0x7f0000000000)='syzkaller\x00', 0x5, 0xa3, &(0x7f0000000080)=""/163}, 0x94)
r5 = accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000240)=0xe, 0x80000)
getsockopt$bt_l2cap_L2CAP_OPTIONS(r5, 0x6, 0x1, &(0x7f00000000c0), 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000680)=@newtaction={0x5c, 0x30, 0xb, 0x5, 0x0, {}, [{0x48, 0x1, [@m_ct={0x44, 0x1, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0xf5, {0x80000001, 0x0, 0x0, 0x0, 0x400}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x8890}, 0x40)
prctl$PR_MCE_KILL(0x4e, 0x1, 0x2)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r0, 0x4, &(0x7f0000000180)=0x7c20c34a, 0x0, 0x4)
syz_io_uring_submit(r0, r1, &(0x7f0000000200)=@IORING_OP_POLL_REMOVE={0x7, 0x50, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1})
socket$inet6_sctp(0xa, 0x1, 0x84)
prlimit64(0x0, 0xe, &(0x7f0000000900)={0x7, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r6 = syz_io_uring_setup(0x3a17, &(0x7f0000000140)={0x0, 0x133b, 0x0, 0x2, 0x276}, 0x0, &(0x7f0000000280)=<r7=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(0x0, r7, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_register$IORING_REGISTER_NAPI(r6, 0x1b, &(0x7f0000000240)={0x2, 0xff}, 0x1)
io_uring_enter(r6, 0x75fa, 0xe475, 0x0, 0x0, 0x0)

4m21.593067409s ago: executing program 35 (id=2065):
gettid()
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
creat(&(0x7f0000000240)='./file0/bus\x00', 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r1, &(0x7f0000f5dfe4)={0xa, 0x4e20}, 0x1c)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2000007, 0x31, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0xc2, &(0x7f00000002c0)={@local, @link_local, @void, {@ipv4={0x800, @udp={{0x6, 0x4, 0x0, 0x0, 0xb4, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty, {[@end]}}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "7b4b143b7461fd777b1c012bd14efb9f49fcdb8f080c26a04883ad5c8c82b8af", "584cbf2649a50f2dbc43efa8698dfa871c51852e4451b57d037ad3c045942824251d7d17b5191584cdd4fbe40a27424d", "bcfd56f1373669caaa2f19935e6996c7096ffe4f3a4745a8f762b964", {"9a3bfbc1f39cb307b3472eb9cdb042d2", "643fcbb2c5a57df67d544af6e8dafe09"}}}}}}}, 0x0)
recvmmsg(r1, &(0x7f0000001580)=[{{0x0, 0x0, &(0x7f0000001440)=[{0x0}, {&(0x7f0000003ec0)=""/4096, 0x1000}], 0x2}, 0x7}], 0x1, 0x0, 0x0)

4m10.727808024s ago: executing program 36 (id=2158):
syz_io_uring_setup(0x542, &(0x7f0000000440)={0x0, 0xa016, 0x400, 0x2, 0xfe}, &(0x7f0000000400)=<r0=>0x0, &(0x7f0000000100)=<r1=>0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x5, 0x1ff003, 0x81, 0x7f, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x40000000}, 0x48)
sendmsg$IPCTNL_MSG_CT_DELETE(r3, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)=ANY=[@ANYBLOB="e40000000201010800000000000000000a000000d00001800c000280050001000000000014000180080001000000000008000200000000002c00018014000300ff01000000000000000000000000000114000400ff01000e0000000000000000000000010c000680050001000000000047000280050001000100000006000340000000"], 0xe4}, 0x1, 0x0, 0x0, 0x2048014}, 0x0)
fcntl$getownex(r4, 0x10, 0x0)
ptrace$peek(0x1, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x41, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x9, 0x5, 0x0, &(0x7f0000000000)='syzkaller\x00', 0x5, 0xa3, &(0x7f0000000080)=""/163}, 0x94)
r5 = accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000240)=0xe, 0x80000)
getsockopt$bt_l2cap_L2CAP_OPTIONS(r5, 0x6, 0x1, &(0x7f00000000c0), 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000680)=@newtaction={0x5c, 0x30, 0xb, 0x5, 0x0, {}, [{0x48, 0x1, [@m_ct={0x44, 0x1, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0xf5, {0x80000001, 0x0, 0x0, 0x0, 0x400}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x8890}, 0x40)
prctl$PR_MCE_KILL(0x4e, 0x1, 0x2)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r0, 0x4, &(0x7f0000000180)=0x7c20c34a, 0x0, 0x4)
syz_io_uring_submit(r0, r1, &(0x7f0000000200)=@IORING_OP_POLL_REMOVE={0x7, 0x50, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1})
socket$inet6_sctp(0xa, 0x1, 0x84)
prlimit64(0x0, 0xe, &(0x7f0000000900)={0x7, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r6 = syz_io_uring_setup(0x3a17, &(0x7f0000000140)={0x0, 0x133b, 0x0, 0x2, 0x276}, 0x0, &(0x7f0000000280)=<r7=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(0x0, r7, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_register$IORING_REGISTER_NAPI(r6, 0x1b, &(0x7f0000000240)={0x2, 0xff}, 0x1)
io_uring_enter(r6, 0x75fa, 0xe475, 0x0, 0x0, 0x0)

3m16.943546719s ago: executing program 7 (id=2561):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x8080, 0x0)
fcntl$lock(r0, 0x5, &(0x7f0000000040)={0x0, 0x0, 0x60d2, 0x7fffffffffffffff})

3m16.813455359s ago: executing program 7 (id=2562):
r0 = gettid()
timer_create(0x1, &(0x7f0000533fa0)={0x0, 0x21, 0x4, @tid=r0}, &(0x7f0000000300))
r1 = inotify_init()
readv(r1, &(0x7f0000000140)=[{&(0x7f0000000340)=""/263, 0x107}], 0x1)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000080)={0x5, 0x1000086}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0x4002)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)

3m15.496270301s ago: executing program 7 (id=2564):
sched_setscheduler(0x0, 0x2, 0x0)
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000300)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x0, 0x0, 0xa}, @l2cap_cid_le_signaling={{0x6}, @l2cap_ecred_reconf_rsp={{0x1a, 0x4, 0x2}, {0x7}}}}, 0xf)
r0 = syz_io_uring_setup(0x45b4, &(0x7f00000035c0)={0x0, 0xfffffffc, 0x10100}, &(0x7f0000000140)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000300)=@hci={0x1f, 0x2}})
io_uring_enter(r0, 0x291c, 0x0, 0x0, 0x0, 0x0)

3m15.034383763s ago: executing program 7 (id=2568):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
syz_open_dev$tty1(0xc, 0x4, 0x1)
close_range(r0, 0xffffffffffffffff, 0x0)

3m14.840202158s ago: executing program 7 (id=2571):
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./bus\x00', 0x40, &(0x7f0000000080), 0x5, 0x505, &(0x7f0000000a40)="$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")
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f00000027c0)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000f000000970000005000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='sys_enter\x00', r0}, 0x10)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000680)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x181d011, 0x0, 0x0, 0x0, &(0x7f0000000140))
mkdir(&(0x7f0000000880)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0x4)
rmdir(&(0x7f0000000200)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00')

3m14.542844946s ago: executing program 7 (id=2574):
gettid()
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x15, 0x4, &(0x7f00000000c0)=ANY=[@ANYRESDEC], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xa4, &(0x7f000000cf3d)=""/164, 0x0, 0x25, '\x00', 0x0, @sk_reuseport}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="19000000040000000400000002"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xe, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r3, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)={0x94, 0x0, 0x1, 0x409, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @mcast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @local}, {0x14, 0x4, @local}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}]}, 0x94}}, 0x0)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000080)={r2}, 0xc)
creat(&(0x7f0000000240)='./file0/bus\x00', 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f0000f5dfe4)={0xa, 0x4e20}, 0x1c)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2000007, 0x31, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0xc2, &(0x7f00000002c0)={@local, @link_local, @void, {@ipv4={0x800, @udp={{0x6, 0x4, 0x0, 0x0, 0xb4, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty, {[@end]}}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "7b4b143b7461fd777b1c012bd14efb9f49fcdb8f080c26a04883ad5c8c82b8af", "584cbf2649a50f2dbc43efa8698dfa871c51852e4451b57d037ad3c045942824251d7d17b5191584cdd4fbe40a27424d", "bcfd56f1373669caaa2f19935e6996c7096ffe4f3a4745a8f762b964", {"9a3bfbc1f39cb307b3472eb9cdb042d2", "643fcbb2c5a57df67d544af6e8dafe09"}}}}}}}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000001580), 0x0, 0x0, 0x0)
syz_mount_image$cramfs(&(0x7f0000000000), &(0x7f0000000180)='./file0\x00', 0x0, &(0x7f00000006c0)=ANY=[], 0xfd, 0x146, &(0x7f00000002c0)="$eJzsj79LOnEcxl/39de30jQwsKAIGhLDPE9sa9BIErKDwqUp0IsCTVEIx2pu6A9wKIImcYjGhrLJUgj7O9yCxuLjXYXQ0v55LXfv1/PwcLe20g3iAxsmq6ViuWJUq0Z+bkvPpLZvbu/GhXcB/weNYrkiynmzf5+AffG0Q//E1I+ef0DBWMqVCuLuJyAIJMdg78CBitkdFc4vXMGIWi44D61J02m/uJjlpu2Q9JpO7H1cwoLYm/jZewNqdYf1Z+HQ9YwtYR3U6ovNxtNmp50Oh2aNMy01deUO2MgaTkAR+WukHX6JNBu9biezoWf0bkzTlmNqVFXjPf25k44fn2Nfdx/BjjK85xQbWThVoK5AY5D3HxQP0Lp414tel38EOPSBMpwo1veZSW434PgyfL9IJBKJRCKRSCQSiUTyVz4DAAD//0wAXes=")
execve(&(0x7f00000003c0)='./file2\x00', 0x0, 0x0)

2m59.471901759s ago: executing program 37 (id=2574):
gettid()
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x15, 0x4, &(0x7f00000000c0)=ANY=[@ANYRESDEC], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xa4, &(0x7f000000cf3d)=""/164, 0x0, 0x25, '\x00', 0x0, @sk_reuseport}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="19000000040000000400000002"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xe, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r3, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)={0x94, 0x0, 0x1, 0x409, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @mcast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @local}, {0x14, 0x4, @local}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}]}, 0x94}}, 0x0)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000080)={r2}, 0xc)
creat(&(0x7f0000000240)='./file0/bus\x00', 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f0000f5dfe4)={0xa, 0x4e20}, 0x1c)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2000007, 0x31, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0xc2, &(0x7f00000002c0)={@local, @link_local, @void, {@ipv4={0x800, @udp={{0x6, 0x4, 0x0, 0x0, 0xb4, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty, {[@end]}}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "7b4b143b7461fd777b1c012bd14efb9f49fcdb8f080c26a04883ad5c8c82b8af", "584cbf2649a50f2dbc43efa8698dfa871c51852e4451b57d037ad3c045942824251d7d17b5191584cdd4fbe40a27424d", "bcfd56f1373669caaa2f19935e6996c7096ffe4f3a4745a8f762b964", {"9a3bfbc1f39cb307b3472eb9cdb042d2", "643fcbb2c5a57df67d544af6e8dafe09"}}}}}}}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000001580), 0x0, 0x0, 0x0)
syz_mount_image$cramfs(&(0x7f0000000000), &(0x7f0000000180)='./file0\x00', 0x0, &(0x7f00000006c0)=ANY=[], 0xfd, 0x146, &(0x7f00000002c0)="$eJzsj79LOnEcxl/39de30jQwsKAIGhLDPE9sa9BIErKDwqUp0IsCTVEIx2pu6A9wKIImcYjGhrLJUgj7O9yCxuLjXYXQ0v55LXfv1/PwcLe20g3iAxsmq6ViuWJUq0Z+bkvPpLZvbu/GhXcB/weNYrkiynmzf5+AffG0Q//E1I+ef0DBWMqVCuLuJyAIJMdg78CBitkdFc4vXMGIWi44D61J02m/uJjlpu2Q9JpO7H1cwoLYm/jZewNqdYf1Z+HQ9YwtYR3U6ovNxtNmp50Oh2aNMy01deUO2MgaTkAR+WukHX6JNBu9biezoWf0bkzTlmNqVFXjPf25k44fn2Nfdx/BjjK85xQbWThVoK5AY5D3HxQP0Lp414tel38EOPSBMpwo1veZSW434PgyfL9IJBKJRCKRSCQSiUTyVz4DAAD//0wAXes=")
execve(&(0x7f00000003c0)='./file2\x00', 0x0, 0x0)

2m38.697935304s ago: executing program 8 (id=2807):
setresuid(0xee01, 0xee00, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, {}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

2m38.490855711s ago: executing program 8 (id=2808):
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000340)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x400, &(0x7f0000000100)=ANY=[@ANYBLOB="6572726f72733d72656d6f756e742d726f2c757466383d302c757365667265652c646973636172642c757466383d312c756e695f786c6174653d302c73686f72746e616d653d77696e39352c756e695f786c6174653d302c756e695f786c6174653d302c0008442895b66131b4e4d54b2ba6ae54dabaa5206d4a2a060b5ccc774b3ec4c81a1a9852327ff871d16d0d9344e764c68194b9d9d0be76c595bac1fc5a0a8256a7b77e071e9bdd6100f9aeb8576d329be6e4bb168f1434000000", @ANYRESHEX=0x0], 0xfd, 0x296, &(0x7f0000001080)="$eJzs3M1qE1EUwPFj0o80tU0WIiiIB92oi6GNL2CQFsSAUhtRF8LUTjRkTMrMWImI7c6tz1FcuhPUF+jGnQt30k0XCm66UCOdjzatQ6u2yYTm/4Myp3Pvydz5CmcGctfvvHpcq7hGxfQklVFJiSzLhkh+MwodC5cpPx6SdstycfT7pzO37t67XiyVpmZUp4uzlwuqOn723dPnr8998EZvvxl/Oyyr+fvr3wpfVk+unlr/NRt9esNTU+caDc+csy2dr7o1Q/WmbZmupdW6azk72it2Y2GhqWZ9fiy74Fiuq2a9qTWrqV5DPaep5kOzWlfDMHQsK/0m/c8Z5ZWZGbPYkcEgCSNxKx2naKZjG8sr3RgUAADoLUnV/4+qrlZdre9X/6eE+r9zqP+PkuNrEvsUuFn/Z8P7d8uln10cGQAAAAAAAAAAAAAAAAAAAAAAOIiNVivXarVy0TL6GxaRjIhE/yc9TnTGQc7/cPeHi0PW9sO9jIj9crG8WA6WQXuxIlWxxZKJQZEf/vUQCuLpa6WpCfXl5b29FOYvLZbT/vXh50fy8fmTQb7uzB+UbPv2C5KTE/I5Lr8Qmz8kF8635RuSk48PpCG2zPvX9Xb+i0nVqzdKu/JH/H4AAAAAABwFhm754/ndbzc0mjZkV3uwcvv9gOT2eT+w6/l6QE4PJLffAAAAAAD0E7f5rGbatuUQ7AiuiMiefZI+dCM9cqA6GKQ2z0HXt/41ujV64yAcarD2JNi1v+mc4JcSAAAAgI7YLvqTHgkAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAP1rj2nAMmEXf03U/3/mHmvbXLr7ewgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD0jt8BAAD//ysQG/U=")
rename(&(0x7f0000000000)='./file1\x00', &(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

2m38.215717558s ago: executing program 8 (id=2810):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000280)={0x73622a85, 0x110b, 0x8000000000002})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0xffffffffffffff61, 0x0, 0x0})
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x1, 0x0)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r3 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000003480)='/sys/kernel/debug/binder/state\x00', 0x0, 0x0)
read$FUSE(r3, &(0x7f0000000480)={0x2020}, 0x2020)

2m37.986822413s ago: executing program 8 (id=2813):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0x3, [@float={0x1, 0x0, 0x0, 0x10, 0x10}, @typedef={0x1, 0x0, 0x0, 0x8, 0x3}, @ptr={0x0, 0x0, 0x0, 0x2, 0x2}]}, {0x0, [0x2e]}}, 0x0, 0x3f}, 0x28)

2m37.707083051s ago: executing program 8 (id=2814):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x5}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x101, 0x0, 0x0, {0x5}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x58, 0x6, 0xa, 0x401, 0x0, 0x0, {0x5, 0x0, 0x4000}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x30, 0x4, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, @tunnel={{0xb}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_TUNNEL_MODE={0x8, 0x3, 0x1, 0x0, 0xf5}, @NFTA_TUNNEL_KEY={0x8}, @NFTA_TUNNEL_DREG={0x8, 0x2, 0x1, 0x0, 0xc}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0xcc}}, 0x0)

2m37.190217578s ago: executing program 8 (id=2815):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000001980)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r0}, 0x10)
r1 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001840)=[{&(0x7f0000000580)="6700000011008188040f56ecdb4cb9cca7480ef434000000e3bd6efb440009000e000a0010000000ba80010000005a8c3774fa0af3dc59a933c1e7a6d3361d83b20000319cdf5656826edaaa11032701c61ec666d482078ccebcb9a4f187f7a4e98f09cdc2649f", 0x67}], 0x1}, 0x0)

2m22.07775306s ago: executing program 38 (id=2815):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000001980)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r0}, 0x10)
r1 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001840)=[{&(0x7f0000000580)="6700000011008188040f56ecdb4cb9cca7480ef434000000e3bd6efb440009000e000a0010000000ba80010000005a8c3774fa0af3dc59a933c1e7a6d3361d83b20000319cdf5656826edaaa11032701c61ec666d482078ccebcb9a4f187f7a4e98f09cdc2649f", 0x67}], 0x1}, 0x0)

1m20.624426434s ago: executing program 6 (id=3338):
ioctl$BTRFS_IOC_RM_DEV(0xffffffffffffffff, 0x5000940b, &(0x7f0000000540)={{}, "2aeb9a9684c23f0069aceba3face085bc66d42f80af8ba2b267e282f11657e61ea80b869e772a5fdfbd16051b8a1291c16a9bdffd635099e64ed7f037c36a8e145a16ac600c9e1062f94ff36761bc30955220e764cc88fcda711840572c9246b2e566a77804b0e81d961d353b673ba6a94e07dfd8418e998c6899d5548a238a08139190972ce672b50ac526e3457407a8099a36c1c72d361a0f86f705f7cad658395565adeb96b75617638cdf094865997216d9147bd486435ac11ee32dff34d8d96b99fa2df0785c01f8856ffb103db8a7aa17c93786652dbedd7a1b381ea9e0f462215dc055f9678153a9f0b0e0d799f7811ad1e95c2e86f8c8402c8361a48a6a436f11de97bcc2dd54b4b07398c46ef66c49dcbedb790dbb61ff6f5922ef12f70d44d12db4f95a3e5da5f3a8dbe94fb73a2ebdeadc598c7c956ccfbfa6cfa0e7c9cd6243668b17c9b1fcfb488e846eb4f634a7f709585351258aa523088833c8bce7757d92cb062d2b6d621f48de0458cd59366317fe4eb0d877839a0c1057d9f13b69d3ee9765e4d85615da08444605c7770baef2a8f335ae7cb14874a812a9b3b709fa86a28f1d0fba1e17a94f678e221ec810b7e2cd8422af05ada4a6912cdfb7e76b638ee3a7cb60039dd51e28b37005f10cdad5f6772f286e18de88b15101e0244d795544c98a2ef639821a6bc7b89180d991b58c93598bdda017d9bca13d7ba6c992fb36428e2eff8390210a9f0b4ab6aeeaa4e1d59c2afc06b17360317286bac72609aaf8b3a85b347e7754725ac32bef1b1a0948219052c2535c95ea201a6490b594575e19dbebb44c78f12777515ae1f3cc809abe8ac24edc6133186e6e70dbf70ff3221b552785a8b4ff17e84d96f1104532f8a01c73b9f567760fdf6bd060c2e7bb64b5f3f1962bdd7af3a9ee9eba7dc4d63de5102980581c9e5ca2277399cf5592333915de6d791a0a4391187382e76113a76d66d6b06e6c24ce259a2378f8c588dac95e1641544de4a90cb7f965f4fff78d8d2fea2717dd31ca540732d77f8fd0bbae027dd21086825b87d3a741838354cbb08026c10fda43c13d668d2790f7ccf02038952605a15bd37a41e78b5fe655f761614ceec868fa76290568b72736b6ea5b0c261c447a1b1a594bbe413c43c87862cee069de6f6bb6a3a89371d8729b5ce212514399ed5416f50203c0cf3c9d1f9e366f5d58d6e34496892ff2aec699e55f7efe6b133b57af623b1d4c54f4cb55217abe5a74bbbc0c6cc97b5bfa6a73809ea3b55fa3451ea03e9d46acba4f6440d175a3a855dcb544b11c320545859e883ad068a814b6d194815a1e8ce222b6c7cdde38e6f5bcd2c72b0686065dfd9e3f04cf762f9e62b4f2276c0d3b77477661524cf81261ac17e5d4668bd7fd5ae4cfe3a2f9e27b6dd2f9315fb6258072c58f385f5ae28a3320460291ce3de402a06475dea7c000775875e00587350a5e8befaf25e649cca6de2b9b61bd5b0a438e2157750f120ce12c6a8c1a02438d1dbdd612b9150494f5cb2cfa7d893796710d42a768f872744a372448248225375515f4e8cfc2692d568e9192abdb96cbf58f1b3e8db9ff7e6365fe8f4d380aa7909c36104b75bfde737cda262cf23355ffed7f0d7cbf3cd1c93e06cf88a8866603b29520e16608bc392f4ecaa33dfc41019d7e2ccd39f02157042ca61bfe35c1d6204d12fd2f351947df3ff30236158cd544c22cf563d1abf4c4cb04c207a65b90e64e5b78897b870472945df7ccc02322bc3c5543e323ffdc9fb1c47320f9acd398c9e00d23520f09ba8510b4f9857b22a60e9516ccd40c8476c15e8624b5af07aa0dcb4c8f063c35458e10038e800a9339454db5773a87b15fdae394c7a25af1c10b4141ac26ff3eab7071bef181d35dd95be8809b258b175152f091bf0ccafb3ccdd2ce2a084cc81b649ad54c132cf455363d8de5d81a793a08e38a273b8d11fcf08c8b7c826878d99ef3f7f46f415e8af7323657ca29e98dd615d46e3e871e78504dfde69d9c3d7fd1bf530a71090150a4b782350fe600502440ce640d38de113ba48c1a82c7049b9ab5c61eacfc6bbb7fbc1168427060e7416b105e8b0a583a664ceb4fe89d57f12184801e0200cf2184e200d83cb0a5b4b13194a4871f87738db208ec48f0b52150cdf678667f3b6bc3aa48b54808d0ae4bef3f31dba831ea63eccdfdb280df4ba1c7e49c82a33d36bedd417c1d78e1276cea1d4ef5d771049b9245d7d8d6af9724416f7cc50d3fc1b4ae4b241784d237ecc037d471f4a8ed01bb43732568bb6d63e4cedfa31f6b6fa29c8a9e3a7fa53dfb7a120a5671a8e3f45c13c7a28ef8a4c56a90e5217f0b4344659b9d896384e365b9063b817d0f249da0474aeccff51678439f1c04af94511fb936606ae7c361c7f6318831d61ef6496489fb526674a1f2c02c653ff2c7f95fc95e7b98e63cf32ae7fdd0b63d88a1cbbb31d136b5fd3b0d6e6d53a47af7c747e2fc1811a1cb6ec0aa3d067405b364527658098465efe48f646f90e598bd05905aec091d9ff4d1d77ccc3c4a3c9f887ec0d97dce8fe800a15e1544ceb0ed04175940af99b755aa5063df8ae813997b823756bcf321fb858564b6dd622883bd69df7569c7b576615ba76269199895f9a1c1d19d23214f674891b9cd5f94aaa7821878177fb9df7ccbea19748eaac9792aff2b90ca6fb5334dfef89204f9baee31a9d34e4f53dec3885a323330234016848611b29cc81ef56514aa881eef566b1d1e4b7cc6041148171a029bd6ffdc5223dde34ebd22f3380c9d4254b5262b4533c75a5205cb907d857cf757e241ffb885db35d0d411cfdbf712ec5d2204b87fd40212fc0b2043c340e1dc9bdab2f3480535d999a45f219d1e23b4be0f7566682bd4ab57ff94c614354dd86cd9c3b9e8aa1c656ed0123b9f97ad8b6928a5f81f4490291bfe3f77297bb1ac904f16fb5340f2a9293ce1a8873ee071d19bb7451e6d930f937da8e6bcb71a093decf99c116f62cbbe6a7ce6d73f521fd8e8550459a3ea7719a603cf8b4687c39565818f0e8440063aa85f057144a0869c27bbe178467c6b4909ab97221d6b3dfe7985fe46807781bc24feeaf314f7c707406fe4f4c4dfba29477ef00bc5ace91c8cb7cc5816509160d58161753cd5f9a5ab425f8efeae6c2dbe6260eea21ea7a8c65e1a2fa1478efcd10e7055e8165228d6fd85342e1178cf4469052584fd5e6dda313946202b4d0fbbf046cc06e00dd14b6f1403014b96347177c0f9935fabe6942e7bbfccb5cffdce7436b8e461b3086f91bd09a208980e551d155687858e41a6a147c3da76716fc1eb7a7497e905411b46de33464d0acadaf85069316be6f5d75f2b9784b5ac83f95d9d661126bafed699ff3c6c4b7bd95e6f5ebe43fb8e5a1577ed832a7d6845a99e0470d95bcc92565285a667d4ff9fe1fdf965e5143b6ebfb13763afad296e7b05311c86d438a016fd335825f5d15971ab50469a8750e0afe66996b6a66ced5a86d6389d8f6a48b1276f4e609e78012ab4fe2d6f465a784064bb8a7e1a3f369d7395beddaab0bc92714c4bd97495de50afd1f8b01a59824c171419ca3fd41587636e6a4a2f857d5d209c46647ba81313cd385de6198bd4c117c147e0f48a535764bfcd96e5a4511ccf63af772707d5c95ee1bc25dbb9955a5f5a32e4e7e97c1024e90c7963e2a0465f212bc5ed627c8015aecb666474d0040e8ee3691fd6bf2a0c956e8ce629f67b4db7576c201dac28cf71c2b3e99384c28082a958d1ba4bfb89fef65bcf64a7000d9722134389568510c7802285fc1ba951b5d69910fe3c819a75384666e5c725f4cf9506bf30970751b1f836901225a9b30e92cae1b43bc658728fa8ba503945a4400d713db012e11a021cb06124cfda4035e39e76d91050203642ddf5e2823421ed0206e95348e224a5b31a1ba92a3290c7ccb35b30cacd4ba2e6e0771199e2311bd8e984691b84777f2417334c02252978b2a6f5ec8d9475426533dfbf272720a6bff65d1248b5c84361ec4e8e6abf26ef04f70613e8d439b4c9d287f49092df9388546da73dd5155a6e09d7d1bcd18fa5414712fd2e6cc6d1b5ab7435c04f1811903f0f444836eb0638ce38ccbe14f6fd840d3c2ddc105f88563466e203267f8a24a1e0d00f5900e0867bda010b5857c1619884a35b31ff955f6937c707528784fc13a3ebd934d1f3a6a42d5ccd16418c545aa34339f494c7d31ee19ee8bfa8ef6ade46cb12ab2516b68b370465b123276a8ad98359a0f59aeb788cf38b226fe6adc89e16cb0e59862b67095492336b959cbf2057ce5e13413c8742bbc02775f8edc294a4a2661d824d6e4167b1805bc7d27f5661b3925ab01cb3717c0d399467e9411ef7074292a2b1bb8e480f9bd2bb24ca3583bfcc4b77110c9cfb20ebfb72b8899cd47498a63264e42c1a40a7a6f95dc828732ea1438f949d8f452eed7dc609bcff2600fba524b7cf275906e8005ff284c962abbce6b8ad1e6299d97d88a664ab1511e73af21bbe21ee0c3c5270b27f1c9b6cf034421d69ea6e8a576a7973875f0b013370e0bafbc3ee17db15e17afe1bfa6305e5ca40809cce23d81acd98f874784f6c0966678bcca27651694242384c8882b6acaa1b6285ffee146348454aae1430086a6875bd616498acdcd8368fbeb6ca98558381cc824cc08a9703009c5befc75f20100b77dca96865732618b3cf86d07afad8ad3b07be7aad55c06939103f6952dd9477707de841565d6f8806601a2f572778d580a79e108c3188e4b20e2d7e65d4620e813ca5c73db1a3c82613ba57a1b04b9d22ec05c60c71c38fe2d22133f7a6107796c7e9917a4856207d0f997cba864e1a58978e5e70378eb0464fa7021863f05894ebacdd49006c9d9d7abefdf620efcbee36267eaf1bf60906dcb3c942058ea01731bc1b6bd70fcaca9a4c297e0a52a6566009ae56e32771aa0d503299f0ec030ec9597c38cf0841a63492545fcb81cc9bf2aea59cd0f376f4291c97ebc78d20974c970b366c24a9eddf517f71f7ffb7def5387bfb2461c44a239a9fff7a593a25e9ef19d6cc23576b3f9f29cbf3f7e32a696b82280e5290f70a9a997ba0019f38621c243bc08d2ae41293991a48688feffd716363b6340d40a476d53db0ad943c8a0c2053e7d71593e255fbdc79259e85d3f865eea3aa918acac86cbdcf4288fb6443b7465839960f4943d4c652562d2b1843f6cb0eb04f619c06a0bf5d38ffc5e6ef9dfa52f2a38a7bc356de63eb115531d6cdc9447325173a5f3396ac5354b01a406726561553c13f5fe26a8595234da686eaf8d9ad1977b9c04d25132f1a658db91086574319f663600bef80a98911715332f9c1757cfcbb46898f51e73ffe8a0eeb081d8362838f860cdc2dd4f70af5d6fe65bfefbc08e8d094e052b2fb8bbd0d0391dc9f6fe03496a085c9cad9c6e41db724a4651bdbd38f0b33326b73afccdfcceb7a409add8f8d413615bb7415284020877405c7d8f842ac0372be25e144961e404becb3cc077f1f3ac1326a26895a86c756f8736183a9b52bec84ad6b2f4c5de914cc6e61019b4357966c7d90b9eee11d06b172b63ea296b26ac9c6ab13599a443a86c6af8bbb5dc83822b99763f76bdf7337a4b1b7fa293b30626c4e0b09147f7d0ca938d181f0e3d2398630b5d04ce8f9d5f835e26347888afd3bfb2737f1335f0a1a1911367ad3633d87a1f3dc3948051799699d75887fefd94e74be4eac33565f12e"})
r0 = socket$netlink(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r0, 0x10e, 0xc, &(0x7f0000000640)=0x4, 0x4)
sendmsg$netlink(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000540)=ANY=[@ANYBLOB=' \x00\x00\x00_\x00]'], 0x20}], 0x1}, 0x40)

1m20.565529207s ago: executing program 6 (id=3339):
socket$kcm(0x2, 0xa, 0x2)
socket$kcm(0x2, 0xa, 0x2)
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ptype\x00')
socket$packet(0x11, 0x2, 0x300)
preadv(r0, &(0x7f0000001580)=[{&(0x7f00000004c0)=""/72, 0x48}], 0x1, 0x20000036, 0x0)

1m20.565363894s ago: executing program 6 (id=3340):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='contention_end\x00', r0}, 0x18)
r1 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$inet(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000440)="5c00000014006b030231a6080c000af32c00000000f800250502000f00e5aa000017d34460bc24eab556bd05251e6182949a2756f475ce36c2d13b48df000000000000ecb8f6ec63c9f4d4938037e786a6d1bdd700e6657594f1817d", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)

1m20.476177601s ago: executing program 6 (id=3341):
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0x3008000, &(0x7f0000000140)={[{@quota}, {@resgid={'resgid', 0x3d, 0xee00}}, {@bh}, {@noload}, {@data_err_ignore}, {@abort}]}, 0xfe, 0x452, &(0x7f0000000980)="$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")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x1204001, &(0x7f00000011c0)={[{@lowerdir={'lowerdir', 0x3d, '.'}, 0x3a}], [], 0x2f})
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0/file0\x00', 0x0, 0x84)
lseek(r0, 0x1, 0x0)

1m20.416451244s ago: executing program 6 (id=3342):
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x1000, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x4)
fcntl$setstatus(r0, 0x4, 0x42000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
fcntl$setstatus(r1, 0x4, 0x2400)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x101001, 0x0)
writev(r2, &(0x7f0000000000)=[{&(0x7f0000000140)="d5", 0x1}], 0x1)

1m20.175879812s ago: executing program 6 (id=3344):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
writev(r0, &(0x7f0000000040)=[{0x0}, {&(0x7f00000000c0)='n', 0x1}], 0x2)

1m20.084019146s ago: executing program 39 (id=3344):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
writev(r0, &(0x7f0000000040)=[{0x0}, {&(0x7f00000000c0)='n', 0x1}], 0x2)

1.909726913s ago: executing program 9 (id=4320):
syz_mount_image$nilfs2(&(0x7f0000000180), &(0x7f0000000040)='./file2\x00', 0x2000c6, &(0x7f0000001340)=ANY=[], 0x1, 0xac5, &(0x7f00000001c0)="$eJzs3V2MXFUBAOBzZ3e2f1s7xVa2tEARDfjDLltaBSu0hCZqTGoTH0zAl6aU2nSpxhIihIRCojExBBJCn3woxhdfIGoM8GIqD4aYQIzRkPiExNcaSXwgRhizs+fMzp7O9M5sd3dmdr4vOXvm3nPvPefO3rlz597zE4CRVWn83b9/YwjhpTdePHLjy289Pz/nUHOJWuPveMtUNYRQxOnxbHvvjS3EH33w1Il2cRH2Nf6m6XD0cnPdLSGE82FvuBRq4bmHLoy/+9rRd14JZx4/duTt11dn7xcVq50BAAAMgGOXDu7f+Y8/797+31dvOhw2NOen6/NanJ6M1/2H44Vyul6uhKXTRUtoNZEtNx5DJVturM1yrflUs+XGO+Q/kW232mG5DSX5j7XMa7ffMMzScVwLRWV6yXSlMj298Js8NH7XTxTTZ0/PPXKuTwUFVtx/bg4h7BVGM+y+pf9lEPoZ6tv6fQYCWJA/L7zC+ZV9Utfc2nh3+V++v9J+/RbVFS0ho+BnP971rdCH4z8n/8HO/5fPqKnAylmHR9Nft7bsV/ocTcbp/DlCXn+p189/2l7+PKLba4BOzxGG5flCp3KOrXE5lqtT+fPjYr26N8bpfbgvS4+fg8bjtPx/Oiz/Y6C9D4fl/n8YgDIIwlXCrqL/Zeg11Pt8/gEGV15vrh6l9LxeX56+oSR9Y0n6ppL0zSXpoct0GEW/fez58EKxeL8r/03f6/2wyWwTn+ixPPn9yF7zz+v9dq+6Ivnn9YlhoG3544W7H37wLwv1/4vm8f9xPN73xula/Gxdiguk+4X5ffVm3f/a0mwqHZa7LivO1jbLN17vWLpcsWNxO6HlPHNFOabSGgt3dLd1Wm7P0u3XsuU2xbAxK29+fbI5Wy/Vn04nxcklpVnc32rLfvx76+J5LJUjnVe2xzgvByxHOh6X1v+fP/oa9f+bj7GmQrV45PTcyTvjdPq8vTVW3TA/f3atCw5cs27b/0yFpe1/Jpvzq5XW88K2xflF63mhls3f12H+XXE6fc99b2xTY/70ie/PPbyk5PGH/NMr8z7AKDr3xJNnjs/Nnfzhar6Yz2iVs1iHL8L5EAagGMt9kY6wQSmPF928SP+143P9OiMBa2XmsUd/MHPuiSfvOP3o8VMnT508O3tg9u57DszOfumemcZ1/Uzr1f16rC4Mo2vx27/fJQEAAAAAAAAAAAC6der9mYt/e/PLf19o/7/Y/i+1/081f1P7/59m7f+zZv7NCsKpHWBqx3dFe/usg9WJbLlqDJ/Mtr8jy2dntt6nYtwcxy+2/0/Z5f26pvJcn83P++9Ny01l8/P+UiayPkiK8JPNreX7dIyf/d9CF0S/CNBHxab2s2Nc1r91OtZT/xT6pRhO6f+WjobUj8mWeCik9t6pv5LU/0M6/29fm2KywtaiXWG/9xFo71/D0v/3ckK6iOl3OQRhQEO9bhQPYDD0e/zPdN8zxWd//42N8yEtdvn+pefLvP9SuBaDPv7kesv/mT7nn+ti/M8VHV64Of5d1+e/bMS8/AFQlw4++81/tmQbbug2/3z809QP9I7e8v9qzD/tzW2hu/zrL2f55w+EunRvlv/mLvO/Yv/3LC//+2L+6W27/dZu818ocVFZWo78vnF6/pfuG38ny/9Qtv+pb8+e93+ZAzUejvnDKBuWcWZ7NSzj/3aS18M4EKfTiTDVc8jHO+m1/Kl+Rfoe2Jltvyj5frvq+L9D8DC4TfnrT9frPx+VcVy+EuOyz8Nk/J+m47HWZrrSMl1t896u13MNDKv31uHzv8Y5bADKIaxA2DQAZbj2sPC12jovfRlebb0/rH7Z6vV6X/v01aFwf/X7/e/30+d+59/v979MPv5vfg2fj/+bp+fj/347S8/H/83Xz8fXy9Pz8X/z93NL+/TmL9Prs+3m4wNPlaTvKkm/oSR9d0n6npL0G0vSbylJv6kk/eaS9OtK0m8NXw+t8vTPlKz/2c7pH7Yu2mn920u2/7mS9PUutUcZ1f2HUZa3z/P5h9GRnv90+vzvKEkHhteFV2cfePA3360ttP+faN4PSc/xDsfpavzt/KM4nT/3Di3T82lvxun3s/RBv98BoyTvPyP/fr+tJB0YXqmel883jKCifSXN/Hlbs9+qGKd+qzpd5zNcPh/jL8T4izG+I8bTMZ6J8WyM961R+VgdD/z6dwdfKBZ/72/L0rutT563B8r7ibqry/Lk9wd6rc+e9+PXq2vNf5nNwQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPqm0vi7f/9UEcJLb7x45OKfvvar+TmHmkvUGn/HW6aqzfVCuDPGYzG+GF989MFTJ1rjj2NchH2hCEVzfjh6uZnTlhDC+bA3XAq18NxDF8bffe3oO6+EM48fO/L266v3DiwoVjsDAAAA6KP/BwAA//8LwBbF")
symlink(&(0x7f0000000540)='./cgroup\x00', &(0x7f0000000800)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

1.771844326s ago: executing program 0 (id=4322):
r0 = fsopen(&(0x7f0000000100)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
fchdir(r1)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents(r2, 0xfffffffffffffffd, 0xbb)

1.600649138s ago: executing program 0 (id=4323):
prlimit64(0x0, 0x1, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x1, 0x0)
fchdir(r1)
r2 = open(&(0x7f0000000040)='./file1\x00', 0x80242, 0x0)
write$FUSE_CREATE_OPEN(r2, &(0x7f0000000180)={0xa0, 0xfffffffffffffff5, 0x0, {{0x4, 0x1, 0x5, 0x6, 0x3, 0x1, {0x1, 0x180, 0xff, 0x5, 0x100, 0x7cf4, 0x9, 0x7ffffffd, 0xfffffffe, 0x8000, 0x0, 0xee00, 0x0, 0x3ff, 0x1}}, {0x0, 0x11}}}, 0xa0)
sendfile(r2, r2, &(0x7f0000000080)=0x2, 0x7f03)

1.448705082s ago: executing program 9 (id=4324):
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x2a0471a, &(0x7f00000000c0)={[{@quota}, {@nodelalloc}, {@nouid32}, {@errors_remount}, {@jqfmt_vfsv1}, {@oldalloc}, {@stripe={'stripe', 0x3d, 0x5}}, {@jqfmt_vfsv0}]}, 0x2, 0x46b, &(0x7f0000000580)="$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")
r0 = syz_open_procfs(0x0, &(0x7f0000000700)='mounts\x00')
read$FUSE(r0, &(0x7f0000000980)={0x2020}, 0x2020)

1.220277474s ago: executing program 0 (id=4325):
mq_notify(0xffffffffffffffff, &(0x7f0000000000)={0x110c23c000, 0x3, 0x2})

1.13750338s ago: executing program 0 (id=4326):
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(r0, 0xc01064bd, &(0x7f0000000280)={&(0x7f00000008c0), 0xffa4})
close_range(r0, 0xffffffffffffffff, 0x0)

1.137163164s ago: executing program 9 (id=4327):
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0)
mount$cgroup(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0), 0x2010042, &(0x7f0000000000)={[{@subsystem='hugetlb'}, {@subsystem='memory'}, {@subsystem='cpuacct'}]})
mount(0x0, &(0x7f00000001c0)='./file0\x00', 0x0, 0x40078, &(0x7f0000000000))

1.037923076s ago: executing program 9 (id=4328):
syz_mount_image$jfs(&(0x7f0000000240), &(0x7f00000000c0)='./bus\x00', 0x200000, &(0x7f0000000100)=ANY=[], 0x1, 0x6312, &(0x7f0000002140)="$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")
symlink(&(0x7f00000005c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', &(0x7f00000002c0)='.\x02\x00')
symlink(&(0x7f0000001640)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/../file0\x00', &(0x7f0000000300)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
r0 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, 0x0, 0x0)
clock_adjtime(0x0, 0x0)
mkdir(&(0x7f0000000340)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0xa0)

1.03764752s ago: executing program 0 (id=4329):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8a}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
kcmp(r0, r3, 0x5, 0xffffffffffffffff, r2)

856.465446ms ago: executing program 4 (id=4331):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000c80)={[{@utf8no}, {@utf8}, {@fat=@time_offset={'time_offset', 0x3d, 0xa6}}, {@fat=@quiet}, {@fat=@codepage={'codepage', 0x3d, '869'}}, {@rodir}, {@uni_xlate}, {@uni_xlate}, {@shortname_winnt}, {@iocharset={'iocharset', 0x3d, 'maciceland'}}, {@shortname_lower}, {@uni_xlateno}, {@shortname_mixed}, {@uni_xlate}, {@shortname_win95}]}, 0x26, 0x336, &(0x7f00000001c0)="$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")
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
r1 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f0000000000)={0x1, [<r2=>0x0]}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_PEER_AUTH_CHUNKS(r0, 0x84, 0x1a, &(0x7f0000005b00)={r2}, &(0x7f0000000040)=0x8)

361.503849ms ago: executing program 4 (id=4332):
r0 = socket$unix(0x1, 0x5, 0x0)
r1 = socket$unix(0x1, 0x5, 0x0)
bind$unix(r1, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r1, 0x0)
connect$unix(r0, &(0x7f0000fce000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0xc)
accept(r1, 0x0, 0x0)

290.934615ms ago: executing program 4 (id=4333):
r0 = socket$netlink(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r0, 0x10e, 0xc, &(0x7f0000000640)=0x4, 0x4)
sendmsg$netlink(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f00000003c0)={0x24, 0x12, 0x1, 0x0, 0x0, "", [@nested={0x10, 0x0, 0x0, 0x0, [@typed={0xc, 0x135, 0x0, 0x0, @u64}]}, @nested={0x4, 0x2d}]}, 0x24}], 0x1}, 0x0)

290.619982ms ago: executing program 4 (id=4334):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800714, &(0x7f0000000500), 0xf7, 0x485, &(0x7f0000001040)="$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")
lsetxattr$system_posix_acl(&(0x7f0000000400)='.\x00', &(0x7f0000000440)='system.posix_acl_default\x00', &(0x7f00000000c0)=ANY=[@ANYBLOB="02000000010000000000000002000000", @ANYRES32=0xee01, @ANYBLOB="02000000", @ANYRES32=0xee00, @ANYBLOB="02000000", @ANYRES32=0xee00, @ANYBLOB="02000000", @ANYRES32=0x0, @ANYBLOB="040000000000800008000000", @ANYRES32=0x0, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="100000000000000020"], 0x5c, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x100)
openat$incfs(0xffffffffffffff9c, &(0x7f0000000140)='.pending_reads\x00', 0x1a10c1, 0x9c37611dc13d0d83)
lsetxattr$system_posix_acl(&(0x7f0000000000)='./file0\x00', &(0x7f0000000140)='system.posix_acl_default\x00', &(0x7f0000000280)=ANY=[@ANYBLOB="02"], 0x4, 0x0)

269.055788ms ago: executing program 9 (id=4335):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r2}, 0x4)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x19, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000b7080000000000007b8af8ff00000000b7080000010000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70500000800000085000000a500000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xa, 0x6, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x73, 0x11, 0x3d}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x76}, @exit], {0x95, 0x0, 0x5a5}}, &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)

181.594591ms ago: executing program 4 (id=4336):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000040)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x7, [@typedef={0x4, 0x0, 0x0, 0x8, 0x21}]}, {0x0, [0x0, 0x61, 0x0, 0x51, 0x1e]}}, 0x0, 0x2b, 0x0, 0x1}, 0x28)

181.401319ms ago: executing program 4 (id=4337):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4c, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00', r0, 0x0, 0x6}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x9, 0x4, 0x7ffc0002}]})
r1 = open(&(0x7f00000001c0)='./file1\x00', 0x14927e, 0x20)
fallocate(r1, 0x0, 0x0, 0x1001f0)

584.513µs ago: executing program 0 (id=4338):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'bridge0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000001300)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=@bridge_newneigh={0x28, 0x1c, 0x1, 0x70bd28, 0x25dfdbfc, {0x7, 0x0, 0x0, r1, 0x80, 0x46, 0xb}, [@NDA_LLADDR={0xa, 0x2, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xc}}]}, 0x28}, 0x1, 0x0, 0x0, 0x1}, 0x4040000)

0s ago: executing program 9 (id=4339):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x50)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f00000001c0)=ANY=[@ANYBLOB="18020000801000000000000004000000850000002700000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x94)
sendmsg$inet(r0, &(0x7f0000002080)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f00000000c0)="91", 0x1}], 0x1}, 0x805)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000280)=ANY=[@ANYRES32=r2, @ANYRES32=r3, @ANYBLOB="05"], 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{r2}, &(0x7f00000006c0), &(0x7f0000000700)=r1}, 0x20)
sendmsg$inet(r0, &(0x7f0000000980)={0x0, 0x0, &(0x7f0000000900)=[{&(0x7f0000000100)="ac923f52", 0x4}], 0x1}, 0x3)

kernel console output (not intermixed with test programs):

iscuous mode
[  442.511786][T13427] bridge0: port 2(bridge_slave_1) entered blocking state
[  442.513975][T13427] bridge0: port 2(bridge_slave_1) entered disabled state
[  442.525990][T13427] bridge_slave_1: entered allmulticast mode
[  442.550492][T13427] bridge_slave_1: entered promiscuous mode
[  442.688013][ T5235] Bluetooth: hci2: command tx timeout
[  442.879779][T13511] netlink: 'syz.4.2859': attribute type 10 has an invalid length.
[  442.906221][T13511] team0: Device hsr_slave_0 failed to register rx_handler
[  442.984274][T13427] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  443.008027][T13427] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  443.127145][T13427] team0: Port device team_slave_0 added
[  443.143321][T13427] team0: Port device team_slave_1 added
[  443.263964][T13506] loop6: detected capacity change from 0 to 32768
[  443.272953][T13427] batman_adv: batadv0: Adding interface: batadv_slave_0
[  443.292331][T13427] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  443.319125][T13506] XFS (loop6): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  443.331833][T13427] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  443.360154][T13427] batman_adv: batadv0: Adding interface: batadv_slave_1
[  443.378856][T13427] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  443.488430][T13427] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  443.496354][T13506] XFS (loop6): Ending clean mount
[  443.660071][T11647] XFS (loop6): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  444.033297][ T5715] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  444.068974][T13427] hsr_slave_0: entered promiscuous mode
[  444.110099][T13427] hsr_slave_1: entered promiscuous mode
[  444.129369][T13427] debugfs: 'hsr0' already exists in 'hsr'
[  444.131684][T13427] Cannot create hsr debugfs directory
[  444.399990][ T5715] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  444.538500][ T5715] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  444.572187][T11076] wg1 speed is unknown, defaulting to 1000
[  444.574374][T11076] syz0: Port: 1 Link DOWN
[  444.643310][ T5715] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  444.765960][ T5235] Bluetooth: hci2: command tx timeout
[  445.180947][ T5715] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  445.454422][T13427] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  445.558076][ T5715] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  445.583754][T13427] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  445.608947][T13427] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  445.693160][ T5715] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  445.716324][T13427] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  445.794362][ T5715] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  446.103190][T13427] 8021q: adding VLAN 0 to HW filter on device bond0
[  446.204659][T13427] 8021q: adding VLAN 0 to HW filter on device team0
[  446.227440][  T757] bridge0: port 1(bridge_slave_0) entered blocking state
[  446.230370][  T757] bridge0: port 1(bridge_slave_0) entered forwarding state
[  446.328846][  T755] bridge0: port 2(bridge_slave_1) entered blocking state
[  446.331680][  T755] bridge0: port 2(bridge_slave_1) entered forwarding state
[  446.474756][ T5715] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  446.481625][ T5715] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  446.640586][ T5715] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  446.651512][ T5715] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  447.045077][ T5715] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  447.055948][ T5715] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  447.113284][T13427] 8021q: adding VLAN 0 to HW filter on device batadv0
[  447.194903][ T5715] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  447.201995][ T5715] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0
[  447.519192][ T5715] bridge_slave_1: left allmulticast mode
[  447.521381][ T5715] bridge_slave_1: left promiscuous mode
[  447.523453][ T5715] bridge0: port 2(bridge_slave_1) entered disabled state
[  447.564674][ T5715] bridge_slave_0: left allmulticast mode
[  447.570145][ T5715] bridge_slave_0: left promiscuous mode
[  447.573362][ T5715] bridge0: port 1(bridge_slave_0) entered disabled state
[  447.594859][T13669] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2877'.
[  447.600913][ T5715] bridge_slave_1: left allmulticast mode
[  447.608642][ T5715] bridge_slave_1: left promiscuous mode
[  447.610996][ T5715] bridge0: port 2(bridge_slave_1) entered disabled state
[  447.619562][ T5715] bridge_slave_0: left allmulticast mode
[  447.621755][ T5715] bridge_slave_0: left promiscuous mode
[  447.624068][ T5715] bridge0: port 1(bridge_slave_0) entered disabled state
[  447.638483][ T5715] bridge_slave_1: left allmulticast mode
[  447.640841][ T5715] bridge_slave_1: left promiscuous mode
[  447.643211][ T5715] bridge0: port 2(bridge_slave_1) entered disabled state
[  447.650229][ T5715] bridge_slave_0: left allmulticast mode
[  447.652687][ T5715] bridge_slave_0: left promiscuous mode
[  447.655207][ T5715] bridge0: port 1(bridge_slave_0) entered disabled state
[  448.424459][ T5715] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  448.432389][ T5715] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  448.437887][ T5715] bond0 (unregistering): Released all slaves
[  448.832651][ T5715] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  448.840608][ T5715] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  448.844478][ T5715] bond0 (unregistering): Released all slaves
[  449.004742][ T5715] bond1 (unregistering): (slave geneve2): Releasing active interface
[  449.051207][ T5715] bond0 (unregistering): (slave bridge0): Releasing backup interface
[  449.274265][ T5715] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  449.280931][ T5715] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  449.285743][ T5715] bond0 (unregistering): Released all slaves
[  449.297142][ T5715] bond1 (unregistering): Released all slaves
[  449.495498][T13427] veth0_vlan: entered promiscuous mode
[  449.541267][T13427] veth1_vlan: entered promiscuous mode
[  449.555704][ T5715] tipc: Left network mode
[  449.644430][T13427] veth0_macvtap: entered promiscuous mode
[  449.825338][T13427] veth1_macvtap: entered promiscuous mode
[  449.902488][T13427] batman_adv: batadv0: Interface activated: batadv_slave_0
[  449.935070][T13427] batman_adv: batadv0: Interface activated: batadv_slave_1
[  449.973550][T13722] vivid-003: disconnect
[  449.979702][T13721] vivid-003: reconnect
[  450.093986][   T13] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  450.146540][   T13] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  450.156763][   T13] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  450.197869][   T13] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  450.400723][  T757] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  450.411546][  T757] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  450.528038][   T53] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  450.532494][   T53] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  450.776833][T13750] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2898'.
[  450.962685][T13753] loop9: detected capacity change from 0 to 65536
[  451.052120][T13753] XFS (loop9): Mounting V5 Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3
[  451.088446][T13753] XFS (loop9): Ending clean mount
[  451.108579][T13754] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2898'.
[  451.199104][ T5715] hsr_slave_0: left promiscuous mode
[  451.203513][ T5715] hsr_slave_1: left promiscuous mode
[  451.203648][T13427] XFS (loop9): Unmounting Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3
[  451.213457][ T5715] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  451.233805][ T5715] batman_adv: batadv0: Removing interface: batadv_slave_0
[  451.244143][ T5715] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  451.254527][ T5715] batman_adv: batadv0: Removing interface: batadv_slave_1
[  451.303466][ T5715] hsr_slave_0: left promiscuous mode
[  451.312335][ T5715] hsr_slave_1: left promiscuous mode
[  451.345379][ T5715] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  451.359239][ T5715] batman_adv: batadv0: Removing interface: batadv_slave_0
[  451.363835][T13767] loop6: detected capacity change from 0 to 512
[  451.367794][ T5715] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  451.371338][T13767] EXT4-fs: Ignoring removed i_version option
[  451.373298][ T5715] batman_adv: batadv0: Removing interface: batadv_slave_1
[  451.401405][T13767] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  451.406154][ T5715] hsr_slave_0: left promiscuous mode
[  451.408965][ T5715] hsr_slave_1: left promiscuous mode
[  451.424558][ T5715] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  451.435985][ T5715] batman_adv: batadv0: Removing interface: batadv_slave_0
[  451.442769][T13767] EXT4-fs (loop6): 1 truncate cleaned up
[  451.449324][ T5715] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  451.453228][T13767] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  451.460209][ T5715] batman_adv: batadv0: Removing interface: batadv_slave_1
[  452.011487][   T33] audit: type=1804 audit(2000000014.179:469): pid=13777 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.6.2900" name="/newroot/225/bus/bus" dev="loop6" ino=18 res=1 errno=0
[  452.039261][ T5715] veth1_macvtap: left promiscuous mode
[  452.041560][ T5715] veth0_macvtap: left promiscuous mode
[  452.043800][ T5715] veth1_vlan: left promiscuous mode
[  452.054483][ T5715] veth0_vlan: left promiscuous mode
[  452.059075][ T5715] veth1_macvtap: left promiscuous mode
[  452.061537][ T5715] veth0_macvtap: left promiscuous mode
[  452.064256][ T5715] veth1_vlan: left promiscuous mode
[  452.070118][ T5715] veth0_vlan: left promiscuous mode
[  452.078993][ T5715] veth1_macvtap: left promiscuous mode
[  452.083322][ T5715] veth0_macvtap: left promiscuous mode
[  452.092266][ T5715] veth1_vlan: left promiscuous mode
[  452.097649][ T5715] veth0_vlan: left promiscuous mode
[  452.287738][T11647] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  452.377189][T11080] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[  452.556209][T11080] usb 10-1: Using ep0 maxpacket: 8
[  452.563499][T11080] usb 10-1: config 6 has an invalid interface number: 2 but max is 0
[  452.568979][ T6313] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  452.570393][T11080] usb 10-1: config 6 has an invalid descriptor of length 0, skipping remainder of the config
[  452.577435][T11080] usb 10-1: config 6 has no interface number 0
[  452.580045][T11080] usb 10-1: config 6 interface 2 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0
[  452.583827][T11080] usb 10-1: config 6 interface 2 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  452.592041][T11080] usb 10-1: New USB device found, idVendor=0af0, idProduct=7271, bcdDevice=88.91
[  452.602103][T11080] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  452.605452][T11080] usb 10-1: Product: syz
[  452.607287][T11080] usb 10-1: Manufacturer: syz
[  452.609179][T11080] usb 10-1: SerialNumber: syz
[  452.625375][T11080] hso 10-1:6.2: Failed to find INT IN ep
[  452.718755][ T6313] usb 7-1: Using ep0 maxpacket: 16
[  452.722745][ T6313] usb 7-1: config 0 has an invalid interface number: 41 but max is 0
[  452.728673][ T6313] usb 7-1: config 0 has no interface number 0
[  452.730993][ T6313] usb 7-1: config 0 interface 41 altsetting 2 bulk endpoint 0x4 has invalid maxpacket 16
[  452.733806][ T6313] usb 7-1: config 0 interface 41 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 64
[  452.745089][ T6313] usb 7-1: config 0 interface 41 has no altsetting 0
[  452.769663][ T6313] usb 7-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=d1.9a
[  452.772804][ T6313] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  452.775952][ T6313] usb 7-1: Product: syz
[  452.777502][ T6313] usb 7-1: Manufacturer: syz
[  452.779031][ T6313] usb 7-1: SerialNumber: syz
[  452.784080][ T6313] usb 7-1: config 0 descriptor??
[  452.794847][T13784] raw-gadget.1 gadget.6: fail, usb_ep_enable returned -22
[  452.797540][T13784] raw-gadget.1 gadget.6: fail, usb_ep_enable returned -22
[  452.831931][T11080] usb 10-1: USB disconnect, device number 2
[  452.991209][ T5715] team0 (unregistering): Port device team_slave_1 removed
[  453.014040][T13784] raw-gadget.1 gadget.6: fail, usb_ep_enable returned -22
[  453.018611][T13784] raw-gadget.1 gadget.6: fail, usb_ep_enable returned -22
[  453.054237][ T5715] team0 (unregistering): Port device team_slave_0 removed
[  453.427184][ T6313] CoreChips 7-1:0.41: probe with driver CoreChips failed with error -71
[  453.449095][ T6313] usb 7-1: USB disconnect, device number 8
[  454.011407][   T33] audit: type=1326 audit(2000000016.189:470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13787 comm="syz.9.2907" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5dfa78ebe9 code=0x7fc00000
[  454.164991][T13794] option changes via remount are deprecated (pid=13793 comm=syz.6.2908)
[  454.479895][   T33] audit: type=1326 audit(2000000016.599:471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13787 comm="syz.9.2907" exe="/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f5dfa78ebe9 code=0x7fc00000
[  454.490658][   T33] audit: type=1326 audit(2000000016.599:472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13787 comm="syz.9.2907" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5dfa78ebe9 code=0x7fc00000
[  454.499750][   T33] audit: type=1326 audit(2000000016.599:473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13787 comm="syz.9.2907" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5dfa78ebe9 code=0x7fc00000
[  454.636147][T13796] loop6: detected capacity change from 0 to 40427
[  454.662139][T13796] F2FS-fs (loop6): invalid crc value
[  454.719269][T13796] F2FS-fs (loop6): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  454.722676][T13796] F2FS-fs (loop6): Start checkpoint disabled!
[  454.760568][T13796] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e6
[  454.818376][  T757] kworker/u9:4: attempt to access beyond end of device
[  454.818376][  T757] loop6: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  454.825882][T11076] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[  454.831899][  T757] CPU: 1 UID: 0 PID: 757 Comm: kworker/u9:4 Not tainted 6.17.0-rc1-syzkaller-00036-gdfc0f6373094-dirty #0 PREEMPT(full) 
[  454.831913][  T757] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  454.831919][  T757] Workqueue: writeback wb_workfn (flush-7:6)
[  454.831935][  T757] Call Trace:
[  454.831939][  T757]  <TASK>
[  454.831943][  T757]  dump_stack_lvl+0x189/0x250
[  454.831957][  T757]  ? __pfx_dump_stack_lvl+0x10/0x10
[  454.831966][  T757]  ? __pfx_queue_work_on+0x10/0x10
[  454.831975][  T757]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  454.832008][  T757]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  454.832024][  T757]  f2fs_handle_critical_error+0x37c/0x540
[  454.832039][  T757]  f2fs_write_end_io+0x886/0xb60
[  454.832057][  T757]  __submit_merged_bio+0x27a/0x6a0
[  454.832067][  T757]  ? up_write+0x1c4/0x420
[  454.832079][  T757]  __submit_merged_write_cond+0x44c/0x530
[  454.832093][  T757]  f2fs_sync_node_pages+0x1479/0x15e0
[  454.832114][  T757]  ? __pfx_f2fs_sync_node_pages+0x10/0x10
[  454.832124][  T757]  ? __percpu_counter_sum+0x1c2/0x1e0
[  454.832154][  T757]  ? do_raw_spin_lock+0x121/0x290
[  454.832166][  T757]  ? rcu_is_watching+0x15/0xb0
[  454.832174][  T757]  ? blk_start_plug+0x52/0x1b0
[  454.832188][  T757]  f2fs_write_node_pages+0x303/0x6e0
[  454.832201][  T757]  ? __pfx_f2fs_write_node_pages+0x10/0x10
[  454.832220][  T757]  ? __pfx_f2fs_write_node_pages+0x10/0x10
[  454.832230][  T757]  do_writepages+0x32e/0x550
[  454.832244][  T757]  ? reacquire_held_locks+0x127/0x1d0
[  454.832252][  T757]  ? writeback_sb_inodes+0x384/0x1010
[  454.832266][  T757]  __writeback_single_inode+0x145/0xff0
[  454.832277][  T757]  ? do_raw_spin_unlock+0x4d/0x240
[  454.832289][  T757]  writeback_sb_inodes+0x6c7/0x1010
[  454.832318][  T757]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  454.832351][  T757]  ? rcu_is_watching+0x15/0xb0
[  454.832368][  T757]  wb_writeback+0x43b/0xaf0
[  454.832388][  T757]  ? queue_io+0x3d1/0x590
[  454.832410][  T757]  ? __pfx_wb_writeback+0x10/0x10
[  454.832430][  T757]  ? _raw_spin_unlock_irq+0x23/0x50
[  454.832448][  T757]  wb_workfn+0x409/0xef0
[  454.832523][  T757]  ? __pfx_wb_workfn+0x10/0x10
[  454.832536][  T757]  ? __lock_acquire+0xab9/0xd20
[  454.832555][  T757]  ? process_scheduled_works+0x9ef/0x17b0
[  454.832567][  T757]  ? _raw_spin_unlock_irq+0x23/0x50
[  454.832577][  T757]  ? process_scheduled_works+0x9ef/0x17b0
[  454.832584][  T757]  ? process_scheduled_works+0x9ef/0x17b0
[  454.832593][  T757]  process_scheduled_works+0xae1/0x17b0
[  454.832617][  T757]  ? __pfx_process_scheduled_works+0x10/0x10
[  454.832635][  T757]  worker_thread+0x8a0/0xda0
[  454.832646][  T757]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  454.832660][  T757]  ? __kthread_parkme+0x7b/0x200
[  454.832674][  T757]  kthread+0x711/0x8a0
[  454.832686][  T757]  ? __pfx_worker_thread+0x10/0x10
[  454.832694][  T757]  ? __pfx_kthread+0x10/0x10
[  454.832713][  T757]  ? _raw_spin_unlock_irq+0x23/0x50
[  454.832727][  T757]  ? lockdep_hardirqs_on+0x9c/0x150
[  454.832740][  T757]  ? __pfx_kthread+0x10/0x10
[  454.832755][  T757]  ret_from_fork+0x3fc/0x770
[  454.832767][  T757]  ? __pfx_ret_from_fork+0x10/0x10
[  454.832784][  T757]  ? __switch_to_asm+0x39/0x70
[  454.832800][  T757]  ? __switch_to_asm+0x33/0x70
[  454.832813][  T757]  ? __pfx_kthread+0x10/0x10
[  454.832823][  T757]  ret_from_fork_asm+0x1a/0x30
[  454.832850][  T757]  </TASK>
[  454.832856][  T757] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[  454.950196][ T5715] team0 (unregistering): Port device team_slave_1 removed
[  454.952859][  T757] CPU: 0 UID: 0 PID: 757 Comm: kworker/u9:4 Not tainted 6.17.0-rc1-syzkaller-00036-gdfc0f6373094-dirty #0 PREEMPT(full) 
[  454.952878][  T757] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  454.952887][  T757] Workqueue: writeback wb_workfn (flush-7:6)
[  454.952909][  T757] Call Trace:
[  454.952915][  T757]  <TASK>
[  454.952922][  T757]  dump_stack_lvl+0x189/0x250
[  454.952943][  T757]  ? __pfx_dump_stack_lvl+0x10/0x10
[  454.952958][  T757]  ? __pfx_queue_work_on+0x10/0x10
[  454.952996][  T757]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  454.953015][  T757]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  454.953040][  T757]  f2fs_handle_critical_error+0x37c/0x540
[  454.953065][  T757]  f2fs_write_end_io+0x886/0xb60
[  454.953092][  T757]  __submit_merged_bio+0x27a/0x6a0
[  454.953109][  T757]  ? up_write+0x1c4/0x420
[  454.953127][  T757]  __submit_merged_write_cond+0x44c/0x530
[  454.953151][  T757]  f2fs_sync_node_pages+0x1479/0x15e0
[  454.953184][  T757]  ? __pfx_f2fs_sync_node_pages+0x10/0x10
[  454.953209][  T757]  ? __percpu_counter_sum+0x1c2/0x1e0
[  454.953248][  T757]  ? do_raw_spin_lock+0x121/0x290
[  454.953266][  T757]  ? rcu_is_watching+0x15/0xb0
[  454.953280][  T757]  ? blk_start_plug+0x52/0x1b0
[  454.953301][  T757]  f2fs_write_node_pages+0x303/0x6e0
[  454.953322][  T757]  ? __pfx_f2fs_write_node_pages+0x10/0x10
[  454.953351][  T757]  ? __pfx_f2fs_write_node_pages+0x10/0x10
[  454.953368][  T757]  do_writepages+0x32e/0x550
[  454.953391][  T757]  ? reacquire_held_locks+0x127/0x1d0
[  454.953403][  T757]  ? writeback_sb_inodes+0x384/0x1010
[  454.953426][  T757]  __writeback_single_inode+0x145/0xff0
[  454.953442][  T757]  ? do_raw_spin_unlock+0x4d/0x240
[  454.953461][  T757]  writeback_sb_inodes+0x6c7/0x1010
[  454.953499][  T757]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  454.953549][  T757]  ? rcu_is_watching+0x15/0xb0
[  454.953570][  T757]  wb_writeback+0x43b/0xaf0
[  454.953593][  T757]  ? queue_io+0x3d1/0x590
[  454.953612][  T757]  ? __pfx_wb_writeback+0x10/0x10
[  454.953635][  T757]  ? _raw_spin_unlock_irq+0x23/0x50
[  454.953654][  T757]  wb_workfn+0x409/0xef0
[  454.953681][  T757]  ? __pfx_wb_workfn+0x10/0x10
[  454.953698][  T757]  ? __lock_acquire+0xab9/0xd20
[  454.953725][  T757]  ? process_scheduled_works+0x9ef/0x17b0
[  454.953745][  T757]  ? _raw_spin_unlock_irq+0x23/0x50
[  454.953759][  T757]  ? process_scheduled_works+0x9ef/0x17b0
[  454.953771][  T757]  ? process_scheduled_works+0x9ef/0x17b0
[  454.953786][  T757]  process_scheduled_works+0xae1/0x17b0
[  454.953841][  T757]  ? __pfx_process_scheduled_works+0x10/0x10
[  454.953870][  T757]  worker_thread+0x8a0/0xda0
[  454.953886][  T757]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  454.953909][  T757]  ? __kthread_parkme+0x7b/0x200
[  454.953932][  T757]  kthread+0x711/0x8a0
[  454.953951][  T757]  ? __pfx_worker_thread+0x10/0x10
[  454.953964][  T757]  ? __pfx_kthread+0x10/0x10
[  454.954005][  T757]  ? _raw_spin_unlock_irq+0x23/0x50
[  454.954020][  T757]  ? lockdep_hardirqs_on+0x9c/0x150
[  454.954036][  T757]  ? __pfx_kthread+0x10/0x10
[  454.954053][  T757]  ret_from_fork+0x3fc/0x770
[  454.954069][  T757]  ? __pfx_ret_from_fork+0x10/0x10
[  454.954088][  T757]  ? __switch_to_asm+0x39/0x70
[  454.954103][  T757]  ? __switch_to_asm+0x33/0x70
[  454.954118][  T757]  ? __pfx_kthread+0x10/0x10
[  454.954135][  T757]  ret_from_fork_asm+0x1a/0x30
[  454.954165][  T757]  </TASK>
[  454.980525][  T757] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[  455.101784][T11076] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 64, changing to 10
[  455.106209][T11076] usb 10-1: New USB device found, idVendor=0c70, idProduct=f011, bcdDevice= 0.00
[  455.109277][T11076] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  455.118157][T11076] usb 10-1: config 0 descriptor??
[  455.161085][ T5715] team0 (unregistering): Port device team_slave_0 removed
[  455.578462][T11076] aquacomputer_d5next 0003:0C70:F011.000F: hidraw0: USB HID v0.00 Device [HID 0c70:f011] on usb-dummy_hcd.9-1/input0
[  455.802733][T11076] usb 10-1: USB disconnect, device number 3
[  456.438281][T11076] IPVS: starting estimator thread 0...
[  456.516929][T13812] netlink: 28 bytes leftover after parsing attributes in process `syz.6.2916'.
[  456.519859][T13812] netlink: 'syz.6.2916': attribute type 7 has an invalid length.
[  456.522907][T13812] netlink: 'syz.6.2916': attribute type 8 has an invalid length.
[  456.540140][T13812] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2916'.
[  456.547816][T13808] IPVS: using max 64 ests per chain, 153600 per kthread
[  456.600010][ T5715] team0 (unregistering): Port device team_slave_1 removed
[  456.660150][ T5715] team0 (unregistering): Port device team_slave_0 removed
[  456.695066][T13818] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  456.929540][T13820] loop9: detected capacity change from 0 to 32768
[  457.071077][T13820] bcachefs (loop9): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,foreground_target=invalid label 767,background_target=invalid device 7,nojournal_transaction_names
[  457.071100][T13820]   allowing incompatible features above 0.0: (unknown version)
[  457.071109][T13820]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  457.091361][T13820] bcachefs (loop9): Using encoding defined by superblock: utf8-12.1.0
[  457.093982][T13820] bcachefs (loop9): initializing new filesystem
[  457.117189][T13820] bcachefs (loop9): going read-write
[  457.164204][T13820] bcachefs (loop9): marking superblocks
[  457.187505][T13820] bcachefs (loop9): initializing freespace
[  457.202468][T13820] bcachefs (loop9): done initializing freespace
[  457.216545][T13820] bcachefs (loop9): reading snapshots table
[  457.231773][T13820] bcachefs (loop9): reading snapshots done
[  457.266680][T13820] bcachefs (loop9): done starting filesystem
[  457.329494][T13427] bcachefs (loop9): shutting down
[  457.332092][T13427] bcachefs (loop9): going read-only
[  457.334372][T13427] bcachefs (loop9): finished waiting for writes to stop
[  457.361818][T13427] bcachefs (loop9): flushing journal and stopping allocators, journal seq 2
[  457.493027][T13427] bcachefs (loop9): flushing journal and stopping allocators complete, journal seq 2
[  457.500714][T13427] bcachefs (loop9): clean shutdown complete, journal seq 3
[  457.516050][T13427] bcachefs (loop9): marking filesystem clean
[  457.540219][T13835] netlink: 'syz.6.2921': attribute type 1 has an invalid length.
[  457.648327][T13427] bcachefs (loop9): shutdown complete
[  457.800746][T13847] loop6: detected capacity change from 0 to 128
[  458.293969][T13871] loop6: detected capacity change from 0 to 1024
[  458.319959][T13871] EXT4-fs: Ignoring removed nomblk_io_submit option
[  458.341389][T13871] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  458.461796][T11647] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  458.854984][ T5715] IPVS: stop unused estimator thread 0...
[  459.553270][T13917] mac80211_hwsim hwsim24 wlan0: entered promiscuous mode
[  459.562780][T13917] macvtap1: entered allmulticast mode
[  459.564850][T13917] mac80211_hwsim hwsim24 wlan0: entered allmulticast mode
[  459.577536][T13917] mac80211_hwsim hwsim24 wlan0: left allmulticast mode
[  459.580407][T13917] mac80211_hwsim hwsim24 wlan0: left promiscuous mode
[  459.671677][T13923] netlink: 'syz.6.2945': attribute type 9 has an invalid length.
[  459.809633][T13931] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  459.835309][T13934] sch_tbf: burst 32855 is lower than device lo mtu (65550) !
[  459.956830][T13941] loop9: detected capacity change from 0 to 8
[  460.456104][T13957] 9pnet_fd: Insufficient options for proto=fd
[  460.596859][T13960] Process accounting resumed
[  461.039161][T13983] loop6: detected capacity change from 0 to 128
[  461.054189][T13983] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  461.067835][T13983] ext4 filesystem being mounted at /252/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  461.165463][T11647] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  461.204530][T13992] loop9: detected capacity change from 0 to 1024
[  461.207662][T13992] EXT4-fs: Ignoring removed nobh option
[  461.209716][T13992] EXT4-fs: inline encryption not supported
[  461.220263][T13992] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  461.280158][T13992] EXT4-fs error (device loop9): mb_free_blocks:2017: group 0, inode 15: block 241:freeing already freed block (bit 15); block bitmap corrupt.
[  461.335306][T13427] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  461.666655][T14011] loop9: detected capacity change from 0 to 2048
[  461.712126][T14014] NILFS (loop9): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  461.737897][T14011] NILFS error (device loop9): nilfs_bmap_lookup_at_level: broken bmap (inode number=6)
[  461.765748][T14011] Remounting filesystem read-only
[  463.104758][T14035] loop9: detected capacity change from 0 to 32768
[  463.117769][T14035] XFS (loop9): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  463.134962][T14035] XFS (loop9): Ending clean mount
[  463.152714][T14035] XFS (loop9): Quotacheck needed: Please wait.
[  463.209525][T14035] XFS (loop9): Quotacheck: Done.
[  463.244935][T14078] IPVS: Unknown mcast interface: ip6erspan0
[  463.630243][T13427] XFS (loop9): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  463.678083][T14098] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  466.802113][T14166] loop9: detected capacity change from 0 to 512
[  466.859497][T14171] netlink: 16 bytes leftover after parsing attributes in process `syz.6.3011'.
[  466.865701][T14166] EXT4-fs error (device loop9): ext4_iget_extra_inode:5104: inode #15: comm syz.9.3009: corrupted in-inode xattr: overlapping e_value 
[  466.885079][T14166] EXT4-fs error (device loop9): ext4_orphan_get:1397: comm syz.9.3009: couldn't read orphan inode 15 (err -117)
[  466.898617][T14166] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  467.088007][T13427] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  467.690962][T14200] netlink: 4 bytes leftover after parsing attributes in process `syz.9.3019'.
[  468.656611][T14223] loop6: detected capacity change from 0 to 32768
[  468.687517][T14223] ERROR: (device loop6): diAllocAG: ipimap->i_size is wrong
[  468.687517][T14223] 
[  468.703511][T14223] ERROR: (device loop6): remounting filesystem as read-only
[  468.706744][T14223] ialloc: diAlloc returned -5!
[  469.095708][T11080] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[  469.254268][T11080] usb 7-1: unable to get BOS descriptor or descriptor too short
[  469.260347][T11080] usb 7-1: config 129 has an invalid interface number: 135 but max is 0
[  469.264089][T11080] usb 7-1: config 129 has an invalid interface number: 5 but max is 0
[  469.267791][T11080] usb 7-1: config 129 has an invalid descriptor of length 0, skipping remainder of the config
[  469.271819][T11080] usb 7-1: config 129 has 2 interfaces, different from the descriptor's value: 1
[  469.277303][T11080] usb 7-1: config 129 has no interface number 0
[  469.279780][T11080] usb 7-1: config 129 has no interface number 1
[  469.282256][T11080] usb 7-1: config 129 interface 135 altsetting 6 has 0 endpoint descriptors, different from the interface descriptor's value: 5
[  469.287840][T11080] usb 7-1: too many endpoints for config 129 interface 5 altsetting 7: 37, using maximum allowed: 30
[  469.295756][T11080] usb 7-1: config 129 interface 5 altsetting 7 has 0 endpoint descriptors, different from the interface descriptor's value: 37
[  469.301216][T11080] usb 7-1: config 129 interface 135 has no altsetting 0
[  469.303847][T11080] usb 7-1: config 129 interface 5 has no altsetting 0
[  469.308351][T11080] usb 7-1: New USB device found, idVendor=2040, idProduct=721f, bcdDevice=f2.62
[  469.312584][T11080] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  469.315055][T11080] usb 7-1: Product: syz
[  469.316839][T11080] usb 7-1: Manufacturer: syz
[  469.318283][T11080] usb 7-1: SerialNumber: syz
[  469.544786][T11080] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[  469.551003][T11080] usb 7-1: MIDIStreaming interface descriptor not found
[  469.586838][T11080] usb 7-1: USB disconnect, device number 9
[  469.642771][T13413] udevd[13413]: error opening ATTR{/sys/devices/platform/dummy_hcd.6/usb7/7-1/7-1:129.5/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  470.341263][T14277] loop6: detected capacity change from 0 to 512
[  470.384654][T14277] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  470.399715][   T33] audit: type=1804 audit(2000000032.579:474): pid=14277 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.6.3030" name="/newroot/272/file0/file1" dev="loop6" ino=15 res=1 errno=0
[  470.436340][T11647] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  470.519533][T14287] loop6: detected capacity change from 0 to 512
[  470.545430][T14287] UDF-fs: warning (device loop6): udf_load_vrs: No VRS found
[  470.548823][T14287] UDF-fs: Scanning with blocksize 512 failed
[  470.556697][T14287] UDF-fs: warning (device loop6): udf_load_vrs: No VRS found
[  470.566745][T14287] UDF-fs: Scanning with blocksize 1024 failed
[  470.572080][T14287] UDF-fs: warning (device loop6): udf_load_vrs: No VRS found
[  470.574910][T14287] UDF-fs: Scanning with blocksize 2048 failed
[  470.588171][T14287] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=256, location=256
[  470.594919][T14287] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  470.620831][T14287] [syz.6.3031/14287] FS: loop6 File: /blkio.bfq.io_service_bytes would truncate fibmap result
[  471.240611][T14345] netlink: 'syz.4.3049': attribute type 2 has an invalid length.
[  471.904858][T11080] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[  472.305699][T11080] usb 7-1: Using ep0 maxpacket: 16
[  472.309572][T11080] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  472.316128][T11080] usb 7-1: New USB device found, idVendor=045e, idProduct=0721, bcdDevice=9c.25
[  472.320076][T11080] usb 7-1: New USB device strings: Mfr=0, Product=251, SerialNumber=3
[  472.323586][T11080] usb 7-1: Product: syz
[  472.325435][T11080] usb 7-1: SerialNumber: syz
[  472.332056][T11080] usb 7-1: config 0 descriptor??
[  472.339674][T11080] uvcvideo 7-1:0.0: probe with driver uvcvideo failed with error -22
[  472.561767][ T6006] usb 7-1: USB disconnect, device number 10
[  473.011827][T14426] loop9: detected capacity change from 0 to 128
[  474.661590][T14482] netlink: 1 bytes leftover after parsing attributes in process `syz.6.3085'.
[  474.665337][T14482] netlink: 1 bytes leftover after parsing attributes in process `syz.6.3085'.
[  475.131329][T14495] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3090'.
[  475.305742][   T47] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[  475.465756][   T47] usb 7-1: Using ep0 maxpacket: 16
[  475.480621][   T47] usb 7-1: config 0 has an invalid interface number: 8 but max is 0
[  475.495004][   T47] usb 7-1: config 0 has no interface number 0
[  475.500736][   T47] usb 7-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  475.509299][   T47] usb 7-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[  475.513886][   T47] usb 7-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[  475.522736][   T47] usb 7-1: Product: syz
[  475.524565][   T47] usb 7-1: SerialNumber: syz
[  475.530078][   T47] usb 7-1: config 0 descriptor??
[  475.536399][   T47] usbhid 7-1:0.8: couldn't find an input interrupt endpoint
[  475.620446][T14507] loop9: detected capacity change from 0 to 4096
[  475.623365][T14507] ntfs3(loop9): Different NTFS sector size (1024) and media sector size (512).
[  475.634424][T14507] ntfs3(loop9): ino=5, mi_enum_attr
[  475.637309][T14507] ntfs3(loop9): Mark volume as dirty due to NTFS errors
[  475.702877][T14509] netlink: 8 bytes leftover after parsing attributes in process `syz.9.3097'.
[  475.746467][T13907] usb 7-1: USB disconnect, device number 11
[  476.649427][T14533] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3104'.
[  476.732407][T14533] 8021q: adding VLAN 0 to HW filter on device bond1
[  476.792039][T14540] bond1: (slave bridge1): Enslaving as an active interface with an up link
[  477.453362][T14595] loop6: detected capacity change from 0 to 8
[  477.520170][T14597] loop6: detected capacity change from 0 to 512
[  477.533830][T14597] EXT4-fs (loop6): revision level too high, forcing read-only mode
[  477.545968][T14597] EXT4-fs (loop6): orphan cleanup on readonly fs
[  477.549875][T14597] Quota error (device loop6): v2_read_file_info: Block with free entry 4294967071 out of range (1, 6).
[  477.563248][T14597] EXT4-fs warning (device loop6): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  477.584777][T14597] EXT4-fs (loop6): Cannot turn on quotas: error -117
[  477.590204][T14597] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.3130: bg 0: block 40: padding at end of block bitmap is not set
[  477.596017][T14597] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  477.599586][T14597] EXT4-fs (loop6): 1 truncate cleaned up
[  477.602359][T14597] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  477.641675][T11647] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  477.798334][T14602] fuse: Bad value for 'fd'
[  478.241948][T14613] sch_tbf: burst 32855 is lower than device lo mtu (65550) !
[  478.242127][T14612] loop9: detected capacity change from 0 to 1024
[  478.250447][T14612] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  478.253895][T14612] EXT4-fs (loop9): Test dummy encryption mode enabled
[  478.260161][T14612] EXT4-fs (loop9): filesystem too large to mount safely on this system
[  478.502151][T14621] loop9: detected capacity change from 0 to 256
[  478.505238][T14621] exfat: Deprecated parameter 'utf8'
[  478.528361][T14621] exfat: Deprecated parameter 'namecase'
[  478.530364][T14621] exfat: Deprecated parameter 'namecase'
[  478.535477][T14621] exfat: Deprecated parameter 'utf8'
[  478.563498][T14621] exFAT-fs (loop9): failed to load upcase table (idx : 0x00012153, chksum : 0x5270ca8d, utbl_chksum : 0xe619d30d)
[  479.759746][T14661] loop6: detected capacity change from 0 to 32768
[  479.770203][T14661] JBD2: Ignoring recovery information on journal
[  479.791654][T14661] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode.
[  479.841386][T14661] OCFS2: ERROR (device loop6): int ocfs2_claim_suballoc_bits(struct ocfs2_alloc_context *, handle_t *, u32, u32, struct ocfs2_suballoc_result *): Chain allocator dinode 73 has 4294901761 used bits but only 0 total
[  479.848871][T14661] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  479.853813][T14661] OCFS2: File system is now read-only.
[  479.856903][T14661] (syz.6.3149,14661,1):ocfs2_claim_suballoc_bits:2063 ERROR: status = -30
[  479.860366][T14661] (syz.6.3149,14661,1):ocfs2_claim_metadata:2088 ERROR: status = -30
[  479.863574][T14661] (syz.6.3149,14661,1):ocfs2_claim_metadata:2101 ERROR: status = -30
[  479.866931][T14661] (syz.6.3149,14661,1):ocfs2_dx_dir_attach_index:2336 ERROR: status = -30
[  479.870347][T14661] (syz.6.3149,14661,1):ocfs2_expand_inline_dir:3029 ERROR: status = -30
[  479.876906][T14661] (syz.6.3149,14661,1):ocfs2_extend_dir:3211 ERROR: status = -30
[  479.880228][T14661] (syz.6.3149,14661,1):ocfs2_prepare_dir_for_insert:4316 ERROR: status = -30
[  479.882986][T14661] (syz.6.3149,14661,1):ocfs2_mknod:301 ERROR: status = -30
[  479.885274][T14661] (syz.6.3149,14661,1):ocfs2_mknod:505 ERROR: status = -30
[  479.890987][T14661] (syz.6.3149,14661,1):ocfs2_mkdir:661 ERROR: status = -30
[  479.915255][T11647] ocfs2: Unmounting device (7,6) on (node local)
[  480.077680][T14669] devtmpfs: Too few inodes for current use
[  480.221193][T14670] loop6: detected capacity change from 0 to 512
[  480.235747][T14670] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  480.277834][T14670] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #11: comm syz.6.3150: invalid indirect mapped block 4294967295 (level 1)
[  480.289792][T14670] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #11: comm syz.6.3150: invalid indirect mapped block 4294967295 (level 1)
[  480.297599][T14670] EXT4-fs (loop6): 2 truncates cleaned up
[  480.300420][T14670] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  480.389756][T14682] 9pnet_fd: Insufficient options for proto=fd
[  480.400642][T14682] loop9: detected capacity change from 0 to 16
[  480.407083][T14682] erofs: Unknown parameter 'K،jxIE'
[  480.632672][T11647] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  481.409893][T14718] syz.9.3159: attempt to access beyond end of device
[  481.409893][T14718] nbd9: rw=0, sector=2, nr_sectors = 2 limit=0
[  481.416924][T14718] syz.9.3159: attempt to access beyond end of device
[  481.416924][T14718] nbd9: rw=0, sector=16, nr_sectors = 2 limit=0
[  481.653591][T14734] openvswitch: netlink: IP tunnel attribute has 8 unknown bytes.
[  482.008349][T14751] loop6: detected capacity change from 0 to 8192
[  482.050987][T14751] FAT-fs (loop6): bogus number of directory entries (9)
[  482.053784][T14751] FAT-fs (loop6): Can't find a valid FAT filesystem
[  482.582505][T14778] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  482.696119][T14778] batman_adv: batadv0: Removing interface: batadv_slave_0
[  482.705377][T14778] A link change request failed with some changes committed already. Interface batadv_slave_0 may have been left with an inconsistent configuration, please check.
[  482.752469][T14783] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3177'.
[  483.243595][T14822] usb usb8: usbfs: process 14822 (syz.6.3190) did not claim interface 0 before use
[  483.470760][T14840] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.3196'.
[  483.613123][T14848] 9p: Unknown access argument 18446744073709551615: -34
[  484.543535][T14902] loop6: detected capacity change from 0 to 512
[  484.573495][T14902] EXT4-fs (loop6): feature flags set on rev 0 fs, running e2fsck is recommended
[  484.580608][T14902] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[  484.586538][T14902] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  484.589829][T14902] System zones: 0-2, 18-18, 34-35
[  484.594612][T14902] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  484.608492][T14902] EXT4-fs (loop6): warning: mounting unchecked fs, running e2fsck is recommended
[  484.611685][T14902] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  484.619889][T14902] EXT4-fs (loop6): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  484.641676][T11647] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  484.790828][T14912] netlink: 56 bytes leftover after parsing attributes in process `syz.9.3219'.
[  484.794620][T14912] netlink: 8 bytes leftover after parsing attributes in process `syz.9.3219'.
[  484.810619][T14914] overlayfs: failed to clone upperpath
[  484.983743][T14925] loop9: detected capacity change from 0 to 256
[  485.001550][T14925] exFAT-fs (loop9): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  485.012727][T14925] exFAT-fs (loop9): Medium has reported failures. Some data may be lost.
[  485.026056][T14925] exFAT-fs (loop9): failed to load upcase table (idx : 0x0000ff98, chksum : 0xc64c1d22, utbl_chksum : 0xe619d30d)
[  486.535083][T13405] Bluetooth: hci1: Frame reassembly failed (-84)
[  487.364263][T14998] loop6: detected capacity change from 0 to 2048
[  487.380227][T14998] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  487.400086][ T5961] Bluetooth: hci0: unexpected event for opcode 0x1003
[  488.525679][ T5961] Bluetooth: hci1: command 0x1003 tx timeout
[  488.533288][ T5235] Bluetooth: hci1: Opcode 0x1003 failed: -110
[  489.356338][   T47] usb 10-1: new full-speed USB device number 4 using dummy_hcd
[  489.509032][   T47] usb 10-1: config 8 has an invalid interface number: 177 but max is 0
[  489.511613][   T47] usb 10-1: config 8 has no interface number 0
[  489.516999][   T47] usb 10-1: config 8 interface 177 altsetting 9 endpoint 0x8 has invalid maxpacket 1023, setting to 64
[  489.521415][   T47] usb 10-1: config 8 interface 177 has no altsetting 0
[  489.523574][   T47] usb 10-1: New USB device found, idVendor=04d8, idProduct=fd08, bcdDevice=59.b1
[  489.536809][   T47] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  489.557878][T15029] raw-gadget.0 gadget.9: fail, usb_ep_enable returned -22
[  489.770507][   T47] usb 10-1: string descriptor 0 read error: -71
[  489.781199][    C1] ir_toy 10-1:8.177: out urb status: -71
[  490.010129][T15083] sp0: Synchronizing with TNC
[  490.359238][   T47] ir_toy 10-1:8.177: could not write reset command: -110
[  490.361694][   T47] ir_toy 10-1:8.177: probe with driver ir_toy failed with error -110
[  490.369418][   T47] usb 10-1: USB disconnect, device number 4
[  491.346373][T15124] loop6: detected capacity change from 0 to 32768
[  491.354003][T15124] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.3268 (15124)
[  491.372787][T15124] BTRFS info (device loop6): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  491.389668][T15124] BTRFS info (device loop6): using blake2b (blake2b-256-generic) checksum algorithm
[  491.393027][T15124] BTRFS info (device loop6): using free-space-tree
[  491.409967][ T5235] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[  491.413588][ T5235] Bluetooth: hci0: Injecting HCI hardware error event
[  491.422153][ T5961] Bluetooth: hci0: hardware error 0x00
[  491.502004][   T33] audit: type=1800 audit(2000000053.679:475): pid=15124 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.3268" name="file1" dev="loop6" ino=260 res=0 errno=0
[  491.535652][   T33] audit: type=1800 audit(2000000053.679:476): pid=15124 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.3268" name="file1" dev="loop6" ino=260 res=0 errno=0
[  492.067698][T11647] BTRFS info (device loop6): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  492.354146][T15180] netlink: 212376 bytes leftover after parsing attributes in process `syz.4.3285'.
[  492.976306][T15187] loop9: detected capacity change from 0 to 40427
[  492.984533][T15187] F2FS-fs (loop9): invalid crc value
[  493.063712][T15187] F2FS-fs (loop9): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  493.421618][T15187] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e4
[  493.488192][ T5961] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  493.730519][T15207] netlink: 'syz.9.3293': attribute type 12 has an invalid length.
[  493.915782][   T47] usb 7-1: new high-speed USB device number 12 using dummy_hcd
[  494.069971][   T47] usb 7-1: config 0 has an invalid interface number: 64 but max is 0
[  494.076292][   T47] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  494.080221][   T47] usb 7-1: config 0 has no interface number 0
[  494.093237][   T47] usb 7-1: New USB device found, idVendor=046d, idProduct=0823, bcdDevice=39.48
[  494.101812][   T47] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  494.104404][   T47] usb 7-1: Product: syz
[  494.107650][   T47] usb 7-1: Manufacturer: syz
[  494.109236][   T47] usb 7-1: SerialNumber: syz
[  494.113339][   T47] usb 7-1: config 0 descriptor??
[  494.119328][   T47] usb 7-1: Found UVC 0.00 device syz (046d:0823)
[  494.119332][T15223] bridge0: port 1(bridge_slave_0) entered disabled state
[  494.119355][   T47] usb 7-1: No valid video chain found.
[  494.124742][T15223] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  494.351156][ T6029] usb 7-1: USB disconnect, device number 12
[  495.323509][T15259] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3318'.
[  495.349045][T15260] IPVS: sync thread started: state = MASTER, mcast_ifn = veth1_to_team, syncid = 4, id = 0
[  495.386482][T15253] loop6: detected capacity change from 0 to 32768
[  495.450125][T15253] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode.
[  495.472268][T15253] (syz.6.3315,15253,0):ocfs2_reflink_ioctl:4417 ERROR: status = -14
[  495.495158][T11647] (syz-executor,11647,0):ocfs2_inode_is_valid_to_delete:948 ERROR: Skipping delete of system file 72
[  495.513031][T11647] ocfs2: Unmounting device (7,6) on (node local)
[  495.693827][T15275] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  495.705073][T15275] iommufd_mock iommufd_mock1: Adding to iommu group 1
[  495.741285][T15278] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3326'.
[  495.768599][T15280] netlink: zone id is out of range
[  495.774906][T15280] netlink: zone id is out of range
[  495.783827][T15280] netlink: zone id is out of range
[  495.785799][T15280] netlink: zone id is out of range
[  495.787408][T15280] netlink: zone id is out of range
[  495.789020][T15280] netlink: zone id is out of range
[  495.790852][T15280] netlink: zone id is out of range
[  495.793162][T15280] netlink: zone id is out of range
[  495.795235][T15280] netlink: zone id is out of range
[  495.925156][T14382] usb 10-1: new high-speed USB device number 5 using dummy_hcd
[  496.406233][T14382] usb 10-1: Using ep0 maxpacket: 8
[  496.479787][T14382] usb 10-1: config 0 has an invalid interface number: 55 but max is 0
[  496.484169][T14382] usb 10-1: config 0 has no interface number 0
[  496.486803][T14382] usb 10-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  496.490978][T14382] usb 10-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  496.495607][T14382] usb 10-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  496.499929][T14382] usb 10-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  496.504971][T14382] usb 10-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  496.508764][T14382] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  496.712480][T14382] usb 10-1: config 0 descriptor??
[  496.920314][T14382] ldusb 10-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  496.987890][   T33] audit: type=1400 audit(2000000059.169:477): apparmor="DENIED" operation="change_profile" class="file" info="label not found" error=-22 profile="unconfined" name="&" pid=15303 comm="syz.6.3337"
[  497.004221][ T6006] usb 10-1: USB disconnect, device number 5
[  497.010168][ T6006] ldusb 10-1:0.55: LD USB Device #0 now disconnected
[  497.137743][T15312] loop6: detected capacity change from 0 to 512
[  497.140886][T15312] EXT4-fs: Ignoring removed bh option
[  497.143747][T15312] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem
[  497.154180][T15312] EXT4-fs (loop6): 1 truncate cleaned up
[  497.160072][T15312] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  497.196255][T11647] EXT4-fs error (device loop6): ext4_lookup:1787: inode #14: comm syz-executor: invalid fast symlink length 39
[  497.206974][T11647] EXT4-fs error (device loop6): ext4_lookup:1787: inode #14: comm syz-executor: invalid fast symlink length 39
[  497.428693][T11647] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  497.765805][T15327] netlink: 'syz.9.3350': attribute type 12 has an invalid length.
[  497.832292][ T5235] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  497.844603][ T5235] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  497.851463][ T5235] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  497.858698][ T5235] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  497.862350][ T5235] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  498.138761][T15328] chnl_net:caif_netlink_parms(): no params data found
[  498.248370][T15328] bridge0: port 1(bridge_slave_0) entered blocking state
[  498.251334][T15328] bridge0: port 1(bridge_slave_0) entered disabled state
[  498.254248][T15328] bridge_slave_0: entered allmulticast mode
[  498.259400][T15328] bridge_slave_0: entered promiscuous mode
[  498.263731][T15328] bridge0: port 2(bridge_slave_1) entered blocking state
[  498.266992][T15328] bridge0: port 2(bridge_slave_1) entered disabled state
[  498.270877][T15328] bridge_slave_1: entered allmulticast mode
[  498.274638][T15328] bridge_slave_1: entered promiscuous mode
[  498.277233][   T10] usb 10-1: new high-speed USB device number 6 using dummy_hcd
[  498.318318][T15328] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  498.324854][T15328] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  498.361328][T15328] team0: Port device team_slave_0 added
[  498.367043][T15328] team0: Port device team_slave_1 added
[  498.398680][T15328] batman_adv: batadv0: Adding interface: batadv_slave_0
[  498.401279][T15328] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  498.411573][T15328] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  498.418234][T15328] batman_adv: batadv0: Adding interface: batadv_slave_1
[  498.420872][T15328] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  498.430743][T15328] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  498.436147][   T10] usb 10-1: Using ep0 maxpacket: 8
[  498.440428][   T10] usb 10-1: New USB device found, idVendor=0ccd, idProduct=0039, bcdDevice=90.7b
[  498.443562][   T10] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  498.470442][   T10] pvrusb2: Hardware description: Terratec Grabster AV400
[  498.472914][   T10] pvrusb2: **********
[  498.478161][   T10] pvrusb2: ***WARNING*** Support for this device (Terratec Grabster AV400) is experimental.
[  498.481558][   T10] pvrusb2: Important functionality might not be entirely working.
[  498.490266][   T10] pvrusb2: Please consider contacting the driver author to help with further stabilization of the driver.
[  498.494674][   T10] pvrusb2: **********
[  498.505164][T15328] hsr_slave_0: entered promiscuous mode
[  498.509164][T15328] hsr_slave_1: entered promiscuous mode
[  498.511494][T15328] debugfs: 'hsr0' already exists in 'hsr'
[  498.513473][T15328] Cannot create hsr debugfs directory
[  498.672859][ T2397] pvrusb2: Invalid write control endpoint
[  498.764199][ T2397] pvrusb2: Invalid write control endpoint
[  498.769662][ T2397] pvrusb2: ***WARNING*** Detected a wedged cx25840 chip; the device will not work.
[  498.780799][ T2397] pvrusb2: ***WARNING*** Try power cycling the pvrusb2 device.
[  498.783315][ T2397] pvrusb2: ***WARNING*** Disabling further access to the device to prevent other foul-ups.
[  498.791988][ T2397] pvrusb2: Device being rendered inoperable
[  498.813328][ T2397] cx25840 2-0044: Unable to detect h/w, assuming cx23887
[  498.817598][ T2397] cx25840 2-0044: cx23887 A/V decoder found @ 0x88 (pvrusb2_a)
[  498.831675][ T2397] pvrusb2: Attached sub-driver cx25840
[  498.833661][ T2397] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it.
[  498.843753][ T2397] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover.
[  498.879129][ T6006] usb 10-1: USB disconnect, device number 6
[  499.343398][T15370] netlink: 'syz.4.3359': attribute type 11 has an invalid length.
[  499.352702][T15370] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3359'.
[  499.371039][T15328] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  499.376160][T15328] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  499.383239][T15328] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  499.398871][T15328] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  499.585497][T15328] 8021q: adding VLAN 0 to HW filter on device bond0
[  499.612953][T15328] 8021q: adding VLAN 0 to HW filter on device team0
[  499.621747][ T3876] bridge0: port 1(bridge_slave_0) entered blocking state
[  499.624107][ T3876] bridge0: port 1(bridge_slave_0) entered forwarding state
[  499.635258][T15392] : renamed from bridge_slave_0 (while UP)
[  499.648424][ T3876] bridge0: port 2(bridge_slave_1) entered blocking state
[  499.651237][ T3876] bridge0: port 2(bridge_slave_1) entered forwarding state
[  499.885900][ T5235] Bluetooth: hci1: command tx timeout
[  499.890367][T15407] vlan2: entered allmulticast mode
[  499.892938][T15407] netdevsim netdevsim4 netdevsim0: entered allmulticast mode
[  499.962597][T15412] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  499.998589][T15412] iommufd_mock iommufd_mock1: Adding to iommu group 1
[  500.059898][T15328] 8021q: adding VLAN 0 to HW filter on device batadv0
[  500.115036][T15328] veth0_vlan: entered promiscuous mode
[  500.126869][T15328] veth1_vlan: entered promiscuous mode
[  500.186449][T15328] veth0_macvtap: entered promiscuous mode
[  500.191262][T15328] veth1_macvtap: entered promiscuous mode
[  500.204018][T15328] batman_adv: batadv0: Interface activated: batadv_slave_0
[  500.211937][T15328] batman_adv: batadv0: Interface activated: batadv_slave_1
[  500.226025][ T5715] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  500.234832][ T5715] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  500.253254][ T5715] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  500.259259][ T5715] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  500.340979][  T755] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  500.343410][  T755] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  500.411158][T14388] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  500.416219][T14388] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  500.540369][T15451] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3382'.
[  500.608933][T15454] loop0: detected capacity change from 0 to 16
[  500.619146][T15454] erofs (device loop0): rootino(nid 36) is not a directory(i_mode 125300)
[  500.712128][T15465] loop9: detected capacity change from 0 to 512
[  500.748928][T15465] EXT4-fs (loop9): orphan cleanup on readonly fs
[  500.753106][T15465] EXT4-fs (loop9): Cannot turn on journaled quota: type 0: error -13
[  500.757421][T15465] EXT4-fs error (device loop9): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters
[  500.781627][T15465] EXT4-fs error (device loop9): ext4_clear_blocks:876: inode #13: comm syz.9.3385: attempt to clear invalid blocks 2 len 1
[  500.787797][T15468] loop0: detected capacity change from 0 to 512
[  500.794944][T15468] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  500.802094][T15465] EXT4-fs error (device loop9): ext4_free_branches:1023: inode #13: comm syz.9.3385: invalid indirect mapped block 1819239214 (level 0)
[  500.807805][T15465] EXT4-fs error (device loop9): ext4_free_branches:1023: inode #13: comm syz.9.3385: invalid indirect mapped block 1819239214 (level 1)
[  500.812776][T15465] EXT4-fs (loop9): 1 truncate cleaned up
[  500.819879][T15465] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  500.830789][T15465] EXT4-fs error (device loop9): __ext4_remount:6736: comm syz.9.3385: Abort forced by user
[  500.834249][T15465] EXT4-fs (loop9): Remounting filesystem read-only
[  500.838037][T15465] EXT4-fs (loop9): re-mounted 00000000-0000-0000-0000-000000000000.
[  500.861770][T15468] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  500.876995][T13427] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  500.878501][T15468] ext4 filesystem being mounted at /4/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  501.040504][T15328] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  501.496248][ T1364] ieee802154 phy0 wpan0: encryption failed: -22
[  501.498605][ T1364] ieee802154 phy1 wpan1: encryption failed: -22
[  501.966088][ T5235] Bluetooth: hci1: command tx timeout
[  502.174080][   T33] audit: type=1326 audit(2000000064.349:478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15529 comm="syz.9.3407" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5dfa78ebe9 code=0x7ffc0000
[  502.183969][   T33] audit: type=1326 audit(2000000064.349:479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15529 comm="syz.9.3407" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5dfa78ebe9 code=0x7ffc0000
[  502.192716][   T33] audit: type=1326 audit(2000000064.349:480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15529 comm="syz.9.3407" exe="/syz-executor" sig=0 arch=c000003e syscall=254 compat=0 ip=0x7f5dfa78ebe9 code=0x7ffc0000
[  502.199765][   T33] audit: type=1326 audit(2000000064.349:481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15529 comm="syz.9.3407" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5dfa78ebe9 code=0x7ffc0000
[  502.207341][   T33] audit: type=1326 audit(2000000064.349:482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15529 comm="syz.9.3407" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5dfa78ebe9 code=0x7ffc0000
[  502.214557][   T33] audit: type=1326 audit(2000000064.349:483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15529 comm="syz.9.3407" exe="/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f5dfa78ebe9 code=0x7ffc0000
[  502.222770][   T33] audit: type=1326 audit(2000000064.349:484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15529 comm="syz.9.3407" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5dfa78ebe9 code=0x7ffc0000
[  502.231641][   T33] audit: type=1326 audit(2000000064.349:485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15529 comm="syz.9.3407" exe="/syz-executor" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7f5dfa78ebe9 code=0x7ffc0000
[  502.250463][   T33] audit: type=1326 audit(2000000064.349:486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15529 comm="syz.9.3407" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5dfa78ebe9 code=0x7ffc0000
[  502.261349][   T33] audit: type=1326 audit(2000000064.349:487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15529 comm="syz.9.3407" exe="/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7f5dfa78ebe9 code=0x7ffc0000
[  503.177659][T15574] loop9: detected capacity change from 0 to 512
[  503.198923][T15574] EXT4-fs (loop9): mounting ext3 file system using the ext4 subsystem
[  503.201949][T15574] EXT4-fs (loop9): invalid journal inode
[  503.203852][T15574] EXT4-fs (loop9): can't get journal size
[  503.217226][T15574] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=e056c118, mo2=0002]
[  503.221198][T15574] System zones: 1-12, 13-13
[  503.222933][T15574] EXT4-fs (loop9): orphan cleanup on readonly fs
[  503.227347][T15574] EXT4-fs (loop9): 1 truncate cleaned up
[  503.240634][T15574] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  503.266544][T13427] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  503.428311][T15596] net_ratelimit: 62 callbacks suppressed
[  503.428330][T15596] openvswitch: netlink: Unexpected mask (mask=c0, allowed=10048)
[  503.649273][   T10] usb 10-1: new high-speed USB device number 7 using dummy_hcd
[  503.806060][   T10] usb 10-1: Using ep0 maxpacket: 8
[  503.814560][   T10] usb 10-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xAD, changing to 0x8D
[  503.824911][   T10] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x8D has invalid wMaxPacketSize 0
[  503.831712][   T10] usb 10-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8D has invalid maxpacket 0
[  503.836214][   T10] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  503.845447][   T10] usb 10-1: New USB device found, idVendor=0bfd, idProduct=0124, bcdDevice=3a.9f
[  503.851577][   T10] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  503.854643][   T10] usb 10-1: Product: syz
[  503.856418][   T10] usb 10-1: Manufacturer: syz
[  503.858264][   T10] usb 10-1: SerialNumber: syz
[  503.874896][   T10] usb 10-1: config 0 descriptor??
[  503.883323][   T10] kvaser_usb 10-1:0.0: error -ENODEV: Cannot get usb endpoint(s)
[  504.045736][ T5235] Bluetooth: hci1: command tx timeout
[  504.085196][T13751] usb 10-1: USB disconnect, device number 7
[  504.347642][T15635] fanotify: failed to encode fid (type=0, len=0, err=-2)
[  504.661616][T15655] netlink: 'syz.9.3436': attribute type 29 has an invalid length.
[  505.154396][T15681] netlink: 44 bytes leftover after parsing attributes in process `syz.9.3445'.
[  506.131235][ T5235] Bluetooth: hci1: command tx timeout
[  506.342757][T15711] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3455'.
[  506.350770][T15711] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3455'.
[  506.589299][T15705] loop0: detected capacity change from 0 to 32768
[  506.604639][T15705] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.3452 (15705)
[  507.003159][T15705] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  507.020014][T15705] BTRFS info (device loop0): using crc32c (crc32c-lib) checksum algorithm
[  507.023183][T15705] BTRFS info (device loop0): using free-space-tree
[  507.118195][T15705] BTRFS info (device loop0): rebuilding free space tree
[  507.202141][T15737] netlink: 'syz.9.3459': attribute type 1 has an invalid length.
[  507.205370][T15737] netlink: 'syz.9.3459': attribute type 1 has an invalid length.
[  507.208875][T15737] netlink: 224 bytes leftover after parsing attributes in process `syz.9.3459'.
[  507.262974][T15328] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  508.019369][   T33] kauditd_printk_skb: 18 callbacks suppressed
[  508.019382][   T33] audit: type=1400 audit(2000000070.189:506): apparmor="DENIED" operation="change_hat" class="file" info="unconfined can not change_hat" error=-1 profile="unconfined" pid=15747 comm="syz.0.3460"
[  508.085816][   T10] usb 10-1: new full-speed USB device number 8 using dummy_hcd
[  508.246340][   T10] usb 10-1: config 0 has an invalid interface number: 46 but max is 0
[  508.253372][   T10] usb 10-1: config 0 has no interface number 0
[  508.255453][   T10] usb 10-1: config 0 interface 46 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  508.258931][   T10] usb 10-1: config 0 interface 46 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  508.267579][   T10] usb 10-1: New USB device found, idVendor=045a, idProduct=5210, bcdDevice= 1.01
[  508.273639][   T10] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  508.279327][   T10] usb 10-1: Product: syz
[  508.280917][   T10] usb 10-1: Manufacturer: syz
[  508.282412][   T10] usb 10-1: SerialNumber: syz
[  508.291014][   T10] usb 10-1: config 0 descriptor??
[  508.301108][   T10] ums-karma 10-1:0.46: USB Mass Storage device detected
[  508.427376][   T10] ums-karma 10-1:0.46: probe with driver ums-karma failed with error -5
[  508.442500][T15776] loop0: detected capacity change from 0 to 128
[  508.768640][T15776] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  508.778100][ T6029] usb 10-1: USB disconnect, device number 8
[  508.794341][T15776] ext4 filesystem being mounted at /20/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  508.828320][T15328] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  509.596761][T15808] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3488'.
[  509.600465][T15808] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3488'.
[  509.604028][T15808] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3488'.
[  509.874006][T15816] loop0: detected capacity change from 0 to 8
[  509.892107][T15816] squashfs image failed sanity check
[  509.954635][T15817] netlink: 'syz.4.3490': attribute type 9 has an invalid length.
[  509.957865][T15817] netlink: 'syz.4.3490': attribute type 7 has an invalid length.
[  509.960669][T15817] netlink: 'syz.4.3490': attribute type 8 has an invalid length.
[  511.110392][T15837] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  511.180856][T15841] netlink: 'syz.4.3501': attribute type 3 has an invalid length.
[  511.183938][T15841] netlink: 'syz.4.3501': attribute type 3 has an invalid length.
[  511.191097][T15841] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3501'.
[  511.295032][T15845] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3504'.
[  511.395935][T15851] sctp: [Deprecated]: syz.9.3506 (pid 15851) Use of struct sctp_assoc_value in delayed_ack socket option.
[  511.395935][T15851] Use struct sctp_sack_info instead
[  511.836403][T15855] loop9: detected capacity change from 0 to 32768
[  512.031122][T15859] loop0: detected capacity change from 0 to 32768
[  512.070639][T15859] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  512.213126][T15328] ocfs2: Unmounting device (7,0) on (node local)
[  512.567941][T15873] loop9: detected capacity change from 0 to 32768
[  512.608827][T15873] XFS (loop9): Mounting V5 Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  512.655488][T15873] XFS (loop9): Ending clean mount
[  512.661164][T15873] XFS (loop9): Metadata CRC error detected at xfs_inobt_read_verify+0x42/0xe0, xfs_finobt block 0x20 
[  512.665456][T15873] XFS (loop9): Unmount and run xfs_repair
[  512.670537][T15873] XFS (loop9): First 128 bytes of corrupted metadata buffer:
[  512.675869][T15873] 00000000: 46 49 42 33 00 00 00 01 ff ff ff ff ff ff ff ff  FIB3............
[  512.682955][T15873] 00000010: 00 00 00 00 00 00 00 20 00 00 00 01 00 00 00 40  ....... .......@
[  512.694360][T15873] 00000020: 9f 1c ad 42 11 bd 4e 12 8f 0b f0 78 76 b8 1d 9a  ...B..N....xv...
[  512.700704][T15873] 00000030: 00 00 00 00 8a d2 18 46 00 00 16 80 00 00 40 37  .......F......@7
[  512.710396][T15873] 00000040: ff ff ff ff ff ff fe 00 00 00 00 00 00 00 00 00  ................
[  512.722375][T15873] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 09 00 00  ................
[  512.729311][T15891] netlink: 64 bytes leftover after parsing attributes in process `syz.0.3521'.
[  512.732166][T15873] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  512.737403][T15873] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  512.746213][T15873] XFS (loop9): metadata I/O error in "xfs_btree_read_buf_block+0x290/0x470" at daddr 0x20 len 8 error 74
[  512.751479][T15873] XFS (loop9): Failed to initialize disk quotas, err -117.
[  512.799004][T13427] XFS (loop9): Unmounting Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  512.802956][T13427] XFS (loop9): Uncorrected metadata errors detected; please run xfs_repair.
[  512.952504][T15895] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3522'.
[  512.956782][T15895] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3522'.
[  513.284701][T15918] loop0: detected capacity change from 0 to 128
[  513.309684][T15918] affs: No valid root block on device loop0
[  513.521227][T15928] netlink: 'syz.4.3538': attribute type 6 has an invalid length.
[  513.651303][T15918] loop0: detected capacity change from 0 to 32768
[  513.664388][T15918] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.3533 (15918)
[  513.712533][T15918] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  513.720406][T15918] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm
[  513.723776][T15918] BTRFS info (device loop0): using free-space-tree
[  513.843549][T15918] BTRFS info (device loop0): device stats zeroed by syz.0.3533 (15918)
[  513.892759][T15328] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  515.634898][T13751] libceph: connect (1)[c::]:6789 error -101
[  515.727775][T13751] libceph: mon0 (1)[c::]:6789 connect error
[  515.954136][T15995] ceph: No mds server is up or the cluster is laggy
[  516.396974][T16038] loop0: detected capacity change from 0 to 2048
[  516.404174][T16038] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024)
[  516.409769][T13977] udevd[13977]: incorrect nilfs2 checksum on /dev/loop0
[  516.411717][T16038] NILFS (loop0): too large filesystem blocksize: 2 ^ 347668480 KiB
[  516.477171][ T6029] usb 10-1: new high-speed USB device number 9 using dummy_hcd
[  516.625670][ T6029] usb 10-1: Using ep0 maxpacket: 16
[  516.629679][ T6029] usb 10-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  516.633786][ T6029] usb 10-1: config 1 has 1 interface, different from the descriptor's value: 3
[  516.640077][ T6029] usb 10-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  516.643735][ T6029] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  516.647095][ T6029] usb 10-1: Product: syz
[  516.649054][ T6029] usb 10-1: Manufacturer: syz
[  516.650893][ T6029] usb 10-1: SerialNumber: syz
[  517.067240][ T6029] usb 10-1: cannot find UAC_HEADER
[  517.088332][ T6029] snd-usb-audio 10-1:1.0: probe with driver snd-usb-audio failed with error -22
[  517.099049][ T6029] usb 10-1: USB disconnect, device number 9
[  517.110963][T13977] udevd[13977]: error opening ATTR{/sys/devices/platform/dummy_hcd.9/usb10/10-1/10-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  517.565656][ T5961] Bluetooth: hci1: command 0x0405 tx timeout
[  518.228513][T16067] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  518.878222][T16083] loop9: detected capacity change from 0 to 32768
[  518.893885][T16083] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop9 (7:9) scanned by syz.9.3594 (16083)
[  518.912489][T16083] BTRFS info (device loop9): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  518.926971][T16083] BTRFS info (device loop9): using crc32c (crc32c-lib) checksum algorithm
[  518.932835][T16083] BTRFS info (device loop9): disk space caching is enabled
[  518.939770][T16083] BTRFS warning (device loop9): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  519.083539][T16083] BTRFS info (device loop9): rebuilding free space tree
[  519.099745][T16083] BTRFS info (device loop9): disabling free space tree
[  519.102577][T16083] BTRFS info (device loop9): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  519.109053][T16083] BTRFS info (device loop9): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  519.500389][T13427] BTRFS info (device loop9): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  520.183523][T16126] loop9: detected capacity change from 0 to 164
[  520.193312][T16126] Unable to read rock-ridge attributes
[  520.209740][T16126] Unable to read rock-ridge attributes
[  520.517832][T16141] 8021q: VLANs not supported on lo
[  520.741721][T16152] veth0: entered promiscuous mode
[  520.754643][T16149] veth0: left promiscuous mode
[  520.814440][T16142] loop9: detected capacity change from 0 to 32768
[  520.827129][T16142] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop9 (7:9) scanned by syz.9.3611 (16142)
[  520.838924][T16142] BTRFS info (device loop9): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  520.842902][T16142] BTRFS info (device loop9): using crc32c (crc32c-lib) checksum algorithm
[  520.852175][T16142] BTRFS info (device loop9): using free-space-tree
[  521.027280][T13427] BTRFS info (device loop9): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  521.774570][T16214] loop0: detected capacity change from 0 to 512
[  521.809558][T16214] EXT4-fs error (device loop0): ext4_orphan_get:1392: inode #15: comm syz.0.3638: iget: bad i_size value: 38620345925642
[  521.817298][T16214] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.3638: couldn't read orphan inode 15 (err -117)
[  521.830433][T16214] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  521.846878][T16214] fscrypt (loop0, inode 18): Direct key flag not allowed with different contents and filenames modes
[  521.902372][T15328] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  522.535140][T16242] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0xf
[  523.161004][T16252] loop0: detected capacity change from 0 to 512
[  523.164808][T16252] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  523.186637][T16252] EXT4-fs (loop0): 1 truncate cleaned up
[  523.202465][T16252] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  523.268959][T15328] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  523.408195][T16264] binfmt_misc: register: failed to install interpreter file ./file0
[  523.508878][T16270] loop0: detected capacity change from 0 to 1024
[  523.695020][T16280] hfsplus: request for non-existent node 211 in B*Tree
[  523.702487][T16280] hfsplus: request for non-existent node 211 in B*Tree
[  525.120984][T16311] loop0: detected capacity change from 0 to 40427
[  525.124104][T16311] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  525.126907][T16311] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  525.186013][T16311] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  525.191290][T16311] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  525.194154][T16311] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  525.562010][T16337] loop0: detected capacity change from 0 to 256
[  525.913765][T16357] loop0: detected capacity change from 0 to 128
[  525.919098][T16357] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  525.927990][T16357] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  525.978299][T14388] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  526.957903][T16373] loop0: detected capacity change from 0 to 512
[  526.990080][T16373] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  526.993725][T16373] ext4 filesystem being mounted at /93/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  527.169018][T15328] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  527.448100][T16395] loop0: detected capacity change from 0 to 1764
[  527.523710][T16399] loop0: detected capacity change from 0 to 1024
[  527.564393][T13331] hfsplus: b-tree write err: -5, ino 4
[  527.596241][T16401] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  527.623577][T16404] loop0: detected capacity change from 0 to 2048
[  527.627483][T16402] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  527.635226][T16404] FAT-fs (loop0): bogus logical sector size 0
[  527.640901][T16404] FAT-fs (loop0): Can't find a valid FAT filesystem
[  530.162407][T16499] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3764'.
[  531.577913][T16521] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3773'.
[  531.654216][T16525] tipc: Started in network mode
[  531.659086][T16525] tipc: Node identity 6, cluster identity 1
[  531.664585][T16525] tipc: Node number set to 6
[  532.268760][T16543] loop9: detected capacity change from 0 to 32768
[  532.290537][T16543] ea_get: invalid extended attribute
[  532.294931][T16543] ea_get: invalid extended attribute
[  532.295303][   T33] audit: type=1800 audit(2000000094.469:507): pid=16543 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.9.3784" name="file1" dev="loop9" ino=4 res=0 errno=0
[  532.926420][T16563] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3792'.
[  533.471667][T16584] syz_tun: entered allmulticast mode
[  533.482275][T16584] dvmrp1: entered allmulticast mode
[  533.492812][T16583] syz_tun: left allmulticast mode
[  533.587731][T16589] overlayfs: failed to clone upperpath
[  533.794401][T16595] netlink: 348 bytes leftover after parsing attributes in process `syz.0.3805'.
[  533.863570][T16599] netlink: 56 bytes leftover after parsing attributes in process `syz.0.3807'.
[  534.034600][T16610] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  534.107687][T16614] loop0: detected capacity change from 0 to 8
[  534.119592][T16614] SQUASHFS error: zlib decompression failed, data probably corrupt
[  534.122351][T16614] SQUASHFS error: Failed to read block 0x4e8: -5
[  534.125194][   T33] audit: type=1800 audit(2000000096.299:508): pid=16614 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.3813" name="file1" dev="loop0" ino=5 res=0 errno=0
[  534.140309][T16614] SQUASHFS error: Failed to read block 0x6e6: -5
[  534.142766][T16614] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  534.145490][T16614] SQUASHFS error: read_indexes: reading block [6e4:0]
[  534.148462][T16614] SQUASHFS error: Failed to read block 0x0: -5
[  534.150384][T16614] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  534.152688][T16614] SQUASHFS error: read_indexes: reading block [6e4:0]
[  534.154924][T16614] SQUASHFS error: Failed to read block 0x0: -5
[  534.157028][T16614] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  534.159329][T16614] SQUASHFS error: read_indexes: reading block [6e4:0]
[  534.162186][T16614] SQUASHFS error: Failed to read block 0x0: -5
[  534.164212][T16614] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  534.166601][T16614] SQUASHFS error: read_indexes: reading block [6e4:0]
[  534.168721][T16614] SQUASHFS error: Failed to read block 0x0: -5
[  534.171327][T16614] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  534.173571][T16614] SQUASHFS error: read_indexes: reading block [6e4:0]
[  534.175938][T16614] SQUASHFS error: Failed to read block 0x0: -5
[  534.177961][T16614] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  534.180297][T16614] SQUASHFS error: read_indexes: reading block [6e4:0]
[  534.182368][T16614] SQUASHFS error: Failed to read block 0x0: -5
[  534.184586][T16614] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  534.187328][T16614] SQUASHFS error: read_indexes: reading block [6e4:0]
[  534.189437][T16614] SQUASHFS error: Failed to read block 0x0: -5
[  534.191391][T16614] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  534.193592][T16614] SQUASHFS error: read_indexes: reading block [6e4:0]
[  534.195683][T16614] SQUASHFS error: Failed to read block 0x0: -5
[  534.199208][T16614] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  534.202159][T16614] SQUASHFS error: read_indexes: reading block [6e4:0]
[  534.204838][T16614] SQUASHFS error: Failed to read block 0x0: -5
[  534.207086][T16614] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  534.209323][T16614] SQUASHFS error: read_indexes: reading block [6e4:0]
[  534.212031][T16614] SQUASHFS error: Failed to read block 0x0: -5
[  534.214509][T16614] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  534.217568][T16614] SQUASHFS error: read_indexes: reading block [6e4:0]
[  534.220355][T16614] SQUASHFS error: Failed to read block 0x0: -5
[  534.222896][T16614] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  534.225843][T16614] SQUASHFS error: read_indexes: reading block [6e4:0]
[  534.226835][T16617] overlay: filesystem on ./bus is read-only
[  534.228377][T16614] SQUASHFS error: Failed to read block 0x0: -5
[  534.232330][T16614] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  534.234541][T16614] SQUASHFS error: read_indexes: reading block [6e4:0]
[  534.236764][T16614] SQUASHFS error: Failed to read block 0x0: -5
[  534.239100][T16614] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  534.241976][T16614] SQUASHFS error: read_indexes: reading block [6e4:0]
[  534.244744][T16614] SQUASHFS error: Failed to read block 0x0: -5
[  534.247357][T16614] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  534.250213][T16614] SQUASHFS error: read_indexes: reading block [6e4:0]
[  534.253672][T16614] SQUASHFS error: Failed to read block 0x0: -5
[  534.256339][T16614] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  534.259270][T16614] SQUASHFS error: read_indexes: reading block [6e4:0]
[  534.262109][T16614] SQUASHFS error: Failed to read block 0x0: -5
[  534.264121][T16614] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  534.266968][T16614] SQUASHFS error: read_indexes: reading block [6e4:0]
[  534.269665][T16614] SQUASHFS error: Failed to read block 0x0: -5
[  534.273398][T16614] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  534.274041][T16615] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  534.276338][T16614] SQUASHFS error: read_indexes: reading block [6e4:0]
[  534.276399][T16614] SQUASHFS error: Failed to read block 0x0: -5
[  534.276442][T16614] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  534.276448][T16614] SQUASHFS error: read_indexes: reading block [6e4:0]
[  534.276476][T16614] SQUASHFS error: Failed to read block 0x0: -5
[  534.276504][T16614] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  534.276510][T16614] SQUASHFS error: read_indexes: reading block [6e4:0]
[  534.276537][T16614] SQUASHFS error: Failed to read block 0x0: -5
[  534.276565][T16614] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  534.276571][T16614] SQUASHFS error: read_indexes: reading block [6e4:0]
[  534.276602][T16614] SQUASHFS error: Failed to read block 0x0: -5
[  534.276649][T16614] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  534.276659][T16614] SQUASHFS error: read_indexes: reading block [6e4:0]
[  534.276694][T16614] SQUASHFS error: Failed to read block 0x0: -5
[  534.276749][T16614] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  534.276759][T16614] SQUASHFS error: read_indexes: reading block [6e4:0]
[  534.276796][T16614] SQUASHFS error: Failed to read block 0x0: -5
[  534.276842][T16614] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  534.276853][T16614] SQUASHFS error: read_indexes: reading block [6e4:0]
[  534.276893][T16614] SQUASHFS error: Failed to read block 0x0: -5
[  534.302304][T16615] SQUASHFS error: read_indexes: reading block [6e4:0]
[  534.304352][T16614] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  534.315882][T16615] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  534.316925][T16614] SQUASHFS error: read_indexes: reading block [6e4:0]
[  534.321020][T16615] SQUASHFS error: read_indexes: reading block [6e4:0]
[  534.321334][T16614] SQUASHFS error: Failed to read block 0x0: -5
[  534.335191][T16615] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  534.337636][T16614] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  534.337648][T16614] SQUASHFS error: read_indexes: reading block [6e4:0]
[  534.337675][T16614] SQUASHFS error: Failed to read block 0x0: -5
[  534.337704][T16614] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  534.337709][T16614] SQUASHFS error: read_indexes: reading block [6e4:0]
[  534.337743][T16614] SQUASHFS error: Failed to read block 0x0: -5
[  534.337771][T16614] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  534.337776][T16614] SQUASHFS error: read_indexes: reading block [6e4:0]
[  534.337801][T16614] SQUASHFS error: Failed to read block 0x0: -5
[  534.337828][T16614] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  534.337834][T16614] SQUASHFS error: read_indexes: reading block [6e4:0]
[  534.337857][T16614] SQUASHFS error: Failed to read block 0x0: -5
[  534.337884][T16614] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  534.337890][T16614] SQUASHFS error: read_indexes: reading block [6e4:0]
[  534.337916][T16614] SQUASHFS error: Failed to read block 0x0: -5
[  534.337943][T16614] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  534.355912][T16615] SQUASHFS error: read_indexes: reading block [6e4:0]
[  534.356936][T16614] SQUASHFS error: read_indexes: reading block [6e4:0]
[  534.395057][T16614] SQUASHFS error: Failed to read block 0x0: -5
[  534.397677][T16614] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  534.400331][T16614] SQUASHFS error: read_indexes: reading block [6e4:0]
[  534.403179][T16614] SQUASHFS error: Failed to read block 0x0: -5
[  534.405847][T16614] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  534.408663][T16614] SQUASHFS error: read_indexes: reading block [6e4:0]
[  534.411368][T16614] SQUASHFS error: Failed to read block 0x0: -5
[  534.413836][T16614] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  534.417364][T16614] SQUASHFS error: read_indexes: reading block [6e4:0]
[  534.420159][T16614] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  534.423010][T16614] SQUASHFS error: read_indexes: reading block [6e4:0]
[  534.581725][   T33] audit: type=1326 audit(2000000096.759:509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16635 comm="syz.9.3823" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5dfa78ebe9 code=0x0
[  535.769794][T16655] loop0: detected capacity change from 0 to 40427
[  535.772770][T16655] F2FS-fs: heap/no_heap options were deprecated
[  535.777037][T16655] F2FS-fs (loop0): build fault injection rate: 19
[  535.779062][T16655] F2FS-fs (loop0): build fault injection type: 0x3bfe8c
[  535.783476][T16655] F2FS-fs (loop0): invalid crc value
[  535.804218][T16655] F2FS-fs (loop0): inject page alloc in f2fs_grab_cache_folio of f2fs_ra_meta_pages+0x615/0x970
[  535.842121][T16655] F2FS-fs (loop0): inject slab alloc in f2fs_kmem_cache_alloc of read_node_folio+0x20a/0x3f0
[  535.847429][T16655] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  535.851568][T16655] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  535.898278][T16655] F2FS-fs (loop0): inject slab alloc in f2fs_kmem_cache_alloc of f2fs_new_node_folio+0x1d9/0xa40
[  535.907706][T16655] F2FS-fs (loop0): inject lock_op in f2fs_trylock_op of f2fs_write_single_data_page+0x9f1/0x16a0
[  535.912651][T16655] F2FS-fs (loop0): inject checkpoint error in f2fs_balance_fs of f2fs_write_single_data_page+0xfaf/0x16a0
[  535.917269][T16655] syz.0.3832: attempt to access beyond end of device
[  535.917269][T16655] loop0: rw=2049, sector=45096, nr_sectors = 48 limit=40427
[  535.927729][T16655] CPU: 1 UID: 0 PID: 16655 Comm: syz.0.3832 Not tainted 6.17.0-rc1-syzkaller-00036-gdfc0f6373094-dirty #0 PREEMPT(full) 
[  535.927745][T16655] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  535.927752][T16655] Call Trace:
[  535.927757][T16655]  <TASK>
[  535.927762][T16655]  dump_stack_lvl+0x189/0x250
[  535.927779][T16655]  ? __pfx_dump_stack_lvl+0x10/0x10
[  535.927790][T16655]  ? __pfx_queue_work_on+0x10/0x10
[  535.927799][T16655]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  535.927810][T16655]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  535.927821][T16655]  ? f2fs_hw_is_readonly+0x39b/0x470
[  535.927835][T16655]  f2fs_handle_critical_error+0x37c/0x540
[  535.927849][T16655]  f2fs_balance_fs+0x32d/0x7f0
[  535.927863][T16655]  ? f2fs_write_single_data_page+0xfaf/0x16a0
[  535.927878][T16655]  ? __pfx_f2fs_balance_fs+0x10/0x10
[  535.927902][T16655]  ? folio_unlock+0x101/0x160
[  535.927922][T16655]  f2fs_write_single_data_page+0xfaf/0x16a0
[  535.927942][T16655]  ? __pfx_f2fs_write_single_data_page+0x10/0x10
[  535.927962][T16655]  ? mlock_drain_local+0x79/0x490
[  535.927971][T16655]  ? mlock_drain_local+0x28e/0x490
[  535.927985][T16655]  f2fs_write_data_pages+0x195b/0x3000
[  535.928030][T16655]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  535.928088][T16655]  ? __lock_acquire+0xab9/0xd20
[  535.928104][T16655]  ? do_raw_spin_lock+0x121/0x290
[  535.928127][T16655]  ? do_raw_spin_unlock+0x4d/0x240
[  535.928145][T16655]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  535.928166][T16655]  do_writepages+0x32e/0x550
[  535.928214][T16655]  ? do_raw_spin_unlock+0x4d/0x240
[  535.928227][T16655]  file_write_and_wait_range+0x23e/0x340
[  535.928249][T16655]  ? __pfx_file_write_and_wait_range+0x10/0x10
[  535.928301][T16655]  ? do_raw_spin_lock+0x121/0x290
[  535.928327][T16655]  f2fs_do_sync_file+0x5e0/0x1860
[  535.928341][T16655]  ? __pfx_f2fs_do_sync_file+0x10/0x10
[  535.928386][T16655]  ? f2fs_file_write_iter+0x4ac/0x2410
[  535.928406][T16655]  ? vfs_fsync_range+0x12c/0x1c0
[  535.928418][T16655]  ? f2fs_sync_file+0xe9/0x160
[  535.928428][T16655]  f2fs_file_write_iter+0x753/0x2410
[  535.928468][T16655]  ? __pfx_f2fs_file_write_iter+0x10/0x10
[  535.928483][T16655]  ? rcu_read_lock_any_held+0xb3/0x120
[  535.928511][T16655]  vfs_write+0x5c9/0xb30
[  535.928536][T16655]  ? __pfx_f2fs_file_write_iter+0x10/0x10
[  535.928553][T16655]  ? __pfx_vfs_write+0x10/0x10
[  535.928579][T16655]  ? __fget_files+0x2a/0x420
[  535.928595][T16655]  ksys_write+0x145/0x250
[  535.928606][T16655]  ? __pfx_ksys_write+0x10/0x10
[  535.928615][T16655]  ? rcu_is_watching+0x15/0xb0
[  535.928626][T16655]  ? do_syscall_64+0xbe/0x3b0
[  535.928640][T16655]  do_syscall_64+0xfa/0x3b0
[  535.928650][T16655]  ? lockdep_hardirqs_on+0x9c/0x150
[  535.928661][T16655]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  535.928669][T16655]  ? exc_page_fault+0x9f/0xf0
[  535.928682][T16655]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  535.928694][T16655] RIP: 0033:0x7f2d6ef8ebe9
[  535.928708][T16655] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  535.928720][T16655] RSP: 002b:00007f2d6fd1d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  535.928735][T16655] RAX: ffffffffffffffda RBX: 00007f2d6f1b5fa0 RCX: 00007f2d6ef8ebe9
[  535.928743][T16655] RDX: 0000000000007bc6 RSI: 00002000000001c0 RDI: 0000000000000004
[  535.928751][T16655] RBP: 00007f2d6f011e19 R08: 0000000000000000 R09: 0000000000000000
[  535.928759][T16655] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  535.928767][T16655] R13: 00007f2d6f1b6038 R14: 00007f2d6f1b5fa0 R15: 00007fff19a7f3d8
[  535.928786][T16655]  </TASK>
[  535.928792][T16655] F2FS-fs (loop0): Stopped filesystem due to reason: 1
[  536.218107][ T6029] usb 10-1: new high-speed USB device number 10 using dummy_hcd
[  536.475761][ T6029] usb 10-1: Using ep0 maxpacket: 32
[  536.479790][ T6029] usb 10-1: config 0 interface 0 altsetting 16 endpoint 0x81 has invalid wMaxPacketSize 0
[  536.483598][ T6029] usb 10-1: config 0 interface 0 altsetting 16 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  536.495654][ T6029] usb 10-1: config 0 interface 0 altsetting 16 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  536.499801][ T6029] usb 10-1: config 0 interface 0 altsetting 16 endpoint 0x8F has invalid wMaxPacketSize 0
[  536.503635][ T6029] usb 10-1: config 0 interface 0 altsetting 16 has 2 endpoint descriptors, different from the interface descriptor's value: 5
[  536.515647][ T6029] usb 10-1: config 0 interface 0 has no altsetting 0
[  536.518361][ T6029] usb 10-1: New USB device found, idVendor=044f, idProduct=b65d, bcdDevice= 0.00
[  536.521922][ T6029] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  536.886726][ T6029] usb 10-1: config 0 descriptor??
[  537.282083][T16682] loop0: detected capacity change from 0 to 8192
[  537.287090][T16682] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  537.310207][T16682] FAT-fs (loop0): error, fat_free: invalid cluster chain (i_pos 1046)
[  537.313886][T16682] FAT-fs (loop0): Filesystem has been set read-only
[  537.317942][ T6029] hid-thrustmaster 0003:044F:B65D.0010: unknown main item tag 0x0
[  537.324439][ T6029] hid-thrustmaster 0003:044F:B65D.0010: unknown main item tag 0x0
[  537.332588][ T6029] hid-thrustmaster 0003:044F:B65D.0010: unknown main item tag 0x0
[  537.337123][ T6029] hid-thrustmaster 0003:044F:B65D.0010: unknown main item tag 0x0
[  537.340390][ T6029] hid-thrustmaster 0003:044F:B65D.0010: unknown main item tag 0x0
[  537.401439][T15328] FAT-fs (loop0): error, fat_free: invalid cluster chain (i_pos 1046)
[  537.461140][ T6029] hid-thrustmaster 0003:044F:B65D.0010: hidraw0: USB HID v0.00 Device [HID 044f:b65d] on usb-dummy_hcd.9-1/input0
[  537.465306][ T6029] hid-thrustmaster 0003:044F:B65D.0010: setup data couldn't be sent
[  537.507522][    C0] hid-thrustmaster 0003:044F:B65D.0010: URB to get model id failed with error -71
[  537.510832][ T6029] usb 10-1: USB disconnect, device number 10
[  537.808340][T16696] netlink: 830 bytes leftover after parsing attributes in process `syz.0.3845'.
[  538.270254][ T5235] Bluetooth: hci2: SCO packet for unknown connection handle 0
[  538.306772][T16719] netlink: 495 bytes leftover after parsing attributes in process `syz.9.3852'.
[  538.855675][ T6029] usb 10-1: new full-speed USB device number 11 using dummy_hcd
[  539.007945][ T6029] usb 10-1: config 135 has an invalid interface number: 230 but max is 0
[  539.010592][ T6029] usb 10-1: config 135 has an invalid descriptor of length 0, skipping remainder of the config
[  539.014375][ T6029] usb 10-1: config 135 has no interface number 0
[  539.017238][ T6029] usb 10-1: config 135 interface 230 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[  539.030223][ T6029] usb 10-1: New USB device found, idVendor=18ec, idProduct=3288, bcdDevice=3f.3a
[  539.035583][ T6029] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  539.041535][ T6029] usb 10-1: Product: syz
[  539.042897][ T6029] usb 10-1: Manufacturer: syz
[  539.044324][ T6029] usb 10-1: SerialNumber: syz
[  539.050738][ T6029] usb 10-1: Found UVC 0.00 device syz (18ec:3288)
[  539.053256][ T6029] usb 10-1: No valid video chain found.
[  539.258617][T14382] usb 10-1: USB disconnect, device number 11
[  541.087041][T16798] netlink: 192 bytes leftover after parsing attributes in process `syz.0.3887'.
[  541.226847][T16808] netlink: 'syz.9.3892': attribute type 2 has an invalid length.
[  541.229520][T16808] netlink: 'syz.9.3892': attribute type 1 has an invalid length.
[  541.507186][T16816] loop0: detected capacity change from 0 to 1024
[  541.820995][T16825] openvswitch: netlink: Multiple metadata blocks provided
[  542.002509][T16839] loop9: detected capacity change from 0 to 256
[  543.225379][T16868] dummy0: entered promiscuous mode
[  543.232015][T16868] macsec1: entered promiscuous mode
[  543.234031][T16868] macsec1: entered allmulticast mode
[  543.243549][T16868] dummy0: entered allmulticast mode
[  543.249896][T16868] dummy0: left allmulticast mode
[  543.251881][T16868] dummy0: left promiscuous mode
[  543.419846][T16882] loop9: detected capacity change from 0 to 4096
[  543.425909][T16882] ntfs3(loop9): Different NTFS sector size (4096) and media sector size (512).
[  543.452085][T16882] ntfs3(loop9): Inode r=19 is not in use!
[  543.454021][T16882] ntfs3(loop9): Mark volume as dirty due to NTFS errors
[  544.102603][T16900] loop9: detected capacity change from 0 to 1024
[  544.719227][T13405] hfsplus: b-tree write err: -5, ino 4
[  545.175596][    T9] usb 10-1: new high-speed USB device number 12 using dummy_hcd
[  545.325998][    T9] usb 10-1: Using ep0 maxpacket: 32
[  545.331475][    T9] usb 10-1: config 0 has an invalid interface number: 126 but max is 0
[  545.334063][    T9] usb 10-1: config 0 has no interface number 0
[  545.345875][    T9] usb 10-1: config 0 interface 126 altsetting 16 bulk endpoint 0x6 has invalid maxpacket 1023
[  545.351013][    T9] usb 10-1: config 0 interface 126 altsetting 16 bulk endpoint 0x82 has invalid maxpacket 8
[  545.354285][    T9] usb 10-1: config 0 interface 126 has no altsetting 0
[  545.364133][    T9] usb 10-1: New USB device found, idVendor=09c4, idProduct=0011, bcdDevice=b0.1c
[  545.368736][    T9] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  545.371855][    T9] usb 10-1: Product: syz
[  545.374422][    T9] usb 10-1: Manufacturer: syz
[  545.377217][    T9] usb 10-1: SerialNumber: syz
[  545.381654][    T9] usb 10-1: config 0 descriptor??
[  545.388904][T16917] raw-gadget.1 gadget.9: fail, usb_ep_enable returned -22
[  545.394028][T16917] raw-gadget.1 gadget.9: fail, usb_ep_enable returned -22
[  545.775846][T16943] netlink: 44 bytes leftover after parsing attributes in process `syz.0.3953'.
[  545.779616][T16943] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3953'.
[  545.823128][    T9] ir_usb 10-1:0.126: IR Dongle converter detected
[  546.019996][    T9] usb 10-1: IR Dongle converter now attached to ttyUSB0
[  546.194005][T16966] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3964'.
[  546.227006][T14382] usb 10-1: USB disconnect, device number 12
[  546.248713][T14382] ir-usb ttyUSB0: IR Dongle converter now disconnected from ttyUSB0
[  546.256532][T14382] ir_usb 10-1:0.126: device disconnected
[  546.774825][T16983] loop9: detected capacity change from 0 to 256
[  546.801231][T16983] FAT-fs (loop9): Directory bread(block 64) failed
[  546.803736][T16983] FAT-fs (loop9): Directory bread(block 65) failed
[  546.809486][T16983] FAT-fs (loop9): Directory bread(block 66) failed
[  546.812020][T16983] FAT-fs (loop9): Directory bread(block 67) failed
[  546.814686][T16983] FAT-fs (loop9): Directory bread(block 68) failed
[  546.817986][T16983] FAT-fs (loop9): Directory bread(block 69) failed
[  546.820631][T16983] FAT-fs (loop9): Directory bread(block 70) failed
[  546.823211][T16983] FAT-fs (loop9): Directory bread(block 71) failed
[  546.826099][T16983] FAT-fs (loop9): Directory bread(block 72) failed
[  546.828765][T16983] FAT-fs (loop9): Directory bread(block 73) failed
[  547.065476][T16987] bridge2: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  547.385926][   T33] audit: type=1326 audit(2000000109.489:510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16979 comm="syz.4.3970" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b20d8ebe9 code=0x7fc00000
[  548.968301][    T9] usb 10-1: new high-speed USB device number 13 using dummy_hcd
[  549.415794][    T9] usb 10-1: Using ep0 maxpacket: 32
[  549.420713][T17009] 9pnet: p9_errstr2errno: server reported unknown error 
[  549.422662][    T9] usb 10-1: New USB device found, idVendor=041e, idProduct=400b, bcdDevice=3e.e7
[  549.428876][    T9] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  549.434348][    T9] usb 10-1: config 0 descriptor??
[  549.442010][    T9] gspca_main: sunplus-2.14.0 probing 041e:400b
[  549.649315][    T9] gspca_sunplus: reg_w_riv err -71
[  549.651524][    T9] sunplus 10-1:0.0: probe with driver sunplus failed with error -71
[  549.658755][    T9] usb 10-1: USB disconnect, device number 13
[  549.687646][T17020] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  551.429998][   T33] audit: type=1326 audit(2000000113.609:511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17063 comm="syz.0.4004" exe="/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f2d6ef8ebe9 code=0x0
[  551.781883][T17067] loop9: detected capacity change from 0 to 256
[  551.800043][T17067] MINIX-fs: mounting file system with errors, running fsck is recommended
[  551.816994][T17067] MINIX-fs warning: remounting fs with errors, running fsck is recommended
[  551.825942][T17067] MINIX-fs warning: remounting unchecked fs, running fsck is recommended
[  552.187151][T17071] loop9: detected capacity change from 0 to 32768
[  552.197096][T17071] XFS (loop9): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  552.222639][T17071] XFS (loop9): Ending clean mount
[  552.530491][T13427] XFS (loop9): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  553.175725][   T10] usb 10-1: new high-speed USB device number 14 using dummy_hcd
[  553.332111][   T10] usb 10-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.02
[  553.336830][   T10] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  553.340143][   T10] usb 10-1: Product: syz
[  553.345649][   T10] usb 10-1: Manufacturer: syz
[  553.347815][   T10] usb 10-1: SerialNumber: syz
[  553.356569][   T10] usb 10-1: config 0 descriptor??
[  553.579002][   T10] hso 10-1:0.0: Failed to find BULK IN ep
[  553.781493][   T10] usb 10-1: USB disconnect, device number 14
[  554.554820][T17120] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  555.095658][    T9] usb 10-1: new high-speed USB device number 15 using dummy_hcd
[  555.247024][    T9] usb 10-1: Using ep0 maxpacket: 32
[  555.252915][    T9] usb 10-1: config 0 has an invalid interface number: 12 but max is 0
[  555.256595][    T9] usb 10-1: config 0 has no interface number 0
[  555.259398][    T9] usb 10-1: config 0 interface 12 has no altsetting 0
[  555.274283][    T9] usb 10-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=70.40
[  555.280182][    T9] usb 10-1: New USB device strings: Mfr=231, Product=2, SerialNumber=3
[  555.283507][    T9] usb 10-1: Product: syz
[  555.285099][    T9] usb 10-1: Manufacturer: syz
[  555.287225][    T9] usb 10-1: SerialNumber: syz
[  555.291348][    T9] usb 10-1: config 0 descriptor??
[  555.567520][T17153] loop0: detected capacity change from 0 to 128
[  555.662965][T17157] loop0: detected capacity change from 0 to 1024
[  555.727171][ T3876] hfsplus: b-tree write err: -5, ino 4
[  556.236403][T17177] can0: slcan on ttyS3.
[  556.358570][T17177] can0 (unregistered): slcan off ttyS3.
[  556.544311][    T9] f81534 10-1:0.12: f81534_set_register: reg: 1003 data: b0 failed: -71
[  556.555671][    T9] f81534 10-1:0.12: f81534_find_config_idx: read failed: -71
[  556.558483][    T9] f81534 10-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  556.561363][    T9] f81534 10-1:0.12: probe with driver f81534 failed with error -71
[  556.574493][    T9] usb 10-1: USB disconnect, device number 15
[  558.082431][T17241] bridge0: entered promiscuous mode
[  558.095492][T17241] macvlan2: entered promiscuous mode
[  559.521075][T17276] loop9: detected capacity change from 0 to 512
[  559.533885][T17276] EXT4-fs (loop9): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  559.540439][T17276] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=2842e12c, mo2=0002]
[  559.542955][T17276] System zones: 1-12
[  559.544228][T17276] EXT4-fs (loop9): orphan cleanup on readonly fs
[  559.675338][T17276] EXT4-fs error (device loop9): ext4_free_branches:1023: inode #11: comm syz.9.4094: invalid indirect mapped block 12 (level 1)
[  559.757676][T17276] EXT4-fs (loop9): Remounting filesystem read-only
[  559.757862][T17276] EXT4-fs (loop9): 1 truncate cleaned up
[  559.759825][T17276] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  559.766517][T17276] EXT4-fs warning (device loop9): dx_probe:791: inode #2: lblock 0: comm syz.9.4094: error -117 reading directory block
[  559.772142][T17276] EXT4-fs warning (device loop9): dx_probe:791: inode #2: lblock 0: comm syz.9.4094: error -117 reading directory block
[  559.804141][T13427] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  559.907423][T17285] netlink: 'syz.9.4097': attribute type 29 has an invalid length.
[  559.910858][T17285] netlink: 'syz.9.4097': attribute type 29 has an invalid length.
[  559.914423][T17285] netlink: 500 bytes leftover after parsing attributes in process `syz.9.4097'.
[  560.195822][   T10] usb 10-1: new high-speed USB device number 16 using dummy_hcd
[  560.239793][T17289] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4099'.
[  560.244660][T17289] netlink: 72 bytes leftover after parsing attributes in process `syz.4.4099'.
[  560.248836][T17289] A link change request failed with some changes committed already. Interface veth1_macvtap may have been left with an inconsistent configuration, please check.
[  560.346077][   T10] usb 10-1: Using ep0 maxpacket: 32
[  560.350132][   T10] usb 10-1: config 0 has an invalid interface number: 146 but max is 0
[  560.353219][   T10] usb 10-1: config 0 has no interface number 0
[  560.355948][   T10] usb 10-1: config 0 interface 146 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  560.360298][   T10] usb 10-1: config 0 interface 146 altsetting 0 has an endpoint descriptor with address 0xE3, changing to 0x83
[  560.364903][   T10] usb 10-1: config 0 interface 146 altsetting 0 endpoint 0x83 has invalid maxpacket 33307, setting to 1024
[  560.369468][   T10] usb 10-1: config 0 interface 146 altsetting 0 bulk endpoint 0x83 has invalid maxpacket 1024
[  560.373517][   T10] usb 10-1: config 0 interface 146 altsetting 0 has an endpoint descriptor with address 0xF2, changing to 0x82
[  560.380362][   T10] usb 10-1: config 0 interface 146 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  560.385795][   T10] usb 10-1: config 0 interface 146 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[  560.389937][   T10] usb 10-1: config 0 interface 146 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  560.393686][   T10] usb 10-1: config 0 interface 146 altsetting 0 has 4 endpoint descriptors, different from the interface descriptor's value: 3
[  560.401524][   T10] usb 10-1: New USB device found, idVendor=05da, idProduct=009a, bcdDevice=62.95
[  560.404916][   T10] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  560.409293][   T10] usb 10-1: Product: syz
[  560.415615][   T10] usb 10-1: Manufacturer: syz
[  560.417123][   T10] usb 10-1: SerialNumber: syz
[  560.420235][   T10] usb 10-1: config 0 descriptor??
[  560.422441][T17287] raw-gadget.1 gadget.9: fail, usb_ep_enable returned -22
[  560.427322][   T10] microtek usb (rev 0.4.3): can only deal with bulk endpoints; endpoint 1 is not bulk.
[  560.433614][   T10] microtek usb (rev 0.4.3): couldn't find an output bulk endpoint. Bailing out.
[  560.675154][   T10] usb 10-1: USB disconnect, device number 16
[  560.963012][T10760] libceph: connect (1)[c::]:6789 error -101
[  560.964985][T10760] libceph: mon0 (1)[c::]:6789 connect error
[  561.229879][   T10] libceph: connect (1)[c::]:6789 error -101
[  561.232016][   T10] libceph: mon0 (1)[c::]:6789 connect error
[  561.269600][T17308] loop9: detected capacity change from 0 to 256
[  561.280976][T17308] exFAT-fs (loop9): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  561.308919][T17308] exFAT-fs (loop9): start_clu is invalid cluster(0xffffffff)
[  561.348136][T17303] ceph: No mds server is up or the cluster is laggy
[  561.468246][T17310] loop9: detected capacity change from 0 to 256
[  561.476888][T17310] exFAT-fs (loop9): failed to load upcase table (idx : 0x00010000, chksum : 0x9aa2f194, utbl_chksum : 0xe619d30d)
[  562.095314][T17343] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4122'.
[  562.100424][T17343] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4122'.
[  562.597571][T17363] netlink: 'syz.9.4130': attribute type 1 has an invalid length.
[  562.694989][ T1364] ieee802154 phy0 wpan0: encryption failed: -22
[  562.702667][ T1364] ieee802154 phy1 wpan1: encryption failed: -22
[  563.195983][T17371] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  563.589384][T17375] loop9: detected capacity change from 0 to 512
[  563.592710][T17375] EXT4-fs: Ignoring removed bh option
[  563.595230][T17375] EXT4-fs (loop9): mounting ext3 file system using the ext4 subsystem
[  563.606983][T17375] EXT4-fs (loop9): 1 truncate cleaned up
[  563.610030][T17375] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  563.639952][T13427] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  563.846041][T17385] loop9: detected capacity change from 0 to 512
[  563.854016][T17385] UDF-fs: warning (device loop9): udf_load_vrs: No VRS found
[  563.858121][T17385] UDF-fs: Scanning with blocksize 512 failed
[  563.869702][T17385] UDF-fs: warning (device loop9): udf_load_vrs: No VRS found
[  563.872274][T17385] UDF-fs: Scanning with blocksize 1024 failed
[  563.882940][T17385] UDF-fs: warning (device loop9): udf_load_vrs: No VRS found
[  563.893262][T17385] UDF-fs: Scanning with blocksize 2048 failed
[  563.896733][T17385] UDF-fs: error (device loop9): udf_read_tagged: read failed, block=256, location=256
[  563.902909][T17385] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  564.358767][T17397] loop9: detected capacity change from 0 to 32768
[  564.364468][T17397] bcachefs: bch2_fs_parse_param() Error parsing option move_bytes_in_flight: option_value
[  564.375822][T17400] siw: device registration error -23
[  564.880764][T17424] loop9: detected capacity change from 0 to 32768
[  564.890856][T17424] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop9 (7:9) scanned by syz.9.4160 (17424)
[  564.918662][T17424] BTRFS info (device loop9): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  564.922673][T17424] BTRFS info (device loop9): using blake2b (blake2b-256-generic) checksum algorithm
[  564.927045][T17424] BTRFS info (device loop9): using free-space-tree
[  564.974275][ T1092] BTRFS warning (device loop9): checksum verify failed on logical 5337088 mirror 1 wanted 0x324c5e2d0cac2dc8f61cbfdfc8cd69d9816061b1498b9e1bff7d10a59610160b found 0xf8bb6bdef03b64ff3b11a2a87ba7a2aeacfdb41cc49a87adad5cc1644d216b29 level 0
[  564.982981][T17424] BTRFS error (device loop9): failed to load root extent
[  564.987339][ T1092] BTRFS warning (device loop9 state C): checksum verify failed on logical 5341184 mirror 1 wanted 0xc53d3c5bb04ba5dfc01f4c277f0b81815915cb99da5074f609a3f7f617cf284a found 0xd34891a64d32c06b063fbbf3d26e09cb4d5acf5ade8dc51c4cd532bb53f895d0 level 0
[  564.997570][T17424] BTRFS error (device loop9 state C): failed to load root free space
[  565.000602][   T27] BTRFS warning (device loop9 state C): checksum verify failed on logical 5287936 mirror 1 wanted 0x31987782e3a542b4b1826f4a60605b79838e23bf27075900db4b92202c72b2fd found 0xceda3bc49047826ec4468b88ec74a14d6cd3232f25b2c41331ed48993507590e level 0
[  565.019589][   T27] BTRFS warning (device loop9 state C): checksum verify failed on logical 5292032 mirror 1 wanted 0xcbbb23d5b53a3b4892a5068ee5011732ffcd94742b434497e3f11d7ca86a6d23 found 0x6ab87e71a537053373402d980abd70276b583e303a68e0dd0a46bb41cfc306c8 level 0
[  565.056835][T13427] BTRFS info (device loop9 state C): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  565.219362][T17459] loop9: detected capacity change from 0 to 256
[  565.222310][T17459] exfat: Deprecated parameter 'utf8'
[  565.224586][T17459] exfat: Deprecated parameter 'utf8'
[  565.227563][T17459] exfat: Deprecated parameter 'utf8'
[  565.229786][T17459] exfat: Deprecated parameter 'utf8'
[  565.255239][T17459] exFAT-fs (loop9): failed to load upcase table (idx : 0x00010000, chksum : 0xac5c0b1f, utbl_chksum : 0xe619d30d)
[  565.463012][T17461] loop9: detected capacity change from 0 to 32768
[  565.475026][T17461] XFS (loop9): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  565.520468][T17471] bond0: (slave lo): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[  565.536905][T17461] XFS (loop9): Ending clean mount
[  565.538493][T17471] bond0: (slave lo): Error: Device can not be enslaved while up
[  565.550137][T17461] XFS (loop9): Quotacheck needed: Please wait.
[  565.608794][T17461] XFS (loop9): Quotacheck: Done.
[  565.688323][T13427] XFS (loop9): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  565.703468][T17477] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4174'.
[  565.885757][T17479] team0: Caught tx_queue_len zero misconfig
[  566.344285][T17481] loop0: detected capacity change from 0 to 32768
[  566.381902][T17481] XFS (loop0): alignment check failed: sunit/swidth vs. blocksize(4096)
[  567.187471][T17529] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4194'.
[  567.191067][T17529] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4194'.
[  567.194607][T17529] netlink: 'syz.0.4194': attribute type 5 has an invalid length.
[  567.301290][T17533] : renamed from bond_slave_0 (while UP)
[  567.381454][T17539] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4199'.
[  567.911163][T17561] loop9: detected capacity change from 0 to 32768
[  567.931063][T17561] (syz.9.4209,17561,1):ocfs2_find_slot:468 ERROR: no free slots available!
[  567.934057][T17561] (syz.9.4209,17561,1):ocfs2_mount_volume:1751 ERROR: status = -22
[  567.941430][T17561] (syz.9.4209,17561,1):ocfs2_fill_super:1177 ERROR: status = -22
[  568.605387][T17605] lo: Caught tx_queue_len zero misconfig
[  569.777994][T17630] netlink: 20 bytes leftover after parsing attributes in process `syz.4.4239'.
[  570.175725][T17653] netlink: 'syz.0.4250': attribute type 1 has an invalid length.
[  570.274726][T17655] loop0: detected capacity change from 0 to 8192
[  571.295933][T14382] usb 10-1: new high-speed USB device number 17 using dummy_hcd
[  571.400043][T17674] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  571.489547][T14382] usb 10-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  571.505607][T14382] usb 10-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  571.513187][T14382] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  571.517624][T14382] usb 10-1: Product: syz
[  571.519409][T14382] usb 10-1: Manufacturer: syz
[  571.521354][T14382] usb 10-1: SerialNumber: syz
[  571.542485][T14382] usb 10-1: config 0 descriptor??
[  571.682796][T14382] snd-usb-audio 10-1:0.0: probe with driver snd-usb-audio failed with error -22
[  571.762433][T13977] udevd[13977]: error opening ATTR{/sys/devices/platform/dummy_hcd.9/usb10/10-1/10-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  571.766647][T14382] usb 10-1: USB disconnect, device number 17
[  572.055890][ T5235] Bluetooth: hci2: command 0x0406 tx timeout
[  572.480133][T17700] tipc: Failed to obtain node identity
[  572.482364][T17700] tipc: Enabling of bearer <ib:gre0> rejected, failed to enable media
[  572.520795][T17702] netlink: 80 bytes leftover after parsing attributes in process `syz.9.4273'.
[  572.676818][T17714] openvswitch: netlink: IP tunnel attribute has 12 unknown bytes.
[  572.715959][T17716] netlink: 8 bytes leftover after parsing attributes in process `syz.9.4280'.
[  573.125853][ T6029] usb 10-1: new high-speed USB device number 18 using dummy_hcd
[  573.275650][ T6029] usb 10-1: Using ep0 maxpacket: 16
[  573.279724][ T6029] usb 10-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  573.283791][ T6029] usb 10-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  573.289087][ T6029] usb 10-1: config 1 has no interface number 1
[  573.291604][ T6029] usb 10-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  573.299917][ T6029] usb 10-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  573.303479][ T6029] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  573.306655][ T6029] usb 10-1: Product: syz
[  573.308286][ T6029] usb 10-1: Manufacturer: syz
[  573.310096][ T6029] usb 10-1: SerialNumber: syz
[  573.545408][ T6029] usb 10-1: USB disconnect, device number 18
[  573.578431][T13977] udevd[13977]: error opening ATTR{/sys/devices/platform/dummy_hcd.9/usb10/10-1/10-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  574.133006][T17745] loop9: detected capacity change from 0 to 4096
[  574.140762][T17745] ntfs3(loop9): Different NTFS sector size (4096) and media sector size (512).
[  574.171139][T17745] ntfs3(loop9): ino=1a, mi_enum_attr
[  574.175879][T17745] ntfs3(loop9): Mark volume as dirty due to NTFS errors
[  574.185881][T17745] ntfs3(loop9): ino=1a, mi_enum_attr
[  574.188307][T17745] ntfs3(loop9): Failed to initialize $Extend/$Reparse.
[  575.128276][T17777] loop0: detected capacity change from 0 to 4096
[  575.276973][T17779] loop0: detected capacity change from 0 to 4096
[  575.317572][T17781] bridge0: port 1() entered blocking state
[  575.319961][T17781] bridge0: port 1() entered forwarding state
[  575.775428][T17805] loop9: detected capacity change from 0 to 2048
[  575.781938][T17805] NILFS (loop9): broken superblock, retrying with spare superblock (blocksize = 1024)
[  575.886009][T17805] syz.9.4320: attempt to access beyond end of device
[  575.886009][T17805] loop9: rw=524288, sector=33554430, nr_sectors = 2 limit=2048
[  575.890992][T17808] NILFS (loop9): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  575.911867][T17805] syz.9.4320: attempt to access beyond end of device
[  575.911867][T17805] loop9: rw=0, sector=9437254, nr_sectors = 2 limit=2048
[  575.932528][T17805] NILFS (loop9): I/O error reading meta-data file (ino=6, block-offset=0)
[  576.414917][T17818] loop9: detected capacity change from 0 to 512
[  576.419156][T17818] EXT4-fs: Ignoring removed oldalloc option
[  576.429852][T17818] EXT4-fs (loop9): 1 truncate cleaned up
[  576.439651][T17818] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  576.472711][T13427] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  577.248013][T17827] loop9: detected capacity change from 0 to 32768
[  577.469996][   T33] audit: type=1326 audit(2000000139.649:512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17845 comm="syz.4.4337" exe="/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f5b20d85ba7 code=0x7ffc0000
[  577.490620][   T33] audit: type=1326 audit(2000000139.649:513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17845 comm="syz.4.4337" exe="/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5b20d2add9 code=0x7ffc0000
[  577.505942][   T33] audit: type=1326 audit(2000000139.649:514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17845 comm="syz.4.4337" exe="/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f5b20d85ba7 code=0x7ffc0000
[  577.518385][   T33] audit: type=1326 audit(2000000139.649:515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17845 comm="syz.4.4337" exe="/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5b20d2add9 code=0x7ffc0000
[  577.535872][   T33] audit: type=1326 audit(2000000139.649:516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17845 comm="syz.4.4337" exe="/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f5b20d85ba7 code=0x7ffc0000
[  577.552954][   T33] audit: type=1326 audit(2000000139.649:517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17845 comm="syz.4.4337" exe="/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5b20d2add9 code=0x7ffc0000
[  577.563082][   T33] audit: type=1326 audit(2000000139.649:518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17845 comm="syz.4.4337" exe="/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f5b20d85ba7 code=0x7ffc0000
[  577.576255][   T33] audit: type=1326 audit(2000000139.649:519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17845 comm="syz.4.4337" exe="/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5b20d2add9 code=0x7ffc0000
[  577.592989][   T33] audit: type=1326 audit(2000000139.649:520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17845 comm="syz.4.4337" exe="/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f5b20d85ba7 code=0x7ffc0000
[  577.608258][   T33] audit: type=1326 audit(2000000139.649:521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17845 comm="syz.4.4337" exe="/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5b20d2add9 code=0x7ffc0000
[  578.300368][T13516] netdevsim netdevsim9 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  578.385457][T13516] netdevsim netdevsim9 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  578.458146][T13516] netdevsim netdevsim9 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  578.540081][T13516] netdevsim netdevsim9 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  578.691821][T13516] bridge_slave_1: left allmulticast mode
[  578.694276][T13516] bridge_slave_1: left promiscuous mode
[  578.696982][T13516] bridge0: port 2(bridge_slave_1) entered disabled state
[  578.701991][T13516] bridge_slave_0: left allmulticast mode
[  578.704571][T13516] bridge0: port 1(bridge_slave_0) entered disabled state
[  579.397834][T13516] bond0 (unregistering): (slave 77): Releasing backup interface
[  579.403570][T13516] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  579.410596][T13516] bond0 (unregistering): Released all slaves
[  579.707975][T13516] hsr_slave_0: left promiscuous mode
[  579.710749][T13516] hsr_slave_1: left promiscuous mode
[  579.713381][T13516] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  579.717039][T13516] batman_adv: batadv0: Removing interface: batadv_slave_1
[  579.738962][T13516] veth1_macvtap: left promiscuous mode
[  579.741215][T13516] veth0_macvtap: left promiscuous mode
[  579.743539][T13516] veth1_vlan: left promiscuous mode
[  579.745749][T13516] veth0_vlan: left promiscuous mode
[  580.332818][T13516] team0 (unregistering): Port device team_slave_1 removed
[  580.395348][T13516] team0 (unregistering): Port device team_slave_0 removed
[  581.334011][T13516] ------------[ cut here ]------------
[  581.336365][T13516] WARNING: CPU: 1 PID: 13516 at net/ipv6/xfrm6_tunnel.c:341 xfrm6_tunnel_net_exit+0x81/0x100
[  581.340276][T13516] Modules linked in:
[  581.342412][T13516] CPU: 1 UID: 0 PID: 13516 Comm: kworker/u8:0 Not tainted 6.17.0-rc1-syzkaller-00036-gdfc0f6373094-dirty #0 PREEMPT(full) 
[  581.348466][T13516] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  581.352219][T13516] Workqueue: netns cleanup_net
[  581.354040][T13516] RIP: 0010:xfrm6_tunnel_net_exit+0x81/0x100
[  581.356568][T13516] Code: e5 8e df f7 4b 83 3c 2c 00 75 19 e8 89 25 7c f7 49 81 fd f8 07 00 00 74 1d e8 7b 25 7c f7 49 83 c5 08 eb c9 e8 70 25 7c f7 90 <0f> 0b 90 49 81 fd f8 07 00 00 75 e3 48 81 c3 00 08 00 00 45 31 f6
[  581.363754][T13516] RSP: 0018:ffffc900031d78b0 EFLAGS: 00010293
[  581.366119][T13516] RAX: ffffffff8a438470 RBX: ffff888109120000 RCX: ffff88802243d640
[  581.369003][T13516] RDX: 0000000000000000 RSI: ffffffff8dba5dc7 RDI: ffff888109120000
[  581.371895][T13516] RBP: ffffc900031d79b0 R08: ffffffff8fa37d37 R09: 1ffffffff1f46fa6
[  581.374856][T13516] R10: dffffc0000000000 R11: fffffbfff1f46fa7 R12: ffff888109120000
[  581.378065][T13516] R13: 0000000000000000 R14: ffff888114552440 R15: dffffc0000000000
[  581.381196][T13516] FS:  0000000000000000(0000) GS:ffff8881a3c1c000(0000) knlGS:0000000000000000
[  581.384629][T13516] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  581.387160][T13516] CR2: 0000001b32721ff8 CR3: 000000000df36000 CR4: 00000000000006f0
[  581.390241][T13516] Call Trace:
[  581.391622][T13516]  <TASK>
[  581.392811][T13516]  ops_undo_list+0x49a/0x990
[  581.394686][T13516]  ? __pfx_ops_undo_list+0x10/0x10
[  581.396801][T13516]  ? do_raw_spin_unlock+0x4d/0x240
[  581.398795][T13516]  cleanup_net+0x4c5/0x800
[  581.400571][T13516]  ? __pfx_cleanup_net+0x10/0x10
[  581.402449][T13516]  ? _raw_spin_unlock_irq+0x23/0x50
[  581.404510][T13516]  ? process_scheduled_works+0x9ef/0x17b0
[  581.406839][T13516]  ? process_scheduled_works+0x9ef/0x17b0
[  581.409085][T13516]  process_scheduled_works+0xae1/0x17b0
[  581.411295][T13516]  ? __pfx_process_scheduled_works+0x10/0x10
[  581.413689][T13516]  worker_thread+0x8a0/0xda0
[  581.415659][T13516]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  581.418295][T13516]  ? __kthread_parkme+0x7b/0x200
[  581.420290][T13516]  kthread+0x711/0x8a0
[  581.421928][T13516]  ? __pfx_worker_thread+0x10/0x10
[  581.423955][T13516]  ? __pfx_kthread+0x10/0x10
[  581.425961][T13516]  ? _raw_spin_unlock_irq+0x23/0x50
[  581.428028][T13516]  ? lockdep_hardirqs_on+0x9c/0x150
[  581.430183][T13516]  ? __pfx_kthread+0x10/0x10
[  581.432022][T13516]  ret_from_fork+0x3fc/0x770
[  581.433887][T13516]  ? __pfx_ret_from_fork+0x10/0x10
[  581.435985][T13516]  ? __switch_to_asm+0x39/0x70
[  581.437879][T13516]  ? __switch_to_asm+0x33/0x70
[  581.439768][T13516]  ? __pfx_kthread+0x10/0x10
[  581.441593][T13516]  ret_from_fork_asm+0x1a/0x30
[  581.443525][T13516]  </TASK>
[  581.444795][T13516] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  581.447705][T13516] CPU: 1 UID: 0 PID: 13516 Comm: kworker/u8:0 Not tainted 6.17.0-rc1-syzkaller-00036-gdfc0f6373094-dirty #0 PREEMPT(full) 
[  581.452594][T13516] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  581.455868][T13516] Workqueue: netns cleanup_net
[  581.457348][T13516] Call Trace:
[  581.458392][T13516]  <TASK>
[  581.459294][T13516]  dump_stack_lvl+0x99/0x250
[  581.461033][T13516]  ? __asan_memcpy+0x40/0x70
[  581.462824][T13516]  ? __pfx_dump_stack_lvl+0x10/0x10
[  581.464792][T13516]  ? __pfx__printk+0x10/0x10
[  581.466532][T13516]  vpanic+0x281/0x750
[  581.468060][T13516]  ? __pfx__printk+0x10/0x10
[  581.469884][T13516]  ? __pfx_vpanic+0x10/0x10
[  581.471690][T13516]  ? is_bpf_text_address+0x292/0x2b0
[  581.473783][T13516]  panic+0xb9/0xc0
[  581.475280][T13516]  ? __pfx_panic+0x10/0x10
[  581.477054][T13516]  __warn+0x31b/0x4b0
[  581.478652][T13516]  ? xfrm6_tunnel_net_exit+0x81/0x100
[  581.480769][T13516]  ? xfrm6_tunnel_net_exit+0x81/0x100
[  581.482786][T13516]  report_bug+0x2be/0x4f0
[  581.484433][T13516]  ? xfrm6_tunnel_net_exit+0x81/0x100
[  581.486562][T13516]  ? xfrm6_tunnel_net_exit+0x81/0x100
[  581.488559][T13516]  ? xfrm6_tunnel_net_exit+0x83/0x100
[  581.490959][T13516]  handle_bug+0x84/0x160
[  581.492641][T13516]  exc_invalid_op+0x1a/0x50
[  581.494439][T13516]  asm_exc_invalid_op+0x1a/0x20
[  581.496342][T13516] RIP: 0010:xfrm6_tunnel_net_exit+0x81/0x100
[  581.498692][T13516] Code: e5 8e df f7 4b 83 3c 2c 00 75 19 e8 89 25 7c f7 49 81 fd f8 07 00 00 74 1d e8 7b 25 7c f7 49 83 c5 08 eb c9 e8 70 25 7c f7 90 <0f> 0b 90 49 81 fd f8 07 00 00 75 e3 48 81 c3 00 08 00 00 45 31 f6
[  581.506188][T13516] RSP: 0018:ffffc900031d78b0 EFLAGS: 00010293
[  581.508583][T13516] RAX: ffffffff8a438470 RBX: ffff888109120000 RCX: ffff88802243d640
[  581.511675][T13516] RDX: 0000000000000000 RSI: ffffffff8dba5dc7 RDI: ffff888109120000
[  581.514811][T13516] RBP: ffffc900031d79b0 R08: ffffffff8fa37d37 R09: 1ffffffff1f46fa6
[  581.517919][T13516] R10: dffffc0000000000 R11: fffffbfff1f46fa7 R12: ffff888109120000
[  581.521014][T13516] R13: 0000000000000000 R14: ffff888114552440 R15: dffffc0000000000
[  581.524142][T13516]  ? xfrm6_tunnel_net_exit+0x80/0x100
[  581.526289][T13516]  ops_undo_list+0x49a/0x990
[  581.528157][T13516]  ? __pfx_ops_undo_list+0x10/0x10
[  581.530187][T13516]  ? do_raw_spin_unlock+0x4d/0x240
[  581.532216][T13516]  cleanup_net+0x4c5/0x800
[  581.534015][T13516]  ? __pfx_cleanup_net+0x10/0x10
[  581.536007][T13516]  ? _raw_spin_unlock_irq+0x23/0x50
[  581.538062][T13516]  ? process_scheduled_works+0x9ef/0x17b0
[  581.540293][T13516]  ? process_scheduled_works+0x9ef/0x17b0
[  581.542536][T13516]  process_scheduled_works+0xae1/0x17b0
[  581.544741][T13516]  ? __pfx_process_scheduled_works+0x10/0x10
[  581.547117][T13516]  worker_thread+0x8a0/0xda0
[  581.548991][T13516]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  581.551535][T13516]  ? __kthread_parkme+0x7b/0x200
[  581.553524][T13516]  kthread+0x711/0x8a0
[  581.555184][T13516]  ? __pfx_worker_thread+0x10/0x10
[  581.557219][T13516]  ? __pfx_kthread+0x10/0x10
[  581.559059][T13516]  ? _raw_spin_unlock_irq+0x23/0x50
[  581.561099][T13516]  ? lockdep_hardirqs_on+0x9c/0x150
[  581.563167][T13516]  ? __pfx_kthread+0x10/0x10
[  581.565018][T13516]  ret_from_fork+0x3fc/0x770
[  581.566870][T13516]  ? __pfx_ret_from_fork+0x10/0x10
[  581.568907][T13516]  ? __switch_to_asm+0x39/0x70
[  581.570809][T13516]  ? __switch_to_asm+0x33/0x70
[  581.572711][T13516]  ? __pfx_kthread+0x10/0x10
[  581.574577][T13516]  ret_from_fork_asm+0x1a/0x30
[  581.576440][T13516]  </TASK>
[  581.578360][T13516] Kernel Offset: disabled
[  581.580079][T13516] Rebooting in 86400 seconds..

VM DIAGNOSIS:
12:19:07  Registers:
info registers vcpu 0

CPU#0
RAX=00ba50b9d3f2cf00 RBX=ffffffff81968308 RCX=00ba50b9d3f2cf00 RDX=0000000000000001
RSI=ffffffff8d9b6b97 RDI=ffffffff8be33500 RBP=ffffffff8de07eb8 RSP=ffffffff8de07d80
R8 =ffff88804b032f9b R9 =1ffff110096065f3 R10=dffffc0000000000 R11=ffffed10096065f4
R12=ffffffff8fa37d30 R13=0000000000000000 R14=0000000000000000 R15=1ffffffff1bd2a20
RIP=ffffffff8b7943f3 RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880b861c000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=000055a2d369ee68 CR3=000000000df36000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000ff 0000000000000000 XMM01=6f6c2f7261762f00 6469756e69676f6c
XMM02=0000ffffffffff00 0000000000000000 XMM03=0000000000000000 000000000000002f
XMM04=74772f676f6c2f72 61762f00706d7475 XMM05=3f3f3f3f3f3f3f3f 3f3f3f3f3f3f3f3f
XMM06=9999999999999999 9999999999999999 XMM07=2020202020202020 2020202020202020
XMM08=0020202000000000 0000000000000000 XMM09=0000000000000000 0000000000000000
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=000000000000002e RBX=000000000000002e RCX=0000000000000000 RDX=00000000000003f8
RSI=0000000000000000 RDI=0000000000000020 RBP=00000000000003f8 RSP=ffffc900031d7050
R8 =ffff8881079c8237 R9 =1ffff11020f39046 R10=dffffc0000000000 R11=ffffffff854efc10
R12=dffffc0000000000 R13=ffffffff99af9914 R14=ffffffff99dee3a0 R15=0000000000000000
RIP=ffffffff854efc8c RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8881a3c1c000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000001b32721ff8 CR3=000000000df36000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000080000010015 0000000c00000028 XMM01=0000000e00000001 0000000000000006
XMM02=0043004400010015 0000000000000040 XMM03=0000000000000000 0000000000000000
XMM04=0000ff0000000000 00000000000000ff XMM05=0000000000000061 0000000000000000
XMM06=ffffffffff000000 0000000000000000 XMM07=0000000000000000 0000000000000000
XMM08=ffffffffffffff00 ffffffffffffffff XMM09=0000000000316e61 632f74656e2f302e
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
