last executing test programs:

6m18.482486308s ago: executing program 32 (id=68):
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$sock_linger(r0, 0x1, 0xd, 0x0, 0x0)
r1 = syz_open_dev$usbfs(&(0x7f0000000040), 0x400000001fb, 0x101301)
ioctl$USBDEVFS_SUBMITURB(r1, 0x8038550a, 0x0)
connect$bt_sco(r0, &(0x7f0000000340), 0x8)
socket$inet6(0xa, 0x80002, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r2}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
r3 = getpid()
sched_setscheduler(r3, 0x1, &(0x7f0000000200)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000080)='cgroup.max.descendants\x00', 0x2, 0x0)
syz_mount_image$exfat(0x0, &(0x7f0000000100)='./bus\x00', 0x84c00, 0x0, 0x0, 0x0, &(0x7f0000000000))
rename(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='./bus/file0\x00')
shutdown(r0, 0x0)

5m55.332845825s ago: executing program 33 (id=182):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write(r0, 0x0, 0x0)
r1 = socket$inet(0x2, 0x2, 0x1)
sendmsg$inet(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)=[{0x0}], 0x1, &(0x7f0000000280)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @remote, @loopback}}}], 0x20}, 0x40010)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r3 = syz_clone(0x8000, 0x0, 0xfffffffffffffe91, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x40000000000001, r3, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000032680)=""/102392, 0x18ff8)
timer_settime(0x0, 0x1, 0x0, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r5, &(0x7f0000000400)={0xa, 0x2, 0xac3, @loopback, 0x9}, 0x1c)
io_uring_setup(0x510d, &(0x7f0000000100)={0x0, 0x8591, 0x10, 0x3, 0x1f5})
ioctl$SNDRV_PCM_IOCTL_FORWARD(0xffffffffffffffff, 0x4144, 0x0)

4m59.705411774s ago: executing program 34 (id=383):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xa, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x2000000, 0x11, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

4m59.633659527s ago: executing program 35 (id=387):
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000340)='syzkaller\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x18)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/address_bits', 0x202, 0xc4)
pread64(r1, &(0x7f0000000240)=""/121, 0x79, 0x2)

4m50.052155544s ago: executing program 36 (id=413):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r0, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x20, 0x3, &(0x7f0000000200)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x99ee}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000002380)={r1, 0x0, 0x2d, 0x0, @val=@netfilter={0x2, 0x1, 0x600, 0x1}}, 0x20)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r2, 0xffffffffffffffff, 0x0)

4m46.855198885s ago: executing program 37 (id=425):
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x5, 0x4, 0x8, 0xb, 0x0, 0x1}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0x4, &(0x7f00000004c0)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x23}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

4m43.30890711s ago: executing program 38 (id=433):
socket$inet6(0xa, 0x80002, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
ptrace(0x4208, 0xffffffffffffffff)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
getcwd(0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
removexattr(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240)=@known='system.posix_acl_access\x00')

4m10.114915052s ago: executing program 39 (id=497):
r0 = socket(0x400000000010, 0x3, 0x0)
r1 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000003640)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000006c0)=@newtfilter={0x500, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {0x14, 0x7}, {}, {0x4, 0x9}}, [@filter_kind_options=@f_u32={{0x8}, {0x4d4, 0x2, [@TCA_U32_SEL={0x74, 0x5, {0xb, 0xef, 0x6, 0x8, 0x5, 0x9, 0x7, 0x0, [{0x1002, 0x4, 0x401, 0x6}, {0xb, 0x8001, 0x1008, 0x5}, {0xfffffff9, 0x43, 0x7ffd, 0x4}, {0x7fde, 0x40, 0x51, 0x3ff}, {0x5, 0x7ff, 0x2, 0x42}, {0x200, 0x4, 0x8, 0x6}]}}, @TCA_U32_POLICE={0x45c, 0x6, [@TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x9}, @TCA_POLICE_RATE={0x404, 0x2, [0x91, 0xc7b, 0x20000000, 0x6a, 0x7c000000, 0x3, 0x5, 0x81, 0x318d, 0x1ff, 0x8, 0x0, 0x4, 0x3, 0x7, 0x3ff, 0x80000001, 0x4, 0x0, 0x0, 0x3, 0xe, 0x6, 0x80000001, 0x1, 0x6c, 0x2, 0x9, 0x1d, 0x3, 0xd, 0x800, 0x1, 0x3, 0x100, 0x0, 0x10001, 0x7, 0x6, 0x2, 0x4, 0x0, 0x400, 0x15f, 0x5, 0x7, 0xe, 0x10000, 0x2, 0x9, 0xc, 0x7f, 0xc, 0x180000, 0x0, 0xfff, 0x8, 0x8, 0x86, 0x6, 0x8, 0x6, 0xd, 0x9, 0x1a270000, 0x6, 0x1, 0x5, 0xf, 0x7, 0x7f, 0x3ff, 0xf738, 0x6, 0xeb, 0x0, 0x5, 0x4, 0x0, 0x2, 0x8000, 0x3, 0x0, 0x0, 0x84f8, 0x8, 0xe, 0x853, 0x5, 0x7ff, 0x8000, 0x6, 0x2, 0x6, 0x4, 0x6, 0x0, 0x950a, 0xe617, 0x6, 0x0, 0x6, 0x10, 0x2003, 0x6e, 0xfffffff9, 0xfff, 0xb9d, 0x5105cbf3, 0xf0a, 0x9, 0x5d92, 0xfffffeff, 0x0, 0x6, 0x2, 0x200, 0x4, 0x10001, 0x2, 0x0, 0x2, 0xff, 0xfff, 0xffff2cbf, 0x7fff, 0x7, 0x3, 0x2, 0x9, 0x3, 0x4, 0x2, 0x81, 0x8, 0x1ff, 0x0, 0x2, 0x4, 0x2, 0x4, 0x6, 0x8, 0x3, 0xc16, 0x5, 0x80000001, 0x1, 0x7, 0xb08, 0x3, 0xfffff727, 0xdfb2, 0xe, 0x376d7c1, 0x7, 0x0, 0x6, 0x0, 0x4, 0x3ff, 0xfffffff8, 0x40800, 0x1, 0x3, 0x5, 0x8, 0x7, 0x2de, 0x2, 0x5, 0x9, 0x1, 0x7, 0x5, 0x7, 0xd07, 0x7, 0x7, 0x6, 0x2, 0xffffff77, 0x8, 0x8, 0x6, 0x8, 0x1, 0x1, 0x7, 0x6, 0x2, 0x100, 0x7fffffff, 0x4, 0xcae0000, 0x1, 0xffff, 0x3, 0xb, 0x9, 0x0, 0x2, 0x2, 0x5, 0x9, 0x6, 0x7ff, 0x7, 0x6, 0x101, 0x1, 0x6, 0x9, 0x5, 0x2, 0x9, 0x8000, 0xcca6, 0x10, 0x5, 0x6, 0x3, 0x7b9, 0x0, 0x6, 0x3, 0x5, 0x0, 0xce, 0x445, 0xffff, 0x1, 0x2, 0x2, 0xe6, 0x7, 0x1, 0x7, 0x5, 0xffff7fff, 0x7ff, 0x0, 0x8, 0x3c, 0x8, 0x10, 0x9, 0x10001, 0x9, 0x4, 0x4, 0x1, 0x8, 0xfffffffe, 0x6]}, @TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x100000000}, @TCA_POLICE_TBF={0x3c, 0x1, {0x8, 0x20000000, 0x6, 0x4, 0x8, {0x8, 0x0, 0x101, 0x7, 0x1, 0x8}, {0x6, 0x0, 0x4, 0x7, 0x6, 0xe05e}, 0x80000000, 0x0, 0x6}}]}]}}]}, 0x500}, 0x1, 0x0, 0x0, 0x80}, 0x40)

4m9.619986981s ago: executing program 8 (id=504):
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_procfs(0x0, &(0x7f0000000580)='net/fib_trie\x00')
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x2800, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='freezer.self_freezing\x00', 0x275a, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000000)="8ee8c9b8ee088ed8660f3801b2d6352ed9ff660f3882040f01cf0fc72d2626652e0f01ca0fc7386635002000000f22e0", 0x30}], 0x1, 0x50, 0x0, 0x0)
write$binfmt_script(r2, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x22080)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0)
pipe(&(0x7f0000000080))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

4m7.997059234s ago: executing program 8 (id=510):
r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x2002)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
syz_clone(0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
ioctl$EVIOCGRAB(r0, 0x40044590, &(0x7f0000000080)=0xfffffffb)
ioctl$EVIOCGRAB(r0, 0x40044590, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext2\x00', &(0x7f0000000140)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x0, &(0x7f0000000000), 0xfc, 0x59c, &(0x7f0000001500)="$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")

4m6.934277939s ago: executing program 8 (id=511):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x10)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x1000410, &(0x7f0000000100)={[{@grpid}, {@grpquota}]}, 0x4, 0x4eb, &(0x7f0000000540)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
execveat(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1000)
bind$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x5, @ipv4={'\x00', '\xff\xff', @empty}, 0x4}, 0x1c)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e21, 0x659, @empty, 0xff}, 0x1c)
r4 = fcntl$dupfd(r0, 0x406, r0)
write$cgroup_pid(r4, &(0x7f0000000240), 0xfdef)

4m4.679059193s ago: executing program 8 (id=516):
epoll_create1(0x0)
r0 = fanotify_init(0x10, 0x0)
fanotify_mark(r0, 0x1, 0x48001000, 0xffffffffffffffff, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file1\x00', 0x94)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r1, 0x0)
setpgid(0x0, r1)
mount$cgroup(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x10000, 0x0)

4m4.165299756s ago: executing program 8 (id=519):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000880)={0x18, 0xb, &(0x7f00000007c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000730000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xd, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='contention_begin\x00', r0}, 0x18)
syz_mount_image$squashfs(&(0x7f0000000000), &(0x7f0000000200)='./file1\x00', 0x0, &(0x7f0000000240)=ANY=[], 0x1, 0x1a4, &(0x7f0000000440)="$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")
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x3, 0x1}, 0x6)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907"], 0xfdef)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1a000000"], 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
write(0xffffffffffffffff, &(0x7f0000000000)='\"', 0x1)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r1, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r1, &(0x7f0000000000), 0xd)

4m1.02751915s ago: executing program 8 (id=530):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
r1 = gettid()
timer_create(0x1, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0xf, 0x8)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000005300)={0x11, 0xb, &(0x7f00000007c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000730000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000faff850000000600000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='contention_begin\x00', r3}, 0x18)
pipe2$9p(&(0x7f0000000180)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x0)
tee(0xffffffffffffffff, r5, 0x53, 0x0)
write$binfmt_script(r5, &(0x7f0000000540)={'#! ', './file0'}, 0xb)
tee(r4, 0xffffffffffffffff, 0x9, 0x8)

4m0.771767812s ago: executing program 40 (id=530):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
r1 = gettid()
timer_create(0x1, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc)=<r2=>0x0)
timer_settime(r2, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0xf, 0x8)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000005300)={0x11, 0xb, &(0x7f00000007c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000730000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000faff850000000600000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='contention_begin\x00', r3}, 0x18)
pipe2$9p(&(0x7f0000000180)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x0)
tee(0xffffffffffffffff, r5, 0x53, 0x0)
write$binfmt_script(r5, &(0x7f0000000540)={'#! ', './file0'}, 0xb)
tee(r4, 0xffffffffffffffff, 0x9, 0x8)

3m54.205485184s ago: executing program 7 (id=548):
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x10}}, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000820004000000000000000c00850000000f00000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socket$inet_tcp(0x2, 0x1, 0x0)
socket$packet(0x11, 0x3, 0x300)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0xe, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000340), 0xfffffffffffffe19}, 0x42)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x0)
r4 = syz_open_dev$usbfs(0x0, 0x76, 0x101b01)
ioctl$USBDEVFS_CLEAR_HALT(r4, 0x80045515, &(0x7f00000000c0)={0x1, 0x1})

3m53.141220763s ago: executing program 7 (id=551):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x22, &(0x7f0000000080)=0x1, 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
rseq(&(0x7f0000000080)={0x0, 0x0, 0x0, 0x5}, 0x20, 0x0, 0x0)
mremap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f0000fff000/0x1000)=nil)
shmctl$IPC_INFO(0x0, 0x3, 0x0)
shutdown(r0, 0x1)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
unshare(0x2040400)
fallocate(r4, 0x0, 0x0, 0x10fff9)
bind$inet6(r0, &(0x7f0000000240)={0xa, 0x4e20, 0x9, @ipv4={'\x00', '\xff\xff', @loopback}, 0x5}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000000140)=[{{&(0x7f0000000100)={0xa, 0x4e20, 0x2, @empty, 0xfffffffe}, 0x1c, &(0x7f0000000b40)=[{&(0x7f0000000a40)="fb", 0x1}], 0x1}}, {{0x0, 0x0, 0x0}}], 0x2, 0x20080058)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x1, @empty, 0x6}, 0x1c)
sendmmsg(r0, &(0x7f00000035c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40010)

3m51.972209498s ago: executing program 7 (id=553):
capset(&(0x7f0000000040)={0x19980330}, &(0x7f0000000080))
open(&(0x7f0000000200)='./file0\x00', 0x4008040, 0x0)
link(&(0x7f0000001240)='./file0\x00', &(0x7f0000000bc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

3m51.140706117s ago: executing program 7 (id=554):
r0 = fcntl$dupfd(0xffffffffffffffff, 0x2, 0xffffffffffffffff)
r1 = fanotify_init(0x10, 0x0)
fanotify_mark(r1, 0x1, 0x48001000, r0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file1\x00', 0x94)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r2 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r2, 0x0)
setpgid(0x0, r2)
mount$cgroup(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x10000, 0x0)

3m51.13998358s ago: executing program 4 (id=555):
sendmsg$IPCTNL_MSG_EXP_NEW(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000740)=ANY=[@ANYBLOB="6c000000000201040000000000000000020000e6eef2088a3b1df0bd2000240002801400018008"], 0x6c}}, 0x800)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x8080}, 0x20004450)
sendmsg$NFT_MSG_GETRULE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000740)=ANY=[@ANYBLOB], 0x38}, 0x1, 0x0, 0x0, 0x20040850}, 0x44054)

3m50.722725847s ago: executing program 7 (id=556):
socket$inet_tcp(0x2, 0x1, 0x0)
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
r1 = dup3(r0, 0xffffffffffffffff, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, 0x0)
socket$inet6(0xa, 0x1, 0x0)
signalfd4(0xffffffffffffffff, &(0x7f0000000140), 0x8, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00006c4000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ff9000/0x3000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x880)
r2 = io_uring_setup(0x7, &(0x7f0000000040)={0x0, 0xc8a1, 0xc000, 0x8, 0xc1})
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1600000004"], 0x50)
io_uring_enter(r2, 0x2219, 0x7721, 0x16, 0x0, 0x20)

3m50.573086631s ago: executing program 4 (id=557):
connect$bt_l2cap(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000032680)=""/102400, 0x19000)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
add_key(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe)
syz_emit_vhci(&(0x7f0000000080)=@HCI_ACLDATA_PKT={0x2, {0xc9}, @l2cap_cid_le_signaling={{}, @l2cap_le_credits={{0x16, 0x9}, {0x6, 0x5}}}}, 0xcf)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0xcdedc2f1e9ffcc97)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x80000000000002, 0x0, 0x0)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x14008885, 0x0, 0x0)

3m50.213754994s ago: executing program 7 (id=558):
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
symlink(0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
pause()

3m49.510722583s ago: executing program 41 (id=558):
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
symlink(0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
pause()

3m49.492004425s ago: executing program 4 (id=561):
r0 = semget$private(0x0, 0x5, 0x0)
mprotect(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
userfaultfd(0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x3)
r2 = socket$inet6(0xa, 0x80002, 0x0)
connect$inet6(r2, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x3b}}}, 0x1c)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r3 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000100)=[0x4])
semctl$IPC_RMID(r0, 0x0, 0x0)
r5 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$SO_TIMESTAMP(r5, 0x1, 0x23, 0x0, 0x0)
bind$inet(r5, &(0x7f0000000080)={0x2, 0x4e26, @remote}, 0x10)
sendto$inet(r5, 0x0, 0x0, 0x28040041, &(0x7f0000000000)={0x2, 0x24e23, @loopback}, 0x10)
sendmsg$inet(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)=[{0x0}], 0x1}, 0x883)
recvmmsg(r5, &(0x7f00000005c0), 0x40000000000026c, 0x0, 0x0)

3m48.349944219s ago: executing program 4 (id=562):
syz_mount_image$iso9660(&(0x7f00000000c0), &(0x7f00000001c0)='./file0\x00', 0x204818, &(0x7f0000000480)=ANY=[], 0x1, 0x54e, &(0x7f00000008c0)="$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")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x109041, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(0x0, &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x81105a, 0x0)
mount$bind(&(0x7f0000000880)='./file0/../file0\x00', &(0x7f0000000440)='./file0/file0\x00', 0x0, 0x1adc11, 0x0)
mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f0000000080)='./file0/file0/file0\x00', 0x0, 0x887008, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r0, &(0x7f000000d300)={0x2020}, 0x2020)

3m46.426085832s ago: executing program 4 (id=566):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
setsockopt$SO_TIMESTAMP(0xffffffffffffffff, 0x1, 0x40, &(0x7f00000000c0)=0x3, 0x4)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x0, 0x1c, &(0x7f0000000000)='//sys\x00\x00\x00\x00\x00\x00\x80\x004\x00\x00s/\x92ync_\x93\x96\xff\x92\xaf\x00Se\xf44.\x00'/49}, 0x30)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
rseq(0x0, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

3m46.201530556s ago: executing program 2 (id=568):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000059c0)='./bus\x00', 0x1400e, &(0x7f0000000100)={[{@quota}]}, 0x1, 0x441, &(0x7f00000009c0)="$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")
openat(0xffffffffffffff9c, 0x0, 0x42, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x40)
ioctl$FS_IOC_FIEMAP(r0, 0xc020660b, &(0x7f0000000140)={0x2, 0x8, 0x6, 0x47d})
socket$inet(0x2, 0xa, 0x4)

3m45.94236109s ago: executing program 2 (id=569):
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000000)='./file1\x00', 0x2010494, &(0x7f0000000440)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c00484516000000000037c015c57600912233eefc80e89be5a1ef2c27ebf5171169dcfa4805d89c7e1f70d73d649ba4afab8b2194a9e8b537ad2ed68f8319883b84237da3bf9213365872b3f3"], 0x1, 0x2ca, &(0x7f0000000500)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x60c80, 0x0)
getdents64(r0, 0x0, 0x0)
ioctl$TIOCSCTTY(r0, 0x540e, 0x1)

3m45.853363887s ago: executing program 4 (id=570):
sendmsg$ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x50}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan1\x00'})
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000440), 0x42002)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000140)={0xffffffff, 0x0, 0x1, 'queue1\x00'})
write$sndseq(r0, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32}], 0xffc8)
poll(&(0x7f0000000080)=[{r0, 0x20}], 0x1, 0xfbe)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f00000000c0)={0x2, @tick=0x8001, 0x7, {0x3, 0xbb}, 0x3d, 0x2, 0x9})

3m45.396185982s ago: executing program 42 (id=570):
sendmsg$ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x50}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan1\x00'})
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000440), 0x42002)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000140)={0xffffffff, 0x0, 0x1, 'queue1\x00'})
write$sndseq(r0, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32}], 0xffc8)
poll(&(0x7f0000000080)=[{r0, 0x20}], 0x1, 0xfbe)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f00000000c0)={0x2, @tick=0x8001, 0x7, {0x3, 0xbb}, 0x3d, 0x2, 0x9})

3m45.386547599s ago: executing program 2 (id=572):
r0 = epoll_create1(0x0)
r1 = fcntl$dupfd(r0, 0x2, 0xffffffffffffffff)
r2 = fanotify_init(0x10, 0x0)
fanotify_mark(r2, 0x1, 0x48001000, r1, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x94)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r3, 0x0)
setpgid(0x0, r3)
mount$cgroup(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x10000, 0x0)

3m45.172123016s ago: executing program 2 (id=573):
syz_mount_image$iso9660(&(0x7f00000000c0), &(0x7f00000001c0)='./file0\x00', 0x204818, &(0x7f0000000480)=ANY=[], 0x1, 0x54e, &(0x7f00000008c0)="$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")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x109041, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(0x0, &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x81105a, 0x0)
mount$bind(&(0x7f0000000880)='./file0/../file0\x00', &(0x7f0000000440)='./file0/file0\x00', 0x0, 0x1adc11, 0x0)
mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f0000000080)='./file0/file0/file0\x00', 0x0, 0x887008, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r0, &(0x7f000000d300)={0x2020}, 0x2020)

3m44.961991304s ago: executing program 2 (id=574):
sendmsg$IPCTNL_MSG_EXP_NEW(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000740)=ANY=[@ANYBLOB="6c000000000201040000000000000000020000e6eef2088a3b1df0bd2000240002801400018008"], 0x6c}}, 0x800)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x8080}, 0x20004450)
sendmsg$NFT_MSG_GETRULE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000740)=ANY=[@ANYBLOB="38000000070a010100000006000000000a00"], 0x38}, 0x1, 0x0, 0x0, 0x20040850}, 0x44054)

3m44.269196178s ago: executing program 2 (id=575):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000040)='./file1\x00', 0x2000012, &(0x7f0000000400)={[{@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1000}}, {@nodiscard}, {@quota}]}, 0x1, 0x56f, &(0x7f00000004c0)="$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")
symlink(&(0x7f0000000080)='.\x00', &(0x7f0000000240)='./file0\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
r1 = openat$cgroup_procs(r0, 0x0, 0x2, 0x0)
write$cgroup_pid(r1, 0x0, 0x0)
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000100)='./file1\x00', 0x406, &(0x7f0000000340)=ANY=[@ANYBLOB='nostrict,umask=00000000000000000000010,unhide,longad,utf8,lastblock=00000000000000002304,anchor=18446744073709551615,gid=', @ANYRESDEC=0x0, @ANYBLOB=',gid=forget,uid=forget,noadinicb,shortad,iocharset=ascii,lastblock=00000000000000000009,iocharset=cp950,fileset=00000000000000000001,undelete,anchor=00000000000000000006,partition=00000000000000000008,anchor=00000000000008421375,session=00000000000000000001,anchor=00000000000000000005,gid=', @ANYRESDEC, @ANYBLOB="2c66fefb470f725c", @ANYRES8, @ANYRESOCT, @ANYRES8, @ANYRES16, @ANYRES64], 0x9, 0xc1e, &(0x7f0000001240)="$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")
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
syz_mount_image$exfat(0x0, &(0x7f0000000100)='./bus\x00', 0x4808, 0x0, 0x0, 0x0, &(0x7f0000000000))
r2 = socket$unix(0x1, 0x2, 0x0)
getsockopt$sock_buf(r2, 0x1, 0x6, 0x0, 0x0)
syz_mount_image$ext4(0x0, &(0x7f00000000c0)='./bus/file0\x00', 0x80008, 0x0, 0x0, 0x0, &(0x7f0000000000))
rename(&(0x7f0000000000)='./bus/file0\x00', &(0x7f0000000080)='./file0\x00')

3m43.890542667s ago: executing program 43 (id=575):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000040)='./file1\x00', 0x2000012, &(0x7f0000000400)={[{@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1000}}, {@nodiscard}, {@quota}]}, 0x1, 0x56f, &(0x7f00000004c0)="$eJzs3c9vHFcdAPDvjH82SesEeoAKSIBCQFHW8aaNql5aLiBUVUJUHBCH1Ngby2Q3G7LrUptIuH8DSCBxgj+BAxIHpJ44wIkjEgdAlANSgYgqRuph0MyO1669Jou93m12Px9pMj/ezHzf283Me367Oy+AiXUpIrYjYjYiXo+IhXJ7Uk7xcmfK93v44P7KzoP7K0lk2Wv/TIr0fFtxwHy5f0ScLc85HxFf/0rEt5PDcVubW7eX6/XavXJ9sd24u9ja3Lq63lheq63V7lSrN5ZuXHvh+vPVgZX1YuMX7355/ZVv/PpXn3zn99tf/H6erXNlWrccA9Yp+kw3Tm46Il45jWAjMFXOZ0ecD44njYiPRMRniut/IaaK/50AwDjLsoXIFvavAwDjLi36wJK0EhFpWjYCKp0+vKfjTFpvttpXbjU37qx2+srOx0x6a71eu3Zh7o/fLXaeSfL1pSKtSC/WqwfWr0fEhYj40dwTxXplpVlfHU2TBwAm3tn99X9EvDeXppVKX4f2+FQPAHhszI86AwDA0Kn/AWDyqP8BYPL0Uf+XH/Zvn3peAIDh6O/vf9/3A4Bxov8fACaP+h8AJsrXXn01n7Kd8vnXq29sbtxuvnF1tda6XWlsrFRWmvfuVtaazbXimT2NR52v3mzeXXouNt5cbNda7cXW5tbNRnPjTvtm8Vzvm7WZoZQKAPhfLlx8+w9JRGy/+EQxxb6xHNTVMN7SAe4FPF6mTnKwBgI81oz2BZOrryq8aCT89tTzAoxGzx/3zPdc/KCf/B9BfM8IPlQuf7z//n9jPMN4OdCz/342qowAQ3e8/v+XBp4PYPiO3f//58HmAxi+LEsOjvk/200CAMbSCb7Cl/1gUI0QYKQe9XDPgXz+DwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGPmXER8J5K0UowFnub/ppVKxJMRcT5mklvr9dq1iHgqLkbEzFy+vrR78HujzTsAcFzp35Ny/K/LC8+eO5g6m/xnrphHxPd++tqP31xut+8t5dv/1d0+tzt8WHXvuBOMKwgA9O+v/exU1N/Vcr60t/3hg/sru9Mp5vGQd7/UHXx0ZefB/WLqpExHlmVZxHzRljjz7ySmy2PmI+KZiJgaQPzttyLiY73KnxR9I+fLkU/3x48y9pNDjZ9+IH5apHXm+cv30QHkBSbN2/n95+Ve118al4p57+t/vrhDnVxx/5uP2L337eyLP11GmuoRP7/mL/Ub47nffPXQxmyhk/ZWxDPTveIn3fjJEfGf7TP+nz7xqR++dERa9rOIy9E7/v5Yi+3G3cXW5tbV9cbyWm2tdqdavbF049oL15+vLhZ91Iu7PdWH/ePFK08dlbe8/GeOiN95588eKP9s99jP9Vn+n7//+rc+vbc6dzD+Fz7b+/1/uojY+/XP68TP9xl/+cwvjxy+O4+/ekT5H/X+X+kz/jt/21rtc1cAYAham1u3l+v12r0TLeR/hQ7iPIcW8iz2t/Nuc/FkQf8SxcLey5JEEsc+4UzvpLwx1tfhp/WqnvrCdLetONgzfzM/45CLkw68FMdZiPPlwsNhBR3dPQkYjr2LPiJ+N+rcAAAAAAAAAAAAAAAAvQzjN0yjLiMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADj678BAAD//2PAxWs=")
symlink(&(0x7f0000000080)='.\x00', &(0x7f0000000240)='./file0\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
r1 = openat$cgroup_procs(r0, 0x0, 0x2, 0x0)
write$cgroup_pid(r1, 0x0, 0x0)
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000100)='./file1\x00', 0x406, &(0x7f0000000340)=ANY=[@ANYBLOB='nostrict,umask=00000000000000000000010,unhide,longad,utf8,lastblock=00000000000000002304,anchor=18446744073709551615,gid=', @ANYRESDEC=0x0, @ANYBLOB=',gid=forget,uid=forget,noadinicb,shortad,iocharset=ascii,lastblock=00000000000000000009,iocharset=cp950,fileset=00000000000000000001,undelete,anchor=00000000000000000006,partition=00000000000000000008,anchor=00000000000008421375,session=00000000000000000001,anchor=00000000000000000005,gid=', @ANYRESDEC, @ANYBLOB="2c66fefb470f725c", @ANYRES8, @ANYRESOCT, @ANYRES8, @ANYRES16, @ANYRES64], 0x9, 0xc1e, &(0x7f0000001240)="$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")
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
syz_mount_image$exfat(0x0, &(0x7f0000000100)='./bus\x00', 0x4808, 0x0, 0x0, 0x0, &(0x7f0000000000))
r2 = socket$unix(0x1, 0x2, 0x0)
getsockopt$sock_buf(r2, 0x1, 0x6, 0x0, 0x0)
syz_mount_image$ext4(0x0, &(0x7f00000000c0)='./bus/file0\x00', 0x80008, 0x0, 0x0, 0x0, &(0x7f0000000000))
rename(&(0x7f0000000000)='./bus/file0\x00', &(0x7f0000000080)='./file0\x00')

1m26.446215155s ago: executing program 5 (id=990):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000340)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
syz_mount_image$squashfs(&(0x7f0000000200), &(0x7f0000000240)='./file0\x00', 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="6572726f72733d636f6e74696e75652c6572726f72733d636f6e74696e75652c6572726f72733d636f6e74696e75652c6572726f72733d636f6e74696e75652c00f7a98a6f3da4519f4b38d9450092aac2c7cefa"], 0x1, 0x1cf, &(0x7f00000002c0)="$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")
socket$packet(0x11, 0x3, 0x300)
open(&(0x7f0000000180)='./file0\x00', 0x101000, 0x190)

1m25.349578651s ago: executing program 5 (id=998):
r0 = socket$inet(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000d06000)=0x1, 0x4)
setsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000000000)="890704", 0x3)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000180)='bridge0\x00', 0x10)
connect$inet(r0, &(0x7f0000000080)={0x2, 0x0, @multicast1}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000140), 0x4)

1m25.145633759s ago: executing program 5 (id=999):
getpid()
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x4031, 0xffffffffffffffff, 0x0)
userfaultfd(0x80001)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
ftruncate(r0, 0x8008976)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x141001, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)
syz_emit_vhci(&(0x7f0000019200)=ANY=[@ANYBLOB="040e44117d0c004d6b870320fa349d37bb08113bd03619c1b820b0f45e16c86c7583726b2153d2b3e39f0de79dec99d0262a2ac9a7d3bcc4e161077a9ee1d5389f6864093c2731"], 0x47)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x82, 0x0)
write$binfmt_aout(r1, &(0x7f0000000340)=ANY=[], 0xff2e)
ioctl$TCXONC(r1, 0x540a, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x1c0000, 0x1, &(0x7f0000000040))
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000080), 0x48c00, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r3 = syz_open_dev$sndctrl(&(0x7f0000000180), 0x4000000, 0x0)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r3, 0xc0045516, &(0x7f0000000b00)=0x6)
r4 = openat$dsp(0xffffff9c, &(0x7f0000000080), 0x82040, 0x0)
ioctl$SOUND_MIXER_WRITE_RECSRC(r4, 0xc0044dff, &(0x7f0000000100)=0x9)
userfaultfd(0x802)
syz_open_dev$loop(&(0x7f0000000100), 0xd79, 0x0)
r5 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0)
ioctl$COMEDI_DEVCONFIG(r5, 0x40946400, &(0x7f00000000c0)={'aio_iiro_16\x00', [0x4f27, 0x2, 0xffffffff, 0x2, 0x40005, 0x5, 0x4, 0x7, 0x54c6cff3, 0xfd, 0x2, 0x1, 0x1, 0x1, 0x24, 0x6a, 0x8000000, 0x82, 0x10000003, 0x40000003, 0x89, 0xcaa3, 0x6, 0x20001e5b, 0x3, 0x2000e26, 0x3, 0x1, 0x5, 0x3]})

1m24.908988533s ago: executing program 5 (id=1001):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0500000004000000040000000a"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0xe, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x51, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xb}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r0}, &(0x7f0000000180), &(0x7f00000001c0)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='tlb_flush\x00', r1}, 0x10)

1m24.663991715s ago: executing program 5 (id=1005):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = openat$pfkey(0xffffff9c, &(0x7f0000000040), 0x80000, 0x0)
read$FUSE(r1, &(0x7f0000000240)={0x2020, 0x0, 0x0, <r2=>0x0}, 0x2020)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r1, 0x89f0, &(0x7f0000000100)={'ip6gre0\x00', &(0x7f0000000080)={'syztnl2\x00', <r3=>0x0, 0x29, 0x14, 0x2, 0x2, 0x44, @dev={0xfe, 0x80, '\x00', 0x42}, @private2={0xfc, 0x2, '\x00', 0x1}, 0x7800, 0x80, 0x200, 0x5}})
sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f0000002280)=@polexpire={0x1e8, 0x1b, 0x1, 0x70bd29, 0x25dfdbfd, {{{@in=@private=0xa010102, @in=@initdev={0xac, 0x1e, 0x1, 0x0}, 0x4e24, 0x3, 0x4e21, 0x0, 0xa, 0xa0, 0x0, 0x0, r3, r2}, {0x6, 0x0, 0xffffffffffffffff, 0x1, 0x80000000, 0x7, 0x6, 0xfffffffffffffff7}, {0x101, 0x5, 0x7, 0x9}, 0xc6da, 0x6e6bba, 0x1, 0x1, 0x0, 0x2}}, [@algo_auth_trunc={0x12e, 0x14, {{'sha3-224\x00'}, 0x710, 0x180, "1179f134b21bf0fedc82518f9a9eb8176cc69dc1d8763c08b973ebb8c0dcd7df7019d9eedb0e327530882d740bdb0a099c8ec2697aa62d4dc0c0950c4d744ff573e199ba1e0aa9198baccdab2323b9dad1abfbcf65abdb26399153958e6a35557e310eacb513c960b38dcd1a90f529d448e64f8ebb02d6de2b1f50b1d0d33d5a7b9c81e854e7c62ec40fb29508fe17ec8303302f7263824ae7552241194a98ff256f1a885ae1650edee3c522c00dac2e3ccb613d2915f39f477bde19cc2ec5c6d21facd3268ab2aed8fcad5269d6839e3c711cd7238b9d81afd42dd6c695bd0b003d"}}]}, 0x1e8}}, 0x8000)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
r5 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/sys/net/ipv4/vs/drop_packet\x00', 0x2, 0x0)
write$cgroup_int(r5, &(0x7f0000000080)=0x3, 0x12)
r6 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='\x00', 0x89901)
close(r6)
socket$packet(0x11, 0x2, 0x300)
r7 = syz_open_dev$dri(&(0x7f0000000000), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_CURSOR2(r7, 0xc02464bb, 0x0)
getsockname$packet(r1, &(0x7f0000000140)={0x11, 0x0, <r8=>0x0}, &(0x7f0000000200)=0x14)
sendmsg$nl_xfrm(r4, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000640)=@migrate={0xd4, 0x21, 0x1, 0x0, 0x25dfdbfc, {{@in=@initdev={0xac, 0x1e, 0xfe, 0x0}, @in6=@dev={0xfe, 0x80, '\x00', 0x3d}, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0xc, r8}}, [@tmpl={0x84, 0x5, [{{@in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x4d3, 0xff}, 0xa, @in=@loopback, 0x3502, 0x4, 0x3, 0x5, 0x7, 0x401, 0x6}, {{@in6=@mcast2, 0x4d5, 0x33}, 0xa, @in=@local, 0x3505, 0x1, 0x1, 0xa5, 0x80000001, 0x1, 0x522baf2c}]}]}, 0xd4}}, 0x0)

1m24.337559112s ago: executing program 5 (id=1008):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000002c0)={0x58, 0x2, 0x6, 0x801, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:net,net\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_HASHSIZE={0x8, 0x12, 0x1, 0x0, 0x2}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x58}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000580)={0x50, 0x9, 0x6, 0x201, 0x0, 0x0, {0x3}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x28, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}, @IPSET_ATTR_IP2={0xc, 0x14, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @remote}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @rand_addr=0x64010101}}]}]}, 0x50}, 0x1, 0x1000000, 0x0, 0xd24f4d5778621d46}, 0x4)

1m8.549516414s ago: executing program 44 (id=1008):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000002c0)={0x58, 0x2, 0x6, 0x801, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:net,net\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_HASHSIZE={0x8, 0x12, 0x1, 0x0, 0x2}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x58}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000580)={0x50, 0x9, 0x6, 0x201, 0x0, 0x0, {0x3}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x28, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}, @IPSET_ATTR_IP2={0xc, 0x14, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @remote}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @rand_addr=0x64010101}}]}]}, 0x50}, 0x1, 0x1000000, 0x0, 0xd24f4d5778621d46}, 0x4)

24.253534461s ago: executing program 6 (id=1185):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x4)
mount$9p_fd(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000500), 0x3000000, &(0x7f00000008c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB="2c7766646e6f80e8ddaf8200000000000000000000000005622e30e25ae529f2226fb3fbc54f8470b10f1be2fa9ad02c768746af5cf5b4bd136743d10db5", @ANYRESHEX=r2, @ANYBLOB=',nodevmap,version=9p2000.u,smackfsdef=-@,fowner>', @ANYRESDEC=0x0, @ANYBLOB=',fowner>', @ANYRESDEC=0xee01, @ANYBLOB=',silent,euid=', @ANYRESDEC=0x0, @ANYBLOB=',\x00'])
ioctl$TIOCGETD(r2, 0x5424, &(0x7f0000000740))
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1], 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
ioctl$VT_RESIZE(r2, 0x5609, &(0x7f0000000280)={0x0, 0x0, 0x8})
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x1)
r5 = eventfd(0x5ef)
ioctl$KVM_IOEVENTFD(r4, 0x40a0ae49, &(0x7f0000000080)={0x7ff, 0x0, 0x0, r5})
ioctl$KVM_SET_MEMORY_ATTRIBUTES(r4, 0x4020aed2, &(0x7f00000000c0)={0xffff1000, 0x301000, 0x8})
ioctl$KVM_SET_MEMORY_ATTRIBUTES(r4, 0x4020aed2, &(0x7f0000000140)={0xffff1000, 0x1000})
r6 = socket$netlink(0x10, 0x3, 0x400000000000004)
writev(r6, &(0x7f0000000000)=[{&(0x7f0000000200)="480000001400190d7ebdeb75fd0d8c562c84d8c033ed7a80ffe0090f000000000000a2bc5603ca00000f7f89000000200000004a2471083ec6991778581acb6c0101ff0000000309", 0x48}], 0x1)
sendmsg$IPSET_CMD_DESTROY(r6, &(0x7f00000006c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000400)={&(0x7f0000000f80)=ANY=[@ANYRES32=r5, @ANYRES16=r5, @ANYRES16, @ANYRESOCT, @ANYRES64, @ANYRESHEX=r2], 0x5c}}, 0x20000000)

22.161960304s ago: executing program 6 (id=1191):
syz_open_dev$sndpcmp(0x0, 0x5d5d, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8000, 0x20000000019}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
mremap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4000, 0x0, &(0x7f0000001000/0x4000)=nil)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r0 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x1, 0x0)
ioctl$HIDIOCSFEATURE(0xffffffffffffffff, 0xc0404806, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f00000010c0)=""/102400, 0x19000)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
openat(0xffffffffffffff9c, 0x0, 0x42, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x24004000)
getuid()

19.371354769s ago: executing program 6 (id=1200):
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000540), 0xffffffffffffffff)
setsockopt$IP_VS_SO_SET_EDITDEST(0xffffffffffffffff, 0x0, 0x489, 0x0, 0x0)
syz_mount_image$udf(&(0x7f0000000c40), &(0x7f0000000300)='./file1\x00', 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='noadinicb,nostrict,mode=00000000000000000000004,uid=forget,noadinicb,umask=00000000000000040002000,lastblock=00000000000000000013,undelete,partition=00000000000000000005,\x00'], 0x47, 0xc11, &(0x7f0000000d00)="$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")
setrlimit(0x1, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff})
socket$packet(0x11, 0x2, 0x300)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000280)={[{@max_batch_time={'max_batch_time', 0x3d, 0x4}}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@user_xattr}, {@errors_remount}, {@nombcache}]}, 0x1, 0x42f, &(0x7f0000000940)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000200)={0x8, 0x8a}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
epoll_create1(0x80000)
syz_mount_image$hfsplus(&(0x7f00000002c0), &(0x7f0000000180)='./bus\x00', 0xc, &(0x7f0000000380)=ANY=[@ANYRES8=0x0, @ANYRES64, @ANYRES16, @ANYRESHEX=0x0, @ANYRES8, @ANYRESHEX=0x0, @ANYRES32, @ANYRESOCT, @ANYRES16, @ANYRESOCT, @ANYRES16, @ANYRES32], 0x1, 0x712, &(0x7f0000001240)="$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")
open(&(0x7f0000000000)='./file0\x00', 0x80140, 0x0)
open$dir(&(0x7f0000000080)='./file0\x00', 0x64981, 0x80)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x41}, 0x0)
syz_open_procfs(0x0, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
truncate(&(0x7f0000000080)='./file1\x00', 0x400000f000)

16.260326019s ago: executing program 3 (id=1207):
connect$bt_l2cap(0xffffffffffffffff, 0x0, 0x0)
mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x4, 0x8010, 0xffffffffffffffff, 0xca273000)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000032680)=""/102400, 0x19000)
socketpair(0x1e, 0x80005, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r2 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
write$UHID_CREATE2(r2, &(0x7f00000007c0)=ANY=[@ANYBLOB="0b00000073797a31000000dfff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a30000037b35f0a000089b4c45a10000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001"], 0x119)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r3 = syz_open_dev$hidraw(&(0x7f0000000000), 0x0, 0x81)
ioctl$HIDIOCSFEATURE(r3, 0xc0404806, 0x0)
socket(0x2000000000000021, 0x2, 0x10000000000002)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
r4 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r4, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
setsockopt$SO_ATTACH_FILTER(r4, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r4, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
sendmmsg$inet(r4, &(0x7f0000000cc0)=[{{0x0, 0x0, &(0x7f00000000c0)}}], 0x1, 0xc0)

16.24097732s ago: executing program 6 (id=1208):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000850000007d00000018010000756c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb70200"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

14.789606772s ago: executing program 6 (id=1209):
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000004700))
sendmsg$TEAM_CMD_OPTIONS_SET(r0, &(0x7f0000004bc0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000401}, 0x44084)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='sched_switch\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000600)=@base={0xe, 0x4, 0x4, 0x20002, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x5}, 0x50)

13.388728022s ago: executing program 0 (id=1211):
syz_clone(0x1000000, 0x0, 0xfffffd11, 0x0, 0x0, 0x0)
mount(0x0, 0x0, 0x0, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={0x30, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}]]}, 0x30}}, 0x0)

12.829650137s ago: executing program 9 (id=1212):
r0 = msgget(0x1, 0x33c)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000000000)=""/23)
openat$sequencer(0xffffff9c, &(0x7f0000000040), 0x600000, 0x0)
semctl$GETVAL(0x0, 0x2, 0xc, &(0x7f0000000080)=""/4096)
sendmsg$IPSET_CMD_HEADER(0xffffffffffffffff, &(0x7f0000001140)={&(0x7f0000001080)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000001100)={0x0}, 0x1, 0x0, 0x0, 0x5}, 0x40018)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$mptcp(&(0x7f00000011c0), 0xffffffffffffffff)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000001280)={0x1, 0x58, &(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r4=>0x0}}, 0x10)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r2, &(0x7f00000013c0)={&(0x7f0000001180)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000001380)={&(0x7f00000012c0)={0xa4, r3, 0x400, 0x70bd2b, 0x25dfdbfd, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x7}, @MPTCP_PM_ATTR_ADDR={0x2c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0xb}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @private=0xa010100}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e20}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r4}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x5}]}, @MPTCP_PM_ATTR_TOKEN={0x8, 0x4, 0x2400}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x3}, @MPTCP_PM_ATTR_LOC_ID={0x5, 0x5, 0x7}, @MPTCP_PM_ATTR_ADDR={0x44, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x1a}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @private0={0xfc, 0x0, '\x00', 0x1}}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x40}, 0x4040014)
getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, &(0x7f0000001440)=<r5=>0x0, &(0x7f0000001480)=0x4)
sendmsg$MPTCP_PM_CMD_SET_FLAGS(r2, &(0x7f0000001580)={&(0x7f0000001400)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000001540)={&(0x7f00000014c0)={0x48, r3, 0x100, 0x70bd28, 0x25dfdbfd, {}, [@MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x7}, @MPTCP_PM_ATTR_TOKEN={0x8, 0x4, 0x9}, @MPTCP_PM_ATTR_ADDR={0x24, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @rand_addr=0x64010101}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x7}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}]}]}, 0x48}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000800)
msgctl$MSG_STAT_ANY(r0, 0xd, &(0x7f00000015c0)=""/51)
sendmsg$IPSET_CMD_DESTROY(r1, &(0x7f00000016c0)={&(0x7f0000001600)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000001680)={&(0x7f0000001640)={0x24, 0x3, 0x6, 0x5, 0x0, 0x0, {0x1, 0x0, 0xa}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x24}, 0x1, 0x0, 0x0, 0x40091}, 0x44000)

12.441051582s ago: executing program 9 (id=1214):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000c80)={'lo\x00'})
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
sched_setscheduler(0x0, 0x6, &(0x7f0000000300)=0x7)
mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x8, 0x13, 0xffffffffffffffff, 0xbaaca000)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
sendto$inet(0xffffffffffffffff, &(0x7f00000001c0)="0cc6f9ccc24fe7adfc0d3508f12e69d43bca36b1", 0x14, 0x0, &(0x7f0000000340)={0x2, 0x0, @multicast1}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x5, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000240), 0xffffffffffffffff)
mmap(&(0x7f0000223000/0x4000)=nil, 0x4000, 0x0, 0x110, 0xffffffffffffffff, 0x8c380000)
ioctl$BTRFS_IOC_QUOTA_RESCAN_WAIT(0xffffffffffffffff, 0x942e, 0x0)
write$eventfd(0xffffffffffffffff, &(0x7f0000000000)=0x8000000000000004, 0x8)
sched_setaffinity(0x0, 0x0, 0x0)
r1 = syz_open_dev$MSR(&(0x7f0000000080), 0x0, 0x0)
read$msr(r1, &(0x7f0000032680)=""/102392, 0x18ff8)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/pm_freeze_timeout', 0x141b82, 0x180)
write$cgroup_int(r2, &(0x7f0000000040)=0x7, 0x12)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
r3 = syz_open_dev$usbmon(&(0x7f0000000000), 0x369, 0x800)
ioctl$MON_IOCH_MFLUSH(r3, 0x9208, 0x0)

12.253534624s ago: executing program 0 (id=1215):
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct]}}, 0x0, 0x26, 0x0, 0x1}, 0x28)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x6, 0x3, &(0x7f0000000200)=@framed, &(0x7f0000000280)='GPL\x00', 0x5, 0xe2, &(0x7f00000002c0)=""/226, 0x0, 0x0, '\x00', 0x0, 0x25, r0, 0x8, 0x0, 0x0, 0x10, &(0x7f00000004c0), 0x2}, 0x80)

12.096054343s ago: executing program 6 (id=1216):
syz_open_dev$tty1(0xc, 0x4, 0x1)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
unshare(0x8000000)
semget$private(0x0, 0x4000, 0x0)
semctl$SETALL(0x0, 0x0, 0x14, &(0x7f0000000040))

11.224813648s ago: executing program 0 (id=1217):
openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r3, 0x0, 0x0, 0x22004001, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback}, 0x1c)
shutdown(r3, 0x1)
r4 = openat$vicodec1(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
close(r4)
socket$inet6_mptcp(0xa, 0x1, 0x106)
r5 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
clock_adjtime(0x0, &(0x7f0000000380)={0x3ff, 0xfff0bdc1, 0x4100, 0xb, 0x0, 0xf423f, 0x800000000000003, 0x800000000006, 0x0, 0x100, 0x3, 0x0, 0x7, 0x0, 0x9f, 0x2, 0x0, 0x0, 0x300000000000, 0x9, 0x8001, 0x7, 0xfffffffffffffffd, 0x3, 0x0, 0xe})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x3, &(0x7f00000001c0)=ANY=[@ANYBLOB="ff0000000000000000009500000000000000"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, r5}, 0x94)
r6 = syz_open_procfs(0x0, &(0x7f0000000180)='pagemap\x00')
pread64(r6, &(0x7f0000001240)=""/102400, 0x200000, 0x200000)

10.508578338s ago: executing program 9 (id=1218):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
setsockopt$inet_int(r0, 0x0, 0x7, &(0x7f0000000080)=0x7, 0x4)
syz_emit_ethernet(0x0, 0x0, 0x0)
setsockopt$inet_int(r0, 0x0, 0x14, &(0x7f00000001c0)=0x3f7, 0x4)
recvmmsg(r0, &(0x7f0000001980)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000003680)=""/27, 0x1b}}], 0x39, 0x2, 0x0)

10.033370036s ago: executing program 1 (id=1219):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0xffff, 0x2}, 0x3d)

9.658050953s ago: executing program 1 (id=1220):
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x0)
ioctl$COMEDI_DEVCONFIG(0xffffffffffffffff, 0x40946400, 0x0)
ioctl$COMEDI_DEVCONFIG(0xffffffffffffffff, 0x40946400, &(0x7f00000000c0)={'8255\x00', [0x4f27, 0x5, 0x2, 0x401, 0x1, 0xcc7, 0xfff, 0x5c952399, 0x5, 0x3ff, 0x802, 0x1600, 0x1, 0x1, 0x9, 0xe1cb, 0x6, 0x4, 0x3, 0x0, 0x80000089, 0xfffffffd, 0x0, 0xfffffff5, 0xffffeadb, 0x3, 0x3c, 0x8, 0x4, 0x8000000, 0xdffffffa]})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100))
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, 0x0, 0x0)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, 0x0, 0x0)
ioctl$sock_ifreq(r1, 0x89b1, 0x0)
sendmsg$NL80211_CMD_SET_MESH_CONFIG(0xffffffffffffffff, 0x0, 0x8000)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000000)={0x26, 'rng\x00', 0x0, 0x0, 'ansi_cprng\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000003c0)="93378e66cf9b48cb59638401fcd1730172853a9fa89527996042ab60ae29f9c1", 0x4e)
accept4(r2, 0x0, 0x0, 0x80800)

8.205484482s ago: executing program 1 (id=1221):
r0 = openat$kvm(0xffffff9c, &(0x7f0000000080), 0x2000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$dsp(0xffffffffffffff9c, 0x0, 0x42, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000040)=ANY=[@ANYRESDEC=r2], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r6 = socket$can_raw(0x1d, 0x3, 0x1)
listen(0xffffffffffffffff, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r6, 0x8933, &(0x7f0000000300)={'vxcan1\x00', <r7=>0x0})
bind$can_raw(r6, &(0x7f0000000000)={0x1d, r7}, 0x10)
setsockopt$CAN_RAW_FILTER(r6, 0x65, 0x1, &(0x7f00000000c0), 0xf00)
close_range(r2, 0xffffffffffffffff, 0x0)
r8 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
ioctl$KVM_SET_CPUID2(r8, 0x4008ae90, 0x0)
r9 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r9, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@ipv6_newaddrlabel={0x38, 0x48, 0x1, 0x40, 0x25dfdbfe, {0xa, 0x0, 0x80, 0x0, 0x0, 0x8}, [@IFAL_LABEL={0x8, 0x2, 0x1}, @IFAL_ADDRESS={0x14, 0x1, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x40}}}]}, 0x38}}, 0x20008000)
ioctl$KVM_SET_MSRS(r8, 0x4008ae89, &(0x7f0000000000)=ANY=[@ANYBLOB="010000000000fdff8a"])

8.047356205s ago: executing program 9 (id=1222):
syz_open_dev$sndpcmp(0x0, 0x5d5d, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8000, 0x20000000019}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
mremap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4000, 0x0, &(0x7f0000001000/0x4000)=nil)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r0 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x1, 0x0)
ioctl$HIDIOCSFEATURE(0xffffffffffffffff, 0xc0404806, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f00000010c0)=""/102400, 0x19000)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
openat(0xffffffffffffff9c, 0x0, 0x42, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x24004000)
getuid()

4.687584539s ago: executing program 1 (id=1223):
syz_usb_connect$cdc_ncm(0x0, 0x72, &(0x7f0000000bc0)=ANY=[@ANYBLOB="1201000002000040257d15a4400001040001090260004201000000090400000102090000052406000105240000000d240f01000004eaffffff1e0006031a00000804800200090581", @ANYBLOB="f7", @ANYRESOCT], 0x0)
r0 = syz_open_dev$video(&(0x7f0000000000), 0x3, 0x0)
ioctl$VIDIOC_SUBSCRIBE_EVENT(r0, 0x4020565a, &(0x7f0000000040)={0x3, 0x980914, 0x3})
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x401)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', <r3=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000440)=ANY=[@ANYBLOB="3000000070000100000000000000000007000000", @ANYRES32=r3, @ANYBLOB="0c0001804b7167d9dcec2fae8808000100400003000c0001800800010000000400"], 0x30}}, 0x0)
ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000b40)={'\x00', 0x8, 0x530, 0x8, 0x1, 0xb2})
capset(0x0, &(0x7f0000000280)={0x0, 0x5, 0x0, 0x7f, 0xffffffff})
msgget(0x0, 0x102)
ioctl$SG_BLKTRACESTART(r1, 0x1274, 0x0)

4.490270699s ago: executing program 3 (id=1224):
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x141a82, 0x0)
write$cgroup_int(r0, &(0x7f0000000040)=0x900, 0x12)

4.150133055s ago: executing program 0 (id=1225):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @multicast1}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x20020084, &(0x7f00000018c0)={0x2, 0x4e20}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x50)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0xb, &(0x7f00000001c0)=ANY=[@ANYBLOB="180200000b0000000000000000000000180100005e6c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000000600000095"], &(0x7f0000000000)='GPL\x00'}, 0x94)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000280)=ANY=[@ANYRES32=r1, @ANYRES32=r2, @ANYBLOB="05"], 0x10)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000100)={r1, 0x0, &(0x7f0000000040)=@tcp=r0}, 0x20)
sendmsg(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000740)="85", 0x1}], 0x1}, 0x8855)

3.293865814s ago: executing program 3 (id=1226):
mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0x9, 0x8c4b815a5465c2b1, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
getsockopt$inet_buf(r0, 0x0, 0x4, 0x0, &(0x7f0000000100))

3.235675486s ago: executing program 9 (id=1227):
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./bus\x00', 0x0, &(0x7f0000000d40)=ANY=[@ANYBLOB="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"], 0xfe, 0x2b9, &(0x7f0000000300)="$eJzs3T+LI2UYAPBnsslsji12CysRnOIKG5fbay3MISuIWykp/AN6eHdwbMLBBgKnYrjKT2Bh4fewsxds/AaChaWdhxy8MjPZJCa55LJndmX5/Zp9ed7nmXnezOxmIcybz1/rn957NHjw5Ovfot3OotGJTjzN4iAacS6NBQBwLTxNKf680Pt7s7GtngCA7Zp5/289J2V3MfT2ttsCALbow48+fv/OycnxB0XRjuh/O+xmUf+s5+88iIfRi/txK/bj2fSzgJTq8bvvnRxHsygdxM3+aNgtK/uf/TJJzaOqP4r9OFhef1TUZupHw2b1n0eWRTzslI3cjv14ZaG+nD++vaQ+unm80R4vsjz/YezHr1/Eo+jFveozjen5v8mjeCd999dXn5TJZX02GnZ3q7yptHPZ1wYAAAAAAAAAAAAAAAAAAAAAgOvrsJg4iJv9MlTvv9PdeVbNH/5rvtpfp1HN1/VZRF4N5vYHGqX44Xx/nVtFUaSszp/s73OjGa82o3llCwcAAAAAAAAAAAAAAAAAAID/kcHjL0/v9nr3z/6Twfgh/8lj/Rc9Tmcm8nqsTt7d6FyxM04ve53POfr50/4kUi7iIs0PW0XEqp5bC5EbZT/rj/x3SillWcTLXabWi5xrzWBvdU75Av/0/d6bp3ezda9h+/zC/Tg7lcfZ4PHcNY1skw7TRrdfviInH98xL3ScvZf8JXrr9/pk40i2ZhWtmUhrPIjn3X7tje7ny/sbBAAAAAAAAAAAAAAAAAAA1KYP/S6ZfLKytLG1pgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgkk2//386iIXI3GAUf1TFy3NSSqNJJI+zwVWvEQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgOvvnwAAAP//LfNtKg==")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
r0 = syz_open_dev$MSR(&(0x7f0000000000), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
chdir(&(0x7f0000000480)='./cgroup\x00')
munmap(&(0x7f0000002000/0x1000)=nil, 0x1000)
r1 = open(&(0x7f0000000140)='.\x00', 0x8000, 0x112)
getdents(r1, &(0x7f0000001fc0)=""/184, 0xb8)
getdents(r1, 0x0, 0x0)
ioctl$TCSETSW2(0xffffffffffffffff, 0x402c542c, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.stat\x00', 0x275a, 0x0)
userfaultfd(0x80001)

3.068007167s ago: executing program 3 (id=1228):
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
pipe2$9p(&(0x7f0000000180)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$binfmt_script(r2, &(0x7f0000000b40)={'#! ', './file0'}, 0xb)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000003b810000850000007d000000850000005000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x8, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffe}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000100)='sys_exit\x00', r3}, 0x10)
tee(r1, r0, 0x9, 0x8)

2.882706694s ago: executing program 0 (id=1229):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0xa2f01, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = dup(r2)
iopl(0x3)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
r4 = syz_open_dev$MSR(&(0x7f0000000200), 0x0, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
read$msr(r4, &(0x7f0000002700)=""/102392, 0x18ff8)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={@map, 0x24, 0x0, 0x101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}})
getsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x23, &(0x7f0000000040), &(0x7f0000000200)=0x38)
r5 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x2, &(0x7f00000002c0)=0xffff, 0x4)
bind$inet6(r5, &(0x7f0000000040)={0xa, 0xe22, 0x0, @empty}, 0x1c)

2.501834162s ago: executing program 3 (id=1230):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0xffff, 0x2}, 0x3d)

2.310171898s ago: executing program 1 (id=1231):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[], 0x48)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f0000000040)=0x10000002, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
r1 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r1, 0x7a7, &(0x7f0000000040)=0x90000)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6(0xa, 0x3, 0x4)
connect$pppl2tp(0xffffffffffffffff, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, 0xffffffffffffffff, {0x2, 0xfffc, @broadcast}, 0x2}}, 0x2e)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_open_dev$evdev(0x0, 0x1, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x14, r4, 0x9c3fa077fa966179, 0x0, 0x0, {{0x7e}, {@void, @void}}}, 0x14}, 0x1, 0x0, 0x0, 0x8}, 0x4040800)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r1, 0x7a0, &(0x7f0000000000)={@local})
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r1, 0x7a8, &(0x7f0000000540)={{@hyper, 0x2}, @hyper, 0x0, 0x0, 0x5e})
r5 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r5, 0x7a7, &(0x7f0000000040)=0xa0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r5, 0x7a0, &(0x7f0000000100)={@hyper})
r6 = fanotify_init(0x200, 0x0)
r7 = epoll_create(0x2)
epoll_ctl$EPOLL_CTL_ADD(r7, 0x1, r6, &(0x7f00000000c0)={0x30000015})
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r5, 0x7a8, 0x0)

1.040026899s ago: executing program 0 (id=1232):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
setsockopt$inet_int(r0, 0x0, 0x7, &(0x7f0000000080)=0x7, 0x4)
syz_emit_ethernet(0x0, 0x0, 0x0)
setsockopt$inet_int(r0, 0x0, 0x14, &(0x7f00000001c0)=0x3f7, 0x4)
recvmmsg(r0, &(0x7f0000001980)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000003680)=""/27, 0x1b}}], 0x39, 0x2, 0x0)

912.953621ms ago: executing program 3 (id=1233):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r2 = socket$inet6(0xa, 0x1, 0x0)
r3 = dup2(r2, r2)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f0000000240)={'batadv_slave_0\x00', <r4=>0x0})
ioctl$sock_inet6_SIOCDELRT(r3, 0x890c, &(0x7f00000000c0)={@remote, @private0, @empty, 0x40003, 0x40, 0x5, 0x100, 0x0, 0x590043, r4})

191.657704ms ago: executing program 1 (id=1234):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000280)=@newtfilter={0x38, 0x2c, 0xd27, 0x30bd29, 0x25dfdc00, {0x0, 0x0, 0x0, 0x0, {0x0, 0x4}, {}, {0x8}}, [@filter_kind_options=@f_matchall={{0xd}, {0x4}}]}, 0x38}, 0x1, 0x0, 0x0, 0x10}, 0x4004810)
setxattr$security_capability(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080), &(0x7f00000000c0)=@v2={0x2000000, [{0x8000, 0x8}, {0x40000, 0xfffffffe}]}, 0x14, 0x1)
socket$inet6(0x10, 0x3, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100), 0x35dc00, 0x0)
openat$sysfs(0xffffff9c, &(0x7f00000001c0)='/sys/power/pm_trace', 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)={0x74, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8}, {0x8, 0x2, @dev}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast2}, {0x8, 0x2, @multicast2}}}]}, @CTA_TIMEOUT={0x8}, @CTA_NAT_DST={0x10, 0xd, 0x0, 0x1, [@CTA_NAT_PROTO={0xc, 0x3, 0x0, 0x1, [@CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e22}]}]}]}, 0x74}}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000240), 0x2, 0x40102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2f)
pipe(&(0x7f00000000c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendto$inet6(r2, &(0x7f00000003c0)="44c9d4584209bbbce06592fed00e08760fe452089431c1d0ff124d29a6d959469f7547da268cb6c85f405ecd25addd9a9d249d538de9ed92f57f1b87addce5640555fb715ee8d953cfd41fa3dc6993ba3518ceab67fa2bef376a27d9", 0x5c, 0x40c0, &(0x7f0000000180)={0xa, 0x4e22, 0x9, @dev={0xfe, 0x80, '\x00', 0x3e}}, 0x1c)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[], 0x50}}, 0x4000000)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)={0x54, r5, 0x1, 0x0, 0x0, {0x3}, [@TIPC_NLA_BEARER={0x40, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x100, @dev={0xac, 0x14, 0x14, 0x41}}}, {0x14, 0x2, @in={0x2, 0x0, @multicast2}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}]}]}, 0x54}}, 0x0)

0s ago: executing program 9 (id=1235):
socket$inet_sctp(0x2, 0x1, 0x84)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400), 0xc2000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_CAP_VM_DISABLE_NX_HUGE_PAGES(r1, 0x4068aea3, &(0x7f0000000280))
r2 = socket$inet_udp(0x2, 0x2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000300)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, &(0x7f0000000240))
ioctl$VHOST_SET_VRING_KICK(0xffffffffffffffff, 0x4008af20, &(0x7f0000000040)={0x1})
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000100)={0xffffffffffffffff, 0x44c, 0x2})
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0xc000)
bind$inet(r2, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
syz_emit_ethernet(0xbe, &(0x7f0000000880)=ANY=[@ANYBLOB="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"], 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
recvmmsg(r2, &(0x7f0000003d40)=[{{0x0, 0x94, 0x0}, 0x5}], 0x1, 0x2, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x7}, 0x94)
r5 = gettid()
r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000840), 0x0)
read(r6, &(0x7f0000000200)=""/209, 0xd1)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r6, 0x4040534e, &(0x7f0000000180)={0x2b3, @tick=0xe, 0x42, {0xff}, 0x2})
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_INFO(r6, 0xc08c5334, &(0x7f0000000300)={0x8009, 0x100000d, 0x1, 'queue0\x00', 0x16})
tkill(r5, 0x7)

kernel console output (not intermixed with test programs):

-1: config 0 descriptor??
[  252.809938][   T30] audit: type=1326 audit(1761341870.551:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7751 comm="syz.2.476" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f222378efc9 code=0x0
[  252.859927][ T7756] warning: `syz.8.475' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  253.036930][ T7760] loop4: detected capacity change from 0 to 1024
[  253.075098][ T7760] EXT4-fs (loop4): couldn't mount as ext3 due to feature incompatibilities
[  253.097941][ T7764] loop8: detected capacity change from 0 to 1024
[  253.159622][ T7764] EXT4-fs: Ignoring removed mblk_io_submit option
[  253.216350][ T7764] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  253.271576][ T7764] EXT4-fs (loop8): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  253.346480][ T7764] EXT4-fs error (device loop8): ext4_ext_check_inode:523: inode #11: comm syz.8.480: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[  253.419700][ T7764] EXT4-fs error (device loop8): ext4_orphan_get:1397: comm syz.8.480: couldn't read orphan inode 11 (err -117)
[  253.437429][ T7764] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  253.824242][ T7780] loop4: detected capacity change from 0 to 512
[  254.350220][ T7780] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  254.388098][ T7780] EXT4-fs error (device loop4): ext4_orphan_get:1418: comm syz.4.482: bad orphan inode 15
[  254.399144][ T7780] ext4_test_bit(bit=14, block=18) = 1
[  254.404721][ T7780] is_bad_inode(inode)=0
[  254.408928][ T7780] NEXT_ORPHAN(inode)=1023
[  254.413404][ T7780] max_ino=32
[  254.416626][ T7780] i_nlink=0
[  254.421209][ T7780] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0009-000000000000 r/w without journal. Quota mode: none.
[  254.455094][ T7780] ext2 filesystem being mounted at /4/éq‰Y’3aK supports timestamps until 2038-01-19 (0x7fffffff)
[  254.486341][ T7764] EXT4-fs error (device loop8): ext4_read_block_bitmap_nowait:483: comm syz.8.480: Invalid block bitmap block 0 in block_group 0
[  254.509838][ T7785] EXT4-fs error (device loop8): ext4_nfs_get_inode:1540: inode #11: comm syz.8.480: iget: bad extra_isize 65535 (inode size 256)
[  254.542856][ T7764] Quota error (device loop8): write_blk: dquota write failed
[  254.550728][ T7764] Quota error (device loop8): qtree_write_dquot: Error -117 occurred while creating quota
[  254.690502][ T7482] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0009-000000000000.
[  254.711712][ T7764] EXT4-fs error (device loop8): ext4_acquire_dquot:6945: comm syz.8.480: Failed to acquire dquot type 0
[  254.727688][ T7787] loop2: detected capacity change from 0 to 2048
[  254.736885][ T7787] EXT4-fs: Ignoring removed mblk_io_submit option
[  254.868759][ T7787] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  254.903288][ T7256] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  254.976881][ T7787] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.484: bg 0: block 234: padding at end of block bitmap is not set
[  254.998613][ T7792] loop4: detected capacity change from 0 to 512
[  255.009353][ T7792] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  255.031277][ T7787] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6667: Corrupt filesystem
[  255.085325][ T7792] EXT4-fs error (device loop4): __ext4_fill_super:5512: inode #2: comm syz.4.485: inode has both inline data and extents flags
[  255.124493][ T7792] EXT4-fs (loop4): get root inode failed
[  255.144056][ T7792] EXT4-fs (loop4): mount failed
[  256.189988][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  256.203081][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  257.007861][ T7412] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  257.103371][ T5883] asix 8-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0012: -71
[  257.151055][ T5883] asix 8-1:0.0: probe with driver asix failed with error -71
[  257.221467][ T5883] usb 8-1: USB disconnect, device number 2
[  259.374103][ T7814] loop4: detected capacity change from 0 to 128
[  259.692612][ T7817] Bluetooth: hci0: load_link_keys: too big key_count value 8192
[  259.723250][ T7814] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[  259.999022][ T7814] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  260.850918][ T7837] loop7: detected capacity change from 0 to 512
[  261.056337][ T7837] EXT4-fs (loop7): mounting ext2 file system using the ext4 subsystem
[  261.225277][ T7837] EXT4-fs error (device loop7): ext4_orphan_get:1418: comm syz.7.495: bad orphan inode 15
[  261.252795][ T7837] ext4_test_bit(bit=14, block=18) = 1
[  261.258239][ T7837] is_bad_inode(inode)=0
[  261.262389][ T7837] NEXT_ORPHAN(inode)=1023
[  261.267091][ T7837] max_ino=32
[  261.270321][ T7837] i_nlink=0
[  261.275150][ T7837] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0009-000000000000 r/w without journal. Quota mode: none.
[  261.288492][ T7837] ext2 filesystem being mounted at /13/éq‰Y’3aK supports timestamps until 2038-01-19 (0x7fffffff)
[  261.387857][ T1105] netdevsim netdevsim9 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  261.591188][ T7254] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0009-000000000000.
[  261.905212][ T1105] netdevsim netdevsim9 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  262.126290][ T7854] loop2: detected capacity change from 0 to 1024
[  262.133080][ T1105] netdevsim netdevsim9 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  262.254969][ T1105] netdevsim netdevsim9 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  262.265697][ T7854] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  262.265833][ T7854] ext4 filesystem being mounted at /11/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  262.291351][ T7854] EXT4-fs error (device loop2): ext4_lookup:1787: inode #15: comm syz.2.502: inode has both inline data and extents flags
[  262.307140][   T52] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  262.334134][   T52] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  262.352760][   T52] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  262.368394][   T52] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  262.377727][   T52] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  263.077245][ T7878] Bluetooth: hci0: load_link_keys: too big key_count value 8192
[  263.419585][ T7412] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  264.259287][ T7896] loop8: detected capacity change from 0 to 512
[  264.269396][ T7896] EXT4-fs (loop8): mounting ext2 file system using the ext4 subsystem
[  264.401974][ T7896] EXT4-fs error (device loop8): ext4_orphan_get:1418: comm syz.8.510: bad orphan inode 15
[  264.466238][ T7896] ext4_test_bit(bit=14, block=18) = 1
[  264.471713][ T7896] is_bad_inode(inode)=0
[  264.475977][ T7896] NEXT_ORPHAN(inode)=1023
[  264.480325][ T7896] max_ino=32
[  264.483775][ T7896] i_nlink=0
[  264.489306][ T7896] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0009-000000000000 r/w without journal. Quota mode: none.
[  264.540272][ T7896] ext2 filesystem being mounted at /18/éq‰Y’3aK supports timestamps until 2038-01-19 (0x7fffffff)
[  264.563771][ T5836] Bluetooth: hci2: command tx timeout
[  264.656953][ T7892] loop4: detected capacity change from 0 to 128
[  264.753046][ T7892] vfat: Unknown parameter 'uid<00000000000000000000'
[  264.975554][ T1105] bridge_slave_1: left allmulticast mode
[  264.981248][ T1105] bridge_slave_1: left promiscuous mode
[  265.024458][ T1105] bridge0: port 2(bridge_slave_1) entered disabled state
[  265.111395][ T7256] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0009-000000000000.
[  265.164877][ T1105] bridge_slave_0: left allmulticast mode
[  265.193465][ T1105] bridge_slave_0: left promiscuous mode
[  265.216941][ T1105] bridge0: port 1(bridge_slave_0) entered disabled state
[  265.854275][ T7912] loop8: detected capacity change from 0 to 512
[  265.972243][ T7912] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  266.034348][ T7912] ext4 filesystem being mounted at /19/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  267.022685][ T5836] Bluetooth: hci2: command tx timeout
[  267.192314][ T7256] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  267.857559][ T7944] loop2: detected capacity change from 0 to 736
[  268.277256][ T7951] loop7: detected capacity change from 0 to 512
[  268.293619][ T7951] EXT4-fs (loop7): mounting ext2 file system using the ext4 subsystem
[  268.397211][ T7951] EXT4-fs error (device loop7): ext4_orphan_get:1418: comm syz.7.520: bad orphan inode 15
[  268.439232][ T7951] ext4_test_bit(bit=14, block=18) = 1
[  268.444872][ T7951] is_bad_inode(inode)=0
[  268.449054][ T7951] NEXT_ORPHAN(inode)=1023
[  268.453523][ T7951] max_ino=32
[  268.456741][ T7951] i_nlink=0
[  268.461815][ T7951] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0009-000000000000 r/w without journal. Quota mode: none.
[  268.490180][ T7951] ext2 filesystem being mounted at /21/éq‰Y’3aK supports timestamps until 2038-01-19 (0x7fffffff)
[  268.857705][ T7254] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0009-000000000000.
[  269.042971][ T5836] Bluetooth: hci2: command tx timeout
[  269.413072][ T1105] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  269.642446][ T1105] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  269.676927][ T1105] bond0 (unregistering): Released all slaves
[  270.593428][ T7980] loop7: detected capacity change from 0 to 512
[  270.708058][ T7860] chnl_net:caif_netlink_parms(): no params data found
[  270.755955][ T7980] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  270.808624][ T7980] ext4 filesystem being mounted at /24/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  270.933084][ T7980] EXT4-fs error (device loop7): ext4_do_update_inode:5632: inode #2: comm syz.7.527: corrupted inode contents
[  271.007300][ T7980] EXT4-fs error (device loop7): ext4_dirty_inode:6517: inode #2: comm syz.7.527: mark_inode_dirty error
[  271.062926][ T7980] EXT4-fs error (device loop7): ext4_do_update_inode:5632: inode #2: comm syz.7.527: corrupted inode contents
[  271.103116][ T7980] EXT4-fs error (device loop7): __ext4_ext_dirty:206: inode #2: comm syz.7.527: mark_inode_dirty error
[  271.122914][ T5836] Bluetooth: hci2: command tx timeout
[  271.313400][ T7254] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  271.486172][   T52] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  271.497120][   T52] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  271.505870][   T52] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  271.516108][   T52] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  271.524474][   T52] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  271.625528][ T1105] hsr_slave_0: left promiscuous mode
[  271.638505][ T1105] hsr_slave_1: left promiscuous mode
[  271.650448][ T1105] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  271.795410][ T8009] loop4: detected capacity change from 0 to 512
[  271.826998][ T8009] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  271.949829][ T8009] EXT4-fs error (device loop4): ext4_orphan_get:1418: comm syz.4.532: bad orphan inode 15
[  271.962982][ T8009] ext4_test_bit(bit=14, block=18) = 1
[  271.968422][ T8009] is_bad_inode(inode)=0
[  271.972863][ T8009] NEXT_ORPHAN(inode)=1023
[  271.977231][ T8009] max_ino=32
[  271.980449][ T8009] i_nlink=0
[  271.985579][ T8009] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0009-000000000000 r/w without journal. Quota mode: none.
[  272.024277][ T8009] ext2 filesystem being mounted at /14/éq‰Y’3aK supports timestamps until 2038-01-19 (0x7fffffff)
[  272.155219][ T1105] batman_adv: batadv0: Removing interface: batadv_slave_0
[  272.224557][ T1105] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  272.232016][ T1105] batman_adv: batadv0: Removing interface: batadv_slave_1
[  272.427352][ T7482] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0009-000000000000.
[  272.489377][ T1105] veth1_macvtap: left promiscuous mode
[  272.498624][ T1105] veth0_macvtap: left promiscuous mode
[  272.507192][ T1105] veth1_vlan: left promiscuous mode
[  272.515768][ T1105] veth0_vlan: left promiscuous mode
[  272.642741][ T8019] loop4: detected capacity change from 0 to 256
[  272.650179][ T8019] exfat: Invalid uid '0x00000000ffffffff'
[  272.689896][ T8021] binder: BINDER_SET_CONTEXT_MGR already set
[  272.709477][ T8021] binder: 8020:8021 ioctl 4018620d 200000000040 returned -16
[  274.480643][ T5836] Bluetooth: hci4: command tx timeout
[  274.599813][ T8034] loop4: detected capacity change from 0 to 512
[  274.618732][ T8034] EXT4-fs (loop4): blocks per group (1) and clusters per group (8192) inconsistent
[  274.632718][ T5943] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  274.736123][ T8034] loop4: detected capacity change from 0 to 1024
[  274.767177][ T8034] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  274.784320][ T8034] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  274.792858][ T8034] EXT4-fs (loop4): orphan cleanup on readonly fs
[  274.799911][ T8034] EXT4-fs error (device loop4): ext4_free_blocks:6706: comm syz.4.540: Freeing blocks not in datazone - block = 0, count = 4096
[  274.816015][ T5943] usb 8-1: Using ep0 maxpacket: 8
[  274.826561][ T8034] EXT4-fs (loop4): 1 orphan inode deleted
[  274.832874][ T5943] usb 8-1: unable to get BOS descriptor or descriptor too short
[  274.842806][ T8034] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  274.860928][ T5943] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  274.880690][ T5943] usb 8-1: config 1 interface 0 altsetting 2 endpoint 0x82 has invalid wMaxPacketSize 0
[  274.890731][ T5943] usb 8-1: config 1 interface 0 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 0
[  274.900567][ T5943] usb 8-1: config 1 interface 0 altsetting 2 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  274.913580][ T5943] usb 8-1: config 1 interface 0 has no altsetting 0
[  274.950381][ T5943] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a5, bcdDevice= 0.40
[  274.953758][ T7482] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  274.961204][ T5943] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  274.977067][ T5943] usb 8-1: Product: syz
[  274.981577][ T5943] usb 8-1: Manufacturer: syz
[  274.986262][ T5943] usb 8-1: SerialNumber: syz
[  275.234461][ T5943] cdc_ether 8-1:1.0: skipping garbage
[  275.247111][ T5943] usb 8-1: bad CDC descriptors
[  275.256207][ T5943] usb-storage 8-1:1.0: USB Mass Storage device detected
[  275.288412][ T5943] usb-storage 8-1:1.0: Quirks match for vid 0525 pid a4a5: 10000
[  275.413828][ T5943] usb 8-1: USB disconnect, device number 3
[  275.505228][ T1105] team0 (unregistering): Port device team_slave_1 removed
[  275.730568][ T8043] loop4: detected capacity change from 0 to 512
[  275.808567][ T8043] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  276.021649][ T8043] EXT4-fs error (device loop4): ext4_orphan_get:1418: comm syz.4.542: bad orphan inode 15
[  276.042838][ T8043] ext4_test_bit(bit=14, block=18) = 1
[  276.048383][ T8043] is_bad_inode(inode)=0
[  276.052718][ T8043] NEXT_ORPHAN(inode)=1023
[  276.057222][ T8043] max_ino=32
[  276.060542][ T8043] i_nlink=0
[  276.084243][ T8043] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0009-000000000000 r/w without journal. Quota mode: none.
[  276.098100][ T8043] ext2 filesystem being mounted at /19/éq‰Y’3aK supports timestamps until 2038-01-19 (0x7fffffff)
[  276.166974][ T1105] team0 (unregistering): Port device team_slave_0 removed
[  276.351250][ T7482] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0009-000000000000.
[  276.582909][   T52] Bluetooth: hci4: command tx timeout
[  277.698167][ T8062] loop4: detected capacity change from 0 to 512
[  277.717698][ T8062] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  277.879237][ T8026] netlink: 12 bytes leftover after parsing attributes in process `syz.2.537'.
[  277.972914][ T7860] bridge0: port 1(bridge_slave_0) entered blocking state
[  278.003146][ T7860] bridge0: port 1(bridge_slave_0) entered disabled state
[  278.010471][ T7860] bridge_slave_0: entered allmulticast mode
[  278.028828][ T8062] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1137: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  278.053489][ T7860] bridge_slave_0: entered promiscuous mode
[  278.079723][ T8062] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.549: bg 0: block 248: padding at end of block bitmap is not set
[  278.321100][ T7860] bridge0: port 2(bridge_slave_1) entered blocking state
[  278.431978][ T8062] Quota error (device loop4): write_blk: dquota write failed
[  278.477548][ T7860] bridge0: port 2(bridge_slave_1) entered disabled state
[  278.553362][ T8062] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  278.572814][ T7860] bridge_slave_1: entered allmulticast mode
[  278.593163][ T7860] bridge_slave_1: entered promiscuous mode
[  278.604662][ T8062] EXT4-fs error (device loop4): ext4_acquire_dquot:6945: comm syz.4.549: Failed to acquire dquot type 1
[  278.643936][   T52] Bluetooth: hci4: command tx timeout
[  278.686031][ T8062] EXT4-fs (loop4): 1 truncate cleaned up
[  278.714521][ T8062] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0008-000000000000 r/w without journal. Quota mode: writeback.
[  278.790255][   T30] audit: type=1800 audit(1761341896.531:121): pid=8062 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.549" name="file1" dev="loop4" ino=15 res=0 errno=0
[  278.829867][ T7860] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  278.948524][ T7482] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0008-000000000000.
[  278.973771][ T5964] Quota error (device loop4): do_check_range: Getting block 0 out of range 1-5
[  278.996138][ T5964] EXT4-fs error (device loop4): ext4_release_dquot:6981: comm kworker/u8:8: Failed to release dquot type 1
[  279.796805][ T7860] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  279.989926][ T8078] capability: warning: `syz.7.553' uses 32-bit capabilities (legacy support in use)
[  280.116752][ T8080] loop4: detected capacity change from 0 to 512
[  280.225647][ T8080] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  280.331287][ T8080] EXT4-fs error (device loop4): ext4_orphan_get:1418: comm syz.4.552: bad orphan inode 15
[  280.350686][ T8080] ext4_test_bit(bit=14, block=18) = 1
[  280.356204][ T8080] is_bad_inode(inode)=0
[  280.360404][ T8080] NEXT_ORPHAN(inode)=1023
[  280.364824][ T8080] max_ino=32
[  280.368041][ T8080] i_nlink=0
[  280.373263][ T8080] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0009-000000000000 r/w without journal. Quota mode: none.
[  280.399006][ T8080] ext2 filesystem being mounted at /24/éq‰Y’3aK supports timestamps until 2038-01-19 (0x7fffffff)
[  280.696655][ T7860] team0: Port device team_slave_0 added
[  280.732799][   T52] Bluetooth: hci4: command tx timeout
[  280.776159][ T8083] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 449: padding at end of block bitmap is not set
[  280.801173][ T8086] loop2: detected capacity change from 0 to 512
[  280.856221][ T7482] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0009-000000000000.
[  280.885012][ T7860] team0: Port device team_slave_1 added
[  281.013343][ T8086] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  281.050391][ T8086] ext4 filesystem being mounted at /21/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  281.134732][ T7860] batman_adv: batadv0: Adding interface: batadv_slave_0
[  281.141734][ T7860] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  281.196678][ T8086] EXT4-fs error (device loop2): ext4_do_update_inode:5632: inode #2: comm syz.2.550: corrupted inode contents
[  281.197310][ T7860] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  281.256162][ T8086] EXT4-fs error (device loop2): ext4_dirty_inode:6517: inode #2: comm syz.2.550: mark_inode_dirty error
[  281.268495][ T8086] EXT4-fs error (device loop2): ext4_do_update_inode:5632: inode #2: comm syz.2.550: corrupted inode contents
[  281.287274][ T8086] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #2: comm syz.2.550: mark_inode_dirty error
[  281.436027][   T52] Bluetooth: Frame is too long (len 202, expected len 4)
[  281.510468][ T8086] EXT4-fs warning (device loop2): ext4_empty_dir:3089: inode #18: comm syz.2.550: directory missing '.'
[  281.534933][ T7860] batman_adv: batadv0: Adding interface: batadv_slave_1
[  281.544779][ T7860] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  281.572951][ T7860] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  281.940966][ T7412] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  281.968049][ T1105] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  282.241296][ T1105] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  282.319924][ T7860] hsr_slave_0: entered promiscuous mode
[  282.327197][ T7860] hsr_slave_1: entered promiscuous mode
[  282.337553][ T7860] debugfs: 'hsr0' already exists in 'hsr'
[  282.343651][ T7860] Cannot create hsr debugfs directory
[  282.432142][ T8122] netlink: 220 bytes leftover after parsing attributes in process `syz.2.560'.
[  284.178886][ T1105] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  284.331776][ T5836] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  284.344824][ T5836] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  284.355755][ T5836] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  284.375862][ T5836] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  284.385076][ T5836] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  284.465675][ T1105] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  284.498098][ T8003] chnl_net:caif_netlink_parms(): no params data found
[  285.038169][ T8003] bridge0: port 1(bridge_slave_0) entered blocking state
[  285.047772][ T8003] bridge0: port 1(bridge_slave_0) entered disabled state
[  285.055619][ T8003] bridge_slave_0: entered allmulticast mode
[  285.068541][ T8003] bridge_slave_0: entered promiscuous mode
[  285.086462][ T8003] bridge0: port 2(bridge_slave_1) entered blocking state
[  285.123279][ T8003] bridge0: port 2(bridge_slave_1) entered disabled state
[  285.130705][ T8003] bridge_slave_1: entered allmulticast mode
[  285.158615][ T8003] bridge_slave_1: entered promiscuous mode
[  285.293720][ T8157] loop4: detected capacity change from 0 to 164
[  285.401576][ T7482] iso9660: Corrupted directory entry in block 2 of inode 1920
[  285.413385][ T7482] iso9660: Corrupted directory entry in block 2 of inode 1920
[  285.429115][ T7482] iso9660: Corrupted directory entry in block 2 of inode 1920
[  285.460162][ T7482] iso9660: Corrupted directory entry in block 2 of inode 1920
[  285.499309][ T7860] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  285.680643][ T8164] loop2: detected capacity change from 0 to 512
[  285.692009][ T8164] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  285.716752][ T8164] EXT4-fs error (device loop2): ext4_orphan_get:1392: inode #15: comm syz.2.568: inode has both inline data and extents flags
[  285.731577][ T8164] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.568: couldn't read orphan inode 15 (err -117)
[  285.746973][ T8164] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  285.780573][ T8164] EXT4-fs error (device loop2): ext4_lookup:1787: inode #15: comm syz.2.568: inode has both inline data and extents flags
[  285.800945][ T8164] syz.2.568 uses obsolete (PF_INET,SOCK_PACKET)
[  285.911184][ T7412] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  285.926427][ T7860] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  286.023698][ T8003] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  286.046795][ T8175] loop2: detected capacity change from 0 to 128
[  286.063807][ T8175] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  286.066943][ T8003] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  286.100758][ T8175] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  286.228437][ T7860] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  286.364579][ T1105] bridge_slave_1: left allmulticast mode
[  286.370286][ T1105] bridge_slave_1: left promiscuous mode
[  286.385860][ T1105] bridge0: port 2(bridge_slave_1) entered disabled state
[  286.415481][ T1105] bridge_slave_0: left allmulticast mode
[  286.421172][ T1105] bridge_slave_0: left promiscuous mode
[  286.428347][ T1105] bridge0: port 1(bridge_slave_0) entered disabled state
[  286.483890][ T5836] Bluetooth: hci3: command tx timeout
[  286.599270][   T52] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  286.612931][   T52] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  286.622420][   T52] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  286.633822][   T52] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  286.642079][   T52] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  286.761155][ T8190] loop2: detected capacity change from 0 to 164
[  286.864618][ T7412] iso9660: Corrupted directory entry in block 2 of inode 1920
[  286.881422][ T7412] iso9660: Corrupted directory entry in block 2 of inode 1920
[  286.899987][ T7412] iso9660: Corrupted directory entry in block 2 of inode 1920
[  286.909934][ T7412] iso9660: Corrupted directory entry in block 2 of inode 1920
[  287.207769][ T1105] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  287.221881][ T1105] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  287.235492][ T1105] bond0 (unregistering): Released all slaves
[  287.271468][ T7860] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  287.316730][ T8003] team0: Port device team_slave_0 added
[  287.411783][ T8003] team0: Port device team_slave_1 added
[  287.550839][ T8003] batman_adv: batadv0: Adding interface: batadv_slave_0
[  287.585375][ T8003] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  287.644452][ T8003] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  287.800467][ T8003] batman_adv: batadv0: Adding interface: batadv_slave_1
[  287.823725][ T8003] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  287.883299][ T8003] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  287.957870][ T1105] hsr_slave_0: left promiscuous mode
[  287.969660][ T1105] hsr_slave_1: left promiscuous mode
[  287.983994][ T1105] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  287.991438][ T1105] batman_adv: batadv0: Removing interface: batadv_slave_0
[  288.013821][ T1105] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  288.021280][ T1105] batman_adv: batadv0: Removing interface: batadv_slave_1
[  288.088842][ T1105] veth1_macvtap: left promiscuous mode
[  288.094617][ T1105] veth0_macvtap: left promiscuous mode
[  288.101020][   T52] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  288.111782][   T52] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  288.119930][   T52] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  288.127782][ T1105] veth1_vlan: left promiscuous mode
[  288.133887][   T52] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  288.141375][ T1105] veth0_vlan: left promiscuous mode
[  288.149511][   T52] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  288.563354][   T52] Bluetooth: hci3: command tx timeout
[  288.566501][ T1105] team0 (unregistering): Port device team_slave_1 removed
[  288.607945][ T1105] team0 (unregistering): Port device team_slave_0 removed
[  288.727487][   T52] Bluetooth: hci0: command tx timeout
[  289.152336][ T8003] hsr_slave_0: entered promiscuous mode
[  289.160715][ T8003] hsr_slave_1: entered promiscuous mode
[  289.167957][ T8003] debugfs: 'hsr0' already exists in 'hsr'
[  289.175707][ T8003] Cannot create hsr debugfs directory
[  289.199994][ T7860] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  289.211447][ T7860] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  289.261844][ T7860] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  289.275653][ T8134] chnl_net:caif_netlink_parms(): no params data found
[  289.311415][ T7860] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  289.620296][ T8134] bridge0: port 1(bridge_slave_0) entered blocking state
[  289.628048][ T8134] bridge0: port 1(bridge_slave_0) entered disabled state
[  289.635611][ T8134] bridge_slave_0: entered allmulticast mode
[  289.646591][ T8134] bridge_slave_0: entered promiscuous mode
[  289.655371][ T8134] bridge0: port 2(bridge_slave_1) entered blocking state
[  289.662678][ T8134] bridge0: port 2(bridge_slave_1) entered disabled state
[  289.669920][ T8134] bridge_slave_1: entered allmulticast mode
[  289.677357][ T8134] bridge_slave_1: entered promiscuous mode
[  289.810947][ T8186] chnl_net:caif_netlink_parms(): no params data found
[  289.826293][ T8134] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  289.840464][ T8134] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  289.962866][ T1105] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  290.065348][ T8134] team0: Port device team_slave_0 added
[  290.093372][ T1105] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  290.112469][ T8217] chnl_net:caif_netlink_parms(): no params data found
[  290.144135][ T8134] team0: Port device team_slave_1 added
[  290.164686][ T1105] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  290.242703][   T52] Bluetooth: hci1: command tx timeout
[  290.260663][ T8134] batman_adv: batadv0: Adding interface: batadv_slave_0
[  290.268304][ T8134] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  290.295120][ T8134] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  290.343496][ T8186] bridge0: port 1(bridge_slave_0) entered blocking state
[  290.351926][ T8186] bridge0: port 1(bridge_slave_0) entered disabled state
[  290.359366][ T8186] bridge_slave_0: entered allmulticast mode
[  290.367022][ T8186] bridge_slave_0: entered promiscuous mode
[  290.375404][ T8134] batman_adv: batadv0: Adding interface: batadv_slave_1
[  290.382369][ T8134] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  290.410193][ T8134] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  290.455972][ T1105] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  290.471813][ T8186] bridge0: port 2(bridge_slave_1) entered blocking state
[  290.479394][ T8186] bridge0: port 2(bridge_slave_1) entered disabled state
[  290.488339][ T8186] bridge_slave_1: entered allmulticast mode
[  290.500961][ T8186] bridge_slave_1: entered promiscuous mode
[  290.618141][ T8134] hsr_slave_0: entered promiscuous mode
[  290.625548][ T8134] hsr_slave_1: entered promiscuous mode
[  290.634549][ T8134] debugfs: 'hsr0' already exists in 'hsr'
[  290.640315][ T8134] Cannot create hsr debugfs directory
[  290.643050][   T52] Bluetooth: hci3: command tx timeout
[  290.652810][ T8217] bridge0: port 1(bridge_slave_0) entered blocking state
[  290.660048][ T8217] bridge0: port 1(bridge_slave_0) entered disabled state
[  290.668537][ T8217] bridge_slave_0: entered allmulticast mode
[  290.676385][ T8217] bridge_slave_0: entered promiscuous mode
[  290.685250][ T8217] bridge0: port 2(bridge_slave_1) entered blocking state
[  290.692448][ T8217] bridge0: port 2(bridge_slave_1) entered disabled state
[  290.700045][ T8217] bridge_slave_1: entered allmulticast mode
[  290.707395][ T8217] bridge_slave_1: entered promiscuous mode
[  290.738027][ T8186] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  290.780999][ T8186] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  290.802827][   T52] Bluetooth: hci0: command tx timeout
[  290.868436][ T8217] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  290.899733][ T8217] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  290.935341][ T8186] team0: Port device team_slave_0 added
[  290.949889][ T8186] team0: Port device team_slave_1 added
[  291.134089][ T8217] team0: Port device team_slave_0 added
[  291.145436][ T8186] batman_adv: batadv0: Adding interface: batadv_slave_0
[  291.152421][ T8186] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  291.179713][ T8186] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  291.215774][ T8217] team0: Port device team_slave_1 added
[  291.223960][ T8186] batman_adv: batadv0: Adding interface: batadv_slave_1
[  291.230932][ T8186] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  291.259790][ T8186] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  291.348704][ T8217] batman_adv: batadv0: Adding interface: batadv_slave_0
[  291.357588][ T8217] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  291.384652][ T8217] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  291.406467][ T8003] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  291.440774][ T8217] batman_adv: batadv0: Adding interface: batadv_slave_1
[  291.449159][ T8217] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  291.475588][ T8217] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  291.487690][ T8003] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  291.535255][ T1105] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  291.581545][ T8186] hsr_slave_0: entered promiscuous mode
[  291.596564][ T8186] hsr_slave_1: entered promiscuous mode
[  291.605301][ T8186] debugfs: 'hsr0' already exists in 'hsr'
[  291.611084][ T8186] Cannot create hsr debugfs directory
[  291.630450][ T8003] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  291.664078][ T1105] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  291.715081][ T8003] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  291.791786][ T7860] 8021q: adding VLAN 0 to HW filter on device bond0
[  291.818944][ T1105] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  291.904560][ T8217] hsr_slave_0: entered promiscuous mode
[  291.911697][ T8217] hsr_slave_1: entered promiscuous mode
[  291.919094][ T8217] debugfs: 'hsr0' already exists in 'hsr'
[  291.925866][ T8217] Cannot create hsr debugfs directory
[  292.006610][ T1105] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  292.122452][ T7860] 8021q: adding VLAN 0 to HW filter on device team0
[  292.248588][   T49] bridge0: port 1(bridge_slave_0) entered blocking state
[  292.255856][   T49] bridge0: port 1(bridge_slave_0) entered forwarding state
[  292.323126][   T52] Bluetooth: hci1: command tx timeout
[  292.347770][   T49] bridge0: port 2(bridge_slave_1) entered blocking state
[  292.355126][   T49] bridge0: port 2(bridge_slave_1) entered forwarding state
[  292.704306][ T8003] 8021q: adding VLAN 0 to HW filter on device bond0
[  292.722579][   T52] Bluetooth: hci3: command tx timeout
[  292.758092][ T1105] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  292.854063][ T1105] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  292.888416][   T52] Bluetooth: hci0: command tx timeout
[  292.927663][ T8003] 8021q: adding VLAN 0 to HW filter on device team0
[  292.980587][ T8134] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  293.054528][ T1105] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  293.090729][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  293.098013][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  293.119578][ T8134] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  293.168000][ T8134] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  293.235015][ T1105] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  293.263785][ T8134] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  293.294034][   T49] bridge0: port 2(bridge_slave_1) entered blocking state
[  293.301277][   T49] bridge0: port 2(bridge_slave_1) entered forwarding state
[  293.491018][ T7860] 8021q: adding VLAN 0 to HW filter on device batadv0
[  293.812816][ T1105] bridge_slave_1: left allmulticast mode
[  293.819631][ T1105] bridge_slave_1: left promiscuous mode
[  293.826418][ T1105] bridge0: port 2(bridge_slave_1) entered disabled state
[  293.837256][ T1105] bridge_slave_0: left allmulticast mode
[  293.843790][ T1105] bridge_slave_0: left promiscuous mode
[  293.849630][ T1105] bridge0: port 1(bridge_slave_0) entered disabled state
[  293.864796][ T1105] bridge_slave_1: left allmulticast mode
[  293.870494][ T1105] bridge_slave_1: left promiscuous mode
[  293.876911][ T1105] bridge0: port 2(bridge_slave_1) entered disabled state
[  293.890174][ T1105] bridge_slave_0: left allmulticast mode
[  293.901929][ T1105] bridge_slave_0: left promiscuous mode
[  293.910530][ T1105] bridge0: port 1(bridge_slave_0) entered disabled state
[  293.928163][ T1105] bridge_slave_1: left allmulticast mode
[  293.934131][ T1105] bridge_slave_1: left promiscuous mode
[  293.939935][ T1105] bridge0: port 2(bridge_slave_1) entered disabled state
[  293.951656][ T1105] bridge_slave_0: left allmulticast mode
[  293.957923][ T1105] bridge_slave_0: left promiscuous mode
[  293.964252][ T1105] bridge0: port 1(bridge_slave_0) entered disabled state
[  294.373278][ T1105] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  294.385608][ T1105] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  294.398377][ T1105] bond0 (unregistering): Released all slaves
[  294.404629][   T52] Bluetooth: hci1: command tx timeout
[  294.657778][ T1105] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  294.668684][ T1105] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  294.679106][ T1105] bond0 (unregistering): Released all slaves
[  294.920253][ T1105] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  294.932060][ T1105] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  294.942458][ T1105] bond0 (unregistering): Released all slaves
[  294.963019][   T52] Bluetooth: hci0: command tx timeout
[  295.000569][ T7860] veth0_vlan: entered promiscuous mode
[  295.091718][ T7860] veth1_vlan: entered promiscuous mode
[  295.192225][ T8134] 8021q: adding VLAN 0 to HW filter on device bond0
[  295.374911][ T8134] 8021q: adding VLAN 0 to HW filter on device team0
[  295.526100][   T49] bridge0: port 1(bridge_slave_0) entered blocking state
[  295.533340][   T49] bridge0: port 1(bridge_slave_0) entered forwarding state
[  295.549015][ T8186] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  295.599333][ T6906] bridge0: port 2(bridge_slave_1) entered blocking state
[  295.606612][ T6906] bridge0: port 2(bridge_slave_1) entered forwarding state
[  295.640214][ T7860] veth0_macvtap: entered promiscuous mode
[  295.671606][ T8186] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  295.704977][ T8186] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  295.759763][ T8186] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  295.793795][ T7860] veth1_macvtap: entered promiscuous mode
[  295.812040][ T8003] 8021q: adding VLAN 0 to HW filter on device batadv0
[  296.077903][ T7860] batman_adv: batadv0: Interface activated: batadv_slave_0
[  296.222349][ T7860] batman_adv: batadv0: Interface activated: batadv_slave_1
[  296.298355][ T6783] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  296.390360][ T6783] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  296.412832][ T6783] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  296.421621][ T6783] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  296.483000][   T52] Bluetooth: hci1: command tx timeout
[  296.534410][ T1105] hsr_slave_0: left promiscuous mode
[  296.540769][ T1105] hsr_slave_1: left promiscuous mode
[  296.548693][ T1105] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  296.556643][ T1105] batman_adv: batadv0: Removing interface: batadv_slave_0
[  296.566687][ T1105] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  296.579093][ T1105] batman_adv: batadv0: Removing interface: batadv_slave_1
[  296.595658][ T1105] hsr_slave_0: left promiscuous mode
[  296.601972][ T1105] hsr_slave_1: left promiscuous mode
[  296.608829][ T1105] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  296.617002][ T1105] batman_adv: batadv0: Removing interface: batadv_slave_0
[  296.629030][ T1105] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  296.637386][ T1105] batman_adv: batadv0: Removing interface: batadv_slave_1
[  296.655597][ T1105] hsr_slave_0: left promiscuous mode
[  296.665902][ T1105] hsr_slave_1: left promiscuous mode
[  296.673454][ T1105] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  296.680883][ T1105] batman_adv: batadv0: Removing interface: batadv_slave_0
[  296.693225][ T1105] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  296.700662][ T1105] batman_adv: batadv0: Removing interface: batadv_slave_1
[  296.766379][ T1105] veth1_macvtap: left promiscuous mode
[  296.772347][ T1105] veth0_macvtap: left promiscuous mode
[  296.778258][ T1105] veth1_vlan: left promiscuous mode
[  296.784210][ T1105] veth0_vlan: left promiscuous mode
[  296.791476][ T1105] veth1_macvtap: left promiscuous mode
[  296.800754][ T1105] veth0_macvtap: left promiscuous mode
[  296.807646][ T1105] veth1_vlan: left promiscuous mode
[  296.813903][ T1105] veth0_vlan: left promiscuous mode
[  296.820935][ T1105] veth1_macvtap: left promiscuous mode
[  296.827728][ T1105] veth0_macvtap: left promiscuous mode
[  296.833648][ T1105] veth1_vlan: left promiscuous mode
[  296.838965][ T1105] veth0_vlan: left promiscuous mode
[  297.416911][ T1105] team0 (unregistering): Port device team_slave_1 removed
[  297.454234][ T1105] team0 (unregistering): Port device team_slave_0 removed
[  298.058245][ T1105] team0 (unregistering): Port device team_slave_1 removed
[  298.100805][ T1105] team0 (unregistering): Port device team_slave_0 removed
[  298.709129][ T1105] team0 (unregistering): Port device team_slave_1 removed
[  298.750452][ T1105] team0 (unregistering): Port device team_slave_0 removed
[  299.150782][ T8217] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  299.190166][ T8217] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  299.257710][ T8217] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  299.290607][ T8217] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  299.389624][ T8186] 8021q: adding VLAN 0 to HW filter on device bond0
[  299.404365][ T8003] veth0_vlan: entered promiscuous mode
[  299.497152][ T6783] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  299.519856][ T8003] veth1_vlan: entered promiscuous mode
[  299.530905][ T6783] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  299.574923][ T8134] 8021q: adding VLAN 0 to HW filter on device batadv0
[  299.619944][ T8186] 8021q: adding VLAN 0 to HW filter on device team0
[  299.694032][ T6466] bridge0: port 1(bridge_slave_0) entered blocking state
[  299.701215][ T6466] bridge0: port 1(bridge_slave_0) entered forwarding state
[  299.720998][ T6466] bridge0: port 2(bridge_slave_1) entered blocking state
[  299.728253][ T6466] bridge0: port 2(bridge_slave_1) entered forwarding state
[  299.758285][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  299.783908][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  299.910150][ T8003] veth0_macvtap: entered promiscuous mode
[  299.935542][ T8003] veth1_macvtap: entered promiscuous mode
[  300.108165][ T8134] veth0_vlan: entered promiscuous mode
[  300.159451][ T8134] veth1_vlan: entered promiscuous mode
[  300.216183][ T8003] batman_adv: batadv0: Interface activated: batadv_slave_0
[  300.261849][ T8003] batman_adv: batadv0: Interface activated: batadv_slave_1
[  300.352751][ T6906] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  300.377390][ T6906] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  300.426715][ T6906] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  300.431262][ T8388] loop3: detected capacity change from 0 to 512
[  300.458431][ T6906] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  300.511334][ T8388] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  300.541514][ T8217] 8021q: adding VLAN 0 to HW filter on device bond0
[  300.566222][ T8388] ext4 filesystem being mounted at /1/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  300.625140][   T30] audit: type=1800 audit(1761341918.371:122): pid=8388 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.577" name="file1" dev="loop3" ino=15 res=0 errno=0
[  300.708275][ T8134] veth0_macvtap: entered promiscuous mode
[  300.714299][   T30] audit: type=1800 audit(1761341918.391:123): pid=8388 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.577" name="file2" dev="loop3" ino=16 res=0 errno=0
[  300.748362][ T7860] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  300.800558][ T8217] 8021q: adding VLAN 0 to HW filter on device team0
[  300.827617][ T8134] veth1_macvtap: entered promiscuous mode
[  300.899590][ T6906] bridge0: port 1(bridge_slave_0) entered blocking state
[  300.906885][ T6906] bridge0: port 1(bridge_slave_0) entered forwarding state
[  300.950831][ T6906] bridge0: port 2(bridge_slave_1) entered blocking state
[  300.958102][ T6906] bridge0: port 2(bridge_slave_1) entered forwarding state
[  301.027211][ T8186] 8021q: adding VLAN 0 to HW filter on device batadv0
[  301.038198][ T1105] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  301.061954][ T8134] batman_adv: batadv0: Interface activated: batadv_slave_0
[  301.070289][ T1105] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  301.107495][ T8134] batman_adv: batadv0: Interface activated: batadv_slave_1
[  301.182598][ T8314] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  301.199999][ T6906] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  301.221099][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  301.231471][ T6906] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  301.246357][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  301.327158][ T6906] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  301.349253][ T8314] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  301.375331][ T8314] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  301.388659][ T1105] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  301.397182][ T8314] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  301.427056][ T8411] loop5: detected capacity change from 0 to 128
[  301.435234][ T8314] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  301.458493][ T8411] ext4: Unknown parameter 'uid<00000000000000000000'
[  301.473196][ T8314] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  301.528473][ T8186] veth0_vlan: entered promiscuous mode
[  301.540655][ T8314] usb 4-1: config 0 descriptor??
[  301.632113][ T8186] veth1_vlan: entered promiscuous mode
[  301.727539][ T6466] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  301.774807][ T6466] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  301.860231][ T3487] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  301.883573][ T3487] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  301.938133][ T8186] veth0_macvtap: entered promiscuous mode
[  301.987138][ T8186] veth1_macvtap: entered promiscuous mode
[  302.087366][ T8314] plantronics 0003:047F:FFFF.0001: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  302.090366][ T8186] batman_adv: batadv0: Interface activated: batadv_slave_0
[  302.179060][  T984] usb 4-1: USB disconnect, device number 2
[  302.220179][ T8186] batman_adv: batadv0: Interface activated: batadv_slave_1
[  303.269614][ T8425] loop5: detected capacity change from 0 to 2048
[  304.003336][ T6466] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  304.066029][ T8428] fido_id[8428]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory
[  304.112137][   T30] audit: type=1326 audit(1761341921.851:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8424 comm="syz.5.580" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c77b8efc9 code=0x7ffc0000
[  304.124630][   T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  304.201309][   T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  304.211833][   T30] audit: type=1326 audit(1761341921.851:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8424 comm="syz.5.580" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c77b8efc9 code=0x7ffc0000
[  304.270177][ T8435] loop3: detected capacity change from 0 to 256
[  304.302623][   T30] audit: type=1326 audit(1761341921.851:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8424 comm="syz.5.580" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f0c77b8efc9 code=0x7ffc0000
[  304.328577][   T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  304.380341][ T8435] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  304.410046][ T8217] 8021q: adding VLAN 0 to HW filter on device batadv0
[  304.422650][   T30] audit: type=1326 audit(1761341921.891:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8424 comm="syz.5.580" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c77b8efc9 code=0x7ffc0000
[  304.684179][   T30] audit: type=1326 audit(1761341921.891:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8424 comm="syz.5.580" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c77b8efc9 code=0x7ffc0000
[  305.144732][   T30] audit: type=1326 audit(1761341921.891:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8424 comm="syz.5.580" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f0c77b8efc9 code=0x7ffc0000
[  305.198829][ T6906] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  305.208219][   T30] audit: type=1326 audit(1761341921.891:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8424 comm="syz.5.580" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c77b8efc9 code=0x7ffc0000
[  305.208276][   T30] audit: type=1326 audit(1761341921.891:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8424 comm="syz.5.580" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c77b8efc9 code=0x7ffc0000
[  305.463816][ T6906] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  305.649478][ T3487] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  305.666157][ T3487] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  305.724030][ T8457] netlink: 24 bytes leftover after parsing attributes in process `syz.5.586'.
[  307.915260][ T8217] veth0_vlan: entered promiscuous mode
[  307.954025][ T8217] veth1_vlan: entered promiscuous mode
[  307.984188][ T8478] loop3: detected capacity change from 0 to 764
[  308.473305][ T8217] veth0_macvtap: entered promiscuous mode
[  308.866879][ T8217] veth1_macvtap: entered promiscuous mode
[  309.020666][ T8217] batman_adv: batadv0: Interface activated: batadv_slave_0
[  309.066496][ T8217] batman_adv: batadv0: Interface activated: batadv_slave_1
[  309.082688][ T6906] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  310.074980][ T6906] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  310.198374][ T6906] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  310.485661][ T6906] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  310.881346][ T8512] netlink: 24 bytes leftover after parsing attributes in process `syz.3.596'.
[  311.094721][ T8517] loop0: detected capacity change from 0 to 2048
[  311.104095][ T1105] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  311.129324][ T1105] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  311.152843][ T8517] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  311.300208][ T1105] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  311.358441][ T1105] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  312.250145][ T5984] kernel write not supported for file bpf-prog (pid: 5984 comm: kworker/0:8)
[  312.349041][ T8535] No control pipe specified
[  312.687539][ T8546] loop6: detected capacity change from 0 to 128
[  312.736152][ T8546] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=256, location=256
[  312.749839][ T8545] loop1: detected capacity change from 0 to 128
[  312.762824][ T8546] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  312.890756][ T8551] loop3: detected capacity change from 0 to 1024
[  312.898225][ T8551] EXT4-fs: inline encryption not supported
[  312.904393][ T8551] EXT4-fs: Ignoring removed i_version option
[  313.416311][ T8545] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  313.416330][ T8551] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  313.477077][ T8545] ext4 filesystem being mounted at /4/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  313.737090][ T7860] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  314.561737][ T8571] Bluetooth: MGMT ver 1.23
[  314.567782][ T8571] Bluetooth: hci0: load_link_keys: too big key_count value 8192
[  315.286265][ T8134] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  315.311522][ T8576] loop5: detected capacity change from 0 to 2048
[  315.394479][ T8576] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  316.445634][ T8588] loop1: detected capacity change from 0 to 512
[  316.681089][ T8588] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  316.733088][ T8588] ext4 filesystem being mounted at /6/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  317.141672][ T8602] No control pipe specified
[  317.230961][ T8134] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  317.374951][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  317.381413][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  319.325890][ T8643] program syz.0.623 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  319.389050][ T8648] loop1: detected capacity change from 0 to 128
[  319.467752][ T8648] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  319.638619][ T8648] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  320.965235][ T8667] loop6: detected capacity change from 0 to 512
[  321.089068][ T8672] loop0: detected capacity change from 0 to 1024
[  321.233215][ T8667] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  321.266697][ T8672] EXT4-fs (loop0): stripe (4) is not aligned with cluster size (4096), stripe is disabled
[  321.360886][ T8672] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #3: block 2: comm syz.0.633: lblock 2 mapped to illegal pblock 2 (length 1)
[  321.389940][ T8683] loop1: detected capacity change from 0 to 256
[  321.400376][ T8683] exfat: Invalid uid '0x00000000ffffffff'
[  321.403152][ T8672] __quota_error: 15 callbacks suppressed
[  321.403172][ T8672] Quota error (device loop0): qtree_write_dquot: dquota write failed
[  321.492811][ T8667] ext4 filesystem being mounted at /5/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  321.503401][ T8672] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #3: block 48: comm syz.0.633: lblock 0 mapped to illegal pblock 48 (length 1)
[  321.586716][ T8672] Quota error (device loop0): v2_write_file_info: Can't write info structure
[  321.797733][ T8672] EXT4-fs error (device loop0): ext4_acquire_dquot:6945: comm syz.0.633: Failed to acquire dquot type 0
[  322.612719][   T30] audit: type=1800 audit(1761341940.251:147): pid=8692 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.629" name="file1" dev="loop6" ino=15 res=0 errno=0
[  322.655021][ T8672] EXT4-fs error (device loop0) in ext4_reserve_inode_write:6313: Corrupt filesystem
[  322.675390][ T8217] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  322.722563][ T8672] EXT4-fs error (device loop0): ext4_evict_inode:254: inode #11: comm syz.0.633: mark_inode_dirty error
[  322.767007][ T8672] EXT4-fs warning (device loop0): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  322.777821][ T8672] EXT4-fs (loop0): 1 orphan inode deleted
[  322.802782][ T3487] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:7: lblock 1 mapped to illegal pblock 1 (length 1)
[  322.829441][ T8672] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  322.863252][ T3487] Quota error (device loop0): remove_tree: Can't read quota data block 1
[  322.892590][ T3487] EXT4-fs error (device loop0): ext4_release_dquot:6981: comm kworker/u8:7: Failed to release dquot type 0
[  324.691096][ T8712] loop6: detected capacity change from 0 to 512
[  324.699236][ T8712] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[  324.744694][ T8712] EXT4-fs error (device loop6): ext4_orphan_get:1418: comm syz.6.638: bad orphan inode 15
[  324.755251][ T8712] ext4_test_bit(bit=14, block=18) = 1
[  324.760672][ T8712] is_bad_inode(inode)=0
[  324.764880][ T8712] NEXT_ORPHAN(inode)=1023
[  324.769212][ T8712] max_ino=32
[  324.772406][ T8712] i_nlink=0
[  324.776833][ T8712] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0009-000000000000 r/w without journal. Quota mode: none.
[  324.789210][ T8712] ext2 filesystem being mounted at /6/éq‰Y’3aK supports timestamps until 2038-01-19 (0x7fffffff)
[  324.980151][ T8217] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0009-000000000000.
[  325.234812][ T8186] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  325.248957][ T8186] EXT4-fs error (device loop0): __ext4_get_inode_loc:4832: comm syz-executor: Invalid inode table block 1 in block_group 0
[  325.307571][ T8186] EXT4-fs error (device loop0) in ext4_reserve_inode_write:6313: Corrupt filesystem
[  325.350664][ T8725] loop1: detected capacity change from 0 to 128
[  325.357305][ T8186] EXT4-fs error (device loop0): ext4_quota_off:7229: inode #3: comm syz-executor: mark_inode_dirty error
[  326.422033][ T8732] loop0: detected capacity change from 0 to 1024
[  326.643648][ T8728] hfsplus: bad catalog entry type
[  327.321788][ T5943] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  327.783624][ T5943] hid-generic 0000:0000:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  328.168153][ T5964] hfsplus: b-tree write err: -5, ino 4
[  328.439354][ T8761] loop3: detected capacity change from 0 to 1024
[  328.602148][ T8758] loop0: detected capacity change from 0 to 512
[  328.613236][ T8758] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem
[  328.627240][ T8761] EXT4-fs (loop3): stripe (4) is not aligned with cluster size (4096), stripe is disabled
[  328.638918][ T8758] EXT4-fs error (device loop0): ext4_orphan_get:1418: comm syz.0.651: bad orphan inode 15
[  328.649940][ T8758] ext4_test_bit(bit=14, block=18) = 1
[  328.655486][ T8758] is_bad_inode(inode)=0
[  328.659641][ T8758] NEXT_ORPHAN(inode)=1023
[  328.664136][ T8758] max_ino=32
[  328.667354][ T8758] i_nlink=0
[  328.671762][ T8758] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0009-000000000000 r/w without journal. Quota mode: none.
[  328.689300][ T8758] ext2 filesystem being mounted at /12/éq‰Y’3aK supports timestamps until 2038-01-19 (0x7fffffff)
[  328.915813][ T8186] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0009-000000000000.
[  328.952653][ T8761] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 2: comm syz.3.653: lblock 2 mapped to illegal pblock 2 (length 1)
[  329.029747][ T8761] Quota error (device loop3): qtree_write_dquot: dquota write failed
[  329.081134][ T8761] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 48: comm syz.3.653: lblock 0 mapped to illegal pblock 48 (length 1)
[  329.151598][ T8761] Quota error (device loop3): v2_write_file_info: Can't write info structure
[  329.194803][ T8761] EXT4-fs error (device loop3): ext4_acquire_dquot:6945: comm syz.3.653: Failed to acquire dquot type 0
[  329.246230][ T8761] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6313: Corrupt filesystem
[  329.336924][ T8761] EXT4-fs error (device loop3): ext4_evict_inode:254: inode #11: comm syz.3.653: mark_inode_dirty error
[  329.443345][ T8761] EXT4-fs warning (device loop3): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  329.511022][ T8761] EXT4-fs (loop3): 1 orphan inode deleted
[  329.525571][ T5964] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:8: lblock 1 mapped to illegal pblock 1 (length 1)
[  329.533329][ T8761] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  329.580869][ T5964] Quota error (device loop3): remove_tree: Can't read quota data block 1
[  329.600520][ T8781] netlink: 20 bytes leftover after parsing attributes in process `syz.5.655'.
[  329.616431][ T5964] EXT4-fs error (device loop3): ext4_release_dquot:6981: comm kworker/u8:8: Failed to release dquot type 0
[  329.898371][   T30] audit: type=1326 audit(1761341947.641:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8786 comm="syz.1.656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47d058efc9 code=0x7ffc0000
[  330.155910][   T30] audit: type=1326 audit(1761341947.641:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8786 comm="syz.1.656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=430 compat=0 ip=0x7f47d058efc9 code=0x7ffc0000
[  330.745029][   T30] audit: type=1326 audit(1761341947.641:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8786 comm="syz.1.656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47d058efc9 code=0x7ffc0000
[  330.767346][   T30] audit: type=1326 audit(1761341947.641:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8786 comm="syz.1.656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f47d058efc9 code=0x7ffc0000
[  330.957584][   T30] audit: type=1326 audit(1761341947.641:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8786 comm="syz.1.656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47d058efc9 code=0x7ffc0000
[  331.078622][   T30] audit: type=1326 audit(1761341947.671:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8786 comm="syz.1.656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f47d058efc9 code=0x7ffc0000
[  331.170142][   T30] audit: type=1326 audit(1761341947.671:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8786 comm="syz.1.656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47d058efc9 code=0x7ffc0000
[  331.273048][ T8803] netlink: 4 bytes leftover after parsing attributes in process `syz.5.659'.
[  331.874664][ T7860] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  331.915755][ T7860] EXT4-fs error (device loop3): __ext4_get_inode_loc:4832: comm syz-executor: Invalid inode table block 1 in block_group 0
[  331.964423][ T7860] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6313: Corrupt filesystem
[  332.492585][ T7860] EXT4-fs error (device loop3): ext4_quota_off:7229: inode #3: comm syz-executor: mark_inode_dirty error
[  333.215669][ T8825] loop3: detected capacity change from 0 to 4096
[  333.261316][ T8825] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  334.099074][ T7860] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  334.248792][ T8836] loop6: detected capacity change from 0 to 128
[  334.297638][ T8836] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=256, location=256
[  334.313259][ T8836] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  334.607431][ T8843] loop5: detected capacity change from 0 to 1024
[  334.980293][   T30] kauditd_printk_skb: 22 callbacks suppressed
[  334.980314][   T30] audit: type=1804 audit(1761341952.701:177): pid=8843 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.671" name="/newroot/20/bus/file0" dev="loop5" ino=27 res=1 errno=0
[  335.134268][ T6229] hfsplus: b-tree write err: -5, ino 4
[  335.164752][ T8852] loop3: detected capacity change from 0 to 512
[  335.180897][ T8854] loop1: detected capacity change from 0 to 1024
[  335.256429][ T8854] EXT4-fs (loop1): stripe (4) is not aligned with cluster size (4096), stripe is disabled
[  335.329195][ T8852] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  335.403783][ T8852] ext4 filesystem being mounted at /26/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  335.448507][ T8860] loop5: detected capacity change from 0 to 2048
[  335.455105][ T8854] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 2: comm syz.1.675: lblock 2 mapped to illegal pblock 2 (length 1)
[  335.502896][   T30] audit: type=1800 audit(1761341953.231:178): pid=8852 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.673" name="file1" dev="loop3" ino=15 res=0 errno=0
[  335.565754][ T8860] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  335.566495][ T8854] Quota error (device loop1): qtree_write_dquot: dquota write failed
[  335.609814][   T30] audit: type=1800 audit(1761341953.281:179): pid=8852 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.673" name="file2" dev="loop3" ino=16 res=0 errno=0
[  335.633187][ T8854] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 48: comm syz.1.675: lblock 0 mapped to illegal pblock 48 (length 1)
[  335.633323][ T8860] ext4 filesystem being mounted at /21/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  335.647783][ T8854] Quota error (device loop1): v2_write_file_info: Can't write info structure
[  335.667458][ T8854] EXT4-fs error (device loop1): ext4_acquire_dquot:6945: comm syz.1.675: Failed to acquire dquot type 0
[  335.679123][ T8854] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6313: Corrupt filesystem
[  335.703560][ T8854] EXT4-fs error (device loop1): ext4_evict_inode:254: inode #11: comm syz.1.675: mark_inode_dirty error
[  335.734750][ T8854] EXT4-fs warning (device loop1): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  335.763402][ T8854] EXT4-fs (loop1): 1 orphan inode deleted
[  335.770991][ T8854] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  335.794552][ T6466] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:10: lblock 1 mapped to illegal pblock 1 (length 1)
[  335.829522][ T6466] Quota error (device loop1): remove_tree: Can't read quota data block 1
[  335.858477][ T6466] EXT4-fs error (device loop1): ext4_release_dquot:6981: comm kworker/u8:10: Failed to release dquot type 0
[  335.894178][ T7860] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  335.984375][ T8860] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.676: bg 0: block 345: padding at end of block bitmap is not set
[  336.049835][ T8860] EXT4-fs (loop5): Remounting filesystem read-only
[  336.231239][ T8003] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  337.134998][ T8891] loop5: detected capacity change from 0 to 512
[  337.226987][ T8891] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  337.250835][ T8894] syz_tun: entered allmulticast mode
[  337.316086][ T8891] ext4 filesystem being mounted at /23/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  337.325772][ T8134] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  337.366037][ T8888] syz_tun: left allmulticast mode
[  337.376680][ T8134] EXT4-fs error (device loop1): __ext4_get_inode_loc:4832: comm syz-executor: Invalid inode table block 1 in block_group 0
[  337.431250][ T8891] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  337.463384][ T8134] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6313: Corrupt filesystem
[  337.504310][ T8134] EXT4-fs error (device loop1): ext4_quota_off:7229: inode #3: comm syz-executor: mark_inode_dirty error
[  337.560328][ T8891] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  339.626947][ T8945] syz_tun: entered allmulticast mode
[  339.743611][ T8942] syz_tun: left allmulticast mode
[  340.005577][ T8950] loop0: detected capacity change from 0 to 512
[  340.196093][ T8950] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  340.219491][ T8950] ext4 filesystem being mounted at /18/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  341.528309][ T8186] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  342.474280][ T8978] loop1: detected capacity change from 0 to 128
[  342.520907][ T8978] FAT-fs (loop1): bogus logical sector size 767
[  342.527378][ T8978] FAT-fs (loop1): Can't find a valid FAT filesystem
[  343.086642][ T5836] Bluetooth: hci4: unexpected event for opcode 0x0804
[  343.838297][ T8994] netlink: 12 bytes leftover after parsing attributes in process `syz.0.707'.
[  345.883756][ T9010] loop3: detected capacity change from 0 to 1024
[  345.915151][ T9011] loop6: detected capacity change from 0 to 128
[  345.934585][ T9011] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=256, location=256
[  345.967807][ T9011] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  345.987356][ T9010] hfsplus: bad catalog entry type
[  346.884194][ T1105] hfsplus: b-tree write err: -5, ino 4
[  347.126355][ T9019] loop6: detected capacity change from 0 to 2048
[  347.350670][ T9019] UDF-fs: warning (device loop6): udf_load_vrs: No anchor found
[  347.434870][ T9019] UDF-fs: Scanning with blocksize 512 failed
[  347.769546][ T9019] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  349.102206][ T9050] loop1: detected capacity change from 0 to 1024
[  349.143747][ T9050] EXT4-fs: Ignoring removed nobh option
[  349.149377][ T9050] EXT4-fs: Ignoring removed bh option
[  349.219415][ T9050] EXT4-fs (loop1): stripe (8) is not aligned with cluster size (16), stripe is disabled
[  349.288708][ T9050] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  349.450601][ T9050] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4193: comm syz.1.721: Allocating blocks 385-513 which overlap fs metadata
[  349.526791][ T9049] EXT4-fs (loop1): pa ffff888032137000: logic 16, phys. 129, len 24
[  349.535214][ T9049] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 8
[  350.887404][ T8134] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  351.325869][ T9075] loop1: detected capacity change from 0 to 128
[  351.335161][ T9075] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  351.347105][ T9075] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  352.209742][ T9086] loop1: detected capacity change from 0 to 1024
[  352.893077][   T52] Bluetooth: hci4: unknown advertising packet type: 0x17
[  353.298953][ T9103] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[  353.699140][ T9108] loop6: detected capacity change from 0 to 128
[  354.363054][ T9127] loop3: detected capacity change from 0 to 512
[  354.393591][ T9127] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  354.825498][ T9127] EXT4-fs (loop3): 1 truncate cleaned up
[  354.843786][ T9127] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  356.899336][  T984] usb 7-1: new full-speed USB device number 3 using dummy_hcd
[  357.067436][  T984] usb 7-1: config 0 has an invalid interface number: 239 but max is 0
[  357.112741][  T984] usb 7-1: config 0 has no interface number 0
[  357.151511][  T984] usb 7-1: config 0 interface 239 altsetting 0 endpoint 0x1 has invalid maxpacket 991, setting to 64
[  357.198500][  T984] usb 7-1: config 0 interface 239 altsetting 0 endpoint 0x82 has invalid maxpacket 511, setting to 64
[  357.233592][  T984] usb 7-1: New USB device found, idVendor=6189, idProduct=182d, bcdDevice= 1.73
[  357.248180][  T984] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  357.268124][  T984] usb 7-1: Product: syz
[  357.278249][  T984] usb 7-1: Manufacturer: syz
[  357.294291][  T984] usb 7-1: SerialNumber: syz
[  357.343701][  T984] usb 7-1: config 0 descriptor??
[  357.438286][ T7860] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  357.754750][  T984] asix 7-1:0.239 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[  357.796233][  T984] asix 7-1:0.239: probe with driver asix failed with error -71
[  357.848691][  T984] usb 7-1: USB disconnect, device number 3
[  357.945190][ T9191] loop0: detected capacity change from 0 to 512
[  358.224715][ T9191] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  358.354855][ T9195] loop1: detected capacity change from 0 to 8
[  359.161699][ T9200] loop6: detected capacity change from 0 to 2048
[  359.201517][ T9204] loop1: detected capacity change from 0 to 1024
[  359.232861][ T9200] UDF-fs: error (device loop6): udf_process_sequence: Primary Volume Descriptor not found!
[  359.297018][ T9200] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  359.412077][ T9207] loop0: detected capacity change from 0 to 512
[  359.617039][ T9207] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.758: invalid indirect mapped block 4294967295 (level 1)
[  359.822540][ T9219] netlink: 8 bytes leftover after parsing attributes in process `syz.3.759'.
[  359.855760][ T9207] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.758: invalid indirect mapped block 4294967295 (level 1)
[  360.303602][ T9207] EXT4-fs (loop0): 2 truncates cleaned up
[  360.353467][ T9207] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  360.643584][ T5984] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  360.707280][ T5984] hid-generic 0000:0000:0000.0003: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  360.784111][ T8186] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  361.211471][ T9246] loop0: detected capacity change from 0 to 128
[  362.428968][ T9260] loop0: detected capacity change from 0 to 512
[  362.913198][ T9260] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  363.133120][ T9260] ext4 filesystem being mounted at /33/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  363.414754][   T30] audit: type=1800 audit(1761341981.161:180): pid=9260 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.772" name="file1" dev="loop0" ino=15 res=0 errno=0
[  363.502833][   T30] audit: type=1800 audit(1761341981.181:181): pid=9260 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.772" name="file2" dev="loop0" ino=16 res=0 errno=0
[  363.549919][ T8186] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  364.373595][ T5882] udevd[5882]: inotify_add_watch(7, /dev/loop0, 10) failed: No such file or directory
[  364.421703][ T5882] udevd[5882]: inotify_add_watch(7, /dev/loop0, 10) failed: No such file or directory
[  367.472873][ T5837] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  367.499660][ T5837] hid-generic 0000:0000:0000.0004: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  368.140676][   T30] audit: type=1326 audit(1761341985.881:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9322 comm="syz.3.791" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0b58d8efc9 code=0x7fc00000
[  368.642177][ T9342] process 'syz.3.794' launched './file1' with NULL argv: empty string added
[  371.596337][ T9360] loop1: detected capacity change from 0 to 1024
[  371.702837][ T9360] EXT4-fs (loop1): stripe (4) is not aligned with cluster size (4096), stripe is disabled
[  371.774420][ T9360] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 2: comm syz.1.799: lblock 2 mapped to illegal pblock 2 (length 1)
[  371.878889][ T9360] Quota error (device loop1): qtree_write_dquot: dquota write failed
[  372.099635][ T9360] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 48: comm syz.1.799: lblock 0 mapped to illegal pblock 48 (length 1)
[  372.504668][ T9360] Quota error (device loop1): v2_write_file_info: Can't write info structure
[  372.554014][ T9360] EXT4-fs error (device loop1): ext4_acquire_dquot:6945: comm syz.1.799: Failed to acquire dquot type 0
[  372.595785][ T9360] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6313: Corrupt filesystem
[  372.620381][ T9360] EXT4-fs error (device loop1): ext4_evict_inode:254: inode #11: comm syz.1.799: mark_inode_dirty error
[  372.703911][ T9360] EXT4-fs warning (device loop1): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  372.723137][ T9360] EXT4-fs (loop1): 1 orphan inode deleted
[  372.740105][ T9360] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  372.765132][ T6942] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:17: lblock 1 mapped to illegal pblock 1 (length 1)
[  372.829868][ T6942] Quota error (device loop1): remove_tree: Can't read quota data block 1
[  372.860092][ T6942] EXT4-fs error (device loop1): ext4_release_dquot:6981: comm kworker/u8:17: Failed to release dquot type 0
[  373.843848][ T8134] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  373.902669][ T8134] EXT4-fs error (device loop1): __ext4_get_inode_loc:4832: comm syz-executor: Invalid inode table block 1 in block_group 0
[  373.924047][ T8134] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6313: Corrupt filesystem
[  373.949958][ T8134] EXT4-fs error (device loop1): ext4_quota_off:7229: inode #3: comm syz-executor: mark_inode_dirty error
[  375.560625][ T9437] Bluetooth: hci0: load_link_keys: too big key_count value 8192
[  378.766527][ T9479] loop1: detected capacity change from 0 to 8
[  378.840510][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  378.866505][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  379.541410][ T9490] binder: BINDER_SET_CONTEXT_MGR already set
[  379.553788][ T9490] binder: 9484:9490 ioctl 4018620d 200000004a80 returned -16
[  379.839698][ T9498] 9pnet_virtio: no channels available for device syz
[  380.780905][ T9507] fuse: root generation should be zero
[  382.476057][ T9540] loop1: detected capacity change from 0 to 8
[  384.791107][ T9580] netlink: 48 bytes leftover after parsing attributes in process `syz.1.853'.
[  386.876381][ T5846] Bluetooth: hci2: command 0x0406 tx timeout
[  386.884023][   T52] Bluetooth: hci1: link tx timeout
[  386.889588][   T52] Bluetooth: hci1: killing stalled connection 11:aa:aa:aa:aa:aa
[  387.353090][ T9594] EXT4-fs (nbd0): unable to read superblock
[  387.860252][   T30] audit: type=1326 audit(1761342005.181:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9585 comm="syz.0.855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f81d318efc9 code=0x7ffc0000
[  387.937888][ T9595] workqueue: Failed to create a rescuer kthread for wq "xfs-reclaim/nullb0": -EINTR
[  388.005576][ T5836] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[  388.043044][ T5836] Bluetooth: hci3: Injecting HCI hardware error event
[  388.091546][ T5836] Bluetooth: hci3: hardware error 0x00
[  388.560886][   T30] audit: type=1326 audit(1761342005.181:184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9585 comm="syz.0.855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f81d318efc9 code=0x7ffc0000
[  388.674612][   T30] audit: type=1326 audit(1761342005.181:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9585 comm="syz.0.855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f81d318efc9 code=0x7ffc0000
[  388.949241][ T9612] loop1: detected capacity change from 0 to 8
[  389.004410][   T52] Bluetooth: hci1: command 0x0406 tx timeout
[  390.803174][ T9618] nbd0: detected capacity change from 0 to 8589934655
[  391.022713][ T5836] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  391.130957][ T5836] Bluetooth: hci2: unexpected event for opcode 0x0c26
[  391.167296][ T5846] block nbd0: Receive control failed (result -104)
[  392.374627][ T9654] syz_tun: entered allmulticast mode
[  396.219418][   T30] audit: type=1326 audit(1761342013.951:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9699 comm="syz.6.877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0f278efc9 code=0x7ffc0000
[  397.233734][   T30] audit: type=1326 audit(1761342013.951:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9699 comm="syz.6.877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0f278efc9 code=0x7ffc0000
[  397.327367][   T30] audit: type=1326 audit(1761342013.961:188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9699 comm="syz.6.877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=430 compat=0 ip=0x7fc0f278efc9 code=0x7ffc0000
[  397.412605][   T30] audit: type=1326 audit(1761342013.961:189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9699 comm="syz.6.877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0f278efc9 code=0x7ffc0000
[  397.481199][   T30] audit: type=1326 audit(1761342013.961:190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9699 comm="syz.6.877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0f278efc9 code=0x7ffc0000
[  397.530125][   T30] audit: type=1326 audit(1761342013.961:191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9699 comm="syz.6.877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=431 compat=0 ip=0x7fc0f278efc9 code=0x7ffc0000
[  397.774017][   T30] audit: type=1326 audit(1761342013.981:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9699 comm="syz.6.877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0f278efc9 code=0x7ffc0000
[  397.796999][   T30] audit: type=1326 audit(1761342014.001:193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9699 comm="syz.6.877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc0f278efc9 code=0x7ffc0000
[  397.820278][   T30] audit: type=1326 audit(1761342014.001:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9699 comm="syz.6.877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0f278efc9 code=0x7ffc0000
[  397.862626][   T30] audit: type=1326 audit(1761342014.001:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9699 comm="syz.6.877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7fc0f278efc9 code=0x7ffc0000
[  398.952637][ T9732] binder: 9726:9732 ioctl 0 200000000040 returned -22
[  399.883836][ T9740] netlink: 12 bytes leftover after parsing attributes in process `syz.5.886'.
[  400.142357][ T9751] fuse: Bad value for 'fd'
[  400.343699][ T5904] IPVS: starting estimator thread 0...
[  400.359940][ T9759] netlink: 48 bytes leftover after parsing attributes in process `syz.5.890'.
[  400.462830][ T9758] IPVS: using max 26 ests per chain, 62400 per kthread
[  404.922878][ T5904] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  405.492678][ T5904] usb 2-1: Using ep0 maxpacket: 32
[  405.506376][ T5904] usb 2-1: config 0 has an invalid interface number: 59 but max is 0
[  405.514937][ T5904] usb 2-1: config 0 has no interface number 0
[  405.525280][ T5904] usb 2-1: config 0 interface 59 has no altsetting 0
[  405.560195][ T5904] usb 2-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  405.578380][ T5904] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  405.592920][ T5904] usb 2-1: Product: syz
[  405.597377][ T5904] usb 2-1: Manufacturer: syz
[  405.602847][ T5904] usb 2-1: SerialNumber: syz
[  405.618217][ T5904] usb 2-1: config 0 descriptor??
[  405.639533][ T5904] smsc75xx v1.0.0
[  405.644338][ T5904] smsc75xx 2-1:0.59 (unnamed net_device) (uninitialized): usbnet_get_endpoints failed: -22
[  405.710374][ T5904] smsc75xx 2-1:0.59: probe with driver smsc75xx failed with error -22
[  407.376709][ T9814] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  407.582663][ T9814] Bluetooth: hci2: Error when powering off device on rfkill (-4)
[  407.708034][ T9814] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  407.737436][ T9814] Bluetooth: hci4: Error when powering off device on rfkill (-4)
[  408.945291][ T9814] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  408.972309][ T9814] Bluetooth: hci1: Error when powering off device on rfkill (-4)
[  409.297653][ T9858] netlink: 40 bytes leftover after parsing attributes in process `syz.3.911'.
[  409.356938][ T5922] usb 2-1: USB disconnect, device number 4
[  409.520066][   T30] kauditd_printk_skb: 24 callbacks suppressed
[  409.520088][   T30] audit: type=1326 audit(1761342027.241:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9859 comm="syz.5.900" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c77b8efc9 code=0x7ffc0000
[  409.926195][   T30] audit: type=1326 audit(1761342027.241:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9859 comm="syz.5.900" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c77b8efc9 code=0x7ffc0000
[  409.998941][   T30] audit: type=1326 audit(1761342027.241:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9859 comm="syz.5.900" exe="/root/syz-executor" sig=0 arch=c000003e syscall=314 compat=0 ip=0x7f0c77b8efc9 code=0x7ffc0000
[  410.375590][   T30] audit: type=1326 audit(1761342027.241:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9859 comm="syz.5.900" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c77b8efc9 code=0x7ffc0000
[  410.572647][   T30] audit: type=1326 audit(1761342027.241:224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9859 comm="syz.5.900" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f0c77b8d810 code=0x7ffc0000
[  410.683457][   T30] audit: type=1326 audit(1761342027.241:225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9859 comm="syz.5.900" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c77b8efc9 code=0x7ffc0000
[  411.572569][   T30] audit: type=1326 audit(1761342027.241:226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9859 comm="syz.5.900" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c77b8efc9 code=0x7ffc0000
[  411.595211][   T30] audit: type=1326 audit(1761342027.241:227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9859 comm="syz.5.900" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f0c77b8d810 code=0x7ffc0000
[  411.618972][   T30] audit: type=1326 audit(1761342027.241:228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9859 comm="syz.5.900" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c77b8efc9 code=0x7ffc0000
[  411.641781][   T30] audit: type=1326 audit(1761342027.241:229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9859 comm="syz.5.900" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f0c77b8efc9 code=0x7ffc0000
[  412.035721][ T9892] pim6reg: entered allmulticast mode
[  412.582695][ T9903] 9pnet_virtio: no channels available for device syz
[  412.814057][ T9914] lo: entered allmulticast mode
[  412.924745][ T9911] lo: left allmulticast mode
[  414.517387][ T9954] overlayfs: failed to clone lowerpath
[  414.583333][ T9951] syz_tun: entered allmulticast mode
[  414.599027][ T9948] syz_tun: left allmulticast mode
[  415.017416][ T5837] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  415.560685][ T5837] usb 7-1: Using ep0 maxpacket: 8
[  415.570346][ T5837] usb 7-1: config index 0 descriptor too short (expected 301, got 45)
[  415.594218][ T5837] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  415.617261][ T5837] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  415.635877][ T5837] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  415.659735][ T5837] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  415.790198][ T5837] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  415.802240][ T5837] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  416.022154][ T5837] usb 7-1: usb_control_msg returned -32
[  416.038361][ T5837] usbtmc 7-1:16.0: can't read capabilities
[  416.302199][ T9989] bridge0: port 2(bridge_slave_1) entered disabled state
[  416.311252][ T9989] bridge0: port 1(bridge_slave_0) entered disabled state
[  416.458093][T10012] netlink: 'syz.1.950': attribute type 10 has an invalid length.
[  416.563117][ T9989] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  416.582054][ T9989] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  416.590453][T10015] usbtmc 7-1:16.0: send_request_dev_dep_msg_in returned -90
[  416.660781][T10007] usbtmc 7-1:16.0: usb_control_msg returned -32
[  417.025148][T10000] netlink: 'syz.5.946': attribute type 14 has an invalid length.
[  417.238514][T10012] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  417.257323][ T6942] netdevsim netdevsim5 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  417.365410][ T6783] netdevsim netdevsim5 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  417.400306][ T6783] netdevsim netdevsim5 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  417.442671][ T6783] netdevsim netdevsim5 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  417.987087][ T5904] usb 7-1: USB disconnect, device number 4
[  418.345131][T10060] loop1: detected capacity change from 0 to 1024
[  418.415062][T10063] tipc: Started in network mode
[  418.420265][T10063] tipc: Node identity 4, cluster identity 4711
[  418.453794][T10063] tipc: Node number set to 4
[  418.855593][   T30] kauditd_printk_skb: 33 callbacks suppressed
[  418.855638][   T30] audit: type=1800 audit(1761342036.591:263): pid=10069 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.966" name="bus" dev="loop1" ino=0 res=0 errno=0
[  419.494207][T10076] netlink: 4 bytes leftover after parsing attributes in process `syz.5.969'.
[  419.533884][T10076] overlayfs: failed to clone upperpath
[  419.862158][T10089] pim6reg: entered allmulticast mode
[  421.055336][   T56] block nbd0: Possible stuck request ffff8880253de000: control (read@0,1024B). Runtime 30 seconds
[  421.083693][   T56] block nbd0: Possible stuck request ffff8880253de1c0: control (read@1024,1024B). Runtime 30 seconds
[  421.099892][   T56] block nbd0: Possible stuck request ffff8880253de380: control (read@2048,1024B). Runtime 30 seconds
[  421.110945][   T56] block nbd0: Possible stuck request ffff8880253de540: control (read@3072,1024B). Runtime 30 seconds
[  422.839260][T10141] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6)
[  422.846022][T10141] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  422.855171][T10141] vhci_hcd vhci_hcd.0: Device attached
[  423.097009][T10142] vhci_hcd: connection closed
[  423.099456][ T6907] vhci_hcd vhci_hcd.1: stop threads
[  423.110914][ T6907] vhci_hcd vhci_hcd.1: release socket
[  423.227693][ T6907] vhci_hcd vhci_hcd.1: disconnect device
[  424.308695][    T9] usb usb36-port1: attempt power cycle
[  424.380344][T10153] 9pnet: Could not find request transport: virtio–ÍD7e.‚Nô3n!
[  425.008430][    T9] usb usb36-port1: unable to enumerate USB device
[  427.246015][T10227] netlink: 296 bytes leftover after parsing attributes in process `syz.5.1005'.
[  427.804295][T10239] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1007'.
[  427.911893][T10239] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1007'.
[  428.759583][T10251] loop1: detected capacity change from 0 to 512
[  428.997858][T10251] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[  429.080883][T10251] EXT4-fs error (device loop1): ext4_orphan_get:1418: comm syz.1.1003: bad orphan inode 15
[  429.114055][T10251] ext4_test_bit(bit=14, block=18) = 1
[  429.122974][T10251] is_bad_inode(inode)=0
[  429.162661][T10251] NEXT_ORPHAN(inode)=1023
[  429.213994][T10251] max_ino=32
[  429.217262][T10251] i_nlink=0
[  429.222306][T10251] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0009-000000000000 r/w without journal. Quota mode: none.
[  429.391507][T10251] ext2 filesystem being mounted at /97/éq‰Y’3aK supports timestamps until 2038-01-19 (0x7fffffff)
[  429.503079][T10257] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 449: padding at end of block bitmap is not set
[  430.179934][ T8134] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0009-000000000000.
[  433.344724][   T30] audit: type=1326 audit(1761342051.091:264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10319 comm="syz.3.1030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0b58d8efc9 code=0x7ffc0000
[  434.208092][   T30] audit: type=1326 audit(1761342051.091:265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10319 comm="syz.3.1030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0b58d8efc9 code=0x7ffc0000
[  435.240969][   T30] audit: type=1326 audit(1761342051.091:266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10319 comm="syz.3.1030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=430 compat=0 ip=0x7f0b58d8efc9 code=0x7ffc0000
[  435.292628][   T30] audit: type=1326 audit(1761342051.091:267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10319 comm="syz.3.1030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0b58d8efc9 code=0x7ffc0000
[  435.322581][   T30] audit: type=1326 audit(1761342051.091:268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10319 comm="syz.3.1030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=431 compat=0 ip=0x7f0b58d8efc9 code=0x7ffc0000
[  435.347633][   T30] audit: type=1326 audit(1761342051.091:269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10319 comm="syz.3.1030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0b58d8efc9 code=0x7ffc0000
[  435.370056][   T30] audit: type=1326 audit(1761342051.091:270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10319 comm="syz.3.1030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0b58d8efc9 code=0x7ffc0000
[  435.402578][   T30] audit: type=1326 audit(1761342051.101:271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10319 comm="syz.3.1030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0b58d8efc9 code=0x7ffc0000
[  435.433200][T10321] 9pnet_fd: Insufficient options for proto=fd
[  435.499167][   T30] audit: type=1326 audit(1761342051.101:272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10319 comm="syz.3.1030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f0b58d8efc9 code=0x7ffc0000
[  435.589466][   T30] audit: type=1326 audit(1761342051.101:273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10319 comm="syz.3.1030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0b58d8efc9 code=0x7ffc0000
[  436.743549][T10348] kvm: pic: non byte read
[  436.783689][T10348] kvm: pic: non byte read
[  440.272058][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  440.281151][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  440.397231][T10415] loop1: detected capacity change from 0 to 512
[  440.857791][T10415] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[  440.902210][T10415] EXT4-fs error (device loop1): ext4_orphan_get:1418: comm syz.1.1048: bad orphan inode 15
[  440.972664][T10415] ext4_test_bit(bit=14, block=18) = 1
[  441.002684][T10415] is_bad_inode(inode)=0
[  441.006906][T10415] NEXT_ORPHAN(inode)=1023
[  441.011273][T10415] max_ino=32
[  441.056820][T10415] i_nlink=0
[  441.075937][T10415] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0009-000000000000 r/w without journal. Quota mode: none.
[  441.183146][T10415] ext2 filesystem being mounted at /107/éq‰Y’3aK supports timestamps until 2038-01-19 (0x7fffffff)
[  441.319860][T10428] Bluetooth: hci0: load_link_keys: too big key_count value 8192
[  442.200151][   T30] kauditd_printk_skb: 52 callbacks suppressed
[  442.200172][   T30] audit: type=1326 audit(1761342059.931:326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10434 comm="syz.6.1056" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0f278efc9 code=0x7ffc0000
[  443.062556][   T30] audit: type=1326 audit(1761342059.941:327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10434 comm="syz.6.1056" exe="/root/syz-executor" sig=0 arch=c000003e syscall=430 compat=0 ip=0x7fc0f278efc9 code=0x7ffc0000
[  443.173605][   T30] audit: type=1326 audit(1761342059.941:328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10434 comm="syz.6.1056" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0f278efc9 code=0x7ffc0000
[  443.196134][   T30] audit: type=1326 audit(1761342059.941:329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10434 comm="syz.6.1056" exe="/root/syz-executor" sig=0 arch=c000003e syscall=431 compat=0 ip=0x7fc0f278efc9 code=0x7ffc0000
[  443.225964][   T30] audit: type=1326 audit(1761342059.941:330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10434 comm="syz.6.1056" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0f278efc9 code=0x7ffc0000
[  443.335623][   T30] audit: type=1326 audit(1761342059.941:331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10434 comm="syz.6.1056" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc0f278efc9 code=0x7ffc0000
[  443.417873][   T30] audit: type=1326 audit(1761342059.941:332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10434 comm="syz.6.1056" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0f278efc9 code=0x7ffc0000
[  443.582494][   T30] audit: type=1326 audit(1761342059.981:333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10434 comm="syz.6.1056" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7fc0f278efc9 code=0x7ffc0000
[  443.696791][   T30] audit: type=1326 audit(1761342059.981:334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10434 comm="syz.6.1056" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0f278efc9 code=0x7ffc0000
[  443.752175][ T8134] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0009-000000000000.
[  443.761619][   T30] audit: type=1326 audit(1761342060.011:335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10434 comm="syz.6.1056" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc0f278efc9 code=0x7ffc0000
[  443.822921][ T5836] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  443.833900][ T5836] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  443.842773][ T5836] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  443.850924][ T5836] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  443.860241][ T5836] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  443.972814][ T5846] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  443.990324][ T5846] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  443.999326][ T5846] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  444.011269][ T5846] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  444.019443][ T5846] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  444.231757][T10461] batman_adv: batadv0: Adding interface: dummy0
[  444.239324][T10461] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  444.332865][T10461] batman_adv: batadv0: Interface activated: dummy0
[  444.495908][ T5984] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  444.550312][T10474] Bluetooth: hci0: load_link_keys: too big key_count value 8192
[  444.809726][ T5984] usb 2-1: Using ep0 maxpacket: 8
[  444.861756][ T5984] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  444.893215][ T5984] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  444.904057][ T5984] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  444.959567][ T5984] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  444.991516][ T5984] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  445.010374][ T5984] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  445.274006][ T5984] usb 2-1: usb_control_msg returned -32
[  445.279684][ T5984] usbtmc 2-1:16.0: can't read capabilities
[  445.415739][T10487] capability: warning: `syz.6.1068' uses deprecated v2 capabilities in a way that may be insecure
[  445.515805][T10483] mkiss: ax0: crc mode is auto.
[  445.985065][T10487] Falling back ldisc for ttyS3.
[  446.082960][ T5836] Bluetooth: hci5: command tx timeout
[  446.099512][T10455] chnl_net:caif_netlink_parms(): no params data found
[  446.302678][T10488] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in;
[  446.302678][T10488]    program syz.6.1068 not setting count and/or reply_len properly
[  447.279171][ T5984] usb 2-1: USB disconnect, device number 5
[  447.345344][T10455] bridge0: port 1(bridge_slave_0) entered blocking state
[  447.357258][T10455] bridge0: port 1(bridge_slave_0) entered disabled state
[  447.375433][T10455] bridge_slave_0: entered allmulticast mode
[  447.400498][T10455] bridge_slave_0: entered promiscuous mode
[  447.490792][T10514] binder: 10513:10514 ioctl c0306201 200000000500 returned -14
[  447.514661][T10514] binder: 10513:10514 ioctl c0306201 0 returned -14
[  447.636987][T10510] netlink: 100 bytes leftover after parsing attributes in process `syz.0.1071'.
[  447.672974][T10455] bridge0: port 2(bridge_slave_1) entered blocking state
[  447.752672][T10455] bridge0: port 2(bridge_slave_1) entered disabled state
[  447.769685][T10455] bridge_slave_1: entered allmulticast mode
[  447.807970][T10455] bridge_slave_1: entered promiscuous mode
[  448.079663][T10455] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  448.124985][T10455] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  448.172849][ T5836] Bluetooth: hci5: command tx timeout
[  448.270774][T10238] Set syz1 is full, maxelem 65536 reached
[  448.354831][T10455] team0: Port device team_slave_0 added
[  448.369810][T10455] team0: Port device team_slave_1 added
[  448.805755][T10455] batman_adv: batadv0: Adding interface: batadv_slave_0
[  448.929609][T10455] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  449.344688][T10455] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  449.400088][T10455] batman_adv: batadv0: Adding interface: batadv_slave_1
[  449.432518][T10455] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  449.534379][T10455] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  449.798948][T10455] hsr_slave_0: entered promiscuous mode
[  450.030631][T10455] hsr_slave_1: entered promiscuous mode
[  450.037471][T10455] debugfs: 'hsr0' already exists in 'hsr'
[  450.043309][T10455] Cannot create hsr debugfs directory
[  450.538261][ T5836] Bluetooth: hci5: command tx timeout
[  450.921211][T10557] fuse: Bad value for 'fd'
[  451.299572][   T56] block nbd0: Possible stuck request ffff8880253de000: control (read@0,1024B). Runtime 60 seconds
[  451.310892][   T56] block nbd0: Possible stuck request ffff8880253de1c0: control (read@1024,1024B). Runtime 60 seconds
[  451.321959][   T56] block nbd0: Possible stuck request ffff8880253de380: control (read@2048,1024B). Runtime 60 seconds
[  451.333353][   T56] block nbd0: Possible stuck request ffff8880253de540: control (read@3072,1024B). Runtime 60 seconds
[  452.173346][T10570] vxfs: WRONG superblock magic 00000000 at 1
[  452.180040][T10570] vxfs: WRONG superblock magic 00000000 at 8
[  452.186166][T10570] vxfs: can't find superblock.
[  452.382567][ T8313] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  452.562615][ T5836] Bluetooth: hci5: command tx timeout
[  452.596796][T10567] 9pnet_fd: Insufficient options for proto=fd
[  452.619494][ T8313] usb 7-1: Using ep0 maxpacket: 8
[  452.648943][ T8313] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  452.690797][ T8313] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  452.706489][ T8313] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  452.717726][ T8313] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  452.734321][ T8313] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  452.767407][ T8313] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  453.023212][ T8313] usb 7-1: usb_control_msg returned -32
[  453.032695][ T8313] usbtmc 7-1:16.0: can't read capabilities
[  455.738659][ T5904] usb 7-1: USB disconnect, device number 5
[  455.875994][   T12] bridge_slave_1: left allmulticast mode
[  455.906486][   T12] bridge_slave_1: left promiscuous mode
[  456.059840][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  456.856777][   T12] bridge_slave_0: left allmulticast mode
[  456.866511][T10604] loop1: detected capacity change from 0 to 128
[  456.894542][T10604] FAT-fs (loop1): bogus logical sector size 767
[  456.900856][T10604] FAT-fs (loop1): Can't find a valid FAT filesystem
[  457.419941][   T12] bridge_slave_0: left promiscuous mode
[  457.441378][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  459.333967][T10632] binder: 10631:10632 ioctl c0306201 200000000500 returned -11
[  459.359502][T10632] binder: 10631:10632 ioctl c0306201 0 returned -14
[  460.088929][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  460.107555][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  460.123792][   T12] bond0 (unregistering): Released all slaves
[  460.822108][T10455] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  460.864542][T10455] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  460.905491][T10455] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  460.942333][T10455] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  461.105449][   T12] hsr_slave_0: left promiscuous mode
[  461.131292][   T12] hsr_slave_1: left promiscuous mode
[  461.139293][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  461.150924][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  461.340492][T10660] netlink: 'syz.0.1123': attribute type 23 has an invalid length.
[  461.907585][T10667] binder: 10666:10667 ioctl c0306201 200000000500 returned -11
[  461.915983][T10667] binder: 10666:10667 ioctl c0306201 0 returned -14
[  462.001992][T10669] netlink: 20 bytes leftover after parsing attributes in process `syz.6.1127'.
[  462.024414][T10669] netlink: 164 bytes leftover after parsing attributes in process `syz.6.1127'.
[  463.014717][   T12] team0 (unregistering): Port device team_slave_1 removed
[  463.917158][   T12] team0 (unregistering): Port device team_slave_0 removed
[  467.002873][ T5200] udevd[5200]: worker [5897] /devices/virtual/block/nbd0 is taking a long time
[  467.121559][T10455] 8021q: adding VLAN 0 to HW filter on device bond0
[  467.217509][T10455] 8021q: adding VLAN 0 to HW filter on device team0
[  467.327795][   T49] bridge0: port 1(bridge_slave_0) entered blocking state
[  467.335035][   T49] bridge0: port 1(bridge_slave_0) entered forwarding state
[  467.530684][ T6466] bridge0: port 2(bridge_slave_1) entered blocking state
[  467.537903][ T6466] bridge0: port 2(bridge_slave_1) entered forwarding state
[  467.940410][T10455] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  468.541546][T10715] loop1: detected capacity change from 0 to 4096
[  468.601366][T10715] EXT4-fs: Ignoring removed oldalloc option
[  468.937090][T10715] EXT4-fs warning (device loop1): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-13, ino=4). Please run e2fsck to fix.
[  469.052279][T10715] EXT4-fs (loop1): mount failed
[  469.722551][T10455] 8021q: adding VLAN 0 to HW filter on device batadv0
[  473.232254][T10455] veth0_vlan: entered promiscuous mode
[  473.393495][T10455] veth1_vlan: entered promiscuous mode
[  473.530882][T10455] veth0_macvtap: entered promiscuous mode
[  473.644367][T10455] veth1_macvtap: entered promiscuous mode
[  473.760084][T10455] batman_adv: batadv0: Interface activated: batadv_slave_0
[  474.880705][T10455] batman_adv: batadv0: Interface activated: batadv_slave_1
[  475.053629][ T6229] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  475.083581][ T6229] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  475.128146][ T6466] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  475.366290][ T6466] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  476.437019][ T6907] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  476.447394][ T6907] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  476.535846][ T6466] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  476.551173][ T6466] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  476.913343][T10802] fuse: Unknown parameter 'fd0000000000000000000600000000000000000000'
[  478.179895][   T30] kauditd_printk_skb: 54 callbacks suppressed
[  478.179914][   T30] audit: type=1326 audit(1761342095.911:390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10827 comm="syz.9.1166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f008ef8efc9 code=0x7ffc0000
[  478.269341][   T30] audit: type=1326 audit(1761342095.921:391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10827 comm="syz.9.1166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f008ef8efc9 code=0x7ffc0000
[  478.520781][   T30] audit: type=1326 audit(1761342095.921:392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10827 comm="syz.9.1166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=430 compat=0 ip=0x7f008ef8efc9 code=0x7ffc0000
[  479.151096][   T30] audit: type=1326 audit(1761342095.921:393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10827 comm="syz.9.1166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f008ef8efc9 code=0x7ffc0000
[  480.302658][   T30] audit: type=1326 audit(1761342095.921:394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10827 comm="syz.9.1166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=431 compat=0 ip=0x7f008ef8efc9 code=0x7ffc0000
[  480.628019][   T30] audit: type=1326 audit(1761342095.921:395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10827 comm="syz.9.1166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f008ef8efc9 code=0x7ffc0000
[  480.651458][   T30] audit: type=1326 audit(1761342095.921:396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10827 comm="syz.9.1166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f008ef8efc9 code=0x7ffc0000
[  480.674727][   T30] audit: type=1326 audit(1761342095.921:397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10827 comm="syz.9.1166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f008ef8efc9 code=0x7ffc0000
[  480.751064][   T30] audit: type=1326 audit(1761342095.931:398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10827 comm="syz.9.1166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f008ef8efc9 code=0x7ffc0000
[  481.719564][   T30] audit: type=1326 audit(1761342095.931:399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10827 comm="syz.9.1166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f008ef8efc9 code=0x7ffc0000
[  482.782553][   T56] block nbd0: Possible stuck request ffff8880253de000: control (read@0,1024B). Runtime 90 seconds
[  482.793285][   T56] block nbd0: Possible stuck request ffff8880253de1c0: control (read@1024,1024B). Runtime 90 seconds
[  482.804719][   T56] block nbd0: Possible stuck request ffff8880253de380: control (read@2048,1024B). Runtime 90 seconds
[  482.816308][   T56] block nbd0: Possible stuck request ffff8880253de540: control (read@3072,1024B). Runtime 90 seconds
[  483.459417][T10852] bridge1: entered promiscuous mode
[  483.513591][T10852] bridge1: entered allmulticast mode
[  483.553042][T10858] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1168'.
[  483.683330][T10852] team0: Port device bridge1 added
[  483.888490][T10861] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  483.899687][T10856] bridge0: port 3(team0) entered blocking state
[  483.910027][T10861] block device autoloading is deprecated and will be removed.
[  483.975151][T10856] bridge0: port 3(team0) entered disabled state
[  484.064452][T10856] team0: entered allmulticast mode
[  484.105433][T10856] team_slave_0: entered allmulticast mode
[  484.258490][T10856] team_slave_1: entered allmulticast mode
[  484.335221][T10856] team0: entered promiscuous mode
[  484.340312][T10856] team_slave_0: entered promiscuous mode
[  484.695182][T10856] team_slave_1: entered promiscuous mode
[  484.701675][T10856] bridge0: port 3(team0) entered blocking state
[  484.708388][T10856] bridge0: port 3(team0) entered forwarding state
[  485.407800][   T30] kauditd_printk_skb: 21 callbacks suppressed
[  485.407821][   T30] audit: type=1326 audit(1761342103.141:421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10877 comm="syz.3.1177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0b58d8efc9 code=0x7ffc0000
[  485.509347][   T30] audit: type=1326 audit(1761342103.141:422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10877 comm="syz.3.1177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0b58d8efc9 code=0x7ffc0000
[  486.000860][   T30] audit: type=1326 audit(1761342103.141:423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10877 comm="syz.3.1177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=430 compat=0 ip=0x7f0b58d8efc9 code=0x7ffc0000
[  486.004709][T10858] team0: left allmulticast mode
[  486.076686][   T30] audit: type=1326 audit(1761342103.141:424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10877 comm="syz.3.1177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0b58d8efc9 code=0x7ffc0000
[  486.083023][T10858] team_slave_0: left allmulticast mode
[  486.161091][   T30] audit: type=1326 audit(1761342103.141:425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10877 comm="syz.3.1177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=431 compat=0 ip=0x7f0b58d8efc9 code=0x7ffc0000
[  486.446674][T10858] team_slave_1: left allmulticast mode
[  486.466474][T10858] team0: left promiscuous mode
[  486.641833][T10858] team_slave_0: left promiscuous mode
[  486.647780][   T30] audit: type=1326 audit(1761342103.141:426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10877 comm="syz.3.1177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0b58d8efc9 code=0x7ffc0000
[  486.701016][T10858] team_slave_1: left promiscuous mode
[  486.769575][   T30] audit: type=1326 audit(1761342103.151:427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10877 comm="syz.3.1177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0b58d8efc9 code=0x7ffc0000
[  486.794124][T10858] bridge0: port 3(team0) entered disabled state
[  486.853115][   T30] audit: type=1326 audit(1761342103.151:428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10877 comm="syz.3.1177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0b58d8efc9 code=0x7ffc0000
[  486.912508][   T30] audit: type=1326 audit(1761342103.321:429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10877 comm="syz.3.1177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f0b58d8efc9 code=0x7ffc0000
[  486.940847][T10858] bridge_slave_1: left allmulticast mode
[  486.948189][T10858] bridge_slave_1: left promiscuous mode
[  486.954725][   T30] audit: type=1326 audit(1761342103.361:430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10877 comm="syz.3.1177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0b58d8efc9 code=0x7ffc0000
[  486.979011][T10858] bridge0: port 2(bridge_slave_1) entered disabled state
[  487.055018][T10858] bridge_slave_0: left allmulticast mode
[  487.074878][T10858] bridge_slave_0: left promiscuous mode
[  487.080728][T10858] bridge0: port 1(bridge_slave_0) entered disabled state
[  487.519227][  T984] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  487.724598][  T984] usb 2-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  487.770587][  T984] usb 2-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  487.770648][  T984] usb 2-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  487.770675][  T984] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  487.778349][T10892] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  487.801013][  T984] usb 2-1: Quirk or no altset; falling back to MIDI 1.0
[  488.125361][  T984] usb 2-1: USB disconnect, device number 6
[  493.094332][T10978] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1203'.
[  499.320179][T11047] netlink: 52 bytes leftover after parsing attributes in process `syz.1.1213'.
[  499.614112][T11047] netlink: 68 bytes leftover after parsing attributes in process `syz.1.1213'.
[  501.711585][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  501.717995][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  507.782746][ T8313] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  508.175897][ T8313] usb 2-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  508.203837][ T8313] usb 2-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  508.232155][ T8313] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 66
[  508.245764][ T8313] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  508.259234][ T8313] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  508.433365][ T8313] usb 2-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  508.492625][ T8313] usb 2-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  508.512576][ T8313] usb 2-1: Product: syz
[  508.517669][ T8313] usb 2-1: Manufacturer: syz
[  508.587624][ T8313] cdc_wdm 2-1:1.0: skipping garbage
[  508.625970][ T8313] cdc_wdm 2-1:1.0: skipping garbage
[  508.700308][ T8313] cdc_wdm 2-1:1.0: cdc-wdm0: USB WDM device
[  508.712471][ T8313] cdc_wdm 2-1:1.0: Unknown control protocol
[  508.787055][T11117] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1223'.
[  508.850471][    T9] usb 2-1: USB disconnect, device number 7
[  509.161634][T11140] loop9: detected capacity change from 0 to 256
[  509.503022][T11140] FAT-fs (loop9): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  511.047101][T11151] syz.1.1231 (11151) used greatest stack depth: 17800 bytes left
[  511.918925][T11174] tipc: Started in network mode
[  511.924147][T11174] tipc: Node identity ac141441, cluster identity 4711
[  511.934301][T11174] tipc: Enabled bearer <udp:syz2>, priority 10
[  512.625752][ T5162] ------------[ cut here ]------------
[  512.631957][ T5162] WARNING: kernel/trace/blktrace.c:368 at __blk_add_trace+0x79c/0x8d0, CPU#0: jbd2/sda1-8/5162
[  512.644098][ T5162] Modules linked in:
[  512.648059][ T5162] CPU: 0 UID: 0 PID: 5162 Comm: jbd2/sda1-8 Not tainted syzkaller #0 PREEMPT(full) 
[  512.657561][ T5162] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  512.667814][ T5162] RIP: 0010:__blk_add_trace+0x79c/0x8d0
[  512.673450][ T5162] Code: ff 4d 85 e4 75 4f e8 83 0e f8 ff e9 fb fd ff ff e8 79 0e f8 ff e9 ec fd ff ff e8 6f 0e f8 ff e9 d8 fd ff ff e8 65 0e f8 ff 90 <0f> 0b 90 e9 ca fd ff ff e8 57 0e f8 ff 48 8b 7c 24 30 e8 cd 51 00
[  512.693398][ T5162] RSP: 0000:ffffc9000dfbf460 EFLAGS: 00010293
[  512.699520][ T5162] RAX: ffffffff81c81b4b RBX: 0000000000000001 RCX: ffff888033ccbc80
[  512.707674][ T5162] RDX: 0000000000000000 RSI: 00000000901e000f RDI: 000000008000ffff
[  512.715739][ T5162] RBP: ffffc9000dfbf578 R08: ffff888033ccbc80 R09: 0000000000000009
[  512.723954][ T5162] R10: 0000000000000011 R11: 0000000000000000 R12: 000000008000ffff
[  512.731951][ T5162] R13: ffff88802bccef80 R14: 00000000901e000f R15: 0000000000000001
[  512.740722][ T5162] FS:  0000000000000000(0000) GS:ffff888125f22000(0000) knlGS:0000000000000000
[  512.750372][ T5162] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  512.757036][ T5162] CR2: 00007f69eae21368 CR3: 000000007ab6a000 CR4: 00000000003526f0
[  512.765067][ T5162] Call Trace:
[  512.768368][ T5162]  <TASK>
[  512.771322][ T5162]  ? __lock_acquire+0xab9/0xd20
[  512.776258][ T5162]  ? __pfx___blk_add_trace+0x10/0x10
[  512.781583][ T5162]  ? blk_add_trace_bio_remap+0xed/0x560
[  512.787594][ T5162]  blk_add_trace_bio_remap+0x4b8/0x560
[  512.793399][ T5162]  ? __pfx___might_resched+0x10/0x10
[  512.798722][ T5162]  ? __pfx_blk_add_trace_bio_remap+0x10/0x10
[  512.805484][ T5162]  ? irqentry_exit+0x74/0x90
[  512.810115][ T5162]  ? lockdep_hardirqs_on+0x9c/0x150
[  512.815420][ T5162]  submit_bio_noacct+0x187b/0x1b80
[  512.820588][ T5162]  journal_submit_commit_record+0x665/0x8b0
[  512.826565][ T5162]  ? __pfx_journal_submit_commit_record+0x10/0x10
[  512.833132][ T5162]  jbd2_journal_commit_transaction+0x3455/0x5a00
[  512.840207][ T5162]  ? __pfx_jbd2_journal_commit_transaction+0x10/0x10
[  512.847711][ T5162]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  512.854129][ T5162]  ? rcu_is_watching+0x15/0xb0
[  512.858940][ T5162]  ? __try_to_del_timer_sync+0x34a/0x3a0
[  512.864667][ T5162]  ? __pfx___timer_delete_sync+0x10/0x10
[  512.870353][ T5162]  kjournald2+0x3cf/0x750
[  512.874799][ T5162]  ? __pfx_kjournald2+0x10/0x10
[  512.879698][ T5162]  ? __pfx_autoremove_wake_function+0x10/0x10
[  512.885857][ T5162]  ? __kthread_parkme+0x7b/0x200
[  512.890834][ T5162]  ? __kthread_parkme+0x1a1/0x200
[  512.895948][ T5162]  kthread+0x711/0x8a0
[  512.900056][ T5162]  ? __pfx_kjournald2+0x10/0x10
[  512.904981][ T5162]  ? __pfx_kthread+0x10/0x10
[  512.909608][ T5162]  ? _raw_spin_unlock_irq+0x23/0x50
[  512.914944][ T5162]  ? lockdep_hardirqs_on+0x9c/0x150
[  512.920185][ T5162]  ? __pfx_kthread+0x10/0x10
[  512.925216][ T5162]  ret_from_fork+0x4bc/0x870
[  512.929853][ T5162]  ? __pfx_ret_from_fork+0x10/0x10
[  512.935046][ T5162]  ? __switch_to_asm+0x39/0x70
[  512.940592][ T5162]  ? __switch_to_asm+0x33/0x70
[  512.946062][ T5162]  ? __pfx_kthread+0x10/0x10
[  512.950707][ T5162]  ret_from_fork_asm+0x1a/0x30
[  512.955557][ T5162]  </TASK>
[  512.958608][ T5162] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  512.965911][ T5162] CPU: 0 UID: 0 PID: 5162 Comm: jbd2/sda1-8 Not tainted syzkaller #0 PREEMPT(full) 
[  512.975302][ T5162] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  512.985380][ T5162] Call Trace:
[  512.988684][ T5162]  <TASK>
[  512.991638][ T5162]  dump_stack_lvl+0x99/0x250
[  512.996263][ T5162]  ? __asan_memcpy+0x40/0x70
[  513.000879][ T5162]  ? __pfx_dump_stack_lvl+0x10/0x10
[  513.006122][ T5162]  ? __pfx__printk+0x10/0x10
[  513.010756][ T5162]  vpanic+0x237/0x6d0
[  513.014774][ T5162]  ? __pfx_vpanic+0x10/0x10
[  513.019394][ T5162]  ? is_bpf_text_address+0x292/0x2b0
[  513.024716][ T5162]  ? is_bpf_text_address+0x26/0x2b0
[  513.029967][ T5162]  panic+0xb9/0xc0
[  513.033728][ T5162]  ? __pfx_panic+0x10/0x10
[  513.038190][ T5162]  ? ret_from_fork_asm+0x1a/0x30
[  513.043160][ T5162]  __warn+0x334/0x4c0
[  513.047186][ T5162]  ? __blk_add_trace+0x79c/0x8d0
[  513.052172][ T5162]  ? __blk_add_trace+0x79c/0x8d0
[  513.057137][ T5162]  report_bug+0x2be/0x4f0
[  513.061513][ T5162]  ? __blk_add_trace+0x79c/0x8d0
[  513.066516][ T5162]  ? __blk_add_trace+0x79c/0x8d0
[  513.071490][ T5162]  ? __blk_add_trace+0x79e/0x8d0
[  513.076550][ T5162]  handle_bug+0x84/0x160
[  513.080822][ T5162]  exc_invalid_op+0x1a/0x50
[  513.085347][ T5162]  asm_exc_invalid_op+0x1a/0x20
[  513.090222][ T5162] RIP: 0010:__blk_add_trace+0x79c/0x8d0
[  513.095802][ T5162] Code: ff 4d 85 e4 75 4f e8 83 0e f8 ff e9 fb fd ff ff e8 79 0e f8 ff e9 ec fd ff ff e8 6f 0e f8 ff e9 d8 fd ff ff e8 65 0e f8 ff 90 <0f> 0b 90 e9 ca fd ff ff e8 57 0e f8 ff 48 8b 7c 24 30 e8 cd 51 00
[  513.115434][ T5162] RSP: 0000:ffffc9000dfbf460 EFLAGS: 00010293
[  513.121545][ T5162] RAX: ffffffff81c81b4b RBX: 0000000000000001 RCX: ffff888033ccbc80
[  513.129548][ T5162] RDX: 0000000000000000 RSI: 00000000901e000f RDI: 000000008000ffff
[  513.137548][ T5162] RBP: ffffc9000dfbf578 R08: ffff888033ccbc80 R09: 0000000000000009
[  513.145550][ T5162] R10: 0000000000000011 R11: 0000000000000000 R12: 000000008000ffff
[  513.153554][ T5162] R13: ffff88802bccef80 R14: 00000000901e000f R15: 0000000000000001
[  513.161563][ T5162]  ? __blk_add_trace+0x79b/0x8d0
[  513.166560][ T5162]  ? __lock_acquire+0xab9/0xd20
[  513.171451][ T5162]  ? __pfx___blk_add_trace+0x10/0x10
[  513.176787][ T5162]  ? blk_add_trace_bio_remap+0xed/0x560
[  513.182377][ T5162]  blk_add_trace_bio_remap+0x4b8/0x560
[  513.187870][ T5162]  ? __pfx___might_resched+0x10/0x10
[  513.193190][ T5162]  ? __pfx_blk_add_trace_bio_remap+0x10/0x10
[  513.199199][ T5162]  ? irqentry_exit+0x74/0x90
[  513.203826][ T5162]  ? lockdep_hardirqs_on+0x9c/0x150
[  513.209064][ T5162]  submit_bio_noacct+0x187b/0x1b80
[  513.214236][ T5162]  journal_submit_commit_record+0x665/0x8b0
[  513.220185][ T5162]  ? __pfx_journal_submit_commit_record+0x10/0x10
[  513.226733][ T5162]  jbd2_journal_commit_transaction+0x3455/0x5a00
[  513.233145][ T5162]  ? __pfx_jbd2_journal_commit_transaction+0x10/0x10
[  513.239866][ T5162]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  513.246231][ T5162]  ? rcu_is_watching+0x15/0xb0
[  513.251041][ T5162]  ? __try_to_del_timer_sync+0x34a/0x3a0
[  513.256731][ T5162]  ? __pfx___timer_delete_sync+0x10/0x10
[  513.262419][ T5162]  kjournald2+0x3cf/0x750
[  513.266809][ T5162]  ? __pfx_kjournald2+0x10/0x10
[  513.271787][ T5162]  ? __pfx_autoremove_wake_function+0x10/0x10
[  513.278852][ T5162]  ? __kthread_parkme+0x7b/0x200
[  513.283828][ T5162]  ? __kthread_parkme+0x1a1/0x200
[  513.288892][ T5162]  kthread+0x711/0x8a0
[  513.293005][ T5162]  ? __pfx_kjournald2+0x10/0x10
[  513.297886][ T5162]  ? __pfx_kthread+0x10/0x10
[  513.302519][ T5162]  ? _raw_spin_unlock_irq+0x23/0x50
[  513.307751][ T5162]  ? lockdep_hardirqs_on+0x9c/0x150
[  513.312986][ T5162]  ? __pfx_kthread+0x10/0x10
[  513.317625][ T5162]  ret_from_fork+0x4bc/0x870
[  513.322243][ T5162]  ? __pfx_ret_from_fork+0x10/0x10
[  513.327394][ T5162]  ? __switch_to_asm+0x39/0x70
[  513.332192][ T5162]  ? __switch_to_asm+0x33/0x70
[  513.336979][ T5162]  ? __pfx_kthread+0x10/0x10
[  513.341605][ T5162]  ret_from_fork_asm+0x1a/0x30
[  513.346415][ T5162]  </TASK>
[  513.349782][ T5162] Kernel Offset: disabled
[  513.354115][ T5162] Rebooting in 86400 seconds..