last executing test programs:

4m45.136855022s ago: executing program 32 (id=109):
fsetxattr$security_capability(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, 0x0, 0x4008094)
syz_mount_image$btrfs(&(0x7f0000000100), &(0x7f0000005140)='./file0\x00', 0x816, &(0x7f00000004c0), 0x1, 0x50ed, &(0x7f000000a280)="$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")
syz_genetlink_get_family_id$nl80211(&(0x7f0000001880), 0xffffffffffffffff)
open(&(0x7f0000000180)='./bus\x00', 0x14937e, 0x111)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x1, 0x8005, 0x0, 0x0, 0x19, 0xd, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x8]})
syz_usb_connect(0x3, 0x9d3, 0x0, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$BTRFS_IOC_QGROUP_CREATE(r2, 0xc400941b, &(0x7f0000000000)={0x1, 0x500000})
sendmsg$NL80211_CMD_LEAVE_MESH(r1, 0x0, 0x10)
r3 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
fsync(r3)

3m17.518665156s ago: executing program 4 (id=341):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f0000000340)=[@in6={0xa, 0x4e22, 0x8, @loopback}]}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x32, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa}, 0x94)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ff9000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x2000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ff7000/0x4000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r0 = io_uring_setup(0x1b7b, &(0x7f0000000040)={0x0, 0x970, 0x1f480, 0x0, 0x1c3})
io_uring_enter(r0, 0x8ae, 0x6933, 0x17, 0x0, 0x0)

3m16.666153942s ago: executing program 33 (id=341):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f0000000340)=[@in6={0xa, 0x4e22, 0x8, @loopback}]}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x32, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa}, 0x94)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ff9000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x2000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ff7000/0x4000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r0 = io_uring_setup(0x1b7b, &(0x7f0000000040)={0x0, 0x970, 0x1f480, 0x0, 0x1c3})
io_uring_enter(r0, 0x8ae, 0x6933, 0x17, 0x0, 0x0)

1m36.129652391s ago: executing program 5 (id=651):
socket$nl_route(0x10, 0x3, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x0, &(0x7f0000000000)={0x2, &(0x7f0000000080)=[{0xf8a7, 0x5, 0x1, 0x2}, {0x2, 0x5, 0x64, 0x7f}]})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
timer_settime(0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0x10000008ebc, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000000300)=""/102392, 0x18ff8)
setsockopt$inet_int(0xffffffffffffffff, 0x0, 0x33, 0x0, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_int(r2, 0x0, 0x33, &(0x7f0000000040)=0x80010003, 0x4)
sendto$inet(r2, 0x0, 0x0, 0x20000000, &(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10)

1m35.425031675s ago: executing program 5 (id=653):
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x64, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast2}}}]}, @CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x5}]}, 0x64}}, 0x0)

1m34.03838583s ago: executing program 1 (id=658):
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x1ff)
openat$urandom(0xffffffffffffff9c, &(0x7f0000000000), 0x103902, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
rt_sigtimedwait(&(0x7f0000000000)={[0xe]}, 0x0, 0x0, 0x8)
fallocate(0xffffffffffffffff, 0x3, 0x2009140, 0x20000)
r0 = io_uring_setup(0x7, &(0x7f0000000040)={0x0, 0xc8a1, 0xc000, 0x8, 0xc1})
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1700000004"], 0x50)
io_uring_enter(r0, 0x2219, 0x7721, 0x16, 0x0, 0x0)

1m32.556408892s ago: executing program 7 (id=661):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x121301, 0x0)
ioctl$TCSETS(r0, 0x40045431, 0x0)
r1 = syz_open_pts(r0, 0x0)
dup3(r1, r0, 0x0)

1m32.446565548s ago: executing program 1 (id=662):
syz_usb_connect$cdc_ncm(0x0, 0x72, &(0x7f0000000bc0)=ANY=[@ANYBLOB="1201000002000040257d15a4400001040001090260004201000000090400000102090000052406000105240000000d240f01000004eaffffff1e0006031a000008048002", @ANYRESOCT], 0x0)
r0 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
write$char_usb(r0, 0x0, 0x0)

1m32.027599834s ago: executing program 7 (id=664):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(0xffffffffffffffff, 0xc0305302, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_emit_vhci(&(0x7f0000000340)=ANY=[@ANYBLOB="02c82014001000010009de"], 0x19)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000740)={&(0x7f0000000040)=ANY=[@ANYBLOB="9feb010018000000000000001800000018000000050000000100000001000013040000000200000088060000ff0f0000002e2e"], 0x0, 0x35, 0x0, 0x1}, 0x28)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="180000eb0626f50000000000080000009500000000000000"], &(0x7f0000000080)='GPL\x00', 0x5, 0x4fa, &(0x7f0000000cc0)=""/4096, 0x40f00, 0x5, '\x00', 0x0, 0x0, r3, 0x8, 0x0, 0x0, 0x10, &(0x7f00000002c0)={0x0, 0x2, 0x4, 0x9}, 0x1, 0x0, 0x0, 0x64, 0x0, 0x0, 0x10, 0xfffffffe}, 0x94)
sendmsg$DEVLINK_CMD_RATE_NEW(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000240)=ANY=[], 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x40f00, 0x5, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0xd4}, 0x94)

1m31.161307029s ago: executing program 7 (id=668):
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000000)={@cgroup, 0xffffffffffffffff, 0x32}, 0x20)

1m31.123437137s ago: executing program 5 (id=669):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1342, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
openat$ppp(0xffffffffffffff9c, 0x0, 0x10080, 0x0)
writev(r0, &(0x7f0000000300)=[{&(0x7f0000000100)="ff0f000000000000b47380c988cafb4cb1b93dd4ff788b78739a60ddf83d40babffec7e63d42aa9d74504bceeca2750298a1f08529fad7ef38d6be9ea2b9cf23a07108f6f2332f73151a382b203546d00b75eedce49cd4e70aec8f352b9a9b683adceb329eec3113200cceabec268a00f9de4cda81ed8e4628039a9ff7a521b58111405a8b23cff1f9dc476308637b2a73e38bf1acf8a5fdbd3edf3cdc5bf851f7cfa2937787e8a06e", 0xa9}, {&(0x7f00000006c0)="493d72f4b067b4d73868fd77", 0xc}], 0x2)

1m30.614040863s ago: executing program 7 (id=672):
syz_mount_image$ext4(&(0x7f0000000600)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x0, &(0x7f00000000c0)={[{@nodioread_nolock}, {@init_itable_val={'init_itable', 0x3d, 0x4}}, {@mblk_io_submit}, {@minixdf}, {@jqfmt_vfsv0}, {@usrjquota, 0x2e}], [], 0x2e}, 0x84, 0x450, &(0x7f0000000dc0)="$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")
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, 0x0)
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000280)='./bus\x00', 0x4000, &(0x7f0000000500)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000", @ANYRES64, @ANYRES32, @ANYRESHEX, @ANYRESDEC], 0x1, 0x2cb, &(0x7f0000000ac0)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000540)='./file7\x00', 0x1c0)
openat(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x0, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
timer_create(0x1, &(0x7f0000533fa0)={0x0, 0x24, 0x800000000004}, &(0x7f0000bbdffc))
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
syz_open_dev$MSR(&(0x7f0000000200), 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x10, 0x4, &(0x7f0000000440)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xd}, 0x94)
socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f0000000000)=0x13)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)

1m30.077819692s ago: executing program 1 (id=675):
r0 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r0, &(0x7f0000000080)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r1 = socket$unix(0x1, 0x2, 0x0)
ioctl$int_in(r1, 0x5421, &(0x7f0000000540)=0x7)
connect$unix(r1, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r2 = epoll_create(0x4)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000200)={0x10})
sendmmsg(r1, &(0x7f0000002dc0), 0x307017fdb7a66cb, 0x0)
connect$unix(r0, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
close(0x3)

1m28.876318737s ago: executing program 5 (id=676):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = dup(r0)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e24, 0x6, @empty, 0x3}], 0x1c)
setsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f0000000100)={0x0, 0x1, 0x20}, 0xc)
sendmsg$inet6(r0, &(0x7f0000000800)={&(0x7f0000000080)={0xa, 0x4e24, 0x8, @loopback, 0x4}, 0x1c, &(0x7f0000000380)=[{&(0x7f00000000c0)="88", 0x1}], 0x1}, 0x4048043)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='syz_tun\x00', 0x10)
setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f0000002700)={0x1, 0x2, 0x0, 0xfffffff8}, 0x10)
setsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000400)=@assoc_value, 0x8)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000180)={0x0, 0x18, 0xfa00, {0x2, 0x0, 0x111, 0x5}}, 0x20)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000200)={0x0, @in={{0x2, 0x4e21, @empty}}, 0x5, 0x3, 0xf06, 0x1, 0x94, 0xfffffffd, 0x5}, 0x9c)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000003c0)={0x0, 0x18, 0xfa00, {0x2, 0x0, 0x13f, 0x6}}, 0x20)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f00000002c0)={0x0, @in6={{0xa, 0x4e60, 0xfffffff2, @empty, 0x3}}, 0xffffec47, 0x9, 0xffff1896, 0x100, 0x25, 0x7}, 0x9c)

1m28.446371934s ago: executing program 1 (id=679):
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000240), 0x1, 0x490, &(0x7f0000000580)="$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")
r0 = open(&(0x7f00000000c0)='./file1\x00', 0x14927e, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x48241, 0x141)
pwrite64(r1, &(0x7f0000000140)="f6", 0xffffff07, 0x8000c61)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x1000040, &(0x7f00000002c0)={[{@barrier}, {@nodioread_nolock}, {@noquota}, {@barrier}, {@auto_da_alloc}, {@nodioread_nolock}]}, 0x1, 0x59c, &(0x7f0000001840)="$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")
pwritev2(0xffffffffffffffff, &(0x7f00000001c0)=[{&(0x7f0000000080)="ff", 0xfdef}], 0x1, 0x38b6, 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
fallocate(r0, 0x8, 0x0, 0x10000)
fsconfig$FSCONFIG_SET_FD(r0, 0x5, &(0x7f0000000000)='ext4\x00', 0x0, 0xffffffffffffffff)

1m26.969222595s ago: executing program 1 (id=682):
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x64, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast2}}}]}, @CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x5}]}, 0x64}}, 0x0)

1m26.82394942s ago: executing program 5 (id=684):
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000000000/0x9000)=nil, 0x600000, 0x600000, 0x3, &(0x7f0000a00000/0x600000)=nil)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
r0 = userfaultfd(0x801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000040)={0xaa, 0x110})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000140)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x3})

1m26.724020964s ago: executing program 7 (id=686):
r0 = socket$inet(0x2, 0x3, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000002c00)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb}, 0x94)
setsockopt$inet_buf(r0, 0x0, 0x8008000000010, &(0x7f0000000100)="17000000020001000003be8c5ee15688a8003c000203000aff3f000098fc5ad90a00", 0x22)
openat$vcsa(0xffffffffffffff9c, 0x0, 0x50000, 0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/stat\x00', 0x0, 0x0)
ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, 0x0)
r3 = socket(0x10, 0x3, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000880)=ANY=[@ANYRESDEC=r1], 0x50)
r5 = getpgrp(0x0)
sched_setaffinity(r5, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r6 = getpid()
sched_setscheduler(r6, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r7 = syz_open_dev$MSR(&(0x7f00000008c0), 0x0, 0x0)
read$msr(r7, &(0x7f0000019680)=""/102392, 0x18ff8)
write(r3, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000b80)={0x11, 0xb, &(0x7f0000000900)=ANY=[@ANYRES64, @ANYRESHEX=r4, @ANYRESDEC, @ANYRES32], &(0x7f00000001c0)='syzkaller\x00', 0xd, 0x0, 0x0, 0x41000, 0x60, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
shutdown(r1, 0x0)
sendfile(r1, r2, 0x0, 0xdc)
syz_mount_image$hfsplus(&(0x7f0000000980), &(0x7f0000000a80)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2000010, &(0x7f0000000000)=ANY=[@ANYRES8=0x0, @ANYRES8, @ANYRES32], 0xff, 0x6de, &(0x7f0000000180)="$eJzs3c9vHGcZB/DvrNeON1TBaZM2QkVYiVSQIhInVgrhgkEI5VChqhx6thKnsbpJqsRFaYUgBQQnJA79AwqSbxwQEvegcOFSbr36WAmJS8QhqpAWzezsete7ju0kXifw+UTjed9533nnmWd+eddZbYD/W5dOp3kvRS6dfuNOWd9YX2xvrC8eqpvbScpyI2l2ZyluJMX9ZKlsLwamDMxHfLx68a3PHmx83q0166nqP9Vfb3ZXIY/Zxt16ynw93vzYNad3NX53rCq8vJDkcj0fNrPbsYY6lkk7Vc/hwHVG3N3L6tte78Czr/d0KrrPzRFzyeH6yVz9TlDfHRqTi3B/7OkuBwAAAM+pT28edAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADw/Km//7+op0Y9z3yK3vf/z/SW1eVn0NKue97b1zgAAAAAAAAAYDK+9jAPcydHevVOUf3N/2RVOZYvOsmX8n5uZyW3ciZ3spy1rOVWziWZGxho5s7y2tqtc/01S+PXPD92zfOT2mMAAAAAAAAA+J/0i7Q2//4PAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADPgiKZ6s6q6Vg9z1wazWy25W7yjyQzBx3vHhTjFt6bfBwAAADwRGYfY50vP8zD3MmRXr1TVK/5X65eL8/m/dzIWlazlnZWcqV+DV2+6m9srC+2N9YXr5dTWR8e93v/2lMYM/UIU1Vt3JZPVD1auZrVasmZXC6S/3Q6nUZ326eSE714BuIa8FEZU/Hd2i4ja9ZpLff8d9u9i/BUDL8V0XhEz9ZmcEk/Iwt1bOWaR7sZKKo3apKtmdjx6DSHanPVqNP9LZ1Lo//Oz7F9yPnhel7uz6/3Ned71c9EI1UmzqfRP1IvPzoTydf/8se3r7VvvHvt6u3Tz84u7WBqm+Vbz4nFgUy88lxnornH/gtVJo7365fyw/w4pzOfN3Mrq/lJlrOWlXTq9uX6fC5/zj06U0tDtTd3imSmPi7dY7abmObzg6q0nJPVukeymiI3cyUreb36dz7n8q1cyIVcHDjCx7eNu9q36qpvbL3qe0f6r2ODP/WNulDe3X6zeZdbetQeb3d2Pi3de3+Z16MDee2e9Q/6vY4OXAcLA1l6sZed6bGDP869sfmVulBu45c7PCcma67ORHkB9Z4Svehe6maiWT2LRs/z33fK9dK+0elcW35vm/Hvbqm/Vs/L02r9qzv17hl/KJ6u8nx5MbP1nWT47CjbXurfZQbaOpvncrdt+Ilbrne8aiuK3pX6o9ysToDRK3Wm/h1udKTzVdsrY9sWq7YTA21Dv2/lZtq5MoH8AfA4/v52vziXwzOtf7Y+bX3S+lXrWuuN2e8f+vahV2cy/bfp7zQXpl5rvFr8OZ/kZ5uv/wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgMd3+4MP311ut1dujS80tm9aXup9cU27vdLK1j7bjXxo/IBF/YU+O8TzTBbSHG2aLfMyuGS6m6gJR9jaGsZIofPzZOIZ632J4Pg+vy0LzZEzalxhaWjJn0YH/GiPERa7uy72sdDIZDdaXsXjmg7ohgRMzNm16++dvf3Bh99cvb78zso7KzemL1y4uHDxwuuLZ6+utlcWuj8POkpgP2w+9A86EgAAAAAAAAAAAGC3xn0w4OQLO31oZFef8fA/CwEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAICn4tLpNO+lyLmFMwtlfWN9sV1OvfJmz2aSRiMpfpoU95OldKfMDQxX5A/30xmznY9XL7712YONzzfHanb7J416vr1Htya5W0+ZTzJVz5/A0HiXn3i84t+9fSgT9kWn01l6svjg6fhvAAAA///1I/PD")
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)

1m26.422202306s ago: executing program 5 (id=687):
epoll_create1(0x80000)
move_pages(0x0, 0x20000000000000fe, &(0x7f0000000080)=[&(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil], 0x0, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0)
mlock(&(0x7f0000c00000/0x400000)=nil, 0x400000)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='cmdline\x00')
munmap(&(0x7f0000800000/0x800000)=nil, 0x800000)
mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x3000006, 0x9132, 0xffffffffffffffff, 0x9aa9b000)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff1000/0x3000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff0000/0xd000)=nil, &(0x7f0000ff3000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
preadv(r0, &(0x7f0000001200)=[{&(0x7f0000000080)=""/4097, 0x1001}], 0x1, 0x9, 0x6a76)

1m24.857163353s ago: executing program 1 (id=688):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1342, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
openat$ppp(0xffffffffffffff9c, 0x0, 0x10080, 0x0)
writev(r0, &(0x7f0000000300)=[{&(0x7f0000000100)="ff0f000000000000b47380c988cafb4cb1b93dd4ff788b78739a60ddf83d40babffec7e63d42aa9d74504bceeca2750298a1f08529fad7ef38d6be9ea2b9cf23a07108f6f2332f73151a382b203546d00b75eedce49cd4e70aec8f352b9a9b683adceb329eec3113200cceabec268a00f9de4cda81ed8e4628039a9ff7a521b58111405a8b23cff1f9dc476308637b2a73e38bf1acf8a5fdbd3edf3cdc5bf851f7cfa2937787e8a06e", 0xa9}, {&(0x7f00000006c0)="493d72f4b067b4d73868fd77", 0xc}], 0x2)

1m22.545287088s ago: executing program 7 (id=692):
memfd_create(&(0x7f00000005c0)='-&:\n-\xb2];\x0f\xb2\x86NV$&\xb8=\x94Z}\xfaW~\xae\x87\x88\xea\xde\xd9=-\x01\x00\x00\x80=\x1d\x8bl\xd5\xc3DE\xbb0\x8e\xac\xf2r#TZ>\xfb\xdf\xc1\xd4\xd1\xee\x88\xebI\xab\xf6\xab}\x85\x18 \x8a\x8aG:\xacD-\x99JD/~\xd6\xb5m,\x8d\x1d\x1c\xe9\xe5<\xfcP)E\xc1\x8e\xeb\xd0^\x00\x00\x00\x00\x00\x00\x00\xc3\xaa\x9a\x9be\xed\xf2\xde\xccx\x1f\x0fne\xe8G\xe4Y\xc9\vR2fY\x8e\x9d\x97 \x00\x00\x00\x00\xe8W\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xe6JV\x80\xdd\x96F\xc90}SH\xe8\xd4RV\xb6\xc9h\xfb\xf3#\xcb\x14a\xab\bn.\x7f\xb1\xe26~$\xa9\v\x9b|>\xf5G\xb5\xac/\xc3n\x16\xee\xdf\xd0a\xf7\x94\xc0rk\x88r\x94\xb6e\x98\xdf\xf36\x82\x8b\x9a\xb9\x10\xa0q\xd8n\x15\x02\xc2@\xa5\xbe\xab\x83\xf9-\x9f\x19\x05\x12*!>\xde\x18L#8\xa5\b^\x19\xeb\xba\xd7\xbdV\x02\xf2\xcf6w\x86\x01\x81\xe4E\v\xd4\xd9\xe7_\xc2\x80\xea\xf9A\xf0\xef\xde\xe3)\xa8\n\f\xb1\f\x159pV2\xf6FCw\xf3r:y\xb1\xee\xc4!\xbaW\xb8\xb1 \x8e\x98!\xd0LL\xec)N\xa1\xa0\x15\xea\xf8kZ\xca\x1eMU\xf6\xfb\xbd\xb2\xc3\a\xc9\xea\x1db\x9b\xd6\x94\x8em\xd2\x06\x00\x00\x00\x00\x00\x00:yu8\xb5\x04\xb4\x9e$\xf0\ruS\xee\t3\xeeUb\x10\xfeP\xb3GQ\xc3\xbfA1\atU\xc1\xd6a\x9f1\xe0\xf8.b\a\xe8v\xf7=\x8e\xf5\xfe\xd8Y\xf8\x99_\xe4%\xc54\x96\xf4\xe9\x80:\x8erg\xd8L\xd1\xe0\xc3\xf5\xfe\xa0Dm\xd8_\xf1\xca\x03\xdc\xad\x91\xa6\x18\t\x00'/450, 0x4)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
read$FUSE(r0, 0x0, 0x0)
madvise(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1)
move_pages(0x0, 0x20000000000000fe, &(0x7f0000000080)=[&(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil], 0x0, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0)
r1 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r1)
wait4(r1, 0x0, 0x40000000, 0x0)
readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000100)=""/35, 0x23}], 0x1)
ptrace$cont(0x21, r1, 0x80000001, 0x4)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
lseek(r2, 0x1, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000200)='environ\x00')
readv(r3, &(0x7f0000001440)=[{&(0x7f0000000040)=""/20, 0x5}, {0x0, 0x2}], 0x2)

1m17.912828718s ago: executing program 0 (id=703):
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='net/udplite\x00')
ioctl$KDFONTOP_SET(0xffffffffffffffff, 0x4b72, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x3, &(0x7f0000000040)=@framed={{0x75, 0xa, 0x0, 0x0, 0x0, 0x61, 0x11, 0xac, 0x10000000}}, &(0x7f0000000000)='GPL\x00', 0x0, 0x50}, 0x94)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000100)=0x3)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x83, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xfffffffffffffd71, 0xffffffffffffffff}, 0x78)
ioctl$EVIOCGPROP(0xffffffffffffffff, 0x40047438, &(0x7f0000000180)=""/246)
preadv(r0, &(0x7f0000000040)=[{&(0x7f0000000100)=""/88, 0x58}], 0x1, 0x2, 0x0)

1m13.461312423s ago: executing program 0 (id=709):
r0 = syz_open_procfs(0xffffffffffffffff, 0x0)
preadv(r0, 0x0, 0x0, 0xffffffbf, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x800001000088}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r1 = getpgrp(0x0)
sched_setaffinity(r1, 0x5, &(0x7f0000000040)=0x29)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x2, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x0)
r3 = syz_clone(0x80000, 0x0, 0x0, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_genetlink_get_family_id$nl802154(0x0, 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r5], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000002c0)='sched_process_fork\x00'}, 0x10)
r6 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r6, &(0x7f0000000200)={0x2, 0x4e20, @empty}, 0x10)
fcntl$setstatus(r6, 0x4, 0x40800)
setsockopt$inet_mtu(r6, 0x0, 0xa, 0x0, 0x0)
connect$inet(r6, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x18}}, 0x10)
setsockopt$SO_BINDTODEVICE(r6, 0x1, 0x19, &(0x7f0000000040)='sit0\x00', 0x10)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
ftruncate(r7, 0x2000009)
sendfile(r6, r7, 0x0, 0x7ffff004)

1m10.499454358s ago: executing program 0 (id=710):
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x9, 0x4, &(0x7f0000000940)=ANY=[@ANYBLOB="b4000000000000006311340000000000630a00ff000000009500050000000000f98360f74d6a8468ae8892acb2e6c623b077bc406daf86a41e7e99e50abceb73f261010b28eaa8dca52cf1"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x1f2, 0x10, &(0x7f0000000000), 0xfffffe51}, 0x48)

1m10.450273556s ago: executing program 34 (id=687):
epoll_create1(0x80000)
move_pages(0x0, 0x20000000000000fe, &(0x7f0000000080)=[&(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil], 0x0, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0)
mlock(&(0x7f0000c00000/0x400000)=nil, 0x400000)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='cmdline\x00')
munmap(&(0x7f0000800000/0x800000)=nil, 0x800000)
mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x3000006, 0x9132, 0xffffffffffffffff, 0x9aa9b000)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff1000/0x3000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff0000/0xd000)=nil, &(0x7f0000ff3000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
preadv(r0, &(0x7f0000001200)=[{&(0x7f0000000080)=""/4097, 0x1001}], 0x1, 0x9, 0x6a76)

1m9.564319045s ago: executing program 35 (id=688):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1342, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
openat$ppp(0xffffffffffffff9c, 0x0, 0x10080, 0x0)
writev(r0, &(0x7f0000000300)=[{&(0x7f0000000100)="ff0f000000000000b47380c988cafb4cb1b93dd4ff788b78739a60ddf83d40babffec7e63d42aa9d74504bceeca2750298a1f08529fad7ef38d6be9ea2b9cf23a07108f6f2332f73151a382b203546d00b75eedce49cd4e70aec8f352b9a9b683adceb329eec3113200cceabec268a00f9de4cda81ed8e4628039a9ff7a521b58111405a8b23cff1f9dc476308637b2a73e38bf1acf8a5fdbd3edf3cdc5bf851f7cfa2937787e8a06e", 0xa9}, {&(0x7f00000006c0)="493d72f4b067b4d73868fd77", 0xc}], 0x2)

1m9.275302802s ago: executing program 0 (id=713):
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000000)='./bus\x00', 0x2800088, &(0x7f0000000240)=ANY=[@ANYBLOB='shortname=lower,shortname=win95,rodir,iocharset=default,uni_xlate=0,nonumtail=1,utf8=0,flush,rodir,shortname=win95,shortname=winnt,shortname=win95,showexec,uni_xlate=0,utf8=0,utf8=0,uni_xlate=0,shortname=mixed,\x00'], 0x95, 0x2b8, &(0x7f00000010c0)="$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")
unshare(0x400)
lseek(0xffffffffffffffff, 0x1000000, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x21008, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000180)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
chroot(&(0x7f0000000100)='./file0\x00')
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f00000003c0)='./file0\x00', 0x0, 0x2a05004, 0x0)
chroot(&(0x7f00000001c0)='./file0/../file0\x00')
mbind(&(0x7f000058a000/0x2000)=nil, 0x2000, 0x1, 0x0, 0x6, 0x3)
truncate(0x0, 0x9471)
lsetxattr$trusted_overlay_origin(0x0, 0x0, 0x0, 0x0, 0x2)

1m8.725694999s ago: executing program 0 (id=717):
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000240), 0x1, 0x490, &(0x7f0000000580)="$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")
r0 = open(&(0x7f00000000c0)='./file1\x00', 0x14927e, 0x6)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x48241, 0x141)
pwrite64(r1, &(0x7f0000000140)="f6", 0xffffff07, 0x8000c61)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x1000040, &(0x7f00000002c0)={[{@barrier}, {@nodioread_nolock}, {@noquota}, {@barrier}, {@auto_da_alloc}, {@nodioread_nolock}]}, 0x1, 0x59c, &(0x7f0000001840)="$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")
pwritev2(0xffffffffffffffff, &(0x7f00000001c0)=[{&(0x7f0000000080)="ff", 0xfdef}], 0x1, 0x38b6, 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
fallocate(r0, 0x8, 0x0, 0x10000)
fsconfig$FSCONFIG_SET_FD(r0, 0x5, &(0x7f0000000000)='ext4\x00', 0x0, 0xffffffffffffffff)

1m7.144192117s ago: executing program 36 (id=692):
memfd_create(&(0x7f00000005c0)='-&:\n-\xb2];\x0f\xb2\x86NV$&\xb8=\x94Z}\xfaW~\xae\x87\x88\xea\xde\xd9=-\x01\x00\x00\x80=\x1d\x8bl\xd5\xc3DE\xbb0\x8e\xac\xf2r#TZ>\xfb\xdf\xc1\xd4\xd1\xee\x88\xebI\xab\xf6\xab}\x85\x18 \x8a\x8aG:\xacD-\x99JD/~\xd6\xb5m,\x8d\x1d\x1c\xe9\xe5<\xfcP)E\xc1\x8e\xeb\xd0^\x00\x00\x00\x00\x00\x00\x00\xc3\xaa\x9a\x9be\xed\xf2\xde\xccx\x1f\x0fne\xe8G\xe4Y\xc9\vR2fY\x8e\x9d\x97 \x00\x00\x00\x00\xe8W\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xe6JV\x80\xdd\x96F\xc90}SH\xe8\xd4RV\xb6\xc9h\xfb\xf3#\xcb\x14a\xab\bn.\x7f\xb1\xe26~$\xa9\v\x9b|>\xf5G\xb5\xac/\xc3n\x16\xee\xdf\xd0a\xf7\x94\xc0rk\x88r\x94\xb6e\x98\xdf\xf36\x82\x8b\x9a\xb9\x10\xa0q\xd8n\x15\x02\xc2@\xa5\xbe\xab\x83\xf9-\x9f\x19\x05\x12*!>\xde\x18L#8\xa5\b^\x19\xeb\xba\xd7\xbdV\x02\xf2\xcf6w\x86\x01\x81\xe4E\v\xd4\xd9\xe7_\xc2\x80\xea\xf9A\xf0\xef\xde\xe3)\xa8\n\f\xb1\f\x159pV2\xf6FCw\xf3r:y\xb1\xee\xc4!\xbaW\xb8\xb1 \x8e\x98!\xd0LL\xec)N\xa1\xa0\x15\xea\xf8kZ\xca\x1eMU\xf6\xfb\xbd\xb2\xc3\a\xc9\xea\x1db\x9b\xd6\x94\x8em\xd2\x06\x00\x00\x00\x00\x00\x00:yu8\xb5\x04\xb4\x9e$\xf0\ruS\xee\t3\xeeUb\x10\xfeP\xb3GQ\xc3\xbfA1\atU\xc1\xd6a\x9f1\xe0\xf8.b\a\xe8v\xf7=\x8e\xf5\xfe\xd8Y\xf8\x99_\xe4%\xc54\x96\xf4\xe9\x80:\x8erg\xd8L\xd1\xe0\xc3\xf5\xfe\xa0Dm\xd8_\xf1\xca\x03\xdc\xad\x91\xa6\x18\t\x00'/450, 0x4)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
read$FUSE(r0, 0x0, 0x0)
madvise(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1)
move_pages(0x0, 0x20000000000000fe, &(0x7f0000000080)=[&(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil], 0x0, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0)
r1 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r1)
wait4(r1, 0x0, 0x40000000, 0x0)
readv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000100)=""/35, 0x23}], 0x1)
ptrace$cont(0x21, r1, 0x80000001, 0x4)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
lseek(r2, 0x1, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000200)='environ\x00')
readv(r3, &(0x7f0000001440)=[{&(0x7f0000000040)=""/20, 0x5}, {0x0, 0x2}], 0x2)

1m6.699318453s ago: executing program 0 (id=719):
openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/mdstat\x00', 0x0, 0x0)
r0 = epoll_create1(0x80000)
poll(&(0x7f0000000200)=[{r0, 0x10}], 0x1, 0x2)

1m6.073447121s ago: executing program 37 (id=719):
openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/mdstat\x00', 0x0, 0x0)
r0 = epoll_create1(0x80000)
poll(&(0x7f0000000200)=[{r0, 0x10}], 0x1, 0x2)

27.046287805s ago: executing program 9 (id=825):
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0xfffffc43, &(0x7f00000000c0)=0x40000800045)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x1b5cb000)
syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
r3 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r3, &(0x7f0000000200)={0x2, 0x4e20, @loopback}, 0x10)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r4, &(0x7f0000000100)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x17}}, 0x10)
connect$inet(r4, &(0x7f0000000280)={0x2, 0x0, @multicast1}, 0x10)

23.980529082s ago: executing program 9 (id=826):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = gettid()
timer_create(0x2, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, 0x0)
r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000400)={[0xfffffffffffffff5]}, 0x8, 0x80000)
ppoll(&(0x7f0000000300)=[{r1, 0x1}], 0x1, 0x0, 0x0, 0x0)
timer_settime(0x0, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)

22.101348856s ago: executing program 4 (id=721):
r0 = timerfd_create(0x8, 0x0)
readv(r0, &(0x7f00000001c0)=[{&(0x7f0000000240)=""/179, 0xb3}], 0x1)
timerfd_settime(r0, 0x0, &(0x7f0000000140)={{0x0, 0x3938700}, {0x0, 0x3938700}}, 0xffffffffffffffff)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x10012, r1, 0x0)

20.758305699s ago: executing program 4 (id=837):
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0xfffffc43, &(0x7f00000000c0)=0x40000800045)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x1b5cb000)
syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
r3 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r3, &(0x7f0000000200)={0x2, 0x4e20, @loopback}, 0x10)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r4, &(0x7f0000000100)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x17}}, 0x10)
connect$inet(r4, &(0x7f0000000280)={0x2, 0x0, @multicast1}, 0x10)

19.168072586s ago: executing program 4 (id=839):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000840)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2, &(0x7f0000000180)={[{@jqfmt_vfsold}, {@mblk_io_submit}, {@orlov}, {@noload}, {@delalloc}, {@mblk_io_submit}, {@commit}, {@grpid}, {@nogrpid}, {@init_itable_val={'init_itable', 0x3d, 0xfff}}]}, 0xfa, 0x477, &(0x7f0000001380)="$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")
creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x9)
mknod$loop(&(0x7f00000009c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2000, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000300)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
lchown(0x0, 0x0, 0x0)
creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
creat(&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)

15.610215808s ago: executing program 8 (id=848):
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f00000001c0)='./file1\x00', 0x0, &(0x7f00000000c0)={[{@acl}, {@errors_remount}, {@delalloc}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}]}, 0x1, 0x783, &(0x7f0000001000)="$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")
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
getpid()
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
sendmsg$ETHTOOL_MSG_COALESCE_SET(0xffffffffffffffff, 0x0, 0x20004010)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000100)={0x3, &(0x7f0000000140)=[{0x35, 0x0, 0x0, 0x2}, {0x35, 0x0, 0x0, 0xe12b}, {0x16}]})

15.350870238s ago: executing program 3 (id=850):
socket$inet6(0xa, 0x802, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x482, &(0x7f0000000200)=ANY=[@ANYBLOB="6e725f696e6f6465733d322c00f0284434"])
bpf$PROG_LOAD(0x5, 0x0, 0x0)
unshare(0x20000680)
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
ioctl$TIOCL_BLANKSCREEN(0xffffffffffffffff, 0x560e, &(0x7f0000000000))
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x1b5c8000)
r3 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sysvipc/msg\x00', 0x0, 0x0)
lseek(r5, 0x4, 0x1)
chdir(&(0x7f0000002040)='./file0\x00')
symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, 0x0)
read$FUSE(r5, &(0x7f00000057c0)={0x2020}, 0x2020)
write$FUSE_INIT(0xffffffffffffffff, 0x0, 0x0)

14.081847975s ago: executing program 3 (id=851):
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0xfffffc43, &(0x7f00000000c0)=0x40000800045)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x1b5cb000)
syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
r3 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r3, &(0x7f0000000200)={0x2, 0x4e20, @loopback}, 0x10)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r4, &(0x7f0000000100)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x17}}, 0x10)
connect$inet(r4, &(0x7f0000000280)={0x2, 0x0, @multicast1}, 0x10)

13.872860507s ago: executing program 9 (id=852):
fcntl$lock(0xffffffffffffffff, 0x26, &(0x7f0000000040)={0x0, 0x0, 0x4370, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
writev(0xffffffffffffffff, &(0x7f0000000040)=[{0x0}], 0x1)

13.590340405s ago: executing program 9 (id=853):
r0 = getpgrp(0x0)
r1 = socket$inet_icmp(0x2, 0x2, 0x1)
sendto$inet(r1, &(0x7f0000000200), 0x0, 0x20004815, &(0x7f00000000c0)={0x2, 0x4e24, @rand_addr=0x64010102}, 0x10)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0xd, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
add_key(&(0x7f0000000080)='dns_resolver\x00', 0x0, &(0x7f0000000040)="42d7", 0xfffff, 0xfffffffffffffffe)

11.729930301s ago: executing program 6 (id=857):
r0 = memfd_create(&(0x7f00000000c0)='y\x105\xfb\xf7u\x83%\x1f\xe09@:\x06\xc2\xb9x0\x90P\x03\x00\x00\x00\x00\x00\x00\x00\xfe,\x1c\xf1\xdd\xcf]\xac\xbc\t\xbb\xfc\xa4j\x9f\xceX\x8f5=\xaa\xd5\xe9n\xab s\xa5\x00\x8d\tV\t\x91\x18\x06O\xb0=D\xda\xb6F\x1a\xc82\x8b\xc0l\xd0\x89d\xe6\xb7\xd8\x97\xb8\a\x00\x00\x00%/u\x17\xdam\x8d\x01Lh\x1e^\x9ej\x1c\xc5\xf0\xf6\x92\x05\x9aH\x00\'\xd4\x94d[\v\xfc\xad\x0f\xa8\xc5\xad\x001\x8b%\xaa?\x00\x00\x00\x00\xf4\xff\x00\nj\x8c\xef\x90\xc0Z\xfa\x1a\xb3\xf0wVq\xe9d\xf8N\x80\xd1g\xd8e\xc8\x16\xad$\x02\xab\xce3\xb2\xb0\xd1\x11\xf0\xc2Gj+kV\x81\x17\xb2\x8b\xd0\'\r\v\xb8mU\x17\xd5r\x1e[\x8aH\xf8\xc4\xea\xcei\xdc\x03\x92\xeb(@f\xf2^-\x030\xd7\x15\xa0\xbb2WsCV\xd2kU\xe2Fb\x81\'\xc8\n\xa4f\x99r\xfe\xde\x16\x04\xe6\xba\xba{\x16\xed\xc9\xa1 \x89\xa5\xd6\x9a\xa1?\xc7\xa5\x96\xcd\a\xa3\xd7\t\xc1UL\xc7I\xc35g\xa9\x85-\xb5\xc7\xed\x94\xba\xf91\x19\xb5\xfa\xb4?V\xed\xd5p>3\xd0\xca\xa7@\x14\x17\xbc\xb5\xa3\xdc\xe6~s<\x92-\xa5\x19\xd0\x0f[JS-.dL\xf8_\xb4`\x05\xcf5\x9b\x06\xc5', 0x3)
fcntl$addseals(r0, 0x409, 0xb)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.swap.events\x00', 0x275a, 0x0)
dup2(r0, r1)
write$RDMA_USER_CM_CMD_JOIN_IP_MCAST(r1, &(0x7f0000000480)={0x10, 0x30, 0xfa00, {0x0, 0x0, {0xa, 0x4e20, 0x8, @remote, 0x5}}}, 0x38)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
sendto$inet(r2, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
sendmmsg$inet(r2, &(0x7f0000001340)=[{{0x0, 0x0, &(0x7f0000000480)=[{&(0x7f00000002c0)='c!', 0x2}], 0x1}}], 0x1, 0x20000001)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt(r3, 0x84, 0x81, &(0x7f0000000000)="0000000000000002", 0x8)
sendmmsg$inet_sctp(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000000000)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x20, 0x0}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x4}], 0x1, 0x4001)
r4 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r4, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={<r5=>0x0}, &(0x7f0000000280)=0x8)
r6 = socket$inet6_sctp(0xa, 0x1, 0x84)
r7 = dup2(r3, r6)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r6, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @empty, 0x4}], 0x1c)
sendto$inet6(r6, &(0x7f0000000040)='l', 0x1, 0x7ddfdbdfafa51cdd, &(0x7f0000000100)={0xa, 0x4e23, 0x2, @loopback, 0xffffffff}, 0x1c)
sendmmsg$inet6(r7, &(0x7f0000002840)=[{{&(0x7f00000000c0)={0xa, 0x4e21, 0xd322, @local, 0x6}, 0x1c, &(0x7f0000000540)=[{&(0x7f0000000340)='\b', 0x1}], 0x1}}], 0x1, 0x0)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r3, 0x84, 0x17, &(0x7f0000000080)={r5, 0x2, 0x1, "fa"}, 0x9)
setsockopt$inet_sctp6_SCTP_AUTH_DELETE_KEY(r6, 0x84, 0x19, &(0x7f0000000140)={r5, 0x2}, 0x8)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="16"], 0x50)

11.479192554s ago: executing program 9 (id=858):
r0 = syz_open_procfs(0xffffffffffffffff, 0x0)
preadv(r0, 0x0, 0x0, 0xffffffbf, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x800001000088}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r1 = getpgrp(0x0)
sched_setaffinity(r1, 0x5, &(0x7f0000000040)=0x29)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x2, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x0)
r3 = syz_clone(0x80000, 0x0, 0x0, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_genetlink_get_family_id$nl802154(0x0, 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r5], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000002c0)='sched_process_fork\x00'}, 0x10)
r6 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r6, &(0x7f0000000200)={0x2, 0x4e20, @empty}, 0x10)
fcntl$setstatus(r6, 0x4, 0x40800)
setsockopt$inet_mtu(r6, 0x0, 0xa, 0x0, 0x0)
connect$inet(r6, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x18}}, 0x10)
setsockopt$SO_BINDTODEVICE(r6, 0x1, 0x19, &(0x7f0000000040)='sit0\x00', 0x10)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
ftruncate(r7, 0x2000009)
sendfile(r6, r7, 0x0, 0x7ffff004)

10.16252027s ago: executing program 3 (id=860):
syz_emit_ethernet(0x4f, &(0x7f0000000a80)=ANY=[], 0x0)

9.983299596s ago: executing program 6 (id=861):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x6a855000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
lsm_list_modules(0x0, 0x0, 0x0)

9.954269332s ago: executing program 2 (id=862):
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000002080)='./file0\x00', &(0x7f00000020c0), 0x0, &(0x7f0000002100)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
syz_fuse_handle_req(r0, &(0x7f0000004180)="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", 0x2000, &(0x7f0000000280)={&(0x7f0000000080)={0x50, 0x0, 0x200000000000, {0x7, 0x29, 0x4, 0x22, 0xcdf, 0xfff, 0xd, 0xe9de, 0x0, 0x0, 0x8, 0x400}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

9.766168225s ago: executing program 4 (id=863):
socket$inet6(0xa, 0x802, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x482, &(0x7f0000000200)=ANY=[@ANYBLOB="6e725f696e6f6465733d322c00f0284434"])
bpf$PROG_LOAD(0x5, 0x0, 0x0)
unshare(0x20000680)
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
ioctl$TIOCL_BLANKSCREEN(0xffffffffffffffff, 0x560e, &(0x7f0000000000))
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x1b5c8000)
r3 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sysvipc/msg\x00', 0x0, 0x0)
lseek(r5, 0x4, 0x1)
chdir(&(0x7f0000002040)='./file0\x00')
symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, 0x0)
read$FUSE(r5, &(0x7f00000057c0)={0x2020}, 0x2020)
write$FUSE_INIT(0xffffffffffffffff, 0x0, 0x0)

8.121187573s ago: executing program 9 (id=864):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = gettid()
timer_create(0x2, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, 0x0)
r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000400)={[0xfffffffffffffff5]}, 0x8, 0x80000)
ppoll(&(0x7f0000000300)=[{r1, 0x1}], 0x1, 0x0, 0x0, 0x0)
timer_settime(0x0, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)

7.94881431s ago: executing program 2 (id=865):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs2/custom1\x00', 0x800, 0x0)
fsopen(&(0x7f0000000180)='proc\x00', 0x1)
socket$nl_xfrm(0x10, 0x3, 0x6)
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0xd, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x6)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_open_dev$usbfs(0x0, 0x20000007d, 0x0)
fchdir(0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)

6.214315411s ago: executing program 4 (id=866):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f00000006c0)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f000905", @ANYRES16], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000001540)={0x24, 0x0, 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="00220f0000005b574e69622bf8"], 0x0}, 0x0)
r1 = syz_open_dev$hiddev(&(0x7f0000000540), 0x0, 0x0)
ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f00000002c0)={0x3, 0x2, 0x3, 0xffff01c5, 0x1, 0xe88})

4.608030085s ago: executing program 6 (id=867):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), r0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00'})
r1 = getpgrp(0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000040)=0x5)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x2, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r3 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x1)
dup(r5)
r6 = epoll_create1(0x0)
epoll_create1(0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
epoll_ctl$EPOLL_CTL_ADD(r6, 0x1, r7, &(0x7f0000000000)={0x30000010, 0xe4})

4.546836809s ago: executing program 2 (id=868):
syz_emit_ethernet(0x11, &(0x7f0000000400)={@dev={'\xaa\xaa\xaa\xaa\xaa', 0xa}, @empty, @void, {@llc_tr={0x11, {@llc={0xfc, 0xfc, "15"}}}}}, 0x0)

4.545581766s ago: executing program 8 (id=869):
set_mempolicy(0x3, &(0x7f0000000000)=0x7b1e, 0x9)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ff5000/0x8000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f000000b000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff7000/0x1000)=nil, &(0x7f0000007000/0x3000)=nil, &(0x7f0000004000/0x3000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
poll(&(0x7f0000000000), 0x20000000000000b5, 0x9)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
r0 = socket(0x11, 0x2, 0x0)
setsockopt(r0, 0x107, 0xd, &(0x7f00000000c0)="0000e20085c75c11", 0x8)

3.819130916s ago: executing program 8 (id=870):
r0 = getpgrp(0x0)
r1 = socket$inet_icmp(0x2, 0x2, 0x1)
sendto$inet(r1, &(0x7f0000000200), 0x0, 0x20004815, &(0x7f00000000c0)={0x2, 0x4e24, @rand_addr=0x64010102}, 0x10)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0xd, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
add_key(&(0x7f0000000080)='dns_resolver\x00', 0x0, &(0x7f0000000040)="42d7", 0xfffff, 0xfffffffffffffffe)

2.114530515s ago: executing program 8 (id=871):
r0 = socket(0xa, 0x5, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x43, &(0x7f0000000000)=0xd, 0x4)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f00000002c0)=[@in={0x2, 0x4e24, @remote}], 0x10)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000500)=[@in6={0xa, 0x4e24, 0x4, @loopback}], 0x1c)
setsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000140)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000000080), 0x0, 0x44004, &(0x7f0000000100)={0xa, 0x4e24, 0x8, @loopback, 0xc5f}, 0x1c)

1.845141365s ago: executing program 3 (id=872):
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0xfffffc43, &(0x7f00000000c0)=0x40000800045)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x1b5cb000)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
r3 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r3, &(0x7f0000000200)={0x2, 0x4e20, @loopback}, 0x10)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r4, &(0x7f0000000100)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x17}}, 0x10)
connect$inet(r4, &(0x7f0000000280)={0x2, 0x0, @multicast1}, 0x10)

1.29055702s ago: executing program 3 (id=873):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e21, @broadcast}, 0x10)
socket$inet6(0xa, 0x2, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x4, 0x0, 0x0, 0x10000000004, 0x80000000, 0x200, 0x1ff}, 0x0, 0x0, 0x0, 0x0)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x11)
setsockopt$sock_int(r0, 0x1, 0x12, &(0x7f0000000000)=0xffff2652, 0x4)

1.205548718s ago: executing program 6 (id=874):
munmap(&(0x7f0000002000/0x1000)=nil, 0x1000)
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000400)={0x2, 0x4e23, @multicast1}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000000000)={0x2, 0x24e23, @loopback}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x1b32, 0x4)
sendto$inet(r0, &(0x7f0000000540)='v', 0x1, 0x4040, 0x0, 0x0)
recvmmsg(r0, &(0x7f0000000a00)=[{{0x0, 0x0, 0x0}, 0x1e0d}], 0x1, 0x120a0, 0x0)

1.194817829s ago: executing program 8 (id=875):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, 0x0, 0x0)
connect$inet(r0, &(0x7f0000001bc0)={0x2, 0x4e23, @loopback}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000080)=0xe4ed, 0x4)

1.018083425s ago: executing program 2 (id=876):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = dup(r0)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, 0x0, 0x0)
sendmsg$inet6(r0, 0x0, 0x4048043)
setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r1, 0x84, 0x22, &(0x7f0000002700)={0x1, 0x2, 0x0, 0xfffffff8}, 0x10)

818.37722ms ago: executing program 6 (id=877):
setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, &(0x7f0000000000)={0xfffffffb}, 0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000001c0)=ANY=[@ANYBLOB="240000001200970228bd7000005cf2b840000000", @ANYRES32=0x0, @ANYBLOB="00000000000000000400196e46"], 0x24}, 0x1, 0x0, 0x0, 0x40010}, 0x0)

690.486164ms ago: executing program 2 (id=878):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000140)={0x0, 0xc, 0x0, 0x0, 0xff, "810000cc2b000000000000fa25ffff00ffffff"})
r1 = syz_open_pts(r0, 0x143603)
r2 = syz_open_pts(r0, 0x2000)
io_setup(0x1, &(0x7f0000002500)=<r3=>0x0)
io_submit(r3, 0x1, &(0x7f0000000400)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x5, r2, &(0x7f0000000380)="a3", 0x1}])
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000100)=0x1b)

512.339938ms ago: executing program 8 (id=879):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x6a855000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
lsm_list_modules(0x0, 0x0, 0x0)

331.496111ms ago: executing program 6 (id=880):
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
pipe(&(0x7f00000003c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
io_setup(0x3fb, &(0x7f0000000500)=<r2=>0x0)
io_submit(r2, 0xf000, &(0x7f0000000300)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x5, 0x0, r1, 0x0}, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r1, &(0x7f00000001c0)='m', 0xffffff4c}])
r3 = socket$alg(0x26, 0x5, 0x0)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000000)="adcd1a9a3fc36e961ed00fe41b0cd695", 0x20)
r4 = accept4$alg(r3, 0x0, 0x0, 0x0)
read$alg(r4, &(0x7f0000002300)=""/4111, 0x100f)
sendmmsg$alg(r4, &(0x7f0000007e40)=[{0x0, 0x0, &(0x7f0000003740)=[{&(0x7f00000012c0)="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", 0x1010}], 0x1, 0x0, 0x0, 0x20000000}], 0x1, 0x20040894)
io_destroy(r2)
close_range(r0, 0xffffffffffffffff, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)

1.62553ms ago: executing program 3 (id=881):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs2/custom1\x00', 0x800, 0x0)
fsopen(&(0x7f0000000180)='proc\x00', 0x1)
socket$nl_xfrm(0x10, 0x3, 0x6)
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0xd, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x1, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_open_dev$usbfs(0x0, 0x20000007d, 0x0)
fchdir(0xffffffffffffffff)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)

0s ago: executing program 2 (id=882):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000000)={0x8, 0x0, 0xfffffffa}, 0x10)
write(r0, &(0x7f00000000c0)="240000001e005f0214f6fffffffffff80700000001000000000000", 0x1b)

kernel console output (not intermixed with test programs):

8588][ T6403] BTRFS info (device loop2): enabling ssd optimizations
[  159.744744][ T6403] BTRFS info (device loop2): turning on async discard
[  159.769229][ T6403] BTRFS info (device loop2): enabling free space tree
[  159.820762][   T24] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  159.915290][ T6403] loop2: detected capacity change from 32768 to 64
[  159.989495][   T24] usb 5-1: Using ep0 maxpacket: 8
[  160.005443][   T24] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[  160.033159][   T24] usb 5-1: config 0 has no interface number 0
[  160.368812][   T24] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  160.379255][   T24] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  160.388297][   T24] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  160.407547][   T24] usb 5-1: config 0 descriptor??
[  160.581342][   T24] iowarrior 5-1:0.1: no interrupt-in endpoint found
[  160.924764][ T6034] usb 5-1: USB disconnect, device number 3
[  160.958149][ T6420] loop1: detected capacity change from 0 to 32768
[  160.968437][ T6450] syz.2.109: attempt to access beyond end of device
[  160.968437][ T6450] loop2: rw=6145, sector=10456, nr_sectors = 8 limit=64
[  161.033870][ T6420] (syz.1.133,6420,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  161.116860][ T6443] BTRFS info (device loop2): scrub: started on devid 1
[  161.138148][ T6420] (syz.1.133,6420,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  161.210134][ T6450] BTRFS error (device loop2): bdev /dev/loop2 errs: wr 1, rd 0, flush 0, corrupt 0, gen 0
[  161.281874][ T6420] JBD2: Ignoring recovery information on journal
[  161.300937][ T6443] syz.2.109: attempt to access beyond end of device
[  161.300937][ T6443] loop2: rw=2048, sector=128, nr_sectors = 8 limit=64
[  161.328326][ T6450] syz.2.109: attempt to access beyond end of device
[  161.328326][ T6450] loop2: rw=6145, sector=10448, nr_sectors = 8 limit=64
[  161.387363][ T6450] BTRFS error (device loop2): bdev /dev/loop2 errs: wr 2, rd 0, flush 0, corrupt 0, gen 0
[  161.399542][ T6443] syz.2.109: attempt to access beyond end of device
[  161.399542][ T6443] loop2: rw=0, sector=10240, nr_sectors = 128 limit=64
[  161.446657][ T6443] BTRFS error (device loop2): bdev /dev/loop2 errs: wr 2, rd 1, flush 0, corrupt 0, gen 0
[  161.519652][ T6443] syz.2.109: attempt to access beyond end of device
[  161.519652][ T6443] loop2: rw=0, sector=10368, nr_sectors = 128 limit=64
[  161.534331][ T3860] kworker/u8:13: attempt to access beyond end of device
[  161.534331][ T3860] loop2: rw=0, sector=10240, nr_sectors = 8 limit=64
[  161.593573][ T6462] loop0: detected capacity change from 0 to 256
[  161.612622][ T6443] BTRFS error (device loop2): bdev /dev/loop2 errs: wr 2, rd 2, flush 0, corrupt 0, gen 0
[  161.626126][ T4877] kworker/u8:14: attempt to access beyond end of device
[  161.626126][ T4877] loop2: rw=0, sector=10368, nr_sectors = 8 limit=64
[  161.639894][ T4877] BTRFS error (device loop2): bdev /dev/loop2 errs: wr 2, rd 3, flush 0, corrupt 0, gen 0
[  161.659233][ T6420] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  161.673927][ T4877] kworker/u8:14: attempt to access beyond end of device
[  161.673927][ T4877] loop2: rw=0, sector=10376, nr_sectors = 8 limit=64
[  161.710228][ T3860] BTRFS error (device loop2): bdev /dev/loop2 errs: wr 2, rd 4, flush 0, corrupt 0, gen 0
[  161.786606][ T6467] wg1: entered promiscuous mode
[  161.791840][ T6467] wg1: entered allmulticast mode
[  162.126311][ T4877] BTRFS error (device loop2): bdev /dev/loop2 errs: wr 2, rd 5, flush 0, corrupt 0, gen 0
[  162.350235][ T3860] kworker/u8:13: attempt to access beyond end of device
[  162.350235][ T3860] loop2: rw=0, sector=10248, nr_sectors = 8 limit=64
[  162.437022][ T4877] kworker/u8:14: attempt to access beyond end of device
[  162.437022][ T4877] loop2: rw=0, sector=10384, nr_sectors = 8 limit=64
[  162.887302][ T4877] BTRFS error (device loop2): bdev /dev/loop2 errs: wr 2, rd 6, flush 0, corrupt 0, gen 0
[  162.905124][ T3860] BTRFS error (device loop2): bdev /dev/loop2 errs: wr 2, rd 7, flush 0, corrupt 0, gen 0
[  162.933386][ T4877] BTRFS error (device loop2): bdev /dev/loop2 errs: wr 2, rd 8, flush 0, corrupt 0, gen 0
[  162.959890][ T6462] FAT-fs (loop0): Directory bread(block 64) failed
[  162.972907][ T6462] FAT-fs (loop0): Directory bread(block 65) failed
[  162.987060][ T4877] BTRFS error (device loop2): scrub: unable to fixup (regular) error at logical 5308416 on dev /dev/loop2 physical 5308416
[  163.029240][ T6462] FAT-fs (loop0): Directory bread(block 66) failed
[  163.049686][ T3860] BTRFS error (device loop2): scrub: unable to fixup (regular) error at logical 5242880 on dev /dev/loop2 physical 5242880
[  163.080901][ T6462] FAT-fs (loop0): Directory bread(block 67) failed
[  163.109172][ T6462] FAT-fs (loop0): Directory bread(block 68) failed
[  163.116079][ T3860] BTRFS error (device loop2): scrub: unable to fixup (regular) error at logical 5242880 on dev /dev/loop2 physical 5242880
[  163.122010][ T4877] BTRFS error (device loop2): scrub: unable to fixup (regular) error at logical 5308416 on dev /dev/loop2 physical 5308416
[  163.135511][ T5832] ocfs2: Unmounting device (7,1) on (node local)
[  163.146370][ T4877] BTRFS error (device loop2): scrub: unable to fixup (regular) error at logical 5308416 on dev /dev/loop2 physical 5308416
[  163.161938][ T4877] BTRFS error (device loop2): scrub: unable to fixup (regular) error at logical 5308416 on dev /dev/loop2 physical 5308416
[  163.176129][ T4877] BTRFS error (device loop2): scrub: unable to fixup (regular) error at logical 5308416 on dev /dev/loop2 physical 5308416
[  163.189924][ T4877] BTRFS error (device loop2): scrub: unable to fixup (regular) error at logical 5308416 on dev /dev/loop2 physical 5308416
[  163.229844][ T6462] FAT-fs (loop0): Directory bread(block 69) failed
[  163.269620][ T6475] input: syz1 as /devices/virtual/input/input6
[  163.319637][ T3860] BTRFS error (device loop2): scrub: unable to fixup (regular) error at logical 5242880 on dev /dev/loop2 physical 5242880
[  163.337838][ T6462] FAT-fs (loop0): Directory bread(block 70) failed
[  163.345952][ T3860] BTRFS error (device loop2): scrub: unable to fixup (regular) error at logical 5242880 on dev /dev/loop2 physical 5242880
[  163.414307][ T6462] FAT-fs (loop0): Directory bread(block 71) failed
[  163.523083][ T6450] BTRFS error (device loop2 state A): Transaction aborted (error -5)
[  163.543481][ T6462] FAT-fs (loop0): Directory bread(block 72) failed
[  163.593944][ T6462] FAT-fs (loop0): Directory bread(block 73) failed
[  163.626079][ T6450] BTRFS: error (device loop2 state A) in process_one_buffer:445: errno=-5 IO failure
[  163.820993][ T6443] BTRFS warning (device loop2 state A): scrub: failed setting block group ro: -5
[  163.859261][ T6450] BTRFS info (device loop2 state EA): forced readonly
[  163.911312][ T6450] BTRFS: error (device loop2 state EA) in free_log_tree:3661: errno=-5 IO failure
[  164.575935][ T6450] BTRFS: error (device loop2 state EA) in process_one_buffer:445: errno=-5 IO failure
[  164.732917][ T6450] BTRFS: error (device loop2 state EA) in free_log_tree:3661: errno=-5 IO failure
[  164.763376][ T6443] BTRFS info (device loop2 state EA): scrub: not finished on devid 1 with status: -5
[  164.818939][ T6450] BTRFS warning (device loop2 state EA): Skipping commit of aborted transaction.
[  166.086058][   T50] bio_check_eod: 27 callbacks suppressed
[  166.086080][   T50] kworker/u8:3: attempt to access beyond end of device
[  166.086080][   T50] loop0: rw=1, sector=1224, nr_sectors = 608 limit=256
[  166.176403][   T50] kworker/u8:3: attempt to access beyond end of device
[  166.176403][   T50] loop0: rw=1, sector=1864, nr_sectors = 2064 limit=256
[  166.204081][ T6488] xt_CT: You must specify a L4 protocol and not use inversions on it
[  166.213885][   T50] kworker/u8:3: attempt to access beyond end of device
[  166.213885][   T50] loop0: rw=1, sector=3928, nr_sectors = 2608 limit=256
[  166.234295][ T5842] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  166.243297][ T5842] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  166.249234][ T6450] BTRFS: error (device loop2 state EA) in cleanup_transaction:2036: errno=-5 IO failure
[  166.262997][ T5842] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  166.274626][   T50] kworker/u8:3: attempt to access beyond end of device
[  166.274626][   T50] loop0: rw=1, sector=6536, nr_sectors = 2048 limit=256
[  166.291475][ T5842] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  166.299823][ T5842] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  166.314823][   T50] kworker/u8:3: attempt to access beyond end of device
[  166.314823][   T50] loop0: rw=1, sector=8584, nr_sectors = 2048 limit=256
[  166.339096][   T50] kworker/u8:3: attempt to access beyond end of device
[  166.339096][   T50] loop0: rw=1, sector=10632, nr_sectors = 2048 limit=256
[  166.358458][   T50] kworker/u8:3: attempt to access beyond end of device
[  166.358458][   T50] loop0: rw=1, sector=12680, nr_sectors = 2048 limit=256
[  166.377719][   T50] kworker/u8:3: attempt to access beyond end of device
[  166.377719][   T50] loop0: rw=1, sector=14728, nr_sectors = 2048 limit=256
[  166.395261][   T50] kworker/u8:3: attempt to access beyond end of device
[  166.395261][   T50] loop0: rw=1, sector=16776, nr_sectors = 2048 limit=256
[  166.413286][   T50] kworker/u8:3: attempt to access beyond end of device
[  166.413286][   T50] loop0: rw=1, sector=18824, nr_sectors = 2048 limit=256
[  166.505540][ T6443] BTRFS error (device loop2 state EA): scrub: failed to start transaction to fix super block errors: -30
[  166.630016][ T6492] loop1: detected capacity change from 0 to 512
[  166.938617][ T6492] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  167.027547][ T6492] ext4 filesystem being mounted at /26/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  167.177477][   T24] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  167.409917][   T24] usb 6-1: Using ep0 maxpacket: 8
[  167.458634][   T24] usb 6-1: config 0 has an invalid interface number: 1 but max is 0
[  167.569489][   T24] usb 6-1: config 0 has no interface number 0
[  167.575624][   T24] usb 6-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  167.661033][   T24] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  167.713372][   T24] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  167.771921][   T24] usb 6-1: config 0 descriptor??
[  167.812804][   T24] iowarrior 6-1:0.1: no interrupt-in endpoint found
[  167.946515][ T5832] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  168.024983][  T864] usb 6-1: USB disconnect, device number 2
[  168.262211][ T6489] chnl_net:caif_netlink_parms(): no params data found
[  168.369897][ T5842] Bluetooth: hci6: command tx timeout
[  170.449883][ T5842] Bluetooth: hci6: command tx timeout
[  170.752774][ T6443] BTRFS info (device loop2 state EA): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  171.102860][ T6535] loop5: detected capacity change from 0 to 256
[  171.176552][ T6539] loop1: detected capacity change from 0 to 256
[  171.206515][ T6539] FAT-fs (loop1): Directory bread(block 1285) failed
[  171.262624][ T6535] FAT-fs (loop5): Directory bread(block 64) failed
[  171.299100][ T6535] FAT-fs (loop5): Directory bread(block 65) failed
[  171.316204][ T6535] FAT-fs (loop5): Directory bread(block 66) failed
[  171.329399][ T6535] FAT-fs (loop5): Directory bread(block 67) failed
[  171.346432][ T6535] FAT-fs (loop5): Directory bread(block 68) failed
[  171.384843][ T6535] FAT-fs (loop5): Directory bread(block 69) failed
[  171.421586][ T6535] FAT-fs (loop5): Directory bread(block 70) failed
[  171.446945][ T6535] FAT-fs (loop5): Directory bread(block 71) failed
[  171.484914][ T6535] FAT-fs (loop5): Directory bread(block 72) failed
[  171.496347][ T6535] FAT-fs (loop5): Directory bread(block 73) failed
[  171.496373][ T6489] bridge0: port 1(bridge_slave_0) entered blocking state
[  172.642648][ T5842] Bluetooth: hci6: command tx timeout
[  172.688304][ T6489] bridge0: port 1(bridge_slave_0) entered disabled state
[  172.707982][ T6037] bio_check_eod: 5 callbacks suppressed
[  172.708000][ T6037] kworker/u8:17: attempt to access beyond end of device
[  172.708000][ T6037] loop5: rw=1, sector=1224, nr_sectors = 608 limit=256
[  172.733669][ T6489] bridge_slave_0: entered allmulticast mode
[  172.804002][ T6489] bridge_slave_0: entered promiscuous mode
[  172.844396][ T6037] kworker/u8:17: attempt to access beyond end of device
[  172.844396][ T6037] loop5: rw=1, sector=1864, nr_sectors = 8640 limit=256
[  172.846675][ T6489] bridge0: port 2(bridge_slave_1) entered blocking state
[  172.906630][ T6552] loop1: detected capacity change from 0 to 1024
[  172.913764][ T6489] bridge0: port 2(bridge_slave_1) entered disabled state
[  172.948828][ T6489] bridge_slave_1: entered allmulticast mode
[  172.952931][ T6037] kworker/u8:17: attempt to access beyond end of device
[  172.952931][ T6037] loop5: rw=1, sector=10504, nr_sectors = 8336 limit=256
[  173.033549][ T6489] bridge_slave_1: entered promiscuous mode
[  173.045821][ T6552] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  173.068735][ T6037] kworker/u8:17: attempt to access beyond end of device
[  173.068735][ T6037] loop5: rw=1, sector=18840, nr_sectors = 2048 limit=256
[  173.088290][ T6550] warning: `syz.3.166' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  173.190137][ T6037] kworker/u8:17: attempt to access beyond end of device
[  173.190137][ T6037] loop5: rw=1, sector=20888, nr_sectors = 2048 limit=256
[  173.268864][ T6037] kworker/u8:17: attempt to access beyond end of device
[  173.268864][ T6037] loop5: rw=1, sector=22936, nr_sectors = 4032 limit=256
[  173.301350][ T6037] kworker/u8:17: attempt to access beyond end of device
[  173.301350][ T6037] loop5: rw=1, sector=26968, nr_sectors = 6832 limit=256
[  173.315927][ T5832] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  173.379848][ T6489] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  173.389467][ T6560] netlink: 124 bytes leftover after parsing attributes in process `syz.4.168'.
[  173.422491][ T6489] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  174.843023][ T5842] Bluetooth: hci6: command tx timeout
[  175.050838][ T6489] team0: Port device team_slave_0 added
[  175.072827][ T6489] team0: Port device team_slave_1 added
[  175.271220][ T6489] batman_adv: batadv0: Adding interface: batadv_slave_0
[  175.278178][ T6489] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  175.325660][   T31] audit: type=1326 audit(1766625594.293:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6570 comm="syz.4.173" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd63db8f749 code=0x0
[  175.346295][ T6489] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  175.484814][ T6489] batman_adv: batadv0: Adding interface: batadv_slave_1
[  175.568485][ T6489] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  175.954518][ T6489] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  176.277793][ T6489] hsr_slave_0: entered promiscuous mode
[  176.323623][ T6489] hsr_slave_1: entered promiscuous mode
[  176.352548][ T6489] debugfs: 'hsr0' already exists in 'hsr'
[  176.374571][ T6489] Cannot create hsr debugfs directory
[  176.589193][ T6507] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  176.809627][ T6507] usb 1-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  176.858974][ T6507] usb 1-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  176.870390][ T2146] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  176.898796][ T6507] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 66
[  176.937638][ T6507] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  176.978608][ T6507] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  177.016790][ T6507] usb 1-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  177.049143][ T2146] usb 6-1: Using ep0 maxpacket: 8
[  177.054288][ T6507] usb 1-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  177.067295][ T2146] usb 6-1: config index 0 descriptor too short (expected 74, got 45)
[  177.079082][ T6507] usb 1-1: Product: syz
[  177.088983][ T2146] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 1536, setting to 1024
[  177.108205][ T6507] usb 1-1: Manufacturer: syz
[  177.216390][ T2146] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  177.314629][ T2146] usb 6-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  177.463444][ T2146] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  177.563618][ T2146] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  177.722916][ T6595] loop4: detected capacity change from 0 to 128
[  177.744964][ T6507] cdc_wdm 1-1:1.0: skipping garbage
[  177.762709][ T2146] usbtmc 6-1:16.0: bulk endpoints not found
[  177.768737][ T6507] cdc_wdm 1-1:1.0: skipping garbage
[  177.785314][ T6507] cdc_wdm 1-1:1.0: cdc-wdm0: USB WDM device
[  177.805535][ T6595] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  177.819979][ T6507] cdc_wdm 1-1:1.0: Unknown control protocol
[  177.946857][ T6017] usb 1-1: USB disconnect, device number 5
[  177.956542][ T6595] ext4 filesystem being mounted at /30/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  178.106684][ T6489] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  178.126944][ T6595] EXT4-fs error (device loop4): htree_dirblock_to_tree:1080: inode #2: block 4: comm syz.4.180: bad entry in directory: directory entry overrun - offset=1012, inode=128, rec_len=65544, size=1024 fake=0
[  178.127091][ T6489] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  178.333367][ T6595] EXT4-fs (loop4): Remounting filesystem read-only
[  178.335287][ T6489] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  178.356023][ T6489] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  179.175548][ T6612] netlink: 124 bytes leftover after parsing attributes in process `syz.3.182'.
[  179.190901][ T5827] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  179.371494][ T6207] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  180.534783][ T6489] 8021q: adding VLAN 0 to HW filter on device bond0
[  181.833305][ T6126] usb 6-1: USB disconnect, device number 3
[  181.894944][ T6489] 8021q: adding VLAN 0 to HW filter on device team0
[  182.010387][ T6035] bridge0: port 1(bridge_slave_0) entered blocking state
[  182.017542][ T6035] bridge0: port 1(bridge_slave_0) entered forwarding state
[  182.387921][ T6035] bridge0: port 2(bridge_slave_1) entered blocking state
[  182.395174][ T6035] bridge0: port 2(bridge_slave_1) entered forwarding state
[  183.741261][ T6651] loop5: detected capacity change from 0 to 512
[  183.984654][ T6651] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  184.042075][ T6651] ext4 filesystem being mounted at /30/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  184.180431][ T6651] EXT4-fs error (device loop5): ext4_xattr_block_get:597: inode #15: comm syz.5.192: corrupted xattr block 33: invalid header
[  184.544361][ T6651] EXT4-fs error (device loop5): ext4_get_inode_usage:888: inode #15: comm syz.5.192: corrupted xattr block 33: invalid header
[  184.901585][ T6662] loop0: detected capacity change from 0 to 2048
[  185.011828][ T6662] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  185.012789][ T6489] 8021q: adding VLAN 0 to HW filter on device batadv0
[  185.119434][ T6665] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  185.162824][ T5829] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  185.349140][ T6416] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  187.179140][ T6416] usb 1-1: Using ep0 maxpacket: 32
[  187.196458][ T6416] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x85 has an invalid bInterval 102, changing to 10
[  187.240241][ T6416] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x85 has invalid maxpacket 42840, setting to 1024
[  187.276058][ T6416] usb 1-1: New USB device found, idVendor=0499, idProduct=1010, bcdDevice= a.f5
[  187.309154][ T6416] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  187.319483][ T6416] usb 1-1: Product: syz
[  187.323648][ T6416] usb 1-1: Manufacturer: syz
[  187.349390][ T6416] usb 1-1: SerialNumber: syz
[  187.380616][ T6416] usb 1-1: config 0 descriptor??
[  187.386393][ T6662] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  187.433909][ T6416] usb 1-1: Quirk or no altset; falling back to MIDI 1.0
[  187.802506][ T6489] veth0_vlan: entered promiscuous mode
[  187.882020][ T6489] veth1_vlan: entered promiscuous mode
[  188.154127][ T5828] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  188.524286][ T6489] veth0_macvtap: entered promiscuous mode
[  188.623364][ T6489] veth1_macvtap: entered promiscuous mode
[  188.847732][ T6489] batman_adv: batadv0: Interface activated: batadv_slave_0
[  188.946143][ T6489] batman_adv: batadv0: Interface activated: batadv_slave_1
[  189.057647][ T6231] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  189.120425][ T6231] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  189.186569][ T6231] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  189.267915][ T6231] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  189.390102][ T6416] usb 1-1: USB disconnect, device number 7
[  190.101620][ T6029] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  190.237863][ T6029] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  191.368126][ T6684] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  191.517000][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  191.560745][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  191.839170][ T6416] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  192.983739][ T6714] loop1: detected capacity change from 0 to 1024
[  193.215152][ T6416] usb 5-1: Using ep0 maxpacket: 8
[  193.222999][ T6416] usb 5-1: config index 0 descriptor too short (expected 74, got 45)
[  193.231784][ T6416] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 1536, setting to 1024
[  193.244930][ T6416] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  193.246160][ T6714] EXT4-fs: inline encryption not supported
[  193.255847][ T6416] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 26232, setting to 64
[  193.291598][ T6714] EXT4-fs: Ignoring removed nobh option
[  193.297357][ T6714] EXT4-fs: Ignoring removed bh option
[  193.730448][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  193.736902][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  194.031123][ T6714] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  194.208823][ T6416] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  194.224525][ T6416] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  194.238817][ T6416] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  194.259152][ T5836] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  194.267509][ T6416] usbtmc 5-1:16.0: bulk endpoints not found
[  194.355928][ T6730] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4215: comm syz.1.205: Allocating blocks 497-513 which overlap fs metadata
[  194.437931][ T5836] usb 7-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config
[  194.469505][ T5836] usb 7-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21
[  194.502946][ T5836] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  194.537330][ T5836] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  194.567801][ T5836] usb 7-1: config 0 descriptor??
[  194.602207][ T5836] usbhid 7-1:0.0: couldn't find an input interrupt endpoint
[  195.512467][ T6738] netlink: 'syz.5.209': attribute type 11 has an invalid length.
[  196.349413][ T6714] EXT4-fs (loop1): pa ffff888031d38570: logic 400, phys. 129, len 24
[  196.357658][ T6714] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5466: group 0, free 22, pa_free 23
[  196.388032][ T6207] usb 7-1: USB disconnect, device number 2
[  196.422943][ T1126] EXT4-fs error (device loop1): mb_free_blocks:2037: group 0, inode 15: block 433:freeing already freed block (bit 27); block bitmap corrupt.
[  197.848235][ T5914] usb 5-1: USB disconnect, device number 4
[  197.881439][ T5832] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  202.724202][ T6764] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  202.731678][ T6764] IPv6: NLM_F_CREATE should be set when creating new route
[  203.579264][ T6769] xt_CT: You must specify a L4 protocol and not use inversions on it
[  205.081781][ T6757] loop4: detected capacity change from 0 to 32768
[  205.099164][ T5914] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  205.128380][ T6757] btrfs: Deprecated parameter 'usebackuproot'
[  205.139293][ T6757] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  205.160107][ T6757] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.216 (6757)
[  205.239132][ T6757] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  205.272486][ T6757] BTRFS info (device loop4): using crc32c (crc32c-lib) checksum algorithm
[  205.279733][ T6416] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  205.291098][ T5914] usb 5-1: Using ep0 maxpacket: 32
[  205.321179][ T6757] BTRFS warning (device loop4): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  205.395291][ T6773] loop4: detected capacity change from 32768 to 0
[  205.409395][    C0] I/O error, dev loop4, sector 32760 op 0x0:(READ) flags 0x880700 phys_seg 1 prio class 2
[  205.507956][ T6416] usb 1-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config
[  205.509447][ T6757] BTRFS error (device loop4): failed to read chunk root
[  205.518401][ T6416] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21
[  205.538655][ T6416] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  205.547948][ T6416] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  205.560102][ T6416] usb 1-1: config 0 descriptor??
[  205.570592][ T6416] usbhid 1-1:0.0: couldn't find an input interrupt endpoint
[  205.722635][ T6757] BTRFS error (device loop4): open_ctree failed: -5
[  205.760379][ T6791] fuse: Bad value for 'fd'
[  205.934045][ T5914] usb 5-1: unable to get BOS descriptor or descriptor too short
[  205.971795][ T5914] usb 5-1: unable to read config index 0 descriptor/start: -71
[  206.035822][ T5914] usb 5-1: can't read configurations, error -71
[  208.434169][ T6416] usb 1-1: USB disconnect, device number 8
[  211.919319][ T5838] Bluetooth: hci2: command 0x0406 tx timeout
[  211.919342][   T52] Bluetooth: hci0: command 0x0406 tx timeout
[  211.919371][ T5851] Bluetooth: hci1: command 0x0406 tx timeout
[  211.925356][ T5850] Bluetooth: hci4: command 0x0406 tx timeout
[  213.339351][ T6841] netlink: 28 bytes leftover after parsing attributes in process `syz.3.241'.
[  213.735706][ T6847] loop5: detected capacity change from 0 to 2048
[  213.747217][ T6847] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  213.909519][   T24] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  214.319310][   T24] usb 7-1: too many configurations: 9, using maximum allowed: 8
[  214.355026][   T24] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  214.383383][   T24] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  214.441243][   T24] usb 7-1: config 0 interface 0 has no altsetting 0
[  214.472964][   T24] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  214.539327][   T24] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  214.579100][   T24] usb 7-1: config 0 interface 0 has no altsetting 0
[  214.593203][   T24] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  214.642542][   T24] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  214.679266][   T24] usb 7-1: config 0 interface 0 has no altsetting 0
[  214.719690][   T24] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  214.759083][   T24] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  214.799103][   T24] usb 7-1: config 0 interface 0 has no altsetting 0
[  214.849713][   T24] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  214.889104][   T24] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  214.897987][   T24] usb 7-1: config 0 interface 0 has no altsetting 0
[  214.969353][   T24] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  215.009528][   T24] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  215.059163][   T24] usb 7-1: config 0 interface 0 has no altsetting 0
[  215.090235][   T24] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  215.129095][   T24] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  215.138144][   T24] usb 7-1: config 0 interface 0 has no altsetting 0
[  215.169421][   T24] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  215.199088][   T24] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  215.207966][   T24] usb 7-1: config 0 interface 0 has no altsetting 0
[  215.209118][ T5965] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  215.243460][   T24] usb 7-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  215.272913][   T24] usb 7-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  215.301695][   T24] usb 7-1: Product: syz
[  215.326140][   T24] usb 7-1: Manufacturer: syz
[  215.339146][   T24] usb 7-1: SerialNumber: syz
[  215.389176][   T24] usb 7-1: config 0 descriptor??
[  215.498944][   T24] usb 7-1: can't set config #0, error -71
[  215.544743][   T24] usb 7-1: USB disconnect, device number 3
[  215.670290][ T5965] usb 2-1: Using ep0 maxpacket: 8
[  215.682958][ T5965] usb 2-1: config index 0 descriptor too short (expected 74, got 45)
[  215.704970][ T5965] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 1536, setting to 1024
[  215.741297][ T5965] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  215.773598][ T5965] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 26232, setting to 64
[  215.809703][ T5965] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  215.851350][ T5965] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  215.889308][ T5965] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  215.924165][ T5965] usbtmc 2-1:16.0: bulk endpoints not found
[  216.003458][   T24] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  216.109978][ T6864] loop4: detected capacity change from 0 to 512
[  216.128015][ T6864] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  216.167067][ T6864] EXT4-fs error (device loop4): ext4_init_orphan_info:620: comm syz.4.248: orphan file block 0: bad magic
[  216.180706][   T24] usb 7-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config
[  216.191167][   T24] usb 7-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21
[  216.204480][   T24] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  216.214040][   T24] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  216.214316][ T6864] EXT4-fs (loop4): Remounting filesystem read-only
[  216.224946][   T24] usb 7-1: config 0 descriptor??
[  216.240646][   T24] usbhid 7-1:0.0: couldn't find an input interrupt endpoint
[  216.329630][ T6864] EXT4-fs (loop4): mount failed
[  218.102141][ T5836] usb 2-1: USB disconnect, device number 5
[  220.084542][ T5836] usb 7-1: USB disconnect, device number 4
[  220.226554][ T6889] loop1: detected capacity change from 0 to 512
[  220.270535][ T6889] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  220.300179][ T6891] syzkaller0: entered promiscuous mode
[  220.322052][ T6891] syzkaller0: entered allmulticast mode
[  220.400028][ T6889] EXT4-fs error (device loop1): xattr_find_entry:337: inode #15: comm syz.1.253: corrupted xattr entries
[  220.416645][ T6889] EXT4-fs (loop1): 1 orphan inode deleted
[  220.425496][ T6889] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  221.345814][ T5832] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  221.757803][ T6903] loop5: detected capacity change from 0 to 1024
[  221.999230][   T31] audit: type=1326 audit(1766625640.823:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6905 comm="syz.4.258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd63db8f749 code=0x7ffc0000
[  222.499112][   T31] audit: type=1326 audit(1766625640.823:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6905 comm="syz.4.258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd63db8f749 code=0x7ffc0000
[  222.566676][ T6903] EXT4-fs (loop5): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  222.631147][   T31] audit: type=1326 audit(1766625640.823:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6905 comm="syz.4.258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd63db8f749 code=0x7ffc0000
[  222.653644][ T6903] ext4 filesystem being mounted at /44/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  222.940801][   T31] audit: type=1326 audit(1766625640.823:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6905 comm="syz.4.258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=228 compat=0 ip=0x7fd63db8f749 code=0x7ffc0000
[  222.967270][   T31] audit: type=1326 audit(1766625640.823:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6905 comm="syz.4.258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd63db8f749 code=0x7ffc0000
[  224.377284][ T6929] Invalid ELF header type: 3 != 1
[  224.788612][ T6894] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 112: padding at end of block bitmap is not set
[  224.839140][   T31] audit: type=1326 audit(1766625640.823:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6905 comm="syz.4.258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd63db8f749 code=0x7ffc0000
[  224.979955][ T6903] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  225.007984][   T31] audit: type=1326 audit(1766625640.833:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6905 comm="syz.4.258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd63db8f749 code=0x7ffc0000
[  225.149116][   T31] audit: type=1326 audit(1766625640.833:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6905 comm="syz.4.258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd63db8f749 code=0x7ffc0000
[  225.240149][   T31] audit: type=1326 audit(1766625640.833:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6905 comm="syz.4.258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd63db8f749 code=0x7ffc0000
[  225.269179][ T5930] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  225.286978][   T31] audit: type=1326 audit(1766625640.833:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6905 comm="syz.4.258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=23 compat=0 ip=0x7fd63db8f749 code=0x7ffc0000
[  225.431294][ T5930] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  225.470219][ T5930] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21
[  225.517593][ T5930] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  225.595164][ T5930] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  225.658272][ T5930] usb 5-1: config 0 descriptor??
[  226.112866][ T5930] usbhid 5-1:0.0: couldn't find an input interrupt endpoint
[  227.299150][ T5965] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  227.470424][ T5965] usb 7-1: too many configurations: 9, using maximum allowed: 8
[  227.486406][ T5965] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  227.509231][ T5965] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  227.543362][ T5965] usb 7-1: config 0 interface 0 altsetting 2 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  227.591363][ T5965] usb 7-1: config 0 interface 0 has no altsetting 0
[  227.625375][ T5965] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  227.666521][ T5965] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  227.713289][ T5965] usb 7-1: config 0 interface 0 altsetting 2 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  227.753718][ T5965] usb 7-1: config 0 interface 0 has no altsetting 0
[  227.847893][ T5965] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  228.004424][ T5965] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  228.312887][ T5965] usb 7-1: config 0 interface 0 altsetting 2 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  228.400719][ T5965] usb 7-1: config 0 interface 0 has no altsetting 0
[  228.452550][ T6934] usb 5-1: USB disconnect, device number 7
[  228.465688][ T5965] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  228.759480][ T6995] Invalid ELF header type: 3 != 1
[  229.114046][ T5965] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  229.910220][ T5965] usb 7-1: config 0 interface 0 altsetting 2 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  229.933824][ T5965] usb 7-1: config 0 interface 0 has no altsetting 0
[  229.957695][ T5965] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  229.975611][ T6997] loop1: detected capacity change from 0 to 1024
[  230.039244][ T5965] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  230.048185][ T5965] usb 7-1: config 0 interface 0 altsetting 2 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  230.179096][ T5965] usb 7-1: config 0 interface 0 has no altsetting 0
[  230.257707][ T5965] usb 7-1: unable to read config index 5 descriptor/start: -71
[  230.349345][ T5965] usb 7-1: can't read configurations, error -71
[  230.402842][ T6997] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  230.436407][   T31] kauditd_printk_skb: 4 callbacks suppressed
[  230.436426][   T31] audit: type=1326 audit(1766625649.403:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7009 comm="syz.6.286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b3978f749 code=0x7ffc0000
[  230.579235][ T6997] ext4 filesystem being mounted at /52/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  230.581497][   T31] audit: type=1326 audit(1766625649.443:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7009 comm="syz.6.286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b3978f749 code=0x7ffc0000
[  230.636154][ T7018] fuse: Bad value for 'fd'
[  230.733452][   T31] audit: type=1326 audit(1766625649.443:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7009 comm="syz.6.286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b3978f749 code=0x7ffc0000
[  230.857832][   T31] audit: type=1326 audit(1766625649.443:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7009 comm="syz.6.286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b3978f749 code=0x7ffc0000
[  230.949108][   T31] audit: type=1326 audit(1766625649.443:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7009 comm="syz.6.286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=122 compat=0 ip=0x7f8b3978f749 code=0x7ffc0000
[  230.998411][ T6997] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  231.019631][   T31] audit: type=1326 audit(1766625649.443:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7009 comm="syz.6.286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b3978f749 code=0x7ffc0000
[  231.059158][   T31] audit: type=1326 audit(1766625649.443:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7009 comm="syz.6.286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b3978f749 code=0x7ffc0000
[  231.090359][   T31] audit: type=1326 audit(1766625649.453:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7009 comm="syz.6.286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b3978f749 code=0x7ffc0000
[  231.183815][   T31] audit: type=1326 audit(1766625649.453:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7009 comm="syz.6.286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b3978f749 code=0x7ffc0000
[  231.327578][ T7037] loop0: detected capacity change from 0 to 512
[  231.350059][   T31] audit: type=1326 audit(1766625649.453:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7009 comm="syz.6.286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b3978f749 code=0x7ffc0000
[  231.425011][ T7037] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  231.701814][ T7037] EXT4-fs error (device loop0): xattr_find_entry:337: inode #15: comm syz.0.297: corrupted xattr entries
[  232.522055][ T7037] EXT4-fs (loop0): 1 orphan inode deleted
[  232.549302][ T7037] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  232.564019][ T7045] Invalid ELF header type: 3 != 1
[  235.620849][ T5828] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  235.639141][ T5965] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  235.838840][ T5965] usb 2-1: too many configurations: 9, using maximum allowed: 8
[  235.890714][ T5965] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  235.936533][ T5965] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[  235.999151][ T5965] usb 2-1: config 0 interface 0 altsetting 2 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  236.067360][ T5965] usb 2-1: config 0 interface 0 has no altsetting 0
[  236.100484][ T5965] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  236.150051][ T7069] loop0: detected capacity change from 0 to 256
[  236.156458][ T5965] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[  236.181518][ T5965] usb 2-1: config 0 interface 0 altsetting 2 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  236.245476][ T5965] usb 2-1: config 0 interface 0 has no altsetting 0
[  236.277338][ T5965] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  236.337731][ T5965] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[  236.379124][ T7069] FAT-fs (loop0): Directory bread(block 64) failed
[  236.385833][ T7069] FAT-fs (loop0): Directory bread(block 65) failed
[  236.392540][ T5965] usb 2-1: config 0 interface 0 altsetting 2 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  236.411558][ T7069] FAT-fs (loop0): Directory bread(block 66) failed
[  236.434467][ T7069] FAT-fs (loop0): Directory bread(block 67) failed
[  236.450495][ T5965] usb 2-1: config 0 interface 0 has no altsetting 0
[  237.650459][ T5965] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  237.661798][ T5965] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[  237.669281][ T7069] FAT-fs (loop0): Directory bread(block 68) failed
[  237.670765][ T5965] usb 2-1: config 0 interface 0 altsetting 2 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  237.679267][ T7069] FAT-fs (loop0): Directory bread(block 69) failed
[  237.732881][ T5965] usb 2-1: config 0 interface 0 has no altsetting 0
[  237.743193][ T7069] FAT-fs (loop0): Directory bread(block 70) failed
[  237.771305][ T5965] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  237.780335][ T7069] FAT-fs (loop0): Directory bread(block 71) failed
[  237.806923][ T5965] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[  237.806977][ T5965] usb 2-1: config 0 interface 0 altsetting 2 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  237.807009][ T5965] usb 2-1: config 0 interface 0 has no altsetting 0
[  237.846652][ T7069] FAT-fs (loop0): Directory bread(block 72) failed
[  237.856146][ T5965] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  237.867084][ T7081] loop6: detected capacity change from 0 to 8
[  237.903646][ T7069] FAT-fs (loop0): Directory bread(block 73) failed
[  237.912840][ T5965] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[  237.934508][ T5965] usb 2-1: config 0 interface 0 altsetting 2 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  237.999144][ T5965] usb 2-1: config 0 interface 0 has no altsetting 0
[  238.035133][ T5965] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  238.940037][ T5965] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[  239.091638][ T5965] usb 2-1: config 0 interface 0 altsetting 2 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  239.104602][ T5965] usb 2-1: config 0 interface 0 has no altsetting 0
[  239.212314][ T7043] kworker/u8:24: attempt to access beyond end of device
[  239.212314][ T7043] loop0: rw=1, sector=1224, nr_sectors = 608 limit=256
[  239.750345][ T7089] Zero length message leads to an empty skb
[  240.831621][ T5965] usb 2-1: unable to read config index 7 descriptor/start: -71
[  240.888177][ T5965] usb 2-1: can't read configurations, error -71
[  240.898717][ T7043] kworker/u8:24: attempt to access beyond end of device
[  240.898717][ T7043] loop0: rw=1, sector=1864, nr_sectors = 2824 limit=256
[  240.924513][ T7043] kworker/u8:24: attempt to access beyond end of device
[  240.924513][ T7043] loop0: rw=1, sector=4688, nr_sectors = 2880 limit=256
[  240.964257][ T7043] kworker/u8:24: attempt to access beyond end of device
[  240.964257][ T7043] loop0: rw=1, sector=7568, nr_sectors = 2672 limit=256
[  241.064614][ T7043] kworker/u8:24: attempt to access beyond end of device
[  241.064614][ T7043] loop0: rw=1, sector=10240, nr_sectors = 3000 limit=256
[  241.146052][ T7043] kworker/u8:24: attempt to access beyond end of device
[  241.146052][ T7043] loop0: rw=1, sector=13240, nr_sectors = 3656 limit=256
[  241.225577][ T7043] kworker/u8:24: attempt to access beyond end of device
[  241.225577][ T7043] loop0: rw=1, sector=16896, nr_sectors = 7376 limit=256
[  241.377796][ T7043] kworker/u8:24: attempt to access beyond end of device
[  241.377796][ T7043] loop0: rw=1, sector=24272, nr_sectors = 6176 limit=256
[  242.029298][ T7043] kworker/u8:24: attempt to access beyond end of device
[  242.029298][ T7043] loop0: rw=1, sector=30448, nr_sectors = 2048 limit=256
[  242.186529][ T7043] kworker/u8:24: attempt to access beyond end of device
[  242.186529][ T7043] loop0: rw=1, sector=32496, nr_sectors = 1304 limit=256
[  245.612992][ T7122] loop0: detected capacity change from 0 to 512
[  245.662369][ T7122] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  245.757168][ T7122] EXT4-fs error (device loop0): xattr_find_entry:337: inode #15: comm syz.0.314: corrupted xattr entries
[  245.770204][ T7122] EXT4-fs (loop0): 1 orphan inode deleted
[  245.777697][ T7122] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  246.091434][ T7135] loop4: detected capacity change from 0 to 256
[  246.125826][ T7052] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  246.448946][ T7135] FAT-fs (loop4): Directory bread(block 64) failed
[  246.511653][ T7135] FAT-fs (loop4): Directory bread(block 65) failed
[  246.556295][ T7135] FAT-fs (loop4): Directory bread(block 66) failed
[  246.607684][ T7135] FAT-fs (loop4): Directory bread(block 67) failed
[  246.677197][ T7135] FAT-fs (loop4): Directory bread(block 68) failed
[  246.685901][ T7135] FAT-fs (loop4): Directory bread(block 69) failed
[  246.765109][ T5828] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  246.769255][ T7135] FAT-fs (loop4): Directory bread(block 70) failed
[  246.821093][ T7052] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  246.834716][ T7135] FAT-fs (loop4): Directory bread(block 71) failed
[  246.902000][ T7135] FAT-fs (loop4): Directory bread(block 72) failed
[  246.908554][ T7135] FAT-fs (loop4): Directory bread(block 73) failed
[  246.919181][ T6934] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  248.322673][ T7052] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  248.357881][ T6934] usb 7-1: too many configurations: 9, using maximum allowed: 8
[  248.956670][ T5827] FAT-fs (loop4): error, corrupted directory (invalid entries)
[  249.126688][ T5827] FAT-fs (loop4): Filesystem has been set read-only
[  249.179827][ T6934] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  249.227357][ T6934] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  249.267235][ T6934] usb 7-1: config 0 interface 0 altsetting 2 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  249.316044][ T7052] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  249.322306][ T6934] usb 7-1: config 0 interface 0 has no altsetting 0
[  249.370607][ T6934] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  249.404269][ T6934] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  249.441211][ T6934] usb 7-1: config 0 interface 0 altsetting 2 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  249.519387][ T6934] usb 7-1: config 0 interface 0 has no altsetting 0
[  249.677927][ T6934] usb 7-1: unable to read config index 2 descriptor/all
[  249.696045][ T6934] usb 7-1: can't read configurations, error -71
[  251.679627][ T7052] bridge_slave_1: left allmulticast mode
[  251.685459][ T7052] bridge_slave_1: left promiscuous mode
[  251.722235][ T7052] bridge0: port 2(bridge_slave_1) entered disabled state
[  251.831318][ T7052] bridge_slave_0: left allmulticast mode
[  251.836995][ T7052] bridge_slave_0: left promiscuous mode
[  251.892325][ T7052] bridge0: port 1(bridge_slave_0) entered disabled state
[  252.763158][ T7195] loop6: detected capacity change from 0 to 256
[  254.197787][ T5835] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  254.221219][ T5835] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  254.228853][ T5835] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  254.238613][ T5835] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  254.246323][ T5835] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  254.472910][ T7195] FAT-fs (loop6): Directory bread(block 64) failed
[  254.644871][ T7195] FAT-fs (loop6): Directory bread(block 65) failed
[  254.712404][ T7195] FAT-fs (loop6): Directory bread(block 66) failed
[  254.718955][ T7195] FAT-fs (loop6): Directory bread(block 67) failed
[  254.839322][ T7195] FAT-fs (loop6): Directory bread(block 68) failed
[  254.845872][ T7195] FAT-fs (loop6): Directory bread(block 69) failed
[  254.951269][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  254.957584][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  255.011204][ T7195] FAT-fs (loop6): Directory bread(block 70) failed
[  255.017749][ T7195] FAT-fs (loop6): Directory bread(block 71) failed
[  255.090622][ T7210] fuse: Bad value for 'fd'
[  255.231165][ T7195] FAT-fs (loop6): Directory bread(block 72) failed
[  255.237755][ T7195] FAT-fs (loop6): Directory bread(block 73) failed
[  255.429943][ T6717] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  255.736939][ T6717] usb 6-1: too many configurations: 9, using maximum allowed: 8
[  256.164143][ T6717] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  256.290381][ T5835] Bluetooth: hci0: command tx timeout
[  256.427629][ T6717] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid wMaxPacketSize 0
[  256.462381][ T6717] usb 6-1: config 0 interface 0 has no altsetting 0
[  256.496263][ T6717] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  256.507083][ T6717] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid wMaxPacketSize 0
[  256.518220][ T6717] usb 6-1: config 0 interface 0 has no altsetting 0
[  256.550469][ T6717] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  256.565888][ T6717] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid wMaxPacketSize 0
[  256.580911][ T6717] usb 6-1: config 0 interface 0 has no altsetting 0
[  256.606657][ T6717] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  256.791236][ T7052] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  257.063640][ T7052] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  257.268019][ T6717] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid wMaxPacketSize 0
[  257.277880][ T6717] usb 6-1: config 0 interface 0 has no altsetting 0
[  257.285679][ T6717] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  257.294751][ T6717] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid wMaxPacketSize 0
[  257.307104][ T6717] usb 6-1: config 0 interface 0 has no altsetting 0
[  257.314683][ T6717] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  257.331272][ T7052] bond0 (unregistering): Released all slaves
[  257.409418][ T6717] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid wMaxPacketSize 0
[  257.423739][ T6717] usb 6-1: config 0 interface 0 has no altsetting 0
[  257.433470][ T6717] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  257.443052][ T6717] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid wMaxPacketSize 0
[  257.452815][ T6717] usb 6-1: config 0 interface 0 has no altsetting 0
[  257.462096][ T6717] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  257.515046][ T6717] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid wMaxPacketSize 0
[  257.550710][ T6717] usb 6-1: config 0 interface 0 has no altsetting 0
[  257.562850][ T6717] usb 6-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  257.578300][ T6717] usb 6-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  257.624735][ T6717] usb 6-1: Product: syz
[  257.640231][ T7233] loop1: detected capacity change from 0 to 1024
[  257.657165][ T6717] usb 6-1: Manufacturer: syz
[  257.663773][ T6717] usb 6-1: SerialNumber: syz
[  257.695953][ T6717] usb 6-1: config 0 descriptor??
[  257.744403][ T6717] yurex 6-1:0.0: Could not find endpoints
[  258.118080][ T7238] syz.1.357 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  258.135150][ T7238] hfsplus: bad catalog entry type
[  258.379217][ T5835] Bluetooth: hci0: command tx timeout
[  258.725644][   T13] hfsplus: b-tree write err: -5, ino 4
[  259.122688][ T6068] usb 6-1: USB disconnect, device number 4
[  259.970722][ T7258] fuse: Bad value for 'fd'
[  259.990935][ T7052] hsr_slave_0: left promiscuous mode
[  260.033971][ T7052] hsr_slave_1: left promiscuous mode
[  260.060170][ T7052] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  260.099108][ T7052] batman_adv: batadv0: Removing interface: batadv_slave_0
[  260.174784][ T7052] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  260.201063][ T7052] batman_adv: batadv0: Removing interface: batadv_slave_1
[  260.353988][ T7052] veth1_macvtap: left promiscuous mode
[  260.373703][ T7052] veth0_macvtap: left promiscuous mode
[  260.409328][ T7052] veth1_vlan: left promiscuous mode
[  260.675378][ T5835] Bluetooth: hci0: command tx timeout
[  260.681290][ T7052] veth0_vlan: left promiscuous mode
[  261.280196][ T7283] mmap: syz.0.359 (7283) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  261.926852][ T7299] fuse: Bad value for 'fd'
[  262.689227][ T5144] Bluetooth: hci0: command tx timeout
[  264.330987][ T7052] team0 (unregistering): Port device team_slave_1 removed
[  264.454655][ T7052] team0 (unregistering): Port device team_slave_0 removed
[  264.571868][ T7327] loop5: detected capacity change from 0 to 512
[  264.590127][ T7327] EXT4-fs: Ignoring removed mblk_io_submit option
[  264.642006][ T7327] EXT4-fs (loop5): Cannot turn on journaled quota: type 0: error -13
[  264.671186][ T7327] EXT4-fs error (device loop5): ext4_clear_blocks:876: inode #13: comm syz.5.385: attempt to clear invalid blocks 2 len 1
[  264.768106][ T7327] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters
[  264.819252][ T7327] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #13: comm syz.5.385: invalid indirect mapped block 1819239214 (level 0)
[  264.871127][ T7327] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #13: comm syz.5.385: invalid indirect mapped block 1819239214 (level 1)
[  264.911387][ T7327] EXT4-fs (loop5): 1 truncate cleaned up
[  264.920928][ T7327] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  264.992310][ T7327] EXT4-fs error (device loop5): ext4_find_dest_de:2050: inode #2: block 13: comm syz.5.385: bad entry in directory: directory entry overrun - offset=108, inode=4294901777, rec_len=1024, size=1024 fake=0
[  265.332145][ T7335] EXT4-fs error (device loop5): ext4_find_dest_de:2050: inode #2: block 13: comm syz.5.385: bad entry in directory: directory entry overrun - offset=108, inode=4294901777, rec_len=1024, size=1024 fake=0
[  265.692476][ T5829] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  265.874688][ T7348] fuse: Bad value for 'fd'
[  266.967283][ T7202] chnl_net:caif_netlink_parms(): no params data found
[  267.171875][ T7361] 8021q: adding VLAN 0 to HW filter on device bond1
[  267.439107][   T24] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[  267.679166][   T24] usb 7-1: Using ep0 maxpacket: 8
[  267.688262][   T24] usb 7-1: config index 0 descriptor too short (expected 74, got 45)
[  267.746908][ T7202] bridge0: port 1(bridge_slave_0) entered blocking state
[  267.757786][   T24] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 1536, setting to 1024
[  267.791744][ T7202] bridge0: port 1(bridge_slave_0) entered disabled state
[  267.820598][   T24] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  267.845286][ T7202] bridge_slave_0: entered allmulticast mode
[  267.857558][   T24] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 30768, setting to 1024
[  267.880370][ T7202] bridge_slave_0: entered promiscuous mode
[  267.886107][ T7400] fuse: Bad value for 'fd'
[  267.891774][   T24] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[  267.936233][ T7202] bridge0: port 2(bridge_slave_1) entered blocking state
[  267.967553][ T7202] bridge0: port 2(bridge_slave_1) entered disabled state
[  268.009127][   T24] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  268.023868][ T7202] bridge_slave_1: entered allmulticast mode
[  268.030454][   T24] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  268.030485][   T24] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  268.093900][ T7202] bridge_slave_1: entered promiscuous mode
[  268.402780][   T24] usb 7-1: GET_CAPABILITIES returned 0
[  268.408895][   T24] usbtmc 7-1:16.0: can't read capabilities
[  268.857774][ T6006] usb 7-1: USB disconnect, device number 9
[  269.001299][ T7202] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  269.126903][ T7202] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  270.092164][ T7422] loop1: detected capacity change from 0 to 1024
[  271.516204][ T7433] loop0: detected capacity change from 0 to 512
[  271.560304][ T7433] EXT4-fs: Ignoring removed mblk_io_submit option
[  271.566745][ T7433] EXT4-fs: Ignoring removed orlov option
[  271.616176][ T7433] EXT4-fs: Ignoring removed mblk_io_submit option
[  271.686359][ T7438] fuse: Bad value for 'fd'
[  271.710712][ T7433] EXT4-fs error (device loop0): ext4_iget_extra_inode:5073: inode #15: comm syz.0.415: corrupted in-inode xattr: e_value size too large
[  271.733142][ T7202] team0: Port device team_slave_0 added
[  271.812681][ T7202] team0: Port device team_slave_1 added
[  271.831077][ T7433] EXT4-fs error (device loop0): ext4_orphan_get:1396: comm syz.0.415: couldn't read orphan inode 15 (err -117)
[  271.912959][ T7433] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  272.373480][   T50] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  274.360920][ T5828] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  275.377181][ T7459] loop5: detected capacity change from 0 to 512
[  275.596018][   T50] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  275.678878][ T7464] Invalid ELF header type: 3 != 1
[  276.463384][ T7202] batman_adv: batadv0: Adding interface: batadv_slave_0
[  276.510343][ T7202] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  276.679197][ T7202] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  276.853680][ T7459] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  276.941041][   T50] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  276.954491][ T7459] ext4 filesystem being mounted at /69/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  276.984181][ T7202] batman_adv: batadv0: Adding interface: batadv_slave_1
[  277.016173][ T7202] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  277.099417][ T7202] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  277.198467][   T50] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  277.421114][ T5835] Bluetooth: hci2: unexpected event for opcode 0x0809
[  277.514033][ T7202] hsr_slave_0: entered promiscuous mode
[  277.542150][ T7202] hsr_slave_1: entered promiscuous mode
[  277.832891][ T5829] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  277.975797][ T7494] loop0: detected capacity change from 0 to 512
[  278.000214][ T7494] EXT4-fs: Ignoring removed mblk_io_submit option
[  278.051407][ T7494] EXT4-fs: Ignoring removed orlov option
[  278.077409][ T7494] EXT4-fs: Ignoring removed mblk_io_submit option
[  278.156643][ T7494] EXT4-fs error (device loop0): ext4_iget_extra_inode:5073: inode #15: comm syz.0.432: corrupted in-inode xattr: e_value size too large
[  278.208893][ T7494] EXT4-fs error (device loop0): ext4_orphan_get:1396: comm syz.0.432: couldn't read orphan inode 15 (err -117)
[  278.333912][ T7494] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  278.480910][ T7502] 8021q: adding VLAN 0 to HW filter on device bond1
[  279.006961][ T5828] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  279.450310][ T7521] loop1: detected capacity change from 0 to 512
[  279.501195][ T7521] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  279.518660][ T7521] ext4 filesystem being mounted at /79/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  279.537857][ T7521] EXT4-fs error (device loop1): ext4_xattr_block_get:597: inode #15: comm syz.1.437: corrupted xattr block 33: invalid header
[  279.556409][ T7521] EXT4-fs error (device loop1): ext4_get_inode_usage:888: inode #15: comm syz.1.437: corrupted xattr block 33: invalid header
[  279.713487][   T50] bond0 (unregistering): Released all slaves
[  280.668242][ T7531] Invalid ELF header type: 3 != 1
[  281.591064][ T5832] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  281.865805][ T7549] loop1: detected capacity change from 0 to 512
[  281.956170][ T7549] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  282.094638][ T7549] ext4 filesystem being mounted at /80/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  282.120503][ T7552] 8021q: adding VLAN 0 to HW filter on device bond1
[  282.137002][ T7202] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  282.249615][ T7202] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  282.441086][ T5835] Bluetooth: hci3: unexpected event for opcode 0x0809
[  282.586503][ T7202] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  282.632194][ T7202] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  282.727884][ T5832] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  282.788476][   T50] hsr_slave_0: left promiscuous mode
[  282.810233][   T50] hsr_slave_1: left promiscuous mode
[  282.896695][   T50] veth1_macvtap: left promiscuous mode
[  282.940524][   T50] veth0_macvtap: left promiscuous mode
[  282.949494][   T50] veth1_vlan: left promiscuous mode
[  282.970385][   T50] veth0_vlan: left promiscuous mode
[  284.363402][ T6281] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  284.392192][ T7621] io-wq is not configured for unbound workers
[  285.079877][ T6281] usb 2-1: too many configurations: 9, using maximum allowed: 8
[  285.100846][ T6281] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[  285.119340][ T6281] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  285.130333][ T5835] Bluetooth: hci4: unexpected event for opcode 0x0809
[  285.139381][ T6281] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid wMaxPacketSize 0
[  285.168117][ T6281] usb 2-1: config 0 interface 0 has no altsetting 0
[  285.186369][ T6281] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[  285.205559][ T6281] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  285.227308][ T6281] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid wMaxPacketSize 0
[  285.275556][ T6281] usb 2-1: config 0 interface 0 has no altsetting 0
[  285.299125][ T6281] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[  285.328524][ T6281] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  285.353599][ T6281] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid wMaxPacketSize 0
[  285.376328][ T6281] usb 2-1: config 0 interface 0 has no altsetting 0
[  285.390588][ T6281] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[  285.399791][ T6281] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  285.426940][ T6281] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid wMaxPacketSize 0
[  285.449791][ T6281] usb 2-1: config 0 interface 0 has no altsetting 0
[  285.457820][ T6281] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[  285.480355][ T6281] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  285.509106][ T6281] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid wMaxPacketSize 0
[  285.539246][ T6281] usb 2-1: config 0 interface 0 has no altsetting 0
[  285.547360][ T6281] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[  285.557808][ T6281] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  285.575106][ T6281] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid wMaxPacketSize 0
[  285.587629][ T6281] usb 2-1: config 0 interface 0 has no altsetting 0
[  285.621883][ T6281] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9
[  285.639529][ T6281] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  286.443186][ T7640] netlink: 'syz.6.468': attribute type 11 has an invalid length.
[  287.159794][ T6281] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has invalid wMaxPacketSize 0
[  287.169610][ T6281] usb 2-1: config 0 interface 0 has no altsetting 0
[  287.463361][ T6281] usb 2-1: unable to read config index 7 descriptor/start: -71
[  287.471694][ T6281] usb 2-1: can't read configurations, error -71
[  288.345457][ T7202] 8021q: adding VLAN 0 to HW filter on device bond0
[  288.421384][ T7202] 8021q: adding VLAN 0 to HW filter on device team0
[  288.497538][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  288.504722][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  288.578761][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  288.585965][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  288.791778][ T7662] loop5: detected capacity change from 0 to 512
[  288.998119][ T7662] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  289.036637][ T7662] ext4 filesystem being mounted at /79/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  289.353607][ T5835] Bluetooth: hci2: unexpected event for opcode 0x0809
[  289.679997][ T5829] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  289.697015][ T7202] 8021q: adding VLAN 0 to HW filter on device batadv0
[  292.308581][ T7701] loop6: detected capacity change from 0 to 8
[  294.051858][ T5144] Bluetooth: hci6: command 0x0406 tx timeout
[  294.230947][ T7202] veth0_vlan: entered promiscuous mode
[  294.349935][ T7202] veth1_vlan: entered promiscuous mode
[  295.074557][ T7202] veth0_macvtap: entered promiscuous mode
[  296.480966][ T7202] veth1_macvtap: entered promiscuous mode
[  298.122777][ T7202] batman_adv: batadv0: Interface activated: batadv_slave_0
[  298.265548][ T7202] batman_adv: batadv0: Interface activated: batadv_slave_1
[  298.333490][ T3425] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  298.370894][ T3425] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  300.054003][ T6630] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  300.103454][ T6630] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  300.433668][ T6630] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  300.675697][ T6630] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  301.501855][ T3452] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  301.539167][ T3452] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  306.566623][   T31] kauditd_printk_skb: 6 callbacks suppressed
[  306.566644][   T31] audit: type=1326 audit(1766627005.535:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7819 comm="syz.1.510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22c978f749 code=0x7ffc0000
[  306.723586][   T31] audit: type=1326 audit(1766627005.565:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7819 comm="syz.1.510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22c978f749 code=0x7ffc0000
[  308.006129][   T31] audit: type=1326 audit(1766627005.575:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7819 comm="syz.1.510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=426 compat=0 ip=0x7f22c978f749 code=0x7ffc0000
[  308.034078][   T31] audit: type=1326 audit(1766627005.575:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7819 comm="syz.1.510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22c978f749 code=0x7ffc0000
[  308.143654][   T31] audit: type=1326 audit(1766627005.575:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7819 comm="syz.1.510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22c978f749 code=0x7ffc0000
[  308.244344][   T31] audit: type=1326 audit(1766627005.575:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7819 comm="syz.1.510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22c978f749 code=0x7ffc0000
[  309.060226][ T7839] netlink: 'syz.5.515': attribute type 11 has an invalid length.
[  309.921225][   T31] audit: type=1326 audit(1766627005.575:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7819 comm="syz.1.510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22c978f749 code=0x7ffc0000
[  310.014868][   T31] audit: type=1326 audit(1766627005.575:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7819 comm="syz.1.510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f22c978e1ff code=0x7ffc0000
[  310.105757][   T31] audit: type=1326 audit(1766627005.575:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7819 comm="syz.1.510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22c978f749 code=0x7ffc0000
[  310.239158][   T31] audit: type=1326 audit(1766627005.585:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7819 comm="syz.1.510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22c978f749 code=0x7ffc0000
[  312.413504][ T7877] loop6: detected capacity change from 0 to 512
[  312.461224][ T7877] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  312.511218][ T7877] ext4 filesystem being mounted at /58/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  312.550564][ T7877] EXT4-fs error (device loop6): ext4_xattr_block_get:597: inode #15: comm syz.6.526: corrupted xattr block 33: invalid header
[  312.584310][ T7877] EXT4-fs error (device loop6): ext4_get_inode_usage:888: inode #15: comm syz.6.526: corrupted xattr block 33: invalid header
[  313.355511][ T7886] loop7: detected capacity change from 0 to 512
[  313.428961][ T7886] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  313.535414][ T7886] EXT4-fs error (device loop7): xattr_find_entry:337: inode #15: comm syz.7.527: corrupted xattr entries
[  313.599693][ T7886] EXT4-fs (loop7): 1 orphan inode deleted
[  313.607901][ T7886] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  315.698392][ T6489] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  315.813994][ T7202] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  316.376930][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  316.525175][ T7913] loop7: detected capacity change from 0 to 1024
[  317.249438][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  323.523524][ T7984] loop5: detected capacity change from 0 to 1024
[  324.486227][ T7986] netlink: 4 bytes leftover after parsing attributes in process `syz.3.550'.
[  324.529380][ T7986] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  324.687067][ T7986] batman_adv: batadv0: Removing interface: batadv_slave_0
[  324.795172][ T7986] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  324.838087][ T7986] batman_adv: batadv0: Removing interface: batadv_slave_1
[  325.590949][ T8001] loop6: detected capacity change from 0 to 8
[  326.262574][ T8006] loop5: detected capacity change from 0 to 512
[  326.316549][ T8006] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  326.410356][ T8006] EXT4-fs error (device loop5): xattr_find_entry:337: inode #15: comm syz.5.557: corrupted xattr entries
[  326.499827][ T8006] EXT4-fs (loop5): 1 orphan inode deleted
[  326.507382][ T8006] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  328.214939][ T5829] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  328.743882][ T5835] Bluetooth: hci1: ACL packet for unknown connection handle 200
[  330.950778][ T8067] wg1: entered promiscuous mode
[  330.955666][ T8067] wg1: entered allmulticast mode
[  332.893463][ T8082] loop7: detected capacity change from 0 to 32768
[  332.965715][ T8082] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop7 (7:7) scanned by syz.7.578 (8082)
[  333.066555][ T8129] loop6: detected capacity change from 0 to 512
[  333.317684][ T8129] EXT4-fs: Ignoring removed mblk_io_submit option
[  334.062932][ T8082] BTRFS info (device loop7): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  334.106011][ T8082] BTRFS info (device loop7): using sha256 (sha256-lib) checksum algorithm
[  334.149403][ T8129] EXT4-fs (loop6): Cannot turn on journaled quota: type 0: error -13
[  334.324651][ T8144] loop5: detected capacity change from 0 to 512
[  334.331295][ T8129] EXT4-fs error (device loop6): ext4_clear_blocks:876: inode #13: comm syz.6.589: attempt to clear invalid blocks 2 len 1
[  334.418315][ T8082] workqueue: Failed to create a rescuer kthread for wq "btrfs-delayed-meta": -EINTR
[  334.418658][ T8082] workqueue: Failed to create a rescuer kthread for wq "btrfs-qgroup-rescan": -EINTR
[  334.491419][ T8144] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  334.526867][ T8129] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters
[  334.579781][ T8144] ext4 filesystem being mounted at /98/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  334.598686][ T8082] BTRFS error (device loop7): open_ctree failed: -12
[  334.613082][ T8129] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #13: comm syz.6.589: invalid indirect mapped block 1819239214 (level 0)
[  334.911246][ T8129] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #13: comm syz.6.589: invalid indirect mapped block 1819239214 (level 1)
[  335.509354][ T8129] EXT4-fs (loop6): 1 truncate cleaned up
[  335.603314][ T8129] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  335.747741][ T5835] Bluetooth: hci2: unexpected event for opcode 0x0809
[  335.748320][ T8129] EXT4-fs error (device loop6): ext4_find_dest_de:2050: inode #2: block 13: comm syz.6.589: bad entry in directory: directory entry overrun - offset=108, inode=4294901777, rec_len=1024, size=1024 fake=0
[  336.072774][ T8177] EXT4-fs error (device loop6): ext4_find_dest_de:2050: inode #2: block 13: comm syz.6.589: bad entry in directory: directory entry overrun - offset=108, inode=4294901777, rec_len=1024, size=1024 fake=0
[  336.617225][ T5829] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  336.727880][ T6489] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  338.454137][ T8195] loop5: detected capacity change from 0 to 32768
[  338.491424][ T8195] (syz.5.603,8195,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  338.573505][ T8195] (syz.5.603,8195,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  338.699615][ T8195] JBD2: Ignoring recovery information on journal
[  338.744270][ T8223] loop6: detected capacity change from 0 to 32768
[  338.933697][ T6305]  loop6: p1 p2 p3 < > p4 < p5 p6 >
[  338.967184][ T6305] loop6: p1 start 460800 is beyond EOD, truncated
[  338.991158][ T6305] loop6: p2 size 83886080 extends beyond EOD, truncated
[  338.994954][ T8195] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[  339.034251][ T6305] loop6: p5 start 460800 is beyond EOD, truncated
[  339.259204][ T6305] loop6: p6 size 83886080 extends beyond EOD, truncated
[  339.293353][ T8223]  loop6: p1 p2 p3 < > p4 < p5 p6 >
[  339.308921][ T8223] loop6: p1 start 460800 is beyond EOD, truncated
[  339.662887][ T8223] loop6: p2 size 83886080 extends beyond EOD, truncated
[  339.949144][   T31] kauditd_printk_skb: 32 callbacks suppressed
[  339.949166][   T31] audit: type=1800 audit(1766627038.905:81): pid=8195 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.603" name="file1" dev="loop5" ino=16979 res=0 errno=0
[  339.986163][ T8223] loop6: p5 start 460800 is beyond EOD, truncated
[  340.037778][ T8223] loop6: p6 size 83886080 extends beyond EOD, truncated
[  341.491124][ T8263] loop1: detected capacity change from 0 to 256
[  341.539694][ T8263] FAT-fs (loop1): Directory bread(block 64) failed
[  341.562715][ T8263] FAT-fs (loop1): Directory bread(block 65) failed
[  341.592116][ T8263] FAT-fs (loop1): Directory bread(block 66) failed
[  341.613389][ T8263] FAT-fs (loop1): Directory bread(block 67) failed
[  341.632041][ T8263] FAT-fs (loop1): Directory bread(block 68) failed
[  341.638584][ T8263] FAT-fs (loop1): Directory bread(block 69) failed
[  341.680533][ T8263] FAT-fs (loop1): Directory bread(block 70) failed
[  341.709181][ T8263] FAT-fs (loop1): Directory bread(block 71) failed
[  341.719449][ T8263] FAT-fs (loop1): Directory bread(block 72) failed
[  341.736556][ T8263] FAT-fs (loop1): Directory bread(block 73) failed
[  343.402918][ T6029] kworker/u8:15: attempt to access beyond end of device
[  343.402918][ T6029] loop1: rw=1, sector=1224, nr_sectors = 608 limit=256
[  343.452515][ T6305] udevd[6305]: inotify_add_watch(7, /dev/loop6p2, 10) failed: No such file or directory
[  343.463783][ T6339] udevd[6339]: inotify_add_watch(7, /dev/loop6p3, 10) failed: No such file or directory
[  343.477612][ T6309] udevd[6309]: inotify_add_watch(7, /dev/loop6p4, 10) failed: No such file or directory
[  343.511478][ T6344] udevd[6344]: inotify_add_watch(7, /dev/loop6p6, 10) failed: No such file or directory
[  343.540971][ T6029] kworker/u8:15: attempt to access beyond end of device
[  343.540971][ T6029] loop1: rw=1, sector=1864, nr_sectors = 4392 limit=256
[  343.602031][ T5829] ocfs2: Unmounting device (7,5) on (node local)
[  343.660308][ T6029] kworker/u8:15: attempt to access beyond end of device
[  343.660308][ T6029] loop1: rw=1, sector=6256, nr_sectors = 4096 limit=256
[  343.671723][ T6309] udevd[6309]: inotify_add_watch(7, /dev/loop6p6, 10) failed: No such file or directory
[  343.683719][ T6305] udevd[6305]: inotify_add_watch(7, /dev/loop6p3, 10) failed: No such file or directory
[  343.687636][ T6263] udevd[6263]: inotify_add_watch(7, /dev/loop6p2, 10) failed: No such file or directory
[  343.707220][ T6339] udevd[6339]: inotify_add_watch(7, /dev/loop6p4, 10) failed: No such file or directory
[  344.469266][ T6029] kworker/u8:15: attempt to access beyond end of device
[  344.469266][ T6029] loop1: rw=1, sector=10352, nr_sectors = 23448 limit=256
[  345.196454][ T8295] netlink: 20 bytes leftover after parsing attributes in process `syz.7.628'.
[  345.868585][ T8297] usb usb9: usbfs: process 8297 (syz.5.616) did not claim interface 9 before use
[  347.446266][ T8309] syzkaller0: entered promiscuous mode
[  347.477052][ T8309] syzkaller0: entered allmulticast mode
[  348.436521][ T5835] Bluetooth: hci4: ACL packet for unknown connection handle 200
[  349.193030][ T8349] loop1: detected capacity change from 0 to 1024
[  351.129238][ T6281] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  351.295280][ T6281] usb 1-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  351.304900][ T6281] usb 1-1: config 1 has an invalid descriptor of length 49, skipping remainder of the config
[  351.509351][ T6281] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 66
[  351.538131][ T6281] usb 1-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  351.670124][ T6281] usb 1-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  351.765467][ T6281] usb 1-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  351.833153][ T6281] usb 1-1: Product: syz
[  351.852047][ T6281] usb 1-1: Manufacturer: syz
[  352.145133][ T6281] cdc_wdm 1-1:1.0: skipping garbage
[  352.178852][ T6281] cdc_wdm 1-1:1.0: skipping garbage
[  352.188554][ T6281] cdc_wdm 1-1:1.0: probe with driver cdc_wdm failed with error -22
[  352.341292][ T6281] usb 1-1: USB disconnect, device number 9
[  352.661525][ T8375] netlink: 48 bytes leftover after parsing attributes in process `syz.3.649'.
[  354.152621][ T8394] loop1: detected capacity change from 0 to 1024
[  357.092209][ T5836] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  357.325810][ T5836] usb 2-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  357.414542][ T5836] usb 2-1: config 1 has an invalid descriptor of length 49, skipping remainder of the config
[  357.521303][ T5835] Bluetooth: hci0: link tx timeout
[  357.527005][ T5835] Bluetooth: hci0: killing stalled connection 11:aa:aa:aa:aa:aa
[  357.872188][ T5836] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 66
[  357.938097][ T5836] usb 2-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  357.991054][ T5836] usb 2-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  358.040906][ T5836] usb 2-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  358.077501][ T5836] usb 2-1: Product: syz
[  358.111091][ T5836] usb 2-1: Manufacturer: syz
[  358.177860][ T5836] cdc_wdm 2-1:1.0: skipping garbage
[  358.236900][ T5836] cdc_wdm 2-1:1.0: skipping garbage
[  358.259425][ T5836] cdc_wdm 2-1:1.0: probe with driver cdc_wdm failed with error -22
[  358.407150][ T5921] usb 2-1: USB disconnect, device number 10
[  358.762749][ T8459] loop7: detected capacity change from 0 to 512
[  358.977366][ T8459] EXT4-fs: Ignoring removed mblk_io_submit option
[  359.909843][ T5835] Bluetooth: hci0: command 0x0406 tx timeout
[  360.569226][ T8459] EXT4-fs (loop7): Cannot turn on journaled quota: type 0: error -13
[  360.617736][ T8459] EXT4-fs error (device loop7): ext4_clear_blocks:876: inode #13: comm syz.7.672: attempt to clear invalid blocks 2 len 1
[  360.734727][ T8459] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters
[  360.783534][ T8478] loop1: detected capacity change from 0 to 512
[  360.855636][ T8459] EXT4-fs error (device loop7): ext4_free_branches:1023: inode #13: comm syz.7.672: invalid indirect mapped block 1819239214 (level 0)
[  360.962257][ T8478] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  360.975137][ T8459] EXT4-fs error (device loop7): ext4_free_branches:1023: inode #13: comm syz.7.672: invalid indirect mapped block 1819239214 (level 1)
[  361.060932][ T8459] EXT4-fs (loop7): 1 truncate cleaned up
[  361.068156][ T8459] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  361.110642][ T8478] ext4 filesystem being mounted at /108/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  361.232142][ T8459] EXT4-fs error (device loop7): ext4_find_dest_de:2050: inode #2: block 13: comm syz.7.672: bad entry in directory: directory entry overrun - offset=108, inode=4294901777, rec_len=1024, size=1024 fake=0
[  361.616677][ T5144] Bluetooth: hci1: ACL packet for unknown connection handle 200
[  362.070074][ T8459] EXT4-fs error (device loop7): ext4_find_dest_de:2050: inode #2: block 13: comm syz.7.672: bad entry in directory: directory entry overrun - offset=108, inode=4294901777, rec_len=1024, size=1024 fake=0
[  362.185562][ T5832] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  362.424410][ T7202] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  365.991238][ T8527] loop7: detected capacity change from 0 to 1024
[  366.493302][ T8526] sock: sock_timestamping_bind_phc: sock not bind to device
[  367.001964][ T5144] Bluetooth: hci1: ACL packet for unknown connection handle 200
[  369.235351][ T8555] syzkaller0: entered promiscuous mode
[  369.259108][ T8555] syzkaller0: entered allmulticast mode
[  371.709372][ T8569] loop6: detected capacity change from 0 to 1024
[  378.527952][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  378.536421][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  378.979637][ T5842] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  379.010240][ T5842] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  379.018487][ T5842] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  379.027486][ T5842] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  379.035358][ T5842] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  379.749116][ T8573] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  379.885709][ T5835] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  379.894694][ T5835] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  379.902264][ T5835] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  379.910250][ T5835] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  379.917828][ T5835] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  380.073940][ T8618] loop0: detected capacity change from 0 to 256
[  380.312373][ T5828] FAT-fs (loop0): error, corrupted directory (invalid entries)
[  380.339138][ T5828] FAT-fs (loop0): Filesystem has been set read-only
[  380.380956][ T5828] FAT-fs (loop0): error, corrupted directory (invalid entries)
[  380.441955][ T6482] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  380.559245][ T5835] Bluetooth: hci0: command 0x0406 tx timeout
[  380.780768][ T6482] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  381.899101][ T5144] Bluetooth: hci5: command tx timeout
[  381.969117][ T5144] Bluetooth: hci2: command tx timeout
[  382.255426][ T5835] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  382.264623][ T5835] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  382.275286][ T5835] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  382.283360][ T5835] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  382.319833][ T5835] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  382.381113][ T6482] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  382.393601][ T8622] loop6: detected capacity change from 0 to 32768
[  382.424913][ T8622] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.716 (8622)
[  382.514247][ T8622] BTRFS info (device loop6): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  382.579345][ T8622] BTRFS info (device loop6): using crc32c (crc32c-lib) checksum algorithm
[  382.723720][ T6482] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  382.870991][ T8622] BTRFS info (device loop6): enabling ssd optimizations
[  382.877959][ T8622] BTRFS info (device loop6): turning on async discard
[  382.909291][ T8622] BTRFS info (device loop6): enabling free space tree
[  383.168588][ T8622] BTRFS info (device loop6): scrub: started on devid 1
[  383.248128][ T8622] BTRFS info (device loop6): scrub: finished on devid 1 with status: 0
[  383.471079][ T5835] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  383.481258][ T5835] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  383.490259][ T5835] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  383.498772][ T5835] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  383.506851][ T5835] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  383.800474][ T8607] chnl_net:caif_netlink_parms(): no params data found
[  383.936228][ T6482] bridge_slave_1: left allmulticast mode
[  383.942028][ T6482] bridge_slave_1: left promiscuous mode
[  383.947763][ T6482] bridge0: port 2(bridge_slave_1) entered disabled state
[  383.971550][ T5835] Bluetooth: hci5: command tx timeout
[  384.000239][ T6482] bridge_slave_0: left allmulticast mode
[  384.005917][ T6482] bridge_slave_0: left promiscuous mode
[  384.037040][ T6482] bridge0: port 1(bridge_slave_0) entered disabled state
[  384.040847][ T6489] BTRFS info (device loop6): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  384.061450][ T5835] Bluetooth: hci2: command tx timeout
[  384.369131][ T5835] Bluetooth: hci1: command tx timeout
[  384.909487][ T8665] capability: warning: `syz.6.724' uses 32-bit capabilities (legacy support in use)
[  384.970292][ T8665] program syz.6.724 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  386.455628][ T5830] Bluetooth: hci1: command tx timeout
[  386.461091][ T5835] Bluetooth: hci3: command tx timeout
[  386.468909][ T5144] Bluetooth: hci5: command tx timeout
[  386.474326][ T5842] Bluetooth: hci2: command tx timeout
[  386.650351][ T6482] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  386.662309][ T6482] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  386.692636][ T6482] bond0 (unregistering): Released all slaves
[  386.851457][ T6482] bond1 (unregistering): Released all slaves
[  387.379803][ T8613] chnl_net:caif_netlink_parms(): no params data found
[  388.817081][ T5835] Bluetooth: hci3: command tx timeout
[  388.823354][ T5842] Bluetooth: hci2: command tx timeout
[  388.828748][ T5830] Bluetooth: hci1: command tx timeout
[  388.834547][ T5144] Bluetooth: hci5: command tx timeout
[  389.055763][ T8607] bridge0: port 1(bridge_slave_0) entered blocking state
[  389.085106][ T8607] bridge0: port 1(bridge_slave_0) entered disabled state
[  389.105503][ T8607] bridge_slave_0: entered allmulticast mode
[  389.127241][ T8607] bridge_slave_0: entered promiscuous mode
[  389.163045][ T8607] bridge0: port 2(bridge_slave_1) entered blocking state
[  389.184159][ T8607] bridge0: port 2(bridge_slave_1) entered disabled state
[  389.194356][ T8607] bridge_slave_1: entered allmulticast mode
[  389.222768][ T8607] bridge_slave_1: entered promiscuous mode
[  389.253166][ T8626] chnl_net:caif_netlink_parms(): no params data found
[  389.556554][ T6482] hsr_slave_0: left promiscuous mode
[  389.629333][ T6482] hsr_slave_1: left promiscuous mode
[  389.648641][ T6482] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  389.690490][ T6482] batman_adv: batadv0: Removing interface: batadv_slave_0
[  389.971444][ T6482] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  389.978850][ T6482] batman_adv: batadv0: Removing interface: batadv_slave_1
[  390.117849][ T6482] veth1_macvtap: left promiscuous mode
[  390.123500][ T6482] veth0_macvtap: left promiscuous mode
[  390.149224][ T6482] veth1_vlan: left promiscuous mode
[  390.154558][ T6482] veth0_vlan: left promiscuous mode
[  391.538636][ T5835] Bluetooth: hci1: command tx timeout
[  391.544091][ T5144] Bluetooth: hci3: command tx timeout
[  391.871452][ T8724] loop6: detected capacity change from 0 to 512
[  391.933444][ T8724] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  391.955850][ T8724] ext4 filesystem being mounted at /98/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  392.144564][ T6489] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  392.563065][ T6482] team0 (unregistering): Port device team_slave_1 removed
[  392.669435][ T6482] team0 (unregistering): Port device team_slave_0 removed
[  393.569143][ T5144] Bluetooth: hci3: command tx timeout
[  394.003348][ T8607] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  394.433624][ T8607] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  394.614384][ T8607] team0: Port device team_slave_0 added
[  394.644607][ T8607] team0: Port device team_slave_1 added
[  394.684856][ T8613] bridge0: port 1(bridge_slave_0) entered blocking state
[  394.731117][ T8613] bridge0: port 1(bridge_slave_0) entered disabled state
[  394.738315][ T8613] bridge_slave_0: entered allmulticast mode
[  394.760823][ T8613] bridge_slave_0: entered promiscuous mode
[  394.783873][ T8752] sd 0:0:1:0: PR command failed: 1026
[  394.791130][ T8752] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  394.797845][ T8752] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  394.982542][ T8613] bridge0: port 2(bridge_slave_1) entered blocking state
[  395.004294][ T8613] bridge0: port 2(bridge_slave_1) entered disabled state
[  395.015948][ T8613] bridge_slave_1: entered allmulticast mode
[  395.055115][ T8613] bridge_slave_1: entered promiscuous mode
[  395.401001][ T8626] bridge0: port 1(bridge_slave_0) entered blocking state
[  395.408148][ T8626] bridge0: port 1(bridge_slave_0) entered disabled state
[  395.438039][ T8626] bridge_slave_0: entered allmulticast mode
[  395.481856][ T8626] bridge_slave_0: entered promiscuous mode
[  395.548171][ T8607] batman_adv: batadv0: Adding interface: batadv_slave_0
[  395.569431][ T8607] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  395.613911][ T8607] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  395.726051][ T8626] bridge0: port 2(bridge_slave_1) entered blocking state
[  395.750277][ T8626] bridge0: port 2(bridge_slave_1) entered disabled state
[  395.757510][ T8626] bridge_slave_1: entered allmulticast mode
[  395.781101][ T8626] bridge_slave_1: entered promiscuous mode
[  395.802086][ T8607] batman_adv: batadv0: Adding interface: batadv_slave_1
[  395.819142][ T8607] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  395.870510][ T8607] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  396.302667][ T8613] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  396.322585][ T8613] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  396.402799][ T8762] loop6: detected capacity change from 0 to 32768
[  396.468711][ T8762] (syz.6.749,8762,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  396.553435][ T8626] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  396.576113][ T8762] (syz.6.749,8762,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  396.581221][ T8626] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  396.719413][ T8762] JBD2: Ignoring recovery information on journal
[  396.904362][ T8762] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode.
[  397.116611][ T8650] chnl_net:caif_netlink_parms(): no params data found
[  397.171317][ T8613] team0: Port device team_slave_0 added
[  397.279589][   T31] audit: type=1800 audit(1766627352.259:82): pid=8762 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.749" name="file1" dev="loop6" ino=16979 res=0 errno=0
[  397.342675][ T8613] team0: Port device team_slave_1 added
[  397.384946][ T8626] team0: Port device team_slave_0 added
[  397.413331][ T8607] hsr_slave_0: entered promiscuous mode
[  397.430915][ T8607] hsr_slave_1: entered promiscuous mode
[  397.445293][ T8607] debugfs: 'hsr0' already exists in 'hsr'
[  397.504635][ T8607] Cannot create hsr debugfs directory
[  397.614621][ T8626] team0: Port device team_slave_1 added
[  398.004907][ T8613] batman_adv: batadv0: Adding interface: batadv_slave_0
[  398.019078][ T8613] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  398.051646][ T8613] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  398.151101][ T6489] ocfs2: Unmounting device (7,6) on (node local)
[  398.154329][ T6482] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  398.457618][ T8613] batman_adv: batadv0: Adding interface: batadv_slave_1
[  398.465249][ T8613] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  398.512017][ T8613] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  398.575882][ T8626] batman_adv: batadv0: Adding interface: batadv_slave_0
[  398.593363][ T8626] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  398.639048][ T8626] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  398.745236][ T6482] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  398.811599][ T8818] loop6: detected capacity change from 0 to 128
[  398.864165][ T8818] FAT-fs (loop6): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1)
[  398.911379][ T8626] batman_adv: batadv0: Adding interface: batadv_slave_1
[  398.918342][ T8626] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  398.980240][ T8626] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  398.998650][ T8650] bridge0: port 1(bridge_slave_0) entered blocking state
[  399.023680][ T8650] bridge0: port 1(bridge_slave_0) entered disabled state
[  399.038556][ T8650] bridge_slave_0: entered allmulticast mode
[  399.052298][ T8650] bridge_slave_0: entered promiscuous mode
[  399.141560][ T6482] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  399.204702][ T8650] bridge0: port 2(bridge_slave_1) entered blocking state
[  399.212642][ T8650] bridge0: port 2(bridge_slave_1) entered disabled state
[  399.221558][ T8650] bridge_slave_1: entered allmulticast mode
[  399.232505][ T8650] bridge_slave_1: entered promiscuous mode
[  399.381138][ T6482] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  399.409746][ T6006] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[  399.601387][ T8613] hsr_slave_0: entered promiscuous mode
[  399.608674][ T8613] hsr_slave_1: entered promiscuous mode
[  399.618765][ T6006] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  399.643457][ T6006] usb 7-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  399.651958][ T8613] debugfs: 'hsr0' already exists in 'hsr'
[  399.668800][ T8613] Cannot create hsr debugfs directory
[  399.674423][ T6006] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66
[  399.674476][ T6006] usb 7-1: config 1 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  399.711732][ T6006] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  399.744023][ T6006] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  399.768395][ T6006] usb 7-1: Product: syz
[  399.779277][ T6006] usb 7-1: Manufacturer: syz
[  399.812596][ T6006] cdc_wdm 7-1:1.0: skipping garbage
[  399.817812][ T6006] cdc_wdm 7-1:1.0: skipping garbage
[  399.832850][ T6006] cdc_wdm 7-1:1.0: probe with driver cdc_wdm failed with error -22
[  399.892966][ T8650] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  399.927373][ T8626] hsr_slave_0: entered promiscuous mode
[  399.970544][ T8626] hsr_slave_1: entered promiscuous mode
[  399.990115][ T8626] debugfs: 'hsr0' already exists in 'hsr'
[  399.995856][ T8626] Cannot create hsr debugfs directory
[  400.036948][ T6232] usb 7-1: USB disconnect, device number 10
[  401.362112][ T8650] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  401.635347][ T8650] team0: Port device team_slave_0 added
[  401.698861][ T8650] team0: Port device team_slave_1 added
[  402.028341][ T6482] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  402.066561][ T8650] batman_adv: batadv0: Adding interface: batadv_slave_0
[  402.075181][ T8650] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  402.104384][ T8650] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  402.242754][ T8650] batman_adv: batadv0: Adding interface: batadv_slave_1
[  402.250876][ T8650] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  402.282720][ T8650] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  402.367237][ T6482] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  402.434283][ T8607] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  402.494484][ T8607] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  402.576838][ T8607] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  402.617022][ T6482] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  402.651310][ T8650] hsr_slave_0: entered promiscuous mode
[  402.669744][ T8650] hsr_slave_1: entered promiscuous mode
[  402.676579][ T8650] debugfs: 'hsr0' already exists in 'hsr'
[  402.690550][ T8650] Cannot create hsr debugfs directory
[  402.696539][ T8607] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  402.772285][ T6482] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  403.240821][ T8613] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  404.463891][ T8613] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  404.620502][ T8613] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  404.660481][ T8613] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  404.686523][ T6482] bridge_slave_1: left allmulticast mode
[  404.699113][ T6482] bridge_slave_1: left promiscuous mode
[  404.709729][ T6482] bridge0: port 2(bridge_slave_1) entered disabled state
[  404.730980][ T6482] bridge_slave_0: left allmulticast mode
[  404.736631][ T6482] bridge_slave_0: left promiscuous mode
[  404.749760][ T6482] bridge0: port 1(bridge_slave_0) entered disabled state
[  404.773874][ T6482] bridge_slave_1: left allmulticast mode
[  404.779859][ T6482] bridge_slave_1: left promiscuous mode
[  404.789371][ T6482] bridge0: port 2(bridge_slave_1) entered disabled state
[  404.810550][ T6482] bridge_slave_0: left allmulticast mode
[  404.816207][ T6482] bridge_slave_0: left promiscuous mode
[  404.823738][ T6482] bridge0: port 1(bridge_slave_0) entered disabled state
[  405.241417][ T6482] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  405.252813][ T6482] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  405.263620][ T6482] bond0 (unregistering): Released all slaves
[  405.429154][ T6629] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[  405.521365][ T6482] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  405.532230][ T6482] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  405.547510][ T6482] bond0 (unregistering): Released all slaves
[  405.591723][ T6629] usb 7-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  405.601040][ T6629] usb 7-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  405.611644][ T6629] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 66
[  405.625598][ T6629] usb 7-1: config 1 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  405.643338][ T6629] usb 7-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  405.652503][ T6629] usb 7-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  405.661260][ T6629] usb 7-1: Product: syz
[  405.665426][ T6629] usb 7-1: Manufacturer: syz
[  405.685492][ T6629] cdc_wdm 7-1:1.0: skipping garbage
[  405.699831][ T6629] cdc_wdm 7-1:1.0: skipping garbage
[  405.705394][ T6629] cdc_wdm 7-1:1.0: probe with driver cdc_wdm failed with error -22
[  405.707167][ T6482] bond1 (unregistering): Released all slaves
[  405.897768][ T6717] usb 7-1: USB disconnect, device number 11
[  405.935116][ T6482] tipc: Left network mode
[  406.347789][ T8607] 8021q: adding VLAN 0 to HW filter on device bond0
[  407.699234][ T8607] 8021q: adding VLAN 0 to HW filter on device team0
[  407.771459][ T6029] bridge0: port 1(bridge_slave_0) entered blocking state
[  407.778674][ T6029] bridge0: port 1(bridge_slave_0) entered forwarding state
[  407.865529][ T6482] hsr_slave_0: left promiscuous mode
[  407.882138][ T6482] hsr_slave_1: left promiscuous mode
[  407.888144][ T6482] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  407.919148][ T6482] batman_adv: batadv0: Removing interface: batadv_slave_0
[  407.936291][ T6482] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  407.957632][ T6482] batman_adv: batadv0: Removing interface: batadv_slave_1
[  407.997639][ T6482] hsr_slave_0: left promiscuous mode
[  408.018536][ T6482] hsr_slave_1: left promiscuous mode
[  408.029859][ T6482] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  408.038454][ T6482] batman_adv: batadv0: Removing interface: batadv_slave_0
[  408.080136][ T6482] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  408.087557][ T6482] batman_adv: batadv0: Removing interface: batadv_slave_1
[  408.210024][ T6482] veth1_macvtap: left promiscuous mode
[  408.215555][ T6482] veth0_macvtap: left promiscuous mode
[  408.249735][ T6482] veth1_vlan: left promiscuous mode
[  408.259173][ T6482] veth0_vlan: left promiscuous mode
[  408.270422][ T6482] veth1_macvtap: left promiscuous mode
[  408.275963][ T6482] veth0_macvtap: left promiscuous mode
[  408.299274][ T6482] veth1_vlan: left promiscuous mode
[  408.304630][ T6482] veth0_vlan: left promiscuous mode
[  410.305933][ T6482] team0 (unregistering): Port device team_slave_1 removed
[  410.345903][ T6482] team0 (unregistering): Port device team_slave_0 removed
[  410.808203][ T8939] capability: warning: `syz.3.800' uses deprecated v2 capabilities in a way that may be insecure
[  410.998333][ T6482] team0 (unregistering): Port device team_slave_1 removed
[  411.046825][ T6482] team0 (unregistering): Port device team_slave_0 removed
[  411.529824][ T1969] bridge0: port 2(bridge_slave_1) entered blocking state
[  411.536988][ T1969] bridge0: port 2(bridge_slave_1) entered forwarding state
[  411.546545][ T8626] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  411.559785][ T8626] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  411.637684][ T8626] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  411.665305][ T8626] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  411.736409][ T8613] 8021q: adding VLAN 0 to HW filter on device bond0
[  411.883910][ T8613] 8021q: adding VLAN 0 to HW filter on device team0
[  411.922788][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  411.930070][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  412.003746][ T1969] bridge0: port 2(bridge_slave_1) entered blocking state
[  412.011057][ T1969] bridge0: port 2(bridge_slave_1) entered forwarding state
[  413.538149][ T8650] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  413.612271][ T8650] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  413.690706][ T8650] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  413.738009][ T8626] 8021q: adding VLAN 0 to HW filter on device bond0
[  413.760363][ T8650] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  413.931589][ T8607] 8021q: adding VLAN 0 to HW filter on device batadv0
[  413.981233][ T8626] 8021q: adding VLAN 0 to HW filter on device team0
[  414.031172][ T3860] bridge0: port 1(bridge_slave_0) entered blocking state
[  414.038502][ T3860] bridge0: port 1(bridge_slave_0) entered forwarding state
[  414.123506][ T3860] bridge0: port 2(bridge_slave_1) entered blocking state
[  414.130685][ T3860] bridge0: port 2(bridge_slave_1) entered forwarding state
[  415.464333][ T8613] 8021q: adding VLAN 0 to HW filter on device batadv0
[  415.775354][ T8650] 8021q: adding VLAN 0 to HW filter on device bond0
[  415.894163][ T8650] 8021q: adding VLAN 0 to HW filter on device team0
[  415.974706][ T3452] bridge0: port 1(bridge_slave_0) entered blocking state
[  415.981884][ T3452] bridge0: port 1(bridge_slave_0) entered forwarding state
[  416.041927][ T6482] bridge0: port 2(bridge_slave_1) entered blocking state
[  416.049119][ T6482] bridge0: port 2(bridge_slave_1) entered forwarding state
[  416.402292][ T8626] 8021q: adding VLAN 0 to HW filter on device batadv0
[  416.431843][ T8607] veth0_vlan: entered promiscuous mode
[  416.487587][ T8607] veth1_vlan: entered promiscuous mode
[  416.645101][ T8626] veth0_vlan: entered promiscuous mode
[  416.701449][ T8613] veth0_vlan: entered promiscuous mode
[  416.762537][ T8626] veth1_vlan: entered promiscuous mode
[  416.871059][ T8613] veth1_vlan: entered promiscuous mode
[  416.883669][ T8607] veth0_macvtap: entered promiscuous mode
[  416.940831][ T8607] veth1_macvtap: entered promiscuous mode
[  417.068276][ T8607] batman_adv: batadv0: Interface activated: batadv_slave_0
[  417.136891][ T8613] veth0_macvtap: entered promiscuous mode
[  417.172115][ T8626] veth0_macvtap: entered promiscuous mode
[  417.191620][ T8607] batman_adv: batadv0: Interface activated: batadv_slave_1
[  417.225152][ T8613] veth1_macvtap: entered promiscuous mode
[  417.256034][ T8626] veth1_macvtap: entered promiscuous mode
[  417.284379][ T3860] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  417.305835][ T3860] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  417.326909][ T3860] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  417.358700][ T8650] 8021q: adding VLAN 0 to HW filter on device batadv0
[  417.380268][ T3860] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  418.612865][ T8613] batman_adv: batadv0: Interface activated: batadv_slave_0
[  418.800725][ T8613] batman_adv: batadv0: Interface activated: batadv_slave_1
[  418.830975][ T8626] batman_adv: batadv0: Interface activated: batadv_slave_0
[  418.875397][ T8626] batman_adv: batadv0: Interface activated: batadv_slave_1
[  418.931556][ T6630] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  418.944096][ T6630] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  418.995444][ T6630] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  419.019086][ T6630] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  419.083210][ T6630] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  419.140757][ T6630] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  419.163811][ T6630] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  420.436485][ T6630] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  420.446942][ T6037] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  420.479917][ T6037] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  420.700438][ T6035] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  420.723939][ T6035] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  420.834070][ T7780] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  420.859041][ T7780] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  421.021261][ T3425] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  421.033265][ T8650] veth0_vlan: entered promiscuous mode
[  421.059737][ T3425] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  421.117173][ T3425] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  421.135571][ T3425] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  421.182577][ T8650] veth1_vlan: entered promiscuous mode
[  421.258232][ T6035] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  421.320553][ T6035] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  421.466661][ T8650] veth0_macvtap: entered promiscuous mode
[  421.528173][ T8650] veth1_macvtap: entered promiscuous mode
[  421.636779][ T8650] batman_adv: batadv0: Interface activated: batadv_slave_0
[  421.692724][ T8650] batman_adv: batadv0: Interface activated: batadv_slave_1
[  421.753006][ T7841] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  421.892109][ T6231] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  421.901247][ T5921] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  421.960904][ T6231] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  422.154810][ T6231] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  425.176816][ T5921] usb 3-1: unable to read config index 0 descriptor/start: -71
[  425.204705][ T5921] usb 3-1: can't read configurations, error -71
[  425.382965][ T3425] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  425.419042][ T3425] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  426.722918][ T1969] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  426.732609][ T1969] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  426.809754][ T9109] loop2: detected capacity change from 0 to 2048
[  426.954245][ T9109] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  427.840059][   T31] audit: type=1326 audit(1766627382.819:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9106 comm="syz.2.829" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f852338f749 code=0x0
[  428.028794][ T8626] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  433.697998][ T9185] loop8: detected capacity change from 0 to 2048
[  435.044437][ T9185] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  435.399109][ T6416] usb 7-1: new high-speed USB device number 12 using dummy_hcd
[  435.512047][   T31] audit: type=1326 audit(1766627390.489:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9183 comm="syz.8.848" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fafc0b8f749 code=0x0
[  435.545239][ T9205] loop4: detected capacity change from 0 to 512
[  435.591504][ T6416] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  435.596621][ T9205] EXT4-fs: Ignoring removed mblk_io_submit option
[  435.849127][ T6416] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  435.860272][ T9205] EXT4-fs: Ignoring removed orlov option
[  435.865924][ T9205] EXT4-fs: Ignoring removed mblk_io_submit option
[  435.898972][ T6416] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  435.942557][ T9205] EXT4-fs error (device loop4): ext4_iget_extra_inode:5073: inode #15: comm syz.4.839: corrupted in-inode xattr: e_value size too large
[  435.970980][ T6416] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  436.139034][ T9209] Invalid option length (1048180) for dns_resolver key
[  436.200988][ T9205] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.839: couldn't read orphan inode 15 (err -117)
[  436.209051][ T6416] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  436.419463][ T9205] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  436.506794][ T6416] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  436.648101][ T6416] usb 7-1: config 0 descriptor??
[  436.883350][ T6416] usbhid 7-1:0.0: can't add hid device: -71
[  436.909136][ T6416] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[  436.971983][ T6416] usb 7-1: USB disconnect, device number 12
[  437.144924][ T9222] fuse: Unknown parameter 'group_id00000000000000000000'
[  438.837989][ T9195] EXT4-fs error (device loop8): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  439.039796][ T9195] EXT4-fs (loop8): Remounting filesystem read-only
[  439.258222][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  439.266313][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  440.942295][ T8650] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  444.571088][ T8607] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  445.817852][ T9271] Invalid option length (1048180) for dns_resolver key
[  448.261808][ T6629] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  448.471577][ T6629] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  448.544904][ T6629] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  448.612910][ T6629] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  448.664128][ T6629] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  448.722294][ T6629] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  448.758909][ T6629] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  448.879489][ T6629] usb 5-1: config 0 descriptor??
[  450.423316][ T6629] plantronics 0003:047F:FFFF.0001: unknown main item tag 0x0
[  450.551045][ T6629] plantronics 0003:047F:FFFF.0001: unknown main item tag 0x0
[  450.559277][ T6629] plantronics 0003:047F:FFFF.0001: unknown main item tag 0x0
[  450.567671][ T6629] plantronics 0003:047F:FFFF.0001: unknown main item tag 0x0
[  555.578981][    C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[  555.585998][    C1] rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P9325/3:b..l P9275/1:b..l P9332/1:b..l
[  555.596641][    C1] rcu: 	(detected by 1, t=10502 jiffies, g=32837, q=734 ncpus=2)
[  555.604359][    C1] task:dhcpcd-run-hook state:R  running task     stack:27800 pid:9332  tgid:9332  ppid:9289   task_flags:0x400040 flags:0x00080800
[  555.618585][    C1] Call Trace:
[  555.621861][    C1]  <TASK>
[  555.624793][    C1]  __schedule+0x149b/0x4fd0
[  555.629317][    C1]  ? unwind_next_frame+0xa5/0x23d0
[  555.634447][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  555.640190][    C1]  ? __pfx___schedule+0x10/0x10
[  555.645148][    C1]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  555.651239][    C1]  preempt_schedule_irq+0x4d/0xa0
[  555.656269][    C1]  irqentry_exit+0x5d8/0x660
[  555.660864][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  555.666511][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  555.672494][    C1] RIP: 0010:lock_is_held_type+0x107/0x150
[  555.678226][    C1] Code: 18 00 00 b8 ff ff ff ff 65 0f c1 05 93 c1 26 07 83 f8 01 75 25 9c 58 a9 00 02 00 00 75 39 41 f7 c4 00 02 00 00 74 01 fb 89 d8 <5b> 41 5c 41 5d 41 5e 41 5f 5d e9 c5 ac b6 f5 cc 90 0f 0b 90 48 c7
[  555.697836][    C1] RSP: 0018:ffffc9000bc57470 EFLAGS: 00000206
[  555.703909][    C1] RAX: 0000000000000001 RBX: 0000000000000001 RCX: 0000000000000046
[  555.711880][    C1] RDX: 0000000000000000 RSI: ffffffff8d975e98 RDI: ffffffff8bc083e0
[  555.719854][    C1] RBP: 00000000ffffffff R08: ffffffff8230efda R09: ffffffff8df41aa0
[  555.727823][    C1] R10: ffff88802a618900 R11: ffffffff81acf3a0 R12: 0000000000000246
[  555.735794][    C1] R13: ffff88802a618000 R14: ffffffff8df41aa0 R15: 0000000000000002
[  555.743773][    C1]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  555.749948][    C1]  ? __update_page_owner_handle+0x5a/0x570
[  555.755775][    C1]  page_ext_lookup+0xe7/0x180
[  555.760457][    C1]  ? __update_page_owner_handle+0x5a/0x570
[  555.766265][    C1]  __update_page_owner_handle+0x12f/0x570
[  555.771992][    C1]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  555.778070][    C1]  __set_page_owner+0x10b/0x4c0
[  555.782933][    C1]  ? __pfx___set_page_owner+0x10/0x10
[  555.788305][    C1]  ? seqcount_lockdep_reader_access+0x89/0xc0
[  555.794389][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  555.800027][    C1]  ? lockdep_hardirqs_on+0x7b/0x110
[  555.805233][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  555.810998][    C1]  post_alloc_hook+0x234/0x290
[  555.815777][    C1]  get_page_from_freelist+0x24e0/0x2580
[  555.821340][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  555.827078][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  555.832714][    C1]  ? unwind_get_return_address+0x4d/0x90
[  555.838440][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  555.844090][    C1]  ? prepare_alloc_pages+0x22b/0x650
[  555.849388][    C1]  __alloc_frozen_pages_noprof+0x181/0x370
[  555.855216][    C1]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  555.861557][    C1]  ? kasan_save_track+0x4f/0x80
[  555.866417][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  555.872059][    C1]  ? policy_nodemask+0x27c/0x720
[  555.877001][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  555.882730][    C1]  alloc_pages_mpol+0x232/0x4a0
[  555.887595][    C1]  allocate_slab+0x86/0x3b0
[  555.892118][    C1]  ___slab_alloc+0xe53/0x1820
[  555.896810][    C1]  ? tomoyo_find_next_domain+0x10e9/0x1aa0
[  555.902623][    C1]  ? tomoyo_find_next_domain+0x10e9/0x1aa0
[  555.908432][    C1]  __slab_alloc+0x65/0x100
[  555.912861][    C1]  __kmalloc_cache_noprof+0x41e/0x700
[  555.918235][    C1]  ? tomoyo_find_next_domain+0xee9/0x1aa0
[  555.923959][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  555.929596][    C1]  ? tomoyo_find_next_domain+0x10e9/0x1aa0
[  555.935410][    C1]  tomoyo_find_next_domain+0x10e9/0x1aa0
[  555.941098][    C1]  ? __pfx_tomoyo_find_next_domain+0x10/0x10
[  555.947093][    C1]  ? tomoyo_bprm_check_security+0xf0/0x180
[  555.953001][    C1]  tomoyo_bprm_check_security+0x11c/0x180
[  555.958828][    C1]  security_bprm_check+0x89/0x270
[  555.963862][    C1]  bprm_execve+0x887/0x1400
[  555.968400][    C1]  ? __pfx_bprm_execve+0x10/0x10
[  555.973365][    C1]  do_execveat_common+0x510/0x6a0
[  555.978407][    C1]  __x64_sys_execve+0x94/0xb0
[  555.983127][    C1]  do_syscall_64+0xec/0xf80
[  555.987636][    C1]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  555.993878][    C1]  ? trace_irq_disable+0x37/0x100
[  555.998919][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  556.004813][    C1] RIP: 0033:0x7f261c28a107
[  556.009239][    C1] RSP: 002b:00007ffe258b1d58 EFLAGS: 00000246 ORIG_RAX: 000000000000003b
[  556.017661][    C1] RAX: ffffffffffffffda RBX: 0000564b0884b0c8 RCX: 00007f261c28a107
[  556.025724][    C1] RDX: 0000564b0884b0e8 RSI: 0000564b0884b0c8 RDI: 0000564b0884b170
[  556.033699][    C1] RBP: 0000564b0884b170 R08: 00007ffe258b4e53 R09: 0000000000000000
[  556.041674][    C1] R10: 0000000000000008 R11: 0000000000000246 R12: 0000564b0884b0e8
[  556.049641][    C1] R13: 00007f261c44fe8b R14: 0000564b0884b0e8 R15: 0000000000000000
[  556.057634][    C1]  </TASK>
[  556.060654][    C1] task:syz.6.867       state:R  running task     stack:22392 pid:9275  tgid:9275  ppid:6489   task_flags:0x400640 flags:0x00080000
[  556.074174][    C1] Call Trace:
[  556.077455][    C1]  <TASK>
[  556.080391][    C1]  __schedule+0x149b/0x4fd0
[  556.084925][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  556.090564][    C1]  ? __lock_acquire+0x6b6/0x2cf0
[  556.095508][    C1]  ? __pfx___schedule+0x10/0x10
[  556.100365][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  556.106007][    C1]  ? __lock_acquire+0x6b6/0x2cf0
[  556.110960][    C1]  preempt_schedule_irq+0x4d/0xa0
[  556.115991][    C1]  irqentry_exit+0x5d8/0x660
[  556.120588][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  556.126327][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  556.132321][    C1] RIP: 0010:lock_acquire+0x222/0x340
[  556.137610][    C1] Code: ff ff ff e8 30 a1 bb 09 f7 44 24 08 00 02 00 00 0f 84 3a ff ff ff 65 48 8b 05 3a 20 e2 10 48 3b 44 24 58 75 33 fb 48 83 c4 60 <5b> 41 5c 41 5d 41 5e 41 5f 5d e9 0a 51 72 ff cc 48 8d 3d 57 76 e7
[  556.157228][    C1] RSP: 0018:ffffc9000bb95f58 EFLAGS: 00000282
[  556.163397][    C1] RAX: 68cb94af22d4d800 RBX: 0000000000000000 RCX: 0000000000000046
[  556.171370][    C1] RDX: 000000004aef99b0 RSI: ffffffff8d975e98 RDI: ffffffff8bc083e0
[  556.179345][    C1] RBP: ffffffff8173fd65 R08: ffffffff8173fd65 R09: ffffffff8df41aa0
[  556.187317][    C1] R10: dffffc0000000000 R11: ffffffff81acf3a0 R12: 0000000000000002
[  556.195293][    C1] R13: ffffffff8df41aa0 R14: 0000000000000000 R15: 0000000000000246
[  556.203288][    C1]  ? unwind_next_frame+0xa5/0x23d0
[  556.208476][    C1]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  556.214654][    C1]  ? unwind_next_frame+0xa5/0x23d0
[  556.219905][    C1]  ? shmem_alloc_and_add_folio+0x423/0xf40
[  556.225732][    C1]  ? unwind_next_frame+0xa5/0x23d0
[  556.230852][    C1]  unwind_next_frame+0xc2/0x23d0
[  556.235886][    C1]  ? unwind_next_frame+0xa5/0x23d0
[  556.241015][    C1]  ? unwind_next_frame+0xa5/0x23d0
[  556.246146][    C1]  ? folio_alloc_mpol_noprof+0x39/0x70
[  556.251613][    C1]  ? shmem_alloc_and_add_folio+0x423/0xf40
[  556.257440][    C1]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  556.263619][    C1]  arch_stack_walk+0x11c/0x150
[  556.268408][    C1]  ? shmem_alloc_and_add_folio+0x423/0xf40
[  556.274241][    C1]  stack_trace_save+0x9c/0xe0
[  556.278939][    C1]  ? __pfx_stack_trace_save+0x10/0x10
[  556.284333][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  556.289979][    C1]  save_stack+0xf5/0x1f0
[  556.294230][    C1]  ? __pfx_save_stack+0x10/0x10
[  556.299077][    C1]  ? __lock_acquire+0x6b6/0x2cf0
[  556.304014][    C1]  ? post_alloc_hook+0x234/0x290
[  556.308949][    C1]  ? get_page_from_freelist+0x24e0/0x2580
[  556.314673][    C1]  ? __alloc_frozen_pages_noprof+0x181/0x370
[  556.320661][    C1]  ? alloc_pages_mpol+0x232/0x4a0
[  556.325690][    C1]  ? folio_alloc_mpol_noprof+0x39/0x70
[  556.331154][    C1]  ? shmem_alloc_and_add_folio+0x423/0xf40
[  556.337027][    C1]  __set_page_owner+0x8d/0x4c0
[  556.341797][    C1]  ? __pfx___set_page_owner+0x10/0x10
[  556.347175][    C1]  ? seqcount_lockdep_reader_access+0x89/0xc0
[  556.353284][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  556.359182][    C1]  ? lockdep_hardirqs_on+0x7b/0x110
[  556.364384][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  556.370026][    C1]  post_alloc_hook+0x234/0x290
[  556.374798][    C1]  get_page_from_freelist+0x24e0/0x2580
[  556.380365][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  556.386028][    C1]  ? prepare_alloc_pages+0x22b/0x650
[  556.391329][    C1]  __alloc_frozen_pages_noprof+0x181/0x370
[  556.397177][    C1]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  556.403513][    C1]  ? lock_acquire+0x107/0x340
[  556.408213][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  556.413854][    C1]  ? policy_nodemask+0x27c/0x720
[  556.418802][    C1]  alloc_pages_mpol+0x232/0x4a0
[  556.423668][    C1]  folio_alloc_mpol_noprof+0x39/0x70
[  556.428962][    C1]  shmem_alloc_and_add_folio+0x423/0xf40
[  556.434611][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  556.440257][    C1]  ? filemap_get_entry+0xad/0x2f0
[  556.445278][    C1]  ? filemap_get_entry+0xad/0x2f0
[  556.450300][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  556.455935][    C1]  ? filemap_get_entry+0x28f/0x2f0
[  556.461043][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  556.466683][    C1]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  556.472853][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  556.478490][    C1]  ? shmem_allowable_huge_orders+0x1d4/0x4e0
[  556.484481][    C1]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  556.489870][    C1]  shmem_get_folio_gfp+0x59d/0x1660
[  556.495538][    C1]  shmem_write_begin+0x16c/0x330
[  556.500503][    C1]  generic_perform_write+0x2c5/0x900
[  556.505941][    C1]  ? __pfx_generic_perform_write+0x10/0x10
[  556.511752][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  556.517399][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  556.523043][    C1]  ? file_update_time_flags+0x2cb/0x4e0
[  556.528697][    C1]  shmem_file_write_iter+0xf8/0x120
[  556.533911][    C1]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  556.539736][    C1]  __kernel_write_iter+0x428/0x910
[  556.544849][    C1]  ? __pfx_shmem_file_write_iter+0x10/0x10
[  556.550672][    C1]  ? __pfx___kernel_write_iter+0x10/0x10
[  556.556391][    C1]  ? get_dump_page+0x1dd/0x3f0
[  556.561174][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  556.566812][    C1]  ? __asan_memset+0x22/0x50
[  556.571417][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  556.577063][    C1]  ? iov_iter_bvec+0xb8/0x180
[  556.581841][    C1]  dump_user_range+0x8a0/0xc90
[  556.586632][    C1]  ? __pfx_dump_user_range+0x10/0x10
[  556.591926][    C1]  ? elf_coredump_extra_notes_write+0x42e/0x4b0
[  556.598176][    C1]  ? __pfx_elf_coredump_extra_notes_write+0x10/0x10
[  556.604776][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  556.610587][    C1]  ? dump_emit+0xa6/0xe0
[  556.614835][    C1]  ? elf_core_dump+0x2cd0/0x3960
[  556.619790][    C1]  elf_core_dump+0x3369/0x3960
[  556.624592][    C1]  ? __pfx_elf_core_dump+0x10/0x10
[  556.629721][    C1]  ? kasan_save_track+0x4f/0x80
[  556.634571][    C1]  ? kasan_save_track+0x3e/0x80
[  556.639423][    C1]  ? __kasan_kmalloc+0x93/0xb0
[  556.644193][    C1]  ? __kvmalloc_node_noprof+0x5d5/0x920
[  556.649741][    C1]  ? coredump_write+0x343/0x18b0
[  556.654685][    C1]  ? vfs_coredump+0x3321/0x3e60
[  556.659553][    C1]  ? get_signal+0x1108/0x1340
[  556.664404][    C1]  ? arch_do_signal_or_restart+0x9a/0x7a0
[  556.670146][    C1]  ? irqentry_exit+0x177/0x660
[  556.674913][    C1]  ? asm_exc_page_fault+0x26/0x30
[  556.680031][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  556.685684][    C1]  ? mas_ascend+0x2f4/0x830
[  556.690243][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  556.695883][    C1]  ? 0xffffffffff600000
[  556.700042][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  556.705785][    C1]  coredump_write+0x1121/0x18b0
[  556.710691][    C1]  ? __pfx_coredump_write+0x10/0x10
[  556.715921][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  556.721561][    C1]  ? unshare_files+0xa9/0x140
[  556.726247][    C1]  vfs_coredump+0x3321/0x3e60
[  556.730959][    C1]  ? __pfx_vfs_coredump+0x10/0x10
[  556.735990][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  556.741626][    C1]  ? __lock_acquire+0x6b6/0x2cf0
[  556.746568][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  556.752207][    C1]  ? __lock_acquire+0x6b6/0x2cf0
[  556.757156][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  556.762791][    C1]  ? __lock_acquire+0x6b6/0x2cf0
[  556.767734][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  556.773367][    C1]  ? __lock_acquire+0x6b6/0x2cf0
[  556.778310][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  556.783944][    C1]  ? __lock_acquire+0x6b6/0x2cf0
[  556.788889][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  556.794524][    C1]  ? lock_acquire+0x107/0x340
[  556.799213][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  556.804855][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  556.810494][    C1]  ? lock_acquire+0x107/0x340
[  556.815174][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  556.820814][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  556.826452][    C1]  ? is_bpf_text_address+0x26/0x2b0
[  556.831668][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  556.837301][    C1]  ? is_bpf_text_address+0x292/0x2b0
[  556.842599][    C1]  ? is_bpf_text_address+0x26/0x2b0
[  556.847813][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  556.853449][    C1]  ? kernel_text_address+0xa5/0xe0
[  556.858570][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  556.864208][    C1]  ? __kernel_text_address+0xd/0x40
[  556.869415][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  556.875049][    C1]  ? unwind_get_return_address+0x4d/0x90
[  556.880686][    C1]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  556.886852][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  556.892484][    C1]  ? arch_stack_walk+0xfc/0x150
[  556.897352][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  556.902988][    C1]  ? stack_trace_save+0x9c/0xe0
[  556.907847][    C1]  ? __pfx_stack_trace_save+0x10/0x10
[  556.913237][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  556.918872][    C1]  ? stack_depot_save_flags+0x33/0x810
[  556.924351][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  556.929988][    C1]  ? kasan_save_track+0x4f/0x80
[  556.934839][    C1]  ? kasan_save_track+0x3e/0x80
[  556.939686][    C1]  ? kasan_save_free_info+0x46/0x50
[  556.944894][    C1]  ? __kasan_slab_free+0x5c/0x80
[  556.949831][    C1]  ? kmem_cache_free+0x197/0x620
[  556.954770][    C1]  ? get_signal+0xa4b/0x1340
[  556.959359][    C1]  ? arch_do_signal_or_restart+0x9a/0x7a0
[  556.965100][    C1]  ? irqentry_exit+0x177/0x660
[  556.969864][    C1]  ? asm_exc_page_fault+0x26/0x30
[  556.974942][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  556.980758][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[  556.985975][    C1]  get_signal+0x1108/0x1340
[  556.990502][    C1]  arch_do_signal_or_restart+0x9a/0x7a0
[  556.996061][    C1]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  557.002244][    C1]  ? local_irq_enable_exit_to_user+0x5/0x10
[  557.008144][    C1]  irqentry_exit+0x177/0x660
[  557.012743][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  557.018377][    C1]  ? trace_irq_disable+0x37/0x100
[  557.023417][    C1]  asm_exc_page_fault+0x26/0x30
[  557.028279][    C1] RIP: 0033:0x7f8b3978f751
[  557.032688][    C1] RSP: 002b:fffffffffffffe70 EFLAGS: 00010217
[  557.038757][    C1] RAX: 0000000000000000 RBX: 00007f8b399e6090 RCX: 00007f8b3978f749
[  557.046724][    C1] RDX: 0000000000000000 RSI: fffffffffffffe70 RDI: 0000000000008000
[  557.054692][    C1] RBP: 00007f8b39813f91 R08: 0000000000000000 R09: 0000000000000000
[  557.062658][    C1] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  557.070622][    C1] R13: 00007f8b399e6128 R14: 00007f8b399e6090 R15: 00007ffe0c8685a8
[  557.078612][    C1]  </TASK>
[  557.081622][    C1] task:syz.8.879       state:R  running task     stack:26208 pid:9325  tgid:9322  ppid:8607   task_flags:0x400040 flags:0x00080000
[  557.095312][    C1] Call Trace:
[  557.098583][    C1]  <TASK>
[  557.101515][    C1]  __schedule+0x149b/0x4fd0
[  557.106034][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  557.111677][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  557.117324][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  557.122959][    C1]  ? lock_acquire+0x107/0x340
[  557.127634][    C1]  ? __pfx___schedule+0x10/0x10
[  557.132482][    C1]  ? folio_try_get+0x1c/0x340
[  557.137247][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  557.142888][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  557.148536][    C1]  ? preempt_schedule_thunk+0x16/0x30
[  557.153913][    C1]  preempt_schedule_common+0x83/0xd0
[  557.159212][    C1]  preempt_schedule_thunk+0x16/0x30
[  557.164419][    C1]  _raw_spin_unlock+0x3f/0x50
[  557.169107][    C1]  filemap_map_pages+0x192d/0x1fd0
[  557.174257][    C1]  ? filemap_map_pages+0x160/0x1fd0
[  557.179464][    C1]  ? __pfx_filemap_map_pages+0x10/0x10
[  557.184944][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  557.190674][    C1]  ? __pfx_filemap_map_pages+0x10/0x10
[  557.196136][    C1]  ? do_pte_missing+0x11a9/0x3330
[  557.201160][    C1]  do_pte_missing+0x20b0/0x3330
[  557.206026][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  557.211663][    C1]  ? handle_mm_fault+0xdb/0x32b0
[  557.216615][    C1]  handle_mm_fault+0x1b26/0x32b0
[  557.221566][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  557.227224][    C1]  ? handle_mm_fault+0xdb/0x32b0
[  557.232184][    C1]  ? __pfx_handle_mm_fault+0x10/0x10
[  557.237486][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  557.243136][    C1]  ? follow_page_pte+0x7ef/0x13e0
[  557.248312][    C1]  ? __pfx_follow_page_pte+0x10/0x10
[  557.253607][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  557.259281][    C1]  __get_user_pages+0x1650/0x29f0
[  557.264355][    C1]  populate_vma_page_range+0x29f/0x3a0
[  557.269824][    C1]  ? __pfx_populate_vma_page_range+0x10/0x10
[  557.275814][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  557.281449][    C1]  ? down_read+0x274/0x2e0
[  557.285866][    C1]  ? __mm_populate+0x160/0x380
[  557.290637][    C1]  __mm_populate+0x24c/0x380
[  557.295236][    C1]  ? __pfx___mm_populate+0x10/0x10
[  557.300355][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  557.306001][    C1]  vm_mmap_pgoff+0x387/0x4d0
[  557.310605][    C1]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  557.315718][    C1]  ? exc_page_fault+0x71/0xd0
[  557.320397][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  557.326034][    C1]  ? ksys_mmap_pgoff+0xf4/0x760
[  557.330896][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  557.336790][    C1]  ? __x64_sys_mmap+0x7f/0x140
[  557.341561][    C1]  do_syscall_64+0xec/0xf80
[  557.346067][    C1]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  557.352133][    C1]  ? trace_irq_disable+0x37/0x100
[  557.357171][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  557.363242][    C1] RIP: 0033:0x7fafc0b8f749
[  557.367655][    C1] RSP: 002b:00007fafc1941038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  557.376067][    C1] RAX: ffffffffffffffda RBX: 00007fafc0de5fa0 RCX: 00007fafc0b8f749
[  557.384034][    C1] RDX: 0000000000000002 RSI: 0000000000b36000 RDI: 0000200000000000
[  557.391998][    C1] RBP: 00007fafc0c13f91 R08: ffffffffffffffff R09: 000000006a855000
[  557.399966][    C1] R10: 0000000000008031 R11: 0000000000000246 R12: 0000000000000000
[  557.407931][    C1] R13: 00007fafc0de6038 R14: 00007fafc0de5fa0 R15: 00007fffde29f698
[  557.415921][    C1]  </TASK>
[  557.418934][    C1] rcu: rcu_preempt kthread starved for 10683 jiffies! g32837 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1
[  557.430123][    C1] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[  557.440084][    C1] rcu: RCU grace-period kthread stack dump:
[  557.445961][    C1] task:rcu_preempt     state:R  running task     stack:27904 pid:16    tgid:16    ppid:2      task_flags:0x208040 flags:0x00080000
[  557.459481][    C1] Call Trace:
[  557.462753][    C1]  <TASK>
[  557.465682][    C1]  __schedule+0x149b/0x4fd0
[  557.470195][    C1]  ? do_raw_spin_lock+0x121/0x290
[  557.475252][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  557.480895][    C1]  ? __pfx___schedule+0x10/0x10
[  557.485755][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  557.491398][    C1]  ? schedule+0x91/0x360
[  557.495643][    C1]  schedule+0x165/0x360
[  557.499799][    C1]  schedule_timeout+0x12b/0x270
[  557.504660][    C1]  ? __pfx_schedule_timeout+0x10/0x10
[  557.510044][    C1]  ? __pfx_process_timeout+0x10/0x10
[  557.515345][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  557.520986][    C1]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  557.526805][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  557.532440][    C1]  ? prepare_to_swait_event+0x341/0x380
[  557.538003][    C1]  rcu_gp_fqs_loop+0x301/0x1540
[  557.542865][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  557.548501][    C1]  ? rcu_gp_init+0x11dc/0x1650
[  557.553283][    C1]  ? __pfx_rcu_gp_fqs_loop+0x10/0x10
[  557.558570][    C1]  ? _raw_spin_unlock_irq+0x2e/0x50
[  557.563789][    C1]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  557.569616][    C1]  rcu_gp_kthread+0x99/0x390
[  557.574219][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  557.579418][    C1]  ? __kthread_parkme+0x7b/0x200
[  557.584366][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  557.590002][    C1]  ? __kthread_parkme+0x1a1/0x200
[  557.595038][    C1]  kthread+0x711/0x8a0
[  557.599121][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  557.604324][    C1]  ? __pfx_kthread+0x10/0x10
[  557.608917][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  557.614736][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[  557.619948][    C1]  ? __pfx_kthread+0x10/0x10
[  557.624634][    C1]  ret_from_fork+0x510/0xa50
[  557.629265][    C1]  ? __pfx_ret_from_fork+0x10/0x10
[  557.634372][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  557.640005][    C1]  ? __switch_to+0xc9e/0x1480
[  557.644695][    C1]  ? __pfx_kthread+0x10/0x10
[  557.649295][    C1]  ret_from_fork_asm+0x1a/0x30
[  557.654087][    C1]  </TASK>
[  557.657102][    C1] rcu: Stack dump where RCU GP kthread last ran:
[  557.663418][    C1] CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Not tainted syzkaller #0 PREEMPT(full) 
[  557.672348][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  557.682404][    C1] RIP: 0010:pv_native_safe_halt+0x13/0x20
[  557.688127][    C1] Code: 3e b4 b6 f5 cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d 73 c1 0e 00 f3 0f 1e fa fb f4 <e9> 13 b4 b6 f5 cc cc cc cc cc cc cc cc 90 90 90 90 90 90 90 90 90
[  557.707732][    C1] RSP: 0018:ffffc90000197e20 EFLAGS: 000002c2
[  557.713803][    C1] RAX: 0000000000871f45 RBX: ffffffff819713be RCX: 0000000080000001
[  557.721769][    C1] RDX: 0000000000000001 RSI: ffffffff8d792008 RDI: ffffffff8bc083e0
[  557.729739][    C1] RBP: ffffc90000197f10 R08: ffff8880b87336db R09: 1ffff110170e66db
[  557.737717][    C1] R10: dffffc0000000000 R11: ffffed10170e66dc R12: ffffffff8f822170
[  557.745691][    C1] R13: 1ffff110038dbb70 R14: 0000000000000001 R15: 0000000000000001
[  557.753660][    C1] FS:  0000000000000000(0000) GS:ffff888125f1f000(0000) knlGS:0000000000000000
[  557.762588][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  557.769166][    C1] CR2: 00007ffe258b1c68 CR3: 000000007daaf000 CR4: 0000000000350ef0
[  557.777140][    C1] Call Trace:
[  557.780415][    C1]  <TASK>
[  557.783336][    C1]  default_idle+0x13/0x20
[  557.787670][    C1]  default_idle_call+0x73/0xb0
[  557.792440][    C1]  do_idle+0x1be/0x4d0
[  557.796521][    C1]  ? __pfx_do_idle+0x10/0x10
[  557.801117][    C1]  ? do_idle+0x4af/0x4d0
[  557.805362][    C1]  cpu_startup_entry+0x44/0x60
[  557.810129][    C1]  start_secondary+0x101/0x110
[  557.815075][    C1]  common_startup_64+0x13e/0x147
[  557.820035][    C1]  </TASK>